Inspection of "Merge pull request #53887 from nextcloud/fix/lower..." - nextcloud/server - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( db4450...1bc190 )

by John

created 2025-07-11 07:03 UTC

Status

Indentation +628 added lines, -628 removed lines patch added patch discarded remove patch

@@ -44,632 +44,632 @@
 block discarded – undo
 use function json_encode;
 
 class User implements IUser {
-	private const CONFIG_KEY_MANAGERS = 'manager';
-
-	private IConfig $config;
-	private IURLGenerator $urlGenerator;
-
-	/** @var IAccountManager */
-	protected $accountManager;
-
-	/** @var string|null */
-	private $displayName;
-
-	/** @var bool|null */
-	private $enabled;
-
-	/** @var Emitter|Manager|null */
-	private $emitter;
-
-	/** @var string */
-	private $home;
-
-	private ?int $lastLogin = null;
-	private ?int $firstLogin = null;
-
-	/** @var IAvatarManager */
-	private $avatarManager;
-
-	public function __construct(
-		private string $uid,
-		private ?UserInterface $backend,
-		private IEventDispatcher $dispatcher,
-		$emitter = null,
-		?IConfig $config = null,
-		$urlGenerator = null,
-	) {
-		$this->emitter = $emitter;
-		$this->config = $config ?? \OCP\Server::get(IConfig::class);
-		$this->urlGenerator = $urlGenerator ?? \OCP\Server::get(IURLGenerator::class);
-	}
-
-	/**
-	 * get the user id
-	 *
-	 * @return string
-	 */
-	public function getUID() {
-		return $this->uid;
-	}
-
-	/**
-	 * get the display name for the user, if no specific display name is set it will fallback to the user id
-	 *
-	 * @return string
-	 */
-	public function getDisplayName() {
-		if ($this->displayName === null) {
-			$displayName = '';
-			if ($this->backend && $this->backend->implementsActions(Backend::GET_DISPLAYNAME)) {
-				// get display name and strip whitespace from the beginning and end of it
-				$backendDisplayName = $this->backend->getDisplayName($this->uid);
-				if (is_string($backendDisplayName)) {
-					$displayName = trim($backendDisplayName);
-				}
-			}
-
-			if (!empty($displayName)) {
-				$this->displayName = $displayName;
-			} else {
-				$this->displayName = $this->uid;
-			}
-		}
-		return $this->displayName;
-	}
-
-	/**
-	 * set the displayname for the user
-	 *
-	 * @param string $displayName
-	 * @return bool
-	 *
-	 * @since 25.0.0 Throw InvalidArgumentException
-	 * @throws \InvalidArgumentException
-	 */
-	public function setDisplayName($displayName) {
-		$displayName = trim($displayName);
-		$oldDisplayName = $this->getDisplayName();
-		if ($this->backend->implementsActions(Backend::SET_DISPLAYNAME) && !empty($displayName) && $displayName !== $oldDisplayName) {
-			/** @var ISetDisplayNameBackend $backend */
-			$backend = $this->backend;
-			$result = $backend->setDisplayName($this->uid, $displayName);
-			if ($result) {
-				$this->displayName = $displayName;
-				$this->triggerChange('displayName', $displayName, $oldDisplayName);
-			}
-			return $result !== false;
-		}
-		return false;
-	}
-
-	/**
-	 * @inheritDoc
-	 */
-	public function setEMailAddress($mailAddress) {
-		$this->setSystemEMailAddress($mailAddress);
-	}
-
-	/**
-	 * @inheritDoc
-	 */
-	public function setSystemEMailAddress(string $mailAddress): void {
-		$oldMailAddress = $this->getSystemEMailAddress();
-		$mailAddress = mb_strtolower(trim($mailAddress));
-
-		if ($mailAddress === '') {
-			$this->config->deleteUserValue($this->uid, 'settings', 'email');
-		} else {
-			$this->config->setUserValue($this->uid, 'settings', 'email', $mailAddress);
-		}
-
-		$primaryAddress = $this->getPrimaryEMailAddress();
-		if ($primaryAddress === $mailAddress) {
-			// on match no dedicated primary settings is necessary
-			$this->setPrimaryEMailAddress('');
-		}
-
-		if ($oldMailAddress !== strtolower($mailAddress)) {
-			$this->triggerChange('eMailAddress', $mailAddress, $oldMailAddress);
-		}
-	}
-
-	/**
-	 * @inheritDoc
-	 */
-	public function setPrimaryEMailAddress(string $mailAddress): void {
-		$mailAddress = mb_strtolower(trim($mailAddress));
-		if ($mailAddress === '') {
-			$this->config->deleteUserValue($this->uid, 'settings', 'primary_email');
-			return;
-		}
-
-		$this->ensureAccountManager();
-		$account = $this->accountManager->getAccount($this);
-		$property = $account->getPropertyCollection(IAccountManager::COLLECTION_EMAIL)
-			->getPropertyByValue($mailAddress);
-
-		if ($property === null || $property->getLocallyVerified() !== IAccountManager::VERIFIED) {
-			throw new InvalidArgumentException('Only verified emails can be set as primary');
-		}
-		$this->config->setUserValue($this->uid, 'settings', 'primary_email', $mailAddress);
-	}
-
-	private function ensureAccountManager() {
-		if (!$this->accountManager instanceof IAccountManager) {
-			$this->accountManager = \OC::$server->get(IAccountManager::class);
-		}
-	}
-
-	/**
-	 * returns the timestamp of the user's last login or 0 if the user did never
-	 * login
-	 */
-	public function getLastLogin(): int {
-		if ($this->lastLogin === null) {
-			$this->lastLogin = (int)$this->config->getUserValue($this->uid, 'login', 'lastLogin', 0);
-		}
-		return $this->lastLogin;
-	}
-
-	/**
-	 * returns the timestamp of the user's last login or 0 if the user did never
-	 * login
-	 */
-	public function getFirstLogin(): int {
-		if ($this->firstLogin === null) {
-			$this->firstLogin = (int)$this->config->getUserValue($this->uid, 'login', 'firstLogin', 0);
-		}
-		return $this->firstLogin;
-	}
-
-	/**
-	 * updates the timestamp of the most recent login of this user
-	 */
-	public function updateLastLoginTimestamp(): bool {
-		$previousLogin = $this->getLastLogin();
-		$firstLogin = $this->getFirstLogin();
-		$now = time();
-		$firstTimeLogin = $previousLogin === 0;
-
-		if ($now - $previousLogin > 60) {
-			$this->lastLogin = $now;
-			$this->config->setUserValue($this->uid, 'login', 'lastLogin', (string)$this->lastLogin);
-		}
-
-		if ($firstLogin === 0) {
-			if ($firstTimeLogin) {
-				$this->firstLogin = $now;
-			} else {
-				/* Unknown first login, most likely was before upgrade to Nextcloud 31 */
-				$this->firstLogin = -1;
-			}
-			$this->config->setUserValue($this->uid, 'login', 'firstLogin', (string)$this->firstLogin);
-		}
-
-		return $firstTimeLogin;
-	}
-
-	/**
-	 * Delete the user
-	 *
-	 * @return bool
-	 */
-	public function delete() {
-		if ($this->backend === null) {
-			\OCP\Server::get(LoggerInterface::class)->error('Cannot delete user: No backend set');
-			return false;
-		}
-
-		if ($this->emitter) {
-			/** @deprecated 21.0.0 use BeforeUserDeletedEvent event with the IEventDispatcher instead */
-			$this->emitter->emit('\OC\User', 'preDelete', [$this]);
-		}
-		$this->dispatcher->dispatchTyped(new BeforeUserDeletedEvent($this));
-
-		// Set delete flag on the user - this is needed to ensure that the user data is removed if there happen any exception in the backend
-		// because we can not restore the user meaning we could not rollback to any stable state otherwise.
-		$this->config->setUserValue($this->uid, 'core', 'deleted', 'true');
-		// We also need to backup the home path as this can not be reconstructed later if the original backend uses custom home paths
-		$this->config->setUserValue($this->uid, 'core', 'deleted.home-path', $this->getHome());
-
-		// Try to delete the user on the backend
-		$result = $this->backend->deleteUser($this->uid);
-		if ($result === false) {
-			// The deletion was aborted or something else happened, we are in a defined state, so remove the delete flag
-			$this->config->deleteUserValue($this->uid, 'core', 'deleted');
-			return false;
-		}
-
-		// We have to delete the user from all groups
-		$groupManager = \OCP\Server::get(IGroupManager::class);
-		foreach ($groupManager->getUserGroupIds($this) as $groupId) {
-			$group = $groupManager->get($groupId);
-			if ($group) {
-				$this->dispatcher->dispatchTyped(new BeforeUserRemovedEvent($group, $this));
-				$group->removeUser($this);
-				$this->dispatcher->dispatchTyped(new UserRemovedEvent($group, $this));
-			}
-		}
-
-		$commentsManager = \OCP\Server::get(ICommentsManager::class);
-		$commentsManager->deleteReferencesOfActor('users', $this->uid);
-		$commentsManager->deleteReadMarksFromUser($this);
-
-		$avatarManager = \OCP\Server::get(AvatarManager::class);
-		$avatarManager->deleteUserAvatar($this->uid);
-
-		$notificationManager = \OCP\Server::get(INotificationManager::class);
-		$notification = $notificationManager->createNotification();
-		$notification->setUser($this->uid);
-		$notificationManager->markProcessed($notification);
-
-		$accountManager = \OCP\Server::get(AccountManager::class);
-		$accountManager->deleteUser($this);
-
-		$database = \OCP\Server::get(IDBConnection::class);
-		try {
-			// We need to create a transaction to make sure we are in a defined state
-			// because if all user values are removed also the flag is gone, but if an exception happens (e.g. database lost connection on the set operation)
-			// exactly here we are in an undefined state as the data is still present but the user does not exist on the system anymore.
-			$database->beginTransaction();
-			// Remove all user settings
-			$this->config->deleteAllUserValues($this->uid);
-			// But again set flag that this user is about to be deleted
-			$this->config->setUserValue($this->uid, 'core', 'deleted', 'true');
-			$this->config->setUserValue($this->uid, 'core', 'deleted.home-path', $this->getHome());
-			// Commit the transaction so we are in a defined state: either the preferences are removed or an exception occurred but the delete flag is still present
-			$database->commit();
-		} catch (\Throwable $e) {
-			$database->rollback();
-			throw $e;
-		}
-
-		if ($this->emitter !== null) {
-			/** @deprecated 21.0.0 use UserDeletedEvent event with the IEventDispatcher instead */
-			$this->emitter->emit('\OC\User', 'postDelete', [$this]);
-		}
-		$this->dispatcher->dispatchTyped(new UserDeletedEvent($this));
-
-		// Finally we can unset the delete flag and all other states
-		$this->config->deleteAllUserValues($this->uid);
-
-		return true;
-	}
-
-	/**
-	 * Set the password of the user
-	 *
-	 * @param string $password
-	 * @param string $recoveryPassword for the encryption app to reset encryption keys
-	 * @return bool
-	 */
-	public function setPassword($password, $recoveryPassword = null) {
-		$this->dispatcher->dispatchTyped(new BeforePasswordUpdatedEvent($this, $password, $recoveryPassword));
-		if ($this->emitter) {
-			$this->emitter->emit('\OC\User', 'preSetPassword', [$this, $password, $recoveryPassword]);
-		}
-		if ($this->backend->implementsActions(Backend::SET_PASSWORD)) {
-			/** @var ISetPasswordBackend $backend */
-			$backend = $this->backend;
-			$result = $backend->setPassword($this->uid, $password);
-
-			if ($result !== false) {
-				$this->dispatcher->dispatchTyped(new PasswordUpdatedEvent($this, $password, $recoveryPassword));
-				if ($this->emitter) {
-					$this->emitter->emit('\OC\User', 'postSetPassword', [$this, $password, $recoveryPassword]);
-				}
-			}
-
-			return !($result === false);
-		} else {
-			return false;
-		}
-	}
-
-	public function getPasswordHash(): ?string {
-		if (!($this->backend instanceof IPasswordHashBackend)) {
-			return null;
-		}
-		return $this->backend->getPasswordHash($this->uid);
-	}
-
-	public function setPasswordHash(string $passwordHash): bool {
-		if (!($this->backend instanceof IPasswordHashBackend)) {
-			return false;
-		}
-		return $this->backend->setPasswordHash($this->uid, $passwordHash);
-	}
-
-	/**
-	 * get the users home folder to mount
-	 *
-	 * @return string
-	 */
-	public function getHome() {
-		if (!$this->home) {
-			/** @psalm-suppress UndefinedInterfaceMethod Once we get rid of the legacy implementsActions, psalm won't complain anymore */
-			if (($this->backend instanceof IGetHomeBackend || $this->backend->implementsActions(Backend::GET_HOME)) && $home = $this->backend->getHome($this->uid)) {
-				$this->home = $home;
-			} else {
-				$this->home = $this->config->getSystemValueString('datadirectory', \OC::$SERVERROOT . '/data') . '/' . $this->uid;
-			}
-		}
-		return $this->home;
-	}
-
-	/**
-	 * Get the name of the backend class the user is connected with
-	 *
-	 * @return string
-	 */
-	public function getBackendClassName() {
-		if ($this->backend instanceof IUserBackend) {
-			return $this->backend->getBackendName();
-		}
-		return get_class($this->backend);
-	}
-
-	public function getBackend(): ?UserInterface {
-		return $this->backend;
-	}
-
-	/**
-	 * Check if the backend allows the user to change their avatar on Personal page
-	 *
-	 * @return bool
-	 */
-	public function canChangeAvatar() {
-		if ($this->backend instanceof IProvideAvatarBackend || $this->backend->implementsActions(Backend::PROVIDE_AVATAR)) {
-			/** @var IProvideAvatarBackend $backend */
-			$backend = $this->backend;
-			return $backend->canChangeAvatar($this->uid);
-		}
-		return true;
-	}
-
-	/**
-	 * check if the backend supports changing passwords
-	 *
-	 * @return bool
-	 */
-	public function canChangePassword() {
-		return $this->backend->implementsActions(Backend::SET_PASSWORD);
-	}
-
-	/**
-	 * check if the backend supports changing display names
-	 *
-	 * @return bool
-	 */
-	public function canChangeDisplayName() {
-		if (!$this->config->getSystemValueBool('allow_user_to_change_display_name', true)) {
-			return false;
-		}
-		return $this->backend->implementsActions(Backend::SET_DISPLAYNAME);
-	}
-
-	public function canChangeEmail(): bool {
-		// Fallback to display name value to avoid changing behavior with the new option.
-		return $this->config->getSystemValueBool('allow_user_to_change_email', $this->config->getSystemValueBool('allow_user_to_change_display_name', true));
-	}
-
-	/**
-	 * check if the user is enabled
-	 *
-	 * @return bool
-	 */
-	public function isEnabled() {
-		$queryDatabaseValue = function (): bool {
-			if ($this->enabled === null) {
-				$enabled = $this->config->getUserValue($this->uid, 'core', 'enabled', 'true');
-				$this->enabled = $enabled === 'true';
-			}
-			return $this->enabled;
-		};
-		if ($this->backend instanceof IProvideEnabledStateBackend) {
-			return $this->backend->isUserEnabled($this->uid, $queryDatabaseValue);
-		} else {
-			return $queryDatabaseValue();
-		}
-	}
-
-	/**
-	 * set the enabled status for the user
-	 *
-	 * @return void
-	 */
-	public function setEnabled(bool $enabled = true) {
-		$oldStatus = $this->isEnabled();
-		$setDatabaseValue = function (bool $enabled): void {
-			$this->config->setUserValue($this->uid, 'core', 'enabled', $enabled ? 'true' : 'false');
-			$this->enabled = $enabled;
-		};
-		if ($this->backend instanceof IProvideEnabledStateBackend) {
-			$queryDatabaseValue = function (): bool {
-				if ($this->enabled === null) {
-					$enabled = $this->config->getUserValue($this->uid, 'core', 'enabled', 'true');
-					$this->enabled = $enabled === 'true';
-				}
-				return $this->enabled;
-			};
-			$enabled = $this->backend->setUserEnabled($this->uid, $enabled, $queryDatabaseValue, $setDatabaseValue);
-			if ($oldStatus !== $enabled) {
-				$this->triggerChange('enabled', $enabled, $oldStatus);
-			}
-		} elseif ($oldStatus !== $enabled) {
-			$setDatabaseValue($enabled);
-			$this->triggerChange('enabled', $enabled, $oldStatus);
-		}
-	}
-
-	/**
-	 * get the users email address
-	 *
-	 * @return string|null
-	 * @since 9.0.0
-	 */
-	public function getEMailAddress() {
-		return $this->getPrimaryEMailAddress() ?? $this->getSystemEMailAddress();
-	}
-
-	/**
-	 * @inheritDoc
-	 */
-	public function getSystemEMailAddress(): ?string {
-		$email = $this->config->getUserValue($this->uid, 'settings', 'email', null);
-		return $email ? mb_strtolower(trim($email)) : null;
-	}
-
-	/**
-	 * @inheritDoc
-	 */
-	public function getPrimaryEMailAddress(): ?string {
-		$email = $this->config->getUserValue($this->uid, 'settings', 'primary_email', null);
-		return $email ? mb_strtolower(trim($email)) : null;
-	}
-
-	/**
-	 * get the users' quota
-	 *
-	 * @return string
-	 * @since 9.0.0
-	 */
-	public function getQuota() {
-		// allow apps to modify the user quota by hooking into the event
-		$event = new GetQuotaEvent($this);
-		$this->dispatcher->dispatchTyped($event);
-		$overwriteQuota = $event->getQuota();
-		if ($overwriteQuota) {
-			$quota = $overwriteQuota;
-		} else {
-			$quota = $this->config->getUserValue($this->uid, 'files', 'quota', 'default');
-		}
-		if ($quota === 'default') {
-			$quota = $this->config->getAppValue('files', 'default_quota', 'none');
-
-			// if unlimited quota is not allowed => avoid getting 'unlimited' as default_quota fallback value
-			// use the first preset instead
-			$allowUnlimitedQuota = $this->config->getAppValue('files', 'allow_unlimited_quota', '1') === '1';
-			if (!$allowUnlimitedQuota) {
-				$presets = $this->config->getAppValue('files', 'quota_preset', '1 GB, 5 GB, 10 GB');
-				$presets = array_filter(array_map('trim', explode(',', $presets)));
-				$quotaPreset = array_values(array_diff($presets, ['default', 'none']));
-				if (count($quotaPreset) > 0) {
-					$quota = $this->config->getAppValue('files', 'default_quota', $quotaPreset[0]);
-				}
-			}
-		}
-		return $quota;
-	}
-
-	public function getQuotaBytes(): int|float {
-		$quota = $this->getQuota();
-		if ($quota === 'none') {
-			return \OCP\Files\FileInfo::SPACE_UNLIMITED;
-		}
-
-		$bytes = \OCP\Util::computerFileSize($quota);
-		if ($bytes === false) {
-			return \OCP\Files\FileInfo::SPACE_UNKNOWN;
-		}
-		return $bytes;
-	}
-
-	/**
-	 * set the users' quota
-	 *
-	 * @param string $quota
-	 * @return void
-	 * @throws InvalidArgumentException
-	 * @since 9.0.0
-	 */
-	public function setQuota($quota) {
-		$oldQuota = $this->config->getUserValue($this->uid, 'files', 'quota', '');
-		if ($quota !== 'none' and $quota !== 'default') {
-			$bytesQuota = \OCP\Util::computerFileSize($quota);
-			if ($bytesQuota === false) {
-				throw new InvalidArgumentException('Failed to set quota to invalid value ' . $quota);
-			}
-			$quota = \OCP\Util::humanFileSize($bytesQuota);
-		}
-		if ($quota !== $oldQuota) {
-			$this->config->setUserValue($this->uid, 'files', 'quota', $quota);
-			$this->triggerChange('quota', $quota, $oldQuota);
-		}
-		\OC_Helper::clearStorageInfo('/' . $this->uid . '/files');
-	}
-
-	public function getManagerUids(): array {
-		$encodedUids = $this->config->getUserValue(
-			$this->uid,
-			'settings',
-			self::CONFIG_KEY_MANAGERS,
-			'[]'
-		);
-		return json_decode($encodedUids, false, 512, JSON_THROW_ON_ERROR);
-	}
-
-	public function setManagerUids(array $uids): void {
-		$oldUids = $this->getManagerUids();
-		$this->config->setUserValue(
-			$this->uid,
-			'settings',
-			self::CONFIG_KEY_MANAGERS,
-			json_encode($uids, JSON_THROW_ON_ERROR)
-		);
-		$this->triggerChange('managers', $uids, $oldUids);
-	}
-
-	/**
-	 * get the avatar image if it exists
-	 *
-	 * @param int $size
-	 * @return IImage|null
-	 * @since 9.0.0
-	 */
-	public function getAvatarImage($size) {
-		// delay the initialization
-		if (is_null($this->avatarManager)) {
-			$this->avatarManager = \OC::$server->get(IAvatarManager::class);
-		}
-
-		$avatar = $this->avatarManager->getAvatar($this->uid);
-		$image = $avatar->get($size);
-		if ($image) {
-			return $image;
-		}
-
-		return null;
-	}
-
-	/**
-	 * get the federation cloud id
-	 *
-	 * @return string
-	 * @since 9.0.0
-	 */
-	public function getCloudId() {
-		$uid = $this->getUID();
-		$server = rtrim($this->urlGenerator->getAbsoluteURL('/'), '/');
-		if (str_ends_with($server, '/index.php')) {
-			$server = substr($server, 0, -10);
-		}
-		$server = $this->removeProtocolFromUrl($server);
-		return $uid . '@' . $server;
-	}
-
-	private function removeProtocolFromUrl(string $url): string {
-		if (str_starts_with($url, 'https://')) {
-			return substr($url, strlen('https://'));
-		}
-
-		return $url;
-	}
-
-	public function triggerChange($feature, $value = null, $oldValue = null) {
-		$this->dispatcher->dispatchTyped(new UserChangedEvent($this, $feature, $value, $oldValue));
-		if ($this->emitter) {
-			$this->emitter->emit('\OC\User', 'changeUser', [$this, $feature, $value, $oldValue]);
-		}
-	}
+    private const CONFIG_KEY_MANAGERS = 'manager';
+
+    private IConfig $config;
+    private IURLGenerator $urlGenerator;
+
+    /** @var IAccountManager */
+    protected $accountManager;
+
+    /** @var string|null */
+    private $displayName;
+
+    /** @var bool|null */
+    private $enabled;
+
+    /** @var Emitter|Manager|null */
+    private $emitter;
+
+    /** @var string */
+    private $home;
+
+    private ?int $lastLogin = null;
+    private ?int $firstLogin = null;
+
+    /** @var IAvatarManager */
+    private $avatarManager;
+
+    public function __construct(
+        private string $uid,
+        private ?UserInterface $backend,
+        private IEventDispatcher $dispatcher,
+        $emitter = null,
+        ?IConfig $config = null,
+        $urlGenerator = null,
+    ) {
+        $this->emitter = $emitter;
+        $this->config = $config ?? \OCP\Server::get(IConfig::class);
+        $this->urlGenerator = $urlGenerator ?? \OCP\Server::get(IURLGenerator::class);
+    }
+
+    /**
+     * get the user id
+     *
+     * @return string
+     */
+    public function getUID() {
+        return $this->uid;
+    }
+
+    /**
+     * get the display name for the user, if no specific display name is set it will fallback to the user id
+     *
+     * @return string
+     */
+    public function getDisplayName() {
+        if ($this->displayName === null) {
+            $displayName = '';
+            if ($this->backend && $this->backend->implementsActions(Backend::GET_DISPLAYNAME)) {
+                // get display name and strip whitespace from the beginning and end of it
+                $backendDisplayName = $this->backend->getDisplayName($this->uid);
+                if (is_string($backendDisplayName)) {
+                    $displayName = trim($backendDisplayName);
+                }
+            }
+
+            if (!empty($displayName)) {
+                $this->displayName = $displayName;
+            } else {
+                $this->displayName = $this->uid;
+            }
+        }
+        return $this->displayName;
+    }
+
+    /**
+     * set the displayname for the user
+     *
+     * @param string $displayName
+     * @return bool
+     *
+     * @since 25.0.0 Throw InvalidArgumentException
+     * @throws \InvalidArgumentException
+     */
+    public function setDisplayName($displayName) {
+        $displayName = trim($displayName);
+        $oldDisplayName = $this->getDisplayName();
+        if ($this->backend->implementsActions(Backend::SET_DISPLAYNAME) && !empty($displayName) && $displayName !== $oldDisplayName) {
+            /** @var ISetDisplayNameBackend $backend */
+            $backend = $this->backend;
+            $result = $backend->setDisplayName($this->uid, $displayName);
+            if ($result) {
+                $this->displayName = $displayName;
+                $this->triggerChange('displayName', $displayName, $oldDisplayName);
+            }
+            return $result !== false;
+        }
+        return false;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function setEMailAddress($mailAddress) {
+        $this->setSystemEMailAddress($mailAddress);
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function setSystemEMailAddress(string $mailAddress): void {
+        $oldMailAddress = $this->getSystemEMailAddress();
+        $mailAddress = mb_strtolower(trim($mailAddress));
+
+        if ($mailAddress === '') {
+            $this->config->deleteUserValue($this->uid, 'settings', 'email');
+        } else {
+            $this->config->setUserValue($this->uid, 'settings', 'email', $mailAddress);
+        }
+
+        $primaryAddress = $this->getPrimaryEMailAddress();
+        if ($primaryAddress === $mailAddress) {
+            // on match no dedicated primary settings is necessary
+            $this->setPrimaryEMailAddress('');
+        }
+
+        if ($oldMailAddress !== strtolower($mailAddress)) {
+            $this->triggerChange('eMailAddress', $mailAddress, $oldMailAddress);
+        }
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function setPrimaryEMailAddress(string $mailAddress): void {
+        $mailAddress = mb_strtolower(trim($mailAddress));
+        if ($mailAddress === '') {
+            $this->config->deleteUserValue($this->uid, 'settings', 'primary_email');
+            return;
+        }
+
+        $this->ensureAccountManager();
+        $account = $this->accountManager->getAccount($this);
+        $property = $account->getPropertyCollection(IAccountManager::COLLECTION_EMAIL)
+            ->getPropertyByValue($mailAddress);
+
+        if ($property === null || $property->getLocallyVerified() !== IAccountManager::VERIFIED) {
+            throw new InvalidArgumentException('Only verified emails can be set as primary');
+        }
+        $this->config->setUserValue($this->uid, 'settings', 'primary_email', $mailAddress);
+    }
+
+    private function ensureAccountManager() {
+        if (!$this->accountManager instanceof IAccountManager) {
+            $this->accountManager = \OC::$server->get(IAccountManager::class);
+        }
+    }
+
+    /**
+     * returns the timestamp of the user's last login or 0 if the user did never
+     * login
+     */
+    public function getLastLogin(): int {
+        if ($this->lastLogin === null) {
+            $this->lastLogin = (int)$this->config->getUserValue($this->uid, 'login', 'lastLogin', 0);
+        }
+        return $this->lastLogin;
+    }
+
+    /**
+     * returns the timestamp of the user's last login or 0 if the user did never
+     * login
+     */
+    public function getFirstLogin(): int {
+        if ($this->firstLogin === null) {
+            $this->firstLogin = (int)$this->config->getUserValue($this->uid, 'login', 'firstLogin', 0);
+        }
+        return $this->firstLogin;
+    }
+
+    /**
+     * updates the timestamp of the most recent login of this user
+     */
+    public function updateLastLoginTimestamp(): bool {
+        $previousLogin = $this->getLastLogin();
+        $firstLogin = $this->getFirstLogin();
+        $now = time();
+        $firstTimeLogin = $previousLogin === 0;
+
+        if ($now - $previousLogin > 60) {
+            $this->lastLogin = $now;
+            $this->config->setUserValue($this->uid, 'login', 'lastLogin', (string)$this->lastLogin);
+        }
+
+        if ($firstLogin === 0) {
+            if ($firstTimeLogin) {
+                $this->firstLogin = $now;
+            } else {
+                /* Unknown first login, most likely was before upgrade to Nextcloud 31 */
+                $this->firstLogin = -1;
+            }
+            $this->config->setUserValue($this->uid, 'login', 'firstLogin', (string)$this->firstLogin);
+        }
+
+        return $firstTimeLogin;
+    }
+
+    /**
+     * Delete the user
+     *
+     * @return bool
+     */
+    public function delete() {
+        if ($this->backend === null) {
+            \OCP\Server::get(LoggerInterface::class)->error('Cannot delete user: No backend set');
+            return false;
+        }
+
+        if ($this->emitter) {
+            /** @deprecated 21.0.0 use BeforeUserDeletedEvent event with the IEventDispatcher instead */
+            $this->emitter->emit('\OC\User', 'preDelete', [$this]);
+        }
+        $this->dispatcher->dispatchTyped(new BeforeUserDeletedEvent($this));
+
+        // Set delete flag on the user - this is needed to ensure that the user data is removed if there happen any exception in the backend
+        // because we can not restore the user meaning we could not rollback to any stable state otherwise.
+        $this->config->setUserValue($this->uid, 'core', 'deleted', 'true');
+        // We also need to backup the home path as this can not be reconstructed later if the original backend uses custom home paths
+        $this->config->setUserValue($this->uid, 'core', 'deleted.home-path', $this->getHome());
+
+        // Try to delete the user on the backend
+        $result = $this->backend->deleteUser($this->uid);
+        if ($result === false) {
+            // The deletion was aborted or something else happened, we are in a defined state, so remove the delete flag
+            $this->config->deleteUserValue($this->uid, 'core', 'deleted');
+            return false;
+        }
+
+        // We have to delete the user from all groups
+        $groupManager = \OCP\Server::get(IGroupManager::class);
+        foreach ($groupManager->getUserGroupIds($this) as $groupId) {
+            $group = $groupManager->get($groupId);
+            if ($group) {
+                $this->dispatcher->dispatchTyped(new BeforeUserRemovedEvent($group, $this));
+                $group->removeUser($this);
+                $this->dispatcher->dispatchTyped(new UserRemovedEvent($group, $this));
+            }
+        }
+
+        $commentsManager = \OCP\Server::get(ICommentsManager::class);
+        $commentsManager->deleteReferencesOfActor('users', $this->uid);
+        $commentsManager->deleteReadMarksFromUser($this);
+
+        $avatarManager = \OCP\Server::get(AvatarManager::class);
+        $avatarManager->deleteUserAvatar($this->uid);
+
+        $notificationManager = \OCP\Server::get(INotificationManager::class);
+        $notification = $notificationManager->createNotification();
+        $notification->setUser($this->uid);
+        $notificationManager->markProcessed($notification);
+
+        $accountManager = \OCP\Server::get(AccountManager::class);
+        $accountManager->deleteUser($this);
+
+        $database = \OCP\Server::get(IDBConnection::class);
+        try {
+            // We need to create a transaction to make sure we are in a defined state
+            // because if all user values are removed also the flag is gone, but if an exception happens (e.g. database lost connection on the set operation)
+            // exactly here we are in an undefined state as the data is still present but the user does not exist on the system anymore.
+            $database->beginTransaction();
+            // Remove all user settings
+            $this->config->deleteAllUserValues($this->uid);
+            // But again set flag that this user is about to be deleted
+            $this->config->setUserValue($this->uid, 'core', 'deleted', 'true');
+            $this->config->setUserValue($this->uid, 'core', 'deleted.home-path', $this->getHome());
+            // Commit the transaction so we are in a defined state: either the preferences are removed or an exception occurred but the delete flag is still present
+            $database->commit();
+        } catch (\Throwable $e) {
+            $database->rollback();
+            throw $e;
+        }
+
+        if ($this->emitter !== null) {
+            /** @deprecated 21.0.0 use UserDeletedEvent event with the IEventDispatcher instead */
+            $this->emitter->emit('\OC\User', 'postDelete', [$this]);
+        }
+        $this->dispatcher->dispatchTyped(new UserDeletedEvent($this));
+
+        // Finally we can unset the delete flag and all other states
+        $this->config->deleteAllUserValues($this->uid);
+
+        return true;
+    }
+
+    /**
+     * Set the password of the user
+     *
+     * @param string $password
+     * @param string $recoveryPassword for the encryption app to reset encryption keys
+     * @return bool
+     */
+    public function setPassword($password, $recoveryPassword = null) {
+        $this->dispatcher->dispatchTyped(new BeforePasswordUpdatedEvent($this, $password, $recoveryPassword));
+        if ($this->emitter) {
+            $this->emitter->emit('\OC\User', 'preSetPassword', [$this, $password, $recoveryPassword]);
+        }
+        if ($this->backend->implementsActions(Backend::SET_PASSWORD)) {
+            /** @var ISetPasswordBackend $backend */
+            $backend = $this->backend;
+            $result = $backend->setPassword($this->uid, $password);
+
+            if ($result !== false) {
+                $this->dispatcher->dispatchTyped(new PasswordUpdatedEvent($this, $password, $recoveryPassword));
+                if ($this->emitter) {
+                    $this->emitter->emit('\OC\User', 'postSetPassword', [$this, $password, $recoveryPassword]);
+                }
+            }
+
+            return !($result === false);
+        } else {
+            return false;
+        }
+    }
+
+    public function getPasswordHash(): ?string {
+        if (!($this->backend instanceof IPasswordHashBackend)) {
+            return null;
+        }
+        return $this->backend->getPasswordHash($this->uid);
+    }
+
+    public function setPasswordHash(string $passwordHash): bool {
+        if (!($this->backend instanceof IPasswordHashBackend)) {
+            return false;
+        }
+        return $this->backend->setPasswordHash($this->uid, $passwordHash);
+    }
+
+    /**
+     * get the users home folder to mount
+     *
+     * @return string
+     */
+    public function getHome() {
+        if (!$this->home) {
+            /** @psalm-suppress UndefinedInterfaceMethod Once we get rid of the legacy implementsActions, psalm won't complain anymore */
+            if (($this->backend instanceof IGetHomeBackend || $this->backend->implementsActions(Backend::GET_HOME)) && $home = $this->backend->getHome($this->uid)) {
+                $this->home = $home;
+            } else {
+                $this->home = $this->config->getSystemValueString('datadirectory', \OC::$SERVERROOT . '/data') . '/' . $this->uid;
+            }
+        }
+        return $this->home;
+    }
+
+    /**
+     * Get the name of the backend class the user is connected with
+     *
+     * @return string
+     */
+    public function getBackendClassName() {
+        if ($this->backend instanceof IUserBackend) {
+            return $this->backend->getBackendName();
+        }
+        return get_class($this->backend);
+    }
+
+    public function getBackend(): ?UserInterface {
+        return $this->backend;
+    }
+
+    /**
+     * Check if the backend allows the user to change their avatar on Personal page
+     *
+     * @return bool
+     */
+    public function canChangeAvatar() {
+        if ($this->backend instanceof IProvideAvatarBackend || $this->backend->implementsActions(Backend::PROVIDE_AVATAR)) {
+            /** @var IProvideAvatarBackend $backend */
+            $backend = $this->backend;
+            return $backend->canChangeAvatar($this->uid);
+        }
+        return true;
+    }
+
+    /**
+     * check if the backend supports changing passwords
+     *
+     * @return bool
+     */
+    public function canChangePassword() {
+        return $this->backend->implementsActions(Backend::SET_PASSWORD);
+    }
+
+    /**
+     * check if the backend supports changing display names
+     *
+     * @return bool
+     */
+    public function canChangeDisplayName() {
+        if (!$this->config->getSystemValueBool('allow_user_to_change_display_name', true)) {
+            return false;
+        }
+        return $this->backend->implementsActions(Backend::SET_DISPLAYNAME);
+    }
+
+    public function canChangeEmail(): bool {
+        // Fallback to display name value to avoid changing behavior with the new option.
+        return $this->config->getSystemValueBool('allow_user_to_change_email', $this->config->getSystemValueBool('allow_user_to_change_display_name', true));
+    }
+
+    /**
+     * check if the user is enabled
+     *
+     * @return bool
+     */
+    public function isEnabled() {
+        $queryDatabaseValue = function (): bool {
+            if ($this->enabled === null) {
+                $enabled = $this->config->getUserValue($this->uid, 'core', 'enabled', 'true');
+                $this->enabled = $enabled === 'true';
+            }
+            return $this->enabled;
+        };
+        if ($this->backend instanceof IProvideEnabledStateBackend) {
+            return $this->backend->isUserEnabled($this->uid, $queryDatabaseValue);
+        } else {
+            return $queryDatabaseValue();
+        }
+    }
+
+    /**
+     * set the enabled status for the user
+     *
+     * @return void
+     */
+    public function setEnabled(bool $enabled = true) {
+        $oldStatus = $this->isEnabled();
+        $setDatabaseValue = function (bool $enabled): void {
+            $this->config->setUserValue($this->uid, 'core', 'enabled', $enabled ? 'true' : 'false');
+            $this->enabled = $enabled;
+        };
+        if ($this->backend instanceof IProvideEnabledStateBackend) {
+            $queryDatabaseValue = function (): bool {
+                if ($this->enabled === null) {
+                    $enabled = $this->config->getUserValue($this->uid, 'core', 'enabled', 'true');
+                    $this->enabled = $enabled === 'true';
+                }
+                return $this->enabled;
+            };
+            $enabled = $this->backend->setUserEnabled($this->uid, $enabled, $queryDatabaseValue, $setDatabaseValue);
+            if ($oldStatus !== $enabled) {
+                $this->triggerChange('enabled', $enabled, $oldStatus);
+            }
+        } elseif ($oldStatus !== $enabled) {
+            $setDatabaseValue($enabled);
+            $this->triggerChange('enabled', $enabled, $oldStatus);
+        }
+    }
+
+    /**
+     * get the users email address
+     *
+     * @return string|null
+     * @since 9.0.0
+     */
+    public function getEMailAddress() {
+        return $this->getPrimaryEMailAddress() ?? $this->getSystemEMailAddress();
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function getSystemEMailAddress(): ?string {
+        $email = $this->config->getUserValue($this->uid, 'settings', 'email', null);
+        return $email ? mb_strtolower(trim($email)) : null;
+    }
+
+    /**
+     * @inheritDoc
+     */
+    public function getPrimaryEMailAddress(): ?string {
+        $email = $this->config->getUserValue($this->uid, 'settings', 'primary_email', null);
+        return $email ? mb_strtolower(trim($email)) : null;
+    }
+
+    /**
+     * get the users' quota
+     *
+     * @return string
+     * @since 9.0.0
+     */
+    public function getQuota() {
+        // allow apps to modify the user quota by hooking into the event
+        $event = new GetQuotaEvent($this);
+        $this->dispatcher->dispatchTyped($event);
+        $overwriteQuota = $event->getQuota();
+        if ($overwriteQuota) {
+            $quota = $overwriteQuota;
+        } else {
+            $quota = $this->config->getUserValue($this->uid, 'files', 'quota', 'default');
+        }
+        if ($quota === 'default') {
+            $quota = $this->config->getAppValue('files', 'default_quota', 'none');
+
+            // if unlimited quota is not allowed => avoid getting 'unlimited' as default_quota fallback value
+            // use the first preset instead
+            $allowUnlimitedQuota = $this->config->getAppValue('files', 'allow_unlimited_quota', '1') === '1';
+            if (!$allowUnlimitedQuota) {
+                $presets = $this->config->getAppValue('files', 'quota_preset', '1 GB, 5 GB, 10 GB');
+                $presets = array_filter(array_map('trim', explode(',', $presets)));
+                $quotaPreset = array_values(array_diff($presets, ['default', 'none']));
+                if (count($quotaPreset) > 0) {
+                    $quota = $this->config->getAppValue('files', 'default_quota', $quotaPreset[0]);
+                }
+            }
+        }
+        return $quota;
+    }
+
+    public function getQuotaBytes(): int|float {
+        $quota = $this->getQuota();
+        if ($quota === 'none') {
+            return \OCP\Files\FileInfo::SPACE_UNLIMITED;
+        }
+
+        $bytes = \OCP\Util::computerFileSize($quota);
+        if ($bytes === false) {
+            return \OCP\Files\FileInfo::SPACE_UNKNOWN;
+        }
+        return $bytes;
+    }
+
+    /**
+     * set the users' quota
+     *
+     * @param string $quota
+     * @return void
+     * @throws InvalidArgumentException
+     * @since 9.0.0
+     */
+    public function setQuota($quota) {
+        $oldQuota = $this->config->getUserValue($this->uid, 'files', 'quota', '');
+        if ($quota !== 'none' and $quota !== 'default') {
+            $bytesQuota = \OCP\Util::computerFileSize($quota);
+            if ($bytesQuota === false) {
+                throw new InvalidArgumentException('Failed to set quota to invalid value ' . $quota);
+            }
+            $quota = \OCP\Util::humanFileSize($bytesQuota);
+        }
+        if ($quota !== $oldQuota) {
+            $this->config->setUserValue($this->uid, 'files', 'quota', $quota);
+            $this->triggerChange('quota', $quota, $oldQuota);
+        }
+        \OC_Helper::clearStorageInfo('/' . $this->uid . '/files');
+    }
+
+    public function getManagerUids(): array {
+        $encodedUids = $this->config->getUserValue(
+            $this->uid,
+            'settings',
+            self::CONFIG_KEY_MANAGERS,
+            '[]'
+        );
+        return json_decode($encodedUids, false, 512, JSON_THROW_ON_ERROR);
+    }
+
+    public function setManagerUids(array $uids): void {
+        $oldUids = $this->getManagerUids();
+        $this->config->setUserValue(
+            $this->uid,
+            'settings',
+            self::CONFIG_KEY_MANAGERS,
+            json_encode($uids, JSON_THROW_ON_ERROR)
+        );
+        $this->triggerChange('managers', $uids, $oldUids);
+    }
+
+    /**
+     * get the avatar image if it exists
+     *
+     * @param int $size
+     * @return IImage|null
+     * @since 9.0.0
+     */
+    public function getAvatarImage($size) {
+        // delay the initialization
+        if (is_null($this->avatarManager)) {
+            $this->avatarManager = \OC::$server->get(IAvatarManager::class);
+        }
+
+        $avatar = $this->avatarManager->getAvatar($this->uid);
+        $image = $avatar->get($size);
+        if ($image) {
+            return $image;
+        }
+
+        return null;
+    }
+
+    /**
+     * get the federation cloud id
+     *
+     * @return string
+     * @since 9.0.0
+     */
+    public function getCloudId() {
+        $uid = $this->getUID();
+        $server = rtrim($this->urlGenerator->getAbsoluteURL('/'), '/');
+        if (str_ends_with($server, '/index.php')) {
+            $server = substr($server, 0, -10);
+        }
+        $server = $this->removeProtocolFromUrl($server);
+        return $uid . '@' . $server;
+    }
+
+    private function removeProtocolFromUrl(string $url): string {
+        if (str_starts_with($url, 'https://')) {
+            return substr($url, strlen('https://'));
+        }
+
+        return $url;
+    }
+
+    public function triggerChange($feature, $value = null, $oldValue = null) {
+        $this->dispatcher->dispatchTyped(new UserChangedEvent($this, $feature, $value, $oldValue));
+        if ($this->emitter) {
+            $this->emitter->emit('\OC\User', 'changeUser', [$this, $feature, $value, $oldValue]);
+        }
+    }
 }

Please login to merge, or discard this patch.

apps/provisioning_api/lib/Controller/UsersController.php 1 patch

Indentation +1743 added lines, -1743 removed lines patch added patch discarded remove patch

@@ -59,1747 +59,1747 @@
 block discarded – undo
  */
 class UsersController extends AUserDataOCSController {
 
-	private IL10N $l10n;
-
-	public function __construct(
-		string $appName,
-		IRequest $request,
-		IUserManager $userManager,
-		IConfig $config,
-		IGroupManager $groupManager,
-		IUserSession $userSession,
-		IAccountManager $accountManager,
-		ISubAdmin $subAdminManager,
-		IFactory $l10nFactory,
-		IRootFolder $rootFolder,
-		private IURLGenerator $urlGenerator,
-		private LoggerInterface $logger,
-		private NewUserMailHelper $newUserMailHelper,
-		private ISecureRandom $secureRandom,
-		private RemoteWipe $remoteWipe,
-		private KnownUserService $knownUserService,
-		private IEventDispatcher $eventDispatcher,
-		private IPhoneNumberUtil $phoneNumberUtil,
-		private IAppManager $appManager,
-	) {
-		parent::__construct(
-			$appName,
-			$request,
-			$userManager,
-			$config,
-			$groupManager,
-			$userSession,
-			$accountManager,
-			$subAdminManager,
-			$l10nFactory,
-			$rootFolder,
-		);
-
-		$this->l10n = $l10nFactory->get($appName);
-	}
-
-	/**
-	 * Get a list of users
-	 *
-	 * @param string $search Text to search for
-	 * @param int|null $limit Limit the amount of groups returned
-	 * @param int $offset Offset for searching for groups
-	 * @return DataResponse<Http::STATUS_OK, array{users: list<string>}, array{}>
-	 *
-	 * 200: Users returned
-	 */
-	#[NoAdminRequired]
-	public function getUsers(string $search = '', ?int $limit = null, int $offset = 0): DataResponse {
-		$user = $this->userSession->getUser();
-		$users = [];
-
-		// Admin? Or SubAdmin?
-		$uid = $user->getUID();
-		$subAdminManager = $this->groupManager->getSubAdmin();
-		$isAdmin = $this->groupManager->isAdmin($uid);
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($uid);
-		if ($isAdmin || $isDelegatedAdmin) {
-			$users = $this->userManager->search($search, $limit, $offset);
-		} elseif ($subAdminManager->isSubAdmin($user)) {
-			$subAdminOfGroups = $subAdminManager->getSubAdminsGroups($user);
-			foreach ($subAdminOfGroups as $key => $group) {
-				$subAdminOfGroups[$key] = $group->getGID();
-			}
-
-			$users = [];
-			foreach ($subAdminOfGroups as $group) {
-				$users = array_merge($users, $this->groupManager->displayNamesInGroup($group, $search, $limit, $offset));
-			}
-		}
-
-		/** @var list<string> $users */
-		$users = array_keys($users);
-
-		return new DataResponse([
-			'users' => $users
-		]);
-	}
-
-	/**
-	 * Get a list of users and their details
-	 *
-	 * @param string $search Text to search for
-	 * @param int|null $limit Limit the amount of groups returned
-	 * @param int $offset Offset for searching for groups
-	 * @return DataResponse<Http::STATUS_OK, array{users: array<string, Provisioning_APIUserDetails|array{id: string}>}, array{}>
-	 *
-	 * 200: Users details returned
-	 */
-	#[NoAdminRequired]
-	public function getUsersDetails(string $search = '', ?int $limit = null, int $offset = 0): DataResponse {
-		$currentUser = $this->userSession->getUser();
-		$users = [];
-
-		// Admin? Or SubAdmin?
-		$uid = $currentUser->getUID();
-		$subAdminManager = $this->groupManager->getSubAdmin();
-		$isAdmin = $this->groupManager->isAdmin($uid);
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($uid);
-		if ($isAdmin || $isDelegatedAdmin) {
-			$users = $this->userManager->search($search, $limit, $offset);
-			$users = array_keys($users);
-		} elseif ($subAdminManager->isSubAdmin($currentUser)) {
-			$subAdminOfGroups = $subAdminManager->getSubAdminsGroups($currentUser);
-			foreach ($subAdminOfGroups as $key => $group) {
-				$subAdminOfGroups[$key] = $group->getGID();
-			}
-
-			$users = [];
-			foreach ($subAdminOfGroups as $group) {
-				$users[] = array_keys($this->groupManager->displayNamesInGroup($group, $search, $limit, $offset));
-			}
-			$users = array_merge(...$users);
-		}
-
-		$usersDetails = [];
-		foreach ($users as $userId) {
-			$userId = (string)$userId;
-			try {
-				$userData = $this->getUserData($userId);
-			} catch (OCSNotFoundException $e) {
-				// We still want to return all other accounts, but this one was removed from the backends
-				// yet they are still in our database. Might be a LDAP remnant.
-				$userData = null;
-				$this->logger->warning('Found one enabled account that is removed from its backend, but still exists in Nextcloud database', ['accountId' => $userId]);
-			}
-			// Do not insert empty entry
-			if ($userData !== null) {
-				$usersDetails[$userId] = $userData;
-			} else {
-				// Logged user does not have permissions to see this user
-				// only showing its id
-				$usersDetails[$userId] = ['id' => $userId];
-			}
-		}
-
-		return new DataResponse([
-			'users' => $usersDetails
-		]);
-	}
-
-	/**
-	 * Get the list of disabled users and their details
-	 *
-	 * @param string $search Text to search for
-	 * @param ?int $limit Limit the amount of users returned
-	 * @param int $offset Offset
-	 * @return DataResponse<Http::STATUS_OK, array{users: array<string, Provisioning_APIUserDetails|array{id: string}>}, array{}>
-	 *
-	 * 200: Disabled users details returned
-	 */
-	#[NoAdminRequired]
-	public function getDisabledUsersDetails(string $search = '', ?int $limit = null, int $offset = 0): DataResponse {
-		$currentUser = $this->userSession->getUser();
-		if ($currentUser === null) {
-			return new DataResponse(['users' => []]);
-		}
-		if ($limit !== null && $limit < 0) {
-			throw new InvalidArgumentException("Invalid limit value: $limit");
-		}
-		if ($offset < 0) {
-			throw new InvalidArgumentException("Invalid offset value: $offset");
-		}
-
-		$users = [];
-
-		// Admin? Or SubAdmin?
-		$uid = $currentUser->getUID();
-		$subAdminManager = $this->groupManager->getSubAdmin();
-		$isAdmin = $this->groupManager->isAdmin($uid);
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($uid);
-		if ($isAdmin || $isDelegatedAdmin) {
-			$users = $this->userManager->getDisabledUsers($limit, $offset, $search);
-			$users = array_map(fn (IUser $user): string => $user->getUID(), $users);
-		} elseif ($subAdminManager->isSubAdmin($currentUser)) {
-			$subAdminOfGroups = $subAdminManager->getSubAdminsGroups($currentUser);
-
-			$users = [];
-			/* We have to handle offset ourselve for correctness */
-			$tempLimit = ($limit === null ? null : $limit + $offset);
-			foreach ($subAdminOfGroups as $group) {
-				$users = array_unique(array_merge(
-					$users,
-					array_map(
-						fn (IUser $user): string => $user->getUID(),
-						array_filter(
-							$group->searchUsers($search),
-							fn (IUser $user): bool => !$user->isEnabled()
-						)
-					)
-				));
-				if (($tempLimit !== null) && (count($users) >= $tempLimit)) {
-					break;
-				}
-			}
-			$users = array_slice($users, $offset, $limit);
-		}
-
-		$usersDetails = [];
-		foreach ($users as $userId) {
-			try {
-				$userData = $this->getUserData($userId);
-			} catch (OCSNotFoundException $e) {
-				// We still want to return all other accounts, but this one was removed from the backends
-				// yet they are still in our database. Might be a LDAP remnant.
-				$userData = null;
-				$this->logger->warning('Found one disabled account that was removed from its backend, but still exists in Nextcloud database', ['accountId' => $userId]);
-			}
-			// Do not insert empty entry
-			if ($userData !== null) {
-				$usersDetails[$userId] = $userData;
-			} else {
-				// Currently logged in user does not have permissions to see this user
-				// only showing its id
-				$usersDetails[$userId] = ['id' => $userId];
-			}
-		}
-
-		return new DataResponse([
-			'users' => $usersDetails
-		]);
-	}
-
-	/**
-	 * Gets the list of users sorted by lastLogin, from most recent to least recent
-	 *
-	 * @param string $search Text to search for
-	 * @param ?int $limit Limit the amount of users returned
-	 * @param int $offset Offset
-	 * @return DataResponse<Http::STATUS_OK, array{users: array<string, Provisioning_APIUserDetails|array{id: string}>}, array{}>
-	 *
-	 * 200: Users details returned based on last logged in information
-	 */
-	#[AuthorizedAdminSetting(settings:Users::class)]
-	public function getLastLoggedInUsers(string $search = '',
-		?int $limit = null,
-		int $offset = 0,
-	): DataResponse {
-		$currentUser = $this->userSession->getUser();
-		if ($currentUser === null) {
-			return new DataResponse(['users' => []]);
-		}
-		if ($limit !== null && $limit < 0) {
-			throw new InvalidArgumentException("Invalid limit value: $limit");
-		}
-		if ($offset < 0) {
-			throw new InvalidArgumentException("Invalid offset value: $offset");
-		}
-
-		$users = [];
-
-		// For Admin alone user sorting based on lastLogin. For sub admin and groups this is not supported
-		$users = $this->userManager->getLastLoggedInUsers($limit, $offset, $search);
-
-		$usersDetails = [];
-		foreach ($users as $userId) {
-			try {
-				$userData = $this->getUserData($userId);
-			} catch (OCSNotFoundException $e) {
-				// We still want to return all other accounts, but this one was removed from the backends
-				// yet they are still in our database. Might be a LDAP remnant.
-				$userData = null;
-				$this->logger->warning('Found one account that was removed from its backend, but still exists in Nextcloud database', ['accountId' => $userId]);
-			}
-			// Do not insert empty entry
-			if ($userData !== null) {
-				$usersDetails[$userId] = $userData;
-			} else {
-				// Currently logged-in user does not have permissions to see this user
-				// only showing its id
-				$usersDetails[$userId] = ['id' => $userId];
-			}
-		}
-
-		return new DataResponse([
-			'users' => $usersDetails
-		]);
-	}
-
-
-
-	/**
-	 * @NoSubAdminRequired
-	 *
-	 * Search users by their phone numbers
-	 *
-	 * @param string $location Location of the phone number (for country code)
-	 * @param array<string, list<string>> $search Phone numbers to search for
-	 * @return DataResponse<Http::STATUS_OK, array<string, string>, array{}>|DataResponse<Http::STATUS_BAD_REQUEST, list<empty>, array{}>
-	 *
-	 * 200: Users returned
-	 * 400: Invalid location
-	 */
-	#[NoAdminRequired]
-	public function searchByPhoneNumbers(string $location, array $search): DataResponse {
-		if ($this->phoneNumberUtil->getCountryCodeForRegion($location) === null) {
-			// Not a valid region code
-			return new DataResponse([], Http::STATUS_BAD_REQUEST);
-		}
-
-		/** @var IUser $user */
-		$user = $this->userSession->getUser();
-		$knownTo = $user->getUID();
-		$defaultPhoneRegion = $this->config->getSystemValueString('default_phone_region');
-
-		$normalizedNumberToKey = [];
-		foreach ($search as $key => $phoneNumbers) {
-			foreach ($phoneNumbers as $phone) {
-				$normalizedNumber = $this->phoneNumberUtil->convertToStandardFormat($phone, $location);
-				if ($normalizedNumber !== null) {
-					$normalizedNumberToKey[$normalizedNumber] = (string)$key;
-				}
-
-				if ($defaultPhoneRegion !== '' && $defaultPhoneRegion !== $location && str_starts_with($phone, '0')) {
-					// If the number has a leading zero (no country code),
-					// we also check the default phone region of the instance,
-					// when it's different to the user's given region.
-					$normalizedNumber = $this->phoneNumberUtil->convertToStandardFormat($phone, $defaultPhoneRegion);
-					if ($normalizedNumber !== null) {
-						$normalizedNumberToKey[$normalizedNumber] = (string)$key;
-					}
-				}
-			}
-		}
-
-		$phoneNumbers = array_keys($normalizedNumberToKey);
-
-		if (empty($phoneNumbers)) {
-			return new DataResponse();
-		}
-
-		// Cleanup all previous entries and only allow new matches
-		$this->knownUserService->deleteKnownTo($knownTo);
-
-		$userMatches = $this->accountManager->searchUsers(IAccountManager::PROPERTY_PHONE, $phoneNumbers);
-
-		if (empty($userMatches)) {
-			return new DataResponse();
-		}
-
-		$cloudUrl = rtrim($this->urlGenerator->getAbsoluteURL('/'), '/');
-		if (strpos($cloudUrl, 'http://') === 0) {
-			$cloudUrl = substr($cloudUrl, strlen('http://'));
-		} elseif (strpos($cloudUrl, 'https://') === 0) {
-			$cloudUrl = substr($cloudUrl, strlen('https://'));
-		}
-
-		$matches = [];
-		foreach ($userMatches as $phone => $userId) {
-			// Not using the ICloudIdManager as that would run a search for each contact to find the display name in the address book
-			$matches[$normalizedNumberToKey[$phone]] = $userId . '@' . $cloudUrl;
-			$this->knownUserService->storeIsKnownToUser($knownTo, $userId);
-		}
-
-		return new DataResponse($matches);
-	}
-
-	/**
-	 * @throws OCSException
-	 */
-	private function createNewUserId(): string {
-		$attempts = 0;
-		do {
-			$uidCandidate = $this->secureRandom->generate(10, ISecureRandom::CHAR_HUMAN_READABLE);
-			if (!$this->userManager->userExists($uidCandidate)) {
-				return $uidCandidate;
-			}
-			$attempts++;
-		} while ($attempts < 10);
-		throw new OCSException($this->l10n->t('Could not create non-existing user ID'), 111);
-	}
-
-	/**
-	 * Create a new user
-	 *
-	 * @param string $userid ID of the user
-	 * @param string $password Password of the user
-	 * @param string $displayName Display name of the user
-	 * @param string $email Email of the user
-	 * @param list<string> $groups Groups of the user
-	 * @param list<string> $subadmin Groups where the user is subadmin
-	 * @param string $quota Quota of the user
-	 * @param string $language Language of the user
-	 * @param ?string $manager Manager of the user
-	 * @return DataResponse<Http::STATUS_OK, array{id: string}, array{}>
-	 * @throws OCSException
-	 * @throws OCSForbiddenException Missing permissions to make user subadmin
-	 *
-	 * 200: User added successfully
-	 */
-	#[PasswordConfirmationRequired]
-	#[NoAdminRequired]
-	public function addUser(
-		string $userid,
-		string $password = '',
-		string $displayName = '',
-		string $email = '',
-		array $groups = [],
-		array $subadmin = [],
-		string $quota = '',
-		string $language = '',
-		?string $manager = null,
-	): DataResponse {
-		$user = $this->userSession->getUser();
-		$isAdmin = $this->groupManager->isAdmin($user->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($user->getUID());
-		$subAdminManager = $this->groupManager->getSubAdmin();
-
-		if (empty($userid) && $this->config->getAppValue('core', 'newUser.generateUserID', 'no') === 'yes') {
-			$userid = $this->createNewUserId();
-		}
-
-		if ($this->userManager->userExists($userid)) {
-			$this->logger->error('Failed addUser attempt: User already exists.', ['app' => 'ocs_api']);
-			throw new OCSException($this->l10n->t('User already exists'), 102);
-		}
-
-		if ($groups !== []) {
-			foreach ($groups as $group) {
-				if (!$this->groupManager->groupExists($group)) {
-					throw new OCSException($this->l10n->t('Group %1$s does not exist', [$group]), 104);
-				}
-				if (!$isAdmin && !($isDelegatedAdmin && $group !== 'admin') && !$subAdminManager->isSubAdminOfGroup($user, $this->groupManager->get($group))) {
-					throw new OCSException($this->l10n->t('Insufficient privileges for group %1$s', [$group]), 105);
-				}
-			}
-		} else {
-			if (!$isAdmin && !$isDelegatedAdmin) {
-				throw new OCSException($this->l10n->t('No group specified (required for sub-admins)'), 106);
-			}
-		}
-
-		$subadminGroups = [];
-		if ($subadmin !== []) {
-			foreach ($subadmin as $groupid) {
-				$group = $this->groupManager->get($groupid);
-				// Check if group exists
-				if ($group === null) {
-					throw new OCSException($this->l10n->t('Sub-admin group does not exist'), 109);
-				}
-				// Check if trying to make subadmin of admin group
-				if ($group->getGID() === 'admin') {
-					throw new OCSException($this->l10n->t('Cannot create sub-admins for admin group'), 103);
-				}
-				// Check if has permission to promote subadmins
-				if (!$subAdminManager->isSubAdminOfGroup($user, $group) && !$isAdmin && !$isDelegatedAdmin) {
-					throw new OCSForbiddenException($this->l10n->t('No permissions to promote sub-admins'));
-				}
-				$subadminGroups[] = $group;
-			}
-		}
-
-		$generatePasswordResetToken = false;
-		if (strlen($password) > IUserManager::MAX_PASSWORD_LENGTH) {
-			throw new OCSException($this->l10n->t('Invalid password value'), 101);
-		}
-		if ($password === '') {
-			if ($email === '') {
-				throw new OCSException($this->l10n->t('An email address is required, to send a password link to the user.'), 108);
-			}
-
-			$passwordEvent = new GenerateSecurePasswordEvent();
-			$this->eventDispatcher->dispatchTyped($passwordEvent);
-
-			$password = $passwordEvent->getPassword();
-			if ($password === null) {
-				// Fallback: ensure to pass password_policy in any case
-				$password = $this->secureRandom->generate(10)
-					. $this->secureRandom->generate(1, ISecureRandom::CHAR_UPPER)
-					. $this->secureRandom->generate(1, ISecureRandom::CHAR_LOWER)
-					. $this->secureRandom->generate(1, ISecureRandom::CHAR_DIGITS)
-					. $this->secureRandom->generate(1, ISecureRandom::CHAR_SYMBOLS);
-			}
-			$generatePasswordResetToken = true;
-		}
-
-		$email = mb_strtolower(trim($email));
-		if ($email === '' && $this->config->getAppValue('core', 'newUser.requireEmail', 'no') === 'yes') {
-			throw new OCSException($this->l10n->t('Required email address was not provided'), 110);
-		}
-
-		try {
-			$newUser = $this->userManager->createUser($userid, $password);
-			$this->logger->info('Successful addUser call with userid: ' . $userid, ['app' => 'ocs_api']);
-
-			foreach ($groups as $group) {
-				$this->groupManager->get($group)->addUser($newUser);
-				$this->logger->info('Added userid ' . $userid . ' to group ' . $group, ['app' => 'ocs_api']);
-			}
-			foreach ($subadminGroups as $group) {
-				$subAdminManager->createSubAdmin($newUser, $group);
-			}
-
-			if ($displayName !== '') {
-				try {
-					$this->editUser($userid, self::USER_FIELD_DISPLAYNAME, $displayName);
-				} catch (OCSException $e) {
-					if ($newUser instanceof IUser) {
-						$newUser->delete();
-					}
-					throw $e;
-				}
-			}
-
-			if ($quota !== '') {
-				$this->editUser($userid, self::USER_FIELD_QUOTA, $quota);
-			}
-
-			if ($language !== '') {
-				$this->editUser($userid, self::USER_FIELD_LANGUAGE, $language);
-			}
-
-			/**
-			 * null -> nothing sent
-			 * '' -> unset manager
-			 * else -> set manager
-			 */
-			if ($manager !== null) {
-				$this->editUser($userid, self::USER_FIELD_MANAGER, $manager);
-			}
-
-			// Send new user mail only if a mail is set
-			if ($email !== '') {
-				$newUser->setSystemEMailAddress($email);
-				if ($this->config->getAppValue('core', 'newUser.sendEmail', 'yes') === 'yes') {
-					try {
-						$emailTemplate = $this->newUserMailHelper->generateTemplate($newUser, $generatePasswordResetToken);
-						$this->newUserMailHelper->sendMail($newUser, $emailTemplate);
-					} catch (\Exception $e) {
-						// Mail could be failing hard or just be plain not configured
-						// Logging error as it is the hardest of the two
-						$this->logger->error(
-							"Unable to send the invitation mail to $email",
-							[
-								'app' => 'ocs_api',
-								'exception' => $e,
-							]
-						);
-					}
-				}
-			}
-
-			return new DataResponse(['id' => $userid]);
-		} catch (HintException $e) {
-			$this->logger->warning(
-				'Failed addUser attempt with hint exception.',
-				[
-					'app' => 'ocs_api',
-					'exception' => $e,
-				]
-			);
-			throw new OCSException($e->getHint(), 107);
-		} catch (OCSException $e) {
-			$this->logger->warning(
-				'Failed addUser attempt with ocs exception.',
-				[
-					'app' => 'ocs_api',
-					'exception' => $e,
-				]
-			);
-			throw $e;
-		} catch (InvalidArgumentException $e) {
-			$this->logger->error(
-				'Failed addUser attempt with invalid argument exception.',
-				[
-					'app' => 'ocs_api',
-					'exception' => $e,
-				]
-			);
-			throw new OCSException($e->getMessage(), 101);
-		} catch (\Exception $e) {
-			$this->logger->error(
-				'Failed addUser attempt with exception.',
-				[
-					'app' => 'ocs_api',
-					'exception' => $e
-				]
-			);
-			throw new OCSException('Bad request', 101);
-		}
-	}
-
-	/**
-	 * @NoSubAdminRequired
-	 *
-	 * Get the details of a user
-	 *
-	 * @param string $userId ID of the user
-	 * @return DataResponse<Http::STATUS_OK, Provisioning_APIUserDetails, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User returned
-	 */
-	#[NoAdminRequired]
-	public function getUser(string $userId): DataResponse {
-		$includeScopes = false;
-		$currentUser = $this->userSession->getUser();
-		if ($currentUser && $currentUser->getUID() === $userId) {
-			$includeScopes = true;
-		}
-
-		$data = $this->getUserData($userId, $includeScopes);
-		// getUserData returns null if not enough permissions
-		if ($data === null) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-		return new DataResponse($data);
-	}
-
-	/**
-	 * @NoSubAdminRequired
-	 *
-	 * Get the details of the current user
-	 *
-	 * @return DataResponse<Http::STATUS_OK, Provisioning_APIUserDetails, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: Current user returned
-	 */
-	#[NoAdminRequired]
-	public function getCurrentUser(): DataResponse {
-		$user = $this->userSession->getUser();
-		if ($user) {
-			/** @var Provisioning_APIUserDetails $data */
-			$data = $this->getUserData($user->getUID(), true);
-			return new DataResponse($data);
-		}
-
-		throw new OCSException('', OCSController::RESPOND_UNAUTHORISED);
-	}
-
-	/**
-	 * @NoSubAdminRequired
-	 *
-	 * Get a list of fields that are editable for the current user
-	 *
-	 * @return DataResponse<Http::STATUS_OK, list<string>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: Editable fields returned
-	 */
-	#[NoAdminRequired]
-	public function getEditableFields(): DataResponse {
-		$currentLoggedInUser = $this->userSession->getUser();
-		if (!$currentLoggedInUser instanceof IUser) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		return $this->getEditableFieldsForUser($currentLoggedInUser->getUID());
-	}
-
-	/**
-	 * Get a list of enabled apps for the current user
-	 *
-	 * @return DataResponse<Http::STATUS_OK, array{apps: list<string>}, array{}>
-	 *
-	 * 200: Enabled apps returned
-	 */
-	#[NoAdminRequired]
-	public function getEnabledApps(): DataResponse {
-		$currentLoggedInUser = $this->userSession->getUser();
-		return new DataResponse(['apps' => $this->appManager->getEnabledAppsForUser($currentLoggedInUser)]);
-	}
-
-	/**
-	 * @NoSubAdminRequired
-	 *
-	 * Get a list of fields that are editable for a user
-	 *
-	 * @param string $userId ID of the user
-	 * @return DataResponse<Http::STATUS_OK, list<string>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: Editable fields for user returned
-	 */
-	#[NoAdminRequired]
-	public function getEditableFieldsForUser(string $userId): DataResponse {
-		$currentLoggedInUser = $this->userSession->getUser();
-		if (!$currentLoggedInUser instanceof IUser) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		$permittedFields = [];
-
-		if ($userId !== $currentLoggedInUser->getUID()) {
-			$targetUser = $this->userManager->get($userId);
-			if (!$targetUser instanceof IUser) {
-				throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-			}
-
-			$subAdminManager = $this->groupManager->getSubAdmin();
-			$isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
-			$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
-			if (
-				!($isAdmin || $isDelegatedAdmin)
-				&& !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)
-			) {
-				throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-			}
-		} else {
-			$targetUser = $currentLoggedInUser;
-		}
-
-		$allowDisplayNameChange = $this->config->getSystemValue('allow_user_to_change_display_name', true);
-		if ($allowDisplayNameChange === true && (
-			$targetUser->getBackend() instanceof ISetDisplayNameBackend
-			|| $targetUser->getBackend()->implementsActions(Backend::SET_DISPLAYNAME)
-		)) {
-			$permittedFields[] = IAccountManager::PROPERTY_DISPLAYNAME;
-		}
-
-		// Fallback to display name value to avoid changing behavior with the new option.
-		if ($this->config->getSystemValue('allow_user_to_change_email', $allowDisplayNameChange)) {
-			$permittedFields[] = IAccountManager::PROPERTY_EMAIL;
-		}
-
-		$permittedFields[] = IAccountManager::COLLECTION_EMAIL;
-		$permittedFields[] = IAccountManager::PROPERTY_PHONE;
-		$permittedFields[] = IAccountManager::PROPERTY_ADDRESS;
-		$permittedFields[] = IAccountManager::PROPERTY_WEBSITE;
-		$permittedFields[] = IAccountManager::PROPERTY_TWITTER;
-		$permittedFields[] = IAccountManager::PROPERTY_FEDIVERSE;
-		$permittedFields[] = IAccountManager::PROPERTY_ORGANISATION;
-		$permittedFields[] = IAccountManager::PROPERTY_ROLE;
-		$permittedFields[] = IAccountManager::PROPERTY_HEADLINE;
-		$permittedFields[] = IAccountManager::PROPERTY_BIOGRAPHY;
-		$permittedFields[] = IAccountManager::PROPERTY_PROFILE_ENABLED;
-		$permittedFields[] = IAccountManager::PROPERTY_PRONOUNS;
-
-		return new DataResponse($permittedFields);
-	}
-
-	/**
-	 * @NoSubAdminRequired
-	 *
-	 * Update multiple values of the user's details
-	 *
-	 * @param string $userId ID of the user
-	 * @param string $collectionName Collection to update
-	 * @param string $key Key that will be updated
-	 * @param string $value New value for the key
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User values edited successfully
-	 */
-	#[PasswordConfirmationRequired]
-	#[NoAdminRequired]
-	#[UserRateLimit(limit: 5, period: 60)]
-	public function editUserMultiValue(
-		string $userId,
-		string $collectionName,
-		string $key,
-		string $value,
-	): DataResponse {
-		$currentLoggedInUser = $this->userSession->getUser();
-		if ($currentLoggedInUser === null) {
-			throw new OCSException('', OCSController::RESPOND_UNAUTHORISED);
-		}
-
-		$targetUser = $this->userManager->get($userId);
-		if ($targetUser === null) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		$subAdminManager = $this->groupManager->getSubAdmin();
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
-		$isAdminOrSubadmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID())
-			|| $subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser);
-
-		$permittedFields = [];
-		if ($targetUser->getUID() === $currentLoggedInUser->getUID()) {
-			// Editing self (display, email)
-			$permittedFields[] = IAccountManager::COLLECTION_EMAIL;
-			$permittedFields[] = IAccountManager::COLLECTION_EMAIL . self::SCOPE_SUFFIX;
-		} else {
-			// Check if admin / subadmin
-			if ($isAdminOrSubadmin || $isDelegatedAdmin && !$this->groupManager->isInGroup($targetUser->getUID(), 'admin')) {
-				// They have permissions over the user
-				$permittedFields[] = IAccountManager::COLLECTION_EMAIL;
-			} else {
-				// No rights
-				throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-			}
-		}
-
-		// Check if permitted to edit this field
-		if (!in_array($collectionName, $permittedFields)) {
-			throw new OCSException('', 103);
-		}
-
-		switch ($collectionName) {
-			case IAccountManager::COLLECTION_EMAIL:
-				$userAccount = $this->accountManager->getAccount($targetUser);
-				$mailCollection = $userAccount->getPropertyCollection(IAccountManager::COLLECTION_EMAIL);
-				$mailCollection->removePropertyByValue($key);
-				if ($value !== '') {
-					$value = mb_strtolower(trim($value));
-					$mailCollection->addPropertyWithDefaults($value);
-					$property = $mailCollection->getPropertyByValue($key);
-					if ($isAdminOrSubadmin && $property) {
-						// admin set mails are auto-verified
-						$property->setLocallyVerified(IAccountManager::VERIFIED);
-					}
-				}
-				$this->accountManager->updateAccount($userAccount);
-				if ($value === '' && $key === $targetUser->getPrimaryEMailAddress()) {
-					$targetUser->setPrimaryEMailAddress('');
-				}
-				break;
-
-			case IAccountManager::COLLECTION_EMAIL . self::SCOPE_SUFFIX:
-				$userAccount = $this->accountManager->getAccount($targetUser);
-				$mailCollection = $userAccount->getPropertyCollection(IAccountManager::COLLECTION_EMAIL);
-				$targetProperty = null;
-				foreach ($mailCollection->getProperties() as $property) {
-					if ($property->getValue() === $key) {
-						$targetProperty = $property;
-						break;
-					}
-				}
-				if ($targetProperty instanceof IAccountProperty) {
-					try {
-						$targetProperty->setScope($value);
-						$this->accountManager->updateAccount($userAccount);
-					} catch (InvalidArgumentException $e) {
-						throw new OCSException('', 102);
-					}
-				} else {
-					throw new OCSException('', 102);
-				}
-				break;
-
-			default:
-				throw new OCSException('', 103);
-		}
-		return new DataResponse();
-	}
-
-	/**
-	 * @NoSubAdminRequired
-	 *
-	 * Update a value of the user's details
-	 *
-	 * @param string $userId ID of the user
-	 * @param string $key Key that will be updated
-	 * @param string $value New value for the key
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User value edited successfully
-	 */
-	#[PasswordConfirmationRequired]
-	#[NoAdminRequired]
-	#[UserRateLimit(limit: 50, period: 600)]
-	public function editUser(string $userId, string $key, string $value): DataResponse {
-		$currentLoggedInUser = $this->userSession->getUser();
-
-		$targetUser = $this->userManager->get($userId);
-		if ($targetUser === null) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		$permittedFields = [];
-		if ($targetUser->getUID() === $currentLoggedInUser->getUID()) {
-			$allowDisplayNameChange = $this->config->getSystemValue('allow_user_to_change_display_name', true);
-			if ($allowDisplayNameChange !== false && (
-				$targetUser->getBackend() instanceof ISetDisplayNameBackend
-				|| $targetUser->getBackend()->implementsActions(Backend::SET_DISPLAYNAME)
-			)) {
-				$permittedFields[] = self::USER_FIELD_DISPLAYNAME;
-				$permittedFields[] = IAccountManager::PROPERTY_DISPLAYNAME;
-			}
-
-			// Fallback to display name value to avoid changing behavior with the new option.
-			if ($this->config->getSystemValue('allow_user_to_change_email', $allowDisplayNameChange)) {
-				$permittedFields[] = IAccountManager::PROPERTY_EMAIL;
-			}
-
-			$permittedFields[] = IAccountManager::PROPERTY_DISPLAYNAME . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_EMAIL . self::SCOPE_SUFFIX;
-
-			$permittedFields[] = IAccountManager::COLLECTION_EMAIL;
-
-			$permittedFields[] = self::USER_FIELD_PASSWORD;
-			$permittedFields[] = self::USER_FIELD_NOTIFICATION_EMAIL;
-			if (
-				$this->config->getSystemValue('force_language', false) === false
-				|| $this->groupManager->isAdmin($currentLoggedInUser->getUID())
-				|| $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID())
-			) {
-				$permittedFields[] = self::USER_FIELD_LANGUAGE;
-			}
-
-			if (
-				$this->config->getSystemValue('force_locale', false) === false
-				|| $this->groupManager->isAdmin($currentLoggedInUser->getUID())
-				|| $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID())
-			) {
-				$permittedFields[] = self::USER_FIELD_LOCALE;
-				$permittedFields[] = self::USER_FIELD_FIRST_DAY_OF_WEEK;
-			}
-
-			$permittedFields[] = IAccountManager::PROPERTY_PHONE;
-			$permittedFields[] = IAccountManager::PROPERTY_ADDRESS;
-			$permittedFields[] = IAccountManager::PROPERTY_WEBSITE;
-			$permittedFields[] = IAccountManager::PROPERTY_TWITTER;
-			$permittedFields[] = IAccountManager::PROPERTY_FEDIVERSE;
-			$permittedFields[] = IAccountManager::PROPERTY_ORGANISATION;
-			$permittedFields[] = IAccountManager::PROPERTY_ROLE;
-			$permittedFields[] = IAccountManager::PROPERTY_HEADLINE;
-			$permittedFields[] = IAccountManager::PROPERTY_BIOGRAPHY;
-			$permittedFields[] = IAccountManager::PROPERTY_PROFILE_ENABLED;
-			$permittedFields[] = IAccountManager::PROPERTY_BIRTHDATE;
-			$permittedFields[] = IAccountManager::PROPERTY_PRONOUNS;
-
-			$permittedFields[] = IAccountManager::PROPERTY_PHONE . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_ADDRESS . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_WEBSITE . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_TWITTER . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_FEDIVERSE . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_ORGANISATION . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_ROLE . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_HEADLINE . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_BIOGRAPHY . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_PROFILE_ENABLED . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_BIRTHDATE . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_AVATAR . self::SCOPE_SUFFIX;
-			$permittedFields[] = IAccountManager::PROPERTY_PRONOUNS . self::SCOPE_SUFFIX;
-
-			// If admin they can edit their own quota and manager
-			$isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
-			$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
-			if ($isAdmin || $isDelegatedAdmin) {
-				$permittedFields[] = self::USER_FIELD_QUOTA;
-				$permittedFields[] = self::USER_FIELD_MANAGER;
-			}
-		} else {
-			// Check if admin / subadmin
-			$subAdminManager = $this->groupManager->getSubAdmin();
-			if (
-				$this->groupManager->isAdmin($currentLoggedInUser->getUID())
-				|| $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID()) && !$this->groupManager->isInGroup($targetUser->getUID(), 'admin')
-				|| $subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)
-			) {
-				// They have permissions over the user
-				if (
-					$targetUser->getBackend() instanceof ISetDisplayNameBackend
-					|| $targetUser->getBackend()->implementsActions(Backend::SET_DISPLAYNAME)
-				) {
-					$permittedFields[] = self::USER_FIELD_DISPLAYNAME;
-					$permittedFields[] = IAccountManager::PROPERTY_DISPLAYNAME;
-				}
-				$permittedFields[] = IAccountManager::PROPERTY_EMAIL;
-				$permittedFields[] = IAccountManager::COLLECTION_EMAIL;
-				$permittedFields[] = self::USER_FIELD_PASSWORD;
-				$permittedFields[] = self::USER_FIELD_LANGUAGE;
-				$permittedFields[] = self::USER_FIELD_LOCALE;
-				$permittedFields[] = self::USER_FIELD_FIRST_DAY_OF_WEEK;
-				$permittedFields[] = IAccountManager::PROPERTY_PHONE;
-				$permittedFields[] = IAccountManager::PROPERTY_ADDRESS;
-				$permittedFields[] = IAccountManager::PROPERTY_WEBSITE;
-				$permittedFields[] = IAccountManager::PROPERTY_TWITTER;
-				$permittedFields[] = IAccountManager::PROPERTY_FEDIVERSE;
-				$permittedFields[] = IAccountManager::PROPERTY_ORGANISATION;
-				$permittedFields[] = IAccountManager::PROPERTY_ROLE;
-				$permittedFields[] = IAccountManager::PROPERTY_HEADLINE;
-				$permittedFields[] = IAccountManager::PROPERTY_BIOGRAPHY;
-				$permittedFields[] = IAccountManager::PROPERTY_PROFILE_ENABLED;
-				$permittedFields[] = IAccountManager::PROPERTY_PRONOUNS;
-				$permittedFields[] = self::USER_FIELD_QUOTA;
-				$permittedFields[] = self::USER_FIELD_NOTIFICATION_EMAIL;
-				$permittedFields[] = self::USER_FIELD_MANAGER;
-			} else {
-				// No rights
-				throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-			}
-		}
-		// Check if permitted to edit this field
-		if (!in_array($key, $permittedFields)) {
-			throw new OCSException('', 113);
-		}
-		// Process the edit
-		switch ($key) {
-			case self::USER_FIELD_DISPLAYNAME:
-			case IAccountManager::PROPERTY_DISPLAYNAME:
-				try {
-					$targetUser->setDisplayName($value);
-				} catch (InvalidArgumentException $e) {
-					throw new OCSException($e->getMessage(), 101);
-				}
-				break;
-			case self::USER_FIELD_QUOTA:
-				$quota = $value;
-				if ($quota !== 'none' && $quota !== 'default') {
-					if (is_numeric($quota)) {
-						$quota = (float)$quota;
-					} else {
-						$quota = Util::computerFileSize($quota);
-					}
-					if ($quota === false) {
-						throw new OCSException($this->l10n->t('Invalid quota value: %1$s', [$value]), 101);
-					}
-					if ($quota === -1) {
-						$quota = 'none';
-					} else {
-						$maxQuota = (int)$this->config->getAppValue('files', 'max_quota', '-1');
-						if ($maxQuota !== -1 && $quota > $maxQuota) {
-							throw new OCSException($this->l10n->t('Invalid quota value. %1$s is exceeding the maximum quota', [$value]), 101);
-						}
-						$quota = Util::humanFileSize($quota);
-					}
-				}
-				// no else block because quota can be set to 'none' in previous if
-				if ($quota === 'none') {
-					$allowUnlimitedQuota = $this->config->getAppValue('files', 'allow_unlimited_quota', '1') === '1';
-					if (!$allowUnlimitedQuota) {
-						throw new OCSException($this->l10n->t('Unlimited quota is forbidden on this instance'), 101);
-					}
-				}
-				$targetUser->setQuota($quota);
-				break;
-			case self::USER_FIELD_MANAGER:
-				$targetUser->setManagerUids([$value]);
-				break;
-			case self::USER_FIELD_PASSWORD:
-				try {
-					if (strlen($value) > IUserManager::MAX_PASSWORD_LENGTH) {
-						throw new OCSException($this->l10n->t('Invalid password value'), 101);
-					}
-					if (!$targetUser->canChangePassword()) {
-						throw new OCSException($this->l10n->t('Setting the password is not supported by the users backend'), 112);
-					}
-					$targetUser->setPassword($value);
-				} catch (HintException $e) { // password policy error
-					throw new OCSException($e->getHint(), 107);
-				}
-				break;
-			case self::USER_FIELD_LANGUAGE:
-				$languagesCodes = $this->l10nFactory->findAvailableLanguages();
-				if (!in_array($value, $languagesCodes, true) && $value !== 'en') {
-					throw new OCSException($this->l10n->t('Invalid language'), 101);
-				}
-				$this->config->setUserValue($targetUser->getUID(), 'core', 'lang', $value);
-				break;
-			case self::USER_FIELD_LOCALE:
-				if (!$this->l10nFactory->localeExists($value)) {
-					throw new OCSException($this->l10n->t('Invalid locale'), 101);
-				}
-				$this->config->setUserValue($targetUser->getUID(), 'core', 'locale', $value);
-				break;
-			case self::USER_FIELD_FIRST_DAY_OF_WEEK:
-				$intValue = (int)$value;
-				if ($intValue < -1 || $intValue > 6) {
-					throw new OCSException($this->l10n->t('Invalid first day of week'), 101);
-				}
-				if ($intValue === -1) {
-					$this->config->deleteUserValue($targetUser->getUID(), 'core', AUserDataOCSController::USER_FIELD_FIRST_DAY_OF_WEEK);
-				} else {
-					$this->config->setUserValue($targetUser->getUID(), 'core', AUserDataOCSController::USER_FIELD_FIRST_DAY_OF_WEEK, $value);
-				}
-				break;
-			case self::USER_FIELD_NOTIFICATION_EMAIL:
-				$success = false;
-				if ($value === '' || filter_var($value, FILTER_VALIDATE_EMAIL)) {
-					try {
-						$targetUser->setPrimaryEMailAddress($value);
-						$success = true;
-					} catch (InvalidArgumentException $e) {
-						$this->logger->info(
-							'Cannot set primary email, because provided address is not verified',
-							[
-								'app' => 'provisioning_api',
-								'exception' => $e,
-							]
-						);
-					}
-				}
-				if (!$success) {
-					throw new OCSException('', 101);
-				}
-				break;
-			case IAccountManager::PROPERTY_EMAIL:
-				$value = mb_strtolower(trim($value));
-				if (filter_var($value, FILTER_VALIDATE_EMAIL) || $value === '') {
-					$targetUser->setSystemEMailAddress($value);
-				} else {
-					throw new OCSException('', 101);
-				}
-				break;
-			case IAccountManager::COLLECTION_EMAIL:
-				$value = mb_strtolower(trim($value));
-				if (filter_var($value, FILTER_VALIDATE_EMAIL) && $value !== $targetUser->getSystemEMailAddress()) {
-					$userAccount = $this->accountManager->getAccount($targetUser);
-					$mailCollection = $userAccount->getPropertyCollection(IAccountManager::COLLECTION_EMAIL);
-
-					if ($mailCollection->getPropertyByValue($value)) {
-						throw new OCSException('', 101);
-					}
-
-					$mailCollection->addPropertyWithDefaults($value);
-					$this->accountManager->updateAccount($userAccount);
-				} else {
-					throw new OCSException('', 101);
-				}
-				break;
-			case IAccountManager::PROPERTY_PHONE:
-			case IAccountManager::PROPERTY_ADDRESS:
-			case IAccountManager::PROPERTY_WEBSITE:
-			case IAccountManager::PROPERTY_TWITTER:
-			case IAccountManager::PROPERTY_FEDIVERSE:
-			case IAccountManager::PROPERTY_ORGANISATION:
-			case IAccountManager::PROPERTY_ROLE:
-			case IAccountManager::PROPERTY_HEADLINE:
-			case IAccountManager::PROPERTY_BIOGRAPHY:
-			case IAccountManager::PROPERTY_BIRTHDATE:
-			case IAccountManager::PROPERTY_PRONOUNS:
-				$userAccount = $this->accountManager->getAccount($targetUser);
-				try {
-					$userProperty = $userAccount->getProperty($key);
-					if ($userProperty->getValue() !== $value) {
-						try {
-							$userProperty->setValue($value);
-							if ($userProperty->getName() === IAccountManager::PROPERTY_PHONE) {
-								$this->knownUserService->deleteByContactUserId($targetUser->getUID());
-							}
-						} catch (InvalidArgumentException $e) {
-							throw new OCSException('Invalid ' . $e->getMessage(), 101);
-						}
-					}
-				} catch (PropertyDoesNotExistException $e) {
-					$userAccount->setProperty($key, $value, IAccountManager::SCOPE_PRIVATE, IAccountManager::NOT_VERIFIED);
-				}
-				try {
-					$this->accountManager->updateAccount($userAccount);
-				} catch (InvalidArgumentException $e) {
-					throw new OCSException('Invalid ' . $e->getMessage(), 101);
-				}
-				break;
-			case IAccountManager::PROPERTY_PROFILE_ENABLED:
-				$userAccount = $this->accountManager->getAccount($targetUser);
-				try {
-					$userProperty = $userAccount->getProperty($key);
-					if ($userProperty->getValue() !== $value) {
-						$userProperty->setValue($value);
-					}
-				} catch (PropertyDoesNotExistException $e) {
-					$userAccount->setProperty($key, $value, IAccountManager::SCOPE_LOCAL, IAccountManager::NOT_VERIFIED);
-				}
-				$this->accountManager->updateAccount($userAccount);
-				break;
-			case IAccountManager::PROPERTY_DISPLAYNAME . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_EMAIL . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_PHONE . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_ADDRESS . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_WEBSITE . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_TWITTER . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_FEDIVERSE . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_ORGANISATION . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_ROLE . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_HEADLINE . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_BIOGRAPHY . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_PROFILE_ENABLED . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_BIRTHDATE . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_AVATAR . self::SCOPE_SUFFIX:
-			case IAccountManager::PROPERTY_PRONOUNS . self::SCOPE_SUFFIX:
-				$propertyName = substr($key, 0, strlen($key) - strlen(self::SCOPE_SUFFIX));
-				$userAccount = $this->accountManager->getAccount($targetUser);
-				$userProperty = $userAccount->getProperty($propertyName);
-				if ($userProperty->getScope() !== $value) {
-					try {
-						$userProperty->setScope($value);
-						$this->accountManager->updateAccount($userAccount);
-					} catch (InvalidArgumentException $e) {
-						throw new OCSException('Invalid ' . $e->getMessage(), 101);
-					}
-				}
-				break;
-			default:
-				throw new OCSException('', 113);
-		}
-		return new DataResponse();
-	}
-
-	/**
-	 * Wipe all devices of a user
-	 *
-	 * @param string $userId ID of the user
-	 *
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 *
-	 * @throws OCSException
-	 *
-	 * 200: Wiped all user devices successfully
-	 */
-	#[PasswordConfirmationRequired]
-	#[NoAdminRequired]
-	public function wipeUserDevices(string $userId): DataResponse {
-		/** @var IUser $currentLoggedInUser */
-		$currentLoggedInUser = $this->userSession->getUser();
-
-		$targetUser = $this->userManager->get($userId);
-
-		if ($targetUser === null) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		if ($targetUser->getUID() === $currentLoggedInUser->getUID()) {
-			throw new OCSException('', 101);
-		}
-
-		// If not permitted
-		$subAdminManager = $this->groupManager->getSubAdmin();
-		$isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
-		if (!$isAdmin && !($isDelegatedAdmin && !$this->groupManager->isInGroup($targetUser->getUID(), 'admin')) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		$this->remoteWipe->markAllTokensForWipe($targetUser);
-
-		return new DataResponse();
-	}
-
-	/**
-	 * Delete a user
-	 *
-	 * @param string $userId ID of the user
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User deleted successfully
-	 */
-	#[PasswordConfirmationRequired]
-	#[NoAdminRequired]
-	public function deleteUser(string $userId): DataResponse {
-		$currentLoggedInUser = $this->userSession->getUser();
-
-		$targetUser = $this->userManager->get($userId);
-
-		if ($targetUser === null) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		if ($targetUser->getUID() === $currentLoggedInUser->getUID()) {
-			throw new OCSException('', 101);
-		}
-
-		// If not permitted
-		$subAdminManager = $this->groupManager->getSubAdmin();
-		$isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
-		if (!$isAdmin && !($isDelegatedAdmin && !$this->groupManager->isInGroup($targetUser->getUID(), 'admin')) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		// Go ahead with the delete
-		if ($targetUser->delete()) {
-			return new DataResponse();
-		} else {
-			throw new OCSException('', 101);
-		}
-	}
-
-	/**
-	 * Disable a user
-	 *
-	 * @param string $userId ID of the user
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User disabled successfully
-	 */
-	#[PasswordConfirmationRequired]
-	#[NoAdminRequired]
-	public function disableUser(string $userId): DataResponse {
-		return $this->setEnabled($userId, false);
-	}
-
-	/**
-	 * Enable a user
-	 *
-	 * @param string $userId ID of the user
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User enabled successfully
-	 */
-	#[PasswordConfirmationRequired]
-	#[NoAdminRequired]
-	public function enableUser(string $userId): DataResponse {
-		return $this->setEnabled($userId, true);
-	}
-
-	/**
-	 * @param string $userId
-	 * @param bool $value
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 */
-	private function setEnabled(string $userId, bool $value): DataResponse {
-		$currentLoggedInUser = $this->userSession->getUser();
-
-		$targetUser = $this->userManager->get($userId);
-		if ($targetUser === null || $targetUser->getUID() === $currentLoggedInUser->getUID()) {
-			throw new OCSException('', 101);
-		}
-
-		// If not permitted
-		$subAdminManager = $this->groupManager->getSubAdmin();
-		$isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
-		if (!$isAdmin && !($isDelegatedAdmin && !$this->groupManager->isInGroup($targetUser->getUID(), 'admin')) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		// enable/disable the user now
-		$targetUser->setEnabled($value);
-		return new DataResponse();
-	}
-
-	/**
-	 * @NoSubAdminRequired
-	 *
-	 * Get a list of groups the user belongs to
-	 *
-	 * @param string $userId ID of the user
-	 * @return DataResponse<Http::STATUS_OK, array{groups: list<string>}, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: Users groups returned
-	 */
-	#[NoAdminRequired]
-	public function getUsersGroups(string $userId): DataResponse {
-		$loggedInUser = $this->userSession->getUser();
-
-		$targetUser = $this->userManager->get($userId);
-		if ($targetUser === null) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		$isAdmin = $this->groupManager->isAdmin($loggedInUser->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($loggedInUser->getUID());
-		if ($targetUser->getUID() === $loggedInUser->getUID() || $isAdmin || $isDelegatedAdmin) {
-			// Self lookup or admin lookup
-			return new DataResponse([
-				'groups' => $this->groupManager->getUserGroupIds($targetUser)
-			]);
-		} else {
-			$subAdminManager = $this->groupManager->getSubAdmin();
-
-			// Looking up someone else
-			if ($subAdminManager->isUserAccessible($loggedInUser, $targetUser)) {
-				// Return the group that the method caller is subadmin of for the user in question
-				$groups = array_values(array_intersect(
-					array_map(static fn (IGroup $group) => $group->getGID(), $subAdminManager->getSubAdminsGroups($loggedInUser)),
-					$this->groupManager->getUserGroupIds($targetUser)
-				));
-				return new DataResponse(['groups' => $groups]);
-			} else {
-				// Not permitted
-				throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-			}
-		}
-	}
-
-	/**
-	 * @NoSubAdminRequired
-	 *
-	 * Get a list of groups with details
-	 *
-	 * @param string $userId ID of the user
-	 * @return DataResponse<Http::STATUS_OK, array{groups: list<Provisioning_APIGroupDetails>}, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: Users groups returned
-	 */
-	#[NoAdminRequired]
-	public function getUsersGroupsDetails(string $userId): DataResponse {
-		$loggedInUser = $this->userSession->getUser();
-
-		$targetUser = $this->userManager->get($userId);
-		if ($targetUser === null) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		$isAdmin = $this->groupManager->isAdmin($loggedInUser->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($loggedInUser->getUID());
-		if ($targetUser->getUID() === $loggedInUser->getUID() || $isAdmin || $isDelegatedAdmin) {
-			// Self lookup or admin lookup
-			$groups = array_map(
-				function (Group $group) {
-					return [
-						'id' => $group->getGID(),
-						'displayname' => $group->getDisplayName(),
-						'usercount' => $group->count(),
-						'disabled' => $group->countDisabled(),
-						'canAdd' => $group->canAddUser(),
-						'canRemove' => $group->canRemoveUser(),
-					];
-				},
-				array_values($this->groupManager->getUserGroups($targetUser)),
-			);
-			return new DataResponse([
-				'groups' => $groups,
-			]);
-		} else {
-			$subAdminManager = $this->groupManager->getSubAdmin();
-
-			// Looking up someone else
-			if ($subAdminManager->isUserAccessible($loggedInUser, $targetUser)) {
-				// Return the group that the method caller is subadmin of for the user in question
-				$gids = array_values(array_intersect(
-					array_map(
-						static fn (IGroup $group) => $group->getGID(),
-						$subAdminManager->getSubAdminsGroups($loggedInUser),
-					),
-					$this->groupManager->getUserGroupIds($targetUser)
-				));
-				$groups = array_map(
-					function (string $gid) {
-						$group = $this->groupManager->get($gid);
-						return [
-							'id' => $group->getGID(),
-							'displayname' => $group->getDisplayName(),
-							'usercount' => $group->count(),
-							'disabled' => $group->countDisabled(),
-							'canAdd' => $group->canAddUser(),
-							'canRemove' => $group->canRemoveUser(),
-						];
-					},
-					$gids,
-				);
-				return new DataResponse([
-					'groups' => $groups,
-				]);
-			} else {
-				// Not permitted
-				throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-			}
-		}
-	}
-
-	/**
-	 * @NoSubAdminRequired
-	 *
-	 * Get a list of the groups the user is a subadmin of, with details
-	 *
-	 * @param string $userId ID of the user
-	 * @return DataResponse<Http::STATUS_OK, array{groups: list<Provisioning_APIGroupDetails>}, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: Users subadmin groups returned
-	 */
-	#[NoAdminRequired]
-	public function getUserSubAdminGroupsDetails(string $userId): DataResponse {
-		$loggedInUser = $this->userSession->getUser();
-
-		$targetUser = $this->userManager->get($userId);
-		if ($targetUser === null) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		$isAdmin = $this->groupManager->isAdmin($loggedInUser->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($loggedInUser->getUID());
-		if ($targetUser->getUID() === $loggedInUser->getUID() || $isAdmin || $isDelegatedAdmin) {
-			$subAdminManager = $this->groupManager->getSubAdmin();
-			$groups = array_map(
-				function (IGroup $group) {
-					return [
-						'id' => $group->getGID(),
-						'displayname' => $group->getDisplayName(),
-						'usercount' => $group->count(),
-						'disabled' => $group->countDisabled(),
-						'canAdd' => $group->canAddUser(),
-						'canRemove' => $group->canRemoveUser(),
-					];
-				},
-				array_values($subAdminManager->getSubAdminsGroups($targetUser)),
-			);
-			return new DataResponse([
-				'groups' => $groups,
-			]);
-		}
-		throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-	}
-
-	/**
-	 * Add a user to a group
-	 *
-	 * @param string $userId ID of the user
-	 * @param string $groupid ID of the group
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User added to group successfully
-	 */
-	#[PasswordConfirmationRequired]
-	#[NoAdminRequired]
-	public function addToGroup(string $userId, string $groupid = ''): DataResponse {
-		if ($groupid === '') {
-			throw new OCSException('', 101);
-		}
-
-		$group = $this->groupManager->get($groupid);
-		$targetUser = $this->userManager->get($userId);
-		if ($group === null) {
-			throw new OCSException('', 102);
-		}
-		if ($targetUser === null) {
-			throw new OCSException('', 103);
-		}
-
-		// If they're not an admin, check they are a subadmin of the group in question
-		$loggedInUser = $this->userSession->getUser();
-		$subAdminManager = $this->groupManager->getSubAdmin();
-		$isAdmin = $this->groupManager->isAdmin($loggedInUser->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($loggedInUser->getUID());
-		if (!$isAdmin && !($isDelegatedAdmin && $groupid !== 'admin') && !$subAdminManager->isSubAdminOfGroup($loggedInUser, $group)) {
-			throw new OCSException('', 104);
-		}
-
-		// Add user to group
-		$group->addUser($targetUser);
-		return new DataResponse();
-	}
-
-	/**
-	 * Remove a user from a group
-	 *
-	 * @param string $userId ID of the user
-	 * @param string $groupid ID of the group
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User removed from group successfully
-	 */
-	#[PasswordConfirmationRequired]
-	#[NoAdminRequired]
-	public function removeFromGroup(string $userId, string $groupid): DataResponse {
-		$loggedInUser = $this->userSession->getUser();
-
-		if ($groupid === null || trim($groupid) === '') {
-			throw new OCSException('', 101);
-		}
-
-		$group = $this->groupManager->get($groupid);
-		if ($group === null) {
-			throw new OCSException('', 102);
-		}
-
-		$targetUser = $this->userManager->get($userId);
-		if ($targetUser === null) {
-			throw new OCSException('', 103);
-		}
-
-		// If they're not an admin, check they are a subadmin of the group in question
-		$subAdminManager = $this->groupManager->getSubAdmin();
-		$isAdmin = $this->groupManager->isAdmin($loggedInUser->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($loggedInUser->getUID());
-		if (!$isAdmin && !($isDelegatedAdmin && $groupid !== 'admin') && !$subAdminManager->isSubAdminOfGroup($loggedInUser, $group)) {
-			throw new OCSException('', 104);
-		}
-
-		// Check they aren't removing themselves from 'admin' or their 'subadmin; group
-		if ($targetUser->getUID() === $loggedInUser->getUID()) {
-			if ($isAdmin || $isDelegatedAdmin) {
-				if ($group->getGID() === 'admin') {
-					throw new OCSException($this->l10n->t('Cannot remove yourself from the admin group'), 105);
-				}
-			} else {
-				// Not an admin, so the user must be a subadmin of this group, but that is not allowed.
-				throw new OCSException($this->l10n->t('Cannot remove yourself from this group as you are a sub-admin'), 105);
-			}
-		} elseif (!($isAdmin || $isDelegatedAdmin)) {
-			/** @var IGroup[] $subAdminGroups */
-			$subAdminGroups = $subAdminManager->getSubAdminsGroups($loggedInUser);
-			$subAdminGroups = array_map(function (IGroup $subAdminGroup) {
-				return $subAdminGroup->getGID();
-			}, $subAdminGroups);
-			$userGroups = $this->groupManager->getUserGroupIds($targetUser);
-			$userSubAdminGroups = array_intersect($subAdminGroups, $userGroups);
-
-			if (count($userSubAdminGroups) <= 1) {
-				// Subadmin must not be able to remove a user from all their subadmin groups.
-				throw new OCSException($this->l10n->t('Not viable to remove user from the last group you are sub-admin of'), 105);
-			}
-		}
-
-		// Remove user from group
-		$group->removeUser($targetUser);
-		return new DataResponse();
-	}
-
-	/**
-	 * Make a user a subadmin of a group
-	 *
-	 * @param string $userId ID of the user
-	 * @param string $groupid ID of the group
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User added as group subadmin successfully
-	 */
-	#[AuthorizedAdminSetting(settings:Users::class)]
-	#[PasswordConfirmationRequired]
-	public function addSubAdmin(string $userId, string $groupid): DataResponse {
-		$group = $this->groupManager->get($groupid);
-		$user = $this->userManager->get($userId);
-
-		// Check if the user exists
-		if ($user === null) {
-			throw new OCSException($this->l10n->t('User does not exist'), 101);
-		}
-		// Check if group exists
-		if ($group === null) {
-			throw new OCSException($this->l10n->t('Group does not exist'), 102);
-		}
-		// Check if trying to make subadmin of admin group
-		if ($group->getGID() === 'admin') {
-			throw new OCSException($this->l10n->t('Cannot create sub-admins for admin group'), 103);
-		}
-
-		$subAdminManager = $this->groupManager->getSubAdmin();
-
-		// We cannot be subadmin twice
-		if ($subAdminManager->isSubAdminOfGroup($user, $group)) {
-			return new DataResponse();
-		}
-		// Go
-		$subAdminManager->createSubAdmin($user, $group);
-		return new DataResponse();
-	}
-
-	/**
-	 * Remove a user from the subadmins of a group
-	 *
-	 * @param string $userId ID of the user
-	 * @param string $groupid ID of the group
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User removed as group subadmin successfully
-	 */
-	#[AuthorizedAdminSetting(settings:Users::class)]
-	#[PasswordConfirmationRequired]
-	public function removeSubAdmin(string $userId, string $groupid): DataResponse {
-		$group = $this->groupManager->get($groupid);
-		$user = $this->userManager->get($userId);
-		$subAdminManager = $this->groupManager->getSubAdmin();
-
-		// Check if the user exists
-		if ($user === null) {
-			throw new OCSException($this->l10n->t('User does not exist'), 101);
-		}
-		// Check if the group exists
-		if ($group === null) {
-			throw new OCSException($this->l10n->t('Group does not exist'), 101);
-		}
-		// Check if they are a subadmin of this said group
-		if (!$subAdminManager->isSubAdminOfGroup($user, $group)) {
-			throw new OCSException($this->l10n->t('User is not a sub-admin of this group'), 102);
-		}
-
-		// Go
-		$subAdminManager->deleteSubAdmin($user, $group);
-		return new DataResponse();
-	}
-
-	/**
-	 * Get the groups a user is a subadmin of
-	 *
-	 * @param string $userId ID if the user
-	 * @return DataResponse<Http::STATUS_OK, list<string>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: User subadmin groups returned
-	 */
-	#[AuthorizedAdminSetting(settings:Users::class)]
-	public function getUserSubAdminGroups(string $userId): DataResponse {
-		$groups = $this->getUserSubAdminGroupsData($userId);
-		return new DataResponse($groups);
-	}
-
-	/**
-	 * Resend the welcome message
-	 *
-	 * @param string $userId ID if the user
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSException
-	 *
-	 * 200: Resent welcome message successfully
-	 */
-	#[PasswordConfirmationRequired]
-	#[NoAdminRequired]
-	public function resendWelcomeMessage(string $userId): DataResponse {
-		$currentLoggedInUser = $this->userSession->getUser();
-
-		$targetUser = $this->userManager->get($userId);
-		if ($targetUser === null) {
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		// Check if admin / subadmin
-		$subAdminManager = $this->groupManager->getSubAdmin();
-		$isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
-		if (
-			!$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)
-			&& !($isAdmin || $isDelegatedAdmin)
-		) {
-			// No rights
-			throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
-		}
-
-		$email = $targetUser->getEMailAddress();
-		if ($email === '' || $email === null) {
-			throw new OCSException($this->l10n->t('Email address not available'), 101);
-		}
-
-		try {
-			if ($this->config->getUserValue($targetUser->getUID(), 'core', 'lostpassword')) {
-				$emailTemplate = $this->newUserMailHelper->generateTemplate($targetUser, true);
-			} else {
-				$emailTemplate = $this->newUserMailHelper->generateTemplate($targetUser, false);
-			}
-
-			$this->newUserMailHelper->sendMail($targetUser, $emailTemplate);
-		} catch (\Exception $e) {
-			$this->logger->error(
-				"Can't send new user mail to $email",
-				[
-					'app' => 'settings',
-					'exception' => $e,
-				]
-			);
-			throw new OCSException($this->l10n->t('Sending email failed'), 102);
-		}
-
-		return new DataResponse();
-	}
+    private IL10N $l10n;
+
+    public function __construct(
+        string $appName,
+        IRequest $request,
+        IUserManager $userManager,
+        IConfig $config,
+        IGroupManager $groupManager,
+        IUserSession $userSession,
+        IAccountManager $accountManager,
+        ISubAdmin $subAdminManager,
+        IFactory $l10nFactory,
+        IRootFolder $rootFolder,
+        private IURLGenerator $urlGenerator,
+        private LoggerInterface $logger,
+        private NewUserMailHelper $newUserMailHelper,
+        private ISecureRandom $secureRandom,
+        private RemoteWipe $remoteWipe,
+        private KnownUserService $knownUserService,
+        private IEventDispatcher $eventDispatcher,
+        private IPhoneNumberUtil $phoneNumberUtil,
+        private IAppManager $appManager,
+    ) {
+        parent::__construct(
+            $appName,
+            $request,
+            $userManager,
+            $config,
+            $groupManager,
+            $userSession,
+            $accountManager,
+            $subAdminManager,
+            $l10nFactory,
+            $rootFolder,
+        );
+
+        $this->l10n = $l10nFactory->get($appName);
+    }
+
+    /**
+     * Get a list of users
+     *
+     * @param string $search Text to search for
+     * @param int|null $limit Limit the amount of groups returned
+     * @param int $offset Offset for searching for groups
+     * @return DataResponse<Http::STATUS_OK, array{users: list<string>}, array{}>
+     *
+     * 200: Users returned
+     */
+    #[NoAdminRequired]
+    public function getUsers(string $search = '', ?int $limit = null, int $offset = 0): DataResponse {
+        $user = $this->userSession->getUser();
+        $users = [];
+
+        // Admin? Or SubAdmin?
+        $uid = $user->getUID();
+        $subAdminManager = $this->groupManager->getSubAdmin();
+        $isAdmin = $this->groupManager->isAdmin($uid);
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($uid);
+        if ($isAdmin || $isDelegatedAdmin) {
+            $users = $this->userManager->search($search, $limit, $offset);
+        } elseif ($subAdminManager->isSubAdmin($user)) {
+            $subAdminOfGroups = $subAdminManager->getSubAdminsGroups($user);
+            foreach ($subAdminOfGroups as $key => $group) {
+                $subAdminOfGroups[$key] = $group->getGID();
+            }
+
+            $users = [];
+            foreach ($subAdminOfGroups as $group) {
+                $users = array_merge($users, $this->groupManager->displayNamesInGroup($group, $search, $limit, $offset));
+            }
+        }
+
+        /** @var list<string> $users */
+        $users = array_keys($users);
+
+        return new DataResponse([
+            'users' => $users
+        ]);
+    }
+
+    /**
+     * Get a list of users and their details
+     *
+     * @param string $search Text to search for
+     * @param int|null $limit Limit the amount of groups returned
+     * @param int $offset Offset for searching for groups
+     * @return DataResponse<Http::STATUS_OK, array{users: array<string, Provisioning_APIUserDetails|array{id: string}>}, array{}>
+     *
+     * 200: Users details returned
+     */
+    #[NoAdminRequired]
+    public function getUsersDetails(string $search = '', ?int $limit = null, int $offset = 0): DataResponse {
+        $currentUser = $this->userSession->getUser();
+        $users = [];
+
+        // Admin? Or SubAdmin?
+        $uid = $currentUser->getUID();
+        $subAdminManager = $this->groupManager->getSubAdmin();
+        $isAdmin = $this->groupManager->isAdmin($uid);
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($uid);
+        if ($isAdmin || $isDelegatedAdmin) {
+            $users = $this->userManager->search($search, $limit, $offset);
+            $users = array_keys($users);
+        } elseif ($subAdminManager->isSubAdmin($currentUser)) {
+            $subAdminOfGroups = $subAdminManager->getSubAdminsGroups($currentUser);
+            foreach ($subAdminOfGroups as $key => $group) {
+                $subAdminOfGroups[$key] = $group->getGID();
+            }
+
+            $users = [];
+            foreach ($subAdminOfGroups as $group) {
+                $users[] = array_keys($this->groupManager->displayNamesInGroup($group, $search, $limit, $offset));
+            }
+            $users = array_merge(...$users);
+        }
+
+        $usersDetails = [];
+        foreach ($users as $userId) {
+            $userId = (string)$userId;
+            try {
+                $userData = $this->getUserData($userId);
+            } catch (OCSNotFoundException $e) {
+                // We still want to return all other accounts, but this one was removed from the backends
+                // yet they are still in our database. Might be a LDAP remnant.
+                $userData = null;
+                $this->logger->warning('Found one enabled account that is removed from its backend, but still exists in Nextcloud database', ['accountId' => $userId]);
+            }
+            // Do not insert empty entry
+            if ($userData !== null) {
+                $usersDetails[$userId] = $userData;
+            } else {
+                // Logged user does not have permissions to see this user
+                // only showing its id
+                $usersDetails[$userId] = ['id' => $userId];
+            }
+        }
+
+        return new DataResponse([
+            'users' => $usersDetails
+        ]);
+    }
+
+    /**
+     * Get the list of disabled users and their details
+     *
+     * @param string $search Text to search for
+     * @param ?int $limit Limit the amount of users returned
+     * @param int $offset Offset
+     * @return DataResponse<Http::STATUS_OK, array{users: array<string, Provisioning_APIUserDetails|array{id: string}>}, array{}>
+     *
+     * 200: Disabled users details returned
+     */
+    #[NoAdminRequired]
+    public function getDisabledUsersDetails(string $search = '', ?int $limit = null, int $offset = 0): DataResponse {
+        $currentUser = $this->userSession->getUser();
+        if ($currentUser === null) {
+            return new DataResponse(['users' => []]);
+        }
+        if ($limit !== null && $limit < 0) {
+            throw new InvalidArgumentException("Invalid limit value: $limit");
+        }
+        if ($offset < 0) {
+            throw new InvalidArgumentException("Invalid offset value: $offset");
+        }
+
+        $users = [];
+
+        // Admin? Or SubAdmin?
+        $uid = $currentUser->getUID();
+        $subAdminManager = $this->groupManager->getSubAdmin();
+        $isAdmin = $this->groupManager->isAdmin($uid);
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($uid);
+        if ($isAdmin || $isDelegatedAdmin) {
+            $users = $this->userManager->getDisabledUsers($limit, $offset, $search);
+            $users = array_map(fn (IUser $user): string => $user->getUID(), $users);
+        } elseif ($subAdminManager->isSubAdmin($currentUser)) {
+            $subAdminOfGroups = $subAdminManager->getSubAdminsGroups($currentUser);
+
+            $users = [];
+            /* We have to handle offset ourselve for correctness */
+            $tempLimit = ($limit === null ? null : $limit + $offset);
+            foreach ($subAdminOfGroups as $group) {
+                $users = array_unique(array_merge(
+                    $users,
+                    array_map(
+                        fn (IUser $user): string => $user->getUID(),
+                        array_filter(
+                            $group->searchUsers($search),
+                            fn (IUser $user): bool => !$user->isEnabled()
+                        )
+                    )
+                ));
+                if (($tempLimit !== null) && (count($users) >= $tempLimit)) {
+                    break;
+                }
+            }
+            $users = array_slice($users, $offset, $limit);
+        }
+
+        $usersDetails = [];
+        foreach ($users as $userId) {
+            try {
+                $userData = $this->getUserData($userId);
+            } catch (OCSNotFoundException $e) {
+                // We still want to return all other accounts, but this one was removed from the backends
+                // yet they are still in our database. Might be a LDAP remnant.
+                $userData = null;
+                $this->logger->warning('Found one disabled account that was removed from its backend, but still exists in Nextcloud database', ['accountId' => $userId]);
+            }
+            // Do not insert empty entry
+            if ($userData !== null) {
+                $usersDetails[$userId] = $userData;
+            } else {
+                // Currently logged in user does not have permissions to see this user
+                // only showing its id
+                $usersDetails[$userId] = ['id' => $userId];
+            }
+        }
+
+        return new DataResponse([
+            'users' => $usersDetails
+        ]);
+    }
+
+    /**
+     * Gets the list of users sorted by lastLogin, from most recent to least recent
+     *
+     * @param string $search Text to search for
+     * @param ?int $limit Limit the amount of users returned
+     * @param int $offset Offset
+     * @return DataResponse<Http::STATUS_OK, array{users: array<string, Provisioning_APIUserDetails|array{id: string}>}, array{}>
+     *
+     * 200: Users details returned based on last logged in information
+     */
+    #[AuthorizedAdminSetting(settings:Users::class)]
+    public function getLastLoggedInUsers(string $search = '',
+        ?int $limit = null,
+        int $offset = 0,
+    ): DataResponse {
+        $currentUser = $this->userSession->getUser();
+        if ($currentUser === null) {
+            return new DataResponse(['users' => []]);
+        }
+        if ($limit !== null && $limit < 0) {
+            throw new InvalidArgumentException("Invalid limit value: $limit");
+        }
+        if ($offset < 0) {
+            throw new InvalidArgumentException("Invalid offset value: $offset");
+        }
+
+        $users = [];
+
+        // For Admin alone user sorting based on lastLogin. For sub admin and groups this is not supported
+        $users = $this->userManager->getLastLoggedInUsers($limit, $offset, $search);
+
+        $usersDetails = [];
+        foreach ($users as $userId) {
+            try {
+                $userData = $this->getUserData($userId);
+            } catch (OCSNotFoundException $e) {
+                // We still want to return all other accounts, but this one was removed from the backends
+                // yet they are still in our database. Might be a LDAP remnant.
+                $userData = null;
+                $this->logger->warning('Found one account that was removed from its backend, but still exists in Nextcloud database', ['accountId' => $userId]);
+            }
+            // Do not insert empty entry
+            if ($userData !== null) {
+                $usersDetails[$userId] = $userData;
+            } else {
+                // Currently logged-in user does not have permissions to see this user
+                // only showing its id
+                $usersDetails[$userId] = ['id' => $userId];
+            }
+        }
+
+        return new DataResponse([
+            'users' => $usersDetails
+        ]);
+    }
+
+
+
+    /**
+     * @NoSubAdminRequired
+     *
+     * Search users by their phone numbers
+     *
+     * @param string $location Location of the phone number (for country code)
+     * @param array<string, list<string>> $search Phone numbers to search for
+     * @return DataResponse<Http::STATUS_OK, array<string, string>, array{}>|DataResponse<Http::STATUS_BAD_REQUEST, list<empty>, array{}>
+     *
+     * 200: Users returned
+     * 400: Invalid location
+     */
+    #[NoAdminRequired]
+    public function searchByPhoneNumbers(string $location, array $search): DataResponse {
+        if ($this->phoneNumberUtil->getCountryCodeForRegion($location) === null) {
+            // Not a valid region code
+            return new DataResponse([], Http::STATUS_BAD_REQUEST);
+        }
+
+        /** @var IUser $user */
+        $user = $this->userSession->getUser();
+        $knownTo = $user->getUID();
+        $defaultPhoneRegion = $this->config->getSystemValueString('default_phone_region');
+
+        $normalizedNumberToKey = [];
+        foreach ($search as $key => $phoneNumbers) {
+            foreach ($phoneNumbers as $phone) {
+                $normalizedNumber = $this->phoneNumberUtil->convertToStandardFormat($phone, $location);
+                if ($normalizedNumber !== null) {
+                    $normalizedNumberToKey[$normalizedNumber] = (string)$key;
+                }
+
+                if ($defaultPhoneRegion !== '' && $defaultPhoneRegion !== $location && str_starts_with($phone, '0')) {
+                    // If the number has a leading zero (no country code),
+                    // we also check the default phone region of the instance,
+                    // when it's different to the user's given region.
+                    $normalizedNumber = $this->phoneNumberUtil->convertToStandardFormat($phone, $defaultPhoneRegion);
+                    if ($normalizedNumber !== null) {
+                        $normalizedNumberToKey[$normalizedNumber] = (string)$key;
+                    }
+                }
+            }
+        }
+
+        $phoneNumbers = array_keys($normalizedNumberToKey);
+
+        if (empty($phoneNumbers)) {
+            return new DataResponse();
+        }
+
+        // Cleanup all previous entries and only allow new matches
+        $this->knownUserService->deleteKnownTo($knownTo);
+
+        $userMatches = $this->accountManager->searchUsers(IAccountManager::PROPERTY_PHONE, $phoneNumbers);
+
+        if (empty($userMatches)) {
+            return new DataResponse();
+        }
+
+        $cloudUrl = rtrim($this->urlGenerator->getAbsoluteURL('/'), '/');
+        if (strpos($cloudUrl, 'http://') === 0) {
+            $cloudUrl = substr($cloudUrl, strlen('http://'));
+        } elseif (strpos($cloudUrl, 'https://') === 0) {
+            $cloudUrl = substr($cloudUrl, strlen('https://'));
+        }
+
+        $matches = [];
+        foreach ($userMatches as $phone => $userId) {
+            // Not using the ICloudIdManager as that would run a search for each contact to find the display name in the address book
+            $matches[$normalizedNumberToKey[$phone]] = $userId . '@' . $cloudUrl;
+            $this->knownUserService->storeIsKnownToUser($knownTo, $userId);
+        }
+
+        return new DataResponse($matches);
+    }
+
+    /**
+     * @throws OCSException
+     */
+    private function createNewUserId(): string {
+        $attempts = 0;
+        do {
+            $uidCandidate = $this->secureRandom->generate(10, ISecureRandom::CHAR_HUMAN_READABLE);
+            if (!$this->userManager->userExists($uidCandidate)) {
+                return $uidCandidate;
+            }
+            $attempts++;
+        } while ($attempts < 10);
+        throw new OCSException($this->l10n->t('Could not create non-existing user ID'), 111);
+    }
+
+    /**
+     * Create a new user
+     *
+     * @param string $userid ID of the user
+     * @param string $password Password of the user
+     * @param string $displayName Display name of the user
+     * @param string $email Email of the user
+     * @param list<string> $groups Groups of the user
+     * @param list<string> $subadmin Groups where the user is subadmin
+     * @param string $quota Quota of the user
+     * @param string $language Language of the user
+     * @param ?string $manager Manager of the user
+     * @return DataResponse<Http::STATUS_OK, array{id: string}, array{}>
+     * @throws OCSException
+     * @throws OCSForbiddenException Missing permissions to make user subadmin
+     *
+     * 200: User added successfully
+     */
+    #[PasswordConfirmationRequired]
+    #[NoAdminRequired]
+    public function addUser(
+        string $userid,
+        string $password = '',
+        string $displayName = '',
+        string $email = '',
+        array $groups = [],
+        array $subadmin = [],
+        string $quota = '',
+        string $language = '',
+        ?string $manager = null,
+    ): DataResponse {
+        $user = $this->userSession->getUser();
+        $isAdmin = $this->groupManager->isAdmin($user->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($user->getUID());
+        $subAdminManager = $this->groupManager->getSubAdmin();
+
+        if (empty($userid) && $this->config->getAppValue('core', 'newUser.generateUserID', 'no') === 'yes') {
+            $userid = $this->createNewUserId();
+        }
+
+        if ($this->userManager->userExists($userid)) {
+            $this->logger->error('Failed addUser attempt: User already exists.', ['app' => 'ocs_api']);
+            throw new OCSException($this->l10n->t('User already exists'), 102);
+        }
+
+        if ($groups !== []) {
+            foreach ($groups as $group) {
+                if (!$this->groupManager->groupExists($group)) {
+                    throw new OCSException($this->l10n->t('Group %1$s does not exist', [$group]), 104);
+                }
+                if (!$isAdmin && !($isDelegatedAdmin && $group !== 'admin') && !$subAdminManager->isSubAdminOfGroup($user, $this->groupManager->get($group))) {
+                    throw new OCSException($this->l10n->t('Insufficient privileges for group %1$s', [$group]), 105);
+                }
+            }
+        } else {
+            if (!$isAdmin && !$isDelegatedAdmin) {
+                throw new OCSException($this->l10n->t('No group specified (required for sub-admins)'), 106);
+            }
+        }
+
+        $subadminGroups = [];
+        if ($subadmin !== []) {
+            foreach ($subadmin as $groupid) {
+                $group = $this->groupManager->get($groupid);
+                // Check if group exists
+                if ($group === null) {
+                    throw new OCSException($this->l10n->t('Sub-admin group does not exist'), 109);
+                }
+                // Check if trying to make subadmin of admin group
+                if ($group->getGID() === 'admin') {
+                    throw new OCSException($this->l10n->t('Cannot create sub-admins for admin group'), 103);
+                }
+                // Check if has permission to promote subadmins
+                if (!$subAdminManager->isSubAdminOfGroup($user, $group) && !$isAdmin && !$isDelegatedAdmin) {
+                    throw new OCSForbiddenException($this->l10n->t('No permissions to promote sub-admins'));
+                }
+                $subadminGroups[] = $group;
+            }
+        }
+
+        $generatePasswordResetToken = false;
+        if (strlen($password) > IUserManager::MAX_PASSWORD_LENGTH) {
+            throw new OCSException($this->l10n->t('Invalid password value'), 101);
+        }
+        if ($password === '') {
+            if ($email === '') {
+                throw new OCSException($this->l10n->t('An email address is required, to send a password link to the user.'), 108);
+            }
+
+            $passwordEvent = new GenerateSecurePasswordEvent();
+            $this->eventDispatcher->dispatchTyped($passwordEvent);
+
+            $password = $passwordEvent->getPassword();
+            if ($password === null) {
+                // Fallback: ensure to pass password_policy in any case
+                $password = $this->secureRandom->generate(10)
+                    . $this->secureRandom->generate(1, ISecureRandom::CHAR_UPPER)
+                    . $this->secureRandom->generate(1, ISecureRandom::CHAR_LOWER)
+                    . $this->secureRandom->generate(1, ISecureRandom::CHAR_DIGITS)
+                    . $this->secureRandom->generate(1, ISecureRandom::CHAR_SYMBOLS);
+            }
+            $generatePasswordResetToken = true;
+        }
+
+        $email = mb_strtolower(trim($email));
+        if ($email === '' && $this->config->getAppValue('core', 'newUser.requireEmail', 'no') === 'yes') {
+            throw new OCSException($this->l10n->t('Required email address was not provided'), 110);
+        }
+
+        try {
+            $newUser = $this->userManager->createUser($userid, $password);
+            $this->logger->info('Successful addUser call with userid: ' . $userid, ['app' => 'ocs_api']);
+
+            foreach ($groups as $group) {
+                $this->groupManager->get($group)->addUser($newUser);
+                $this->logger->info('Added userid ' . $userid . ' to group ' . $group, ['app' => 'ocs_api']);
+            }
+            foreach ($subadminGroups as $group) {
+                $subAdminManager->createSubAdmin($newUser, $group);
+            }
+
+            if ($displayName !== '') {
+                try {
+                    $this->editUser($userid, self::USER_FIELD_DISPLAYNAME, $displayName);
+                } catch (OCSException $e) {
+                    if ($newUser instanceof IUser) {
+                        $newUser->delete();
+                    }
+                    throw $e;
+                }
+            }
+
+            if ($quota !== '') {
+                $this->editUser($userid, self::USER_FIELD_QUOTA, $quota);
+            }
+
+            if ($language !== '') {
+                $this->editUser($userid, self::USER_FIELD_LANGUAGE, $language);
+            }
+
+            /**
+             * null -> nothing sent
+             * '' -> unset manager
+             * else -> set manager
+             */
+            if ($manager !== null) {
+                $this->editUser($userid, self::USER_FIELD_MANAGER, $manager);
+            }
+
+            // Send new user mail only if a mail is set
+            if ($email !== '') {
+                $newUser->setSystemEMailAddress($email);
+                if ($this->config->getAppValue('core', 'newUser.sendEmail', 'yes') === 'yes') {
+                    try {
+                        $emailTemplate = $this->newUserMailHelper->generateTemplate($newUser, $generatePasswordResetToken);
+                        $this->newUserMailHelper->sendMail($newUser, $emailTemplate);
+                    } catch (\Exception $e) {
+                        // Mail could be failing hard or just be plain not configured
+                        // Logging error as it is the hardest of the two
+                        $this->logger->error(
+                            "Unable to send the invitation mail to $email",
+                            [
+                                'app' => 'ocs_api',
+                                'exception' => $e,
+                            ]
+                        );
+                    }
+                }
+            }
+
+            return new DataResponse(['id' => $userid]);
+        } catch (HintException $e) {
+            $this->logger->warning(
+                'Failed addUser attempt with hint exception.',
+                [
+                    'app' => 'ocs_api',
+                    'exception' => $e,
+                ]
+            );
+            throw new OCSException($e->getHint(), 107);
+        } catch (OCSException $e) {
+            $this->logger->warning(
+                'Failed addUser attempt with ocs exception.',
+                [
+                    'app' => 'ocs_api',
+                    'exception' => $e,
+                ]
+            );
+            throw $e;
+        } catch (InvalidArgumentException $e) {
+            $this->logger->error(
+                'Failed addUser attempt with invalid argument exception.',
+                [
+                    'app' => 'ocs_api',
+                    'exception' => $e,
+                ]
+            );
+            throw new OCSException($e->getMessage(), 101);
+        } catch (\Exception $e) {
+            $this->logger->error(
+                'Failed addUser attempt with exception.',
+                [
+                    'app' => 'ocs_api',
+                    'exception' => $e
+                ]
+            );
+            throw new OCSException('Bad request', 101);
+        }
+    }
+
+    /**
+     * @NoSubAdminRequired
+     *
+     * Get the details of a user
+     *
+     * @param string $userId ID of the user
+     * @return DataResponse<Http::STATUS_OK, Provisioning_APIUserDetails, array{}>
+     * @throws OCSException
+     *
+     * 200: User returned
+     */
+    #[NoAdminRequired]
+    public function getUser(string $userId): DataResponse {
+        $includeScopes = false;
+        $currentUser = $this->userSession->getUser();
+        if ($currentUser && $currentUser->getUID() === $userId) {
+            $includeScopes = true;
+        }
+
+        $data = $this->getUserData($userId, $includeScopes);
+        // getUserData returns null if not enough permissions
+        if ($data === null) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+        return new DataResponse($data);
+    }
+
+    /**
+     * @NoSubAdminRequired
+     *
+     * Get the details of the current user
+     *
+     * @return DataResponse<Http::STATUS_OK, Provisioning_APIUserDetails, array{}>
+     * @throws OCSException
+     *
+     * 200: Current user returned
+     */
+    #[NoAdminRequired]
+    public function getCurrentUser(): DataResponse {
+        $user = $this->userSession->getUser();
+        if ($user) {
+            /** @var Provisioning_APIUserDetails $data */
+            $data = $this->getUserData($user->getUID(), true);
+            return new DataResponse($data);
+        }
+
+        throw new OCSException('', OCSController::RESPOND_UNAUTHORISED);
+    }
+
+    /**
+     * @NoSubAdminRequired
+     *
+     * Get a list of fields that are editable for the current user
+     *
+     * @return DataResponse<Http::STATUS_OK, list<string>, array{}>
+     * @throws OCSException
+     *
+     * 200: Editable fields returned
+     */
+    #[NoAdminRequired]
+    public function getEditableFields(): DataResponse {
+        $currentLoggedInUser = $this->userSession->getUser();
+        if (!$currentLoggedInUser instanceof IUser) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        return $this->getEditableFieldsForUser($currentLoggedInUser->getUID());
+    }
+
+    /**
+     * Get a list of enabled apps for the current user
+     *
+     * @return DataResponse<Http::STATUS_OK, array{apps: list<string>}, array{}>
+     *
+     * 200: Enabled apps returned
+     */
+    #[NoAdminRequired]
+    public function getEnabledApps(): DataResponse {
+        $currentLoggedInUser = $this->userSession->getUser();
+        return new DataResponse(['apps' => $this->appManager->getEnabledAppsForUser($currentLoggedInUser)]);
+    }
+
+    /**
+     * @NoSubAdminRequired
+     *
+     * Get a list of fields that are editable for a user
+     *
+     * @param string $userId ID of the user
+     * @return DataResponse<Http::STATUS_OK, list<string>, array{}>
+     * @throws OCSException
+     *
+     * 200: Editable fields for user returned
+     */
+    #[NoAdminRequired]
+    public function getEditableFieldsForUser(string $userId): DataResponse {
+        $currentLoggedInUser = $this->userSession->getUser();
+        if (!$currentLoggedInUser instanceof IUser) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        $permittedFields = [];
+
+        if ($userId !== $currentLoggedInUser->getUID()) {
+            $targetUser = $this->userManager->get($userId);
+            if (!$targetUser instanceof IUser) {
+                throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+            }
+
+            $subAdminManager = $this->groupManager->getSubAdmin();
+            $isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
+            $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
+            if (
+                !($isAdmin || $isDelegatedAdmin)
+                && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)
+            ) {
+                throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+            }
+        } else {
+            $targetUser = $currentLoggedInUser;
+        }
+
+        $allowDisplayNameChange = $this->config->getSystemValue('allow_user_to_change_display_name', true);
+        if ($allowDisplayNameChange === true && (
+            $targetUser->getBackend() instanceof ISetDisplayNameBackend
+            || $targetUser->getBackend()->implementsActions(Backend::SET_DISPLAYNAME)
+        )) {
+            $permittedFields[] = IAccountManager::PROPERTY_DISPLAYNAME;
+        }
+
+        // Fallback to display name value to avoid changing behavior with the new option.
+        if ($this->config->getSystemValue('allow_user_to_change_email', $allowDisplayNameChange)) {
+            $permittedFields[] = IAccountManager::PROPERTY_EMAIL;
+        }
+
+        $permittedFields[] = IAccountManager::COLLECTION_EMAIL;
+        $permittedFields[] = IAccountManager::PROPERTY_PHONE;
+        $permittedFields[] = IAccountManager::PROPERTY_ADDRESS;
+        $permittedFields[] = IAccountManager::PROPERTY_WEBSITE;
+        $permittedFields[] = IAccountManager::PROPERTY_TWITTER;
+        $permittedFields[] = IAccountManager::PROPERTY_FEDIVERSE;
+        $permittedFields[] = IAccountManager::PROPERTY_ORGANISATION;
+        $permittedFields[] = IAccountManager::PROPERTY_ROLE;
+        $permittedFields[] = IAccountManager::PROPERTY_HEADLINE;
+        $permittedFields[] = IAccountManager::PROPERTY_BIOGRAPHY;
+        $permittedFields[] = IAccountManager::PROPERTY_PROFILE_ENABLED;
+        $permittedFields[] = IAccountManager::PROPERTY_PRONOUNS;
+
+        return new DataResponse($permittedFields);
+    }
+
+    /**
+     * @NoSubAdminRequired
+     *
+     * Update multiple values of the user's details
+     *
+     * @param string $userId ID of the user
+     * @param string $collectionName Collection to update
+     * @param string $key Key that will be updated
+     * @param string $value New value for the key
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     *
+     * 200: User values edited successfully
+     */
+    #[PasswordConfirmationRequired]
+    #[NoAdminRequired]
+    #[UserRateLimit(limit: 5, period: 60)]
+    public function editUserMultiValue(
+        string $userId,
+        string $collectionName,
+        string $key,
+        string $value,
+    ): DataResponse {
+        $currentLoggedInUser = $this->userSession->getUser();
+        if ($currentLoggedInUser === null) {
+            throw new OCSException('', OCSController::RESPOND_UNAUTHORISED);
+        }
+
+        $targetUser = $this->userManager->get($userId);
+        if ($targetUser === null) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        $subAdminManager = $this->groupManager->getSubAdmin();
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
+        $isAdminOrSubadmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID())
+            || $subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser);
+
+        $permittedFields = [];
+        if ($targetUser->getUID() === $currentLoggedInUser->getUID()) {
+            // Editing self (display, email)
+            $permittedFields[] = IAccountManager::COLLECTION_EMAIL;
+            $permittedFields[] = IAccountManager::COLLECTION_EMAIL . self::SCOPE_SUFFIX;
+        } else {
+            // Check if admin / subadmin
+            if ($isAdminOrSubadmin || $isDelegatedAdmin && !$this->groupManager->isInGroup($targetUser->getUID(), 'admin')) {
+                // They have permissions over the user
+                $permittedFields[] = IAccountManager::COLLECTION_EMAIL;
+            } else {
+                // No rights
+                throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+            }
+        }
+
+        // Check if permitted to edit this field
+        if (!in_array($collectionName, $permittedFields)) {
+            throw new OCSException('', 103);
+        }
+
+        switch ($collectionName) {
+            case IAccountManager::COLLECTION_EMAIL:
+                $userAccount = $this->accountManager->getAccount($targetUser);
+                $mailCollection = $userAccount->getPropertyCollection(IAccountManager::COLLECTION_EMAIL);
+                $mailCollection->removePropertyByValue($key);
+                if ($value !== '') {
+                    $value = mb_strtolower(trim($value));
+                    $mailCollection->addPropertyWithDefaults($value);
+                    $property = $mailCollection->getPropertyByValue($key);
+                    if ($isAdminOrSubadmin && $property) {
+                        // admin set mails are auto-verified
+                        $property->setLocallyVerified(IAccountManager::VERIFIED);
+                    }
+                }
+                $this->accountManager->updateAccount($userAccount);
+                if ($value === '' && $key === $targetUser->getPrimaryEMailAddress()) {
+                    $targetUser->setPrimaryEMailAddress('');
+                }
+                break;
+
+            case IAccountManager::COLLECTION_EMAIL . self::SCOPE_SUFFIX:
+                $userAccount = $this->accountManager->getAccount($targetUser);
+                $mailCollection = $userAccount->getPropertyCollection(IAccountManager::COLLECTION_EMAIL);
+                $targetProperty = null;
+                foreach ($mailCollection->getProperties() as $property) {
+                    if ($property->getValue() === $key) {
+                        $targetProperty = $property;
+                        break;
+                    }
+                }
+                if ($targetProperty instanceof IAccountProperty) {
+                    try {
+                        $targetProperty->setScope($value);
+                        $this->accountManager->updateAccount($userAccount);
+                    } catch (InvalidArgumentException $e) {
+                        throw new OCSException('', 102);
+                    }
+                } else {
+                    throw new OCSException('', 102);
+                }
+                break;
+
+            default:
+                throw new OCSException('', 103);
+        }
+        return new DataResponse();
+    }
+
+    /**
+     * @NoSubAdminRequired
+     *
+     * Update a value of the user's details
+     *
+     * @param string $userId ID of the user
+     * @param string $key Key that will be updated
+     * @param string $value New value for the key
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     *
+     * 200: User value edited successfully
+     */
+    #[PasswordConfirmationRequired]
+    #[NoAdminRequired]
+    #[UserRateLimit(limit: 50, period: 600)]
+    public function editUser(string $userId, string $key, string $value): DataResponse {
+        $currentLoggedInUser = $this->userSession->getUser();
+
+        $targetUser = $this->userManager->get($userId);
+        if ($targetUser === null) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        $permittedFields = [];
+        if ($targetUser->getUID() === $currentLoggedInUser->getUID()) {
+            $allowDisplayNameChange = $this->config->getSystemValue('allow_user_to_change_display_name', true);
+            if ($allowDisplayNameChange !== false && (
+                $targetUser->getBackend() instanceof ISetDisplayNameBackend
+                || $targetUser->getBackend()->implementsActions(Backend::SET_DISPLAYNAME)
+            )) {
+                $permittedFields[] = self::USER_FIELD_DISPLAYNAME;
+                $permittedFields[] = IAccountManager::PROPERTY_DISPLAYNAME;
+            }
+
+            // Fallback to display name value to avoid changing behavior with the new option.
+            if ($this->config->getSystemValue('allow_user_to_change_email', $allowDisplayNameChange)) {
+                $permittedFields[] = IAccountManager::PROPERTY_EMAIL;
+            }
+
+            $permittedFields[] = IAccountManager::PROPERTY_DISPLAYNAME . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_EMAIL . self::SCOPE_SUFFIX;
+
+            $permittedFields[] = IAccountManager::COLLECTION_EMAIL;
+
+            $permittedFields[] = self::USER_FIELD_PASSWORD;
+            $permittedFields[] = self::USER_FIELD_NOTIFICATION_EMAIL;
+            if (
+                $this->config->getSystemValue('force_language', false) === false
+                || $this->groupManager->isAdmin($currentLoggedInUser->getUID())
+                || $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID())
+            ) {
+                $permittedFields[] = self::USER_FIELD_LANGUAGE;
+            }
+
+            if (
+                $this->config->getSystemValue('force_locale', false) === false
+                || $this->groupManager->isAdmin($currentLoggedInUser->getUID())
+                || $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID())
+            ) {
+                $permittedFields[] = self::USER_FIELD_LOCALE;
+                $permittedFields[] = self::USER_FIELD_FIRST_DAY_OF_WEEK;
+            }
+
+            $permittedFields[] = IAccountManager::PROPERTY_PHONE;
+            $permittedFields[] = IAccountManager::PROPERTY_ADDRESS;
+            $permittedFields[] = IAccountManager::PROPERTY_WEBSITE;
+            $permittedFields[] = IAccountManager::PROPERTY_TWITTER;
+            $permittedFields[] = IAccountManager::PROPERTY_FEDIVERSE;
+            $permittedFields[] = IAccountManager::PROPERTY_ORGANISATION;
+            $permittedFields[] = IAccountManager::PROPERTY_ROLE;
+            $permittedFields[] = IAccountManager::PROPERTY_HEADLINE;
+            $permittedFields[] = IAccountManager::PROPERTY_BIOGRAPHY;
+            $permittedFields[] = IAccountManager::PROPERTY_PROFILE_ENABLED;
+            $permittedFields[] = IAccountManager::PROPERTY_BIRTHDATE;
+            $permittedFields[] = IAccountManager::PROPERTY_PRONOUNS;
+
+            $permittedFields[] = IAccountManager::PROPERTY_PHONE . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_ADDRESS . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_WEBSITE . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_TWITTER . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_FEDIVERSE . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_ORGANISATION . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_ROLE . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_HEADLINE . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_BIOGRAPHY . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_PROFILE_ENABLED . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_BIRTHDATE . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_AVATAR . self::SCOPE_SUFFIX;
+            $permittedFields[] = IAccountManager::PROPERTY_PRONOUNS . self::SCOPE_SUFFIX;
+
+            // If admin they can edit their own quota and manager
+            $isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
+            $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
+            if ($isAdmin || $isDelegatedAdmin) {
+                $permittedFields[] = self::USER_FIELD_QUOTA;
+                $permittedFields[] = self::USER_FIELD_MANAGER;
+            }
+        } else {
+            // Check if admin / subadmin
+            $subAdminManager = $this->groupManager->getSubAdmin();
+            if (
+                $this->groupManager->isAdmin($currentLoggedInUser->getUID())
+                || $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID()) && !$this->groupManager->isInGroup($targetUser->getUID(), 'admin')
+                || $subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)
+            ) {
+                // They have permissions over the user
+                if (
+                    $targetUser->getBackend() instanceof ISetDisplayNameBackend
+                    || $targetUser->getBackend()->implementsActions(Backend::SET_DISPLAYNAME)
+                ) {
+                    $permittedFields[] = self::USER_FIELD_DISPLAYNAME;
+                    $permittedFields[] = IAccountManager::PROPERTY_DISPLAYNAME;
+                }
+                $permittedFields[] = IAccountManager::PROPERTY_EMAIL;
+                $permittedFields[] = IAccountManager::COLLECTION_EMAIL;
+                $permittedFields[] = self::USER_FIELD_PASSWORD;
+                $permittedFields[] = self::USER_FIELD_LANGUAGE;
+                $permittedFields[] = self::USER_FIELD_LOCALE;
+                $permittedFields[] = self::USER_FIELD_FIRST_DAY_OF_WEEK;
+                $permittedFields[] = IAccountManager::PROPERTY_PHONE;
+                $permittedFields[] = IAccountManager::PROPERTY_ADDRESS;
+                $permittedFields[] = IAccountManager::PROPERTY_WEBSITE;
+                $permittedFields[] = IAccountManager::PROPERTY_TWITTER;
+                $permittedFields[] = IAccountManager::PROPERTY_FEDIVERSE;
+                $permittedFields[] = IAccountManager::PROPERTY_ORGANISATION;
+                $permittedFields[] = IAccountManager::PROPERTY_ROLE;
+                $permittedFields[] = IAccountManager::PROPERTY_HEADLINE;
+                $permittedFields[] = IAccountManager::PROPERTY_BIOGRAPHY;
+                $permittedFields[] = IAccountManager::PROPERTY_PROFILE_ENABLED;
+                $permittedFields[] = IAccountManager::PROPERTY_PRONOUNS;
+                $permittedFields[] = self::USER_FIELD_QUOTA;
+                $permittedFields[] = self::USER_FIELD_NOTIFICATION_EMAIL;
+                $permittedFields[] = self::USER_FIELD_MANAGER;
+            } else {
+                // No rights
+                throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+            }
+        }
+        // Check if permitted to edit this field
+        if (!in_array($key, $permittedFields)) {
+            throw new OCSException('', 113);
+        }
+        // Process the edit
+        switch ($key) {
+            case self::USER_FIELD_DISPLAYNAME:
+            case IAccountManager::PROPERTY_DISPLAYNAME:
+                try {
+                    $targetUser->setDisplayName($value);
+                } catch (InvalidArgumentException $e) {
+                    throw new OCSException($e->getMessage(), 101);
+                }
+                break;
+            case self::USER_FIELD_QUOTA:
+                $quota = $value;
+                if ($quota !== 'none' && $quota !== 'default') {
+                    if (is_numeric($quota)) {
+                        $quota = (float)$quota;
+                    } else {
+                        $quota = Util::computerFileSize($quota);
+                    }
+                    if ($quota === false) {
+                        throw new OCSException($this->l10n->t('Invalid quota value: %1$s', [$value]), 101);
+                    }
+                    if ($quota === -1) {
+                        $quota = 'none';
+                    } else {
+                        $maxQuota = (int)$this->config->getAppValue('files', 'max_quota', '-1');
+                        if ($maxQuota !== -1 && $quota > $maxQuota) {
+                            throw new OCSException($this->l10n->t('Invalid quota value. %1$s is exceeding the maximum quota', [$value]), 101);
+                        }
+                        $quota = Util::humanFileSize($quota);
+                    }
+                }
+                // no else block because quota can be set to 'none' in previous if
+                if ($quota === 'none') {
+                    $allowUnlimitedQuota = $this->config->getAppValue('files', 'allow_unlimited_quota', '1') === '1';
+                    if (!$allowUnlimitedQuota) {
+                        throw new OCSException($this->l10n->t('Unlimited quota is forbidden on this instance'), 101);
+                    }
+                }
+                $targetUser->setQuota($quota);
+                break;
+            case self::USER_FIELD_MANAGER:
+                $targetUser->setManagerUids([$value]);
+                break;
+            case self::USER_FIELD_PASSWORD:
+                try {
+                    if (strlen($value) > IUserManager::MAX_PASSWORD_LENGTH) {
+                        throw new OCSException($this->l10n->t('Invalid password value'), 101);
+                    }
+                    if (!$targetUser->canChangePassword()) {
+                        throw new OCSException($this->l10n->t('Setting the password is not supported by the users backend'), 112);
+                    }
+                    $targetUser->setPassword($value);
+                } catch (HintException $e) { // password policy error
+                    throw new OCSException($e->getHint(), 107);
+                }
+                break;
+            case self::USER_FIELD_LANGUAGE:
+                $languagesCodes = $this->l10nFactory->findAvailableLanguages();
+                if (!in_array($value, $languagesCodes, true) && $value !== 'en') {
+                    throw new OCSException($this->l10n->t('Invalid language'), 101);
+                }
+                $this->config->setUserValue($targetUser->getUID(), 'core', 'lang', $value);
+                break;
+            case self::USER_FIELD_LOCALE:
+                if (!$this->l10nFactory->localeExists($value)) {
+                    throw new OCSException($this->l10n->t('Invalid locale'), 101);
+                }
+                $this->config->setUserValue($targetUser->getUID(), 'core', 'locale', $value);
+                break;
+            case self::USER_FIELD_FIRST_DAY_OF_WEEK:
+                $intValue = (int)$value;
+                if ($intValue < -1 || $intValue > 6) {
+                    throw new OCSException($this->l10n->t('Invalid first day of week'), 101);
+                }
+                if ($intValue === -1) {
+                    $this->config->deleteUserValue($targetUser->getUID(), 'core', AUserDataOCSController::USER_FIELD_FIRST_DAY_OF_WEEK);
+                } else {
+                    $this->config->setUserValue($targetUser->getUID(), 'core', AUserDataOCSController::USER_FIELD_FIRST_DAY_OF_WEEK, $value);
+                }
+                break;
+            case self::USER_FIELD_NOTIFICATION_EMAIL:
+                $success = false;
+                if ($value === '' || filter_var($value, FILTER_VALIDATE_EMAIL)) {
+                    try {
+                        $targetUser->setPrimaryEMailAddress($value);
+                        $success = true;
+                    } catch (InvalidArgumentException $e) {
+                        $this->logger->info(
+                            'Cannot set primary email, because provided address is not verified',
+                            [
+                                'app' => 'provisioning_api',
+                                'exception' => $e,
+                            ]
+                        );
+                    }
+                }
+                if (!$success) {
+                    throw new OCSException('', 101);
+                }
+                break;
+            case IAccountManager::PROPERTY_EMAIL:
+                $value = mb_strtolower(trim($value));
+                if (filter_var($value, FILTER_VALIDATE_EMAIL) || $value === '') {
+                    $targetUser->setSystemEMailAddress($value);
+                } else {
+                    throw new OCSException('', 101);
+                }
+                break;
+            case IAccountManager::COLLECTION_EMAIL:
+                $value = mb_strtolower(trim($value));
+                if (filter_var($value, FILTER_VALIDATE_EMAIL) && $value !== $targetUser->getSystemEMailAddress()) {
+                    $userAccount = $this->accountManager->getAccount($targetUser);
+                    $mailCollection = $userAccount->getPropertyCollection(IAccountManager::COLLECTION_EMAIL);
+
+                    if ($mailCollection->getPropertyByValue($value)) {
+                        throw new OCSException('', 101);
+                    }
+
+                    $mailCollection->addPropertyWithDefaults($value);
+                    $this->accountManager->updateAccount($userAccount);
+                } else {
+                    throw new OCSException('', 101);
+                }
+                break;
+            case IAccountManager::PROPERTY_PHONE:
+            case IAccountManager::PROPERTY_ADDRESS:
+            case IAccountManager::PROPERTY_WEBSITE:
+            case IAccountManager::PROPERTY_TWITTER:
+            case IAccountManager::PROPERTY_FEDIVERSE:
+            case IAccountManager::PROPERTY_ORGANISATION:
+            case IAccountManager::PROPERTY_ROLE:
+            case IAccountManager::PROPERTY_HEADLINE:
+            case IAccountManager::PROPERTY_BIOGRAPHY:
+            case IAccountManager::PROPERTY_BIRTHDATE:
+            case IAccountManager::PROPERTY_PRONOUNS:
+                $userAccount = $this->accountManager->getAccount($targetUser);
+                try {
+                    $userProperty = $userAccount->getProperty($key);
+                    if ($userProperty->getValue() !== $value) {
+                        try {
+                            $userProperty->setValue($value);
+                            if ($userProperty->getName() === IAccountManager::PROPERTY_PHONE) {
+                                $this->knownUserService->deleteByContactUserId($targetUser->getUID());
+                            }
+                        } catch (InvalidArgumentException $e) {
+                            throw new OCSException('Invalid ' . $e->getMessage(), 101);
+                        }
+                    }
+                } catch (PropertyDoesNotExistException $e) {
+                    $userAccount->setProperty($key, $value, IAccountManager::SCOPE_PRIVATE, IAccountManager::NOT_VERIFIED);
+                }
+                try {
+                    $this->accountManager->updateAccount($userAccount);
+                } catch (InvalidArgumentException $e) {
+                    throw new OCSException('Invalid ' . $e->getMessage(), 101);
+                }
+                break;
+            case IAccountManager::PROPERTY_PROFILE_ENABLED:
+                $userAccount = $this->accountManager->getAccount($targetUser);
+                try {
+                    $userProperty = $userAccount->getProperty($key);
+                    if ($userProperty->getValue() !== $value) {
+                        $userProperty->setValue($value);
+                    }
+                } catch (PropertyDoesNotExistException $e) {
+                    $userAccount->setProperty($key, $value, IAccountManager::SCOPE_LOCAL, IAccountManager::NOT_VERIFIED);
+                }
+                $this->accountManager->updateAccount($userAccount);
+                break;
+            case IAccountManager::PROPERTY_DISPLAYNAME . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_EMAIL . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_PHONE . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_ADDRESS . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_WEBSITE . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_TWITTER . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_FEDIVERSE . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_ORGANISATION . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_ROLE . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_HEADLINE . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_BIOGRAPHY . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_PROFILE_ENABLED . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_BIRTHDATE . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_AVATAR . self::SCOPE_SUFFIX:
+            case IAccountManager::PROPERTY_PRONOUNS . self::SCOPE_SUFFIX:
+                $propertyName = substr($key, 0, strlen($key) - strlen(self::SCOPE_SUFFIX));
+                $userAccount = $this->accountManager->getAccount($targetUser);
+                $userProperty = $userAccount->getProperty($propertyName);
+                if ($userProperty->getScope() !== $value) {
+                    try {
+                        $userProperty->setScope($value);
+                        $this->accountManager->updateAccount($userAccount);
+                    } catch (InvalidArgumentException $e) {
+                        throw new OCSException('Invalid ' . $e->getMessage(), 101);
+                    }
+                }
+                break;
+            default:
+                throw new OCSException('', 113);
+        }
+        return new DataResponse();
+    }
+
+    /**
+     * Wipe all devices of a user
+     *
+     * @param string $userId ID of the user
+     *
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     *
+     * @throws OCSException
+     *
+     * 200: Wiped all user devices successfully
+     */
+    #[PasswordConfirmationRequired]
+    #[NoAdminRequired]
+    public function wipeUserDevices(string $userId): DataResponse {
+        /** @var IUser $currentLoggedInUser */
+        $currentLoggedInUser = $this->userSession->getUser();
+
+        $targetUser = $this->userManager->get($userId);
+
+        if ($targetUser === null) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        if ($targetUser->getUID() === $currentLoggedInUser->getUID()) {
+            throw new OCSException('', 101);
+        }
+
+        // If not permitted
+        $subAdminManager = $this->groupManager->getSubAdmin();
+        $isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
+        if (!$isAdmin && !($isDelegatedAdmin && !$this->groupManager->isInGroup($targetUser->getUID(), 'admin')) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        $this->remoteWipe->markAllTokensForWipe($targetUser);
+
+        return new DataResponse();
+    }
+
+    /**
+     * Delete a user
+     *
+     * @param string $userId ID of the user
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     *
+     * 200: User deleted successfully
+     */
+    #[PasswordConfirmationRequired]
+    #[NoAdminRequired]
+    public function deleteUser(string $userId): DataResponse {
+        $currentLoggedInUser = $this->userSession->getUser();
+
+        $targetUser = $this->userManager->get($userId);
+
+        if ($targetUser === null) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        if ($targetUser->getUID() === $currentLoggedInUser->getUID()) {
+            throw new OCSException('', 101);
+        }
+
+        // If not permitted
+        $subAdminManager = $this->groupManager->getSubAdmin();
+        $isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
+        if (!$isAdmin && !($isDelegatedAdmin && !$this->groupManager->isInGroup($targetUser->getUID(), 'admin')) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        // Go ahead with the delete
+        if ($targetUser->delete()) {
+            return new DataResponse();
+        } else {
+            throw new OCSException('', 101);
+        }
+    }
+
+    /**
+     * Disable a user
+     *
+     * @param string $userId ID of the user
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     *
+     * 200: User disabled successfully
+     */
+    #[PasswordConfirmationRequired]
+    #[NoAdminRequired]
+    public function disableUser(string $userId): DataResponse {
+        return $this->setEnabled($userId, false);
+    }
+
+    /**
+     * Enable a user
+     *
+     * @param string $userId ID of the user
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     *
+     * 200: User enabled successfully
+     */
+    #[PasswordConfirmationRequired]
+    #[NoAdminRequired]
+    public function enableUser(string $userId): DataResponse {
+        return $this->setEnabled($userId, true);
+    }
+
+    /**
+     * @param string $userId
+     * @param bool $value
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     */
+    private function setEnabled(string $userId, bool $value): DataResponse {
+        $currentLoggedInUser = $this->userSession->getUser();
+
+        $targetUser = $this->userManager->get($userId);
+        if ($targetUser === null || $targetUser->getUID() === $currentLoggedInUser->getUID()) {
+            throw new OCSException('', 101);
+        }
+
+        // If not permitted
+        $subAdminManager = $this->groupManager->getSubAdmin();
+        $isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
+        if (!$isAdmin && !($isDelegatedAdmin && !$this->groupManager->isInGroup($targetUser->getUID(), 'admin')) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        // enable/disable the user now
+        $targetUser->setEnabled($value);
+        return new DataResponse();
+    }
+
+    /**
+     * @NoSubAdminRequired
+     *
+     * Get a list of groups the user belongs to
+     *
+     * @param string $userId ID of the user
+     * @return DataResponse<Http::STATUS_OK, array{groups: list<string>}, array{}>
+     * @throws OCSException
+     *
+     * 200: Users groups returned
+     */
+    #[NoAdminRequired]
+    public function getUsersGroups(string $userId): DataResponse {
+        $loggedInUser = $this->userSession->getUser();
+
+        $targetUser = $this->userManager->get($userId);
+        if ($targetUser === null) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        $isAdmin = $this->groupManager->isAdmin($loggedInUser->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($loggedInUser->getUID());
+        if ($targetUser->getUID() === $loggedInUser->getUID() || $isAdmin || $isDelegatedAdmin) {
+            // Self lookup or admin lookup
+            return new DataResponse([
+                'groups' => $this->groupManager->getUserGroupIds($targetUser)
+            ]);
+        } else {
+            $subAdminManager = $this->groupManager->getSubAdmin();
+
+            // Looking up someone else
+            if ($subAdminManager->isUserAccessible($loggedInUser, $targetUser)) {
+                // Return the group that the method caller is subadmin of for the user in question
+                $groups = array_values(array_intersect(
+                    array_map(static fn (IGroup $group) => $group->getGID(), $subAdminManager->getSubAdminsGroups($loggedInUser)),
+                    $this->groupManager->getUserGroupIds($targetUser)
+                ));
+                return new DataResponse(['groups' => $groups]);
+            } else {
+                // Not permitted
+                throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+            }
+        }
+    }
+
+    /**
+     * @NoSubAdminRequired
+     *
+     * Get a list of groups with details
+     *
+     * @param string $userId ID of the user
+     * @return DataResponse<Http::STATUS_OK, array{groups: list<Provisioning_APIGroupDetails>}, array{}>
+     * @throws OCSException
+     *
+     * 200: Users groups returned
+     */
+    #[NoAdminRequired]
+    public function getUsersGroupsDetails(string $userId): DataResponse {
+        $loggedInUser = $this->userSession->getUser();
+
+        $targetUser = $this->userManager->get($userId);
+        if ($targetUser === null) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        $isAdmin = $this->groupManager->isAdmin($loggedInUser->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($loggedInUser->getUID());
+        if ($targetUser->getUID() === $loggedInUser->getUID() || $isAdmin || $isDelegatedAdmin) {
+            // Self lookup or admin lookup
+            $groups = array_map(
+                function (Group $group) {
+                    return [
+                        'id' => $group->getGID(),
+                        'displayname' => $group->getDisplayName(),
+                        'usercount' => $group->count(),
+                        'disabled' => $group->countDisabled(),
+                        'canAdd' => $group->canAddUser(),
+                        'canRemove' => $group->canRemoveUser(),
+                    ];
+                },
+                array_values($this->groupManager->getUserGroups($targetUser)),
+            );
+            return new DataResponse([
+                'groups' => $groups,
+            ]);
+        } else {
+            $subAdminManager = $this->groupManager->getSubAdmin();
+
+            // Looking up someone else
+            if ($subAdminManager->isUserAccessible($loggedInUser, $targetUser)) {
+                // Return the group that the method caller is subadmin of for the user in question
+                $gids = array_values(array_intersect(
+                    array_map(
+                        static fn (IGroup $group) => $group->getGID(),
+                        $subAdminManager->getSubAdminsGroups($loggedInUser),
+                    ),
+                    $this->groupManager->getUserGroupIds($targetUser)
+                ));
+                $groups = array_map(
+                    function (string $gid) {
+                        $group = $this->groupManager->get($gid);
+                        return [
+                            'id' => $group->getGID(),
+                            'displayname' => $group->getDisplayName(),
+                            'usercount' => $group->count(),
+                            'disabled' => $group->countDisabled(),
+                            'canAdd' => $group->canAddUser(),
+                            'canRemove' => $group->canRemoveUser(),
+                        ];
+                    },
+                    $gids,
+                );
+                return new DataResponse([
+                    'groups' => $groups,
+                ]);
+            } else {
+                // Not permitted
+                throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+            }
+        }
+    }
+
+    /**
+     * @NoSubAdminRequired
+     *
+     * Get a list of the groups the user is a subadmin of, with details
+     *
+     * @param string $userId ID of the user
+     * @return DataResponse<Http::STATUS_OK, array{groups: list<Provisioning_APIGroupDetails>}, array{}>
+     * @throws OCSException
+     *
+     * 200: Users subadmin groups returned
+     */
+    #[NoAdminRequired]
+    public function getUserSubAdminGroupsDetails(string $userId): DataResponse {
+        $loggedInUser = $this->userSession->getUser();
+
+        $targetUser = $this->userManager->get($userId);
+        if ($targetUser === null) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        $isAdmin = $this->groupManager->isAdmin($loggedInUser->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($loggedInUser->getUID());
+        if ($targetUser->getUID() === $loggedInUser->getUID() || $isAdmin || $isDelegatedAdmin) {
+            $subAdminManager = $this->groupManager->getSubAdmin();
+            $groups = array_map(
+                function (IGroup $group) {
+                    return [
+                        'id' => $group->getGID(),
+                        'displayname' => $group->getDisplayName(),
+                        'usercount' => $group->count(),
+                        'disabled' => $group->countDisabled(),
+                        'canAdd' => $group->canAddUser(),
+                        'canRemove' => $group->canRemoveUser(),
+                    ];
+                },
+                array_values($subAdminManager->getSubAdminsGroups($targetUser)),
+            );
+            return new DataResponse([
+                'groups' => $groups,
+            ]);
+        }
+        throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+    }
+
+    /**
+     * Add a user to a group
+     *
+     * @param string $userId ID of the user
+     * @param string $groupid ID of the group
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     *
+     * 200: User added to group successfully
+     */
+    #[PasswordConfirmationRequired]
+    #[NoAdminRequired]
+    public function addToGroup(string $userId, string $groupid = ''): DataResponse {
+        if ($groupid === '') {
+            throw new OCSException('', 101);
+        }
+
+        $group = $this->groupManager->get($groupid);
+        $targetUser = $this->userManager->get($userId);
+        if ($group === null) {
+            throw new OCSException('', 102);
+        }
+        if ($targetUser === null) {
+            throw new OCSException('', 103);
+        }
+
+        // If they're not an admin, check they are a subadmin of the group in question
+        $loggedInUser = $this->userSession->getUser();
+        $subAdminManager = $this->groupManager->getSubAdmin();
+        $isAdmin = $this->groupManager->isAdmin($loggedInUser->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($loggedInUser->getUID());
+        if (!$isAdmin && !($isDelegatedAdmin && $groupid !== 'admin') && !$subAdminManager->isSubAdminOfGroup($loggedInUser, $group)) {
+            throw new OCSException('', 104);
+        }
+
+        // Add user to group
+        $group->addUser($targetUser);
+        return new DataResponse();
+    }
+
+    /**
+     * Remove a user from a group
+     *
+     * @param string $userId ID of the user
+     * @param string $groupid ID of the group
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     *
+     * 200: User removed from group successfully
+     */
+    #[PasswordConfirmationRequired]
+    #[NoAdminRequired]
+    public function removeFromGroup(string $userId, string $groupid): DataResponse {
+        $loggedInUser = $this->userSession->getUser();
+
+        if ($groupid === null || trim($groupid) === '') {
+            throw new OCSException('', 101);
+        }
+
+        $group = $this->groupManager->get($groupid);
+        if ($group === null) {
+            throw new OCSException('', 102);
+        }
+
+        $targetUser = $this->userManager->get($userId);
+        if ($targetUser === null) {
+            throw new OCSException('', 103);
+        }
+
+        // If they're not an admin, check they are a subadmin of the group in question
+        $subAdminManager = $this->groupManager->getSubAdmin();
+        $isAdmin = $this->groupManager->isAdmin($loggedInUser->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($loggedInUser->getUID());
+        if (!$isAdmin && !($isDelegatedAdmin && $groupid !== 'admin') && !$subAdminManager->isSubAdminOfGroup($loggedInUser, $group)) {
+            throw new OCSException('', 104);
+        }
+
+        // Check they aren't removing themselves from 'admin' or their 'subadmin; group
+        if ($targetUser->getUID() === $loggedInUser->getUID()) {
+            if ($isAdmin || $isDelegatedAdmin) {
+                if ($group->getGID() === 'admin') {
+                    throw new OCSException($this->l10n->t('Cannot remove yourself from the admin group'), 105);
+                }
+            } else {
+                // Not an admin, so the user must be a subadmin of this group, but that is not allowed.
+                throw new OCSException($this->l10n->t('Cannot remove yourself from this group as you are a sub-admin'), 105);
+            }
+        } elseif (!($isAdmin || $isDelegatedAdmin)) {
+            /** @var IGroup[] $subAdminGroups */
+            $subAdminGroups = $subAdminManager->getSubAdminsGroups($loggedInUser);
+            $subAdminGroups = array_map(function (IGroup $subAdminGroup) {
+                return $subAdminGroup->getGID();
+            }, $subAdminGroups);
+            $userGroups = $this->groupManager->getUserGroupIds($targetUser);
+            $userSubAdminGroups = array_intersect($subAdminGroups, $userGroups);
+
+            if (count($userSubAdminGroups) <= 1) {
+                // Subadmin must not be able to remove a user from all their subadmin groups.
+                throw new OCSException($this->l10n->t('Not viable to remove user from the last group you are sub-admin of'), 105);
+            }
+        }
+
+        // Remove user from group
+        $group->removeUser($targetUser);
+        return new DataResponse();
+    }
+
+    /**
+     * Make a user a subadmin of a group
+     *
+     * @param string $userId ID of the user
+     * @param string $groupid ID of the group
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     *
+     * 200: User added as group subadmin successfully
+     */
+    #[AuthorizedAdminSetting(settings:Users::class)]
+    #[PasswordConfirmationRequired]
+    public function addSubAdmin(string $userId, string $groupid): DataResponse {
+        $group = $this->groupManager->get($groupid);
+        $user = $this->userManager->get($userId);
+
+        // Check if the user exists
+        if ($user === null) {
+            throw new OCSException($this->l10n->t('User does not exist'), 101);
+        }
+        // Check if group exists
+        if ($group === null) {
+            throw new OCSException($this->l10n->t('Group does not exist'), 102);
+        }
+        // Check if trying to make subadmin of admin group
+        if ($group->getGID() === 'admin') {
+            throw new OCSException($this->l10n->t('Cannot create sub-admins for admin group'), 103);
+        }
+
+        $subAdminManager = $this->groupManager->getSubAdmin();
+
+        // We cannot be subadmin twice
+        if ($subAdminManager->isSubAdminOfGroup($user, $group)) {
+            return new DataResponse();
+        }
+        // Go
+        $subAdminManager->createSubAdmin($user, $group);
+        return new DataResponse();
+    }
+
+    /**
+     * Remove a user from the subadmins of a group
+     *
+     * @param string $userId ID of the user
+     * @param string $groupid ID of the group
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     *
+     * 200: User removed as group subadmin successfully
+     */
+    #[AuthorizedAdminSetting(settings:Users::class)]
+    #[PasswordConfirmationRequired]
+    public function removeSubAdmin(string $userId, string $groupid): DataResponse {
+        $group = $this->groupManager->get($groupid);
+        $user = $this->userManager->get($userId);
+        $subAdminManager = $this->groupManager->getSubAdmin();
+
+        // Check if the user exists
+        if ($user === null) {
+            throw new OCSException($this->l10n->t('User does not exist'), 101);
+        }
+        // Check if the group exists
+        if ($group === null) {
+            throw new OCSException($this->l10n->t('Group does not exist'), 101);
+        }
+        // Check if they are a subadmin of this said group
+        if (!$subAdminManager->isSubAdminOfGroup($user, $group)) {
+            throw new OCSException($this->l10n->t('User is not a sub-admin of this group'), 102);
+        }
+
+        // Go
+        $subAdminManager->deleteSubAdmin($user, $group);
+        return new DataResponse();
+    }
+
+    /**
+     * Get the groups a user is a subadmin of
+     *
+     * @param string $userId ID if the user
+     * @return DataResponse<Http::STATUS_OK, list<string>, array{}>
+     * @throws OCSException
+     *
+     * 200: User subadmin groups returned
+     */
+    #[AuthorizedAdminSetting(settings:Users::class)]
+    public function getUserSubAdminGroups(string $userId): DataResponse {
+        $groups = $this->getUserSubAdminGroupsData($userId);
+        return new DataResponse($groups);
+    }
+
+    /**
+     * Resend the welcome message
+     *
+     * @param string $userId ID if the user
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSException
+     *
+     * 200: Resent welcome message successfully
+     */
+    #[PasswordConfirmationRequired]
+    #[NoAdminRequired]
+    public function resendWelcomeMessage(string $userId): DataResponse {
+        $currentLoggedInUser = $this->userSession->getUser();
+
+        $targetUser = $this->userManager->get($userId);
+        if ($targetUser === null) {
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        // Check if admin / subadmin
+        $subAdminManager = $this->groupManager->getSubAdmin();
+        $isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
+        if (
+            !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)
+            && !($isAdmin || $isDelegatedAdmin)
+        ) {
+            // No rights
+            throw new OCSException('', OCSController::RESPOND_NOT_FOUND);
+        }
+
+        $email = $targetUser->getEMailAddress();
+        if ($email === '' || $email === null) {
+            throw new OCSException($this->l10n->t('Email address not available'), 101);
+        }
+
+        try {
+            if ($this->config->getUserValue($targetUser->getUID(), 'core', 'lostpassword')) {
+                $emailTemplate = $this->newUserMailHelper->generateTemplate($targetUser, true);
+            } else {
+                $emailTemplate = $this->newUserMailHelper->generateTemplate($targetUser, false);
+            }
+
+            $this->newUserMailHelper->sendMail($targetUser, $emailTemplate);
+        } catch (\Exception $e) {
+            $this->logger->error(
+                "Can't send new user mail to $email",
+                [
+                    'app' => 'settings',
+                    'exception' => $e,
+                ]
+            );
+            throw new OCSException($this->l10n->t('Sending email failed'), 102);
+        }
+
+        return new DataResponse();
+    }
 }

Please login to merge, or discard this patch.

apps/provisioning_api/lib/Controller/AUserDataOCSController.php 1 patch

Indentation +283 added lines, -283 removed lines patch added patch discarded remove patch

@@ -38,287 +38,287 @@
 block discarded – undo
  * @psalm-import-type Provisioning_APIUserDetailsQuota from ResponseDefinitions
  */
 abstract class AUserDataOCSController extends OCSController {
-	public const SCOPE_SUFFIX = 'Scope';
-
-	public const USER_FIELD_DISPLAYNAME = 'display';
-	public const USER_FIELD_LANGUAGE = 'language';
-	public const USER_FIELD_LOCALE = 'locale';
-	public const USER_FIELD_FIRST_DAY_OF_WEEK = 'first_day_of_week';
-	public const USER_FIELD_PASSWORD = 'password';
-	public const USER_FIELD_QUOTA = 'quota';
-	public const USER_FIELD_MANAGER = 'manager';
-	public const USER_FIELD_NOTIFICATION_EMAIL = 'notify_email';
-
-	public function __construct(
-		string $appName,
-		IRequest $request,
-		protected IUserManager $userManager,
-		protected IConfig $config,
-		protected GroupManager $groupManager,
-		protected IUserSession $userSession,
-		protected IAccountManager $accountManager,
-		protected ISubAdmin $subAdminManager,
-		protected IFactory $l10nFactory,
-		protected IRootFolder $rootFolder,
-	) {
-		parent::__construct($appName, $request);
-	}
-
-	/**
-	 * creates a array with all user data
-	 *
-	 * @param string $userId
-	 * @param bool $includeScopes
-	 * @return Provisioning_APIUserDetails|null
-	 * @throws NotFoundException
-	 * @throws OCSException
-	 * @throws OCSNotFoundException
-	 */
-	protected function getUserData(string $userId, bool $includeScopes = false): ?array {
-		$currentLoggedInUser = $this->userSession->getUser();
-		assert($currentLoggedInUser !== null, 'No user logged in');
-
-		$data = [];
-
-		// Check if the target user exists
-		$targetUserObject = $this->userManager->get($userId);
-		if ($targetUserObject === null) {
-			throw new OCSNotFoundException('User does not exist');
-		}
-
-		$isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
-		$isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
-		if ($isAdmin
-			|| $isDelegatedAdmin
-			|| $this->groupManager->getSubAdmin()->isUserAccessible($currentLoggedInUser, $targetUserObject)) {
-			$data['enabled'] = $this->config->getUserValue($targetUserObject->getUID(), 'core', 'enabled', 'true') === 'true';
-		} else {
-			// Check they are looking up themselves
-			if ($currentLoggedInUser->getUID() !== $targetUserObject->getUID()) {
-				return null;
-			}
-		}
-
-		// Get groups data
-		$userAccount = $this->accountManager->getAccount($targetUserObject);
-		$groups = $this->groupManager->getUserGroups($targetUserObject);
-		$gids = [];
-		foreach ($groups as $group) {
-			$gids[] = $group->getGID();
-		}
-
-		if ($isAdmin || $isDelegatedAdmin) {
-			try {
-				# might be thrown by LDAP due to handling of users disappears
-				# from the external source (reasons unknown to us)
-				# cf. https://github.com/nextcloud/server/issues/12991
-				$data['storageLocation'] = $targetUserObject->getHome();
-			} catch (NoUserException $e) {
-				throw new OCSNotFoundException($e->getMessage(), $e);
-			}
-		}
-
-		// Find the data
-		$data['id'] = $targetUserObject->getUID();
-		$data['firstLoginTimestamp'] = $targetUserObject->getFirstLogin();
-		$data['lastLoginTimestamp'] = $targetUserObject->getLastLogin();
-		$data['lastLogin'] = $targetUserObject->getLastLogin() * 1000;
-		$data['backend'] = $targetUserObject->getBackendClassName();
-		$data['subadmin'] = $this->getUserSubAdminGroupsData($targetUserObject->getUID());
-		$data[self::USER_FIELD_QUOTA] = $this->fillStorageInfo($targetUserObject);
-		$managers = $this->getManagers($targetUserObject);
-		$data[self::USER_FIELD_MANAGER] = empty($managers) ? '' : $managers[0];
-
-		try {
-			if ($includeScopes) {
-				$data[IAccountManager::PROPERTY_AVATAR . self::SCOPE_SUFFIX] = $userAccount->getProperty(IAccountManager::PROPERTY_AVATAR)->getScope();
-			}
-
-			$data[IAccountManager::PROPERTY_EMAIL] = $targetUserObject->getSystemEMailAddress();
-			if ($includeScopes) {
-				$data[IAccountManager::PROPERTY_EMAIL . self::SCOPE_SUFFIX] = $userAccount->getProperty(IAccountManager::PROPERTY_EMAIL)->getScope();
-			}
-
-			$additionalEmails = $additionalEmailScopes = [];
-			$emailCollection = $userAccount->getPropertyCollection(IAccountManager::COLLECTION_EMAIL);
-			foreach ($emailCollection->getProperties() as $property) {
-				$email = mb_strtolower(trim($property->getValue()));
-				$additionalEmails[] = $email;
-				if ($includeScopes) {
-					$additionalEmailScopes[] = $property->getScope();
-				}
-			}
-			$data[IAccountManager::COLLECTION_EMAIL] = $additionalEmails;
-			if ($includeScopes) {
-				$data[IAccountManager::COLLECTION_EMAIL . self::SCOPE_SUFFIX] = $additionalEmailScopes;
-			}
-
-			$data[IAccountManager::PROPERTY_DISPLAYNAME] = $targetUserObject->getDisplayName();
-			$data[IAccountManager::PROPERTY_DISPLAYNAME_LEGACY] = $data[IAccountManager::PROPERTY_DISPLAYNAME];
-			if ($includeScopes) {
-				$data[IAccountManager::PROPERTY_DISPLAYNAME . self::SCOPE_SUFFIX] = $userAccount->getProperty(IAccountManager::PROPERTY_DISPLAYNAME)->getScope();
-			}
-
-			foreach ([
-				IAccountManager::PROPERTY_PHONE,
-				IAccountManager::PROPERTY_ADDRESS,
-				IAccountManager::PROPERTY_WEBSITE,
-				IAccountManager::PROPERTY_TWITTER,
-				IAccountManager::PROPERTY_FEDIVERSE,
-				IAccountManager::PROPERTY_ORGANISATION,
-				IAccountManager::PROPERTY_ROLE,
-				IAccountManager::PROPERTY_HEADLINE,
-				IAccountManager::PROPERTY_BIOGRAPHY,
-				IAccountManager::PROPERTY_PROFILE_ENABLED,
-				IAccountManager::PROPERTY_PRONOUNS,
-			] as $propertyName) {
-				$property = $userAccount->getProperty($propertyName);
-				$data[$propertyName] = $property->getValue();
-				if ($includeScopes) {
-					$data[$propertyName . self::SCOPE_SUFFIX] = $property->getScope();
-				}
-			}
-		} catch (PropertyDoesNotExistException $e) {
-			// hard coded properties should exist
-			throw new OCSException($e->getMessage(), Http::STATUS_INTERNAL_SERVER_ERROR, $e);
-		}
-
-		$data['groups'] = $gids;
-		$data[self::USER_FIELD_LANGUAGE] = $this->l10nFactory->getUserLanguage($targetUserObject);
-		$data[self::USER_FIELD_LOCALE] = $this->config->getUserValue($targetUserObject->getUID(), 'core', 'locale');
-		$data[self::USER_FIELD_NOTIFICATION_EMAIL] = $targetUserObject->getPrimaryEMailAddress();
-
-		$backend = $targetUserObject->getBackend();
-		$data['backendCapabilities'] = [
-			'setDisplayName' => $backend instanceof ISetDisplayNameBackend || $backend->implementsActions(Backend::SET_DISPLAYNAME),
-			'setPassword' => $backend instanceof ISetPasswordBackend || $backend->implementsActions(Backend::SET_PASSWORD),
-		];
-
-		return $data;
-	}
-
-	/**
-	 * @return string[]
-	 */
-	protected function getManagers(IUser $user): array {
-		$currentLoggedInUser = $this->userSession->getUser();
-
-		$managerUids = $user->getManagerUids();
-		if ($this->groupManager->isAdmin($currentLoggedInUser->getUID()) || $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID())) {
-			return $managerUids;
-		}
-
-		if ($this->subAdminManager->isSubAdmin($currentLoggedInUser)) {
-			$accessibleManagerUids = array_values(array_filter(
-				$managerUids,
-				function (string $managerUid) use ($currentLoggedInUser) {
-					$manager = $this->userManager->get($managerUid);
-					if (!($manager instanceof IUser)) {
-						return false;
-					}
-					return $this->subAdminManager->isUserAccessible($currentLoggedInUser, $manager);
-				},
-			));
-			return $accessibleManagerUids;
-		}
-
-		return [];
-	}
-
-	/**
-	 * Get the groups a user is a subadmin of
-	 *
-	 * @param string $userId
-	 * @return list<string>
-	 * @throws OCSException
-	 */
-	protected function getUserSubAdminGroupsData(string $userId): array {
-		$user = $this->userManager->get($userId);
-		// Check if the user exists
-		if ($user === null) {
-			throw new OCSNotFoundException('User does not exist');
-		}
-
-		// Get the subadmin groups
-		$subAdminGroups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($user);
-		$groups = [];
-		foreach ($subAdminGroups as $key => $group) {
-			$groups[] = $group->getGID();
-		}
-
-		return $groups;
-	}
-
-	/**
-	 * @param IUser $user
-	 * @return Provisioning_APIUserDetailsQuota
-	 * @throws OCSException
-	 */
-	protected function fillStorageInfo(IUser $user): array {
-		$includeExternal = $this->config->getSystemValueBool('quota_include_external_storage');
-		$userId = $user->getUID();
-
-		$quota = $user->getQuota();
-		if ($quota === 'none') {
-			$quota = FileInfo::SPACE_UNLIMITED;
-		} else {
-			$quota = Util::computerFileSize($quota);
-			if ($quota === false) {
-				$quota = FileInfo::SPACE_UNLIMITED;
-			}
-		}
-
-		try {
-			if ($includeExternal) {
-				\OC_Util::tearDownFS();
-				\OC_Util::setupFS($user->getUID());
-				$storage = \OC_Helper::getStorageInfo('/', null, true, false);
-				$data = [
-					'free' => $storage['free'],
-					'used' => $storage['used'],
-					'total' => $storage['total'],
-					'relative' => $storage['relative'],
-					self::USER_FIELD_QUOTA => $storage['quota'],
-				];
-			} else {
-				$userFileInfo = $this->rootFolder->getUserFolder($userId)->getStorage()->getCache()->get('');
-				$used = $userFileInfo->getSize();
-
-				if ($quota > 0) {
-					// prevent division by zero or error codes (negative values)
-					$relative = round(($used / $quota) * 10000) / 100;
-					$free = $quota - $used;
-					$total = $quota;
-				} else {
-					$relative = 0;
-					$free = FileInfo::SPACE_UNLIMITED;
-					$total = FileInfo::SPACE_UNLIMITED;
-				}
-
-				$data = [
-					'free' => $free,
-					'used' => $used,
-					'total' => $total,
-					'relative' => $relative,
-					self::USER_FIELD_QUOTA => $quota,
-				];
-			}
-		} catch (NotFoundException $ex) {
-			$data = [
-				self::USER_FIELD_QUOTA => $quota >= 0 ? $quota : 'none',
-				'used' => 0
-			];
-		} catch (\Exception $e) {
-			Server::get(\Psr\Log\LoggerInterface::class)->error(
-				'Could not load storage info for {user}',
-				[
-					'app' => 'provisioning_api',
-					'user' => $userId,
-					'exception' => $e,
-				]
-			);
-			return [];
-		}
-		return $data;
-	}
+    public const SCOPE_SUFFIX = 'Scope';
+
+    public const USER_FIELD_DISPLAYNAME = 'display';
+    public const USER_FIELD_LANGUAGE = 'language';
+    public const USER_FIELD_LOCALE = 'locale';
+    public const USER_FIELD_FIRST_DAY_OF_WEEK = 'first_day_of_week';
+    public const USER_FIELD_PASSWORD = 'password';
+    public const USER_FIELD_QUOTA = 'quota';
+    public const USER_FIELD_MANAGER = 'manager';
+    public const USER_FIELD_NOTIFICATION_EMAIL = 'notify_email';
+
+    public function __construct(
+        string $appName,
+        IRequest $request,
+        protected IUserManager $userManager,
+        protected IConfig $config,
+        protected GroupManager $groupManager,
+        protected IUserSession $userSession,
+        protected IAccountManager $accountManager,
+        protected ISubAdmin $subAdminManager,
+        protected IFactory $l10nFactory,
+        protected IRootFolder $rootFolder,
+    ) {
+        parent::__construct($appName, $request);
+    }
+
+    /**
+     * creates a array with all user data
+     *
+     * @param string $userId
+     * @param bool $includeScopes
+     * @return Provisioning_APIUserDetails|null
+     * @throws NotFoundException
+     * @throws OCSException
+     * @throws OCSNotFoundException
+     */
+    protected function getUserData(string $userId, bool $includeScopes = false): ?array {
+        $currentLoggedInUser = $this->userSession->getUser();
+        assert($currentLoggedInUser !== null, 'No user logged in');
+
+        $data = [];
+
+        // Check if the target user exists
+        $targetUserObject = $this->userManager->get($userId);
+        if ($targetUserObject === null) {
+            throw new OCSNotFoundException('User does not exist');
+        }
+
+        $isAdmin = $this->groupManager->isAdmin($currentLoggedInUser->getUID());
+        $isDelegatedAdmin = $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID());
+        if ($isAdmin
+            || $isDelegatedAdmin
+            || $this->groupManager->getSubAdmin()->isUserAccessible($currentLoggedInUser, $targetUserObject)) {
+            $data['enabled'] = $this->config->getUserValue($targetUserObject->getUID(), 'core', 'enabled', 'true') === 'true';
+        } else {
+            // Check they are looking up themselves
+            if ($currentLoggedInUser->getUID() !== $targetUserObject->getUID()) {
+                return null;
+            }
+        }
+
+        // Get groups data
+        $userAccount = $this->accountManager->getAccount($targetUserObject);
+        $groups = $this->groupManager->getUserGroups($targetUserObject);
+        $gids = [];
+        foreach ($groups as $group) {
+            $gids[] = $group->getGID();
+        }
+
+        if ($isAdmin || $isDelegatedAdmin) {
+            try {
+                # might be thrown by LDAP due to handling of users disappears
+                # from the external source (reasons unknown to us)
+                # cf. https://github.com/nextcloud/server/issues/12991
+                $data['storageLocation'] = $targetUserObject->getHome();
+            } catch (NoUserException $e) {
+                throw new OCSNotFoundException($e->getMessage(), $e);
+            }
+        }
+
+        // Find the data
+        $data['id'] = $targetUserObject->getUID();
+        $data['firstLoginTimestamp'] = $targetUserObject->getFirstLogin();
+        $data['lastLoginTimestamp'] = $targetUserObject->getLastLogin();
+        $data['lastLogin'] = $targetUserObject->getLastLogin() * 1000;
+        $data['backend'] = $targetUserObject->getBackendClassName();
+        $data['subadmin'] = $this->getUserSubAdminGroupsData($targetUserObject->getUID());
+        $data[self::USER_FIELD_QUOTA] = $this->fillStorageInfo($targetUserObject);
+        $managers = $this->getManagers($targetUserObject);
+        $data[self::USER_FIELD_MANAGER] = empty($managers) ? '' : $managers[0];
+
+        try {
+            if ($includeScopes) {
+                $data[IAccountManager::PROPERTY_AVATAR . self::SCOPE_SUFFIX] = $userAccount->getProperty(IAccountManager::PROPERTY_AVATAR)->getScope();
+            }
+
+            $data[IAccountManager::PROPERTY_EMAIL] = $targetUserObject->getSystemEMailAddress();
+            if ($includeScopes) {
+                $data[IAccountManager::PROPERTY_EMAIL . self::SCOPE_SUFFIX] = $userAccount->getProperty(IAccountManager::PROPERTY_EMAIL)->getScope();
+            }
+
+            $additionalEmails = $additionalEmailScopes = [];
+            $emailCollection = $userAccount->getPropertyCollection(IAccountManager::COLLECTION_EMAIL);
+            foreach ($emailCollection->getProperties() as $property) {
+                $email = mb_strtolower(trim($property->getValue()));
+                $additionalEmails[] = $email;
+                if ($includeScopes) {
+                    $additionalEmailScopes[] = $property->getScope();
+                }
+            }
+            $data[IAccountManager::COLLECTION_EMAIL] = $additionalEmails;
+            if ($includeScopes) {
+                $data[IAccountManager::COLLECTION_EMAIL . self::SCOPE_SUFFIX] = $additionalEmailScopes;
+            }
+
+            $data[IAccountManager::PROPERTY_DISPLAYNAME] = $targetUserObject->getDisplayName();
+            $data[IAccountManager::PROPERTY_DISPLAYNAME_LEGACY] = $data[IAccountManager::PROPERTY_DISPLAYNAME];
+            if ($includeScopes) {
+                $data[IAccountManager::PROPERTY_DISPLAYNAME . self::SCOPE_SUFFIX] = $userAccount->getProperty(IAccountManager::PROPERTY_DISPLAYNAME)->getScope();
+            }
+
+            foreach ([
+                IAccountManager::PROPERTY_PHONE,
+                IAccountManager::PROPERTY_ADDRESS,
+                IAccountManager::PROPERTY_WEBSITE,
+                IAccountManager::PROPERTY_TWITTER,
+                IAccountManager::PROPERTY_FEDIVERSE,
+                IAccountManager::PROPERTY_ORGANISATION,
+                IAccountManager::PROPERTY_ROLE,
+                IAccountManager::PROPERTY_HEADLINE,
+                IAccountManager::PROPERTY_BIOGRAPHY,
+                IAccountManager::PROPERTY_PROFILE_ENABLED,
+                IAccountManager::PROPERTY_PRONOUNS,
+            ] as $propertyName) {
+                $property = $userAccount->getProperty($propertyName);
+                $data[$propertyName] = $property->getValue();
+                if ($includeScopes) {
+                    $data[$propertyName . self::SCOPE_SUFFIX] = $property->getScope();
+                }
+            }
+        } catch (PropertyDoesNotExistException $e) {
+            // hard coded properties should exist
+            throw new OCSException($e->getMessage(), Http::STATUS_INTERNAL_SERVER_ERROR, $e);
+        }
+
+        $data['groups'] = $gids;
+        $data[self::USER_FIELD_LANGUAGE] = $this->l10nFactory->getUserLanguage($targetUserObject);
+        $data[self::USER_FIELD_LOCALE] = $this->config->getUserValue($targetUserObject->getUID(), 'core', 'locale');
+        $data[self::USER_FIELD_NOTIFICATION_EMAIL] = $targetUserObject->getPrimaryEMailAddress();
+
+        $backend = $targetUserObject->getBackend();
+        $data['backendCapabilities'] = [
+            'setDisplayName' => $backend instanceof ISetDisplayNameBackend || $backend->implementsActions(Backend::SET_DISPLAYNAME),
+            'setPassword' => $backend instanceof ISetPasswordBackend || $backend->implementsActions(Backend::SET_PASSWORD),
+        ];
+
+        return $data;
+    }
+
+    /**
+     * @return string[]
+     */
+    protected function getManagers(IUser $user): array {
+        $currentLoggedInUser = $this->userSession->getUser();
+
+        $managerUids = $user->getManagerUids();
+        if ($this->groupManager->isAdmin($currentLoggedInUser->getUID()) || $this->groupManager->isDelegatedAdmin($currentLoggedInUser->getUID())) {
+            return $managerUids;
+        }
+
+        if ($this->subAdminManager->isSubAdmin($currentLoggedInUser)) {
+            $accessibleManagerUids = array_values(array_filter(
+                $managerUids,
+                function (string $managerUid) use ($currentLoggedInUser) {
+                    $manager = $this->userManager->get($managerUid);
+                    if (!($manager instanceof IUser)) {
+                        return false;
+                    }
+                    return $this->subAdminManager->isUserAccessible($currentLoggedInUser, $manager);
+                },
+            ));
+            return $accessibleManagerUids;
+        }
+
+        return [];
+    }
+
+    /**
+     * Get the groups a user is a subadmin of
+     *
+     * @param string $userId
+     * @return list<string>
+     * @throws OCSException
+     */
+    protected function getUserSubAdminGroupsData(string $userId): array {
+        $user = $this->userManager->get($userId);
+        // Check if the user exists
+        if ($user === null) {
+            throw new OCSNotFoundException('User does not exist');
+        }
+
+        // Get the subadmin groups
+        $subAdminGroups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($user);
+        $groups = [];
+        foreach ($subAdminGroups as $key => $group) {
+            $groups[] = $group->getGID();
+        }
+
+        return $groups;
+    }
+
+    /**
+     * @param IUser $user
+     * @return Provisioning_APIUserDetailsQuota
+     * @throws OCSException
+     */
+    protected function fillStorageInfo(IUser $user): array {
+        $includeExternal = $this->config->getSystemValueBool('quota_include_external_storage');
+        $userId = $user->getUID();
+
+        $quota = $user->getQuota();
+        if ($quota === 'none') {
+            $quota = FileInfo::SPACE_UNLIMITED;
+        } else {
+            $quota = Util::computerFileSize($quota);
+            if ($quota === false) {
+                $quota = FileInfo::SPACE_UNLIMITED;
+            }
+        }
+
+        try {
+            if ($includeExternal) {
+                \OC_Util::tearDownFS();
+                \OC_Util::setupFS($user->getUID());
+                $storage = \OC_Helper::getStorageInfo('/', null, true, false);
+                $data = [
+                    'free' => $storage['free'],
+                    'used' => $storage['used'],
+                    'total' => $storage['total'],
+                    'relative' => $storage['relative'],
+                    self::USER_FIELD_QUOTA => $storage['quota'],
+                ];
+            } else {
+                $userFileInfo = $this->rootFolder->getUserFolder($userId)->getStorage()->getCache()->get('');
+                $used = $userFileInfo->getSize();
+
+                if ($quota > 0) {
+                    // prevent division by zero or error codes (negative values)
+                    $relative = round(($used / $quota) * 10000) / 100;
+                    $free = $quota - $used;
+                    $total = $quota;
+                } else {
+                    $relative = 0;
+                    $free = FileInfo::SPACE_UNLIMITED;
+                    $total = FileInfo::SPACE_UNLIMITED;
+                }
+
+                $data = [
+                    'free' => $free,
+                    'used' => $used,
+                    'total' => $total,
+                    'relative' => $relative,
+                    self::USER_FIELD_QUOTA => $quota,
+                ];
+            }
+        } catch (NotFoundException $ex) {
+            $data = [
+                self::USER_FIELD_QUOTA => $quota >= 0 ? $quota : 'none',
+                'used' => 0
+            ];
+        } catch (\Exception $e) {
+            Server::get(\Psr\Log\LoggerInterface::class)->error(
+                'Could not load storage info for {user}',
+                [
+                    'app' => 'provisioning_api',
+                    'user' => $userId,
+                    'exception' => $e,
+                ]
+            );
+            return [];
+        }
+        return $data;
+    }
 }

Please login to merge, or discard this patch.

apps/provisioning_api/tests/Controller/UsersControllerTest.php 1 patch

Indentation +4390 added lines, -4390 removed lines patch added patch discarded remove patch

@@ -47,4395 +47,4395 @@
 block discarded – undo
 use Test\TestCase;
 
 class UsersControllerTest extends TestCase {
-	protected IUserManager&MockObject $userManager;
-	protected IConfig&MockObject $config;
-	protected Manager&MockObject $groupManager;
-	protected IUserSession&MockObject $userSession;
-	protected LoggerInterface&MockObject $logger;
-	protected UsersController&MockObject $api;
-	protected IAccountManager&MockObject $accountManager;
-	protected ISubAdmin&MockObject $subAdminManager;
-	protected IURLGenerator&MockObject $urlGenerator;
-	protected IRequest&MockObject $request;
-	private IFactory&MockObject $l10nFactory;
-	private NewUserMailHelper&MockObject $newUserMailHelper;
-	private ISecureRandom&MockObject $secureRandom;
-	private RemoteWipe&MockObject $remoteWipe;
-	private KnownUserService&MockObject $knownUserService;
-	private IEventDispatcher&MockObject $eventDispatcher;
-	private IRootFolder $rootFolder;
-	private IPhoneNumberUtil $phoneNumberUtil;
-	private IAppManager $appManager;
-
-	protected function setUp(): void {
-		parent::setUp();
-
-		$this->userManager = $this->createMock(IUserManager::class);
-		$this->config = $this->createMock(IConfig::class);
-		$this->groupManager = $this->createMock(Manager::class);
-		$this->userSession = $this->createMock(IUserSession::class);
-		$this->logger = $this->createMock(LoggerInterface::class);
-		$this->request = $this->createMock(IRequest::class);
-		$this->accountManager = $this->createMock(IAccountManager::class);
-		$this->subAdminManager = $this->createMock(ISubAdmin::class);
-		$this->urlGenerator = $this->createMock(IURLGenerator::class);
-		$this->l10nFactory = $this->createMock(IFactory::class);
-		$this->newUserMailHelper = $this->createMock(NewUserMailHelper::class);
-		$this->secureRandom = $this->createMock(ISecureRandom::class);
-		$this->remoteWipe = $this->createMock(RemoteWipe::class);
-		$this->knownUserService = $this->createMock(KnownUserService::class);
-		$this->eventDispatcher = $this->createMock(IEventDispatcher::class);
-		$this->phoneNumberUtil = new PhoneNumberUtil();
-		$this->appManager = $this->createMock(IAppManager::class);
-		$this->rootFolder = $this->createMock(IRootFolder::class);
-
-		$l10n = $this->createMock(IL10N::class);
-		$l10n->method('t')->willReturnCallback(fn (string $txt, array $replacement = []) => sprintf($txt, ...$replacement));
-		$this->l10nFactory->method('get')->with('provisioning_api')->willReturn($l10n);
-
-		$this->api = $this->getMockBuilder(UsersController::class)
-			->setConstructorArgs([
-				'provisioning_api',
-				$this->request,
-				$this->userManager,
-				$this->config,
-				$this->groupManager,
-				$this->userSession,
-				$this->accountManager,
-				$this->subAdminManager,
-				$this->l10nFactory,
-				$this->rootFolder,
-				$this->urlGenerator,
-				$this->logger,
-				$this->newUserMailHelper,
-				$this->secureRandom,
-				$this->remoteWipe,
-				$this->knownUserService,
-				$this->eventDispatcher,
-				$this->phoneNumberUtil,
-				$this->appManager,
-			])
-			->onlyMethods(['fillStorageInfo'])
-			->getMock();
-	}
-
-	public function testGetUsersAsAdmin(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('admin');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->willReturn(true);
-		$this->userManager
-			->expects($this->once())
-			->method('search')
-			->with('MyCustomSearch')
-			->willReturn(['Admin' => [], 'Foo' => [], 'Bar' => []]);
-
-		$expected = [
-			'users' => [
-				'Admin',
-				'Foo',
-				'Bar',
-			],
-		];
-		$this->assertEquals($expected, $this->api->getUsers('MyCustomSearch')->getData());
-	}
-
-	public function testGetUsersAsSubAdmin(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('subadmin');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->willReturn(false);
-		$firstGroup = $this->getMockBuilder('OCP\IGroup')
-			->disableOriginalConstructor()
-			->getMock();
-		$firstGroup
-			->expects($this->once())
-			->method('getGID')
-			->willReturn('FirstGroup');
-		$secondGroup = $this->getMockBuilder('OCP\IGroup')
-			->disableOriginalConstructor()
-			->getMock();
-		$secondGroup
-			->expects($this->once())
-			->method('getGID')
-			->willReturn('SecondGroup');
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isSubAdmin')
-			->with($loggedInUser)
-			->willReturn(true);
-		$subAdminManager
-			->expects($this->once())
-			->method('getSubAdminsGroups')
-			->with($loggedInUser)
-			->willReturn([$firstGroup, $secondGroup]);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager
-			->expects($this->any())
-			->method('displayNamesInGroup')->willReturnOnConsecutiveCalls(['AnotherUserInTheFirstGroup' => []], ['UserInTheSecondGroup' => []]);
-
-		$expected = [
-			'users' => [
-				'AnotherUserInTheFirstGroup',
-				'UserInTheSecondGroup',
-			],
-		];
-		$this->assertEquals($expected, $this->api->getUsers('MyCustomSearch')->getData());
-	}
-
-	private function createUserMock(string $uid, bool $enabled): MockObject&IUser {
-		$mockUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$mockUser
-			->method('getUID')
-			->willReturn($uid);
-		$mockUser
-			->method('isEnabled')
-			->willReturn($enabled);
-		return $mockUser;
-	}
-
-	public function testGetDisabledUsersAsAdmin(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('admin');
-		$this->userSession
-			->expects($this->atLeastOnce())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->willReturn(true);
-		$this->userManager
-			->expects($this->once())
-			->method('getDisabledUsers')
-			->with(3, 0, 'MyCustomSearch')
-			->willReturn([
-				$this->createUserMock('admin', false),
-				$this->createUserMock('foo', false),
-				$this->createUserMock('bar', false),
-			]);
-
-		$expected = [
-			'users' => [
-				'admin' => ['id' => 'admin'],
-				'foo' => ['id' => 'foo'],
-				'bar' => ['id' => 'bar'],
-			],
-		];
-		$this->assertEquals($expected, $this->api->getDisabledUsersDetails('MyCustomSearch', 3)->getData());
-	}
-
-	public function testGetDisabledUsersAsSubAdmin(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('subadmin');
-		$this->userSession
-			->expects($this->atLeastOnce())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->willReturn(false);
-		$firstGroup = $this->getMockBuilder('OCP\IGroup')
-			->disableOriginalConstructor()
-			->getMock();
-		$secondGroup = $this->getMockBuilder('OCP\IGroup')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isSubAdmin')
-			->with($loggedInUser)
-			->willReturn(true);
-		$subAdminManager
-			->expects($this->once())
-			->method('getSubAdminsGroups')
-			->with($loggedInUser)
-			->willReturn([$firstGroup, $secondGroup]);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager
-			->expects($this->never())
-			->method('displayNamesInGroup');
-
-		$firstGroup
-			->expects($this->once())
-			->method('searchUsers')
-			->with('MyCustomSearch')
-			->willReturn([
-				$this->createUserMock('user1', false),
-				$this->createUserMock('bob', true),
-				$this->createUserMock('user2', false),
-				$this->createUserMock('alice', true),
-			]);
-
-		$secondGroup
-			->expects($this->once())
-			->method('searchUsers')
-			->with('MyCustomSearch')
-			->willReturn([
-				$this->createUserMock('user2', false),
-				$this->createUserMock('joe', true),
-				$this->createUserMock('user3', false),
-				$this->createUserMock('jim', true),
-				$this->createUserMock('john', true),
-			]);
-
-
-		$expected = [
-			'users' => [
-				'user1' => ['id' => 'user1'],
-				'user2' => ['id' => 'user2'],
-				'user3' => ['id' => 'user3'],
-			],
-		];
-		$this->assertEquals($expected, $this->api->getDisabledUsersDetails('MyCustomSearch', 3)->getData());
-	}
-
-
-	public function testAddUserAlreadyExisting(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(102);
-
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('AlreadyExistingUser')
-			->willReturn(true);
-		$this->logger
-			->expects($this->once())
-			->method('error')
-			->with('Failed addUser attempt: User already exists.', ['app' => 'ocs_api']);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-
-		$this->api->addUser('AlreadyExistingUser', 'password', '', '', []);
-	}
-
-
-	public function testAddUserNonExistingGroup(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Group NonExistingGroup does not exist');
-		$this->expectExceptionCode(104);
-
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('NewUser')
-			->willReturn(false);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('groupExists')
-			->with('NonExistingGroup')
-			->willReturn(false);
-
-		$this->api->addUser('NewUser', 'pass', '', '', ['NonExistingGroup']);
-	}
-
-
-	public function testAddUserExistingGroupNonExistingGroup(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Group NonExistingGroup does not exist');
-		$this->expectExceptionCode(104);
-
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('NewUser')
-			->willReturn(false);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->exactly(2))
-			->method('groupExists')
-			->willReturnMap([
-				['ExistingGroup', true],
-				['NonExistingGroup', false]
-			]);
-
-		$this->api->addUser('NewUser', 'pass', '', '', ['ExistingGroup', 'NonExistingGroup']);
-	}
-
-	public function testAddUserSuccessful(): void {
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('NewUser')
-			->willReturn(false);
-		$this->userManager
-			->expects($this->once())
-			->method('createUser')
-			->with('NewUser', 'PasswordOfTheNewUser');
-		$this->logger
-			->expects($this->once())
-			->method('info')
-			->with('Successful addUser call with userid: NewUser', ['app' => 'ocs_api']);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-
-		$this->assertTrue(key_exists(
-			'id',
-			$this->api->addUser('NewUser', 'PasswordOfTheNewUser')->getData()
-		));
-	}
-
-	public function testAddUserSuccessfulWithDisplayName(): void {
-		/**
-		 * @var UserController
-		 */
-		$api = $this->getMockBuilder(UsersController::class)
-			->setConstructorArgs([
-				'provisioning_api',
-				$this->request,
-				$this->userManager,
-				$this->config,
-				$this->groupManager,
-				$this->userSession,
-				$this->accountManager,
-				$this->subAdminManager,
-				$this->l10nFactory,
-				$this->rootFolder,
-				$this->urlGenerator,
-				$this->logger,
-				$this->newUserMailHelper,
-				$this->secureRandom,
-				$this->remoteWipe,
-				$this->knownUserService,
-				$this->eventDispatcher,
-				$this->phoneNumberUtil,
-				$this->appManager,
-			])
-			->onlyMethods(['editUser'])
-			->getMock();
-
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('NewUser')
-			->willReturn(false);
-		$this->userManager
-			->expects($this->once())
-			->method('createUser')
-			->with('NewUser', 'PasswordOfTheNewUser');
-		$this->logger
-			->expects($this->once())
-			->method('info')
-			->with('Successful addUser call with userid: NewUser', ['app' => 'ocs_api']);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->any())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-		$api
-			->expects($this->once())
-			->method('editUser')
-			->with('NewUser', 'display', 'DisplayNameOfTheNewUser');
-
-		$this->assertTrue(key_exists(
-			'id',
-			$api->addUser('NewUser', 'PasswordOfTheNewUser', 'DisplayNameOfTheNewUser')->getData()
-		));
-	}
-
-	public function testAddUserSuccessfulGenerateUserID(): void {
-		$this->config
-			->expects($this->any())
-			->method('getAppValue')
-			->willReturnCallback(function ($appid, $key, $default) {
-				if ($key === 'newUser.generateUserID') {
-					return 'yes';
-				}
-				return null;
-			});
-		$this->userManager
-			->expects($this->any())
-			->method('userExists')
-			->with($this->anything())
-			->willReturn(false);
-		$this->userManager
-			->expects($this->once())
-			->method('createUser')
-			->with($this->anything(), 'PasswordOfTheNewUser');
-		$this->logger
-			->expects($this->once())
-			->method('info')
-			->with($this->stringStartsWith('Successful addUser call with userid: '), ['app' => 'ocs_api']);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-		$this->secureRandom->expects($this->any())
-			->method('generate')
-			->with(10)
-			->willReturnCallback(function () {
-				return (string)rand(100000000, 999999999);
-			});
-
-		$this->assertTrue(key_exists(
-			'id',
-			$this->api->addUser('', 'PasswordOfTheNewUser')->getData()
-		));
-	}
-
-	public function testAddUserSuccessfulGeneratePassword(): void {
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('NewUser')
-			->willReturn(false);
-		$newUser = $this->createMock(IUser::class);
-		$newUser->expects($this->once())
-			->method('setSystemEMailAddress');
-		$this->userManager
-			->expects($this->once())
-			->method('createUser')
-			->willReturn($newUser);
-		$this->logger
-			->expects($this->once())
-			->method('info')
-			->with('Successful addUser call with userid: NewUser', ['app' => 'ocs_api']);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-		$this->eventDispatcher
-			->expects($this->once())
-			->method('dispatchTyped')
-			->with(new GenerateSecurePasswordEvent());
-
-		$this->assertTrue(key_exists(
-			'id',
-			$this->api->addUser('NewUser', '', '', 'foo@bar')->getData()
-		));
-	}
-
-	public function testAddUserSuccessfulLowercaseEmail(): void {
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('NewUser')
-			->willReturn(false);
-		$newUser = $this->createMock(IUser::class);
-		$newUser->expects($this->once())
-			->method('setSystemEMailAddress')
-			->with('[email protected]');
-		$this->userManager
-			->expects($this->once())
-			->method('createUser')
-			->willReturn($newUser);
-		$this->logger
-			->expects($this->once())
-			->method('info')
-			->with('Successful addUser call with userid: NewUser', ['app' => 'ocs_api']);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-		$this->eventDispatcher
-			->expects($this->once())
-			->method('dispatchTyped')
-			->with(new GenerateSecurePasswordEvent());
-
-		$this->assertTrue(key_exists(
-			'id',
-			$this->api->addUser('NewUser', '', '', '[email protected]')->getData()
-		));
-	}
-
-
-	public function testAddUserFailedToGenerateUserID(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Could not create non-existing user ID');
-		$this->expectExceptionCode(111);
-
-		$this->config
-			->expects($this->any())
-			->method('getAppValue')
-			->willReturnCallback(function ($appid, $key, $default) {
-				if ($key === 'newUser.generateUserID') {
-					return 'yes';
-				}
-				return null;
-			});
-		$this->userManager
-			->expects($this->any())
-			->method('userExists')
-			->with($this->anything())
-			->willReturn(true);
-		$this->userManager
-			->expects($this->never())
-			->method('createUser');
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-
-		$this->api->addUser('', 'PasswordOfTheNewUser')->getData();
-	}
-
-
-	public function testAddUserEmailRequired(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Required email address was not provided');
-		$this->expectExceptionCode(110);
-
-		$this->config
-			->expects($this->any())
-			->method('getAppValue')
-			->willReturnCallback(function ($appid, $key, $default) {
-				if ($key === 'newUser.requireEmail') {
-					return 'yes';
-				}
-				return null;
-			});
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('NewUser')
-			->willReturn(false);
-		$this->userManager
-			->expects($this->never())
-			->method('createUser');
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-
-		$this->assertTrue(key_exists(
-			'id',
-			$this->api->addUser('NewUser', 'PasswordOfTheNewUser')->getData()
-		));
-	}
-
-	public function testAddUserExistingGroup(): void {
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('NewUser')
-			->willReturn(false);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('groupExists')
-			->with('ExistingGroup')
-			->willReturn(true);
-		$user = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userManager
-			->expects($this->once())
-			->method('createUser')
-			->with('NewUser', 'PasswordOfTheNewUser')
-			->willReturn($user);
-		$group = $this->getMockBuilder('OCP\IGroup')
-			->disableOriginalConstructor()
-			->getMock();
-		$group
-			->expects($this->once())
-			->method('addUser')
-			->with($user);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('ExistingGroup')
-			->willReturn($group);
-
-		$calls = [
-			['Successful addUser call with userid: NewUser', ['app' => 'ocs_api']],
-			['Added userid NewUser to group ExistingGroup', ['app' => 'ocs_api']],
-		];
-		$this->logger
-			->expects($this->exactly(2))
-			->method('info')
-			->willReturnCallback(function () use (&$calls): void {
-				$expected = array_shift($calls);
-				$this->assertEquals($expected, func_get_args());
-			});
-
-		$this->assertArrayHasKey('id', $this->api->addUser('NewUser', 'PasswordOfTheNewUser', '', '', ['ExistingGroup'])->getData());
-	}
-
-
-	public function testAddUserUnsuccessful(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Bad request');
-		$this->expectExceptionCode(101);
-
-		$exception = new Exception('User backend not found.');
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('NewUser')
-			->willReturn(false);
-		$this->userManager
-			->expects($this->once())
-			->method('createUser')
-			->with('NewUser', 'PasswordOfTheNewUser')
-			->willThrowException($exception);
-		$this->logger
-			->expects($this->once())
-			->method('error')
-			->with(
-				'Failed addUser attempt with exception.',
-				[
-					'app' => 'ocs_api',
-					'exception' => $exception
-				]
-			);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('adminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('adminUser')
-			->willReturn(true);
-
-		$this->api->addUser('NewUser', 'PasswordOfTheNewUser');
-	}
-
-
-	public function testAddUserAsSubAdminNoGroup(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('No group specified (required for sub-admins)');
-		$this->expectExceptionCode(106);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('regularUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('regularUser')
-			->willReturn(false);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->with()
-			->willReturn($subAdminManager);
-
-		$this->api->addUser('NewUser', 'PasswordOfTheNewUser', '', '', []);
-	}
-
-
-	public function testAddUserAsSubAdminValidGroupNotSubAdmin(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Insufficient privileges for group ExistingGroup');
-		$this->expectExceptionCode(105);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('regularUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('regularUser')
-			->willReturn(false);
-		$existingGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('ExistingGroup')
-			->willReturn($existingGroup);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isSubAdminOfGroup')
-			->with($loggedInUser, $existingGroup)
-			->willReturn(false);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->with()
-			->willReturn($subAdminManager);
-		$this->groupManager
-			->expects($this->once())
-			->method('groupExists')
-			->with('ExistingGroup')
-			->willReturn(true);
-
-		$this->api->addUser('NewUser', 'PasswordOfTheNewUser', '', '', ['ExistingGroup'])->getData();
-	}
-
-	public function testAddUserAsSubAdminExistingGroups(): void {
-		$this->userManager
-			->expects($this->once())
-			->method('userExists')
-			->with('NewUser')
-			->willReturn(false);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('subAdminUser');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('subAdminUser')
-			->willReturn(false);
-		$this->groupManager
-			->expects($this->exactly(2))
-			->method('groupExists')
-			->willReturnMap([
-				['ExistingGroup1', true],
-				['ExistingGroup2', true]
-			]);
-		$user = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userManager
-			->expects($this->once())
-			->method('createUser')
-			->with('NewUser', 'PasswordOfTheNewUser')
-			->willReturn($user);
-		$existingGroup1 = $this->getMockBuilder('OCP\IGroup')
-			->disableOriginalConstructor()
-			->getMock();
-		$existingGroup2 = $this->getMockBuilder('OCP\IGroup')
-			->disableOriginalConstructor()
-			->getMock();
-		$existingGroup1
-			->expects($this->once())
-			->method('addUser')
-			->with($user);
-		$existingGroup2
-			->expects($this->once())
-			->method('addUser')
-			->with($user);
-		$this->groupManager
-			->expects($this->exactly(4))
-			->method('get')
-			->willReturnMap([
-				['ExistingGroup1', $existingGroup1],
-				['ExistingGroup2', $existingGroup2]
-			]);
-
-		$calls = [
-			['Successful addUser call with userid: NewUser', ['app' => 'ocs_api']],
-			['Added userid NewUser to group ExistingGroup1', ['app' => 'ocs_api']],
-			['Added userid NewUser to group ExistingGroup2', ['app' => 'ocs_api']],
-		];
-		$this->logger
-			->expects($this->exactly(3))
-			->method('info')
-			->willReturnCallback(function () use (&$calls): void {
-				$expected = array_shift($calls);
-				$this->assertEquals($expected, func_get_args());
-			});
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$subAdminManager
-			->expects($this->exactly(2))
-			->method('isSubAdminOfGroup')
-			->willReturnMap([
-				[$loggedInUser, $existingGroup1, true],
-				[$loggedInUser, $existingGroup2, true],
-			]);
-
-		$this->assertArrayHasKey('id', $this->api->addUser('NewUser', 'PasswordOfTheNewUser', '', '', ['ExistingGroup1', 'ExistingGroup2'])->getData());
-	}
-
-
-	public function testGetUserTargetDoesNotExist(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('User does not exist');
-		$this->expectExceptionCode(404);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToGet')
-			->willReturn(null);
-
-		$this->api->getUser('UserToGet');
-	}
-
-	public function testGetUserDataAsAdmin(): void {
-		$group0 = $this->createMock(IGroup::class);
-		$group1 = $this->createMock(IGroup::class);
-		$group2 = $this->createMock(IGroup::class);
-		$group3 = $this->createMock(IGroup::class);
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->method('getUID')
-			->willReturn('admin');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$targetUser->expects($this->once())
-			->method('getSystemEMailAddress')
-			->willReturn('[email protected]');
-		$this->userSession
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->method('get')
-			->with('UID')
-			->willReturn($targetUser);
-		$this->groupManager
-			->method('isAdmin')
-			->with('admin')
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->any())
-			->method('getUserGroups')
-			->willReturn([$group0, $group1, $group2]);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$subAdminManager
-			->expects($this->once())
-			->method('getSubAdminsGroups')
-			->willReturn([$group3]);
-		$group0->expects($this->once())
-			->method('getGID')
-			->willReturn('group0');
-		$group1->expects($this->once())
-			->method('getGID')
-			->willReturn('group1');
-		$group2->expects($this->once())
-			->method('getGID')
-			->willReturn('group2');
-		$group3->expects($this->once())
-			->method('getGID')
-			->willReturn('group3');
-
-		$this->mockAccount($targetUser, [
-			IAccountManager::PROPERTY_ADDRESS => ['value' => 'address'],
-			IAccountManager::PROPERTY_PHONE => ['value' => 'phone'],
-			IAccountManager::PROPERTY_TWITTER => ['value' => 'twitter'],
-			IAccountManager::PROPERTY_FEDIVERSE => ['value' => 'fediverse'],
-			IAccountManager::PROPERTY_WEBSITE => ['value' => 'website'],
-			IAccountManager::PROPERTY_ORGANISATION => ['value' => 'organisation'],
-			IAccountManager::PROPERTY_ROLE => ['value' => 'role'],
-			IAccountManager::PROPERTY_HEADLINE => ['value' => 'headline'],
-			IAccountManager::PROPERTY_BIOGRAPHY => ['value' => 'biography'],
-			IAccountManager::PROPERTY_PROFILE_ENABLED => ['value' => '1'],
-			IAccountManager::PROPERTY_PRONOUNS => ['value' => 'they/them'],
-		]);
-		$this->config
-			->method('getUserValue')
-			->willReturnMap([
-				['UID', 'core', 'enabled', 'true', 'true'],
-			]);
-		$this->api
-			->expects($this->once())
-			->method('fillStorageInfo')
-			->with($targetUser)
-			->willReturn(['DummyValue']);
-
-		$backend = $this->createMock(UserInterface::class);
-		$backend->expects($this->any())
-			->method('implementsActions')
-			->willReturn(true);
-
-		$targetUser
-			->expects($this->once())
-			->method('getDisplayName')
-			->willReturn('Demo User');
-		$targetUser
-			->expects($this->once())
-			->method('getHome')
-			->willReturn('/var/www/newtcloud/data/UID');
-		$targetUser
-			->expects($this->exactly(2))
-			->method('getLastLogin')
-			->willReturn(1521191471);
-		$targetUser
-			->expects($this->once())
-			->method('getFirstLogin')
-			->willReturn(1511191471);
-		$targetUser
-			->expects($this->once())
-			->method('getBackendClassName')
-			->willReturn('Database');
-		$targetUser
-			->expects($this->once())
-			->method('getBackend')
-			->willReturn($backend);
-		$targetUser
-			->method('getUID')
-			->willReturn('UID');
-
-		$this->l10nFactory
-			->expects($this->once())
-			->method('getUserLanguage')
-			->with($targetUser)
-			->willReturn('de');
-
-		$expected = [
-			'id' => 'UID',
-			'enabled' => true,
-			'storageLocation' => '/var/www/newtcloud/data/UID',
-			'firstLoginTimestamp' => 1511191471,
-			'lastLoginTimestamp' => 1521191471,
-			'lastLogin' => 1521191471000,
-			'backend' => 'Database',
-			'subadmin' => ['group3'],
-			'quota' => ['DummyValue'],
-			'email' => '[email protected]',
-			'displayname' => 'Demo User',
-			'display-name' => 'Demo User',
-			'phone' => 'phone',
-			'address' => 'address',
-			'website' => 'website',
-			'twitter' => 'twitter',
-			'fediverse' => 'fediverse',
-			'groups' => ['group0', 'group1', 'group2'],
-			'language' => 'de',
-			'locale' => null,
-			'backendCapabilities' => [
-				'setDisplayName' => true,
-				'setPassword' => true,
-			],
-			'additional_mail' => [],
-			'organisation' => 'organisation',
-			'role' => 'role',
-			'headline' => 'headline',
-			'biography' => 'biography',
-			'profile_enabled' => '1',
-			'notify_email' => null,
-			'manager' => '',
-			'pronouns' => 'they/them',
-		];
-		$this->assertEquals($expected, $this->invokePrivate($this->api, 'getUserData', ['UID']));
-	}
-
-	public function testGetUserDataAsSubAdminAndUserIsAccessible(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getSystemEMailAddress')
-			->willReturn('[email protected]');
-		$this->userSession
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->method('get')
-			->with('UID')
-			->willReturn($targetUser);
-		$this->groupManager
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-		$this->groupManager
-			->expects($this->any())
-			->method('getUserGroups')
-			->willReturn([]);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(true);
-		$subAdminManager
-			->expects($this->once())
-			->method('getSubAdminsGroups')
-			->willReturn([]);
-		$this->groupManager
-			->expects($this->exactly(2))
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->config
-			->method('getUserValue')
-			->willReturnMap([
-				['UID', 'core', 'enabled', 'true', 'true'],
-			]);
-		$this->api
-			->expects($this->once())
-			->method('fillStorageInfo')
-			->with($targetUser)
-			->willReturn(['DummyValue']);
-
-		$backend = $this->createMock(UserInterface::class);
-		$backend->expects($this->any())
-			->method('implementsActions')
-			->willReturn(true);
-
-		$targetUser
-			->expects($this->once())
-			->method('getDisplayName')
-			->willReturn('Demo User');
-		$targetUser
-			->expects($this->never())
-			->method('getHome');
-		$targetUser
-			->expects($this->exactly(2))
-			->method('getLastLogin')
-			->willReturn(1521191471);
-		$targetUser
-			->expects($this->once())
-			->method('getFirstLogin')
-			->willReturn(1511191471);
-		$targetUser
-			->expects($this->once())
-			->method('getBackendClassName')
-			->willReturn('Database');
-		$targetUser
-			->expects($this->once())
-			->method('getBackend')
-			->willReturn($backend);
-		$targetUser
-			->method('getUID')
-			->willReturn('UID');
-
-		$this->mockAccount($targetUser, [
-			IAccountManager::PROPERTY_ADDRESS => ['value' => 'address'],
-			IAccountManager::PROPERTY_PHONE => ['value' => 'phone'],
-			IAccountManager::PROPERTY_TWITTER => ['value' => 'twitter'],
-			IAccountManager::PROPERTY_FEDIVERSE => ['value' => 'fediverse'],
-			IAccountManager::PROPERTY_WEBSITE => ['value' => 'website'],
-			IAccountManager::PROPERTY_ORGANISATION => ['value' => 'organisation'],
-			IAccountManager::PROPERTY_ROLE => ['value' => 'role'],
-			IAccountManager::PROPERTY_HEADLINE => ['value' => 'headline'],
-			IAccountManager::PROPERTY_BIOGRAPHY => ['value' => 'biography'],
-			IAccountManager::PROPERTY_PROFILE_ENABLED => ['value' => '1'],
-			IAccountManager::PROPERTY_PRONOUNS => ['value' => 'they/them'],
-		]);
-
-		$this->l10nFactory
-			->expects($this->once())
-			->method('getUserLanguage')
-			->with($targetUser)
-			->willReturn('da');
-
-		$expected = [
-			'id' => 'UID',
-			'enabled' => true,
-			'firstLoginTimestamp' => 1511191471,
-			'lastLoginTimestamp' => 1521191471,
-			'lastLogin' => 1521191471000,
-			'backend' => 'Database',
-			'subadmin' => [],
-			'quota' => ['DummyValue'],
-			'email' => '[email protected]',
-			'displayname' => 'Demo User',
-			'display-name' => 'Demo User',
-			'phone' => 'phone',
-			'address' => 'address',
-			'website' => 'website',
-			'twitter' => 'twitter',
-			'fediverse' => 'fediverse',
-			'groups' => [],
-			'language' => 'da',
-			'locale' => null,
-			'backendCapabilities' => [
-				'setDisplayName' => true,
-				'setPassword' => true,
-			],
-			'additional_mail' => [],
-			'organisation' => 'organisation',
-			'role' => 'role',
-			'headline' => 'headline',
-			'biography' => 'biography',
-			'profile_enabled' => '1',
-			'notify_email' => null,
-			'manager' => '',
-			'pronouns' => 'they/them',
-		];
-		$this->assertEquals($expected, $this->invokePrivate($this->api, 'getUserData', ['UID']));
-	}
-
-
-
-	public function testGetUserDataAsSubAdminAndUserIsNotAccessible(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(998);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(4))
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToGet')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(false);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-
-		$this->invokePrivate($this->api, 'getUser', ['UserToGet']);
-	}
-
-	public function testGetUserDataAsSubAdminSelfLookup(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->method('get')
-			->with('UID')
-			->willReturn($targetUser);
-		$this->groupManager
-			->method('isAdmin')
-			->with('UID')
-			->willReturn(false);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(false);
-		$subAdminManager
-			->expects($this->once())
-			->method('getSubAdminsGroups')
-			->willReturn([]);
-		$this->groupManager
-			->expects($this->exactly(2))
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager
-			->expects($this->any())
-			->method('getUserGroups')
-			->willReturn([]);
-		$this->api
-			->expects($this->once())
-			->method('fillStorageInfo')
-			->with($targetUser)
-			->willReturn(['DummyValue']);
-
-		$backend = $this->createMock(UserInterface::class);
-		$backend->expects($this->atLeastOnce())
-			->method('implementsActions')
-			->willReturn(false);
-
-		$targetUser
-			->expects($this->once())
-			->method('getDisplayName')
-			->willReturn('Subadmin User');
-		$targetUser
-			->expects($this->once())
-			->method('getSystemEMailAddress')
-			->willReturn('[email protected]');
-		$targetUser
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser
-			->expects($this->never())
-			->method('getHome');
-		$targetUser
-			->expects($this->exactly(2))
-			->method('getLastLogin')
-			->willReturn(1521191471);
-		$targetUser
-			->expects($this->once())
-			->method('getFirstLogin')
-			->willReturn(1511191471);
-		$targetUser
-			->expects($this->once())
-			->method('getBackendClassName')
-			->willReturn('Database');
-		$targetUser
-			->expects($this->once())
-			->method('getBackend')
-			->willReturn($backend);
-		$this->mockAccount($targetUser, [
-			IAccountManager::PROPERTY_ADDRESS => ['value' => 'address'],
-			IAccountManager::PROPERTY_PHONE => ['value' => 'phone'],
-			IAccountManager::PROPERTY_TWITTER => ['value' => 'twitter'],
-			IAccountManager::PROPERTY_FEDIVERSE => ['value' => 'fediverse'],
-			IAccountManager::PROPERTY_WEBSITE => ['value' => 'website'],
-			IAccountManager::PROPERTY_ORGANISATION => ['value' => 'organisation'],
-			IAccountManager::PROPERTY_ROLE => ['value' => 'role'],
-			IAccountManager::PROPERTY_HEADLINE => ['value' => 'headline'],
-			IAccountManager::PROPERTY_BIOGRAPHY => ['value' => 'biography'],
-			IAccountManager::PROPERTY_PROFILE_ENABLED => ['value' => '1'],
-			IAccountManager::PROPERTY_PRONOUNS => ['value' => 'they/them'],
-		]);
-
-		$this->l10nFactory
-			->expects($this->once())
-			->method('getUserLanguage')
-			->with($targetUser)
-			->willReturn('ru');
-
-		$expected = [
-			'id' => 'UID',
-			'firstLoginTimestamp' => 1511191471,
-			'lastLoginTimestamp' => 1521191471,
-			'lastLogin' => 1521191471000,
-			'backend' => 'Database',
-			'subadmin' => [],
-			'quota' => ['DummyValue'],
-			'email' => '[email protected]',
-			'displayname' => 'Subadmin User',
-			'display-name' => 'Subadmin User',
-			'phone' => 'phone',
-			'address' => 'address',
-			'website' => 'website',
-			'twitter' => 'twitter',
-			'fediverse' => 'fediverse',
-			'groups' => [],
-			'language' => 'ru',
-			'locale' => null,
-			'backendCapabilities' => [
-				'setDisplayName' => false,
-				'setPassword' => false,
-			],
-			'additional_mail' => [],
-			'organisation' => 'organisation',
-			'role' => 'role',
-			'headline' => 'headline',
-			'biography' => 'biography',
-			'profile_enabled' => '1',
-			'notify_email' => null,
-			'manager' => '',
-			'pronouns' => 'they/them',
-		];
-		$this->assertEquals($expected, $this->invokePrivate($this->api, 'getUserData', ['UID']));
-	}
-
-	public static function dataSearchByPhoneNumbers(): array {
-		return [
-			'Invalid country' => ['Not a country code', ['12345' => ['NaN']], 400, null, null, []],
-			'No number to search' => ['DE', ['12345' => ['NaN']], 200, null, null, []],
-			'Valid number but no match' => ['DE', ['12345' => ['0711 / 25 24 28-90']], 200, ['+4971125242890'], [], []],
-			'Invalid number' => ['FR', ['12345' => ['0711 / 25 24 28-90']], 200, null, null, []],
-			'Invalid and valid number' => ['DE', ['12345' => ['NaN', '0711 / 25 24 28-90']], 200, ['+4971125242890'], [], []],
-			'Valid and invalid number' => ['DE', ['12345' => ['0711 / 25 24 28-90', 'NaN']], 200, ['+4971125242890'], [], []],
-			'Valid number and a match' => ['DE', ['12345' => ['0711 / 25 24 28-90']], 200, ['+4971125242890'], ['+4971125242890' => 'admin'], ['12345' => 'admin@localhost']],
-			'Same number twice, later hits' => ['DE', ['12345' => ['0711 / 25 24 28-90'], '23456' => ['0711 / 25 24 28-90']], 200, ['+4971125242890'], ['+4971125242890' => 'admin'], ['23456' => 'admin@localhost']],
-		];
-	}
-
-	#[\PHPUnit\Framework\Attributes\DataProvider('dataSearchByPhoneNumbers')]
-	public function testSearchByPhoneNumbers(string $location, array $search, int $status, ?array $searchUsers, ?array $userMatches, array $expected): void {
-		$knownTo = 'knownTo';
-		$user = $this->createMock(IUser::class);
-		$user->method('getUID')
-			->willReturn($knownTo);
-		$this->userSession->method('getUser')
-			->willReturn($user);
-
-		if ($searchUsers === null) {
-			$this->accountManager->expects($this->never())
-				->method('searchUsers');
-		} else {
-			$this->accountManager->expects($this->once())
-				->method('searchUsers')
-				->with(IAccountManager::PROPERTY_PHONE, $searchUsers)
-				->willReturn($userMatches);
-
-			$this->knownUserService->expects($this->once())
-				->method('deleteKnownTo')
-				->with($knownTo);
-
-			$this->knownUserService->expects($this->exactly(count($expected)))
-				->method('storeIsKnownToUser')
-				->with($knownTo, $this->anything());
-		}
-
-		$this->urlGenerator->method('getAbsoluteURL')
-			->with('/')
-			->willReturn('https://localhost/');
-
-		$response = $this->api->searchByPhoneNumbers($location, $search);
-
-		self::assertEquals($status, $response->getStatus());
-		self::assertEquals($expected, $response->getData());
-	}
-
-	public function testEditUserRegularUserSelfEditChangeDisplayName(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$targetUser
-			->expects($this->once())
-			->method('getBackend')
-			->willReturn($this->createMock(ISetDisplayNameBackend::class));
-		$targetUser
-			->expects($this->once())
-			->method('setDisplayName')
-			->with('NewDisplayName')
-			->willReturn(true);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'display', 'NewDisplayName')->getData());
-	}
-
-	public function testEditUserRegularUserSelfEditChangeEmailValid(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$targetUser
-			->expects($this->once())
-			->method('setSystemEMailAddress')
-			->with('[email protected]');
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->config->method('getSystemValue')->willReturnCallback(fn (string $key, mixed $default) => $default);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'email', '[email protected]')->getData());
-	}
-
-	public function testEditUserRegularUserSelfEditAddAdditionalEmailValid(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$userAccount = $this->createMock(IAccount::class);
-
-		$this->accountManager
-			->expects($this->once())
-			->method('getAccount')
-			->with($targetUser)
-			->willReturn($userAccount);
-		$this->accountManager
-			->expects($this->once())
-			->method('updateAccount')
-			->with($userAccount);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'additional_mail', '[email protected]')->getData());
-	}
-
-	public function testEditUserRegularUserSelfEditAddAdditionalEmailMainAddress(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-		$targetUser
-			->expects($this->any())
-			->method('getSystemEMailAddress')
-			->willReturn('[email protected]');
-
-		$userAccount = $this->createMock(IAccount::class);
-
-		$this->accountManager
-			->expects($this->never())
-			->method('getAccount')
-			->with($targetUser)
-			->willReturn($userAccount);
-		$this->accountManager
-			->expects($this->never())
-			->method('updateAccount')
-			->with($userAccount);
-
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(101);
-		$this->api->editUser('UserToEdit', 'additional_mail', '[email protected]')->getData();
-	}
-
-	public function testEditUserRegularUserSelfEditAddAdditionalEmailDuplicate(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$property = $this->createMock(IAccountProperty::class);
-		$property->method('getValue')
-			->willReturn('[email protected]');
-		$collection = $this->createMock(IAccountPropertyCollection::class);
-		$collection->method('getPropertyByValue')
-			->with('[email protected]')
-			->willReturn($property);
-
-		$userAccount = $this->createMock(IAccount::class);
-		$userAccount->method('getPropertyCollection')
-			->with(IAccountManager::COLLECTION_EMAIL)
-			->willReturn($collection);
-
-		$this->accountManager
-			->expects($this->once())
-			->method('getAccount')
-			->with($targetUser)
-			->willReturn($userAccount);
-		$this->accountManager
-			->expects($this->never())
-			->method('updateAccount')
-			->with($userAccount);
-
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(101);
-		$this->api->editUser('UserToEdit', 'additional_mail', '[email protected]')->getData();
-	}
-
-	public function testEditUserRegularUserSelfEditChangeEmailInvalid(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(101);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->config->method('getSystemValue')->willReturnCallback(fn (string $key, mixed $default) => $default);
-
-		$this->api->editUser('UserToEdit', 'email', 'demo.org');
-	}
-
-	public static function selfEditChangePropertyProvider(): array {
-		return [
-			[IAccountManager::PROPERTY_TWITTER, '@oldtwitter', '@newtwitter'],
-			[IAccountManager::PROPERTY_FEDIVERSE, '@[email protected]', '@[email protected]'],
-			[IAccountManager::PROPERTY_PHONE, '1234', '12345'],
-			[IAccountManager::PROPERTY_ADDRESS, 'Something street 2', 'Another street 3'],
-			[IAccountManager::PROPERTY_WEBSITE, 'https://examplesite1', 'https://examplesite2'],
-			[IAccountManager::PROPERTY_ORGANISATION, 'Organisation A', 'Organisation B'],
-			[IAccountManager::PROPERTY_ROLE, 'Human', 'Alien'],
-			[IAccountManager::PROPERTY_HEADLINE, 'Hi', 'Hello'],
-			[IAccountManager::PROPERTY_BIOGRAPHY, 'A biography', 'Another biography'],
-			[IAccountManager::PROPERTY_PROFILE_ENABLED, '1', '0'],
-			[IAccountManager::PROPERTY_PRONOUNS, 'they/them', 'he/him'],
-		];
-	}
-
-	#[\PHPUnit\Framework\Attributes\DataProvider('selfEditChangePropertyProvider')]
-	public function testEditUserRegularUserSelfEditChangeProperty($propertyName, $oldValue, $newValue): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($loggedInUser);
-
-		$backend = $this->createMock(UserInterface::class);
-		$loggedInUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$propertyMock = $this->createMock(IAccountProperty::class);
-		$propertyMock->expects($this->any())
-			->method('getName')
-			->willReturn($propertyName);
-		$propertyMock->expects($this->any())
-			->method('getValue')
-			->willReturn($oldValue);
-		$propertyMock->expects($this->once())
-			->method('setValue')
-			->with($newValue)
-			->willReturnSelf();
-		$propertyMock->expects($this->any())
-			->method('getScope')
-			->willReturn(IAccountManager::SCOPE_LOCAL);
-
-		$accountMock = $this->createMock(IAccount::class);
-		$accountMock->expects($this->any())
-			->method('getProperty')
-			->with($propertyName)
-			->willReturn($propertyMock);
-
-		$this->accountManager->expects($this->atLeastOnce())
-			->method('getAccount')
-			->with($loggedInUser)
-			->willReturn($accountMock);
-		$this->accountManager->expects($this->once())
-			->method('updateAccount')
-			->with($accountMock);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', $propertyName, $newValue)->getData());
-	}
-
-	public function selfEditChangePropertyScopeProvider() {
-		return [
-			[IAccountManager::PROPERTY_AVATAR, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_DISPLAYNAME, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_EMAIL, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_TWITTER, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_FEDIVERSE, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_PHONE, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_ADDRESS, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_WEBSITE, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_ORGANISATION, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_ROLE, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_HEADLINE, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_BIOGRAPHY, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_PROFILE_ENABLED, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-			[IAccountManager::PROPERTY_PRONOUNS, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
-		];
-	}
-
-	#[\PHPUnit\Framework\Attributes\DataProvider('selfEditChangePropertyProvider')]
-	public function testEditUserRegularUserSelfEditChangePropertyScope($propertyName, $oldScope, $newScope): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($loggedInUser);
-
-		$backend = $this->createMock(UserInterface::class);
-		$loggedInUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$propertyMock = $this->createMock(IAccountProperty::class);
-		$propertyMock->expects($this->any())
-			->method('getName')
-			->willReturn($propertyName);
-		$propertyMock->expects($this->any())
-			->method('getValue')
-			->willReturn('somevalue');
-		$propertyMock->expects($this->any())
-			->method('getScope')
-			->willReturn($oldScope);
-		$propertyMock->expects($this->atLeastOnce())
-			->method('setScope')
-			->with($newScope)
-			->willReturnSelf();
-
-		$accountMock = $this->createMock(IAccount::class);
-		$accountMock->expects($this->any())
-			->method('getProperty')
-			->with($propertyName)
-			->willReturn($propertyMock);
-
-		$this->accountManager->expects($this->atLeastOnce())
-			->method('getAccount')
-			->with($loggedInUser)
-			->willReturn($accountMock);
-		$this->accountManager->expects($this->once())
-			->method('updateAccount')
-			->with($accountMock);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', $propertyName . 'Scope', $newScope)->getData());
-	}
-
-	public function testEditUserRegularUserSelfEditChangePassword(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$targetUser
-			->expects($this->once())
-			->method('canChangePassword')
-			->willReturn(true);
-		$targetUser
-			->expects($this->once())
-			->method('setPassword')
-			->with('NewPassword');
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'password', 'NewPassword')->getData());
-	}
-
-
-
-	public function testEditUserRegularUserSelfEditChangeQuota(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(113);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->api->editUser('UserToEdit', 'quota', 'NewQuota');
-	}
-
-	public function testEditUserAdminUserSelfEditChangeValidQuota(): void {
-		$this->config
-			->expects($this->once())
-			->method('getAppValue')
-			->willReturnCallback(function ($appid, $key, $default) {
-				if ($key === 'max_quota') {
-					return '-1';
-				}
-				return null;
-			});
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser->expects($this->once())
-			->method('setQuota')
-			->with('2.9 MB');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->exactly(3))
-			->method('isAdmin')
-			->with('UID')
-			->willReturn(true);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'quota', '3042824')->getData());
-	}
-
-
-
-	public function testEditUserAdminUserSelfEditChangeInvalidQuota(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Invalid quota value: ABC');
-		$this->expectExceptionCode(101);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->exactly(3))
-			->method('isAdmin')
-			->with('UID')
-			->willReturn(true);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->api->editUser('UserToEdit', 'quota', 'ABC');
-	}
-
-	public function testEditUserAdminUserEditChangeValidQuota(): void {
-		$this->config
-			->expects($this->once())
-			->method('getAppValue')
-			->willReturnCallback(function ($appid, $key, $default) {
-				if ($key === 'max_quota') {
-					return '-1';
-				}
-				return null;
-			});
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('admin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser->expects($this->once())
-			->method('setQuota')
-			->with('2.9 MB');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('admin')
-			->willReturn(true);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'quota', '3042824')->getData());
-	}
-
-	public function testEditUserSelfEditChangeLanguage(): void {
-		$this->l10nFactory->expects($this->once())
-			->method('findAvailableLanguages')
-			->willReturn(['en', 'de', 'sv']);
-		$this->config->expects($this->any())
-			->method('getSystemValue')
-			->willReturnMap([
-				['allow_user_to_change_display_name', true, true],
-				['force_language', false, false],
-			]);
-
-		$loggedInUser = $this->createMock(IUser::class);
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UserToEdit');
-		$targetUser = $this->createMock(IUser::class);
-		$this->config->expects($this->once())
-			->method('setUserValue')
-			->with('UserToEdit', 'core', 'lang', 'de');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->atLeastOnce())
-			->method('isAdmin')
-			->with('UserToEdit')
-			->willReturn(false);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UserToEdit');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'language', 'de')->getData());
-	}
-
-	public static function dataEditUserSelfEditChangeLanguageButForced(): array {
-		return [
-			['de'],
-			[true],
-		];
-	}
-
-	#[\PHPUnit\Framework\Attributes\DataProvider('dataEditUserSelfEditChangeLanguageButForced')]
-	public function testEditUserSelfEditChangeLanguageButForced($forced): void {
-		$this->expectException(OCSException::class);
-
-		$this->config->expects($this->any())
-			->method('getSystemValue')
-			->willReturnMap([
-				['allow_user_to_change_display_name', true, true],
-				['force_language', false, $forced],
-			]);
-
-		$loggedInUser = $this->createMock(IUser::class);
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UserToEdit');
-		$targetUser = $this->createMock(IUser::class);
-		$this->config->expects($this->never())
-			->method('setUserValue');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->atLeastOnce())
-			->method('isAdmin')
-			->with('UserToEdit')
-			->willReturn(false);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UserToEdit');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'language', 'de')->getData());
-	}
-
-	public function testEditUserAdminEditChangeLanguage(): void {
-		$this->l10nFactory->expects($this->once())
-			->method('findAvailableLanguages')
-			->willReturn(['en', 'de', 'sv']);
-
-		$loggedInUser = $this->createMock(IUser::class);
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('admin');
-		$targetUser = $this->createMock(IUser::class);
-		$this->config->expects($this->once())
-			->method('setUserValue')
-			->with('UserToEdit', 'core', 'lang', 'de');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('admin')
-			->willReturn(true);
-		$subAdminManager = $this->createMock(SubAdmin::class);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UserToEdit');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'language', 'de')->getData());
-	}
-
-	#[\PHPUnit\Framework\Attributes\DataProvider('dataEditUserSelfEditChangeLanguageButForced')]
-	public function testEditUserAdminEditChangeLanguageInvalidLanguage(): void {
-		$this->expectException(OCSException::class);
-
-
-		$this->l10nFactory->expects($this->once())
-			->method('findAvailableLanguages')
-			->willReturn(['en', 'de', 'sv']);
-
-		$loggedInUser = $this->createMock(IUser::class);
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('admin');
-		$targetUser = $this->createMock(IUser::class);
-		$this->config->expects($this->never())
-			->method('setUserValue');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('admin')
-			->willReturn(true);
-		$subAdminManager = $this->createMock(SubAdmin::class);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UserToEdit');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'language', 'ru')->getData());
-	}
-
-	public function testEditUserSubadminUserAccessible(): void {
-		$this->config
-			->expects($this->once())
-			->method('getAppValue')
-			->willReturnCallback(function ($appid, $key, $default) {
-				if ($key === 'max_quota') {
-					return '-1';
-				}
-				return null;
-			});
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser->expects($this->once())
-			->method('setQuota')
-			->with('2.9 MB');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$backend = $this->createMock(UserInterface::class);
-		$targetUser
-			->expects($this->any())
-			->method('getBackend')
-			->willReturn($backend);
-
-		$this->assertEquals([], $this->api->editUser('UserToEdit', 'quota', '3042824')->getData());
-	}
-
-
-	public function testEditUserSubadminUserInaccessible(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(998);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToEdit')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(false);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$targetUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-
-		$this->api->editUser('UserToEdit', 'quota', 'value');
-	}
-
-
-	public function testDeleteUserNotExistingUser(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(998);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UserToEdit');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToDelete')
-			->willReturn(null);
-
-		$this->api->deleteUser('UserToDelete');
-	}
-
-
-	public function testDeleteUserSelf(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(101);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('UID');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('UID');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToDelete')
-			->willReturn($targetUser);
-
-		$this->api->deleteUser('UserToDelete');
-	}
-
-	public function testDeleteSuccessfulUserAsAdmin(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('admin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('UID');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToDelete')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('admin')
-			->willReturn(true);
-		$targetUser
-			->expects($this->once())
-			->method('delete')
-			->willReturn(true);
-
-		$this->assertEquals([], $this->api->deleteUser('UserToDelete')->getData());
-	}
-
-
-	public function testDeleteUnsuccessfulUserAsAdmin(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(101);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('admin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('UID');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToDelete')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('admin')
-			->willReturn(true);
-		$targetUser
-			->expects($this->once())
-			->method('delete')
-			->willReturn(false);
-
-		$this->api->deleteUser('UserToDelete');
-	}
-
-	public function testDeleteSuccessfulUserAsSubadmin(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('UID');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToDelete')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$targetUser
-			->expects($this->once())
-			->method('delete')
-			->willReturn(true);
-
-		$this->assertEquals([], $this->api->deleteUser('UserToDelete')->getData());
-	}
-
-
-	public function testDeleteUnsuccessfulUserAsSubadmin(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(101);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('UID');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToDelete')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$targetUser
-			->expects($this->once())
-			->method('delete')
-			->willReturn(false);
-
-		$this->api->deleteUser('UserToDelete');
-	}
-
-
-	public function testDeleteUserAsSubAdminAndUserIsNotAccessible(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(998);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('UID');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToDelete')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(false);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-
-		$this->api->deleteUser('UserToDelete');
-	}
-
-
-	public function testGetUsersGroupsTargetUserNotExisting(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(998);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-
-		$this->api->getUsersGroups('UserToLookup');
-	}
-
-	public function testGetUsersGroupsSelfTargetted(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->exactly(3))
-			->method('getUID')
-			->willReturn('UserToLookup');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('UserToLookup');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToLookup')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('getUserGroupIds')
-			->with($targetUser)
-			->willReturn(['DummyValue']);
-
-		$this->assertEquals(['groups' => ['DummyValue']], $this->api->getUsersGroups('UserToLookup')->getData());
-	}
-
-	public function testGetUsersGroupsForAdminUser(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->exactly(3))
-			->method('getUID')
-			->willReturn('admin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('UserToLookup');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToLookup')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('getUserGroupIds')
-			->with($targetUser)
-			->willReturn(['DummyValue']);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('admin')
-			->willReturn(true);
-
-		$this->assertEquals(['groups' => ['DummyValue']], $this->api->getUsersGroups('UserToLookup')->getData());
-	}
-
-	public function testGetUsersGroupsForSubAdminUserAndUserIsAccessible(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->exactly(3))
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('UserToLookup');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToLookup')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$group1 = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$group1
-			->expects($this->any())
-			->method('getGID')
-			->willReturn('Group1');
-		$group2 = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$group2
-			->expects($this->any())
-			->method('getGID')
-			->willReturn('Group2');
-		$subAdminManager
-			->expects($this->once())
-			->method('getSubAdminsGroups')
-			->with($loggedInUser)
-			->willReturn([$group1, $group2]);
-		$this->groupManager
-			->expects($this->any())
-			->method('getUserGroupIds')
-			->with($targetUser)
-			->willReturn(['Group1']);
-
-		$this->assertEquals(['groups' => ['Group1']], $this->api->getUsersGroups('UserToLookup')->getData());
-	}
-
-
-	public function testGetUsersGroupsForSubAdminUserAndUserIsInaccessible(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(998);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->exactly(3))
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('UserToLookup');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToLookup')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(false);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager
-			->expects($this->any())
-			->method('getUserGroupIds')
-			->with($targetUser)
-			->willReturn(['Group1']);
-
-		$this->api->getUsersGroups('UserToLookup');
-	}
-
-
-	public function testAddToGroupWithTargetGroupNotExisting(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(102);
-
-		$this->groupManager->expects($this->once())
-			->method('get')
-			->with('GroupToAddTo')
-			->willReturn(null);
-
-		$this->api->addToGroup('TargetUser', 'GroupToAddTo');
-	}
-
-
-	public function testAddToGroupWithNoGroupSpecified(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(101);
-
-		$this->api->addToGroup('TargetUser');
-	}
-
-
-	public function testAddToGroupWithTargetUserNotExisting(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(103);
-
-		$targetGroup = $this->createMock(IGroup::class);
-		$this->groupManager->expects($this->once())
-			->method('get')
-			->with('GroupToAddTo')
-			->willReturn($targetGroup);
-
-		$this->api->addToGroup('TargetUser', 'GroupToAddTo');
-	}
-
-
-	public function testAddToGroupNoSubadmin(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(104);
-
-		$targetUser = $this->createMock(IUser::class);
-		$loggedInUser = $this->createMock(IUser::class);
-		$loggedInUser->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('subadmin');
-
-		$targetGroup = $this->createMock(IGroup::class);
-		$targetGroup->expects($this->never())
-			->method('addUser')
-			->with($targetUser);
-
-		$this->groupManager->expects($this->once())
-			->method('get')
-			->with('GroupToAddTo')
-			->willReturn($targetGroup);
-
-
-		$subAdminManager = $this->createMock(SubAdmin::class);
-		$subAdminManager->expects($this->once())
-			->method('isSubAdminOfGroup')
-			->with($loggedInUser, $targetGroup)
-			->willReturn(false);
-
-		$this->groupManager->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager->expects($this->once())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-
-		$this->userManager->expects($this->once())
-			->method('get')
-			->with('TargetUser')
-			->willReturn($targetUser);
-
-		$this->userSession->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-
-		$this->api->addToGroup('TargetUser', 'GroupToAddTo');
-	}
-
-	public function testAddToGroupSuccessAsSubadmin(): void {
-		$targetUser = $this->createMock(IUser::class);
-		$loggedInUser = $this->createMock(IUser::class);
-		$loggedInUser->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('subadmin');
-
-		$targetGroup = $this->createMock(IGroup::class);
-		$targetGroup->expects($this->once())
-			->method('addUser')
-			->with($targetUser);
-
-		$this->groupManager->expects($this->once())
-			->method('get')
-			->with('GroupToAddTo')
-			->willReturn($targetGroup);
+    protected IUserManager&MockObject $userManager;
+    protected IConfig&MockObject $config;
+    protected Manager&MockObject $groupManager;
+    protected IUserSession&MockObject $userSession;
+    protected LoggerInterface&MockObject $logger;
+    protected UsersController&MockObject $api;
+    protected IAccountManager&MockObject $accountManager;
+    protected ISubAdmin&MockObject $subAdminManager;
+    protected IURLGenerator&MockObject $urlGenerator;
+    protected IRequest&MockObject $request;
+    private IFactory&MockObject $l10nFactory;
+    private NewUserMailHelper&MockObject $newUserMailHelper;
+    private ISecureRandom&MockObject $secureRandom;
+    private RemoteWipe&MockObject $remoteWipe;
+    private KnownUserService&MockObject $knownUserService;
+    private IEventDispatcher&MockObject $eventDispatcher;
+    private IRootFolder $rootFolder;
+    private IPhoneNumberUtil $phoneNumberUtil;
+    private IAppManager $appManager;
+
+    protected function setUp(): void {
+        parent::setUp();
+
+        $this->userManager = $this->createMock(IUserManager::class);
+        $this->config = $this->createMock(IConfig::class);
+        $this->groupManager = $this->createMock(Manager::class);
+        $this->userSession = $this->createMock(IUserSession::class);
+        $this->logger = $this->createMock(LoggerInterface::class);
+        $this->request = $this->createMock(IRequest::class);
+        $this->accountManager = $this->createMock(IAccountManager::class);
+        $this->subAdminManager = $this->createMock(ISubAdmin::class);
+        $this->urlGenerator = $this->createMock(IURLGenerator::class);
+        $this->l10nFactory = $this->createMock(IFactory::class);
+        $this->newUserMailHelper = $this->createMock(NewUserMailHelper::class);
+        $this->secureRandom = $this->createMock(ISecureRandom::class);
+        $this->remoteWipe = $this->createMock(RemoteWipe::class);
+        $this->knownUserService = $this->createMock(KnownUserService::class);
+        $this->eventDispatcher = $this->createMock(IEventDispatcher::class);
+        $this->phoneNumberUtil = new PhoneNumberUtil();
+        $this->appManager = $this->createMock(IAppManager::class);
+        $this->rootFolder = $this->createMock(IRootFolder::class);
+
+        $l10n = $this->createMock(IL10N::class);
+        $l10n->method('t')->willReturnCallback(fn (string $txt, array $replacement = []) => sprintf($txt, ...$replacement));
+        $this->l10nFactory->method('get')->with('provisioning_api')->willReturn($l10n);
+
+        $this->api = $this->getMockBuilder(UsersController::class)
+            ->setConstructorArgs([
+                'provisioning_api',
+                $this->request,
+                $this->userManager,
+                $this->config,
+                $this->groupManager,
+                $this->userSession,
+                $this->accountManager,
+                $this->subAdminManager,
+                $this->l10nFactory,
+                $this->rootFolder,
+                $this->urlGenerator,
+                $this->logger,
+                $this->newUserMailHelper,
+                $this->secureRandom,
+                $this->remoteWipe,
+                $this->knownUserService,
+                $this->eventDispatcher,
+                $this->phoneNumberUtil,
+                $this->appManager,
+            ])
+            ->onlyMethods(['fillStorageInfo'])
+            ->getMock();
+    }
+
+    public function testGetUsersAsAdmin(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('admin');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->willReturn(true);
+        $this->userManager
+            ->expects($this->once())
+            ->method('search')
+            ->with('MyCustomSearch')
+            ->willReturn(['Admin' => [], 'Foo' => [], 'Bar' => []]);
+
+        $expected = [
+            'users' => [
+                'Admin',
+                'Foo',
+                'Bar',
+            ],
+        ];
+        $this->assertEquals($expected, $this->api->getUsers('MyCustomSearch')->getData());
+    }
+
+    public function testGetUsersAsSubAdmin(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->willReturn(false);
+        $firstGroup = $this->getMockBuilder('OCP\IGroup')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $firstGroup
+            ->expects($this->once())
+            ->method('getGID')
+            ->willReturn('FirstGroup');
+        $secondGroup = $this->getMockBuilder('OCP\IGroup')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $secondGroup
+            ->expects($this->once())
+            ->method('getGID')
+            ->willReturn('SecondGroup');
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isSubAdmin')
+            ->with($loggedInUser)
+            ->willReturn(true);
+        $subAdminManager
+            ->expects($this->once())
+            ->method('getSubAdminsGroups')
+            ->with($loggedInUser)
+            ->willReturn([$firstGroup, $secondGroup]);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager
+            ->expects($this->any())
+            ->method('displayNamesInGroup')->willReturnOnConsecutiveCalls(['AnotherUserInTheFirstGroup' => []], ['UserInTheSecondGroup' => []]);
+
+        $expected = [
+            'users' => [
+                'AnotherUserInTheFirstGroup',
+                'UserInTheSecondGroup',
+            ],
+        ];
+        $this->assertEquals($expected, $this->api->getUsers('MyCustomSearch')->getData());
+    }
+
+    private function createUserMock(string $uid, bool $enabled): MockObject&IUser {
+        $mockUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $mockUser
+            ->method('getUID')
+            ->willReturn($uid);
+        $mockUser
+            ->method('isEnabled')
+            ->willReturn($enabled);
+        return $mockUser;
+    }
+
+    public function testGetDisabledUsersAsAdmin(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('admin');
+        $this->userSession
+            ->expects($this->atLeastOnce())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->willReturn(true);
+        $this->userManager
+            ->expects($this->once())
+            ->method('getDisabledUsers')
+            ->with(3, 0, 'MyCustomSearch')
+            ->willReturn([
+                $this->createUserMock('admin', false),
+                $this->createUserMock('foo', false),
+                $this->createUserMock('bar', false),
+            ]);
+
+        $expected = [
+            'users' => [
+                'admin' => ['id' => 'admin'],
+                'foo' => ['id' => 'foo'],
+                'bar' => ['id' => 'bar'],
+            ],
+        ];
+        $this->assertEquals($expected, $this->api->getDisabledUsersDetails('MyCustomSearch', 3)->getData());
+    }
+
+    public function testGetDisabledUsersAsSubAdmin(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $this->userSession
+            ->expects($this->atLeastOnce())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->willReturn(false);
+        $firstGroup = $this->getMockBuilder('OCP\IGroup')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $secondGroup = $this->getMockBuilder('OCP\IGroup')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isSubAdmin')
+            ->with($loggedInUser)
+            ->willReturn(true);
+        $subAdminManager
+            ->expects($this->once())
+            ->method('getSubAdminsGroups')
+            ->with($loggedInUser)
+            ->willReturn([$firstGroup, $secondGroup]);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager
+            ->expects($this->never())
+            ->method('displayNamesInGroup');
+
+        $firstGroup
+            ->expects($this->once())
+            ->method('searchUsers')
+            ->with('MyCustomSearch')
+            ->willReturn([
+                $this->createUserMock('user1', false),
+                $this->createUserMock('bob', true),
+                $this->createUserMock('user2', false),
+                $this->createUserMock('alice', true),
+            ]);
+
+        $secondGroup
+            ->expects($this->once())
+            ->method('searchUsers')
+            ->with('MyCustomSearch')
+            ->willReturn([
+                $this->createUserMock('user2', false),
+                $this->createUserMock('joe', true),
+                $this->createUserMock('user3', false),
+                $this->createUserMock('jim', true),
+                $this->createUserMock('john', true),
+            ]);
+
+
+        $expected = [
+            'users' => [
+                'user1' => ['id' => 'user1'],
+                'user2' => ['id' => 'user2'],
+                'user3' => ['id' => 'user3'],
+            ],
+        ];
+        $this->assertEquals($expected, $this->api->getDisabledUsersDetails('MyCustomSearch', 3)->getData());
+    }
+
+
+    public function testAddUserAlreadyExisting(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(102);
+
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('AlreadyExistingUser')
+            ->willReturn(true);
+        $this->logger
+            ->expects($this->once())
+            ->method('error')
+            ->with('Failed addUser attempt: User already exists.', ['app' => 'ocs_api']);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+
+        $this->api->addUser('AlreadyExistingUser', 'password', '', '', []);
+    }
+
+
+    public function testAddUserNonExistingGroup(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Group NonExistingGroup does not exist');
+        $this->expectExceptionCode(104);
+
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('NewUser')
+            ->willReturn(false);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('groupExists')
+            ->with('NonExistingGroup')
+            ->willReturn(false);
+
+        $this->api->addUser('NewUser', 'pass', '', '', ['NonExistingGroup']);
+    }
+
+
+    public function testAddUserExistingGroupNonExistingGroup(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Group NonExistingGroup does not exist');
+        $this->expectExceptionCode(104);
+
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('NewUser')
+            ->willReturn(false);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->exactly(2))
+            ->method('groupExists')
+            ->willReturnMap([
+                ['ExistingGroup', true],
+                ['NonExistingGroup', false]
+            ]);
+
+        $this->api->addUser('NewUser', 'pass', '', '', ['ExistingGroup', 'NonExistingGroup']);
+    }
+
+    public function testAddUserSuccessful(): void {
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('NewUser')
+            ->willReturn(false);
+        $this->userManager
+            ->expects($this->once())
+            ->method('createUser')
+            ->with('NewUser', 'PasswordOfTheNewUser');
+        $this->logger
+            ->expects($this->once())
+            ->method('info')
+            ->with('Successful addUser call with userid: NewUser', ['app' => 'ocs_api']);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+
+        $this->assertTrue(key_exists(
+            'id',
+            $this->api->addUser('NewUser', 'PasswordOfTheNewUser')->getData()
+        ));
+    }
+
+    public function testAddUserSuccessfulWithDisplayName(): void {
+        /**
+         * @var UserController
+         */
+        $api = $this->getMockBuilder(UsersController::class)
+            ->setConstructorArgs([
+                'provisioning_api',
+                $this->request,
+                $this->userManager,
+                $this->config,
+                $this->groupManager,
+                $this->userSession,
+                $this->accountManager,
+                $this->subAdminManager,
+                $this->l10nFactory,
+                $this->rootFolder,
+                $this->urlGenerator,
+                $this->logger,
+                $this->newUserMailHelper,
+                $this->secureRandom,
+                $this->remoteWipe,
+                $this->knownUserService,
+                $this->eventDispatcher,
+                $this->phoneNumberUtil,
+                $this->appManager,
+            ])
+            ->onlyMethods(['editUser'])
+            ->getMock();
+
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('NewUser')
+            ->willReturn(false);
+        $this->userManager
+            ->expects($this->once())
+            ->method('createUser')
+            ->with('NewUser', 'PasswordOfTheNewUser');
+        $this->logger
+            ->expects($this->once())
+            ->method('info')
+            ->with('Successful addUser call with userid: NewUser', ['app' => 'ocs_api']);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->any())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+        $api
+            ->expects($this->once())
+            ->method('editUser')
+            ->with('NewUser', 'display', 'DisplayNameOfTheNewUser');
+
+        $this->assertTrue(key_exists(
+            'id',
+            $api->addUser('NewUser', 'PasswordOfTheNewUser', 'DisplayNameOfTheNewUser')->getData()
+        ));
+    }
+
+    public function testAddUserSuccessfulGenerateUserID(): void {
+        $this->config
+            ->expects($this->any())
+            ->method('getAppValue')
+            ->willReturnCallback(function ($appid, $key, $default) {
+                if ($key === 'newUser.generateUserID') {
+                    return 'yes';
+                }
+                return null;
+            });
+        $this->userManager
+            ->expects($this->any())
+            ->method('userExists')
+            ->with($this->anything())
+            ->willReturn(false);
+        $this->userManager
+            ->expects($this->once())
+            ->method('createUser')
+            ->with($this->anything(), 'PasswordOfTheNewUser');
+        $this->logger
+            ->expects($this->once())
+            ->method('info')
+            ->with($this->stringStartsWith('Successful addUser call with userid: '), ['app' => 'ocs_api']);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+        $this->secureRandom->expects($this->any())
+            ->method('generate')
+            ->with(10)
+            ->willReturnCallback(function () {
+                return (string)rand(100000000, 999999999);
+            });
+
+        $this->assertTrue(key_exists(
+            'id',
+            $this->api->addUser('', 'PasswordOfTheNewUser')->getData()
+        ));
+    }
+
+    public function testAddUserSuccessfulGeneratePassword(): void {
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('NewUser')
+            ->willReturn(false);
+        $newUser = $this->createMock(IUser::class);
+        $newUser->expects($this->once())
+            ->method('setSystemEMailAddress');
+        $this->userManager
+            ->expects($this->once())
+            ->method('createUser')
+            ->willReturn($newUser);
+        $this->logger
+            ->expects($this->once())
+            ->method('info')
+            ->with('Successful addUser call with userid: NewUser', ['app' => 'ocs_api']);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+        $this->eventDispatcher
+            ->expects($this->once())
+            ->method('dispatchTyped')
+            ->with(new GenerateSecurePasswordEvent());
+
+        $this->assertTrue(key_exists(
+            'id',
+            $this->api->addUser('NewUser', '', '', 'foo@bar')->getData()
+        ));
+    }
+
+    public function testAddUserSuccessfulLowercaseEmail(): void {
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('NewUser')
+            ->willReturn(false);
+        $newUser = $this->createMock(IUser::class);
+        $newUser->expects($this->once())
+            ->method('setSystemEMailAddress')
+            ->with('[email protected]');
+        $this->userManager
+            ->expects($this->once())
+            ->method('createUser')
+            ->willReturn($newUser);
+        $this->logger
+            ->expects($this->once())
+            ->method('info')
+            ->with('Successful addUser call with userid: NewUser', ['app' => 'ocs_api']);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+        $this->eventDispatcher
+            ->expects($this->once())
+            ->method('dispatchTyped')
+            ->with(new GenerateSecurePasswordEvent());
+
+        $this->assertTrue(key_exists(
+            'id',
+            $this->api->addUser('NewUser', '', '', '[email protected]')->getData()
+        ));
+    }
+
+
+    public function testAddUserFailedToGenerateUserID(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Could not create non-existing user ID');
+        $this->expectExceptionCode(111);
+
+        $this->config
+            ->expects($this->any())
+            ->method('getAppValue')
+            ->willReturnCallback(function ($appid, $key, $default) {
+                if ($key === 'newUser.generateUserID') {
+                    return 'yes';
+                }
+                return null;
+            });
+        $this->userManager
+            ->expects($this->any())
+            ->method('userExists')
+            ->with($this->anything())
+            ->willReturn(true);
+        $this->userManager
+            ->expects($this->never())
+            ->method('createUser');
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+
+        $this->api->addUser('', 'PasswordOfTheNewUser')->getData();
+    }
+
+
+    public function testAddUserEmailRequired(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Required email address was not provided');
+        $this->expectExceptionCode(110);
+
+        $this->config
+            ->expects($this->any())
+            ->method('getAppValue')
+            ->willReturnCallback(function ($appid, $key, $default) {
+                if ($key === 'newUser.requireEmail') {
+                    return 'yes';
+                }
+                return null;
+            });
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('NewUser')
+            ->willReturn(false);
+        $this->userManager
+            ->expects($this->never())
+            ->method('createUser');
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+
+        $this->assertTrue(key_exists(
+            'id',
+            $this->api->addUser('NewUser', 'PasswordOfTheNewUser')->getData()
+        ));
+    }
+
+    public function testAddUserExistingGroup(): void {
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('NewUser')
+            ->willReturn(false);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('groupExists')
+            ->with('ExistingGroup')
+            ->willReturn(true);
+        $user = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userManager
+            ->expects($this->once())
+            ->method('createUser')
+            ->with('NewUser', 'PasswordOfTheNewUser')
+            ->willReturn($user);
+        $group = $this->getMockBuilder('OCP\IGroup')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $group
+            ->expects($this->once())
+            ->method('addUser')
+            ->with($user);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('ExistingGroup')
+            ->willReturn($group);
+
+        $calls = [
+            ['Successful addUser call with userid: NewUser', ['app' => 'ocs_api']],
+            ['Added userid NewUser to group ExistingGroup', ['app' => 'ocs_api']],
+        ];
+        $this->logger
+            ->expects($this->exactly(2))
+            ->method('info')
+            ->willReturnCallback(function () use (&$calls): void {
+                $expected = array_shift($calls);
+                $this->assertEquals($expected, func_get_args());
+            });
+
+        $this->assertArrayHasKey('id', $this->api->addUser('NewUser', 'PasswordOfTheNewUser', '', '', ['ExistingGroup'])->getData());
+    }
+
+
+    public function testAddUserUnsuccessful(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Bad request');
+        $this->expectExceptionCode(101);
+
+        $exception = new Exception('User backend not found.');
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('NewUser')
+            ->willReturn(false);
+        $this->userManager
+            ->expects($this->once())
+            ->method('createUser')
+            ->with('NewUser', 'PasswordOfTheNewUser')
+            ->willThrowException($exception);
+        $this->logger
+            ->expects($this->once())
+            ->method('error')
+            ->with(
+                'Failed addUser attempt with exception.',
+                [
+                    'app' => 'ocs_api',
+                    'exception' => $exception
+                ]
+            );
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('adminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('adminUser')
+            ->willReturn(true);
+
+        $this->api->addUser('NewUser', 'PasswordOfTheNewUser');
+    }
+
+
+    public function testAddUserAsSubAdminNoGroup(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('No group specified (required for sub-admins)');
+        $this->expectExceptionCode(106);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('regularUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('regularUser')
+            ->willReturn(false);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->with()
+            ->willReturn($subAdminManager);
+
+        $this->api->addUser('NewUser', 'PasswordOfTheNewUser', '', '', []);
+    }
+
+
+    public function testAddUserAsSubAdminValidGroupNotSubAdmin(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Insufficient privileges for group ExistingGroup');
+        $this->expectExceptionCode(105);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('regularUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('regularUser')
+            ->willReturn(false);
+        $existingGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('ExistingGroup')
+            ->willReturn($existingGroup);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isSubAdminOfGroup')
+            ->with($loggedInUser, $existingGroup)
+            ->willReturn(false);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->with()
+            ->willReturn($subAdminManager);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('groupExists')
+            ->with('ExistingGroup')
+            ->willReturn(true);
+
+        $this->api->addUser('NewUser', 'PasswordOfTheNewUser', '', '', ['ExistingGroup'])->getData();
+    }
+
+    public function testAddUserAsSubAdminExistingGroups(): void {
+        $this->userManager
+            ->expects($this->once())
+            ->method('userExists')
+            ->with('NewUser')
+            ->willReturn(false);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('subAdminUser');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('subAdminUser')
+            ->willReturn(false);
+        $this->groupManager
+            ->expects($this->exactly(2))
+            ->method('groupExists')
+            ->willReturnMap([
+                ['ExistingGroup1', true],
+                ['ExistingGroup2', true]
+            ]);
+        $user = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userManager
+            ->expects($this->once())
+            ->method('createUser')
+            ->with('NewUser', 'PasswordOfTheNewUser')
+            ->willReturn($user);
+        $existingGroup1 = $this->getMockBuilder('OCP\IGroup')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $existingGroup2 = $this->getMockBuilder('OCP\IGroup')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $existingGroup1
+            ->expects($this->once())
+            ->method('addUser')
+            ->with($user);
+        $existingGroup2
+            ->expects($this->once())
+            ->method('addUser')
+            ->with($user);
+        $this->groupManager
+            ->expects($this->exactly(4))
+            ->method('get')
+            ->willReturnMap([
+                ['ExistingGroup1', $existingGroup1],
+                ['ExistingGroup2', $existingGroup2]
+            ]);
+
+        $calls = [
+            ['Successful addUser call with userid: NewUser', ['app' => 'ocs_api']],
+            ['Added userid NewUser to group ExistingGroup1', ['app' => 'ocs_api']],
+            ['Added userid NewUser to group ExistingGroup2', ['app' => 'ocs_api']],
+        ];
+        $this->logger
+            ->expects($this->exactly(3))
+            ->method('info')
+            ->willReturnCallback(function () use (&$calls): void {
+                $expected = array_shift($calls);
+                $this->assertEquals($expected, func_get_args());
+            });
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $subAdminManager
+            ->expects($this->exactly(2))
+            ->method('isSubAdminOfGroup')
+            ->willReturnMap([
+                [$loggedInUser, $existingGroup1, true],
+                [$loggedInUser, $existingGroup2, true],
+            ]);
+
+        $this->assertArrayHasKey('id', $this->api->addUser('NewUser', 'PasswordOfTheNewUser', '', '', ['ExistingGroup1', 'ExistingGroup2'])->getData());
+    }
+
+
+    public function testGetUserTargetDoesNotExist(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('User does not exist');
+        $this->expectExceptionCode(404);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToGet')
+            ->willReturn(null);
+
+        $this->api->getUser('UserToGet');
+    }
+
+    public function testGetUserDataAsAdmin(): void {
+        $group0 = $this->createMock(IGroup::class);
+        $group1 = $this->createMock(IGroup::class);
+        $group2 = $this->createMock(IGroup::class);
+        $group3 = $this->createMock(IGroup::class);
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->method('getUID')
+            ->willReturn('admin');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $targetUser->expects($this->once())
+            ->method('getSystemEMailAddress')
+            ->willReturn('[email protected]');
+        $this->userSession
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->method('get')
+            ->with('UID')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->method('isAdmin')
+            ->with('admin')
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->any())
+            ->method('getUserGroups')
+            ->willReturn([$group0, $group1, $group2]);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $subAdminManager
+            ->expects($this->once())
+            ->method('getSubAdminsGroups')
+            ->willReturn([$group3]);
+        $group0->expects($this->once())
+            ->method('getGID')
+            ->willReturn('group0');
+        $group1->expects($this->once())
+            ->method('getGID')
+            ->willReturn('group1');
+        $group2->expects($this->once())
+            ->method('getGID')
+            ->willReturn('group2');
+        $group3->expects($this->once())
+            ->method('getGID')
+            ->willReturn('group3');
+
+        $this->mockAccount($targetUser, [
+            IAccountManager::PROPERTY_ADDRESS => ['value' => 'address'],
+            IAccountManager::PROPERTY_PHONE => ['value' => 'phone'],
+            IAccountManager::PROPERTY_TWITTER => ['value' => 'twitter'],
+            IAccountManager::PROPERTY_FEDIVERSE => ['value' => 'fediverse'],
+            IAccountManager::PROPERTY_WEBSITE => ['value' => 'website'],
+            IAccountManager::PROPERTY_ORGANISATION => ['value' => 'organisation'],
+            IAccountManager::PROPERTY_ROLE => ['value' => 'role'],
+            IAccountManager::PROPERTY_HEADLINE => ['value' => 'headline'],
+            IAccountManager::PROPERTY_BIOGRAPHY => ['value' => 'biography'],
+            IAccountManager::PROPERTY_PROFILE_ENABLED => ['value' => '1'],
+            IAccountManager::PROPERTY_PRONOUNS => ['value' => 'they/them'],
+        ]);
+        $this->config
+            ->method('getUserValue')
+            ->willReturnMap([
+                ['UID', 'core', 'enabled', 'true', 'true'],
+            ]);
+        $this->api
+            ->expects($this->once())
+            ->method('fillStorageInfo')
+            ->with($targetUser)
+            ->willReturn(['DummyValue']);
+
+        $backend = $this->createMock(UserInterface::class);
+        $backend->expects($this->any())
+            ->method('implementsActions')
+            ->willReturn(true);
+
+        $targetUser
+            ->expects($this->once())
+            ->method('getDisplayName')
+            ->willReturn('Demo User');
+        $targetUser
+            ->expects($this->once())
+            ->method('getHome')
+            ->willReturn('/var/www/newtcloud/data/UID');
+        $targetUser
+            ->expects($this->exactly(2))
+            ->method('getLastLogin')
+            ->willReturn(1521191471);
+        $targetUser
+            ->expects($this->once())
+            ->method('getFirstLogin')
+            ->willReturn(1511191471);
+        $targetUser
+            ->expects($this->once())
+            ->method('getBackendClassName')
+            ->willReturn('Database');
+        $targetUser
+            ->expects($this->once())
+            ->method('getBackend')
+            ->willReturn($backend);
+        $targetUser
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $this->l10nFactory
+            ->expects($this->once())
+            ->method('getUserLanguage')
+            ->with($targetUser)
+            ->willReturn('de');
+
+        $expected = [
+            'id' => 'UID',
+            'enabled' => true,
+            'storageLocation' => '/var/www/newtcloud/data/UID',
+            'firstLoginTimestamp' => 1511191471,
+            'lastLoginTimestamp' => 1521191471,
+            'lastLogin' => 1521191471000,
+            'backend' => 'Database',
+            'subadmin' => ['group3'],
+            'quota' => ['DummyValue'],
+            'email' => '[email protected]',
+            'displayname' => 'Demo User',
+            'display-name' => 'Demo User',
+            'phone' => 'phone',
+            'address' => 'address',
+            'website' => 'website',
+            'twitter' => 'twitter',
+            'fediverse' => 'fediverse',
+            'groups' => ['group0', 'group1', 'group2'],
+            'language' => 'de',
+            'locale' => null,
+            'backendCapabilities' => [
+                'setDisplayName' => true,
+                'setPassword' => true,
+            ],
+            'additional_mail' => [],
+            'organisation' => 'organisation',
+            'role' => 'role',
+            'headline' => 'headline',
+            'biography' => 'biography',
+            'profile_enabled' => '1',
+            'notify_email' => null,
+            'manager' => '',
+            'pronouns' => 'they/them',
+        ];
+        $this->assertEquals($expected, $this->invokePrivate($this->api, 'getUserData', ['UID']));
+    }
+
+    public function testGetUserDataAsSubAdminAndUserIsAccessible(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getSystemEMailAddress')
+            ->willReturn('[email protected]');
+        $this->userSession
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->method('get')
+            ->with('UID')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+        $this->groupManager
+            ->expects($this->any())
+            ->method('getUserGroups')
+            ->willReturn([]);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(true);
+        $subAdminManager
+            ->expects($this->once())
+            ->method('getSubAdminsGroups')
+            ->willReturn([]);
+        $this->groupManager
+            ->expects($this->exactly(2))
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->config
+            ->method('getUserValue')
+            ->willReturnMap([
+                ['UID', 'core', 'enabled', 'true', 'true'],
+            ]);
+        $this->api
+            ->expects($this->once())
+            ->method('fillStorageInfo')
+            ->with($targetUser)
+            ->willReturn(['DummyValue']);
+
+        $backend = $this->createMock(UserInterface::class);
+        $backend->expects($this->any())
+            ->method('implementsActions')
+            ->willReturn(true);
+
+        $targetUser
+            ->expects($this->once())
+            ->method('getDisplayName')
+            ->willReturn('Demo User');
+        $targetUser
+            ->expects($this->never())
+            ->method('getHome');
+        $targetUser
+            ->expects($this->exactly(2))
+            ->method('getLastLogin')
+            ->willReturn(1521191471);
+        $targetUser
+            ->expects($this->once())
+            ->method('getFirstLogin')
+            ->willReturn(1511191471);
+        $targetUser
+            ->expects($this->once())
+            ->method('getBackendClassName')
+            ->willReturn('Database');
+        $targetUser
+            ->expects($this->once())
+            ->method('getBackend')
+            ->willReturn($backend);
+        $targetUser
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $this->mockAccount($targetUser, [
+            IAccountManager::PROPERTY_ADDRESS => ['value' => 'address'],
+            IAccountManager::PROPERTY_PHONE => ['value' => 'phone'],
+            IAccountManager::PROPERTY_TWITTER => ['value' => 'twitter'],
+            IAccountManager::PROPERTY_FEDIVERSE => ['value' => 'fediverse'],
+            IAccountManager::PROPERTY_WEBSITE => ['value' => 'website'],
+            IAccountManager::PROPERTY_ORGANISATION => ['value' => 'organisation'],
+            IAccountManager::PROPERTY_ROLE => ['value' => 'role'],
+            IAccountManager::PROPERTY_HEADLINE => ['value' => 'headline'],
+            IAccountManager::PROPERTY_BIOGRAPHY => ['value' => 'biography'],
+            IAccountManager::PROPERTY_PROFILE_ENABLED => ['value' => '1'],
+            IAccountManager::PROPERTY_PRONOUNS => ['value' => 'they/them'],
+        ]);
+
+        $this->l10nFactory
+            ->expects($this->once())
+            ->method('getUserLanguage')
+            ->with($targetUser)
+            ->willReturn('da');
+
+        $expected = [
+            'id' => 'UID',
+            'enabled' => true,
+            'firstLoginTimestamp' => 1511191471,
+            'lastLoginTimestamp' => 1521191471,
+            'lastLogin' => 1521191471000,
+            'backend' => 'Database',
+            'subadmin' => [],
+            'quota' => ['DummyValue'],
+            'email' => '[email protected]',
+            'displayname' => 'Demo User',
+            'display-name' => 'Demo User',
+            'phone' => 'phone',
+            'address' => 'address',
+            'website' => 'website',
+            'twitter' => 'twitter',
+            'fediverse' => 'fediverse',
+            'groups' => [],
+            'language' => 'da',
+            'locale' => null,
+            'backendCapabilities' => [
+                'setDisplayName' => true,
+                'setPassword' => true,
+            ],
+            'additional_mail' => [],
+            'organisation' => 'organisation',
+            'role' => 'role',
+            'headline' => 'headline',
+            'biography' => 'biography',
+            'profile_enabled' => '1',
+            'notify_email' => null,
+            'manager' => '',
+            'pronouns' => 'they/them',
+        ];
+        $this->assertEquals($expected, $this->invokePrivate($this->api, 'getUserData', ['UID']));
+    }
+
+
+
+    public function testGetUserDataAsSubAdminAndUserIsNotAccessible(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(998);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(4))
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToGet')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(false);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+
+        $this->invokePrivate($this->api, 'getUser', ['UserToGet']);
+    }
+
+    public function testGetUserDataAsSubAdminSelfLookup(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->method('get')
+            ->with('UID')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->method('isAdmin')
+            ->with('UID')
+            ->willReturn(false);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(false);
+        $subAdminManager
+            ->expects($this->once())
+            ->method('getSubAdminsGroups')
+            ->willReturn([]);
+        $this->groupManager
+            ->expects($this->exactly(2))
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager
+            ->expects($this->any())
+            ->method('getUserGroups')
+            ->willReturn([]);
+        $this->api
+            ->expects($this->once())
+            ->method('fillStorageInfo')
+            ->with($targetUser)
+            ->willReturn(['DummyValue']);
+
+        $backend = $this->createMock(UserInterface::class);
+        $backend->expects($this->atLeastOnce())
+            ->method('implementsActions')
+            ->willReturn(false);
+
+        $targetUser
+            ->expects($this->once())
+            ->method('getDisplayName')
+            ->willReturn('Subadmin User');
+        $targetUser
+            ->expects($this->once())
+            ->method('getSystemEMailAddress')
+            ->willReturn('[email protected]');
+        $targetUser
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser
+            ->expects($this->never())
+            ->method('getHome');
+        $targetUser
+            ->expects($this->exactly(2))
+            ->method('getLastLogin')
+            ->willReturn(1521191471);
+        $targetUser
+            ->expects($this->once())
+            ->method('getFirstLogin')
+            ->willReturn(1511191471);
+        $targetUser
+            ->expects($this->once())
+            ->method('getBackendClassName')
+            ->willReturn('Database');
+        $targetUser
+            ->expects($this->once())
+            ->method('getBackend')
+            ->willReturn($backend);
+        $this->mockAccount($targetUser, [
+            IAccountManager::PROPERTY_ADDRESS => ['value' => 'address'],
+            IAccountManager::PROPERTY_PHONE => ['value' => 'phone'],
+            IAccountManager::PROPERTY_TWITTER => ['value' => 'twitter'],
+            IAccountManager::PROPERTY_FEDIVERSE => ['value' => 'fediverse'],
+            IAccountManager::PROPERTY_WEBSITE => ['value' => 'website'],
+            IAccountManager::PROPERTY_ORGANISATION => ['value' => 'organisation'],
+            IAccountManager::PROPERTY_ROLE => ['value' => 'role'],
+            IAccountManager::PROPERTY_HEADLINE => ['value' => 'headline'],
+            IAccountManager::PROPERTY_BIOGRAPHY => ['value' => 'biography'],
+            IAccountManager::PROPERTY_PROFILE_ENABLED => ['value' => '1'],
+            IAccountManager::PROPERTY_PRONOUNS => ['value' => 'they/them'],
+        ]);
+
+        $this->l10nFactory
+            ->expects($this->once())
+            ->method('getUserLanguage')
+            ->with($targetUser)
+            ->willReturn('ru');
+
+        $expected = [
+            'id' => 'UID',
+            'firstLoginTimestamp' => 1511191471,
+            'lastLoginTimestamp' => 1521191471,
+            'lastLogin' => 1521191471000,
+            'backend' => 'Database',
+            'subadmin' => [],
+            'quota' => ['DummyValue'],
+            'email' => '[email protected]',
+            'displayname' => 'Subadmin User',
+            'display-name' => 'Subadmin User',
+            'phone' => 'phone',
+            'address' => 'address',
+            'website' => 'website',
+            'twitter' => 'twitter',
+            'fediverse' => 'fediverse',
+            'groups' => [],
+            'language' => 'ru',
+            'locale' => null,
+            'backendCapabilities' => [
+                'setDisplayName' => false,
+                'setPassword' => false,
+            ],
+            'additional_mail' => [],
+            'organisation' => 'organisation',
+            'role' => 'role',
+            'headline' => 'headline',
+            'biography' => 'biography',
+            'profile_enabled' => '1',
+            'notify_email' => null,
+            'manager' => '',
+            'pronouns' => 'they/them',
+        ];
+        $this->assertEquals($expected, $this->invokePrivate($this->api, 'getUserData', ['UID']));
+    }
+
+    public static function dataSearchByPhoneNumbers(): array {
+        return [
+            'Invalid country' => ['Not a country code', ['12345' => ['NaN']], 400, null, null, []],
+            'No number to search' => ['DE', ['12345' => ['NaN']], 200, null, null, []],
+            'Valid number but no match' => ['DE', ['12345' => ['0711 / 25 24 28-90']], 200, ['+4971125242890'], [], []],
+            'Invalid number' => ['FR', ['12345' => ['0711 / 25 24 28-90']], 200, null, null, []],
+            'Invalid and valid number' => ['DE', ['12345' => ['NaN', '0711 / 25 24 28-90']], 200, ['+4971125242890'], [], []],
+            'Valid and invalid number' => ['DE', ['12345' => ['0711 / 25 24 28-90', 'NaN']], 200, ['+4971125242890'], [], []],
+            'Valid number and a match' => ['DE', ['12345' => ['0711 / 25 24 28-90']], 200, ['+4971125242890'], ['+4971125242890' => 'admin'], ['12345' => 'admin@localhost']],
+            'Same number twice, later hits' => ['DE', ['12345' => ['0711 / 25 24 28-90'], '23456' => ['0711 / 25 24 28-90']], 200, ['+4971125242890'], ['+4971125242890' => 'admin'], ['23456' => 'admin@localhost']],
+        ];
+    }
+
+    #[\PHPUnit\Framework\Attributes\DataProvider('dataSearchByPhoneNumbers')]
+    public function testSearchByPhoneNumbers(string $location, array $search, int $status, ?array $searchUsers, ?array $userMatches, array $expected): void {
+        $knownTo = 'knownTo';
+        $user = $this->createMock(IUser::class);
+        $user->method('getUID')
+            ->willReturn($knownTo);
+        $this->userSession->method('getUser')
+            ->willReturn($user);
+
+        if ($searchUsers === null) {
+            $this->accountManager->expects($this->never())
+                ->method('searchUsers');
+        } else {
+            $this->accountManager->expects($this->once())
+                ->method('searchUsers')
+                ->with(IAccountManager::PROPERTY_PHONE, $searchUsers)
+                ->willReturn($userMatches);
+
+            $this->knownUserService->expects($this->once())
+                ->method('deleteKnownTo')
+                ->with($knownTo);
+
+            $this->knownUserService->expects($this->exactly(count($expected)))
+                ->method('storeIsKnownToUser')
+                ->with($knownTo, $this->anything());
+        }
+
+        $this->urlGenerator->method('getAbsoluteURL')
+            ->with('/')
+            ->willReturn('https://localhost/');
+
+        $response = $this->api->searchByPhoneNumbers($location, $search);
+
+        self::assertEquals($status, $response->getStatus());
+        self::assertEquals($expected, $response->getData());
+    }
+
+    public function testEditUserRegularUserSelfEditChangeDisplayName(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $targetUser
+            ->expects($this->once())
+            ->method('getBackend')
+            ->willReturn($this->createMock(ISetDisplayNameBackend::class));
+        $targetUser
+            ->expects($this->once())
+            ->method('setDisplayName')
+            ->with('NewDisplayName')
+            ->willReturn(true);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'display', 'NewDisplayName')->getData());
+    }
+
+    public function testEditUserRegularUserSelfEditChangeEmailValid(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $targetUser
+            ->expects($this->once())
+            ->method('setSystemEMailAddress')
+            ->with('[email protected]');
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->config->method('getSystemValue')->willReturnCallback(fn (string $key, mixed $default) => $default);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'email', '[email protected]')->getData());
+    }
+
+    public function testEditUserRegularUserSelfEditAddAdditionalEmailValid(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $userAccount = $this->createMock(IAccount::class);
+
+        $this->accountManager
+            ->expects($this->once())
+            ->method('getAccount')
+            ->with($targetUser)
+            ->willReturn($userAccount);
+        $this->accountManager
+            ->expects($this->once())
+            ->method('updateAccount')
+            ->with($userAccount);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'additional_mail', '[email protected]')->getData());
+    }
+
+    public function testEditUserRegularUserSelfEditAddAdditionalEmailMainAddress(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+        $targetUser
+            ->expects($this->any())
+            ->method('getSystemEMailAddress')
+            ->willReturn('[email protected]');
+
+        $userAccount = $this->createMock(IAccount::class);
+
+        $this->accountManager
+            ->expects($this->never())
+            ->method('getAccount')
+            ->with($targetUser)
+            ->willReturn($userAccount);
+        $this->accountManager
+            ->expects($this->never())
+            ->method('updateAccount')
+            ->with($userAccount);
+
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(101);
+        $this->api->editUser('UserToEdit', 'additional_mail', '[email protected]')->getData();
+    }
+
+    public function testEditUserRegularUserSelfEditAddAdditionalEmailDuplicate(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $property = $this->createMock(IAccountProperty::class);
+        $property->method('getValue')
+            ->willReturn('[email protected]');
+        $collection = $this->createMock(IAccountPropertyCollection::class);
+        $collection->method('getPropertyByValue')
+            ->with('[email protected]')
+            ->willReturn($property);
+
+        $userAccount = $this->createMock(IAccount::class);
+        $userAccount->method('getPropertyCollection')
+            ->with(IAccountManager::COLLECTION_EMAIL)
+            ->willReturn($collection);
+
+        $this->accountManager
+            ->expects($this->once())
+            ->method('getAccount')
+            ->with($targetUser)
+            ->willReturn($userAccount);
+        $this->accountManager
+            ->expects($this->never())
+            ->method('updateAccount')
+            ->with($userAccount);
+
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(101);
+        $this->api->editUser('UserToEdit', 'additional_mail', '[email protected]')->getData();
+    }
+
+    public function testEditUserRegularUserSelfEditChangeEmailInvalid(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(101);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->config->method('getSystemValue')->willReturnCallback(fn (string $key, mixed $default) => $default);
+
+        $this->api->editUser('UserToEdit', 'email', 'demo.org');
+    }
+
+    public static function selfEditChangePropertyProvider(): array {
+        return [
+            [IAccountManager::PROPERTY_TWITTER, '@oldtwitter', '@newtwitter'],
+            [IAccountManager::PROPERTY_FEDIVERSE, '@[email protected]', '@[email protected]'],
+            [IAccountManager::PROPERTY_PHONE, '1234', '12345'],
+            [IAccountManager::PROPERTY_ADDRESS, 'Something street 2', 'Another street 3'],
+            [IAccountManager::PROPERTY_WEBSITE, 'https://examplesite1', 'https://examplesite2'],
+            [IAccountManager::PROPERTY_ORGANISATION, 'Organisation A', 'Organisation B'],
+            [IAccountManager::PROPERTY_ROLE, 'Human', 'Alien'],
+            [IAccountManager::PROPERTY_HEADLINE, 'Hi', 'Hello'],
+            [IAccountManager::PROPERTY_BIOGRAPHY, 'A biography', 'Another biography'],
+            [IAccountManager::PROPERTY_PROFILE_ENABLED, '1', '0'],
+            [IAccountManager::PROPERTY_PRONOUNS, 'they/them', 'he/him'],
+        ];
+    }
+
+    #[\PHPUnit\Framework\Attributes\DataProvider('selfEditChangePropertyProvider')]
+    public function testEditUserRegularUserSelfEditChangeProperty($propertyName, $oldValue, $newValue): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($loggedInUser);
+
+        $backend = $this->createMock(UserInterface::class);
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $propertyMock = $this->createMock(IAccountProperty::class);
+        $propertyMock->expects($this->any())
+            ->method('getName')
+            ->willReturn($propertyName);
+        $propertyMock->expects($this->any())
+            ->method('getValue')
+            ->willReturn($oldValue);
+        $propertyMock->expects($this->once())
+            ->method('setValue')
+            ->with($newValue)
+            ->willReturnSelf();
+        $propertyMock->expects($this->any())
+            ->method('getScope')
+            ->willReturn(IAccountManager::SCOPE_LOCAL);
+
+        $accountMock = $this->createMock(IAccount::class);
+        $accountMock->expects($this->any())
+            ->method('getProperty')
+            ->with($propertyName)
+            ->willReturn($propertyMock);
+
+        $this->accountManager->expects($this->atLeastOnce())
+            ->method('getAccount')
+            ->with($loggedInUser)
+            ->willReturn($accountMock);
+        $this->accountManager->expects($this->once())
+            ->method('updateAccount')
+            ->with($accountMock);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', $propertyName, $newValue)->getData());
+    }
+
+    public function selfEditChangePropertyScopeProvider() {
+        return [
+            [IAccountManager::PROPERTY_AVATAR, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_DISPLAYNAME, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_EMAIL, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_TWITTER, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_FEDIVERSE, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_PHONE, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_ADDRESS, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_WEBSITE, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_ORGANISATION, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_ROLE, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_HEADLINE, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_BIOGRAPHY, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_PROFILE_ENABLED, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+            [IAccountManager::PROPERTY_PRONOUNS, IAccountManager::SCOPE_LOCAL, IAccountManager::SCOPE_FEDERATED],
+        ];
+    }
+
+    #[\PHPUnit\Framework\Attributes\DataProvider('selfEditChangePropertyProvider')]
+    public function testEditUserRegularUserSelfEditChangePropertyScope($propertyName, $oldScope, $newScope): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($loggedInUser);
+
+        $backend = $this->createMock(UserInterface::class);
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $propertyMock = $this->createMock(IAccountProperty::class);
+        $propertyMock->expects($this->any())
+            ->method('getName')
+            ->willReturn($propertyName);
+        $propertyMock->expects($this->any())
+            ->method('getValue')
+            ->willReturn('somevalue');
+        $propertyMock->expects($this->any())
+            ->method('getScope')
+            ->willReturn($oldScope);
+        $propertyMock->expects($this->atLeastOnce())
+            ->method('setScope')
+            ->with($newScope)
+            ->willReturnSelf();
+
+        $accountMock = $this->createMock(IAccount::class);
+        $accountMock->expects($this->any())
+            ->method('getProperty')
+            ->with($propertyName)
+            ->willReturn($propertyMock);
+
+        $this->accountManager->expects($this->atLeastOnce())
+            ->method('getAccount')
+            ->with($loggedInUser)
+            ->willReturn($accountMock);
+        $this->accountManager->expects($this->once())
+            ->method('updateAccount')
+            ->with($accountMock);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', $propertyName . 'Scope', $newScope)->getData());
+    }
+
+    public function testEditUserRegularUserSelfEditChangePassword(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $targetUser
+            ->expects($this->once())
+            ->method('canChangePassword')
+            ->willReturn(true);
+        $targetUser
+            ->expects($this->once())
+            ->method('setPassword')
+            ->with('NewPassword');
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'password', 'NewPassword')->getData());
+    }
+
+
+
+    public function testEditUserRegularUserSelfEditChangeQuota(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(113);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->api->editUser('UserToEdit', 'quota', 'NewQuota');
+    }
+
+    public function testEditUserAdminUserSelfEditChangeValidQuota(): void {
+        $this->config
+            ->expects($this->once())
+            ->method('getAppValue')
+            ->willReturnCallback(function ($appid, $key, $default) {
+                if ($key === 'max_quota') {
+                    return '-1';
+                }
+                return null;
+            });
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser->expects($this->once())
+            ->method('setQuota')
+            ->with('2.9 MB');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->exactly(3))
+            ->method('isAdmin')
+            ->with('UID')
+            ->willReturn(true);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'quota', '3042824')->getData());
+    }
+
+
+
+    public function testEditUserAdminUserSelfEditChangeInvalidQuota(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Invalid quota value: ABC');
+        $this->expectExceptionCode(101);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->exactly(3))
+            ->method('isAdmin')
+            ->with('UID')
+            ->willReturn(true);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->api->editUser('UserToEdit', 'quota', 'ABC');
+    }
+
+    public function testEditUserAdminUserEditChangeValidQuota(): void {
+        $this->config
+            ->expects($this->once())
+            ->method('getAppValue')
+            ->willReturnCallback(function ($appid, $key, $default) {
+                if ($key === 'max_quota') {
+                    return '-1';
+                }
+                return null;
+            });
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('admin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser->expects($this->once())
+            ->method('setQuota')
+            ->with('2.9 MB');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('admin')
+            ->willReturn(true);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'quota', '3042824')->getData());
+    }
+
+    public function testEditUserSelfEditChangeLanguage(): void {
+        $this->l10nFactory->expects($this->once())
+            ->method('findAvailableLanguages')
+            ->willReturn(['en', 'de', 'sv']);
+        $this->config->expects($this->any())
+            ->method('getSystemValue')
+            ->willReturnMap([
+                ['allow_user_to_change_display_name', true, true],
+                ['force_language', false, false],
+            ]);
+
+        $loggedInUser = $this->createMock(IUser::class);
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UserToEdit');
+        $targetUser = $this->createMock(IUser::class);
+        $this->config->expects($this->once())
+            ->method('setUserValue')
+            ->with('UserToEdit', 'core', 'lang', 'de');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->atLeastOnce())
+            ->method('isAdmin')
+            ->with('UserToEdit')
+            ->willReturn(false);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UserToEdit');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'language', 'de')->getData());
+    }
+
+    public static function dataEditUserSelfEditChangeLanguageButForced(): array {
+        return [
+            ['de'],
+            [true],
+        ];
+    }
+
+    #[\PHPUnit\Framework\Attributes\DataProvider('dataEditUserSelfEditChangeLanguageButForced')]
+    public function testEditUserSelfEditChangeLanguageButForced($forced): void {
+        $this->expectException(OCSException::class);
+
+        $this->config->expects($this->any())
+            ->method('getSystemValue')
+            ->willReturnMap([
+                ['allow_user_to_change_display_name', true, true],
+                ['force_language', false, $forced],
+            ]);
+
+        $loggedInUser = $this->createMock(IUser::class);
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UserToEdit');
+        $targetUser = $this->createMock(IUser::class);
+        $this->config->expects($this->never())
+            ->method('setUserValue');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->atLeastOnce())
+            ->method('isAdmin')
+            ->with('UserToEdit')
+            ->willReturn(false);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UserToEdit');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'language', 'de')->getData());
+    }
+
+    public function testEditUserAdminEditChangeLanguage(): void {
+        $this->l10nFactory->expects($this->once())
+            ->method('findAvailableLanguages')
+            ->willReturn(['en', 'de', 'sv']);
+
+        $loggedInUser = $this->createMock(IUser::class);
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('admin');
+        $targetUser = $this->createMock(IUser::class);
+        $this->config->expects($this->once())
+            ->method('setUserValue')
+            ->with('UserToEdit', 'core', 'lang', 'de');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('admin')
+            ->willReturn(true);
+        $subAdminManager = $this->createMock(SubAdmin::class);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UserToEdit');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'language', 'de')->getData());
+    }
+
+    #[\PHPUnit\Framework\Attributes\DataProvider('dataEditUserSelfEditChangeLanguageButForced')]
+    public function testEditUserAdminEditChangeLanguageInvalidLanguage(): void {
+        $this->expectException(OCSException::class);
+
+
+        $this->l10nFactory->expects($this->once())
+            ->method('findAvailableLanguages')
+            ->willReturn(['en', 'de', 'sv']);
+
+        $loggedInUser = $this->createMock(IUser::class);
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('admin');
+        $targetUser = $this->createMock(IUser::class);
+        $this->config->expects($this->never())
+            ->method('setUserValue');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('admin')
+            ->willReturn(true);
+        $subAdminManager = $this->createMock(SubAdmin::class);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UserToEdit');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'language', 'ru')->getData());
+    }
+
+    public function testEditUserSubadminUserAccessible(): void {
+        $this->config
+            ->expects($this->once())
+            ->method('getAppValue')
+            ->willReturnCallback(function ($appid, $key, $default) {
+                if ($key === 'max_quota') {
+                    return '-1';
+                }
+                return null;
+            });
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser->expects($this->once())
+            ->method('setQuota')
+            ->with('2.9 MB');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $backend = $this->createMock(UserInterface::class);
+        $targetUser
+            ->expects($this->any())
+            ->method('getBackend')
+            ->willReturn($backend);
+
+        $this->assertEquals([], $this->api->editUser('UserToEdit', 'quota', '3042824')->getData());
+    }
+
+
+    public function testEditUserSubadminUserInaccessible(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(998);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToEdit')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(false);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $targetUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+
+        $this->api->editUser('UserToEdit', 'quota', 'value');
+    }
+
+
+    public function testDeleteUserNotExistingUser(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(998);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UserToEdit');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToDelete')
+            ->willReturn(null);
+
+        $this->api->deleteUser('UserToDelete');
+    }
+
+
+    public function testDeleteUserSelf(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(101);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('UID');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('UID');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToDelete')
+            ->willReturn($targetUser);
+
+        $this->api->deleteUser('UserToDelete');
+    }
+
+    public function testDeleteSuccessfulUserAsAdmin(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('admin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('UID');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToDelete')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('admin')
+            ->willReturn(true);
+        $targetUser
+            ->expects($this->once())
+            ->method('delete')
+            ->willReturn(true);
+
+        $this->assertEquals([], $this->api->deleteUser('UserToDelete')->getData());
+    }
+
+
+    public function testDeleteUnsuccessfulUserAsAdmin(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(101);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('admin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('UID');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToDelete')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('admin')
+            ->willReturn(true);
+        $targetUser
+            ->expects($this->once())
+            ->method('delete')
+            ->willReturn(false);
+
+        $this->api->deleteUser('UserToDelete');
+    }
+
+    public function testDeleteSuccessfulUserAsSubadmin(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('UID');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToDelete')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $targetUser
+            ->expects($this->once())
+            ->method('delete')
+            ->willReturn(true);
+
+        $this->assertEquals([], $this->api->deleteUser('UserToDelete')->getData());
+    }
+
+
+    public function testDeleteUnsuccessfulUserAsSubadmin(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(101);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('UID');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToDelete')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $targetUser
+            ->expects($this->once())
+            ->method('delete')
+            ->willReturn(false);
+
+        $this->api->deleteUser('UserToDelete');
+    }
+
+
+    public function testDeleteUserAsSubAdminAndUserIsNotAccessible(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(998);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('UID');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToDelete')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(false);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+
+        $this->api->deleteUser('UserToDelete');
+    }
+
+
+    public function testGetUsersGroupsTargetUserNotExisting(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(998);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+
+        $this->api->getUsersGroups('UserToLookup');
+    }
+
+    public function testGetUsersGroupsSelfTargetted(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->exactly(3))
+            ->method('getUID')
+            ->willReturn('UserToLookup');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('UserToLookup');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToLookup')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getUserGroupIds')
+            ->with($targetUser)
+            ->willReturn(['DummyValue']);
+
+        $this->assertEquals(['groups' => ['DummyValue']], $this->api->getUsersGroups('UserToLookup')->getData());
+    }
+
+    public function testGetUsersGroupsForAdminUser(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->exactly(3))
+            ->method('getUID')
+            ->willReturn('admin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('UserToLookup');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToLookup')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getUserGroupIds')
+            ->with($targetUser)
+            ->willReturn(['DummyValue']);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('admin')
+            ->willReturn(true);
+
+        $this->assertEquals(['groups' => ['DummyValue']], $this->api->getUsersGroups('UserToLookup')->getData());
+    }
+
+    public function testGetUsersGroupsForSubAdminUserAndUserIsAccessible(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->exactly(3))
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('UserToLookup');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToLookup')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $group1 = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $group1
+            ->expects($this->any())
+            ->method('getGID')
+            ->willReturn('Group1');
+        $group2 = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $group2
+            ->expects($this->any())
+            ->method('getGID')
+            ->willReturn('Group2');
+        $subAdminManager
+            ->expects($this->once())
+            ->method('getSubAdminsGroups')
+            ->with($loggedInUser)
+            ->willReturn([$group1, $group2]);
+        $this->groupManager
+            ->expects($this->any())
+            ->method('getUserGroupIds')
+            ->with($targetUser)
+            ->willReturn(['Group1']);
+
+        $this->assertEquals(['groups' => ['Group1']], $this->api->getUsersGroups('UserToLookup')->getData());
+    }
+
+
+    public function testGetUsersGroupsForSubAdminUserAndUserIsInaccessible(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(998);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->exactly(3))
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('UserToLookup');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToLookup')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(false);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager
+            ->expects($this->any())
+            ->method('getUserGroupIds')
+            ->with($targetUser)
+            ->willReturn(['Group1']);
+
+        $this->api->getUsersGroups('UserToLookup');
+    }
+
+
+    public function testAddToGroupWithTargetGroupNotExisting(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(102);
+
+        $this->groupManager->expects($this->once())
+            ->method('get')
+            ->with('GroupToAddTo')
+            ->willReturn(null);
+
+        $this->api->addToGroup('TargetUser', 'GroupToAddTo');
+    }
+
+
+    public function testAddToGroupWithNoGroupSpecified(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(101);
+
+        $this->api->addToGroup('TargetUser');
+    }
+
+
+    public function testAddToGroupWithTargetUserNotExisting(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(103);
+
+        $targetGroup = $this->createMock(IGroup::class);
+        $this->groupManager->expects($this->once())
+            ->method('get')
+            ->with('GroupToAddTo')
+            ->willReturn($targetGroup);
+
+        $this->api->addToGroup('TargetUser', 'GroupToAddTo');
+    }
+
+
+    public function testAddToGroupNoSubadmin(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(104);
+
+        $targetUser = $this->createMock(IUser::class);
+        $loggedInUser = $this->createMock(IUser::class);
+        $loggedInUser->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('subadmin');
+
+        $targetGroup = $this->createMock(IGroup::class);
+        $targetGroup->expects($this->never())
+            ->method('addUser')
+            ->with($targetUser);
+
+        $this->groupManager->expects($this->once())
+            ->method('get')
+            ->with('GroupToAddTo')
+            ->willReturn($targetGroup);
+
+
+        $subAdminManager = $this->createMock(SubAdmin::class);
+        $subAdminManager->expects($this->once())
+            ->method('isSubAdminOfGroup')
+            ->with($loggedInUser, $targetGroup)
+            ->willReturn(false);
+
+        $this->groupManager->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager->expects($this->once())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+
+        $this->userManager->expects($this->once())
+            ->method('get')
+            ->with('TargetUser')
+            ->willReturn($targetUser);
+
+        $this->userSession->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+
+        $this->api->addToGroup('TargetUser', 'GroupToAddTo');
+    }
+
+    public function testAddToGroupSuccessAsSubadmin(): void {
+        $targetUser = $this->createMock(IUser::class);
+        $loggedInUser = $this->createMock(IUser::class);
+        $loggedInUser->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('subadmin');
+
+        $targetGroup = $this->createMock(IGroup::class);
+        $targetGroup->expects($this->once())
+            ->method('addUser')
+            ->with($targetUser);
+
+        $this->groupManager->expects($this->once())
+            ->method('get')
+            ->with('GroupToAddTo')
+            ->willReturn($targetGroup);
 
-
-		$subAdminManager = $this->createMock(SubAdmin::class);
-		$subAdminManager->expects($this->once())
-			->method('isSubAdminOfGroup')
-			->with($loggedInUser, $targetGroup)
-			->willReturn(true);
-
-		$this->groupManager->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager->expects($this->once())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-
-		$this->userManager->expects($this->once())
-			->method('get')
-			->with('TargetUser')
-			->willReturn($targetUser);
-
-		$this->userSession->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-
-		$this->assertEquals(new DataResponse(), $this->api->addToGroup('TargetUser', 'GroupToAddTo'));
-	}
-
-	public function testAddToGroupSuccessAsAdmin(): void {
-		$targetUser = $this->createMock(IUser::class);
-		$loggedInUser = $this->createMock(IUser::class);
-		$loggedInUser->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('admin');
-
-		$targetGroup = $this->createMock(IGroup::class);
-		$targetGroup->expects($this->once())
-			->method('addUser')
-			->with($targetUser);
-
-		$this->groupManager->expects($this->once())
-			->method('get')
-			->with('GroupToAddTo')
-			->willReturn($targetGroup);
-
-
-		$subAdminManager = $this->createMock(SubAdmin::class);
-		$subAdminManager->expects($this->never())
-			->method('isSubAdminOfGroup');
-
-		$this->groupManager->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager->expects($this->once())
-			->method('isAdmin')
-			->with('admin')
-			->willReturn(true);
-
-		$this->userManager->expects($this->once())
-			->method('get')
-			->with('TargetUser')
-			->willReturn($targetUser);
-
-		$this->userSession->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-
-		$this->assertEquals(new DataResponse(), $this->api->addToGroup('TargetUser', 'GroupToAddTo'));
-	}
-
-
-	public function testRemoveFromGroupWithNoTargetGroup(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(101);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-
-		$this->api->removeFromGroup('TargetUser', '');
-	}
-
-
-	public function testRemoveFromGroupWithEmptyTargetGroup(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(101);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-
-		$this->api->removeFromGroup('TargetUser', '');
-	}
-
-
-	public function testRemoveFromGroupWithNotExistingTargetGroup(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(102);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('TargetGroup')
-			->willReturn(null);
-
-		$this->api->removeFromGroup('TargetUser', 'TargetGroup');
-	}
-
-
-	public function testRemoveFromGroupWithNotExistingTargetUser(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(103);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('TargetGroup')
-			->willReturn($targetGroup);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('TargetUser')
-			->willReturn(null);
-
-		$this->api->removeFromGroup('TargetUser', 'TargetGroup');
-	}
-
-
-	public function testRemoveFromGroupWithoutPermission(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(104);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('unauthorizedUser');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('TargetGroup')
-			->willReturn($targetGroup);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('TargetUser')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('unauthorizedUser')
-			->willReturn(false);
-
-		$this->api->removeFromGroup('TargetUser', 'TargetGroup');
-	}
-
-
-	public function testRemoveFromGroupAsAdminFromAdmin(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Cannot remove yourself from the admin group');
-		$this->expectExceptionCode(105);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('admin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('admin');
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$targetGroup
-			->expects($this->once())
-			->method('getGID')
-			->willReturn('admin');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('admin')
-			->willReturn($targetGroup);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('Admin')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager
-			->expects($this->any())
-			->method('isAdmin')
-			->with('admin')
-			->willReturn(true);
-
-		$this->api->removeFromGroup('Admin', 'admin');
-	}
-
-
-	public function testRemoveFromGroupAsSubAdminFromSubAdmin(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Cannot remove yourself from this group as you are a sub-admin');
-		$this->expectExceptionCode(105);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser
-			->expects($this->once())
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$targetGroup
-			->expects($this->any())
-			->method('getGID')
-			->willReturn('subadmin');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('subadmin')
-			->willReturn($targetGroup);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('SubAdmin')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isSubAdminOfGroup')
-			->with($loggedInUser, $targetGroup)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager
-			->expects($this->any())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-
-		$this->api->removeFromGroup('SubAdmin', 'subadmin');
-	}
-
-
-	public function testRemoveFromGroupAsSubAdminFromLastSubAdminGroup(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Not viable to remove user from the last group you are sub-admin of');
-		$this->expectExceptionCode(105);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$targetGroup
-			->expects($this->any())
-			->method('getGID')
-			->willReturn('subadmin');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('subadmin')
-			->willReturn($targetGroup);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('AnotherUser')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isSubAdminOfGroup')
-			->with($loggedInUser, $targetGroup)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$subAdminManager
-			->expects($this->once())
-			->method('getSubAdminsGroups')
-			->with($loggedInUser)
-			->willReturn([$targetGroup]);
-
-		$this->groupManager
-			->expects($this->any())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-		$this->groupManager
-			->expects($this->once())
-			->method('getUserGroupIds')
-			->with($targetUser)
-			->willReturn(['subadmin', 'other group']);
-
-		$this->api->removeFromGroup('AnotherUser', 'subadmin');
-	}
-
-	public function testRemoveFromGroupSuccessful(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->any())
-			->method('getUID')
-			->willReturn('admin');
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('admin')
-			->willReturn($targetGroup);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('AnotherUser')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$this->groupManager
-			->expects($this->any())
-			->method('isAdmin')
-			->with('admin')
-			->willReturn(true);
-		$targetGroup
-			->expects($this->once())
-			->method('removeUser')
-			->with($targetUser);
-
-		$this->assertEquals([], $this->api->removeFromGroup('AnotherUser', 'admin')->getData());
-	}
-
-
-	public function testAddSubAdminWithNotExistingTargetUser(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('User does not exist');
-		$this->expectExceptionCode(101);
-
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('NotExistingUser')
-			->willReturn(null);
-
-		$this->api->addSubAdmin('NotExistingUser', '');
-	}
-
-
-	public function testAddSubAdminWithNotExistingTargetGroup(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Group does not exist');
-		$this->expectExceptionCode(102);
-
-
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('ExistingUser')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('NotExistingGroup')
-			->willReturn(null);
-
-		$this->api->addSubAdmin('ExistingUser', 'NotExistingGroup');
-	}
-
-
-	public function testAddSubAdminToAdminGroup(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Cannot create sub-admins for admin group');
-		$this->expectExceptionCode(103);
-
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$targetGroup
-			->expects($this->once())
-			->method('getGID')
-			->willReturn('admin');
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('ExistingUser')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('ADmiN')
-			->willReturn($targetGroup);
-
-		$this->api->addSubAdmin('ExistingUser', 'ADmiN');
-	}
-
-	public function testAddSubAdminTwice(): void {
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('ExistingUser')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('TargetGroup')
-			->willReturn($targetGroup);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isSubAdminOfGroup')
-			->with($targetUser, $targetGroup)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-
-		$this->assertEquals([], $this->api->addSubAdmin('ExistingUser', 'TargetGroup')->getData());
-	}
-
-	public function testAddSubAdminSuccessful(): void {
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('ExistingUser')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('TargetGroup')
-			->willReturn($targetGroup);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isSubAdminOfGroup')
-			->with($targetUser, $targetGroup)
-			->willReturn(false);
-		$subAdminManager
-			->expects($this->once())
-			->method('createSubAdmin')
-			->with($targetUser, $targetGroup);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-
-		$this->assertEquals([], $this->api->addSubAdmin('ExistingUser', 'TargetGroup')->getData());
-	}
-
-
-	public function testRemoveSubAdminNotExistingTargetUser(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('User does not exist');
-		$this->expectExceptionCode(101);
-
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('NotExistingUser')
-			->willReturn(null);
-
-		$this->api->removeSubAdmin('NotExistingUser', 'GroupToDeleteFrom');
-	}
-
-
-	public function testRemoveSubAdminNotExistingTargetGroup(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Group does not exist');
-		$this->expectExceptionCode(101);
-
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('ExistingUser')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('GroupToDeleteFrom')
-			->willReturn(null);
-
-		$this->api->removeSubAdmin('ExistingUser', 'GroupToDeleteFrom');
-	}
-
-
-
-	public function testRemoveSubAdminFromNotASubadmin(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('User is not a sub-admin of this group');
-		$this->expectExceptionCode(102);
-
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('ExistingUser')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('GroupToDeleteFrom')
-			->willReturn($targetGroup);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isSubAdminOfGroup')
-			->with($targetUser, $targetGroup)
-			->willReturn(false);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-
-		$this->api->removeSubAdmin('ExistingUser', 'GroupToDeleteFrom');
-	}
-
-	public function testRemoveSubAdminSuccessful(): void {
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('ExistingUser')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('get')
-			->with('GroupToDeleteFrom')
-			->willReturn($targetGroup);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isSubAdminOfGroup')
-			->with($targetUser, $targetGroup)
-			->willReturn(true);
-		$subAdminManager
-			->expects($this->once())
-			->method('deleteSubAdmin')
-			->with($targetUser, $targetGroup);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-
-		$this->assertEquals([], $this->api->removeSubAdmin('ExistingUser', 'GroupToDeleteFrom')->getData());
-	}
-
-
-	public function testGetUserSubAdminGroupsNotExistingTargetUser(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('User does not exist');
-		$this->expectExceptionCode(404);
-
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('RequestedUser')
-			->willReturn(null);
-
-		$this->api->getUserSubAdminGroups('RequestedUser');
-	}
-
-	public function testGetUserSubAdminGroupsWithGroups(): void {
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
-		$targetGroup
-			->expects($this->once())
-			->method('getGID')
-			->willReturn('TargetGroup');
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('RequestedUser')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('getSubAdminsGroups')
-			->with($targetUser)
-			->willReturn([$targetGroup]);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-
-		$this->assertEquals(['TargetGroup'], $this->api->getUserSubAdminGroups('RequestedUser')->getData());
-	}
-
-	public function testEnableUser(): void {
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser->expects($this->once())
-			->method('setEnabled')
-			->with(true);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('RequestedUser')
-			->willReturn($targetUser);
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->exactly(3))
-			->method('getUID')
-			->willReturn('admin');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->willReturn(true);
-
-		$this->assertEquals([], $this->api->enableUser('RequestedUser')->getData());
-	}
-
-	public function testDisableUser(): void {
-		$targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$targetUser->expects($this->once())
-			->method('setEnabled')
-			->with(false);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('RequestedUser')
-			->willReturn($targetUser);
-		$loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
-		$loggedInUser
-			->expects($this->exactly(3))
-			->method('getUID')
-			->willReturn('admin');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->willReturn(true);
-
-		$this->assertEquals([], $this->api->disableUser('RequestedUser')->getData());
-	}
-
-	public function testGetCurrentUserLoggedIn(): void {
-		$user = $this->createMock(IUser::class);
-		$user->expects($this->once())->method('getUID')->willReturn('UID');
-
-		$this->userSession->expects($this->once())->method('getUser')
-			->willReturn($user);
-
-		/** @var UsersController | MockObject $api */
-		$api = $this->getMockBuilder(UsersController::class)
-			->setConstructorArgs([
-				'provisioning_api',
-				$this->request,
-				$this->userManager,
-				$this->config,
-				$this->groupManager,
-				$this->userSession,
-				$this->accountManager,
-				$this->subAdminManager,
-				$this->l10nFactory,
-				$this->rootFolder,
-				$this->urlGenerator,
-				$this->logger,
-				$this->newUserMailHelper,
-				$this->secureRandom,
-				$this->remoteWipe,
-				$this->knownUserService,
-				$this->eventDispatcher,
-				$this->phoneNumberUtil,
-				$this->appManager,
-			])
-			->onlyMethods(['getUserData'])
-			->getMock();
-
-		$api->expects($this->once())->method('getUserData')->with('UID', true)
-			->willReturn(
-				[
-					'id' => 'UID',
-					'enabled' => 'true',
-					'quota' => ['DummyValue'],
-					'email' => '[email protected]',
-					'displayname' => 'Demo User',
-					'display-name' => 'Demo User',
-					'phone' => 'phone',
-					'address' => 'address',
-					'website' => 'website',
-					'twitter' => 'twitter',
-					'fediverse' => 'fediverse',
-					'organisation' => 'organisation',
-					'role' => 'role',
-					'headline' => 'headline',
-					'biography' => 'biography',
-					'profile_enabled' => '1',
-					'pronouns' => 'they/them',
-				]
-			);
-
-		$expected = [
-			'id' => 'UID',
-			'enabled' => 'true',
-			'quota' => ['DummyValue'],
-			'email' => '[email protected]',
-			'displayname' => 'Demo User',
-			'display-name' => 'Demo User',
-			'phone' => 'phone',
-			'address' => 'address',
-			'website' => 'website',
-			'twitter' => 'twitter',
-			'fediverse' => 'fediverse',
-			'organisation' => 'organisation',
-			'role' => 'role',
-			'headline' => 'headline',
-			'biography' => 'biography',
-			'profile_enabled' => '1',
-			'pronouns' => 'they/them',
-		];
-
-		$this->assertSame($expected, $api->getCurrentUser()->getData());
-	}
-
-
-	public function testGetCurrentUserNotLoggedIn(): void {
-		$this->expectException(OCSException::class);
-
-
-		$this->userSession->expects($this->once())->method('getUser')
-			->willReturn(null);
-
-		$this->api->getCurrentUser();
-	}
-
-	public function testGetUser(): void {
-		$loggedInUser = $this->createMock(IUser::class);
-		$loggedInUser
-			->method('getUID')
-			->willReturn('currentuser');
-		$this->userSession
-			->method('getUser')
-			->willReturn($loggedInUser);
-
-		/** @var UsersController | MockObject $api */
-		$api = $this->getMockBuilder(UsersController::class)
-			->setConstructorArgs([
-				'provisioning_api',
-				$this->request,
-				$this->userManager,
-				$this->config,
-				$this->groupManager,
-				$this->userSession,
-				$this->accountManager,
-				$this->subAdminManager,
-				$this->l10nFactory,
-				$this->rootFolder,
-				$this->urlGenerator,
-				$this->logger,
-				$this->newUserMailHelper,
-				$this->secureRandom,
-				$this->remoteWipe,
-				$this->knownUserService,
-				$this->eventDispatcher,
-				$this->phoneNumberUtil,
-				$this->appManager,
-			])
-			->onlyMethods(['getUserData'])
-			->getMock();
-
-		$expected = [
-			'id' => 'UID',
-			'enabled' => 'true',
-			'quota' => ['DummyValue'],
-			'email' => '[email protected]',
-			'phone' => 'phone',
-			'address' => 'address',
-			'website' => 'website',
-			'twitter' => 'twitter',
-			'fediverse' => 'fediverse',
-			'displayname' => 'Demo User',
-			'display-name' => 'Demo User',
-			'organisation' => 'organisation',
-			'role' => 'role',
-			'headline' => 'headline',
-			'biography' => 'biography',
-			'profile_enabled' => '1',
-			'pronouns' => 'they/them',
-		];
-
-		$api->expects($this->exactly(2))
-			->method('getUserData')
-			->willReturnMap([
-				['uid', false, $expected],
-				['currentuser', true, $expected],
-			]);
-
-		$this->assertSame($expected, $api->getUser('uid')->getData());
-
-		$this->assertSame($expected, $api->getUser('currentuser')->getData());
-	}
-
-
-	public function testResendWelcomeMessageWithNotExistingTargetUser(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(998);
-
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('NotExistingUser')
-			->willReturn(null);
-
-		$this->api->resendWelcomeMessage('NotExistingUser');
-	}
-
-
-	public function testResendWelcomeMessageAsSubAdminAndUserIsNotAccessible(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionCode(998);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('subadmin');
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToGet')
-			->willReturn($targetUser);
-		$this->groupManager
-			->expects($this->once())
-			->method('isAdmin')
-			->with('subadmin')
-			->willReturn(false);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(false);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-
-		$this->api->resendWelcomeMessage('UserToGet');
-	}
-
-
-	public function testResendWelcomeMessageNoEmail(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Email address not available');
-		$this->expectExceptionCode(101);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToGet')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('logged-user-id');
-		$targetUser
-			->expects($this->once())
-			->method('getEmailAddress')
-			->willReturn('');
-
-		$this->api->resendWelcomeMessage('UserToGet');
-	}
-
-
-	public function testResendWelcomeMessageNullEmail(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Email address not available');
-		$this->expectExceptionCode(101);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToGet')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('logged-user-id');
-		$targetUser
-			->expects($this->once())
-			->method('getEmailAddress')
-			->willReturn(null);
-
-		$this->api->resendWelcomeMessage('UserToGet');
-	}
-
-	public function testResendWelcomeMessageSuccess(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->method('getUID')
-			->willReturn('logged-user-id');
-		$targetUser
-			->method('getUID')
-			->willReturn('user-id');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToGet')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$targetUser
-			->expects($this->once())
-			->method('getEmailAddress')
-			->willReturn('[email protected]');
-		$emailTemplate = $this->createMock(IEMailTemplate::class);
-		$this->newUserMailHelper
-			->expects($this->once())
-			->method('generateTemplate')
-			->willReturn($emailTemplate);
-		$this->newUserMailHelper
-			->expects($this->once())
-			->method('sendMail')
-			->with($targetUser, $emailTemplate);
-
-		$this->api->resendWelcomeMessage('UserToGet');
-	}
-
-	public function testResendWelcomeMessageSuccessWithFallbackLanguage(): void {
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->method('getUID')
-			->willReturn('logged-user-id');
-		$targetUser
-			->method('getUID')
-			->willReturn('user-id');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToGet')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$targetUser
-			->expects($this->once())
-			->method('getEmailAddress')
-			->willReturn('[email protected]');
-		$emailTemplate = $this->createMock(IEMailTemplate::class);
-		$this->newUserMailHelper
-			->expects($this->once())
-			->method('generateTemplate')
-			->willReturn($emailTemplate);
-		$this->newUserMailHelper
-			->expects($this->once())
-			->method('sendMail')
-			->with($targetUser, $emailTemplate);
-
-		$this->api->resendWelcomeMessage('UserToGet');
-	}
-
-
-	public function testResendWelcomeMessageFailed(): void {
-		$this->expectException(OCSException::class);
-		$this->expectExceptionMessage('Sending email failed');
-		$this->expectExceptionCode(102);
-
-		$loggedInUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$targetUser = $this->getMockBuilder(IUser::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$loggedInUser
-			->expects($this->exactly(2))
-			->method('getUID')
-			->willReturn('logged-user-id');
-		$targetUser
-			->method('getUID')
-			->willReturn('user-id');
-		$this->userSession
-			->expects($this->once())
-			->method('getUser')
-			->willReturn($loggedInUser);
-		$this->userManager
-			->expects($this->once())
-			->method('get')
-			->with('UserToGet')
-			->willReturn($targetUser);
-		$subAdminManager = $this->getMockBuilder('OC\SubAdmin')
-			->disableOriginalConstructor()
-			->getMock();
-		$subAdminManager
-			->expects($this->once())
-			->method('isUserAccessible')
-			->with($loggedInUser, $targetUser)
-			->willReturn(true);
-		$this->groupManager
-			->expects($this->once())
-			->method('getSubAdmin')
-			->willReturn($subAdminManager);
-		$targetUser
-			->expects($this->once())
-			->method('getEmailAddress')
-			->willReturn('[email protected]');
-		$emailTemplate = $this->createMock(IEMailTemplate::class);
-		$this->newUserMailHelper
-			->expects($this->once())
-			->method('generateTemplate')
-			->willReturn($emailTemplate);
-		$this->newUserMailHelper
-			->expects($this->once())
-			->method('sendMail')
-			->with($targetUser, $emailTemplate)
-			->willThrowException(new \Exception());
-
-		$this->api->resendWelcomeMessage('UserToGet');
-	}
-
-
-	public static function dataGetEditableFields(): array {
-		return [
-			[false, true, ISetDisplayNameBackend::class, [
-				IAccountManager::PROPERTY_EMAIL,
-				IAccountManager::COLLECTION_EMAIL,
-				IAccountManager::PROPERTY_PHONE,
-				IAccountManager::PROPERTY_ADDRESS,
-				IAccountManager::PROPERTY_WEBSITE,
-				IAccountManager::PROPERTY_TWITTER,
-				IAccountManager::PROPERTY_FEDIVERSE,
-				IAccountManager::PROPERTY_ORGANISATION,
-				IAccountManager::PROPERTY_ROLE,
-				IAccountManager::PROPERTY_HEADLINE,
-				IAccountManager::PROPERTY_BIOGRAPHY,
-				IAccountManager::PROPERTY_PROFILE_ENABLED,
-				IAccountManager::PROPERTY_PRONOUNS,
-			]],
-			[true, false, ISetDisplayNameBackend::class, [
-				IAccountManager::PROPERTY_DISPLAYNAME,
-				IAccountManager::COLLECTION_EMAIL,
-				IAccountManager::PROPERTY_PHONE,
-				IAccountManager::PROPERTY_ADDRESS,
-				IAccountManager::PROPERTY_WEBSITE,
-				IAccountManager::PROPERTY_TWITTER,
-				IAccountManager::PROPERTY_FEDIVERSE,
-				IAccountManager::PROPERTY_ORGANISATION,
-				IAccountManager::PROPERTY_ROLE,
-				IAccountManager::PROPERTY_HEADLINE,
-				IAccountManager::PROPERTY_BIOGRAPHY,
-				IAccountManager::PROPERTY_PROFILE_ENABLED,
-				IAccountManager::PROPERTY_PRONOUNS,
-			]],
-			[true, true, ISetDisplayNameBackend::class, [
-				IAccountManager::PROPERTY_DISPLAYNAME,
-				IAccountManager::PROPERTY_EMAIL,
-				IAccountManager::COLLECTION_EMAIL,
-				IAccountManager::PROPERTY_PHONE,
-				IAccountManager::PROPERTY_ADDRESS,
-				IAccountManager::PROPERTY_WEBSITE,
-				IAccountManager::PROPERTY_TWITTER,
-				IAccountManager::PROPERTY_FEDIVERSE,
-				IAccountManager::PROPERTY_ORGANISATION,
-				IAccountManager::PROPERTY_ROLE,
-				IAccountManager::PROPERTY_HEADLINE,
-				IAccountManager::PROPERTY_BIOGRAPHY,
-				IAccountManager::PROPERTY_PROFILE_ENABLED,
-				IAccountManager::PROPERTY_PRONOUNS,
-			]],
-			[false, false, ISetDisplayNameBackend::class, [
-				IAccountManager::COLLECTION_EMAIL,
-				IAccountManager::PROPERTY_PHONE,
-				IAccountManager::PROPERTY_ADDRESS,
-				IAccountManager::PROPERTY_WEBSITE,
-				IAccountManager::PROPERTY_TWITTER,
-				IAccountManager::PROPERTY_FEDIVERSE,
-				IAccountManager::PROPERTY_ORGANISATION,
-				IAccountManager::PROPERTY_ROLE,
-				IAccountManager::PROPERTY_HEADLINE,
-				IAccountManager::PROPERTY_BIOGRAPHY,
-				IAccountManager::PROPERTY_PROFILE_ENABLED,
-				IAccountManager::PROPERTY_PRONOUNS,
-			]],
-			[false, true, UserInterface::class, [
-				IAccountManager::PROPERTY_EMAIL,
-				IAccountManager::COLLECTION_EMAIL,
-				IAccountManager::PROPERTY_PHONE,
-				IAccountManager::PROPERTY_ADDRESS,
-				IAccountManager::PROPERTY_WEBSITE,
-				IAccountManager::PROPERTY_TWITTER,
-				IAccountManager::PROPERTY_FEDIVERSE,
-				IAccountManager::PROPERTY_ORGANISATION,
-				IAccountManager::PROPERTY_ROLE,
-				IAccountManager::PROPERTY_HEADLINE,
-				IAccountManager::PROPERTY_BIOGRAPHY,
-				IAccountManager::PROPERTY_PROFILE_ENABLED,
-				IAccountManager::PROPERTY_PRONOUNS,
-			]],
-			[true, false, UserInterface::class, [
-				IAccountManager::COLLECTION_EMAIL,
-				IAccountManager::PROPERTY_PHONE,
-				IAccountManager::PROPERTY_ADDRESS,
-				IAccountManager::PROPERTY_WEBSITE,
-				IAccountManager::PROPERTY_TWITTER,
-				IAccountManager::PROPERTY_FEDIVERSE,
-				IAccountManager::PROPERTY_ORGANISATION,
-				IAccountManager::PROPERTY_ROLE,
-				IAccountManager::PROPERTY_HEADLINE,
-				IAccountManager::PROPERTY_BIOGRAPHY,
-				IAccountManager::PROPERTY_PROFILE_ENABLED,
-				IAccountManager::PROPERTY_PRONOUNS,
-			]],
-			[true, true, UserInterface::class, [
-				IAccountManager::PROPERTY_EMAIL,
-				IAccountManager::COLLECTION_EMAIL,
-				IAccountManager::PROPERTY_PHONE,
-				IAccountManager::PROPERTY_ADDRESS,
-				IAccountManager::PROPERTY_WEBSITE,
-				IAccountManager::PROPERTY_TWITTER,
-				IAccountManager::PROPERTY_FEDIVERSE,
-				IAccountManager::PROPERTY_ORGANISATION,
-				IAccountManager::PROPERTY_ROLE,
-				IAccountManager::PROPERTY_HEADLINE,
-				IAccountManager::PROPERTY_BIOGRAPHY,
-				IAccountManager::PROPERTY_PROFILE_ENABLED,
-				IAccountManager::PROPERTY_PRONOUNS,
-			]],
-			[false, false, UserInterface::class, [
-				IAccountManager::COLLECTION_EMAIL,
-				IAccountManager::PROPERTY_PHONE,
-				IAccountManager::PROPERTY_ADDRESS,
-				IAccountManager::PROPERTY_WEBSITE,
-				IAccountManager::PROPERTY_TWITTER,
-				IAccountManager::PROPERTY_FEDIVERSE,
-				IAccountManager::PROPERTY_ORGANISATION,
-				IAccountManager::PROPERTY_ROLE,
-				IAccountManager::PROPERTY_HEADLINE,
-				IAccountManager::PROPERTY_BIOGRAPHY,
-				IAccountManager::PROPERTY_PROFILE_ENABLED,
-				IAccountManager::PROPERTY_PRONOUNS,
-			]],
-		];
-	}
-
-	#[\PHPUnit\Framework\Attributes\DataProvider('dataGetEditableFields')]
-	public function testGetEditableFields(bool $allowedToChangeDisplayName, bool $allowedToChangeEmail, string $userBackend, array $expected): void {
-		$this->config->method('getSystemValue')->willReturnCallback(fn (string $key, mixed $default) => match ($key) {
-			'allow_user_to_change_display_name' => $allowedToChangeDisplayName,
-			'allow_user_to_change_email' => $allowedToChangeEmail,
-			default => throw new RuntimeException('Unexpected system config key: ' . $key),
-		});
-
-		$user = $this->createMock(IUser::class);
-		$this->userSession->method('getUser')
-			->willReturn($user);
-
-		$backend = $this->createMock($userBackend);
-
-		$user->method('getUID')
-			->willReturn('userId');
-		$user->method('getBackend')
-			->willReturn($backend);
-
-		$expectedResp = new DataResponse($expected);
-		$this->assertEquals($expectedResp, $this->api->getEditableFields('userId'));
-	}
-
-	private function mockAccount($targetUser, $accountProperties) {
-		$mockedProperties = [];
-
-		foreach ($accountProperties as $propertyName => $data) {
-			$mockedProperty = $this->createMock(IAccountProperty::class);
-			$mockedProperty->method('getValue')->willReturn($data['value'] ?? '');
-			$mockedProperty->method('getScope')->willReturn($data['scope'] ?? '');
-			$mockedProperties[] = [$propertyName, $mockedProperty];
-		}
-
-		$account = $this->createMock(IAccount::class);
-		$account->method('getProperty')
-			->willReturnMap($mockedProperties);
-
-		$this->accountManager->expects($this->any())->method('getAccount')
-			->with($targetUser)
-			->willReturn($account);
-	}
+
+        $subAdminManager = $this->createMock(SubAdmin::class);
+        $subAdminManager->expects($this->once())
+            ->method('isSubAdminOfGroup')
+            ->with($loggedInUser, $targetGroup)
+            ->willReturn(true);
+
+        $this->groupManager->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager->expects($this->once())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+
+        $this->userManager->expects($this->once())
+            ->method('get')
+            ->with('TargetUser')
+            ->willReturn($targetUser);
+
+        $this->userSession->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+
+        $this->assertEquals(new DataResponse(), $this->api->addToGroup('TargetUser', 'GroupToAddTo'));
+    }
+
+    public function testAddToGroupSuccessAsAdmin(): void {
+        $targetUser = $this->createMock(IUser::class);
+        $loggedInUser = $this->createMock(IUser::class);
+        $loggedInUser->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('admin');
+
+        $targetGroup = $this->createMock(IGroup::class);
+        $targetGroup->expects($this->once())
+            ->method('addUser')
+            ->with($targetUser);
+
+        $this->groupManager->expects($this->once())
+            ->method('get')
+            ->with('GroupToAddTo')
+            ->willReturn($targetGroup);
+
+
+        $subAdminManager = $this->createMock(SubAdmin::class);
+        $subAdminManager->expects($this->never())
+            ->method('isSubAdminOfGroup');
+
+        $this->groupManager->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager->expects($this->once())
+            ->method('isAdmin')
+            ->with('admin')
+            ->willReturn(true);
+
+        $this->userManager->expects($this->once())
+            ->method('get')
+            ->with('TargetUser')
+            ->willReturn($targetUser);
+
+        $this->userSession->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+
+        $this->assertEquals(new DataResponse(), $this->api->addToGroup('TargetUser', 'GroupToAddTo'));
+    }
+
+
+    public function testRemoveFromGroupWithNoTargetGroup(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(101);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+
+        $this->api->removeFromGroup('TargetUser', '');
+    }
+
+
+    public function testRemoveFromGroupWithEmptyTargetGroup(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(101);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+
+        $this->api->removeFromGroup('TargetUser', '');
+    }
+
+
+    public function testRemoveFromGroupWithNotExistingTargetGroup(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(102);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('TargetGroup')
+            ->willReturn(null);
+
+        $this->api->removeFromGroup('TargetUser', 'TargetGroup');
+    }
+
+
+    public function testRemoveFromGroupWithNotExistingTargetUser(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(103);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('TargetGroup')
+            ->willReturn($targetGroup);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('TargetUser')
+            ->willReturn(null);
+
+        $this->api->removeFromGroup('TargetUser', 'TargetGroup');
+    }
+
+
+    public function testRemoveFromGroupWithoutPermission(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(104);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('unauthorizedUser');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('TargetGroup')
+            ->willReturn($targetGroup);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('TargetUser')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('unauthorizedUser')
+            ->willReturn(false);
+
+        $this->api->removeFromGroup('TargetUser', 'TargetGroup');
+    }
+
+
+    public function testRemoveFromGroupAsAdminFromAdmin(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Cannot remove yourself from the admin group');
+        $this->expectExceptionCode(105);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('admin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('admin');
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $targetGroup
+            ->expects($this->once())
+            ->method('getGID')
+            ->willReturn('admin');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('admin')
+            ->willReturn($targetGroup);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('Admin')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager
+            ->expects($this->any())
+            ->method('isAdmin')
+            ->with('admin')
+            ->willReturn(true);
+
+        $this->api->removeFromGroup('Admin', 'admin');
+    }
+
+
+    public function testRemoveFromGroupAsSubAdminFromSubAdmin(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Cannot remove yourself from this group as you are a sub-admin');
+        $this->expectExceptionCode(105);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser
+            ->expects($this->once())
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $targetGroup
+            ->expects($this->any())
+            ->method('getGID')
+            ->willReturn('subadmin');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('subadmin')
+            ->willReturn($targetGroup);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('SubAdmin')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isSubAdminOfGroup')
+            ->with($loggedInUser, $targetGroup)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager
+            ->expects($this->any())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+
+        $this->api->removeFromGroup('SubAdmin', 'subadmin');
+    }
+
+
+    public function testRemoveFromGroupAsSubAdminFromLastSubAdminGroup(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Not viable to remove user from the last group you are sub-admin of');
+        $this->expectExceptionCode(105);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $targetGroup
+            ->expects($this->any())
+            ->method('getGID')
+            ->willReturn('subadmin');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('subadmin')
+            ->willReturn($targetGroup);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('AnotherUser')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isSubAdminOfGroup')
+            ->with($loggedInUser, $targetGroup)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $subAdminManager
+            ->expects($this->once())
+            ->method('getSubAdminsGroups')
+            ->with($loggedInUser)
+            ->willReturn([$targetGroup]);
+
+        $this->groupManager
+            ->expects($this->any())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getUserGroupIds')
+            ->with($targetUser)
+            ->willReturn(['subadmin', 'other group']);
+
+        $this->api->removeFromGroup('AnotherUser', 'subadmin');
+    }
+
+    public function testRemoveFromGroupSuccessful(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->any())
+            ->method('getUID')
+            ->willReturn('admin');
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('admin')
+            ->willReturn($targetGroup);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('AnotherUser')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $this->groupManager
+            ->expects($this->any())
+            ->method('isAdmin')
+            ->with('admin')
+            ->willReturn(true);
+        $targetGroup
+            ->expects($this->once())
+            ->method('removeUser')
+            ->with($targetUser);
+
+        $this->assertEquals([], $this->api->removeFromGroup('AnotherUser', 'admin')->getData());
+    }
+
+
+    public function testAddSubAdminWithNotExistingTargetUser(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('User does not exist');
+        $this->expectExceptionCode(101);
+
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('NotExistingUser')
+            ->willReturn(null);
+
+        $this->api->addSubAdmin('NotExistingUser', '');
+    }
+
+
+    public function testAddSubAdminWithNotExistingTargetGroup(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Group does not exist');
+        $this->expectExceptionCode(102);
+
+
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('ExistingUser')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('NotExistingGroup')
+            ->willReturn(null);
+
+        $this->api->addSubAdmin('ExistingUser', 'NotExistingGroup');
+    }
+
+
+    public function testAddSubAdminToAdminGroup(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Cannot create sub-admins for admin group');
+        $this->expectExceptionCode(103);
+
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $targetGroup
+            ->expects($this->once())
+            ->method('getGID')
+            ->willReturn('admin');
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('ExistingUser')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('ADmiN')
+            ->willReturn($targetGroup);
+
+        $this->api->addSubAdmin('ExistingUser', 'ADmiN');
+    }
+
+    public function testAddSubAdminTwice(): void {
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('ExistingUser')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('TargetGroup')
+            ->willReturn($targetGroup);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isSubAdminOfGroup')
+            ->with($targetUser, $targetGroup)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+
+        $this->assertEquals([], $this->api->addSubAdmin('ExistingUser', 'TargetGroup')->getData());
+    }
+
+    public function testAddSubAdminSuccessful(): void {
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('ExistingUser')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('TargetGroup')
+            ->willReturn($targetGroup);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isSubAdminOfGroup')
+            ->with($targetUser, $targetGroup)
+            ->willReturn(false);
+        $subAdminManager
+            ->expects($this->once())
+            ->method('createSubAdmin')
+            ->with($targetUser, $targetGroup);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+
+        $this->assertEquals([], $this->api->addSubAdmin('ExistingUser', 'TargetGroup')->getData());
+    }
+
+
+    public function testRemoveSubAdminNotExistingTargetUser(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('User does not exist');
+        $this->expectExceptionCode(101);
+
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('NotExistingUser')
+            ->willReturn(null);
+
+        $this->api->removeSubAdmin('NotExistingUser', 'GroupToDeleteFrom');
+    }
+
+
+    public function testRemoveSubAdminNotExistingTargetGroup(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Group does not exist');
+        $this->expectExceptionCode(101);
+
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('ExistingUser')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('GroupToDeleteFrom')
+            ->willReturn(null);
+
+        $this->api->removeSubAdmin('ExistingUser', 'GroupToDeleteFrom');
+    }
+
+
+
+    public function testRemoveSubAdminFromNotASubadmin(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('User is not a sub-admin of this group');
+        $this->expectExceptionCode(102);
+
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('ExistingUser')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('GroupToDeleteFrom')
+            ->willReturn($targetGroup);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isSubAdminOfGroup')
+            ->with($targetUser, $targetGroup)
+            ->willReturn(false);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+
+        $this->api->removeSubAdmin('ExistingUser', 'GroupToDeleteFrom');
+    }
+
+    public function testRemoveSubAdminSuccessful(): void {
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('ExistingUser')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('GroupToDeleteFrom')
+            ->willReturn($targetGroup);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isSubAdminOfGroup')
+            ->with($targetUser, $targetGroup)
+            ->willReturn(true);
+        $subAdminManager
+            ->expects($this->once())
+            ->method('deleteSubAdmin')
+            ->with($targetUser, $targetGroup);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+
+        $this->assertEquals([], $this->api->removeSubAdmin('ExistingUser', 'GroupToDeleteFrom')->getData());
+    }
+
+
+    public function testGetUserSubAdminGroupsNotExistingTargetUser(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('User does not exist');
+        $this->expectExceptionCode(404);
+
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('RequestedUser')
+            ->willReturn(null);
+
+        $this->api->getUserSubAdminGroups('RequestedUser');
+    }
+
+    public function testGetUserSubAdminGroupsWithGroups(): void {
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetGroup = $this->getMockBuilder('\OCP\IGroup')->disableOriginalConstructor()->getMock();
+        $targetGroup
+            ->expects($this->once())
+            ->method('getGID')
+            ->willReturn('TargetGroup');
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('RequestedUser')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('getSubAdminsGroups')
+            ->with($targetUser)
+            ->willReturn([$targetGroup]);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+
+        $this->assertEquals(['TargetGroup'], $this->api->getUserSubAdminGroups('RequestedUser')->getData());
+    }
+
+    public function testEnableUser(): void {
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser->expects($this->once())
+            ->method('setEnabled')
+            ->with(true);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('RequestedUser')
+            ->willReturn($targetUser);
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->exactly(3))
+            ->method('getUID')
+            ->willReturn('admin');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->willReturn(true);
+
+        $this->assertEquals([], $this->api->enableUser('RequestedUser')->getData());
+    }
+
+    public function testDisableUser(): void {
+        $targetUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $targetUser->expects($this->once())
+            ->method('setEnabled')
+            ->with(false);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('RequestedUser')
+            ->willReturn($targetUser);
+        $loggedInUser = $this->getMockBuilder(IUser::class)->disableOriginalConstructor()->getMock();
+        $loggedInUser
+            ->expects($this->exactly(3))
+            ->method('getUID')
+            ->willReturn('admin');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->willReturn(true);
+
+        $this->assertEquals([], $this->api->disableUser('RequestedUser')->getData());
+    }
+
+    public function testGetCurrentUserLoggedIn(): void {
+        $user = $this->createMock(IUser::class);
+        $user->expects($this->once())->method('getUID')->willReturn('UID');
+
+        $this->userSession->expects($this->once())->method('getUser')
+            ->willReturn($user);
+
+        /** @var UsersController | MockObject $api */
+        $api = $this->getMockBuilder(UsersController::class)
+            ->setConstructorArgs([
+                'provisioning_api',
+                $this->request,
+                $this->userManager,
+                $this->config,
+                $this->groupManager,
+                $this->userSession,
+                $this->accountManager,
+                $this->subAdminManager,
+                $this->l10nFactory,
+                $this->rootFolder,
+                $this->urlGenerator,
+                $this->logger,
+                $this->newUserMailHelper,
+                $this->secureRandom,
+                $this->remoteWipe,
+                $this->knownUserService,
+                $this->eventDispatcher,
+                $this->phoneNumberUtil,
+                $this->appManager,
+            ])
+            ->onlyMethods(['getUserData'])
+            ->getMock();
+
+        $api->expects($this->once())->method('getUserData')->with('UID', true)
+            ->willReturn(
+                [
+                    'id' => 'UID',
+                    'enabled' => 'true',
+                    'quota' => ['DummyValue'],
+                    'email' => '[email protected]',
+                    'displayname' => 'Demo User',
+                    'display-name' => 'Demo User',
+                    'phone' => 'phone',
+                    'address' => 'address',
+                    'website' => 'website',
+                    'twitter' => 'twitter',
+                    'fediverse' => 'fediverse',
+                    'organisation' => 'organisation',
+                    'role' => 'role',
+                    'headline' => 'headline',
+                    'biography' => 'biography',
+                    'profile_enabled' => '1',
+                    'pronouns' => 'they/them',
+                ]
+            );
+
+        $expected = [
+            'id' => 'UID',
+            'enabled' => 'true',
+            'quota' => ['DummyValue'],
+            'email' => '[email protected]',
+            'displayname' => 'Demo User',
+            'display-name' => 'Demo User',
+            'phone' => 'phone',
+            'address' => 'address',
+            'website' => 'website',
+            'twitter' => 'twitter',
+            'fediverse' => 'fediverse',
+            'organisation' => 'organisation',
+            'role' => 'role',
+            'headline' => 'headline',
+            'biography' => 'biography',
+            'profile_enabled' => '1',
+            'pronouns' => 'they/them',
+        ];
+
+        $this->assertSame($expected, $api->getCurrentUser()->getData());
+    }
+
+
+    public function testGetCurrentUserNotLoggedIn(): void {
+        $this->expectException(OCSException::class);
+
+
+        $this->userSession->expects($this->once())->method('getUser')
+            ->willReturn(null);
+
+        $this->api->getCurrentUser();
+    }
+
+    public function testGetUser(): void {
+        $loggedInUser = $this->createMock(IUser::class);
+        $loggedInUser
+            ->method('getUID')
+            ->willReturn('currentuser');
+        $this->userSession
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+
+        /** @var UsersController | MockObject $api */
+        $api = $this->getMockBuilder(UsersController::class)
+            ->setConstructorArgs([
+                'provisioning_api',
+                $this->request,
+                $this->userManager,
+                $this->config,
+                $this->groupManager,
+                $this->userSession,
+                $this->accountManager,
+                $this->subAdminManager,
+                $this->l10nFactory,
+                $this->rootFolder,
+                $this->urlGenerator,
+                $this->logger,
+                $this->newUserMailHelper,
+                $this->secureRandom,
+                $this->remoteWipe,
+                $this->knownUserService,
+                $this->eventDispatcher,
+                $this->phoneNumberUtil,
+                $this->appManager,
+            ])
+            ->onlyMethods(['getUserData'])
+            ->getMock();
+
+        $expected = [
+            'id' => 'UID',
+            'enabled' => 'true',
+            'quota' => ['DummyValue'],
+            'email' => '[email protected]',
+            'phone' => 'phone',
+            'address' => 'address',
+            'website' => 'website',
+            'twitter' => 'twitter',
+            'fediverse' => 'fediverse',
+            'displayname' => 'Demo User',
+            'display-name' => 'Demo User',
+            'organisation' => 'organisation',
+            'role' => 'role',
+            'headline' => 'headline',
+            'biography' => 'biography',
+            'profile_enabled' => '1',
+            'pronouns' => 'they/them',
+        ];
+
+        $api->expects($this->exactly(2))
+            ->method('getUserData')
+            ->willReturnMap([
+                ['uid', false, $expected],
+                ['currentuser', true, $expected],
+            ]);
+
+        $this->assertSame($expected, $api->getUser('uid')->getData());
+
+        $this->assertSame($expected, $api->getUser('currentuser')->getData());
+    }
+
+
+    public function testResendWelcomeMessageWithNotExistingTargetUser(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(998);
+
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('NotExistingUser')
+            ->willReturn(null);
+
+        $this->api->resendWelcomeMessage('NotExistingUser');
+    }
+
+
+    public function testResendWelcomeMessageAsSubAdminAndUserIsNotAccessible(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionCode(998);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('subadmin');
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToGet')
+            ->willReturn($targetUser);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('isAdmin')
+            ->with('subadmin')
+            ->willReturn(false);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(false);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+
+        $this->api->resendWelcomeMessage('UserToGet');
+    }
+
+
+    public function testResendWelcomeMessageNoEmail(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Email address not available');
+        $this->expectExceptionCode(101);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToGet')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('logged-user-id');
+        $targetUser
+            ->expects($this->once())
+            ->method('getEmailAddress')
+            ->willReturn('');
+
+        $this->api->resendWelcomeMessage('UserToGet');
+    }
+
+
+    public function testResendWelcomeMessageNullEmail(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Email address not available');
+        $this->expectExceptionCode(101);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToGet')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('logged-user-id');
+        $targetUser
+            ->expects($this->once())
+            ->method('getEmailAddress')
+            ->willReturn(null);
+
+        $this->api->resendWelcomeMessage('UserToGet');
+    }
+
+    public function testResendWelcomeMessageSuccess(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->method('getUID')
+            ->willReturn('logged-user-id');
+        $targetUser
+            ->method('getUID')
+            ->willReturn('user-id');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToGet')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $targetUser
+            ->expects($this->once())
+            ->method('getEmailAddress')
+            ->willReturn('[email protected]');
+        $emailTemplate = $this->createMock(IEMailTemplate::class);
+        $this->newUserMailHelper
+            ->expects($this->once())
+            ->method('generateTemplate')
+            ->willReturn($emailTemplate);
+        $this->newUserMailHelper
+            ->expects($this->once())
+            ->method('sendMail')
+            ->with($targetUser, $emailTemplate);
+
+        $this->api->resendWelcomeMessage('UserToGet');
+    }
+
+    public function testResendWelcomeMessageSuccessWithFallbackLanguage(): void {
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->method('getUID')
+            ->willReturn('logged-user-id');
+        $targetUser
+            ->method('getUID')
+            ->willReturn('user-id');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToGet')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $targetUser
+            ->expects($this->once())
+            ->method('getEmailAddress')
+            ->willReturn('[email protected]');
+        $emailTemplate = $this->createMock(IEMailTemplate::class);
+        $this->newUserMailHelper
+            ->expects($this->once())
+            ->method('generateTemplate')
+            ->willReturn($emailTemplate);
+        $this->newUserMailHelper
+            ->expects($this->once())
+            ->method('sendMail')
+            ->with($targetUser, $emailTemplate);
+
+        $this->api->resendWelcomeMessage('UserToGet');
+    }
+
+
+    public function testResendWelcomeMessageFailed(): void {
+        $this->expectException(OCSException::class);
+        $this->expectExceptionMessage('Sending email failed');
+        $this->expectExceptionCode(102);
+
+        $loggedInUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $targetUser = $this->getMockBuilder(IUser::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $loggedInUser
+            ->expects($this->exactly(2))
+            ->method('getUID')
+            ->willReturn('logged-user-id');
+        $targetUser
+            ->method('getUID')
+            ->willReturn('user-id');
+        $this->userSession
+            ->expects($this->once())
+            ->method('getUser')
+            ->willReturn($loggedInUser);
+        $this->userManager
+            ->expects($this->once())
+            ->method('get')
+            ->with('UserToGet')
+            ->willReturn($targetUser);
+        $subAdminManager = $this->getMockBuilder('OC\SubAdmin')
+            ->disableOriginalConstructor()
+            ->getMock();
+        $subAdminManager
+            ->expects($this->once())
+            ->method('isUserAccessible')
+            ->with($loggedInUser, $targetUser)
+            ->willReturn(true);
+        $this->groupManager
+            ->expects($this->once())
+            ->method('getSubAdmin')
+            ->willReturn($subAdminManager);
+        $targetUser
+            ->expects($this->once())
+            ->method('getEmailAddress')
+            ->willReturn('[email protected]');
+        $emailTemplate = $this->createMock(IEMailTemplate::class);
+        $this->newUserMailHelper
+            ->expects($this->once())
+            ->method('generateTemplate')
+            ->willReturn($emailTemplate);
+        $this->newUserMailHelper
+            ->expects($this->once())
+            ->method('sendMail')
+            ->with($targetUser, $emailTemplate)
+            ->willThrowException(new \Exception());
+
+        $this->api->resendWelcomeMessage('UserToGet');
+    }
+
+
+    public static function dataGetEditableFields(): array {
+        return [
+            [false, true, ISetDisplayNameBackend::class, [
+                IAccountManager::PROPERTY_EMAIL,
+                IAccountManager::COLLECTION_EMAIL,
+                IAccountManager::PROPERTY_PHONE,
+                IAccountManager::PROPERTY_ADDRESS,
+                IAccountManager::PROPERTY_WEBSITE,
+                IAccountManager::PROPERTY_TWITTER,
+                IAccountManager::PROPERTY_FEDIVERSE,
+                IAccountManager::PROPERTY_ORGANISATION,
+                IAccountManager::PROPERTY_ROLE,
+                IAccountManager::PROPERTY_HEADLINE,
+                IAccountManager::PROPERTY_BIOGRAPHY,
+                IAccountManager::PROPERTY_PROFILE_ENABLED,
+                IAccountManager::PROPERTY_PRONOUNS,
+            ]],
+            [true, false, ISetDisplayNameBackend::class, [
+                IAccountManager::PROPERTY_DISPLAYNAME,
+                IAccountManager::COLLECTION_EMAIL,
+                IAccountManager::PROPERTY_PHONE,
+                IAccountManager::PROPERTY_ADDRESS,
+                IAccountManager::PROPERTY_WEBSITE,
+                IAccountManager::PROPERTY_TWITTER,
+                IAccountManager::PROPERTY_FEDIVERSE,
+                IAccountManager::PROPERTY_ORGANISATION,
+                IAccountManager::PROPERTY_ROLE,
+                IAccountManager::PROPERTY_HEADLINE,
+                IAccountManager::PROPERTY_BIOGRAPHY,
+                IAccountManager::PROPERTY_PROFILE_ENABLED,
+                IAccountManager::PROPERTY_PRONOUNS,
+            ]],
+            [true, true, ISetDisplayNameBackend::class, [
+                IAccountManager::PROPERTY_DISPLAYNAME,
+                IAccountManager::PROPERTY_EMAIL,
+                IAccountManager::COLLECTION_EMAIL,
+                IAccountManager::PROPERTY_PHONE,
+                IAccountManager::PROPERTY_ADDRESS,
+                IAccountManager::PROPERTY_WEBSITE,
+                IAccountManager::PROPERTY_TWITTER,
+                IAccountManager::PROPERTY_FEDIVERSE,
+                IAccountManager::PROPERTY_ORGANISATION,
+                IAccountManager::PROPERTY_ROLE,
+                IAccountManager::PROPERTY_HEADLINE,
+                IAccountManager::PROPERTY_BIOGRAPHY,
+                IAccountManager::PROPERTY_PROFILE_ENABLED,
+                IAccountManager::PROPERTY_PRONOUNS,
+            ]],
+            [false, false, ISetDisplayNameBackend::class, [
+                IAccountManager::COLLECTION_EMAIL,
+                IAccountManager::PROPERTY_PHONE,
+                IAccountManager::PROPERTY_ADDRESS,
+                IAccountManager::PROPERTY_WEBSITE,
+                IAccountManager::PROPERTY_TWITTER,
+                IAccountManager::PROPERTY_FEDIVERSE,
+                IAccountManager::PROPERTY_ORGANISATION,
+                IAccountManager::PROPERTY_ROLE,
+                IAccountManager::PROPERTY_HEADLINE,
+                IAccountManager::PROPERTY_BIOGRAPHY,
+                IAccountManager::PROPERTY_PROFILE_ENABLED,
+                IAccountManager::PROPERTY_PRONOUNS,
+            ]],
+            [false, true, UserInterface::class, [
+                IAccountManager::PROPERTY_EMAIL,
+                IAccountManager::COLLECTION_EMAIL,
+                IAccountManager::PROPERTY_PHONE,
+                IAccountManager::PROPERTY_ADDRESS,
+                IAccountManager::PROPERTY_WEBSITE,
+                IAccountManager::PROPERTY_TWITTER,
+                IAccountManager::PROPERTY_FEDIVERSE,
+                IAccountManager::PROPERTY_ORGANISATION,
+                IAccountManager::PROPERTY_ROLE,
+                IAccountManager::PROPERTY_HEADLINE,
+                IAccountManager::PROPERTY_BIOGRAPHY,
+                IAccountManager::PROPERTY_PROFILE_ENABLED,
+                IAccountManager::PROPERTY_PRONOUNS,
+            ]],
+            [true, false, UserInterface::class, [
+                IAccountManager::COLLECTION_EMAIL,
+                IAccountManager::PROPERTY_PHONE,
+                IAccountManager::PROPERTY_ADDRESS,
+                IAccountManager::PROPERTY_WEBSITE,
+                IAccountManager::PROPERTY_TWITTER,
+                IAccountManager::PROPERTY_FEDIVERSE,
+                IAccountManager::PROPERTY_ORGANISATION,
+                IAccountManager::PROPERTY_ROLE,
+                IAccountManager::PROPERTY_HEADLINE,
+                IAccountManager::PROPERTY_BIOGRAPHY,
+                IAccountManager::PROPERTY_PROFILE_ENABLED,
+                IAccountManager::PROPERTY_PRONOUNS,
+            ]],
+            [true, true, UserInterface::class, [
+                IAccountManager::PROPERTY_EMAIL,
+                IAccountManager::COLLECTION_EMAIL,
+                IAccountManager::PROPERTY_PHONE,
+                IAccountManager::PROPERTY_ADDRESS,
+                IAccountManager::PROPERTY_WEBSITE,
+                IAccountManager::PROPERTY_TWITTER,
+                IAccountManager::PROPERTY_FEDIVERSE,
+                IAccountManager::PROPERTY_ORGANISATION,
+                IAccountManager::PROPERTY_ROLE,
+                IAccountManager::PROPERTY_HEADLINE,
+                IAccountManager::PROPERTY_BIOGRAPHY,
+                IAccountManager::PROPERTY_PROFILE_ENABLED,
+                IAccountManager::PROPERTY_PRONOUNS,
+            ]],
+            [false, false, UserInterface::class, [
+                IAccountManager::COLLECTION_EMAIL,
+                IAccountManager::PROPERTY_PHONE,
+                IAccountManager::PROPERTY_ADDRESS,
+                IAccountManager::PROPERTY_WEBSITE,
+                IAccountManager::PROPERTY_TWITTER,
+                IAccountManager::PROPERTY_FEDIVERSE,
+                IAccountManager::PROPERTY_ORGANISATION,
+                IAccountManager::PROPERTY_ROLE,
+                IAccountManager::PROPERTY_HEADLINE,
+                IAccountManager::PROPERTY_BIOGRAPHY,
+                IAccountManager::PROPERTY_PROFILE_ENABLED,
+                IAccountManager::PROPERTY_PRONOUNS,
+            ]],
+        ];
+    }
+
+    #[\PHPUnit\Framework\Attributes\DataProvider('dataGetEditableFields')]
+    public function testGetEditableFields(bool $allowedToChangeDisplayName, bool $allowedToChangeEmail, string $userBackend, array $expected): void {
+        $this->config->method('getSystemValue')->willReturnCallback(fn (string $key, mixed $default) => match ($key) {
+            'allow_user_to_change_display_name' => $allowedToChangeDisplayName,
+            'allow_user_to_change_email' => $allowedToChangeEmail,
+            default => throw new RuntimeException('Unexpected system config key: ' . $key),
+        });
+
+        $user = $this->createMock(IUser::class);
+        $this->userSession->method('getUser')
+            ->willReturn($user);
+
+        $backend = $this->createMock($userBackend);
+
+        $user->method('getUID')
+            ->willReturn('userId');
+        $user->method('getBackend')
+            ->willReturn($backend);
+
+        $expectedResp = new DataResponse($expected);
+        $this->assertEquals($expectedResp, $this->api->getEditableFields('userId'));
+    }
+
+    private function mockAccount($targetUser, $accountProperties) {
+        $mockedProperties = [];
+
+        foreach ($accountProperties as $propertyName => $data) {
+            $mockedProperty = $this->createMock(IAccountProperty::class);
+            $mockedProperty->method('getValue')->willReturn($data['value'] ?? '');
+            $mockedProperty->method('getScope')->willReturn($data['scope'] ?? '');
+            $mockedProperties[] = [$propertyName, $mockedProperty];
+        }
+
+        $account = $this->createMock(IAccount::class);
+        $account->method('getProperty')
+            ->willReturnMap($mockedProperties);
+
+        $this->accountManager->expects($this->any())->method('getAccount')
+            ->with($targetUser)
+            ->willReturn($account);
+    }
 }

Please login to merge, or discard this patch.

core/Command/User/Setting.php 1 patch

Indentation +224 added lines, -224 removed lines patch added patch discarded remove patch

@@ -18,247 +18,247 @@
 block discarded – undo
 use Symfony\Component\Console\Output\OutputInterface;
 
 class Setting extends Base {
-	public function __construct(
-		protected IUserManager $userManager,
-		protected IConfig $config,
-	) {
-		parent::__construct();
-	}
+    public function __construct(
+        protected IUserManager $userManager,
+        protected IConfig $config,
+    ) {
+        parent::__construct();
+    }
 
-	protected function configure() {
-		parent::configure();
-		$this
-			->setName('user:setting')
-			->setDescription('Read and modify user settings')
-			->addArgument(
-				'uid',
-				InputArgument::REQUIRED,
-				'Account ID used to login'
-			)
-			->addArgument(
-				'app',
-				InputArgument::OPTIONAL,
-				'Restrict the settings to a given app',
-				''
-			)
-			->addArgument(
-				'key',
-				InputArgument::OPTIONAL,
-				'Setting key to set, get or delete',
-				''
-			)
-			->addOption(
-				'ignore-missing-user',
-				null,
-				InputOption::VALUE_NONE,
-				'Use this option to ignore errors when the user does not exist'
-			)
+    protected function configure() {
+        parent::configure();
+        $this
+            ->setName('user:setting')
+            ->setDescription('Read and modify user settings')
+            ->addArgument(
+                'uid',
+                InputArgument::REQUIRED,
+                'Account ID used to login'
+            )
+            ->addArgument(
+                'app',
+                InputArgument::OPTIONAL,
+                'Restrict the settings to a given app',
+                ''
+            )
+            ->addArgument(
+                'key',
+                InputArgument::OPTIONAL,
+                'Setting key to set, get or delete',
+                ''
+            )
+            ->addOption(
+                'ignore-missing-user',
+                null,
+                InputOption::VALUE_NONE,
+                'Use this option to ignore errors when the user does not exist'
+            )
 
-			// Get
-			->addOption(
-				'default-value',
-				null,
-				InputOption::VALUE_REQUIRED,
-				'(Only applicable on get) If no default value is set and the config does not exist, the command will exit with 1'
-			)
+            // Get
+            ->addOption(
+                'default-value',
+                null,
+                InputOption::VALUE_REQUIRED,
+                '(Only applicable on get) If no default value is set and the config does not exist, the command will exit with 1'
+            )
 
-			// Set
-			->addArgument(
-				'value',
-				InputArgument::OPTIONAL,
-				'The new value of the setting',
-				null
-			)
-			->addOption(
-				'update-only',
-				null,
-				InputOption::VALUE_NONE,
-				'Only updates the value, if it is not set before, it is not being added'
-			)
+            // Set
+            ->addArgument(
+                'value',
+                InputArgument::OPTIONAL,
+                'The new value of the setting',
+                null
+            )
+            ->addOption(
+                'update-only',
+                null,
+                InputOption::VALUE_NONE,
+                'Only updates the value, if it is not set before, it is not being added'
+            )
 
-			// Delete
-			->addOption(
-				'delete',
-				null,
-				InputOption::VALUE_NONE,
-				'Specify this option to delete the config'
-			)
-			->addOption(
-				'error-if-not-exists',
-				null,
-				InputOption::VALUE_NONE,
-				'Checks whether the setting exists before deleting it'
-			)
-		;
-	}
+            // Delete
+            ->addOption(
+                'delete',
+                null,
+                InputOption::VALUE_NONE,
+                'Specify this option to delete the config'
+            )
+            ->addOption(
+                'error-if-not-exists',
+                null,
+                InputOption::VALUE_NONE,
+                'Checks whether the setting exists before deleting it'
+            )
+        ;
+    }
 
-	protected function checkInput(InputInterface $input) {
-		if (!$input->getOption('ignore-missing-user')) {
-			$uid = $input->getArgument('uid');
-			$user = $this->userManager->get($uid);
-			if (!$user) {
-				throw new \InvalidArgumentException('The user "' . $uid . '" does not exist.');
-			}
-			// normalize uid
-			$input->setArgument('uid', $user->getUID());
-		}
+    protected function checkInput(InputInterface $input) {
+        if (!$input->getOption('ignore-missing-user')) {
+            $uid = $input->getArgument('uid');
+            $user = $this->userManager->get($uid);
+            if (!$user) {
+                throw new \InvalidArgumentException('The user "' . $uid . '" does not exist.');
+            }
+            // normalize uid
+            $input->setArgument('uid', $user->getUID());
+        }
 
-		if ($input->getArgument('key') === '' && $input->hasParameterOption('--default-value')) {
-			throw new \InvalidArgumentException('The "default-value" option can only be used when specifying a key.');
-		}
+        if ($input->getArgument('key') === '' && $input->hasParameterOption('--default-value')) {
+            throw new \InvalidArgumentException('The "default-value" option can only be used when specifying a key.');
+        }
 
-		if ($input->getArgument('key') === '' && $input->getArgument('value') !== null) {
-			throw new \InvalidArgumentException('The value argument can only be used when specifying a key.');
-		}
-		if ($input->getArgument('value') !== null && $input->hasParameterOption('--default-value')) {
-			throw new \InvalidArgumentException('The value argument can not be used together with "default-value".');
-		}
-		if ($input->getOption('update-only') && $input->getArgument('value') === null) {
-			throw new \InvalidArgumentException('The "update-only" option can only be used together with "value".');
-		}
+        if ($input->getArgument('key') === '' && $input->getArgument('value') !== null) {
+            throw new \InvalidArgumentException('The value argument can only be used when specifying a key.');
+        }
+        if ($input->getArgument('value') !== null && $input->hasParameterOption('--default-value')) {
+            throw new \InvalidArgumentException('The value argument can not be used together with "default-value".');
+        }
+        if ($input->getOption('update-only') && $input->getArgument('value') === null) {
+            throw new \InvalidArgumentException('The "update-only" option can only be used together with "value".');
+        }
 
-		if ($input->getArgument('key') === '' && $input->getOption('delete')) {
-			throw new \InvalidArgumentException('The "delete" option can only be used when specifying a key.');
-		}
-		if ($input->getOption('delete') && $input->hasParameterOption('--default-value')) {
-			throw new \InvalidArgumentException('The "delete" option can not be used together with "default-value".');
-		}
-		if ($input->getOption('delete') && $input->getArgument('value') !== null) {
-			throw new \InvalidArgumentException('The "delete" option can not be used together with "value".');
-		}
-		if ($input->getOption('error-if-not-exists') && !$input->getOption('delete')) {
-			throw new \InvalidArgumentException('The "error-if-not-exists" option can only be used together with "delete".');
-		}
-	}
+        if ($input->getArgument('key') === '' && $input->getOption('delete')) {
+            throw new \InvalidArgumentException('The "delete" option can only be used when specifying a key.');
+        }
+        if ($input->getOption('delete') && $input->hasParameterOption('--default-value')) {
+            throw new \InvalidArgumentException('The "delete" option can not be used together with "default-value".');
+        }
+        if ($input->getOption('delete') && $input->getArgument('value') !== null) {
+            throw new \InvalidArgumentException('The "delete" option can not be used together with "value".');
+        }
+        if ($input->getOption('error-if-not-exists') && !$input->getOption('delete')) {
+            throw new \InvalidArgumentException('The "error-if-not-exists" option can only be used together with "delete".');
+        }
+    }
 
-	protected function execute(InputInterface $input, OutputInterface $output): int {
-		try {
-			$this->checkInput($input);
-		} catch (\InvalidArgumentException $e) {
-			$output->writeln('<error>' . $e->getMessage() . '</error>');
-			return 1;
-		}
+    protected function execute(InputInterface $input, OutputInterface $output): int {
+        try {
+            $this->checkInput($input);
+        } catch (\InvalidArgumentException $e) {
+            $output->writeln('<error>' . $e->getMessage() . '</error>');
+            return 1;
+        }
 
-		$uid = $input->getArgument('uid');
-		$app = $input->getArgument('app');
-		$key = $input->getArgument('key');
+        $uid = $input->getArgument('uid');
+        $app = $input->getArgument('app');
+        $key = $input->getArgument('key');
 
-		if ($key !== '') {
-			$value = $this->config->getUserValue($uid, $app, $key, null);
-			if ($input->getArgument('value') !== null) {
-				if ($input->hasParameterOption('--update-only') && $value === null) {
-					$output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
-					return 1;
-				}
+        if ($key !== '') {
+            $value = $this->config->getUserValue($uid, $app, $key, null);
+            if ($input->getArgument('value') !== null) {
+                if ($input->hasParameterOption('--update-only') && $value === null) {
+                    $output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
+                    return 1;
+                }
 
-				if ($app === 'settings' && in_array($key, ['email', 'display_name'])) {
-					$user = $this->userManager->get($uid);
-					if ($user instanceof IUser) {
-						if ($key === 'email') {
-							$email = $input->getArgument('value');
-							$user->setSystemEMailAddress(mb_strtolower(trim($email)));
-						} elseif ($key === 'display_name') {
-							if (!$user->setDisplayName($input->getArgument('value'))) {
-								if ($user->getDisplayName() === $input->getArgument('value')) {
-									$output->writeln('<error>New and old display name are the same</error>');
-								} elseif ($input->getArgument('value') === '') {
-									$output->writeln('<error>New display name can\'t be empty</error>');
-								} else {
-									$output->writeln('<error>Could not set display name</error>');
-								}
-								return 1;
-							}
-						}
-						// setEmailAddress and setDisplayName both internally set the value
-						return 0;
-					}
-				}
+                if ($app === 'settings' && in_array($key, ['email', 'display_name'])) {
+                    $user = $this->userManager->get($uid);
+                    if ($user instanceof IUser) {
+                        if ($key === 'email') {
+                            $email = $input->getArgument('value');
+                            $user->setSystemEMailAddress(mb_strtolower(trim($email)));
+                        } elseif ($key === 'display_name') {
+                            if (!$user->setDisplayName($input->getArgument('value'))) {
+                                if ($user->getDisplayName() === $input->getArgument('value')) {
+                                    $output->writeln('<error>New and old display name are the same</error>');
+                                } elseif ($input->getArgument('value') === '') {
+                                    $output->writeln('<error>New display name can\'t be empty</error>');
+                                } else {
+                                    $output->writeln('<error>Could not set display name</error>');
+                                }
+                                return 1;
+                            }
+                        }
+                        // setEmailAddress and setDisplayName both internally set the value
+                        return 0;
+                    }
+                }
 
-				$this->config->setUserValue($uid, $app, $key, $input->getArgument('value'));
-				return 0;
-			} elseif ($input->hasParameterOption('--delete')) {
-				if ($input->hasParameterOption('--error-if-not-exists') && $value === null) {
-					$output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
-					return 1;
-				}
+                $this->config->setUserValue($uid, $app, $key, $input->getArgument('value'));
+                return 0;
+            } elseif ($input->hasParameterOption('--delete')) {
+                if ($input->hasParameterOption('--error-if-not-exists') && $value === null) {
+                    $output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
+                    return 1;
+                }
 
-				if ($app === 'settings' && in_array($key, ['email', 'display_name'])) {
-					$user = $this->userManager->get($uid);
-					if ($user instanceof IUser) {
-						if ($key === 'email') {
-							$user->setEMailAddress('');
-							// setEmailAddress already deletes the value
-							return 0;
-						} elseif ($key === 'display_name') {
-							$output->writeln('<error>Display name can\'t be deleted.</error>');
-							return 1;
-						}
-					}
-				}
+                if ($app === 'settings' && in_array($key, ['email', 'display_name'])) {
+                    $user = $this->userManager->get($uid);
+                    if ($user instanceof IUser) {
+                        if ($key === 'email') {
+                            $user->setEMailAddress('');
+                            // setEmailAddress already deletes the value
+                            return 0;
+                        } elseif ($key === 'display_name') {
+                            $output->writeln('<error>Display name can\'t be deleted.</error>');
+                            return 1;
+                        }
+                    }
+                }
 
-				$this->config->deleteUserValue($uid, $app, $key);
-				return 0;
-			} elseif ($value !== null) {
-				$output->writeln($value);
-				return 0;
-			} elseif ($input->hasParameterOption('--default-value')) {
-				$output->writeln($input->getOption('default-value'));
-				return 0;
-			} else {
-				if ($app === 'settings' && $key === 'display_name') {
-					$user = $this->userManager->get($uid);
-					$output->writeln($user->getDisplayName());
-					return 0;
-				}
-				$output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
-				return 1;
-			}
-		} else {
-			$settings = $this->getUserSettings($uid, $app);
-			$this->writeArrayInOutputFormat($input, $output, $settings);
-			return 0;
-		}
-	}
+                $this->config->deleteUserValue($uid, $app, $key);
+                return 0;
+            } elseif ($value !== null) {
+                $output->writeln($value);
+                return 0;
+            } elseif ($input->hasParameterOption('--default-value')) {
+                $output->writeln($input->getOption('default-value'));
+                return 0;
+            } else {
+                if ($app === 'settings' && $key === 'display_name') {
+                    $user = $this->userManager->get($uid);
+                    $output->writeln($user->getDisplayName());
+                    return 0;
+                }
+                $output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
+                return 1;
+            }
+        } else {
+            $settings = $this->getUserSettings($uid, $app);
+            $this->writeArrayInOutputFormat($input, $output, $settings);
+            return 0;
+        }
+    }
 
-	protected function getUserSettings(string $uid, string $app): array {
-		$settings = $this->config->getAllUserValues($uid);
-		if ($app !== '') {
-			if (isset($settings[$app])) {
-				$settings = [$app => $settings[$app]];
-			} else {
-				$settings = [];
-			}
-		}
+    protected function getUserSettings(string $uid, string $app): array {
+        $settings = $this->config->getAllUserValues($uid);
+        if ($app !== '') {
+            if (isset($settings[$app])) {
+                $settings = [$app => $settings[$app]];
+            } else {
+                $settings = [];
+            }
+        }
 
-		$user = $this->userManager->get($uid);
-		if ($user !== null) {
-			// Only add the display name if the user exists
-			$settings['settings']['display_name'] = $user->getDisplayName();
-		}
+        $user = $this->userManager->get($uid);
+        if ($user !== null) {
+            // Only add the display name if the user exists
+            $settings['settings']['display_name'] = $user->getDisplayName();
+        }
 
-		return $settings;
-	}
+        return $settings;
+    }
 
-	/**
-	 * @param string $argumentName
-	 * @param CompletionContext $context
-	 * @return string[]
-	 */
-	public function completeArgumentValues($argumentName, CompletionContext $context) {
-		if ($argumentName === 'uid') {
-			return array_map(static fn (IUser $user) => $user->getUID(), $this->userManager->search($context->getCurrentWord()));
-		}
-		if ($argumentName === 'app') {
-			$userId = $context->getWordAtIndex($context->getWordIndex() - 1);
-			$settings = $this->getUserSettings($userId, '');
-			return array_keys($settings);
-		}
-		if ($argumentName === 'key') {
-			$userId = $context->getWordAtIndex($context->getWordIndex() - 2);
-			$app = $context->getWordAtIndex($context->getWordIndex() - 1);
-			$settings = $this->getUserSettings($userId, $app);
-			return array_keys($settings[$app]);
-		}
-		return [];
-	}
+    /**
+     * @param string $argumentName
+     * @param CompletionContext $context
+     * @return string[]
+     */
+    public function completeArgumentValues($argumentName, CompletionContext $context) {
+        if ($argumentName === 'uid') {
+            return array_map(static fn (IUser $user) => $user->getUID(), $this->userManager->search($context->getCurrentWord()));
+        }
+        if ($argumentName === 'app') {
+            $userId = $context->getWordAtIndex($context->getWordIndex() - 1);
+            $settings = $this->getUserSettings($userId, '');
+            return array_keys($settings);
+        }
+        if ($argumentName === 'key') {
+            $userId = $context->getWordAtIndex($context->getWordIndex() - 2);
+            $app = $context->getWordAtIndex($context->getWordIndex() - 1);
+            $settings = $this->getUserSettings($userId, $app);
+            return array_keys($settings[$app]);
+        }
+        return [];
+    }
 }

Please login to merge, or discard this patch.

		@@ -18,247 +18,247 @@
		block discarded – undo
18	18	use Symfony\Component\Console\Output\OutputInterface;
19	19
20	20	class Setting extends Base {
21		- public function __construct(
22		- protected IUserManager $userManager,
23		- protected IConfig $config,
24		- ) {
25		- parent::__construct();
26		- }
	21	+ public function __construct(
	22	+ protected IUserManager $userManager,
	23	+ protected IConfig $config,
	24	+ ) {
	25	+ parent::__construct();
	26	+ }
27	27
28		- protected function configure() {
29		- parent::configure();
30		- $this
31		- ->setName('user:setting')
32		- ->setDescription('Read and modify user settings')
33		- ->addArgument(
34		- 'uid',
35		- InputArgument::REQUIRED,
36		- 'Account ID used to login'
37		- )
38		- ->addArgument(
39		- 'app',
40		- InputArgument::OPTIONAL,
41		- 'Restrict the settings to a given app',
42		- ''
43		- )
44		- ->addArgument(
45		- 'key',
46		- InputArgument::OPTIONAL,
47		- 'Setting key to set, get or delete',
48		- ''
49		- )
50		- ->addOption(
51		- 'ignore-missing-user',
52		- null,
53		- InputOption::VALUE_NONE,
54		- 'Use this option to ignore errors when the user does not exist'
55		- )
	28	+ protected function configure() {
	29	+ parent::configure();
	30	+ $this
	31	+ ->setName('user:setting')
	32	+ ->setDescription('Read and modify user settings')
	33	+ ->addArgument(
	34	+ 'uid',
	35	+ InputArgument::REQUIRED,
	36	+ 'Account ID used to login'
	37	+ )
	38	+ ->addArgument(
	39	+ 'app',
	40	+ InputArgument::OPTIONAL,
	41	+ 'Restrict the settings to a given app',
	42	+ ''
	43	+ )
	44	+ ->addArgument(
	45	+ 'key',
	46	+ InputArgument::OPTIONAL,
	47	+ 'Setting key to set, get or delete',
	48	+ ''
	49	+ )
	50	+ ->addOption(
	51	+ 'ignore-missing-user',
	52	+ null,
	53	+ InputOption::VALUE_NONE,
	54	+ 'Use this option to ignore errors when the user does not exist'
	55	+ )
56	56
57		- // Get
58		- ->addOption(
59		- 'default-value',
60		- null,
61		- InputOption::VALUE_REQUIRED,
62		- '(Only applicable on get) If no default value is set and the config does not exist, the command will exit with 1'
63		- )
	57	+ // Get
	58	+ ->addOption(
	59	+ 'default-value',
	60	+ null,
	61	+ InputOption::VALUE_REQUIRED,
	62	+ '(Only applicable on get) If no default value is set and the config does not exist, the command will exit with 1'
	63	+ )
64	64
65		- // Set
66		- ->addArgument(
67		- 'value',
68		- InputArgument::OPTIONAL,
69		- 'The new value of the setting',
70		- null
71		- )
72		- ->addOption(
73		- 'update-only',
74		- null,
75		- InputOption::VALUE_NONE,
76		- 'Only updates the value, if it is not set before, it is not being added'
77		- )
	65	+ // Set
	66	+ ->addArgument(
	67	+ 'value',
	68	+ InputArgument::OPTIONAL,
	69	+ 'The new value of the setting',
	70	+ null
	71	+ )
	72	+ ->addOption(
	73	+ 'update-only',
	74	+ null,
	75	+ InputOption::VALUE_NONE,
	76	+ 'Only updates the value, if it is not set before, it is not being added'
	77	+ )
78	78
79		- // Delete
80		- ->addOption(
81		- 'delete',
82		- null,
83		- InputOption::VALUE_NONE,
84		- 'Specify this option to delete the config'
85		- )
86		- ->addOption(
87		- 'error-if-not-exists',
88		- null,
89		- InputOption::VALUE_NONE,
90		- 'Checks whether the setting exists before deleting it'
91		- )
92		- ;
93		- }
	79	+ // Delete
	80	+ ->addOption(
	81	+ 'delete',
	82	+ null,
	83	+ InputOption::VALUE_NONE,
	84	+ 'Specify this option to delete the config'
	85	+ )
	86	+ ->addOption(
	87	+ 'error-if-not-exists',
	88	+ null,
	89	+ InputOption::VALUE_NONE,
	90	+ 'Checks whether the setting exists before deleting it'
	91	+ )
	92	+ ;
	93	+ }
94	94
95		- protected function checkInput(InputInterface $input) {
96		- if (!$input->getOption('ignore-missing-user')) {
97		- $uid = $input->getArgument('uid');
98		- $user = $this->userManager->get($uid);
99		- if (!$user) {
100		- throw new \InvalidArgumentException('The user "' . $uid . '" does not exist.');
101		- }
102		- // normalize uid
103		- $input->setArgument('uid', $user->getUID());
104		- }
	95	+ protected function checkInput(InputInterface $input) {
	96	+ if (!$input->getOption('ignore-missing-user')) {
	97	+ $uid = $input->getArgument('uid');
	98	+ $user = $this->userManager->get($uid);
	99	+ if (!$user) {
	100	+ throw new \InvalidArgumentException('The user "' . $uid . '" does not exist.');
	101	+ }
	102	+ // normalize uid
	103	+ $input->setArgument('uid', $user->getUID());
	104	+ }
105	105
106		- if ($input->getArgument('key') === '' && $input->hasParameterOption('--default-value')) {
107		- throw new \InvalidArgumentException('The "default-value" option can only be used when specifying a key.');
108		- }
	106	+ if ($input->getArgument('key') === '' && $input->hasParameterOption('--default-value')) {
	107	+ throw new \InvalidArgumentException('The "default-value" option can only be used when specifying a key.');
	108	+ }
109	109
110		- if ($input->getArgument('key') === '' && $input->getArgument('value') !== null) {
111		- throw new \InvalidArgumentException('The value argument can only be used when specifying a key.');
112		- }
113		- if ($input->getArgument('value') !== null && $input->hasParameterOption('--default-value')) {
114		- throw new \InvalidArgumentException('The value argument can not be used together with "default-value".');
115		- }
116		- if ($input->getOption('update-only') && $input->getArgument('value') === null) {
117		- throw new \InvalidArgumentException('The "update-only" option can only be used together with "value".');
118		- }
	110	+ if ($input->getArgument('key') === '' && $input->getArgument('value') !== null) {
	111	+ throw new \InvalidArgumentException('The value argument can only be used when specifying a key.');
	112	+ }
	113	+ if ($input->getArgument('value') !== null && $input->hasParameterOption('--default-value')) {
	114	+ throw new \InvalidArgumentException('The value argument can not be used together with "default-value".');
	115	+ }
	116	+ if ($input->getOption('update-only') && $input->getArgument('value') === null) {
	117	+ throw new \InvalidArgumentException('The "update-only" option can only be used together with "value".');
	118	+ }
119	119
120		- if ($input->getArgument('key') === '' && $input->getOption('delete')) {
121		- throw new \InvalidArgumentException('The "delete" option can only be used when specifying a key.');
122		- }
123		- if ($input->getOption('delete') && $input->hasParameterOption('--default-value')) {
124		- throw new \InvalidArgumentException('The "delete" option can not be used together with "default-value".');
125		- }
126		- if ($input->getOption('delete') && $input->getArgument('value') !== null) {
127		- throw new \InvalidArgumentException('The "delete" option can not be used together with "value".');
128		- }
129		- if ($input->getOption('error-if-not-exists') && !$input->getOption('delete')) {
130		- throw new \InvalidArgumentException('The "error-if-not-exists" option can only be used together with "delete".');
131		- }
132		- }
	120	+ if ($input->getArgument('key') === '' && $input->getOption('delete')) {
	121	+ throw new \InvalidArgumentException('The "delete" option can only be used when specifying a key.');
	122	+ }
	123	+ if ($input->getOption('delete') && $input->hasParameterOption('--default-value')) {
	124	+ throw new \InvalidArgumentException('The "delete" option can not be used together with "default-value".');
	125	+ }
	126	+ if ($input->getOption('delete') && $input->getArgument('value') !== null) {
	127	+ throw new \InvalidArgumentException('The "delete" option can not be used together with "value".');
	128	+ }
	129	+ if ($input->getOption('error-if-not-exists') && !$input->getOption('delete')) {
	130	+ throw new \InvalidArgumentException('The "error-if-not-exists" option can only be used together with "delete".');
	131	+ }
	132	+ }
133	133
134		- protected function execute(InputInterface $input, OutputInterface $output): int {
135		- try {
136		- $this->checkInput($input);
137		- } catch (\InvalidArgumentException $e) {
138		- $output->writeln('<error>' . $e->getMessage() . '</error>');
139		- return 1;
140		- }
	134	+ protected function execute(InputInterface $input, OutputInterface $output): int {
	135	+ try {
	136	+ $this->checkInput($input);
	137	+ } catch (\InvalidArgumentException $e) {
	138	+ $output->writeln('<error>' . $e->getMessage() . '</error>');
	139	+ return 1;
	140	+ }
141	141
142		- $uid = $input->getArgument('uid');
143		- $app = $input->getArgument('app');
144		- $key = $input->getArgument('key');
	142	+ $uid = $input->getArgument('uid');
	143	+ $app = $input->getArgument('app');
	144	+ $key = $input->getArgument('key');
145	145
146		- if ($key !== '') {
147		- $value = $this->config->getUserValue($uid, $app, $key, null);
148		- if ($input->getArgument('value') !== null) {
149		- if ($input->hasParameterOption('--update-only') && $value === null) {
150		- $output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
151		- return 1;
152		- }
	146	+ if ($key !== '') {
	147	+ $value = $this->config->getUserValue($uid, $app, $key, null);
	148	+ if ($input->getArgument('value') !== null) {
	149	+ if ($input->hasParameterOption('--update-only') && $value === null) {
	150	+ $output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
	151	+ return 1;
	152	+ }
153	153
154		- if ($app === 'settings' && in_array($key, ['email', 'display_name'])) {
155		- $user = $this->userManager->get($uid);
156		- if ($user instanceof IUser) {
157		- if ($key === 'email') {
158		- $email = $input->getArgument('value');
159		- $user->setSystemEMailAddress(mb_strtolower(trim($email)));
160		- } elseif ($key === 'display_name') {
161		- if (!$user->setDisplayName($input->getArgument('value'))) {
162		- if ($user->getDisplayName() === $input->getArgument('value')) {
163		- $output->writeln('<error>New and old display name are the same</error>');
164		- } elseif ($input->getArgument('value') === '') {
165		- $output->writeln('<error>New display name can\'t be empty</error>');
166		- } else {
167		- $output->writeln('<error>Could not set display name</error>');
168		- }
169		- return 1;
170		- }
171		- }
172		- // setEmailAddress and setDisplayName both internally set the value
173		- return 0;
174		- }
175		- }
	154	+ if ($app === 'settings' && in_array($key, ['email', 'display_name'])) {
	155	+ $user = $this->userManager->get($uid);
	156	+ if ($user instanceof IUser) {
	157	+ if ($key === 'email') {
	158	+ $email = $input->getArgument('value');
	159	+ $user->setSystemEMailAddress(mb_strtolower(trim($email)));
	160	+ } elseif ($key === 'display_name') {
	161	+ if (!$user->setDisplayName($input->getArgument('value'))) {
	162	+ if ($user->getDisplayName() === $input->getArgument('value')) {
	163	+ $output->writeln('<error>New and old display name are the same</error>');
	164	+ } elseif ($input->getArgument('value') === '') {
	165	+ $output->writeln('<error>New display name can\'t be empty</error>');
	166	+ } else {
	167	+ $output->writeln('<error>Could not set display name</error>');
	168	+ }
	169	+ return 1;
	170	+ }
	171	+ }
	172	+ // setEmailAddress and setDisplayName both internally set the value
	173	+ return 0;
	174	+ }
	175	+ }
176	176
177		- $this->config->setUserValue($uid, $app, $key, $input->getArgument('value'));
178		- return 0;
179		- } elseif ($input->hasParameterOption('--delete')) {
180		- if ($input->hasParameterOption('--error-if-not-exists') && $value === null) {
181		- $output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
182		- return 1;
183		- }
	177	+ $this->config->setUserValue($uid, $app, $key, $input->getArgument('value'));
	178	+ return 0;
	179	+ } elseif ($input->hasParameterOption('--delete')) {
	180	+ if ($input->hasParameterOption('--error-if-not-exists') && $value === null) {
	181	+ $output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
	182	+ return 1;
	183	+ }
184	184
185		- if ($app === 'settings' && in_array($key, ['email', 'display_name'])) {
186		- $user = $this->userManager->get($uid);
187		- if ($user instanceof IUser) {
188		- if ($key === 'email') {
189		- $user->setEMailAddress('');
190		- // setEmailAddress already deletes the value
191		- return 0;
192		- } elseif ($key === 'display_name') {
193		- $output->writeln('<error>Display name can\'t be deleted.</error>');
194		- return 1;
195		- }
196		- }
197		- }
	185	+ if ($app === 'settings' && in_array($key, ['email', 'display_name'])) {
	186	+ $user = $this->userManager->get($uid);
	187	+ if ($user instanceof IUser) {
	188	+ if ($key === 'email') {
	189	+ $user->setEMailAddress('');
	190	+ // setEmailAddress already deletes the value
	191	+ return 0;
	192	+ } elseif ($key === 'display_name') {
	193	+ $output->writeln('<error>Display name can\'t be deleted.</error>');
	194	+ return 1;
	195	+ }
	196	+ }
	197	+ }
198	198
199		- $this->config->deleteUserValue($uid, $app, $key);
200		- return 0;
201		- } elseif ($value !== null) {
202		- $output->writeln($value);
203		- return 0;
204		- } elseif ($input->hasParameterOption('--default-value')) {
205		- $output->writeln($input->getOption('default-value'));
206		- return 0;
207		- } else {
208		- if ($app === 'settings' && $key === 'display_name') {
209		- $user = $this->userManager->get($uid);
210		- $output->writeln($user->getDisplayName());
211		- return 0;
212		- }
213		- $output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
214		- return 1;
215		- }
216		- } else {
217		- $settings = $this->getUserSettings($uid, $app);
218		- $this->writeArrayInOutputFormat($input, $output, $settings);
219		- return 0;
220		- }
221		- }
	199	+ $this->config->deleteUserValue($uid, $app, $key);
	200	+ return 0;
	201	+ } elseif ($value !== null) {
	202	+ $output->writeln($value);
	203	+ return 0;
	204	+ } elseif ($input->hasParameterOption('--default-value')) {
	205	+ $output->writeln($input->getOption('default-value'));
	206	+ return 0;
	207	+ } else {
	208	+ if ($app === 'settings' && $key === 'display_name') {
	209	+ $user = $this->userManager->get($uid);
	210	+ $output->writeln($user->getDisplayName());
	211	+ return 0;
	212	+ }
	213	+ $output->writeln('<error>The setting does not exist for user "' . $uid . '".</error>');
	214	+ return 1;
	215	+ }
	216	+ } else {
	217	+ $settings = $this->getUserSettings($uid, $app);
	218	+ $this->writeArrayInOutputFormat($input, $output, $settings);
	219	+ return 0;
	220	+ }
	221	+ }
222	222
223		- protected function getUserSettings(string $uid, string $app): array {
224		- $settings = $this->config->getAllUserValues($uid);
225		- if ($app !== '') {
226		- if (isset($settings[$app])) {
227		- $settings = [$app => $settings[$app]];
228		- } else {
229		- $settings = [];
230		- }
231		- }
	223	+ protected function getUserSettings(string $uid, string $app): array {
	224	+ $settings = $this->config->getAllUserValues($uid);
	225	+ if ($app !== '') {
	226	+ if (isset($settings[$app])) {
	227	+ $settings = [$app => $settings[$app]];
	228	+ } else {
	229	+ $settings = [];
	230	+ }
	231	+ }
232	232
233		- $user = $this->userManager->get($uid);
234		- if ($user !== null) {
235		- // Only add the display name if the user exists
236		- $settings['settings']['display_name'] = $user->getDisplayName();
237		- }
	233	+ $user = $this->userManager->get($uid);
	234	+ if ($user !== null) {
	235	+ // Only add the display name if the user exists
	236	+ $settings['settings']['display_name'] = $user->getDisplayName();
	237	+ }
238	238
239		- return $settings;
240		- }
	239	+ return $settings;
	240	+ }
241	241
242		- /**
243		- * @param string $argumentName
244		- * @param CompletionContext $context
245		- * @return string[]
246		- */
247		- public function completeArgumentValues($argumentName, CompletionContext $context) {
248		- if ($argumentName === 'uid') {
249		- return array_map(static fn (IUser $user) => $user->getUID(), $this->userManager->search($context->getCurrentWord()));
250		- }
251		- if ($argumentName === 'app') {
252		- $userId = $context->getWordAtIndex($context->getWordIndex() - 1);
253		- $settings = $this->getUserSettings($userId, '');
254		- return array_keys($settings);
255		- }
256		- if ($argumentName === 'key') {
257		- $userId = $context->getWordAtIndex($context->getWordIndex() - 2);
258		- $app = $context->getWordAtIndex($context->getWordIndex() - 1);
259		- $settings = $this->getUserSettings($userId, $app);
260		- return array_keys($settings[$app]);
261		- }
262		- return [];
263		- }
	242	+ /**
	243	+ * @param string $argumentName
	244	+ * @param CompletionContext $context
	245	+ * @return string[]
	246	+ */
	247	+ public function completeArgumentValues($argumentName, CompletionContext $context) {
	248	+ if ($argumentName === 'uid') {
	249	+ return array_map(static fn (IUser $user) => $user->getUID(), $this->userManager->search($context->getCurrentWord()));
	250	+ }
	251	+ if ($argumentName === 'app') {
	252	+ $userId = $context->getWordAtIndex($context->getWordIndex() - 1);
	253	+ $settings = $this->getUserSettings($userId, '');
	254	+ return array_keys($settings);
	255	+ }
	256	+ if ($argumentName === 'key') {
	257	+ $userId = $context->getWordAtIndex($context->getWordIndex() - 2);
	258	+ $app = $context->getWordAtIndex($context->getWordIndex() - 1);
	259	+ $settings = $this->getUserSettings($userId, $app);
	260	+ return array_keys($settings[$app]);
	261	+ }
	262	+ return [];
	263	+ }
264	264	}

nextcloud / server

Push — master ( db4450...1bc190 )

Status

Category

Indentation +628 added lines, -628 removed lines patch added patch discarded remove patch

Indentation +1743 added lines, -1743 removed lines patch added patch discarded remove patch

Indentation +283 added lines, -283 removed lines patch added patch discarded remove patch

Indentation +4390 added lines, -4390 removed lines patch added patch discarded remove patch

Indentation +224 added lines, -224 removed lines patch added patch discarded remove patch