phorge-phorge

mirror of https://we.phorge.it/source/phorge.git synced 2025-02-21 19:19:12 +01:00

History

epriestley f32e0e9330 Provide a callback for Queries to filter objects from alternate result sets Summary: Ref T2715. `PhabricatorObjectQuery` can theoretically bypass policies on its side-channel result set. This can't actually happen in practice because all the loading mechanisms are filtered, but provide a general way to implement side channel results safely. Test Plan: Loaded some pages; see next diff. Reviewers: btrahan Reviewed By: btrahan CC: aran Maniphest Tasks: T2715 Differential Revision: https://secure.phabricator.com/D6514	2013-07-22 12:20:31 -07:00
..
PhabricatorHandleQuery.php	Proide application-based handle loads; load Slowvote handles from the application	2013-07-22 12:17:28 -07:00
PhabricatorObjectQuery.php	Provide a callback for Queries to filter objects from alternate result sets	2013-07-22 12:20:31 -07:00

epriestley f32e0e9330 Provide a callback for Queries to filter objects from alternate result sets

Summary: Ref T2715. `PhabricatorObjectQuery` can theoretically bypass policies on its side-channel result set. This can't actually happen in practice because all the loading mechanisms are filtered, but provide a general way to implement side channel results safely.

Test Plan: Loaded some pages; see next diff.

Reviewers: btrahan

Reviewed By: btrahan

CC: aran

Maniphest Tasks: T2715

Differential Revision: https://secure.phabricator.com/D6514

2013-07-22 12:20:31 -07:00

PhabricatorHandleQuery.php

Proide application-based handle loads; load Slowvote handles from the application

2013-07-22 12:17:28 -07:00

PhabricatorObjectQuery.php

Provide a callback for Queries to filter objects from alternate result sets

2013-07-22 12:20:31 -07:00