revi-archive/phorge-phorge
1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-12-18 19:40:55 +01:00
Code Issues Releases Wiki Activity

Fix a Phortune bug where an invalid viewer could sometimes be selected for billing a subscription

Browse source 
Summary:
A live instance hit the scenario described in the comment, where an out-of-date user was being selected as the actor.

Since they were no longer an account member, they could not see the payment method and autopay was failing.

Instead, select a relatively arbitrary user who is a current, valid, non-disabled member.

Test Plan: Ran subscriptions with `bin/worker execute ...`, saw it select a valid actor.

Reviewers: chad

Reviewed By: chad

Differential Revision: https://secure.phabricator.com/D16757
This commit is contained in:
epriestley 2016-10-26 15:02:28 -07:00
parent 0f800a3cd8
commit 12d29d8206
1 changed files with 21 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

27
src/applications/phortune/worker/PhortuneSubscriptionWorker.php
View file

@ -36,17 +36,32 @@ final class PhortuneSubscriptionWorker extends PhabricatorWorker {
->setSubscription($subscription); ->setSubscription($subscription);
// TODO: This isn't really ideal. It would be better to use an application // TODO: This isn't really ideal. It would be better to use an application
// actor than the original author of the subscription. In particular, if // actor than a fairly arbitrary account member.
// someone initiates a subscription, adds some other account managers, and
// later leaves the company, they'll continue "acting" here indefinitely.
// However, for now, some of the stuff later in the pipeline requires a // However, for now, some of the stuff later in the pipeline requires a
// valid actor with a real PHID. The subscription should eventually be // valid actor with a real PHID. The subscription should eventually be
// able to create these invoices "as" the application it is acting on // able to create these invoices "as" the application it is acting on
// behalf of. // behalf of.
$actor = id(new PhabricatorPeopleQuery())
$members = id(new PhabricatorPeopleQuery())
->setViewer($viewer) ->setViewer($viewer)
->withPHIDs(array($subscription->getAuthorPHID())) ->withPHIDs($account->getMemberPHIDs())
->executeOne(); ->execute();
$actor = null;
foreach ($members as $member) {
// Don't act as a disabled user. If all of the users on the account are
// disabled this means we won't charge the subscription, but that's
// probably correct since it means no one can cancel or pay it anyway.
if ($member->getIsDisabled()) {
continue;
}
// For now, just pick the first valid user we encounter as the actor.
$actor = $member;
break;
}
if (!$actor) { if (!$actor) {
throw new Exception(pht('Failed to load actor to bill subscription!')); throw new Exception(pht('Failed to load actor to bill subscription!'));
} }