Add EAS version configuration per user via perms system#74

Merged

TDannhauer merged 1 commit intoFRAMEWORK_6_0from

fix/refactor_auth_handling

Mar 31, 2026

Contributor

TDannhauer commented Mar 31, 2026

Add EAS version configuration per user via perms system


          Refactor authentication to handle empty registry auth

4a28276

Refactor authentication method to ensure username is set correctly. Added logging for fallback username when registry auth is empty.

TDannhauer requested a review from ralflang

March 31, 2026 09:12

ralflang approved these changes

View reviewed changes

Member

ralflang left a comment

Generally good. The globals topics are all not blocking but can be refactored later. On the delegation to parent constructor you need to decide, I am not the expert on ActiveSync.

lib/Horde/Core/ActiveSync/Driver.php

                           }
                       }
-                      return parent::authenticate($username, $password, $domain);

Member

ralflang Mar 31, 2026

This sets your user's username and password as parameters in the base driver. The third parameter domain is never used.

Where does your new code populate this?

I think it is risky not to do it.

    public function authenticate($username, $password, $domain = null)
    {
        $this->_authUser = $username;
        $this->_authPass = $password;

        return true;
    }

lib/Horde/Core/ActiveSync/Driver.php

+                              $authUsername = (string)$get['User'];
+                          }
+                      }
+                      if ($authUsername === null && !empty($GLOBALS['registry']->getAuth())) {

Member

ralflang Mar 31, 2026

This is not needed in combination with #75 - The registry is now injected as a dependency and you can use it without accessing the global.

lib/Horde/Core/ActiveSync/Driver.php

+                          }
+                      }
+                      if ($authUsername === null && !empty($GLOBALS['registry']->getAuth())) {
+                          $authUsername = (string)$GLOBALS['registry']->getAuth();

Member

ralflang Mar 31, 2026

This flattens a null or false ("Not authenticated") to an empty string. (which might be what you want)

lib/Horde/Core/ActiveSync/Driver.php

+                      if ($authUsername === null && !empty($GLOBALS['registry']->getAuth())) {
+                          $authUsername = (string)$GLOBALS['registry']->getAuth();
+                      }
+                      if ($authUsername === null) {

Member

ralflang Mar 31, 2026

So you never get here.

lib/Horde/Core/ActiveSync/Driver.php

+                          return;
+                      }
+                      $mode = !empty($GLOBALS['conf']['activesync']['version_mode'])

Member

ralflang Mar 31, 2026

This should be a LegacyMergedConfig object in the constructor

lib/Horde/Core/ActiveSync/Driver.php

+                      if ($mode === 'device') {
+                          $allowed = $this->_getDeviceScopedVersionPermission($server, $username);
+                      } else {
+                          $perms = $GLOBALS['injector']->getInstance('Horde_Perms');

Member

ralflang Mar 31, 2026

This should be constructor injected

TDannhauer merged commit 87d48bf into FRAMEWORK_6_0

0 of 4 checks passed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet