nextcloud / server

lib/public/IUserManager.php

Indentation +217 added lines, -217 removed lines

@@ -24,246 +24,246 @@
  * @since 8.0.0
  */
 interface IUserManager {
-	/**
-	 * @since 26.0.0
-	 */
-	public const MAX_PASSWORD_LENGTH = 469;
+    /**
+     * @since 26.0.0
+     */
+    public const MAX_PASSWORD_LENGTH = 469;
 
-	/**
-	 * register a user backend
-	 *
-	 * @since 8.0.0
-	 * @return void
-	 */
-	public function registerBackend(UserInterface $backend);
+    /**
+     * register a user backend
+     *
+     * @since 8.0.0
+     * @return void
+     */
+    public function registerBackend(UserInterface $backend);
 
-	/**
-	 * Get the active backends
-	 * @return UserInterface[]
-	 * @since 8.0.0
-	 */
-	public function getBackends();
+    /**
+     * Get the active backends
+     * @return UserInterface[]
+     * @since 8.0.0
+     */
+    public function getBackends();
 
-	/**
-	 * remove a user backend
-	 *
-	 * @since 8.0.0
-	 * @return void
-	 */
-	public function removeBackend(UserInterface $backend);
+    /**
+     * remove a user backend
+     *
+     * @since 8.0.0
+     * @return void
+     */
+    public function removeBackend(UserInterface $backend);
 
-	/**
-	 * remove all user backends
-	 * @since 8.0.0
-	 * @return void
-	 */
-	public function clearBackends();
+    /**
+     * remove all user backends
+     * @since 8.0.0
+     * @return void
+     */
+    public function clearBackends();
 
-	/**
-	 * get a user by user id
-	 *
-	 * If you're already 100% sure that the user exists,
-	 * consider IUserManager::getExistingUser which has less overhead.
-	 *
-	 * @param string $uid
-	 * @return \OCP\IUser|null Either the user or null if the specified user does not exist
-	 * @since 8.0.0
-	 */
-	public function get($uid);
+    /**
+     * get a user by user id
+     *
+     * If you're already 100% sure that the user exists,
+     * consider IUserManager::getExistingUser which has less overhead.
+     *
+     * @param string $uid
+     * @return \OCP\IUser|null Either the user or null if the specified user does not exist
+     * @since 8.0.0
+     */
+    public function get($uid);
 
-	/**
-	 * Get the display name of a user
-	 *
-	 * @param string $uid
-	 * @return string|null
-	 * @since 25.0.0
-	 */
-	public function getDisplayName(string $uid): ?string;
+    /**
+     * Get the display name of a user
+     *
+     * @param string $uid
+     * @return string|null
+     * @since 25.0.0
+     */
+    public function getDisplayName(string $uid): ?string;
 
-	/**
-	 * check if a user exists
-	 *
-	 * @param string $uid
-	 * @return bool
-	 * @since 8.0.0
-	 */
-	public function userExists($uid);
+    /**
+     * check if a user exists
+     *
+     * @param string $uid
+     * @return bool
+     * @since 8.0.0
+     */
+    public function userExists($uid);
 
-	/**
-	 * Check if the password is valid for the user
-	 *
-	 * @param string $loginName
-	 * @param string $password
-	 * @return IUser|false the User object on success, false otherwise
-	 * @since 8.0.0
-	 */
-	public function checkPassword($loginName, $password);
+    /**
+     * Check if the password is valid for the user
+     *
+     * @param string $loginName
+     * @param string $password
+     * @return IUser|false the User object on success, false otherwise
+     * @since 8.0.0
+     */
+    public function checkPassword($loginName, $password);
 
-	/**
-	 * search by user id
-	 *
-	 * @param string $pattern
-	 * @param int $limit
-	 * @param int $offset
-	 * @return \OCP\IUser[]
-	 * @since 8.0.0
-	 * @deprecated 27.0.0, use searchDisplayName instead
-	 */
-	public function search($pattern, $limit = null, $offset = null);
+    /**
+     * search by user id
+     *
+     * @param string $pattern
+     * @param int $limit
+     * @param int $offset
+     * @return \OCP\IUser[]
+     * @since 8.0.0
+     * @deprecated 27.0.0, use searchDisplayName instead
+     */
+    public function search($pattern, $limit = null, $offset = null);
 
-	/**
-	 * search by displayName
-	 *
-	 * @param string $pattern
-	 * @param int $limit
-	 * @param int $offset
-	 * @return list<IUser>
-	 * @since 8.0.0
-	 */
-	public function searchDisplayName($pattern, $limit = null, $offset = null);
+    /**
+     * search by displayName
+     *
+     * @param string $pattern
+     * @param int $limit
+     * @param int $offset
+     * @return list<IUser>
+     * @since 8.0.0
+     */
+    public function searchDisplayName($pattern, $limit = null, $offset = null);
 
-	/**
-	 * @return IUser[]
-	 * @since 28.0.0
-	 * @since 30.0.0 $search parameter added
-	 */
-	public function getDisabledUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
+    /**
+     * @return IUser[]
+     * @since 28.0.0
+     * @since 30.0.0 $search parameter added
+     */
+    public function getDisabledUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
 
-	/**
-	 * Search known users (from phonebook sync) by displayName
-	 *
-	 * @param string $searcher
-	 * @param string $pattern
-	 * @param int|null $limit
-	 * @param int|null $offset
-	 * @return IUser[]
-	 * @since 21.0.1
-	 */
-	public function searchKnownUsersByDisplayName(string $searcher, string $pattern, ?int $limit = null, ?int $offset = null): array;
+    /**
+     * Search known users (from phonebook sync) by displayName
+     *
+     * @param string $searcher
+     * @param string $pattern
+     * @param int|null $limit
+     * @param int|null $offset
+     * @return IUser[]
+     * @since 21.0.1
+     */
+    public function searchKnownUsersByDisplayName(string $searcher, string $pattern, ?int $limit = null, ?int $offset = null): array;
 
-	/**
-	 * @param string $uid
-	 * @param string $password
-	 * @throws \InvalidArgumentException
-	 * @return false|\OCP\IUser the created user or false
-	 * @since 8.0.0
-	 */
-	public function createUser($uid, $password);
+    /**
+     * @param string $uid
+     * @param string $password
+     * @throws \InvalidArgumentException
+     * @return false|\OCP\IUser the created user or false
+     * @since 8.0.0
+     */
+    public function createUser($uid, $password);
 
-	/**
-	 * @param string $uid
-	 * @param string $password
-	 * @param UserInterface $backend
-	 * @return IUser|null
-	 * @throws \InvalidArgumentException
-	 * @since 12.0.0
-	 */
-	public function createUserFromBackend($uid, $password, UserInterface $backend);
+    /**
+     * @param string $uid
+     * @param string $password
+     * @param UserInterface $backend
+     * @return IUser|null
+     * @throws \InvalidArgumentException
+     * @since 12.0.0
+     */
+    public function createUserFromBackend($uid, $password, UserInterface $backend);
 
-	/**
-	 * Get how many users per backend exist (if supported by backend)
-	 *
-	 * @return array<string, int> an array of backend class name as key and count number as value
-	 * @since 8.0.0
-	 * @since 33.0.0 $onlyMappedUsers parameter
-	 */
-	public function countUsers(bool $onlyMappedUsers = false);
+    /**
+     * Get how many users per backend exist (if supported by backend)
+     *
+     * @return array<string, int> an array of backend class name as key and count number as value
+     * @since 8.0.0
+     * @since 33.0.0 $onlyMappedUsers parameter
+     */
+    public function countUsers(bool $onlyMappedUsers = false);
 
-	/**
-	 * Get how many users exists in total, whithin limit
-	 *
-	 * @param int $limit Limit the count to avoid resource waste. 0 to disable
-	 * @param bool $onlyMappedUsers Count mapped users instead of all users for compatible backends
-	 *
-	 * @since 31.0.0
-	 */
-	public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int|false;
+    /**
+     * Get how many users exists in total, whithin limit
+     *
+     * @param int $limit Limit the count to avoid resource waste. 0 to disable
+     * @param bool $onlyMappedUsers Count mapped users instead of all users for compatible backends
+     *
+     * @since 31.0.0
+     */
+    public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int|false;
 
-	/**
-	 * @param \Closure $callback
-	 * @psalm-param \Closure(\OCP\IUser):void $callback
-	 * @param string $search
-	 * @since 9.0.0
-	 */
-	public function callForAllUsers(\Closure $callback, $search = '');
+    /**
+     * @param \Closure $callback
+     * @psalm-param \Closure(\OCP\IUser):void $callback
+     * @param string $search
+     * @since 9.0.0
+     */
+    public function callForAllUsers(\Closure $callback, $search = '');
 
-	/**
-	 * returns how many users have logged in once
-	 *
-	 * @return int
-	 * @since 11.0.0
-	 */
-	public function countDisabledUsers();
+    /**
+     * returns how many users have logged in once
+     *
+     * @return int
+     * @since 11.0.0
+     */
+    public function countDisabledUsers();
 
-	/**
-	 * returns how many users have logged in once
-	 *
-	 * @return int
-	 * @since 11.0.0
-	 */
-	public function countSeenUsers();
+    /**
+     * returns how many users have logged in once
+     *
+     * @return int
+     * @since 11.0.0
+     */
+    public function countSeenUsers();
 
-	/**
-	 * @param \Closure $callback
-	 * @psalm-param \Closure(\OCP\IUser):?bool $callback
-	 * @since 11.0.0
-	 */
-	public function callForSeenUsers(\Closure $callback);
+    /**
+     * @param \Closure $callback
+     * @psalm-param \Closure(\OCP\IUser):?bool $callback
+     * @since 11.0.0
+     */
+    public function callForSeenUsers(\Closure $callback);
 
-	/**
-	 * returns all users having the provided email set as system email address
-	 *
-	 * @param string $email
-	 * @return IUser[]
-	 * @since 9.1.0
-	 */
-	public function getByEmail($email);
+    /**
+     * returns all users having the provided email set as system email address
+     *
+     * @param string $email
+     * @return IUser[]
+     * @since 9.1.0
+     */
+    public function getByEmail($email);
 
-	/**
-	 * @param string $uid The user ID to validate
-	 * @param bool $checkDataDirectory Whether it should be checked if files for the ID exist inside the data directory
-	 * @throws \InvalidArgumentException Message is an already translated string with a reason why the ID is not valid
-	 * @since 26.0.0
-	 */
-	public function validateUserId(string $uid, bool $checkDataDirectory = false): void;
+    /**
+     * @param string $uid The user ID to validate
+     * @param bool $checkDataDirectory Whether it should be checked if files for the ID exist inside the data directory
+     * @throws \InvalidArgumentException Message is an already translated string with a reason why the ID is not valid
+     * @since 26.0.0
+     */
+    public function validateUserId(string $uid, bool $checkDataDirectory = false): void;
 
-	/**
-	 * Gets the list of users sorted by lastLogin, from most recent to least recent
-	 *
-	 * @param int|null $limit how many records to fetch
-	 * @param int $offset from which offset to fetch
-	 * @param string $search search users based on search params
-	 * @return list<string> list of user IDs
-	 * @since 30.0.0
-	 */
-	public function getLastLoggedInUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
+    /**
+     * Gets the list of users sorted by lastLogin, from most recent to least recent
+     *
+     * @param int|null $limit how many records to fetch
+     * @param int $offset from which offset to fetch
+     * @param string $search search users based on search params
+     * @return list<string> list of user IDs
+     * @since 30.0.0
+     */
+    public function getLastLoggedInUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
 
-	/**
-	 * Gets the list of users.
-	 * An iterator is returned allowing the caller to stop the iteration at any time.
-	 * The offset argument allows the caller to continue the iteration at a specific offset.
-	 *
-	 * @since 33.0.0 users are yielded with the user id as key
-	 *
-	 * @param int $offset from which offset to fetch
-	 * @param int|null $limit maximum number of records to fetch
-	 * @return \Iterator<string, IUser> list of IUser object
-	 * @since 32.0.0
-	 */
-	public function getSeenUsers(int $offset = 0, ?int $limit = null): \Iterator;
+    /**
+     * Gets the list of users.
+     * An iterator is returned allowing the caller to stop the iteration at any time.
+     * The offset argument allows the caller to continue the iteration at a specific offset.
+     *
+     * @since 33.0.0 users are yielded with the user id as key
+     *
+     * @param int $offset from which offset to fetch
+     * @param int|null $limit maximum number of records to fetch
+     * @return \Iterator<string, IUser> list of IUser object
+     * @since 32.0.0
+     */
+    public function getSeenUsers(int $offset = 0, ?int $limit = null): \Iterator;
 
-	/**
-	 * Get a user by user id without validating that the user exists.
-	 *
-	 * This should only be used if you're certain that the provided user id exists in the system.
-	 * Using this to get a user object for a non-existing user will lead to unexpected behavior down the line.
-	 *
-	 * If you're not 100% sure that the user exists, use IUserManager::get instead.
-	 *
-	 * @param string $userId
-	 * @param ?string $displayName If the display name is known in advance you can provide it so it doesn't have to be fetched again
-	 * @return IUser
-	 * @since 33.0.0
-	 */
-	public function getExistingUser(string $userId, ?string $displayName = null): IUser;
+    /**
+     * Get a user by user id without validating that the user exists.
+     *
+     * This should only be used if you're certain that the provided user id exists in the system.
+     * Using this to get a user object for a non-existing user will lead to unexpected behavior down the line.
+     *
+     * If you're not 100% sure that the user exists, use IUserManager::get instead.
+     *
+     * @param string $userId
+     * @param ?string $displayName If the display name is known in advance you can provide it so it doesn't have to be fetched again
+     * @return IUser
+     * @since 33.0.0
+     */
+    public function getExistingUser(string $userId, ?string $displayName = null): IUser;
 }

lib/private/User/Manager.php

Indentation +783 added lines, -783 removed lines

@@ -54,787 +54,787 @@
  * @package OC\User
  */
 class Manager extends PublicEmitter implements IUserManager {
-	/**
-	 * @var UserInterface[] $backends
-	 */
-	private array $backends = [];
-
-	/**
-	 * @var array<string,\OC\User\User> $cachedUsers
-	 */
-	private array $cachedUsers = [];
-
-	private ICache $cache;
-
-	private DisplayNameCache $displayNameCache;
-
-	// This constructor can't autoload any class requiring a DB connection.
-	public function __construct(
-		private IConfig $config,
-		ICacheFactory $cacheFactory,
-		private IEventDispatcher $eventDispatcher,
-		private LoggerInterface $logger,
-	) {
-		$this->cache = new WithLocalCache($cacheFactory->createDistributed('user_backend_map'));
-		$this->listen('\OC\User', 'postDelete', function (IUser $user): void {
-			unset($this->cachedUsers[$user->getUID()]);
-		});
-		$this->displayNameCache = new DisplayNameCache($cacheFactory, $this);
-	}
-
-	/**
-	 * Get the active backends
-	 * @return UserInterface[]
-	 */
-	public function getBackends(): array {
-		return $this->backends;
-	}
-
-	public function registerBackend(UserInterface $backend): void {
-		$this->backends[] = $backend;
-	}
-
-	public function removeBackend(UserInterface $backend): void {
-		$this->cachedUsers = [];
-		if (($i = array_search($backend, $this->backends)) !== false) {
-			unset($this->backends[$i]);
-		}
-	}
-
-	public function clearBackends(): void {
-		$this->cachedUsers = [];
-		$this->backends = [];
-	}
-
-	/**
-	 * get a user by user id
-	 *
-	 * @param string $uid
-	 * @return \OC\User\User|null Either the user or null if the specified user does not exist
-	 */
-	public function get($uid) {
-		if (is_null($uid) || $uid === '' || $uid === false) {
-			return null;
-		}
-		if (isset($this->cachedUsers[$uid])) { //check the cache first to prevent having to loop over the backends
-			return $this->cachedUsers[$uid];
-		}
-
-		if (strlen($uid) > IUser::MAX_USERID_LENGTH) {
-			return null;
-		}
-
-		$cachedBackend = $this->cache->get(sha1($uid));
-		if ($cachedBackend !== null && isset($this->backends[$cachedBackend])) {
-			// Cache has the info of the user backend already, so ask that one directly
-			$backend = $this->backends[$cachedBackend];
-			if ($backend->userExists($uid)) {
-				return $this->getUserObject($uid, $backend);
-			}
-		}
-
-		foreach ($this->backends as $i => $backend) {
-			if ($i === $cachedBackend) {
-				// Tried that one already
-				continue;
-			}
-
-			if ($backend->userExists($uid)) {
-				// Hash $uid to ensure that only valid characters are used for the cache key
-				$this->cache->set(sha1($uid), $i, 300);
-				return $this->getUserObject($uid, $backend);
-			}
-		}
-		return null;
-	}
-
-	public function getDisplayName(string $uid): ?string {
-		return $this->displayNameCache->getDisplayName($uid);
-	}
-
-	/**
-	 * get or construct the user object
-	 *
-	 * @param string $uid
-	 * @param \OCP\UserInterface $backend
-	 * @param bool $cacheUser If false the newly created user object will not be cached
-	 * @return \OC\User\User
-	 */
-	public function getUserObject($uid, $backend, $cacheUser = true) {
-		if ($backend instanceof IGetRealUIDBackend) {
-			$uid = $backend->getRealUID($uid);
-		}
-
-		if (isset($this->cachedUsers[$uid])) {
-			return $this->cachedUsers[$uid];
-		}
-
-		$user = new User($uid, $backend, $this->eventDispatcher, $this, $this->config);
-		if ($cacheUser) {
-			$this->cachedUsers[$uid] = $user;
-		}
-		return $user;
-	}
-
-	/**
-	 * check if a user exists
-	 *
-	 * @param string $uid
-	 * @return bool
-	 */
-	public function userExists($uid) {
-		if (strlen($uid) > IUser::MAX_USERID_LENGTH) {
-			return false;
-		}
-
-		$user = $this->get($uid);
-		return ($user !== null);
-	}
-
-	/**
-	 * Check if the password is valid for the user
-	 *
-	 * @param string $loginName
-	 * @param string $password
-	 * @return IUser|false the User object on success, false otherwise
-	 */
-	public function checkPassword($loginName, $password) {
-		$result = $this->checkPasswordNoLogging($loginName, $password);
-
-		if ($result === false) {
-			$this->logger->warning('Login failed: \'' . $loginName . '\' (Remote IP: \'' . \OC::$server->getRequest()->getRemoteAddress() . '\')', ['app' => 'core']);
-		}
-
-		return $result;
-	}
-
-	/**
-	 * Check if the password is valid for the user
-	 *
-	 * @internal
-	 * @param string $loginName
-	 * @param string $password
-	 * @return IUser|false the User object on success, false otherwise
-	 */
-	public function checkPasswordNoLogging($loginName, $password) {
-		$loginName = str_replace("\0", '', $loginName);
-		$password = str_replace("\0", '', $password);
-
-		$cachedBackend = $this->cache->get($loginName);
-		if ($cachedBackend !== null && isset($this->backends[$cachedBackend])) {
-			$backends = [$this->backends[$cachedBackend]];
-		} else {
-			$backends = $this->backends;
-		}
-		foreach ($backends as $backend) {
-			if ($backend instanceof ICheckPasswordBackend || $backend->implementsActions(Backend::CHECK_PASSWORD)) {
-				/** @var ICheckPasswordBackend $backend */
-				$uid = $backend->checkPassword($loginName, $password);
-				if ($uid !== false) {
-					return $this->getUserObject($uid, $backend);
-				}
-			}
-		}
-
-		// since http basic auth doesn't provide a standard way of handling non ascii password we allow password to be urlencoded
-		// we only do this decoding after using the plain password fails to maintain compatibility with any password that happens
-		// to contain urlencoded patterns by "accident".
-		$password = urldecode($password);
-
-		foreach ($backends as $backend) {
-			if ($backend instanceof ICheckPasswordBackend || $backend->implementsActions(Backend::CHECK_PASSWORD)) {
-				/** @var ICheckPasswordBackend|UserInterface $backend */
-				$uid = $backend->checkPassword($loginName, $password);
-				if ($uid !== false) {
-					return $this->getUserObject($uid, $backend);
-				}
-			}
-		}
-
-		return false;
-	}
-
-	public function search($pattern, $limit = null, $offset = null) {
-		$users = [];
-		foreach ($this->backends as $backend) {
-			$backendUsers = $backend->getUsers($pattern, $limit, $offset);
-			if (is_array($backendUsers)) {
-				foreach ($backendUsers as $uid) {
-					$users[$uid] = new LazyUser($uid, $this, null, $backend);
-				}
-			}
-		}
-
-		uasort($users, function (IUser $a, IUser $b) {
-			return strcasecmp($a->getUID(), $b->getUID());
-		});
-		return $users;
-	}
-
-	public function searchDisplayName($pattern, $limit = null, $offset = null) {
-		$users = [];
-		foreach ($this->backends as $backend) {
-			$backendUsers = $backend->getDisplayNames($pattern, $limit, $offset);
-			if (is_array($backendUsers)) {
-				foreach ($backendUsers as $uid => $displayName) {
-					$users[] = new LazyUser($uid, $this, $displayName, $backend);
-				}
-			}
-		}
-
-		usort($users, function (IUser $a, IUser $b) {
-			return strcasecmp($a->getDisplayName(), $b->getDisplayName());
-		});
-		return $users;
-	}
-
-	/**
-	 * @return IUser[]
-	 */
-	public function getDisabledUsers(?int $limit = null, int $offset = 0, string $search = ''): array {
-		$users = $this->config->getUsersForUserValue('core', 'enabled', 'false');
-		$users = array_combine(
-			$users,
-			array_map(
-				fn (string $uid): IUser => new LazyUser($uid, $this),
-				$users
-			)
-		);
-		if ($search !== '') {
-			$users = array_filter(
-				$users,
-				function (IUser $user) use ($search): bool {
-					try {
-						return mb_stripos($user->getUID(), $search) !== false
-						|| mb_stripos($user->getDisplayName(), $search) !== false
-						|| mb_stripos($user->getEMailAddress() ?? '', $search) !== false;
-					} catch (NoUserException $ex) {
-						$this->logger->error('Error while filtering disabled users', ['exception' => $ex, 'userUID' => $user->getUID()]);
-						return false;
-					}
-				});
-		}
-
-		$tempLimit = ($limit === null ? null : $limit + $offset);
-		foreach ($this->backends as $backend) {
-			if (($tempLimit !== null) && (count($users) >= $tempLimit)) {
-				break;
-			}
-			if ($backend instanceof IProvideEnabledStateBackend) {
-				$backendUsers = $backend->getDisabledUserList(($tempLimit === null ? null : $tempLimit - count($users)), 0, $search);
-				foreach ($backendUsers as $uid) {
-					$users[$uid] = new LazyUser($uid, $this, null, $backend);
-				}
-			}
-		}
-
-		return array_slice($users, $offset, $limit);
-	}
-
-	/**
-	 * Search known users (from phonebook sync) by displayName
-	 *
-	 * @param string $searcher
-	 * @param string $pattern
-	 * @param int|null $limit
-	 * @param int|null $offset
-	 * @return IUser[]
-	 */
-	public function searchKnownUsersByDisplayName(string $searcher, string $pattern, ?int $limit = null, ?int $offset = null): array {
-		$users = [];
-		foreach ($this->backends as $backend) {
-			if ($backend instanceof ISearchKnownUsersBackend) {
-				$backendUsers = $backend->searchKnownUsersByDisplayName($searcher, $pattern, $limit, $offset);
-			} else {
-				// Better than nothing, but filtering after pagination can remove lots of results.
-				$backendUsers = $backend->getDisplayNames($pattern, $limit, $offset);
-			}
-			if (is_array($backendUsers)) {
-				foreach ($backendUsers as $uid => $displayName) {
-					$users[] = $this->getUserObject($uid, $backend);
-				}
-			}
-		}
-
-		usort($users, function ($a, $b) {
-			/**
-			 * @var IUser $a
-			 * @var IUser $b
-			 */
-			return strcasecmp($a->getDisplayName(), $b->getDisplayName());
-		});
-		return $users;
-	}
-
-	/**
-	 * @param string $uid
-	 * @param string $password
-	 * @return false|IUser the created user or false
-	 * @throws \InvalidArgumentException
-	 * @throws HintException
-	 */
-	public function createUser($uid, $password) {
-		// DI injection is not used here as IRegistry needs the user manager itself for user count and thus it would create a cyclic dependency
-		/** @var IAssertion $assertion */
-		$assertion = \OC::$server->get(IAssertion::class);
-		$assertion->createUserIsLegit();
-
-		$localBackends = [];
-		foreach ($this->backends as $backend) {
-			if ($backend instanceof Database) {
-				// First check if there is another user backend
-				$localBackends[] = $backend;
-				continue;
-			}
-
-			if ($backend->implementsActions(Backend::CREATE_USER)) {
-				return $this->createUserFromBackend($uid, $password, $backend);
-			}
-		}
-
-		foreach ($localBackends as $backend) {
-			if ($backend->implementsActions(Backend::CREATE_USER)) {
-				return $this->createUserFromBackend($uid, $password, $backend);
-			}
-		}
-
-		return false;
-	}
-
-	/**
-	 * @param string $uid
-	 * @param string $password
-	 * @param UserInterface $backend
-	 * @return IUser|false
-	 * @throws \InvalidArgumentException
-	 */
-	public function createUserFromBackend($uid, $password, UserInterface $backend) {
-		$l = \OCP\Util::getL10N('lib');
-
-		$this->validateUserId($uid, true);
-
-		// No empty password
-		if (trim($password) === '') {
-			throw new \InvalidArgumentException($l->t('A valid password must be provided'));
-		}
-
-		// Check if user already exists
-		if ($this->userExists($uid)) {
-			throw new \InvalidArgumentException($l->t('The Login is already being used'));
-		}
-
-		/** @deprecated 21.0.0 use BeforeUserCreatedEvent event with the IEventDispatcher instead */
-		$this->emit('\OC\User', 'preCreateUser', [$uid, $password]);
-		$this->eventDispatcher->dispatchTyped(new BeforeUserCreatedEvent($uid, $password));
-		$state = $backend->createUser($uid, $password);
-		if ($state === false) {
-			throw new \InvalidArgumentException($l->t('Could not create account'));
-		}
-		$user = $this->getUserObject($uid, $backend);
-		if ($user instanceof IUser) {
-			/** @deprecated 21.0.0 use UserCreatedEvent event with the IEventDispatcher instead */
-			$this->emit('\OC\User', 'postCreateUser', [$user, $password]);
-			$this->eventDispatcher->dispatchTyped(new UserCreatedEvent($user, $password));
-			return $user;
-		}
-		return false;
-	}
-
-	/**
-	 * returns how many users per backend exist (if supported by backend)
-	 *
-	 * @return array<string, int> an array of backend class as key and count number as value
-	 */
-	public function countUsers(bool $onlyMappedUsers = false) {
-		$userCountStatistics = [];
-		foreach ($this->backends as $backend) {
-			$name = $backend instanceof IUserBackend
-				? $backend->getBackendName()
-				: get_class($backend);
-
-			if ($onlyMappedUsers && $backend instanceof ICountMappedUsersBackend) {
-				$userCountStatistics[$name] = $backend->countMappedUsers();
-				continue;
-			}
-			if ($backend instanceof ICountUsersBackend || $backend->implementsActions(Backend::COUNT_USERS)) {
-				/** @var ICountUsersBackend|IUserBackend $backend */
-				$backendUsers = $backend->countUsers();
-				if ($backendUsers !== false) {
-					if (isset($userCountStatistics[$name])) {
-						$userCountStatistics[$name] += $backendUsers;
-					} else {
-						$userCountStatistics[$name] = $backendUsers;
-					}
-				}
-			}
-		}
-
-		return $userCountStatistics;
-	}
-
-	public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int|false {
-		$userCount = false;
-
-		foreach ($this->backends as $backend) {
-			if ($onlyMappedUsers && $backend instanceof ICountMappedUsersBackend) {
-				$backendUsers = $backend->countMappedUsers();
-			} elseif ($backend instanceof ILimitAwareCountUsersBackend) {
-				$backendUsers = $backend->countUsers($limit);
-			} elseif ($backend instanceof ICountUsersBackend || $backend->implementsActions(Backend::COUNT_USERS)) {
-				/** @var ICountUsersBackend $backend */
-				$backendUsers = $backend->countUsers();
-			} else {
-				$this->logger->debug('Skip backend for user count: ' . get_class($backend));
-				continue;
-			}
-			if ($backendUsers !== false) {
-				$userCount = (int)$userCount + $backendUsers;
-				if ($limit > 0) {
-					if ($userCount >= $limit) {
-						break;
-					}
-					$limit -= $userCount;
-				}
-			} else {
-				$this->logger->warning('Can not determine user count for ' . get_class($backend));
-			}
-		}
-		return $userCount;
-	}
-
-	/**
-	 * returns how many users per backend exist in the requested groups (if supported by backend)
-	 *
-	 * @param IGroup[] $groups an array of groups to search in
-	 * @param int $limit limit to stop counting
-	 * @return array{int,int} total number of users, and number of disabled users in the given groups, below $limit. If limit is reached, -1 is returned for number of disabled users
-	 */
-	public function countUsersAndDisabledUsersOfGroups(array $groups, int $limit): array {
-		$users = [];
-		$disabled = [];
-		foreach ($groups as $group) {
-			foreach ($group->getUsers() as $user) {
-				$users[$user->getUID()] = 1;
-				if (!$user->isEnabled()) {
-					$disabled[$user->getUID()] = 1;
-				}
-				if (count($users) >= $limit) {
-					return [count($users),-1];
-				}
-			}
-		}
-		return [count($users),count($disabled)];
-	}
-
-	/**
-	 * The callback is executed for each user on each backend.
-	 * If the callback returns false no further users will be retrieved.
-	 *
-	 * @psalm-param \Closure(\OCP\IUser):?bool $callback
-	 * @param string $search
-	 * @param boolean $onlySeen when true only users that have a lastLogin entry
-	 *                          in the preferences table will be affected
-	 * @since 9.0.0
-	 */
-	public function callForAllUsers(\Closure $callback, $search = '', $onlySeen = false) {
-		if ($onlySeen) {
-			$this->callForSeenUsers($callback);
-		} else {
-			foreach ($this->getBackends() as $backend) {
-				$limit = 500;
-				$offset = 0;
-				do {
-					$users = $backend->getUsers($search, $limit, $offset);
-					foreach ($users as $uid) {
-						if (!$backend->userExists($uid)) {
-							continue;
-						}
-						$user = $this->getUserObject($uid, $backend, false);
-						$return = $callback($user);
-						if ($return === false) {
-							break;
-						}
-					}
-					$offset += $limit;
-				} while (count($users) >= $limit);
-			}
-		}
-	}
-
-	/**
-	 * returns how many users are disabled
-	 *
-	 * @return int
-	 * @since 12.0.0
-	 */
-	public function countDisabledUsers(): int {
-		$queryBuilder = Server::get(IDBConnection::class)->getQueryBuilder();
-		$queryBuilder->select($queryBuilder->func()->count('*'))
-			->from('preferences')
-			->where($queryBuilder->expr()->eq('appid', $queryBuilder->createNamedParameter('core')))
-			->andWhere($queryBuilder->expr()->eq('configkey', $queryBuilder->createNamedParameter('enabled')))
-			->andWhere($queryBuilder->expr()->eq('configvalue', $queryBuilder->createNamedParameter('false'), IQueryBuilder::PARAM_STR));
-
-
-		$result = $queryBuilder->executeQuery();
-		$count = $result->fetchOne();
-		$result->closeCursor();
-
-		if ($count !== false) {
-			$count = (int)$count;
-		} else {
-			$count = 0;
-		}
-
-		return $count;
-	}
-
-	/**
-	 * returns how many users have logged in once
-	 *
-	 * @return int
-	 * @since 11.0.0
-	 */
-	public function countSeenUsers() {
-		$queryBuilder = Server::get(IDBConnection::class)->getQueryBuilder();
-		$queryBuilder->select($queryBuilder->func()->count('*'))
-			->from('preferences')
-			->where($queryBuilder->expr()->eq('appid', $queryBuilder->createNamedParameter('login')))
-			->andWhere($queryBuilder->expr()->eq('configkey', $queryBuilder->createNamedParameter('lastLogin')));
-
-		$query = $queryBuilder->executeQuery();
-
-		$result = (int)$query->fetchOne();
-		$query->closeCursor();
-
-		return $result;
-	}
-
-	public function callForSeenUsers(\Closure $callback) {
-		$users = $this->getSeenUsers();
-		foreach ($users as $user) {
-			$return = $callback($user);
-			if ($return === false) {
-				return;
-			}
-		}
-	}
-
-	/**
-	 * Getting all userIds that have a lastLogin value requires checking the
-	 * value in php because on oracle you cannot use a clob in a where clause,
-	 * preventing us from doing a not null or length(value) > 0 check.
-	 *
-	 * @param int $limit
-	 * @param int $offset
-	 * @return string[] with user ids
-	 */
-	private function getSeenUserIds($limit = null, $offset = null) {
-		$queryBuilder = Server::get(IDBConnection::class)->getQueryBuilder();
-		$queryBuilder->select(['userid'])
-			->from('preferences')
-			->where($queryBuilder->expr()->eq(
-				'appid', $queryBuilder->createNamedParameter('login'))
-			)
-			->andWhere($queryBuilder->expr()->eq(
-				'configkey', $queryBuilder->createNamedParameter('lastLogin'))
-			)
-			->andWhere($queryBuilder->expr()->isNotNull('configvalue')
-			);
-
-		if ($limit !== null) {
-			$queryBuilder->setMaxResults($limit);
-		}
-		if ($offset !== null) {
-			$queryBuilder->setFirstResult($offset);
-		}
-		$query = $queryBuilder->executeQuery();
-		$result = [];
-
-		while ($row = $query->fetch()) {
-			$result[] = $row['userid'];
-		}
-
-		$query->closeCursor();
-
-		return $result;
-	}
-
-	/**
-	 * @internal Only for mocks it in unit tests.
-	 */
-	public function getUserConfig(): IUserConfig {
-		return \OCP\Server::get(IUserConfig::class);
-	}
-
-	/**
-	 * @param string $email
-	 * @return IUser[]
-	 * @since 9.1.0
-	 */
-	public function getByEmail($email): array {
-		$users = [];
-		$userConfig = $this->getUserConfig();
-		// looking for 'email' only (and not primary_mail) is intentional
-		$userIds = $userConfig->searchUsersByValueString('settings', 'email', $email, caseInsensitive: true);
-		foreach ($userIds as $userId) {
-			$user = $this->get($userId);
-			if ($user !== null) {
-				$users[] = $user;
-			}
-		}
-		return $users;
-	}
-
-	/**
-	 * @param string $uid
-	 * @param bool $checkDataDirectory
-	 * @throws \InvalidArgumentException Message is an already translated string with a reason why the id is not valid
-	 * @since 26.0.0
-	 */
-	public function validateUserId(string $uid, bool $checkDataDirectory = false): void {
-		$l = Server::get(IFactory::class)->get('lib');
-
-		// Check the ID for bad characters
-		// Allowed are: "a-z", "A-Z", "0-9", spaces and "_.@-'"
-		if (preg_match('/[^a-zA-Z0-9 _.@\-\']/', $uid)) {
-			throw new \InvalidArgumentException($l->t('Only the following characters are allowed in an Login:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'));
-		}
-
-		// No empty user ID
-		if (trim($uid) === '') {
-			throw new \InvalidArgumentException($l->t('A valid Login must be provided'));
-		}
-
-		// No whitespace at the beginning or at the end
-		if (trim($uid) !== $uid) {
-			throw new \InvalidArgumentException($l->t('Login contains whitespace at the beginning or at the end'));
-		}
-
-		// User ID only consists of 1 or 2 dots (directory traversal)
-		if ($uid === '.' || $uid === '..') {
-			throw new \InvalidArgumentException($l->t('Login must not consist of dots only'));
-		}
-
-		// User ID is too long
-		if (strlen($uid) > IUser::MAX_USERID_LENGTH) {
-			// TRANSLATORS User ID is too long
-			throw new \InvalidArgumentException($l->t('Username is too long'));
-		}
-
-		if (!$this->verifyUid($uid, $checkDataDirectory)) {
-			throw new \InvalidArgumentException($l->t('Login is invalid because files already exist for this user'));
-		}
-	}
-
-	/**
-	 * Gets the list of user ids sorted by lastLogin, from most recent to least recent
-	 *
-	 * @param int|null $limit how many users to fetch (default: 25, max: 100)
-	 * @param int $offset from which offset to fetch
-	 * @param string $search search users based on search params
-	 * @return list<string> list of user IDs
-	 */
-	public function getLastLoggedInUsers(?int $limit = null, int $offset = 0, string $search = ''): array {
-		// We can't load all users who already logged in
-		$limit = min(100, $limit ?: 25);
-
-		$connection = Server::get(IDBConnection::class);
-		$queryBuilder = $connection->getQueryBuilder();
-		$queryBuilder->select('pref_login.userid')
-			->from('preferences', 'pref_login')
-			->where($queryBuilder->expr()->eq('pref_login.appid', $queryBuilder->expr()->literal('login')))
-			->andWhere($queryBuilder->expr()->eq('pref_login.configkey', $queryBuilder->expr()->literal('lastLogin')))
-			->setFirstResult($offset)
-			->setMaxResults($limit)
-		;
-
-		// Oracle don't want to run ORDER BY on CLOB column
-		$loginOrder = $connection->getDatabaseProvider() === IDBConnection::PLATFORM_ORACLE
-			? $queryBuilder->expr()->castColumn('pref_login.configvalue', IQueryBuilder::PARAM_INT)
-			: 'pref_login.configvalue';
-		$queryBuilder
-			->orderBy($loginOrder, 'DESC')
-			->addOrderBy($queryBuilder->func()->lower('pref_login.userid'), 'ASC');
-
-		if ($search !== '') {
-			$displayNameMatches = $this->searchDisplayName($search);
-			$matchedUids = array_map(static fn (IUser $u): string => $u->getUID(), $displayNameMatches);
-
-			$queryBuilder
-				->leftJoin('pref_login', 'preferences', 'pref_email', $queryBuilder->expr()->andX(
-					$queryBuilder->expr()->eq('pref_login.userid', 'pref_email.userid'),
-					$queryBuilder->expr()->eq('pref_email.appid', $queryBuilder->expr()->literal('settings')),
-					$queryBuilder->expr()->eq('pref_email.configkey', $queryBuilder->expr()->literal('email')),
-				))
-				->andWhere($queryBuilder->expr()->orX(
-					$queryBuilder->expr()->in('pref_login.userid', $queryBuilder->createNamedParameter($matchedUids, IQueryBuilder::PARAM_STR_ARRAY)),
-				));
-		}
-
-		/** @var list<string> */
-		$list = $queryBuilder->executeQuery()->fetchAll(\PDO::FETCH_COLUMN);
-
-		return $list;
-	}
-
-	private function verifyUid(string $uid, bool $checkDataDirectory = false): bool {
-		$appdata = 'appdata_' . $this->config->getSystemValueString('instanceid');
-
-		if (\in_array($uid, [
-			'.htaccess',
-			'files_external',
-			'__groupfolders',
-			'.ncdata',
-			'owncloud.log',
-			'nextcloud.log',
-			'updater.log',
-			'audit.log',
-			$appdata], true)) {
-			return false;
-		}
-
-		if (!$checkDataDirectory) {
-			return true;
-		}
-
-		$dataDirectory = $this->config->getSystemValueString('datadirectory', \OC::$SERVERROOT . '/data');
-
-		return !file_exists(rtrim($dataDirectory, '/') . '/' . $uid);
-	}
-
-	public function getDisplayNameCache(): DisplayNameCache {
-		return $this->displayNameCache;
-	}
-
-	public function getSeenUsers(int $offset = 0, ?int $limit = null): \Iterator {
-		$maxBatchSize = 1000;
-
-		do {
-			if ($limit !== null) {
-				$batchSize = min($limit, $maxBatchSize);
-				$limit -= $batchSize;
-			} else {
-				$batchSize = $maxBatchSize;
-			}
-
-			$userIds = $this->getSeenUserIds($batchSize, $offset);
-			$offset += $batchSize;
-
-			foreach ($userIds as $userId) {
-				foreach ($this->backends as $backend) {
-					if ($backend->userExists($userId)) {
-						$user = new LazyUser($userId, $this, null, $backend);
-						yield $userId => $user;
-						break;
-					}
-				}
-			}
-		} while (count($userIds) === $batchSize && $limit !== 0);
-	}
-
-	public function getExistingUser(string $userId, ?string $displayName = null): IUser {
-		return new LazyUser($userId, $this, $displayName);
-	}
+    /**
+     * @var UserInterface[] $backends
+     */
+    private array $backends = [];
+
+    /**
+     * @var array<string,\OC\User\User> $cachedUsers
+     */
+    private array $cachedUsers = [];
+
+    private ICache $cache;
+
+    private DisplayNameCache $displayNameCache;
+
+    // This constructor can't autoload any class requiring a DB connection.
+    public function __construct(
+        private IConfig $config,
+        ICacheFactory $cacheFactory,
+        private IEventDispatcher $eventDispatcher,
+        private LoggerInterface $logger,
+    ) {
+        $this->cache = new WithLocalCache($cacheFactory->createDistributed('user_backend_map'));
+        $this->listen('\OC\User', 'postDelete', function (IUser $user): void {
+            unset($this->cachedUsers[$user->getUID()]);
+        });
+        $this->displayNameCache = new DisplayNameCache($cacheFactory, $this);
+    }
+
+    /**
+     * Get the active backends
+     * @return UserInterface[]
+     */
+    public function getBackends(): array {
+        return $this->backends;
+    }
+
+    public function registerBackend(UserInterface $backend): void {
+        $this->backends[] = $backend;
+    }
+
+    public function removeBackend(UserInterface $backend): void {
+        $this->cachedUsers = [];
+        if (($i = array_search($backend, $this->backends)) !== false) {
+            unset($this->backends[$i]);
+        }
+    }
+
+    public function clearBackends(): void {
+        $this->cachedUsers = [];
+        $this->backends = [];
+    }
+
+    /**
+     * get a user by user id
+     *
+     * @param string $uid
+     * @return \OC\User\User|null Either the user or null if the specified user does not exist
+     */
+    public function get($uid) {
+        if (is_null($uid) || $uid === '' || $uid === false) {
+            return null;
+        }
+        if (isset($this->cachedUsers[$uid])) { //check the cache first to prevent having to loop over the backends
+            return $this->cachedUsers[$uid];
+        }
+
+        if (strlen($uid) > IUser::MAX_USERID_LENGTH) {
+            return null;
+        }
+
+        $cachedBackend = $this->cache->get(sha1($uid));
+        if ($cachedBackend !== null && isset($this->backends[$cachedBackend])) {
+            // Cache has the info of the user backend already, so ask that one directly
+            $backend = $this->backends[$cachedBackend];
+            if ($backend->userExists($uid)) {
+                return $this->getUserObject($uid, $backend);
+            }
+        }
+
+        foreach ($this->backends as $i => $backend) {
+            if ($i === $cachedBackend) {
+                // Tried that one already
+                continue;
+            }
+
+            if ($backend->userExists($uid)) {
+                // Hash $uid to ensure that only valid characters are used for the cache key
+                $this->cache->set(sha1($uid), $i, 300);
+                return $this->getUserObject($uid, $backend);
+            }
+        }
+        return null;
+    }
+
+    public function getDisplayName(string $uid): ?string {
+        return $this->displayNameCache->getDisplayName($uid);
+    }
+
+    /**
+     * get or construct the user object
+     *
+     * @param string $uid
+     * @param \OCP\UserInterface $backend
+     * @param bool $cacheUser If false the newly created user object will not be cached
+     * @return \OC\User\User
+     */
+    public function getUserObject($uid, $backend, $cacheUser = true) {
+        if ($backend instanceof IGetRealUIDBackend) {
+            $uid = $backend->getRealUID($uid);
+        }
+
+        if (isset($this->cachedUsers[$uid])) {
+            return $this->cachedUsers[$uid];
+        }
+
+        $user = new User($uid, $backend, $this->eventDispatcher, $this, $this->config);
+        if ($cacheUser) {
+            $this->cachedUsers[$uid] = $user;
+        }
+        return $user;
+    }
+
+    /**
+     * check if a user exists
+     *
+     * @param string $uid
+     * @return bool
+     */
+    public function userExists($uid) {
+        if (strlen($uid) > IUser::MAX_USERID_LENGTH) {
+            return false;
+        }
+
+        $user = $this->get($uid);
+        return ($user !== null);
+    }
+
+    /**
+     * Check if the password is valid for the user
+     *
+     * @param string $loginName
+     * @param string $password
+     * @return IUser|false the User object on success, false otherwise
+     */
+    public function checkPassword($loginName, $password) {
+        $result = $this->checkPasswordNoLogging($loginName, $password);
+
+        if ($result === false) {
+            $this->logger->warning('Login failed: \'' . $loginName . '\' (Remote IP: \'' . \OC::$server->getRequest()->getRemoteAddress() . '\')', ['app' => 'core']);
+        }
+
+        return $result;
+    }
+
+    /**
+     * Check if the password is valid for the user
+     *
+     * @internal
+     * @param string $loginName
+     * @param string $password
+     * @return IUser|false the User object on success, false otherwise
+     */
+    public function checkPasswordNoLogging($loginName, $password) {
+        $loginName = str_replace("\0", '', $loginName);
+        $password = str_replace("\0", '', $password);
+
+        $cachedBackend = $this->cache->get($loginName);
+        if ($cachedBackend !== null && isset($this->backends[$cachedBackend])) {
+            $backends = [$this->backends[$cachedBackend]];
+        } else {
+            $backends = $this->backends;
+        }
+        foreach ($backends as $backend) {
+            if ($backend instanceof ICheckPasswordBackend || $backend->implementsActions(Backend::CHECK_PASSWORD)) {
+                /** @var ICheckPasswordBackend $backend */
+                $uid = $backend->checkPassword($loginName, $password);
+                if ($uid !== false) {
+                    return $this->getUserObject($uid, $backend);
+                }
+            }
+        }
+
+        // since http basic auth doesn't provide a standard way of handling non ascii password we allow password to be urlencoded
+        // we only do this decoding after using the plain password fails to maintain compatibility with any password that happens
+        // to contain urlencoded patterns by "accident".
+        $password = urldecode($password);
+
+        foreach ($backends as $backend) {
+            if ($backend instanceof ICheckPasswordBackend || $backend->implementsActions(Backend::CHECK_PASSWORD)) {
+                /** @var ICheckPasswordBackend|UserInterface $backend */
+                $uid = $backend->checkPassword($loginName, $password);
+                if ($uid !== false) {
+                    return $this->getUserObject($uid, $backend);
+                }
+            }
+        }
+
+        return false;
+    }
+
+    public function search($pattern, $limit = null, $offset = null) {
+        $users = [];
+        foreach ($this->backends as $backend) {
+            $backendUsers = $backend->getUsers($pattern, $limit, $offset);
+            if (is_array($backendUsers)) {
+                foreach ($backendUsers as $uid) {
+                    $users[$uid] = new LazyUser($uid, $this, null, $backend);
+                }
+            }
+        }
+
+        uasort($users, function (IUser $a, IUser $b) {
+            return strcasecmp($a->getUID(), $b->getUID());
+        });
+        return $users;
+    }
+
+    public function searchDisplayName($pattern, $limit = null, $offset = null) {
+        $users = [];
+        foreach ($this->backends as $backend) {
+            $backendUsers = $backend->getDisplayNames($pattern, $limit, $offset);
+            if (is_array($backendUsers)) {
+                foreach ($backendUsers as $uid => $displayName) {
+                    $users[] = new LazyUser($uid, $this, $displayName, $backend);
+                }
+            }
+        }
+
+        usort($users, function (IUser $a, IUser $b) {
+            return strcasecmp($a->getDisplayName(), $b->getDisplayName());
+        });
+        return $users;
+    }
+
+    /**
+     * @return IUser[]
+     */
+    public function getDisabledUsers(?int $limit = null, int $offset = 0, string $search = ''): array {
+        $users = $this->config->getUsersForUserValue('core', 'enabled', 'false');
+        $users = array_combine(
+            $users,
+            array_map(
+                fn (string $uid): IUser => new LazyUser($uid, $this),
+                $users
+            )
+        );
+        if ($search !== '') {
+            $users = array_filter(
+                $users,
+                function (IUser $user) use ($search): bool {
+                    try {
+                        return mb_stripos($user->getUID(), $search) !== false
+                        || mb_stripos($user->getDisplayName(), $search) !== false
+                        || mb_stripos($user->getEMailAddress() ?? '', $search) !== false;
+                    } catch (NoUserException $ex) {
+                        $this->logger->error('Error while filtering disabled users', ['exception' => $ex, 'userUID' => $user->getUID()]);
+                        return false;
+                    }
+                });
+        }
+
+        $tempLimit = ($limit === null ? null : $limit + $offset);
+        foreach ($this->backends as $backend) {
+            if (($tempLimit !== null) && (count($users) >= $tempLimit)) {
+                break;
+            }
+            if ($backend instanceof IProvideEnabledStateBackend) {
+                $backendUsers = $backend->getDisabledUserList(($tempLimit === null ? null : $tempLimit - count($users)), 0, $search);
+                foreach ($backendUsers as $uid) {
+                    $users[$uid] = new LazyUser($uid, $this, null, $backend);
+                }
+            }
+        }
+
+        return array_slice($users, $offset, $limit);
+    }
+
+    /**
+     * Search known users (from phonebook sync) by displayName
+     *
+     * @param string $searcher
+     * @param string $pattern
+     * @param int|null $limit
+     * @param int|null $offset
+     * @return IUser[]
+     */
+    public function searchKnownUsersByDisplayName(string $searcher, string $pattern, ?int $limit = null, ?int $offset = null): array {
+        $users = [];
+        foreach ($this->backends as $backend) {
+            if ($backend instanceof ISearchKnownUsersBackend) {
+                $backendUsers = $backend->searchKnownUsersByDisplayName($searcher, $pattern, $limit, $offset);
+            } else {
+                // Better than nothing, but filtering after pagination can remove lots of results.
+                $backendUsers = $backend->getDisplayNames($pattern, $limit, $offset);
+            }
+            if (is_array($backendUsers)) {
+                foreach ($backendUsers as $uid => $displayName) {
+                    $users[] = $this->getUserObject($uid, $backend);
+                }
+            }
+        }
+
+        usort($users, function ($a, $b) {
+            /**
+             * @var IUser $a
+             * @var IUser $b
+             */
+            return strcasecmp($a->getDisplayName(), $b->getDisplayName());
+        });
+        return $users;
+    }
+
+    /**
+     * @param string $uid
+     * @param string $password
+     * @return false|IUser the created user or false
+     * @throws \InvalidArgumentException
+     * @throws HintException
+     */
+    public function createUser($uid, $password) {
+        // DI injection is not used here as IRegistry needs the user manager itself for user count and thus it would create a cyclic dependency
+        /** @var IAssertion $assertion */
+        $assertion = \OC::$server->get(IAssertion::class);
+        $assertion->createUserIsLegit();
+
+        $localBackends = [];
+        foreach ($this->backends as $backend) {
+            if ($backend instanceof Database) {
+                // First check if there is another user backend
+                $localBackends[] = $backend;
+                continue;
+            }
+
+            if ($backend->implementsActions(Backend::CREATE_USER)) {
+                return $this->createUserFromBackend($uid, $password, $backend);
+            }
+        }
+
+        foreach ($localBackends as $backend) {
+            if ($backend->implementsActions(Backend::CREATE_USER)) {
+                return $this->createUserFromBackend($uid, $password, $backend);
+            }
+        }
+
+        return false;
+    }
+
+    /**
+     * @param string $uid
+     * @param string $password
+     * @param UserInterface $backend
+     * @return IUser|false
+     * @throws \InvalidArgumentException
+     */
+    public function createUserFromBackend($uid, $password, UserInterface $backend) {
+        $l = \OCP\Util::getL10N('lib');
+
+        $this->validateUserId($uid, true);
+
+        // No empty password
+        if (trim($password) === '') {
+            throw new \InvalidArgumentException($l->t('A valid password must be provided'));
+        }
+
+        // Check if user already exists
+        if ($this->userExists($uid)) {
+            throw new \InvalidArgumentException($l->t('The Login is already being used'));
+        }
+
+        /** @deprecated 21.0.0 use BeforeUserCreatedEvent event with the IEventDispatcher instead */
+        $this->emit('\OC\User', 'preCreateUser', [$uid, $password]);
+        $this->eventDispatcher->dispatchTyped(new BeforeUserCreatedEvent($uid, $password));
+        $state = $backend->createUser($uid, $password);
+        if ($state === false) {
+            throw new \InvalidArgumentException($l->t('Could not create account'));
+        }
+        $user = $this->getUserObject($uid, $backend);
+        if ($user instanceof IUser) {
+            /** @deprecated 21.0.0 use UserCreatedEvent event with the IEventDispatcher instead */
+            $this->emit('\OC\User', 'postCreateUser', [$user, $password]);
+            $this->eventDispatcher->dispatchTyped(new UserCreatedEvent($user, $password));
+            return $user;
+        }
+        return false;
+    }
+
+    /**
+     * returns how many users per backend exist (if supported by backend)
+     *
+     * @return array<string, int> an array of backend class as key and count number as value
+     */
+    public function countUsers(bool $onlyMappedUsers = false) {
+        $userCountStatistics = [];
+        foreach ($this->backends as $backend) {
+            $name = $backend instanceof IUserBackend
+                ? $backend->getBackendName()
+                : get_class($backend);
+
+            if ($onlyMappedUsers && $backend instanceof ICountMappedUsersBackend) {
+                $userCountStatistics[$name] = $backend->countMappedUsers();
+                continue;
+            }
+            if ($backend instanceof ICountUsersBackend || $backend->implementsActions(Backend::COUNT_USERS)) {
+                /** @var ICountUsersBackend|IUserBackend $backend */
+                $backendUsers = $backend->countUsers();
+                if ($backendUsers !== false) {
+                    if (isset($userCountStatistics[$name])) {
+                        $userCountStatistics[$name] += $backendUsers;
+                    } else {
+                        $userCountStatistics[$name] = $backendUsers;
+                    }
+                }
+            }
+        }
+
+        return $userCountStatistics;
+    }
+
+    public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int|false {
+        $userCount = false;
+
+        foreach ($this->backends as $backend) {
+            if ($onlyMappedUsers && $backend instanceof ICountMappedUsersBackend) {
+                $backendUsers = $backend->countMappedUsers();
+            } elseif ($backend instanceof ILimitAwareCountUsersBackend) {
+                $backendUsers = $backend->countUsers($limit);
+            } elseif ($backend instanceof ICountUsersBackend || $backend->implementsActions(Backend::COUNT_USERS)) {
+                /** @var ICountUsersBackend $backend */
+                $backendUsers = $backend->countUsers();
+            } else {
+                $this->logger->debug('Skip backend for user count: ' . get_class($backend));
+                continue;
+            }
+            if ($backendUsers !== false) {
+                $userCount = (int)$userCount + $backendUsers;
+                if ($limit > 0) {
+                    if ($userCount >= $limit) {
+                        break;
+                    }
+                    $limit -= $userCount;
+                }
+            } else {
+                $this->logger->warning('Can not determine user count for ' . get_class($backend));
+            }
+        }
+        return $userCount;
+    }
+
+    /**
+     * returns how many users per backend exist in the requested groups (if supported by backend)
+     *
+     * @param IGroup[] $groups an array of groups to search in
+     * @param int $limit limit to stop counting
+     * @return array{int,int} total number of users, and number of disabled users in the given groups, below $limit. If limit is reached, -1 is returned for number of disabled users
+     */
+    public function countUsersAndDisabledUsersOfGroups(array $groups, int $limit): array {
+        $users = [];
+        $disabled = [];
+        foreach ($groups as $group) {
+            foreach ($group->getUsers() as $user) {
+                $users[$user->getUID()] = 1;
+                if (!$user->isEnabled()) {
+                    $disabled[$user->getUID()] = 1;
+                }
+                if (count($users) >= $limit) {
+                    return [count($users),-1];
+                }
+            }
+        }
+        return [count($users),count($disabled)];
+    }
+
+    /**
+     * The callback is executed for each user on each backend.
+     * If the callback returns false no further users will be retrieved.
+     *
+     * @psalm-param \Closure(\OCP\IUser):?bool $callback
+     * @param string $search
+     * @param boolean $onlySeen when true only users that have a lastLogin entry
+     *                          in the preferences table will be affected
+     * @since 9.0.0
+     */
+    public function callForAllUsers(\Closure $callback, $search = '', $onlySeen = false) {
+        if ($onlySeen) {
+            $this->callForSeenUsers($callback);
+        } else {
+            foreach ($this->getBackends() as $backend) {
+                $limit = 500;
+                $offset = 0;
+                do {
+                    $users = $backend->getUsers($search, $limit, $offset);
+                    foreach ($users as $uid) {
+                        if (!$backend->userExists($uid)) {
+                            continue;
+                        }
+                        $user = $this->getUserObject($uid, $backend, false);
+                        $return = $callback($user);
+                        if ($return === false) {
+                            break;
+                        }
+                    }
+                    $offset += $limit;
+                } while (count($users) >= $limit);
+            }
+        }
+    }
+
+    /**
+     * returns how many users are disabled
+     *
+     * @return int
+     * @since 12.0.0
+     */
+    public function countDisabledUsers(): int {
+        $queryBuilder = Server::get(IDBConnection::class)->getQueryBuilder();
+        $queryBuilder->select($queryBuilder->func()->count('*'))
+            ->from('preferences')
+            ->where($queryBuilder->expr()->eq('appid', $queryBuilder->createNamedParameter('core')))
+            ->andWhere($queryBuilder->expr()->eq('configkey', $queryBuilder->createNamedParameter('enabled')))
+            ->andWhere($queryBuilder->expr()->eq('configvalue', $queryBuilder->createNamedParameter('false'), IQueryBuilder::PARAM_STR));
+
+
+        $result = $queryBuilder->executeQuery();
+        $count = $result->fetchOne();
+        $result->closeCursor();
+
+        if ($count !== false) {
+            $count = (int)$count;
+        } else {
+            $count = 0;
+        }
+
+        return $count;
+    }
+
+    /**
+     * returns how many users have logged in once
+     *
+     * @return int
+     * @since 11.0.0
+     */
+    public function countSeenUsers() {
+        $queryBuilder = Server::get(IDBConnection::class)->getQueryBuilder();
+        $queryBuilder->select($queryBuilder->func()->count('*'))
+            ->from('preferences')
+            ->where($queryBuilder->expr()->eq('appid', $queryBuilder->createNamedParameter('login')))
+            ->andWhere($queryBuilder->expr()->eq('configkey', $queryBuilder->createNamedParameter('lastLogin')));
+
+        $query = $queryBuilder->executeQuery();
+
+        $result = (int)$query->fetchOne();
+        $query->closeCursor();
+
+        return $result;
+    }
+
+    public function callForSeenUsers(\Closure $callback) {
+        $users = $this->getSeenUsers();
+        foreach ($users as $user) {
+            $return = $callback($user);
+            if ($return === false) {
+                return;
+            }
+        }
+    }
+
+    /**
+     * Getting all userIds that have a lastLogin value requires checking the
+     * value in php because on oracle you cannot use a clob in a where clause,
+     * preventing us from doing a not null or length(value) > 0 check.
+     *
+     * @param int $limit
+     * @param int $offset
+     * @return string[] with user ids
+     */
+    private function getSeenUserIds($limit = null, $offset = null) {
+        $queryBuilder = Server::get(IDBConnection::class)->getQueryBuilder();
+        $queryBuilder->select(['userid'])
+            ->from('preferences')
+            ->where($queryBuilder->expr()->eq(
+                'appid', $queryBuilder->createNamedParameter('login'))
+            )
+            ->andWhere($queryBuilder->expr()->eq(
+                'configkey', $queryBuilder->createNamedParameter('lastLogin'))
+            )
+            ->andWhere($queryBuilder->expr()->isNotNull('configvalue')
+            );
+
+        if ($limit !== null) {
+            $queryBuilder->setMaxResults($limit);
+        }
+        if ($offset !== null) {
+            $queryBuilder->setFirstResult($offset);
+        }
+        $query = $queryBuilder->executeQuery();
+        $result = [];
+
+        while ($row = $query->fetch()) {
+            $result[] = $row['userid'];
+        }
+
+        $query->closeCursor();
+
+        return $result;
+    }
+
+    /**
+     * @internal Only for mocks it in unit tests.
+     */
+    public function getUserConfig(): IUserConfig {
+        return \OCP\Server::get(IUserConfig::class);
+    }
+
+    /**
+     * @param string $email
+     * @return IUser[]
+     * @since 9.1.0
+     */
+    public function getByEmail($email): array {
+        $users = [];
+        $userConfig = $this->getUserConfig();
+        // looking for 'email' only (and not primary_mail) is intentional
+        $userIds = $userConfig->searchUsersByValueString('settings', 'email', $email, caseInsensitive: true);
+        foreach ($userIds as $userId) {
+            $user = $this->get($userId);
+            if ($user !== null) {
+                $users[] = $user;
+            }
+        }
+        return $users;
+    }
+
+    /**
+     * @param string $uid
+     * @param bool $checkDataDirectory
+     * @throws \InvalidArgumentException Message is an already translated string with a reason why the id is not valid
+     * @since 26.0.0
+     */
+    public function validateUserId(string $uid, bool $checkDataDirectory = false): void {
+        $l = Server::get(IFactory::class)->get('lib');
+
+        // Check the ID for bad characters
+        // Allowed are: "a-z", "A-Z", "0-9", spaces and "_.@-'"
+        if (preg_match('/[^a-zA-Z0-9 _.@\-\']/', $uid)) {
+            throw new \InvalidArgumentException($l->t('Only the following characters are allowed in an Login:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'));
+        }
+
+        // No empty user ID
+        if (trim($uid) === '') {
+            throw new \InvalidArgumentException($l->t('A valid Login must be provided'));
+        }
+
+        // No whitespace at the beginning or at the end
+        if (trim($uid) !== $uid) {
+            throw new \InvalidArgumentException($l->t('Login contains whitespace at the beginning or at the end'));
+        }
+
+        // User ID only consists of 1 or 2 dots (directory traversal)
+        if ($uid === '.' || $uid === '..') {
+            throw new \InvalidArgumentException($l->t('Login must not consist of dots only'));
+        }
+
+        // User ID is too long
+        if (strlen($uid) > IUser::MAX_USERID_LENGTH) {
+            // TRANSLATORS User ID is too long
+            throw new \InvalidArgumentException($l->t('Username is too long'));
+        }
+
+        if (!$this->verifyUid($uid, $checkDataDirectory)) {
+            throw new \InvalidArgumentException($l->t('Login is invalid because files already exist for this user'));
+        }
+    }
+
+    /**
+     * Gets the list of user ids sorted by lastLogin, from most recent to least recent
+     *
+     * @param int|null $limit how many users to fetch (default: 25, max: 100)
+     * @param int $offset from which offset to fetch
+     * @param string $search search users based on search params
+     * @return list<string> list of user IDs
+     */
+    public function getLastLoggedInUsers(?int $limit = null, int $offset = 0, string $search = ''): array {
+        // We can't load all users who already logged in
+        $limit = min(100, $limit ?: 25);
+
+        $connection = Server::get(IDBConnection::class);
+        $queryBuilder = $connection->getQueryBuilder();
+        $queryBuilder->select('pref_login.userid')
+            ->from('preferences', 'pref_login')
+            ->where($queryBuilder->expr()->eq('pref_login.appid', $queryBuilder->expr()->literal('login')))
+            ->andWhere($queryBuilder->expr()->eq('pref_login.configkey', $queryBuilder->expr()->literal('lastLogin')))
+            ->setFirstResult($offset)
+            ->setMaxResults($limit)
+        ;
+
+        // Oracle don't want to run ORDER BY on CLOB column
+        $loginOrder = $connection->getDatabaseProvider() === IDBConnection::PLATFORM_ORACLE
+            ? $queryBuilder->expr()->castColumn('pref_login.configvalue', IQueryBuilder::PARAM_INT)
+            : 'pref_login.configvalue';
+        $queryBuilder
+            ->orderBy($loginOrder, 'DESC')
+            ->addOrderBy($queryBuilder->func()->lower('pref_login.userid'), 'ASC');
+
+        if ($search !== '') {
+            $displayNameMatches = $this->searchDisplayName($search);
+            $matchedUids = array_map(static fn (IUser $u): string => $u->getUID(), $displayNameMatches);
+
+            $queryBuilder
+                ->leftJoin('pref_login', 'preferences', 'pref_email', $queryBuilder->expr()->andX(
+                    $queryBuilder->expr()->eq('pref_login.userid', 'pref_email.userid'),
+                    $queryBuilder->expr()->eq('pref_email.appid', $queryBuilder->expr()->literal('settings')),
+                    $queryBuilder->expr()->eq('pref_email.configkey', $queryBuilder->expr()->literal('email')),
+                ))
+                ->andWhere($queryBuilder->expr()->orX(
+                    $queryBuilder->expr()->in('pref_login.userid', $queryBuilder->createNamedParameter($matchedUids, IQueryBuilder::PARAM_STR_ARRAY)),
+                ));
+        }
+
+        /** @var list<string> */
+        $list = $queryBuilder->executeQuery()->fetchAll(\PDO::FETCH_COLUMN);
+
+        return $list;
+    }
+
+    private function verifyUid(string $uid, bool $checkDataDirectory = false): bool {
+        $appdata = 'appdata_' . $this->config->getSystemValueString('instanceid');
+
+        if (\in_array($uid, [
+            '.htaccess',
+            'files_external',
+            '__groupfolders',
+            '.ncdata',
+            'owncloud.log',
+            'nextcloud.log',
+            'updater.log',
+            'audit.log',
+            $appdata], true)) {
+            return false;
+        }
+
+        if (!$checkDataDirectory) {
+            return true;
+        }
+
+        $dataDirectory = $this->config->getSystemValueString('datadirectory', \OC::$SERVERROOT . '/data');
+
+        return !file_exists(rtrim($dataDirectory, '/') . '/' . $uid);
+    }
+
+    public function getDisplayNameCache(): DisplayNameCache {
+        return $this->displayNameCache;
+    }
+
+    public function getSeenUsers(int $offset = 0, ?int $limit = null): \Iterator {
+        $maxBatchSize = 1000;
+
+        do {
+            if ($limit !== null) {
+                $batchSize = min($limit, $maxBatchSize);
+                $limit -= $batchSize;
+            } else {
+                $batchSize = $maxBatchSize;
+            }
+
+            $userIds = $this->getSeenUserIds($batchSize, $offset);
+            $offset += $batchSize;
+
+            foreach ($userIds as $userId) {
+                foreach ($this->backends as $backend) {
+                    if ($backend->userExists($userId)) {
+                        $user = new LazyUser($userId, $this, null, $backend);
+                        yield $userId => $user;
+                        break;
+                    }
+                }
+            }
+        } while (count($userIds) === $batchSize && $limit !== 0);
+    }
+
+    public function getExistingUser(string $userId, ?string $displayName = null): IUser {
+        return new LazyUser($userId, $this, $displayName);
+    }
 }

tests/lib/User/ManagerTest.php

Indentation +728 added lines, -728 removed lines

@@ -33,733 +33,733 @@
  */
 #[\PHPUnit\Framework\Attributes\Group('DB')]
 class ManagerTest extends TestCase {
-	private IConfig&MockObject $config;
-	private IEventDispatcher&MockObject $eventDispatcher;
-	private ICacheFactory&MockObject $cacheFactory;
-	private ICache&MockObject $cache;
-	private LoggerInterface&MockObject $logger;
-
-	protected function setUp(): void {
-		parent::setUp();
-
-		$this->config = $this->createMock(IConfig::class);
-		$this->eventDispatcher = $this->createMock(IEventDispatcher::class);
-		$this->cacheFactory = $this->createMock(ICacheFactory::class);
-		$this->cache = $this->createMock(ICache::class);
-		$this->logger = $this->createMock(LoggerInterface::class);
-
-		$this->cacheFactory->method('createDistributed')
-			->willReturn($this->cache);
-	}
-
-	public function testGetBackends(): void {
-		$userDummyBackend = $this->createMock(\Test\Util\User\Dummy::class);
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($userDummyBackend);
-		$this->assertEquals([$userDummyBackend], $manager->getBackends());
-		$dummyDatabaseBackend = $this->createMock(Database::class);
-		$manager->registerBackend($dummyDatabaseBackend);
-		$this->assertEquals([$userDummyBackend, $dummyDatabaseBackend], $manager->getBackends());
-	}
-
-
-	public function testUserExistsSingleBackendExists(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(true);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$this->assertTrue($manager->userExists('foo'));
-	}
-
-	public function testUserExistsTooLong(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->never())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(true);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$this->assertFalse($manager->userExists('foo' . str_repeat('a', 62)));
-	}
-
-	public function testUserExistsSingleBackendNotExists(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(false);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$this->assertFalse($manager->userExists('foo'));
-	}
-
-	public function testUserExistsNoBackends(): void {
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-
-		$this->assertFalse($manager->userExists('foo'));
-	}
-
-	public function testUserExistsTwoBackendsSecondExists(): void {
-		$backend1 = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend1->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(false);
-
-		$backend2 = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend2->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(true);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend1);
-		$manager->registerBackend($backend2);
-
-		$this->assertTrue($manager->userExists('foo'));
-	}
-
-	public function testUserExistsTwoBackendsFirstExists(): void {
-		$backend1 = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend1->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(true);
-
-		$backend2 = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend2->expects($this->never())
-			->method('userExists');
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend1);
-		$manager->registerBackend($backend2);
-
-		$this->assertTrue($manager->userExists('foo'));
-	}
-
-	public function testCheckPassword(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->once())
-			->method('checkPassword')
-			->with($this->equalTo('foo'), $this->equalTo('bar'))
-			->willReturn(true);
-
-		$backend->expects($this->any())
-			->method('implementsActions')
-			->willReturnCallback(function ($actions) {
-				if ($actions === BACKEND::CHECK_PASSWORD) {
-					return true;
-				} else {
-					return false;
-				}
-			});
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$user = $manager->checkPassword('foo', 'bar');
-		$this->assertTrue($user instanceof User);
-	}
-
-	public function testCheckPasswordNotSupported(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->never())
-			->method('checkPassword');
-
-		$backend->expects($this->any())
-			->method('implementsActions')
-			->willReturn(false);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$this->assertFalse($manager->checkPassword('foo', 'bar'));
-	}
-
-	public function testGetOneBackendExists(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(true);
-		$backend->expects($this->never())
-			->method('loginName2UserName');
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$this->assertEquals('foo', $manager->get('foo')->getUID());
-	}
-
-	public function testGetOneBackendNotExists(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(false);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$this->assertEquals(null, $manager->get('foo'));
-	}
-
-	public function testGetTooLong(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->never())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(false);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$this->assertEquals(null, $manager->get('foo' . str_repeat('a', 62)));
-	}
-
-	public function testGetOneBackendDoNotTranslateLoginNames(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('bLeNdEr'))
-			->willReturn(true);
-		$backend->expects($this->never())
-			->method('loginName2UserName');
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$this->assertEquals('bLeNdEr', $manager->get('bLeNdEr')->getUID());
-	}
-
-	public function testSearchOneBackend(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->once())
-			->method('getUsers')
-			->with($this->equalTo('fo'))
-			->willReturn(['foo', 'afoo', 'Afoo1', 'Bfoo']);
-		$backend->expects($this->never())
-			->method('loginName2UserName');
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$result = $manager->search('fo');
-		$this->assertEquals(4, count($result));
-		$this->assertEquals('afoo', array_shift($result)->getUID());
-		$this->assertEquals('Afoo1', array_shift($result)->getUID());
-		$this->assertEquals('Bfoo', array_shift($result)->getUID());
-		$this->assertEquals('foo', array_shift($result)->getUID());
-	}
-
-	public function testSearchTwoBackendLimitOffset(): void {
-		$backend1 = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend1->expects($this->once())
-			->method('getUsers')
-			->with($this->equalTo('fo'), $this->equalTo(3), $this->equalTo(1))
-			->willReturn(['foo1', 'foo2']);
-		$backend1->expects($this->never())
-			->method('loginName2UserName');
-
-		$backend2 = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend2->expects($this->once())
-			->method('getUsers')
-			->with($this->equalTo('fo'), $this->equalTo(3), $this->equalTo(1))
-			->willReturn(['foo3']);
-		$backend2->expects($this->never())
-			->method('loginName2UserName');
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend1);
-		$manager->registerBackend($backend2);
-
-		$result = $manager->search('fo', 3, 1);
-		$this->assertEquals(3, count($result));
-		$this->assertEquals('foo1', array_shift($result)->getUID());
-		$this->assertEquals('foo2', array_shift($result)->getUID());
-		$this->assertEquals('foo3', array_shift($result)->getUID());
-	}
-
-	public static function dataCreateUserInvalid(): array {
-		return [
-			['te?st', 'foo', 'Only the following characters are allowed in a username:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
-			["te\tst", '', 'Only the following characters are allowed in a username:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
-			["te\nst", '', 'Only the following characters are allowed in a username:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
-			["te\rst", '', 'Only the following characters are allowed in a username:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
-			["te\0st", '', 'Only the following characters are allowed in a username:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
-			["te\x0Bst", '', 'Only the following characters are allowed in a username:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
-			["te\xe2st", '', 'Only the following characters are allowed in a username:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
-			["te\x80st", '', 'Only the following characters are allowed in a username:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
-			["te\x8bst", '', 'Only the following characters are allowed in a username:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
-			['', 'foo', 'A valid username must be provided'],
-			[' ', 'foo', 'A valid username must be provided'],
-			[' test', 'foo', 'Username contains whitespace at the beginning or at the end'],
-			['test ', 'foo', 'Username contains whitespace at the beginning or at the end'],
-			['.', 'foo', 'Username must not consist of dots only'],
-			['..', 'foo', 'Username must not consist of dots only'],
-			['.test', '', 'A valid password must be provided'],
-			['test', '', 'A valid password must be provided'],
-			['test' . str_repeat('a', 61), '', 'Login is too long'],
-		];
-	}
-
-	#[\PHPUnit\Framework\Attributes\DataProvider('dataCreateUserInvalid')]
-	public function testCreateUserInvalid($uid, $password, $exception): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->once())
-			->method('implementsActions')
-			->with(\OC\User\Backend::CREATE_USER)
-			->willReturn(true);
-
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$this->expectException(\InvalidArgumentException::class, $exception);
-		$manager->createUser($uid, $password);
-	}
-
-	public function testCreateUserSingleBackendNotExists(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->any())
-			->method('implementsActions')
-			->willReturn(true);
-
-		$backend->expects($this->once())
-			->method('createUser')
-			->with($this->equalTo('foo'), $this->equalTo('bar'));
-
-		$backend->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(false);
-		$backend->expects($this->never())
-			->method('loginName2UserName');
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$user = $manager->createUser('foo', 'bar');
-		$this->assertEquals('foo', $user->getUID());
-	}
-
-
-	public function testCreateUserSingleBackendExists(): void {
-		$this->expectException(\Exception::class);
-
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->any())
-			->method('implementsActions')
-			->willReturn(true);
-
-		$backend->expects($this->never())
-			->method('createUser');
-
-		$backend->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(true);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$manager->createUser('foo', 'bar');
-	}
-
-	public function testCreateUserSingleBackendNotSupported(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->any())
-			->method('implementsActions')
-			->willReturn(false);
-
-		$backend->expects($this->never())
-			->method('createUser');
-
-		$backend->expects($this->never())
-			->method('userExists');
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$this->assertFalse($manager->createUser('foo', 'bar'));
-	}
-
-	public function testCreateUserNoBackends(): void {
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-
-		$this->assertFalse($manager->createUser('foo', 'bar'));
-	}
-
-
-	public function testCreateUserFromBackendWithBackendError(): void {
-		$this->expectException(\InvalidArgumentException::class);
-		$this->expectExceptionMessage('Could not create account');
-
-		/** @var \Test\Util\User\Dummy&MockObject $backend */
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend
-			->expects($this->once())
-			->method('createUser')
-			->with('MyUid', 'MyPassword')
-			->willReturn(false);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->createUserFromBackend('MyUid', 'MyPassword', $backend);
-	}
-
-
-	public function testCreateUserTwoBackendExists(): void {
-		$this->expectException(\Exception::class);
-
-		$backend1 = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend1->expects($this->any())
-			->method('implementsActions')
-			->willReturn(true);
-
-		$backend1->expects($this->never())
-			->method('createUser');
-
-		$backend1->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(false);
-
-		$backend2 = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend2->expects($this->any())
-			->method('implementsActions')
-			->willReturn(true);
-
-		$backend2->expects($this->never())
-			->method('createUser');
-
-		$backend2->expects($this->once())
-			->method('userExists')
-			->with($this->equalTo('foo'))
-			->willReturn(true);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend1);
-		$manager->registerBackend($backend2);
+    private IConfig&MockObject $config;
+    private IEventDispatcher&MockObject $eventDispatcher;
+    private ICacheFactory&MockObject $cacheFactory;
+    private ICache&MockObject $cache;
+    private LoggerInterface&MockObject $logger;
+
+    protected function setUp(): void {
+        parent::setUp();
+
+        $this->config = $this->createMock(IConfig::class);
+        $this->eventDispatcher = $this->createMock(IEventDispatcher::class);
+        $this->cacheFactory = $this->createMock(ICacheFactory::class);
+        $this->cache = $this->createMock(ICache::class);
+        $this->logger = $this->createMock(LoggerInterface::class);
+
+        $this->cacheFactory->method('createDistributed')
+            ->willReturn($this->cache);
+    }
+
+    public function testGetBackends(): void {
+        $userDummyBackend = $this->createMock(\Test\Util\User\Dummy::class);
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($userDummyBackend);
+        $this->assertEquals([$userDummyBackend], $manager->getBackends());
+        $dummyDatabaseBackend = $this->createMock(Database::class);
+        $manager->registerBackend($dummyDatabaseBackend);
+        $this->assertEquals([$userDummyBackend, $dummyDatabaseBackend], $manager->getBackends());
+    }
+
+
+    public function testUserExistsSingleBackendExists(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(true);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $this->assertTrue($manager->userExists('foo'));
+    }
+
+    public function testUserExistsTooLong(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->never())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(true);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $this->assertFalse($manager->userExists('foo' . str_repeat('a', 62)));
+    }
+
+    public function testUserExistsSingleBackendNotExists(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(false);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $this->assertFalse($manager->userExists('foo'));
+    }
+
+    public function testUserExistsNoBackends(): void {
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+
+        $this->assertFalse($manager->userExists('foo'));
+    }
+
+    public function testUserExistsTwoBackendsSecondExists(): void {
+        $backend1 = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend1->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(false);
+
+        $backend2 = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend2->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(true);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend1);
+        $manager->registerBackend($backend2);
+
+        $this->assertTrue($manager->userExists('foo'));
+    }
+
+    public function testUserExistsTwoBackendsFirstExists(): void {
+        $backend1 = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend1->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(true);
+
+        $backend2 = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend2->expects($this->never())
+            ->method('userExists');
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend1);
+        $manager->registerBackend($backend2);
+
+        $this->assertTrue($manager->userExists('foo'));
+    }
+
+    public function testCheckPassword(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->once())
+            ->method('checkPassword')
+            ->with($this->equalTo('foo'), $this->equalTo('bar'))
+            ->willReturn(true);
+
+        $backend->expects($this->any())
+            ->method('implementsActions')
+            ->willReturnCallback(function ($actions) {
+                if ($actions === BACKEND::CHECK_PASSWORD) {
+                    return true;
+                } else {
+                    return false;
+                }
+            });
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $user = $manager->checkPassword('foo', 'bar');
+        $this->assertTrue($user instanceof User);
+    }
+
+    public function testCheckPasswordNotSupported(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->never())
+            ->method('checkPassword');
+
+        $backend->expects($this->any())
+            ->method('implementsActions')
+            ->willReturn(false);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $this->assertFalse($manager->checkPassword('foo', 'bar'));
+    }
+
+    public function testGetOneBackendExists(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(true);
+        $backend->expects($this->never())
+            ->method('loginName2UserName');
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $this->assertEquals('foo', $manager->get('foo')->getUID());
+    }
+
+    public function testGetOneBackendNotExists(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(false);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $this->assertEquals(null, $manager->get('foo'));
+    }
+
+    public function testGetTooLong(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->never())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(false);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $this->assertEquals(null, $manager->get('foo' . str_repeat('a', 62)));
+    }
+
+    public function testGetOneBackendDoNotTranslateLoginNames(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('bLeNdEr'))
+            ->willReturn(true);
+        $backend->expects($this->never())
+            ->method('loginName2UserName');
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $this->assertEquals('bLeNdEr', $manager->get('bLeNdEr')->getUID());
+    }
+
+    public function testSearchOneBackend(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->once())
+            ->method('getUsers')
+            ->with($this->equalTo('fo'))
+            ->willReturn(['foo', 'afoo', 'Afoo1', 'Bfoo']);
+        $backend->expects($this->never())
+            ->method('loginName2UserName');
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $result = $manager->search('fo');
+        $this->assertEquals(4, count($result));
+        $this->assertEquals('afoo', array_shift($result)->getUID());
+        $this->assertEquals('Afoo1', array_shift($result)->getUID());
+        $this->assertEquals('Bfoo', array_shift($result)->getUID());
+        $this->assertEquals('foo', array_shift($result)->getUID());
+    }
+
+    public function testSearchTwoBackendLimitOffset(): void {
+        $backend1 = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend1->expects($this->once())
+            ->method('getUsers')
+            ->with($this->equalTo('fo'), $this->equalTo(3), $this->equalTo(1))
+            ->willReturn(['foo1', 'foo2']);
+        $backend1->expects($this->never())
+            ->method('loginName2UserName');
+
+        $backend2 = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend2->expects($this->once())
+            ->method('getUsers')
+            ->with($this->equalTo('fo'), $this->equalTo(3), $this->equalTo(1))
+            ->willReturn(['foo3']);
+        $backend2->expects($this->never())
+            ->method('loginName2UserName');
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend1);
+        $manager->registerBackend($backend2);
+
+        $result = $manager->search('fo', 3, 1);
+        $this->assertEquals(3, count($result));
+        $this->assertEquals('foo1', array_shift($result)->getUID());
+        $this->assertEquals('foo2', array_shift($result)->getUID());
+        $this->assertEquals('foo3', array_shift($result)->getUID());
+    }
+
+    public static function dataCreateUserInvalid(): array {
+        return [
+            ['te?st', 'foo', 'Only the following characters are allowed in a username:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
+            ["te\tst", '', 'Only the following characters are allowed in a username:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
+            ["te\nst", '', 'Only the following characters are allowed in a username:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
+            ["te\rst", '', 'Only the following characters are allowed in a username:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
+            ["te\0st", '', 'Only the following characters are allowed in a username:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
+            ["te\x0Bst", '', 'Only the following characters are allowed in a username:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
+            ["te\xe2st", '', 'Only the following characters are allowed in a username:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
+            ["te\x80st", '', 'Only the following characters are allowed in a username:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
+            ["te\x8bst", '', 'Only the following characters are allowed in a username:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'],
+            ['', 'foo', 'A valid username must be provided'],
+            [' ', 'foo', 'A valid username must be provided'],
+            [' test', 'foo', 'Username contains whitespace at the beginning or at the end'],
+            ['test ', 'foo', 'Username contains whitespace at the beginning or at the end'],
+            ['.', 'foo', 'Username must not consist of dots only'],
+            ['..', 'foo', 'Username must not consist of dots only'],
+            ['.test', '', 'A valid password must be provided'],
+            ['test', '', 'A valid password must be provided'],
+            ['test' . str_repeat('a', 61), '', 'Login is too long'],
+        ];
+    }
+
+    #[\PHPUnit\Framework\Attributes\DataProvider('dataCreateUserInvalid')]
+    public function testCreateUserInvalid($uid, $password, $exception): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->once())
+            ->method('implementsActions')
+            ->with(\OC\User\Backend::CREATE_USER)
+            ->willReturn(true);
+
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $this->expectException(\InvalidArgumentException::class, $exception);
+        $manager->createUser($uid, $password);
+    }
+
+    public function testCreateUserSingleBackendNotExists(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->any())
+            ->method('implementsActions')
+            ->willReturn(true);
+
+        $backend->expects($this->once())
+            ->method('createUser')
+            ->with($this->equalTo('foo'), $this->equalTo('bar'));
+
+        $backend->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(false);
+        $backend->expects($this->never())
+            ->method('loginName2UserName');
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $user = $manager->createUser('foo', 'bar');
+        $this->assertEquals('foo', $user->getUID());
+    }
+
+
+    public function testCreateUserSingleBackendExists(): void {
+        $this->expectException(\Exception::class);
+
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->any())
+            ->method('implementsActions')
+            ->willReturn(true);
+
+        $backend->expects($this->never())
+            ->method('createUser');
+
+        $backend->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(true);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $manager->createUser('foo', 'bar');
+    }
+
+    public function testCreateUserSingleBackendNotSupported(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->any())
+            ->method('implementsActions')
+            ->willReturn(false);
+
+        $backend->expects($this->never())
+            ->method('createUser');
+
+        $backend->expects($this->never())
+            ->method('userExists');
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $this->assertFalse($manager->createUser('foo', 'bar'));
+    }
+
+    public function testCreateUserNoBackends(): void {
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+
+        $this->assertFalse($manager->createUser('foo', 'bar'));
+    }
+
+
+    public function testCreateUserFromBackendWithBackendError(): void {
+        $this->expectException(\InvalidArgumentException::class);
+        $this->expectExceptionMessage('Could not create account');
+
+        /** @var \Test\Util\User\Dummy&MockObject $backend */
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend
+            ->expects($this->once())
+            ->method('createUser')
+            ->with('MyUid', 'MyPassword')
+            ->willReturn(false);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->createUserFromBackend('MyUid', 'MyPassword', $backend);
+    }
+
+
+    public function testCreateUserTwoBackendExists(): void {
+        $this->expectException(\Exception::class);
+
+        $backend1 = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend1->expects($this->any())
+            ->method('implementsActions')
+            ->willReturn(true);
+
+        $backend1->expects($this->never())
+            ->method('createUser');
+
+        $backend1->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(false);
+
+        $backend2 = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend2->expects($this->any())
+            ->method('implementsActions')
+            ->willReturn(true);
+
+        $backend2->expects($this->never())
+            ->method('createUser');
+
+        $backend2->expects($this->once())
+            ->method('userExists')
+            ->with($this->equalTo('foo'))
+            ->willReturn(true);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend1);
+        $manager->registerBackend($backend2);
 
-		$manager->createUser('foo', 'bar');
-	}
-
-	public function testCountUsersNoBackend(): void {
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-
-		$result = $manager->countUsers();
-		$this->assertTrue(is_array($result));
-		$this->assertTrue(empty($result));
-	}
-
-	public function testCountUsersOneBackend(): void {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->expects($this->once())
-			->method('countUsers')
-			->willReturn(7);
-
-		$backend->expects($this->once())
-			->method('implementsActions')
-			->with(BACKEND::COUNT_USERS)
-			->willReturn(true);
-
-		$backend->expects($this->once())
-			->method('getBackendName')
-			->willReturn('Mock_Test_Util_User_Dummy');
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$result = $manager->countUsers();
-		$keys = array_keys($result);
-		$this->assertTrue(strpos($keys[0], 'Mock_Test_Util_User_Dummy') !== false);
-
-		$users = array_shift($result);
-		$this->assertEquals(7, $users);
-	}
-
-	public function testCountUsersTwoBackends(): void {
-		/**
-		 * @var \Test\Util\User\Dummy&MockObject $backend
-		 */
-		$backend1 = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend1->expects($this->once())
-			->method('countUsers')
-			->willReturn(7);
-
-		$backend1->expects($this->once())
-			->method('implementsActions')
-			->with(BACKEND::COUNT_USERS)
-			->willReturn(true);
-		$backend1->expects($this->once())
-			->method('getBackendName')
-			->willReturn('Mock_Test_Util_User_Dummy');
-
-		$backend2 = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend2->expects($this->once())
-			->method('countUsers')
-			->willReturn(16);
-
-		$backend2->expects($this->once())
-			->method('implementsActions')
-			->with(BACKEND::COUNT_USERS)
-			->willReturn(true);
-		$backend2->expects($this->once())
-			->method('getBackendName')
-			->willReturn('Mock_Test_Util_User_Dummy');
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend1);
-		$manager->registerBackend($backend2);
-
-		$result = $manager->countUsers();
-		//because the backends have the same class name, only one value expected
-		$this->assertEquals(1, count($result));
-		$keys = array_keys($result);
-		$this->assertTrue(strpos($keys[0], 'Mock_Test_Util_User_Dummy') !== false);
-
-		$users = array_shift($result);
-		//users from backends shall be summed up
-		$this->assertEquals(7 + 16, $users);
-	}
-
-	public function testCountUsersOnlyDisabled(): void {
-		$manager = Server::get(IUserManager::class);
-		// count other users in the db before adding our own
-		$countBefore = $manager->countDisabledUsers();
-
-		//Add test users
-		$user1 = $manager->createUser('testdisabledcount1', 'testdisabledcount1');
-
-		$user2 = $manager->createUser('testdisabledcount2', 'testdisabledcount2');
-		$user2->setEnabled(false);
-
-		$user3 = $manager->createUser('testdisabledcount3', 'testdisabledcount3');
-
-		$user4 = $manager->createUser('testdisabledcount4', 'testdisabledcount4');
-		$user4->setEnabled(false);
-
-		$this->assertEquals($countBefore + 2, $manager->countDisabledUsers());
-
-		//cleanup
-		$user1->delete();
-		$user2->delete();
-		$user3->delete();
-		$user4->delete();
-	}
-
-	public function testCountUsersOnlySeen(): void {
-		$manager = Server::get(IUserManager::class);
-		// count other users in the db before adding our own
-		$countBefore = $manager->countSeenUsers();
-
-		//Add test users
-		$user1 = $manager->createUser('testseencount1', 'testseencount1');
-		$user1->updateLastLoginTimestamp();
-
-		$user2 = $manager->createUser('testseencount2', 'testseencount2');
-		$user2->updateLastLoginTimestamp();
-
-		$user3 = $manager->createUser('testseencount3', 'testseencount3');
-
-		$user4 = $manager->createUser('testseencount4', 'testseencount4');
-		$user4->updateLastLoginTimestamp();
-
-		$this->assertEquals($countBefore + 3, $manager->countSeenUsers());
-
-		//cleanup
-		$user1->delete();
-		$user2->delete();
-		$user3->delete();
-		$user4->delete();
-	}
-
-	public function testCallForSeenUsers(): void {
-		$manager = Server::get(IUserManager::class);
-		// count other users in the db before adding our own
-		$count = 0;
-		$function = function (IUser $user) use (&$count): void {
-			$count++;
-		};
-		$manager->callForAllUsers($function, '', true);
-		$countBefore = $count;
-
-		//Add test users
-		$user1 = $manager->createUser('testseen1', 'testseen10');
-		$user1->updateLastLoginTimestamp();
-
-		$user2 = $manager->createUser('testseen2', 'testseen20');
-		$user2->updateLastLoginTimestamp();
-
-		$user3 = $manager->createUser('testseen3', 'testseen30');
-
-		$user4 = $manager->createUser('testseen4', 'testseen40');
-		$user4->updateLastLoginTimestamp();
-
-		$count = 0;
-		$manager->callForAllUsers($function, '', true);
-
-		$this->assertEquals($countBefore + 3, $count);
-
-		//cleanup
-		$user1->delete();
-		$user2->delete();
-		$user3->delete();
-		$user4->delete();
-	}
-
-	#[\PHPUnit\Framework\Attributes\RunInSeparateProcess]
-	#[\PHPUnit\Framework\Attributes\PreserveGlobalState(enabled: false)]
-	public function testRecentlyActive(): void {
-		$config = Server::get(IConfig::class);
-		$manager = Server::get(IUserManager::class);
-
-		// Create some users
-		$now = (string)time();
-		$user1 = $manager->createUser('test_active_1', 'test_active_1');
-		$config->setUserValue('test_active_1', 'login', 'lastLogin', $now);
-		$user1->setDisplayName('test active 1');
-		$user1->setSystemEMailAddress('roger@active.com');
-
-		$user2 = $manager->createUser('TEST_ACTIVE_2_FRED', 'TEST_ACTIVE_2');
-		$config->setUserValue('TEST_ACTIVE_2_FRED', 'login', 'lastLogin', $now);
-		$user2->setDisplayName('TEST ACTIVE 2 UPPER');
-		$user2->setSystemEMailAddress('Fred@Active.Com');
-
-		$user3 = $manager->createUser('test_active_3', 'test_active_3');
-		$config->setUserValue('test_active_3', 'login', 'lastLogin', $now + 1);
-		$user3->setDisplayName('test active 3');
-
-		$user4 = $manager->createUser('test_active_4', 'test_active_4');
-		$config->setUserValue('test_active_4', 'login', 'lastLogin', $now);
-		$user4->setDisplayName('Test Active 4');
-
-		$user5 = $manager->createUser('test_inactive_1', 'test_inactive_1');
-		$user5->setDisplayName('Test Inactive 1');
-		$user2->setSystemEMailAddress('jeanne@Active.Com');
-
-		// Search recently active
-		//  - No search, case-insensitive order
-		$users = $manager->getLastLoggedInUsers(4);
-		$this->assertEquals(['test_active_3', 'test_active_1', 'TEST_ACTIVE_2_FRED', 'test_active_4'], $users);
-		//  - Search, case-insensitive order
-		$users = $manager->getLastLoggedInUsers(search: 'act');
-		$this->assertEquals(['test_active_3', 'test_active_1', 'TEST_ACTIVE_2_FRED', 'test_active_4'], $users);
-		//  - No search with offset
-		$users = $manager->getLastLoggedInUsers(2, 2);
-		$this->assertEquals(['TEST_ACTIVE_2_FRED', 'test_active_4'], $users);
-		//  - Case insensitive search (email)
-		$users = $manager->getLastLoggedInUsers(search: 'active.com');
-		$this->assertEquals(['test_active_1', 'TEST_ACTIVE_2_FRED'], $users);
-		//  - Case insensitive search (display name)
-		$users = $manager->getLastLoggedInUsers(search: 'upper');
-		$this->assertEquals(['TEST_ACTIVE_2_FRED'], $users);
-		//  - Case insensitive search (uid)
-		$users = $manager->getLastLoggedInUsers(search: 'fred');
-		$this->assertEquals(['TEST_ACTIVE_2_FRED'], $users);
-
-		// Delete users and config keys
-		$user1->delete();
-		$user2->delete();
-		$user3->delete();
-		$user4->delete();
-		$user5->delete();
-	}
-
-	public function testDeleteUser(): void {
-		/** @var AllConfig&MockObject */
-		$config = $this->getMockBuilder(AllConfig::class)
-			->disableOriginalConstructor()
-			->getMock();
-		$config
-			->expects($this->any())
-			->method('getUserValue')
-			->willReturnArgument(3);
-		$config
-			->expects($this->any())
-			->method('getAppValue')
-			->willReturnArgument(2);
-
-		$manager = new Manager($config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$backend = new \Test\Util\User\Dummy();
-
-		$manager->registerBackend($backend);
-		$backend->createUser('foo', 'bar');
-		$this->assertTrue($manager->userExists('foo'));
-		$manager->get('foo')->delete();
-		$this->assertFalse($manager->userExists('foo'));
-	}
-
-	public function testGetByEmail(): void {
-		$userConfig = $this->createMock(IUserConfig::class);
-		$userConfig->expects($this->once())
-			->method('searchUsersByValueString')
-			->with('settings', 'email', 'test@example.com')
-			->willReturnCallback(function () {
-				yield 'uid1';
-				yield 'uid99';
-				yield 'uid2';
-			});
-
-		$manager = $this->getMockBuilder(Manager::class)
-			->setConstructorArgs([$this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger])
-			->onlyMethods(['getUserConfig', 'get'])
-			->getMock();
-		$manager->method('getUserConfig')->willReturn($userConfig);
-		$manager->expects($this->exactly(3))
-			->method('get')
-			->willReturnCallback(function (string $uid): ?IUser {
-				if ($uid === 'uid99') {
-					return null;
-				}
-				$user = $this->createMock(IUser::class);
-				$user->method('getUID')->willReturn($uid);
-				return $user;
-			});
-
-		$users = $manager->getByEmail('test@example.com');
-		$this->assertCount(2, $users);
-		$this->assertEquals('uid1', $users[0]->getUID());
-		$this->assertEquals('uid2', $users[1]->getUID());
-	}
-
-	public function testGetExistingUser() {
-		$backend = $this->createMock(\Test\Util\User\Dummy::class);
-		$backend->method('userExists')
-			->with('foobar')
-			->willReturn(true);
-		$backend->method('getDisplayName')
-			->willReturn('Foo Bar');
-		$backend->method('implementsActions')
-			->willReturnCallback(fn (int $action) => $action === Backend::GET_DISPLAYNAME);
-
-		$manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
-		$manager->registerBackend($backend);
-
-		$user = $manager->getExistingUser('foobar');
-		$this->assertEquals('foobar', $user->getUID());
-		$this->assertEquals('Foo Bar', $user->getDisplayName());
-
-		$user = $manager->getExistingUser('nobody', 'None');
-		$this->assertEquals('nobody', $user->getUID());
-		$this->assertEquals('None', $user->getDisplayName());
-	}
+        $manager->createUser('foo', 'bar');
+    }
+
+    public function testCountUsersNoBackend(): void {
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+
+        $result = $manager->countUsers();
+        $this->assertTrue(is_array($result));
+        $this->assertTrue(empty($result));
+    }
+
+    public function testCountUsersOneBackend(): void {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->expects($this->once())
+            ->method('countUsers')
+            ->willReturn(7);
+
+        $backend->expects($this->once())
+            ->method('implementsActions')
+            ->with(BACKEND::COUNT_USERS)
+            ->willReturn(true);
+
+        $backend->expects($this->once())
+            ->method('getBackendName')
+            ->willReturn('Mock_Test_Util_User_Dummy');
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $result = $manager->countUsers();
+        $keys = array_keys($result);
+        $this->assertTrue(strpos($keys[0], 'Mock_Test_Util_User_Dummy') !== false);
+
+        $users = array_shift($result);
+        $this->assertEquals(7, $users);
+    }
+
+    public function testCountUsersTwoBackends(): void {
+        /**
+         * @var \Test\Util\User\Dummy&MockObject $backend
+         */
+        $backend1 = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend1->expects($this->once())
+            ->method('countUsers')
+            ->willReturn(7);
+
+        $backend1->expects($this->once())
+            ->method('implementsActions')
+            ->with(BACKEND::COUNT_USERS)
+            ->willReturn(true);
+        $backend1->expects($this->once())
+            ->method('getBackendName')
+            ->willReturn('Mock_Test_Util_User_Dummy');
+
+        $backend2 = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend2->expects($this->once())
+            ->method('countUsers')
+            ->willReturn(16);
+
+        $backend2->expects($this->once())
+            ->method('implementsActions')
+            ->with(BACKEND::COUNT_USERS)
+            ->willReturn(true);
+        $backend2->expects($this->once())
+            ->method('getBackendName')
+            ->willReturn('Mock_Test_Util_User_Dummy');
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend1);
+        $manager->registerBackend($backend2);
+
+        $result = $manager->countUsers();
+        //because the backends have the same class name, only one value expected
+        $this->assertEquals(1, count($result));
+        $keys = array_keys($result);
+        $this->assertTrue(strpos($keys[0], 'Mock_Test_Util_User_Dummy') !== false);
+
+        $users = array_shift($result);
+        //users from backends shall be summed up
+        $this->assertEquals(7 + 16, $users);
+    }
+
+    public function testCountUsersOnlyDisabled(): void {
+        $manager = Server::get(IUserManager::class);
+        // count other users in the db before adding our own
+        $countBefore = $manager->countDisabledUsers();
+
+        //Add test users
+        $user1 = $manager->createUser('testdisabledcount1', 'testdisabledcount1');
+
+        $user2 = $manager->createUser('testdisabledcount2', 'testdisabledcount2');
+        $user2->setEnabled(false);
+
+        $user3 = $manager->createUser('testdisabledcount3', 'testdisabledcount3');
+
+        $user4 = $manager->createUser('testdisabledcount4', 'testdisabledcount4');
+        $user4->setEnabled(false);
+
+        $this->assertEquals($countBefore + 2, $manager->countDisabledUsers());
+
+        //cleanup
+        $user1->delete();
+        $user2->delete();
+        $user3->delete();
+        $user4->delete();
+    }
+
+    public function testCountUsersOnlySeen(): void {
+        $manager = Server::get(IUserManager::class);
+        // count other users in the db before adding our own
+        $countBefore = $manager->countSeenUsers();
+
+        //Add test users
+        $user1 = $manager->createUser('testseencount1', 'testseencount1');
+        $user1->updateLastLoginTimestamp();
+
+        $user2 = $manager->createUser('testseencount2', 'testseencount2');
+        $user2->updateLastLoginTimestamp();
+
+        $user3 = $manager->createUser('testseencount3', 'testseencount3');
+
+        $user4 = $manager->createUser('testseencount4', 'testseencount4');
+        $user4->updateLastLoginTimestamp();
+
+        $this->assertEquals($countBefore + 3, $manager->countSeenUsers());
+
+        //cleanup
+        $user1->delete();
+        $user2->delete();
+        $user3->delete();
+        $user4->delete();
+    }
+
+    public function testCallForSeenUsers(): void {
+        $manager = Server::get(IUserManager::class);
+        // count other users in the db before adding our own
+        $count = 0;
+        $function = function (IUser $user) use (&$count): void {
+            $count++;
+        };
+        $manager->callForAllUsers($function, '', true);
+        $countBefore = $count;
+
+        //Add test users
+        $user1 = $manager->createUser('testseen1', 'testseen10');
+        $user1->updateLastLoginTimestamp();
+
+        $user2 = $manager->createUser('testseen2', 'testseen20');
+        $user2->updateLastLoginTimestamp();
+
+        $user3 = $manager->createUser('testseen3', 'testseen30');
+
+        $user4 = $manager->createUser('testseen4', 'testseen40');
+        $user4->updateLastLoginTimestamp();
+
+        $count = 0;
+        $manager->callForAllUsers($function, '', true);
+
+        $this->assertEquals($countBefore + 3, $count);
+
+        //cleanup
+        $user1->delete();
+        $user2->delete();
+        $user3->delete();
+        $user4->delete();
+    }
+
+    #[\PHPUnit\Framework\Attributes\RunInSeparateProcess]
+    #[\PHPUnit\Framework\Attributes\PreserveGlobalState(enabled: false)]
+    public function testRecentlyActive(): void {
+        $config = Server::get(IConfig::class);
+        $manager = Server::get(IUserManager::class);
+
+        // Create some users
+        $now = (string)time();
+        $user1 = $manager->createUser('test_active_1', 'test_active_1');
+        $config->setUserValue('test_active_1', 'login', 'lastLogin', $now);
+        $user1->setDisplayName('test active 1');
+        $user1->setSystemEMailAddress('roger@active.com');
+
+        $user2 = $manager->createUser('TEST_ACTIVE_2_FRED', 'TEST_ACTIVE_2');
+        $config->setUserValue('TEST_ACTIVE_2_FRED', 'login', 'lastLogin', $now);
+        $user2->setDisplayName('TEST ACTIVE 2 UPPER');
+        $user2->setSystemEMailAddress('Fred@Active.Com');
+
+        $user3 = $manager->createUser('test_active_3', 'test_active_3');
+        $config->setUserValue('test_active_3', 'login', 'lastLogin', $now + 1);
+        $user3->setDisplayName('test active 3');
+
+        $user4 = $manager->createUser('test_active_4', 'test_active_4');
+        $config->setUserValue('test_active_4', 'login', 'lastLogin', $now);
+        $user4->setDisplayName('Test Active 4');
+
+        $user5 = $manager->createUser('test_inactive_1', 'test_inactive_1');
+        $user5->setDisplayName('Test Inactive 1');
+        $user2->setSystemEMailAddress('jeanne@Active.Com');
+
+        // Search recently active
+        //  - No search, case-insensitive order
+        $users = $manager->getLastLoggedInUsers(4);
+        $this->assertEquals(['test_active_3', 'test_active_1', 'TEST_ACTIVE_2_FRED', 'test_active_4'], $users);
+        //  - Search, case-insensitive order
+        $users = $manager->getLastLoggedInUsers(search: 'act');
+        $this->assertEquals(['test_active_3', 'test_active_1', 'TEST_ACTIVE_2_FRED', 'test_active_4'], $users);
+        //  - No search with offset
+        $users = $manager->getLastLoggedInUsers(2, 2);
+        $this->assertEquals(['TEST_ACTIVE_2_FRED', 'test_active_4'], $users);
+        //  - Case insensitive search (email)
+        $users = $manager->getLastLoggedInUsers(search: 'active.com');
+        $this->assertEquals(['test_active_1', 'TEST_ACTIVE_2_FRED'], $users);
+        //  - Case insensitive search (display name)
+        $users = $manager->getLastLoggedInUsers(search: 'upper');
+        $this->assertEquals(['TEST_ACTIVE_2_FRED'], $users);
+        //  - Case insensitive search (uid)
+        $users = $manager->getLastLoggedInUsers(search: 'fred');
+        $this->assertEquals(['TEST_ACTIVE_2_FRED'], $users);
+
+        // Delete users and config keys
+        $user1->delete();
+        $user2->delete();
+        $user3->delete();
+        $user4->delete();
+        $user5->delete();
+    }
+
+    public function testDeleteUser(): void {
+        /** @var AllConfig&MockObject */
+        $config = $this->getMockBuilder(AllConfig::class)
+            ->disableOriginalConstructor()
+            ->getMock();
+        $config
+            ->expects($this->any())
+            ->method('getUserValue')
+            ->willReturnArgument(3);
+        $config
+            ->expects($this->any())
+            ->method('getAppValue')
+            ->willReturnArgument(2);
+
+        $manager = new Manager($config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $backend = new \Test\Util\User\Dummy();
+
+        $manager->registerBackend($backend);
+        $backend->createUser('foo', 'bar');
+        $this->assertTrue($manager->userExists('foo'));
+        $manager->get('foo')->delete();
+        $this->assertFalse($manager->userExists('foo'));
+    }
+
+    public function testGetByEmail(): void {
+        $userConfig = $this->createMock(IUserConfig::class);
+        $userConfig->expects($this->once())
+            ->method('searchUsersByValueString')
+            ->with('settings', 'email', 'test@example.com')
+            ->willReturnCallback(function () {
+                yield 'uid1';
+                yield 'uid99';
+                yield 'uid2';
+            });
+
+        $manager = $this->getMockBuilder(Manager::class)
+            ->setConstructorArgs([$this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger])
+            ->onlyMethods(['getUserConfig', 'get'])
+            ->getMock();
+        $manager->method('getUserConfig')->willReturn($userConfig);
+        $manager->expects($this->exactly(3))
+            ->method('get')
+            ->willReturnCallback(function (string $uid): ?IUser {
+                if ($uid === 'uid99') {
+                    return null;
+                }
+                $user = $this->createMock(IUser::class);
+                $user->method('getUID')->willReturn($uid);
+                return $user;
+            });
+
+        $users = $manager->getByEmail('test@example.com');
+        $this->assertCount(2, $users);
+        $this->assertEquals('uid1', $users[0]->getUID());
+        $this->assertEquals('uid2', $users[1]->getUID());
+    }
+
+    public function testGetExistingUser() {
+        $backend = $this->createMock(\Test\Util\User\Dummy::class);
+        $backend->method('userExists')
+            ->with('foobar')
+            ->willReturn(true);
+        $backend->method('getDisplayName')
+            ->willReturn('Foo Bar');
+        $backend->method('implementsActions')
+            ->willReturnCallback(fn (int $action) => $action === Backend::GET_DISPLAYNAME);
+
+        $manager = new Manager($this->config, $this->cacheFactory, $this->eventDispatcher, $this->logger);
+        $manager->registerBackend($backend);
+
+        $user = $manager->getExistingUser('foobar');
+        $this->assertEquals('foobar', $user->getUID());
+        $this->assertEquals('Foo Bar', $user->getDisplayName());
+
+        $user = $manager->getExistingUser('nobody', 'None');
+        $this->assertEquals('nobody', $user->getUID());
+        $this->assertEquals('None', $user->getDisplayName());
+    }
 }