Uploaded image for project: 'eZ Publish / Platform'
  1. eZ Publish / Platform
  2. EZP-20434

PublicAPI : Deleting a User with an Image attribute, with no Image set, causes the installation root to be recursively removed

    XMLWordPrintable

    Details

    • Sprint:
      Stetind Sprint 6

      Description

      Through the Public API, removing a User object with an empty (no value) Image attribute will trigger a recursive delete on the installation root.

      1. Removing the User triggers a delete operation on all its attributes,
      2. The Image attribute will trigger a file-system delete on its stored image data
      3. LocalFileService::remove will receive a blank string "" from the ImageStore::deleteFieldData method
      4. LocalFileService::remove will in turn use LocalFileService::getFullPath to turn that into an absolute path, relative to the installation root. This absolute path, since it's being built out of <installation root> + <nothing>, is simply an absolute path to the installation root.
      5. Since the $recursive argument is true, this will cause a recursive delete on the entire installation root .

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              Filipe.Dobreira@ez.no Filipe Dobreira (Inactive)
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 4 hours Original Estimate - 4 hours
                4h
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 1 day, 5 hours, 17 minutes
                1d 5h 17m