Nice! Go for it!

Reminder:
We must not forget to check Apache/nginx rules to allow web access for the occ command (according to #21985 https://domain.tld/owncloud/index.php/occ/app:list?format=json).

Maybe also a check in core if web access to occ is possible and log this - else we never find why it is not working...

Possible changes needed:

• Apache (in core)

 RewriteRule ^(\.|autotest|occ|issue|indie|db_|console).* - [R=404,L]

• nginx (in the documentation):

location ~ ^/(?:\.|autotest|occ|issue|indie|db_|console) {
        deny all;
    }

Woot index.php/occ is called, not the occ file directly?

Woot index.php/occ is called, not the occ file directly?

Probably because the ajax request needs to be translated to actual arguments.
Might work as well to call the "occ" one directly but then you lose the advantage of routing / parameter mapping.

Probably because the ajax request needs to be translated to actual arguments.
Might work as well to call the "occ" one directly but then you lose the advantage of routing / parameter mapping.

Well you shouldn't call it directly, because it's a bash file ;) But that is exactly what I wanted to point out. The occ file is still not needed to be accessible, so why should any rewrite rule require changing?

@nickvergessen you are right.
I have overseen that https://domain.tld/owncloud/index.php/occ/app:list?format=json does not access occ via ownclouds root as a shell script. Root access is covered and secured by the rewrite rules. Sorry for the confusion. 😄

@VicDeo what's the status with this? THX

Code already looks good so far

@PVince81 The last step is

• Bypass maintenance mode

@VicDeo when you change labels please post a comment. Changing labels doesn't trigger a github notification.

So this is ready for review ?

@nickvergessen thanks, everything's addressed

OccController has no unit tests - this has to be added please

@DeepDiver1975 done

@VicDeo integration tests look fishy - please have a look

21:23:59 [Mon Jun 20 21:24:55 2016] Argument 1 passed to OC::checkMaintenanceMode() must implement interface OCP\IRequest, none given, called in /ssd/jenkins/workspace/ocs-api-integration-tests-ci/public.php on line 38 and defined at /ssd/jenkins/workspace/ocs-api-integration-tests-ci/lib/base.php#280
21:23:59 [Mon Jun 20 21:24:55 2016] Undefined variable: request at /ssd/jenkins/workspace/ocs-api-integration-tests-ci/lib/base.php#282
21:23:59 [Mon Jun 20 21:24:55 2016] PHP Fatal error:  Call to a member function getScriptName() on null in /ssd/jenkins/workspace/ocs-api-integration-tests-ci/lib/base.php on line 282
21:23:59 [Mon Jun 20 21:24:55 2016] PHP Stack trace:
21:23:59 [Mon Jun 20 21:24:55 2016] PHP   1. {main}() /ssd/jenkins/workspace/ocs-api-integration-tests-ci/public.php:0
21:23:59 [Mon Jun 20 21:24:55 2016] PHP   2. OC::checkMaintenanceMode() /ssd/jenkins/workspace/ocs-api-integration-tests-ci/public.php:38
21:23:59 [Mon Jun 20 21:24:55 2016] ::1:56378 [500]: /public.php/webdav/ - Call to a member function getScriptName() on null in /ssd/jenkins/workspace/ocs-api-integration-tests-ci/lib/base.php on line 282
21:23:59 [Mon Jun 20 21:24:55 2016] Call to a member function getScriptName() on null at /ssd/jenkins/workspace/ocs-api-integration-tests-ci/lib/base.php#282
21:23:59 [Mon Jun 20 21:24:55 2016] Internal Server Error

👍

stable9: #25222

This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.