Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: warning about folders public links #178

Open
wants to merge 3 commits into
base: dev
Choose a base branch
from
Open

feat: warning about folders public links #178

wants to merge 3 commits into from

Conversation

rodcoffani
Copy link

  • warning (text or modal) triggered when creating an Editor link for a folder
  • add a maxDate property on oc-datepicker component
  • set default expiration dates for Editor links on folders

@rodcoffani
feat: warning for folders public links
761f48a 
- only for folders with RW permissions
- modal if the link is RW when creating
- div if the permission was updated after
@rodcoffani
feat: add a maxDate prop on datepicker
e6c7b25
@rodcoffani
feat: default expiration dates
f09e172 
- default expiration date for folders with RW permissions is 30 days
- if the expiration date is set for more than 3 years, is updated
- removes the option to unset expiration dates for RW folders
diocas
diocas requested changes Mar 14, 2025
View reviewed changes
packages/web-app-files/src/components/SideBar/Shares/FileLinks.vue
warningMessage.className = 'oc-mb-m oc-p-s oc-background-secondary oc-rounded'
warningMessage.id = 'files-file-link-warning'
warningMessage.innerHTML = $gettext(
'Anonymously writable folders might be abused to store illicit material. <span class="oc-text-bold">Therefore, the default expiration time has been set to one month.</span> Please consider sharing to specific users or groups if the intended audience has a CERN (primary or external) account.'
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is ok, but we should push this upstream, so I would try to improve a little bit more.

That means that the message needs to be configurable (and not hard copied in two different places), in config.json. I would take that as the condition to show the warning message (if config is set, then we show it when adding a folder with editing rights. Otherwise we don't show anything). The message should take into consideration the current used language (check other examples in wich we set different messages depending on the language).

packages/web-app-files/src/components/SideBar/Shares/FileLinks.vue
if (unref(resource).isFolder && options.type === 'edit' && !linkShare.expirationDateTime) {
Object.assign(options, {
...options,
expirationDateTime: DateTime.now().plus({ days: 30 }).endOf('day').toISO()
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please make these things configurable as well (I mean the default and maximum). I would expect to have this in the same place where oC enforces the use of passwords for public links, for example. I'm not sure this comes from config.json, it might be a "capability" (meaning that this is set in the backend and enforced there as well).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@diocas diocas diocas requested changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rodcoffani @diocas