6d5aec8618
Summary: If your install isn't public, users can't see the Auth or People applications while logged out, so we can't load their invites. Allow this query to go through no matter who the viewing user is. Test Plan: Invite flow on `admin.phacility.com` now works better. Reviewers: chad, btrahan Reviewed By: btrahan Subscribers: epriestley Differential Revision: https://secure.phabricator.com/D11765
117 lines
2.7 KiB
PHP
117 lines
2.7 KiB
PHP
<?php
|
|
|
|
final class PhabricatorAuthInviteQuery
|
|
extends PhabricatorCursorPagedPolicyAwareQuery {
|
|
|
|
private $ids;
|
|
private $phids;
|
|
private $emailAddresses;
|
|
private $verificationCodes;
|
|
private $authorPHIDs;
|
|
|
|
public function withIDs(array $ids) {
|
|
$this->ids = $ids;
|
|
return $this;
|
|
}
|
|
|
|
public function withPHIDs(array $phids) {
|
|
$this->phids = $phids;
|
|
return $this;
|
|
}
|
|
|
|
public function withEmailAddresses(array $addresses) {
|
|
$this->emailAddresses = $addresses;
|
|
return $this;
|
|
}
|
|
|
|
public function withVerificationCodes(array $codes) {
|
|
$this->verificationCodes = $codes;
|
|
return $this;
|
|
}
|
|
|
|
public function withAuthorPHIDs(array $phids) {
|
|
$this->authorPHIDs = $phids;
|
|
return $this;
|
|
}
|
|
|
|
protected function loadPage() {
|
|
$table = new PhabricatorAuthInvite();
|
|
$conn_r = $table->establishConnection('r');
|
|
|
|
$data = queryfx_all(
|
|
$conn_r,
|
|
'SELECT * FROM %T %Q %Q %Q',
|
|
$table->getTableName(),
|
|
$this->buildWhereClause($conn_r),
|
|
$this->buildOrderClause($conn_r),
|
|
$this->buildLimitClause($conn_r));
|
|
|
|
$invites = $table->loadAllFromArray($data);
|
|
|
|
// If the objects were loaded via verification code, set a flag to make
|
|
// sure the viewer can see them.
|
|
if ($this->verificationCodes !== null) {
|
|
foreach ($invites as $invite) {
|
|
$invite->setViewerHasVerificationCode(true);
|
|
}
|
|
}
|
|
|
|
return $invites;
|
|
}
|
|
|
|
protected function buildWhereClause(AphrontDatabaseConnection $conn_r) {
|
|
$where = array();
|
|
|
|
if ($this->ids !== null) {
|
|
$where[] = qsprintf(
|
|
$conn_r,
|
|
'id IN (%Ld)',
|
|
$this->ids);
|
|
}
|
|
|
|
if ($this->phids !== null) {
|
|
$where[] = qsprintf(
|
|
$conn_r,
|
|
'phid IN (%Ls)',
|
|
$this->phids);
|
|
}
|
|
|
|
if ($this->emailAddresses !== null) {
|
|
$where[] = qsprintf(
|
|
$conn_r,
|
|
'emailAddress IN (%Ls)',
|
|
$this->emailAddresses);
|
|
}
|
|
|
|
if ($this->verificationCodes !== null) {
|
|
$hashes = array();
|
|
foreach ($this->verificationCodes as $code) {
|
|
$hashes[] = PhabricatorHash::digestForIndex($code);
|
|
}
|
|
|
|
$where[] = qsprintf(
|
|
$conn_r,
|
|
'verificationHash IN (%Ls)',
|
|
$hashes);
|
|
}
|
|
|
|
if ($this->authorPHIDs !== null) {
|
|
$where[] = qsprintf(
|
|
$conn_r,
|
|
'authorPHID IN (%Ls)',
|
|
$this->authorPHIDs);
|
|
}
|
|
|
|
$where[] = $this->buildPagingClause($conn_r);
|
|
|
|
return $this->formatWhereClause($where);
|
|
}
|
|
|
|
public function getQueryApplicationClass() {
|
|
// NOTE: This query is issued by logged-out users, who often will not be
|
|
// able to see applications. They still need to be able to see invites.
|
|
return null;
|
|
}
|
|
|
|
}
|