Skip to content

Prevent user with empty uid #6

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
DeepDiver1975 merged 1 commit into from
Sep 30, 2016
Merged

Prevent user with empty uid #6

DeepDiver1975 merged 1 commit into from
Sep 30, 2016

Conversation

@butonic
Copy link
Member

@butonic butonic commented Sep 29, 2016

The uid might be empty if the mapped owncloud_username, eg. mail is empty. While admins should make sure the attribute is always set the ldap admins are only human. Errors happen and we need to protect against user errer. In this case we should die hard, giving everyone a hint at what might be wrong, which is why I use assert(). It will throw an exception and prevent further desaster. As in overwriting the quota for all users ...

@CLAassistant
Copy link

CLAassistant commented Sep 29, 2016
edited
Loading

CLA assistant check
All committers have signed the CLA.

@mention-bot
Copy link

mention-bot commented Sep 29, 2016

@butonic, thanks for your PR! By analyzing the annotation information on this pull request, we identified @blizzz, @DeepDiver1975 and @VicDeo to be potential reviewers

@butonic
Copy link
Member Author

butonic commented Sep 29, 2016

@owncloud/ldap quick review

@jvillafanez
Copy link
Member

jvillafanez commented Sep 30, 2016

🚫

Assertions can be disabled, and we should assume they will disabled on production. Taking into account that the code depends on an external service (LDAP) whose configuration is completely unknown, we can't consider that the code will be "safe" to be run without assertions once it reach production.

Just checking and throwing the exception seems a better option.

@butonic
Copy link
Member Author

butonic commented Sep 30, 2016

@jvillafanez @DeepDiver1975 done, makes sense.

@jvillafanez
Copy link
Member

jvillafanez commented Sep 30, 2016

👍

@DeepDiver1975 DeepDiver1975 merged commit 078372b into master Sep 30, 2016
@DeepDiver1975 DeepDiver1975 deleted the preventemptyuid branch September 30, 2016 16:05
@PVince81
Copy link
Contributor

PVince81 commented Oct 4, 2016

triple combo facepalm hit combo

@blizzz blizzz mentioned this pull request Oct 4, 2016
Merged
@PVince81
Copy link
Contributor

PVince81 commented Dec 6, 2016

Please backport to 9.1 and 9.0

This was referenced Dec 12, 2016
Merged
Merged
@jvillafanez
Copy link
Member

jvillafanez commented Dec 12, 2016

stable9.1: owncloud/core#26810
stable9: owncloud/core#26811

@SergioBertolinSG
Copy link
Contributor

SergioBertolinSG commented Jan 30, 2017

This field corresponds in the ldap app's expert tab to uuid or internal username?

@INHack20 INHack20 mentioned this pull request Dec 13, 2017
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

enhancement

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

8 participants

@butonic @CLAassistant @mention-bot @jvillafanez @PVince81 @SergioBertolinSG @DeepDiver1975