Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

File integrity gives bad advice on symlinks #16551

Open
gerard76 opened this issue Oct 8, 2020 · 6 comments
Open

File integrity gives bad advice on symlinks #16551

gerard76 opened this issue Oct 8, 2020 · 6 comments
Labels
Bug For errors / faults / flaws / inconsistencies etc. Help wanted Beginner friendly issues or issues where we'd highly appreciate community's help and involvement.
Milestone
For Prioritization

Comments

@gerard76
Copy link

gerard76 commented Oct 8, 2020
edited

I added symlinks to matomo.js and matomo.php because matomo is a keyword that is blocked by some blockers.

File integrity is correct in pointing out they should not be there, but the solution it proposes is wrong.
Screenshot 2020-10-08 at 13 56 40

Matomo 3.14.1

2020-10-10 - edit fixed typo
@Findus23 Findus23 transferred this issue from matomo-org/matomo-package Oct 8, 2020
@Findus23 Findus23 added the Help wanted Beginner friendly issues or issues where we'd highly appreciate community's help and involvement. label Oct 8, 2020
@tsteur
Copy link
Member

tsteur commented Oct 8, 2020

Hi @gerard76

I think this is actually expected behaviour and the solution be to mark these files as "to be ignored" by creating a file config/config.php like with content like this:

<?php
return array(
    'fileintegrity.ignore' => DI\add(array(
        'w.js',
        'w.php',
    ))
);

If someone else can confirm this is expected behaviour then this could be put in an FAQ.

@Findus23
Copy link
Member

Findus23 commented Oct 8, 2020

I think the bug reported isn't that those files are shown, but that the check recommends deleting the original files instead of the "incorrect" symlinks.

If someone wants to fix this, they are welcome to submit a Pull Request.

@tsteur
Copy link
Member

tsteur commented Oct 8, 2020

👍 didn't notice there was a different message. For this particular case it would actually remove those files by adding the config but of course the actual bug remains which is the use of realpath in https://github.com/matomo-org/matomo/blob/4.0.0-b2/core/FileIntegrity.php#L75

@tsteur tsteur added the Bug For errors / faults / flaws / inconsistencies etc. label Oct 8, 2020
@tsteur tsteur added this to the Priority Backlog (Help wanted) milestone Oct 8, 2020
@aureq
Copy link

aureq commented Oct 9, 2020

Hi @gerard76 Instead of using symlinks, may I suggest you to use aliasing instead? This way you won't need any symlinks and you should be able to achieve what you want.

@gerard76
Copy link
Author

Sure you may. I have no problems with the symlinks though. Just reporting a bug.

@narfk
Copy link

narfk commented Nov 26, 2020
edited 

Another solution (Apache, .htaccess)

<IfModule rewrite_module>
	RewriteEngine On
	RewriteRule ^/w.(js|php)$ /piwik/piwik.$1 [NC,L]
</IfModule>

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Bug For errors / faults / flaws / inconsistencies etc. Help wanted Beginner friendly issues or issues where we'd highly appreciate community's help and involvement.
Projects
None yet
Milestone
For Prioritization
Development

No branches or pull requests
6 participants
@tsteur @mattab @gerard76 @aureq @Findus23 @narfk