Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Invalidate the pagemounts cache in the back end access voter when duplicating a page #7102

Merged
merged 9 commits into from May 23, 2024
Merged

Invalidate the pagemounts cache in the back end access voter when duplicating a page #7102

merged 9 commits into from May 23, 2024

Conversation

lukasbableck
Copy link
Contributor

@lukasbableck lukasbableck commented Apr 10, 2024
edited

If a user who is not an admin copies a page, the articles (and thus all content) are no longer copied, as it was the case in Contao 4. Instead a new empty article is created.
This is because the check whether the user is allowed to create the articles depends on the pagemountCache in the BackendAccessVoter, which is only set once per request and user.
As the page does not yet exist when the cache is first set and has not been reset after the page has been created, the check as to whether the user is allowed to access the newly created page fails.

This PR adds a check if a new page has been created before accessing the pagemountCache in the BackendAccessVoter and clears the cache if this is the case.

Steps to reproduce:

  1. Login as a user without admin privileges
  2. Copy and paste a page that has content elements in its article
  3. The original article(s) will not be copied but a new one will be created

@leofeyer leofeyer added bug and removed feature labels Apr 10, 2024
@leofeyer leofeyer added this to the 5.3 milestone Apr 10, 2024
@leofeyer leofeyer requested a review from aschempp April 11, 2024 13:06
aschempp
aschempp requested changes Apr 16, 2024
View reviewed changes
Copy link
Member

@aschempp aschempp left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think using the session is a good idea, because it is very backend-specific. The best option @Toflar and I came up with, is to change the pagemountsCache. It should contain all page IDs with true or false value. That means

  • SELECT all page IDs and set to false
  • SELECT all allowed and set them to true

If a page ID is now not in the cache, we know the cache is outdated and needs to be updated/rebuilt.

@lukasbableck lukasbableck marked this pull request as draft April 16, 2024 10:07
@lukasbableck
Copy link
Contributor Author

Well, that was not what i wanted to do.... 🙄

@lukasbableck lukasbableck marked this pull request as ready for review April 16, 2024 10:19
@lukasbableck
Copy link
Contributor Author

lukasbableck commented Apr 16, 2024
edited

There we go.
Not quite sure about those tests, as I'm not that experienced with PHPUnit, but they are passing.

@lukasbableck lukasbableck changed the title Clear pagemountsCache if a page was just created in this request Change pagemountsCache structure in BackendAccessVoter to fix content not being copied when duplicating pages Apr 16, 2024
@aschempp aschempp mentioned this pull request Apr 16, 2024
Merged
@aschempp
Copy link
Member

Well, that was not what i wanted to do.... 🙄

can you explain that? 😅

I did a Pull Request on your repository (see lukasbableck#1), maybe that would simplify the code a bit?

@lukasbableck
Merge pull request #1 from aschempp/fix/page-access
c53c4e1 
Store true/false in the pagemountsCache
@lukasbableck
Merge pull request #2 from lukasbableck/5.3
f30b8f0 
Merge pull request #1 from aschempp/fix/page-access
@lukasbableck
Copy link
Contributor Author

lukasbableck commented Apr 16, 2024
edited

Well, that was not what i wanted to do.... 🙄

can you explain that? 😅

Nevermind that, I messed up the commit history a little, but everything is good again 😅

I did a Pull Request on your repository (see lukasbableck#1), maybe that would simplify the code a bit?

👍🏼

aschempp
aschempp previously approved these changes Apr 16, 2024
View reviewed changes
Copy link
Member

@aschempp aschempp left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you! Did you manually test if my code still works/fixes the issue? 😅

@lukasbableck
Copy link
Contributor Author

Yes, works as expected with your changes 👍

@aschempp aschempp mentioned this pull request Apr 18, 2024
Merged
@leofeyer leofeyer changed the title Change pagemountsCache structure in BackendAccessVoter to fix content not being copied when duplicating pages Invalidate the pagemounts cache in the back end access voter when duplicating a page Apr 18, 2024
@leofeyer leofeyer added the up for discussion Issues and PRs which will be discussed in our monthly Mumble calls. label Apr 18, 2024
fritzmg
fritzmg previously approved these changes May 2, 2024
View reviewed changes
@leofeyer leofeyer removed the up for discussion Issues and PRs which will be discussed in our monthly Mumble calls. label May 2, 2024
leofeyer pushed a commit that referenced this pull request May 7, 2024
@aschempp
Skip permissions checks for child records (see #7133)
17a539e 
Description
-----------

This restores the permission handling we had in all previous Contao versions. After discussing with @Toflar, this is the only viable solution to fix our permission issues. Here are two examples that are imho impossible to fix otherwise. They are not a technical issue, but a logical one.

1. If you duplicate a page, its articles will be duplicated as well as its content elements. If you do not have access to some elements, the whole page and articles are duplicated, **but "random" content elements will be missing**.

2. even worse, when deleting a page, DC_Table tries to delete all child records and create an undo record for them. The ones that the user does not have access will not be deleted, **and will not be added to the undo record**. They are however still removed by our reviseTable, and will therefore be lost without the option to undo.

In the same sense we could discuss to adjust the `undo` method instead of what we discussed in #7056

FYI @Toflar and me discussed that the same handling will not be possible in a regular REST/CRUD API. It would require special APIs for that, which can always be added if necessary.


- Fixes #7101
- Probably also makes #7102 obsolete but correctly checking the IDs/updating the cache might still be correct.

Commits
-------

eb388c6 Skip permissions checks for child records
961033f Also remove permission check in undo operation
70d7577 Fixed duplicate variable name
leofeyer pushed a commit to contao/core-bundle that referenced this pull request May 7, 2024
@aschempp
Skip permissions checks for child records (see #7133)
3449da9 
Description
-----------

This restores the permission handling we had in all previous Contao versions. After discussing with @Toflar, this is the only viable solution to fix our permission issues. Here are two examples that are imho impossible to fix otherwise. They are not a technical issue, but a logical one.

1. If you duplicate a page, its articles will be duplicated as well as its content elements. If you do not have access to some elements, the whole page and articles are duplicated, **but "random" content elements will be missing**.

2. even worse, when deleting a page, DC_Table tries to delete all child records and create an undo record for them. The ones that the user does not have access will not be deleted, **and will not be added to the undo record**. They are however still removed by our reviseTable, and will therefore be lost without the option to undo.

In the same sense we could discuss to adjust the `undo` method instead of what we discussed in contao/contao#7056

FYI @Toflar and me discussed that the same handling will not be possible in a regular REST/CRUD API. It would require special APIs for that, which can always be added if necessary.


- Fixes contao/contao#7101
- Probably also makes contao/contao#7102 obsolete but correctly checking the IDs/updating the cache might still be correct.

Commits
-------

eb388c66 Skip permissions checks for child records
961033f3 Also remove permission check in undo operation
70d75771 Fixed duplicate variable name
@lukasbableck lukasbableck dismissed stale reviews from fritzmg and aschempp via a0235fa May 16, 2024 11:42
@leofeyer leofeyer requested review from fritzmg and aschempp May 17, 2024 11:35
aschempp
aschempp approved these changes May 21, 2024
View reviewed changes
Copy link
Member

@aschempp aschempp left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This makes the assumption that the user will never vote something they are not allowed to see, simply because the back end should not render that. Otherwise that cache approach would not make sense, but I think we can agree that DC_Table would not render items that are not visible.

@leofeyer leofeyer merged commit c2df8c2 into contao:5.3 May 23, 2024
18 checks passed
@leofeyer
Copy link
Member

Thank you @lukasbableck.

@lukasbableck lukasbableck deleted the patch-1 branch May 23, 2024 15:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Toflar Toflar Toflar left review comments

@ausi ausi ausi approved these changes

@aschempp aschempp aschempp approved these changes

@leofeyer leofeyer leofeyer approved these changes

@fritzmg fritzmg Awaiting requested review from fritzmg

Assignees

@lukasbableck lukasbableck

Labels
bug
Projects
None yet
Milestone
5.3
Development

Successfully merging this pull request may close these issues.

None yet
6 participants
@lukasbableck @aschempp @leofeyer @ausi @Toflar @fritzmg