function FileFieldWidgetTest::testTemporaryFileRemovalExploit

Same name in other branches

8.9.x core/modules/file/tests/src/Functional/FileFieldWidgetTest.php \Drupal\Tests\file\Functional\FileFieldWidgetTest::testTemporaryFileRemovalExploit()
10 core/modules/file/tests/src/Functional/FileFieldWidgetTest.php \Drupal\Tests\file\Functional\FileFieldWidgetTest::testTemporaryFileRemovalExploit()
11.x core/modules/file/tests/src/Functional/FileFieldWidgetTest.php \Drupal\Tests\file\Functional\FileFieldWidgetTest::testTemporaryFileRemovalExploit()

Tests exploiting the temporary file removal of another user using fid.

File

core/modules/file/tests/src/Functional/FileFieldWidgetTest.php, line 430

Class

FileFieldWidgetTest: Tests the file field widget with public and private files.

Namespace

Drupal\Tests\file\Functional

Code

public function testTemporaryFileRemovalExploit() {
    // Create a victim user.
    $victim_user = $this->drupalCreateUser();
    // Create an attacker user.
    $attacker_user = $this->drupalCreateUser([
        'access content',
        'create article content',
        'edit any article content',
    ]);
    // Log in as the attacker user.
    $this->drupalLogin($attacker_user);
    // Perform tests using the newly created users.
    $this->doTestTemporaryFileRemovalExploit($victim_user, $attacker_user);
}

Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.

function FileFieldWidgetTest::testTemporaryFileRemovalExploit

File

Class

Namespace

Code

Search drupal 9

API Navigation

Breadcrumb

function FileFieldWidgetTest::testTemporaryFileRemovalExploit

File

Class

Namespace

Code

Search drupal 9

API Navigation