nextcloud /
server
@@ -33,7 +33,6 @@ |
||
| 33 | 33 | use OC\Accounts\AccountManager; |
| 34 | 34 | use OC\AppFramework\Http; |
| 35 | 35 | use OC\ForbiddenException; |
| 36 | -use OC\User\User; |
|
| 37 | 36 | use OCP\App\IAppManager; |
| 38 | 37 | use OCP\AppFramework\Controller; |
| 39 | 38 | use OCP\AppFramework\Http\DataResponse; |
@@ -57,810 +57,810 @@ |
||
| 57 | 57 | * @package OC\Settings\Controller |
| 58 | 58 | */ |
| 59 | 59 | class UsersController extends Controller { |
| 60 | - /** @var IL10N */ |
|
| 61 | - private $l10n; |
|
| 62 | - /** @var IUserSession */ |
|
| 63 | - private $userSession; |
|
| 64 | - /** @var bool */ |
|
| 65 | - private $isAdmin; |
|
| 66 | - /** @var IUserManager */ |
|
| 67 | - private $userManager; |
|
| 68 | - /** @var IGroupManager */ |
|
| 69 | - private $groupManager; |
|
| 70 | - /** @var IConfig */ |
|
| 71 | - private $config; |
|
| 72 | - /** @var ILogger */ |
|
| 73 | - private $log; |
|
| 74 | - /** @var \OC_Defaults */ |
|
| 75 | - private $defaults; |
|
| 76 | - /** @var IMailer */ |
|
| 77 | - private $mailer; |
|
| 78 | - /** @var string */ |
|
| 79 | - private $fromMailAddress; |
|
| 80 | - /** @var IURLGenerator */ |
|
| 81 | - private $urlGenerator; |
|
| 82 | - /** @var bool contains the state of the encryption app */ |
|
| 83 | - private $isEncryptionAppEnabled; |
|
| 84 | - /** @var bool contains the state of the admin recovery setting */ |
|
| 85 | - private $isRestoreEnabled = false; |
|
| 86 | - /** @var IAvatarManager */ |
|
| 87 | - private $avatarManager; |
|
| 88 | - /** @var AccountManager */ |
|
| 89 | - private $accountManager; |
|
| 90 | - /** @var ISecureRandom */ |
|
| 91 | - private $secureRandom; |
|
| 92 | - /** @var ITimeFactory */ |
|
| 93 | - private $timeFactory; |
|
| 94 | - /** @var ICrypto */ |
|
| 95 | - private $crypto; |
|
| 96 | - |
|
| 97 | - |
|
| 98 | - /** |
|
| 99 | - * @param string $appName |
|
| 100 | - * @param IRequest $request |
|
| 101 | - * @param IUserManager $userManager |
|
| 102 | - * @param IGroupManager $groupManager |
|
| 103 | - * @param IUserSession $userSession |
|
| 104 | - * @param IConfig $config |
|
| 105 | - * @param bool $isAdmin |
|
| 106 | - * @param IL10N $l10n |
|
| 107 | - * @param ILogger $log |
|
| 108 | - * @param \OC_Defaults $defaults |
|
| 109 | - * @param IMailer $mailer |
|
| 110 | - * @param string $fromMailAddress |
|
| 111 | - * @param IURLGenerator $urlGenerator |
|
| 112 | - * @param IAppManager $appManager |
|
| 113 | - * @param IAvatarManager $avatarManager |
|
| 114 | - * @param AccountManager $accountManager |
|
| 115 | - * @param ISecureRandom $secureRandom |
|
| 116 | - * @param ITimeFactory $timeFactory |
|
| 117 | - * @param ICrypto $crypto |
|
| 118 | - */ |
|
| 119 | - public function __construct($appName, |
|
| 120 | - IRequest $request, |
|
| 121 | - IUserManager $userManager, |
|
| 122 | - IGroupManager $groupManager, |
|
| 123 | - IUserSession $userSession, |
|
| 124 | - IConfig $config, |
|
| 125 | - $isAdmin, |
|
| 126 | - IL10N $l10n, |
|
| 127 | - ILogger $log, |
|
| 128 | - \OC_Defaults $defaults, |
|
| 129 | - IMailer $mailer, |
|
| 130 | - $fromMailAddress, |
|
| 131 | - IURLGenerator $urlGenerator, |
|
| 132 | - IAppManager $appManager, |
|
| 133 | - IAvatarManager $avatarManager, |
|
| 134 | - AccountManager $accountManager, |
|
| 135 | - ISecureRandom $secureRandom, |
|
| 136 | - ITimeFactory $timeFactory, |
|
| 137 | - ICrypto $crypto) { |
|
| 138 | - parent::__construct($appName, $request); |
|
| 139 | - $this->userManager = $userManager; |
|
| 140 | - $this->groupManager = $groupManager; |
|
| 141 | - $this->userSession = $userSession; |
|
| 142 | - $this->config = $config; |
|
| 143 | - $this->isAdmin = $isAdmin; |
|
| 144 | - $this->l10n = $l10n; |
|
| 145 | - $this->log = $log; |
|
| 146 | - $this->defaults = $defaults; |
|
| 147 | - $this->mailer = $mailer; |
|
| 148 | - $this->fromMailAddress = $fromMailAddress; |
|
| 149 | - $this->urlGenerator = $urlGenerator; |
|
| 150 | - $this->avatarManager = $avatarManager; |
|
| 151 | - $this->accountManager = $accountManager; |
|
| 152 | - $this->secureRandom = $secureRandom; |
|
| 153 | - $this->timeFactory = $timeFactory; |
|
| 154 | - $this->crypto = $crypto; |
|
| 155 | - |
|
| 156 | - // check for encryption state - TODO see formatUserForIndex |
|
| 157 | - $this->isEncryptionAppEnabled = $appManager->isEnabledForUser('encryption'); |
|
| 158 | - if($this->isEncryptionAppEnabled) { |
|
| 159 | - // putting this directly in empty is possible in PHP 5.5+ |
|
| 160 | - $result = $config->getAppValue('encryption', 'recoveryAdminEnabled', 0); |
|
| 161 | - $this->isRestoreEnabled = !empty($result); |
|
| 162 | - } |
|
| 163 | - } |
|
| 164 | - |
|
| 165 | - /** |
|
| 166 | - * @param IUser $user |
|
| 167 | - * @param array $userGroups |
|
| 168 | - * @return array |
|
| 169 | - */ |
|
| 170 | - private function formatUserForIndex(IUser $user, array $userGroups = null) { |
|
| 171 | - |
|
| 172 | - // TODO: eliminate this encryption specific code below and somehow |
|
| 173 | - // hook in additional user info from other apps |
|
| 174 | - |
|
| 175 | - // recovery isn't possible if admin or user has it disabled and encryption |
|
| 176 | - // is enabled - so we eliminate the else paths in the conditional tree |
|
| 177 | - // below |
|
| 178 | - $restorePossible = false; |
|
| 179 | - |
|
| 180 | - if ($this->isEncryptionAppEnabled) { |
|
| 181 | - if ($this->isRestoreEnabled) { |
|
| 182 | - // check for the users recovery setting |
|
| 183 | - $recoveryMode = $this->config->getUserValue($user->getUID(), 'encryption', 'recoveryEnabled', '0'); |
|
| 184 | - // method call inside empty is possible with PHP 5.5+ |
|
| 185 | - $recoveryModeEnabled = !empty($recoveryMode); |
|
| 186 | - if ($recoveryModeEnabled) { |
|
| 187 | - // user also has recovery mode enabled |
|
| 188 | - $restorePossible = true; |
|
| 189 | - } |
|
| 190 | - } |
|
| 191 | - } else { |
|
| 192 | - // recovery is possible if encryption is disabled (plain files are |
|
| 193 | - // available) |
|
| 194 | - $restorePossible = true; |
|
| 195 | - } |
|
| 196 | - |
|
| 197 | - $subAdminGroups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($user); |
|
| 198 | - foreach($subAdminGroups as $key => $subAdminGroup) { |
|
| 199 | - $subAdminGroups[$key] = $subAdminGroup->getGID(); |
|
| 200 | - } |
|
| 201 | - |
|
| 202 | - $displayName = $user->getEMailAddress(); |
|
| 203 | - if (is_null($displayName)) { |
|
| 204 | - $displayName = ''; |
|
| 205 | - } |
|
| 206 | - |
|
| 207 | - $avatarAvailable = false; |
|
| 208 | - try { |
|
| 209 | - $avatarAvailable = $this->avatarManager->getAvatar($user->getUID())->exists(); |
|
| 210 | - } catch (\Exception $e) { |
|
| 211 | - //No avatar yet |
|
| 212 | - } |
|
| 213 | - |
|
| 214 | - return [ |
|
| 215 | - 'name' => $user->getUID(), |
|
| 216 | - 'displayname' => $user->getDisplayName(), |
|
| 217 | - 'groups' => (empty($userGroups)) ? $this->groupManager->getUserGroupIds($user) : $userGroups, |
|
| 218 | - 'subadmin' => $subAdminGroups, |
|
| 219 | - 'quota' => $user->getQuota(), |
|
| 220 | - 'storageLocation' => $user->getHome(), |
|
| 221 | - 'lastLogin' => $user->getLastLogin() * 1000, |
|
| 222 | - 'backend' => $user->getBackendClassName(), |
|
| 223 | - 'email' => $displayName, |
|
| 224 | - 'isRestoreDisabled' => !$restorePossible, |
|
| 225 | - 'isAvatarAvailable' => $avatarAvailable, |
|
| 226 | - ]; |
|
| 227 | - } |
|
| 228 | - |
|
| 229 | - /** |
|
| 230 | - * @param array $userIDs Array with schema [$uid => $displayName] |
|
| 231 | - * @return IUser[] |
|
| 232 | - */ |
|
| 233 | - private function getUsersForUID(array $userIDs) { |
|
| 234 | - $users = []; |
|
| 235 | - foreach ($userIDs as $uid => $displayName) { |
|
| 236 | - $users[$uid] = $this->userManager->get($uid); |
|
| 237 | - } |
|
| 238 | - return $users; |
|
| 239 | - } |
|
| 240 | - |
|
| 241 | - /** |
|
| 242 | - * @NoAdminRequired |
|
| 243 | - * |
|
| 244 | - * @param int $offset |
|
| 245 | - * @param int $limit |
|
| 246 | - * @param string $gid GID to filter for |
|
| 247 | - * @param string $pattern Pattern to search for in the username |
|
| 248 | - * @param string $backend Backend to filter for (class-name) |
|
| 249 | - * @return DataResponse |
|
| 250 | - * |
|
| 251 | - * TODO: Tidy up and write unit tests - code is mainly static method calls |
|
| 252 | - */ |
|
| 253 | - public function index($offset = 0, $limit = 10, $gid = '', $pattern = '', $backend = '') { |
|
| 254 | - // FIXME: The JS sends the group '_everyone' instead of no GID for the "all users" group. |
|
| 255 | - if($gid === '_everyone') { |
|
| 256 | - $gid = ''; |
|
| 257 | - } |
|
| 258 | - |
|
| 259 | - // Remove backends |
|
| 260 | - if(!empty($backend)) { |
|
| 261 | - $activeBackends = $this->userManager->getBackends(); |
|
| 262 | - $this->userManager->clearBackends(); |
|
| 263 | - foreach($activeBackends as $singleActiveBackend) { |
|
| 264 | - if($backend === get_class($singleActiveBackend)) { |
|
| 265 | - $this->userManager->registerBackend($singleActiveBackend); |
|
| 266 | - break; |
|
| 267 | - } |
|
| 268 | - } |
|
| 269 | - } |
|
| 270 | - |
|
| 271 | - $users = []; |
|
| 272 | - if ($this->isAdmin) { |
|
| 273 | - |
|
| 274 | - if($gid !== '') { |
|
| 275 | - $batch = $this->getUsersForUID($this->groupManager->displayNamesInGroup($gid, $pattern, $limit, $offset)); |
|
| 276 | - } else { |
|
| 277 | - $batch = $this->userManager->search($pattern, $limit, $offset); |
|
| 278 | - } |
|
| 279 | - |
|
| 280 | - foreach ($batch as $user) { |
|
| 281 | - $users[] = $this->formatUserForIndex($user); |
|
| 282 | - } |
|
| 283 | - |
|
| 284 | - } else { |
|
| 285 | - $subAdminOfGroups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($this->userSession->getUser()); |
|
| 286 | - // New class returns IGroup[] so convert back |
|
| 287 | - $gids = []; |
|
| 288 | - foreach ($subAdminOfGroups as $group) { |
|
| 289 | - $gids[] = $group->getGID(); |
|
| 290 | - } |
|
| 291 | - $subAdminOfGroups = $gids; |
|
| 292 | - |
|
| 293 | - // Set the $gid parameter to an empty value if the subadmin has no rights to access a specific group |
|
| 294 | - if($gid !== '' && !in_array($gid, $subAdminOfGroups)) { |
|
| 295 | - $gid = ''; |
|
| 296 | - } |
|
| 297 | - |
|
| 298 | - // Batch all groups the user is subadmin of when a group is specified |
|
| 299 | - $batch = []; |
|
| 300 | - if($gid === '') { |
|
| 301 | - foreach($subAdminOfGroups as $group) { |
|
| 302 | - $groupUsers = $this->groupManager->displayNamesInGroup($group, $pattern, $limit, $offset); |
|
| 303 | - |
|
| 304 | - foreach($groupUsers as $uid => $displayName) { |
|
| 305 | - $batch[$uid] = $displayName; |
|
| 306 | - } |
|
| 307 | - } |
|
| 308 | - } else { |
|
| 309 | - $batch = $this->groupManager->displayNamesInGroup($gid, $pattern, $limit, $offset); |
|
| 310 | - } |
|
| 311 | - $batch = $this->getUsersForUID($batch); |
|
| 312 | - |
|
| 313 | - foreach ($batch as $user) { |
|
| 314 | - // Only add the groups, this user is a subadmin of |
|
| 315 | - $userGroups = array_values(array_intersect( |
|
| 316 | - $this->groupManager->getUserGroupIds($user), |
|
| 317 | - $subAdminOfGroups |
|
| 318 | - )); |
|
| 319 | - $users[] = $this->formatUserForIndex($user, $userGroups); |
|
| 320 | - } |
|
| 321 | - } |
|
| 322 | - |
|
| 323 | - return new DataResponse($users); |
|
| 324 | - } |
|
| 325 | - |
|
| 326 | - /** |
|
| 327 | - * @NoAdminRequired |
|
| 328 | - * @PasswordConfirmationRequired |
|
| 329 | - * |
|
| 330 | - * @param string $username |
|
| 331 | - * @param string $password |
|
| 332 | - * @param array $groups |
|
| 333 | - * @param string $email |
|
| 334 | - * @return DataResponse |
|
| 335 | - */ |
|
| 336 | - public function create($username, $password, array $groups=array(), $email='') { |
|
| 337 | - if($email !== '' && !$this->mailer->validateMailAddress($email)) { |
|
| 338 | - return new DataResponse( |
|
| 339 | - array( |
|
| 340 | - 'message' => (string)$this->l10n->t('Invalid mail address') |
|
| 341 | - ), |
|
| 342 | - Http::STATUS_UNPROCESSABLE_ENTITY |
|
| 343 | - ); |
|
| 344 | - } |
|
| 345 | - |
|
| 346 | - $currentUser = $this->userSession->getUser(); |
|
| 347 | - |
|
| 348 | - if (!$this->isAdmin) { |
|
| 349 | - if (!empty($groups)) { |
|
| 350 | - foreach ($groups as $key => $group) { |
|
| 351 | - $groupObject = $this->groupManager->get($group); |
|
| 352 | - if($groupObject === null) { |
|
| 353 | - unset($groups[$key]); |
|
| 354 | - continue; |
|
| 355 | - } |
|
| 356 | - |
|
| 357 | - if (!$this->groupManager->getSubAdmin()->isSubAdminofGroup($currentUser, $groupObject)) { |
|
| 358 | - unset($groups[$key]); |
|
| 359 | - } |
|
| 360 | - } |
|
| 361 | - } |
|
| 362 | - |
|
| 363 | - if (empty($groups)) { |
|
| 364 | - return new DataResponse( |
|
| 365 | - array( |
|
| 366 | - 'message' => $this->l10n->t('No valid group selected'), |
|
| 367 | - ), |
|
| 368 | - Http::STATUS_FORBIDDEN |
|
| 369 | - ); |
|
| 370 | - } |
|
| 371 | - } |
|
| 372 | - |
|
| 373 | - if ($this->userManager->userExists($username)) { |
|
| 374 | - return new DataResponse( |
|
| 375 | - array( |
|
| 376 | - 'message' => (string)$this->l10n->t('A user with that name already exists.') |
|
| 377 | - ), |
|
| 378 | - Http::STATUS_CONFLICT |
|
| 379 | - ); |
|
| 380 | - } |
|
| 381 | - |
|
| 382 | - $generatedPassword = false; |
|
| 383 | - if ($password === '') { |
|
| 384 | - if ($email === '') { |
|
| 385 | - return new DataResponse( |
|
| 386 | - array( |
|
| 387 | - 'message' => (string)$this->l10n->t('To send a password link to the user an email address is required.') |
|
| 388 | - ), |
|
| 389 | - Http::STATUS_UNPROCESSABLE_ENTITY |
|
| 390 | - ); |
|
| 391 | - } |
|
| 392 | - |
|
| 393 | - $password = $this->secureRandom->generate(32); |
|
| 394 | - $generatedPassword = true; |
|
| 395 | - } |
|
| 396 | - |
|
| 397 | - try { |
|
| 398 | - $user = $this->userManager->createUser($username, $password); |
|
| 399 | - } catch (\Exception $exception) { |
|
| 400 | - $message = $exception->getMessage(); |
|
| 401 | - if (!$message) { |
|
| 402 | - $message = $this->l10n->t('Unable to create user.'); |
|
| 403 | - } |
|
| 404 | - return new DataResponse( |
|
| 405 | - array( |
|
| 406 | - 'message' => (string) $message, |
|
| 407 | - ), |
|
| 408 | - Http::STATUS_FORBIDDEN |
|
| 409 | - ); |
|
| 410 | - } |
|
| 411 | - |
|
| 412 | - if($user instanceof IUser) { |
|
| 413 | - if($groups !== null) { |
|
| 414 | - foreach($groups as $groupName) { |
|
| 415 | - $group = $this->groupManager->get($groupName); |
|
| 416 | - |
|
| 417 | - if(empty($group)) { |
|
| 418 | - $group = $this->groupManager->createGroup($groupName); |
|
| 419 | - } |
|
| 420 | - $group->addUser($user); |
|
| 421 | - } |
|
| 422 | - } |
|
| 423 | - /** |
|
| 424 | - * Send new user mail only if a mail is set |
|
| 425 | - */ |
|
| 426 | - if($email !== '') { |
|
| 427 | - $user->setEMailAddress($email); |
|
| 428 | - |
|
| 429 | - if ($generatedPassword) { |
|
| 430 | - $token = $this->secureRandom->generate( |
|
| 431 | - 21, |
|
| 432 | - ISecureRandom::CHAR_DIGITS . |
|
| 433 | - ISecureRandom::CHAR_LOWER . |
|
| 434 | - ISecureRandom::CHAR_UPPER |
|
| 435 | - ); |
|
| 436 | - $tokenValue = $this->timeFactory->getTime() . ':' . $token; |
|
| 437 | - $mailAddress = !is_null($user->getEMailAddress()) ? $user->getEMailAddress() : ''; |
|
| 438 | - $encryptedValue = $this->crypto->encrypt($tokenValue, $mailAddress . $this->config->getSystemValue('secret')); |
|
| 439 | - $this->config->setUserValue($username, 'core', 'lostpassword', $encryptedValue); |
|
| 440 | - |
|
| 441 | - $link = $this->urlGenerator->linkToRouteAbsolute('core.lost.resetform', ['userId' => $username, 'token' => $token]); |
|
| 442 | - } else { |
|
| 443 | - $link = $this->urlGenerator->getAbsoluteURL('/'); |
|
| 444 | - } |
|
| 445 | - |
|
| 446 | - // data for the mail template |
|
| 447 | - $mailData = array( |
|
| 448 | - 'username' => $username, |
|
| 449 | - 'url' => $link |
|
| 450 | - ); |
|
| 451 | - |
|
| 452 | - $mail = new TemplateResponse('settings', 'email.new_user', $mailData, 'blank'); |
|
| 453 | - $mailContent = $mail->render(); |
|
| 454 | - |
|
| 455 | - $mail = new TemplateResponse('settings', 'email.new_user_plain_text', $mailData, 'blank'); |
|
| 456 | - $plainTextMailContent = $mail->render(); |
|
| 457 | - |
|
| 458 | - $subject = $this->l10n->t('Your %s account was created', [$this->defaults->getName()]); |
|
| 459 | - |
|
| 460 | - try { |
|
| 461 | - $message = $this->mailer->createMessage(); |
|
| 462 | - $message->setTo([$email => $username]); |
|
| 463 | - $message->setSubject($subject); |
|
| 464 | - $message->setHtmlBody($mailContent); |
|
| 465 | - $message->setPlainBody($plainTextMailContent); |
|
| 466 | - $message->setFrom([$this->fromMailAddress => $this->defaults->getName()]); |
|
| 467 | - $this->mailer->send($message); |
|
| 468 | - } catch(\Exception $e) { |
|
| 469 | - $this->log->error("Can't send new user mail to $email: " . $e->getMessage(), array('app' => 'settings')); |
|
| 470 | - } |
|
| 471 | - } |
|
| 472 | - // fetch users groups |
|
| 473 | - $userGroups = $this->groupManager->getUserGroupIds($user); |
|
| 474 | - |
|
| 475 | - return new DataResponse( |
|
| 476 | - $this->formatUserForIndex($user, $userGroups), |
|
| 477 | - Http::STATUS_CREATED |
|
| 478 | - ); |
|
| 479 | - } |
|
| 480 | - |
|
| 481 | - return new DataResponse( |
|
| 482 | - array( |
|
| 483 | - 'message' => (string)$this->l10n->t('Unable to create user.') |
|
| 484 | - ), |
|
| 485 | - Http::STATUS_FORBIDDEN |
|
| 486 | - ); |
|
| 487 | - |
|
| 488 | - } |
|
| 489 | - |
|
| 490 | - /** |
|
| 491 | - * @NoAdminRequired |
|
| 492 | - * @PasswordConfirmationRequired |
|
| 493 | - * |
|
| 494 | - * @param string $id |
|
| 495 | - * @return DataResponse |
|
| 496 | - */ |
|
| 497 | - public function destroy($id) { |
|
| 498 | - $userId = $this->userSession->getUser()->getUID(); |
|
| 499 | - $user = $this->userManager->get($id); |
|
| 500 | - |
|
| 501 | - if($userId === $id) { |
|
| 502 | - return new DataResponse( |
|
| 503 | - array( |
|
| 504 | - 'status' => 'error', |
|
| 505 | - 'data' => array( |
|
| 506 | - 'message' => (string)$this->l10n->t('Unable to delete user.') |
|
| 507 | - ) |
|
| 508 | - ), |
|
| 509 | - Http::STATUS_FORBIDDEN |
|
| 510 | - ); |
|
| 511 | - } |
|
| 512 | - |
|
| 513 | - if(!$this->isAdmin && !$this->groupManager->getSubAdmin()->isUserAccessible($this->userSession->getUser(), $user)) { |
|
| 514 | - return new DataResponse( |
|
| 515 | - array( |
|
| 516 | - 'status' => 'error', |
|
| 517 | - 'data' => array( |
|
| 518 | - 'message' => (string)$this->l10n->t('Authentication error') |
|
| 519 | - ) |
|
| 520 | - ), |
|
| 521 | - Http::STATUS_FORBIDDEN |
|
| 522 | - ); |
|
| 523 | - } |
|
| 524 | - |
|
| 525 | - if($user) { |
|
| 526 | - if($user->delete()) { |
|
| 527 | - return new DataResponse( |
|
| 528 | - array( |
|
| 529 | - 'status' => 'success', |
|
| 530 | - 'data' => array( |
|
| 531 | - 'username' => $id |
|
| 532 | - ) |
|
| 533 | - ), |
|
| 534 | - Http::STATUS_NO_CONTENT |
|
| 535 | - ); |
|
| 536 | - } |
|
| 537 | - } |
|
| 538 | - |
|
| 539 | - return new DataResponse( |
|
| 540 | - array( |
|
| 541 | - 'status' => 'error', |
|
| 542 | - 'data' => array( |
|
| 543 | - 'message' => (string)$this->l10n->t('Unable to delete user.') |
|
| 544 | - ) |
|
| 545 | - ), |
|
| 546 | - Http::STATUS_FORBIDDEN |
|
| 547 | - ); |
|
| 548 | - } |
|
| 549 | - |
|
| 550 | - /** |
|
| 551 | - * @NoAdminRequired |
|
| 552 | - * @NoSubadminRequired |
|
| 553 | - * @PasswordConfirmationRequired |
|
| 554 | - * |
|
| 555 | - * @param string $avatarScope |
|
| 556 | - * @param string $displayname |
|
| 557 | - * @param string $displaynameScope |
|
| 558 | - * @param string $phone |
|
| 559 | - * @param string $phoneScope |
|
| 560 | - * @param string $email |
|
| 561 | - * @param string $emailScope |
|
| 562 | - * @param string $website |
|
| 563 | - * @param string $websiteScope |
|
| 564 | - * @param string $address |
|
| 565 | - * @param string $addressScope |
|
| 566 | - * @param string $twitter |
|
| 567 | - * @param string $twitterScope |
|
| 568 | - * @return DataResponse |
|
| 569 | - */ |
|
| 570 | - public function setUserSettings($avatarScope, |
|
| 571 | - $displayname, |
|
| 572 | - $displaynameScope, |
|
| 573 | - $phone, |
|
| 574 | - $phoneScope, |
|
| 575 | - $email, |
|
| 576 | - $emailScope, |
|
| 577 | - $website, |
|
| 578 | - $websiteScope, |
|
| 579 | - $address, |
|
| 580 | - $addressScope, |
|
| 581 | - $twitter, |
|
| 582 | - $twitterScope |
|
| 583 | - ) { |
|
| 584 | - |
|
| 585 | - if(!empty($email) && !$this->mailer->validateMailAddress($email)) { |
|
| 586 | - return new DataResponse( |
|
| 587 | - array( |
|
| 588 | - 'status' => 'error', |
|
| 589 | - 'data' => array( |
|
| 590 | - 'message' => (string)$this->l10n->t('Invalid mail address') |
|
| 591 | - ) |
|
| 592 | - ), |
|
| 593 | - Http::STATUS_UNPROCESSABLE_ENTITY |
|
| 594 | - ); |
|
| 595 | - } |
|
| 596 | - |
|
| 597 | - $data = [ |
|
| 598 | - AccountManager::PROPERTY_AVATAR => ['scope' => $avatarScope], |
|
| 599 | - AccountManager::PROPERTY_DISPLAYNAME => ['value' => $displayname, 'scope' => $displaynameScope], |
|
| 600 | - AccountManager::PROPERTY_EMAIL=> ['value' => $email, 'scope' => $emailScope], |
|
| 601 | - AccountManager::PROPERTY_WEBSITE => ['value' => $website, 'scope' => $websiteScope], |
|
| 602 | - AccountManager::PROPERTY_ADDRESS => ['value' => $address, 'scope' => $addressScope], |
|
| 603 | - AccountManager::PROPERTY_PHONE => ['value' => $phone, 'scope' => $phoneScope], |
|
| 604 | - AccountManager::PROPERTY_TWITTER => ['value' => $twitter, 'scope' => $twitterScope] |
|
| 605 | - ]; |
|
| 606 | - |
|
| 607 | - $user = $this->userSession->getUser(); |
|
| 608 | - |
|
| 609 | - try { |
|
| 610 | - $this->saveUserSettings($user, $data); |
|
| 611 | - return new DataResponse( |
|
| 612 | - array( |
|
| 613 | - 'status' => 'success', |
|
| 614 | - 'data' => array( |
|
| 615 | - 'userId' => $user->getUID(), |
|
| 616 | - 'avatarScope' => $avatarScope, |
|
| 617 | - 'displayname' => $displayname, |
|
| 618 | - 'displaynameScope' => $displaynameScope, |
|
| 619 | - 'email' => $email, |
|
| 620 | - 'emailScope' => $emailScope, |
|
| 621 | - 'website' => $website, |
|
| 622 | - 'websiteScope' => $websiteScope, |
|
| 623 | - 'address' => $address, |
|
| 624 | - 'addressScope' => $addressScope, |
|
| 625 | - 'message' => (string)$this->l10n->t('Settings saved') |
|
| 626 | - ) |
|
| 627 | - ), |
|
| 628 | - Http::STATUS_OK |
|
| 629 | - ); |
|
| 630 | - } catch (ForbiddenException $e) { |
|
| 631 | - return new DataResponse([ |
|
| 632 | - 'status' => 'error', |
|
| 633 | - 'data' => [ |
|
| 634 | - 'message' => $e->getMessage() |
|
| 635 | - ], |
|
| 636 | - ]); |
|
| 637 | - } |
|
| 638 | - |
|
| 639 | - } |
|
| 640 | - |
|
| 641 | - |
|
| 642 | - /** |
|
| 643 | - * update account manager with new user data |
|
| 644 | - * |
|
| 645 | - * @param IUser $user |
|
| 646 | - * @param array $data |
|
| 647 | - * @throws ForbiddenException |
|
| 648 | - */ |
|
| 649 | - protected function saveUserSettings(IUser $user, $data) { |
|
| 650 | - |
|
| 651 | - // keep the user back-end up-to-date with the latest display name and email |
|
| 652 | - // address |
|
| 653 | - $oldDisplayName = $user->getDisplayName(); |
|
| 654 | - $oldDisplayName = is_null($oldDisplayName) ? '' : $oldDisplayName; |
|
| 655 | - if (isset($data[AccountManager::PROPERTY_DISPLAYNAME]['value']) |
|
| 656 | - && $oldDisplayName !== $data[AccountManager::PROPERTY_DISPLAYNAME]['value'] |
|
| 657 | - ) { |
|
| 658 | - $result = $user->setDisplayName($data[AccountManager::PROPERTY_DISPLAYNAME]['value']); |
|
| 659 | - if ($result === false) { |
|
| 660 | - throw new ForbiddenException($this->l10n->t('Unable to change full name')); |
|
| 661 | - } |
|
| 662 | - } |
|
| 663 | - |
|
| 664 | - $oldEmailAddress = $user->getEMailAddress(); |
|
| 665 | - $oldEmailAddress = is_null($oldEmailAddress) ? '' : $oldEmailAddress; |
|
| 666 | - if (isset($data[AccountManager::PROPERTY_EMAIL]['value']) |
|
| 667 | - && $oldEmailAddress !== $data[AccountManager::PROPERTY_EMAIL]['value'] |
|
| 668 | - ) { |
|
| 669 | - // this is the only permission a backend provides and is also used |
|
| 670 | - // for the permission of setting a email address |
|
| 671 | - if (!$user->canChangeDisplayName()) { |
|
| 672 | - throw new ForbiddenException($this->l10n->t('Unable to change email address')); |
|
| 673 | - } |
|
| 674 | - $user->setEMailAddress($data[AccountManager::PROPERTY_EMAIL]['value']); |
|
| 675 | - } |
|
| 676 | - |
|
| 677 | - $this->accountManager->updateUser($user, $data); |
|
| 678 | - } |
|
| 679 | - |
|
| 680 | - /** |
|
| 681 | - * Count all unique users visible for the current admin/subadmin. |
|
| 682 | - * |
|
| 683 | - * @NoAdminRequired |
|
| 684 | - * |
|
| 685 | - * @return DataResponse |
|
| 686 | - */ |
|
| 687 | - public function stats() { |
|
| 688 | - $userCount = 0; |
|
| 689 | - if ($this->isAdmin) { |
|
| 690 | - $countByBackend = $this->userManager->countUsers(); |
|
| 691 | - |
|
| 692 | - if (!empty($countByBackend)) { |
|
| 693 | - foreach ($countByBackend as $count) { |
|
| 694 | - $userCount += $count; |
|
| 695 | - } |
|
| 696 | - } |
|
| 697 | - } else { |
|
| 698 | - $groups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($this->userSession->getUser()); |
|
| 699 | - |
|
| 700 | - $uniqueUsers = []; |
|
| 701 | - foreach ($groups as $group) { |
|
| 702 | - foreach($group->getUsers() as $uid => $displayName) { |
|
| 703 | - $uniqueUsers[$uid] = true; |
|
| 704 | - } |
|
| 705 | - } |
|
| 706 | - |
|
| 707 | - $userCount = count($uniqueUsers); |
|
| 708 | - } |
|
| 709 | - |
|
| 710 | - return new DataResponse( |
|
| 711 | - [ |
|
| 712 | - 'totalUsers' => $userCount |
|
| 713 | - ] |
|
| 714 | - ); |
|
| 715 | - } |
|
| 716 | - |
|
| 717 | - |
|
| 718 | - /** |
|
| 719 | - * Set the displayName of a user |
|
| 720 | - * |
|
| 721 | - * @NoAdminRequired |
|
| 722 | - * @NoSubadminRequired |
|
| 723 | - * @PasswordConfirmationRequired |
|
| 724 | - * @todo merge into saveUserSettings |
|
| 725 | - * |
|
| 726 | - * @param string $username |
|
| 727 | - * @param string $displayName |
|
| 728 | - * @return DataResponse |
|
| 729 | - */ |
|
| 730 | - public function setDisplayName($username, $displayName) { |
|
| 731 | - $currentUser = $this->userSession->getUser(); |
|
| 732 | - $user = $this->userManager->get($username); |
|
| 733 | - |
|
| 734 | - if ($user === null || |
|
| 735 | - !$user->canChangeDisplayName() || |
|
| 736 | - ( |
|
| 737 | - !$this->groupManager->isAdmin($currentUser->getUID()) && |
|
| 738 | - !$this->groupManager->getSubAdmin()->isUserAccessible($currentUser, $user) && |
|
| 739 | - $currentUser->getUID() !== $username |
|
| 740 | - |
|
| 741 | - ) |
|
| 742 | - ) { |
|
| 743 | - return new DataResponse([ |
|
| 744 | - 'status' => 'error', |
|
| 745 | - 'data' => [ |
|
| 746 | - 'message' => $this->l10n->t('Authentication error'), |
|
| 747 | - ], |
|
| 748 | - ]); |
|
| 749 | - } |
|
| 750 | - |
|
| 751 | - $userData = $this->accountManager->getUser($user); |
|
| 752 | - $userData[AccountManager::PROPERTY_DISPLAYNAME]['value'] = $displayName; |
|
| 753 | - |
|
| 754 | - |
|
| 755 | - try { |
|
| 756 | - $this->saveUserSettings($user, $userData); |
|
| 757 | - return new DataResponse([ |
|
| 758 | - 'status' => 'success', |
|
| 759 | - 'data' => [ |
|
| 760 | - 'message' => $this->l10n->t('Your full name has been changed.'), |
|
| 761 | - 'username' => $username, |
|
| 762 | - 'displayName' => $displayName, |
|
| 763 | - ], |
|
| 764 | - ]); |
|
| 765 | - } catch (ForbiddenException $e) { |
|
| 766 | - return new DataResponse([ |
|
| 767 | - 'status' => 'error', |
|
| 768 | - 'data' => [ |
|
| 769 | - 'message' => $e->getMessage(), |
|
| 770 | - 'displayName' => $user->getDisplayName(), |
|
| 771 | - ], |
|
| 772 | - ]); |
|
| 773 | - } |
|
| 774 | - } |
|
| 775 | - |
|
| 776 | - /** |
|
| 777 | - * Set the mail address of a user |
|
| 778 | - * |
|
| 779 | - * @NoAdminRequired |
|
| 780 | - * @NoSubadminRequired |
|
| 781 | - * @PasswordConfirmationRequired |
|
| 782 | - * |
|
| 783 | - * @param string $id |
|
| 784 | - * @param string $mailAddress |
|
| 785 | - * @return DataResponse |
|
| 786 | - */ |
|
| 787 | - public function setEMailAddress($id, $mailAddress) { |
|
| 788 | - $user = $this->userManager->get($id); |
|
| 789 | - if (!$this->isAdmin |
|
| 790 | - && !$this->groupManager->getSubAdmin()->isUserAccessible($this->userSession->getUser(), $user) |
|
| 791 | - ) { |
|
| 792 | - return new DataResponse( |
|
| 793 | - array( |
|
| 794 | - 'status' => 'error', |
|
| 795 | - 'data' => array( |
|
| 796 | - 'message' => (string)$this->l10n->t('Forbidden') |
|
| 797 | - ) |
|
| 798 | - ), |
|
| 799 | - Http::STATUS_FORBIDDEN |
|
| 800 | - ); |
|
| 801 | - } |
|
| 802 | - |
|
| 803 | - if($mailAddress !== '' && !$this->mailer->validateMailAddress($mailAddress)) { |
|
| 804 | - return new DataResponse( |
|
| 805 | - array( |
|
| 806 | - 'status' => 'error', |
|
| 807 | - 'data' => array( |
|
| 808 | - 'message' => (string)$this->l10n->t('Invalid mail address') |
|
| 809 | - ) |
|
| 810 | - ), |
|
| 811 | - Http::STATUS_UNPROCESSABLE_ENTITY |
|
| 812 | - ); |
|
| 813 | - } |
|
| 814 | - |
|
| 815 | - if (!$user) { |
|
| 816 | - return new DataResponse( |
|
| 817 | - array( |
|
| 818 | - 'status' => 'error', |
|
| 819 | - 'data' => array( |
|
| 820 | - 'message' => (string)$this->l10n->t('Invalid user') |
|
| 821 | - ) |
|
| 822 | - ), |
|
| 823 | - Http::STATUS_UNPROCESSABLE_ENTITY |
|
| 824 | - ); |
|
| 825 | - } |
|
| 826 | - // this is the only permission a backend provides and is also used |
|
| 827 | - // for the permission of setting a email address |
|
| 828 | - if (!$user->canChangeDisplayName()) { |
|
| 829 | - return new DataResponse( |
|
| 830 | - array( |
|
| 831 | - 'status' => 'error', |
|
| 832 | - 'data' => array( |
|
| 833 | - 'message' => (string)$this->l10n->t('Unable to change mail address') |
|
| 834 | - ) |
|
| 835 | - ), |
|
| 836 | - Http::STATUS_FORBIDDEN |
|
| 837 | - ); |
|
| 838 | - } |
|
| 839 | - |
|
| 840 | - $userData = $this->accountManager->getUser($user); |
|
| 841 | - $userData[AccountManager::PROPERTY_EMAIL]['value'] = $mailAddress; |
|
| 842 | - |
|
| 843 | - try { |
|
| 844 | - $this->saveUserSettings($user, $userData); |
|
| 845 | - return new DataResponse( |
|
| 846 | - array( |
|
| 847 | - 'status' => 'success', |
|
| 848 | - 'data' => array( |
|
| 849 | - 'username' => $id, |
|
| 850 | - 'mailAddress' => $mailAddress, |
|
| 851 | - 'message' => (string)$this->l10n->t('Email saved') |
|
| 852 | - ) |
|
| 853 | - ), |
|
| 854 | - Http::STATUS_OK |
|
| 855 | - ); |
|
| 856 | - } catch (ForbiddenException $e) { |
|
| 857 | - return new DataResponse([ |
|
| 858 | - 'status' => 'error', |
|
| 859 | - 'data' => [ |
|
| 860 | - 'message' => $e->getMessage() |
|
| 861 | - ], |
|
| 862 | - ]); |
|
| 863 | - } |
|
| 864 | - } |
|
| 60 | + /** @var IL10N */ |
|
| 61 | + private $l10n; |
|
| 62 | + /** @var IUserSession */ |
|
| 63 | + private $userSession; |
|
| 64 | + /** @var bool */ |
|
| 65 | + private $isAdmin; |
|
| 66 | + /** @var IUserManager */ |
|
| 67 | + private $userManager; |
|
| 68 | + /** @var IGroupManager */ |
|
| 69 | + private $groupManager; |
|
| 70 | + /** @var IConfig */ |
|
| 71 | + private $config; |
|
| 72 | + /** @var ILogger */ |
|
| 73 | + private $log; |
|
| 74 | + /** @var \OC_Defaults */ |
|
| 75 | + private $defaults; |
|
| 76 | + /** @var IMailer */ |
|
| 77 | + private $mailer; |
|
| 78 | + /** @var string */ |
|
| 79 | + private $fromMailAddress; |
|
| 80 | + /** @var IURLGenerator */ |
|
| 81 | + private $urlGenerator; |
|
| 82 | + /** @var bool contains the state of the encryption app */ |
|
| 83 | + private $isEncryptionAppEnabled; |
|
| 84 | + /** @var bool contains the state of the admin recovery setting */ |
|
| 85 | + private $isRestoreEnabled = false; |
|
| 86 | + /** @var IAvatarManager */ |
|
| 87 | + private $avatarManager; |
|
| 88 | + /** @var AccountManager */ |
|
| 89 | + private $accountManager; |
|
| 90 | + /** @var ISecureRandom */ |
|
| 91 | + private $secureRandom; |
|
| 92 | + /** @var ITimeFactory */ |
|
| 93 | + private $timeFactory; |
|
| 94 | + /** @var ICrypto */ |
|
| 95 | + private $crypto; |
|
| 96 | + |
|
| 97 | + |
|
| 98 | + /** |
|
| 99 | + * @param string $appName |
|
| 100 | + * @param IRequest $request |
|
| 101 | + * @param IUserManager $userManager |
|
| 102 | + * @param IGroupManager $groupManager |
|
| 103 | + * @param IUserSession $userSession |
|
| 104 | + * @param IConfig $config |
|
| 105 | + * @param bool $isAdmin |
|
| 106 | + * @param IL10N $l10n |
|
| 107 | + * @param ILogger $log |
|
| 108 | + * @param \OC_Defaults $defaults |
|
| 109 | + * @param IMailer $mailer |
|
| 110 | + * @param string $fromMailAddress |
|
| 111 | + * @param IURLGenerator $urlGenerator |
|
| 112 | + * @param IAppManager $appManager |
|
| 113 | + * @param IAvatarManager $avatarManager |
|
| 114 | + * @param AccountManager $accountManager |
|
| 115 | + * @param ISecureRandom $secureRandom |
|
| 116 | + * @param ITimeFactory $timeFactory |
|
| 117 | + * @param ICrypto $crypto |
|
| 118 | + */ |
|
| 119 | + public function __construct($appName, |
|
| 120 | + IRequest $request, |
|
| 121 | + IUserManager $userManager, |
|
| 122 | + IGroupManager $groupManager, |
|
| 123 | + IUserSession $userSession, |
|
| 124 | + IConfig $config, |
|
| 125 | + $isAdmin, |
|
| 126 | + IL10N $l10n, |
|
| 127 | + ILogger $log, |
|
| 128 | + \OC_Defaults $defaults, |
|
| 129 | + IMailer $mailer, |
|
| 130 | + $fromMailAddress, |
|
| 131 | + IURLGenerator $urlGenerator, |
|
| 132 | + IAppManager $appManager, |
|
| 133 | + IAvatarManager $avatarManager, |
|
| 134 | + AccountManager $accountManager, |
|
| 135 | + ISecureRandom $secureRandom, |
|
| 136 | + ITimeFactory $timeFactory, |
|
| 137 | + ICrypto $crypto) { |
|
| 138 | + parent::__construct($appName, $request); |
|
| 139 | + $this->userManager = $userManager; |
|
| 140 | + $this->groupManager = $groupManager; |
|
| 141 | + $this->userSession = $userSession; |
|
| 142 | + $this->config = $config; |
|
| 143 | + $this->isAdmin = $isAdmin; |
|
| 144 | + $this->l10n = $l10n; |
|
| 145 | + $this->log = $log; |
|
| 146 | + $this->defaults = $defaults; |
|
| 147 | + $this->mailer = $mailer; |
|
| 148 | + $this->fromMailAddress = $fromMailAddress; |
|
| 149 | + $this->urlGenerator = $urlGenerator; |
|
| 150 | + $this->avatarManager = $avatarManager; |
|
| 151 | + $this->accountManager = $accountManager; |
|
| 152 | + $this->secureRandom = $secureRandom; |
|
| 153 | + $this->timeFactory = $timeFactory; |
|
| 154 | + $this->crypto = $crypto; |
|
| 155 | + |
|
| 156 | + // check for encryption state - TODO see formatUserForIndex |
|
| 157 | + $this->isEncryptionAppEnabled = $appManager->isEnabledForUser('encryption'); |
|
| 158 | + if($this->isEncryptionAppEnabled) { |
|
| 159 | + // putting this directly in empty is possible in PHP 5.5+ |
|
| 160 | + $result = $config->getAppValue('encryption', 'recoveryAdminEnabled', 0); |
|
| 161 | + $this->isRestoreEnabled = !empty($result); |
|
| 162 | + } |
|
| 163 | + } |
|
| 164 | + |
|
| 165 | + /** |
|
| 166 | + * @param IUser $user |
|
| 167 | + * @param array $userGroups |
|
| 168 | + * @return array |
|
| 169 | + */ |
|
| 170 | + private function formatUserForIndex(IUser $user, array $userGroups = null) { |
|
| 171 | + |
|
| 172 | + // TODO: eliminate this encryption specific code below and somehow |
|
| 173 | + // hook in additional user info from other apps |
|
| 174 | + |
|
| 175 | + // recovery isn't possible if admin or user has it disabled and encryption |
|
| 176 | + // is enabled - so we eliminate the else paths in the conditional tree |
|
| 177 | + // below |
|
| 178 | + $restorePossible = false; |
|
| 179 | + |
|
| 180 | + if ($this->isEncryptionAppEnabled) { |
|
| 181 | + if ($this->isRestoreEnabled) { |
|
| 182 | + // check for the users recovery setting |
|
| 183 | + $recoveryMode = $this->config->getUserValue($user->getUID(), 'encryption', 'recoveryEnabled', '0'); |
|
| 184 | + // method call inside empty is possible with PHP 5.5+ |
|
| 185 | + $recoveryModeEnabled = !empty($recoveryMode); |
|
| 186 | + if ($recoveryModeEnabled) { |
|
| 187 | + // user also has recovery mode enabled |
|
| 188 | + $restorePossible = true; |
|
| 189 | + } |
|
| 190 | + } |
|
| 191 | + } else { |
|
| 192 | + // recovery is possible if encryption is disabled (plain files are |
|
| 193 | + // available) |
|
| 194 | + $restorePossible = true; |
|
| 195 | + } |
|
| 196 | + |
|
| 197 | + $subAdminGroups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($user); |
|
| 198 | + foreach($subAdminGroups as $key => $subAdminGroup) { |
|
| 199 | + $subAdminGroups[$key] = $subAdminGroup->getGID(); |
|
| 200 | + } |
|
| 201 | + |
|
| 202 | + $displayName = $user->getEMailAddress(); |
|
| 203 | + if (is_null($displayName)) { |
|
| 204 | + $displayName = ''; |
|
| 205 | + } |
|
| 206 | + |
|
| 207 | + $avatarAvailable = false; |
|
| 208 | + try { |
|
| 209 | + $avatarAvailable = $this->avatarManager->getAvatar($user->getUID())->exists(); |
|
| 210 | + } catch (\Exception $e) { |
|
| 211 | + //No avatar yet |
|
| 212 | + } |
|
| 213 | + |
|
| 214 | + return [ |
|
| 215 | + 'name' => $user->getUID(), |
|
| 216 | + 'displayname' => $user->getDisplayName(), |
|
| 217 | + 'groups' => (empty($userGroups)) ? $this->groupManager->getUserGroupIds($user) : $userGroups, |
|
| 218 | + 'subadmin' => $subAdminGroups, |
|
| 219 | + 'quota' => $user->getQuota(), |
|
| 220 | + 'storageLocation' => $user->getHome(), |
|
| 221 | + 'lastLogin' => $user->getLastLogin() * 1000, |
|
| 222 | + 'backend' => $user->getBackendClassName(), |
|
| 223 | + 'email' => $displayName, |
|
| 224 | + 'isRestoreDisabled' => !$restorePossible, |
|
| 225 | + 'isAvatarAvailable' => $avatarAvailable, |
|
| 226 | + ]; |
|
| 227 | + } |
|
| 228 | + |
|
| 229 | + /** |
|
| 230 | + * @param array $userIDs Array with schema [$uid => $displayName] |
|
| 231 | + * @return IUser[] |
|
| 232 | + */ |
|
| 233 | + private function getUsersForUID(array $userIDs) { |
|
| 234 | + $users = []; |
|
| 235 | + foreach ($userIDs as $uid => $displayName) { |
|
| 236 | + $users[$uid] = $this->userManager->get($uid); |
|
| 237 | + } |
|
| 238 | + return $users; |
|
| 239 | + } |
|
| 240 | + |
|
| 241 | + /** |
|
| 242 | + * @NoAdminRequired |
|
| 243 | + * |
|
| 244 | + * @param int $offset |
|
| 245 | + * @param int $limit |
|
| 246 | + * @param string $gid GID to filter for |
|
| 247 | + * @param string $pattern Pattern to search for in the username |
|
| 248 | + * @param string $backend Backend to filter for (class-name) |
|
| 249 | + * @return DataResponse |
|
| 250 | + * |
|
| 251 | + * TODO: Tidy up and write unit tests - code is mainly static method calls |
|
| 252 | + */ |
|
| 253 | + public function index($offset = 0, $limit = 10, $gid = '', $pattern = '', $backend = '') { |
|
| 254 | + // FIXME: The JS sends the group '_everyone' instead of no GID for the "all users" group. |
|
| 255 | + if($gid === '_everyone') { |
|
| 256 | + $gid = ''; |
|
| 257 | + } |
|
| 258 | + |
|
| 259 | + // Remove backends |
|
| 260 | + if(!empty($backend)) { |
|
| 261 | + $activeBackends = $this->userManager->getBackends(); |
|
| 262 | + $this->userManager->clearBackends(); |
|
| 263 | + foreach($activeBackends as $singleActiveBackend) { |
|
| 264 | + if($backend === get_class($singleActiveBackend)) { |
|
| 265 | + $this->userManager->registerBackend($singleActiveBackend); |
|
| 266 | + break; |
|
| 267 | + } |
|
| 268 | + } |
|
| 269 | + } |
|
| 270 | + |
|
| 271 | + $users = []; |
|
| 272 | + if ($this->isAdmin) { |
|
| 273 | + |
|
| 274 | + if($gid !== '') { |
|
| 275 | + $batch = $this->getUsersForUID($this->groupManager->displayNamesInGroup($gid, $pattern, $limit, $offset)); |
|
| 276 | + } else { |
|
| 277 | + $batch = $this->userManager->search($pattern, $limit, $offset); |
|
| 278 | + } |
|
| 279 | + |
|
| 280 | + foreach ($batch as $user) { |
|
| 281 | + $users[] = $this->formatUserForIndex($user); |
|
| 282 | + } |
|
| 283 | + |
|
| 284 | + } else { |
|
| 285 | + $subAdminOfGroups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($this->userSession->getUser()); |
|
| 286 | + // New class returns IGroup[] so convert back |
|
| 287 | + $gids = []; |
|
| 288 | + foreach ($subAdminOfGroups as $group) { |
|
| 289 | + $gids[] = $group->getGID(); |
|
| 290 | + } |
|
| 291 | + $subAdminOfGroups = $gids; |
|
| 292 | + |
|
| 293 | + // Set the $gid parameter to an empty value if the subadmin has no rights to access a specific group |
|
| 294 | + if($gid !== '' && !in_array($gid, $subAdminOfGroups)) { |
|
| 295 | + $gid = ''; |
|
| 296 | + } |
|
| 297 | + |
|
| 298 | + // Batch all groups the user is subadmin of when a group is specified |
|
| 299 | + $batch = []; |
|
| 300 | + if($gid === '') { |
|
| 301 | + foreach($subAdminOfGroups as $group) { |
|
| 302 | + $groupUsers = $this->groupManager->displayNamesInGroup($group, $pattern, $limit, $offset); |
|
| 303 | + |
|
| 304 | + foreach($groupUsers as $uid => $displayName) { |
|
| 305 | + $batch[$uid] = $displayName; |
|
| 306 | + } |
|
| 307 | + } |
|
| 308 | + } else { |
|
| 309 | + $batch = $this->groupManager->displayNamesInGroup($gid, $pattern, $limit, $offset); |
|
| 310 | + } |
|
| 311 | + $batch = $this->getUsersForUID($batch); |
|
| 312 | + |
|
| 313 | + foreach ($batch as $user) { |
|
| 314 | + // Only add the groups, this user is a subadmin of |
|
| 315 | + $userGroups = array_values(array_intersect( |
|
| 316 | + $this->groupManager->getUserGroupIds($user), |
|
| 317 | + $subAdminOfGroups |
|
| 318 | + )); |
|
| 319 | + $users[] = $this->formatUserForIndex($user, $userGroups); |
|
| 320 | + } |
|
| 321 | + } |
|
| 322 | + |
|
| 323 | + return new DataResponse($users); |
|
| 324 | + } |
|
| 325 | + |
|
| 326 | + /** |
|
| 327 | + * @NoAdminRequired |
|
| 328 | + * @PasswordConfirmationRequired |
|
| 329 | + * |
|
| 330 | + * @param string $username |
|
| 331 | + * @param string $password |
|
| 332 | + * @param array $groups |
|
| 333 | + * @param string $email |
|
| 334 | + * @return DataResponse |
|
| 335 | + */ |
|
| 336 | + public function create($username, $password, array $groups=array(), $email='') { |
|
| 337 | + if($email !== '' && !$this->mailer->validateMailAddress($email)) { |
|
| 338 | + return new DataResponse( |
|
| 339 | + array( |
|
| 340 | + 'message' => (string)$this->l10n->t('Invalid mail address') |
|
| 341 | + ), |
|
| 342 | + Http::STATUS_UNPROCESSABLE_ENTITY |
|
| 343 | + ); |
|
| 344 | + } |
|
| 345 | + |
|
| 346 | + $currentUser = $this->userSession->getUser(); |
|
| 347 | + |
|
| 348 | + if (!$this->isAdmin) { |
|
| 349 | + if (!empty($groups)) { |
|
| 350 | + foreach ($groups as $key => $group) { |
|
| 351 | + $groupObject = $this->groupManager->get($group); |
|
| 352 | + if($groupObject === null) { |
|
| 353 | + unset($groups[$key]); |
|
| 354 | + continue; |
|
| 355 | + } |
|
| 356 | + |
|
| 357 | + if (!$this->groupManager->getSubAdmin()->isSubAdminofGroup($currentUser, $groupObject)) { |
|
| 358 | + unset($groups[$key]); |
|
| 359 | + } |
|
| 360 | + } |
|
| 361 | + } |
|
| 362 | + |
|
| 363 | + if (empty($groups)) { |
|
| 364 | + return new DataResponse( |
|
| 365 | + array( |
|
| 366 | + 'message' => $this->l10n->t('No valid group selected'), |
|
| 367 | + ), |
|
| 368 | + Http::STATUS_FORBIDDEN |
|
| 369 | + ); |
|
| 370 | + } |
|
| 371 | + } |
|
| 372 | + |
|
| 373 | + if ($this->userManager->userExists($username)) { |
|
| 374 | + return new DataResponse( |
|
| 375 | + array( |
|
| 376 | + 'message' => (string)$this->l10n->t('A user with that name already exists.') |
|
| 377 | + ), |
|
| 378 | + Http::STATUS_CONFLICT |
|
| 379 | + ); |
|
| 380 | + } |
|
| 381 | + |
|
| 382 | + $generatedPassword = false; |
|
| 383 | + if ($password === '') { |
|
| 384 | + if ($email === '') { |
|
| 385 | + return new DataResponse( |
|
| 386 | + array( |
|
| 387 | + 'message' => (string)$this->l10n->t('To send a password link to the user an email address is required.') |
|
| 388 | + ), |
|
| 389 | + Http::STATUS_UNPROCESSABLE_ENTITY |
|
| 390 | + ); |
|
| 391 | + } |
|
| 392 | + |
|
| 393 | + $password = $this->secureRandom->generate(32); |
|
| 394 | + $generatedPassword = true; |
|
| 395 | + } |
|
| 396 | + |
|
| 397 | + try { |
|
| 398 | + $user = $this->userManager->createUser($username, $password); |
|
| 399 | + } catch (\Exception $exception) { |
|
| 400 | + $message = $exception->getMessage(); |
|
| 401 | + if (!$message) { |
|
| 402 | + $message = $this->l10n->t('Unable to create user.'); |
|
| 403 | + } |
|
| 404 | + return new DataResponse( |
|
| 405 | + array( |
|
| 406 | + 'message' => (string) $message, |
|
| 407 | + ), |
|
| 408 | + Http::STATUS_FORBIDDEN |
|
| 409 | + ); |
|
| 410 | + } |
|
| 411 | + |
|
| 412 | + if($user instanceof IUser) { |
|
| 413 | + if($groups !== null) { |
|
| 414 | + foreach($groups as $groupName) { |
|
| 415 | + $group = $this->groupManager->get($groupName); |
|
| 416 | + |
|
| 417 | + if(empty($group)) { |
|
| 418 | + $group = $this->groupManager->createGroup($groupName); |
|
| 419 | + } |
|
| 420 | + $group->addUser($user); |
|
| 421 | + } |
|
| 422 | + } |
|
| 423 | + /** |
|
| 424 | + * Send new user mail only if a mail is set |
|
| 425 | + */ |
|
| 426 | + if($email !== '') { |
|
| 427 | + $user->setEMailAddress($email); |
|
| 428 | + |
|
| 429 | + if ($generatedPassword) { |
|
| 430 | + $token = $this->secureRandom->generate( |
|
| 431 | + 21, |
|
| 432 | + ISecureRandom::CHAR_DIGITS . |
|
| 433 | + ISecureRandom::CHAR_LOWER . |
|
| 434 | + ISecureRandom::CHAR_UPPER |
|
| 435 | + ); |
|
| 436 | + $tokenValue = $this->timeFactory->getTime() . ':' . $token; |
|
| 437 | + $mailAddress = !is_null($user->getEMailAddress()) ? $user->getEMailAddress() : ''; |
|
| 438 | + $encryptedValue = $this->crypto->encrypt($tokenValue, $mailAddress . $this->config->getSystemValue('secret')); |
|
| 439 | + $this->config->setUserValue($username, 'core', 'lostpassword', $encryptedValue); |
|
| 440 | + |
|
| 441 | + $link = $this->urlGenerator->linkToRouteAbsolute('core.lost.resetform', ['userId' => $username, 'token' => $token]); |
|
| 442 | + } else { |
|
| 443 | + $link = $this->urlGenerator->getAbsoluteURL('/'); |
|
| 444 | + } |
|
| 445 | + |
|
| 446 | + // data for the mail template |
|
| 447 | + $mailData = array( |
|
| 448 | + 'username' => $username, |
|
| 449 | + 'url' => $link |
|
| 450 | + ); |
|
| 451 | + |
|
| 452 | + $mail = new TemplateResponse('settings', 'email.new_user', $mailData, 'blank'); |
|
| 453 | + $mailContent = $mail->render(); |
|
| 454 | + |
|
| 455 | + $mail = new TemplateResponse('settings', 'email.new_user_plain_text', $mailData, 'blank'); |
|
| 456 | + $plainTextMailContent = $mail->render(); |
|
| 457 | + |
|
| 458 | + $subject = $this->l10n->t('Your %s account was created', [$this->defaults->getName()]); |
|
| 459 | + |
|
| 460 | + try { |
|
| 461 | + $message = $this->mailer->createMessage(); |
|
| 462 | + $message->setTo([$email => $username]); |
|
| 463 | + $message->setSubject($subject); |
|
| 464 | + $message->setHtmlBody($mailContent); |
|
| 465 | + $message->setPlainBody($plainTextMailContent); |
|
| 466 | + $message->setFrom([$this->fromMailAddress => $this->defaults->getName()]); |
|
| 467 | + $this->mailer->send($message); |
|
| 468 | + } catch(\Exception $e) { |
|
| 469 | + $this->log->error("Can't send new user mail to $email: " . $e->getMessage(), array('app' => 'settings')); |
|
| 470 | + } |
|
| 471 | + } |
|
| 472 | + // fetch users groups |
|
| 473 | + $userGroups = $this->groupManager->getUserGroupIds($user); |
|
| 474 | + |
|
| 475 | + return new DataResponse( |
|
| 476 | + $this->formatUserForIndex($user, $userGroups), |
|
| 477 | + Http::STATUS_CREATED |
|
| 478 | + ); |
|
| 479 | + } |
|
| 480 | + |
|
| 481 | + return new DataResponse( |
|
| 482 | + array( |
|
| 483 | + 'message' => (string)$this->l10n->t('Unable to create user.') |
|
| 484 | + ), |
|
| 485 | + Http::STATUS_FORBIDDEN |
|
| 486 | + ); |
|
| 487 | + |
|
| 488 | + } |
|
| 489 | + |
|
| 490 | + /** |
|
| 491 | + * @NoAdminRequired |
|
| 492 | + * @PasswordConfirmationRequired |
|
| 493 | + * |
|
| 494 | + * @param string $id |
|
| 495 | + * @return DataResponse |
|
| 496 | + */ |
|
| 497 | + public function destroy($id) { |
|
| 498 | + $userId = $this->userSession->getUser()->getUID(); |
|
| 499 | + $user = $this->userManager->get($id); |
|
| 500 | + |
|
| 501 | + if($userId === $id) { |
|
| 502 | + return new DataResponse( |
|
| 503 | + array( |
|
| 504 | + 'status' => 'error', |
|
| 505 | + 'data' => array( |
|
| 506 | + 'message' => (string)$this->l10n->t('Unable to delete user.') |
|
| 507 | + ) |
|
| 508 | + ), |
|
| 509 | + Http::STATUS_FORBIDDEN |
|
| 510 | + ); |
|
| 511 | + } |
|
| 512 | + |
|
| 513 | + if(!$this->isAdmin && !$this->groupManager->getSubAdmin()->isUserAccessible($this->userSession->getUser(), $user)) { |
|
| 514 | + return new DataResponse( |
|
| 515 | + array( |
|
| 516 | + 'status' => 'error', |
|
| 517 | + 'data' => array( |
|
| 518 | + 'message' => (string)$this->l10n->t('Authentication error') |
|
| 519 | + ) |
|
| 520 | + ), |
|
| 521 | + Http::STATUS_FORBIDDEN |
|
| 522 | + ); |
|
| 523 | + } |
|
| 524 | + |
|
| 525 | + if($user) { |
|
| 526 | + if($user->delete()) { |
|
| 527 | + return new DataResponse( |
|
| 528 | + array( |
|
| 529 | + 'status' => 'success', |
|
| 530 | + 'data' => array( |
|
| 531 | + 'username' => $id |
|
| 532 | + ) |
|
| 533 | + ), |
|
| 534 | + Http::STATUS_NO_CONTENT |
|
| 535 | + ); |
|
| 536 | + } |
|
| 537 | + } |
|
| 538 | + |
|
| 539 | + return new DataResponse( |
|
| 540 | + array( |
|
| 541 | + 'status' => 'error', |
|
| 542 | + 'data' => array( |
|
| 543 | + 'message' => (string)$this->l10n->t('Unable to delete user.') |
|
| 544 | + ) |
|
| 545 | + ), |
|
| 546 | + Http::STATUS_FORBIDDEN |
|
| 547 | + ); |
|
| 548 | + } |
|
| 549 | + |
|
| 550 | + /** |
|
| 551 | + * @NoAdminRequired |
|
| 552 | + * @NoSubadminRequired |
|
| 553 | + * @PasswordConfirmationRequired |
|
| 554 | + * |
|
| 555 | + * @param string $avatarScope |
|
| 556 | + * @param string $displayname |
|
| 557 | + * @param string $displaynameScope |
|
| 558 | + * @param string $phone |
|
| 559 | + * @param string $phoneScope |
|
| 560 | + * @param string $email |
|
| 561 | + * @param string $emailScope |
|
| 562 | + * @param string $website |
|
| 563 | + * @param string $websiteScope |
|
| 564 | + * @param string $address |
|
| 565 | + * @param string $addressScope |
|
| 566 | + * @param string $twitter |
|
| 567 | + * @param string $twitterScope |
|
| 568 | + * @return DataResponse |
|
| 569 | + */ |
|
| 570 | + public function setUserSettings($avatarScope, |
|
| 571 | + $displayname, |
|
| 572 | + $displaynameScope, |
|
| 573 | + $phone, |
|
| 574 | + $phoneScope, |
|
| 575 | + $email, |
|
| 576 | + $emailScope, |
|
| 577 | + $website, |
|
| 578 | + $websiteScope, |
|
| 579 | + $address, |
|
| 580 | + $addressScope, |
|
| 581 | + $twitter, |
|
| 582 | + $twitterScope |
|
| 583 | + ) { |
|
| 584 | + |
|
| 585 | + if(!empty($email) && !$this->mailer->validateMailAddress($email)) { |
|
| 586 | + return new DataResponse( |
|
| 587 | + array( |
|
| 588 | + 'status' => 'error', |
|
| 589 | + 'data' => array( |
|
| 590 | + 'message' => (string)$this->l10n->t('Invalid mail address') |
|
| 591 | + ) |
|
| 592 | + ), |
|
| 593 | + Http::STATUS_UNPROCESSABLE_ENTITY |
|
| 594 | + ); |
|
| 595 | + } |
|
| 596 | + |
|
| 597 | + $data = [ |
|
| 598 | + AccountManager::PROPERTY_AVATAR => ['scope' => $avatarScope], |
|
| 599 | + AccountManager::PROPERTY_DISPLAYNAME => ['value' => $displayname, 'scope' => $displaynameScope], |
|
| 600 | + AccountManager::PROPERTY_EMAIL=> ['value' => $email, 'scope' => $emailScope], |
|
| 601 | + AccountManager::PROPERTY_WEBSITE => ['value' => $website, 'scope' => $websiteScope], |
|
| 602 | + AccountManager::PROPERTY_ADDRESS => ['value' => $address, 'scope' => $addressScope], |
|
| 603 | + AccountManager::PROPERTY_PHONE => ['value' => $phone, 'scope' => $phoneScope], |
|
| 604 | + AccountManager::PROPERTY_TWITTER => ['value' => $twitter, 'scope' => $twitterScope] |
|
| 605 | + ]; |
|
| 606 | + |
|
| 607 | + $user = $this->userSession->getUser(); |
|
| 608 | + |
|
| 609 | + try { |
|
| 610 | + $this->saveUserSettings($user, $data); |
|
| 611 | + return new DataResponse( |
|
| 612 | + array( |
|
| 613 | + 'status' => 'success', |
|
| 614 | + 'data' => array( |
|
| 615 | + 'userId' => $user->getUID(), |
|
| 616 | + 'avatarScope' => $avatarScope, |
|
| 617 | + 'displayname' => $displayname, |
|
| 618 | + 'displaynameScope' => $displaynameScope, |
|
| 619 | + 'email' => $email, |
|
| 620 | + 'emailScope' => $emailScope, |
|
| 621 | + 'website' => $website, |
|
| 622 | + 'websiteScope' => $websiteScope, |
|
| 623 | + 'address' => $address, |
|
| 624 | + 'addressScope' => $addressScope, |
|
| 625 | + 'message' => (string)$this->l10n->t('Settings saved') |
|
| 626 | + ) |
|
| 627 | + ), |
|
| 628 | + Http::STATUS_OK |
|
| 629 | + ); |
|
| 630 | + } catch (ForbiddenException $e) { |
|
| 631 | + return new DataResponse([ |
|
| 632 | + 'status' => 'error', |
|
| 633 | + 'data' => [ |
|
| 634 | + 'message' => $e->getMessage() |
|
| 635 | + ], |
|
| 636 | + ]); |
|
| 637 | + } |
|
| 638 | + |
|
| 639 | + } |
|
| 640 | + |
|
| 641 | + |
|
| 642 | + /** |
|
| 643 | + * update account manager with new user data |
|
| 644 | + * |
|
| 645 | + * @param IUser $user |
|
| 646 | + * @param array $data |
|
| 647 | + * @throws ForbiddenException |
|
| 648 | + */ |
|
| 649 | + protected function saveUserSettings(IUser $user, $data) { |
|
| 650 | + |
|
| 651 | + // keep the user back-end up-to-date with the latest display name and email |
|
| 652 | + // address |
|
| 653 | + $oldDisplayName = $user->getDisplayName(); |
|
| 654 | + $oldDisplayName = is_null($oldDisplayName) ? '' : $oldDisplayName; |
|
| 655 | + if (isset($data[AccountManager::PROPERTY_DISPLAYNAME]['value']) |
|
| 656 | + && $oldDisplayName !== $data[AccountManager::PROPERTY_DISPLAYNAME]['value'] |
|
| 657 | + ) { |
|
| 658 | + $result = $user->setDisplayName($data[AccountManager::PROPERTY_DISPLAYNAME]['value']); |
|
| 659 | + if ($result === false) { |
|
| 660 | + throw new ForbiddenException($this->l10n->t('Unable to change full name')); |
|
| 661 | + } |
|
| 662 | + } |
|
| 663 | + |
|
| 664 | + $oldEmailAddress = $user->getEMailAddress(); |
|
| 665 | + $oldEmailAddress = is_null($oldEmailAddress) ? '' : $oldEmailAddress; |
|
| 666 | + if (isset($data[AccountManager::PROPERTY_EMAIL]['value']) |
|
| 667 | + && $oldEmailAddress !== $data[AccountManager::PROPERTY_EMAIL]['value'] |
|
| 668 | + ) { |
|
| 669 | + // this is the only permission a backend provides and is also used |
|
| 670 | + // for the permission of setting a email address |
|
| 671 | + if (!$user->canChangeDisplayName()) { |
|
| 672 | + throw new ForbiddenException($this->l10n->t('Unable to change email address')); |
|
| 673 | + } |
|
| 674 | + $user->setEMailAddress($data[AccountManager::PROPERTY_EMAIL]['value']); |
|
| 675 | + } |
|
| 676 | + |
|
| 677 | + $this->accountManager->updateUser($user, $data); |
|
| 678 | + } |
|
| 679 | + |
|
| 680 | + /** |
|
| 681 | + * Count all unique users visible for the current admin/subadmin. |
|
| 682 | + * |
|
| 683 | + * @NoAdminRequired |
|
| 684 | + * |
|
| 685 | + * @return DataResponse |
|
| 686 | + */ |
|
| 687 | + public function stats() { |
|
| 688 | + $userCount = 0; |
|
| 689 | + if ($this->isAdmin) { |
|
| 690 | + $countByBackend = $this->userManager->countUsers(); |
|
| 691 | + |
|
| 692 | + if (!empty($countByBackend)) { |
|
| 693 | + foreach ($countByBackend as $count) { |
|
| 694 | + $userCount += $count; |
|
| 695 | + } |
|
| 696 | + } |
|
| 697 | + } else { |
|
| 698 | + $groups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($this->userSession->getUser()); |
|
| 699 | + |
|
| 700 | + $uniqueUsers = []; |
|
| 701 | + foreach ($groups as $group) { |
|
| 702 | + foreach($group->getUsers() as $uid => $displayName) { |
|
| 703 | + $uniqueUsers[$uid] = true; |
|
| 704 | + } |
|
| 705 | + } |
|
| 706 | + |
|
| 707 | + $userCount = count($uniqueUsers); |
|
| 708 | + } |
|
| 709 | + |
|
| 710 | + return new DataResponse( |
|
| 711 | + [ |
|
| 712 | + 'totalUsers' => $userCount |
|
| 713 | + ] |
|
| 714 | + ); |
|
| 715 | + } |
|
| 716 | + |
|
| 717 | + |
|
| 718 | + /** |
|
| 719 | + * Set the displayName of a user |
|
| 720 | + * |
|
| 721 | + * @NoAdminRequired |
|
| 722 | + * @NoSubadminRequired |
|
| 723 | + * @PasswordConfirmationRequired |
|
| 724 | + * @todo merge into saveUserSettings |
|
| 725 | + * |
|
| 726 | + * @param string $username |
|
| 727 | + * @param string $displayName |
|
| 728 | + * @return DataResponse |
|
| 729 | + */ |
|
| 730 | + public function setDisplayName($username, $displayName) { |
|
| 731 | + $currentUser = $this->userSession->getUser(); |
|
| 732 | + $user = $this->userManager->get($username); |
|
| 733 | + |
|
| 734 | + if ($user === null || |
|
| 735 | + !$user->canChangeDisplayName() || |
|
| 736 | + ( |
|
| 737 | + !$this->groupManager->isAdmin($currentUser->getUID()) && |
|
| 738 | + !$this->groupManager->getSubAdmin()->isUserAccessible($currentUser, $user) && |
|
| 739 | + $currentUser->getUID() !== $username |
|
| 740 | + |
|
| 741 | + ) |
|
| 742 | + ) { |
|
| 743 | + return new DataResponse([ |
|
| 744 | + 'status' => 'error', |
|
| 745 | + 'data' => [ |
|
| 746 | + 'message' => $this->l10n->t('Authentication error'), |
|
| 747 | + ], |
|
| 748 | + ]); |
|
| 749 | + } |
|
| 750 | + |
|
| 751 | + $userData = $this->accountManager->getUser($user); |
|
| 752 | + $userData[AccountManager::PROPERTY_DISPLAYNAME]['value'] = $displayName; |
|
| 753 | + |
|
| 754 | + |
|
| 755 | + try { |
|
| 756 | + $this->saveUserSettings($user, $userData); |
|
| 757 | + return new DataResponse([ |
|
| 758 | + 'status' => 'success', |
|
| 759 | + 'data' => [ |
|
| 760 | + 'message' => $this->l10n->t('Your full name has been changed.'), |
|
| 761 | + 'username' => $username, |
|
| 762 | + 'displayName' => $displayName, |
|
| 763 | + ], |
|
| 764 | + ]); |
|
| 765 | + } catch (ForbiddenException $e) { |
|
| 766 | + return new DataResponse([ |
|
| 767 | + 'status' => 'error', |
|
| 768 | + 'data' => [ |
|
| 769 | + 'message' => $e->getMessage(), |
|
| 770 | + 'displayName' => $user->getDisplayName(), |
|
| 771 | + ], |
|
| 772 | + ]); |
|
| 773 | + } |
|
| 774 | + } |
|
| 775 | + |
|
| 776 | + /** |
|
| 777 | + * Set the mail address of a user |
|
| 778 | + * |
|
| 779 | + * @NoAdminRequired |
|
| 780 | + * @NoSubadminRequired |
|
| 781 | + * @PasswordConfirmationRequired |
|
| 782 | + * |
|
| 783 | + * @param string $id |
|
| 784 | + * @param string $mailAddress |
|
| 785 | + * @return DataResponse |
|
| 786 | + */ |
|
| 787 | + public function setEMailAddress($id, $mailAddress) { |
|
| 788 | + $user = $this->userManager->get($id); |
|
| 789 | + if (!$this->isAdmin |
|
| 790 | + && !$this->groupManager->getSubAdmin()->isUserAccessible($this->userSession->getUser(), $user) |
|
| 791 | + ) { |
|
| 792 | + return new DataResponse( |
|
| 793 | + array( |
|
| 794 | + 'status' => 'error', |
|
| 795 | + 'data' => array( |
|
| 796 | + 'message' => (string)$this->l10n->t('Forbidden') |
|
| 797 | + ) |
|
| 798 | + ), |
|
| 799 | + Http::STATUS_FORBIDDEN |
|
| 800 | + ); |
|
| 801 | + } |
|
| 802 | + |
|
| 803 | + if($mailAddress !== '' && !$this->mailer->validateMailAddress($mailAddress)) { |
|
| 804 | + return new DataResponse( |
|
| 805 | + array( |
|
| 806 | + 'status' => 'error', |
|
| 807 | + 'data' => array( |
|
| 808 | + 'message' => (string)$this->l10n->t('Invalid mail address') |
|
| 809 | + ) |
|
| 810 | + ), |
|
| 811 | + Http::STATUS_UNPROCESSABLE_ENTITY |
|
| 812 | + ); |
|
| 813 | + } |
|
| 814 | + |
|
| 815 | + if (!$user) { |
|
| 816 | + return new DataResponse( |
|
| 817 | + array( |
|
| 818 | + 'status' => 'error', |
|
| 819 | + 'data' => array( |
|
| 820 | + 'message' => (string)$this->l10n->t('Invalid user') |
|
| 821 | + ) |
|
| 822 | + ), |
|
| 823 | + Http::STATUS_UNPROCESSABLE_ENTITY |
|
| 824 | + ); |
|
| 825 | + } |
|
| 826 | + // this is the only permission a backend provides and is also used |
|
| 827 | + // for the permission of setting a email address |
|
| 828 | + if (!$user->canChangeDisplayName()) { |
|
| 829 | + return new DataResponse( |
|
| 830 | + array( |
|
| 831 | + 'status' => 'error', |
|
| 832 | + 'data' => array( |
|
| 833 | + 'message' => (string)$this->l10n->t('Unable to change mail address') |
|
| 834 | + ) |
|
| 835 | + ), |
|
| 836 | + Http::STATUS_FORBIDDEN |
|
| 837 | + ); |
|
| 838 | + } |
|
| 839 | + |
|
| 840 | + $userData = $this->accountManager->getUser($user); |
|
| 841 | + $userData[AccountManager::PROPERTY_EMAIL]['value'] = $mailAddress; |
|
| 842 | + |
|
| 843 | + try { |
|
| 844 | + $this->saveUserSettings($user, $userData); |
|
| 845 | + return new DataResponse( |
|
| 846 | + array( |
|
| 847 | + 'status' => 'success', |
|
| 848 | + 'data' => array( |
|
| 849 | + 'username' => $id, |
|
| 850 | + 'mailAddress' => $mailAddress, |
|
| 851 | + 'message' => (string)$this->l10n->t('Email saved') |
|
| 852 | + ) |
|
| 853 | + ), |
|
| 854 | + Http::STATUS_OK |
|
| 855 | + ); |
|
| 856 | + } catch (ForbiddenException $e) { |
|
| 857 | + return new DataResponse([ |
|
| 858 | + 'status' => 'error', |
|
| 859 | + 'data' => [ |
|
| 860 | + 'message' => $e->getMessage() |
|
| 861 | + ], |
|
| 862 | + ]); |
|
| 863 | + } |
|
| 864 | + } |
|
| 865 | 865 | |
| 866 | 866 | } |
@@ -155,7 +155,7 @@ discard block |
||
| 155 | 155 | |
| 156 | 156 | // check for encryption state - TODO see formatUserForIndex |
| 157 | 157 | $this->isEncryptionAppEnabled = $appManager->isEnabledForUser('encryption'); |
| 158 | - if($this->isEncryptionAppEnabled) { |
|
| 158 | + if ($this->isEncryptionAppEnabled) { |
|
| 159 | 159 | // putting this directly in empty is possible in PHP 5.5+ |
| 160 | 160 | $result = $config->getAppValue('encryption', 'recoveryAdminEnabled', 0); |
| 161 | 161 | $this->isRestoreEnabled = !empty($result); |
@@ -195,7 +195,7 @@ discard block |
||
| 195 | 195 | } |
| 196 | 196 | |
| 197 | 197 | $subAdminGroups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($user); |
| 198 | - foreach($subAdminGroups as $key => $subAdminGroup) { |
|
| 198 | + foreach ($subAdminGroups as $key => $subAdminGroup) { |
|
| 199 | 199 | $subAdminGroups[$key] = $subAdminGroup->getGID(); |
| 200 | 200 | } |
| 201 | 201 | |
@@ -252,16 +252,16 @@ discard block |
||
| 252 | 252 | */ |
| 253 | 253 | public function index($offset = 0, $limit = 10, $gid = '', $pattern = '', $backend = '') { |
| 254 | 254 | // FIXME: The JS sends the group '_everyone' instead of no GID for the "all users" group. |
| 255 | - if($gid === '_everyone') { |
|
| 255 | + if ($gid === '_everyone') { |
|
| 256 | 256 | $gid = ''; |
| 257 | 257 | } |
| 258 | 258 | |
| 259 | 259 | // Remove backends |
| 260 | - if(!empty($backend)) { |
|
| 260 | + if (!empty($backend)) { |
|
| 261 | 261 | $activeBackends = $this->userManager->getBackends(); |
| 262 | 262 | $this->userManager->clearBackends(); |
| 263 | - foreach($activeBackends as $singleActiveBackend) { |
|
| 264 | - if($backend === get_class($singleActiveBackend)) { |
|
| 263 | + foreach ($activeBackends as $singleActiveBackend) { |
|
| 264 | + if ($backend === get_class($singleActiveBackend)) { |
|
| 265 | 265 | $this->userManager->registerBackend($singleActiveBackend); |
| 266 | 266 | break; |
| 267 | 267 | } |
@@ -271,7 +271,7 @@ discard block |
||
| 271 | 271 | $users = []; |
| 272 | 272 | if ($this->isAdmin) { |
| 273 | 273 | |
| 274 | - if($gid !== '') { |
|
| 274 | + if ($gid !== '') { |
|
| 275 | 275 | $batch = $this->getUsersForUID($this->groupManager->displayNamesInGroup($gid, $pattern, $limit, $offset)); |
| 276 | 276 | } else { |
| 277 | 277 | $batch = $this->userManager->search($pattern, $limit, $offset); |
@@ -291,17 +291,17 @@ discard block |
||
| 291 | 291 | $subAdminOfGroups = $gids; |
| 292 | 292 | |
| 293 | 293 | // Set the $gid parameter to an empty value if the subadmin has no rights to access a specific group |
| 294 | - if($gid !== '' && !in_array($gid, $subAdminOfGroups)) { |
|
| 294 | + if ($gid !== '' && !in_array($gid, $subAdminOfGroups)) { |
|
| 295 | 295 | $gid = ''; |
| 296 | 296 | } |
| 297 | 297 | |
| 298 | 298 | // Batch all groups the user is subadmin of when a group is specified |
| 299 | 299 | $batch = []; |
| 300 | - if($gid === '') { |
|
| 301 | - foreach($subAdminOfGroups as $group) { |
|
| 300 | + if ($gid === '') { |
|
| 301 | + foreach ($subAdminOfGroups as $group) { |
|
| 302 | 302 | $groupUsers = $this->groupManager->displayNamesInGroup($group, $pattern, $limit, $offset); |
| 303 | 303 | |
| 304 | - foreach($groupUsers as $uid => $displayName) { |
|
| 304 | + foreach ($groupUsers as $uid => $displayName) { |
|
| 305 | 305 | $batch[$uid] = $displayName; |
| 306 | 306 | } |
| 307 | 307 | } |
@@ -333,11 +333,11 @@ discard block |
||
| 333 | 333 | * @param string $email |
| 334 | 334 | * @return DataResponse |
| 335 | 335 | */ |
| 336 | - public function create($username, $password, array $groups=array(), $email='') { |
|
| 337 | - if($email !== '' && !$this->mailer->validateMailAddress($email)) { |
|
| 336 | + public function create($username, $password, array $groups = array(), $email = '') { |
|
| 337 | + if ($email !== '' && !$this->mailer->validateMailAddress($email)) { |
|
| 338 | 338 | return new DataResponse( |
| 339 | 339 | array( |
| 340 | - 'message' => (string)$this->l10n->t('Invalid mail address') |
|
| 340 | + 'message' => (string) $this->l10n->t('Invalid mail address') |
|
| 341 | 341 | ), |
| 342 | 342 | Http::STATUS_UNPROCESSABLE_ENTITY |
| 343 | 343 | ); |
@@ -349,7 +349,7 @@ discard block |
||
| 349 | 349 | if (!empty($groups)) { |
| 350 | 350 | foreach ($groups as $key => $group) { |
| 351 | 351 | $groupObject = $this->groupManager->get($group); |
| 352 | - if($groupObject === null) { |
|
| 352 | + if ($groupObject === null) { |
|
| 353 | 353 | unset($groups[$key]); |
| 354 | 354 | continue; |
| 355 | 355 | } |
@@ -373,7 +373,7 @@ discard block |
||
| 373 | 373 | if ($this->userManager->userExists($username)) { |
| 374 | 374 | return new DataResponse( |
| 375 | 375 | array( |
| 376 | - 'message' => (string)$this->l10n->t('A user with that name already exists.') |
|
| 376 | + 'message' => (string) $this->l10n->t('A user with that name already exists.') |
|
| 377 | 377 | ), |
| 378 | 378 | Http::STATUS_CONFLICT |
| 379 | 379 | ); |
@@ -384,7 +384,7 @@ discard block |
||
| 384 | 384 | if ($email === '') { |
| 385 | 385 | return new DataResponse( |
| 386 | 386 | array( |
| 387 | - 'message' => (string)$this->l10n->t('To send a password link to the user an email address is required.') |
|
| 387 | + 'message' => (string) $this->l10n->t('To send a password link to the user an email address is required.') |
|
| 388 | 388 | ), |
| 389 | 389 | Http::STATUS_UNPROCESSABLE_ENTITY |
| 390 | 390 | ); |
@@ -409,12 +409,12 @@ discard block |
||
| 409 | 409 | ); |
| 410 | 410 | } |
| 411 | 411 | |
| 412 | - if($user instanceof IUser) { |
|
| 413 | - if($groups !== null) { |
|
| 414 | - foreach($groups as $groupName) { |
|
| 412 | + if ($user instanceof IUser) { |
|
| 413 | + if ($groups !== null) { |
|
| 414 | + foreach ($groups as $groupName) { |
|
| 415 | 415 | $group = $this->groupManager->get($groupName); |
| 416 | 416 | |
| 417 | - if(empty($group)) { |
|
| 417 | + if (empty($group)) { |
|
| 418 | 418 | $group = $this->groupManager->createGroup($groupName); |
| 419 | 419 | } |
| 420 | 420 | $group->addUser($user); |
@@ -423,19 +423,19 @@ discard block |
||
| 423 | 423 | /** |
| 424 | 424 | * Send new user mail only if a mail is set |
| 425 | 425 | */ |
| 426 | - if($email !== '') { |
|
| 426 | + if ($email !== '') { |
|
| 427 | 427 | $user->setEMailAddress($email); |
| 428 | 428 | |
| 429 | 429 | if ($generatedPassword) { |
| 430 | 430 | $token = $this->secureRandom->generate( |
| 431 | 431 | 21, |
| 432 | - ISecureRandom::CHAR_DIGITS . |
|
| 433 | - ISecureRandom::CHAR_LOWER . |
|
| 432 | + ISecureRandom::CHAR_DIGITS. |
|
| 433 | + ISecureRandom::CHAR_LOWER. |
|
| 434 | 434 | ISecureRandom::CHAR_UPPER |
| 435 | 435 | ); |
| 436 | - $tokenValue = $this->timeFactory->getTime() . ':' . $token; |
|
| 436 | + $tokenValue = $this->timeFactory->getTime().':'.$token; |
|
| 437 | 437 | $mailAddress = !is_null($user->getEMailAddress()) ? $user->getEMailAddress() : ''; |
| 438 | - $encryptedValue = $this->crypto->encrypt($tokenValue, $mailAddress . $this->config->getSystemValue('secret')); |
|
| 438 | + $encryptedValue = $this->crypto->encrypt($tokenValue, $mailAddress.$this->config->getSystemValue('secret')); |
|
| 439 | 439 | $this->config->setUserValue($username, 'core', 'lostpassword', $encryptedValue); |
| 440 | 440 | |
| 441 | 441 | $link = $this->urlGenerator->linkToRouteAbsolute('core.lost.resetform', ['userId' => $username, 'token' => $token]); |
@@ -465,8 +465,8 @@ discard block |
||
| 465 | 465 | $message->setPlainBody($plainTextMailContent); |
| 466 | 466 | $message->setFrom([$this->fromMailAddress => $this->defaults->getName()]); |
| 467 | 467 | $this->mailer->send($message); |
| 468 | - } catch(\Exception $e) { |
|
| 469 | - $this->log->error("Can't send new user mail to $email: " . $e->getMessage(), array('app' => 'settings')); |
|
| 468 | + } catch (\Exception $e) { |
|
| 469 | + $this->log->error("Can't send new user mail to $email: ".$e->getMessage(), array('app' => 'settings')); |
|
| 470 | 470 | } |
| 471 | 471 | } |
| 472 | 472 | // fetch users groups |
@@ -480,7 +480,7 @@ discard block |
||
| 480 | 480 | |
| 481 | 481 | return new DataResponse( |
| 482 | 482 | array( |
| 483 | - 'message' => (string)$this->l10n->t('Unable to create user.') |
|
| 483 | + 'message' => (string) $this->l10n->t('Unable to create user.') |
|
| 484 | 484 | ), |
| 485 | 485 | Http::STATUS_FORBIDDEN |
| 486 | 486 | ); |
@@ -498,32 +498,32 @@ discard block |
||
| 498 | 498 | $userId = $this->userSession->getUser()->getUID(); |
| 499 | 499 | $user = $this->userManager->get($id); |
| 500 | 500 | |
| 501 | - if($userId === $id) { |
|
| 501 | + if ($userId === $id) { |
|
| 502 | 502 | return new DataResponse( |
| 503 | 503 | array( |
| 504 | 504 | 'status' => 'error', |
| 505 | 505 | 'data' => array( |
| 506 | - 'message' => (string)$this->l10n->t('Unable to delete user.') |
|
| 506 | + 'message' => (string) $this->l10n->t('Unable to delete user.') |
|
| 507 | 507 | ) |
| 508 | 508 | ), |
| 509 | 509 | Http::STATUS_FORBIDDEN |
| 510 | 510 | ); |
| 511 | 511 | } |
| 512 | 512 | |
| 513 | - if(!$this->isAdmin && !$this->groupManager->getSubAdmin()->isUserAccessible($this->userSession->getUser(), $user)) { |
|
| 513 | + if (!$this->isAdmin && !$this->groupManager->getSubAdmin()->isUserAccessible($this->userSession->getUser(), $user)) { |
|
| 514 | 514 | return new DataResponse( |
| 515 | 515 | array( |
| 516 | 516 | 'status' => 'error', |
| 517 | 517 | 'data' => array( |
| 518 | - 'message' => (string)$this->l10n->t('Authentication error') |
|
| 518 | + 'message' => (string) $this->l10n->t('Authentication error') |
|
| 519 | 519 | ) |
| 520 | 520 | ), |
| 521 | 521 | Http::STATUS_FORBIDDEN |
| 522 | 522 | ); |
| 523 | 523 | } |
| 524 | 524 | |
| 525 | - if($user) { |
|
| 526 | - if($user->delete()) { |
|
| 525 | + if ($user) { |
|
| 526 | + if ($user->delete()) { |
|
| 527 | 527 | return new DataResponse( |
| 528 | 528 | array( |
| 529 | 529 | 'status' => 'success', |
@@ -540,7 +540,7 @@ discard block |
||
| 540 | 540 | array( |
| 541 | 541 | 'status' => 'error', |
| 542 | 542 | 'data' => array( |
| 543 | - 'message' => (string)$this->l10n->t('Unable to delete user.') |
|
| 543 | + 'message' => (string) $this->l10n->t('Unable to delete user.') |
|
| 544 | 544 | ) |
| 545 | 545 | ), |
| 546 | 546 | Http::STATUS_FORBIDDEN |
@@ -582,12 +582,12 @@ discard block |
||
| 582 | 582 | $twitterScope |
| 583 | 583 | ) { |
| 584 | 584 | |
| 585 | - if(!empty($email) && !$this->mailer->validateMailAddress($email)) { |
|
| 585 | + if (!empty($email) && !$this->mailer->validateMailAddress($email)) { |
|
| 586 | 586 | return new DataResponse( |
| 587 | 587 | array( |
| 588 | 588 | 'status' => 'error', |
| 589 | 589 | 'data' => array( |
| 590 | - 'message' => (string)$this->l10n->t('Invalid mail address') |
|
| 590 | + 'message' => (string) $this->l10n->t('Invalid mail address') |
|
| 591 | 591 | ) |
| 592 | 592 | ), |
| 593 | 593 | Http::STATUS_UNPROCESSABLE_ENTITY |
@@ -622,7 +622,7 @@ discard block |
||
| 622 | 622 | 'websiteScope' => $websiteScope, |
| 623 | 623 | 'address' => $address, |
| 624 | 624 | 'addressScope' => $addressScope, |
| 625 | - 'message' => (string)$this->l10n->t('Settings saved') |
|
| 625 | + 'message' => (string) $this->l10n->t('Settings saved') |
|
| 626 | 626 | ) |
| 627 | 627 | ), |
| 628 | 628 | Http::STATUS_OK |
@@ -699,7 +699,7 @@ discard block |
||
| 699 | 699 | |
| 700 | 700 | $uniqueUsers = []; |
| 701 | 701 | foreach ($groups as $group) { |
| 702 | - foreach($group->getUsers() as $uid => $displayName) { |
|
| 702 | + foreach ($group->getUsers() as $uid => $displayName) { |
|
| 703 | 703 | $uniqueUsers[$uid] = true; |
| 704 | 704 | } |
| 705 | 705 | } |
@@ -793,19 +793,19 @@ discard block |
||
| 793 | 793 | array( |
| 794 | 794 | 'status' => 'error', |
| 795 | 795 | 'data' => array( |
| 796 | - 'message' => (string)$this->l10n->t('Forbidden') |
|
| 796 | + 'message' => (string) $this->l10n->t('Forbidden') |
|
| 797 | 797 | ) |
| 798 | 798 | ), |
| 799 | 799 | Http::STATUS_FORBIDDEN |
| 800 | 800 | ); |
| 801 | 801 | } |
| 802 | 802 | |
| 803 | - if($mailAddress !== '' && !$this->mailer->validateMailAddress($mailAddress)) { |
|
| 803 | + if ($mailAddress !== '' && !$this->mailer->validateMailAddress($mailAddress)) { |
|
| 804 | 804 | return new DataResponse( |
| 805 | 805 | array( |
| 806 | 806 | 'status' => 'error', |
| 807 | 807 | 'data' => array( |
| 808 | - 'message' => (string)$this->l10n->t('Invalid mail address') |
|
| 808 | + 'message' => (string) $this->l10n->t('Invalid mail address') |
|
| 809 | 809 | ) |
| 810 | 810 | ), |
| 811 | 811 | Http::STATUS_UNPROCESSABLE_ENTITY |
@@ -817,7 +817,7 @@ discard block |
||
| 817 | 817 | array( |
| 818 | 818 | 'status' => 'error', |
| 819 | 819 | 'data' => array( |
| 820 | - 'message' => (string)$this->l10n->t('Invalid user') |
|
| 820 | + 'message' => (string) $this->l10n->t('Invalid user') |
|
| 821 | 821 | ) |
| 822 | 822 | ), |
| 823 | 823 | Http::STATUS_UNPROCESSABLE_ENTITY |
@@ -830,7 +830,7 @@ discard block |
||
| 830 | 830 | array( |
| 831 | 831 | 'status' => 'error', |
| 832 | 832 | 'data' => array( |
| 833 | - 'message' => (string)$this->l10n->t('Unable to change mail address') |
|
| 833 | + 'message' => (string) $this->l10n->t('Unable to change mail address') |
|
| 834 | 834 | ) |
| 835 | 835 | ), |
| 836 | 836 | Http::STATUS_FORBIDDEN |
@@ -848,7 +848,7 @@ discard block |
||
| 848 | 848 | 'data' => array( |
| 849 | 849 | 'username' => $id, |
| 850 | 850 | 'mailAddress' => $mailAddress, |
| 851 | - 'message' => (string)$this->l10n->t('Email saved') |
|
| 851 | + 'message' => (string) $this->l10n->t('Email saved') |
|
| 852 | 852 | ) |
| 853 | 853 | ), |
| 854 | 854 | Http::STATUS_OK |
@@ -20,7 +20,6 @@ |
||
| 20 | 20 | */ |
| 21 | 21 | namespace OCA\DAV\CalDAV\Publishing\Xml; |
| 22 | 22 | |
| 23 | -use OCA\DAV\CalDAV\Publishing\PublishPlugin as Plugin; |
|
| 24 | 23 | use Sabre\Xml\Writer; |
| 25 | 24 | use Sabre\Xml\XmlSerializable; |
| 26 | 25 | |
@@ -26,58 +26,58 @@ |
||
| 26 | 26 | |
| 27 | 27 | class Publisher implements XmlSerializable { |
| 28 | 28 | |
| 29 | - /** |
|
| 30 | - * @var string $publishUrl |
|
| 31 | - */ |
|
| 32 | - protected $publishUrl; |
|
| 29 | + /** |
|
| 30 | + * @var string $publishUrl |
|
| 31 | + */ |
|
| 32 | + protected $publishUrl; |
|
| 33 | 33 | |
| 34 | - /** |
|
| 35 | - * @var boolean $isPublished |
|
| 36 | - */ |
|
| 37 | - protected $isPublished; |
|
| 34 | + /** |
|
| 35 | + * @var boolean $isPublished |
|
| 36 | + */ |
|
| 37 | + protected $isPublished; |
|
| 38 | 38 | |
| 39 | - /** |
|
| 40 | - * @param string $publishUrl |
|
| 41 | - * @param boolean $isPublished |
|
| 42 | - */ |
|
| 43 | - function __construct($publishUrl, $isPublished) { |
|
| 44 | - $this->publishUrl = $publishUrl; |
|
| 45 | - $this->isPublished = $isPublished; |
|
| 46 | - } |
|
| 39 | + /** |
|
| 40 | + * @param string $publishUrl |
|
| 41 | + * @param boolean $isPublished |
|
| 42 | + */ |
|
| 43 | + function __construct($publishUrl, $isPublished) { |
|
| 44 | + $this->publishUrl = $publishUrl; |
|
| 45 | + $this->isPublished = $isPublished; |
|
| 46 | + } |
|
| 47 | 47 | |
| 48 | - /** |
|
| 49 | - * @return string |
|
| 50 | - */ |
|
| 51 | - function getValue() { |
|
| 52 | - return $this->publishUrl; |
|
| 53 | - } |
|
| 48 | + /** |
|
| 49 | + * @return string |
|
| 50 | + */ |
|
| 51 | + function getValue() { |
|
| 52 | + return $this->publishUrl; |
|
| 53 | + } |
|
| 54 | 54 | |
| 55 | - /** |
|
| 56 | - * The xmlSerialize metod is called during xml writing. |
|
| 57 | - * |
|
| 58 | - * Use the $writer argument to write its own xml serialization. |
|
| 59 | - * |
|
| 60 | - * An important note: do _not_ create a parent element. Any element |
|
| 61 | - * implementing XmlSerializble should only ever write what's considered |
|
| 62 | - * its 'inner xml'. |
|
| 63 | - * |
|
| 64 | - * The parent of the current element is responsible for writing a |
|
| 65 | - * containing element. |
|
| 66 | - * |
|
| 67 | - * This allows serializers to be re-used for different element names. |
|
| 68 | - * |
|
| 69 | - * If you are opening new elements, you must also close them again. |
|
| 70 | - * |
|
| 71 | - * @param Writer $writer |
|
| 72 | - * @return void |
|
| 73 | - */ |
|
| 74 | - function xmlSerialize(Writer $writer) { |
|
| 75 | - if (!$this->isPublished) { |
|
| 76 | - // for pre-publish-url |
|
| 77 | - $writer->write($this->publishUrl); |
|
| 78 | - } else { |
|
| 79 | - // for publish-url |
|
| 80 | - $writer->writeElement('{DAV:}href', $this->publishUrl); |
|
| 81 | - } |
|
| 82 | - } |
|
| 55 | + /** |
|
| 56 | + * The xmlSerialize metod is called during xml writing. |
|
| 57 | + * |
|
| 58 | + * Use the $writer argument to write its own xml serialization. |
|
| 59 | + * |
|
| 60 | + * An important note: do _not_ create a parent element. Any element |
|
| 61 | + * implementing XmlSerializble should only ever write what's considered |
|
| 62 | + * its 'inner xml'. |
|
| 63 | + * |
|
| 64 | + * The parent of the current element is responsible for writing a |
|
| 65 | + * containing element. |
|
| 66 | + * |
|
| 67 | + * This allows serializers to be re-used for different element names. |
|
| 68 | + * |
|
| 69 | + * If you are opening new elements, you must also close them again. |
|
| 70 | + * |
|
| 71 | + * @param Writer $writer |
|
| 72 | + * @return void |
|
| 73 | + */ |
|
| 74 | + function xmlSerialize(Writer $writer) { |
|
| 75 | + if (!$this->isPublished) { |
|
| 76 | + // for pre-publish-url |
|
| 77 | + $writer->write($this->publishUrl); |
|
| 78 | + } else { |
|
| 79 | + // for publish-url |
|
| 80 | + $writer->writeElement('{DAV:}href', $this->publishUrl); |
|
| 81 | + } |
|
| 82 | + } |
|
| 83 | 83 | } |
@@ -31,7 +31,6 @@ |
||
| 31 | 31 | namespace OCA\DAV\Connector\Sabre; |
| 32 | 32 | |
| 33 | 33 | use OC\Files\View; |
| 34 | -use OCA\DAV\Upload\FutureFile; |
|
| 35 | 34 | use OCP\Files\ForbiddenException; |
| 36 | 35 | use OCP\IPreview; |
| 37 | 36 | use Sabre\DAV\Exception\Forbidden; |
@@ -51,388 +51,388 @@ |
||
| 51 | 51 | |
| 52 | 52 | class FilesPlugin extends ServerPlugin { |
| 53 | 53 | |
| 54 | - // namespace |
|
| 55 | - const NS_OWNCLOUD = 'http://owncloud.org/ns'; |
|
| 56 | - const NS_NEXTCLOUD = 'http://nextcloud.org/ns'; |
|
| 57 | - const FILEID_PROPERTYNAME = '{http://owncloud.org/ns}id'; |
|
| 58 | - const INTERNAL_FILEID_PROPERTYNAME = '{http://owncloud.org/ns}fileid'; |
|
| 59 | - const PERMISSIONS_PROPERTYNAME = '{http://owncloud.org/ns}permissions'; |
|
| 60 | - const SHARE_PERMISSIONS_PROPERTYNAME = '{http://open-collaboration-services.org/ns}share-permissions'; |
|
| 61 | - const DOWNLOADURL_PROPERTYNAME = '{http://owncloud.org/ns}downloadURL'; |
|
| 62 | - const SIZE_PROPERTYNAME = '{http://owncloud.org/ns}size'; |
|
| 63 | - const GETETAG_PROPERTYNAME = '{DAV:}getetag'; |
|
| 64 | - const LASTMODIFIED_PROPERTYNAME = '{DAV:}lastmodified'; |
|
| 65 | - const OWNER_ID_PROPERTYNAME = '{http://owncloud.org/ns}owner-id'; |
|
| 66 | - const OWNER_DISPLAY_NAME_PROPERTYNAME = '{http://owncloud.org/ns}owner-display-name'; |
|
| 67 | - const CHECKSUMS_PROPERTYNAME = '{http://owncloud.org/ns}checksums'; |
|
| 68 | - const DATA_FINGERPRINT_PROPERTYNAME = '{http://owncloud.org/ns}data-fingerprint'; |
|
| 69 | - const HAS_PREVIEW_PROPERTYNAME = '{http://nextcloud.org/ns}has-preview'; |
|
| 70 | - |
|
| 71 | - /** |
|
| 72 | - * Reference to main server object |
|
| 73 | - * |
|
| 74 | - * @var \Sabre\DAV\Server |
|
| 75 | - */ |
|
| 76 | - private $server; |
|
| 77 | - |
|
| 78 | - /** |
|
| 79 | - * @var Tree |
|
| 80 | - */ |
|
| 81 | - private $tree; |
|
| 82 | - |
|
| 83 | - /** |
|
| 84 | - * Whether this is public webdav. |
|
| 85 | - * If true, some returned information will be stripped off. |
|
| 86 | - * |
|
| 87 | - * @var bool |
|
| 88 | - */ |
|
| 89 | - private $isPublic; |
|
| 90 | - |
|
| 91 | - /** |
|
| 92 | - * @var View |
|
| 93 | - */ |
|
| 94 | - private $fileView; |
|
| 95 | - |
|
| 96 | - /** |
|
| 97 | - * @var bool |
|
| 98 | - */ |
|
| 99 | - private $downloadAttachment; |
|
| 100 | - |
|
| 101 | - /** |
|
| 102 | - * @var IConfig |
|
| 103 | - */ |
|
| 104 | - private $config; |
|
| 105 | - |
|
| 106 | - /** |
|
| 107 | - * @var IRequest |
|
| 108 | - */ |
|
| 109 | - private $request; |
|
| 110 | - |
|
| 111 | - /** |
|
| 112 | - * @var IPreview |
|
| 113 | - */ |
|
| 114 | - private $previewManager; |
|
| 115 | - |
|
| 116 | - /** |
|
| 117 | - * @param Tree $tree |
|
| 118 | - * @param IConfig $config |
|
| 119 | - * @param IRequest $request |
|
| 120 | - * @param IPreview $previewManager |
|
| 121 | - * @param bool $isPublic |
|
| 122 | - * @param bool $downloadAttachment |
|
| 123 | - */ |
|
| 124 | - public function __construct(Tree $tree, |
|
| 125 | - IConfig $config, |
|
| 126 | - IRequest $request, |
|
| 127 | - IPreview $previewManager, |
|
| 128 | - $isPublic = false, |
|
| 129 | - $downloadAttachment = true) { |
|
| 130 | - $this->tree = $tree; |
|
| 131 | - $this->config = $config; |
|
| 132 | - $this->request = $request; |
|
| 133 | - $this->isPublic = $isPublic; |
|
| 134 | - $this->downloadAttachment = $downloadAttachment; |
|
| 135 | - $this->previewManager = $previewManager; |
|
| 136 | - } |
|
| 137 | - |
|
| 138 | - /** |
|
| 139 | - * This initializes the plugin. |
|
| 140 | - * |
|
| 141 | - * This function is called by \Sabre\DAV\Server, after |
|
| 142 | - * addPlugin is called. |
|
| 143 | - * |
|
| 144 | - * This method should set up the required event subscriptions. |
|
| 145 | - * |
|
| 146 | - * @param \Sabre\DAV\Server $server |
|
| 147 | - * @return void |
|
| 148 | - */ |
|
| 149 | - public function initialize(\Sabre\DAV\Server $server) { |
|
| 150 | - |
|
| 151 | - $server->xml->namespaceMap[self::NS_OWNCLOUD] = 'oc'; |
|
| 152 | - $server->xml->namespaceMap[self::NS_NEXTCLOUD] = 'nc'; |
|
| 153 | - $server->protectedProperties[] = self::FILEID_PROPERTYNAME; |
|
| 154 | - $server->protectedProperties[] = self::INTERNAL_FILEID_PROPERTYNAME; |
|
| 155 | - $server->protectedProperties[] = self::PERMISSIONS_PROPERTYNAME; |
|
| 156 | - $server->protectedProperties[] = self::SHARE_PERMISSIONS_PROPERTYNAME; |
|
| 157 | - $server->protectedProperties[] = self::SIZE_PROPERTYNAME; |
|
| 158 | - $server->protectedProperties[] = self::DOWNLOADURL_PROPERTYNAME; |
|
| 159 | - $server->protectedProperties[] = self::OWNER_ID_PROPERTYNAME; |
|
| 160 | - $server->protectedProperties[] = self::OWNER_DISPLAY_NAME_PROPERTYNAME; |
|
| 161 | - $server->protectedProperties[] = self::CHECKSUMS_PROPERTYNAME; |
|
| 162 | - $server->protectedProperties[] = self::DATA_FINGERPRINT_PROPERTYNAME; |
|
| 163 | - $server->protectedProperties[] = self::HAS_PREVIEW_PROPERTYNAME; |
|
| 164 | - |
|
| 165 | - // normally these cannot be changed (RFC4918), but we want them modifiable through PROPPATCH |
|
| 166 | - $allowedProperties = ['{DAV:}getetag']; |
|
| 167 | - $server->protectedProperties = array_diff($server->protectedProperties, $allowedProperties); |
|
| 168 | - |
|
| 169 | - $this->server = $server; |
|
| 170 | - $this->server->on('propFind', array($this, 'handleGetProperties')); |
|
| 171 | - $this->server->on('propPatch', array($this, 'handleUpdateProperties')); |
|
| 172 | - $this->server->on('afterBind', array($this, 'sendFileIdHeader')); |
|
| 173 | - $this->server->on('afterWriteContent', array($this, 'sendFileIdHeader')); |
|
| 174 | - $this->server->on('afterMethod:GET', [$this,'httpGet']); |
|
| 175 | - $this->server->on('afterMethod:GET', array($this, 'handleDownloadToken')); |
|
| 176 | - $this->server->on('afterResponse', function($request, ResponseInterface $response) { |
|
| 177 | - $body = $response->getBody(); |
|
| 178 | - if (is_resource($body)) { |
|
| 179 | - fclose($body); |
|
| 180 | - } |
|
| 181 | - }); |
|
| 182 | - $this->server->on('beforeMove', [$this, 'checkMove']); |
|
| 183 | - } |
|
| 184 | - |
|
| 185 | - /** |
|
| 186 | - * Plugin that checks if a move can actually be performed. |
|
| 187 | - * |
|
| 188 | - * @param string $source source path |
|
| 189 | - * @param string $destination destination path |
|
| 190 | - * @throws Forbidden |
|
| 191 | - * @throws NotFound |
|
| 192 | - */ |
|
| 193 | - function checkMove($source, $destination) { |
|
| 194 | - $sourceNode = $this->tree->getNodeForPath($source); |
|
| 195 | - if (!$sourceNode instanceof Node) { |
|
| 196 | - return; |
|
| 197 | - } |
|
| 198 | - list($sourceDir,) = \Sabre\HTTP\URLUtil::splitPath($source); |
|
| 199 | - list($destinationDir,) = \Sabre\HTTP\URLUtil::splitPath($destination); |
|
| 200 | - |
|
| 201 | - if ($sourceDir !== $destinationDir) { |
|
| 202 | - $sourceNodeFileInfo = $sourceNode->getFileInfo(); |
|
| 203 | - if (is_null($sourceNodeFileInfo)) { |
|
| 204 | - throw new NotFound($source . ' does not exist'); |
|
| 205 | - } |
|
| 206 | - |
|
| 207 | - if (!$sourceNodeFileInfo->isDeletable()) { |
|
| 208 | - throw new Forbidden($source . " cannot be deleted"); |
|
| 209 | - } |
|
| 210 | - } |
|
| 211 | - } |
|
| 212 | - |
|
| 213 | - /** |
|
| 214 | - * This sets a cookie to be able to recognize the start of the download |
|
| 215 | - * the content must not be longer than 32 characters and must only contain |
|
| 216 | - * alphanumeric characters |
|
| 217 | - * |
|
| 218 | - * @param RequestInterface $request |
|
| 219 | - * @param ResponseInterface $response |
|
| 220 | - */ |
|
| 221 | - function handleDownloadToken(RequestInterface $request, ResponseInterface $response) { |
|
| 222 | - $queryParams = $request->getQueryParameters(); |
|
| 223 | - |
|
| 224 | - /** |
|
| 225 | - * this sets a cookie to be able to recognize the start of the download |
|
| 226 | - * the content must not be longer than 32 characters and must only contain |
|
| 227 | - * alphanumeric characters |
|
| 228 | - */ |
|
| 229 | - if (isset($queryParams['downloadStartSecret'])) { |
|
| 230 | - $token = $queryParams['downloadStartSecret']; |
|
| 231 | - if (!isset($token[32]) |
|
| 232 | - && preg_match('!^[a-zA-Z0-9]+$!', $token) === 1) { |
|
| 233 | - // FIXME: use $response->setHeader() instead |
|
| 234 | - setcookie('ocDownloadStarted', $token, time() + 20, '/'); |
|
| 235 | - } |
|
| 236 | - } |
|
| 237 | - } |
|
| 238 | - |
|
| 239 | - /** |
|
| 240 | - * Add headers to file download |
|
| 241 | - * |
|
| 242 | - * @param RequestInterface $request |
|
| 243 | - * @param ResponseInterface $response |
|
| 244 | - */ |
|
| 245 | - function httpGet(RequestInterface $request, ResponseInterface $response) { |
|
| 246 | - // Only handle valid files |
|
| 247 | - $node = $this->tree->getNodeForPath($request->getPath()); |
|
| 248 | - if (!($node instanceof IFile)) return; |
|
| 249 | - |
|
| 250 | - // adds a 'Content-Disposition: attachment' header in case no disposition |
|
| 251 | - // header has been set before |
|
| 252 | - if ($this->downloadAttachment && |
|
| 253 | - $response->getHeader('Content-Disposition') === null) { |
|
| 254 | - $filename = $node->getName(); |
|
| 255 | - if ($this->request->isUserAgent( |
|
| 256 | - [ |
|
| 257 | - \OC\AppFramework\Http\Request::USER_AGENT_IE, |
|
| 258 | - \OC\AppFramework\Http\Request::USER_AGENT_ANDROID_MOBILE_CHROME, |
|
| 259 | - \OC\AppFramework\Http\Request::USER_AGENT_FREEBOX, |
|
| 260 | - ])) { |
|
| 261 | - $response->addHeader('Content-Disposition', 'attachment; filename="' . rawurlencode($filename) . '"'); |
|
| 262 | - } else { |
|
| 263 | - $response->addHeader('Content-Disposition', 'attachment; filename*=UTF-8\'\'' . rawurlencode($filename) |
|
| 264 | - . '; filename="' . rawurlencode($filename) . '"'); |
|
| 265 | - } |
|
| 266 | - } |
|
| 267 | - |
|
| 268 | - if ($node instanceof \OCA\DAV\Connector\Sabre\File) { |
|
| 269 | - //Add OC-Checksum header |
|
| 270 | - /** @var $node File */ |
|
| 271 | - $checksum = $node->getChecksum(); |
|
| 272 | - if ($checksum !== null && $checksum !== '') { |
|
| 273 | - $response->addHeader('OC-Checksum', $checksum); |
|
| 274 | - } |
|
| 275 | - } |
|
| 276 | - } |
|
| 277 | - |
|
| 278 | - /** |
|
| 279 | - * Adds all ownCloud-specific properties |
|
| 280 | - * |
|
| 281 | - * @param PropFind $propFind |
|
| 282 | - * @param \Sabre\DAV\INode $node |
|
| 283 | - * @return void |
|
| 284 | - */ |
|
| 285 | - public function handleGetProperties(PropFind $propFind, \Sabre\DAV\INode $node) { |
|
| 286 | - |
|
| 287 | - $httpRequest = $this->server->httpRequest; |
|
| 288 | - |
|
| 289 | - if ($node instanceof \OCA\DAV\Connector\Sabre\Node) { |
|
| 290 | - |
|
| 291 | - $propFind->handle(self::FILEID_PROPERTYNAME, function() use ($node) { |
|
| 292 | - return $node->getFileId(); |
|
| 293 | - }); |
|
| 294 | - |
|
| 295 | - $propFind->handle(self::INTERNAL_FILEID_PROPERTYNAME, function() use ($node) { |
|
| 296 | - return $node->getInternalFileId(); |
|
| 297 | - }); |
|
| 298 | - |
|
| 299 | - $propFind->handle(self::PERMISSIONS_PROPERTYNAME, function() use ($node) { |
|
| 300 | - $perms = $node->getDavPermissions(); |
|
| 301 | - if ($this->isPublic) { |
|
| 302 | - // remove mount information |
|
| 303 | - $perms = str_replace(['S', 'M'], '', $perms); |
|
| 304 | - } |
|
| 305 | - return $perms; |
|
| 306 | - }); |
|
| 307 | - |
|
| 308 | - $propFind->handle(self::SHARE_PERMISSIONS_PROPERTYNAME, function() use ($node, $httpRequest) { |
|
| 309 | - return $node->getSharePermissions( |
|
| 310 | - $httpRequest->getRawServerValue('PHP_AUTH_USER') |
|
| 311 | - ); |
|
| 312 | - }); |
|
| 313 | - |
|
| 314 | - $propFind->handle(self::GETETAG_PROPERTYNAME, function() use ($node) { |
|
| 315 | - return $node->getETag(); |
|
| 316 | - }); |
|
| 317 | - |
|
| 318 | - $propFind->handle(self::OWNER_ID_PROPERTYNAME, function() use ($node) { |
|
| 319 | - $owner = $node->getOwner(); |
|
| 320 | - return $owner->getUID(); |
|
| 321 | - }); |
|
| 322 | - $propFind->handle(self::OWNER_DISPLAY_NAME_PROPERTYNAME, function() use ($node) { |
|
| 323 | - $owner = $node->getOwner(); |
|
| 324 | - $displayName = $owner->getDisplayName(); |
|
| 325 | - return $displayName; |
|
| 326 | - }); |
|
| 327 | - |
|
| 328 | - $propFind->handle(self::HAS_PREVIEW_PROPERTYNAME, function () use ($node) { |
|
| 329 | - return json_encode($this->previewManager->isAvailable($node->getFileInfo())); |
|
| 330 | - }); |
|
| 331 | - $propFind->handle(self::SIZE_PROPERTYNAME, function() use ($node) { |
|
| 332 | - return $node->getSize(); |
|
| 333 | - }); |
|
| 334 | - } |
|
| 335 | - |
|
| 336 | - if ($node instanceof \OCA\DAV\Connector\Sabre\Node) { |
|
| 337 | - $propFind->handle(self::DATA_FINGERPRINT_PROPERTYNAME, function() use ($node) { |
|
| 338 | - return $this->config->getSystemValue('data-fingerprint', ''); |
|
| 339 | - }); |
|
| 340 | - } |
|
| 341 | - |
|
| 342 | - if ($node instanceof \OCA\DAV\Connector\Sabre\File) { |
|
| 343 | - $propFind->handle(self::DOWNLOADURL_PROPERTYNAME, function() use ($node) { |
|
| 344 | - /** @var $node \OCA\DAV\Connector\Sabre\File */ |
|
| 345 | - try { |
|
| 346 | - $directDownloadUrl = $node->getDirectDownload(); |
|
| 347 | - if (isset($directDownloadUrl['url'])) { |
|
| 348 | - return $directDownloadUrl['url']; |
|
| 349 | - } |
|
| 350 | - } catch (StorageNotAvailableException $e) { |
|
| 351 | - return false; |
|
| 352 | - } catch (ForbiddenException $e) { |
|
| 353 | - return false; |
|
| 354 | - } |
|
| 355 | - return false; |
|
| 356 | - }); |
|
| 357 | - |
|
| 358 | - $propFind->handle(self::CHECKSUMS_PROPERTYNAME, function() use ($node) { |
|
| 359 | - $checksum = $node->getChecksum(); |
|
| 360 | - if ($checksum === NULL || $checksum === '') { |
|
| 361 | - return null; |
|
| 362 | - } |
|
| 363 | - |
|
| 364 | - return new ChecksumList($checksum); |
|
| 365 | - }); |
|
| 366 | - |
|
| 367 | - } |
|
| 368 | - |
|
| 369 | - if ($node instanceof \OCA\DAV\Connector\Sabre\Directory) { |
|
| 370 | - $propFind->handle(self::SIZE_PROPERTYNAME, function() use ($node) { |
|
| 371 | - return $node->getSize(); |
|
| 372 | - }); |
|
| 373 | - } |
|
| 374 | - } |
|
| 375 | - |
|
| 376 | - /** |
|
| 377 | - * Update ownCloud-specific properties |
|
| 378 | - * |
|
| 379 | - * @param string $path |
|
| 380 | - * @param PropPatch $propPatch |
|
| 381 | - * |
|
| 382 | - * @return void |
|
| 383 | - */ |
|
| 384 | - public function handleUpdateProperties($path, PropPatch $propPatch) { |
|
| 385 | - $propPatch->handle(self::LASTMODIFIED_PROPERTYNAME, function($time) use ($path) { |
|
| 386 | - if (empty($time)) { |
|
| 387 | - return false; |
|
| 388 | - } |
|
| 389 | - $node = $this->tree->getNodeForPath($path); |
|
| 390 | - if (is_null($node)) { |
|
| 391 | - return 404; |
|
| 392 | - } |
|
| 393 | - $node->touch($time); |
|
| 394 | - return true; |
|
| 395 | - }); |
|
| 396 | - $propPatch->handle(self::GETETAG_PROPERTYNAME, function($etag) use ($path) { |
|
| 397 | - if (empty($etag)) { |
|
| 398 | - return false; |
|
| 399 | - } |
|
| 400 | - $node = $this->tree->getNodeForPath($path); |
|
| 401 | - if (is_null($node)) { |
|
| 402 | - return 404; |
|
| 403 | - } |
|
| 404 | - if ($node->setEtag($etag) !== -1) { |
|
| 405 | - return true; |
|
| 406 | - } |
|
| 407 | - return false; |
|
| 408 | - }); |
|
| 409 | - } |
|
| 410 | - |
|
| 411 | - /** |
|
| 412 | - * @param string $filePath |
|
| 413 | - * @param \Sabre\DAV\INode $node |
|
| 414 | - * @throws \Sabre\DAV\Exception\BadRequest |
|
| 415 | - */ |
|
| 416 | - public function sendFileIdHeader($filePath, \Sabre\DAV\INode $node = null) { |
|
| 417 | - // chunked upload handling |
|
| 418 | - if (isset($_SERVER['HTTP_OC_CHUNKED'])) { |
|
| 419 | - list($path, $name) = \Sabre\HTTP\URLUtil::splitPath($filePath); |
|
| 420 | - $info = \OC_FileChunking::decodeName($name); |
|
| 421 | - if (!empty($info)) { |
|
| 422 | - $filePath = $path . '/' . $info['name']; |
|
| 423 | - } |
|
| 424 | - } |
|
| 425 | - |
|
| 426 | - // we get the node for the given $filePath here because in case of afterCreateFile $node is the parent folder |
|
| 427 | - if (!$this->server->tree->nodeExists($filePath)) { |
|
| 428 | - return; |
|
| 429 | - } |
|
| 430 | - $node = $this->server->tree->getNodeForPath($filePath); |
|
| 431 | - if ($node instanceof \OCA\DAV\Connector\Sabre\Node) { |
|
| 432 | - $fileId = $node->getFileId(); |
|
| 433 | - if (!is_null($fileId)) { |
|
| 434 | - $this->server->httpResponse->setHeader('OC-FileId', $fileId); |
|
| 435 | - } |
|
| 436 | - } |
|
| 437 | - } |
|
| 54 | + // namespace |
|
| 55 | + const NS_OWNCLOUD = 'http://owncloud.org/ns'; |
|
| 56 | + const NS_NEXTCLOUD = 'http://nextcloud.org/ns'; |
|
| 57 | + const FILEID_PROPERTYNAME = '{http://owncloud.org/ns}id'; |
|
| 58 | + const INTERNAL_FILEID_PROPERTYNAME = '{http://owncloud.org/ns}fileid'; |
|
| 59 | + const PERMISSIONS_PROPERTYNAME = '{http://owncloud.org/ns}permissions'; |
|
| 60 | + const SHARE_PERMISSIONS_PROPERTYNAME = '{http://open-collaboration-services.org/ns}share-permissions'; |
|
| 61 | + const DOWNLOADURL_PROPERTYNAME = '{http://owncloud.org/ns}downloadURL'; |
|
| 62 | + const SIZE_PROPERTYNAME = '{http://owncloud.org/ns}size'; |
|
| 63 | + const GETETAG_PROPERTYNAME = '{DAV:}getetag'; |
|
| 64 | + const LASTMODIFIED_PROPERTYNAME = '{DAV:}lastmodified'; |
|
| 65 | + const OWNER_ID_PROPERTYNAME = '{http://owncloud.org/ns}owner-id'; |
|
| 66 | + const OWNER_DISPLAY_NAME_PROPERTYNAME = '{http://owncloud.org/ns}owner-display-name'; |
|
| 67 | + const CHECKSUMS_PROPERTYNAME = '{http://owncloud.org/ns}checksums'; |
|
| 68 | + const DATA_FINGERPRINT_PROPERTYNAME = '{http://owncloud.org/ns}data-fingerprint'; |
|
| 69 | + const HAS_PREVIEW_PROPERTYNAME = '{http://nextcloud.org/ns}has-preview'; |
|
| 70 | + |
|
| 71 | + /** |
|
| 72 | + * Reference to main server object |
|
| 73 | + * |
|
| 74 | + * @var \Sabre\DAV\Server |
|
| 75 | + */ |
|
| 76 | + private $server; |
|
| 77 | + |
|
| 78 | + /** |
|
| 79 | + * @var Tree |
|
| 80 | + */ |
|
| 81 | + private $tree; |
|
| 82 | + |
|
| 83 | + /** |
|
| 84 | + * Whether this is public webdav. |
|
| 85 | + * If true, some returned information will be stripped off. |
|
| 86 | + * |
|
| 87 | + * @var bool |
|
| 88 | + */ |
|
| 89 | + private $isPublic; |
|
| 90 | + |
|
| 91 | + /** |
|
| 92 | + * @var View |
|
| 93 | + */ |
|
| 94 | + private $fileView; |
|
| 95 | + |
|
| 96 | + /** |
|
| 97 | + * @var bool |
|
| 98 | + */ |
|
| 99 | + private $downloadAttachment; |
|
| 100 | + |
|
| 101 | + /** |
|
| 102 | + * @var IConfig |
|
| 103 | + */ |
|
| 104 | + private $config; |
|
| 105 | + |
|
| 106 | + /** |
|
| 107 | + * @var IRequest |
|
| 108 | + */ |
|
| 109 | + private $request; |
|
| 110 | + |
|
| 111 | + /** |
|
| 112 | + * @var IPreview |
|
| 113 | + */ |
|
| 114 | + private $previewManager; |
|
| 115 | + |
|
| 116 | + /** |
|
| 117 | + * @param Tree $tree |
|
| 118 | + * @param IConfig $config |
|
| 119 | + * @param IRequest $request |
|
| 120 | + * @param IPreview $previewManager |
|
| 121 | + * @param bool $isPublic |
|
| 122 | + * @param bool $downloadAttachment |
|
| 123 | + */ |
|
| 124 | + public function __construct(Tree $tree, |
|
| 125 | + IConfig $config, |
|
| 126 | + IRequest $request, |
|
| 127 | + IPreview $previewManager, |
|
| 128 | + $isPublic = false, |
|
| 129 | + $downloadAttachment = true) { |
|
| 130 | + $this->tree = $tree; |
|
| 131 | + $this->config = $config; |
|
| 132 | + $this->request = $request; |
|
| 133 | + $this->isPublic = $isPublic; |
|
| 134 | + $this->downloadAttachment = $downloadAttachment; |
|
| 135 | + $this->previewManager = $previewManager; |
|
| 136 | + } |
|
| 137 | + |
|
| 138 | + /** |
|
| 139 | + * This initializes the plugin. |
|
| 140 | + * |
|
| 141 | + * This function is called by \Sabre\DAV\Server, after |
|
| 142 | + * addPlugin is called. |
|
| 143 | + * |
|
| 144 | + * This method should set up the required event subscriptions. |
|
| 145 | + * |
|
| 146 | + * @param \Sabre\DAV\Server $server |
|
| 147 | + * @return void |
|
| 148 | + */ |
|
| 149 | + public function initialize(\Sabre\DAV\Server $server) { |
|
| 150 | + |
|
| 151 | + $server->xml->namespaceMap[self::NS_OWNCLOUD] = 'oc'; |
|
| 152 | + $server->xml->namespaceMap[self::NS_NEXTCLOUD] = 'nc'; |
|
| 153 | + $server->protectedProperties[] = self::FILEID_PROPERTYNAME; |
|
| 154 | + $server->protectedProperties[] = self::INTERNAL_FILEID_PROPERTYNAME; |
|
| 155 | + $server->protectedProperties[] = self::PERMISSIONS_PROPERTYNAME; |
|
| 156 | + $server->protectedProperties[] = self::SHARE_PERMISSIONS_PROPERTYNAME; |
|
| 157 | + $server->protectedProperties[] = self::SIZE_PROPERTYNAME; |
|
| 158 | + $server->protectedProperties[] = self::DOWNLOADURL_PROPERTYNAME; |
|
| 159 | + $server->protectedProperties[] = self::OWNER_ID_PROPERTYNAME; |
|
| 160 | + $server->protectedProperties[] = self::OWNER_DISPLAY_NAME_PROPERTYNAME; |
|
| 161 | + $server->protectedProperties[] = self::CHECKSUMS_PROPERTYNAME; |
|
| 162 | + $server->protectedProperties[] = self::DATA_FINGERPRINT_PROPERTYNAME; |
|
| 163 | + $server->protectedProperties[] = self::HAS_PREVIEW_PROPERTYNAME; |
|
| 164 | + |
|
| 165 | + // normally these cannot be changed (RFC4918), but we want them modifiable through PROPPATCH |
|
| 166 | + $allowedProperties = ['{DAV:}getetag']; |
|
| 167 | + $server->protectedProperties = array_diff($server->protectedProperties, $allowedProperties); |
|
| 168 | + |
|
| 169 | + $this->server = $server; |
|
| 170 | + $this->server->on('propFind', array($this, 'handleGetProperties')); |
|
| 171 | + $this->server->on('propPatch', array($this, 'handleUpdateProperties')); |
|
| 172 | + $this->server->on('afterBind', array($this, 'sendFileIdHeader')); |
|
| 173 | + $this->server->on('afterWriteContent', array($this, 'sendFileIdHeader')); |
|
| 174 | + $this->server->on('afterMethod:GET', [$this,'httpGet']); |
|
| 175 | + $this->server->on('afterMethod:GET', array($this, 'handleDownloadToken')); |
|
| 176 | + $this->server->on('afterResponse', function($request, ResponseInterface $response) { |
|
| 177 | + $body = $response->getBody(); |
|
| 178 | + if (is_resource($body)) { |
|
| 179 | + fclose($body); |
|
| 180 | + } |
|
| 181 | + }); |
|
| 182 | + $this->server->on('beforeMove', [$this, 'checkMove']); |
|
| 183 | + } |
|
| 184 | + |
|
| 185 | + /** |
|
| 186 | + * Plugin that checks if a move can actually be performed. |
|
| 187 | + * |
|
| 188 | + * @param string $source source path |
|
| 189 | + * @param string $destination destination path |
|
| 190 | + * @throws Forbidden |
|
| 191 | + * @throws NotFound |
|
| 192 | + */ |
|
| 193 | + function checkMove($source, $destination) { |
|
| 194 | + $sourceNode = $this->tree->getNodeForPath($source); |
|
| 195 | + if (!$sourceNode instanceof Node) { |
|
| 196 | + return; |
|
| 197 | + } |
|
| 198 | + list($sourceDir,) = \Sabre\HTTP\URLUtil::splitPath($source); |
|
| 199 | + list($destinationDir,) = \Sabre\HTTP\URLUtil::splitPath($destination); |
|
| 200 | + |
|
| 201 | + if ($sourceDir !== $destinationDir) { |
|
| 202 | + $sourceNodeFileInfo = $sourceNode->getFileInfo(); |
|
| 203 | + if (is_null($sourceNodeFileInfo)) { |
|
| 204 | + throw new NotFound($source . ' does not exist'); |
|
| 205 | + } |
|
| 206 | + |
|
| 207 | + if (!$sourceNodeFileInfo->isDeletable()) { |
|
| 208 | + throw new Forbidden($source . " cannot be deleted"); |
|
| 209 | + } |
|
| 210 | + } |
|
| 211 | + } |
|
| 212 | + |
|
| 213 | + /** |
|
| 214 | + * This sets a cookie to be able to recognize the start of the download |
|
| 215 | + * the content must not be longer than 32 characters and must only contain |
|
| 216 | + * alphanumeric characters |
|
| 217 | + * |
|
| 218 | + * @param RequestInterface $request |
|
| 219 | + * @param ResponseInterface $response |
|
| 220 | + */ |
|
| 221 | + function handleDownloadToken(RequestInterface $request, ResponseInterface $response) { |
|
| 222 | + $queryParams = $request->getQueryParameters(); |
|
| 223 | + |
|
| 224 | + /** |
|
| 225 | + * this sets a cookie to be able to recognize the start of the download |
|
| 226 | + * the content must not be longer than 32 characters and must only contain |
|
| 227 | + * alphanumeric characters |
|
| 228 | + */ |
|
| 229 | + if (isset($queryParams['downloadStartSecret'])) { |
|
| 230 | + $token = $queryParams['downloadStartSecret']; |
|
| 231 | + if (!isset($token[32]) |
|
| 232 | + && preg_match('!^[a-zA-Z0-9]+$!', $token) === 1) { |
|
| 233 | + // FIXME: use $response->setHeader() instead |
|
| 234 | + setcookie('ocDownloadStarted', $token, time() + 20, '/'); |
|
| 235 | + } |
|
| 236 | + } |
|
| 237 | + } |
|
| 238 | + |
|
| 239 | + /** |
|
| 240 | + * Add headers to file download |
|
| 241 | + * |
|
| 242 | + * @param RequestInterface $request |
|
| 243 | + * @param ResponseInterface $response |
|
| 244 | + */ |
|
| 245 | + function httpGet(RequestInterface $request, ResponseInterface $response) { |
|
| 246 | + // Only handle valid files |
|
| 247 | + $node = $this->tree->getNodeForPath($request->getPath()); |
|
| 248 | + if (!($node instanceof IFile)) return; |
|
| 249 | + |
|
| 250 | + // adds a 'Content-Disposition: attachment' header in case no disposition |
|
| 251 | + // header has been set before |
|
| 252 | + if ($this->downloadAttachment && |
|
| 253 | + $response->getHeader('Content-Disposition') === null) { |
|
| 254 | + $filename = $node->getName(); |
|
| 255 | + if ($this->request->isUserAgent( |
|
| 256 | + [ |
|
| 257 | + \OC\AppFramework\Http\Request::USER_AGENT_IE, |
|
| 258 | + \OC\AppFramework\Http\Request::USER_AGENT_ANDROID_MOBILE_CHROME, |
|
| 259 | + \OC\AppFramework\Http\Request::USER_AGENT_FREEBOX, |
|
| 260 | + ])) { |
|
| 261 | + $response->addHeader('Content-Disposition', 'attachment; filename="' . rawurlencode($filename) . '"'); |
|
| 262 | + } else { |
|
| 263 | + $response->addHeader('Content-Disposition', 'attachment; filename*=UTF-8\'\'' . rawurlencode($filename) |
|
| 264 | + . '; filename="' . rawurlencode($filename) . '"'); |
|
| 265 | + } |
|
| 266 | + } |
|
| 267 | + |
|
| 268 | + if ($node instanceof \OCA\DAV\Connector\Sabre\File) { |
|
| 269 | + //Add OC-Checksum header |
|
| 270 | + /** @var $node File */ |
|
| 271 | + $checksum = $node->getChecksum(); |
|
| 272 | + if ($checksum !== null && $checksum !== '') { |
|
| 273 | + $response->addHeader('OC-Checksum', $checksum); |
|
| 274 | + } |
|
| 275 | + } |
|
| 276 | + } |
|
| 277 | + |
|
| 278 | + /** |
|
| 279 | + * Adds all ownCloud-specific properties |
|
| 280 | + * |
|
| 281 | + * @param PropFind $propFind |
|
| 282 | + * @param \Sabre\DAV\INode $node |
|
| 283 | + * @return void |
|
| 284 | + */ |
|
| 285 | + public function handleGetProperties(PropFind $propFind, \Sabre\DAV\INode $node) { |
|
| 286 | + |
|
| 287 | + $httpRequest = $this->server->httpRequest; |
|
| 288 | + |
|
| 289 | + if ($node instanceof \OCA\DAV\Connector\Sabre\Node) { |
|
| 290 | + |
|
| 291 | + $propFind->handle(self::FILEID_PROPERTYNAME, function() use ($node) { |
|
| 292 | + return $node->getFileId(); |
|
| 293 | + }); |
|
| 294 | + |
|
| 295 | + $propFind->handle(self::INTERNAL_FILEID_PROPERTYNAME, function() use ($node) { |
|
| 296 | + return $node->getInternalFileId(); |
|
| 297 | + }); |
|
| 298 | + |
|
| 299 | + $propFind->handle(self::PERMISSIONS_PROPERTYNAME, function() use ($node) { |
|
| 300 | + $perms = $node->getDavPermissions(); |
|
| 301 | + if ($this->isPublic) { |
|
| 302 | + // remove mount information |
|
| 303 | + $perms = str_replace(['S', 'M'], '', $perms); |
|
| 304 | + } |
|
| 305 | + return $perms; |
|
| 306 | + }); |
|
| 307 | + |
|
| 308 | + $propFind->handle(self::SHARE_PERMISSIONS_PROPERTYNAME, function() use ($node, $httpRequest) { |
|
| 309 | + return $node->getSharePermissions( |
|
| 310 | + $httpRequest->getRawServerValue('PHP_AUTH_USER') |
|
| 311 | + ); |
|
| 312 | + }); |
|
| 313 | + |
|
| 314 | + $propFind->handle(self::GETETAG_PROPERTYNAME, function() use ($node) { |
|
| 315 | + return $node->getETag(); |
|
| 316 | + }); |
|
| 317 | + |
|
| 318 | + $propFind->handle(self::OWNER_ID_PROPERTYNAME, function() use ($node) { |
|
| 319 | + $owner = $node->getOwner(); |
|
| 320 | + return $owner->getUID(); |
|
| 321 | + }); |
|
| 322 | + $propFind->handle(self::OWNER_DISPLAY_NAME_PROPERTYNAME, function() use ($node) { |
|
| 323 | + $owner = $node->getOwner(); |
|
| 324 | + $displayName = $owner->getDisplayName(); |
|
| 325 | + return $displayName; |
|
| 326 | + }); |
|
| 327 | + |
|
| 328 | + $propFind->handle(self::HAS_PREVIEW_PROPERTYNAME, function () use ($node) { |
|
| 329 | + return json_encode($this->previewManager->isAvailable($node->getFileInfo())); |
|
| 330 | + }); |
|
| 331 | + $propFind->handle(self::SIZE_PROPERTYNAME, function() use ($node) { |
|
| 332 | + return $node->getSize(); |
|
| 333 | + }); |
|
| 334 | + } |
|
| 335 | + |
|
| 336 | + if ($node instanceof \OCA\DAV\Connector\Sabre\Node) { |
|
| 337 | + $propFind->handle(self::DATA_FINGERPRINT_PROPERTYNAME, function() use ($node) { |
|
| 338 | + return $this->config->getSystemValue('data-fingerprint', ''); |
|
| 339 | + }); |
|
| 340 | + } |
|
| 341 | + |
|
| 342 | + if ($node instanceof \OCA\DAV\Connector\Sabre\File) { |
|
| 343 | + $propFind->handle(self::DOWNLOADURL_PROPERTYNAME, function() use ($node) { |
|
| 344 | + /** @var $node \OCA\DAV\Connector\Sabre\File */ |
|
| 345 | + try { |
|
| 346 | + $directDownloadUrl = $node->getDirectDownload(); |
|
| 347 | + if (isset($directDownloadUrl['url'])) { |
|
| 348 | + return $directDownloadUrl['url']; |
|
| 349 | + } |
|
| 350 | + } catch (StorageNotAvailableException $e) { |
|
| 351 | + return false; |
|
| 352 | + } catch (ForbiddenException $e) { |
|
| 353 | + return false; |
|
| 354 | + } |
|
| 355 | + return false; |
|
| 356 | + }); |
|
| 357 | + |
|
| 358 | + $propFind->handle(self::CHECKSUMS_PROPERTYNAME, function() use ($node) { |
|
| 359 | + $checksum = $node->getChecksum(); |
|
| 360 | + if ($checksum === NULL || $checksum === '') { |
|
| 361 | + return null; |
|
| 362 | + } |
|
| 363 | + |
|
| 364 | + return new ChecksumList($checksum); |
|
| 365 | + }); |
|
| 366 | + |
|
| 367 | + } |
|
| 368 | + |
|
| 369 | + if ($node instanceof \OCA\DAV\Connector\Sabre\Directory) { |
|
| 370 | + $propFind->handle(self::SIZE_PROPERTYNAME, function() use ($node) { |
|
| 371 | + return $node->getSize(); |
|
| 372 | + }); |
|
| 373 | + } |
|
| 374 | + } |
|
| 375 | + |
|
| 376 | + /** |
|
| 377 | + * Update ownCloud-specific properties |
|
| 378 | + * |
|
| 379 | + * @param string $path |
|
| 380 | + * @param PropPatch $propPatch |
|
| 381 | + * |
|
| 382 | + * @return void |
|
| 383 | + */ |
|
| 384 | + public function handleUpdateProperties($path, PropPatch $propPatch) { |
|
| 385 | + $propPatch->handle(self::LASTMODIFIED_PROPERTYNAME, function($time) use ($path) { |
|
| 386 | + if (empty($time)) { |
|
| 387 | + return false; |
|
| 388 | + } |
|
| 389 | + $node = $this->tree->getNodeForPath($path); |
|
| 390 | + if (is_null($node)) { |
|
| 391 | + return 404; |
|
| 392 | + } |
|
| 393 | + $node->touch($time); |
|
| 394 | + return true; |
|
| 395 | + }); |
|
| 396 | + $propPatch->handle(self::GETETAG_PROPERTYNAME, function($etag) use ($path) { |
|
| 397 | + if (empty($etag)) { |
|
| 398 | + return false; |
|
| 399 | + } |
|
| 400 | + $node = $this->tree->getNodeForPath($path); |
|
| 401 | + if (is_null($node)) { |
|
| 402 | + return 404; |
|
| 403 | + } |
|
| 404 | + if ($node->setEtag($etag) !== -1) { |
|
| 405 | + return true; |
|
| 406 | + } |
|
| 407 | + return false; |
|
| 408 | + }); |
|
| 409 | + } |
|
| 410 | + |
|
| 411 | + /** |
|
| 412 | + * @param string $filePath |
|
| 413 | + * @param \Sabre\DAV\INode $node |
|
| 414 | + * @throws \Sabre\DAV\Exception\BadRequest |
|
| 415 | + */ |
|
| 416 | + public function sendFileIdHeader($filePath, \Sabre\DAV\INode $node = null) { |
|
| 417 | + // chunked upload handling |
|
| 418 | + if (isset($_SERVER['HTTP_OC_CHUNKED'])) { |
|
| 419 | + list($path, $name) = \Sabre\HTTP\URLUtil::splitPath($filePath); |
|
| 420 | + $info = \OC_FileChunking::decodeName($name); |
|
| 421 | + if (!empty($info)) { |
|
| 422 | + $filePath = $path . '/' . $info['name']; |
|
| 423 | + } |
|
| 424 | + } |
|
| 425 | + |
|
| 426 | + // we get the node for the given $filePath here because in case of afterCreateFile $node is the parent folder |
|
| 427 | + if (!$this->server->tree->nodeExists($filePath)) { |
|
| 428 | + return; |
|
| 429 | + } |
|
| 430 | + $node = $this->server->tree->getNodeForPath($filePath); |
|
| 431 | + if ($node instanceof \OCA\DAV\Connector\Sabre\Node) { |
|
| 432 | + $fileId = $node->getFileId(); |
|
| 433 | + if (!is_null($fileId)) { |
|
| 434 | + $this->server->httpResponse->setHeader('OC-FileId', $fileId); |
|
| 435 | + } |
|
| 436 | + } |
|
| 437 | + } |
|
| 438 | 438 | } |
@@ -171,7 +171,7 @@ discard block |
||
| 171 | 171 | $this->server->on('propPatch', array($this, 'handleUpdateProperties')); |
| 172 | 172 | $this->server->on('afterBind', array($this, 'sendFileIdHeader')); |
| 173 | 173 | $this->server->on('afterWriteContent', array($this, 'sendFileIdHeader')); |
| 174 | - $this->server->on('afterMethod:GET', [$this,'httpGet']); |
|
| 174 | + $this->server->on('afterMethod:GET', [$this, 'httpGet']); |
|
| 175 | 175 | $this->server->on('afterMethod:GET', array($this, 'handleDownloadToken')); |
| 176 | 176 | $this->server->on('afterResponse', function($request, ResponseInterface $response) { |
| 177 | 177 | $body = $response->getBody(); |
@@ -201,11 +201,11 @@ discard block |
||
| 201 | 201 | if ($sourceDir !== $destinationDir) { |
| 202 | 202 | $sourceNodeFileInfo = $sourceNode->getFileInfo(); |
| 203 | 203 | if (is_null($sourceNodeFileInfo)) { |
| 204 | - throw new NotFound($source . ' does not exist'); |
|
| 204 | + throw new NotFound($source.' does not exist'); |
|
| 205 | 205 | } |
| 206 | 206 | |
| 207 | 207 | if (!$sourceNodeFileInfo->isDeletable()) { |
| 208 | - throw new Forbidden($source . " cannot be deleted"); |
|
| 208 | + throw new Forbidden($source." cannot be deleted"); |
|
| 209 | 209 | } |
| 210 | 210 | } |
| 211 | 211 | } |
@@ -258,10 +258,10 @@ discard block |
||
| 258 | 258 | \OC\AppFramework\Http\Request::USER_AGENT_ANDROID_MOBILE_CHROME, |
| 259 | 259 | \OC\AppFramework\Http\Request::USER_AGENT_FREEBOX, |
| 260 | 260 | ])) { |
| 261 | - $response->addHeader('Content-Disposition', 'attachment; filename="' . rawurlencode($filename) . '"'); |
|
| 261 | + $response->addHeader('Content-Disposition', 'attachment; filename="'.rawurlencode($filename).'"'); |
|
| 262 | 262 | } else { |
| 263 | - $response->addHeader('Content-Disposition', 'attachment; filename*=UTF-8\'\'' . rawurlencode($filename) |
|
| 264 | - . '; filename="' . rawurlencode($filename) . '"'); |
|
| 263 | + $response->addHeader('Content-Disposition', 'attachment; filename*=UTF-8\'\''.rawurlencode($filename) |
|
| 264 | + . '; filename="'.rawurlencode($filename).'"'); |
|
| 265 | 265 | } |
| 266 | 266 | } |
| 267 | 267 | |
@@ -325,7 +325,7 @@ discard block |
||
| 325 | 325 | return $displayName; |
| 326 | 326 | }); |
| 327 | 327 | |
| 328 | - $propFind->handle(self::HAS_PREVIEW_PROPERTYNAME, function () use ($node) { |
|
| 328 | + $propFind->handle(self::HAS_PREVIEW_PROPERTYNAME, function() use ($node) { |
|
| 329 | 329 | return json_encode($this->previewManager->isAvailable($node->getFileInfo())); |
| 330 | 330 | }); |
| 331 | 331 | $propFind->handle(self::SIZE_PROPERTYNAME, function() use ($node) { |
@@ -419,7 +419,7 @@ discard block |
||
| 419 | 419 | list($path, $name) = \Sabre\HTTP\URLUtil::splitPath($filePath); |
| 420 | 420 | $info = \OC_FileChunking::decodeName($name); |
| 421 | 421 | if (!empty($info)) { |
| 422 | - $filePath = $path . '/' . $info['name']; |
|
| 422 | + $filePath = $path.'/'.$info['name']; |
|
| 423 | 423 | } |
| 424 | 424 | } |
| 425 | 425 | |
@@ -245,7 +245,9 @@ |
||
| 245 | 245 | function httpGet(RequestInterface $request, ResponseInterface $response) { |
| 246 | 246 | // Only handle valid files |
| 247 | 247 | $node = $this->tree->getNodeForPath($request->getPath()); |
| 248 | - if (!($node instanceof IFile)) return; |
|
| 248 | + if (!($node instanceof IFile)) { |
|
| 249 | + return; |
|
| 250 | + } |
|
| 249 | 251 | |
| 250 | 252 | // adds a 'Content-Disposition: attachment' header in case no disposition |
| 251 | 253 | // header has been set before |
@@ -139,6 +139,9 @@ |
||
| 139 | 139 | return false; |
| 140 | 140 | } |
| 141 | 141 | |
| 142 | + /** |
|
| 143 | + * @param string $path |
|
| 144 | + */ |
|
| 142 | 145 | public function writeBack($tmpFile, $path) { |
| 143 | 146 | $this->uploadFile($tmpFile, $path); |
| 144 | 147 | unlink($tmpFile); |
@@ -37,122 +37,122 @@ |
||
| 37 | 37 | use Icewind\Streams\RetryWrapper; |
| 38 | 38 | |
| 39 | 39 | class FTP extends StreamWrapper{ |
| 40 | - private $password; |
|
| 41 | - private $user; |
|
| 42 | - private $host; |
|
| 43 | - private $secure; |
|
| 44 | - private $root; |
|
| 40 | + private $password; |
|
| 41 | + private $user; |
|
| 42 | + private $host; |
|
| 43 | + private $secure; |
|
| 44 | + private $root; |
|
| 45 | 45 | |
| 46 | - private static $tempFiles=array(); |
|
| 46 | + private static $tempFiles=array(); |
|
| 47 | 47 | |
| 48 | - public function __construct($params) { |
|
| 49 | - if (isset($params['host']) && isset($params['user']) && isset($params['password'])) { |
|
| 50 | - $this->host=$params['host']; |
|
| 51 | - $this->user=$params['user']; |
|
| 52 | - $this->password=$params['password']; |
|
| 53 | - if (isset($params['secure'])) { |
|
| 54 | - $this->secure = $params['secure']; |
|
| 55 | - } else { |
|
| 56 | - $this->secure = false; |
|
| 57 | - } |
|
| 58 | - $this->root=isset($params['root'])?$params['root']:'/'; |
|
| 59 | - if ( ! $this->root || $this->root[0]!='/') { |
|
| 60 | - $this->root='/'.$this->root; |
|
| 61 | - } |
|
| 62 | - if (substr($this->root, -1) !== '/') { |
|
| 63 | - $this->root .= '/'; |
|
| 64 | - } |
|
| 65 | - } else { |
|
| 66 | - throw new \Exception('Creating FTP storage failed'); |
|
| 67 | - } |
|
| 48 | + public function __construct($params) { |
|
| 49 | + if (isset($params['host']) && isset($params['user']) && isset($params['password'])) { |
|
| 50 | + $this->host=$params['host']; |
|
| 51 | + $this->user=$params['user']; |
|
| 52 | + $this->password=$params['password']; |
|
| 53 | + if (isset($params['secure'])) { |
|
| 54 | + $this->secure = $params['secure']; |
|
| 55 | + } else { |
|
| 56 | + $this->secure = false; |
|
| 57 | + } |
|
| 58 | + $this->root=isset($params['root'])?$params['root']:'/'; |
|
| 59 | + if ( ! $this->root || $this->root[0]!='/') { |
|
| 60 | + $this->root='/'.$this->root; |
|
| 61 | + } |
|
| 62 | + if (substr($this->root, -1) !== '/') { |
|
| 63 | + $this->root .= '/'; |
|
| 64 | + } |
|
| 65 | + } else { |
|
| 66 | + throw new \Exception('Creating FTP storage failed'); |
|
| 67 | + } |
|
| 68 | 68 | |
| 69 | - } |
|
| 69 | + } |
|
| 70 | 70 | |
| 71 | - public function getId(){ |
|
| 72 | - return 'ftp::' . $this->user . '@' . $this->host . '/' . $this->root; |
|
| 73 | - } |
|
| 71 | + public function getId(){ |
|
| 72 | + return 'ftp::' . $this->user . '@' . $this->host . '/' . $this->root; |
|
| 73 | + } |
|
| 74 | 74 | |
| 75 | - /** |
|
| 76 | - * construct the ftp url |
|
| 77 | - * @param string $path |
|
| 78 | - * @return string |
|
| 79 | - */ |
|
| 80 | - public function constructUrl($path) { |
|
| 81 | - $url='ftp'; |
|
| 82 | - if ($this->secure) { |
|
| 83 | - $url.='s'; |
|
| 84 | - } |
|
| 85 | - $url.='://'.urlencode($this->user).':'.urlencode($this->password).'@'.$this->host.$this->root.$path; |
|
| 86 | - return $url; |
|
| 87 | - } |
|
| 75 | + /** |
|
| 76 | + * construct the ftp url |
|
| 77 | + * @param string $path |
|
| 78 | + * @return string |
|
| 79 | + */ |
|
| 80 | + public function constructUrl($path) { |
|
| 81 | + $url='ftp'; |
|
| 82 | + if ($this->secure) { |
|
| 83 | + $url.='s'; |
|
| 84 | + } |
|
| 85 | + $url.='://'.urlencode($this->user).':'.urlencode($this->password).'@'.$this->host.$this->root.$path; |
|
| 86 | + return $url; |
|
| 87 | + } |
|
| 88 | 88 | |
| 89 | - /** |
|
| 90 | - * Unlinks file or directory |
|
| 91 | - * @param string $path |
|
| 92 | - */ |
|
| 93 | - public function unlink($path) { |
|
| 94 | - if ($this->is_dir($path)) { |
|
| 95 | - return $this->rmdir($path); |
|
| 96 | - } |
|
| 97 | - else { |
|
| 98 | - $url = $this->constructUrl($path); |
|
| 99 | - $result = unlink($url); |
|
| 100 | - clearstatcache(true, $url); |
|
| 101 | - return $result; |
|
| 102 | - } |
|
| 103 | - } |
|
| 104 | - public function fopen($path,$mode) { |
|
| 105 | - switch($mode) { |
|
| 106 | - case 'r': |
|
| 107 | - case 'rb': |
|
| 108 | - case 'w': |
|
| 109 | - case 'wb': |
|
| 110 | - case 'a': |
|
| 111 | - case 'ab': |
|
| 112 | - //these are supported by the wrapper |
|
| 113 | - $context = stream_context_create(array('ftp' => array('overwrite' => true))); |
|
| 114 | - $handle = fopen($this->constructUrl($path), $mode, false, $context); |
|
| 115 | - return RetryWrapper::wrap($handle); |
|
| 116 | - case 'r+': |
|
| 117 | - case 'w+': |
|
| 118 | - case 'wb+': |
|
| 119 | - case 'a+': |
|
| 120 | - case 'x': |
|
| 121 | - case 'x+': |
|
| 122 | - case 'c': |
|
| 123 | - case 'c+': |
|
| 124 | - //emulate these |
|
| 125 | - if (strrpos($path, '.')!==false) { |
|
| 126 | - $ext=substr($path, strrpos($path, '.')); |
|
| 127 | - } else { |
|
| 128 | - $ext=''; |
|
| 129 | - } |
|
| 130 | - $tmpFile=\OCP\Files::tmpFile($ext); |
|
| 131 | - if ($this->file_exists($path)) { |
|
| 132 | - $this->getFile($path, $tmpFile); |
|
| 133 | - } |
|
| 134 | - $handle = fopen($tmpFile, $mode); |
|
| 135 | - return CallbackWrapper::wrap($handle, null, null, function () use ($path, $tmpFile) { |
|
| 136 | - $this->writeBack($tmpFile, $path); |
|
| 137 | - }); |
|
| 138 | - } |
|
| 139 | - return false; |
|
| 140 | - } |
|
| 89 | + /** |
|
| 90 | + * Unlinks file or directory |
|
| 91 | + * @param string $path |
|
| 92 | + */ |
|
| 93 | + public function unlink($path) { |
|
| 94 | + if ($this->is_dir($path)) { |
|
| 95 | + return $this->rmdir($path); |
|
| 96 | + } |
|
| 97 | + else { |
|
| 98 | + $url = $this->constructUrl($path); |
|
| 99 | + $result = unlink($url); |
|
| 100 | + clearstatcache(true, $url); |
|
| 101 | + return $result; |
|
| 102 | + } |
|
| 103 | + } |
|
| 104 | + public function fopen($path,$mode) { |
|
| 105 | + switch($mode) { |
|
| 106 | + case 'r': |
|
| 107 | + case 'rb': |
|
| 108 | + case 'w': |
|
| 109 | + case 'wb': |
|
| 110 | + case 'a': |
|
| 111 | + case 'ab': |
|
| 112 | + //these are supported by the wrapper |
|
| 113 | + $context = stream_context_create(array('ftp' => array('overwrite' => true))); |
|
| 114 | + $handle = fopen($this->constructUrl($path), $mode, false, $context); |
|
| 115 | + return RetryWrapper::wrap($handle); |
|
| 116 | + case 'r+': |
|
| 117 | + case 'w+': |
|
| 118 | + case 'wb+': |
|
| 119 | + case 'a+': |
|
| 120 | + case 'x': |
|
| 121 | + case 'x+': |
|
| 122 | + case 'c': |
|
| 123 | + case 'c+': |
|
| 124 | + //emulate these |
|
| 125 | + if (strrpos($path, '.')!==false) { |
|
| 126 | + $ext=substr($path, strrpos($path, '.')); |
|
| 127 | + } else { |
|
| 128 | + $ext=''; |
|
| 129 | + } |
|
| 130 | + $tmpFile=\OCP\Files::tmpFile($ext); |
|
| 131 | + if ($this->file_exists($path)) { |
|
| 132 | + $this->getFile($path, $tmpFile); |
|
| 133 | + } |
|
| 134 | + $handle = fopen($tmpFile, $mode); |
|
| 135 | + return CallbackWrapper::wrap($handle, null, null, function () use ($path, $tmpFile) { |
|
| 136 | + $this->writeBack($tmpFile, $path); |
|
| 137 | + }); |
|
| 138 | + } |
|
| 139 | + return false; |
|
| 140 | + } |
|
| 141 | 141 | |
| 142 | - public function writeBack($tmpFile, $path) { |
|
| 143 | - $this->uploadFile($tmpFile, $path); |
|
| 144 | - unlink($tmpFile); |
|
| 145 | - } |
|
| 142 | + public function writeBack($tmpFile, $path) { |
|
| 143 | + $this->uploadFile($tmpFile, $path); |
|
| 144 | + unlink($tmpFile); |
|
| 145 | + } |
|
| 146 | 146 | |
| 147 | - /** |
|
| 148 | - * check if php-ftp is installed |
|
| 149 | - */ |
|
| 150 | - public static function checkDependencies() { |
|
| 151 | - if (function_exists('ftp_login')) { |
|
| 152 | - return(true); |
|
| 153 | - } else { |
|
| 154 | - return array('ftp'); |
|
| 155 | - } |
|
| 156 | - } |
|
| 147 | + /** |
|
| 148 | + * check if php-ftp is installed |
|
| 149 | + */ |
|
| 150 | + public static function checkDependencies() { |
|
| 151 | + if (function_exists('ftp_login')) { |
|
| 152 | + return(true); |
|
| 153 | + } else { |
|
| 154 | + return array('ftp'); |
|
| 155 | + } |
|
| 156 | + } |
|
| 157 | 157 | |
| 158 | 158 | } |
@@ -36,28 +36,28 @@ discard block |
||
| 36 | 36 | use Icewind\Streams\CallbackWrapper; |
| 37 | 37 | use Icewind\Streams\RetryWrapper; |
| 38 | 38 | |
| 39 | -class FTP extends StreamWrapper{ |
|
| 39 | +class FTP extends StreamWrapper { |
|
| 40 | 40 | private $password; |
| 41 | 41 | private $user; |
| 42 | 42 | private $host; |
| 43 | 43 | private $secure; |
| 44 | 44 | private $root; |
| 45 | 45 | |
| 46 | - private static $tempFiles=array(); |
|
| 46 | + private static $tempFiles = array(); |
|
| 47 | 47 | |
| 48 | 48 | public function __construct($params) { |
| 49 | 49 | if (isset($params['host']) && isset($params['user']) && isset($params['password'])) { |
| 50 | - $this->host=$params['host']; |
|
| 51 | - $this->user=$params['user']; |
|
| 52 | - $this->password=$params['password']; |
|
| 50 | + $this->host = $params['host']; |
|
| 51 | + $this->user = $params['user']; |
|
| 52 | + $this->password = $params['password']; |
|
| 53 | 53 | if (isset($params['secure'])) { |
| 54 | 54 | $this->secure = $params['secure']; |
| 55 | 55 | } else { |
| 56 | 56 | $this->secure = false; |
| 57 | 57 | } |
| 58 | - $this->root=isset($params['root'])?$params['root']:'/'; |
|
| 59 | - if ( ! $this->root || $this->root[0]!='/') { |
|
| 60 | - $this->root='/'.$this->root; |
|
| 58 | + $this->root = isset($params['root']) ? $params['root'] : '/'; |
|
| 59 | + if (!$this->root || $this->root[0] != '/') { |
|
| 60 | + $this->root = '/'.$this->root; |
|
| 61 | 61 | } |
| 62 | 62 | if (substr($this->root, -1) !== '/') { |
| 63 | 63 | $this->root .= '/'; |
@@ -68,8 +68,8 @@ discard block |
||
| 68 | 68 | |
| 69 | 69 | } |
| 70 | 70 | |
| 71 | - public function getId(){ |
|
| 72 | - return 'ftp::' . $this->user . '@' . $this->host . '/' . $this->root; |
|
| 71 | + public function getId() { |
|
| 72 | + return 'ftp::'.$this->user.'@'.$this->host.'/'.$this->root; |
|
| 73 | 73 | } |
| 74 | 74 | |
| 75 | 75 | /** |
@@ -78,11 +78,11 @@ discard block |
||
| 78 | 78 | * @return string |
| 79 | 79 | */ |
| 80 | 80 | public function constructUrl($path) { |
| 81 | - $url='ftp'; |
|
| 81 | + $url = 'ftp'; |
|
| 82 | 82 | if ($this->secure) { |
| 83 | - $url.='s'; |
|
| 83 | + $url .= 's'; |
|
| 84 | 84 | } |
| 85 | - $url.='://'.urlencode($this->user).':'.urlencode($this->password).'@'.$this->host.$this->root.$path; |
|
| 85 | + $url .= '://'.urlencode($this->user).':'.urlencode($this->password).'@'.$this->host.$this->root.$path; |
|
| 86 | 86 | return $url; |
| 87 | 87 | } |
| 88 | 88 | |
@@ -101,8 +101,8 @@ discard block |
||
| 101 | 101 | return $result; |
| 102 | 102 | } |
| 103 | 103 | } |
| 104 | - public function fopen($path,$mode) { |
|
| 105 | - switch($mode) { |
|
| 104 | + public function fopen($path, $mode) { |
|
| 105 | + switch ($mode) { |
|
| 106 | 106 | case 'r': |
| 107 | 107 | case 'rb': |
| 108 | 108 | case 'w': |
@@ -122,17 +122,17 @@ discard block |
||
| 122 | 122 | case 'c': |
| 123 | 123 | case 'c+': |
| 124 | 124 | //emulate these |
| 125 | - if (strrpos($path, '.')!==false) { |
|
| 126 | - $ext=substr($path, strrpos($path, '.')); |
|
| 125 | + if (strrpos($path, '.') !== false) { |
|
| 126 | + $ext = substr($path, strrpos($path, '.')); |
|
| 127 | 127 | } else { |
| 128 | - $ext=''; |
|
| 128 | + $ext = ''; |
|
| 129 | 129 | } |
| 130 | - $tmpFile=\OCP\Files::tmpFile($ext); |
|
| 130 | + $tmpFile = \OCP\Files::tmpFile($ext); |
|
| 131 | 131 | if ($this->file_exists($path)) { |
| 132 | 132 | $this->getFile($path, $tmpFile); |
| 133 | 133 | } |
| 134 | 134 | $handle = fopen($tmpFile, $mode); |
| 135 | - return CallbackWrapper::wrap($handle, null, null, function () use ($path, $tmpFile) { |
|
| 135 | + return CallbackWrapper::wrap($handle, null, null, function() use ($path, $tmpFile) { |
|
| 136 | 136 | $this->writeBack($tmpFile, $path); |
| 137 | 137 | }); |
| 138 | 138 | } |
@@ -93,8 +93,7 @@ |
||
| 93 | 93 | public function unlink($path) { |
| 94 | 94 | if ($this->is_dir($path)) { |
| 95 | 95 | return $this->rmdir($path); |
| 96 | - } |
|
| 97 | - else { |
|
| 96 | + } else { |
|
| 98 | 97 | $url = $this->constructUrl($path); |
| 99 | 98 | $result = unlink($url); |
| 100 | 99 | clearstatcache(true, $url); |
@@ -616,6 +616,9 @@ |
||
| 616 | 616 | return $this->container; |
| 617 | 617 | } |
| 618 | 618 | |
| 619 | + /** |
|
| 620 | + * @param string $path |
|
| 621 | + */ |
|
| 619 | 622 | public function writeBack($tmpFile, $path) { |
| 620 | 623 | $fileData = fopen($tmpFile, 'r'); |
| 621 | 624 | $this->getContainer()->uploadObject($path, $fileData); |
@@ -48,609 +48,609 @@ |
||
| 48 | 48 | |
| 49 | 49 | class Swift extends \OC\Files\Storage\Common { |
| 50 | 50 | |
| 51 | - /** |
|
| 52 | - * @var \OpenCloud\ObjectStore\Service |
|
| 53 | - */ |
|
| 54 | - private $connection; |
|
| 55 | - /** |
|
| 56 | - * @var \OpenCloud\ObjectStore\Resource\Container |
|
| 57 | - */ |
|
| 58 | - private $container; |
|
| 59 | - /** |
|
| 60 | - * @var \OpenCloud\OpenStack |
|
| 61 | - */ |
|
| 62 | - private $anchor; |
|
| 63 | - /** |
|
| 64 | - * @var string |
|
| 65 | - */ |
|
| 66 | - private $bucket; |
|
| 67 | - /** |
|
| 68 | - * Connection parameters |
|
| 69 | - * |
|
| 70 | - * @var array |
|
| 71 | - */ |
|
| 72 | - private $params; |
|
| 73 | - |
|
| 74 | - /** @var string */ |
|
| 75 | - private $id; |
|
| 76 | - |
|
| 77 | - /** |
|
| 78 | - * @var array |
|
| 79 | - */ |
|
| 80 | - private static $tmpFiles = array(); |
|
| 81 | - |
|
| 82 | - /** |
|
| 83 | - * Key value cache mapping path to data object. Maps path to |
|
| 84 | - * \OpenCloud\OpenStack\ObjectStorage\Resource\DataObject for existing |
|
| 85 | - * paths and path to false for not existing paths. |
|
| 86 | - * @var \OCP\ICache |
|
| 87 | - */ |
|
| 88 | - private $objectCache; |
|
| 89 | - |
|
| 90 | - /** |
|
| 91 | - * @param string $path |
|
| 92 | - */ |
|
| 93 | - private function normalizePath($path) { |
|
| 94 | - $path = trim($path, '/'); |
|
| 95 | - |
|
| 96 | - if (!$path) { |
|
| 97 | - $path = '.'; |
|
| 98 | - } |
|
| 99 | - |
|
| 100 | - $path = str_replace('#', '%23', $path); |
|
| 101 | - |
|
| 102 | - return $path; |
|
| 103 | - } |
|
| 104 | - |
|
| 105 | - const SUBCONTAINER_FILE = '.subcontainers'; |
|
| 106 | - |
|
| 107 | - /** |
|
| 108 | - * translate directory path to container name |
|
| 109 | - * |
|
| 110 | - * @param string $path |
|
| 111 | - * @return string |
|
| 112 | - */ |
|
| 113 | - |
|
| 114 | - /** |
|
| 115 | - * Fetches an object from the API. |
|
| 116 | - * If the object is cached already or a |
|
| 117 | - * failed "doesn't exist" response was cached, |
|
| 118 | - * that one will be returned. |
|
| 119 | - * |
|
| 120 | - * @param string $path |
|
| 121 | - * @return \OpenCloud\OpenStack\ObjectStorage\Resource\DataObject|bool object |
|
| 122 | - * or false if the object did not exist |
|
| 123 | - */ |
|
| 124 | - private function fetchObject($path) { |
|
| 125 | - if ($this->objectCache->hasKey($path)) { |
|
| 126 | - // might be "false" if object did not exist from last check |
|
| 127 | - return $this->objectCache->get($path); |
|
| 128 | - } |
|
| 129 | - try { |
|
| 130 | - $object = $this->getContainer()->getPartialObject($path); |
|
| 131 | - $this->objectCache->set($path, $object); |
|
| 132 | - return $object; |
|
| 133 | - } catch (ClientErrorResponseException $e) { |
|
| 134 | - // this exception happens when the object does not exist, which |
|
| 135 | - // is expected in most cases |
|
| 136 | - $this->objectCache->set($path, false); |
|
| 137 | - return false; |
|
| 138 | - } catch (ClientErrorResponseException $e) { |
|
| 139 | - // Expected response is "404 Not Found", so only log if it isn't |
|
| 140 | - if ($e->getResponse()->getStatusCode() !== 404) { |
|
| 141 | - \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 142 | - } |
|
| 143 | - return false; |
|
| 144 | - } |
|
| 145 | - } |
|
| 146 | - |
|
| 147 | - /** |
|
| 148 | - * Returns whether the given path exists. |
|
| 149 | - * |
|
| 150 | - * @param string $path |
|
| 151 | - * |
|
| 152 | - * @return bool true if the object exist, false otherwise |
|
| 153 | - */ |
|
| 154 | - private function doesObjectExist($path) { |
|
| 155 | - return $this->fetchObject($path) !== false; |
|
| 156 | - } |
|
| 157 | - |
|
| 158 | - public function __construct($params) { |
|
| 159 | - if ((empty($params['key']) and empty($params['password'])) |
|
| 160 | - or empty($params['user']) or empty($params['bucket']) |
|
| 161 | - or empty($params['region']) |
|
| 162 | - ) { |
|
| 163 | - throw new \Exception("API Key or password, Username, Bucket and Region have to be configured."); |
|
| 164 | - } |
|
| 165 | - |
|
| 166 | - $this->id = 'swift::' . $params['user'] . md5($params['bucket']); |
|
| 167 | - |
|
| 168 | - $bucketUrl = Url::factory($params['bucket']); |
|
| 169 | - if ($bucketUrl->isAbsolute()) { |
|
| 170 | - $this->bucket = end(($bucketUrl->getPathSegments())); |
|
| 171 | - $params['endpoint_url'] = $bucketUrl->addPath('..')->normalizePath(); |
|
| 172 | - } else { |
|
| 173 | - $this->bucket = $params['bucket']; |
|
| 174 | - } |
|
| 175 | - |
|
| 176 | - if (empty($params['url'])) { |
|
| 177 | - $params['url'] = 'https://identity.api.rackspacecloud.com/v2.0/'; |
|
| 178 | - } |
|
| 179 | - |
|
| 180 | - if (empty($params['service_name'])) { |
|
| 181 | - $params['service_name'] = 'cloudFiles'; |
|
| 182 | - } |
|
| 183 | - |
|
| 184 | - $this->params = $params; |
|
| 185 | - // FIXME: private class... |
|
| 186 | - $this->objectCache = new \OC\Cache\CappedMemoryCache(); |
|
| 187 | - } |
|
| 188 | - |
|
| 189 | - public function mkdir($path) { |
|
| 190 | - $path = $this->normalizePath($path); |
|
| 191 | - |
|
| 192 | - if ($this->is_dir($path)) { |
|
| 193 | - return false; |
|
| 194 | - } |
|
| 195 | - |
|
| 196 | - if ($path !== '.') { |
|
| 197 | - $path .= '/'; |
|
| 198 | - } |
|
| 199 | - |
|
| 200 | - try { |
|
| 201 | - $customHeaders = array('content-type' => 'httpd/unix-directory'); |
|
| 202 | - $metadataHeaders = DataObject::stockHeaders(array()); |
|
| 203 | - $allHeaders = $customHeaders + $metadataHeaders; |
|
| 204 | - $this->getContainer()->uploadObject($path, '', $allHeaders); |
|
| 205 | - // invalidate so that the next access gets the real object |
|
| 206 | - // with all properties |
|
| 207 | - $this->objectCache->remove($path); |
|
| 208 | - } catch (Exceptions\CreateUpdateError $e) { |
|
| 209 | - \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 210 | - return false; |
|
| 211 | - } |
|
| 212 | - |
|
| 213 | - return true; |
|
| 214 | - } |
|
| 215 | - |
|
| 216 | - public function file_exists($path) { |
|
| 217 | - $path = $this->normalizePath($path); |
|
| 218 | - |
|
| 219 | - if ($path !== '.' && $this->is_dir($path)) { |
|
| 220 | - $path .= '/'; |
|
| 221 | - } |
|
| 222 | - |
|
| 223 | - return $this->doesObjectExist($path); |
|
| 224 | - } |
|
| 225 | - |
|
| 226 | - public function rmdir($path) { |
|
| 227 | - $path = $this->normalizePath($path); |
|
| 228 | - |
|
| 229 | - if (!$this->is_dir($path) || !$this->isDeletable($path)) { |
|
| 230 | - return false; |
|
| 231 | - } |
|
| 232 | - |
|
| 233 | - $dh = $this->opendir($path); |
|
| 234 | - while ($file = readdir($dh)) { |
|
| 235 | - if (\OC\Files\Filesystem::isIgnoredDir($file)) { |
|
| 236 | - continue; |
|
| 237 | - } |
|
| 238 | - |
|
| 239 | - if ($this->is_dir($path . '/' . $file)) { |
|
| 240 | - $this->rmdir($path . '/' . $file); |
|
| 241 | - } else { |
|
| 242 | - $this->unlink($path . '/' . $file); |
|
| 243 | - } |
|
| 244 | - } |
|
| 245 | - |
|
| 246 | - try { |
|
| 247 | - $this->getContainer()->dataObject()->setName($path . '/')->delete(); |
|
| 248 | - $this->objectCache->remove($path . '/'); |
|
| 249 | - } catch (Exceptions\DeleteError $e) { |
|
| 250 | - \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 251 | - return false; |
|
| 252 | - } |
|
| 253 | - |
|
| 254 | - return true; |
|
| 255 | - } |
|
| 256 | - |
|
| 257 | - public function opendir($path) { |
|
| 258 | - $path = $this->normalizePath($path); |
|
| 259 | - |
|
| 260 | - if ($path === '.') { |
|
| 261 | - $path = ''; |
|
| 262 | - } else { |
|
| 263 | - $path .= '/'; |
|
| 264 | - } |
|
| 265 | - |
|
| 266 | - $path = str_replace('%23', '#', $path); // the prefix is sent as a query param, so revert the encoding of # |
|
| 267 | - |
|
| 268 | - try { |
|
| 269 | - $files = array(); |
|
| 270 | - /** @var OpenCloud\Common\Collection $objects */ |
|
| 271 | - $objects = $this->getContainer()->objectList(array( |
|
| 272 | - 'prefix' => $path, |
|
| 273 | - 'delimiter' => '/' |
|
| 274 | - )); |
|
| 275 | - |
|
| 276 | - /** @var OpenCloud\ObjectStore\Resource\DataObject $object */ |
|
| 277 | - foreach ($objects as $object) { |
|
| 278 | - $file = basename($object->getName()); |
|
| 279 | - if ($file !== basename($path)) { |
|
| 280 | - $files[] = $file; |
|
| 281 | - } |
|
| 282 | - } |
|
| 283 | - |
|
| 284 | - return IteratorDirectory::wrap($files); |
|
| 285 | - } catch (\Exception $e) { |
|
| 286 | - \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 287 | - return false; |
|
| 288 | - } |
|
| 289 | - |
|
| 290 | - } |
|
| 291 | - |
|
| 292 | - public function stat($path) { |
|
| 293 | - $path = $this->normalizePath($path); |
|
| 294 | - |
|
| 295 | - if ($path === '.') { |
|
| 296 | - $path = ''; |
|
| 297 | - } else if ($this->is_dir($path)) { |
|
| 298 | - $path .= '/'; |
|
| 299 | - } |
|
| 300 | - |
|
| 301 | - try { |
|
| 302 | - /** @var DataObject $object */ |
|
| 303 | - $object = $this->fetchObject($path); |
|
| 304 | - if (!$object) { |
|
| 305 | - return false; |
|
| 306 | - } |
|
| 307 | - } catch (ClientErrorResponseException $e) { |
|
| 308 | - \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 309 | - return false; |
|
| 310 | - } |
|
| 311 | - |
|
| 312 | - $dateTime = \DateTime::createFromFormat(\DateTime::RFC1123, $object->getLastModified()); |
|
| 313 | - if ($dateTime !== false) { |
|
| 314 | - $mtime = $dateTime->getTimestamp(); |
|
| 315 | - } else { |
|
| 316 | - $mtime = null; |
|
| 317 | - } |
|
| 318 | - $objectMetadata = $object->getMetadata(); |
|
| 319 | - $metaTimestamp = $objectMetadata->getProperty('timestamp'); |
|
| 320 | - if (isset($metaTimestamp)) { |
|
| 321 | - $mtime = $metaTimestamp; |
|
| 322 | - } |
|
| 323 | - |
|
| 324 | - if (!empty($mtime)) { |
|
| 325 | - $mtime = floor($mtime); |
|
| 326 | - } |
|
| 327 | - |
|
| 328 | - $stat = array(); |
|
| 329 | - $stat['size'] = (int)$object->getContentLength(); |
|
| 330 | - $stat['mtime'] = $mtime; |
|
| 331 | - $stat['atime'] = time(); |
|
| 332 | - return $stat; |
|
| 333 | - } |
|
| 334 | - |
|
| 335 | - public function filetype($path) { |
|
| 336 | - $path = $this->normalizePath($path); |
|
| 337 | - |
|
| 338 | - if ($path !== '.' && $this->doesObjectExist($path)) { |
|
| 339 | - return 'file'; |
|
| 340 | - } |
|
| 341 | - |
|
| 342 | - if ($path !== '.') { |
|
| 343 | - $path .= '/'; |
|
| 344 | - } |
|
| 345 | - |
|
| 346 | - if ($this->doesObjectExist($path)) { |
|
| 347 | - return 'dir'; |
|
| 348 | - } |
|
| 349 | - } |
|
| 350 | - |
|
| 351 | - public function unlink($path) { |
|
| 352 | - $path = $this->normalizePath($path); |
|
| 353 | - |
|
| 354 | - if ($this->is_dir($path)) { |
|
| 355 | - return $this->rmdir($path); |
|
| 356 | - } |
|
| 357 | - |
|
| 358 | - try { |
|
| 359 | - $this->getContainer()->dataObject()->setName($path)->delete(); |
|
| 360 | - $this->objectCache->remove($path); |
|
| 361 | - $this->objectCache->remove($path . '/'); |
|
| 362 | - } catch (ClientErrorResponseException $e) { |
|
| 363 | - if ($e->getResponse()->getStatusCode() !== 404) { |
|
| 364 | - \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 365 | - } |
|
| 366 | - return false; |
|
| 367 | - } |
|
| 368 | - |
|
| 369 | - return true; |
|
| 370 | - } |
|
| 371 | - |
|
| 372 | - public function fopen($path, $mode) { |
|
| 373 | - $path = $this->normalizePath($path); |
|
| 374 | - |
|
| 375 | - switch ($mode) { |
|
| 376 | - case 'r': |
|
| 377 | - case 'rb': |
|
| 378 | - try { |
|
| 379 | - $c = $this->getContainer(); |
|
| 380 | - $streamFactory = new \Guzzle\Stream\PhpStreamRequestFactory(); |
|
| 381 | - $streamInterface = $streamFactory->fromRequest( |
|
| 382 | - $c->getClient() |
|
| 383 | - ->get($c->getUrl($path))); |
|
| 384 | - $streamInterface->rewind(); |
|
| 385 | - $stream = $streamInterface->getStream(); |
|
| 386 | - stream_context_set_option($stream, 'swift','content', $streamInterface); |
|
| 387 | - if(!strrpos($streamInterface |
|
| 388 | - ->getMetaData('wrapper_data')[0], '404 Not Found')) { |
|
| 389 | - return $stream; |
|
| 390 | - } |
|
| 391 | - return false; |
|
| 392 | - } catch (\Guzzle\Http\Exception\BadResponseException $e) { |
|
| 393 | - \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 394 | - return false; |
|
| 395 | - } |
|
| 396 | - case 'w': |
|
| 397 | - case 'wb': |
|
| 398 | - case 'a': |
|
| 399 | - case 'ab': |
|
| 400 | - case 'r+': |
|
| 401 | - case 'w+': |
|
| 402 | - case 'wb+': |
|
| 403 | - case 'a+': |
|
| 404 | - case 'x': |
|
| 405 | - case 'x+': |
|
| 406 | - case 'c': |
|
| 407 | - case 'c+': |
|
| 408 | - if (strrpos($path, '.') !== false) { |
|
| 409 | - $ext = substr($path, strrpos($path, '.')); |
|
| 410 | - } else { |
|
| 411 | - $ext = ''; |
|
| 412 | - } |
|
| 413 | - $tmpFile = \OCP\Files::tmpFile($ext); |
|
| 414 | - // Fetch existing file if required |
|
| 415 | - if ($mode[0] !== 'w' && $this->file_exists($path)) { |
|
| 416 | - if ($mode[0] === 'x') { |
|
| 417 | - // File cannot already exist |
|
| 418 | - return false; |
|
| 419 | - } |
|
| 420 | - $source = $this->fopen($path, 'r'); |
|
| 421 | - file_put_contents($tmpFile, $source); |
|
| 422 | - // Seek to end if required |
|
| 423 | - if ($mode[0] === 'a') { |
|
| 424 | - fseek($tmpFile, 0, SEEK_END); |
|
| 425 | - } |
|
| 426 | - } |
|
| 427 | - $handle = fopen($tmpFile, $mode); |
|
| 428 | - return CallbackWrapper::wrap($handle, null, null, function () use ($path, $tmpFile) { |
|
| 429 | - $this->writeBack($tmpFile, $path); |
|
| 430 | - }); |
|
| 431 | - } |
|
| 432 | - } |
|
| 433 | - |
|
| 434 | - public function touch($path, $mtime = null) { |
|
| 435 | - $path = $this->normalizePath($path); |
|
| 436 | - if (is_null($mtime)) { |
|
| 437 | - $mtime = time(); |
|
| 438 | - } |
|
| 439 | - $metadata = array('timestamp' => $mtime); |
|
| 440 | - if ($this->file_exists($path)) { |
|
| 441 | - if ($this->is_dir($path) && $path != '.') { |
|
| 442 | - $path .= '/'; |
|
| 443 | - } |
|
| 444 | - |
|
| 445 | - $object = $this->fetchObject($path); |
|
| 446 | - if ($object->saveMetadata($metadata)) { |
|
| 447 | - // invalidate target object to force repopulation on fetch |
|
| 448 | - $this->objectCache->remove($path); |
|
| 449 | - } |
|
| 450 | - return true; |
|
| 451 | - } else { |
|
| 452 | - $mimeType = \OC::$server->getMimeTypeDetector()->detectPath($path); |
|
| 453 | - $customHeaders = array('content-type' => $mimeType); |
|
| 454 | - $metadataHeaders = DataObject::stockHeaders($metadata); |
|
| 455 | - $allHeaders = $customHeaders + $metadataHeaders; |
|
| 456 | - $this->getContainer()->uploadObject($path, '', $allHeaders); |
|
| 457 | - // invalidate target object to force repopulation on fetch |
|
| 458 | - $this->objectCache->remove($path); |
|
| 459 | - return true; |
|
| 460 | - } |
|
| 461 | - } |
|
| 462 | - |
|
| 463 | - public function copy($path1, $path2) { |
|
| 464 | - $path1 = $this->normalizePath($path1); |
|
| 465 | - $path2 = $this->normalizePath($path2); |
|
| 466 | - |
|
| 467 | - $fileType = $this->filetype($path1); |
|
| 468 | - if ($fileType === 'file') { |
|
| 469 | - |
|
| 470 | - // make way |
|
| 471 | - $this->unlink($path2); |
|
| 472 | - |
|
| 473 | - try { |
|
| 474 | - $source = $this->fetchObject($path1); |
|
| 475 | - $source->copy($this->bucket . '/' . $path2); |
|
| 476 | - // invalidate target object to force repopulation on fetch |
|
| 477 | - $this->objectCache->remove($path2); |
|
| 478 | - $this->objectCache->remove($path2 . '/'); |
|
| 479 | - } catch (ClientErrorResponseException $e) { |
|
| 480 | - \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 481 | - return false; |
|
| 482 | - } |
|
| 483 | - |
|
| 484 | - } else if ($fileType === 'dir') { |
|
| 485 | - |
|
| 486 | - // make way |
|
| 487 | - $this->unlink($path2); |
|
| 488 | - |
|
| 489 | - try { |
|
| 490 | - $source = $this->fetchObject($path1 . '/'); |
|
| 491 | - $source->copy($this->bucket . '/' . $path2 . '/'); |
|
| 492 | - // invalidate target object to force repopulation on fetch |
|
| 493 | - $this->objectCache->remove($path2); |
|
| 494 | - $this->objectCache->remove($path2 . '/'); |
|
| 495 | - } catch (ClientErrorResponseException $e) { |
|
| 496 | - \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 497 | - return false; |
|
| 498 | - } |
|
| 499 | - |
|
| 500 | - $dh = $this->opendir($path1); |
|
| 501 | - while ($file = readdir($dh)) { |
|
| 502 | - if (\OC\Files\Filesystem::isIgnoredDir($file)) { |
|
| 503 | - continue; |
|
| 504 | - } |
|
| 505 | - |
|
| 506 | - $source = $path1 . '/' . $file; |
|
| 507 | - $target = $path2 . '/' . $file; |
|
| 508 | - $this->copy($source, $target); |
|
| 509 | - } |
|
| 510 | - |
|
| 511 | - } else { |
|
| 512 | - //file does not exist |
|
| 513 | - return false; |
|
| 514 | - } |
|
| 515 | - |
|
| 516 | - return true; |
|
| 517 | - } |
|
| 518 | - |
|
| 519 | - public function rename($path1, $path2) { |
|
| 520 | - $path1 = $this->normalizePath($path1); |
|
| 521 | - $path2 = $this->normalizePath($path2); |
|
| 522 | - |
|
| 523 | - $fileType = $this->filetype($path1); |
|
| 524 | - |
|
| 525 | - if ($fileType === 'dir' || $fileType === 'file') { |
|
| 526 | - // copy |
|
| 527 | - if ($this->copy($path1, $path2) === false) { |
|
| 528 | - return false; |
|
| 529 | - } |
|
| 530 | - |
|
| 531 | - // cleanup |
|
| 532 | - if ($this->unlink($path1) === false) { |
|
| 533 | - $this->unlink($path2); |
|
| 534 | - return false; |
|
| 535 | - } |
|
| 536 | - |
|
| 537 | - return true; |
|
| 538 | - } |
|
| 539 | - |
|
| 540 | - return false; |
|
| 541 | - } |
|
| 542 | - |
|
| 543 | - public function getId() { |
|
| 544 | - return $this->id; |
|
| 545 | - } |
|
| 546 | - |
|
| 547 | - /** |
|
| 548 | - * Returns the connection |
|
| 549 | - * |
|
| 550 | - * @return OpenCloud\ObjectStore\Service connected client |
|
| 551 | - * @throws \Exception if connection could not be made |
|
| 552 | - */ |
|
| 553 | - public function getConnection() { |
|
| 554 | - if (!is_null($this->connection)) { |
|
| 555 | - return $this->connection; |
|
| 556 | - } |
|
| 557 | - |
|
| 558 | - $settings = array( |
|
| 559 | - 'username' => $this->params['user'], |
|
| 560 | - ); |
|
| 561 | - |
|
| 562 | - if (!empty($this->params['password'])) { |
|
| 563 | - $settings['password'] = $this->params['password']; |
|
| 564 | - } else if (!empty($this->params['key'])) { |
|
| 565 | - $settings['apiKey'] = $this->params['key']; |
|
| 566 | - } |
|
| 567 | - |
|
| 568 | - if (!empty($this->params['tenant'])) { |
|
| 569 | - $settings['tenantName'] = $this->params['tenant']; |
|
| 570 | - } |
|
| 571 | - |
|
| 572 | - if (!empty($this->params['timeout'])) { |
|
| 573 | - $settings['timeout'] = $this->params['timeout']; |
|
| 574 | - } |
|
| 575 | - |
|
| 576 | - if (isset($settings['apiKey'])) { |
|
| 577 | - $this->anchor = new Rackspace($this->params['url'], $settings); |
|
| 578 | - } else { |
|
| 579 | - $this->anchor = new OpenStack($this->params['url'], $settings); |
|
| 580 | - } |
|
| 581 | - |
|
| 582 | - $connection = $this->anchor->objectStoreService($this->params['service_name'], $this->params['region']); |
|
| 583 | - |
|
| 584 | - if (!empty($this->params['endpoint_url'])) { |
|
| 585 | - $endpoint = $connection->getEndpoint(); |
|
| 586 | - $endpoint->setPublicUrl($this->params['endpoint_url']); |
|
| 587 | - $endpoint->setPrivateUrl($this->params['endpoint_url']); |
|
| 588 | - $connection->setEndpoint($endpoint); |
|
| 589 | - } |
|
| 590 | - |
|
| 591 | - $this->connection = $connection; |
|
| 592 | - |
|
| 593 | - return $this->connection; |
|
| 594 | - } |
|
| 595 | - |
|
| 596 | - /** |
|
| 597 | - * Returns the initialized object store container. |
|
| 598 | - * |
|
| 599 | - * @return OpenCloud\ObjectStore\Resource\Container |
|
| 600 | - */ |
|
| 601 | - public function getContainer() { |
|
| 602 | - if (!is_null($this->container)) { |
|
| 603 | - return $this->container; |
|
| 604 | - } |
|
| 605 | - |
|
| 606 | - try { |
|
| 607 | - $this->container = $this->getConnection()->getContainer($this->bucket); |
|
| 608 | - } catch (ClientErrorResponseException $e) { |
|
| 609 | - $this->container = $this->getConnection()->createContainer($this->bucket); |
|
| 610 | - } |
|
| 611 | - |
|
| 612 | - if (!$this->file_exists('.')) { |
|
| 613 | - $this->mkdir('.'); |
|
| 614 | - } |
|
| 615 | - |
|
| 616 | - return $this->container; |
|
| 617 | - } |
|
| 618 | - |
|
| 619 | - public function writeBack($tmpFile, $path) { |
|
| 620 | - $fileData = fopen($tmpFile, 'r'); |
|
| 621 | - $this->getContainer()->uploadObject($path, $fileData); |
|
| 622 | - // invalidate target object to force repopulation on fetch |
|
| 623 | - $this->objectCache->remove(self::$tmpFiles[$tmpFile]); |
|
| 624 | - unlink($tmpFile); |
|
| 625 | - } |
|
| 626 | - |
|
| 627 | - public function hasUpdated($path, $time) { |
|
| 628 | - if ($this->is_file($path)) { |
|
| 629 | - return parent::hasUpdated($path, $time); |
|
| 630 | - } |
|
| 631 | - $path = $this->normalizePath($path); |
|
| 632 | - $dh = $this->opendir($path); |
|
| 633 | - $content = array(); |
|
| 634 | - while (($file = readdir($dh)) !== false) { |
|
| 635 | - $content[] = $file; |
|
| 636 | - } |
|
| 637 | - if ($path === '.') { |
|
| 638 | - $path = ''; |
|
| 639 | - } |
|
| 640 | - $cachedContent = $this->getCache()->getFolderContents($path); |
|
| 641 | - $cachedNames = array_map(function ($content) { |
|
| 642 | - return $content['name']; |
|
| 643 | - }, $cachedContent); |
|
| 644 | - sort($cachedNames); |
|
| 645 | - sort($content); |
|
| 646 | - return $cachedNames != $content; |
|
| 647 | - } |
|
| 648 | - |
|
| 649 | - /** |
|
| 650 | - * check if curl is installed |
|
| 651 | - */ |
|
| 652 | - public static function checkDependencies() { |
|
| 653 | - return true; |
|
| 654 | - } |
|
| 51 | + /** |
|
| 52 | + * @var \OpenCloud\ObjectStore\Service |
|
| 53 | + */ |
|
| 54 | + private $connection; |
|
| 55 | + /** |
|
| 56 | + * @var \OpenCloud\ObjectStore\Resource\Container |
|
| 57 | + */ |
|
| 58 | + private $container; |
|
| 59 | + /** |
|
| 60 | + * @var \OpenCloud\OpenStack |
|
| 61 | + */ |
|
| 62 | + private $anchor; |
|
| 63 | + /** |
|
| 64 | + * @var string |
|
| 65 | + */ |
|
| 66 | + private $bucket; |
|
| 67 | + /** |
|
| 68 | + * Connection parameters |
|
| 69 | + * |
|
| 70 | + * @var array |
|
| 71 | + */ |
|
| 72 | + private $params; |
|
| 73 | + |
|
| 74 | + /** @var string */ |
|
| 75 | + private $id; |
|
| 76 | + |
|
| 77 | + /** |
|
| 78 | + * @var array |
|
| 79 | + */ |
|
| 80 | + private static $tmpFiles = array(); |
|
| 81 | + |
|
| 82 | + /** |
|
| 83 | + * Key value cache mapping path to data object. Maps path to |
|
| 84 | + * \OpenCloud\OpenStack\ObjectStorage\Resource\DataObject for existing |
|
| 85 | + * paths and path to false for not existing paths. |
|
| 86 | + * @var \OCP\ICache |
|
| 87 | + */ |
|
| 88 | + private $objectCache; |
|
| 89 | + |
|
| 90 | + /** |
|
| 91 | + * @param string $path |
|
| 92 | + */ |
|
| 93 | + private function normalizePath($path) { |
|
| 94 | + $path = trim($path, '/'); |
|
| 95 | + |
|
| 96 | + if (!$path) { |
|
| 97 | + $path = '.'; |
|
| 98 | + } |
|
| 99 | + |
|
| 100 | + $path = str_replace('#', '%23', $path); |
|
| 101 | + |
|
| 102 | + return $path; |
|
| 103 | + } |
|
| 104 | + |
|
| 105 | + const SUBCONTAINER_FILE = '.subcontainers'; |
|
| 106 | + |
|
| 107 | + /** |
|
| 108 | + * translate directory path to container name |
|
| 109 | + * |
|
| 110 | + * @param string $path |
|
| 111 | + * @return string |
|
| 112 | + */ |
|
| 113 | + |
|
| 114 | + /** |
|
| 115 | + * Fetches an object from the API. |
|
| 116 | + * If the object is cached already or a |
|
| 117 | + * failed "doesn't exist" response was cached, |
|
| 118 | + * that one will be returned. |
|
| 119 | + * |
|
| 120 | + * @param string $path |
|
| 121 | + * @return \OpenCloud\OpenStack\ObjectStorage\Resource\DataObject|bool object |
|
| 122 | + * or false if the object did not exist |
|
| 123 | + */ |
|
| 124 | + private function fetchObject($path) { |
|
| 125 | + if ($this->objectCache->hasKey($path)) { |
|
| 126 | + // might be "false" if object did not exist from last check |
|
| 127 | + return $this->objectCache->get($path); |
|
| 128 | + } |
|
| 129 | + try { |
|
| 130 | + $object = $this->getContainer()->getPartialObject($path); |
|
| 131 | + $this->objectCache->set($path, $object); |
|
| 132 | + return $object; |
|
| 133 | + } catch (ClientErrorResponseException $e) { |
|
| 134 | + // this exception happens when the object does not exist, which |
|
| 135 | + // is expected in most cases |
|
| 136 | + $this->objectCache->set($path, false); |
|
| 137 | + return false; |
|
| 138 | + } catch (ClientErrorResponseException $e) { |
|
| 139 | + // Expected response is "404 Not Found", so only log if it isn't |
|
| 140 | + if ($e->getResponse()->getStatusCode() !== 404) { |
|
| 141 | + \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 142 | + } |
|
| 143 | + return false; |
|
| 144 | + } |
|
| 145 | + } |
|
| 146 | + |
|
| 147 | + /** |
|
| 148 | + * Returns whether the given path exists. |
|
| 149 | + * |
|
| 150 | + * @param string $path |
|
| 151 | + * |
|
| 152 | + * @return bool true if the object exist, false otherwise |
|
| 153 | + */ |
|
| 154 | + private function doesObjectExist($path) { |
|
| 155 | + return $this->fetchObject($path) !== false; |
|
| 156 | + } |
|
| 157 | + |
|
| 158 | + public function __construct($params) { |
|
| 159 | + if ((empty($params['key']) and empty($params['password'])) |
|
| 160 | + or empty($params['user']) or empty($params['bucket']) |
|
| 161 | + or empty($params['region']) |
|
| 162 | + ) { |
|
| 163 | + throw new \Exception("API Key or password, Username, Bucket and Region have to be configured."); |
|
| 164 | + } |
|
| 165 | + |
|
| 166 | + $this->id = 'swift::' . $params['user'] . md5($params['bucket']); |
|
| 167 | + |
|
| 168 | + $bucketUrl = Url::factory($params['bucket']); |
|
| 169 | + if ($bucketUrl->isAbsolute()) { |
|
| 170 | + $this->bucket = end(($bucketUrl->getPathSegments())); |
|
| 171 | + $params['endpoint_url'] = $bucketUrl->addPath('..')->normalizePath(); |
|
| 172 | + } else { |
|
| 173 | + $this->bucket = $params['bucket']; |
|
| 174 | + } |
|
| 175 | + |
|
| 176 | + if (empty($params['url'])) { |
|
| 177 | + $params['url'] = 'https://identity.api.rackspacecloud.com/v2.0/'; |
|
| 178 | + } |
|
| 179 | + |
|
| 180 | + if (empty($params['service_name'])) { |
|
| 181 | + $params['service_name'] = 'cloudFiles'; |
|
| 182 | + } |
|
| 183 | + |
|
| 184 | + $this->params = $params; |
|
| 185 | + // FIXME: private class... |
|
| 186 | + $this->objectCache = new \OC\Cache\CappedMemoryCache(); |
|
| 187 | + } |
|
| 188 | + |
|
| 189 | + public function mkdir($path) { |
|
| 190 | + $path = $this->normalizePath($path); |
|
| 191 | + |
|
| 192 | + if ($this->is_dir($path)) { |
|
| 193 | + return false; |
|
| 194 | + } |
|
| 195 | + |
|
| 196 | + if ($path !== '.') { |
|
| 197 | + $path .= '/'; |
|
| 198 | + } |
|
| 199 | + |
|
| 200 | + try { |
|
| 201 | + $customHeaders = array('content-type' => 'httpd/unix-directory'); |
|
| 202 | + $metadataHeaders = DataObject::stockHeaders(array()); |
|
| 203 | + $allHeaders = $customHeaders + $metadataHeaders; |
|
| 204 | + $this->getContainer()->uploadObject($path, '', $allHeaders); |
|
| 205 | + // invalidate so that the next access gets the real object |
|
| 206 | + // with all properties |
|
| 207 | + $this->objectCache->remove($path); |
|
| 208 | + } catch (Exceptions\CreateUpdateError $e) { |
|
| 209 | + \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 210 | + return false; |
|
| 211 | + } |
|
| 212 | + |
|
| 213 | + return true; |
|
| 214 | + } |
|
| 215 | + |
|
| 216 | + public function file_exists($path) { |
|
| 217 | + $path = $this->normalizePath($path); |
|
| 218 | + |
|
| 219 | + if ($path !== '.' && $this->is_dir($path)) { |
|
| 220 | + $path .= '/'; |
|
| 221 | + } |
|
| 222 | + |
|
| 223 | + return $this->doesObjectExist($path); |
|
| 224 | + } |
|
| 225 | + |
|
| 226 | + public function rmdir($path) { |
|
| 227 | + $path = $this->normalizePath($path); |
|
| 228 | + |
|
| 229 | + if (!$this->is_dir($path) || !$this->isDeletable($path)) { |
|
| 230 | + return false; |
|
| 231 | + } |
|
| 232 | + |
|
| 233 | + $dh = $this->opendir($path); |
|
| 234 | + while ($file = readdir($dh)) { |
|
| 235 | + if (\OC\Files\Filesystem::isIgnoredDir($file)) { |
|
| 236 | + continue; |
|
| 237 | + } |
|
| 238 | + |
|
| 239 | + if ($this->is_dir($path . '/' . $file)) { |
|
| 240 | + $this->rmdir($path . '/' . $file); |
|
| 241 | + } else { |
|
| 242 | + $this->unlink($path . '/' . $file); |
|
| 243 | + } |
|
| 244 | + } |
|
| 245 | + |
|
| 246 | + try { |
|
| 247 | + $this->getContainer()->dataObject()->setName($path . '/')->delete(); |
|
| 248 | + $this->objectCache->remove($path . '/'); |
|
| 249 | + } catch (Exceptions\DeleteError $e) { |
|
| 250 | + \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 251 | + return false; |
|
| 252 | + } |
|
| 253 | + |
|
| 254 | + return true; |
|
| 255 | + } |
|
| 256 | + |
|
| 257 | + public function opendir($path) { |
|
| 258 | + $path = $this->normalizePath($path); |
|
| 259 | + |
|
| 260 | + if ($path === '.') { |
|
| 261 | + $path = ''; |
|
| 262 | + } else { |
|
| 263 | + $path .= '/'; |
|
| 264 | + } |
|
| 265 | + |
|
| 266 | + $path = str_replace('%23', '#', $path); // the prefix is sent as a query param, so revert the encoding of # |
|
| 267 | + |
|
| 268 | + try { |
|
| 269 | + $files = array(); |
|
| 270 | + /** @var OpenCloud\Common\Collection $objects */ |
|
| 271 | + $objects = $this->getContainer()->objectList(array( |
|
| 272 | + 'prefix' => $path, |
|
| 273 | + 'delimiter' => '/' |
|
| 274 | + )); |
|
| 275 | + |
|
| 276 | + /** @var OpenCloud\ObjectStore\Resource\DataObject $object */ |
|
| 277 | + foreach ($objects as $object) { |
|
| 278 | + $file = basename($object->getName()); |
|
| 279 | + if ($file !== basename($path)) { |
|
| 280 | + $files[] = $file; |
|
| 281 | + } |
|
| 282 | + } |
|
| 283 | + |
|
| 284 | + return IteratorDirectory::wrap($files); |
|
| 285 | + } catch (\Exception $e) { |
|
| 286 | + \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 287 | + return false; |
|
| 288 | + } |
|
| 289 | + |
|
| 290 | + } |
|
| 291 | + |
|
| 292 | + public function stat($path) { |
|
| 293 | + $path = $this->normalizePath($path); |
|
| 294 | + |
|
| 295 | + if ($path === '.') { |
|
| 296 | + $path = ''; |
|
| 297 | + } else if ($this->is_dir($path)) { |
|
| 298 | + $path .= '/'; |
|
| 299 | + } |
|
| 300 | + |
|
| 301 | + try { |
|
| 302 | + /** @var DataObject $object */ |
|
| 303 | + $object = $this->fetchObject($path); |
|
| 304 | + if (!$object) { |
|
| 305 | + return false; |
|
| 306 | + } |
|
| 307 | + } catch (ClientErrorResponseException $e) { |
|
| 308 | + \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 309 | + return false; |
|
| 310 | + } |
|
| 311 | + |
|
| 312 | + $dateTime = \DateTime::createFromFormat(\DateTime::RFC1123, $object->getLastModified()); |
|
| 313 | + if ($dateTime !== false) { |
|
| 314 | + $mtime = $dateTime->getTimestamp(); |
|
| 315 | + } else { |
|
| 316 | + $mtime = null; |
|
| 317 | + } |
|
| 318 | + $objectMetadata = $object->getMetadata(); |
|
| 319 | + $metaTimestamp = $objectMetadata->getProperty('timestamp'); |
|
| 320 | + if (isset($metaTimestamp)) { |
|
| 321 | + $mtime = $metaTimestamp; |
|
| 322 | + } |
|
| 323 | + |
|
| 324 | + if (!empty($mtime)) { |
|
| 325 | + $mtime = floor($mtime); |
|
| 326 | + } |
|
| 327 | + |
|
| 328 | + $stat = array(); |
|
| 329 | + $stat['size'] = (int)$object->getContentLength(); |
|
| 330 | + $stat['mtime'] = $mtime; |
|
| 331 | + $stat['atime'] = time(); |
|
| 332 | + return $stat; |
|
| 333 | + } |
|
| 334 | + |
|
| 335 | + public function filetype($path) { |
|
| 336 | + $path = $this->normalizePath($path); |
|
| 337 | + |
|
| 338 | + if ($path !== '.' && $this->doesObjectExist($path)) { |
|
| 339 | + return 'file'; |
|
| 340 | + } |
|
| 341 | + |
|
| 342 | + if ($path !== '.') { |
|
| 343 | + $path .= '/'; |
|
| 344 | + } |
|
| 345 | + |
|
| 346 | + if ($this->doesObjectExist($path)) { |
|
| 347 | + return 'dir'; |
|
| 348 | + } |
|
| 349 | + } |
|
| 350 | + |
|
| 351 | + public function unlink($path) { |
|
| 352 | + $path = $this->normalizePath($path); |
|
| 353 | + |
|
| 354 | + if ($this->is_dir($path)) { |
|
| 355 | + return $this->rmdir($path); |
|
| 356 | + } |
|
| 357 | + |
|
| 358 | + try { |
|
| 359 | + $this->getContainer()->dataObject()->setName($path)->delete(); |
|
| 360 | + $this->objectCache->remove($path); |
|
| 361 | + $this->objectCache->remove($path . '/'); |
|
| 362 | + } catch (ClientErrorResponseException $e) { |
|
| 363 | + if ($e->getResponse()->getStatusCode() !== 404) { |
|
| 364 | + \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 365 | + } |
|
| 366 | + return false; |
|
| 367 | + } |
|
| 368 | + |
|
| 369 | + return true; |
|
| 370 | + } |
|
| 371 | + |
|
| 372 | + public function fopen($path, $mode) { |
|
| 373 | + $path = $this->normalizePath($path); |
|
| 374 | + |
|
| 375 | + switch ($mode) { |
|
| 376 | + case 'r': |
|
| 377 | + case 'rb': |
|
| 378 | + try { |
|
| 379 | + $c = $this->getContainer(); |
|
| 380 | + $streamFactory = new \Guzzle\Stream\PhpStreamRequestFactory(); |
|
| 381 | + $streamInterface = $streamFactory->fromRequest( |
|
| 382 | + $c->getClient() |
|
| 383 | + ->get($c->getUrl($path))); |
|
| 384 | + $streamInterface->rewind(); |
|
| 385 | + $stream = $streamInterface->getStream(); |
|
| 386 | + stream_context_set_option($stream, 'swift','content', $streamInterface); |
|
| 387 | + if(!strrpos($streamInterface |
|
| 388 | + ->getMetaData('wrapper_data')[0], '404 Not Found')) { |
|
| 389 | + return $stream; |
|
| 390 | + } |
|
| 391 | + return false; |
|
| 392 | + } catch (\Guzzle\Http\Exception\BadResponseException $e) { |
|
| 393 | + \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 394 | + return false; |
|
| 395 | + } |
|
| 396 | + case 'w': |
|
| 397 | + case 'wb': |
|
| 398 | + case 'a': |
|
| 399 | + case 'ab': |
|
| 400 | + case 'r+': |
|
| 401 | + case 'w+': |
|
| 402 | + case 'wb+': |
|
| 403 | + case 'a+': |
|
| 404 | + case 'x': |
|
| 405 | + case 'x+': |
|
| 406 | + case 'c': |
|
| 407 | + case 'c+': |
|
| 408 | + if (strrpos($path, '.') !== false) { |
|
| 409 | + $ext = substr($path, strrpos($path, '.')); |
|
| 410 | + } else { |
|
| 411 | + $ext = ''; |
|
| 412 | + } |
|
| 413 | + $tmpFile = \OCP\Files::tmpFile($ext); |
|
| 414 | + // Fetch existing file if required |
|
| 415 | + if ($mode[0] !== 'w' && $this->file_exists($path)) { |
|
| 416 | + if ($mode[0] === 'x') { |
|
| 417 | + // File cannot already exist |
|
| 418 | + return false; |
|
| 419 | + } |
|
| 420 | + $source = $this->fopen($path, 'r'); |
|
| 421 | + file_put_contents($tmpFile, $source); |
|
| 422 | + // Seek to end if required |
|
| 423 | + if ($mode[0] === 'a') { |
|
| 424 | + fseek($tmpFile, 0, SEEK_END); |
|
| 425 | + } |
|
| 426 | + } |
|
| 427 | + $handle = fopen($tmpFile, $mode); |
|
| 428 | + return CallbackWrapper::wrap($handle, null, null, function () use ($path, $tmpFile) { |
|
| 429 | + $this->writeBack($tmpFile, $path); |
|
| 430 | + }); |
|
| 431 | + } |
|
| 432 | + } |
|
| 433 | + |
|
| 434 | + public function touch($path, $mtime = null) { |
|
| 435 | + $path = $this->normalizePath($path); |
|
| 436 | + if (is_null($mtime)) { |
|
| 437 | + $mtime = time(); |
|
| 438 | + } |
|
| 439 | + $metadata = array('timestamp' => $mtime); |
|
| 440 | + if ($this->file_exists($path)) { |
|
| 441 | + if ($this->is_dir($path) && $path != '.') { |
|
| 442 | + $path .= '/'; |
|
| 443 | + } |
|
| 444 | + |
|
| 445 | + $object = $this->fetchObject($path); |
|
| 446 | + if ($object->saveMetadata($metadata)) { |
|
| 447 | + // invalidate target object to force repopulation on fetch |
|
| 448 | + $this->objectCache->remove($path); |
|
| 449 | + } |
|
| 450 | + return true; |
|
| 451 | + } else { |
|
| 452 | + $mimeType = \OC::$server->getMimeTypeDetector()->detectPath($path); |
|
| 453 | + $customHeaders = array('content-type' => $mimeType); |
|
| 454 | + $metadataHeaders = DataObject::stockHeaders($metadata); |
|
| 455 | + $allHeaders = $customHeaders + $metadataHeaders; |
|
| 456 | + $this->getContainer()->uploadObject($path, '', $allHeaders); |
|
| 457 | + // invalidate target object to force repopulation on fetch |
|
| 458 | + $this->objectCache->remove($path); |
|
| 459 | + return true; |
|
| 460 | + } |
|
| 461 | + } |
|
| 462 | + |
|
| 463 | + public function copy($path1, $path2) { |
|
| 464 | + $path1 = $this->normalizePath($path1); |
|
| 465 | + $path2 = $this->normalizePath($path2); |
|
| 466 | + |
|
| 467 | + $fileType = $this->filetype($path1); |
|
| 468 | + if ($fileType === 'file') { |
|
| 469 | + |
|
| 470 | + // make way |
|
| 471 | + $this->unlink($path2); |
|
| 472 | + |
|
| 473 | + try { |
|
| 474 | + $source = $this->fetchObject($path1); |
|
| 475 | + $source->copy($this->bucket . '/' . $path2); |
|
| 476 | + // invalidate target object to force repopulation on fetch |
|
| 477 | + $this->objectCache->remove($path2); |
|
| 478 | + $this->objectCache->remove($path2 . '/'); |
|
| 479 | + } catch (ClientErrorResponseException $e) { |
|
| 480 | + \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 481 | + return false; |
|
| 482 | + } |
|
| 483 | + |
|
| 484 | + } else if ($fileType === 'dir') { |
|
| 485 | + |
|
| 486 | + // make way |
|
| 487 | + $this->unlink($path2); |
|
| 488 | + |
|
| 489 | + try { |
|
| 490 | + $source = $this->fetchObject($path1 . '/'); |
|
| 491 | + $source->copy($this->bucket . '/' . $path2 . '/'); |
|
| 492 | + // invalidate target object to force repopulation on fetch |
|
| 493 | + $this->objectCache->remove($path2); |
|
| 494 | + $this->objectCache->remove($path2 . '/'); |
|
| 495 | + } catch (ClientErrorResponseException $e) { |
|
| 496 | + \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
|
| 497 | + return false; |
|
| 498 | + } |
|
| 499 | + |
|
| 500 | + $dh = $this->opendir($path1); |
|
| 501 | + while ($file = readdir($dh)) { |
|
| 502 | + if (\OC\Files\Filesystem::isIgnoredDir($file)) { |
|
| 503 | + continue; |
|
| 504 | + } |
|
| 505 | + |
|
| 506 | + $source = $path1 . '/' . $file; |
|
| 507 | + $target = $path2 . '/' . $file; |
|
| 508 | + $this->copy($source, $target); |
|
| 509 | + } |
|
| 510 | + |
|
| 511 | + } else { |
|
| 512 | + //file does not exist |
|
| 513 | + return false; |
|
| 514 | + } |
|
| 515 | + |
|
| 516 | + return true; |
|
| 517 | + } |
|
| 518 | + |
|
| 519 | + public function rename($path1, $path2) { |
|
| 520 | + $path1 = $this->normalizePath($path1); |
|
| 521 | + $path2 = $this->normalizePath($path2); |
|
| 522 | + |
|
| 523 | + $fileType = $this->filetype($path1); |
|
| 524 | + |
|
| 525 | + if ($fileType === 'dir' || $fileType === 'file') { |
|
| 526 | + // copy |
|
| 527 | + if ($this->copy($path1, $path2) === false) { |
|
| 528 | + return false; |
|
| 529 | + } |
|
| 530 | + |
|
| 531 | + // cleanup |
|
| 532 | + if ($this->unlink($path1) === false) { |
|
| 533 | + $this->unlink($path2); |
|
| 534 | + return false; |
|
| 535 | + } |
|
| 536 | + |
|
| 537 | + return true; |
|
| 538 | + } |
|
| 539 | + |
|
| 540 | + return false; |
|
| 541 | + } |
|
| 542 | + |
|
| 543 | + public function getId() { |
|
| 544 | + return $this->id; |
|
| 545 | + } |
|
| 546 | + |
|
| 547 | + /** |
|
| 548 | + * Returns the connection |
|
| 549 | + * |
|
| 550 | + * @return OpenCloud\ObjectStore\Service connected client |
|
| 551 | + * @throws \Exception if connection could not be made |
|
| 552 | + */ |
|
| 553 | + public function getConnection() { |
|
| 554 | + if (!is_null($this->connection)) { |
|
| 555 | + return $this->connection; |
|
| 556 | + } |
|
| 557 | + |
|
| 558 | + $settings = array( |
|
| 559 | + 'username' => $this->params['user'], |
|
| 560 | + ); |
|
| 561 | + |
|
| 562 | + if (!empty($this->params['password'])) { |
|
| 563 | + $settings['password'] = $this->params['password']; |
|
| 564 | + } else if (!empty($this->params['key'])) { |
|
| 565 | + $settings['apiKey'] = $this->params['key']; |
|
| 566 | + } |
|
| 567 | + |
|
| 568 | + if (!empty($this->params['tenant'])) { |
|
| 569 | + $settings['tenantName'] = $this->params['tenant']; |
|
| 570 | + } |
|
| 571 | + |
|
| 572 | + if (!empty($this->params['timeout'])) { |
|
| 573 | + $settings['timeout'] = $this->params['timeout']; |
|
| 574 | + } |
|
| 575 | + |
|
| 576 | + if (isset($settings['apiKey'])) { |
|
| 577 | + $this->anchor = new Rackspace($this->params['url'], $settings); |
|
| 578 | + } else { |
|
| 579 | + $this->anchor = new OpenStack($this->params['url'], $settings); |
|
| 580 | + } |
|
| 581 | + |
|
| 582 | + $connection = $this->anchor->objectStoreService($this->params['service_name'], $this->params['region']); |
|
| 583 | + |
|
| 584 | + if (!empty($this->params['endpoint_url'])) { |
|
| 585 | + $endpoint = $connection->getEndpoint(); |
|
| 586 | + $endpoint->setPublicUrl($this->params['endpoint_url']); |
|
| 587 | + $endpoint->setPrivateUrl($this->params['endpoint_url']); |
|
| 588 | + $connection->setEndpoint($endpoint); |
|
| 589 | + } |
|
| 590 | + |
|
| 591 | + $this->connection = $connection; |
|
| 592 | + |
|
| 593 | + return $this->connection; |
|
| 594 | + } |
|
| 595 | + |
|
| 596 | + /** |
|
| 597 | + * Returns the initialized object store container. |
|
| 598 | + * |
|
| 599 | + * @return OpenCloud\ObjectStore\Resource\Container |
|
| 600 | + */ |
|
| 601 | + public function getContainer() { |
|
| 602 | + if (!is_null($this->container)) { |
|
| 603 | + return $this->container; |
|
| 604 | + } |
|
| 605 | + |
|
| 606 | + try { |
|
| 607 | + $this->container = $this->getConnection()->getContainer($this->bucket); |
|
| 608 | + } catch (ClientErrorResponseException $e) { |
|
| 609 | + $this->container = $this->getConnection()->createContainer($this->bucket); |
|
| 610 | + } |
|
| 611 | + |
|
| 612 | + if (!$this->file_exists('.')) { |
|
| 613 | + $this->mkdir('.'); |
|
| 614 | + } |
|
| 615 | + |
|
| 616 | + return $this->container; |
|
| 617 | + } |
|
| 618 | + |
|
| 619 | + public function writeBack($tmpFile, $path) { |
|
| 620 | + $fileData = fopen($tmpFile, 'r'); |
|
| 621 | + $this->getContainer()->uploadObject($path, $fileData); |
|
| 622 | + // invalidate target object to force repopulation on fetch |
|
| 623 | + $this->objectCache->remove(self::$tmpFiles[$tmpFile]); |
|
| 624 | + unlink($tmpFile); |
|
| 625 | + } |
|
| 626 | + |
|
| 627 | + public function hasUpdated($path, $time) { |
|
| 628 | + if ($this->is_file($path)) { |
|
| 629 | + return parent::hasUpdated($path, $time); |
|
| 630 | + } |
|
| 631 | + $path = $this->normalizePath($path); |
|
| 632 | + $dh = $this->opendir($path); |
|
| 633 | + $content = array(); |
|
| 634 | + while (($file = readdir($dh)) !== false) { |
|
| 635 | + $content[] = $file; |
|
| 636 | + } |
|
| 637 | + if ($path === '.') { |
|
| 638 | + $path = ''; |
|
| 639 | + } |
|
| 640 | + $cachedContent = $this->getCache()->getFolderContents($path); |
|
| 641 | + $cachedNames = array_map(function ($content) { |
|
| 642 | + return $content['name']; |
|
| 643 | + }, $cachedContent); |
|
| 644 | + sort($cachedNames); |
|
| 645 | + sort($content); |
|
| 646 | + return $cachedNames != $content; |
|
| 647 | + } |
|
| 648 | + |
|
| 649 | + /** |
|
| 650 | + * check if curl is installed |
|
| 651 | + */ |
|
| 652 | + public static function checkDependencies() { |
|
| 653 | + return true; |
|
| 654 | + } |
|
| 655 | 655 | |
| 656 | 656 | } |
@@ -163,7 +163,7 @@ discard block |
||
| 163 | 163 | throw new \Exception("API Key or password, Username, Bucket and Region have to be configured."); |
| 164 | 164 | } |
| 165 | 165 | |
| 166 | - $this->id = 'swift::' . $params['user'] . md5($params['bucket']); |
|
| 166 | + $this->id = 'swift::'.$params['user'].md5($params['bucket']); |
|
| 167 | 167 | |
| 168 | 168 | $bucketUrl = Url::factory($params['bucket']); |
| 169 | 169 | if ($bucketUrl->isAbsolute()) { |
@@ -236,16 +236,16 @@ discard block |
||
| 236 | 236 | continue; |
| 237 | 237 | } |
| 238 | 238 | |
| 239 | - if ($this->is_dir($path . '/' . $file)) { |
|
| 240 | - $this->rmdir($path . '/' . $file); |
|
| 239 | + if ($this->is_dir($path.'/'.$file)) { |
|
| 240 | + $this->rmdir($path.'/'.$file); |
|
| 241 | 241 | } else { |
| 242 | - $this->unlink($path . '/' . $file); |
|
| 242 | + $this->unlink($path.'/'.$file); |
|
| 243 | 243 | } |
| 244 | 244 | } |
| 245 | 245 | |
| 246 | 246 | try { |
| 247 | - $this->getContainer()->dataObject()->setName($path . '/')->delete(); |
|
| 248 | - $this->objectCache->remove($path . '/'); |
|
| 247 | + $this->getContainer()->dataObject()->setName($path.'/')->delete(); |
|
| 248 | + $this->objectCache->remove($path.'/'); |
|
| 249 | 249 | } catch (Exceptions\DeleteError $e) { |
| 250 | 250 | \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
| 251 | 251 | return false; |
@@ -326,7 +326,7 @@ discard block |
||
| 326 | 326 | } |
| 327 | 327 | |
| 328 | 328 | $stat = array(); |
| 329 | - $stat['size'] = (int)$object->getContentLength(); |
|
| 329 | + $stat['size'] = (int) $object->getContentLength(); |
|
| 330 | 330 | $stat['mtime'] = $mtime; |
| 331 | 331 | $stat['atime'] = time(); |
| 332 | 332 | return $stat; |
@@ -358,7 +358,7 @@ discard block |
||
| 358 | 358 | try { |
| 359 | 359 | $this->getContainer()->dataObject()->setName($path)->delete(); |
| 360 | 360 | $this->objectCache->remove($path); |
| 361 | - $this->objectCache->remove($path . '/'); |
|
| 361 | + $this->objectCache->remove($path.'/'); |
|
| 362 | 362 | } catch (ClientErrorResponseException $e) { |
| 363 | 363 | if ($e->getResponse()->getStatusCode() !== 404) { |
| 364 | 364 | \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
@@ -383,8 +383,8 @@ discard block |
||
| 383 | 383 | ->get($c->getUrl($path))); |
| 384 | 384 | $streamInterface->rewind(); |
| 385 | 385 | $stream = $streamInterface->getStream(); |
| 386 | - stream_context_set_option($stream, 'swift','content', $streamInterface); |
|
| 387 | - if(!strrpos($streamInterface |
|
| 386 | + stream_context_set_option($stream, 'swift', 'content', $streamInterface); |
|
| 387 | + if (!strrpos($streamInterface |
|
| 388 | 388 | ->getMetaData('wrapper_data')[0], '404 Not Found')) { |
| 389 | 389 | return $stream; |
| 390 | 390 | } |
@@ -425,7 +425,7 @@ discard block |
||
| 425 | 425 | } |
| 426 | 426 | } |
| 427 | 427 | $handle = fopen($tmpFile, $mode); |
| 428 | - return CallbackWrapper::wrap($handle, null, null, function () use ($path, $tmpFile) { |
|
| 428 | + return CallbackWrapper::wrap($handle, null, null, function() use ($path, $tmpFile) { |
|
| 429 | 429 | $this->writeBack($tmpFile, $path); |
| 430 | 430 | }); |
| 431 | 431 | } |
@@ -472,10 +472,10 @@ discard block |
||
| 472 | 472 | |
| 473 | 473 | try { |
| 474 | 474 | $source = $this->fetchObject($path1); |
| 475 | - $source->copy($this->bucket . '/' . $path2); |
|
| 475 | + $source->copy($this->bucket.'/'.$path2); |
|
| 476 | 476 | // invalidate target object to force repopulation on fetch |
| 477 | 477 | $this->objectCache->remove($path2); |
| 478 | - $this->objectCache->remove($path2 . '/'); |
|
| 478 | + $this->objectCache->remove($path2.'/'); |
|
| 479 | 479 | } catch (ClientErrorResponseException $e) { |
| 480 | 480 | \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
| 481 | 481 | return false; |
@@ -487,11 +487,11 @@ discard block |
||
| 487 | 487 | $this->unlink($path2); |
| 488 | 488 | |
| 489 | 489 | try { |
| 490 | - $source = $this->fetchObject($path1 . '/'); |
|
| 491 | - $source->copy($this->bucket . '/' . $path2 . '/'); |
|
| 490 | + $source = $this->fetchObject($path1.'/'); |
|
| 491 | + $source->copy($this->bucket.'/'.$path2.'/'); |
|
| 492 | 492 | // invalidate target object to force repopulation on fetch |
| 493 | 493 | $this->objectCache->remove($path2); |
| 494 | - $this->objectCache->remove($path2 . '/'); |
|
| 494 | + $this->objectCache->remove($path2.'/'); |
|
| 495 | 495 | } catch (ClientErrorResponseException $e) { |
| 496 | 496 | \OCP\Util::writeLog('files_external', $e->getMessage(), \OCP\Util::ERROR); |
| 497 | 497 | return false; |
@@ -503,8 +503,8 @@ discard block |
||
| 503 | 503 | continue; |
| 504 | 504 | } |
| 505 | 505 | |
| 506 | - $source = $path1 . '/' . $file; |
|
| 507 | - $target = $path2 . '/' . $file; |
|
| 506 | + $source = $path1.'/'.$file; |
|
| 507 | + $target = $path2.'/'.$file; |
|
| 508 | 508 | $this->copy($source, $target); |
| 509 | 509 | } |
| 510 | 510 | |
@@ -638,7 +638,7 @@ discard block |
||
| 638 | 638 | $path = ''; |
| 639 | 639 | } |
| 640 | 640 | $cachedContent = $this->getCache()->getFolderContents($path); |
| 641 | - $cachedNames = array_map(function ($content) { |
|
| 641 | + $cachedNames = array_map(function($content) { |
|
| 642 | 642 | return $content['name']; |
| 643 | 643 | }, $cachedContent); |
| 644 | 644 | sort($cachedNames); |
@@ -597,7 +597,7 @@ |
||
| 597 | 597 | * publish activity |
| 598 | 598 | * |
| 599 | 599 | * @param string $subject |
| 600 | - * @param array $parameters |
|
| 600 | + * @param string[] $parameters |
|
| 601 | 601 | * @param string $affectedUser |
| 602 | 602 | * @param int $fileId |
| 603 | 603 | * @param string $filePath |
@@ -64,558 +64,558 @@ |
||
| 64 | 64 | */ |
| 65 | 65 | class ShareController extends Controller { |
| 66 | 66 | |
| 67 | - /** @var IConfig */ |
|
| 68 | - protected $config; |
|
| 69 | - /** @var IURLGenerator */ |
|
| 70 | - protected $urlGenerator; |
|
| 71 | - /** @var IUserManager */ |
|
| 72 | - protected $userManager; |
|
| 73 | - /** @var ILogger */ |
|
| 74 | - protected $logger; |
|
| 75 | - /** @var \OCP\Activity\IManager */ |
|
| 76 | - protected $activityManager; |
|
| 77 | - /** @var \OCP\Share\IManager */ |
|
| 78 | - protected $shareManager; |
|
| 79 | - /** @var ISession */ |
|
| 80 | - protected $session; |
|
| 81 | - /** @var IPreview */ |
|
| 82 | - protected $previewManager; |
|
| 83 | - /** @var IRootFolder */ |
|
| 84 | - protected $rootFolder; |
|
| 85 | - /** @var FederatedShareProvider */ |
|
| 86 | - protected $federatedShareProvider; |
|
| 87 | - /** @var EventDispatcherInterface */ |
|
| 88 | - protected $eventDispatcher; |
|
| 89 | - /** @var IL10N */ |
|
| 90 | - protected $l10n; |
|
| 91 | - /** @var Defaults */ |
|
| 92 | - protected $defaults; |
|
| 93 | - |
|
| 94 | - /** |
|
| 95 | - * @param string $appName |
|
| 96 | - * @param IRequest $request |
|
| 97 | - * @param IConfig $config |
|
| 98 | - * @param IURLGenerator $urlGenerator |
|
| 99 | - * @param IUserManager $userManager |
|
| 100 | - * @param ILogger $logger |
|
| 101 | - * @param \OCP\Activity\IManager $activityManager |
|
| 102 | - * @param \OCP\Share\IManager $shareManager |
|
| 103 | - * @param ISession $session |
|
| 104 | - * @param IPreview $previewManager |
|
| 105 | - * @param IRootFolder $rootFolder |
|
| 106 | - * @param FederatedShareProvider $federatedShareProvider |
|
| 107 | - * @param EventDispatcherInterface $eventDispatcher |
|
| 108 | - * @param IL10N $l10n |
|
| 109 | - * @param \OC_Defaults $defaults |
|
| 110 | - */ |
|
| 111 | - public function __construct($appName, |
|
| 112 | - IRequest $request, |
|
| 113 | - IConfig $config, |
|
| 114 | - IURLGenerator $urlGenerator, |
|
| 115 | - IUserManager $userManager, |
|
| 116 | - ILogger $logger, |
|
| 117 | - \OCP\Activity\IManager $activityManager, |
|
| 118 | - \OCP\Share\IManager $shareManager, |
|
| 119 | - ISession $session, |
|
| 120 | - IPreview $previewManager, |
|
| 121 | - IRootFolder $rootFolder, |
|
| 122 | - FederatedShareProvider $federatedShareProvider, |
|
| 123 | - EventDispatcherInterface $eventDispatcher, |
|
| 124 | - IL10N $l10n, |
|
| 125 | - \OC_Defaults $defaults) { |
|
| 126 | - parent::__construct($appName, $request); |
|
| 127 | - |
|
| 128 | - $this->config = $config; |
|
| 129 | - $this->urlGenerator = $urlGenerator; |
|
| 130 | - $this->userManager = $userManager; |
|
| 131 | - $this->logger = $logger; |
|
| 132 | - $this->activityManager = $activityManager; |
|
| 133 | - $this->shareManager = $shareManager; |
|
| 134 | - $this->session = $session; |
|
| 135 | - $this->previewManager = $previewManager; |
|
| 136 | - $this->rootFolder = $rootFolder; |
|
| 137 | - $this->federatedShareProvider = $federatedShareProvider; |
|
| 138 | - $this->eventDispatcher = $eventDispatcher; |
|
| 139 | - $this->l10n = $l10n; |
|
| 140 | - $this->defaults = $defaults; |
|
| 141 | - } |
|
| 142 | - |
|
| 143 | - /** |
|
| 144 | - * @PublicPage |
|
| 145 | - * @NoCSRFRequired |
|
| 146 | - * |
|
| 147 | - * @param string $token |
|
| 148 | - * @return TemplateResponse|RedirectResponse |
|
| 149 | - */ |
|
| 150 | - public function showAuthenticate($token) { |
|
| 151 | - $share = $this->shareManager->getShareByToken($token); |
|
| 152 | - |
|
| 153 | - if($this->linkShareAuth($share)) { |
|
| 154 | - return new RedirectResponse($this->urlGenerator->linkToRoute('files_sharing.sharecontroller.showShare', array('token' => $token))); |
|
| 155 | - } |
|
| 156 | - |
|
| 157 | - return new TemplateResponse($this->appName, 'authenticate', array(), 'guest'); |
|
| 158 | - } |
|
| 159 | - |
|
| 160 | - /** |
|
| 161 | - * @PublicPage |
|
| 162 | - * @UseSession |
|
| 163 | - * @BruteForceProtection publicLinkAuth |
|
| 164 | - * |
|
| 165 | - * Authenticates against password-protected shares |
|
| 166 | - * @param string $token |
|
| 167 | - * @param string $password |
|
| 168 | - * @return RedirectResponse|TemplateResponse|NotFoundResponse |
|
| 169 | - */ |
|
| 170 | - public function authenticate($token, $password = '') { |
|
| 171 | - |
|
| 172 | - // Check whether share exists |
|
| 173 | - try { |
|
| 174 | - $share = $this->shareManager->getShareByToken($token); |
|
| 175 | - } catch (ShareNotFound $e) { |
|
| 176 | - return new NotFoundResponse(); |
|
| 177 | - } |
|
| 178 | - |
|
| 179 | - $authenticate = $this->linkShareAuth($share, $password); |
|
| 180 | - |
|
| 181 | - if($authenticate === true) { |
|
| 182 | - return new RedirectResponse($this->urlGenerator->linkToRoute('files_sharing.sharecontroller.showShare', array('token' => $token))); |
|
| 183 | - } |
|
| 184 | - |
|
| 185 | - return new TemplateResponse($this->appName, 'authenticate', array('wrongpw' => true), 'guest'); |
|
| 186 | - } |
|
| 187 | - |
|
| 188 | - /** |
|
| 189 | - * Authenticate a link item with the given password. |
|
| 190 | - * Or use the session if no password is provided. |
|
| 191 | - * |
|
| 192 | - * This is a modified version of Helper::authenticate |
|
| 193 | - * TODO: Try to merge back eventually with Helper::authenticate |
|
| 194 | - * |
|
| 195 | - * @param \OCP\Share\IShare $share |
|
| 196 | - * @param string|null $password |
|
| 197 | - * @return bool |
|
| 198 | - */ |
|
| 199 | - private function linkShareAuth(\OCP\Share\IShare $share, $password = null) { |
|
| 200 | - if ($password !== null) { |
|
| 201 | - if ($this->shareManager->checkPassword($share, $password)) { |
|
| 202 | - $this->session->set('public_link_authenticated', (string)$share->getId()); |
|
| 203 | - } else { |
|
| 204 | - $this->emitAccessShareHook($share, 403, 'Wrong password'); |
|
| 205 | - return false; |
|
| 206 | - } |
|
| 207 | - } else { |
|
| 208 | - // not authenticated ? |
|
| 209 | - if ( ! $this->session->exists('public_link_authenticated') |
|
| 210 | - || $this->session->get('public_link_authenticated') !== (string)$share->getId()) { |
|
| 211 | - return false; |
|
| 212 | - } |
|
| 213 | - } |
|
| 214 | - return true; |
|
| 215 | - } |
|
| 216 | - |
|
| 217 | - /** |
|
| 218 | - * throws hooks when a share is attempted to be accessed |
|
| 219 | - * |
|
| 220 | - * @param \OCP\Share\IShare|string $share the Share instance if available, |
|
| 221 | - * otherwise token |
|
| 222 | - * @param int $errorCode |
|
| 223 | - * @param string $errorMessage |
|
| 224 | - * @throws \OC\HintException |
|
| 225 | - * @throws \OC\ServerNotAvailableException |
|
| 226 | - */ |
|
| 227 | - protected function emitAccessShareHook($share, $errorCode = 200, $errorMessage = '') { |
|
| 228 | - $itemType = $itemSource = $uidOwner = ''; |
|
| 229 | - $token = $share; |
|
| 230 | - $exception = null; |
|
| 231 | - if($share instanceof \OCP\Share\IShare) { |
|
| 232 | - try { |
|
| 233 | - $token = $share->getToken(); |
|
| 234 | - $uidOwner = $share->getSharedBy(); |
|
| 235 | - $itemType = $share->getNodeType(); |
|
| 236 | - $itemSource = $share->getNodeId(); |
|
| 237 | - } catch (\Exception $e) { |
|
| 238 | - // we log what we know and pass on the exception afterwards |
|
| 239 | - $exception = $e; |
|
| 240 | - } |
|
| 241 | - } |
|
| 242 | - \OC_Hook::emit('OCP\Share', 'share_link_access', [ |
|
| 243 | - 'itemType' => $itemType, |
|
| 244 | - 'itemSource' => $itemSource, |
|
| 245 | - 'uidOwner' => $uidOwner, |
|
| 246 | - 'token' => $token, |
|
| 247 | - 'errorCode' => $errorCode, |
|
| 248 | - 'errorMessage' => $errorMessage, |
|
| 249 | - ]); |
|
| 250 | - if(!is_null($exception)) { |
|
| 251 | - throw $exception; |
|
| 252 | - } |
|
| 253 | - } |
|
| 254 | - |
|
| 255 | - /** |
|
| 256 | - * Validate the permissions of the share |
|
| 257 | - * |
|
| 258 | - * @param Share\IShare $share |
|
| 259 | - * @return bool |
|
| 260 | - */ |
|
| 261 | - private function validateShare(\OCP\Share\IShare $share) { |
|
| 262 | - return $share->getNode()->isReadable() && $share->getNode()->isShareable(); |
|
| 263 | - } |
|
| 264 | - |
|
| 265 | - /** |
|
| 266 | - * @PublicPage |
|
| 267 | - * @NoCSRFRequired |
|
| 268 | - * |
|
| 269 | - * @param string $token |
|
| 270 | - * @param string $path |
|
| 271 | - * @return TemplateResponse|RedirectResponse|NotFoundResponse |
|
| 272 | - * @throws NotFoundException |
|
| 273 | - * @throws \Exception |
|
| 274 | - */ |
|
| 275 | - public function showShare($token, $path = '') { |
|
| 276 | - \OC_User::setIncognitoMode(true); |
|
| 277 | - |
|
| 278 | - // Check whether share exists |
|
| 279 | - try { |
|
| 280 | - $share = $this->shareManager->getShareByToken($token); |
|
| 281 | - } catch (ShareNotFound $e) { |
|
| 282 | - $this->emitAccessShareHook($token, 404, 'Share not found'); |
|
| 283 | - return new NotFoundResponse(); |
|
| 284 | - } |
|
| 285 | - |
|
| 286 | - // Share is password protected - check whether the user is permitted to access the share |
|
| 287 | - if ($share->getPassword() !== null && !$this->linkShareAuth($share)) { |
|
| 288 | - return new RedirectResponse($this->urlGenerator->linkToRoute('files_sharing.sharecontroller.authenticate', |
|
| 289 | - array('token' => $token))); |
|
| 290 | - } |
|
| 291 | - |
|
| 292 | - if (!$this->validateShare($share)) { |
|
| 293 | - throw new NotFoundException(); |
|
| 294 | - } |
|
| 295 | - // We can't get the path of a file share |
|
| 296 | - try { |
|
| 297 | - if ($share->getNode() instanceof \OCP\Files\File && $path !== '') { |
|
| 298 | - $this->emitAccessShareHook($share, 404, 'Share not found'); |
|
| 299 | - throw new NotFoundException(); |
|
| 300 | - } |
|
| 301 | - } catch (\Exception $e) { |
|
| 302 | - $this->emitAccessShareHook($share, 404, 'Share not found'); |
|
| 303 | - throw $e; |
|
| 304 | - } |
|
| 305 | - |
|
| 306 | - $shareTmpl = []; |
|
| 307 | - $shareTmpl['displayName'] = $this->userManager->get($share->getShareOwner())->getDisplayName(); |
|
| 308 | - $shareTmpl['owner'] = $share->getShareOwner(); |
|
| 309 | - $shareTmpl['filename'] = $share->getNode()->getName(); |
|
| 310 | - $shareTmpl['directory_path'] = $share->getTarget(); |
|
| 311 | - $shareTmpl['mimetype'] = $share->getNode()->getMimetype(); |
|
| 312 | - $shareTmpl['previewSupported'] = $this->previewManager->isMimeSupported($share->getNode()->getMimetype()); |
|
| 313 | - $shareTmpl['dirToken'] = $token; |
|
| 314 | - $shareTmpl['sharingToken'] = $token; |
|
| 315 | - $shareTmpl['server2serversharing'] = $this->federatedShareProvider->isOutgoingServer2serverShareEnabled(); |
|
| 316 | - $shareTmpl['protected'] = $share->getPassword() !== null ? 'true' : 'false'; |
|
| 317 | - $shareTmpl['dir'] = ''; |
|
| 318 | - $shareTmpl['nonHumanFileSize'] = $share->getNode()->getSize(); |
|
| 319 | - $shareTmpl['fileSize'] = \OCP\Util::humanFileSize($share->getNode()->getSize()); |
|
| 320 | - |
|
| 321 | - // Show file list |
|
| 322 | - $hideFileList = false; |
|
| 323 | - if ($share->getNode() instanceof \OCP\Files\Folder) { |
|
| 324 | - /** @var \OCP\Files\Folder $rootFolder */ |
|
| 325 | - $rootFolder = $share->getNode(); |
|
| 326 | - |
|
| 327 | - try { |
|
| 328 | - $folderNode = $rootFolder->get($path); |
|
| 329 | - } catch (\OCP\Files\NotFoundException $e) { |
|
| 330 | - $this->emitAccessShareHook($share, 404, 'Share not found'); |
|
| 331 | - throw new NotFoundException(); |
|
| 332 | - } |
|
| 333 | - |
|
| 334 | - $shareTmpl['dir'] = $rootFolder->getRelativePath($folderNode->getPath()); |
|
| 335 | - |
|
| 336 | - /* |
|
| 67 | + /** @var IConfig */ |
|
| 68 | + protected $config; |
|
| 69 | + /** @var IURLGenerator */ |
|
| 70 | + protected $urlGenerator; |
|
| 71 | + /** @var IUserManager */ |
|
| 72 | + protected $userManager; |
|
| 73 | + /** @var ILogger */ |
|
| 74 | + protected $logger; |
|
| 75 | + /** @var \OCP\Activity\IManager */ |
|
| 76 | + protected $activityManager; |
|
| 77 | + /** @var \OCP\Share\IManager */ |
|
| 78 | + protected $shareManager; |
|
| 79 | + /** @var ISession */ |
|
| 80 | + protected $session; |
|
| 81 | + /** @var IPreview */ |
|
| 82 | + protected $previewManager; |
|
| 83 | + /** @var IRootFolder */ |
|
| 84 | + protected $rootFolder; |
|
| 85 | + /** @var FederatedShareProvider */ |
|
| 86 | + protected $federatedShareProvider; |
|
| 87 | + /** @var EventDispatcherInterface */ |
|
| 88 | + protected $eventDispatcher; |
|
| 89 | + /** @var IL10N */ |
|
| 90 | + protected $l10n; |
|
| 91 | + /** @var Defaults */ |
|
| 92 | + protected $defaults; |
|
| 93 | + |
|
| 94 | + /** |
|
| 95 | + * @param string $appName |
|
| 96 | + * @param IRequest $request |
|
| 97 | + * @param IConfig $config |
|
| 98 | + * @param IURLGenerator $urlGenerator |
|
| 99 | + * @param IUserManager $userManager |
|
| 100 | + * @param ILogger $logger |
|
| 101 | + * @param \OCP\Activity\IManager $activityManager |
|
| 102 | + * @param \OCP\Share\IManager $shareManager |
|
| 103 | + * @param ISession $session |
|
| 104 | + * @param IPreview $previewManager |
|
| 105 | + * @param IRootFolder $rootFolder |
|
| 106 | + * @param FederatedShareProvider $federatedShareProvider |
|
| 107 | + * @param EventDispatcherInterface $eventDispatcher |
|
| 108 | + * @param IL10N $l10n |
|
| 109 | + * @param \OC_Defaults $defaults |
|
| 110 | + */ |
|
| 111 | + public function __construct($appName, |
|
| 112 | + IRequest $request, |
|
| 113 | + IConfig $config, |
|
| 114 | + IURLGenerator $urlGenerator, |
|
| 115 | + IUserManager $userManager, |
|
| 116 | + ILogger $logger, |
|
| 117 | + \OCP\Activity\IManager $activityManager, |
|
| 118 | + \OCP\Share\IManager $shareManager, |
|
| 119 | + ISession $session, |
|
| 120 | + IPreview $previewManager, |
|
| 121 | + IRootFolder $rootFolder, |
|
| 122 | + FederatedShareProvider $federatedShareProvider, |
|
| 123 | + EventDispatcherInterface $eventDispatcher, |
|
| 124 | + IL10N $l10n, |
|
| 125 | + \OC_Defaults $defaults) { |
|
| 126 | + parent::__construct($appName, $request); |
|
| 127 | + |
|
| 128 | + $this->config = $config; |
|
| 129 | + $this->urlGenerator = $urlGenerator; |
|
| 130 | + $this->userManager = $userManager; |
|
| 131 | + $this->logger = $logger; |
|
| 132 | + $this->activityManager = $activityManager; |
|
| 133 | + $this->shareManager = $shareManager; |
|
| 134 | + $this->session = $session; |
|
| 135 | + $this->previewManager = $previewManager; |
|
| 136 | + $this->rootFolder = $rootFolder; |
|
| 137 | + $this->federatedShareProvider = $federatedShareProvider; |
|
| 138 | + $this->eventDispatcher = $eventDispatcher; |
|
| 139 | + $this->l10n = $l10n; |
|
| 140 | + $this->defaults = $defaults; |
|
| 141 | + } |
|
| 142 | + |
|
| 143 | + /** |
|
| 144 | + * @PublicPage |
|
| 145 | + * @NoCSRFRequired |
|
| 146 | + * |
|
| 147 | + * @param string $token |
|
| 148 | + * @return TemplateResponse|RedirectResponse |
|
| 149 | + */ |
|
| 150 | + public function showAuthenticate($token) { |
|
| 151 | + $share = $this->shareManager->getShareByToken($token); |
|
| 152 | + |
|
| 153 | + if($this->linkShareAuth($share)) { |
|
| 154 | + return new RedirectResponse($this->urlGenerator->linkToRoute('files_sharing.sharecontroller.showShare', array('token' => $token))); |
|
| 155 | + } |
|
| 156 | + |
|
| 157 | + return new TemplateResponse($this->appName, 'authenticate', array(), 'guest'); |
|
| 158 | + } |
|
| 159 | + |
|
| 160 | + /** |
|
| 161 | + * @PublicPage |
|
| 162 | + * @UseSession |
|
| 163 | + * @BruteForceProtection publicLinkAuth |
|
| 164 | + * |
|
| 165 | + * Authenticates against password-protected shares |
|
| 166 | + * @param string $token |
|
| 167 | + * @param string $password |
|
| 168 | + * @return RedirectResponse|TemplateResponse|NotFoundResponse |
|
| 169 | + */ |
|
| 170 | + public function authenticate($token, $password = '') { |
|
| 171 | + |
|
| 172 | + // Check whether share exists |
|
| 173 | + try { |
|
| 174 | + $share = $this->shareManager->getShareByToken($token); |
|
| 175 | + } catch (ShareNotFound $e) { |
|
| 176 | + return new NotFoundResponse(); |
|
| 177 | + } |
|
| 178 | + |
|
| 179 | + $authenticate = $this->linkShareAuth($share, $password); |
|
| 180 | + |
|
| 181 | + if($authenticate === true) { |
|
| 182 | + return new RedirectResponse($this->urlGenerator->linkToRoute('files_sharing.sharecontroller.showShare', array('token' => $token))); |
|
| 183 | + } |
|
| 184 | + |
|
| 185 | + return new TemplateResponse($this->appName, 'authenticate', array('wrongpw' => true), 'guest'); |
|
| 186 | + } |
|
| 187 | + |
|
| 188 | + /** |
|
| 189 | + * Authenticate a link item with the given password. |
|
| 190 | + * Or use the session if no password is provided. |
|
| 191 | + * |
|
| 192 | + * This is a modified version of Helper::authenticate |
|
| 193 | + * TODO: Try to merge back eventually with Helper::authenticate |
|
| 194 | + * |
|
| 195 | + * @param \OCP\Share\IShare $share |
|
| 196 | + * @param string|null $password |
|
| 197 | + * @return bool |
|
| 198 | + */ |
|
| 199 | + private function linkShareAuth(\OCP\Share\IShare $share, $password = null) { |
|
| 200 | + if ($password !== null) { |
|
| 201 | + if ($this->shareManager->checkPassword($share, $password)) { |
|
| 202 | + $this->session->set('public_link_authenticated', (string)$share->getId()); |
|
| 203 | + } else { |
|
| 204 | + $this->emitAccessShareHook($share, 403, 'Wrong password'); |
|
| 205 | + return false; |
|
| 206 | + } |
|
| 207 | + } else { |
|
| 208 | + // not authenticated ? |
|
| 209 | + if ( ! $this->session->exists('public_link_authenticated') |
|
| 210 | + || $this->session->get('public_link_authenticated') !== (string)$share->getId()) { |
|
| 211 | + return false; |
|
| 212 | + } |
|
| 213 | + } |
|
| 214 | + return true; |
|
| 215 | + } |
|
| 216 | + |
|
| 217 | + /** |
|
| 218 | + * throws hooks when a share is attempted to be accessed |
|
| 219 | + * |
|
| 220 | + * @param \OCP\Share\IShare|string $share the Share instance if available, |
|
| 221 | + * otherwise token |
|
| 222 | + * @param int $errorCode |
|
| 223 | + * @param string $errorMessage |
|
| 224 | + * @throws \OC\HintException |
|
| 225 | + * @throws \OC\ServerNotAvailableException |
|
| 226 | + */ |
|
| 227 | + protected function emitAccessShareHook($share, $errorCode = 200, $errorMessage = '') { |
|
| 228 | + $itemType = $itemSource = $uidOwner = ''; |
|
| 229 | + $token = $share; |
|
| 230 | + $exception = null; |
|
| 231 | + if($share instanceof \OCP\Share\IShare) { |
|
| 232 | + try { |
|
| 233 | + $token = $share->getToken(); |
|
| 234 | + $uidOwner = $share->getSharedBy(); |
|
| 235 | + $itemType = $share->getNodeType(); |
|
| 236 | + $itemSource = $share->getNodeId(); |
|
| 237 | + } catch (\Exception $e) { |
|
| 238 | + // we log what we know and pass on the exception afterwards |
|
| 239 | + $exception = $e; |
|
| 240 | + } |
|
| 241 | + } |
|
| 242 | + \OC_Hook::emit('OCP\Share', 'share_link_access', [ |
|
| 243 | + 'itemType' => $itemType, |
|
| 244 | + 'itemSource' => $itemSource, |
|
| 245 | + 'uidOwner' => $uidOwner, |
|
| 246 | + 'token' => $token, |
|
| 247 | + 'errorCode' => $errorCode, |
|
| 248 | + 'errorMessage' => $errorMessage, |
|
| 249 | + ]); |
|
| 250 | + if(!is_null($exception)) { |
|
| 251 | + throw $exception; |
|
| 252 | + } |
|
| 253 | + } |
|
| 254 | + |
|
| 255 | + /** |
|
| 256 | + * Validate the permissions of the share |
|
| 257 | + * |
|
| 258 | + * @param Share\IShare $share |
|
| 259 | + * @return bool |
|
| 260 | + */ |
|
| 261 | + private function validateShare(\OCP\Share\IShare $share) { |
|
| 262 | + return $share->getNode()->isReadable() && $share->getNode()->isShareable(); |
|
| 263 | + } |
|
| 264 | + |
|
| 265 | + /** |
|
| 266 | + * @PublicPage |
|
| 267 | + * @NoCSRFRequired |
|
| 268 | + * |
|
| 269 | + * @param string $token |
|
| 270 | + * @param string $path |
|
| 271 | + * @return TemplateResponse|RedirectResponse|NotFoundResponse |
|
| 272 | + * @throws NotFoundException |
|
| 273 | + * @throws \Exception |
|
| 274 | + */ |
|
| 275 | + public function showShare($token, $path = '') { |
|
| 276 | + \OC_User::setIncognitoMode(true); |
|
| 277 | + |
|
| 278 | + // Check whether share exists |
|
| 279 | + try { |
|
| 280 | + $share = $this->shareManager->getShareByToken($token); |
|
| 281 | + } catch (ShareNotFound $e) { |
|
| 282 | + $this->emitAccessShareHook($token, 404, 'Share not found'); |
|
| 283 | + return new NotFoundResponse(); |
|
| 284 | + } |
|
| 285 | + |
|
| 286 | + // Share is password protected - check whether the user is permitted to access the share |
|
| 287 | + if ($share->getPassword() !== null && !$this->linkShareAuth($share)) { |
|
| 288 | + return new RedirectResponse($this->urlGenerator->linkToRoute('files_sharing.sharecontroller.authenticate', |
|
| 289 | + array('token' => $token))); |
|
| 290 | + } |
|
| 291 | + |
|
| 292 | + if (!$this->validateShare($share)) { |
|
| 293 | + throw new NotFoundException(); |
|
| 294 | + } |
|
| 295 | + // We can't get the path of a file share |
|
| 296 | + try { |
|
| 297 | + if ($share->getNode() instanceof \OCP\Files\File && $path !== '') { |
|
| 298 | + $this->emitAccessShareHook($share, 404, 'Share not found'); |
|
| 299 | + throw new NotFoundException(); |
|
| 300 | + } |
|
| 301 | + } catch (\Exception $e) { |
|
| 302 | + $this->emitAccessShareHook($share, 404, 'Share not found'); |
|
| 303 | + throw $e; |
|
| 304 | + } |
|
| 305 | + |
|
| 306 | + $shareTmpl = []; |
|
| 307 | + $shareTmpl['displayName'] = $this->userManager->get($share->getShareOwner())->getDisplayName(); |
|
| 308 | + $shareTmpl['owner'] = $share->getShareOwner(); |
|
| 309 | + $shareTmpl['filename'] = $share->getNode()->getName(); |
|
| 310 | + $shareTmpl['directory_path'] = $share->getTarget(); |
|
| 311 | + $shareTmpl['mimetype'] = $share->getNode()->getMimetype(); |
|
| 312 | + $shareTmpl['previewSupported'] = $this->previewManager->isMimeSupported($share->getNode()->getMimetype()); |
|
| 313 | + $shareTmpl['dirToken'] = $token; |
|
| 314 | + $shareTmpl['sharingToken'] = $token; |
|
| 315 | + $shareTmpl['server2serversharing'] = $this->federatedShareProvider->isOutgoingServer2serverShareEnabled(); |
|
| 316 | + $shareTmpl['protected'] = $share->getPassword() !== null ? 'true' : 'false'; |
|
| 317 | + $shareTmpl['dir'] = ''; |
|
| 318 | + $shareTmpl['nonHumanFileSize'] = $share->getNode()->getSize(); |
|
| 319 | + $shareTmpl['fileSize'] = \OCP\Util::humanFileSize($share->getNode()->getSize()); |
|
| 320 | + |
|
| 321 | + // Show file list |
|
| 322 | + $hideFileList = false; |
|
| 323 | + if ($share->getNode() instanceof \OCP\Files\Folder) { |
|
| 324 | + /** @var \OCP\Files\Folder $rootFolder */ |
|
| 325 | + $rootFolder = $share->getNode(); |
|
| 326 | + |
|
| 327 | + try { |
|
| 328 | + $folderNode = $rootFolder->get($path); |
|
| 329 | + } catch (\OCP\Files\NotFoundException $e) { |
|
| 330 | + $this->emitAccessShareHook($share, 404, 'Share not found'); |
|
| 331 | + throw new NotFoundException(); |
|
| 332 | + } |
|
| 333 | + |
|
| 334 | + $shareTmpl['dir'] = $rootFolder->getRelativePath($folderNode->getPath()); |
|
| 335 | + |
|
| 336 | + /* |
|
| 337 | 337 | * The OC_Util methods require a view. This just uses the node API |
| 338 | 338 | */ |
| 339 | - $freeSpace = $share->getNode()->getStorage()->free_space($share->getNode()->getInternalPath()); |
|
| 340 | - if ($freeSpace < \OCP\Files\FileInfo::SPACE_UNLIMITED) { |
|
| 341 | - $freeSpace = max($freeSpace, 0); |
|
| 342 | - } else { |
|
| 343 | - $freeSpace = (INF > 0) ? INF: PHP_INT_MAX; // work around https://bugs.php.net/bug.php?id=69188 |
|
| 344 | - } |
|
| 345 | - |
|
| 346 | - $hideFileList = $share->getPermissions() & \OCP\Constants::PERMISSION_READ ? false : true; |
|
| 347 | - $maxUploadFilesize = $freeSpace; |
|
| 348 | - |
|
| 349 | - $folder = new Template('files', 'list', ''); |
|
| 350 | - $folder->assign('dir', $rootFolder->getRelativePath($folderNode->getPath())); |
|
| 351 | - $folder->assign('dirToken', $token); |
|
| 352 | - $folder->assign('permissions', \OCP\Constants::PERMISSION_READ); |
|
| 353 | - $folder->assign('isPublic', true); |
|
| 354 | - $folder->assign('hideFileList', $hideFileList); |
|
| 355 | - $folder->assign('publicUploadEnabled', 'no'); |
|
| 356 | - $folder->assign('uploadMaxFilesize', $maxUploadFilesize); |
|
| 357 | - $folder->assign('uploadMaxHumanFilesize', \OCP\Util::humanFileSize($maxUploadFilesize)); |
|
| 358 | - $folder->assign('freeSpace', $freeSpace); |
|
| 359 | - $folder->assign('usedSpacePercent', 0); |
|
| 360 | - $folder->assign('trash', false); |
|
| 361 | - $shareTmpl['folder'] = $folder->fetchPage(); |
|
| 362 | - } |
|
| 363 | - |
|
| 364 | - $shareTmpl['hideFileList'] = $hideFileList; |
|
| 365 | - $shareTmpl['shareOwner'] = $this->userManager->get($share->getShareOwner())->getDisplayName(); |
|
| 366 | - $shareTmpl['downloadURL'] = $this->urlGenerator->linkToRouteAbsolute('files_sharing.sharecontroller.downloadShare', ['token' => $token]); |
|
| 367 | - $shareTmpl['shareUrl'] = $this->urlGenerator->linkToRouteAbsolute('files_sharing.sharecontroller.showShare', ['token' => $token]); |
|
| 368 | - $shareTmpl['maxSizeAnimateGif'] = $this->config->getSystemValue('max_filesize_animated_gifs_public_sharing', 10); |
|
| 369 | - $shareTmpl['previewEnabled'] = $this->config->getSystemValue('enable_previews', true); |
|
| 370 | - $shareTmpl['previewMaxX'] = $this->config->getSystemValue('preview_max_x', 1024); |
|
| 371 | - $shareTmpl['previewMaxY'] = $this->config->getSystemValue('preview_max_y', 1024); |
|
| 372 | - $shareTmpl['disclaimer'] = $this->config->getAppValue('core', 'shareapi_public_link_disclaimertext', null); |
|
| 373 | - if ($shareTmpl['previewSupported']) { |
|
| 374 | - $shareTmpl['previewImage'] = $this->urlGenerator->linkToRouteAbsolute( 'files_sharing.PublicPreview.getPreview', |
|
| 375 | - ['x' => 200, 'y' => 200, 'file' => $shareTmpl['directory_path'], 't' => $shareTmpl['dirToken']]); |
|
| 376 | - } else { |
|
| 377 | - $shareTmpl['previewImage'] = $this->urlGenerator->getAbsoluteURL($this->urlGenerator->imagePath('core', 'favicon-fb.png')); |
|
| 378 | - } |
|
| 379 | - |
|
| 380 | - // Load files we need |
|
| 381 | - \OCP\Util::addScript('files', 'file-upload'); |
|
| 382 | - \OCP\Util::addStyle('files_sharing', 'public'); |
|
| 383 | - \OCP\Util::addStyle('files_sharing', 'mobile'); |
|
| 384 | - \OCP\Util::addScript('files_sharing', 'public'); |
|
| 385 | - \OCP\Util::addScript('files', 'fileactions'); |
|
| 386 | - \OCP\Util::addScript('files', 'fileactionsmenu'); |
|
| 387 | - \OCP\Util::addScript('files', 'jquery.fileupload'); |
|
| 388 | - \OCP\Util::addScript('files_sharing', 'files_drop'); |
|
| 389 | - |
|
| 390 | - if (isset($shareTmpl['folder'])) { |
|
| 391 | - // JS required for folders |
|
| 392 | - \OCP\Util::addStyle('files', 'files'); |
|
| 393 | - \OCP\Util::addStyle('files', 'upload'); |
|
| 394 | - \OCP\Util::addScript('files', 'filesummary'); |
|
| 395 | - \OCP\Util::addScript('files', 'breadcrumb'); |
|
| 396 | - \OCP\Util::addScript('files', 'fileinfomodel'); |
|
| 397 | - \OCP\Util::addScript('files', 'newfilemenu'); |
|
| 398 | - \OCP\Util::addScript('files', 'files'); |
|
| 399 | - \OCP\Util::addScript('files', 'filelist'); |
|
| 400 | - \OCP\Util::addScript('files', 'keyboardshortcuts'); |
|
| 401 | - } |
|
| 402 | - |
|
| 403 | - // OpenGraph Support: http://ogp.me/ |
|
| 404 | - \OCP\Util::addHeader('meta', ['property' => "og:title", 'content' => $this->defaults->getName() . ' - ' . $this->defaults->getSlogan()]); |
|
| 405 | - \OCP\Util::addHeader('meta', ['property' => "og:description", 'content' => $this->l10n->t('%s is publicly shared', [$shareTmpl['filename']])]); |
|
| 406 | - \OCP\Util::addHeader('meta', ['property' => "og:site_name", 'content' => $this->defaults->getName()]); |
|
| 407 | - \OCP\Util::addHeader('meta', ['property' => "og:url", 'content' => $shareTmpl['shareUrl']]); |
|
| 408 | - \OCP\Util::addHeader('meta', ['property' => "og:type", 'content' => "object"]); |
|
| 409 | - \OCP\Util::addHeader('meta', ['property' => "og:image", 'content' => $shareTmpl['previewImage']]); |
|
| 410 | - |
|
| 411 | - $this->eventDispatcher->dispatch('OCA\Files_Sharing::loadAdditionalScripts'); |
|
| 412 | - |
|
| 413 | - $csp = new \OCP\AppFramework\Http\ContentSecurityPolicy(); |
|
| 414 | - $csp->addAllowedFrameDomain('\'self\''); |
|
| 415 | - $response = new TemplateResponse($this->appName, 'public', $shareTmpl, 'base'); |
|
| 416 | - $response->setContentSecurityPolicy($csp); |
|
| 417 | - |
|
| 418 | - $this->emitAccessShareHook($share); |
|
| 419 | - |
|
| 420 | - return $response; |
|
| 421 | - } |
|
| 422 | - |
|
| 423 | - /** |
|
| 424 | - * @PublicPage |
|
| 425 | - * @NoCSRFRequired |
|
| 426 | - * |
|
| 427 | - * @param string $token |
|
| 428 | - * @param string $files |
|
| 429 | - * @param string $path |
|
| 430 | - * @param string $downloadStartSecret |
|
| 431 | - * @return void|\OCP\AppFramework\Http\Response |
|
| 432 | - * @throws NotFoundException |
|
| 433 | - */ |
|
| 434 | - public function downloadShare($token, $files = null, $path = '', $downloadStartSecret = '') { |
|
| 435 | - \OC_User::setIncognitoMode(true); |
|
| 436 | - |
|
| 437 | - $share = $this->shareManager->getShareByToken($token); |
|
| 438 | - |
|
| 439 | - if(!($share->getPermissions() & \OCP\Constants::PERMISSION_READ)) { |
|
| 440 | - return new \OCP\AppFramework\Http\DataResponse('Share is read-only'); |
|
| 441 | - } |
|
| 442 | - |
|
| 443 | - // Share is password protected - check whether the user is permitted to access the share |
|
| 444 | - if ($share->getPassword() !== null && !$this->linkShareAuth($share)) { |
|
| 445 | - return new RedirectResponse($this->urlGenerator->linkToRoute('files_sharing.sharecontroller.authenticate', |
|
| 446 | - ['token' => $token])); |
|
| 447 | - } |
|
| 448 | - |
|
| 449 | - $files_list = null; |
|
| 450 | - if (!is_null($files)) { // download selected files |
|
| 451 | - $files_list = json_decode($files); |
|
| 452 | - // in case we get only a single file |
|
| 453 | - if ($files_list === null) { |
|
| 454 | - $files_list = [$files]; |
|
| 455 | - } |
|
| 456 | - } |
|
| 457 | - |
|
| 458 | - $userFolder = $this->rootFolder->getUserFolder($share->getShareOwner()); |
|
| 459 | - $originalSharePath = $userFolder->getRelativePath($share->getNode()->getPath()); |
|
| 460 | - |
|
| 461 | - if (!$this->validateShare($share)) { |
|
| 462 | - throw new NotFoundException(); |
|
| 463 | - } |
|
| 464 | - |
|
| 465 | - // Single file share |
|
| 466 | - if ($share->getNode() instanceof \OCP\Files\File) { |
|
| 467 | - // Single file download |
|
| 468 | - $this->singleFileDownloaded($share, $share->getNode()); |
|
| 469 | - } |
|
| 470 | - // Directory share |
|
| 471 | - else { |
|
| 472 | - /** @var \OCP\Files\Folder $node */ |
|
| 473 | - $node = $share->getNode(); |
|
| 474 | - |
|
| 475 | - // Try to get the path |
|
| 476 | - if ($path !== '') { |
|
| 477 | - try { |
|
| 478 | - $node = $node->get($path); |
|
| 479 | - } catch (NotFoundException $e) { |
|
| 480 | - $this->emitAccessShareHook($share, 404, 'Share not found'); |
|
| 481 | - return new NotFoundResponse(); |
|
| 482 | - } |
|
| 483 | - } |
|
| 484 | - |
|
| 485 | - $originalSharePath = $userFolder->getRelativePath($node->getPath()); |
|
| 486 | - |
|
| 487 | - if ($node instanceof \OCP\Files\File) { |
|
| 488 | - // Single file download |
|
| 489 | - $this->singleFileDownloaded($share, $share->getNode()); |
|
| 490 | - } else if (!empty($files_list)) { |
|
| 491 | - $this->fileListDownloaded($share, $files_list, $node); |
|
| 492 | - } else { |
|
| 493 | - // The folder is downloaded |
|
| 494 | - $this->singleFileDownloaded($share, $share->getNode()); |
|
| 495 | - } |
|
| 496 | - } |
|
| 497 | - |
|
| 498 | - /* FIXME: We should do this all nicely in OCP */ |
|
| 499 | - OC_Util::tearDownFS(); |
|
| 500 | - OC_Util::setupFS($share->getShareOwner()); |
|
| 501 | - |
|
| 502 | - /** |
|
| 503 | - * this sets a cookie to be able to recognize the start of the download |
|
| 504 | - * the content must not be longer than 32 characters and must only contain |
|
| 505 | - * alphanumeric characters |
|
| 506 | - */ |
|
| 507 | - if (!empty($downloadStartSecret) |
|
| 508 | - && !isset($downloadStartSecret[32]) |
|
| 509 | - && preg_match('!^[a-zA-Z0-9]+$!', $downloadStartSecret) === 1) { |
|
| 510 | - |
|
| 511 | - // FIXME: set on the response once we use an actual app framework response |
|
| 512 | - setcookie('ocDownloadStarted', $downloadStartSecret, time() + 20, '/'); |
|
| 513 | - } |
|
| 514 | - |
|
| 515 | - $this->emitAccessShareHook($share); |
|
| 516 | - |
|
| 517 | - $server_params = array( 'head' => $this->request->getMethod() == 'HEAD' ); |
|
| 518 | - |
|
| 519 | - /** |
|
| 520 | - * Http range requests support |
|
| 521 | - */ |
|
| 522 | - if (isset($_SERVER['HTTP_RANGE'])) { |
|
| 523 | - $server_params['range'] = $this->request->getHeader('Range'); |
|
| 524 | - } |
|
| 525 | - |
|
| 526 | - // download selected files |
|
| 527 | - if (!is_null($files) && $files !== '') { |
|
| 528 | - // FIXME: The exit is required here because otherwise the AppFramework is trying to add headers as well |
|
| 529 | - // after dispatching the request which results in a "Cannot modify header information" notice. |
|
| 530 | - OC_Files::get($originalSharePath, $files_list, $server_params); |
|
| 531 | - exit(); |
|
| 532 | - } else { |
|
| 533 | - // FIXME: The exit is required here because otherwise the AppFramework is trying to add headers as well |
|
| 534 | - // after dispatching the request which results in a "Cannot modify header information" notice. |
|
| 535 | - OC_Files::get(dirname($originalSharePath), basename($originalSharePath), $server_params); |
|
| 536 | - exit(); |
|
| 537 | - } |
|
| 538 | - } |
|
| 539 | - |
|
| 540 | - /** |
|
| 541 | - * create activity for every downloaded file |
|
| 542 | - * |
|
| 543 | - * @param Share\IShare $share |
|
| 544 | - * @param array $files_list |
|
| 545 | - * @param \OCP\Files\Folder $node |
|
| 546 | - */ |
|
| 547 | - protected function fileListDownloaded(Share\IShare $share, array $files_list, \OCP\Files\Folder $node) { |
|
| 548 | - foreach ($files_list as $file) { |
|
| 549 | - $subNode = $node->get($file); |
|
| 550 | - $this->singleFileDownloaded($share, $subNode); |
|
| 551 | - } |
|
| 552 | - |
|
| 553 | - } |
|
| 554 | - |
|
| 555 | - /** |
|
| 556 | - * create activity if a single file was downloaded from a link share |
|
| 557 | - * |
|
| 558 | - * @param Share\IShare $share |
|
| 559 | - */ |
|
| 560 | - protected function singleFileDownloaded(Share\IShare $share, \OCP\Files\Node $node) { |
|
| 561 | - |
|
| 562 | - $fileId = $node->getId(); |
|
| 563 | - |
|
| 564 | - $userFolder = $this->rootFolder->getUserFolder($share->getSharedBy()); |
|
| 565 | - $userNodeList = $userFolder->getById($fileId); |
|
| 566 | - $userNode = $userNodeList[0]; |
|
| 567 | - $ownerFolder = $this->rootFolder->getUserFolder($share->getShareOwner()); |
|
| 568 | - $userPath = $userFolder->getRelativePath($userNode->getPath()); |
|
| 569 | - $ownerPath = $ownerFolder->getRelativePath($node->getPath()); |
|
| 570 | - |
|
| 571 | - $parameters = [$userPath]; |
|
| 572 | - |
|
| 573 | - if ($share->getShareType() === \OCP\Share::SHARE_TYPE_EMAIL) { |
|
| 574 | - if ($node instanceof \OCP\Files\File) { |
|
| 575 | - $subject = Downloads::SUBJECT_SHARED_FILE_BY_EMAIL_DOWNLOADED; |
|
| 576 | - } else { |
|
| 577 | - $subject = Downloads::SUBJECT_SHARED_FOLDER_BY_EMAIL_DOWNLOADED; |
|
| 578 | - } |
|
| 579 | - $parameters[] = $share->getSharedWith(); |
|
| 580 | - } else { |
|
| 581 | - if ($node instanceof \OCP\Files\File) { |
|
| 582 | - $subject = Downloads::SUBJECT_PUBLIC_SHARED_FILE_DOWNLOADED; |
|
| 583 | - } else { |
|
| 584 | - $subject = Downloads::SUBJECT_PUBLIC_SHARED_FOLDER_DOWNLOADED; |
|
| 585 | - } |
|
| 586 | - } |
|
| 587 | - |
|
| 588 | - $this->publishActivity($subject, $parameters, $share->getSharedBy(), $fileId, $userPath); |
|
| 589 | - |
|
| 590 | - if ($share->getShareOwner() !== $share->getSharedBy()) { |
|
| 591 | - $parameters[0] = $ownerPath; |
|
| 592 | - $this->publishActivity($subject, $parameters, $share->getShareOwner(), $fileId, $ownerPath); |
|
| 593 | - } |
|
| 594 | - } |
|
| 595 | - |
|
| 596 | - /** |
|
| 597 | - * publish activity |
|
| 598 | - * |
|
| 599 | - * @param string $subject |
|
| 600 | - * @param array $parameters |
|
| 601 | - * @param string $affectedUser |
|
| 602 | - * @param int $fileId |
|
| 603 | - * @param string $filePath |
|
| 604 | - */ |
|
| 605 | - protected function publishActivity($subject, |
|
| 606 | - array $parameters, |
|
| 607 | - $affectedUser, |
|
| 608 | - $fileId, |
|
| 609 | - $filePath) { |
|
| 610 | - |
|
| 611 | - $event = $this->activityManager->generateEvent(); |
|
| 612 | - $event->setApp('files_sharing') |
|
| 613 | - ->setType('public_links') |
|
| 614 | - ->setSubject($subject, $parameters) |
|
| 615 | - ->setAffectedUser($affectedUser) |
|
| 616 | - ->setObject('files', $fileId, $filePath); |
|
| 617 | - $this->activityManager->publish($event); |
|
| 618 | - } |
|
| 339 | + $freeSpace = $share->getNode()->getStorage()->free_space($share->getNode()->getInternalPath()); |
|
| 340 | + if ($freeSpace < \OCP\Files\FileInfo::SPACE_UNLIMITED) { |
|
| 341 | + $freeSpace = max($freeSpace, 0); |
|
| 342 | + } else { |
|
| 343 | + $freeSpace = (INF > 0) ? INF: PHP_INT_MAX; // work around https://bugs.php.net/bug.php?id=69188 |
|
| 344 | + } |
|
| 345 | + |
|
| 346 | + $hideFileList = $share->getPermissions() & \OCP\Constants::PERMISSION_READ ? false : true; |
|
| 347 | + $maxUploadFilesize = $freeSpace; |
|
| 348 | + |
|
| 349 | + $folder = new Template('files', 'list', ''); |
|
| 350 | + $folder->assign('dir', $rootFolder->getRelativePath($folderNode->getPath())); |
|
| 351 | + $folder->assign('dirToken', $token); |
|
| 352 | + $folder->assign('permissions', \OCP\Constants::PERMISSION_READ); |
|
| 353 | + $folder->assign('isPublic', true); |
|
| 354 | + $folder->assign('hideFileList', $hideFileList); |
|
| 355 | + $folder->assign('publicUploadEnabled', 'no'); |
|
| 356 | + $folder->assign('uploadMaxFilesize', $maxUploadFilesize); |
|
| 357 | + $folder->assign('uploadMaxHumanFilesize', \OCP\Util::humanFileSize($maxUploadFilesize)); |
|
| 358 | + $folder->assign('freeSpace', $freeSpace); |
|
| 359 | + $folder->assign('usedSpacePercent', 0); |
|
| 360 | + $folder->assign('trash', false); |
|
| 361 | + $shareTmpl['folder'] = $folder->fetchPage(); |
|
| 362 | + } |
|
| 363 | + |
|
| 364 | + $shareTmpl['hideFileList'] = $hideFileList; |
|
| 365 | + $shareTmpl['shareOwner'] = $this->userManager->get($share->getShareOwner())->getDisplayName(); |
|
| 366 | + $shareTmpl['downloadURL'] = $this->urlGenerator->linkToRouteAbsolute('files_sharing.sharecontroller.downloadShare', ['token' => $token]); |
|
| 367 | + $shareTmpl['shareUrl'] = $this->urlGenerator->linkToRouteAbsolute('files_sharing.sharecontroller.showShare', ['token' => $token]); |
|
| 368 | + $shareTmpl['maxSizeAnimateGif'] = $this->config->getSystemValue('max_filesize_animated_gifs_public_sharing', 10); |
|
| 369 | + $shareTmpl['previewEnabled'] = $this->config->getSystemValue('enable_previews', true); |
|
| 370 | + $shareTmpl['previewMaxX'] = $this->config->getSystemValue('preview_max_x', 1024); |
|
| 371 | + $shareTmpl['previewMaxY'] = $this->config->getSystemValue('preview_max_y', 1024); |
|
| 372 | + $shareTmpl['disclaimer'] = $this->config->getAppValue('core', 'shareapi_public_link_disclaimertext', null); |
|
| 373 | + if ($shareTmpl['previewSupported']) { |
|
| 374 | + $shareTmpl['previewImage'] = $this->urlGenerator->linkToRouteAbsolute( 'files_sharing.PublicPreview.getPreview', |
|
| 375 | + ['x' => 200, 'y' => 200, 'file' => $shareTmpl['directory_path'], 't' => $shareTmpl['dirToken']]); |
|
| 376 | + } else { |
|
| 377 | + $shareTmpl['previewImage'] = $this->urlGenerator->getAbsoluteURL($this->urlGenerator->imagePath('core', 'favicon-fb.png')); |
|
| 378 | + } |
|
| 379 | + |
|
| 380 | + // Load files we need |
|
| 381 | + \OCP\Util::addScript('files', 'file-upload'); |
|
| 382 | + \OCP\Util::addStyle('files_sharing', 'public'); |
|
| 383 | + \OCP\Util::addStyle('files_sharing', 'mobile'); |
|
| 384 | + \OCP\Util::addScript('files_sharing', 'public'); |
|
| 385 | + \OCP\Util::addScript('files', 'fileactions'); |
|
| 386 | + \OCP\Util::addScript('files', 'fileactionsmenu'); |
|
| 387 | + \OCP\Util::addScript('files', 'jquery.fileupload'); |
|
| 388 | + \OCP\Util::addScript('files_sharing', 'files_drop'); |
|
| 389 | + |
|
| 390 | + if (isset($shareTmpl['folder'])) { |
|
| 391 | + // JS required for folders |
|
| 392 | + \OCP\Util::addStyle('files', 'files'); |
|
| 393 | + \OCP\Util::addStyle('files', 'upload'); |
|
| 394 | + \OCP\Util::addScript('files', 'filesummary'); |
|
| 395 | + \OCP\Util::addScript('files', 'breadcrumb'); |
|
| 396 | + \OCP\Util::addScript('files', 'fileinfomodel'); |
|
| 397 | + \OCP\Util::addScript('files', 'newfilemenu'); |
|
| 398 | + \OCP\Util::addScript('files', 'files'); |
|
| 399 | + \OCP\Util::addScript('files', 'filelist'); |
|
| 400 | + \OCP\Util::addScript('files', 'keyboardshortcuts'); |
|
| 401 | + } |
|
| 402 | + |
|
| 403 | + // OpenGraph Support: http://ogp.me/ |
|
| 404 | + \OCP\Util::addHeader('meta', ['property' => "og:title", 'content' => $this->defaults->getName() . ' - ' . $this->defaults->getSlogan()]); |
|
| 405 | + \OCP\Util::addHeader('meta', ['property' => "og:description", 'content' => $this->l10n->t('%s is publicly shared', [$shareTmpl['filename']])]); |
|
| 406 | + \OCP\Util::addHeader('meta', ['property' => "og:site_name", 'content' => $this->defaults->getName()]); |
|
| 407 | + \OCP\Util::addHeader('meta', ['property' => "og:url", 'content' => $shareTmpl['shareUrl']]); |
|
| 408 | + \OCP\Util::addHeader('meta', ['property' => "og:type", 'content' => "object"]); |
|
| 409 | + \OCP\Util::addHeader('meta', ['property' => "og:image", 'content' => $shareTmpl['previewImage']]); |
|
| 410 | + |
|
| 411 | + $this->eventDispatcher->dispatch('OCA\Files_Sharing::loadAdditionalScripts'); |
|
| 412 | + |
|
| 413 | + $csp = new \OCP\AppFramework\Http\ContentSecurityPolicy(); |
|
| 414 | + $csp->addAllowedFrameDomain('\'self\''); |
|
| 415 | + $response = new TemplateResponse($this->appName, 'public', $shareTmpl, 'base'); |
|
| 416 | + $response->setContentSecurityPolicy($csp); |
|
| 417 | + |
|
| 418 | + $this->emitAccessShareHook($share); |
|
| 419 | + |
|
| 420 | + return $response; |
|
| 421 | + } |
|
| 422 | + |
|
| 423 | + /** |
|
| 424 | + * @PublicPage |
|
| 425 | + * @NoCSRFRequired |
|
| 426 | + * |
|
| 427 | + * @param string $token |
|
| 428 | + * @param string $files |
|
| 429 | + * @param string $path |
|
| 430 | + * @param string $downloadStartSecret |
|
| 431 | + * @return void|\OCP\AppFramework\Http\Response |
|
| 432 | + * @throws NotFoundException |
|
| 433 | + */ |
|
| 434 | + public function downloadShare($token, $files = null, $path = '', $downloadStartSecret = '') { |
|
| 435 | + \OC_User::setIncognitoMode(true); |
|
| 436 | + |
|
| 437 | + $share = $this->shareManager->getShareByToken($token); |
|
| 438 | + |
|
| 439 | + if(!($share->getPermissions() & \OCP\Constants::PERMISSION_READ)) { |
|
| 440 | + return new \OCP\AppFramework\Http\DataResponse('Share is read-only'); |
|
| 441 | + } |
|
| 442 | + |
|
| 443 | + // Share is password protected - check whether the user is permitted to access the share |
|
| 444 | + if ($share->getPassword() !== null && !$this->linkShareAuth($share)) { |
|
| 445 | + return new RedirectResponse($this->urlGenerator->linkToRoute('files_sharing.sharecontroller.authenticate', |
|
| 446 | + ['token' => $token])); |
|
| 447 | + } |
|
| 448 | + |
|
| 449 | + $files_list = null; |
|
| 450 | + if (!is_null($files)) { // download selected files |
|
| 451 | + $files_list = json_decode($files); |
|
| 452 | + // in case we get only a single file |
|
| 453 | + if ($files_list === null) { |
|
| 454 | + $files_list = [$files]; |
|
| 455 | + } |
|
| 456 | + } |
|
| 457 | + |
|
| 458 | + $userFolder = $this->rootFolder->getUserFolder($share->getShareOwner()); |
|
| 459 | + $originalSharePath = $userFolder->getRelativePath($share->getNode()->getPath()); |
|
| 460 | + |
|
| 461 | + if (!$this->validateShare($share)) { |
|
| 462 | + throw new NotFoundException(); |
|
| 463 | + } |
|
| 464 | + |
|
| 465 | + // Single file share |
|
| 466 | + if ($share->getNode() instanceof \OCP\Files\File) { |
|
| 467 | + // Single file download |
|
| 468 | + $this->singleFileDownloaded($share, $share->getNode()); |
|
| 469 | + } |
|
| 470 | + // Directory share |
|
| 471 | + else { |
|
| 472 | + /** @var \OCP\Files\Folder $node */ |
|
| 473 | + $node = $share->getNode(); |
|
| 474 | + |
|
| 475 | + // Try to get the path |
|
| 476 | + if ($path !== '') { |
|
| 477 | + try { |
|
| 478 | + $node = $node->get($path); |
|
| 479 | + } catch (NotFoundException $e) { |
|
| 480 | + $this->emitAccessShareHook($share, 404, 'Share not found'); |
|
| 481 | + return new NotFoundResponse(); |
|
| 482 | + } |
|
| 483 | + } |
|
| 484 | + |
|
| 485 | + $originalSharePath = $userFolder->getRelativePath($node->getPath()); |
|
| 486 | + |
|
| 487 | + if ($node instanceof \OCP\Files\File) { |
|
| 488 | + // Single file download |
|
| 489 | + $this->singleFileDownloaded($share, $share->getNode()); |
|
| 490 | + } else if (!empty($files_list)) { |
|
| 491 | + $this->fileListDownloaded($share, $files_list, $node); |
|
| 492 | + } else { |
|
| 493 | + // The folder is downloaded |
|
| 494 | + $this->singleFileDownloaded($share, $share->getNode()); |
|
| 495 | + } |
|
| 496 | + } |
|
| 497 | + |
|
| 498 | + /* FIXME: We should do this all nicely in OCP */ |
|
| 499 | + OC_Util::tearDownFS(); |
|
| 500 | + OC_Util::setupFS($share->getShareOwner()); |
|
| 501 | + |
|
| 502 | + /** |
|
| 503 | + * this sets a cookie to be able to recognize the start of the download |
|
| 504 | + * the content must not be longer than 32 characters and must only contain |
|
| 505 | + * alphanumeric characters |
|
| 506 | + */ |
|
| 507 | + if (!empty($downloadStartSecret) |
|
| 508 | + && !isset($downloadStartSecret[32]) |
|
| 509 | + && preg_match('!^[a-zA-Z0-9]+$!', $downloadStartSecret) === 1) { |
|
| 510 | + |
|
| 511 | + // FIXME: set on the response once we use an actual app framework response |
|
| 512 | + setcookie('ocDownloadStarted', $downloadStartSecret, time() + 20, '/'); |
|
| 513 | + } |
|
| 514 | + |
|
| 515 | + $this->emitAccessShareHook($share); |
|
| 516 | + |
|
| 517 | + $server_params = array( 'head' => $this->request->getMethod() == 'HEAD' ); |
|
| 518 | + |
|
| 519 | + /** |
|
| 520 | + * Http range requests support |
|
| 521 | + */ |
|
| 522 | + if (isset($_SERVER['HTTP_RANGE'])) { |
|
| 523 | + $server_params['range'] = $this->request->getHeader('Range'); |
|
| 524 | + } |
|
| 525 | + |
|
| 526 | + // download selected files |
|
| 527 | + if (!is_null($files) && $files !== '') { |
|
| 528 | + // FIXME: The exit is required here because otherwise the AppFramework is trying to add headers as well |
|
| 529 | + // after dispatching the request which results in a "Cannot modify header information" notice. |
|
| 530 | + OC_Files::get($originalSharePath, $files_list, $server_params); |
|
| 531 | + exit(); |
|
| 532 | + } else { |
|
| 533 | + // FIXME: The exit is required here because otherwise the AppFramework is trying to add headers as well |
|
| 534 | + // after dispatching the request which results in a "Cannot modify header information" notice. |
|
| 535 | + OC_Files::get(dirname($originalSharePath), basename($originalSharePath), $server_params); |
|
| 536 | + exit(); |
|
| 537 | + } |
|
| 538 | + } |
|
| 539 | + |
|
| 540 | + /** |
|
| 541 | + * create activity for every downloaded file |
|
| 542 | + * |
|
| 543 | + * @param Share\IShare $share |
|
| 544 | + * @param array $files_list |
|
| 545 | + * @param \OCP\Files\Folder $node |
|
| 546 | + */ |
|
| 547 | + protected function fileListDownloaded(Share\IShare $share, array $files_list, \OCP\Files\Folder $node) { |
|
| 548 | + foreach ($files_list as $file) { |
|
| 549 | + $subNode = $node->get($file); |
|
| 550 | + $this->singleFileDownloaded($share, $subNode); |
|
| 551 | + } |
|
| 552 | + |
|
| 553 | + } |
|
| 554 | + |
|
| 555 | + /** |
|
| 556 | + * create activity if a single file was downloaded from a link share |
|
| 557 | + * |
|
| 558 | + * @param Share\IShare $share |
|
| 559 | + */ |
|
| 560 | + protected function singleFileDownloaded(Share\IShare $share, \OCP\Files\Node $node) { |
|
| 561 | + |
|
| 562 | + $fileId = $node->getId(); |
|
| 563 | + |
|
| 564 | + $userFolder = $this->rootFolder->getUserFolder($share->getSharedBy()); |
|
| 565 | + $userNodeList = $userFolder->getById($fileId); |
|
| 566 | + $userNode = $userNodeList[0]; |
|
| 567 | + $ownerFolder = $this->rootFolder->getUserFolder($share->getShareOwner()); |
|
| 568 | + $userPath = $userFolder->getRelativePath($userNode->getPath()); |
|
| 569 | + $ownerPath = $ownerFolder->getRelativePath($node->getPath()); |
|
| 570 | + |
|
| 571 | + $parameters = [$userPath]; |
|
| 572 | + |
|
| 573 | + if ($share->getShareType() === \OCP\Share::SHARE_TYPE_EMAIL) { |
|
| 574 | + if ($node instanceof \OCP\Files\File) { |
|
| 575 | + $subject = Downloads::SUBJECT_SHARED_FILE_BY_EMAIL_DOWNLOADED; |
|
| 576 | + } else { |
|
| 577 | + $subject = Downloads::SUBJECT_SHARED_FOLDER_BY_EMAIL_DOWNLOADED; |
|
| 578 | + } |
|
| 579 | + $parameters[] = $share->getSharedWith(); |
|
| 580 | + } else { |
|
| 581 | + if ($node instanceof \OCP\Files\File) { |
|
| 582 | + $subject = Downloads::SUBJECT_PUBLIC_SHARED_FILE_DOWNLOADED; |
|
| 583 | + } else { |
|
| 584 | + $subject = Downloads::SUBJECT_PUBLIC_SHARED_FOLDER_DOWNLOADED; |
|
| 585 | + } |
|
| 586 | + } |
|
| 587 | + |
|
| 588 | + $this->publishActivity($subject, $parameters, $share->getSharedBy(), $fileId, $userPath); |
|
| 589 | + |
|
| 590 | + if ($share->getShareOwner() !== $share->getSharedBy()) { |
|
| 591 | + $parameters[0] = $ownerPath; |
|
| 592 | + $this->publishActivity($subject, $parameters, $share->getShareOwner(), $fileId, $ownerPath); |
|
| 593 | + } |
|
| 594 | + } |
|
| 595 | + |
|
| 596 | + /** |
|
| 597 | + * publish activity |
|
| 598 | + * |
|
| 599 | + * @param string $subject |
|
| 600 | + * @param array $parameters |
|
| 601 | + * @param string $affectedUser |
|
| 602 | + * @param int $fileId |
|
| 603 | + * @param string $filePath |
|
| 604 | + */ |
|
| 605 | + protected function publishActivity($subject, |
|
| 606 | + array $parameters, |
|
| 607 | + $affectedUser, |
|
| 608 | + $fileId, |
|
| 609 | + $filePath) { |
|
| 610 | + |
|
| 611 | + $event = $this->activityManager->generateEvent(); |
|
| 612 | + $event->setApp('files_sharing') |
|
| 613 | + ->setType('public_links') |
|
| 614 | + ->setSubject($subject, $parameters) |
|
| 615 | + ->setAffectedUser($affectedUser) |
|
| 616 | + ->setObject('files', $fileId, $filePath); |
|
| 617 | + $this->activityManager->publish($event); |
|
| 618 | + } |
|
| 619 | 619 | |
| 620 | 620 | |
| 621 | 621 | } |
@@ -150,7 +150,7 @@ discard block |
||
| 150 | 150 | public function showAuthenticate($token) { |
| 151 | 151 | $share = $this->shareManager->getShareByToken($token); |
| 152 | 152 | |
| 153 | - if($this->linkShareAuth($share)) { |
|
| 153 | + if ($this->linkShareAuth($share)) { |
|
| 154 | 154 | return new RedirectResponse($this->urlGenerator->linkToRoute('files_sharing.sharecontroller.showShare', array('token' => $token))); |
| 155 | 155 | } |
| 156 | 156 | |
@@ -178,7 +178,7 @@ discard block |
||
| 178 | 178 | |
| 179 | 179 | $authenticate = $this->linkShareAuth($share, $password); |
| 180 | 180 | |
| 181 | - if($authenticate === true) { |
|
| 181 | + if ($authenticate === true) { |
|
| 182 | 182 | return new RedirectResponse($this->urlGenerator->linkToRoute('files_sharing.sharecontroller.showShare', array('token' => $token))); |
| 183 | 183 | } |
| 184 | 184 | |
@@ -199,15 +199,15 @@ discard block |
||
| 199 | 199 | private function linkShareAuth(\OCP\Share\IShare $share, $password = null) { |
| 200 | 200 | if ($password !== null) { |
| 201 | 201 | if ($this->shareManager->checkPassword($share, $password)) { |
| 202 | - $this->session->set('public_link_authenticated', (string)$share->getId()); |
|
| 202 | + $this->session->set('public_link_authenticated', (string) $share->getId()); |
|
| 203 | 203 | } else { |
| 204 | 204 | $this->emitAccessShareHook($share, 403, 'Wrong password'); |
| 205 | 205 | return false; |
| 206 | 206 | } |
| 207 | 207 | } else { |
| 208 | 208 | // not authenticated ? |
| 209 | - if ( ! $this->session->exists('public_link_authenticated') |
|
| 210 | - || $this->session->get('public_link_authenticated') !== (string)$share->getId()) { |
|
| 209 | + if (!$this->session->exists('public_link_authenticated') |
|
| 210 | + || $this->session->get('public_link_authenticated') !== (string) $share->getId()) { |
|
| 211 | 211 | return false; |
| 212 | 212 | } |
| 213 | 213 | } |
@@ -228,7 +228,7 @@ discard block |
||
| 228 | 228 | $itemType = $itemSource = $uidOwner = ''; |
| 229 | 229 | $token = $share; |
| 230 | 230 | $exception = null; |
| 231 | - if($share instanceof \OCP\Share\IShare) { |
|
| 231 | + if ($share instanceof \OCP\Share\IShare) { |
|
| 232 | 232 | try { |
| 233 | 233 | $token = $share->getToken(); |
| 234 | 234 | $uidOwner = $share->getSharedBy(); |
@@ -247,7 +247,7 @@ discard block |
||
| 247 | 247 | 'errorCode' => $errorCode, |
| 248 | 248 | 'errorMessage' => $errorMessage, |
| 249 | 249 | ]); |
| 250 | - if(!is_null($exception)) { |
|
| 250 | + if (!is_null($exception)) { |
|
| 251 | 251 | throw $exception; |
| 252 | 252 | } |
| 253 | 253 | } |
@@ -340,7 +340,7 @@ discard block |
||
| 340 | 340 | if ($freeSpace < \OCP\Files\FileInfo::SPACE_UNLIMITED) { |
| 341 | 341 | $freeSpace = max($freeSpace, 0); |
| 342 | 342 | } else { |
| 343 | - $freeSpace = (INF > 0) ? INF: PHP_INT_MAX; // work around https://bugs.php.net/bug.php?id=69188 |
|
| 343 | + $freeSpace = (INF > 0) ? INF : PHP_INT_MAX; // work around https://bugs.php.net/bug.php?id=69188 |
|
| 344 | 344 | } |
| 345 | 345 | |
| 346 | 346 | $hideFileList = $share->getPermissions() & \OCP\Constants::PERMISSION_READ ? false : true; |
@@ -371,7 +371,7 @@ discard block |
||
| 371 | 371 | $shareTmpl['previewMaxY'] = $this->config->getSystemValue('preview_max_y', 1024); |
| 372 | 372 | $shareTmpl['disclaimer'] = $this->config->getAppValue('core', 'shareapi_public_link_disclaimertext', null); |
| 373 | 373 | if ($shareTmpl['previewSupported']) { |
| 374 | - $shareTmpl['previewImage'] = $this->urlGenerator->linkToRouteAbsolute( 'files_sharing.PublicPreview.getPreview', |
|
| 374 | + $shareTmpl['previewImage'] = $this->urlGenerator->linkToRouteAbsolute('files_sharing.PublicPreview.getPreview', |
|
| 375 | 375 | ['x' => 200, 'y' => 200, 'file' => $shareTmpl['directory_path'], 't' => $shareTmpl['dirToken']]); |
| 376 | 376 | } else { |
| 377 | 377 | $shareTmpl['previewImage'] = $this->urlGenerator->getAbsoluteURL($this->urlGenerator->imagePath('core', 'favicon-fb.png')); |
@@ -401,7 +401,7 @@ discard block |
||
| 401 | 401 | } |
| 402 | 402 | |
| 403 | 403 | // OpenGraph Support: http://ogp.me/ |
| 404 | - \OCP\Util::addHeader('meta', ['property' => "og:title", 'content' => $this->defaults->getName() . ' - ' . $this->defaults->getSlogan()]); |
|
| 404 | + \OCP\Util::addHeader('meta', ['property' => "og:title", 'content' => $this->defaults->getName().' - '.$this->defaults->getSlogan()]); |
|
| 405 | 405 | \OCP\Util::addHeader('meta', ['property' => "og:description", 'content' => $this->l10n->t('%s is publicly shared', [$shareTmpl['filename']])]); |
| 406 | 406 | \OCP\Util::addHeader('meta', ['property' => "og:site_name", 'content' => $this->defaults->getName()]); |
| 407 | 407 | \OCP\Util::addHeader('meta', ['property' => "og:url", 'content' => $shareTmpl['shareUrl']]); |
@@ -436,7 +436,7 @@ discard block |
||
| 436 | 436 | |
| 437 | 437 | $share = $this->shareManager->getShareByToken($token); |
| 438 | 438 | |
| 439 | - if(!($share->getPermissions() & \OCP\Constants::PERMISSION_READ)) { |
|
| 439 | + if (!($share->getPermissions() & \OCP\Constants::PERMISSION_READ)) { |
|
| 440 | 440 | return new \OCP\AppFramework\Http\DataResponse('Share is read-only'); |
| 441 | 441 | } |
| 442 | 442 | |
@@ -514,7 +514,7 @@ discard block |
||
| 514 | 514 | |
| 515 | 515 | $this->emitAccessShareHook($share); |
| 516 | 516 | |
| 517 | - $server_params = array( 'head' => $this->request->getMethod() == 'HEAD' ); |
|
| 517 | + $server_params = array('head' => $this->request->getMethod() == 'HEAD'); |
|
| 518 | 518 | |
| 519 | 519 | /** |
| 520 | 520 | * Http range requests support |
@@ -358,7 +358,7 @@ discard block |
||
| 358 | 358 | * split user and remote from federated cloud id |
| 359 | 359 | * |
| 360 | 360 | * @param string $address federated share address |
| 361 | - * @return array [user, remoteURL] |
|
| 361 | + * @return string[] [user, remoteURL] |
|
| 362 | 362 | * @throws \Exception |
| 363 | 363 | */ |
| 364 | 364 | public function splitUserRemote($address) { |
@@ -633,6 +633,9 @@ discard block |
||
| 633 | 633 | return $result; |
| 634 | 634 | } |
| 635 | 635 | |
| 636 | + /** |
|
| 637 | + * @param string $search |
|
| 638 | + */ |
|
| 636 | 639 | protected function getLookup($search) { |
| 637 | 640 | $isEnabled = $this->config->getAppValue('files_sharing', 'lookupServerEnabled', 'no'); |
| 638 | 641 | $result = []; |
@@ -43,643 +43,643 @@ |
||
| 43 | 43 | |
| 44 | 44 | class ShareesAPIController extends OCSController { |
| 45 | 45 | |
| 46 | - /** @var IGroupManager */ |
|
| 47 | - protected $groupManager; |
|
| 48 | - |
|
| 49 | - /** @var IUserManager */ |
|
| 50 | - protected $userManager; |
|
| 51 | - |
|
| 52 | - /** @var IManager */ |
|
| 53 | - protected $contactsManager; |
|
| 54 | - |
|
| 55 | - /** @var IConfig */ |
|
| 56 | - protected $config; |
|
| 57 | - |
|
| 58 | - /** @var IUserSession */ |
|
| 59 | - protected $userSession; |
|
| 60 | - |
|
| 61 | - /** @var IURLGenerator */ |
|
| 62 | - protected $urlGenerator; |
|
| 63 | - |
|
| 64 | - /** @var ILogger */ |
|
| 65 | - protected $logger; |
|
| 66 | - |
|
| 67 | - /** @var \OCP\Share\IManager */ |
|
| 68 | - protected $shareManager; |
|
| 69 | - |
|
| 70 | - /** @var IClientService */ |
|
| 71 | - protected $clientService; |
|
| 72 | - |
|
| 73 | - /** @var ICloudIdManager */ |
|
| 74 | - protected $cloudIdManager; |
|
| 75 | - |
|
| 76 | - /** @var bool */ |
|
| 77 | - protected $shareWithGroupOnly = false; |
|
| 78 | - |
|
| 79 | - /** @var bool */ |
|
| 80 | - protected $shareeEnumeration = true; |
|
| 81 | - |
|
| 82 | - /** @var int */ |
|
| 83 | - protected $offset = 0; |
|
| 84 | - |
|
| 85 | - /** @var int */ |
|
| 86 | - protected $limit = 10; |
|
| 87 | - |
|
| 88 | - /** @var array */ |
|
| 89 | - protected $result = [ |
|
| 90 | - 'exact' => [ |
|
| 91 | - 'users' => [], |
|
| 92 | - 'groups' => [], |
|
| 93 | - 'remotes' => [], |
|
| 94 | - 'emails' => [], |
|
| 95 | - ], |
|
| 96 | - 'users' => [], |
|
| 97 | - 'groups' => [], |
|
| 98 | - 'remotes' => [], |
|
| 99 | - 'emails' => [], |
|
| 100 | - 'lookup' => [], |
|
| 101 | - ]; |
|
| 102 | - |
|
| 103 | - protected $reachedEndFor = []; |
|
| 104 | - |
|
| 105 | - /** |
|
| 106 | - * @param string $appName |
|
| 107 | - * @param IRequest $request |
|
| 108 | - * @param IGroupManager $groupManager |
|
| 109 | - * @param IUserManager $userManager |
|
| 110 | - * @param IManager $contactsManager |
|
| 111 | - * @param IConfig $config |
|
| 112 | - * @param IUserSession $userSession |
|
| 113 | - * @param IURLGenerator $urlGenerator |
|
| 114 | - * @param ILogger $logger |
|
| 115 | - * @param \OCP\Share\IManager $shareManager |
|
| 116 | - * @param IClientService $clientService |
|
| 117 | - * @param ICloudIdManager $cloudIdManager |
|
| 118 | - */ |
|
| 119 | - public function __construct($appName, |
|
| 120 | - IRequest $request, |
|
| 121 | - IGroupManager $groupManager, |
|
| 122 | - IUserManager $userManager, |
|
| 123 | - IManager $contactsManager, |
|
| 124 | - IConfig $config, |
|
| 125 | - IUserSession $userSession, |
|
| 126 | - IURLGenerator $urlGenerator, |
|
| 127 | - ILogger $logger, |
|
| 128 | - \OCP\Share\IManager $shareManager, |
|
| 129 | - IClientService $clientService, |
|
| 130 | - ICloudIdManager $cloudIdManager |
|
| 131 | - ) { |
|
| 132 | - parent::__construct($appName, $request); |
|
| 133 | - |
|
| 134 | - $this->groupManager = $groupManager; |
|
| 135 | - $this->userManager = $userManager; |
|
| 136 | - $this->contactsManager = $contactsManager; |
|
| 137 | - $this->config = $config; |
|
| 138 | - $this->userSession = $userSession; |
|
| 139 | - $this->urlGenerator = $urlGenerator; |
|
| 140 | - $this->logger = $logger; |
|
| 141 | - $this->shareManager = $shareManager; |
|
| 142 | - $this->clientService = $clientService; |
|
| 143 | - $this->cloudIdManager = $cloudIdManager; |
|
| 144 | - } |
|
| 145 | - |
|
| 146 | - /** |
|
| 147 | - * @param string $search |
|
| 148 | - */ |
|
| 149 | - protected function getUsers($search) { |
|
| 150 | - $this->result['users'] = $this->result['exact']['users'] = $users = []; |
|
| 151 | - |
|
| 152 | - $userGroups = []; |
|
| 153 | - if ($this->shareWithGroupOnly) { |
|
| 154 | - // Search in all the groups this user is part of |
|
| 155 | - $userGroups = $this->groupManager->getUserGroupIds($this->userSession->getUser()); |
|
| 156 | - foreach ($userGroups as $userGroup) { |
|
| 157 | - $usersTmp = $this->groupManager->displayNamesInGroup($userGroup, $search, $this->limit, $this->offset); |
|
| 158 | - foreach ($usersTmp as $uid => $userDisplayName) { |
|
| 159 | - $users[$uid] = $userDisplayName; |
|
| 160 | - } |
|
| 161 | - } |
|
| 162 | - } else { |
|
| 163 | - // Search in all users |
|
| 164 | - $usersTmp = $this->userManager->searchDisplayName($search, $this->limit, $this->offset); |
|
| 165 | - |
|
| 166 | - foreach ($usersTmp as $user) { |
|
| 167 | - $users[$user->getUID()] = $user->getDisplayName(); |
|
| 168 | - } |
|
| 169 | - } |
|
| 170 | - |
|
| 171 | - if (!$this->shareeEnumeration || sizeof($users) < $this->limit) { |
|
| 172 | - $this->reachedEndFor[] = 'users'; |
|
| 173 | - } |
|
| 174 | - |
|
| 175 | - $foundUserById = false; |
|
| 176 | - $lowerSearch = strtolower($search); |
|
| 177 | - foreach ($users as $uid => $userDisplayName) { |
|
| 178 | - if (strtolower($uid) === $lowerSearch || strtolower($userDisplayName) === $lowerSearch) { |
|
| 179 | - if (strtolower($uid) === $lowerSearch) { |
|
| 180 | - $foundUserById = true; |
|
| 181 | - } |
|
| 182 | - $this->result['exact']['users'][] = [ |
|
| 183 | - 'label' => $userDisplayName, |
|
| 184 | - 'value' => [ |
|
| 185 | - 'shareType' => Share::SHARE_TYPE_USER, |
|
| 186 | - 'shareWith' => $uid, |
|
| 187 | - ], |
|
| 188 | - ]; |
|
| 189 | - } else { |
|
| 190 | - $this->result['users'][] = [ |
|
| 191 | - 'label' => $userDisplayName, |
|
| 192 | - 'value' => [ |
|
| 193 | - 'shareType' => Share::SHARE_TYPE_USER, |
|
| 194 | - 'shareWith' => $uid, |
|
| 195 | - ], |
|
| 196 | - ]; |
|
| 197 | - } |
|
| 198 | - } |
|
| 199 | - |
|
| 200 | - if ($this->offset === 0 && !$foundUserById) { |
|
| 201 | - // On page one we try if the search result has a direct hit on the |
|
| 202 | - // user id and if so, we add that to the exact match list |
|
| 203 | - $user = $this->userManager->get($search); |
|
| 204 | - if ($user instanceof IUser) { |
|
| 205 | - $addUser = true; |
|
| 206 | - |
|
| 207 | - if ($this->shareWithGroupOnly) { |
|
| 208 | - // Only add, if we have a common group |
|
| 209 | - $commonGroups = array_intersect($userGroups, $this->groupManager->getUserGroupIds($user)); |
|
| 210 | - $addUser = !empty($commonGroups); |
|
| 211 | - } |
|
| 212 | - |
|
| 213 | - if ($addUser) { |
|
| 214 | - array_push($this->result['exact']['users'], [ |
|
| 215 | - 'label' => $user->getDisplayName(), |
|
| 216 | - 'value' => [ |
|
| 217 | - 'shareType' => Share::SHARE_TYPE_USER, |
|
| 218 | - 'shareWith' => $user->getUID(), |
|
| 219 | - ], |
|
| 220 | - ]); |
|
| 221 | - } |
|
| 222 | - } |
|
| 223 | - } |
|
| 224 | - |
|
| 225 | - if (!$this->shareeEnumeration) { |
|
| 226 | - $this->result['users'] = []; |
|
| 227 | - } |
|
| 228 | - } |
|
| 229 | - |
|
| 230 | - /** |
|
| 231 | - * @param string $search |
|
| 232 | - */ |
|
| 233 | - protected function getGroups($search) { |
|
| 234 | - $this->result['groups'] = $this->result['exact']['groups'] = []; |
|
| 235 | - |
|
| 236 | - $groups = $this->groupManager->search($search, $this->limit, $this->offset); |
|
| 237 | - $groupIds = array_map(function (IGroup $group) { return $group->getGID(); }, $groups); |
|
| 238 | - |
|
| 239 | - if (!$this->shareeEnumeration || sizeof($groups) < $this->limit) { |
|
| 240 | - $this->reachedEndFor[] = 'groups'; |
|
| 241 | - } |
|
| 242 | - |
|
| 243 | - $userGroups = []; |
|
| 244 | - if (!empty($groups) && $this->shareWithGroupOnly) { |
|
| 245 | - // Intersect all the groups that match with the groups this user is a member of |
|
| 246 | - $userGroups = $this->groupManager->getUserGroups($this->userSession->getUser()); |
|
| 247 | - $userGroups = array_map(function (IGroup $group) { return $group->getGID(); }, $userGroups); |
|
| 248 | - $groupIds = array_intersect($groupIds, $userGroups); |
|
| 249 | - } |
|
| 250 | - |
|
| 251 | - $lowerSearch = strtolower($search); |
|
| 252 | - foreach ($groups as $group) { |
|
| 253 | - // FIXME: use a more efficient approach |
|
| 254 | - $gid = $group->getGID(); |
|
| 255 | - if (!in_array($gid, $groupIds)) { |
|
| 256 | - continue; |
|
| 257 | - } |
|
| 258 | - if (strtolower($gid) === $lowerSearch || strtolower($group->getDisplayName()) === $lowerSearch) { |
|
| 259 | - $this->result['exact']['groups'][] = [ |
|
| 260 | - 'label' => $group->getDisplayName(), |
|
| 261 | - 'value' => [ |
|
| 262 | - 'shareType' => Share::SHARE_TYPE_GROUP, |
|
| 263 | - 'shareWith' => $gid, |
|
| 264 | - ], |
|
| 265 | - ]; |
|
| 266 | - } else { |
|
| 267 | - $this->result['groups'][] = [ |
|
| 268 | - 'label' => $group->getDisplayName(), |
|
| 269 | - 'value' => [ |
|
| 270 | - 'shareType' => Share::SHARE_TYPE_GROUP, |
|
| 271 | - 'shareWith' => $gid, |
|
| 272 | - ], |
|
| 273 | - ]; |
|
| 274 | - } |
|
| 275 | - } |
|
| 276 | - |
|
| 277 | - if ($this->offset === 0 && empty($this->result['exact']['groups'])) { |
|
| 278 | - // On page one we try if the search result has a direct hit on the |
|
| 279 | - // user id and if so, we add that to the exact match list |
|
| 280 | - $group = $this->groupManager->get($search); |
|
| 281 | - if ($group instanceof IGroup && (!$this->shareWithGroupOnly || in_array($group->getGID(), $userGroups))) { |
|
| 282 | - array_push($this->result['exact']['groups'], [ |
|
| 283 | - 'label' => $group->getDisplayName(), |
|
| 284 | - 'value' => [ |
|
| 285 | - 'shareType' => Share::SHARE_TYPE_GROUP, |
|
| 286 | - 'shareWith' => $group->getGID(), |
|
| 287 | - ], |
|
| 288 | - ]); |
|
| 289 | - } |
|
| 290 | - } |
|
| 291 | - |
|
| 292 | - if (!$this->shareeEnumeration) { |
|
| 293 | - $this->result['groups'] = []; |
|
| 294 | - } |
|
| 295 | - } |
|
| 296 | - |
|
| 297 | - /** |
|
| 298 | - * @param string $search |
|
| 299 | - * @return array |
|
| 300 | - */ |
|
| 301 | - protected function getRemote($search) { |
|
| 302 | - $result = ['results' => [], 'exact' => []]; |
|
| 303 | - |
|
| 304 | - // Search in contacts |
|
| 305 | - //@todo Pagination missing |
|
| 306 | - $addressBookContacts = $this->contactsManager->search($search, ['CLOUD', 'FN']); |
|
| 307 | - $result['exactIdMatch'] = false; |
|
| 308 | - foreach ($addressBookContacts as $contact) { |
|
| 309 | - if (isset($contact['isLocalSystemBook'])) { |
|
| 310 | - continue; |
|
| 311 | - } |
|
| 312 | - if (isset($contact['CLOUD'])) { |
|
| 313 | - $cloudIds = $contact['CLOUD']; |
|
| 314 | - if (!is_array($cloudIds)) { |
|
| 315 | - $cloudIds = [$cloudIds]; |
|
| 316 | - } |
|
| 317 | - $lowerSearch = strtolower($search); |
|
| 318 | - foreach ($cloudIds as $cloudId) { |
|
| 319 | - list(, $serverUrl) = $this->splitUserRemote($cloudId); |
|
| 320 | - if (strtolower($contact['FN']) === $lowerSearch || strtolower($cloudId) === $lowerSearch) { |
|
| 321 | - if (strtolower($cloudId) === $lowerSearch) { |
|
| 322 | - $result['exactIdMatch'] = true; |
|
| 323 | - } |
|
| 324 | - $result['exact'][] = [ |
|
| 325 | - 'label' => $contact['FN'] . " ($cloudId)", |
|
| 326 | - 'value' => [ |
|
| 327 | - 'shareType' => Share::SHARE_TYPE_REMOTE, |
|
| 328 | - 'shareWith' => $cloudId, |
|
| 329 | - 'server' => $serverUrl, |
|
| 330 | - ], |
|
| 331 | - ]; |
|
| 332 | - } else { |
|
| 333 | - $result['results'][] = [ |
|
| 334 | - 'label' => $contact['FN'] . " ($cloudId)", |
|
| 335 | - 'value' => [ |
|
| 336 | - 'shareType' => Share::SHARE_TYPE_REMOTE, |
|
| 337 | - 'shareWith' => $cloudId, |
|
| 338 | - 'server' => $serverUrl, |
|
| 339 | - ], |
|
| 340 | - ]; |
|
| 341 | - } |
|
| 342 | - } |
|
| 343 | - } |
|
| 344 | - } |
|
| 345 | - |
|
| 346 | - if (!$this->shareeEnumeration) { |
|
| 347 | - $result['results'] = []; |
|
| 348 | - } |
|
| 349 | - |
|
| 350 | - if (!$result['exactIdMatch'] && $this->cloudIdManager->isValidCloudId($search) && $this->offset === 0) { |
|
| 351 | - $result['exact'][] = [ |
|
| 352 | - 'label' => $search, |
|
| 353 | - 'value' => [ |
|
| 354 | - 'shareType' => Share::SHARE_TYPE_REMOTE, |
|
| 355 | - 'shareWith' => $search, |
|
| 356 | - ], |
|
| 357 | - ]; |
|
| 358 | - } |
|
| 359 | - |
|
| 360 | - $this->reachedEndFor[] = 'remotes'; |
|
| 361 | - |
|
| 362 | - return $result; |
|
| 363 | - } |
|
| 364 | - |
|
| 365 | - /** |
|
| 366 | - * split user and remote from federated cloud id |
|
| 367 | - * |
|
| 368 | - * @param string $address federated share address |
|
| 369 | - * @return array [user, remoteURL] |
|
| 370 | - * @throws \Exception |
|
| 371 | - */ |
|
| 372 | - public function splitUserRemote($address) { |
|
| 373 | - try { |
|
| 374 | - $cloudId = $this->cloudIdManager->resolveCloudId($address); |
|
| 375 | - return [$cloudId->getUser(), $cloudId->getRemote()]; |
|
| 376 | - } catch (\InvalidArgumentException $e) { |
|
| 377 | - throw new \Exception('Invalid Federated Cloud ID', 0, $e); |
|
| 378 | - } |
|
| 379 | - } |
|
| 380 | - |
|
| 381 | - /** |
|
| 382 | - * Strips away a potential file names and trailing slashes: |
|
| 383 | - * - http://localhost |
|
| 384 | - * - http://localhost/ |
|
| 385 | - * - http://localhost/index.php |
|
| 386 | - * - http://localhost/index.php/s/{shareToken} |
|
| 387 | - * |
|
| 388 | - * all return: http://localhost |
|
| 389 | - * |
|
| 390 | - * @param string $remote |
|
| 391 | - * @return string |
|
| 392 | - */ |
|
| 393 | - protected function fixRemoteURL($remote) { |
|
| 394 | - $remote = str_replace('\\', '/', $remote); |
|
| 395 | - if ($fileNamePosition = strpos($remote, '/index.php')) { |
|
| 396 | - $remote = substr($remote, 0, $fileNamePosition); |
|
| 397 | - } |
|
| 398 | - $remote = rtrim($remote, '/'); |
|
| 399 | - |
|
| 400 | - return $remote; |
|
| 401 | - } |
|
| 402 | - |
|
| 403 | - /** |
|
| 404 | - * @NoAdminRequired |
|
| 405 | - * |
|
| 406 | - * @param string $search |
|
| 407 | - * @param string $itemType |
|
| 408 | - * @param int $page |
|
| 409 | - * @param int $perPage |
|
| 410 | - * @param int|int[] $shareType |
|
| 411 | - * @param bool $lookup |
|
| 412 | - * @return DataResponse |
|
| 413 | - * @throws OCSBadRequestException |
|
| 414 | - */ |
|
| 415 | - public function search($search = '', $itemType = null, $page = 1, $perPage = 200, $shareType = null, $lookup = true) { |
|
| 416 | - |
|
| 417 | - // only search for string larger than a given threshold |
|
| 418 | - $threshold = (int)$this->config->getSystemValue('sharing.minSearchStringLength', 0); |
|
| 419 | - if (strlen($search) < $threshold) { |
|
| 420 | - return new DataResponse($this->result); |
|
| 421 | - } |
|
| 422 | - |
|
| 423 | - // never return more than the max. number of results configured in the config.php |
|
| 424 | - $maxResults = (int)$this->config->getSystemValue('sharing.maxAutocompleteResults', 0); |
|
| 425 | - if ($maxResults > 0) { |
|
| 426 | - $perPage = min($perPage, $maxResults); |
|
| 427 | - } |
|
| 428 | - if ($perPage <= 0) { |
|
| 429 | - throw new OCSBadRequestException('Invalid perPage argument'); |
|
| 430 | - } |
|
| 431 | - if ($page <= 0) { |
|
| 432 | - throw new OCSBadRequestException('Invalid page'); |
|
| 433 | - } |
|
| 434 | - |
|
| 435 | - $shareTypes = [ |
|
| 436 | - Share::SHARE_TYPE_USER, |
|
| 437 | - ]; |
|
| 438 | - |
|
| 439 | - if ($itemType === 'file' || $itemType === 'folder') { |
|
| 440 | - if ($this->shareManager->allowGroupSharing()) { |
|
| 441 | - $shareTypes[] = Share::SHARE_TYPE_GROUP; |
|
| 442 | - } |
|
| 443 | - |
|
| 444 | - if ($this->isRemoteSharingAllowed($itemType)) { |
|
| 445 | - $shareTypes[] = Share::SHARE_TYPE_REMOTE; |
|
| 446 | - } |
|
| 447 | - |
|
| 448 | - if ($this->shareManager->shareProviderExists(Share::SHARE_TYPE_EMAIL)) { |
|
| 449 | - $shareTypes[] = Share::SHARE_TYPE_EMAIL; |
|
| 450 | - } |
|
| 451 | - } else { |
|
| 452 | - $shareTypes[] = Share::SHARE_TYPE_GROUP; |
|
| 453 | - $shareTypes[] = Share::SHARE_TYPE_EMAIL; |
|
| 454 | - } |
|
| 455 | - |
|
| 456 | - if (isset($_GET['shareType']) && is_array($_GET['shareType'])) { |
|
| 457 | - $shareTypes = array_intersect($shareTypes, $_GET['shareType']); |
|
| 458 | - sort($shareTypes); |
|
| 459 | - } else if (is_numeric($shareType)) { |
|
| 460 | - $shareTypes = array_intersect($shareTypes, [(int) $shareType]); |
|
| 461 | - sort($shareTypes); |
|
| 462 | - } |
|
| 463 | - |
|
| 464 | - $this->shareWithGroupOnly = $this->config->getAppValue('core', 'shareapi_only_share_with_group_members', 'no') === 'yes'; |
|
| 465 | - $this->shareeEnumeration = $this->config->getAppValue('core', 'shareapi_allow_share_dialog_user_enumeration', 'yes') === 'yes'; |
|
| 466 | - $this->limit = (int) $perPage; |
|
| 467 | - $this->offset = $perPage * ($page - 1); |
|
| 468 | - |
|
| 469 | - return $this->searchSharees($search, $itemType, $shareTypes, $page, $perPage, $lookup); |
|
| 470 | - } |
|
| 471 | - |
|
| 472 | - /** |
|
| 473 | - * Method to get out the static call for better testing |
|
| 474 | - * |
|
| 475 | - * @param string $itemType |
|
| 476 | - * @return bool |
|
| 477 | - */ |
|
| 478 | - protected function isRemoteSharingAllowed($itemType) { |
|
| 479 | - try { |
|
| 480 | - $backend = Share::getBackend($itemType); |
|
| 481 | - return $backend->isShareTypeAllowed(Share::SHARE_TYPE_REMOTE); |
|
| 482 | - } catch (\Exception $e) { |
|
| 483 | - return false; |
|
| 484 | - } |
|
| 485 | - } |
|
| 486 | - |
|
| 487 | - /** |
|
| 488 | - * Testable search function that does not need globals |
|
| 489 | - * |
|
| 490 | - * @param string $search |
|
| 491 | - * @param string $itemType |
|
| 492 | - * @param array $shareTypes |
|
| 493 | - * @param int $page |
|
| 494 | - * @param int $perPage |
|
| 495 | - * @param bool $lookup |
|
| 496 | - * @return DataResponse |
|
| 497 | - * @throws OCSBadRequestException |
|
| 498 | - */ |
|
| 499 | - protected function searchSharees($search, $itemType, array $shareTypes, $page, $perPage, $lookup) { |
|
| 500 | - // Verify arguments |
|
| 501 | - if ($itemType === null) { |
|
| 502 | - throw new OCSBadRequestException('Missing itemType'); |
|
| 503 | - } |
|
| 504 | - |
|
| 505 | - // Get users |
|
| 506 | - if (in_array(Share::SHARE_TYPE_USER, $shareTypes)) { |
|
| 507 | - $this->getUsers($search); |
|
| 508 | - } |
|
| 509 | - |
|
| 510 | - // Get groups |
|
| 511 | - if (in_array(Share::SHARE_TYPE_GROUP, $shareTypes)) { |
|
| 512 | - $this->getGroups($search); |
|
| 513 | - } |
|
| 514 | - |
|
| 515 | - // Get remote |
|
| 516 | - $remoteResults = ['results' => [], 'exact' => [], 'exactIdMatch' => false]; |
|
| 517 | - if (in_array(Share::SHARE_TYPE_REMOTE, $shareTypes)) { |
|
| 518 | - $remoteResults = $this->getRemote($search); |
|
| 519 | - } |
|
| 520 | - |
|
| 521 | - // Get emails |
|
| 522 | - $mailResults = ['results' => [], 'exact' => [], 'exactIdMatch' => false]; |
|
| 523 | - if (in_array(Share::SHARE_TYPE_EMAIL, $shareTypes)) { |
|
| 524 | - $mailResults = $this->getEmail($search); |
|
| 525 | - } |
|
| 526 | - |
|
| 527 | - // Get from lookup server |
|
| 528 | - if ($lookup) { |
|
| 529 | - $this->getLookup($search); |
|
| 530 | - } |
|
| 531 | - |
|
| 532 | - // if we have a exact match, either for the federated cloud id or for the |
|
| 533 | - // email address we only return the exact match. It is highly unlikely |
|
| 534 | - // that the exact same email address and federated cloud id exists |
|
| 535 | - if ($mailResults['exactIdMatch'] && !$remoteResults['exactIdMatch']) { |
|
| 536 | - $this->result['emails'] = $mailResults['results']; |
|
| 537 | - $this->result['exact']['emails'] = $mailResults['exact']; |
|
| 538 | - } else if (!$mailResults['exactIdMatch'] && $remoteResults['exactIdMatch']) { |
|
| 539 | - $this->result['remotes'] = $remoteResults['results']; |
|
| 540 | - $this->result['exact']['remotes'] = $remoteResults['exact']; |
|
| 541 | - } else { |
|
| 542 | - $this->result['remotes'] = $remoteResults['results']; |
|
| 543 | - $this->result['exact']['remotes'] = $remoteResults['exact']; |
|
| 544 | - $this->result['emails'] = $mailResults['results']; |
|
| 545 | - $this->result['exact']['emails'] = $mailResults['exact']; |
|
| 546 | - } |
|
| 547 | - |
|
| 548 | - $response = new DataResponse($this->result); |
|
| 549 | - |
|
| 550 | - if (sizeof($this->reachedEndFor) < 3) { |
|
| 551 | - $response->addHeader('Link', $this->getPaginationLink($page, [ |
|
| 552 | - 'search' => $search, |
|
| 553 | - 'itemType' => $itemType, |
|
| 554 | - 'shareType' => $shareTypes, |
|
| 555 | - 'perPage' => $perPage, |
|
| 556 | - ])); |
|
| 557 | - } |
|
| 558 | - |
|
| 559 | - return $response; |
|
| 560 | - } |
|
| 561 | - |
|
| 562 | - /** |
|
| 563 | - * @param string $search |
|
| 564 | - * @return array |
|
| 565 | - */ |
|
| 566 | - protected function getEmail($search) { |
|
| 567 | - $result = ['results' => [], 'exact' => []]; |
|
| 568 | - |
|
| 569 | - // Search in contacts |
|
| 570 | - //@todo Pagination missing |
|
| 571 | - $addressBookContacts = $this->contactsManager->search($search, ['EMAIL', 'FN']); |
|
| 572 | - $result['exactIdMatch'] = false; |
|
| 573 | - foreach ($addressBookContacts as $contact) { |
|
| 574 | - if (isset($contact['isLocalSystemBook'])) { |
|
| 575 | - continue; |
|
| 576 | - } |
|
| 577 | - if (isset($contact['EMAIL'])) { |
|
| 578 | - $emailAddresses = $contact['EMAIL']; |
|
| 579 | - if (!is_array($emailAddresses)) { |
|
| 580 | - $emailAddresses = [$emailAddresses]; |
|
| 581 | - } |
|
| 582 | - foreach ($emailAddresses as $emailAddress) { |
|
| 583 | - if (strtolower($contact['FN']) === strtolower($search) || strtolower($emailAddress) === strtolower($search)) { |
|
| 584 | - if (strtolower($emailAddress) === strtolower($search)) { |
|
| 585 | - $result['exactIdMatch'] = true; |
|
| 586 | - } |
|
| 587 | - $result['exact'][] = [ |
|
| 588 | - 'label' => $contact['FN'] . " ($emailAddress)", |
|
| 589 | - 'value' => [ |
|
| 590 | - 'shareType' => Share::SHARE_TYPE_EMAIL, |
|
| 591 | - 'shareWith' => $emailAddress, |
|
| 592 | - ], |
|
| 593 | - ]; |
|
| 594 | - } else { |
|
| 595 | - $result['results'][] = [ |
|
| 596 | - 'label' => $contact['FN'] . " ($emailAddress)", |
|
| 597 | - 'value' => [ |
|
| 598 | - 'shareType' => Share::SHARE_TYPE_EMAIL, |
|
| 599 | - 'shareWith' => $emailAddress, |
|
| 600 | - ], |
|
| 601 | - ]; |
|
| 602 | - } |
|
| 603 | - } |
|
| 604 | - } |
|
| 605 | - } |
|
| 606 | - |
|
| 607 | - if (!$this->shareeEnumeration) { |
|
| 608 | - $result['results'] = []; |
|
| 609 | - } |
|
| 610 | - |
|
| 611 | - if (!$result['exactIdMatch'] && filter_var($search, FILTER_VALIDATE_EMAIL)) { |
|
| 612 | - $result['exact'][] = [ |
|
| 613 | - 'label' => $search, |
|
| 614 | - 'value' => [ |
|
| 615 | - 'shareType' => Share::SHARE_TYPE_EMAIL, |
|
| 616 | - 'shareWith' => $search, |
|
| 617 | - ], |
|
| 618 | - ]; |
|
| 619 | - } |
|
| 620 | - |
|
| 621 | - $this->reachedEndFor[] = 'emails'; |
|
| 622 | - |
|
| 623 | - return $result; |
|
| 624 | - } |
|
| 625 | - |
|
| 626 | - protected function getLookup($search) { |
|
| 627 | - $isEnabled = $this->config->getAppValue('files_sharing', 'lookupServerEnabled', 'no'); |
|
| 628 | - $result = []; |
|
| 629 | - |
|
| 630 | - if($isEnabled === 'yes') { |
|
| 631 | - try { |
|
| 632 | - $client = $this->clientService->newClient(); |
|
| 633 | - $response = $client->get( |
|
| 634 | - 'https://lookup.nextcloud.com/users?search=' . urlencode($search), |
|
| 635 | - [ |
|
| 636 | - 'timeout' => 10, |
|
| 637 | - 'connect_timeout' => 3, |
|
| 638 | - ] |
|
| 639 | - ); |
|
| 640 | - |
|
| 641 | - $body = json_decode($response->getBody(), true); |
|
| 642 | - |
|
| 643 | - $result = []; |
|
| 644 | - foreach ($body as $lookup) { |
|
| 645 | - $result[] = [ |
|
| 646 | - 'label' => $lookup['federationId'], |
|
| 647 | - 'value' => [ |
|
| 648 | - 'shareType' => Share::SHARE_TYPE_REMOTE, |
|
| 649 | - 'shareWith' => $lookup['federationId'], |
|
| 650 | - ], |
|
| 651 | - 'extra' => $lookup, |
|
| 652 | - ]; |
|
| 653 | - } |
|
| 654 | - } catch (\Exception $e) {} |
|
| 655 | - } |
|
| 656 | - |
|
| 657 | - $this->result['lookup'] = $result; |
|
| 658 | - } |
|
| 659 | - |
|
| 660 | - /** |
|
| 661 | - * Generates a bunch of pagination links for the current page |
|
| 662 | - * |
|
| 663 | - * @param int $page Current page |
|
| 664 | - * @param array $params Parameters for the URL |
|
| 665 | - * @return string |
|
| 666 | - */ |
|
| 667 | - protected function getPaginationLink($page, array $params) { |
|
| 668 | - if ($this->isV2()) { |
|
| 669 | - $url = $this->urlGenerator->getAbsoluteURL('/ocs/v2.php/apps/files_sharing/api/v1/sharees') . '?'; |
|
| 670 | - } else { |
|
| 671 | - $url = $this->urlGenerator->getAbsoluteURL('/ocs/v1.php/apps/files_sharing/api/v1/sharees') . '?'; |
|
| 672 | - } |
|
| 673 | - $params['page'] = $page + 1; |
|
| 674 | - $link = '<' . $url . http_build_query($params) . '>; rel="next"'; |
|
| 675 | - |
|
| 676 | - return $link; |
|
| 677 | - } |
|
| 678 | - |
|
| 679 | - /** |
|
| 680 | - * @return bool |
|
| 681 | - */ |
|
| 682 | - protected function isV2() { |
|
| 683 | - return $this->request->getScriptName() === '/ocs/v2.php'; |
|
| 684 | - } |
|
| 46 | + /** @var IGroupManager */ |
|
| 47 | + protected $groupManager; |
|
| 48 | + |
|
| 49 | + /** @var IUserManager */ |
|
| 50 | + protected $userManager; |
|
| 51 | + |
|
| 52 | + /** @var IManager */ |
|
| 53 | + protected $contactsManager; |
|
| 54 | + |
|
| 55 | + /** @var IConfig */ |
|
| 56 | + protected $config; |
|
| 57 | + |
|
| 58 | + /** @var IUserSession */ |
|
| 59 | + protected $userSession; |
|
| 60 | + |
|
| 61 | + /** @var IURLGenerator */ |
|
| 62 | + protected $urlGenerator; |
|
| 63 | + |
|
| 64 | + /** @var ILogger */ |
|
| 65 | + protected $logger; |
|
| 66 | + |
|
| 67 | + /** @var \OCP\Share\IManager */ |
|
| 68 | + protected $shareManager; |
|
| 69 | + |
|
| 70 | + /** @var IClientService */ |
|
| 71 | + protected $clientService; |
|
| 72 | + |
|
| 73 | + /** @var ICloudIdManager */ |
|
| 74 | + protected $cloudIdManager; |
|
| 75 | + |
|
| 76 | + /** @var bool */ |
|
| 77 | + protected $shareWithGroupOnly = false; |
|
| 78 | + |
|
| 79 | + /** @var bool */ |
|
| 80 | + protected $shareeEnumeration = true; |
|
| 81 | + |
|
| 82 | + /** @var int */ |
|
| 83 | + protected $offset = 0; |
|
| 84 | + |
|
| 85 | + /** @var int */ |
|
| 86 | + protected $limit = 10; |
|
| 87 | + |
|
| 88 | + /** @var array */ |
|
| 89 | + protected $result = [ |
|
| 90 | + 'exact' => [ |
|
| 91 | + 'users' => [], |
|
| 92 | + 'groups' => [], |
|
| 93 | + 'remotes' => [], |
|
| 94 | + 'emails' => [], |
|
| 95 | + ], |
|
| 96 | + 'users' => [], |
|
| 97 | + 'groups' => [], |
|
| 98 | + 'remotes' => [], |
|
| 99 | + 'emails' => [], |
|
| 100 | + 'lookup' => [], |
|
| 101 | + ]; |
|
| 102 | + |
|
| 103 | + protected $reachedEndFor = []; |
|
| 104 | + |
|
| 105 | + /** |
|
| 106 | + * @param string $appName |
|
| 107 | + * @param IRequest $request |
|
| 108 | + * @param IGroupManager $groupManager |
|
| 109 | + * @param IUserManager $userManager |
|
| 110 | + * @param IManager $contactsManager |
|
| 111 | + * @param IConfig $config |
|
| 112 | + * @param IUserSession $userSession |
|
| 113 | + * @param IURLGenerator $urlGenerator |
|
| 114 | + * @param ILogger $logger |
|
| 115 | + * @param \OCP\Share\IManager $shareManager |
|
| 116 | + * @param IClientService $clientService |
|
| 117 | + * @param ICloudIdManager $cloudIdManager |
|
| 118 | + */ |
|
| 119 | + public function __construct($appName, |
|
| 120 | + IRequest $request, |
|
| 121 | + IGroupManager $groupManager, |
|
| 122 | + IUserManager $userManager, |
|
| 123 | + IManager $contactsManager, |
|
| 124 | + IConfig $config, |
|
| 125 | + IUserSession $userSession, |
|
| 126 | + IURLGenerator $urlGenerator, |
|
| 127 | + ILogger $logger, |
|
| 128 | + \OCP\Share\IManager $shareManager, |
|
| 129 | + IClientService $clientService, |
|
| 130 | + ICloudIdManager $cloudIdManager |
|
| 131 | + ) { |
|
| 132 | + parent::__construct($appName, $request); |
|
| 133 | + |
|
| 134 | + $this->groupManager = $groupManager; |
|
| 135 | + $this->userManager = $userManager; |
|
| 136 | + $this->contactsManager = $contactsManager; |
|
| 137 | + $this->config = $config; |
|
| 138 | + $this->userSession = $userSession; |
|
| 139 | + $this->urlGenerator = $urlGenerator; |
|
| 140 | + $this->logger = $logger; |
|
| 141 | + $this->shareManager = $shareManager; |
|
| 142 | + $this->clientService = $clientService; |
|
| 143 | + $this->cloudIdManager = $cloudIdManager; |
|
| 144 | + } |
|
| 145 | + |
|
| 146 | + /** |
|
| 147 | + * @param string $search |
|
| 148 | + */ |
|
| 149 | + protected function getUsers($search) { |
|
| 150 | + $this->result['users'] = $this->result['exact']['users'] = $users = []; |
|
| 151 | + |
|
| 152 | + $userGroups = []; |
|
| 153 | + if ($this->shareWithGroupOnly) { |
|
| 154 | + // Search in all the groups this user is part of |
|
| 155 | + $userGroups = $this->groupManager->getUserGroupIds($this->userSession->getUser()); |
|
| 156 | + foreach ($userGroups as $userGroup) { |
|
| 157 | + $usersTmp = $this->groupManager->displayNamesInGroup($userGroup, $search, $this->limit, $this->offset); |
|
| 158 | + foreach ($usersTmp as $uid => $userDisplayName) { |
|
| 159 | + $users[$uid] = $userDisplayName; |
|
| 160 | + } |
|
| 161 | + } |
|
| 162 | + } else { |
|
| 163 | + // Search in all users |
|
| 164 | + $usersTmp = $this->userManager->searchDisplayName($search, $this->limit, $this->offset); |
|
| 165 | + |
|
| 166 | + foreach ($usersTmp as $user) { |
|
| 167 | + $users[$user->getUID()] = $user->getDisplayName(); |
|
| 168 | + } |
|
| 169 | + } |
|
| 170 | + |
|
| 171 | + if (!$this->shareeEnumeration || sizeof($users) < $this->limit) { |
|
| 172 | + $this->reachedEndFor[] = 'users'; |
|
| 173 | + } |
|
| 174 | + |
|
| 175 | + $foundUserById = false; |
|
| 176 | + $lowerSearch = strtolower($search); |
|
| 177 | + foreach ($users as $uid => $userDisplayName) { |
|
| 178 | + if (strtolower($uid) === $lowerSearch || strtolower($userDisplayName) === $lowerSearch) { |
|
| 179 | + if (strtolower($uid) === $lowerSearch) { |
|
| 180 | + $foundUserById = true; |
|
| 181 | + } |
|
| 182 | + $this->result['exact']['users'][] = [ |
|
| 183 | + 'label' => $userDisplayName, |
|
| 184 | + 'value' => [ |
|
| 185 | + 'shareType' => Share::SHARE_TYPE_USER, |
|
| 186 | + 'shareWith' => $uid, |
|
| 187 | + ], |
|
| 188 | + ]; |
|
| 189 | + } else { |
|
| 190 | + $this->result['users'][] = [ |
|
| 191 | + 'label' => $userDisplayName, |
|
| 192 | + 'value' => [ |
|
| 193 | + 'shareType' => Share::SHARE_TYPE_USER, |
|
| 194 | + 'shareWith' => $uid, |
|
| 195 | + ], |
|
| 196 | + ]; |
|
| 197 | + } |
|
| 198 | + } |
|
| 199 | + |
|
| 200 | + if ($this->offset === 0 && !$foundUserById) { |
|
| 201 | + // On page one we try if the search result has a direct hit on the |
|
| 202 | + // user id and if so, we add that to the exact match list |
|
| 203 | + $user = $this->userManager->get($search); |
|
| 204 | + if ($user instanceof IUser) { |
|
| 205 | + $addUser = true; |
|
| 206 | + |
|
| 207 | + if ($this->shareWithGroupOnly) { |
|
| 208 | + // Only add, if we have a common group |
|
| 209 | + $commonGroups = array_intersect($userGroups, $this->groupManager->getUserGroupIds($user)); |
|
| 210 | + $addUser = !empty($commonGroups); |
|
| 211 | + } |
|
| 212 | + |
|
| 213 | + if ($addUser) { |
|
| 214 | + array_push($this->result['exact']['users'], [ |
|
| 215 | + 'label' => $user->getDisplayName(), |
|
| 216 | + 'value' => [ |
|
| 217 | + 'shareType' => Share::SHARE_TYPE_USER, |
|
| 218 | + 'shareWith' => $user->getUID(), |
|
| 219 | + ], |
|
| 220 | + ]); |
|
| 221 | + } |
|
| 222 | + } |
|
| 223 | + } |
|
| 224 | + |
|
| 225 | + if (!$this->shareeEnumeration) { |
|
| 226 | + $this->result['users'] = []; |
|
| 227 | + } |
|
| 228 | + } |
|
| 229 | + |
|
| 230 | + /** |
|
| 231 | + * @param string $search |
|
| 232 | + */ |
|
| 233 | + protected function getGroups($search) { |
|
| 234 | + $this->result['groups'] = $this->result['exact']['groups'] = []; |
|
| 235 | + |
|
| 236 | + $groups = $this->groupManager->search($search, $this->limit, $this->offset); |
|
| 237 | + $groupIds = array_map(function (IGroup $group) { return $group->getGID(); }, $groups); |
|
| 238 | + |
|
| 239 | + if (!$this->shareeEnumeration || sizeof($groups) < $this->limit) { |
|
| 240 | + $this->reachedEndFor[] = 'groups'; |
|
| 241 | + } |
|
| 242 | + |
|
| 243 | + $userGroups = []; |
|
| 244 | + if (!empty($groups) && $this->shareWithGroupOnly) { |
|
| 245 | + // Intersect all the groups that match with the groups this user is a member of |
|
| 246 | + $userGroups = $this->groupManager->getUserGroups($this->userSession->getUser()); |
|
| 247 | + $userGroups = array_map(function (IGroup $group) { return $group->getGID(); }, $userGroups); |
|
| 248 | + $groupIds = array_intersect($groupIds, $userGroups); |
|
| 249 | + } |
|
| 250 | + |
|
| 251 | + $lowerSearch = strtolower($search); |
|
| 252 | + foreach ($groups as $group) { |
|
| 253 | + // FIXME: use a more efficient approach |
|
| 254 | + $gid = $group->getGID(); |
|
| 255 | + if (!in_array($gid, $groupIds)) { |
|
| 256 | + continue; |
|
| 257 | + } |
|
| 258 | + if (strtolower($gid) === $lowerSearch || strtolower($group->getDisplayName()) === $lowerSearch) { |
|
| 259 | + $this->result['exact']['groups'][] = [ |
|
| 260 | + 'label' => $group->getDisplayName(), |
|
| 261 | + 'value' => [ |
|
| 262 | + 'shareType' => Share::SHARE_TYPE_GROUP, |
|
| 263 | + 'shareWith' => $gid, |
|
| 264 | + ], |
|
| 265 | + ]; |
|
| 266 | + } else { |
|
| 267 | + $this->result['groups'][] = [ |
|
| 268 | + 'label' => $group->getDisplayName(), |
|
| 269 | + 'value' => [ |
|
| 270 | + 'shareType' => Share::SHARE_TYPE_GROUP, |
|
| 271 | + 'shareWith' => $gid, |
|
| 272 | + ], |
|
| 273 | + ]; |
|
| 274 | + } |
|
| 275 | + } |
|
| 276 | + |
|
| 277 | + if ($this->offset === 0 && empty($this->result['exact']['groups'])) { |
|
| 278 | + // On page one we try if the search result has a direct hit on the |
|
| 279 | + // user id and if so, we add that to the exact match list |
|
| 280 | + $group = $this->groupManager->get($search); |
|
| 281 | + if ($group instanceof IGroup && (!$this->shareWithGroupOnly || in_array($group->getGID(), $userGroups))) { |
|
| 282 | + array_push($this->result['exact']['groups'], [ |
|
| 283 | + 'label' => $group->getDisplayName(), |
|
| 284 | + 'value' => [ |
|
| 285 | + 'shareType' => Share::SHARE_TYPE_GROUP, |
|
| 286 | + 'shareWith' => $group->getGID(), |
|
| 287 | + ], |
|
| 288 | + ]); |
|
| 289 | + } |
|
| 290 | + } |
|
| 291 | + |
|
| 292 | + if (!$this->shareeEnumeration) { |
|
| 293 | + $this->result['groups'] = []; |
|
| 294 | + } |
|
| 295 | + } |
|
| 296 | + |
|
| 297 | + /** |
|
| 298 | + * @param string $search |
|
| 299 | + * @return array |
|
| 300 | + */ |
|
| 301 | + protected function getRemote($search) { |
|
| 302 | + $result = ['results' => [], 'exact' => []]; |
|
| 303 | + |
|
| 304 | + // Search in contacts |
|
| 305 | + //@todo Pagination missing |
|
| 306 | + $addressBookContacts = $this->contactsManager->search($search, ['CLOUD', 'FN']); |
|
| 307 | + $result['exactIdMatch'] = false; |
|
| 308 | + foreach ($addressBookContacts as $contact) { |
|
| 309 | + if (isset($contact['isLocalSystemBook'])) { |
|
| 310 | + continue; |
|
| 311 | + } |
|
| 312 | + if (isset($contact['CLOUD'])) { |
|
| 313 | + $cloudIds = $contact['CLOUD']; |
|
| 314 | + if (!is_array($cloudIds)) { |
|
| 315 | + $cloudIds = [$cloudIds]; |
|
| 316 | + } |
|
| 317 | + $lowerSearch = strtolower($search); |
|
| 318 | + foreach ($cloudIds as $cloudId) { |
|
| 319 | + list(, $serverUrl) = $this->splitUserRemote($cloudId); |
|
| 320 | + if (strtolower($contact['FN']) === $lowerSearch || strtolower($cloudId) === $lowerSearch) { |
|
| 321 | + if (strtolower($cloudId) === $lowerSearch) { |
|
| 322 | + $result['exactIdMatch'] = true; |
|
| 323 | + } |
|
| 324 | + $result['exact'][] = [ |
|
| 325 | + 'label' => $contact['FN'] . " ($cloudId)", |
|
| 326 | + 'value' => [ |
|
| 327 | + 'shareType' => Share::SHARE_TYPE_REMOTE, |
|
| 328 | + 'shareWith' => $cloudId, |
|
| 329 | + 'server' => $serverUrl, |
|
| 330 | + ], |
|
| 331 | + ]; |
|
| 332 | + } else { |
|
| 333 | + $result['results'][] = [ |
|
| 334 | + 'label' => $contact['FN'] . " ($cloudId)", |
|
| 335 | + 'value' => [ |
|
| 336 | + 'shareType' => Share::SHARE_TYPE_REMOTE, |
|
| 337 | + 'shareWith' => $cloudId, |
|
| 338 | + 'server' => $serverUrl, |
|
| 339 | + ], |
|
| 340 | + ]; |
|
| 341 | + } |
|
| 342 | + } |
|
| 343 | + } |
|
| 344 | + } |
|
| 345 | + |
|
| 346 | + if (!$this->shareeEnumeration) { |
|
| 347 | + $result['results'] = []; |
|
| 348 | + } |
|
| 349 | + |
|
| 350 | + if (!$result['exactIdMatch'] && $this->cloudIdManager->isValidCloudId($search) && $this->offset === 0) { |
|
| 351 | + $result['exact'][] = [ |
|
| 352 | + 'label' => $search, |
|
| 353 | + 'value' => [ |
|
| 354 | + 'shareType' => Share::SHARE_TYPE_REMOTE, |
|
| 355 | + 'shareWith' => $search, |
|
| 356 | + ], |
|
| 357 | + ]; |
|
| 358 | + } |
|
| 359 | + |
|
| 360 | + $this->reachedEndFor[] = 'remotes'; |
|
| 361 | + |
|
| 362 | + return $result; |
|
| 363 | + } |
|
| 364 | + |
|
| 365 | + /** |
|
| 366 | + * split user and remote from federated cloud id |
|
| 367 | + * |
|
| 368 | + * @param string $address federated share address |
|
| 369 | + * @return array [user, remoteURL] |
|
| 370 | + * @throws \Exception |
|
| 371 | + */ |
|
| 372 | + public function splitUserRemote($address) { |
|
| 373 | + try { |
|
| 374 | + $cloudId = $this->cloudIdManager->resolveCloudId($address); |
|
| 375 | + return [$cloudId->getUser(), $cloudId->getRemote()]; |
|
| 376 | + } catch (\InvalidArgumentException $e) { |
|
| 377 | + throw new \Exception('Invalid Federated Cloud ID', 0, $e); |
|
| 378 | + } |
|
| 379 | + } |
|
| 380 | + |
|
| 381 | + /** |
|
| 382 | + * Strips away a potential file names and trailing slashes: |
|
| 383 | + * - http://localhost |
|
| 384 | + * - http://localhost/ |
|
| 385 | + * - http://localhost/index.php |
|
| 386 | + * - http://localhost/index.php/s/{shareToken} |
|
| 387 | + * |
|
| 388 | + * all return: http://localhost |
|
| 389 | + * |
|
| 390 | + * @param string $remote |
|
| 391 | + * @return string |
|
| 392 | + */ |
|
| 393 | + protected function fixRemoteURL($remote) { |
|
| 394 | + $remote = str_replace('\\', '/', $remote); |
|
| 395 | + if ($fileNamePosition = strpos($remote, '/index.php')) { |
|
| 396 | + $remote = substr($remote, 0, $fileNamePosition); |
|
| 397 | + } |
|
| 398 | + $remote = rtrim($remote, '/'); |
|
| 399 | + |
|
| 400 | + return $remote; |
|
| 401 | + } |
|
| 402 | + |
|
| 403 | + /** |
|
| 404 | + * @NoAdminRequired |
|
| 405 | + * |
|
| 406 | + * @param string $search |
|
| 407 | + * @param string $itemType |
|
| 408 | + * @param int $page |
|
| 409 | + * @param int $perPage |
|
| 410 | + * @param int|int[] $shareType |
|
| 411 | + * @param bool $lookup |
|
| 412 | + * @return DataResponse |
|
| 413 | + * @throws OCSBadRequestException |
|
| 414 | + */ |
|
| 415 | + public function search($search = '', $itemType = null, $page = 1, $perPage = 200, $shareType = null, $lookup = true) { |
|
| 416 | + |
|
| 417 | + // only search for string larger than a given threshold |
|
| 418 | + $threshold = (int)$this->config->getSystemValue('sharing.minSearchStringLength', 0); |
|
| 419 | + if (strlen($search) < $threshold) { |
|
| 420 | + return new DataResponse($this->result); |
|
| 421 | + } |
|
| 422 | + |
|
| 423 | + // never return more than the max. number of results configured in the config.php |
|
| 424 | + $maxResults = (int)$this->config->getSystemValue('sharing.maxAutocompleteResults', 0); |
|
| 425 | + if ($maxResults > 0) { |
|
| 426 | + $perPage = min($perPage, $maxResults); |
|
| 427 | + } |
|
| 428 | + if ($perPage <= 0) { |
|
| 429 | + throw new OCSBadRequestException('Invalid perPage argument'); |
|
| 430 | + } |
|
| 431 | + if ($page <= 0) { |
|
| 432 | + throw new OCSBadRequestException('Invalid page'); |
|
| 433 | + } |
|
| 434 | + |
|
| 435 | + $shareTypes = [ |
|
| 436 | + Share::SHARE_TYPE_USER, |
|
| 437 | + ]; |
|
| 438 | + |
|
| 439 | + if ($itemType === 'file' || $itemType === 'folder') { |
|
| 440 | + if ($this->shareManager->allowGroupSharing()) { |
|
| 441 | + $shareTypes[] = Share::SHARE_TYPE_GROUP; |
|
| 442 | + } |
|
| 443 | + |
|
| 444 | + if ($this->isRemoteSharingAllowed($itemType)) { |
|
| 445 | + $shareTypes[] = Share::SHARE_TYPE_REMOTE; |
|
| 446 | + } |
|
| 447 | + |
|
| 448 | + if ($this->shareManager->shareProviderExists(Share::SHARE_TYPE_EMAIL)) { |
|
| 449 | + $shareTypes[] = Share::SHARE_TYPE_EMAIL; |
|
| 450 | + } |
|
| 451 | + } else { |
|
| 452 | + $shareTypes[] = Share::SHARE_TYPE_GROUP; |
|
| 453 | + $shareTypes[] = Share::SHARE_TYPE_EMAIL; |
|
| 454 | + } |
|
| 455 | + |
|
| 456 | + if (isset($_GET['shareType']) && is_array($_GET['shareType'])) { |
|
| 457 | + $shareTypes = array_intersect($shareTypes, $_GET['shareType']); |
|
| 458 | + sort($shareTypes); |
|
| 459 | + } else if (is_numeric($shareType)) { |
|
| 460 | + $shareTypes = array_intersect($shareTypes, [(int) $shareType]); |
|
| 461 | + sort($shareTypes); |
|
| 462 | + } |
|
| 463 | + |
|
| 464 | + $this->shareWithGroupOnly = $this->config->getAppValue('core', 'shareapi_only_share_with_group_members', 'no') === 'yes'; |
|
| 465 | + $this->shareeEnumeration = $this->config->getAppValue('core', 'shareapi_allow_share_dialog_user_enumeration', 'yes') === 'yes'; |
|
| 466 | + $this->limit = (int) $perPage; |
|
| 467 | + $this->offset = $perPage * ($page - 1); |
|
| 468 | + |
|
| 469 | + return $this->searchSharees($search, $itemType, $shareTypes, $page, $perPage, $lookup); |
|
| 470 | + } |
|
| 471 | + |
|
| 472 | + /** |
|
| 473 | + * Method to get out the static call for better testing |
|
| 474 | + * |
|
| 475 | + * @param string $itemType |
|
| 476 | + * @return bool |
|
| 477 | + */ |
|
| 478 | + protected function isRemoteSharingAllowed($itemType) { |
|
| 479 | + try { |
|
| 480 | + $backend = Share::getBackend($itemType); |
|
| 481 | + return $backend->isShareTypeAllowed(Share::SHARE_TYPE_REMOTE); |
|
| 482 | + } catch (\Exception $e) { |
|
| 483 | + return false; |
|
| 484 | + } |
|
| 485 | + } |
|
| 486 | + |
|
| 487 | + /** |
|
| 488 | + * Testable search function that does not need globals |
|
| 489 | + * |
|
| 490 | + * @param string $search |
|
| 491 | + * @param string $itemType |
|
| 492 | + * @param array $shareTypes |
|
| 493 | + * @param int $page |
|
| 494 | + * @param int $perPage |
|
| 495 | + * @param bool $lookup |
|
| 496 | + * @return DataResponse |
|
| 497 | + * @throws OCSBadRequestException |
|
| 498 | + */ |
|
| 499 | + protected function searchSharees($search, $itemType, array $shareTypes, $page, $perPage, $lookup) { |
|
| 500 | + // Verify arguments |
|
| 501 | + if ($itemType === null) { |
|
| 502 | + throw new OCSBadRequestException('Missing itemType'); |
|
| 503 | + } |
|
| 504 | + |
|
| 505 | + // Get users |
|
| 506 | + if (in_array(Share::SHARE_TYPE_USER, $shareTypes)) { |
|
| 507 | + $this->getUsers($search); |
|
| 508 | + } |
|
| 509 | + |
|
| 510 | + // Get groups |
|
| 511 | + if (in_array(Share::SHARE_TYPE_GROUP, $shareTypes)) { |
|
| 512 | + $this->getGroups($search); |
|
| 513 | + } |
|
| 514 | + |
|
| 515 | + // Get remote |
|
| 516 | + $remoteResults = ['results' => [], 'exact' => [], 'exactIdMatch' => false]; |
|
| 517 | + if (in_array(Share::SHARE_TYPE_REMOTE, $shareTypes)) { |
|
| 518 | + $remoteResults = $this->getRemote($search); |
|
| 519 | + } |
|
| 520 | + |
|
| 521 | + // Get emails |
|
| 522 | + $mailResults = ['results' => [], 'exact' => [], 'exactIdMatch' => false]; |
|
| 523 | + if (in_array(Share::SHARE_TYPE_EMAIL, $shareTypes)) { |
|
| 524 | + $mailResults = $this->getEmail($search); |
|
| 525 | + } |
|
| 526 | + |
|
| 527 | + // Get from lookup server |
|
| 528 | + if ($lookup) { |
|
| 529 | + $this->getLookup($search); |
|
| 530 | + } |
|
| 531 | + |
|
| 532 | + // if we have a exact match, either for the federated cloud id or for the |
|
| 533 | + // email address we only return the exact match. It is highly unlikely |
|
| 534 | + // that the exact same email address and federated cloud id exists |
|
| 535 | + if ($mailResults['exactIdMatch'] && !$remoteResults['exactIdMatch']) { |
|
| 536 | + $this->result['emails'] = $mailResults['results']; |
|
| 537 | + $this->result['exact']['emails'] = $mailResults['exact']; |
|
| 538 | + } else if (!$mailResults['exactIdMatch'] && $remoteResults['exactIdMatch']) { |
|
| 539 | + $this->result['remotes'] = $remoteResults['results']; |
|
| 540 | + $this->result['exact']['remotes'] = $remoteResults['exact']; |
|
| 541 | + } else { |
|
| 542 | + $this->result['remotes'] = $remoteResults['results']; |
|
| 543 | + $this->result['exact']['remotes'] = $remoteResults['exact']; |
|
| 544 | + $this->result['emails'] = $mailResults['results']; |
|
| 545 | + $this->result['exact']['emails'] = $mailResults['exact']; |
|
| 546 | + } |
|
| 547 | + |
|
| 548 | + $response = new DataResponse($this->result); |
|
| 549 | + |
|
| 550 | + if (sizeof($this->reachedEndFor) < 3) { |
|
| 551 | + $response->addHeader('Link', $this->getPaginationLink($page, [ |
|
| 552 | + 'search' => $search, |
|
| 553 | + 'itemType' => $itemType, |
|
| 554 | + 'shareType' => $shareTypes, |
|
| 555 | + 'perPage' => $perPage, |
|
| 556 | + ])); |
|
| 557 | + } |
|
| 558 | + |
|
| 559 | + return $response; |
|
| 560 | + } |
|
| 561 | + |
|
| 562 | + /** |
|
| 563 | + * @param string $search |
|
| 564 | + * @return array |
|
| 565 | + */ |
|
| 566 | + protected function getEmail($search) { |
|
| 567 | + $result = ['results' => [], 'exact' => []]; |
|
| 568 | + |
|
| 569 | + // Search in contacts |
|
| 570 | + //@todo Pagination missing |
|
| 571 | + $addressBookContacts = $this->contactsManager->search($search, ['EMAIL', 'FN']); |
|
| 572 | + $result['exactIdMatch'] = false; |
|
| 573 | + foreach ($addressBookContacts as $contact) { |
|
| 574 | + if (isset($contact['isLocalSystemBook'])) { |
|
| 575 | + continue; |
|
| 576 | + } |
|
| 577 | + if (isset($contact['EMAIL'])) { |
|
| 578 | + $emailAddresses = $contact['EMAIL']; |
|
| 579 | + if (!is_array($emailAddresses)) { |
|
| 580 | + $emailAddresses = [$emailAddresses]; |
|
| 581 | + } |
|
| 582 | + foreach ($emailAddresses as $emailAddress) { |
|
| 583 | + if (strtolower($contact['FN']) === strtolower($search) || strtolower($emailAddress) === strtolower($search)) { |
|
| 584 | + if (strtolower($emailAddress) === strtolower($search)) { |
|
| 585 | + $result['exactIdMatch'] = true; |
|
| 586 | + } |
|
| 587 | + $result['exact'][] = [ |
|
| 588 | + 'label' => $contact['FN'] . " ($emailAddress)", |
|
| 589 | + 'value' => [ |
|
| 590 | + 'shareType' => Share::SHARE_TYPE_EMAIL, |
|
| 591 | + 'shareWith' => $emailAddress, |
|
| 592 | + ], |
|
| 593 | + ]; |
|
| 594 | + } else { |
|
| 595 | + $result['results'][] = [ |
|
| 596 | + 'label' => $contact['FN'] . " ($emailAddress)", |
|
| 597 | + 'value' => [ |
|
| 598 | + 'shareType' => Share::SHARE_TYPE_EMAIL, |
|
| 599 | + 'shareWith' => $emailAddress, |
|
| 600 | + ], |
|
| 601 | + ]; |
|
| 602 | + } |
|
| 603 | + } |
|
| 604 | + } |
|
| 605 | + } |
|
| 606 | + |
|
| 607 | + if (!$this->shareeEnumeration) { |
|
| 608 | + $result['results'] = []; |
|
| 609 | + } |
|
| 610 | + |
|
| 611 | + if (!$result['exactIdMatch'] && filter_var($search, FILTER_VALIDATE_EMAIL)) { |
|
| 612 | + $result['exact'][] = [ |
|
| 613 | + 'label' => $search, |
|
| 614 | + 'value' => [ |
|
| 615 | + 'shareType' => Share::SHARE_TYPE_EMAIL, |
|
| 616 | + 'shareWith' => $search, |
|
| 617 | + ], |
|
| 618 | + ]; |
|
| 619 | + } |
|
| 620 | + |
|
| 621 | + $this->reachedEndFor[] = 'emails'; |
|
| 622 | + |
|
| 623 | + return $result; |
|
| 624 | + } |
|
| 625 | + |
|
| 626 | + protected function getLookup($search) { |
|
| 627 | + $isEnabled = $this->config->getAppValue('files_sharing', 'lookupServerEnabled', 'no'); |
|
| 628 | + $result = []; |
|
| 629 | + |
|
| 630 | + if($isEnabled === 'yes') { |
|
| 631 | + try { |
|
| 632 | + $client = $this->clientService->newClient(); |
|
| 633 | + $response = $client->get( |
|
| 634 | + 'https://lookup.nextcloud.com/users?search=' . urlencode($search), |
|
| 635 | + [ |
|
| 636 | + 'timeout' => 10, |
|
| 637 | + 'connect_timeout' => 3, |
|
| 638 | + ] |
|
| 639 | + ); |
|
| 640 | + |
|
| 641 | + $body = json_decode($response->getBody(), true); |
|
| 642 | + |
|
| 643 | + $result = []; |
|
| 644 | + foreach ($body as $lookup) { |
|
| 645 | + $result[] = [ |
|
| 646 | + 'label' => $lookup['federationId'], |
|
| 647 | + 'value' => [ |
|
| 648 | + 'shareType' => Share::SHARE_TYPE_REMOTE, |
|
| 649 | + 'shareWith' => $lookup['federationId'], |
|
| 650 | + ], |
|
| 651 | + 'extra' => $lookup, |
|
| 652 | + ]; |
|
| 653 | + } |
|
| 654 | + } catch (\Exception $e) {} |
|
| 655 | + } |
|
| 656 | + |
|
| 657 | + $this->result['lookup'] = $result; |
|
| 658 | + } |
|
| 659 | + |
|
| 660 | + /** |
|
| 661 | + * Generates a bunch of pagination links for the current page |
|
| 662 | + * |
|
| 663 | + * @param int $page Current page |
|
| 664 | + * @param array $params Parameters for the URL |
|
| 665 | + * @return string |
|
| 666 | + */ |
|
| 667 | + protected function getPaginationLink($page, array $params) { |
|
| 668 | + if ($this->isV2()) { |
|
| 669 | + $url = $this->urlGenerator->getAbsoluteURL('/ocs/v2.php/apps/files_sharing/api/v1/sharees') . '?'; |
|
| 670 | + } else { |
|
| 671 | + $url = $this->urlGenerator->getAbsoluteURL('/ocs/v1.php/apps/files_sharing/api/v1/sharees') . '?'; |
|
| 672 | + } |
|
| 673 | + $params['page'] = $page + 1; |
|
| 674 | + $link = '<' . $url . http_build_query($params) . '>; rel="next"'; |
|
| 675 | + |
|
| 676 | + return $link; |
|
| 677 | + } |
|
| 678 | + |
|
| 679 | + /** |
|
| 680 | + * @return bool |
|
| 681 | + */ |
|
| 682 | + protected function isV2() { |
|
| 683 | + return $this->request->getScriptName() === '/ocs/v2.php'; |
|
| 684 | + } |
|
| 685 | 685 | } |
@@ -234,17 +234,17 @@ discard block |
||
| 234 | 234 | $this->result['groups'] = $this->result['exact']['groups'] = []; |
| 235 | 235 | |
| 236 | 236 | $groups = $this->groupManager->search($search, $this->limit, $this->offset); |
| 237 | - $groupIds = array_map(function (IGroup $group) { return $group->getGID(); }, $groups); |
|
| 237 | + $groupIds = array_map(function(IGroup $group) { return $group->getGID(); }, $groups); |
|
| 238 | 238 | |
| 239 | 239 | if (!$this->shareeEnumeration || sizeof($groups) < $this->limit) { |
| 240 | 240 | $this->reachedEndFor[] = 'groups'; |
| 241 | 241 | } |
| 242 | 242 | |
| 243 | - $userGroups = []; |
|
| 243 | + $userGroups = []; |
|
| 244 | 244 | if (!empty($groups) && $this->shareWithGroupOnly) { |
| 245 | 245 | // Intersect all the groups that match with the groups this user is a member of |
| 246 | 246 | $userGroups = $this->groupManager->getUserGroups($this->userSession->getUser()); |
| 247 | - $userGroups = array_map(function (IGroup $group) { return $group->getGID(); }, $userGroups); |
|
| 247 | + $userGroups = array_map(function(IGroup $group) { return $group->getGID(); }, $userGroups); |
|
| 248 | 248 | $groupIds = array_intersect($groupIds, $userGroups); |
| 249 | 249 | } |
| 250 | 250 | |
@@ -322,7 +322,7 @@ discard block |
||
| 322 | 322 | $result['exactIdMatch'] = true; |
| 323 | 323 | } |
| 324 | 324 | $result['exact'][] = [ |
| 325 | - 'label' => $contact['FN'] . " ($cloudId)", |
|
| 325 | + 'label' => $contact['FN']." ($cloudId)", |
|
| 326 | 326 | 'value' => [ |
| 327 | 327 | 'shareType' => Share::SHARE_TYPE_REMOTE, |
| 328 | 328 | 'shareWith' => $cloudId, |
@@ -331,7 +331,7 @@ discard block |
||
| 331 | 331 | ]; |
| 332 | 332 | } else { |
| 333 | 333 | $result['results'][] = [ |
| 334 | - 'label' => $contact['FN'] . " ($cloudId)", |
|
| 334 | + 'label' => $contact['FN']." ($cloudId)", |
|
| 335 | 335 | 'value' => [ |
| 336 | 336 | 'shareType' => Share::SHARE_TYPE_REMOTE, |
| 337 | 337 | 'shareWith' => $cloudId, |
@@ -415,13 +415,13 @@ discard block |
||
| 415 | 415 | public function search($search = '', $itemType = null, $page = 1, $perPage = 200, $shareType = null, $lookup = true) { |
| 416 | 416 | |
| 417 | 417 | // only search for string larger than a given threshold |
| 418 | - $threshold = (int)$this->config->getSystemValue('sharing.minSearchStringLength', 0); |
|
| 418 | + $threshold = (int) $this->config->getSystemValue('sharing.minSearchStringLength', 0); |
|
| 419 | 419 | if (strlen($search) < $threshold) { |
| 420 | 420 | return new DataResponse($this->result); |
| 421 | 421 | } |
| 422 | 422 | |
| 423 | 423 | // never return more than the max. number of results configured in the config.php |
| 424 | - $maxResults = (int)$this->config->getSystemValue('sharing.maxAutocompleteResults', 0); |
|
| 424 | + $maxResults = (int) $this->config->getSystemValue('sharing.maxAutocompleteResults', 0); |
|
| 425 | 425 | if ($maxResults > 0) { |
| 426 | 426 | $perPage = min($perPage, $maxResults); |
| 427 | 427 | } |
@@ -585,7 +585,7 @@ discard block |
||
| 585 | 585 | $result['exactIdMatch'] = true; |
| 586 | 586 | } |
| 587 | 587 | $result['exact'][] = [ |
| 588 | - 'label' => $contact['FN'] . " ($emailAddress)", |
|
| 588 | + 'label' => $contact['FN']." ($emailAddress)", |
|
| 589 | 589 | 'value' => [ |
| 590 | 590 | 'shareType' => Share::SHARE_TYPE_EMAIL, |
| 591 | 591 | 'shareWith' => $emailAddress, |
@@ -593,7 +593,7 @@ discard block |
||
| 593 | 593 | ]; |
| 594 | 594 | } else { |
| 595 | 595 | $result['results'][] = [ |
| 596 | - 'label' => $contact['FN'] . " ($emailAddress)", |
|
| 596 | + 'label' => $contact['FN']." ($emailAddress)", |
|
| 597 | 597 | 'value' => [ |
| 598 | 598 | 'shareType' => Share::SHARE_TYPE_EMAIL, |
| 599 | 599 | 'shareWith' => $emailAddress, |
@@ -627,11 +627,11 @@ discard block |
||
| 627 | 627 | $isEnabled = $this->config->getAppValue('files_sharing', 'lookupServerEnabled', 'no'); |
| 628 | 628 | $result = []; |
| 629 | 629 | |
| 630 | - if($isEnabled === 'yes') { |
|
| 630 | + if ($isEnabled === 'yes') { |
|
| 631 | 631 | try { |
| 632 | 632 | $client = $this->clientService->newClient(); |
| 633 | 633 | $response = $client->get( |
| 634 | - 'https://lookup.nextcloud.com/users?search=' . urlencode($search), |
|
| 634 | + 'https://lookup.nextcloud.com/users?search='.urlencode($search), |
|
| 635 | 635 | [ |
| 636 | 636 | 'timeout' => 10, |
| 637 | 637 | 'connect_timeout' => 3, |
@@ -666,12 +666,12 @@ discard block |
||
| 666 | 666 | */ |
| 667 | 667 | protected function getPaginationLink($page, array $params) { |
| 668 | 668 | if ($this->isV2()) { |
| 669 | - $url = $this->urlGenerator->getAbsoluteURL('/ocs/v2.php/apps/files_sharing/api/v1/sharees') . '?'; |
|
| 669 | + $url = $this->urlGenerator->getAbsoluteURL('/ocs/v2.php/apps/files_sharing/api/v1/sharees').'?'; |
|
| 670 | 670 | } else { |
| 671 | - $url = $this->urlGenerator->getAbsoluteURL('/ocs/v1.php/apps/files_sharing/api/v1/sharees') . '?'; |
|
| 671 | + $url = $this->urlGenerator->getAbsoluteURL('/ocs/v1.php/apps/files_sharing/api/v1/sharees').'?'; |
|
| 672 | 672 | } |
| 673 | 673 | $params['page'] = $page + 1; |
| 674 | - $link = '<' . $url . http_build_query($params) . '>; rel="next"'; |
|
| 674 | + $link = '<'.$url.http_build_query($params).'>; rel="next"'; |
|
| 675 | 675 | |
| 676 | 676 | return $link; |
| 677 | 677 | } |
@@ -32,7 +32,6 @@ |
||
| 32 | 32 | namespace OCA\Files_Sharing; |
| 33 | 33 | |
| 34 | 34 | use OC\Files\Filesystem; |
| 35 | -use OC\Files\Cache\FailedCache; |
|
| 36 | 35 | use OC\Files\Storage\Wrapper\PermissionsMask; |
| 37 | 36 | use OCA\Files_Sharing\ISharedStorage; |
| 38 | 37 | use OC\Files\Storage\FailedStorage; |
@@ -47,433 +47,433 @@ |
||
| 47 | 47 | */ |
| 48 | 48 | class SharedStorage extends \OC\Files\Storage\Wrapper\Jail implements ISharedStorage { |
| 49 | 49 | |
| 50 | - /** @var \OCP\Share\IShare */ |
|
| 51 | - private $superShare; |
|
| 52 | - |
|
| 53 | - /** @var \OCP\Share\IShare[] */ |
|
| 54 | - private $groupedShares; |
|
| 55 | - |
|
| 56 | - /** |
|
| 57 | - * @var \OC\Files\View |
|
| 58 | - */ |
|
| 59 | - private $ownerView; |
|
| 60 | - |
|
| 61 | - private $initialized = false; |
|
| 62 | - |
|
| 63 | - /** |
|
| 64 | - * @var ICacheEntry |
|
| 65 | - */ |
|
| 66 | - private $sourceRootInfo; |
|
| 67 | - |
|
| 68 | - /** @var string */ |
|
| 69 | - private $user; |
|
| 70 | - |
|
| 71 | - /** |
|
| 72 | - * @var \OCP\ILogger |
|
| 73 | - */ |
|
| 74 | - private $logger; |
|
| 75 | - |
|
| 76 | - /** @var IStorage */ |
|
| 77 | - private $nonMaskedStorage; |
|
| 78 | - |
|
| 79 | - private $options; |
|
| 80 | - |
|
| 81 | - public function __construct($arguments) { |
|
| 82 | - $this->ownerView = $arguments['ownerView']; |
|
| 83 | - $this->logger = \OC::$server->getLogger(); |
|
| 84 | - |
|
| 85 | - $this->superShare = $arguments['superShare']; |
|
| 86 | - $this->groupedShares = $arguments['groupedShares']; |
|
| 87 | - |
|
| 88 | - $this->user = $arguments['user']; |
|
| 89 | - |
|
| 90 | - parent::__construct([ |
|
| 91 | - 'storage' => null, |
|
| 92 | - 'root' => null, |
|
| 93 | - ]); |
|
| 94 | - } |
|
| 95 | - |
|
| 96 | - /** |
|
| 97 | - * @return ICacheEntry |
|
| 98 | - */ |
|
| 99 | - private function getSourceRootInfo() { |
|
| 100 | - if (is_null($this->sourceRootInfo)) { |
|
| 101 | - if (is_null($this->superShare->getNodeCacheEntry())) { |
|
| 102 | - $this->sourceRootInfo = $this->nonMaskedStorage->getCache()->get($this->rootPath); |
|
| 103 | - } else { |
|
| 104 | - $this->sourceRootInfo = $this->superShare->getNodeCacheEntry(); |
|
| 105 | - } |
|
| 106 | - } |
|
| 107 | - return $this->sourceRootInfo; |
|
| 108 | - } |
|
| 109 | - |
|
| 110 | - private function init() { |
|
| 111 | - if ($this->initialized) { |
|
| 112 | - return; |
|
| 113 | - } |
|
| 114 | - $this->initialized = true; |
|
| 115 | - try { |
|
| 116 | - Filesystem::initMountPoints($this->superShare->getShareOwner()); |
|
| 117 | - $sourcePath = $this->ownerView->getPath($this->superShare->getNodeId()); |
|
| 118 | - list($this->nonMaskedStorage, $this->rootPath) = $this->ownerView->resolvePath($sourcePath); |
|
| 119 | - $this->storage = new PermissionsMask([ |
|
| 120 | - 'storage' => $this->nonMaskedStorage, |
|
| 121 | - 'mask' => $this->superShare->getPermissions() |
|
| 122 | - ]); |
|
| 123 | - } catch (NotFoundException $e) { |
|
| 124 | - $this->storage = new FailedStorage(['exception' => $e]); |
|
| 125 | - $this->rootPath = ''; |
|
| 126 | - } catch (\Exception $e) { |
|
| 127 | - $this->storage = new FailedStorage(['exception' => $e]); |
|
| 128 | - $this->rootPath = ''; |
|
| 129 | - $this->logger->logException($e); |
|
| 130 | - } |
|
| 131 | - } |
|
| 132 | - |
|
| 133 | - /** |
|
| 134 | - * @inheritdoc |
|
| 135 | - */ |
|
| 136 | - public function instanceOfStorage($class) { |
|
| 137 | - if ($class === '\OC\Files\Storage\Common') { |
|
| 138 | - return true; |
|
| 139 | - } |
|
| 140 | - if (in_array($class, ['\OC\Files\Storage\Home', '\OC\Files\ObjectStore\HomeObjectStoreStorage'])) { |
|
| 141 | - return false; |
|
| 142 | - } |
|
| 143 | - return parent::instanceOfStorage($class); |
|
| 144 | - } |
|
| 145 | - |
|
| 146 | - /** |
|
| 147 | - * @return string |
|
| 148 | - */ |
|
| 149 | - public function getShareId() { |
|
| 150 | - return $this->superShare->getId(); |
|
| 151 | - } |
|
| 152 | - |
|
| 153 | - private function isValid() { |
|
| 154 | - return $this->getSourceRootInfo() && ($this->getSourceRootInfo()->getPermissions() & Constants::PERMISSION_SHARE) === Constants::PERMISSION_SHARE; |
|
| 155 | - } |
|
| 156 | - |
|
| 157 | - /** |
|
| 158 | - * get id of the mount point |
|
| 159 | - * |
|
| 160 | - * @return string |
|
| 161 | - */ |
|
| 162 | - public function getId() { |
|
| 163 | - return 'shared::' . $this->getMountPoint(); |
|
| 164 | - } |
|
| 165 | - |
|
| 166 | - /** |
|
| 167 | - * Get the permissions granted for a shared file |
|
| 168 | - * |
|
| 169 | - * @param string $target Shared target file path |
|
| 170 | - * @return int CRUDS permissions granted |
|
| 171 | - */ |
|
| 172 | - public function getPermissions($target = '') { |
|
| 173 | - if (!$this->isValid()) { |
|
| 174 | - return 0; |
|
| 175 | - } |
|
| 176 | - $permissions = $this->superShare->getPermissions(); |
|
| 177 | - // part files and the mount point always have delete permissions |
|
| 178 | - if ($target === '' || pathinfo($target, PATHINFO_EXTENSION) === 'part') { |
|
| 179 | - $permissions |= \OCP\Constants::PERMISSION_DELETE; |
|
| 180 | - } |
|
| 181 | - |
|
| 182 | - if (\OCP\Util::isSharingDisabledForUser()) { |
|
| 183 | - $permissions &= ~\OCP\Constants::PERMISSION_SHARE; |
|
| 184 | - } |
|
| 185 | - |
|
| 186 | - return $permissions; |
|
| 187 | - } |
|
| 188 | - |
|
| 189 | - public function isCreatable($path) { |
|
| 190 | - return ($this->getPermissions($path) & \OCP\Constants::PERMISSION_CREATE); |
|
| 191 | - } |
|
| 192 | - |
|
| 193 | - public function isReadable($path) { |
|
| 194 | - if (!$this->isValid()) { |
|
| 195 | - return false; |
|
| 196 | - } |
|
| 197 | - if (!$this->file_exists($path)) { |
|
| 198 | - return false; |
|
| 199 | - } |
|
| 200 | - /** @var IStorage $storage */ |
|
| 201 | - /** @var string $internalPath */ |
|
| 202 | - list($storage, $internalPath) = $this->resolvePath($path); |
|
| 203 | - return $storage->isReadable($internalPath); |
|
| 204 | - } |
|
| 205 | - |
|
| 206 | - public function isUpdatable($path) { |
|
| 207 | - return ($this->getPermissions($path) & \OCP\Constants::PERMISSION_UPDATE); |
|
| 208 | - } |
|
| 209 | - |
|
| 210 | - public function isDeletable($path) { |
|
| 211 | - return ($this->getPermissions($path) & \OCP\Constants::PERMISSION_DELETE); |
|
| 212 | - } |
|
| 213 | - |
|
| 214 | - public function isSharable($path) { |
|
| 215 | - if (\OCP\Util::isSharingDisabledForUser() || !\OC\Share\Share::isResharingAllowed()) { |
|
| 216 | - return false; |
|
| 217 | - } |
|
| 218 | - return ($this->getPermissions($path) & \OCP\Constants::PERMISSION_SHARE); |
|
| 219 | - } |
|
| 220 | - |
|
| 221 | - public function fopen($path, $mode) { |
|
| 222 | - if ($source = $this->getSourcePath($path)) { |
|
| 223 | - switch ($mode) { |
|
| 224 | - case 'r+': |
|
| 225 | - case 'rb+': |
|
| 226 | - case 'w+': |
|
| 227 | - case 'wb+': |
|
| 228 | - case 'x+': |
|
| 229 | - case 'xb+': |
|
| 230 | - case 'a+': |
|
| 231 | - case 'ab+': |
|
| 232 | - case 'w': |
|
| 233 | - case 'wb': |
|
| 234 | - case 'x': |
|
| 235 | - case 'xb': |
|
| 236 | - case 'a': |
|
| 237 | - case 'ab': |
|
| 238 | - $creatable = $this->isCreatable($path); |
|
| 239 | - $updatable = $this->isUpdatable($path); |
|
| 240 | - // if neither permissions given, no need to continue |
|
| 241 | - if (!$creatable && !$updatable) { |
|
| 242 | - return false; |
|
| 243 | - } |
|
| 244 | - |
|
| 245 | - $exists = $this->file_exists($path); |
|
| 246 | - // if a file exists, updatable permissions are required |
|
| 247 | - if ($exists && !$updatable) { |
|
| 248 | - return false; |
|
| 249 | - } |
|
| 250 | - |
|
| 251 | - // part file is allowed if !$creatable but the final file is $updatable |
|
| 252 | - if (pathinfo($path, PATHINFO_EXTENSION) !== 'part') { |
|
| 253 | - if (!$exists && !$creatable) { |
|
| 254 | - return false; |
|
| 255 | - } |
|
| 256 | - } |
|
| 257 | - } |
|
| 258 | - $info = array( |
|
| 259 | - 'target' => $this->getMountPoint() . $path, |
|
| 260 | - 'source' => $source, |
|
| 261 | - 'mode' => $mode, |
|
| 262 | - ); |
|
| 263 | - \OCP\Util::emitHook('\OC\Files\Storage\Shared', 'fopen', $info); |
|
| 264 | - return $this->nonMaskedStorage->fopen($this->getSourcePath($path), $mode); |
|
| 265 | - } |
|
| 266 | - return false; |
|
| 267 | - } |
|
| 268 | - |
|
| 269 | - /** |
|
| 270 | - * see http://php.net/manual/en/function.rename.php |
|
| 271 | - * |
|
| 272 | - * @param string $path1 |
|
| 273 | - * @param string $path2 |
|
| 274 | - * @return bool |
|
| 275 | - */ |
|
| 276 | - public function rename($path1, $path2) { |
|
| 277 | - $this->init(); |
|
| 278 | - $isPartFile = pathinfo($path1, PATHINFO_EXTENSION) === 'part'; |
|
| 279 | - $targetExists = $this->file_exists($path2); |
|
| 280 | - $sameFodler = dirname($path1) === dirname($path2); |
|
| 281 | - |
|
| 282 | - if ($targetExists || ($sameFodler && !$isPartFile)) { |
|
| 283 | - if (!$this->isUpdatable('')) { |
|
| 284 | - return false; |
|
| 285 | - } |
|
| 286 | - } else { |
|
| 287 | - if (!$this->isCreatable('')) { |
|
| 288 | - return false; |
|
| 289 | - } |
|
| 290 | - } |
|
| 291 | - |
|
| 292 | - return $this->nonMaskedStorage->rename($this->getSourcePath($path1), $this->getSourcePath($path2)); |
|
| 293 | - } |
|
| 294 | - |
|
| 295 | - /** |
|
| 296 | - * return mount point of share, relative to data/user/files |
|
| 297 | - * |
|
| 298 | - * @return string |
|
| 299 | - */ |
|
| 300 | - public function getMountPoint() { |
|
| 301 | - return $this->superShare->getTarget(); |
|
| 302 | - } |
|
| 303 | - |
|
| 304 | - /** |
|
| 305 | - * @param string $path |
|
| 306 | - */ |
|
| 307 | - public function setMountPoint($path) { |
|
| 308 | - $this->superShare->setTarget($path); |
|
| 309 | - |
|
| 310 | - foreach ($this->groupedShares as $share) { |
|
| 311 | - $share->setTarget($path); |
|
| 312 | - } |
|
| 313 | - } |
|
| 314 | - |
|
| 315 | - /** |
|
| 316 | - * get the user who shared the file |
|
| 317 | - * |
|
| 318 | - * @return string |
|
| 319 | - */ |
|
| 320 | - public function getSharedFrom() { |
|
| 321 | - return $this->superShare->getShareOwner(); |
|
| 322 | - } |
|
| 323 | - |
|
| 324 | - /** |
|
| 325 | - * @return \OCP\Share\IShare |
|
| 326 | - */ |
|
| 327 | - public function getShare() { |
|
| 328 | - return $this->superShare; |
|
| 329 | - } |
|
| 330 | - |
|
| 331 | - /** |
|
| 332 | - * return share type, can be "file" or "folder" |
|
| 333 | - * |
|
| 334 | - * @return string |
|
| 335 | - */ |
|
| 336 | - public function getItemType() { |
|
| 337 | - return $this->superShare->getNodeType(); |
|
| 338 | - } |
|
| 339 | - |
|
| 340 | - public function getCache($path = '', $storage = null) { |
|
| 341 | - if ($this->cache) { |
|
| 342 | - return $this->cache; |
|
| 343 | - } |
|
| 344 | - if (!$storage) { |
|
| 345 | - $storage = $this; |
|
| 346 | - } |
|
| 347 | - $this->cache = new \OCA\Files_Sharing\Cache($storage, $this->getSourceRootInfo(), $this->superShare); |
|
| 348 | - return $this->cache; |
|
| 349 | - } |
|
| 350 | - |
|
| 351 | - public function getScanner($path = '', $storage = null) { |
|
| 352 | - if (!$storage) { |
|
| 353 | - $storage = $this; |
|
| 354 | - } |
|
| 355 | - return new \OCA\Files_Sharing\Scanner($storage); |
|
| 356 | - } |
|
| 357 | - |
|
| 358 | - public function getPropagator($storage = null) { |
|
| 359 | - if (isset($this->propagator)) { |
|
| 360 | - return $this->propagator; |
|
| 361 | - } |
|
| 362 | - |
|
| 363 | - if (!$storage) { |
|
| 364 | - $storage = $this; |
|
| 365 | - } |
|
| 366 | - $this->propagator = new \OCA\Files_Sharing\SharedPropagator($storage, \OC::$server->getDatabaseConnection()); |
|
| 367 | - return $this->propagator; |
|
| 368 | - } |
|
| 369 | - |
|
| 370 | - public function getOwner($path) { |
|
| 371 | - return $this->superShare->getShareOwner(); |
|
| 372 | - } |
|
| 373 | - |
|
| 374 | - /** |
|
| 375 | - * unshare complete storage, also the grouped shares |
|
| 376 | - * |
|
| 377 | - * @return bool |
|
| 378 | - */ |
|
| 379 | - public function unshareStorage() { |
|
| 380 | - foreach ($this->groupedShares as $share) { |
|
| 381 | - \OC::$server->getShareManager()->deleteFromSelf($share, $this->user); |
|
| 382 | - } |
|
| 383 | - return true; |
|
| 384 | - } |
|
| 385 | - |
|
| 386 | - /** |
|
| 387 | - * @param string $path |
|
| 388 | - * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE |
|
| 389 | - * @param \OCP\Lock\ILockingProvider $provider |
|
| 390 | - * @throws \OCP\Lock\LockedException |
|
| 391 | - */ |
|
| 392 | - public function acquireLock($path, $type, ILockingProvider $provider) { |
|
| 393 | - /** @var \OCP\Files\Storage $targetStorage */ |
|
| 394 | - list($targetStorage, $targetInternalPath) = $this->resolvePath($path); |
|
| 395 | - $targetStorage->acquireLock($targetInternalPath, $type, $provider); |
|
| 396 | - // lock the parent folders of the owner when locking the share as recipient |
|
| 397 | - if ($path === '') { |
|
| 398 | - $sourcePath = $this->ownerView->getPath($this->superShare->getNodeId()); |
|
| 399 | - $this->ownerView->lockFile(dirname($sourcePath), ILockingProvider::LOCK_SHARED, true); |
|
| 400 | - } |
|
| 401 | - } |
|
| 402 | - |
|
| 403 | - /** |
|
| 404 | - * @param string $path |
|
| 405 | - * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE |
|
| 406 | - * @param \OCP\Lock\ILockingProvider $provider |
|
| 407 | - */ |
|
| 408 | - public function releaseLock($path, $type, ILockingProvider $provider) { |
|
| 409 | - /** @var \OCP\Files\Storage $targetStorage */ |
|
| 410 | - list($targetStorage, $targetInternalPath) = $this->resolvePath($path); |
|
| 411 | - $targetStorage->releaseLock($targetInternalPath, $type, $provider); |
|
| 412 | - // unlock the parent folders of the owner when unlocking the share as recipient |
|
| 413 | - if ($path === '') { |
|
| 414 | - $sourcePath = $this->ownerView->getPath($this->superShare->getNodeId()); |
|
| 415 | - $this->ownerView->unlockFile(dirname($sourcePath), ILockingProvider::LOCK_SHARED, true); |
|
| 416 | - } |
|
| 417 | - } |
|
| 418 | - |
|
| 419 | - /** |
|
| 420 | - * @param string $path |
|
| 421 | - * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE |
|
| 422 | - * @param \OCP\Lock\ILockingProvider $provider |
|
| 423 | - */ |
|
| 424 | - public function changeLock($path, $type, ILockingProvider $provider) { |
|
| 425 | - /** @var \OCP\Files\Storage $targetStorage */ |
|
| 426 | - list($targetStorage, $targetInternalPath) = $this->resolvePath($path); |
|
| 427 | - $targetStorage->changeLock($targetInternalPath, $type, $provider); |
|
| 428 | - } |
|
| 429 | - |
|
| 430 | - /** |
|
| 431 | - * @return array [ available, last_checked ] |
|
| 432 | - */ |
|
| 433 | - public function getAvailability() { |
|
| 434 | - // shares do not participate in availability logic |
|
| 435 | - return [ |
|
| 436 | - 'available' => true, |
|
| 437 | - 'last_checked' => 0 |
|
| 438 | - ]; |
|
| 439 | - } |
|
| 440 | - |
|
| 441 | - /** |
|
| 442 | - * @param bool $available |
|
| 443 | - */ |
|
| 444 | - public function setAvailability($available) { |
|
| 445 | - // shares do not participate in availability logic |
|
| 446 | - } |
|
| 447 | - |
|
| 448 | - public function getSourceStorage() { |
|
| 449 | - $this->init(); |
|
| 450 | - return $this->nonMaskedStorage; |
|
| 451 | - } |
|
| 452 | - |
|
| 453 | - public function getWrapperStorage() { |
|
| 454 | - $this->init(); |
|
| 455 | - return $this->storage; |
|
| 456 | - } |
|
| 457 | - |
|
| 458 | - public function file_get_contents($path) { |
|
| 459 | - $info = [ |
|
| 460 | - 'target' => $this->getMountPoint() . '/' . $path, |
|
| 461 | - 'source' => $this->getSourcePath($path), |
|
| 462 | - ]; |
|
| 463 | - \OCP\Util::emitHook('\OC\Files\Storage\Shared', 'file_get_contents', $info); |
|
| 464 | - return parent::file_get_contents($path); |
|
| 465 | - } |
|
| 466 | - |
|
| 467 | - public function file_put_contents($path, $data) { |
|
| 468 | - $info = [ |
|
| 469 | - 'target' => $this->getMountPoint() . '/' . $path, |
|
| 470 | - 'source' => $this->getSourcePath($path), |
|
| 471 | - ]; |
|
| 472 | - \OCP\Util::emitHook('\OC\Files\Storage\Shared', 'file_put_contents', $info); |
|
| 473 | - return parent::file_put_contents($path, $data); |
|
| 474 | - } |
|
| 475 | - |
|
| 476 | - public function setMountOptions(array $options) { |
|
| 477 | - $this->mountOptions = $options; |
|
| 478 | - } |
|
| 50 | + /** @var \OCP\Share\IShare */ |
|
| 51 | + private $superShare; |
|
| 52 | + |
|
| 53 | + /** @var \OCP\Share\IShare[] */ |
|
| 54 | + private $groupedShares; |
|
| 55 | + |
|
| 56 | + /** |
|
| 57 | + * @var \OC\Files\View |
|
| 58 | + */ |
|
| 59 | + private $ownerView; |
|
| 60 | + |
|
| 61 | + private $initialized = false; |
|
| 62 | + |
|
| 63 | + /** |
|
| 64 | + * @var ICacheEntry |
|
| 65 | + */ |
|
| 66 | + private $sourceRootInfo; |
|
| 67 | + |
|
| 68 | + /** @var string */ |
|
| 69 | + private $user; |
|
| 70 | + |
|
| 71 | + /** |
|
| 72 | + * @var \OCP\ILogger |
|
| 73 | + */ |
|
| 74 | + private $logger; |
|
| 75 | + |
|
| 76 | + /** @var IStorage */ |
|
| 77 | + private $nonMaskedStorage; |
|
| 78 | + |
|
| 79 | + private $options; |
|
| 80 | + |
|
| 81 | + public function __construct($arguments) { |
|
| 82 | + $this->ownerView = $arguments['ownerView']; |
|
| 83 | + $this->logger = \OC::$server->getLogger(); |
|
| 84 | + |
|
| 85 | + $this->superShare = $arguments['superShare']; |
|
| 86 | + $this->groupedShares = $arguments['groupedShares']; |
|
| 87 | + |
|
| 88 | + $this->user = $arguments['user']; |
|
| 89 | + |
|
| 90 | + parent::__construct([ |
|
| 91 | + 'storage' => null, |
|
| 92 | + 'root' => null, |
|
| 93 | + ]); |
|
| 94 | + } |
|
| 95 | + |
|
| 96 | + /** |
|
| 97 | + * @return ICacheEntry |
|
| 98 | + */ |
|
| 99 | + private function getSourceRootInfo() { |
|
| 100 | + if (is_null($this->sourceRootInfo)) { |
|
| 101 | + if (is_null($this->superShare->getNodeCacheEntry())) { |
|
| 102 | + $this->sourceRootInfo = $this->nonMaskedStorage->getCache()->get($this->rootPath); |
|
| 103 | + } else { |
|
| 104 | + $this->sourceRootInfo = $this->superShare->getNodeCacheEntry(); |
|
| 105 | + } |
|
| 106 | + } |
|
| 107 | + return $this->sourceRootInfo; |
|
| 108 | + } |
|
| 109 | + |
|
| 110 | + private function init() { |
|
| 111 | + if ($this->initialized) { |
|
| 112 | + return; |
|
| 113 | + } |
|
| 114 | + $this->initialized = true; |
|
| 115 | + try { |
|
| 116 | + Filesystem::initMountPoints($this->superShare->getShareOwner()); |
|
| 117 | + $sourcePath = $this->ownerView->getPath($this->superShare->getNodeId()); |
|
| 118 | + list($this->nonMaskedStorage, $this->rootPath) = $this->ownerView->resolvePath($sourcePath); |
|
| 119 | + $this->storage = new PermissionsMask([ |
|
| 120 | + 'storage' => $this->nonMaskedStorage, |
|
| 121 | + 'mask' => $this->superShare->getPermissions() |
|
| 122 | + ]); |
|
| 123 | + } catch (NotFoundException $e) { |
|
| 124 | + $this->storage = new FailedStorage(['exception' => $e]); |
|
| 125 | + $this->rootPath = ''; |
|
| 126 | + } catch (\Exception $e) { |
|
| 127 | + $this->storage = new FailedStorage(['exception' => $e]); |
|
| 128 | + $this->rootPath = ''; |
|
| 129 | + $this->logger->logException($e); |
|
| 130 | + } |
|
| 131 | + } |
|
| 132 | + |
|
| 133 | + /** |
|
| 134 | + * @inheritdoc |
|
| 135 | + */ |
|
| 136 | + public function instanceOfStorage($class) { |
|
| 137 | + if ($class === '\OC\Files\Storage\Common') { |
|
| 138 | + return true; |
|
| 139 | + } |
|
| 140 | + if (in_array($class, ['\OC\Files\Storage\Home', '\OC\Files\ObjectStore\HomeObjectStoreStorage'])) { |
|
| 141 | + return false; |
|
| 142 | + } |
|
| 143 | + return parent::instanceOfStorage($class); |
|
| 144 | + } |
|
| 145 | + |
|
| 146 | + /** |
|
| 147 | + * @return string |
|
| 148 | + */ |
|
| 149 | + public function getShareId() { |
|
| 150 | + return $this->superShare->getId(); |
|
| 151 | + } |
|
| 152 | + |
|
| 153 | + private function isValid() { |
|
| 154 | + return $this->getSourceRootInfo() && ($this->getSourceRootInfo()->getPermissions() & Constants::PERMISSION_SHARE) === Constants::PERMISSION_SHARE; |
|
| 155 | + } |
|
| 156 | + |
|
| 157 | + /** |
|
| 158 | + * get id of the mount point |
|
| 159 | + * |
|
| 160 | + * @return string |
|
| 161 | + */ |
|
| 162 | + public function getId() { |
|
| 163 | + return 'shared::' . $this->getMountPoint(); |
|
| 164 | + } |
|
| 165 | + |
|
| 166 | + /** |
|
| 167 | + * Get the permissions granted for a shared file |
|
| 168 | + * |
|
| 169 | + * @param string $target Shared target file path |
|
| 170 | + * @return int CRUDS permissions granted |
|
| 171 | + */ |
|
| 172 | + public function getPermissions($target = '') { |
|
| 173 | + if (!$this->isValid()) { |
|
| 174 | + return 0; |
|
| 175 | + } |
|
| 176 | + $permissions = $this->superShare->getPermissions(); |
|
| 177 | + // part files and the mount point always have delete permissions |
|
| 178 | + if ($target === '' || pathinfo($target, PATHINFO_EXTENSION) === 'part') { |
|
| 179 | + $permissions |= \OCP\Constants::PERMISSION_DELETE; |
|
| 180 | + } |
|
| 181 | + |
|
| 182 | + if (\OCP\Util::isSharingDisabledForUser()) { |
|
| 183 | + $permissions &= ~\OCP\Constants::PERMISSION_SHARE; |
|
| 184 | + } |
|
| 185 | + |
|
| 186 | + return $permissions; |
|
| 187 | + } |
|
| 188 | + |
|
| 189 | + public function isCreatable($path) { |
|
| 190 | + return ($this->getPermissions($path) & \OCP\Constants::PERMISSION_CREATE); |
|
| 191 | + } |
|
| 192 | + |
|
| 193 | + public function isReadable($path) { |
|
| 194 | + if (!$this->isValid()) { |
|
| 195 | + return false; |
|
| 196 | + } |
|
| 197 | + if (!$this->file_exists($path)) { |
|
| 198 | + return false; |
|
| 199 | + } |
|
| 200 | + /** @var IStorage $storage */ |
|
| 201 | + /** @var string $internalPath */ |
|
| 202 | + list($storage, $internalPath) = $this->resolvePath($path); |
|
| 203 | + return $storage->isReadable($internalPath); |
|
| 204 | + } |
|
| 205 | + |
|
| 206 | + public function isUpdatable($path) { |
|
| 207 | + return ($this->getPermissions($path) & \OCP\Constants::PERMISSION_UPDATE); |
|
| 208 | + } |
|
| 209 | + |
|
| 210 | + public function isDeletable($path) { |
|
| 211 | + return ($this->getPermissions($path) & \OCP\Constants::PERMISSION_DELETE); |
|
| 212 | + } |
|
| 213 | + |
|
| 214 | + public function isSharable($path) { |
|
| 215 | + if (\OCP\Util::isSharingDisabledForUser() || !\OC\Share\Share::isResharingAllowed()) { |
|
| 216 | + return false; |
|
| 217 | + } |
|
| 218 | + return ($this->getPermissions($path) & \OCP\Constants::PERMISSION_SHARE); |
|
| 219 | + } |
|
| 220 | + |
|
| 221 | + public function fopen($path, $mode) { |
|
| 222 | + if ($source = $this->getSourcePath($path)) { |
|
| 223 | + switch ($mode) { |
|
| 224 | + case 'r+': |
|
| 225 | + case 'rb+': |
|
| 226 | + case 'w+': |
|
| 227 | + case 'wb+': |
|
| 228 | + case 'x+': |
|
| 229 | + case 'xb+': |
|
| 230 | + case 'a+': |
|
| 231 | + case 'ab+': |
|
| 232 | + case 'w': |
|
| 233 | + case 'wb': |
|
| 234 | + case 'x': |
|
| 235 | + case 'xb': |
|
| 236 | + case 'a': |
|
| 237 | + case 'ab': |
|
| 238 | + $creatable = $this->isCreatable($path); |
|
| 239 | + $updatable = $this->isUpdatable($path); |
|
| 240 | + // if neither permissions given, no need to continue |
|
| 241 | + if (!$creatable && !$updatable) { |
|
| 242 | + return false; |
|
| 243 | + } |
|
| 244 | + |
|
| 245 | + $exists = $this->file_exists($path); |
|
| 246 | + // if a file exists, updatable permissions are required |
|
| 247 | + if ($exists && !$updatable) { |
|
| 248 | + return false; |
|
| 249 | + } |
|
| 250 | + |
|
| 251 | + // part file is allowed if !$creatable but the final file is $updatable |
|
| 252 | + if (pathinfo($path, PATHINFO_EXTENSION) !== 'part') { |
|
| 253 | + if (!$exists && !$creatable) { |
|
| 254 | + return false; |
|
| 255 | + } |
|
| 256 | + } |
|
| 257 | + } |
|
| 258 | + $info = array( |
|
| 259 | + 'target' => $this->getMountPoint() . $path, |
|
| 260 | + 'source' => $source, |
|
| 261 | + 'mode' => $mode, |
|
| 262 | + ); |
|
| 263 | + \OCP\Util::emitHook('\OC\Files\Storage\Shared', 'fopen', $info); |
|
| 264 | + return $this->nonMaskedStorage->fopen($this->getSourcePath($path), $mode); |
|
| 265 | + } |
|
| 266 | + return false; |
|
| 267 | + } |
|
| 268 | + |
|
| 269 | + /** |
|
| 270 | + * see http://php.net/manual/en/function.rename.php |
|
| 271 | + * |
|
| 272 | + * @param string $path1 |
|
| 273 | + * @param string $path2 |
|
| 274 | + * @return bool |
|
| 275 | + */ |
|
| 276 | + public function rename($path1, $path2) { |
|
| 277 | + $this->init(); |
|
| 278 | + $isPartFile = pathinfo($path1, PATHINFO_EXTENSION) === 'part'; |
|
| 279 | + $targetExists = $this->file_exists($path2); |
|
| 280 | + $sameFodler = dirname($path1) === dirname($path2); |
|
| 281 | + |
|
| 282 | + if ($targetExists || ($sameFodler && !$isPartFile)) { |
|
| 283 | + if (!$this->isUpdatable('')) { |
|
| 284 | + return false; |
|
| 285 | + } |
|
| 286 | + } else { |
|
| 287 | + if (!$this->isCreatable('')) { |
|
| 288 | + return false; |
|
| 289 | + } |
|
| 290 | + } |
|
| 291 | + |
|
| 292 | + return $this->nonMaskedStorage->rename($this->getSourcePath($path1), $this->getSourcePath($path2)); |
|
| 293 | + } |
|
| 294 | + |
|
| 295 | + /** |
|
| 296 | + * return mount point of share, relative to data/user/files |
|
| 297 | + * |
|
| 298 | + * @return string |
|
| 299 | + */ |
|
| 300 | + public function getMountPoint() { |
|
| 301 | + return $this->superShare->getTarget(); |
|
| 302 | + } |
|
| 303 | + |
|
| 304 | + /** |
|
| 305 | + * @param string $path |
|
| 306 | + */ |
|
| 307 | + public function setMountPoint($path) { |
|
| 308 | + $this->superShare->setTarget($path); |
|
| 309 | + |
|
| 310 | + foreach ($this->groupedShares as $share) { |
|
| 311 | + $share->setTarget($path); |
|
| 312 | + } |
|
| 313 | + } |
|
| 314 | + |
|
| 315 | + /** |
|
| 316 | + * get the user who shared the file |
|
| 317 | + * |
|
| 318 | + * @return string |
|
| 319 | + */ |
|
| 320 | + public function getSharedFrom() { |
|
| 321 | + return $this->superShare->getShareOwner(); |
|
| 322 | + } |
|
| 323 | + |
|
| 324 | + /** |
|
| 325 | + * @return \OCP\Share\IShare |
|
| 326 | + */ |
|
| 327 | + public function getShare() { |
|
| 328 | + return $this->superShare; |
|
| 329 | + } |
|
| 330 | + |
|
| 331 | + /** |
|
| 332 | + * return share type, can be "file" or "folder" |
|
| 333 | + * |
|
| 334 | + * @return string |
|
| 335 | + */ |
|
| 336 | + public function getItemType() { |
|
| 337 | + return $this->superShare->getNodeType(); |
|
| 338 | + } |
|
| 339 | + |
|
| 340 | + public function getCache($path = '', $storage = null) { |
|
| 341 | + if ($this->cache) { |
|
| 342 | + return $this->cache; |
|
| 343 | + } |
|
| 344 | + if (!$storage) { |
|
| 345 | + $storage = $this; |
|
| 346 | + } |
|
| 347 | + $this->cache = new \OCA\Files_Sharing\Cache($storage, $this->getSourceRootInfo(), $this->superShare); |
|
| 348 | + return $this->cache; |
|
| 349 | + } |
|
| 350 | + |
|
| 351 | + public function getScanner($path = '', $storage = null) { |
|
| 352 | + if (!$storage) { |
|
| 353 | + $storage = $this; |
|
| 354 | + } |
|
| 355 | + return new \OCA\Files_Sharing\Scanner($storage); |
|
| 356 | + } |
|
| 357 | + |
|
| 358 | + public function getPropagator($storage = null) { |
|
| 359 | + if (isset($this->propagator)) { |
|
| 360 | + return $this->propagator; |
|
| 361 | + } |
|
| 362 | + |
|
| 363 | + if (!$storage) { |
|
| 364 | + $storage = $this; |
|
| 365 | + } |
|
| 366 | + $this->propagator = new \OCA\Files_Sharing\SharedPropagator($storage, \OC::$server->getDatabaseConnection()); |
|
| 367 | + return $this->propagator; |
|
| 368 | + } |
|
| 369 | + |
|
| 370 | + public function getOwner($path) { |
|
| 371 | + return $this->superShare->getShareOwner(); |
|
| 372 | + } |
|
| 373 | + |
|
| 374 | + /** |
|
| 375 | + * unshare complete storage, also the grouped shares |
|
| 376 | + * |
|
| 377 | + * @return bool |
|
| 378 | + */ |
|
| 379 | + public function unshareStorage() { |
|
| 380 | + foreach ($this->groupedShares as $share) { |
|
| 381 | + \OC::$server->getShareManager()->deleteFromSelf($share, $this->user); |
|
| 382 | + } |
|
| 383 | + return true; |
|
| 384 | + } |
|
| 385 | + |
|
| 386 | + /** |
|
| 387 | + * @param string $path |
|
| 388 | + * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE |
|
| 389 | + * @param \OCP\Lock\ILockingProvider $provider |
|
| 390 | + * @throws \OCP\Lock\LockedException |
|
| 391 | + */ |
|
| 392 | + public function acquireLock($path, $type, ILockingProvider $provider) { |
|
| 393 | + /** @var \OCP\Files\Storage $targetStorage */ |
|
| 394 | + list($targetStorage, $targetInternalPath) = $this->resolvePath($path); |
|
| 395 | + $targetStorage->acquireLock($targetInternalPath, $type, $provider); |
|
| 396 | + // lock the parent folders of the owner when locking the share as recipient |
|
| 397 | + if ($path === '') { |
|
| 398 | + $sourcePath = $this->ownerView->getPath($this->superShare->getNodeId()); |
|
| 399 | + $this->ownerView->lockFile(dirname($sourcePath), ILockingProvider::LOCK_SHARED, true); |
|
| 400 | + } |
|
| 401 | + } |
|
| 402 | + |
|
| 403 | + /** |
|
| 404 | + * @param string $path |
|
| 405 | + * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE |
|
| 406 | + * @param \OCP\Lock\ILockingProvider $provider |
|
| 407 | + */ |
|
| 408 | + public function releaseLock($path, $type, ILockingProvider $provider) { |
|
| 409 | + /** @var \OCP\Files\Storage $targetStorage */ |
|
| 410 | + list($targetStorage, $targetInternalPath) = $this->resolvePath($path); |
|
| 411 | + $targetStorage->releaseLock($targetInternalPath, $type, $provider); |
|
| 412 | + // unlock the parent folders of the owner when unlocking the share as recipient |
|
| 413 | + if ($path === '') { |
|
| 414 | + $sourcePath = $this->ownerView->getPath($this->superShare->getNodeId()); |
|
| 415 | + $this->ownerView->unlockFile(dirname($sourcePath), ILockingProvider::LOCK_SHARED, true); |
|
| 416 | + } |
|
| 417 | + } |
|
| 418 | + |
|
| 419 | + /** |
|
| 420 | + * @param string $path |
|
| 421 | + * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE |
|
| 422 | + * @param \OCP\Lock\ILockingProvider $provider |
|
| 423 | + */ |
|
| 424 | + public function changeLock($path, $type, ILockingProvider $provider) { |
|
| 425 | + /** @var \OCP\Files\Storage $targetStorage */ |
|
| 426 | + list($targetStorage, $targetInternalPath) = $this->resolvePath($path); |
|
| 427 | + $targetStorage->changeLock($targetInternalPath, $type, $provider); |
|
| 428 | + } |
|
| 429 | + |
|
| 430 | + /** |
|
| 431 | + * @return array [ available, last_checked ] |
|
| 432 | + */ |
|
| 433 | + public function getAvailability() { |
|
| 434 | + // shares do not participate in availability logic |
|
| 435 | + return [ |
|
| 436 | + 'available' => true, |
|
| 437 | + 'last_checked' => 0 |
|
| 438 | + ]; |
|
| 439 | + } |
|
| 440 | + |
|
| 441 | + /** |
|
| 442 | + * @param bool $available |
|
| 443 | + */ |
|
| 444 | + public function setAvailability($available) { |
|
| 445 | + // shares do not participate in availability logic |
|
| 446 | + } |
|
| 447 | + |
|
| 448 | + public function getSourceStorage() { |
|
| 449 | + $this->init(); |
|
| 450 | + return $this->nonMaskedStorage; |
|
| 451 | + } |
|
| 452 | + |
|
| 453 | + public function getWrapperStorage() { |
|
| 454 | + $this->init(); |
|
| 455 | + return $this->storage; |
|
| 456 | + } |
|
| 457 | + |
|
| 458 | + public function file_get_contents($path) { |
|
| 459 | + $info = [ |
|
| 460 | + 'target' => $this->getMountPoint() . '/' . $path, |
|
| 461 | + 'source' => $this->getSourcePath($path), |
|
| 462 | + ]; |
|
| 463 | + \OCP\Util::emitHook('\OC\Files\Storage\Shared', 'file_get_contents', $info); |
|
| 464 | + return parent::file_get_contents($path); |
|
| 465 | + } |
|
| 466 | + |
|
| 467 | + public function file_put_contents($path, $data) { |
|
| 468 | + $info = [ |
|
| 469 | + 'target' => $this->getMountPoint() . '/' . $path, |
|
| 470 | + 'source' => $this->getSourcePath($path), |
|
| 471 | + ]; |
|
| 472 | + \OCP\Util::emitHook('\OC\Files\Storage\Shared', 'file_put_contents', $info); |
|
| 473 | + return parent::file_put_contents($path, $data); |
|
| 474 | + } |
|
| 475 | + |
|
| 476 | + public function setMountOptions(array $options) { |
|
| 477 | + $this->mountOptions = $options; |
|
| 478 | + } |
|
| 479 | 479 | } |
@@ -160,7 +160,7 @@ discard block |
||
| 160 | 160 | * @return string |
| 161 | 161 | */ |
| 162 | 162 | public function getId() { |
| 163 | - return 'shared::' . $this->getMountPoint(); |
|
| 163 | + return 'shared::'.$this->getMountPoint(); |
|
| 164 | 164 | } |
| 165 | 165 | |
| 166 | 166 | /** |
@@ -256,7 +256,7 @@ discard block |
||
| 256 | 256 | } |
| 257 | 257 | } |
| 258 | 258 | $info = array( |
| 259 | - 'target' => $this->getMountPoint() . $path, |
|
| 259 | + 'target' => $this->getMountPoint().$path, |
|
| 260 | 260 | 'source' => $source, |
| 261 | 261 | 'mode' => $mode, |
| 262 | 262 | ); |
@@ -457,7 +457,7 @@ discard block |
||
| 457 | 457 | |
| 458 | 458 | public function file_get_contents($path) { |
| 459 | 459 | $info = [ |
| 460 | - 'target' => $this->getMountPoint() . '/' . $path, |
|
| 460 | + 'target' => $this->getMountPoint().'/'.$path, |
|
| 461 | 461 | 'source' => $this->getSourcePath($path), |
| 462 | 462 | ]; |
| 463 | 463 | \OCP\Util::emitHook('\OC\Files\Storage\Shared', 'file_get_contents', $info); |
@@ -466,7 +466,7 @@ discard block |
||
| 466 | 466 | |
| 467 | 467 | public function file_put_contents($path, $data) { |
| 468 | 468 | $info = [ |
| 469 | - 'target' => $this->getMountPoint() . '/' . $path, |
|
| 469 | + 'target' => $this->getMountPoint().'/'.$path, |
|
| 470 | 470 | 'source' => $this->getSourcePath($path), |
| 471 | 471 | ]; |
| 472 | 472 | \OCP\Util::emitHook('\OC\Files\Storage\Shared', 'file_put_contents', $info); |
@@ -225,7 +225,7 @@ |
||
| 225 | 225 | /** |
| 226 | 226 | * creates a array with all user data |
| 227 | 227 | * |
| 228 | - * @param $userId |
|
| 228 | + * @param string $userId |
|
| 229 | 229 | * @return array |
| 230 | 230 | * @throws OCSException |
| 231 | 231 | */ |
@@ -104,7 +104,7 @@ discard block |
||
| 104 | 104 | // Admin? Or SubAdmin? |
| 105 | 105 | $uid = $user->getUID(); |
| 106 | 106 | $subAdminManager = $this->groupManager->getSubAdmin(); |
| 107 | - if($this->groupManager->isAdmin($uid)){ |
|
| 107 | + if ($this->groupManager->isAdmin($uid)) { |
|
| 108 | 108 | $users = $this->userManager->search($search, $limit, $offset); |
| 109 | 109 | } else if ($subAdminManager->isSubAdmin($user)) { |
| 110 | 110 | $subAdminOfGroups = $subAdminManager->getSubAdminsGroups($user); |
@@ -112,7 +112,7 @@ discard block |
||
| 112 | 112 | $subAdminOfGroups[$key] = $group->getGID(); |
| 113 | 113 | } |
| 114 | 114 | |
| 115 | - if($offset === null) { |
|
| 115 | + if ($offset === null) { |
|
| 116 | 116 | $offset = 0; |
| 117 | 117 | } |
| 118 | 118 | |
@@ -146,22 +146,22 @@ discard block |
||
| 146 | 146 | $isAdmin = $this->groupManager->isAdmin($user->getUID()); |
| 147 | 147 | $subAdminManager = $this->groupManager->getSubAdmin(); |
| 148 | 148 | |
| 149 | - if($this->userManager->userExists($userid)) { |
|
| 149 | + if ($this->userManager->userExists($userid)) { |
|
| 150 | 150 | $this->logger->error('Failed addUser attempt: User already exists.', ['app' => 'ocs_api']); |
| 151 | 151 | throw new OCSException('User already exists', 102); |
| 152 | 152 | } |
| 153 | 153 | |
| 154 | - if(is_array($groups)) { |
|
| 154 | + if (is_array($groups)) { |
|
| 155 | 155 | foreach ($groups as $group) { |
| 156 | - if(!$this->groupManager->groupExists($group)) { |
|
| 156 | + if (!$this->groupManager->groupExists($group)) { |
|
| 157 | 157 | throw new OCSException('group '.$group.' does not exist', 104); |
| 158 | 158 | } |
| 159 | - if(!$isAdmin && !$subAdminManager->isSubAdminofGroup($user, $this->groupManager->get($group))) { |
|
| 160 | - throw new OCSException('insufficient privileges for group '. $group, 105); |
|
| 159 | + if (!$isAdmin && !$subAdminManager->isSubAdminofGroup($user, $this->groupManager->get($group))) { |
|
| 160 | + throw new OCSException('insufficient privileges for group '.$group, 105); |
|
| 161 | 161 | } |
| 162 | 162 | } |
| 163 | 163 | } else { |
| 164 | - if(!$isAdmin) { |
|
| 164 | + if (!$isAdmin) { |
|
| 165 | 165 | throw new OCSException('no group specified (required for subadmins)', 106); |
| 166 | 166 | } |
| 167 | 167 | } |
@@ -210,7 +210,7 @@ discard block |
||
| 210 | 210 | public function getCurrentUser() { |
| 211 | 211 | $user = $this->userSession->getUser(); |
| 212 | 212 | if ($user) { |
| 213 | - $data = $this->getUserData($user->getUID()); |
|
| 213 | + $data = $this->getUserData($user->getUID()); |
|
| 214 | 214 | // rename "displayname" to "display-name" only for this call to keep |
| 215 | 215 | // the API stable. |
| 216 | 216 | $data['display-name'] = $data['displayname']; |
@@ -236,17 +236,17 @@ discard block |
||
| 236 | 236 | |
| 237 | 237 | // Check if the target user exists |
| 238 | 238 | $targetUserObject = $this->userManager->get($userId); |
| 239 | - if($targetUserObject === null) { |
|
| 239 | + if ($targetUserObject === null) { |
|
| 240 | 240 | throw new OCSException('The requested user could not be found', \OCP\API::RESPOND_NOT_FOUND); |
| 241 | 241 | } |
| 242 | 242 | |
| 243 | 243 | // Admin? Or SubAdmin? |
| 244 | - if($this->groupManager->isAdmin($currentLoggedInUser->getUID()) |
|
| 244 | + if ($this->groupManager->isAdmin($currentLoggedInUser->getUID()) |
|
| 245 | 245 | || $this->groupManager->getSubAdmin()->isUserAccessible($currentLoggedInUser, $targetUserObject)) { |
| 246 | 246 | $data['enabled'] = $this->config->getUserValue($userId, 'core', 'enabled', 'true'); |
| 247 | 247 | } else { |
| 248 | 248 | // Check they are looking up themselves |
| 249 | - if($currentLoggedInUser->getUID() !== $userId) { |
|
| 249 | + if ($currentLoggedInUser->getUID() !== $userId) { |
|
| 250 | 250 | throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
| 251 | 251 | } |
| 252 | 252 | } |
@@ -284,24 +284,24 @@ discard block |
||
| 284 | 284 | $currentLoggedInUser = $this->userSession->getUser(); |
| 285 | 285 | |
| 286 | 286 | $targetUser = $this->userManager->get($userId); |
| 287 | - if($targetUser === null) { |
|
| 287 | + if ($targetUser === null) { |
|
| 288 | 288 | throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
| 289 | 289 | } |
| 290 | 290 | |
| 291 | 291 | $permittedFields = []; |
| 292 | - if($userId === $currentLoggedInUser->getUID()) { |
|
| 292 | + if ($userId === $currentLoggedInUser->getUID()) { |
|
| 293 | 293 | // Editing self (display, email) |
| 294 | 294 | $permittedFields[] = 'display'; |
| 295 | 295 | $permittedFields[] = 'email'; |
| 296 | 296 | $permittedFields[] = 'password'; |
| 297 | 297 | // If admin they can edit their own quota |
| 298 | - if($this->groupManager->isAdmin($currentLoggedInUser->getUID())) { |
|
| 298 | + if ($this->groupManager->isAdmin($currentLoggedInUser->getUID())) { |
|
| 299 | 299 | $permittedFields[] = 'quota'; |
| 300 | 300 | } |
| 301 | 301 | } else { |
| 302 | 302 | // Check if admin / subadmin |
| 303 | 303 | $subAdminManager = $this->groupManager->getSubAdmin(); |
| 304 | - if($subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser) |
|
| 304 | + if ($subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser) |
|
| 305 | 305 | || $this->groupManager->isAdmin($currentLoggedInUser->getUID())) { |
| 306 | 306 | // They have permissions over the user |
| 307 | 307 | $permittedFields[] = 'display'; |
@@ -314,17 +314,17 @@ discard block |
||
| 314 | 314 | } |
| 315 | 315 | } |
| 316 | 316 | // Check if permitted to edit this field |
| 317 | - if(!in_array($key, $permittedFields)) { |
|
| 317 | + if (!in_array($key, $permittedFields)) { |
|
| 318 | 318 | throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
| 319 | 319 | } |
| 320 | 320 | // Process the edit |
| 321 | - switch($key) { |
|
| 321 | + switch ($key) { |
|
| 322 | 322 | case 'display': |
| 323 | 323 | $targetUser->setDisplayName($value); |
| 324 | 324 | break; |
| 325 | 325 | case 'quota': |
| 326 | 326 | $quota = $value; |
| 327 | - if($quota !== 'none' && $quota !== 'default') { |
|
| 327 | + if ($quota !== 'none' && $quota !== 'default') { |
|
| 328 | 328 | if (is_numeric($quota)) { |
| 329 | 329 | $quota = (float) $quota; |
| 330 | 330 | } else { |
@@ -333,9 +333,9 @@ discard block |
||
| 333 | 333 | if ($quota === false) { |
| 334 | 334 | throw new OCSException('Invalid quota value '.$value, 103); |
| 335 | 335 | } |
| 336 | - if($quota === 0) { |
|
| 336 | + if ($quota === 0) { |
|
| 337 | 337 | $quota = 'default'; |
| 338 | - }else if($quota === -1) { |
|
| 338 | + } else if ($quota === -1) { |
|
| 339 | 339 | $quota = 'none'; |
| 340 | 340 | } else { |
| 341 | 341 | $quota = \OCP\Util::humanFileSize($quota); |
@@ -347,7 +347,7 @@ discard block |
||
| 347 | 347 | $targetUser->setPassword($value); |
| 348 | 348 | break; |
| 349 | 349 | case 'email': |
| 350 | - if(filter_var($value, FILTER_VALIDATE_EMAIL)) { |
|
| 350 | + if (filter_var($value, FILTER_VALIDATE_EMAIL)) { |
|
| 351 | 351 | $targetUser->setEMailAddress($value); |
| 352 | 352 | } else { |
| 353 | 353 | throw new OCSException('', 102); |
@@ -373,18 +373,18 @@ discard block |
||
| 373 | 373 | |
| 374 | 374 | $targetUser = $this->userManager->get($userId); |
| 375 | 375 | |
| 376 | - if($targetUser === null || $targetUser->getUID() === $currentLoggedInUser->getUID()) { |
|
| 376 | + if ($targetUser === null || $targetUser->getUID() === $currentLoggedInUser->getUID()) { |
|
| 377 | 377 | throw new OCSException('', 101); |
| 378 | 378 | } |
| 379 | 379 | |
| 380 | 380 | // If not permitted |
| 381 | 381 | $subAdminManager = $this->groupManager->getSubAdmin(); |
| 382 | - if(!$this->groupManager->isAdmin($currentLoggedInUser->getUID()) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) { |
|
| 382 | + if (!$this->groupManager->isAdmin($currentLoggedInUser->getUID()) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) { |
|
| 383 | 383 | throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
| 384 | 384 | } |
| 385 | 385 | |
| 386 | 386 | // Go ahead with the delete |
| 387 | - if($targetUser->delete()) { |
|
| 387 | + if ($targetUser->delete()) { |
|
| 388 | 388 | return new DataResponse(); |
| 389 | 389 | } else { |
| 390 | 390 | throw new OCSException('', 101); |
@@ -428,13 +428,13 @@ discard block |
||
| 428 | 428 | $currentLoggedInUser = $this->userSession->getUser(); |
| 429 | 429 | |
| 430 | 430 | $targetUser = $this->userManager->get($userId); |
| 431 | - if($targetUser === null || $targetUser->getUID() === $currentLoggedInUser->getUID()) { |
|
| 431 | + if ($targetUser === null || $targetUser->getUID() === $currentLoggedInUser->getUID()) { |
|
| 432 | 432 | throw new OCSException('', 101); |
| 433 | 433 | } |
| 434 | 434 | |
| 435 | 435 | // If not permitted |
| 436 | 436 | $subAdminManager = $this->groupManager->getSubAdmin(); |
| 437 | - if(!$this->groupManager->isAdmin($currentLoggedInUser->getUID()) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) { |
|
| 437 | + if (!$this->groupManager->isAdmin($currentLoggedInUser->getUID()) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) { |
|
| 438 | 438 | throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
| 439 | 439 | } |
| 440 | 440 | |
@@ -455,11 +455,11 @@ discard block |
||
| 455 | 455 | $loggedInUser = $this->userSession->getUser(); |
| 456 | 456 | |
| 457 | 457 | $targetUser = $this->userManager->get($userId); |
| 458 | - if($targetUser === null) { |
|
| 458 | + if ($targetUser === null) { |
|
| 459 | 459 | throw new OCSException('', \OCP\API::RESPOND_NOT_FOUND); |
| 460 | 460 | } |
| 461 | 461 | |
| 462 | - if($targetUser->getUID() === $loggedInUser->getUID() || $this->groupManager->isAdmin($loggedInUser->getUID())) { |
|
| 462 | + if ($targetUser->getUID() === $loggedInUser->getUID() || $this->groupManager->isAdmin($loggedInUser->getUID())) { |
|
| 463 | 463 | // Self lookup or admin lookup |
| 464 | 464 | return new DataResponse([ |
| 465 | 465 | 'groups' => $this->groupManager->getUserGroupIds($targetUser) |
@@ -468,7 +468,7 @@ discard block |
||
| 468 | 468 | $subAdminManager = $this->groupManager->getSubAdmin(); |
| 469 | 469 | |
| 470 | 470 | // Looking up someone else |
| 471 | - if($subAdminManager->isUserAccessible($loggedInUser, $targetUser)) { |
|
| 471 | + if ($subAdminManager->isUserAccessible($loggedInUser, $targetUser)) { |
|
| 472 | 472 | // Return the group that the method caller is subadmin of for the user in question |
| 473 | 473 | /** @var IGroup[] $getSubAdminsGroups */ |
| 474 | 474 | $getSubAdminsGroups = $subAdminManager->getSubAdminsGroups($loggedInUser); |
@@ -498,16 +498,16 @@ discard block |
||
| 498 | 498 | * @throws OCSException |
| 499 | 499 | */ |
| 500 | 500 | public function addToGroup($userId, $groupid = '') { |
| 501 | - if($groupid === '') { |
|
| 501 | + if ($groupid === '') { |
|
| 502 | 502 | throw new OCSException('', 101); |
| 503 | 503 | } |
| 504 | 504 | |
| 505 | 505 | $group = $this->groupManager->get($groupid); |
| 506 | 506 | $targetUser = $this->userManager->get($userId); |
| 507 | - if($group === null) { |
|
| 507 | + if ($group === null) { |
|
| 508 | 508 | throw new OCSException('', 102); |
| 509 | 509 | } |
| 510 | - if($targetUser === null) { |
|
| 510 | + if ($targetUser === null) { |
|
| 511 | 511 | throw new OCSException('', 103); |
| 512 | 512 | } |
| 513 | 513 | |
@@ -535,17 +535,17 @@ discard block |
||
| 535 | 535 | public function removeFromGroup($userId, $groupid) { |
| 536 | 536 | $loggedInUser = $this->userSession->getUser(); |
| 537 | 537 | |
| 538 | - if($groupid === null) { |
|
| 538 | + if ($groupid === null) { |
|
| 539 | 539 | throw new OCSException('', 101); |
| 540 | 540 | } |
| 541 | 541 | |
| 542 | 542 | $group = $this->groupManager->get($groupid); |
| 543 | - if($group === null) { |
|
| 543 | + if ($group === null) { |
|
| 544 | 544 | throw new OCSException('', 102); |
| 545 | 545 | } |
| 546 | 546 | |
| 547 | 547 | $targetUser = $this->userManager->get($userId); |
| 548 | - if($targetUser === null) { |
|
| 548 | + if ($targetUser === null) { |
|
| 549 | 549 | throw new OCSException('', 103); |
| 550 | 550 | } |
| 551 | 551 | |
@@ -569,7 +569,7 @@ discard block |
||
| 569 | 569 | } else if (!$this->groupManager->isAdmin($loggedInUser->getUID())) { |
| 570 | 570 | /** @var IGroup[] $subAdminGroups */ |
| 571 | 571 | $subAdminGroups = $subAdminManager->getSubAdminsGroups($loggedInUser); |
| 572 | - $subAdminGroups = array_map(function (IGroup $subAdminGroup) { |
|
| 572 | + $subAdminGroups = array_map(function(IGroup $subAdminGroup) { |
|
| 573 | 573 | return $subAdminGroup->getGID(); |
| 574 | 574 | }, $subAdminGroups); |
| 575 | 575 | $userGroups = $this->groupManager->getUserGroupIds($targetUser); |
@@ -601,15 +601,15 @@ discard block |
||
| 601 | 601 | $user = $this->userManager->get($userId); |
| 602 | 602 | |
| 603 | 603 | // Check if the user exists |
| 604 | - if($user === null) { |
|
| 604 | + if ($user === null) { |
|
| 605 | 605 | throw new OCSException('User does not exist', 101); |
| 606 | 606 | } |
| 607 | 607 | // Check if group exists |
| 608 | - if($group === null) { |
|
| 609 | - throw new OCSException('Group:'.$groupid.' does not exist', 102); |
|
| 608 | + if ($group === null) { |
|
| 609 | + throw new OCSException('Group:'.$groupid.' does not exist', 102); |
|
| 610 | 610 | } |
| 611 | 611 | // Check if trying to make subadmin of admin group |
| 612 | - if(strtolower($groupid) === 'admin') { |
|
| 612 | + if (strtolower($groupid) === 'admin') { |
|
| 613 | 613 | throw new OCSException('Cannot create subadmins for admin group', 103); |
| 614 | 614 | } |
| 615 | 615 | |
@@ -620,7 +620,7 @@ discard block |
||
| 620 | 620 | return new DataResponse(); |
| 621 | 621 | } |
| 622 | 622 | // Go |
| 623 | - if($subAdminManager->createSubAdmin($user, $group)) { |
|
| 623 | + if ($subAdminManager->createSubAdmin($user, $group)) { |
|
| 624 | 624 | return new DataResponse(); |
| 625 | 625 | } else { |
| 626 | 626 | throw new OCSException('Unknown error occurred', 103); |
@@ -643,20 +643,20 @@ discard block |
||
| 643 | 643 | $subAdminManager = $this->groupManager->getSubAdmin(); |
| 644 | 644 | |
| 645 | 645 | // Check if the user exists |
| 646 | - if($user === null) { |
|
| 646 | + if ($user === null) { |
|
| 647 | 647 | throw new OCSException('User does not exist', 101); |
| 648 | 648 | } |
| 649 | 649 | // Check if the group exists |
| 650 | - if($group === null) { |
|
| 650 | + if ($group === null) { |
|
| 651 | 651 | throw new OCSException('Group does not exist', 101); |
| 652 | 652 | } |
| 653 | 653 | // Check if they are a subadmin of this said group |
| 654 | - if(!$subAdminManager->isSubAdminofGroup($user, $group)) { |
|
| 654 | + if (!$subAdminManager->isSubAdminofGroup($user, $group)) { |
|
| 655 | 655 | throw new OCSException('User is not a subadmin of this group', 102); |
| 656 | 656 | } |
| 657 | 657 | |
| 658 | 658 | // Go |
| 659 | - if($subAdminManager->deleteSubAdmin($user, $group)) { |
|
| 659 | + if ($subAdminManager->deleteSubAdmin($user, $group)) { |
|
| 660 | 660 | return new DataResponse(); |
| 661 | 661 | } else { |
| 662 | 662 | throw new OCSException('Unknown error occurred', 103); |
@@ -673,7 +673,7 @@ discard block |
||
| 673 | 673 | public function getUserSubAdminGroups($userId) { |
| 674 | 674 | $user = $this->userManager->get($userId); |
| 675 | 675 | // Check if the user exists |
| 676 | - if($user === null) { |
|
| 676 | + if ($user === null) { |
|
| 677 | 677 | throw new OCSException('User does not exist', 101); |
| 678 | 678 | } |
| 679 | 679 | |
@@ -683,7 +683,7 @@ discard block |
||
| 683 | 683 | $groups[$key] = $group->getGID(); |
| 684 | 684 | } |
| 685 | 685 | |
| 686 | - if(!$groups) { |
|
| 686 | + if (!$groups) { |
|
| 687 | 687 | throw new OCSException('Unknown error occurred', 102); |
| 688 | 688 | } else { |
| 689 | 689 | return new DataResponse($groups); |
@@ -335,7 +335,7 @@ |
||
| 335 | 335 | } |
| 336 | 336 | if($quota === 0) { |
| 337 | 337 | $quota = 'default'; |
| 338 | - }else if($quota === -1) { |
|
| 338 | + } else if($quota === -1) { |
|
| 339 | 339 | $quota = 'none'; |
| 340 | 340 | } else { |
| 341 | 341 | $quota = \OCP\Util::humanFileSize($quota); |
@@ -46,676 +46,676 @@ |
||
| 46 | 46 | |
| 47 | 47 | class UsersController extends OCSController { |
| 48 | 48 | |
| 49 | - /** @var IUserManager */ |
|
| 50 | - private $userManager; |
|
| 51 | - /** @var IConfig */ |
|
| 52 | - private $config; |
|
| 53 | - /** @var IGroupManager|\OC\Group\Manager */ // FIXME Requires a method that is not on the interface |
|
| 54 | - private $groupManager; |
|
| 55 | - /** @var IUserSession */ |
|
| 56 | - private $userSession; |
|
| 57 | - /** @var AccountManager */ |
|
| 58 | - private $accountManager; |
|
| 59 | - /** @var ILogger */ |
|
| 60 | - private $logger; |
|
| 61 | - |
|
| 62 | - /** |
|
| 63 | - * @param string $appName |
|
| 64 | - * @param IRequest $request |
|
| 65 | - * @param IUserManager $userManager |
|
| 66 | - * @param IConfig $config |
|
| 67 | - * @param IGroupManager $groupManager |
|
| 68 | - * @param IUserSession $userSession |
|
| 69 | - * @param AccountManager $accountManager |
|
| 70 | - * @param ILogger $logger |
|
| 71 | - */ |
|
| 72 | - public function __construct($appName, |
|
| 73 | - IRequest $request, |
|
| 74 | - IUserManager $userManager, |
|
| 75 | - IConfig $config, |
|
| 76 | - IGroupManager $groupManager, |
|
| 77 | - IUserSession $userSession, |
|
| 78 | - AccountManager $accountManager, |
|
| 79 | - ILogger $logger) { |
|
| 80 | - parent::__construct($appName, $request); |
|
| 81 | - |
|
| 82 | - $this->userManager = $userManager; |
|
| 83 | - $this->config = $config; |
|
| 84 | - $this->groupManager = $groupManager; |
|
| 85 | - $this->userSession = $userSession; |
|
| 86 | - $this->accountManager = $accountManager; |
|
| 87 | - $this->logger = $logger; |
|
| 88 | - } |
|
| 89 | - |
|
| 90 | - /** |
|
| 91 | - * @NoAdminRequired |
|
| 92 | - * |
|
| 93 | - * returns a list of users |
|
| 94 | - * |
|
| 95 | - * @param string $search |
|
| 96 | - * @param int $limit |
|
| 97 | - * @param int $offset |
|
| 98 | - * @return DataResponse |
|
| 99 | - */ |
|
| 100 | - public function getUsers($search = '', $limit = null, $offset = null) { |
|
| 101 | - $user = $this->userSession->getUser(); |
|
| 102 | - $users = []; |
|
| 103 | - |
|
| 104 | - // Admin? Or SubAdmin? |
|
| 105 | - $uid = $user->getUID(); |
|
| 106 | - $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 107 | - if($this->groupManager->isAdmin($uid)){ |
|
| 108 | - $users = $this->userManager->search($search, $limit, $offset); |
|
| 109 | - } else if ($subAdminManager->isSubAdmin($user)) { |
|
| 110 | - $subAdminOfGroups = $subAdminManager->getSubAdminsGroups($user); |
|
| 111 | - foreach ($subAdminOfGroups as $key => $group) { |
|
| 112 | - $subAdminOfGroups[$key] = $group->getGID(); |
|
| 113 | - } |
|
| 114 | - |
|
| 115 | - if($offset === null) { |
|
| 116 | - $offset = 0; |
|
| 117 | - } |
|
| 118 | - |
|
| 119 | - $users = []; |
|
| 120 | - foreach ($subAdminOfGroups as $group) { |
|
| 121 | - $users = array_merge($users, $this->groupManager->displayNamesInGroup($group, $search)); |
|
| 122 | - } |
|
| 123 | - |
|
| 124 | - $users = array_slice($users, $offset, $limit); |
|
| 125 | - } |
|
| 126 | - |
|
| 127 | - $users = array_keys($users); |
|
| 128 | - |
|
| 129 | - return new DataResponse([ |
|
| 130 | - 'users' => $users |
|
| 131 | - ]); |
|
| 132 | - } |
|
| 133 | - |
|
| 134 | - /** |
|
| 135 | - * @PasswordConfirmationRequired |
|
| 136 | - * @NoAdminRequired |
|
| 137 | - * |
|
| 138 | - * @param string $userid |
|
| 139 | - * @param string $password |
|
| 140 | - * @param array $groups |
|
| 141 | - * @return DataResponse |
|
| 142 | - * @throws OCSException |
|
| 143 | - */ |
|
| 144 | - public function addUser($userid, $password, $groups = null) { |
|
| 145 | - $user = $this->userSession->getUser(); |
|
| 146 | - $isAdmin = $this->groupManager->isAdmin($user->getUID()); |
|
| 147 | - $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 148 | - |
|
| 149 | - if($this->userManager->userExists($userid)) { |
|
| 150 | - $this->logger->error('Failed addUser attempt: User already exists.', ['app' => 'ocs_api']); |
|
| 151 | - throw new OCSException('User already exists', 102); |
|
| 152 | - } |
|
| 153 | - |
|
| 154 | - if(is_array($groups)) { |
|
| 155 | - foreach ($groups as $group) { |
|
| 156 | - if(!$this->groupManager->groupExists($group)) { |
|
| 157 | - throw new OCSException('group '.$group.' does not exist', 104); |
|
| 158 | - } |
|
| 159 | - if(!$isAdmin && !$subAdminManager->isSubAdminofGroup($user, $this->groupManager->get($group))) { |
|
| 160 | - throw new OCSException('insufficient privileges for group '. $group, 105); |
|
| 161 | - } |
|
| 162 | - } |
|
| 163 | - } else { |
|
| 164 | - if(!$isAdmin) { |
|
| 165 | - throw new OCSException('no group specified (required for subadmins)', 106); |
|
| 166 | - } |
|
| 167 | - } |
|
| 168 | - |
|
| 169 | - try { |
|
| 170 | - $newUser = $this->userManager->createUser($userid, $password); |
|
| 171 | - $this->logger->info('Successful addUser call with userid: '.$userid, ['app' => 'ocs_api']); |
|
| 172 | - |
|
| 173 | - if (is_array($groups)) { |
|
| 174 | - foreach ($groups as $group) { |
|
| 175 | - $this->groupManager->get($group)->addUser($newUser); |
|
| 176 | - $this->logger->info('Added userid '.$userid.' to group '.$group, ['app' => 'ocs_api']); |
|
| 177 | - } |
|
| 178 | - } |
|
| 179 | - return new DataResponse(); |
|
| 180 | - } catch (\Exception $e) { |
|
| 181 | - $this->logger->error('Failed addUser attempt with exception: '.$e->getMessage(), ['app' => 'ocs_api']); |
|
| 182 | - throw new OCSException('Bad request', 101); |
|
| 183 | - } |
|
| 184 | - } |
|
| 185 | - |
|
| 186 | - /** |
|
| 187 | - * @NoAdminRequired |
|
| 188 | - * @NoSubAdminRequired |
|
| 189 | - * |
|
| 190 | - * gets user info |
|
| 191 | - * |
|
| 192 | - * @param string $userId |
|
| 193 | - * @return DataResponse |
|
| 194 | - * @throws OCSException |
|
| 195 | - */ |
|
| 196 | - public function getUser($userId) { |
|
| 197 | - $data = $this->getUserData($userId); |
|
| 198 | - return new DataResponse($data); |
|
| 199 | - } |
|
| 200 | - |
|
| 201 | - /** |
|
| 202 | - * @NoAdminRequired |
|
| 203 | - * @NoSubAdminRequired |
|
| 204 | - * |
|
| 205 | - * gets user info from the currently logged in user |
|
| 206 | - * |
|
| 207 | - * @return DataResponse |
|
| 208 | - * @throws OCSException |
|
| 209 | - */ |
|
| 210 | - public function getCurrentUser() { |
|
| 211 | - $user = $this->userSession->getUser(); |
|
| 212 | - if ($user) { |
|
| 213 | - $data = $this->getUserData($user->getUID()); |
|
| 214 | - // rename "displayname" to "display-name" only for this call to keep |
|
| 215 | - // the API stable. |
|
| 216 | - $data['display-name'] = $data['displayname']; |
|
| 217 | - unset($data['displayname']); |
|
| 218 | - return new DataResponse($data); |
|
| 219 | - |
|
| 220 | - } |
|
| 221 | - |
|
| 222 | - throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 223 | - } |
|
| 224 | - |
|
| 225 | - /** |
|
| 226 | - * creates a array with all user data |
|
| 227 | - * |
|
| 228 | - * @param $userId |
|
| 229 | - * @return array |
|
| 230 | - * @throws OCSException |
|
| 231 | - */ |
|
| 232 | - protected function getUserData($userId) { |
|
| 233 | - $currentLoggedInUser = $this->userSession->getUser(); |
|
| 234 | - |
|
| 235 | - $data = []; |
|
| 236 | - |
|
| 237 | - // Check if the target user exists |
|
| 238 | - $targetUserObject = $this->userManager->get($userId); |
|
| 239 | - if($targetUserObject === null) { |
|
| 240 | - throw new OCSException('The requested user could not be found', \OCP\API::RESPOND_NOT_FOUND); |
|
| 241 | - } |
|
| 242 | - |
|
| 243 | - // Admin? Or SubAdmin? |
|
| 244 | - if($this->groupManager->isAdmin($currentLoggedInUser->getUID()) |
|
| 245 | - || $this->groupManager->getSubAdmin()->isUserAccessible($currentLoggedInUser, $targetUserObject)) { |
|
| 246 | - $data['enabled'] = $this->config->getUserValue($userId, 'core', 'enabled', 'true'); |
|
| 247 | - } else { |
|
| 248 | - // Check they are looking up themselves |
|
| 249 | - if($currentLoggedInUser->getUID() !== $userId) { |
|
| 250 | - throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 251 | - } |
|
| 252 | - } |
|
| 253 | - |
|
| 254 | - $userAccount = $this->accountManager->getUser($targetUserObject); |
|
| 255 | - $groups = $this->groupManager->getUserGroups($targetUserObject); |
|
| 256 | - $gids = []; |
|
| 257 | - foreach ($groups as $group) { |
|
| 258 | - $gids[] = $group->getDisplayName(); |
|
| 259 | - } |
|
| 260 | - |
|
| 261 | - // Find the data |
|
| 262 | - $data['id'] = $targetUserObject->getUID(); |
|
| 263 | - $data['quota'] = $this->fillStorageInfo($userId); |
|
| 264 | - $data['email'] = $targetUserObject->getEMailAddress(); |
|
| 265 | - $data['displayname'] = $targetUserObject->getDisplayName(); |
|
| 266 | - $data['phone'] = $userAccount[\OC\Accounts\AccountManager::PROPERTY_PHONE]['value']; |
|
| 267 | - $data['address'] = $userAccount[\OC\Accounts\AccountManager::PROPERTY_ADDRESS]['value']; |
|
| 268 | - $data['webpage'] = $userAccount[\OC\Accounts\AccountManager::PROPERTY_WEBSITE]['value']; |
|
| 269 | - $data['twitter'] = $userAccount[\OC\Accounts\AccountManager::PROPERTY_TWITTER]['value']; |
|
| 270 | - $data['groups'] = $gids; |
|
| 271 | - |
|
| 272 | - return $data; |
|
| 273 | - } |
|
| 274 | - |
|
| 275 | - /** |
|
| 276 | - * @NoAdminRequired |
|
| 277 | - * @NoSubAdminRequired |
|
| 278 | - * @PasswordConfirmationRequired |
|
| 279 | - * |
|
| 280 | - * edit users |
|
| 281 | - * |
|
| 282 | - * @param string $userId |
|
| 283 | - * @param string $key |
|
| 284 | - * @param string $value |
|
| 285 | - * @return DataResponse |
|
| 286 | - * @throws OCSException |
|
| 287 | - * @throws OCSForbiddenException |
|
| 288 | - */ |
|
| 289 | - public function editUser($userId, $key, $value) { |
|
| 290 | - $currentLoggedInUser = $this->userSession->getUser(); |
|
| 291 | - |
|
| 292 | - $targetUser = $this->userManager->get($userId); |
|
| 293 | - if($targetUser === null) { |
|
| 294 | - throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 295 | - } |
|
| 296 | - |
|
| 297 | - $permittedFields = []; |
|
| 298 | - if($userId === $currentLoggedInUser->getUID()) { |
|
| 299 | - // Editing self (display, email) |
|
| 300 | - $permittedFields[] = 'display'; |
|
| 301 | - $permittedFields[] = 'email'; |
|
| 302 | - $permittedFields[] = 'password'; |
|
| 303 | - // If admin they can edit their own quota |
|
| 304 | - if($this->groupManager->isAdmin($currentLoggedInUser->getUID())) { |
|
| 305 | - $permittedFields[] = 'quota'; |
|
| 306 | - } |
|
| 307 | - } else { |
|
| 308 | - // Check if admin / subadmin |
|
| 309 | - $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 310 | - if($subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser) |
|
| 311 | - || $this->groupManager->isAdmin($currentLoggedInUser->getUID())) { |
|
| 312 | - // They have permissions over the user |
|
| 313 | - $permittedFields[] = 'display'; |
|
| 314 | - $permittedFields[] = 'quota'; |
|
| 315 | - $permittedFields[] = 'password'; |
|
| 316 | - $permittedFields[] = 'email'; |
|
| 317 | - } else { |
|
| 318 | - // No rights |
|
| 319 | - throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 320 | - } |
|
| 321 | - } |
|
| 322 | - // Check if permitted to edit this field |
|
| 323 | - if(!in_array($key, $permittedFields)) { |
|
| 324 | - throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 325 | - } |
|
| 326 | - // Process the edit |
|
| 327 | - switch($key) { |
|
| 328 | - case 'display': |
|
| 329 | - $targetUser->setDisplayName($value); |
|
| 330 | - break; |
|
| 331 | - case 'quota': |
|
| 332 | - $quota = $value; |
|
| 333 | - if($quota !== 'none' && $quota !== 'default') { |
|
| 334 | - if (is_numeric($quota)) { |
|
| 335 | - $quota = (float) $quota; |
|
| 336 | - } else { |
|
| 337 | - $quota = \OCP\Util::computerFileSize($quota); |
|
| 338 | - } |
|
| 339 | - if ($quota === false) { |
|
| 340 | - throw new OCSException('Invalid quota value '.$value, 103); |
|
| 341 | - } |
|
| 342 | - if($quota === 0) { |
|
| 343 | - $quota = 'default'; |
|
| 344 | - }else if($quota === -1) { |
|
| 345 | - $quota = 'none'; |
|
| 346 | - } else { |
|
| 347 | - $quota = \OCP\Util::humanFileSize($quota); |
|
| 348 | - } |
|
| 349 | - } |
|
| 350 | - $targetUser->setQuota($quota); |
|
| 351 | - break; |
|
| 352 | - case 'password': |
|
| 353 | - $targetUser->setPassword($value); |
|
| 354 | - break; |
|
| 355 | - case 'email': |
|
| 356 | - if(filter_var($value, FILTER_VALIDATE_EMAIL)) { |
|
| 357 | - $targetUser->setEMailAddress($value); |
|
| 358 | - } else { |
|
| 359 | - throw new OCSException('', 102); |
|
| 360 | - } |
|
| 361 | - break; |
|
| 362 | - default: |
|
| 363 | - throw new OCSException('', 103); |
|
| 364 | - } |
|
| 365 | - return new DataResponse(); |
|
| 366 | - } |
|
| 367 | - |
|
| 368 | - /** |
|
| 369 | - * @PasswordConfirmationRequired |
|
| 370 | - * @NoAdminRequired |
|
| 371 | - * |
|
| 372 | - * @param string $userId |
|
| 373 | - * @return DataResponse |
|
| 374 | - * @throws OCSException |
|
| 375 | - * @throws OCSForbiddenException |
|
| 376 | - */ |
|
| 377 | - public function deleteUser($userId) { |
|
| 378 | - $currentLoggedInUser = $this->userSession->getUser(); |
|
| 379 | - |
|
| 380 | - $targetUser = $this->userManager->get($userId); |
|
| 381 | - |
|
| 382 | - if($targetUser === null || $targetUser->getUID() === $currentLoggedInUser->getUID()) { |
|
| 383 | - throw new OCSException('', 101); |
|
| 384 | - } |
|
| 385 | - |
|
| 386 | - // If not permitted |
|
| 387 | - $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 388 | - if(!$this->groupManager->isAdmin($currentLoggedInUser->getUID()) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) { |
|
| 389 | - throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 390 | - } |
|
| 391 | - |
|
| 392 | - // Go ahead with the delete |
|
| 393 | - if($targetUser->delete()) { |
|
| 394 | - return new DataResponse(); |
|
| 395 | - } else { |
|
| 396 | - throw new OCSException('', 101); |
|
| 397 | - } |
|
| 398 | - } |
|
| 399 | - |
|
| 400 | - /** |
|
| 401 | - * @PasswordConfirmationRequired |
|
| 402 | - * @NoAdminRequired |
|
| 403 | - * |
|
| 404 | - * @param string $userId |
|
| 405 | - * @return DataResponse |
|
| 406 | - * @throws OCSException |
|
| 407 | - * @throws OCSForbiddenException |
|
| 408 | - */ |
|
| 409 | - public function disableUser($userId) { |
|
| 410 | - return $this->setEnabled($userId, false); |
|
| 411 | - } |
|
| 412 | - |
|
| 413 | - /** |
|
| 414 | - * @PasswordConfirmationRequired |
|
| 415 | - * @NoAdminRequired |
|
| 416 | - * |
|
| 417 | - * @param string $userId |
|
| 418 | - * @return DataResponse |
|
| 419 | - * @throws OCSException |
|
| 420 | - * @throws OCSForbiddenException |
|
| 421 | - */ |
|
| 422 | - public function enableUser($userId) { |
|
| 423 | - return $this->setEnabled($userId, true); |
|
| 424 | - } |
|
| 425 | - |
|
| 426 | - /** |
|
| 427 | - * @param string $userId |
|
| 428 | - * @param bool $value |
|
| 429 | - * @return DataResponse |
|
| 430 | - * @throws OCSException |
|
| 431 | - * @throws OCSForbiddenException |
|
| 432 | - */ |
|
| 433 | - private function setEnabled($userId, $value) { |
|
| 434 | - $currentLoggedInUser = $this->userSession->getUser(); |
|
| 435 | - |
|
| 436 | - $targetUser = $this->userManager->get($userId); |
|
| 437 | - if($targetUser === null || $targetUser->getUID() === $currentLoggedInUser->getUID()) { |
|
| 438 | - throw new OCSException('', 101); |
|
| 439 | - } |
|
| 440 | - |
|
| 441 | - // If not permitted |
|
| 442 | - $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 443 | - if(!$this->groupManager->isAdmin($currentLoggedInUser->getUID()) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) { |
|
| 444 | - throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 445 | - } |
|
| 446 | - |
|
| 447 | - // enable/disable the user now |
|
| 448 | - $targetUser->setEnabled($value); |
|
| 449 | - return new DataResponse(); |
|
| 450 | - } |
|
| 451 | - |
|
| 452 | - /** |
|
| 453 | - * @NoAdminRequired |
|
| 454 | - * @NoSubAdminRequired |
|
| 455 | - * |
|
| 456 | - * @param string $userId |
|
| 457 | - * @return DataResponse |
|
| 458 | - * @throws OCSException |
|
| 459 | - */ |
|
| 460 | - public function getUsersGroups($userId) { |
|
| 461 | - $loggedInUser = $this->userSession->getUser(); |
|
| 462 | - |
|
| 463 | - $targetUser = $this->userManager->get($userId); |
|
| 464 | - if($targetUser === null) { |
|
| 465 | - throw new OCSException('', \OCP\API::RESPOND_NOT_FOUND); |
|
| 466 | - } |
|
| 467 | - |
|
| 468 | - if($targetUser->getUID() === $loggedInUser->getUID() || $this->groupManager->isAdmin($loggedInUser->getUID())) { |
|
| 469 | - // Self lookup or admin lookup |
|
| 470 | - return new DataResponse([ |
|
| 471 | - 'groups' => $this->groupManager->getUserGroupIds($targetUser) |
|
| 472 | - ]); |
|
| 473 | - } else { |
|
| 474 | - $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 475 | - |
|
| 476 | - // Looking up someone else |
|
| 477 | - if($subAdminManager->isUserAccessible($loggedInUser, $targetUser)) { |
|
| 478 | - // Return the group that the method caller is subadmin of for the user in question |
|
| 479 | - /** @var IGroup[] $getSubAdminsGroups */ |
|
| 480 | - $getSubAdminsGroups = $subAdminManager->getSubAdminsGroups($loggedInUser); |
|
| 481 | - foreach ($getSubAdminsGroups as $key => $group) { |
|
| 482 | - $getSubAdminsGroups[$key] = $group->getGID(); |
|
| 483 | - } |
|
| 484 | - $groups = array_intersect( |
|
| 485 | - $getSubAdminsGroups, |
|
| 486 | - $this->groupManager->getUserGroupIds($targetUser) |
|
| 487 | - ); |
|
| 488 | - return new DataResponse(['groups' => $groups]); |
|
| 489 | - } else { |
|
| 490 | - // Not permitted |
|
| 491 | - throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 492 | - } |
|
| 493 | - } |
|
| 494 | - |
|
| 495 | - } |
|
| 496 | - |
|
| 497 | - /** |
|
| 498 | - * @PasswordConfirmationRequired |
|
| 499 | - * @NoAdminRequired |
|
| 500 | - * |
|
| 501 | - * @param string $userId |
|
| 502 | - * @param string $groupid |
|
| 503 | - * @return DataResponse |
|
| 504 | - * @throws OCSException |
|
| 505 | - */ |
|
| 506 | - public function addToGroup($userId, $groupid = '') { |
|
| 507 | - if($groupid === '') { |
|
| 508 | - throw new OCSException('', 101); |
|
| 509 | - } |
|
| 510 | - |
|
| 511 | - $group = $this->groupManager->get($groupid); |
|
| 512 | - $targetUser = $this->userManager->get($userId); |
|
| 513 | - if($group === null) { |
|
| 514 | - throw new OCSException('', 102); |
|
| 515 | - } |
|
| 516 | - if($targetUser === null) { |
|
| 517 | - throw new OCSException('', 103); |
|
| 518 | - } |
|
| 519 | - |
|
| 520 | - // If they're not an admin, check they are a subadmin of the group in question |
|
| 521 | - $loggedInUser = $this->userSession->getUser(); |
|
| 522 | - $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 523 | - if (!$this->groupManager->isAdmin($loggedInUser->getUID()) && !$subAdminManager->isSubAdminOfGroup($loggedInUser, $group)) { |
|
| 524 | - throw new OCSException('', 104); |
|
| 525 | - } |
|
| 526 | - |
|
| 527 | - // Add user to group |
|
| 528 | - $group->addUser($targetUser); |
|
| 529 | - return new DataResponse(); |
|
| 530 | - } |
|
| 531 | - |
|
| 532 | - /** |
|
| 533 | - * @PasswordConfirmationRequired |
|
| 534 | - * @NoAdminRequired |
|
| 535 | - * |
|
| 536 | - * @param string $userId |
|
| 537 | - * @param string $groupid |
|
| 538 | - * @return DataResponse |
|
| 539 | - * @throws OCSException |
|
| 540 | - */ |
|
| 541 | - public function removeFromGroup($userId, $groupid) { |
|
| 542 | - $loggedInUser = $this->userSession->getUser(); |
|
| 543 | - |
|
| 544 | - if($groupid === null) { |
|
| 545 | - throw new OCSException('', 101); |
|
| 546 | - } |
|
| 547 | - |
|
| 548 | - $group = $this->groupManager->get($groupid); |
|
| 549 | - if($group === null) { |
|
| 550 | - throw new OCSException('', 102); |
|
| 551 | - } |
|
| 552 | - |
|
| 553 | - $targetUser = $this->userManager->get($userId); |
|
| 554 | - if($targetUser === null) { |
|
| 555 | - throw new OCSException('', 103); |
|
| 556 | - } |
|
| 557 | - |
|
| 558 | - // If they're not an admin, check they are a subadmin of the group in question |
|
| 559 | - $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 560 | - if (!$this->groupManager->isAdmin($loggedInUser->getUID()) && !$subAdminManager->isSubAdminOfGroup($loggedInUser, $group)) { |
|
| 561 | - throw new OCSException('', 104); |
|
| 562 | - } |
|
| 563 | - |
|
| 564 | - // Check they aren't removing themselves from 'admin' or their 'subadmin; group |
|
| 565 | - if ($userId === $loggedInUser->getUID()) { |
|
| 566 | - if ($this->groupManager->isAdmin($loggedInUser->getUID())) { |
|
| 567 | - if ($group->getGID() === 'admin') { |
|
| 568 | - throw new OCSException('Cannot remove yourself from the admin group', 105); |
|
| 569 | - } |
|
| 570 | - } else { |
|
| 571 | - // Not an admin, so the user must be a subadmin of this group, but that is not allowed. |
|
| 572 | - throw new OCSException('Cannot remove yourself from this group as you are a SubAdmin', 105); |
|
| 573 | - } |
|
| 574 | - |
|
| 575 | - } else if (!$this->groupManager->isAdmin($loggedInUser->getUID())) { |
|
| 576 | - /** @var IGroup[] $subAdminGroups */ |
|
| 577 | - $subAdminGroups = $subAdminManager->getSubAdminsGroups($loggedInUser); |
|
| 578 | - $subAdminGroups = array_map(function (IGroup $subAdminGroup) { |
|
| 579 | - return $subAdminGroup->getGID(); |
|
| 580 | - }, $subAdminGroups); |
|
| 581 | - $userGroups = $this->groupManager->getUserGroupIds($targetUser); |
|
| 582 | - $userSubAdminGroups = array_intersect($subAdminGroups, $userGroups); |
|
| 583 | - |
|
| 584 | - if (count($userSubAdminGroups) <= 1) { |
|
| 585 | - // Subadmin must not be able to remove a user from all their subadmin groups. |
|
| 586 | - throw new OCSException('Cannot remove user from this group as this is the only remaining group you are a SubAdmin of', 105); |
|
| 587 | - } |
|
| 588 | - } |
|
| 589 | - |
|
| 590 | - // Remove user from group |
|
| 591 | - $group->removeUser($targetUser); |
|
| 592 | - return new DataResponse(); |
|
| 593 | - } |
|
| 594 | - |
|
| 595 | - /** |
|
| 596 | - * Creates a subadmin |
|
| 597 | - * |
|
| 598 | - * @PasswordConfirmationRequired |
|
| 599 | - * |
|
| 600 | - * @param string $userId |
|
| 601 | - * @param string $groupid |
|
| 602 | - * @return DataResponse |
|
| 603 | - * @throws OCSException |
|
| 604 | - */ |
|
| 605 | - public function addSubAdmin($userId, $groupid) { |
|
| 606 | - $group = $this->groupManager->get($groupid); |
|
| 607 | - $user = $this->userManager->get($userId); |
|
| 608 | - |
|
| 609 | - // Check if the user exists |
|
| 610 | - if($user === null) { |
|
| 611 | - throw new OCSException('User does not exist', 101); |
|
| 612 | - } |
|
| 613 | - // Check if group exists |
|
| 614 | - if($group === null) { |
|
| 615 | - throw new OCSException('Group:'.$groupid.' does not exist', 102); |
|
| 616 | - } |
|
| 617 | - // Check if trying to make subadmin of admin group |
|
| 618 | - if(strtolower($groupid) === 'admin') { |
|
| 619 | - throw new OCSException('Cannot create subadmins for admin group', 103); |
|
| 620 | - } |
|
| 621 | - |
|
| 622 | - $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 623 | - |
|
| 624 | - // We cannot be subadmin twice |
|
| 625 | - if ($subAdminManager->isSubAdminofGroup($user, $group)) { |
|
| 626 | - return new DataResponse(); |
|
| 627 | - } |
|
| 628 | - // Go |
|
| 629 | - if($subAdminManager->createSubAdmin($user, $group)) { |
|
| 630 | - return new DataResponse(); |
|
| 631 | - } else { |
|
| 632 | - throw new OCSException('Unknown error occurred', 103); |
|
| 633 | - } |
|
| 634 | - } |
|
| 635 | - |
|
| 636 | - /** |
|
| 637 | - * Removes a subadmin from a group |
|
| 638 | - * |
|
| 639 | - * @PasswordConfirmationRequired |
|
| 640 | - * |
|
| 641 | - * @param string $userId |
|
| 642 | - * @param string $groupid |
|
| 643 | - * @return DataResponse |
|
| 644 | - * @throws OCSException |
|
| 645 | - */ |
|
| 646 | - public function removeSubAdmin($userId, $groupid) { |
|
| 647 | - $group = $this->groupManager->get($groupid); |
|
| 648 | - $user = $this->userManager->get($userId); |
|
| 649 | - $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 650 | - |
|
| 651 | - // Check if the user exists |
|
| 652 | - if($user === null) { |
|
| 653 | - throw new OCSException('User does not exist', 101); |
|
| 654 | - } |
|
| 655 | - // Check if the group exists |
|
| 656 | - if($group === null) { |
|
| 657 | - throw new OCSException('Group does not exist', 101); |
|
| 658 | - } |
|
| 659 | - // Check if they are a subadmin of this said group |
|
| 660 | - if(!$subAdminManager->isSubAdminofGroup($user, $group)) { |
|
| 661 | - throw new OCSException('User is not a subadmin of this group', 102); |
|
| 662 | - } |
|
| 663 | - |
|
| 664 | - // Go |
|
| 665 | - if($subAdminManager->deleteSubAdmin($user, $group)) { |
|
| 666 | - return new DataResponse(); |
|
| 667 | - } else { |
|
| 668 | - throw new OCSException('Unknown error occurred', 103); |
|
| 669 | - } |
|
| 670 | - } |
|
| 671 | - |
|
| 672 | - /** |
|
| 673 | - * Get the groups a user is a subadmin of |
|
| 674 | - * |
|
| 675 | - * @param string $userId |
|
| 676 | - * @return DataResponse |
|
| 677 | - * @throws OCSException |
|
| 678 | - */ |
|
| 679 | - public function getUserSubAdminGroups($userId) { |
|
| 680 | - $user = $this->userManager->get($userId); |
|
| 681 | - // Check if the user exists |
|
| 682 | - if($user === null) { |
|
| 683 | - throw new OCSException('User does not exist', 101); |
|
| 684 | - } |
|
| 685 | - |
|
| 686 | - // Get the subadmin groups |
|
| 687 | - $groups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($user); |
|
| 688 | - foreach ($groups as $key => $group) { |
|
| 689 | - $groups[$key] = $group->getGID(); |
|
| 690 | - } |
|
| 691 | - |
|
| 692 | - if(!$groups) { |
|
| 693 | - throw new OCSException('Unknown error occurred', 102); |
|
| 694 | - } else { |
|
| 695 | - return new DataResponse($groups); |
|
| 696 | - } |
|
| 697 | - } |
|
| 698 | - |
|
| 699 | - /** |
|
| 700 | - * @param string $userId |
|
| 701 | - * @return array |
|
| 702 | - * @throws \OCP\Files\NotFoundException |
|
| 703 | - */ |
|
| 704 | - protected function fillStorageInfo($userId) { |
|
| 705 | - try { |
|
| 706 | - \OC_Util::tearDownFS(); |
|
| 707 | - \OC_Util::setupFS($userId); |
|
| 708 | - $storage = OC_Helper::getStorageInfo('/'); |
|
| 709 | - $data = [ |
|
| 710 | - 'free' => $storage['free'], |
|
| 711 | - 'used' => $storage['used'], |
|
| 712 | - 'total' => $storage['total'], |
|
| 713 | - 'relative' => $storage['relative'], |
|
| 714 | - 'quota' => $storage['quota'], |
|
| 715 | - ]; |
|
| 716 | - } catch (NotFoundException $ex) { |
|
| 717 | - $data = []; |
|
| 718 | - } |
|
| 719 | - return $data; |
|
| 720 | - } |
|
| 49 | + /** @var IUserManager */ |
|
| 50 | + private $userManager; |
|
| 51 | + /** @var IConfig */ |
|
| 52 | + private $config; |
|
| 53 | + /** @var IGroupManager|\OC\Group\Manager */ // FIXME Requires a method that is not on the interface |
|
| 54 | + private $groupManager; |
|
| 55 | + /** @var IUserSession */ |
|
| 56 | + private $userSession; |
|
| 57 | + /** @var AccountManager */ |
|
| 58 | + private $accountManager; |
|
| 59 | + /** @var ILogger */ |
|
| 60 | + private $logger; |
|
| 61 | + |
|
| 62 | + /** |
|
| 63 | + * @param string $appName |
|
| 64 | + * @param IRequest $request |
|
| 65 | + * @param IUserManager $userManager |
|
| 66 | + * @param IConfig $config |
|
| 67 | + * @param IGroupManager $groupManager |
|
| 68 | + * @param IUserSession $userSession |
|
| 69 | + * @param AccountManager $accountManager |
|
| 70 | + * @param ILogger $logger |
|
| 71 | + */ |
|
| 72 | + public function __construct($appName, |
|
| 73 | + IRequest $request, |
|
| 74 | + IUserManager $userManager, |
|
| 75 | + IConfig $config, |
|
| 76 | + IGroupManager $groupManager, |
|
| 77 | + IUserSession $userSession, |
|
| 78 | + AccountManager $accountManager, |
|
| 79 | + ILogger $logger) { |
|
| 80 | + parent::__construct($appName, $request); |
|
| 81 | + |
|
| 82 | + $this->userManager = $userManager; |
|
| 83 | + $this->config = $config; |
|
| 84 | + $this->groupManager = $groupManager; |
|
| 85 | + $this->userSession = $userSession; |
|
| 86 | + $this->accountManager = $accountManager; |
|
| 87 | + $this->logger = $logger; |
|
| 88 | + } |
|
| 89 | + |
|
| 90 | + /** |
|
| 91 | + * @NoAdminRequired |
|
| 92 | + * |
|
| 93 | + * returns a list of users |
|
| 94 | + * |
|
| 95 | + * @param string $search |
|
| 96 | + * @param int $limit |
|
| 97 | + * @param int $offset |
|
| 98 | + * @return DataResponse |
|
| 99 | + */ |
|
| 100 | + public function getUsers($search = '', $limit = null, $offset = null) { |
|
| 101 | + $user = $this->userSession->getUser(); |
|
| 102 | + $users = []; |
|
| 103 | + |
|
| 104 | + // Admin? Or SubAdmin? |
|
| 105 | + $uid = $user->getUID(); |
|
| 106 | + $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 107 | + if($this->groupManager->isAdmin($uid)){ |
|
| 108 | + $users = $this->userManager->search($search, $limit, $offset); |
|
| 109 | + } else if ($subAdminManager->isSubAdmin($user)) { |
|
| 110 | + $subAdminOfGroups = $subAdminManager->getSubAdminsGroups($user); |
|
| 111 | + foreach ($subAdminOfGroups as $key => $group) { |
|
| 112 | + $subAdminOfGroups[$key] = $group->getGID(); |
|
| 113 | + } |
|
| 114 | + |
|
| 115 | + if($offset === null) { |
|
| 116 | + $offset = 0; |
|
| 117 | + } |
|
| 118 | + |
|
| 119 | + $users = []; |
|
| 120 | + foreach ($subAdminOfGroups as $group) { |
|
| 121 | + $users = array_merge($users, $this->groupManager->displayNamesInGroup($group, $search)); |
|
| 122 | + } |
|
| 123 | + |
|
| 124 | + $users = array_slice($users, $offset, $limit); |
|
| 125 | + } |
|
| 126 | + |
|
| 127 | + $users = array_keys($users); |
|
| 128 | + |
|
| 129 | + return new DataResponse([ |
|
| 130 | + 'users' => $users |
|
| 131 | + ]); |
|
| 132 | + } |
|
| 133 | + |
|
| 134 | + /** |
|
| 135 | + * @PasswordConfirmationRequired |
|
| 136 | + * @NoAdminRequired |
|
| 137 | + * |
|
| 138 | + * @param string $userid |
|
| 139 | + * @param string $password |
|
| 140 | + * @param array $groups |
|
| 141 | + * @return DataResponse |
|
| 142 | + * @throws OCSException |
|
| 143 | + */ |
|
| 144 | + public function addUser($userid, $password, $groups = null) { |
|
| 145 | + $user = $this->userSession->getUser(); |
|
| 146 | + $isAdmin = $this->groupManager->isAdmin($user->getUID()); |
|
| 147 | + $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 148 | + |
|
| 149 | + if($this->userManager->userExists($userid)) { |
|
| 150 | + $this->logger->error('Failed addUser attempt: User already exists.', ['app' => 'ocs_api']); |
|
| 151 | + throw new OCSException('User already exists', 102); |
|
| 152 | + } |
|
| 153 | + |
|
| 154 | + if(is_array($groups)) { |
|
| 155 | + foreach ($groups as $group) { |
|
| 156 | + if(!$this->groupManager->groupExists($group)) { |
|
| 157 | + throw new OCSException('group '.$group.' does not exist', 104); |
|
| 158 | + } |
|
| 159 | + if(!$isAdmin && !$subAdminManager->isSubAdminofGroup($user, $this->groupManager->get($group))) { |
|
| 160 | + throw new OCSException('insufficient privileges for group '. $group, 105); |
|
| 161 | + } |
|
| 162 | + } |
|
| 163 | + } else { |
|
| 164 | + if(!$isAdmin) { |
|
| 165 | + throw new OCSException('no group specified (required for subadmins)', 106); |
|
| 166 | + } |
|
| 167 | + } |
|
| 168 | + |
|
| 169 | + try { |
|
| 170 | + $newUser = $this->userManager->createUser($userid, $password); |
|
| 171 | + $this->logger->info('Successful addUser call with userid: '.$userid, ['app' => 'ocs_api']); |
|
| 172 | + |
|
| 173 | + if (is_array($groups)) { |
|
| 174 | + foreach ($groups as $group) { |
|
| 175 | + $this->groupManager->get($group)->addUser($newUser); |
|
| 176 | + $this->logger->info('Added userid '.$userid.' to group '.$group, ['app' => 'ocs_api']); |
|
| 177 | + } |
|
| 178 | + } |
|
| 179 | + return new DataResponse(); |
|
| 180 | + } catch (\Exception $e) { |
|
| 181 | + $this->logger->error('Failed addUser attempt with exception: '.$e->getMessage(), ['app' => 'ocs_api']); |
|
| 182 | + throw new OCSException('Bad request', 101); |
|
| 183 | + } |
|
| 184 | + } |
|
| 185 | + |
|
| 186 | + /** |
|
| 187 | + * @NoAdminRequired |
|
| 188 | + * @NoSubAdminRequired |
|
| 189 | + * |
|
| 190 | + * gets user info |
|
| 191 | + * |
|
| 192 | + * @param string $userId |
|
| 193 | + * @return DataResponse |
|
| 194 | + * @throws OCSException |
|
| 195 | + */ |
|
| 196 | + public function getUser($userId) { |
|
| 197 | + $data = $this->getUserData($userId); |
|
| 198 | + return new DataResponse($data); |
|
| 199 | + } |
|
| 200 | + |
|
| 201 | + /** |
|
| 202 | + * @NoAdminRequired |
|
| 203 | + * @NoSubAdminRequired |
|
| 204 | + * |
|
| 205 | + * gets user info from the currently logged in user |
|
| 206 | + * |
|
| 207 | + * @return DataResponse |
|
| 208 | + * @throws OCSException |
|
| 209 | + */ |
|
| 210 | + public function getCurrentUser() { |
|
| 211 | + $user = $this->userSession->getUser(); |
|
| 212 | + if ($user) { |
|
| 213 | + $data = $this->getUserData($user->getUID()); |
|
| 214 | + // rename "displayname" to "display-name" only for this call to keep |
|
| 215 | + // the API stable. |
|
| 216 | + $data['display-name'] = $data['displayname']; |
|
| 217 | + unset($data['displayname']); |
|
| 218 | + return new DataResponse($data); |
|
| 219 | + |
|
| 220 | + } |
|
| 221 | + |
|
| 222 | + throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 223 | + } |
|
| 224 | + |
|
| 225 | + /** |
|
| 226 | + * creates a array with all user data |
|
| 227 | + * |
|
| 228 | + * @param $userId |
|
| 229 | + * @return array |
|
| 230 | + * @throws OCSException |
|
| 231 | + */ |
|
| 232 | + protected function getUserData($userId) { |
|
| 233 | + $currentLoggedInUser = $this->userSession->getUser(); |
|
| 234 | + |
|
| 235 | + $data = []; |
|
| 236 | + |
|
| 237 | + // Check if the target user exists |
|
| 238 | + $targetUserObject = $this->userManager->get($userId); |
|
| 239 | + if($targetUserObject === null) { |
|
| 240 | + throw new OCSException('The requested user could not be found', \OCP\API::RESPOND_NOT_FOUND); |
|
| 241 | + } |
|
| 242 | + |
|
| 243 | + // Admin? Or SubAdmin? |
|
| 244 | + if($this->groupManager->isAdmin($currentLoggedInUser->getUID()) |
|
| 245 | + || $this->groupManager->getSubAdmin()->isUserAccessible($currentLoggedInUser, $targetUserObject)) { |
|
| 246 | + $data['enabled'] = $this->config->getUserValue($userId, 'core', 'enabled', 'true'); |
|
| 247 | + } else { |
|
| 248 | + // Check they are looking up themselves |
|
| 249 | + if($currentLoggedInUser->getUID() !== $userId) { |
|
| 250 | + throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 251 | + } |
|
| 252 | + } |
|
| 253 | + |
|
| 254 | + $userAccount = $this->accountManager->getUser($targetUserObject); |
|
| 255 | + $groups = $this->groupManager->getUserGroups($targetUserObject); |
|
| 256 | + $gids = []; |
|
| 257 | + foreach ($groups as $group) { |
|
| 258 | + $gids[] = $group->getDisplayName(); |
|
| 259 | + } |
|
| 260 | + |
|
| 261 | + // Find the data |
|
| 262 | + $data['id'] = $targetUserObject->getUID(); |
|
| 263 | + $data['quota'] = $this->fillStorageInfo($userId); |
|
| 264 | + $data['email'] = $targetUserObject->getEMailAddress(); |
|
| 265 | + $data['displayname'] = $targetUserObject->getDisplayName(); |
|
| 266 | + $data['phone'] = $userAccount[\OC\Accounts\AccountManager::PROPERTY_PHONE]['value']; |
|
| 267 | + $data['address'] = $userAccount[\OC\Accounts\AccountManager::PROPERTY_ADDRESS]['value']; |
|
| 268 | + $data['webpage'] = $userAccount[\OC\Accounts\AccountManager::PROPERTY_WEBSITE]['value']; |
|
| 269 | + $data['twitter'] = $userAccount[\OC\Accounts\AccountManager::PROPERTY_TWITTER]['value']; |
|
| 270 | + $data['groups'] = $gids; |
|
| 271 | + |
|
| 272 | + return $data; |
|
| 273 | + } |
|
| 274 | + |
|
| 275 | + /** |
|
| 276 | + * @NoAdminRequired |
|
| 277 | + * @NoSubAdminRequired |
|
| 278 | + * @PasswordConfirmationRequired |
|
| 279 | + * |
|
| 280 | + * edit users |
|
| 281 | + * |
|
| 282 | + * @param string $userId |
|
| 283 | + * @param string $key |
|
| 284 | + * @param string $value |
|
| 285 | + * @return DataResponse |
|
| 286 | + * @throws OCSException |
|
| 287 | + * @throws OCSForbiddenException |
|
| 288 | + */ |
|
| 289 | + public function editUser($userId, $key, $value) { |
|
| 290 | + $currentLoggedInUser = $this->userSession->getUser(); |
|
| 291 | + |
|
| 292 | + $targetUser = $this->userManager->get($userId); |
|
| 293 | + if($targetUser === null) { |
|
| 294 | + throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 295 | + } |
|
| 296 | + |
|
| 297 | + $permittedFields = []; |
|
| 298 | + if($userId === $currentLoggedInUser->getUID()) { |
|
| 299 | + // Editing self (display, email) |
|
| 300 | + $permittedFields[] = 'display'; |
|
| 301 | + $permittedFields[] = 'email'; |
|
| 302 | + $permittedFields[] = 'password'; |
|
| 303 | + // If admin they can edit their own quota |
|
| 304 | + if($this->groupManager->isAdmin($currentLoggedInUser->getUID())) { |
|
| 305 | + $permittedFields[] = 'quota'; |
|
| 306 | + } |
|
| 307 | + } else { |
|
| 308 | + // Check if admin / subadmin |
|
| 309 | + $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 310 | + if($subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser) |
|
| 311 | + || $this->groupManager->isAdmin($currentLoggedInUser->getUID())) { |
|
| 312 | + // They have permissions over the user |
|
| 313 | + $permittedFields[] = 'display'; |
|
| 314 | + $permittedFields[] = 'quota'; |
|
| 315 | + $permittedFields[] = 'password'; |
|
| 316 | + $permittedFields[] = 'email'; |
|
| 317 | + } else { |
|
| 318 | + // No rights |
|
| 319 | + throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 320 | + } |
|
| 321 | + } |
|
| 322 | + // Check if permitted to edit this field |
|
| 323 | + if(!in_array($key, $permittedFields)) { |
|
| 324 | + throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 325 | + } |
|
| 326 | + // Process the edit |
|
| 327 | + switch($key) { |
|
| 328 | + case 'display': |
|
| 329 | + $targetUser->setDisplayName($value); |
|
| 330 | + break; |
|
| 331 | + case 'quota': |
|
| 332 | + $quota = $value; |
|
| 333 | + if($quota !== 'none' && $quota !== 'default') { |
|
| 334 | + if (is_numeric($quota)) { |
|
| 335 | + $quota = (float) $quota; |
|
| 336 | + } else { |
|
| 337 | + $quota = \OCP\Util::computerFileSize($quota); |
|
| 338 | + } |
|
| 339 | + if ($quota === false) { |
|
| 340 | + throw new OCSException('Invalid quota value '.$value, 103); |
|
| 341 | + } |
|
| 342 | + if($quota === 0) { |
|
| 343 | + $quota = 'default'; |
|
| 344 | + }else if($quota === -1) { |
|
| 345 | + $quota = 'none'; |
|
| 346 | + } else { |
|
| 347 | + $quota = \OCP\Util::humanFileSize($quota); |
|
| 348 | + } |
|
| 349 | + } |
|
| 350 | + $targetUser->setQuota($quota); |
|
| 351 | + break; |
|
| 352 | + case 'password': |
|
| 353 | + $targetUser->setPassword($value); |
|
| 354 | + break; |
|
| 355 | + case 'email': |
|
| 356 | + if(filter_var($value, FILTER_VALIDATE_EMAIL)) { |
|
| 357 | + $targetUser->setEMailAddress($value); |
|
| 358 | + } else { |
|
| 359 | + throw new OCSException('', 102); |
|
| 360 | + } |
|
| 361 | + break; |
|
| 362 | + default: |
|
| 363 | + throw new OCSException('', 103); |
|
| 364 | + } |
|
| 365 | + return new DataResponse(); |
|
| 366 | + } |
|
| 367 | + |
|
| 368 | + /** |
|
| 369 | + * @PasswordConfirmationRequired |
|
| 370 | + * @NoAdminRequired |
|
| 371 | + * |
|
| 372 | + * @param string $userId |
|
| 373 | + * @return DataResponse |
|
| 374 | + * @throws OCSException |
|
| 375 | + * @throws OCSForbiddenException |
|
| 376 | + */ |
|
| 377 | + public function deleteUser($userId) { |
|
| 378 | + $currentLoggedInUser = $this->userSession->getUser(); |
|
| 379 | + |
|
| 380 | + $targetUser = $this->userManager->get($userId); |
|
| 381 | + |
|
| 382 | + if($targetUser === null || $targetUser->getUID() === $currentLoggedInUser->getUID()) { |
|
| 383 | + throw new OCSException('', 101); |
|
| 384 | + } |
|
| 385 | + |
|
| 386 | + // If not permitted |
|
| 387 | + $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 388 | + if(!$this->groupManager->isAdmin($currentLoggedInUser->getUID()) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) { |
|
| 389 | + throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 390 | + } |
|
| 391 | + |
|
| 392 | + // Go ahead with the delete |
|
| 393 | + if($targetUser->delete()) { |
|
| 394 | + return new DataResponse(); |
|
| 395 | + } else { |
|
| 396 | + throw new OCSException('', 101); |
|
| 397 | + } |
|
| 398 | + } |
|
| 399 | + |
|
| 400 | + /** |
|
| 401 | + * @PasswordConfirmationRequired |
|
| 402 | + * @NoAdminRequired |
|
| 403 | + * |
|
| 404 | + * @param string $userId |
|
| 405 | + * @return DataResponse |
|
| 406 | + * @throws OCSException |
|
| 407 | + * @throws OCSForbiddenException |
|
| 408 | + */ |
|
| 409 | + public function disableUser($userId) { |
|
| 410 | + return $this->setEnabled($userId, false); |
|
| 411 | + } |
|
| 412 | + |
|
| 413 | + /** |
|
| 414 | + * @PasswordConfirmationRequired |
|
| 415 | + * @NoAdminRequired |
|
| 416 | + * |
|
| 417 | + * @param string $userId |
|
| 418 | + * @return DataResponse |
|
| 419 | + * @throws OCSException |
|
| 420 | + * @throws OCSForbiddenException |
|
| 421 | + */ |
|
| 422 | + public function enableUser($userId) { |
|
| 423 | + return $this->setEnabled($userId, true); |
|
| 424 | + } |
|
| 425 | + |
|
| 426 | + /** |
|
| 427 | + * @param string $userId |
|
| 428 | + * @param bool $value |
|
| 429 | + * @return DataResponse |
|
| 430 | + * @throws OCSException |
|
| 431 | + * @throws OCSForbiddenException |
|
| 432 | + */ |
|
| 433 | + private function setEnabled($userId, $value) { |
|
| 434 | + $currentLoggedInUser = $this->userSession->getUser(); |
|
| 435 | + |
|
| 436 | + $targetUser = $this->userManager->get($userId); |
|
| 437 | + if($targetUser === null || $targetUser->getUID() === $currentLoggedInUser->getUID()) { |
|
| 438 | + throw new OCSException('', 101); |
|
| 439 | + } |
|
| 440 | + |
|
| 441 | + // If not permitted |
|
| 442 | + $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 443 | + if(!$this->groupManager->isAdmin($currentLoggedInUser->getUID()) && !$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)) { |
|
| 444 | + throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 445 | + } |
|
| 446 | + |
|
| 447 | + // enable/disable the user now |
|
| 448 | + $targetUser->setEnabled($value); |
|
| 449 | + return new DataResponse(); |
|
| 450 | + } |
|
| 451 | + |
|
| 452 | + /** |
|
| 453 | + * @NoAdminRequired |
|
| 454 | + * @NoSubAdminRequired |
|
| 455 | + * |
|
| 456 | + * @param string $userId |
|
| 457 | + * @return DataResponse |
|
| 458 | + * @throws OCSException |
|
| 459 | + */ |
|
| 460 | + public function getUsersGroups($userId) { |
|
| 461 | + $loggedInUser = $this->userSession->getUser(); |
|
| 462 | + |
|
| 463 | + $targetUser = $this->userManager->get($userId); |
|
| 464 | + if($targetUser === null) { |
|
| 465 | + throw new OCSException('', \OCP\API::RESPOND_NOT_FOUND); |
|
| 466 | + } |
|
| 467 | + |
|
| 468 | + if($targetUser->getUID() === $loggedInUser->getUID() || $this->groupManager->isAdmin($loggedInUser->getUID())) { |
|
| 469 | + // Self lookup or admin lookup |
|
| 470 | + return new DataResponse([ |
|
| 471 | + 'groups' => $this->groupManager->getUserGroupIds($targetUser) |
|
| 472 | + ]); |
|
| 473 | + } else { |
|
| 474 | + $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 475 | + |
|
| 476 | + // Looking up someone else |
|
| 477 | + if($subAdminManager->isUserAccessible($loggedInUser, $targetUser)) { |
|
| 478 | + // Return the group that the method caller is subadmin of for the user in question |
|
| 479 | + /** @var IGroup[] $getSubAdminsGroups */ |
|
| 480 | + $getSubAdminsGroups = $subAdminManager->getSubAdminsGroups($loggedInUser); |
|
| 481 | + foreach ($getSubAdminsGroups as $key => $group) { |
|
| 482 | + $getSubAdminsGroups[$key] = $group->getGID(); |
|
| 483 | + } |
|
| 484 | + $groups = array_intersect( |
|
| 485 | + $getSubAdminsGroups, |
|
| 486 | + $this->groupManager->getUserGroupIds($targetUser) |
|
| 487 | + ); |
|
| 488 | + return new DataResponse(['groups' => $groups]); |
|
| 489 | + } else { |
|
| 490 | + // Not permitted |
|
| 491 | + throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED); |
|
| 492 | + } |
|
| 493 | + } |
|
| 494 | + |
|
| 495 | + } |
|
| 496 | + |
|
| 497 | + /** |
|
| 498 | + * @PasswordConfirmationRequired |
|
| 499 | + * @NoAdminRequired |
|
| 500 | + * |
|
| 501 | + * @param string $userId |
|
| 502 | + * @param string $groupid |
|
| 503 | + * @return DataResponse |
|
| 504 | + * @throws OCSException |
|
| 505 | + */ |
|
| 506 | + public function addToGroup($userId, $groupid = '') { |
|
| 507 | + if($groupid === '') { |
|
| 508 | + throw new OCSException('', 101); |
|
| 509 | + } |
|
| 510 | + |
|
| 511 | + $group = $this->groupManager->get($groupid); |
|
| 512 | + $targetUser = $this->userManager->get($userId); |
|
| 513 | + if($group === null) { |
|
| 514 | + throw new OCSException('', 102); |
|
| 515 | + } |
|
| 516 | + if($targetUser === null) { |
|
| 517 | + throw new OCSException('', 103); |
|
| 518 | + } |
|
| 519 | + |
|
| 520 | + // If they're not an admin, check they are a subadmin of the group in question |
|
| 521 | + $loggedInUser = $this->userSession->getUser(); |
|
| 522 | + $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 523 | + if (!$this->groupManager->isAdmin($loggedInUser->getUID()) && !$subAdminManager->isSubAdminOfGroup($loggedInUser, $group)) { |
|
| 524 | + throw new OCSException('', 104); |
|
| 525 | + } |
|
| 526 | + |
|
| 527 | + // Add user to group |
|
| 528 | + $group->addUser($targetUser); |
|
| 529 | + return new DataResponse(); |
|
| 530 | + } |
|
| 531 | + |
|
| 532 | + /** |
|
| 533 | + * @PasswordConfirmationRequired |
|
| 534 | + * @NoAdminRequired |
|
| 535 | + * |
|
| 536 | + * @param string $userId |
|
| 537 | + * @param string $groupid |
|
| 538 | + * @return DataResponse |
|
| 539 | + * @throws OCSException |
|
| 540 | + */ |
|
| 541 | + public function removeFromGroup($userId, $groupid) { |
|
| 542 | + $loggedInUser = $this->userSession->getUser(); |
|
| 543 | + |
|
| 544 | + if($groupid === null) { |
|
| 545 | + throw new OCSException('', 101); |
|
| 546 | + } |
|
| 547 | + |
|
| 548 | + $group = $this->groupManager->get($groupid); |
|
| 549 | + if($group === null) { |
|
| 550 | + throw new OCSException('', 102); |
|
| 551 | + } |
|
| 552 | + |
|
| 553 | + $targetUser = $this->userManager->get($userId); |
|
| 554 | + if($targetUser === null) { |
|
| 555 | + throw new OCSException('', 103); |
|
| 556 | + } |
|
| 557 | + |
|
| 558 | + // If they're not an admin, check they are a subadmin of the group in question |
|
| 559 | + $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 560 | + if (!$this->groupManager->isAdmin($loggedInUser->getUID()) && !$subAdminManager->isSubAdminOfGroup($loggedInUser, $group)) { |
|
| 561 | + throw new OCSException('', 104); |
|
| 562 | + } |
|
| 563 | + |
|
| 564 | + // Check they aren't removing themselves from 'admin' or their 'subadmin; group |
|
| 565 | + if ($userId === $loggedInUser->getUID()) { |
|
| 566 | + if ($this->groupManager->isAdmin($loggedInUser->getUID())) { |
|
| 567 | + if ($group->getGID() === 'admin') { |
|
| 568 | + throw new OCSException('Cannot remove yourself from the admin group', 105); |
|
| 569 | + } |
|
| 570 | + } else { |
|
| 571 | + // Not an admin, so the user must be a subadmin of this group, but that is not allowed. |
|
| 572 | + throw new OCSException('Cannot remove yourself from this group as you are a SubAdmin', 105); |
|
| 573 | + } |
|
| 574 | + |
|
| 575 | + } else if (!$this->groupManager->isAdmin($loggedInUser->getUID())) { |
|
| 576 | + /** @var IGroup[] $subAdminGroups */ |
|
| 577 | + $subAdminGroups = $subAdminManager->getSubAdminsGroups($loggedInUser); |
|
| 578 | + $subAdminGroups = array_map(function (IGroup $subAdminGroup) { |
|
| 579 | + return $subAdminGroup->getGID(); |
|
| 580 | + }, $subAdminGroups); |
|
| 581 | + $userGroups = $this->groupManager->getUserGroupIds($targetUser); |
|
| 582 | + $userSubAdminGroups = array_intersect($subAdminGroups, $userGroups); |
|
| 583 | + |
|
| 584 | + if (count($userSubAdminGroups) <= 1) { |
|
| 585 | + // Subadmin must not be able to remove a user from all their subadmin groups. |
|
| 586 | + throw new OCSException('Cannot remove user from this group as this is the only remaining group you are a SubAdmin of', 105); |
|
| 587 | + } |
|
| 588 | + } |
|
| 589 | + |
|
| 590 | + // Remove user from group |
|
| 591 | + $group->removeUser($targetUser); |
|
| 592 | + return new DataResponse(); |
|
| 593 | + } |
|
| 594 | + |
|
| 595 | + /** |
|
| 596 | + * Creates a subadmin |
|
| 597 | + * |
|
| 598 | + * @PasswordConfirmationRequired |
|
| 599 | + * |
|
| 600 | + * @param string $userId |
|
| 601 | + * @param string $groupid |
|
| 602 | + * @return DataResponse |
|
| 603 | + * @throws OCSException |
|
| 604 | + */ |
|
| 605 | + public function addSubAdmin($userId, $groupid) { |
|
| 606 | + $group = $this->groupManager->get($groupid); |
|
| 607 | + $user = $this->userManager->get($userId); |
|
| 608 | + |
|
| 609 | + // Check if the user exists |
|
| 610 | + if($user === null) { |
|
| 611 | + throw new OCSException('User does not exist', 101); |
|
| 612 | + } |
|
| 613 | + // Check if group exists |
|
| 614 | + if($group === null) { |
|
| 615 | + throw new OCSException('Group:'.$groupid.' does not exist', 102); |
|
| 616 | + } |
|
| 617 | + // Check if trying to make subadmin of admin group |
|
| 618 | + if(strtolower($groupid) === 'admin') { |
|
| 619 | + throw new OCSException('Cannot create subadmins for admin group', 103); |
|
| 620 | + } |
|
| 621 | + |
|
| 622 | + $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 623 | + |
|
| 624 | + // We cannot be subadmin twice |
|
| 625 | + if ($subAdminManager->isSubAdminofGroup($user, $group)) { |
|
| 626 | + return new DataResponse(); |
|
| 627 | + } |
|
| 628 | + // Go |
|
| 629 | + if($subAdminManager->createSubAdmin($user, $group)) { |
|
| 630 | + return new DataResponse(); |
|
| 631 | + } else { |
|
| 632 | + throw new OCSException('Unknown error occurred', 103); |
|
| 633 | + } |
|
| 634 | + } |
|
| 635 | + |
|
| 636 | + /** |
|
| 637 | + * Removes a subadmin from a group |
|
| 638 | + * |
|
| 639 | + * @PasswordConfirmationRequired |
|
| 640 | + * |
|
| 641 | + * @param string $userId |
|
| 642 | + * @param string $groupid |
|
| 643 | + * @return DataResponse |
|
| 644 | + * @throws OCSException |
|
| 645 | + */ |
|
| 646 | + public function removeSubAdmin($userId, $groupid) { |
|
| 647 | + $group = $this->groupManager->get($groupid); |
|
| 648 | + $user = $this->userManager->get($userId); |
|
| 649 | + $subAdminManager = $this->groupManager->getSubAdmin(); |
|
| 650 | + |
|
| 651 | + // Check if the user exists |
|
| 652 | + if($user === null) { |
|
| 653 | + throw new OCSException('User does not exist', 101); |
|
| 654 | + } |
|
| 655 | + // Check if the group exists |
|
| 656 | + if($group === null) { |
|
| 657 | + throw new OCSException('Group does not exist', 101); |
|
| 658 | + } |
|
| 659 | + // Check if they are a subadmin of this said group |
|
| 660 | + if(!$subAdminManager->isSubAdminofGroup($user, $group)) { |
|
| 661 | + throw new OCSException('User is not a subadmin of this group', 102); |
|
| 662 | + } |
|
| 663 | + |
|
| 664 | + // Go |
|
| 665 | + if($subAdminManager->deleteSubAdmin($user, $group)) { |
|
| 666 | + return new DataResponse(); |
|
| 667 | + } else { |
|
| 668 | + throw new OCSException('Unknown error occurred', 103); |
|
| 669 | + } |
|
| 670 | + } |
|
| 671 | + |
|
| 672 | + /** |
|
| 673 | + * Get the groups a user is a subadmin of |
|
| 674 | + * |
|
| 675 | + * @param string $userId |
|
| 676 | + * @return DataResponse |
|
| 677 | + * @throws OCSException |
|
| 678 | + */ |
|
| 679 | + public function getUserSubAdminGroups($userId) { |
|
| 680 | + $user = $this->userManager->get($userId); |
|
| 681 | + // Check if the user exists |
|
| 682 | + if($user === null) { |
|
| 683 | + throw new OCSException('User does not exist', 101); |
|
| 684 | + } |
|
| 685 | + |
|
| 686 | + // Get the subadmin groups |
|
| 687 | + $groups = $this->groupManager->getSubAdmin()->getSubAdminsGroups($user); |
|
| 688 | + foreach ($groups as $key => $group) { |
|
| 689 | + $groups[$key] = $group->getGID(); |
|
| 690 | + } |
|
| 691 | + |
|
| 692 | + if(!$groups) { |
|
| 693 | + throw new OCSException('Unknown error occurred', 102); |
|
| 694 | + } else { |
|
| 695 | + return new DataResponse($groups); |
|
| 696 | + } |
|
| 697 | + } |
|
| 698 | + |
|
| 699 | + /** |
|
| 700 | + * @param string $userId |
|
| 701 | + * @return array |
|
| 702 | + * @throws \OCP\Files\NotFoundException |
|
| 703 | + */ |
|
| 704 | + protected function fillStorageInfo($userId) { |
|
| 705 | + try { |
|
| 706 | + \OC_Util::tearDownFS(); |
|
| 707 | + \OC_Util::setupFS($userId); |
|
| 708 | + $storage = OC_Helper::getStorageInfo('/'); |
|
| 709 | + $data = [ |
|
| 710 | + 'free' => $storage['free'], |
|
| 711 | + 'used' => $storage['used'], |
|
| 712 | + 'total' => $storage['total'], |
|
| 713 | + 'relative' => $storage['relative'], |
|
| 714 | + 'quota' => $storage['quota'], |
|
| 715 | + ]; |
|
| 716 | + } catch (NotFoundException $ex) { |
|
| 717 | + $data = []; |
|
| 718 | + } |
|
| 719 | + return $data; |
|
| 720 | + } |
|
| 721 | 721 | } |
