Merge pull request #50749 from nextcloud/backport/49493/stable29

[stable29] feat: Use inline password confirmation in external storage settings
2026-06-16 20:19:48 -04:00 · 2025-02-11 16:59:59 +01:00 · 2025-02-11 16:59:59 +01:00 · 5373a2fa80
commit 5373a2fa80
parent 3606be140e 89f3350b2f
114 changed files with 2033 additions and 1834 deletions
--- a/apps/files_external/js/settings.js
+++ b/apps/files_external/js/settings.js
--- a/apps/files_external/lib/Controller/AjaxController.php
+++ b/apps/files_external/lib/Controller/AjaxController.php
@ -105,7 +105,7 @@ class AjaxController extends Controller {
 	 * @return bool
 	 */
 	#[NoAdminRequired]
-	#[PasswordConfirmationRequired]
+	#[PasswordConfirmationRequired(strict: true)]
 	public function saveGlobalCredentials($uid, $user, $password) {
 		$currentUser = $this->userSession->getUser();
 		if ($currentUser === null) {
--- a/apps/files_external/lib/Controller/GlobalStoragesController.php
+++ b/apps/files_external/lib/Controller/GlobalStoragesController.php
@ -91,7 +91,7 @@ class GlobalStoragesController extends StoragesController {
 	 *
 	 * @return DataResponse
 	 */
-	#[PasswordConfirmationRequired]
+	#[PasswordConfirmationRequired(strict: true)]
 	public function create(
 		$mountPoint,
 		$backend,
@ -157,7 +157,7 @@ class GlobalStoragesController extends StoragesController {
 	 *
 	 * @return DataResponse
 	 */
-	#[PasswordConfirmationRequired]
+	#[PasswordConfirmationRequired(strict: true)]
 	public function update(
 		$id,
 		$mountPoint,
--- a/apps/files_external/lib/Controller/StoragesController.php
+++ b/apps/files_external/lib/Controller/StoragesController.php
@ -323,7 +323,7 @@ abstract class StoragesController extends Controller {
 	 *
 	 * @return DataResponse
 	 */
-	#[PasswordConfirmationRequired]
+	#[PasswordConfirmationRequired(strict: true)]
 	public function destroy(int $id) {
 		try {
 			$this->service->removeStorage($id);
--- a/apps/files_external/lib/Controller/UserGlobalStoragesController.php
+++ b/apps/files_external/lib/Controller/UserGlobalStoragesController.php
@ -159,7 +159,7 @@ class UserGlobalStoragesController extends StoragesController {
 	 * @return DataResponse
 	 */
 	#[NoAdminRequired]
-	#[PasswordConfirmationRequired]
+	#[PasswordConfirmationRequired(strict: true)]
 	public function update(
 		$id,
 		$backendOptions,
--- a/apps/files_external/lib/Controller/UserStoragesController.php
+++ b/apps/files_external/lib/Controller/UserStoragesController.php
@ -124,7 +124,7 @@ class UserStoragesController extends StoragesController {
 	 * @return DataResponse
 	 */
 	#[NoAdminRequired]
-	#[PasswordConfirmationRequired]
+	#[PasswordConfirmationRequired(strict: true)]
 	public function create(
 		$mountPoint,
 		$backend,
@ -180,7 +180,7 @@ class UserStoragesController extends StoragesController {
 	 * @return DataResponse
 	 */
 	#[NoAdminRequired]
-	#[PasswordConfirmationRequired]
+	#[PasswordConfirmationRequired(strict: true)]
 	public function update(
 		$id,
 		$mountPoint,
@ -232,7 +232,7 @@ class UserStoragesController extends StoragesController {
 	 * {@inheritdoc}
 	 */
 	#[NoAdminRequired]
-	#[PasswordConfirmationRequired]
+	#[PasswordConfirmationRequired(strict: true)]
 	public function destroy(int $id) {
 		return parent::destroy($id);
 	}
--- a/apps/files_external/src/settings.js
+++ b/apps/files_external/src/settings.js
--- a/apps/files_external/templates/settings.php
+++ b/apps/files_external/templates/settings.php
@ -16,10 +16,8 @@ $l->t("Never");
 $l->t("Once every direct access");
 $l->t('Read only');

-script('files_external', [
-	'settings',
-	'templates'
-]);
+\OCP\Util::addScript('files_external', 'settings');
+\OCP\Util::addScript('files_external', 'templates');
 style('files_external', 'settings');

 // load custom JS
--- a/build/integration/features/bootstrap/ExternalStorage.php
+++ b/build/integration/features/bootstrap/ExternalStorage.php
@ -48,7 +48,7 @@ trait ExternalStorage {
 	 * @param TableNode $fields
 	 */
 	public function loggedInUserCreatesExternalGlobalStorage(TableNode $fields): void {
-		$this->sendJsonWithRequestToken('POST', '/index.php/apps/files_external/globalstorages', $fields);
+		$this->sendJsonWithRequestTokenAndBasicAuth('POST', '/index.php/apps/files_external/globalstorages', $fields);
 		$this->theHTTPStatusCodeShouldBe('201');

 		$this->lastExternalStorageData = json_decode($this->response->getBody(), $asAssociativeArray = true);
@ -62,7 +62,7 @@ trait ExternalStorage {
 	 * @param TableNode $fields
 	 */
 	public function loggedInUserUpdatesLastExternalUserglobalStorage(TableNode $fields): void {
-		$this->sendJsonWithRequestToken('PUT', '/index.php/apps/files_external/userglobalstorages/' . $this->lastExternalStorageData['id'], $fields);
+		$this->sendJsonWithRequestTokenAndBasicAuth('PUT', '/index.php/apps/files_external/userglobalstorages/' . $this->lastExternalStorageData['id'], $fields);
 		$this->theHTTPStatusCodeShouldBe('200');

 		$this->lastExternalStorageData = json_decode($this->response->getBody(), $asAssociativeArray = true);
@ -100,4 +100,23 @@ trait ExternalStorage {
 		];
 		$this->sendingAToWithRequesttoken($method, $url, $body);
 	}
+
+	private function sendJsonWithRequestTokenAndBasicAuth(string $method, string $url, TableNode $fields): void {
+		$isFirstField = true;
+		$fieldsAsJsonString = '{';
+		foreach ($fields->getRowsHash() as $key => $value) {
+			$fieldsAsJsonString .= ($isFirstField ? '' : ',') . '"' . $key . '":' . $value;
+			$isFirstField = false;
+		}
+		$fieldsAsJsonString .= '}';
+
+		$body = [
+			'headers' => [
+				'Content-Type' => 'application/json',
+				'Authorization' => 'Basic ' . base64_encode('admin:admin'),
+			],
+			'body' => $fieldsAsJsonString,
+		];
+		$this->sendingAToWithRequesttoken($method, $url, $body);
+	}
 }
--- a/build/integration/files_features/external-storage.feature
+++ b/build/integration/files_features/external-storage.feature
@ -14,14 +14,14 @@ Feature: external-storage
    And As an "user1"
    And accepting last share
    When creating a share with
-      | path | foo |
-      | shareType | 3 |
+      | path      | foo |
+      | shareType | 3   |
    Then the OCS status code should be "100"
    And the HTTP status code should be "200"
    And Share fields of last share match with
-      | id | A_NUMBER |
-      | url | AN_URL |
-      | token | A_TOKEN |
+      | id       | A_NUMBER             |
+      | url      | AN_URL               |
+      | token    | A_TOKEN              |
      | mimetype | httpd/unix-directory |

  Scenario: Shares don't overwrite external storage
@ -66,9 +66,9 @@ Feature: external-storage
  Scenario: Save an external storage with password provided by user
    Given Logging in using web as "admin"
    And logged in user creates external global storage
-      | mountPoint     | "ExternalStorageTest" |
-      | backend        | "owncloud" |
-      | authMechanism  | "password::userprovided" |
+      | mountPoint     | "ExternalStorageTest"                           |
+      | backend        | "owncloud"                                      |
+      | authMechanism  | "password::userprovided"                        |
      | backendOptions | {"host":"http://localhost:8080","secure":false} |
    And fields of last external storage match with
      | status | 2 |
@ -80,9 +80,9 @@ Feature: external-storage
  Scenario: Save an external storage again with an unmodified password provided by user
    Given Logging in using web as "admin"
    And logged in user creates external global storage
-      | mountPoint     | "ExternalStorageTest" |
-      | backend        | "owncloud" |
-      | authMechanism  | "password::userprovided" |
+      | mountPoint     | "ExternalStorageTest"                           |
+      | backend        | "owncloud"                                      |
+      | authMechanism  | "password::userprovided"                        |
      | backendOptions | {"host":"http://localhost:8080","secure":false} |
    And fields of last external storage match with
      | status | 2 |
@ -96,9 +96,9 @@ Feature: external-storage
  Scenario: Save an external storage with global credentials provided by user
    Given Logging in using web as "admin"
    And logged in user creates external global storage
-      | mountPoint     | "ExternalStorageTest" |
-      | backend        | "owncloud" |
-      | authMechanism  | "password::global::user" |
+      | mountPoint     | "ExternalStorageTest"                           |
+      | backend        | "owncloud"                                      |
+      | authMechanism  | "password::global::user"                        |
      | backendOptions | {"host":"http://localhost:8080","secure":false} |
    And fields of last external storage match with
      | status | 2 |
@ -110,9 +110,9 @@ Feature: external-storage
  Scenario: Save an external storage again with unmodified global credentials provided by user
    Given Logging in using web as "admin"
    And logged in user creates external global storage
-      | mountPoint     | "ExternalStorageTest" |
-      | backend        | "owncloud" |
-      | authMechanism  | "password::global::user" |
+      | mountPoint     | "ExternalStorageTest"                           |
+      | backend        | "owncloud"                                      |
+      | authMechanism  | "password::global::user"                        |
      | backendOptions | {"host":"http://localhost:8080","secure":false} |
    And fields of last external storage match with
      | status | 2 |
--- a/dist/1902-1902.js
+++ b/dist/1902-1902.js
--- a/dist/1902-1902.js.map
+++ b/dist/1902-1902.js.map
--- a/dist/2400-2400.js
+++ b/dist/2400-2400.js
--- a/dist/2400-2400.js.map
+++ b/dist/2400-2400.js.map
--- a/dist/267-267.js
+++ b/dist/267-267.js
--- a/dist/267-267.js.map
+++ b/dist/267-267.js.map
--- a/dist/3916-3916.js
+++ b/dist/3916-3916.js
--- a/dist/3916-3916.js.map
+++ b/dist/3916-3916.js.map
--- a/dist/717-717.js
+++ b/dist/717-717.js
--- a/dist/717-717.js.map
+++ b/dist/717-717.js.map
--- a/dist/8066-8066.js
+++ b/dist/8066-8066.js
@ -1,2 +1,2 @@
-"use strict";(self.webpackChunknextcloud=self.webpackChunknextcloud||[]).push([[8066],{48066:(e,c,l)=>{l.d(c,{FilePickerVue:()=>n});const n=(0,l(85471).$V)((()=>Promise.all([l.e(4208),l.e(1902)]).then(l.bind(l,64267))))}}]);
-//# sourceMappingURL=8066-8066.js.map?v=f1f0a3884f0b92377e6a
+"use strict";(self.webpackChunknextcloud=self.webpackChunknextcloud||[]).push([[8066],{48066:(e,c,l)=>{l.d(c,{FilePickerVue:()=>n});const n=(0,l(85471).$V)((()=>Promise.all([l.e(4208),l.e(267),l.e(3916)]).then(l.bind(l,64267))))}}]);
+//# sourceMappingURL=8066-8066.js.map?v=9369cd9b99b2eb542565
--- a/dist/8066-8066.js.map
+++ b/dist/8066-8066.js.map
@ -1 +1 @@
-{"version":3,"file":"8066-8066.js?v=f1f0a3884f0b92377e6a","mappings":"oIACA,MAAMA,GAAgB,E,SAAA,KAAqB,IAAM,0D","sources":["webpack:///nextcloud/node_modules/@nextcloud/dialogs/dist/chunks/index-Kg2hZgGF.mjs"],"sourcesContent":["import { defineAsyncComponent } from \"vue\";\nconst FilePickerVue = defineAsyncComponent(() => import(\"./FilePicker-ajWx2Snh.mjs\"));\nexport {\n  FilePickerVue\n};\n"],"names":["FilePickerVue"],"sourceRoot":""}
+{"version":3,"file":"8066-8066.js?v=9369cd9b99b2eb542565","mappings":"oIACA,MAAMA,GAAgB,E,SAAA,KAAqB,IAAM,mE","sources":["webpack:///nextcloud/node_modules/@nextcloud/dialogs/dist/chunks/index-Kg2hZgGF.mjs"],"sourcesContent":["import { defineAsyncComponent } from \"vue\";\nconst FilePickerVue = defineAsyncComponent(() => import(\"./FilePicker-ajWx2Snh.mjs\"));\nexport {\n  FilePickerVue\n};\n"],"names":["FilePickerVue"],"sourceRoot":""}
--- a/dist/8645-8645.js
+++ b/dist/8645-8645.js
@ -0,0 +1,2 @@
+"use strict";(self.webpackChunknextcloud=self.webpackChunknextcloud||[]).push([[8645],{8645:(e,c,l)=>{l.d(c,{FilePickerVue:()=>n});const n=(0,l(85471).$V)((()=>Promise.all([l.e(4208),l.e(267),l.e(717)]).then(l.bind(l,80717))))}}]);
+//# sourceMappingURL=8645-8645.js.map?v=c63ca687371a1a78dda9
--- a/dist/8645-8645.js.map
+++ b/dist/8645-8645.js.map
@ -0,0 +1 @@
+{"version":3,"file":"8645-8645.js?v=c63ca687371a1a78dda9","mappings":"mIACA,MAAMA,GAAgB,E,SAAA,KAAqB,IAAM,kE","sources":["webpack:///nextcloud/node_modules/@nextcloud/password-confirmation/node_modules/@nextcloud/dialogs/dist/chunks/index-Ly0obkwS.mjs"],"sourcesContent":["import { defineAsyncComponent } from \"vue\";\nconst FilePickerVue = defineAsyncComponent(() => import(\"./FilePicker-CSmrMOEO.mjs\"));\nexport {\n  FilePickerVue\n};\n"],"names":["FilePickerVue"],"sourceRoot":""}
--- a/dist/comments-comments-app.js
+++ b/dist/comments-comments-app.js
--- a/dist/comments-comments-app.js.map
+++ b/dist/comments-comments-app.js.map
--- a/dist/comments-comments-tab.js
+++ b/dist/comments-comments-tab.js
--- a/dist/comments-comments-tab.js.map
+++ b/dist/comments-comments-tab.js.map
--- a/dist/core-common.js
+++ b/dist/core-common.js
--- a/dist/core-common.js.LICENSE.txt
+++ b/dist/core-common.js.LICENSE.txt
@ -11,6 +11,16 @@
 * @license  MIT
 */

+/*!
+ * SPDX-FileCopyrightText: 2020 Nextcloud GmbH and Nextcloud contributors
+ * SPDX-License-Identifier: MIT
+ */
+
+/*!
+ * SPDX-FileCopyrightText: 2022 Nextcloud GmbH and Nextcloud contributors
+ * SPDX-License-Identifier: MIT
+ */
+
 /*!
 * The buffer module from node.js, for the browser.
 *
--- a/dist/core-common.js.map
+++ b/dist/core-common.js.map
--- a/dist/core-legacy-unified-search.js
+++ b/dist/core-legacy-unified-search.js
--- a/dist/core-legacy-unified-search.js.map
+++ b/dist/core-legacy-unified-search.js.map
--- a/dist/core-login.js
+++ b/dist/core-login.js
--- a/dist/core-login.js.map
+++ b/dist/core-login.js.map
--- a/dist/core-main.js
+++ b/dist/core-main.js
--- a/dist/core-main.js.map
+++ b/dist/core-main.js.map
--- a/dist/core-profile.js
+++ b/dist/core-profile.js
--- a/dist/core-profile.js.map
+++ b/dist/core-profile.js.map
--- a/dist/dav-settings-personal-availability.js
+++ b/dist/dav-settings-personal-availability.js
--- a/dist/dav-settings-personal-availability.js.map
+++ b/dist/dav-settings-personal-availability.js.map
--- a/dist/federatedfilesharing-vue-settings-admin.js
+++ b/dist/federatedfilesharing-vue-settings-admin.js
--- a/dist/federatedfilesharing-vue-settings-admin.js.map
+++ b/dist/federatedfilesharing-vue-settings-admin.js.map
--- a/dist/federatedfilesharing-vue-settings-personal.js
+++ b/dist/federatedfilesharing-vue-settings-personal.js
--- a/dist/federatedfilesharing-vue-settings-personal.js.map
+++ b/dist/federatedfilesharing-vue-settings-personal.js.map
--- a/dist/files-init.js
+++ b/dist/files-init.js
--- a/dist/files-init.js.map
+++ b/dist/files-init.js.map
--- a/dist/files-main.js
+++ b/dist/files-main.js
--- a/dist/files-main.js.map
+++ b/dist/files-main.js.map
--- a/dist/files-personal-settings.js
+++ b/dist/files-personal-settings.js
--- a/dist/files-personal-settings.js.map
+++ b/dist/files-personal-settings.js.map
--- a/dist/files-reference-files.js
+++ b/dist/files-reference-files.js
--- a/dist/files-reference-files.js.map
+++ b/dist/files-reference-files.js.map
--- a/dist/files-search.js
+++ b/dist/files-search.js
--- a/dist/files-search.js.map
+++ b/dist/files-search.js.map
--- a/dist/files-sidebar.js
+++ b/dist/files-sidebar.js
--- a/dist/files-sidebar.js.map
+++ b/dist/files-sidebar.js.map
--- a/dist/files_external-init.js
+++ b/dist/files_external-init.js
--- a/dist/files_external-init.js.map
+++ b/dist/files_external-init.js.map
--- a/dist/files_external-settings.js
+++ b/dist/files_external-settings.js
--- a/dist/files_external-settings.js.map
+++ b/dist/files_external-settings.js.map
--- a/dist/files_reminders-init.js
+++ b/dist/files_reminders-init.js
--- a/dist/files_reminders-init.js.map
+++ b/dist/files_reminders-init.js.map
--- a/dist/files_sharing-files_sharing_tab.js
+++ b/dist/files_sharing-files_sharing_tab.js
--- a/dist/files_sharing-files_sharing_tab.js.map
+++ b/dist/files_sharing-files_sharing_tab.js.map
--- a/dist/files_sharing-personal-settings.js
+++ b/dist/files_sharing-personal-settings.js
--- a/dist/files_sharing-personal-settings.js.map
+++ b/dist/files_sharing-personal-settings.js.map
--- a/dist/files_versions-files_versions.js
+++ b/dist/files_versions-files_versions.js
--- a/dist/files_versions-files_versions.js.map
+++ b/dist/files_versions-files_versions.js.map
--- a/dist/settings-declarative-settings-forms.js
+++ b/dist/settings-declarative-settings-forms.js
--- a/dist/settings-declarative-settings-forms.js.map
+++ b/dist/settings-declarative-settings-forms.js.map
--- a/dist/settings-vue-settings-admin-basic-settings.js
+++ b/dist/settings-vue-settings-admin-basic-settings.js
--- a/dist/settings-vue-settings-admin-basic-settings.js.map
+++ b/dist/settings-vue-settings-admin-basic-settings.js.map
--- a/dist/settings-vue-settings-admin-delegation.js
+++ b/dist/settings-vue-settings-admin-delegation.js
--- a/dist/settings-vue-settings-admin-delegation.js.map
+++ b/dist/settings-vue-settings-admin-delegation.js.map
--- a/dist/settings-vue-settings-admin-security.js
+++ b/dist/settings-vue-settings-admin-security.js
--- a/dist/settings-vue-settings-admin-security.js.map
+++ b/dist/settings-vue-settings-admin-security.js.map
--- a/dist/settings-vue-settings-admin-sharing.js
+++ b/dist/settings-vue-settings-admin-sharing.js
--- a/dist/settings-vue-settings-admin-sharing.js.map
+++ b/dist/settings-vue-settings-admin-sharing.js.map
--- a/dist/settings-vue-settings-apps-users-management.js
+++ b/dist/settings-vue-settings-apps-users-management.js
--- a/dist/settings-vue-settings-apps-users-management.js.map
+++ b/dist/settings-vue-settings-apps-users-management.js.map
--- a/dist/settings-vue-settings-personal-info.js
+++ b/dist/settings-vue-settings-personal-info.js
--- a/dist/settings-vue-settings-personal-info.js.map
+++ b/dist/settings-vue-settings-personal-info.js.map
--- a/dist/settings-vue-settings-personal-password.js
+++ b/dist/settings-vue-settings-personal-password.js
--- a/dist/settings-vue-settings-personal-password.js.map
+++ b/dist/settings-vue-settings-personal-password.js.map
--- a/dist/settings-vue-settings-personal-security.js
+++ b/dist/settings-vue-settings-personal-security.js
--- a/dist/settings-vue-settings-personal-security.js.map
+++ b/dist/settings-vue-settings-personal-security.js.map
--- a/dist/settings-vue-settings-personal-webauthn.js
+++ b/dist/settings-vue-settings-personal-webauthn.js
--- a/dist/settings-vue-settings-personal-webauthn.js.map
+++ b/dist/settings-vue-settings-personal-webauthn.js.map
--- a/dist/sharebymail-vue-settings-admin-sharebymail.js
+++ b/dist/sharebymail-vue-settings-admin-sharebymail.js
--- a/dist/sharebymail-vue-settings-admin-sharebymail.js.map
+++ b/dist/sharebymail-vue-settings-admin-sharebymail.js.map
--- a/dist/systemtags-admin.js
+++ b/dist/systemtags-admin.js
--- a/dist/systemtags-admin.js.map
+++ b/dist/systemtags-admin.js.map
--- a/dist/theming-admin-theming.js
+++ b/dist/theming-admin-theming.js
--- a/dist/theming-admin-theming.js.map
+++ b/dist/theming-admin-theming.js.map
--- a/dist/theming-personal-theming.js
+++ b/dist/theming-personal-theming.js
--- a/dist/theming-personal-theming.js.map
+++ b/dist/theming-personal-theming.js.map
--- a/dist/twofactor_backupcodes-settings.js
+++ b/dist/twofactor_backupcodes-settings.js
--- a/dist/twofactor_backupcodes-settings.js.map
+++ b/dist/twofactor_backupcodes-settings.js.map
--- a/dist/updatenotification-updatenotification.js
+++ b/dist/updatenotification-updatenotification.js
--- a/Show more
+++ b/Show more
				`@ -0,0 +1 @@`
				`{"version":3,"file":"8645-8645.js?v=c63ca687371a1a78dda9","mappings":"mIACA,MAAMA,GAAgB,E,SAAA,KAAqB,IAAM,kE","sources":["webpack:///nextcloud/node_modules/@nextcloud/password-confirmation/node_modules/@nextcloud/dialogs/dist/chunks/index-Ly0obkwS.mjs"],"sourcesContent":["import { defineAsyncComponent } from \"vue\";\nconst FilePickerVue = defineAsyncComponent(() => import(\"./FilePicker-CSmrMOEO.mjs\"));\nexport {\n FilePickerVue\n};\n"],"names":["FilePickerVue"],"sourceRoot":""}`