Add support for sending the password for a share by Nextcloud Talk #1049
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Why did you make it so complicated and coded talk into the Ui? |
| setupRequestPasswordButton: function() { | ||
| // "submit-wrapper" is used to mimic the login button and thus get | ||
| // automatic colouring of the confirm icon by the Theming app | ||
| $('main').append('<div id="submit-wrapper" class="request-password-wrapper">' + |
There was a problem hiding this comment.
missing the . before main ?
There was a problem hiding this comment.
No, it refers to an element, not to a class.
danxuliu
force-pushed
the
add-support-for-sending-the-password-for-a-share-by-nextcloud-talk
branch
5 times, most recently
from
68710ea to
1c16e86
Compare
|
@nickvergessen Feel free to merge - I will merge the server PR now. |
21 tasks
nickvergessen
force-pushed
the
add-support-for-sending-the-password-for-a-share-by-nextcloud-talk
branch
2 times, most recently
from
5f8c7b6 to
989aac2
Compare
| 'default' => '', | ||
| ]); | ||
| $table->addColumn('object_id', Type::STRING, [ | ||
| 'notnull' => true, |
|
|
||
| if (!$table->hasColumn('object_type')) { | ||
| $table->addColumn('object_type', Type::STRING, [ | ||
| 'notnull' => true, |
|
@danxuliu I added some more commits, please have a look. I'm fine with merging it like that for now. If you manage to get calling in the "side"bar working we can simply revert the last commit and are back to the JS mode. |
nickvergessen
approved these changes
Jul 25, 2018
nickvergessen
force-pushed
the
add-support-for-sending-the-password-for-a-share-by-nextcloud-talk
branch
from
f232170 to
08fea27
Compare
danxuliu
force-pushed
the
add-support-for-sending-the-password-for-a-share-by-nextcloud-talk
branch
from
08fea27 to
2e66db4
Compare
|
I have cleaned up a bit the commit history, fixed some issues with the layout due to the changes in the server, and made the Request password link look like a button. |
danxuliu
commented
Jul 31, 2018
|
|
||
| if (!$table->hasColumn('object_type')) { | ||
| $table->addColumn('object_type', Type::STRING, [ | ||
| 'notnull' => false, |
There was a problem hiding this comment.
Why this change? Were not empty strings allowed already (in fact the default value is an empty string)?
There was a problem hiding this comment.
All hail to oracle, storing empty string as null which then fails.
There was a problem hiding this comment.
Urg... Thanks for the explanation, I added it to the commit message for future reference.
danxuliu
force-pushed
the
add-support-for-sending-the-password-for-a-share-by-nextcloud-talk
branch
2 times, most recently
from
bac2e68 to
815b059
Compare
Note that in Oracle string fields have to be nullable to be able to set empty strings on them. As the table "comments" also has columns named "object_type" and "object_id" they must be namespaced when the last comment is included in the room information; otherwise the created comment object would have the object type and id from the room instead of from the comment. Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com> Signed-off-by: Joas Schilling <coding@schilljs.com>
Associating a room to another object is optional; by default a room is not associated to any object. The association is just a "flag" on the room; any special behaviour for an association must be implemented as needed outside the room (for example, by responding to events emitted by the room). Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
Due to their nature there is no point in keeping a room to request the password of a share once any of the participants has left, so they are automatically destroyed in that case. Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
The rooms to request the password for a share are public rooms, so anyone could join them provided she knows its token. Thus, now it is enforced that only a single participant besides the owner can join the room. Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
Before the public share auth page is rendered an event is dispatched that can be used by apps to load additional scripts. This event is now used to load the scripts that, when run on the browser, will inject the Talk UI as needed in the page generated by the server. The scripts will be loaded only when the share has the "send password by Talk" option enabled; they add a button to the page that, when pressed, creates a new public share auth room with the sharer and shows, in a sidebar, the Talk UI for that room. Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
Currently the embedded UI is a big hack that just shows the desired part of the main UI, but the whole UI and its callbacks are being run nevertheless. This will be cleaned at a later time, but for the time being the embedded UI just overrides the conflicting functions from the main UI to prevent them from being executed and mess with the embedded UI. Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
When the main UI is used, during a conversation the browser shows the URL for the conversation, and when the user leaves the room, either explicitly or implicitly due to a conversation ending, the URL is set to the main Talk URL. However, when the embedded UI is used, during the conversation the browser shows the URL for the public share authentication page, as the conversation is just an extra element of that page. Thus, when the conversation ends, the URL should not be modified. Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
When the sharer leaves the conversation the conversation ends, and the Talk sidebar just shows "This conversation has ended". In that case the Talk sidebar is no longer useful, so it is automatically closed after a small delay. Signed-off-by: Daniel Calviño Sánchez <danxuliu@gmail.com>
Signed-off-by: Joas Schilling <coding@schilljs.com>
Signed-off-by: Joas Schilling <coding@schilljs.com>
Signed-off-by: Joas Schilling <coding@schilljs.com>
Signed-off-by: Joas Schilling <coding@schilljs.com>
Signed-off-by: Joas Schilling <coding@schilljs.com>
danxuliu
force-pushed
the
add-support-for-sending-the-password-for-a-share-by-nextcloud-talk
branch
from
815b059 to
112c73b
Compare
nickvergessen
deleted the
add-support-for-sending-the-password-for-a-share-by-nextcloud-talk
branch
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Talk part of nextcloud/server#10238
When a file is shared by email the file can be accessed by anyone as long as the token of the share is known, so to limit that access the share can be protected with a password. When a password was set it was also sent by email to the sharee. This pull request (and its server counterpart) adds another option: sending the password with Nextcloud Talk.
Now when the sharer protects the share with a password no email is sent. Instead, when the receiver tries to open the share the public share authentication page is shown, which now contains a Request password button. When that button is clicked an embedded Nextcloud UI is shown and a conversation is started between the sharer and the user trying to open the file, which allows the sharer to verify the identity of the user before telling her the password and thus granting her access to the file.
Note that it is the sharer who decides whether the receiver of an email share can call her or not; you will not be bothered with password requests if you do not choose to ;-)
This pull request provides the handling of rooms and the Talk UI that is embedded in the public share authentication page; the template
publicshareauthof Talk is appended to the one in the server when needed (that is, when sending the password by Talk is enabled for the share), and that template provides some JavaScript code that, when run on the browser, adjusts the page generated by the server to inject the Talk UI as needed.Currently the embedded Talk UI just provides chat; this will be improved in a different pull request with call support. Due to how the UI is injected this can be done without requiring any changes in the server, only in the Talk app.
Also note that there are other shortcomings, like no information about whether the sharer has joined the room or not, or not being able to open and close the sidebar at will, which causes them to always overlap with the password input field during the conversation on narrow screens. For the time being it is just a basic UI... but at least it works :-)
Rooms can now be associated with arbitrary objects using an object type and an object id. This makes possible to provide custom behaviour for rooms based on that type using hooks to, for example, destroy the room as soon as one of the participants leave it or prevent extra users from joining the room.
The "share:password" rooms are a bit special, as they are one-time rooms created by one user, the receiver of the share, in behalf of another user, the sharer, who then becomes the owner of the room. In standard rooms no notification is sent to the owner when a room is created, so a special notification was added for this case. Depending on which one gets merged first, this pull request or #1029 will need to be updated.
@pygi @Ivansss The notification works without problems in the WebUI, but I do not know if you may need to change something in the mobile apps to handle it. It would be good too to improve the message to include the name of the file or something like that, but that is something for another pull request too ;-)