[MDL-59746] OAuth 2: upgrade_token does not urlencode parameters - Moodle Tracker

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 3.3, 3.4
Fix Version/s: 3.3.2
Component/s: Authentication, Libraries
Labels:
- ci
- triaged

Affected Branches:
MOODLE_33_STABLE, MOODLE_34_STABLE
Fixed Branches:
MOODLE_33_STABLE
Pull from Repository:
git://github.com/Dagefoerde/moodle.git
Pull Master Branch:
~~MDL-59746~~-master
Pull Master Diff URL:
https://github.com/Dagefoerde/moodle/compare/8146b1f06d...MDL-59746-master
Testing Instructions:

Hide

Test that it works with Nextcloud
1. Install the owncloud repository plugin (https://github.com/learnweb/moodle-repository_owncloud).
2. Configure a Nextcloud 12 instance with a Moodle client according to the README of the repository; configure Nextcloud the OAuth 2 service in Moodle accordingly.
3. Open a file upload dialog somewhere and try logging in to Nextcloud
4. Verify that you can see the files from your Nextcloud folder

Test that it still works with other services
1. Configure an OAuth 2 service, e.g. Google, in Moodle to prepare the googledocs repository
2. Open a file upload dialog somewhere and try logging in to Google Docs
3. Verify that you can see the files from your Google Docs folder

Show
Test that it works with Nextcloud 1. Install the owncloud repository plugin ( https://github.com/learnweb/moodle-repository_owncloud ). 2. Configure a Nextcloud 12 instance with a Moodle client according to the README of the repository; configure Nextcloud the OAuth 2 service in Moodle accordingly. 3. Open a file upload dialog somewhere and try logging in to Nextcloud 4. Verify that you can see the files from your Nextcloud folder Test that it still works with other services 1. Configure an OAuth 2 service, e.g. Google, in Moodle to prepare the googledocs repository 2. Open a file upload dialog somewhere and try logging in to Google Docs 3. Verify that you can see the files from your Google Docs folder

Description

Nextcloud creates authorization codes (grants) as strings of the form +mdDIGjYe8en1p5y7fMI/Vwc3SOgrD5NOmTj40vQTKsffMHXp5ZvQxRIaz4e2a+CtBg3lzj3/QaUpIhl8z0SrzHpI1GSUc8EIr8dvA324B7p54QARCuyU+aEMK3K+Ayw.

When Moodle upgrades this grant to obtain an access token, it sends this string (and client ID, secret) as-is, taking care only of "&" as a special character. Nextcloud urldecodes this string and replaces all occurrences of + with spaces, thus rendering the token invalid.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

capture-for-jira-screenshot-20170816-093520-695.png
131 kB
16/Aug/17 8:05 PM

Issue Links

blocks

MDL-58943 Create Nextcloud integration, similar to G-Suite and Office

Closed

has a non-specific relationship to

CONTRIB-6950 Plugin approval: ownCloud (repository_owncloud)

Closed

Activity

People

Assignee:: Jan Dageförde

Reporter:: Jan Dageförde

Peer reviewer:: Jake Dallimore

Integrator:: Andrew Lyons

Tester:: Ankit Agarwal

Participants:: Andrew Lyons, Ankit Agarwal, CiBoT, Jake Dallimore, Jan Dageförde

Component watchers:: David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo

Votes:: 3 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 08/Aug/17 12:10 PM

Updated:: 18/Aug/17 3:28 AM

Resolved:: 18/Aug/17 3:28 AM

Fix Release Date:: 11/Sep/17