Update sabre dav to 3.2#26115
Conversation
b533fea to
b949a82
Compare
b949a82 to
46fa3d3
Compare
7790c5d to
46b77af
Compare
c1f2317 to
a63b842
Compare
|
tested up and downloads, rename and delete in chrome and vie sync client. everything working as expectedt and no errors in the log. sync to / from smb / wnd working fine. 👍 |
|
@VicDeo a second review for updating sabre/dav? |
|
@tomneedham a second review for updating sabre/dav? |
a63b842 to
382e141
Compare
|
Conflicts ahead |
|
Will take care .... |
382e141 to
902f158
Compare
|
Fixes #22724 |
|
Hmm, weird. Something seems wrong with the authentication. When debugging, the PROPFIND reaches the server but the user session has no user. |
|
When debugging into the server, the |
|
Tried updating the sabre version used by integration tests, no success. @DeepDiver1975 I guess we also want to upgrade the sabre dav version for the integration tests ? This is mostly using the sabre client stuff. (I can do it) |
|
on an unrelated note, the basic auth plugin is registered twice: something to look into separately, adding to "suspicious stuff to investigate to do list"... raised #26351 |
|
I also debugged into the PROPPATCH test row which appears green, that one also internally fails because of missing auth headers. Weird, I don't see how updating the server dav version would affect the headers sent by the integration tests... |
|
Web UI setting as favorite with old and new endpoint (#25494) do work against this PR. |
902f158 to
a4bf33e
Compare
|
Okay, I'm onto something:
|
|
When called from CLI curl I can see that the $response contains the "www-authenticate" header but it does not when coming from the integration test. Now need to examine the differences in code path or HTTP request. |
|
Okay, here we go, likely a plugin order issue:
|
|
Okayyyy, getting closer... In the old Sabre, if at least one of the auth backends would fail, it would directly throw a On the new Sabre, somehow it seems to happily continue processing other plugins and going into the Propfind method. Maybe this is by design for better plugin flexibility... |
|
and here it is "Support for unauthenticated access": http://sabre.io/dav/upgrade/3.1-to-3.2/
|
|
So, according to the docs we'd eventually need to better integrate with the ACL plugin so that any of the regular non-auth plugins are able to fail if a user's ACL does not fit. I think this is something for later. I'll use the workaround for now and set "$allowUnauthenticatedAccess" to false. |
This is needed to make Sabre 3.2 behave like we did before. Eventually we should integrate better with the ACL plugin which itself should implement an auth failure when appropriate.
|
@DeepDiver1975 tests should pass now: 459bde5 |
|
NICE! |
* Update sabre/dav to 3.2.0 * Adjust code to work with sabre/dav 3.2.0 and it's dependencies * Adding own CalDAV plugin to fix calendar home property * Test if there is a user logged in when listing files home * Update sabre version used by integration tests * Disable unauthenticated DAV access This is needed to make Sabre 3.2 behave like we did before. Eventually we should integrate better with the ACL plugin which itself should implement an auth failure when appropriate.
|
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |

Update sabre/dav