1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-11-26 16:52:41 +01:00

Allow tokens to be awarded to MFA-required objects

Summary:
Depends on D19901. Ref T13222. See PHI873. Currently, the MFA code and the (older, not-really-transactional) token code don't play nicely.

In particular, if the Editor throws we tend to get half an effect applied.

For now, just make this work. Some day it could become more modern so that the transaction actually applies the write.

Test Plan: Awarded and rescinded tokens from an MFA-required object.

Reviewers: amckinley

Reviewed By: amckinley

Maniphest Tasks: T13222

Differential Revision: https://secure.phabricator.com/D19902
This commit is contained in:
epriestley 2018-12-18 08:21:22 -08:00
parent efb01bf34f
commit 6a6db0ac8e
2 changed files with 62 additions and 16 deletions

View file

@ -47,11 +47,13 @@ final class PhabricatorTokenGiveController extends PhabricatorTokenController {
} }
$done_uri = $handle->getURI(); $done_uri = $handle->getURI();
if ($request->isDialogFormPost()) { if ($request->isFormOrHisecPost()) {
$content_source = PhabricatorContentSource::newFromRequest($request); $content_source = PhabricatorContentSource::newFromRequest($request);
$editor = id(new PhabricatorTokenGivenEditor()) $editor = id(new PhabricatorTokenGivenEditor())
->setActor($viewer) ->setActor($viewer)
->setRequest($request)
->setCancelURI($handle->getURI())
->setContentSource($content_source); ->setContentSource($content_source);
if ($is_give) { if ($is_give) {
$token_phid = $request->getStr('tokenPHID'); $token_phid = $request->getStr('tokenPHID');

View file

@ -4,6 +4,8 @@ final class PhabricatorTokenGivenEditor
extends PhabricatorEditor { extends PhabricatorEditor {
private $contentSource; private $contentSource;
private $request;
private $cancelURI;
public function setContentSource(PhabricatorContentSource $content_source) { public function setContentSource(PhabricatorContentSource $content_source) {
$this->contentSource = $content_source; $this->contentSource = $content_source;
@ -14,6 +16,24 @@ final class PhabricatorTokenGivenEditor
return $this->contentSource; return $this->contentSource;
} }
public function setRequest(AphrontRequest $request) {
$this->request = $request;
return $this;
}
public function getRequest() {
return $this->request;
}
public function setCancelURI($cancel_uri) {
$this->cancelURI = $cancel_uri;
return $this;
}
public function getCancelURI() {
return $this->cancelURI;
}
public function addToken($object_phid, $token_phid) { public function addToken($object_phid, $token_phid) {
$token = $this->validateToken($token_phid); $token = $this->validateToken($token_phid);
$object = $this->validateObject($object_phid); $object = $this->validateObject($object_phid);
@ -41,17 +61,22 @@ final class PhabricatorTokenGivenEditor
id(new PhabricatorTokenCount())->getTableName(), id(new PhabricatorTokenCount())->getTableName(),
$object->getPHID()); $object->getPHID());
$token_given->saveTransaction();
$current_token_phid = null; $current_token_phid = null;
if ($current_token) { if ($current_token) {
$current_token_phid = $current_token->getTokenPHID(); $current_token_phid = $current_token->getTokenPHID();
} }
try {
$this->publishTransaction( $this->publishTransaction(
$object, $object,
$current_token_phid, $current_token_phid,
$token->getPHID()); $token->getPHID());
} catch (Exception $ex) {
$token_given->killTransaction();
throw $ex;
}
$token_given->saveTransaction();
$subscribed_phids = $object->getUsersToNotifyOfTokenGiven(); $subscribed_phids = $object->getUsersToNotifyOfTokenGiven();
if ($subscribed_phids) { if ($subscribed_phids) {
@ -86,11 +111,20 @@ final class PhabricatorTokenGivenEditor
return; return;
} }
$token_given->openTransaction();
$this->executeDeleteToken($object, $token_given); $this->executeDeleteToken($object, $token_given);
try {
$this->publishTransaction( $this->publishTransaction(
$object, $object,
$token_given->getTokenPHID(), $token_given->getTokenPHID(),
null); null);
} catch (Exception $ex) {
$token_given->killTransaction();
throw $ex;
}
$token_given->saveTransaction();
} }
private function executeDeleteToken( private function executeDeleteToken(
@ -166,6 +200,16 @@ final class PhabricatorTokenGivenEditor
->setContinueOnNoEffect(true) ->setContinueOnNoEffect(true)
->setContinueOnMissingFields(true); ->setContinueOnMissingFields(true);
$request = $this->getRequest();
if ($request) {
$editor->setRequest($request);
}
$cancel_uri = $this->getCancelURI();
if ($cancel_uri) {
$editor->setCancelURI($cancel_uri);
}
$editor->applyTransactions($object, $xactions); $editor->applyTransactions($object, $xactions);
} }