-
Notifications
You must be signed in to change notification settings - Fork 2.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
share by email, resolve existing users by email #27847
Comments
more concept will come from @pmaier1 |
Added concept. |
this is not possible, email addresses need to be verified since 10.0.0 |
Sorry, bad example. Imported mail addresses from other user backends (e.g. LDAP) are not verified. |
but user2 as a regular user should not be able to modify their LDAP email address. Only an admin can. If an admin is malicious then it's already game over |
Ok. So I can trust AD and internal emails. That makes it more easy. |
👍 removed unnecessary stuff from top post |
Needs splitting of option for restricting to share only with users in same groups |
|
As we apparently don't require mail addresses to be unique: What will happen in the case when one address belongs to more than one user? At least we would need an error message for that. |
@IljaN @tomneedham do you know ? ^ |
With @tomneedham's PR I was able to find the existing guest user by typing in the email address in the share autocomplete field: #27832 (comment) Regarding uniqueness: in the guest dialog if you type an email from an already existing user the dialog doesn't save. Fails with 422 Unprocessable Entity. So I think some backend is already detecting this case. Needs more graceful handling in the guests app. |
That is, unless we want the guest share dialog to be clever and succeeds by simply creating a share instead of doing the email sending thing. But this could be more confusing because the dialog currently contains a user name as typed by the user. From my understanding all these UX changes (graceful duplicate handling) should be doable from inside the guests app. |
needs retesting with the new PR #27906 as the previous one was closed |
-> We should not create a guest account here if an account with the same email is detected |
We could solve this by exposing the generated userid to the user in their welcome/invite email here: https://github.com/owncloud/guests/blob/master/templates/mail/altinvite.php#L21 |
But since I think this more of an edge case, it is nicer for these guests to login with their email, so we should add a check here (https://github.com/owncloud/guests/blob/master/controller/userscontroller.php#L104) for $manager->getByEmail() and count the results. |
@tomneedham weird... this worked fine with your previous PR |
Ok maybe not the exact same case. I tried to share with an existing guest and typing the guest name or his address in the share autocomplete properly found that user (with your old PR, didn't test with the new one) |
Exactly. Instead we should share with the existing user if the address is unique as you said below.
Yes, somehow this is strange but if the user doesn't search for the mail address and doesn't know the username or if the user already has an account this is really needed to prevent duplicates. Still, if the address is not unique we need a handle.
Hmm, would be a possibility to solve the login issue but not really nice.
|
@tomneedham the login controller already has a check to count the emails, no need to add one: https://github.com/owncloud/core/blob/master/core/Controller/LoginController.php#L189 |
Let's go with the following for now:
|
Share to existing guest email doesn't seem to work in the new PR, #27906 (comment) |
tested and this works |
PR was merged #27906, needs retesting for the core pieces (sharing by email) |
Just tested OC 10.0.1RC3 EE with guest app. Sharing to existing guest email works, the autocomplete shows an entry with the guest user name. When two users have the same email, both appear in the suggested list when typing in their email. All core things work now. Guest app specific validation to be solved as part of owncloud/guests#81 |
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
Follow up of
Creating a share entering a mail address that already exists for a user currently does not work and does not throw an error.
Needs core enhancements.
The text was updated successfully, but these errors were encountered: