Inspection of "Merge pull request #52086 from nextcloud/fix/clean..." - nextcloud/server - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 96a8a7...696e16 )

unknown

created 2025-04-14 13:49 UTC

Status

Indentation +219 added lines, -219 removed lines patch added patch discarded remove patch

@@ -24,223 +24,223 @@
 block discarded – undo
  * @since 8.0.0
  */
 interface IUserManager {
-	/**
-	 * @since 26.0.0
-	 */
-	public const MAX_PASSWORD_LENGTH = 469;
-
-	/**
-	 * register a user backend
-	 *
-	 * @since 8.0.0
-	 * @return void
-	 */
-	public function registerBackend(UserInterface $backend);
-
-	/**
-	 * Get the active backends
-	 * @return UserInterface[]
-	 * @since 8.0.0
-	 */
-	public function getBackends();
-
-	/**
-	 * remove a user backend
-	 *
-	 * @since 8.0.0
-	 * @return void
-	 */
-	public function removeBackend(UserInterface $backend);
-
-	/**
-	 * remove all user backends
-	 * @since 8.0.0
-	 * @return void
-	 */
-	public function clearBackends();
-
-	/**
-	 * get a user by user id
-	 *
-	 * @param string $uid
-	 * @return \OCP\IUser|null Either the user or null if the specified user does not exist
-	 * @since 8.0.0
-	 */
-	public function get($uid);
-
-	/**
-	 * Get the display name of a user
-	 *
-	 * @param string $uid
-	 * @return string|null
-	 * @since 25.0.0
-	 */
-	public function getDisplayName(string $uid): ?string;
-
-	/**
-	 * check if a user exists
-	 *
-	 * @param string $uid
-	 * @return bool
-	 * @since 8.0.0
-	 */
-	public function userExists($uid);
-
-	/**
-	 * Check if the password is valid for the user
-	 *
-	 * @param string $loginName
-	 * @param string $password
-	 * @return IUser|false the User object on success, false otherwise
-	 * @since 8.0.0
-	 */
-	public function checkPassword($loginName, $password);
-
-	/**
-	 * search by user id
-	 *
-	 * @param string $pattern
-	 * @param int $limit
-	 * @param int $offset
-	 * @return \OCP\IUser[]
-	 * @since 8.0.0
-	 */
-	public function search($pattern, $limit = null, $offset = null);
-
-	/**
-	 * search by displayName
-	 *
-	 * @param string $pattern
-	 * @param int $limit
-	 * @param int $offset
-	 * @return \OCP\IUser[]
-	 * @since 8.0.0
-	 */
-	public function searchDisplayName($pattern, $limit = null, $offset = null);
-
-	/**
-	 * @return IUser[]
-	 * @since 28.0.0
-	 * @since 30.0.0 $search parameter added
-	 */
-	public function getDisabledUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
-
-	/**
-	 * Search known users (from phonebook sync) by displayName
-	 *
-	 * @param string $searcher
-	 * @param string $pattern
-	 * @param int|null $limit
-	 * @param int|null $offset
-	 * @return IUser[]
-	 * @since 21.0.1
-	 */
-	public function searchKnownUsersByDisplayName(string $searcher, string $pattern, ?int $limit = null, ?int $offset = null): array;
-
-	/**
-	 * @param string $uid
-	 * @param string $password
-	 * @throws \InvalidArgumentException
-	 * @return false|\OCP\IUser the created user or false
-	 * @since 8.0.0
-	 */
-	public function createUser($uid, $password);
-
-	/**
-	 * @param string $uid
-	 * @param string $password
-	 * @param UserInterface $backend
-	 * @return IUser|null
-	 * @throws \InvalidArgumentException
-	 * @since 12.0.0
-	 */
-	public function createUserFromBackend($uid, $password, UserInterface $backend);
-
-	/**
-	 * Get how many users per backend exist (if supported by backend)
-	 *
-	 * @return array<string, int> an array of backend class name as key and count number as value
-	 * @since 8.0.0
-	 */
-	public function countUsers();
-
-	/**
-	 * Get how many users exists in total, whithin limit
-	 *
-	 * @param int $limit Limit the count to avoid resource waste. 0 to disable
-	 * @param bool $onlyMappedUsers Count mapped users instead of all users for compatible backends
-	 *
-	 * @since 31.0.0
-	 */
-	public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int|false;
-
-	/**
-	 * @param \Closure $callback
-	 * @psalm-param \Closure(\OCP\IUser):void $callback
-	 * @param string $search
-	 * @since 9.0.0
-	 */
-	public function callForAllUsers(\Closure $callback, $search = '');
-
-	/**
-	 * returns how many users have logged in once
-	 *
-	 * @return int
-	 * @since 11.0.0
-	 */
-	public function countDisabledUsers();
-
-	/**
-	 * returns how many users have logged in once
-	 *
-	 * @return int
-	 * @since 11.0.0
-	 */
-	public function countSeenUsers();
-
-	/**
-	 * @param \Closure $callback
-	 * @psalm-param \Closure(\OCP\IUser):?bool $callback
-	 * @since 11.0.0
-	 */
-	public function callForSeenUsers(\Closure $callback);
-
-	/**
-	 * returns all users having the provided email set as system email address
-	 *
-	 * @param string $email
-	 * @return IUser[]
-	 * @since 9.1.0
-	 */
-	public function getByEmail($email);
-
-	/**
-	 * @param string $uid The user ID to validate
-	 * @param bool $checkDataDirectory Whether it should be checked if files for the ID exist inside the data directory
-	 * @throws \InvalidArgumentException Message is an already translated string with a reason why the ID is not valid
-	 * @since 26.0.0
-	 */
-	public function validateUserId(string $uid, bool $checkDataDirectory = false): void;
-
-	/**
-	 * Gets the list of users sorted by lastLogin, from most recent to least recent
-	 *
-	 * @param int|null $limit how many records to fetch
-	 * @param int $offset from which offset to fetch
-	 * @param string $search search users based on search params
-	 * @return list<string> list of user IDs
-	 * @since 30.0.0
-	 */
-	public function getLastLoggedInUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
-
-	/**
-	 * Gets the list of users.
-	 * An iterator is returned allowing the caller to stop the iteration at any time.
-	 * The offset argument allows the caller to continue the iteration at a specific offset.
-	 *
-	 * @param int $offset from which offset to fetch
-	 * @return \Iterator<IUser> list of IUser object
-	 * @since 32.0.0
-	 */
-	public function getSeenUsers(int $offset = 0): \Iterator;
+    /**
+     * @since 26.0.0
+     */
+    public const MAX_PASSWORD_LENGTH = 469;
+
+    /**
+     * register a user backend
+     *
+     * @since 8.0.0
+     * @return void
+     */
+    public function registerBackend(UserInterface $backend);
+
+    /**
+     * Get the active backends
+     * @return UserInterface[]
+     * @since 8.0.0
+     */
+    public function getBackends();
+
+    /**
+     * remove a user backend
+     *
+     * @since 8.0.0
+     * @return void
+     */
+    public function removeBackend(UserInterface $backend);
+
+    /**
+     * remove all user backends
+     * @since 8.0.0
+     * @return void
+     */
+    public function clearBackends();
+
+    /**
+     * get a user by user id
+     *
+     * @param string $uid
+     * @return \OCP\IUser|null Either the user or null if the specified user does not exist
+     * @since 8.0.0
+     */
+    public function get($uid);
+
+    /**
+     * Get the display name of a user
+     *
+     * @param string $uid
+     * @return string|null
+     * @since 25.0.0
+     */
+    public function getDisplayName(string $uid): ?string;
+
+    /**
+     * check if a user exists
+     *
+     * @param string $uid
+     * @return bool
+     * @since 8.0.0
+     */
+    public function userExists($uid);
+
+    /**
+     * Check if the password is valid for the user
+     *
+     * @param string $loginName
+     * @param string $password
+     * @return IUser|false the User object on success, false otherwise
+     * @since 8.0.0
+     */
+    public function checkPassword($loginName, $password);
+
+    /**
+     * search by user id
+     *
+     * @param string $pattern
+     * @param int $limit
+     * @param int $offset
+     * @return \OCP\IUser[]
+     * @since 8.0.0
+     */
+    public function search($pattern, $limit = null, $offset = null);
+
+    /**
+     * search by displayName
+     *
+     * @param string $pattern
+     * @param int $limit
+     * @param int $offset
+     * @return \OCP\IUser[]
+     * @since 8.0.0
+     */
+    public function searchDisplayName($pattern, $limit = null, $offset = null);
+
+    /**
+     * @return IUser[]
+     * @since 28.0.0
+     * @since 30.0.0 $search parameter added
+     */
+    public function getDisabledUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
+
+    /**
+     * Search known users (from phonebook sync) by displayName
+     *
+     * @param string $searcher
+     * @param string $pattern
+     * @param int|null $limit
+     * @param int|null $offset
+     * @return IUser[]
+     * @since 21.0.1
+     */
+    public function searchKnownUsersByDisplayName(string $searcher, string $pattern, ?int $limit = null, ?int $offset = null): array;
+
+    /**
+     * @param string $uid
+     * @param string $password
+     * @throws \InvalidArgumentException
+     * @return false|\OCP\IUser the created user or false
+     * @since 8.0.0
+     */
+    public function createUser($uid, $password);
+
+    /**
+     * @param string $uid
+     * @param string $password
+     * @param UserInterface $backend
+     * @return IUser|null
+     * @throws \InvalidArgumentException
+     * @since 12.0.0
+     */
+    public function createUserFromBackend($uid, $password, UserInterface $backend);
+
+    /**
+     * Get how many users per backend exist (if supported by backend)
+     *
+     * @return array<string, int> an array of backend class name as key and count number as value
+     * @since 8.0.0
+     */
+    public function countUsers();
+
+    /**
+     * Get how many users exists in total, whithin limit
+     *
+     * @param int $limit Limit the count to avoid resource waste. 0 to disable
+     * @param bool $onlyMappedUsers Count mapped users instead of all users for compatible backends
+     *
+     * @since 31.0.0
+     */
+    public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int|false;
+
+    /**
+     * @param \Closure $callback
+     * @psalm-param \Closure(\OCP\IUser):void $callback
+     * @param string $search
+     * @since 9.0.0
+     */
+    public function callForAllUsers(\Closure $callback, $search = '');
+
+    /**
+     * returns how many users have logged in once
+     *
+     * @return int
+     * @since 11.0.0
+     */
+    public function countDisabledUsers();
+
+    /**
+     * returns how many users have logged in once
+     *
+     * @return int
+     * @since 11.0.0
+     */
+    public function countSeenUsers();
+
+    /**
+     * @param \Closure $callback
+     * @psalm-param \Closure(\OCP\IUser):?bool $callback
+     * @since 11.0.0
+     */
+    public function callForSeenUsers(\Closure $callback);
+
+    /**
+     * returns all users having the provided email set as system email address
+     *
+     * @param string $email
+     * @return IUser[]
+     * @since 9.1.0
+     */
+    public function getByEmail($email);
+
+    /**
+     * @param string $uid The user ID to validate
+     * @param bool $checkDataDirectory Whether it should be checked if files for the ID exist inside the data directory
+     * @throws \InvalidArgumentException Message is an already translated string with a reason why the ID is not valid
+     * @since 26.0.0
+     */
+    public function validateUserId(string $uid, bool $checkDataDirectory = false): void;
+
+    /**
+     * Gets the list of users sorted by lastLogin, from most recent to least recent
+     *
+     * @param int|null $limit how many records to fetch
+     * @param int $offset from which offset to fetch
+     * @param string $search search users based on search params
+     * @return list<string> list of user IDs
+     * @since 30.0.0
+     */
+    public function getLastLoggedInUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
+
+    /**
+     * Gets the list of users.
+     * An iterator is returned allowing the caller to stop the iteration at any time.
+     * The offset argument allows the caller to continue the iteration at a specific offset.
+     *
+     * @param int $offset from which offset to fetch
+     * @return \Iterator<IUser> list of IUser object
+     * @since 32.0.0
+     */
+    public function getSeenUsers(int $offset = 0): \Iterator;
 }

Please login to merge, or discard this patch.

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -172,7 +172,7 @@
 block discarded – undo
 	 *
 	 * @since 31.0.0
 	 */
-	public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int|false;
+	public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int | false;
 
 	/**
 	 * @param \Closure $callback

Please login to merge, or discard this patch.

lib/private/legacy/OC_User.php 2 patches

Indentation +362 added lines, -362 removed lines patch added patch discarded remove patch

@@ -40,366 +40,366 @@
 block discarded – undo
  *   logout()
  */
 class OC_User {
-	private static $_setupedBackends = [];
-
-	// bool, stores if a user want to access a resource anonymously, e.g if they open a public link
-	private static $incognitoMode = false;
-
-	/**
-	 * Adds the backend to the list of used backends
-	 *
-	 * @param string|\OCP\UserInterface $backend default: database The backend to use for user management
-	 * @return bool
-	 * @deprecated 32.0.0 Use IUserManager::registerBackend instead
-	 *
-	 * Set the User Authentication Module
-	 */
-	public static function useBackend($backend = 'database') {
-		if ($backend instanceof \OCP\UserInterface) {
-			Server::get(IUserManager::class)->registerBackend($backend);
-		} else {
-			// You'll never know what happens
-			if ($backend === null or !is_string($backend)) {
-				$backend = 'database';
-			}
-
-			// Load backend
-			switch ($backend) {
-				case 'database':
-				case 'mysql':
-				case 'sqlite':
-					Server::get(LoggerInterface::class)->debug('Adding user backend ' . $backend . '.', ['app' => 'core']);
-					Server::get(IUserManager::class)->registerBackend(new \OC\User\Database());
-					break;
-				case 'dummy':
-					Server::get(IUserManager::class)->registerBackend(new \Test\Util\User\Dummy());
-					break;
-				default:
-					Server::get(LoggerInterface::class)->debug('Adding default user backend ' . $backend . '.', ['app' => 'core']);
-					$className = 'OC_USER_' . strtoupper($backend);
-					Server::get(IUserManager::class)->registerBackend(new $className());
-					break;
-			}
-		}
-		return true;
-	}
-
-	/**
-	 * remove all used backends
-	 * @deprecated 32.0.0 Use IUserManager::clearBackends instead
-	 */
-	public static function clearBackends() {
-		Server::get(IUserManager::class)->clearBackends();
-	}
-
-	/**
-	 * setup the configured backends in config.php
-	 * @suppress PhanDeprecatedFunction
-	 */
-	public static function setupBackends() {
-		OC_App::loadApps(['prelogin']);
-		$backends = \OC::$server->getSystemConfig()->getValue('user_backends', []);
-		if (isset($backends['default']) && !$backends['default']) {
-			// clear default backends
-			self::clearBackends();
-		}
-		foreach ($backends as $i => $config) {
-			if (!is_array($config)) {
-				continue;
-			}
-			$class = $config['class'];
-			$arguments = $config['arguments'];
-			if (class_exists($class)) {
-				if (!in_array($i, self::$_setupedBackends)) {
-					// make a reflection object
-					$reflectionObj = new ReflectionClass($class);
-
-					// use Reflection to create a new instance, using the $args
-					$backend = $reflectionObj->newInstanceArgs($arguments);
-					self::useBackend($backend);
-					self::$_setupedBackends[] = $i;
-				} else {
-					Server::get(LoggerInterface::class)->debug('User backend ' . $class . ' already initialized.', ['app' => 'core']);
-				}
-			} else {
-				Server::get(LoggerInterface::class)->error('User backend ' . $class . ' not found.', ['app' => 'core']);
-			}
-		}
-	}
-
-	/**
-	 * Try to login a user, assuming authentication
-	 * has already happened (e.g. via Single Sign On).
-	 *
-	 * Log in a user and regenerate a new session.
-	 *
-	 * @param \OCP\Authentication\IApacheBackend $backend
-	 * @return bool
-	 */
-	public static function loginWithApache(\OCP\Authentication\IApacheBackend $backend) {
-		$uid = $backend->getCurrentUserId();
-		$run = true;
-		OC_Hook::emit('OC_User', 'pre_login', ['run' => &$run, 'uid' => $uid, 'backend' => $backend]);
-
-		if ($uid) {
-			if (self::getUser() !== $uid) {
-				self::setUserId($uid);
-				$userSession = \OC::$server->getUserSession();
-
-				/** @var IEventDispatcher $dispatcher */
-				$dispatcher = \OC::$server->get(IEventDispatcher::class);
-
-				if ($userSession->getUser() && !$userSession->getUser()->isEnabled()) {
-					$message = \OC::$server->getL10N('lib')->t('Account disabled');
-					throw new LoginException($message);
-				}
-				$userSession->setLoginName($uid);
-				$request = OC::$server->getRequest();
-				$password = null;
-				if ($backend instanceof \OCP\Authentication\IProvideUserSecretBackend) {
-					$password = $backend->getCurrentUserSecret();
-				}
-
-				/** @var IEventDispatcher $dispatcher */
-				$dispatcher->dispatchTyped(new BeforeUserLoggedInEvent($uid, $password, $backend));
-
-				$userSession->createSessionToken($request, $uid, $uid, $password);
-				$userSession->createRememberMeToken($userSession->getUser());
-
-				if (empty($password)) {
-					$tokenProvider = \OC::$server->get(IProvider::class);
-					try {
-						$token = $tokenProvider->getToken($userSession->getSession()->getId());
-						$token->setScope([
-							IToken::SCOPE_SKIP_PASSWORD_VALIDATION => true,
-							IToken::SCOPE_FILESYSTEM => true,
-						]);
-						$tokenProvider->updateToken($token);
-					} catch (InvalidTokenException|WipeTokenException|SessionNotAvailableException) {
-						// swallow the exceptions as we do not deal with them here
-						// simply skip updating the token when is it missing
-					}
-				}
-
-				// setup the filesystem
-				OC_Util::setupFS($uid);
-				// first call the post_login hooks, the login-process needs to be
-				// completed before we can safely create the users folder.
-				// For example encryption needs to initialize the users keys first
-				// before we can create the user folder with the skeleton files
-				OC_Hook::emit(
-					'OC_User',
-					'post_login',
-					[
-						'uid' => $uid,
-						'password' => $password,
-						'isTokenLogin' => false,
-					]
-				);
-				$dispatcher->dispatchTyped(new UserLoggedInEvent(
-					\OC::$server->get(IUserManager::class)->get($uid),
-					$uid,
-					null,
-					false)
-				);
-
-				//trigger creation of user home and /files folder
-				\OC::$server->getUserFolder($uid);
-			}
-			return true;
-		}
-		return false;
-	}
-
-	/**
-	 * Verify with Apache whether user is authenticated.
-	 *
-	 * @return boolean|null
-	 *                      true: authenticated
-	 *                      false: not authenticated
-	 *                      null: not handled / no backend available
-	 */
-	public static function handleApacheAuth() {
-		$backend = self::findFirstActiveUsedBackend();
-		if ($backend) {
-			OC_App::loadApps();
-
-			//setup extra user backends
-			self::setupBackends();
-			\OC::$server->getUserSession()->unsetMagicInCookie();
-
-			return self::loginWithApache($backend);
-		}
-
-		return null;
-	}
-
-
-	/**
-	 * Sets user id for session and triggers emit
-	 *
-	 * @param string $uid
-	 */
-	public static function setUserId($uid) {
-		$userSession = \OC::$server->getUserSession();
-		$userManager = Server::get(IUserManager::class);
-		if ($user = $userManager->get($uid)) {
-			$userSession->setUser($user);
-		} else {
-			\OC::$server->getSession()->set('user_id', $uid);
-		}
-	}
-
-	/**
-	 * Check if the user is logged in, considers also the HTTP basic credentials
-	 *
-	 * @deprecated 12.0.0 use \OC::$server->getUserSession()->isLoggedIn()
-	 * @return bool
-	 */
-	public static function isLoggedIn() {
-		return \OC::$server->getUserSession()->isLoggedIn();
-	}
-
-	/**
-	 * set incognito mode, e.g. if a user wants to open a public link
-	 *
-	 * @param bool $status
-	 */
-	public static function setIncognitoMode($status) {
-		self::$incognitoMode = $status;
-	}
-
-	/**
-	 * get incognito mode status
-	 *
-	 * @return bool
-	 */
-	public static function isIncognitoMode() {
-		return self::$incognitoMode;
-	}
-
-	/**
-	 * Returns the current logout URL valid for the currently logged-in user
-	 *
-	 * @param \OCP\IURLGenerator $urlGenerator
-	 * @return string
-	 */
-	public static function getLogoutUrl(\OCP\IURLGenerator $urlGenerator) {
-		$backend = self::findFirstActiveUsedBackend();
-		if ($backend) {
-			return $backend->getLogoutUrl();
-		}
-
-		$user = \OC::$server->getUserSession()->getUser();
-		if ($user instanceof IUser) {
-			$backend = $user->getBackend();
-			if ($backend instanceof \OCP\User\Backend\ICustomLogout) {
-				return $backend->getLogoutUrl();
-			}
-		}
-
-		$logoutUrl = $urlGenerator->linkToRoute('core.login.logout');
-		$logoutUrl .= '?requesttoken=' . urlencode(\OCP\Util::callRegister());
-
-		return $logoutUrl;
-	}
-
-	/**
-	 * Check if the user is an admin user
-	 *
-	 * @param string $uid uid of the admin
-	 * @return bool
-	 */
-	public static function isAdminUser($uid) {
-		$user = Server::get(IUserManager::class)->get($uid);
-		$isAdmin = $user && Server::get(IGroupManager::class)->isAdmin($user->getUID());
-		return $isAdmin && self::$incognitoMode === false;
-	}
-
-
-	/**
-	 * get the user id of the user currently logged in.
-	 *
-	 * @return string|false uid or false
-	 */
-	public static function getUser() {
-		$uid = Server::get(ISession::class)?->get('user_id');
-		if (!is_null($uid) && self::$incognitoMode === false) {
-			return $uid;
-		} else {
-			return false;
-		}
-	}
-
-	/**
-	 * Set password
-	 *
-	 * @param string $uid The username
-	 * @param string $password The new password
-	 * @param string $recoveryPassword for the encryption app to reset encryption keys
-	 * @return bool
-	 *
-	 * Change the password of a user
-	 */
-	public static function setPassword($uid, $password, $recoveryPassword = null) {
-		$user = Server::get(IUserManager::class)->get($uid);
-		if ($user) {
-			return $user->setPassword($password, $recoveryPassword);
-		} else {
-			return false;
-		}
-	}
-
-	/**
-	 * @param string $uid The username
-	 * @return string
-	 *
-	 * returns the path to the users home directory
-	 * @deprecated 12.0.0 Use \OC::$server->getUserManager->getHome()
-	 */
-	public static function getHome($uid) {
-		$user = Server::get(IUserManager::class)->get($uid);
-		if ($user) {
-			return $user->getHome();
-		} else {
-			return \OC::$server->getSystemConfig()->getValue('datadirectory', OC::$SERVERROOT . '/data') . '/' . $uid;
-		}
-	}
-
-	/**
-	 * Get a list of all users display name
-	 *
-	 * @param string $search
-	 * @param int $limit
-	 * @param int $offset
-	 * @return array associative array with all display names (value) and corresponding uids (key)
-	 *
-	 * Get a list of all display names and user ids.
-	 * @deprecated 12.0.0 Use \OC::$server->getUserManager->searchDisplayName($search, $limit, $offset) instead.
-	 */
-	public static function getDisplayNames($search = '', $limit = null, $offset = null) {
-		$displayNames = [];
-		$users = Server::get(IUserManager::class)->searchDisplayName($search, $limit, $offset);
-		foreach ($users as $user) {
-			$displayNames[$user->getUID()] = $user->getDisplayName();
-		}
-		return $displayNames;
-	}
-
-	/**
-	 * Returns the first active backend from self::$_usedBackends.
-	 *
-	 * @return OCP\Authentication\IApacheBackend|null if no backend active, otherwise OCP\Authentication\IApacheBackend
-	 */
-	private static function findFirstActiveUsedBackend() {
-		foreach (Server::get(IUserManager::class)->getBackends() as $backend) {
-			if ($backend instanceof OCP\Authentication\IApacheBackend) {
-				if ($backend->isSessionActive()) {
-					return $backend;
-				}
-			}
-		}
-
-		return null;
-	}
+    private static $_setupedBackends = [];
+
+    // bool, stores if a user want to access a resource anonymously, e.g if they open a public link
+    private static $incognitoMode = false;
+
+    /**
+     * Adds the backend to the list of used backends
+     *
+     * @param string|\OCP\UserInterface $backend default: database The backend to use for user management
+     * @return bool
+     * @deprecated 32.0.0 Use IUserManager::registerBackend instead
+     *
+     * Set the User Authentication Module
+     */
+    public static function useBackend($backend = 'database') {
+        if ($backend instanceof \OCP\UserInterface) {
+            Server::get(IUserManager::class)->registerBackend($backend);
+        } else {
+            // You'll never know what happens
+            if ($backend === null or !is_string($backend)) {
+                $backend = 'database';
+            }
+
+            // Load backend
+            switch ($backend) {
+                case 'database':
+                case 'mysql':
+                case 'sqlite':
+                    Server::get(LoggerInterface::class)->debug('Adding user backend ' . $backend . '.', ['app' => 'core']);
+                    Server::get(IUserManager::class)->registerBackend(new \OC\User\Database());
+                    break;
+                case 'dummy':
+                    Server::get(IUserManager::class)->registerBackend(new \Test\Util\User\Dummy());
+                    break;
+                default:
+                    Server::get(LoggerInterface::class)->debug('Adding default user backend ' . $backend . '.', ['app' => 'core']);
+                    $className = 'OC_USER_' . strtoupper($backend);
+                    Server::get(IUserManager::class)->registerBackend(new $className());
+                    break;
+            }
+        }
+        return true;
+    }
+
+    /**
+     * remove all used backends
+     * @deprecated 32.0.0 Use IUserManager::clearBackends instead
+     */
+    public static function clearBackends() {
+        Server::get(IUserManager::class)->clearBackends();
+    }
+
+    /**
+     * setup the configured backends in config.php
+     * @suppress PhanDeprecatedFunction
+     */
+    public static function setupBackends() {
+        OC_App::loadApps(['prelogin']);
+        $backends = \OC::$server->getSystemConfig()->getValue('user_backends', []);
+        if (isset($backends['default']) && !$backends['default']) {
+            // clear default backends
+            self::clearBackends();
+        }
+        foreach ($backends as $i => $config) {
+            if (!is_array($config)) {
+                continue;
+            }
+            $class = $config['class'];
+            $arguments = $config['arguments'];
+            if (class_exists($class)) {
+                if (!in_array($i, self::$_setupedBackends)) {
+                    // make a reflection object
+                    $reflectionObj = new ReflectionClass($class);
+
+                    // use Reflection to create a new instance, using the $args
+                    $backend = $reflectionObj->newInstanceArgs($arguments);
+                    self::useBackend($backend);
+                    self::$_setupedBackends[] = $i;
+                } else {
+                    Server::get(LoggerInterface::class)->debug('User backend ' . $class . ' already initialized.', ['app' => 'core']);
+                }
+            } else {
+                Server::get(LoggerInterface::class)->error('User backend ' . $class . ' not found.', ['app' => 'core']);
+            }
+        }
+    }
+
+    /**
+     * Try to login a user, assuming authentication
+     * has already happened (e.g. via Single Sign On).
+     *
+     * Log in a user and regenerate a new session.
+     *
+     * @param \OCP\Authentication\IApacheBackend $backend
+     * @return bool
+     */
+    public static function loginWithApache(\OCP\Authentication\IApacheBackend $backend) {
+        $uid = $backend->getCurrentUserId();
+        $run = true;
+        OC_Hook::emit('OC_User', 'pre_login', ['run' => &$run, 'uid' => $uid, 'backend' => $backend]);
+
+        if ($uid) {
+            if (self::getUser() !== $uid) {
+                self::setUserId($uid);
+                $userSession = \OC::$server->getUserSession();
+
+                /** @var IEventDispatcher $dispatcher */
+                $dispatcher = \OC::$server->get(IEventDispatcher::class);
+
+                if ($userSession->getUser() && !$userSession->getUser()->isEnabled()) {
+                    $message = \OC::$server->getL10N('lib')->t('Account disabled');
+                    throw new LoginException($message);
+                }
+                $userSession->setLoginName($uid);
+                $request = OC::$server->getRequest();
+                $password = null;
+                if ($backend instanceof \OCP\Authentication\IProvideUserSecretBackend) {
+                    $password = $backend->getCurrentUserSecret();
+                }
+
+                /** @var IEventDispatcher $dispatcher */
+                $dispatcher->dispatchTyped(new BeforeUserLoggedInEvent($uid, $password, $backend));
+
+                $userSession->createSessionToken($request, $uid, $uid, $password);
+                $userSession->createRememberMeToken($userSession->getUser());
+
+                if (empty($password)) {
+                    $tokenProvider = \OC::$server->get(IProvider::class);
+                    try {
+                        $token = $tokenProvider->getToken($userSession->getSession()->getId());
+                        $token->setScope([
+                            IToken::SCOPE_SKIP_PASSWORD_VALIDATION => true,
+                            IToken::SCOPE_FILESYSTEM => true,
+                        ]);
+                        $tokenProvider->updateToken($token);
+                    } catch (InvalidTokenException|WipeTokenException|SessionNotAvailableException) {
+                        // swallow the exceptions as we do not deal with them here
+                        // simply skip updating the token when is it missing
+                    }
+                }
+
+                // setup the filesystem
+                OC_Util::setupFS($uid);
+                // first call the post_login hooks, the login-process needs to be
+                // completed before we can safely create the users folder.
+                // For example encryption needs to initialize the users keys first
+                // before we can create the user folder with the skeleton files
+                OC_Hook::emit(
+                    'OC_User',
+                    'post_login',
+                    [
+                        'uid' => $uid,
+                        'password' => $password,
+                        'isTokenLogin' => false,
+                    ]
+                );
+                $dispatcher->dispatchTyped(new UserLoggedInEvent(
+                    \OC::$server->get(IUserManager::class)->get($uid),
+                    $uid,
+                    null,
+                    false)
+                );
+
+                //trigger creation of user home and /files folder
+                \OC::$server->getUserFolder($uid);
+            }
+            return true;
+        }
+        return false;
+    }
+
+    /**
+     * Verify with Apache whether user is authenticated.
+     *
+     * @return boolean|null
+     *                      true: authenticated
+     *                      false: not authenticated
+     *                      null: not handled / no backend available
+     */
+    public static function handleApacheAuth() {
+        $backend = self::findFirstActiveUsedBackend();
+        if ($backend) {
+            OC_App::loadApps();
+
+            //setup extra user backends
+            self::setupBackends();
+            \OC::$server->getUserSession()->unsetMagicInCookie();
+
+            return self::loginWithApache($backend);
+        }
+
+        return null;
+    }
+
+
+    /**
+     * Sets user id for session and triggers emit
+     *
+     * @param string $uid
+     */
+    public static function setUserId($uid) {
+        $userSession = \OC::$server->getUserSession();
+        $userManager = Server::get(IUserManager::class);
+        if ($user = $userManager->get($uid)) {
+            $userSession->setUser($user);
+        } else {
+            \OC::$server->getSession()->set('user_id', $uid);
+        }
+    }
+
+    /**
+     * Check if the user is logged in, considers also the HTTP basic credentials
+     *
+     * @deprecated 12.0.0 use \OC::$server->getUserSession()->isLoggedIn()
+     * @return bool
+     */
+    public static function isLoggedIn() {
+        return \OC::$server->getUserSession()->isLoggedIn();
+    }
+
+    /**
+     * set incognito mode, e.g. if a user wants to open a public link
+     *
+     * @param bool $status
+     */
+    public static function setIncognitoMode($status) {
+        self::$incognitoMode = $status;
+    }
+
+    /**
+     * get incognito mode status
+     *
+     * @return bool
+     */
+    public static function isIncognitoMode() {
+        return self::$incognitoMode;
+    }
+
+    /**
+     * Returns the current logout URL valid for the currently logged-in user
+     *
+     * @param \OCP\IURLGenerator $urlGenerator
+     * @return string
+     */
+    public static function getLogoutUrl(\OCP\IURLGenerator $urlGenerator) {
+        $backend = self::findFirstActiveUsedBackend();
+        if ($backend) {
+            return $backend->getLogoutUrl();
+        }
+
+        $user = \OC::$server->getUserSession()->getUser();
+        if ($user instanceof IUser) {
+            $backend = $user->getBackend();
+            if ($backend instanceof \OCP\User\Backend\ICustomLogout) {
+                return $backend->getLogoutUrl();
+            }
+        }
+
+        $logoutUrl = $urlGenerator->linkToRoute('core.login.logout');
+        $logoutUrl .= '?requesttoken=' . urlencode(\OCP\Util::callRegister());
+
+        return $logoutUrl;
+    }
+
+    /**
+     * Check if the user is an admin user
+     *
+     * @param string $uid uid of the admin
+     * @return bool
+     */
+    public static function isAdminUser($uid) {
+        $user = Server::get(IUserManager::class)->get($uid);
+        $isAdmin = $user && Server::get(IGroupManager::class)->isAdmin($user->getUID());
+        return $isAdmin && self::$incognitoMode === false;
+    }
+
+
+    /**
+     * get the user id of the user currently logged in.
+     *
+     * @return string|false uid or false
+     */
+    public static function getUser() {
+        $uid = Server::get(ISession::class)?->get('user_id');
+        if (!is_null($uid) && self::$incognitoMode === false) {
+            return $uid;
+        } else {
+            return false;
+        }
+    }
+
+    /**
+     * Set password
+     *
+     * @param string $uid The username
+     * @param string $password The new password
+     * @param string $recoveryPassword for the encryption app to reset encryption keys
+     * @return bool
+     *
+     * Change the password of a user
+     */
+    public static function setPassword($uid, $password, $recoveryPassword = null) {
+        $user = Server::get(IUserManager::class)->get($uid);
+        if ($user) {
+            return $user->setPassword($password, $recoveryPassword);
+        } else {
+            return false;
+        }
+    }
+
+    /**
+     * @param string $uid The username
+     * @return string
+     *
+     * returns the path to the users home directory
+     * @deprecated 12.0.0 Use \OC::$server->getUserManager->getHome()
+     */
+    public static function getHome($uid) {
+        $user = Server::get(IUserManager::class)->get($uid);
+        if ($user) {
+            return $user->getHome();
+        } else {
+            return \OC::$server->getSystemConfig()->getValue('datadirectory', OC::$SERVERROOT . '/data') . '/' . $uid;
+        }
+    }
+
+    /**
+     * Get a list of all users display name
+     *
+     * @param string $search
+     * @param int $limit
+     * @param int $offset
+     * @return array associative array with all display names (value) and corresponding uids (key)
+     *
+     * Get a list of all display names and user ids.
+     * @deprecated 12.0.0 Use \OC::$server->getUserManager->searchDisplayName($search, $limit, $offset) instead.
+     */
+    public static function getDisplayNames($search = '', $limit = null, $offset = null) {
+        $displayNames = [];
+        $users = Server::get(IUserManager::class)->searchDisplayName($search, $limit, $offset);
+        foreach ($users as $user) {
+            $displayNames[$user->getUID()] = $user->getDisplayName();
+        }
+        return $displayNames;
+    }
+
+    /**
+     * Returns the first active backend from self::$_usedBackends.
+     *
+     * @return OCP\Authentication\IApacheBackend|null if no backend active, otherwise OCP\Authentication\IApacheBackend
+     */
+    private static function findFirstActiveUsedBackend() {
+        foreach (Server::get(IUserManager::class)->getBackends() as $backend) {
+            if ($backend instanceof OCP\Authentication\IApacheBackend) {
+                if ($backend->isSessionActive()) {
+                    return $backend;
+                }
+            }
+        }
+
+        return null;
+    }
 }

Please login to merge, or discard this patch.

Spacing +8 added lines, -8 removed lines patch added patch discarded remove patch

@@ -68,15 +68,15 @@  discard block
 block discarded – undo
 				case 'database':
 				case 'mysql':
 				case 'sqlite':
-					Server::get(LoggerInterface::class)->debug('Adding user backend ' . $backend . '.', ['app' => 'core']);
+					Server::get(LoggerInterface::class)->debug('Adding user backend '.$backend.'.', ['app' => 'core']);
 					Server::get(IUserManager::class)->registerBackend(new \OC\User\Database());
 					break;
 				case 'dummy':
 					Server::get(IUserManager::class)->registerBackend(new \Test\Util\User\Dummy());
 					break;
 				default:
-					Server::get(LoggerInterface::class)->debug('Adding default user backend ' . $backend . '.', ['app' => 'core']);
-					$className = 'OC_USER_' . strtoupper($backend);
+					Server::get(LoggerInterface::class)->debug('Adding default user backend '.$backend.'.', ['app' => 'core']);
+					$className = 'OC_USER_'.strtoupper($backend);
 					Server::get(IUserManager::class)->registerBackend(new $className());
 					break;
 			}
@@ -119,10 +119,10 @@  discard block
 block discarded – undo
 					self::useBackend($backend);
 					self::$_setupedBackends[] = $i;
 				} else {
-					Server::get(LoggerInterface::class)->debug('User backend ' . $class . ' already initialized.', ['app' => 'core']);
+					Server::get(LoggerInterface::class)->debug('User backend '.$class.' already initialized.', ['app' => 'core']);
 				}
 			} else {
-				Server::get(LoggerInterface::class)->error('User backend ' . $class . ' not found.', ['app' => 'core']);
+				Server::get(LoggerInterface::class)->error('User backend '.$class.' not found.', ['app' => 'core']);
 			}
 		}
 	}
@@ -175,7 +175,7 @@  discard block
 block discarded – undo
 							IToken::SCOPE_FILESYSTEM => true,
 						]);
 						$tokenProvider->updateToken($token);
-					} catch (InvalidTokenException|WipeTokenException|SessionNotAvailableException) {
+					} catch (InvalidTokenException | WipeTokenException | SessionNotAvailableException) {
 						// swallow the exceptions as we do not deal with them here
 						// simply skip updating the token when is it missing
 					}
@@ -299,7 +299,7 @@  discard block
 block discarded – undo
 		}
 
 		$logoutUrl = $urlGenerator->linkToRoute('core.login.logout');
-		$logoutUrl .= '?requesttoken=' . urlencode(\OCP\Util::callRegister());
+		$logoutUrl .= '?requesttoken='.urlencode(\OCP\Util::callRegister());
 
 		return $logoutUrl;
 	}
@@ -362,7 +362,7 @@  discard block
 block discarded – undo
 		if ($user) {
 			return $user->getHome();
 		} else {
-			return \OC::$server->getSystemConfig()->getValue('datadirectory', OC::$SERVERROOT . '/data') . '/' . $uid;
+			return \OC::$server->getSystemConfig()->getValue('datadirectory', OC::$SERVERROOT.'/data').'/'.$uid;
 		}
 	}
 

Please login to merge, or discard this patch.

lib/private/User/Manager.php 1 patch

Indentation +771 added lines, -771 removed lines patch added patch discarded remove patch

@@ -53,775 +53,775 @@
 block discarded – undo
  * @package OC\User
  */
 class Manager extends PublicEmitter implements IUserManager {
-	/**
-	 * @var UserInterface[] $backends
-	 */
-	private array $backends = [];
-
-	/**
-	 * @var array<string,\OC\User\User> $cachedUsers
-	 */
-	private array $cachedUsers = [];
-
-	private ICache $cache;
-
-	private DisplayNameCache $displayNameCache;
-
-	public function __construct(
-		private IConfig $config,
-		ICacheFactory $cacheFactory,
-		private IEventDispatcher $eventDispatcher,
-		private LoggerInterface $logger,
-	) {
-		$this->cache = new WithLocalCache($cacheFactory->createDistributed('user_backend_map'));
-		$this->listen('\OC\User', 'postDelete', function (IUser $user): void {
-			unset($this->cachedUsers[$user->getUID()]);
-		});
-		$this->displayNameCache = new DisplayNameCache($cacheFactory, $this);
-	}
-
-	/**
-	 * Get the active backends
-	 * @return UserInterface[]
-	 */
-	public function getBackends(): array {
-		return $this->backends;
-	}
-
-	public function registerBackend(UserInterface $backend): void {
-		$this->backends[] = $backend;
-	}
-
-	public function removeBackend(UserInterface $backend): void {
-		$this->cachedUsers = [];
-		if (($i = array_search($backend, $this->backends)) !== false) {
-			unset($this->backends[$i]);
-		}
-	}
-
-	public function clearBackends(): void {
-		$this->cachedUsers = [];
-		$this->backends = [];
-	}
-
-	/**
-	 * get a user by user id
-	 *
-	 * @param string $uid
-	 * @return \OC\User\User|null Either the user or null if the specified user does not exist
-	 */
-	public function get($uid) {
-		if (is_null($uid) || $uid === '' || $uid === false) {
-			return null;
-		}
-		if (isset($this->cachedUsers[$uid])) { //check the cache first to prevent having to loop over the backends
-			return $this->cachedUsers[$uid];
-		}
-
-		$cachedBackend = $this->cache->get(sha1($uid));
-		if ($cachedBackend !== null && isset($this->backends[$cachedBackend])) {
-			// Cache has the info of the user backend already, so ask that one directly
-			$backend = $this->backends[$cachedBackend];
-			if ($backend->userExists($uid)) {
-				return $this->getUserObject($uid, $backend);
-			}
-		}
-
-		foreach ($this->backends as $i => $backend) {
-			if ($i === $cachedBackend) {
-				// Tried that one already
-				continue;
-			}
-
-			if ($backend->userExists($uid)) {
-				// Hash $uid to ensure that only valid characters are used for the cache key
-				$this->cache->set(sha1($uid), $i, 300);
-				return $this->getUserObject($uid, $backend);
-			}
-		}
-		return null;
-	}
-
-	public function getDisplayName(string $uid): ?string {
-		return $this->displayNameCache->getDisplayName($uid);
-	}
-
-	/**
-	 * get or construct the user object
-	 *
-	 * @param string $uid
-	 * @param \OCP\UserInterface $backend
-	 * @param bool $cacheUser If false the newly created user object will not be cached
-	 * @return \OC\User\User
-	 */
-	public function getUserObject($uid, $backend, $cacheUser = true) {
-		if ($backend instanceof IGetRealUIDBackend) {
-			$uid = $backend->getRealUID($uid);
-		}
-
-		if (isset($this->cachedUsers[$uid])) {
-			return $this->cachedUsers[$uid];
-		}
-
-		$user = new User($uid, $backend, $this->eventDispatcher, $this, $this->config);
-		if ($cacheUser) {
-			$this->cachedUsers[$uid] = $user;
-		}
-		return $user;
-	}
-
-	/**
-	 * check if a user exists
-	 *
-	 * @param string $uid
-	 * @return bool
-	 */
-	public function userExists($uid) {
-		$user = $this->get($uid);
-		return ($user !== null);
-	}
-
-	/**
-	 * Check if the password is valid for the user
-	 *
-	 * @param string $loginName
-	 * @param string $password
-	 * @return IUser|false the User object on success, false otherwise
-	 */
-	public function checkPassword($loginName, $password) {
-		$result = $this->checkPasswordNoLogging($loginName, $password);
-
-		if ($result === false) {
-			$this->logger->warning('Login failed: \'' . $loginName . '\' (Remote IP: \'' . \OC::$server->getRequest()->getRemoteAddress() . '\')', ['app' => 'core']);
-		}
-
-		return $result;
-	}
-
-	/**
-	 * Check if the password is valid for the user
-	 *
-	 * @internal
-	 * @param string $loginName
-	 * @param string $password
-	 * @return IUser|false the User object on success, false otherwise
-	 */
-	public function checkPasswordNoLogging($loginName, $password) {
-		$loginName = str_replace("\0", '', $loginName);
-		$password = str_replace("\0", '', $password);
-
-		$cachedBackend = $this->cache->get($loginName);
-		if ($cachedBackend !== null && isset($this->backends[$cachedBackend])) {
-			$backends = [$this->backends[$cachedBackend]];
-		} else {
-			$backends = $this->backends;
-		}
-		foreach ($backends as $backend) {
-			if ($backend instanceof ICheckPasswordBackend || $backend->implementsActions(Backend::CHECK_PASSWORD)) {
-				/** @var ICheckPasswordBackend $backend */
-				$uid = $backend->checkPassword($loginName, $password);
-				if ($uid !== false) {
-					return $this->getUserObject($uid, $backend);
-				}
-			}
-		}
-
-		// since http basic auth doesn't provide a standard way of handling non ascii password we allow password to be urlencoded
-		// we only do this decoding after using the plain password fails to maintain compatibility with any password that happens
-		// to contain urlencoded patterns by "accident".
-		$password = urldecode($password);
-
-		foreach ($backends as $backend) {
-			if ($backend instanceof ICheckPasswordBackend || $backend->implementsActions(Backend::CHECK_PASSWORD)) {
-				/** @var ICheckPasswordBackend|UserInterface $backend */
-				$uid = $backend->checkPassword($loginName, $password);
-				if ($uid !== false) {
-					return $this->getUserObject($uid, $backend);
-				}
-			}
-		}
-
-		return false;
-	}
-
-	/**
-	 * Search by user id
-	 *
-	 * @param string $pattern
-	 * @param int $limit
-	 * @param int $offset
-	 * @return IUser[]
-	 * @deprecated 27.0.0, use searchDisplayName instead
-	 */
-	public function search($pattern, $limit = null, $offset = null) {
-		$users = [];
-		foreach ($this->backends as $backend) {
-			$backendUsers = $backend->getUsers($pattern, $limit, $offset);
-			if (is_array($backendUsers)) {
-				foreach ($backendUsers as $uid) {
-					$users[$uid] = new LazyUser($uid, $this, null, $backend);
-				}
-			}
-		}
-
-		uasort($users, function (IUser $a, IUser $b) {
-			return strcasecmp($a->getUID(), $b->getUID());
-		});
-		return $users;
-	}
-
-	/**
-	 * Search by displayName
-	 *
-	 * @param string $pattern
-	 * @param int $limit
-	 * @param int $offset
-	 * @return IUser[]
-	 */
-	public function searchDisplayName($pattern, $limit = null, $offset = null) {
-		$users = [];
-		foreach ($this->backends as $backend) {
-			$backendUsers = $backend->getDisplayNames($pattern, $limit, $offset);
-			if (is_array($backendUsers)) {
-				foreach ($backendUsers as $uid => $displayName) {
-					$users[] = new LazyUser($uid, $this, $displayName, $backend);
-				}
-			}
-		}
-
-		usort($users, function (IUser $a, IUser $b) {
-			return strcasecmp($a->getDisplayName(), $b->getDisplayName());
-		});
-		return $users;
-	}
-
-	/**
-	 * @return IUser[]
-	 */
-	public function getDisabledUsers(?int $limit = null, int $offset = 0, string $search = ''): array {
-		$users = $this->config->getUsersForUserValue('core', 'enabled', 'false');
-		$users = array_combine(
-			$users,
-			array_map(
-				fn (string $uid): IUser => new LazyUser($uid, $this),
-				$users
-			)
-		);
-		if ($search !== '') {
-			$users = array_filter(
-				$users,
-				function (IUser $user) use ($search): bool {
-					try {
-						return mb_stripos($user->getUID(), $search) !== false ||
-						mb_stripos($user->getDisplayName(), $search) !== false ||
-						mb_stripos($user->getEMailAddress() ?? '', $search) !== false;
-					} catch (NoUserException $ex) {
-						$this->logger->error('Error while filtering disabled users', ['exception' => $ex, 'userUID' => $user->getUID()]);
-						return false;
-					}
-				});
-		}
-
-		$tempLimit = ($limit === null ? null : $limit + $offset);
-		foreach ($this->backends as $backend) {
-			if (($tempLimit !== null) && (count($users) >= $tempLimit)) {
-				break;
-			}
-			if ($backend instanceof IProvideEnabledStateBackend) {
-				$backendUsers = $backend->getDisabledUserList(($tempLimit === null ? null : $tempLimit - count($users)), 0, $search);
-				foreach ($backendUsers as $uid) {
-					$users[$uid] = new LazyUser($uid, $this, null, $backend);
-				}
-			}
-		}
-
-		return array_slice($users, $offset, $limit);
-	}
-
-	/**
-	 * Search known users (from phonebook sync) by displayName
-	 *
-	 * @param string $searcher
-	 * @param string $pattern
-	 * @param int|null $limit
-	 * @param int|null $offset
-	 * @return IUser[]
-	 */
-	public function searchKnownUsersByDisplayName(string $searcher, string $pattern, ?int $limit = null, ?int $offset = null): array {
-		$users = [];
-		foreach ($this->backends as $backend) {
-			if ($backend instanceof ISearchKnownUsersBackend) {
-				$backendUsers = $backend->searchKnownUsersByDisplayName($searcher, $pattern, $limit, $offset);
-			} else {
-				// Better than nothing, but filtering after pagination can remove lots of results.
-				$backendUsers = $backend->getDisplayNames($pattern, $limit, $offset);
-			}
-			if (is_array($backendUsers)) {
-				foreach ($backendUsers as $uid => $displayName) {
-					$users[] = $this->getUserObject($uid, $backend);
-				}
-			}
-		}
-
-		usort($users, function ($a, $b) {
-			/**
-			 * @var IUser $a
-			 * @var IUser $b
-			 */
-			return strcasecmp($a->getDisplayName(), $b->getDisplayName());
-		});
-		return $users;
-	}
-
-	/**
-	 * @param string $uid
-	 * @param string $password
-	 * @return false|IUser the created user or false
-	 * @throws \InvalidArgumentException
-	 * @throws HintException
-	 */
-	public function createUser($uid, $password) {
-		// DI injection is not used here as IRegistry needs the user manager itself for user count and thus it would create a cyclic dependency
-		/** @var IAssertion $assertion */
-		$assertion = \OC::$server->get(IAssertion::class);
-		$assertion->createUserIsLegit();
-
-		$localBackends = [];
-		foreach ($this->backends as $backend) {
-			if ($backend instanceof Database) {
-				// First check if there is another user backend
-				$localBackends[] = $backend;
-				continue;
-			}
-
-			if ($backend->implementsActions(Backend::CREATE_USER)) {
-				return $this->createUserFromBackend($uid, $password, $backend);
-			}
-		}
-
-		foreach ($localBackends as $backend) {
-			if ($backend->implementsActions(Backend::CREATE_USER)) {
-				return $this->createUserFromBackend($uid, $password, $backend);
-			}
-		}
-
-		return false;
-	}
-
-	/**
-	 * @param string $uid
-	 * @param string $password
-	 * @param UserInterface $backend
-	 * @return IUser|false
-	 * @throws \InvalidArgumentException
-	 */
-	public function createUserFromBackend($uid, $password, UserInterface $backend) {
-		$l = \OCP\Util::getL10N('lib');
-
-		$this->validateUserId($uid, true);
-
-		// No empty password
-		if (trim($password) === '') {
-			throw new \InvalidArgumentException($l->t('A valid password must be provided'));
-		}
-
-		// Check if user already exists
-		if ($this->userExists($uid)) {
-			throw new \InvalidArgumentException($l->t('The Login is already being used'));
-		}
-
-		/** @deprecated 21.0.0 use BeforeUserCreatedEvent event with the IEventDispatcher instead */
-		$this->emit('\OC\User', 'preCreateUser', [$uid, $password]);
-		$this->eventDispatcher->dispatchTyped(new BeforeUserCreatedEvent($uid, $password));
-		$state = $backend->createUser($uid, $password);
-		if ($state === false) {
-			throw new \InvalidArgumentException($l->t('Could not create account'));
-		}
-		$user = $this->getUserObject($uid, $backend);
-		if ($user instanceof IUser) {
-			/** @deprecated 21.0.0 use UserCreatedEvent event with the IEventDispatcher instead */
-			$this->emit('\OC\User', 'postCreateUser', [$user, $password]);
-			$this->eventDispatcher->dispatchTyped(new UserCreatedEvent($user, $password));
-			return $user;
-		}
-		return false;
-	}
-
-	/**
-	 * returns how many users per backend exist (if supported by backend)
-	 *
-	 * @param boolean $hasLoggedIn when true only users that have a lastLogin
-	 *                             entry in the preferences table will be affected
-	 * @return array<string, int> an array of backend class as key and count number as value
-	 */
-	public function countUsers() {
-		$userCountStatistics = [];
-		foreach ($this->backends as $backend) {
-			if ($backend instanceof ICountUsersBackend || $backend->implementsActions(Backend::COUNT_USERS)) {
-				/** @var ICountUsersBackend|IUserBackend $backend */
-				$backendUsers = $backend->countUsers();
-				if ($backendUsers !== false) {
-					if ($backend instanceof IUserBackend) {
-						$name = $backend->getBackendName();
-					} else {
-						$name = get_class($backend);
-					}
-					if (isset($userCountStatistics[$name])) {
-						$userCountStatistics[$name] += $backendUsers;
-					} else {
-						$userCountStatistics[$name] = $backendUsers;
-					}
-				}
-			}
-		}
-		return $userCountStatistics;
-	}
-
-	public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int|false {
-		$userCount = false;
-
-		foreach ($this->backends as $backend) {
-			if ($onlyMappedUsers && $backend instanceof ICountMappedUsersBackend) {
-				$backendUsers = $backend->countMappedUsers();
-			} elseif ($backend instanceof ILimitAwareCountUsersBackend) {
-				$backendUsers = $backend->countUsers($limit);
-			} elseif ($backend instanceof ICountUsersBackend || $backend->implementsActions(Backend::COUNT_USERS)) {
-				/** @var ICountUsersBackend $backend */
-				$backendUsers = $backend->countUsers();
-			} else {
-				$this->logger->debug('Skip backend for user count: ' . get_class($backend));
-				continue;
-			}
-			if ($backendUsers !== false) {
-				$userCount = (int)$userCount + $backendUsers;
-				if ($limit > 0) {
-					if ($userCount >= $limit) {
-						break;
-					}
-					$limit -= $userCount;
-				}
-			} else {
-				$this->logger->warning('Can not determine user count for ' . get_class($backend));
-			}
-		}
-		return $userCount;
-	}
-
-	/**
-	 * returns how many users per backend exist in the requested groups (if supported by backend)
-	 *
-	 * @param IGroup[] $groups an array of groups to search in
-	 * @param int $limit limit to stop counting
-	 * @return array{int,int} total number of users, and number of disabled users in the given groups, below $limit. If limit is reached, -1 is returned for number of disabled users
-	 */
-	public function countUsersAndDisabledUsersOfGroups(array $groups, int $limit): array {
-		$users = [];
-		$disabled = [];
-		foreach ($groups as $group) {
-			foreach ($group->getUsers() as $user) {
-				$users[$user->getUID()] = 1;
-				if (!$user->isEnabled()) {
-					$disabled[$user->getUID()] = 1;
-				}
-				if (count($users) >= $limit) {
-					return [count($users),-1];
-				}
-			}
-		}
-		return [count($users),count($disabled)];
-	}
-
-	/**
-	 * The callback is executed for each user on each backend.
-	 * If the callback returns false no further users will be retrieved.
-	 *
-	 * @psalm-param \Closure(\OCP\IUser):?bool $callback
-	 * @param string $search
-	 * @param boolean $onlySeen when true only users that have a lastLogin entry
-	 *                          in the preferences table will be affected
-	 * @since 9.0.0
-	 */
-	public function callForAllUsers(\Closure $callback, $search = '', $onlySeen = false) {
-		if ($onlySeen) {
-			$this->callForSeenUsers($callback);
-		} else {
-			foreach ($this->getBackends() as $backend) {
-				$limit = 500;
-				$offset = 0;
-				do {
-					$users = $backend->getUsers($search, $limit, $offset);
-					foreach ($users as $uid) {
-						if (!$backend->userExists($uid)) {
-							continue;
-						}
-						$user = $this->getUserObject($uid, $backend, false);
-						$return = $callback($user);
-						if ($return === false) {
-							break;
-						}
-					}
-					$offset += $limit;
-				} while (count($users) >= $limit);
-			}
-		}
-	}
-
-	/**
-	 * returns how many users are disabled
-	 *
-	 * @return int
-	 * @since 12.0.0
-	 */
-	public function countDisabledUsers(): int {
-		$queryBuilder = \OC::$server->getDatabaseConnection()->getQueryBuilder();
-		$queryBuilder->select($queryBuilder->func()->count('*'))
-			->from('preferences')
-			->where($queryBuilder->expr()->eq('appid', $queryBuilder->createNamedParameter('core')))
-			->andWhere($queryBuilder->expr()->eq('configkey', $queryBuilder->createNamedParameter('enabled')))
-			->andWhere($queryBuilder->expr()->eq('configvalue', $queryBuilder->createNamedParameter('false'), IQueryBuilder::PARAM_STR));
-
-
-		$result = $queryBuilder->execute();
-		$count = $result->fetchOne();
-		$result->closeCursor();
-
-		if ($count !== false) {
-			$count = (int)$count;
-		} else {
-			$count = 0;
-		}
-
-		return $count;
-	}
-
-	/**
-	 * returns how many users have logged in once
-	 *
-	 * @return int
-	 * @since 11.0.0
-	 */
-	public function countSeenUsers() {
-		$queryBuilder = \OC::$server->getDatabaseConnection()->getQueryBuilder();
-		$queryBuilder->select($queryBuilder->func()->count('*'))
-			->from('preferences')
-			->where($queryBuilder->expr()->eq('appid', $queryBuilder->createNamedParameter('login')))
-			->andWhere($queryBuilder->expr()->eq('configkey', $queryBuilder->createNamedParameter('lastLogin')));
-
-		$query = $queryBuilder->execute();
-
-		$result = (int)$query->fetchOne();
-		$query->closeCursor();
-
-		return $result;
-	}
-
-	public function callForSeenUsers(\Closure $callback) {
-		$users = $this->getSeenUsers();
-		foreach ($users as $user) {
-			$return = $callback($user);
-			if ($return === false) {
-				return;
-			}
-		}
-	}
-
-	/**
-	 * Getting all userIds that have a listLogin value requires checking the
-	 * value in php because on oracle you cannot use a clob in a where clause,
-	 * preventing us from doing a not null or length(value) > 0 check.
-	 *
-	 * @param int $limit
-	 * @param int $offset
-	 * @return string[] with user ids
-	 */
-	private function getSeenUserIds($limit = null, $offset = null) {
-		$queryBuilder = \OC::$server->getDatabaseConnection()->getQueryBuilder();
-		$queryBuilder->select(['userid'])
-			->from('preferences')
-			->where($queryBuilder->expr()->eq(
-				'appid', $queryBuilder->createNamedParameter('login'))
-			)
-			->andWhere($queryBuilder->expr()->eq(
-				'configkey', $queryBuilder->createNamedParameter('lastLogin'))
-			)
-			->andWhere($queryBuilder->expr()->isNotNull('configvalue')
-			);
-
-		if ($limit !== null) {
-			$queryBuilder->setMaxResults($limit);
-		}
-		if ($offset !== null) {
-			$queryBuilder->setFirstResult($offset);
-		}
-		$query = $queryBuilder->execute();
-		$result = [];
-
-		while ($row = $query->fetch()) {
-			$result[] = $row['userid'];
-		}
-
-		$query->closeCursor();
-
-		return $result;
-	}
-
-	/**
-	 * @param string $email
-	 * @return IUser[]
-	 * @since 9.1.0
-	 */
-	public function getByEmail($email) {
-		// looking for 'email' only (and not primary_mail) is intentional
-		$userIds = $this->config->getUsersForUserValueCaseInsensitive('settings', 'email', $email);
-
-		$users = array_map(function ($uid) {
-			return $this->get($uid);
-		}, $userIds);
-
-		return array_values(array_filter($users, function ($u) {
-			return ($u instanceof IUser);
-		}));
-	}
-
-	/**
-	 * @param string $uid
-	 * @param bool $checkDataDirectory
-	 * @throws \InvalidArgumentException Message is an already translated string with a reason why the id is not valid
-	 * @since 26.0.0
-	 */
-	public function validateUserId(string $uid, bool $checkDataDirectory = false): void {
-		$l = Server::get(IFactory::class)->get('lib');
-
-		// Check the name for bad characters
-		// Allowed are: "a-z", "A-Z", "0-9", spaces and "_.@-'"
-		if (preg_match('/[^a-zA-Z0-9 _.@\-\']/', $uid)) {
-			throw new \InvalidArgumentException($l->t('Only the following characters are allowed in an Login:'
-				. ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'));
-		}
-
-		// No empty username
-		if (trim($uid) === '') {
-			throw new \InvalidArgumentException($l->t('A valid Login must be provided'));
-		}
-
-		// No whitespace at the beginning or at the end
-		if (trim($uid) !== $uid) {
-			throw new \InvalidArgumentException($l->t('Login contains whitespace at the beginning or at the end'));
-		}
-
-		// Username only consists of 1 or 2 dots (directory traversal)
-		if ($uid === '.' || $uid === '..') {
-			throw new \InvalidArgumentException($l->t('Login must not consist of dots only'));
-		}
-
-		if (!$this->verifyUid($uid, $checkDataDirectory)) {
-			throw new \InvalidArgumentException($l->t('Login is invalid because files already exist for this user'));
-		}
-	}
-
-	/**
-	 * Gets the list of user ids sorted by lastLogin, from most recent to least recent
-	 *
-	 * @param int|null $limit how many users to fetch (default: 25, max: 100)
-	 * @param int $offset from which offset to fetch
-	 * @param string $search search users based on search params
-	 * @return list<string> list of user IDs
-	 */
-	public function getLastLoggedInUsers(?int $limit = null, int $offset = 0, string $search = ''): array {
-		// We can't load all users who already logged in
-		$limit = min(100, $limit ?: 25);
-
-		$connection = \OC::$server->getDatabaseConnection();
-		$queryBuilder = $connection->getQueryBuilder();
-		$queryBuilder->select('pref_login.userid')
-			->from('preferences', 'pref_login')
-			->where($queryBuilder->expr()->eq('pref_login.appid', $queryBuilder->expr()->literal('login')))
-			->andWhere($queryBuilder->expr()->eq('pref_login.configkey', $queryBuilder->expr()->literal('lastLogin')))
-			->setFirstResult($offset)
-			->setMaxResults($limit)
-		;
-
-		// Oracle don't want to run ORDER BY on CLOB column
-		$loginOrder = $connection->getDatabasePlatform() instanceof OraclePlatform
-			? $queryBuilder->expr()->castColumn('pref_login.configvalue', IQueryBuilder::PARAM_INT)
-			: 'pref_login.configvalue';
-		$queryBuilder
-			->orderBy($loginOrder, 'DESC')
-			->addOrderBy($queryBuilder->func()->lower('pref_login.userid'), 'ASC');
-
-		if ($search !== '') {
-			$displayNameMatches = $this->searchDisplayName($search);
-			$matchedUids = array_map(static fn (IUser $u): string => $u->getUID(), $displayNameMatches);
-
-			$queryBuilder
-				->leftJoin('pref_login', 'preferences', 'pref_email', $queryBuilder->expr()->andX(
-					$queryBuilder->expr()->eq('pref_login.userid', 'pref_email.userid'),
-					$queryBuilder->expr()->eq('pref_email.appid', $queryBuilder->expr()->literal('settings')),
-					$queryBuilder->expr()->eq('pref_email.configkey', $queryBuilder->expr()->literal('email')),
-				))
-				->andWhere($queryBuilder->expr()->orX(
-					$queryBuilder->expr()->in('pref_login.userid', $queryBuilder->createNamedParameter($matchedUids, IQueryBuilder::PARAM_STR_ARRAY)),
-				));
-		}
-
-		/** @var list<string> */
-		$list = $queryBuilder->executeQuery()->fetchAll(\PDO::FETCH_COLUMN);
-
-		return $list;
-	}
-
-	private function verifyUid(string $uid, bool $checkDataDirectory = false): bool {
-		$appdata = 'appdata_' . $this->config->getSystemValueString('instanceid');
-
-		if (\in_array($uid, [
-			'.htaccess',
-			'files_external',
-			'__groupfolders',
-			'.ncdata',
-			'owncloud.log',
-			'nextcloud.log',
-			'updater.log',
-			'audit.log',
-			$appdata], true)) {
-			return false;
-		}
-
-		if (!$checkDataDirectory) {
-			return true;
-		}
-
-		$dataDirectory = $this->config->getSystemValueString('datadirectory', \OC::$SERVERROOT . '/data');
-
-		return !file_exists(rtrim($dataDirectory, '/') . '/' . $uid);
-	}
-
-	public function getDisplayNameCache(): DisplayNameCache {
-		return $this->displayNameCache;
-	}
-
-	/**
-	 * Gets the list of users sorted by lastLogin, from most recent to least recent
-	 *
-	 * @param int $offset from which offset to fetch
-	 * @return \Iterator<IUser> list of user IDs
-	 * @since 30.0.0
-	 */
-	public function getSeenUsers(int $offset = 0): \Iterator {
-		$limit = 1000;
-
-		do {
-			$userIds = $this->getSeenUserIds($limit, $offset);
-			$offset += $limit;
-
-			foreach ($userIds as $userId) {
-				foreach ($this->backends as $backend) {
-					if ($backend->userExists($userId)) {
-						$user = $this->getUserObject($userId, $backend, false);
-						yield $user;
-						break;
-					}
-				}
-			}
-		} while (count($userIds) === $limit);
-	}
+    /**
+     * @var UserInterface[] $backends
+     */
+    private array $backends = [];
+
+    /**
+     * @var array<string,\OC\User\User> $cachedUsers
+     */
+    private array $cachedUsers = [];
+
+    private ICache $cache;
+
+    private DisplayNameCache $displayNameCache;
+
+    public function __construct(
+        private IConfig $config,
+        ICacheFactory $cacheFactory,
+        private IEventDispatcher $eventDispatcher,
+        private LoggerInterface $logger,
+    ) {
+        $this->cache = new WithLocalCache($cacheFactory->createDistributed('user_backend_map'));
+        $this->listen('\OC\User', 'postDelete', function (IUser $user): void {
+            unset($this->cachedUsers[$user->getUID()]);
+        });
+        $this->displayNameCache = new DisplayNameCache($cacheFactory, $this);
+    }
+
+    /**
+     * Get the active backends
+     * @return UserInterface[]
+     */
+    public function getBackends(): array {
+        return $this->backends;
+    }
+
+    public function registerBackend(UserInterface $backend): void {
+        $this->backends[] = $backend;
+    }
+
+    public function removeBackend(UserInterface $backend): void {
+        $this->cachedUsers = [];
+        if (($i = array_search($backend, $this->backends)) !== false) {
+            unset($this->backends[$i]);
+        }
+    }
+
+    public function clearBackends(): void {
+        $this->cachedUsers = [];
+        $this->backends = [];
+    }
+
+    /**
+     * get a user by user id
+     *
+     * @param string $uid
+     * @return \OC\User\User|null Either the user or null if the specified user does not exist
+     */
+    public function get($uid) {
+        if (is_null($uid) || $uid === '' || $uid === false) {
+            return null;
+        }
+        if (isset($this->cachedUsers[$uid])) { //check the cache first to prevent having to loop over the backends
+            return $this->cachedUsers[$uid];
+        }
+
+        $cachedBackend = $this->cache->get(sha1($uid));
+        if ($cachedBackend !== null && isset($this->backends[$cachedBackend])) {
+            // Cache has the info of the user backend already, so ask that one directly
+            $backend = $this->backends[$cachedBackend];
+            if ($backend->userExists($uid)) {
+                return $this->getUserObject($uid, $backend);
+            }
+        }
+
+        foreach ($this->backends as $i => $backend) {
+            if ($i === $cachedBackend) {
+                // Tried that one already
+                continue;
+            }
+
+            if ($backend->userExists($uid)) {
+                // Hash $uid to ensure that only valid characters are used for the cache key
+                $this->cache->set(sha1($uid), $i, 300);
+                return $this->getUserObject($uid, $backend);
+            }
+        }
+        return null;
+    }
+
+    public function getDisplayName(string $uid): ?string {
+        return $this->displayNameCache->getDisplayName($uid);
+    }
+
+    /**
+     * get or construct the user object
+     *
+     * @param string $uid
+     * @param \OCP\UserInterface $backend
+     * @param bool $cacheUser If false the newly created user object will not be cached
+     * @return \OC\User\User
+     */
+    public function getUserObject($uid, $backend, $cacheUser = true) {
+        if ($backend instanceof IGetRealUIDBackend) {
+            $uid = $backend->getRealUID($uid);
+        }
+
+        if (isset($this->cachedUsers[$uid])) {
+            return $this->cachedUsers[$uid];
+        }
+
+        $user = new User($uid, $backend, $this->eventDispatcher, $this, $this->config);
+        if ($cacheUser) {
+            $this->cachedUsers[$uid] = $user;
+        }
+        return $user;
+    }
+
+    /**
+     * check if a user exists
+     *
+     * @param string $uid
+     * @return bool
+     */
+    public function userExists($uid) {
+        $user = $this->get($uid);
+        return ($user !== null);
+    }
+
+    /**
+     * Check if the password is valid for the user
+     *
+     * @param string $loginName
+     * @param string $password
+     * @return IUser|false the User object on success, false otherwise
+     */
+    public function checkPassword($loginName, $password) {
+        $result = $this->checkPasswordNoLogging($loginName, $password);
+
+        if ($result === false) {
+            $this->logger->warning('Login failed: \'' . $loginName . '\' (Remote IP: \'' . \OC::$server->getRequest()->getRemoteAddress() . '\')', ['app' => 'core']);
+        }
+
+        return $result;
+    }
+
+    /**
+     * Check if the password is valid for the user
+     *
+     * @internal
+     * @param string $loginName
+     * @param string $password
+     * @return IUser|false the User object on success, false otherwise
+     */
+    public function checkPasswordNoLogging($loginName, $password) {
+        $loginName = str_replace("\0", '', $loginName);
+        $password = str_replace("\0", '', $password);
+
+        $cachedBackend = $this->cache->get($loginName);
+        if ($cachedBackend !== null && isset($this->backends[$cachedBackend])) {
+            $backends = [$this->backends[$cachedBackend]];
+        } else {
+            $backends = $this->backends;
+        }
+        foreach ($backends as $backend) {
+            if ($backend instanceof ICheckPasswordBackend || $backend->implementsActions(Backend::CHECK_PASSWORD)) {
+                /** @var ICheckPasswordBackend $backend */
+                $uid = $backend->checkPassword($loginName, $password);
+                if ($uid !== false) {
+                    return $this->getUserObject($uid, $backend);
+                }
+            }
+        }
+
+        // since http basic auth doesn't provide a standard way of handling non ascii password we allow password to be urlencoded
+        // we only do this decoding after using the plain password fails to maintain compatibility with any password that happens
+        // to contain urlencoded patterns by "accident".
+        $password = urldecode($password);
+
+        foreach ($backends as $backend) {
+            if ($backend instanceof ICheckPasswordBackend || $backend->implementsActions(Backend::CHECK_PASSWORD)) {
+                /** @var ICheckPasswordBackend|UserInterface $backend */
+                $uid = $backend->checkPassword($loginName, $password);
+                if ($uid !== false) {
+                    return $this->getUserObject($uid, $backend);
+                }
+            }
+        }
+
+        return false;
+    }
+
+    /**
+     * Search by user id
+     *
+     * @param string $pattern
+     * @param int $limit
+     * @param int $offset
+     * @return IUser[]
+     * @deprecated 27.0.0, use searchDisplayName instead
+     */
+    public function search($pattern, $limit = null, $offset = null) {
+        $users = [];
+        foreach ($this->backends as $backend) {
+            $backendUsers = $backend->getUsers($pattern, $limit, $offset);
+            if (is_array($backendUsers)) {
+                foreach ($backendUsers as $uid) {
+                    $users[$uid] = new LazyUser($uid, $this, null, $backend);
+                }
+            }
+        }
+
+        uasort($users, function (IUser $a, IUser $b) {
+            return strcasecmp($a->getUID(), $b->getUID());
+        });
+        return $users;
+    }
+
+    /**
+     * Search by displayName
+     *
+     * @param string $pattern
+     * @param int $limit
+     * @param int $offset
+     * @return IUser[]
+     */
+    public function searchDisplayName($pattern, $limit = null, $offset = null) {
+        $users = [];
+        foreach ($this->backends as $backend) {
+            $backendUsers = $backend->getDisplayNames($pattern, $limit, $offset);
+            if (is_array($backendUsers)) {
+                foreach ($backendUsers as $uid => $displayName) {
+                    $users[] = new LazyUser($uid, $this, $displayName, $backend);
+                }
+            }
+        }
+
+        usort($users, function (IUser $a, IUser $b) {
+            return strcasecmp($a->getDisplayName(), $b->getDisplayName());
+        });
+        return $users;
+    }
+
+    /**
+     * @return IUser[]
+     */
+    public function getDisabledUsers(?int $limit = null, int $offset = 0, string $search = ''): array {
+        $users = $this->config->getUsersForUserValue('core', 'enabled', 'false');
+        $users = array_combine(
+            $users,
+            array_map(
+                fn (string $uid): IUser => new LazyUser($uid, $this),
+                $users
+            )
+        );
+        if ($search !== '') {
+            $users = array_filter(
+                $users,
+                function (IUser $user) use ($search): bool {
+                    try {
+                        return mb_stripos($user->getUID(), $search) !== false ||
+                        mb_stripos($user->getDisplayName(), $search) !== false ||
+                        mb_stripos($user->getEMailAddress() ?? '', $search) !== false;
+                    } catch (NoUserException $ex) {
+                        $this->logger->error('Error while filtering disabled users', ['exception' => $ex, 'userUID' => $user->getUID()]);
+                        return false;
+                    }
+                });
+        }
+
+        $tempLimit = ($limit === null ? null : $limit + $offset);
+        foreach ($this->backends as $backend) {
+            if (($tempLimit !== null) && (count($users) >= $tempLimit)) {
+                break;
+            }
+            if ($backend instanceof IProvideEnabledStateBackend) {
+                $backendUsers = $backend->getDisabledUserList(($tempLimit === null ? null : $tempLimit - count($users)), 0, $search);
+                foreach ($backendUsers as $uid) {
+                    $users[$uid] = new LazyUser($uid, $this, null, $backend);
+                }
+            }
+        }
+
+        return array_slice($users, $offset, $limit);
+    }
+
+    /**
+     * Search known users (from phonebook sync) by displayName
+     *
+     * @param string $searcher
+     * @param string $pattern
+     * @param int|null $limit
+     * @param int|null $offset
+     * @return IUser[]
+     */
+    public function searchKnownUsersByDisplayName(string $searcher, string $pattern, ?int $limit = null, ?int $offset = null): array {
+        $users = [];
+        foreach ($this->backends as $backend) {
+            if ($backend instanceof ISearchKnownUsersBackend) {
+                $backendUsers = $backend->searchKnownUsersByDisplayName($searcher, $pattern, $limit, $offset);
+            } else {
+                // Better than nothing, but filtering after pagination can remove lots of results.
+                $backendUsers = $backend->getDisplayNames($pattern, $limit, $offset);
+            }
+            if (is_array($backendUsers)) {
+                foreach ($backendUsers as $uid => $displayName) {
+                    $users[] = $this->getUserObject($uid, $backend);
+                }
+            }
+        }
+
+        usort($users, function ($a, $b) {
+            /**
+             * @var IUser $a
+             * @var IUser $b
+             */
+            return strcasecmp($a->getDisplayName(), $b->getDisplayName());
+        });
+        return $users;
+    }
+
+    /**
+     * @param string $uid
+     * @param string $password
+     * @return false|IUser the created user or false
+     * @throws \InvalidArgumentException
+     * @throws HintException
+     */
+    public function createUser($uid, $password) {
+        // DI injection is not used here as IRegistry needs the user manager itself for user count and thus it would create a cyclic dependency
+        /** @var IAssertion $assertion */
+        $assertion = \OC::$server->get(IAssertion::class);
+        $assertion->createUserIsLegit();
+
+        $localBackends = [];
+        foreach ($this->backends as $backend) {
+            if ($backend instanceof Database) {
+                // First check if there is another user backend
+                $localBackends[] = $backend;
+                continue;
+            }
+
+            if ($backend->implementsActions(Backend::CREATE_USER)) {
+                return $this->createUserFromBackend($uid, $password, $backend);
+            }
+        }
+
+        foreach ($localBackends as $backend) {
+            if ($backend->implementsActions(Backend::CREATE_USER)) {
+                return $this->createUserFromBackend($uid, $password, $backend);
+            }
+        }
+
+        return false;
+    }
+
+    /**
+     * @param string $uid
+     * @param string $password
+     * @param UserInterface $backend
+     * @return IUser|false
+     * @throws \InvalidArgumentException
+     */
+    public function createUserFromBackend($uid, $password, UserInterface $backend) {
+        $l = \OCP\Util::getL10N('lib');
+
+        $this->validateUserId($uid, true);
+
+        // No empty password
+        if (trim($password) === '') {
+            throw new \InvalidArgumentException($l->t('A valid password must be provided'));
+        }
+
+        // Check if user already exists
+        if ($this->userExists($uid)) {
+            throw new \InvalidArgumentException($l->t('The Login is already being used'));
+        }
+
+        /** @deprecated 21.0.0 use BeforeUserCreatedEvent event with the IEventDispatcher instead */
+        $this->emit('\OC\User', 'preCreateUser', [$uid, $password]);
+        $this->eventDispatcher->dispatchTyped(new BeforeUserCreatedEvent($uid, $password));
+        $state = $backend->createUser($uid, $password);
+        if ($state === false) {
+            throw new \InvalidArgumentException($l->t('Could not create account'));
+        }
+        $user = $this->getUserObject($uid, $backend);
+        if ($user instanceof IUser) {
+            /** @deprecated 21.0.0 use UserCreatedEvent event with the IEventDispatcher instead */
+            $this->emit('\OC\User', 'postCreateUser', [$user, $password]);
+            $this->eventDispatcher->dispatchTyped(new UserCreatedEvent($user, $password));
+            return $user;
+        }
+        return false;
+    }
+
+    /**
+     * returns how many users per backend exist (if supported by backend)
+     *
+     * @param boolean $hasLoggedIn when true only users that have a lastLogin
+     *                             entry in the preferences table will be affected
+     * @return array<string, int> an array of backend class as key and count number as value
+     */
+    public function countUsers() {
+        $userCountStatistics = [];
+        foreach ($this->backends as $backend) {
+            if ($backend instanceof ICountUsersBackend || $backend->implementsActions(Backend::COUNT_USERS)) {
+                /** @var ICountUsersBackend|IUserBackend $backend */
+                $backendUsers = $backend->countUsers();
+                if ($backendUsers !== false) {
+                    if ($backend instanceof IUserBackend) {
+                        $name = $backend->getBackendName();
+                    } else {
+                        $name = get_class($backend);
+                    }
+                    if (isset($userCountStatistics[$name])) {
+                        $userCountStatistics[$name] += $backendUsers;
+                    } else {
+                        $userCountStatistics[$name] = $backendUsers;
+                    }
+                }
+            }
+        }
+        return $userCountStatistics;
+    }
+
+    public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int|false {
+        $userCount = false;
+
+        foreach ($this->backends as $backend) {
+            if ($onlyMappedUsers && $backend instanceof ICountMappedUsersBackend) {
+                $backendUsers = $backend->countMappedUsers();
+            } elseif ($backend instanceof ILimitAwareCountUsersBackend) {
+                $backendUsers = $backend->countUsers($limit);
+            } elseif ($backend instanceof ICountUsersBackend || $backend->implementsActions(Backend::COUNT_USERS)) {
+                /** @var ICountUsersBackend $backend */
+                $backendUsers = $backend->countUsers();
+            } else {
+                $this->logger->debug('Skip backend for user count: ' . get_class($backend));
+                continue;
+            }
+            if ($backendUsers !== false) {
+                $userCount = (int)$userCount + $backendUsers;
+                if ($limit > 0) {
+                    if ($userCount >= $limit) {
+                        break;
+                    }
+                    $limit -= $userCount;
+                }
+            } else {
+                $this->logger->warning('Can not determine user count for ' . get_class($backend));
+            }
+        }
+        return $userCount;
+    }
+
+    /**
+     * returns how many users per backend exist in the requested groups (if supported by backend)
+     *
+     * @param IGroup[] $groups an array of groups to search in
+     * @param int $limit limit to stop counting
+     * @return array{int,int} total number of users, and number of disabled users in the given groups, below $limit. If limit is reached, -1 is returned for number of disabled users
+     */
+    public function countUsersAndDisabledUsersOfGroups(array $groups, int $limit): array {
+        $users = [];
+        $disabled = [];
+        foreach ($groups as $group) {
+            foreach ($group->getUsers() as $user) {
+                $users[$user->getUID()] = 1;
+                if (!$user->isEnabled()) {
+                    $disabled[$user->getUID()] = 1;
+                }
+                if (count($users) >= $limit) {
+                    return [count($users),-1];
+                }
+            }
+        }
+        return [count($users),count($disabled)];
+    }
+
+    /**
+     * The callback is executed for each user on each backend.
+     * If the callback returns false no further users will be retrieved.
+     *
+     * @psalm-param \Closure(\OCP\IUser):?bool $callback
+     * @param string $search
+     * @param boolean $onlySeen when true only users that have a lastLogin entry
+     *                          in the preferences table will be affected
+     * @since 9.0.0
+     */
+    public function callForAllUsers(\Closure $callback, $search = '', $onlySeen = false) {
+        if ($onlySeen) {
+            $this->callForSeenUsers($callback);
+        } else {
+            foreach ($this->getBackends() as $backend) {
+                $limit = 500;
+                $offset = 0;
+                do {
+                    $users = $backend->getUsers($search, $limit, $offset);
+                    foreach ($users as $uid) {
+                        if (!$backend->userExists($uid)) {
+                            continue;
+                        }
+                        $user = $this->getUserObject($uid, $backend, false);
+                        $return = $callback($user);
+                        if ($return === false) {
+                            break;
+                        }
+                    }
+                    $offset += $limit;
+                } while (count($users) >= $limit);
+            }
+        }
+    }
+
+    /**
+     * returns how many users are disabled
+     *
+     * @return int
+     * @since 12.0.0
+     */
+    public function countDisabledUsers(): int {
+        $queryBuilder = \OC::$server->getDatabaseConnection()->getQueryBuilder();
+        $queryBuilder->select($queryBuilder->func()->count('*'))
+            ->from('preferences')
+            ->where($queryBuilder->expr()->eq('appid', $queryBuilder->createNamedParameter('core')))
+            ->andWhere($queryBuilder->expr()->eq('configkey', $queryBuilder->createNamedParameter('enabled')))
+            ->andWhere($queryBuilder->expr()->eq('configvalue', $queryBuilder->createNamedParameter('false'), IQueryBuilder::PARAM_STR));
+
+
+        $result = $queryBuilder->execute();
+        $count = $result->fetchOne();
+        $result->closeCursor();
+
+        if ($count !== false) {
+            $count = (int)$count;
+        } else {
+            $count = 0;
+        }
+
+        return $count;
+    }
+
+    /**
+     * returns how many users have logged in once
+     *
+     * @return int
+     * @since 11.0.0
+     */
+    public function countSeenUsers() {
+        $queryBuilder = \OC::$server->getDatabaseConnection()->getQueryBuilder();
+        $queryBuilder->select($queryBuilder->func()->count('*'))
+            ->from('preferences')
+            ->where($queryBuilder->expr()->eq('appid', $queryBuilder->createNamedParameter('login')))
+            ->andWhere($queryBuilder->expr()->eq('configkey', $queryBuilder->createNamedParameter('lastLogin')));
+
+        $query = $queryBuilder->execute();
+
+        $result = (int)$query->fetchOne();
+        $query->closeCursor();
+
+        return $result;
+    }
+
+    public function callForSeenUsers(\Closure $callback) {
+        $users = $this->getSeenUsers();
+        foreach ($users as $user) {
+            $return = $callback($user);
+            if ($return === false) {
+                return;
+            }
+        }
+    }
+
+    /**
+     * Getting all userIds that have a listLogin value requires checking the
+     * value in php because on oracle you cannot use a clob in a where clause,
+     * preventing us from doing a not null or length(value) > 0 check.
+     *
+     * @param int $limit
+     * @param int $offset
+     * @return string[] with user ids
+     */
+    private function getSeenUserIds($limit = null, $offset = null) {
+        $queryBuilder = \OC::$server->getDatabaseConnection()->getQueryBuilder();
+        $queryBuilder->select(['userid'])
+            ->from('preferences')
+            ->where($queryBuilder->expr()->eq(
+                'appid', $queryBuilder->createNamedParameter('login'))
+            )
+            ->andWhere($queryBuilder->expr()->eq(
+                'configkey', $queryBuilder->createNamedParameter('lastLogin'))
+            )
+            ->andWhere($queryBuilder->expr()->isNotNull('configvalue')
+            );
+
+        if ($limit !== null) {
+            $queryBuilder->setMaxResults($limit);
+        }
+        if ($offset !== null) {
+            $queryBuilder->setFirstResult($offset);
+        }
+        $query = $queryBuilder->execute();
+        $result = [];
+
+        while ($row = $query->fetch()) {
+            $result[] = $row['userid'];
+        }
+
+        $query->closeCursor();
+
+        return $result;
+    }
+
+    /**
+     * @param string $email
+     * @return IUser[]
+     * @since 9.1.0
+     */
+    public function getByEmail($email) {
+        // looking for 'email' only (and not primary_mail) is intentional
+        $userIds = $this->config->getUsersForUserValueCaseInsensitive('settings', 'email', $email);
+
+        $users = array_map(function ($uid) {
+            return $this->get($uid);
+        }, $userIds);
+
+        return array_values(array_filter($users, function ($u) {
+            return ($u instanceof IUser);
+        }));
+    }
+
+    /**
+     * @param string $uid
+     * @param bool $checkDataDirectory
+     * @throws \InvalidArgumentException Message is an already translated string with a reason why the id is not valid
+     * @since 26.0.0
+     */
+    public function validateUserId(string $uid, bool $checkDataDirectory = false): void {
+        $l = Server::get(IFactory::class)->get('lib');
+
+        // Check the name for bad characters
+        // Allowed are: "a-z", "A-Z", "0-9", spaces and "_.@-'"
+        if (preg_match('/[^a-zA-Z0-9 _.@\-\']/', $uid)) {
+            throw new \InvalidArgumentException($l->t('Only the following characters are allowed in an Login:'
+                . ' "a-z", "A-Z", "0-9", spaces and "_.@-\'"'));
+        }
+
+        // No empty username
+        if (trim($uid) === '') {
+            throw new \InvalidArgumentException($l->t('A valid Login must be provided'));
+        }
+
+        // No whitespace at the beginning or at the end
+        if (trim($uid) !== $uid) {
+            throw new \InvalidArgumentException($l->t('Login contains whitespace at the beginning or at the end'));
+        }
+
+        // Username only consists of 1 or 2 dots (directory traversal)
+        if ($uid === '.' || $uid === '..') {
+            throw new \InvalidArgumentException($l->t('Login must not consist of dots only'));
+        }
+
+        if (!$this->verifyUid($uid, $checkDataDirectory)) {
+            throw new \InvalidArgumentException($l->t('Login is invalid because files already exist for this user'));
+        }
+    }
+
+    /**
+     * Gets the list of user ids sorted by lastLogin, from most recent to least recent
+     *
+     * @param int|null $limit how many users to fetch (default: 25, max: 100)
+     * @param int $offset from which offset to fetch
+     * @param string $search search users based on search params
+     * @return list<string> list of user IDs
+     */
+    public function getLastLoggedInUsers(?int $limit = null, int $offset = 0, string $search = ''): array {
+        // We can't load all users who already logged in
+        $limit = min(100, $limit ?: 25);
+
+        $connection = \OC::$server->getDatabaseConnection();
+        $queryBuilder = $connection->getQueryBuilder();
+        $queryBuilder->select('pref_login.userid')
+            ->from('preferences', 'pref_login')
+            ->where($queryBuilder->expr()->eq('pref_login.appid', $queryBuilder->expr()->literal('login')))
+            ->andWhere($queryBuilder->expr()->eq('pref_login.configkey', $queryBuilder->expr()->literal('lastLogin')))
+            ->setFirstResult($offset)
+            ->setMaxResults($limit)
+        ;
+
+        // Oracle don't want to run ORDER BY on CLOB column
+        $loginOrder = $connection->getDatabasePlatform() instanceof OraclePlatform
+            ? $queryBuilder->expr()->castColumn('pref_login.configvalue', IQueryBuilder::PARAM_INT)
+            : 'pref_login.configvalue';
+        $queryBuilder
+            ->orderBy($loginOrder, 'DESC')
+            ->addOrderBy($queryBuilder->func()->lower('pref_login.userid'), 'ASC');
+
+        if ($search !== '') {
+            $displayNameMatches = $this->searchDisplayName($search);
+            $matchedUids = array_map(static fn (IUser $u): string => $u->getUID(), $displayNameMatches);
+
+            $queryBuilder
+                ->leftJoin('pref_login', 'preferences', 'pref_email', $queryBuilder->expr()->andX(
+                    $queryBuilder->expr()->eq('pref_login.userid', 'pref_email.userid'),
+                    $queryBuilder->expr()->eq('pref_email.appid', $queryBuilder->expr()->literal('settings')),
+                    $queryBuilder->expr()->eq('pref_email.configkey', $queryBuilder->expr()->literal('email')),
+                ))
+                ->andWhere($queryBuilder->expr()->orX(
+                    $queryBuilder->expr()->in('pref_login.userid', $queryBuilder->createNamedParameter($matchedUids, IQueryBuilder::PARAM_STR_ARRAY)),
+                ));
+        }
+
+        /** @var list<string> */
+        $list = $queryBuilder->executeQuery()->fetchAll(\PDO::FETCH_COLUMN);
+
+        return $list;
+    }
+
+    private function verifyUid(string $uid, bool $checkDataDirectory = false): bool {
+        $appdata = 'appdata_' . $this->config->getSystemValueString('instanceid');
+
+        if (\in_array($uid, [
+            '.htaccess',
+            'files_external',
+            '__groupfolders',
+            '.ncdata',
+            'owncloud.log',
+            'nextcloud.log',
+            'updater.log',
+            'audit.log',
+            $appdata], true)) {
+            return false;
+        }
+
+        if (!$checkDataDirectory) {
+            return true;
+        }
+
+        $dataDirectory = $this->config->getSystemValueString('datadirectory', \OC::$SERVERROOT . '/data');
+
+        return !file_exists(rtrim($dataDirectory, '/') . '/' . $uid);
+    }
+
+    public function getDisplayNameCache(): DisplayNameCache {
+        return $this->displayNameCache;
+    }
+
+    /**
+     * Gets the list of users sorted by lastLogin, from most recent to least recent
+     *
+     * @param int $offset from which offset to fetch
+     * @return \Iterator<IUser> list of user IDs
+     * @since 30.0.0
+     */
+    public function getSeenUsers(int $offset = 0): \Iterator {
+        $limit = 1000;
+
+        do {
+            $userIds = $this->getSeenUserIds($limit, $offset);
+            $offset += $limit;
+
+            foreach ($userIds as $userId) {
+                foreach ($this->backends as $backend) {
+                    if ($backend->userExists($userId)) {
+                        $user = $this->getUserObject($userId, $backend, false);
+                        yield $user;
+                        break;
+                    }
+                }
+            }
+        } while (count($userIds) === $limit);
+    }
 }

Please login to merge, or discard this patch.

lib/base.php 1 patch

Indentation +1136 added lines, -1136 removed lines patch added patch discarded remove patch

@@ -37,1142 +37,1142 @@
 block discarded – undo
  * OC_autoload!
  */
 class OC {
-	/**
-	 * Associative array for autoloading. classname => filename
-	 */
-	public static array $CLASSPATH = [];
-	/**
-	 * The installation path for Nextcloud  on the server (e.g. /srv/http/nextcloud)
-	 */
-	public static string $SERVERROOT = '';
-	/**
-	 * the current request path relative to the Nextcloud root (e.g. files/index.php)
-	 */
-	private static string $SUBURI = '';
-	/**
-	 * the Nextcloud root path for http requests (e.g. /nextcloud)
-	 */
-	public static string $WEBROOT = '';
-	/**
-	 * The installation path array of the apps folder on the server (e.g. /srv/http/nextcloud) 'path' and
-	 * web path in 'url'
-	 */
-	public static array $APPSROOTS = [];
-
-	public static string $configDir;
-
-	/**
-	 * requested app
-	 */
-	public static string $REQUESTEDAPP = '';
-
-	/**
-	 * check if Nextcloud runs in cli mode
-	 */
-	public static bool $CLI = false;
-
-	public static \OC\Autoloader $loader;
-
-	public static \Composer\Autoload\ClassLoader $composerAutoloader;
-
-	public static \OC\Server $server;
-
-	private static \OC\Config $config;
-
-	/**
-	 * @throws \RuntimeException when the 3rdparty directory is missing or
-	 *                           the app path list is empty or contains an invalid path
-	 */
-	public static function initPaths(): void {
-		if (defined('PHPUNIT_CONFIG_DIR')) {
-			self::$configDir = OC::$SERVERROOT . '/' . PHPUNIT_CONFIG_DIR . '/';
-		} elseif (defined('PHPUNIT_RUN') and PHPUNIT_RUN and is_dir(OC::$SERVERROOT . '/tests/config/')) {
-			self::$configDir = OC::$SERVERROOT . '/tests/config/';
-		} elseif ($dir = getenv('NEXTCLOUD_CONFIG_DIR')) {
-			self::$configDir = rtrim($dir, '/') . '/';
-		} else {
-			self::$configDir = OC::$SERVERROOT . '/config/';
-		}
-		self::$config = new \OC\Config(self::$configDir);
-
-		OC::$SUBURI = str_replace('\\', '/', substr(realpath($_SERVER['SCRIPT_FILENAME'] ?? ''), strlen(OC::$SERVERROOT)));
-		/**
-		 * FIXME: The following lines are required because we can't yet instantiate
-		 *        Server::get(\OCP\IRequest::class) since \OC::$server does not yet exist.
-		 */
-		$params = [
-			'server' => [
-				'SCRIPT_NAME' => $_SERVER['SCRIPT_NAME'] ?? null,
-				'SCRIPT_FILENAME' => $_SERVER['SCRIPT_FILENAME'] ?? null,
-			],
-		];
-		if (isset($_SERVER['REMOTE_ADDR'])) {
-			$params['server']['REMOTE_ADDR'] = $_SERVER['REMOTE_ADDR'];
-		}
-		$fakeRequest = new \OC\AppFramework\Http\Request(
-			$params,
-			new \OC\AppFramework\Http\RequestId($_SERVER['UNIQUE_ID'] ?? '', new \OC\Security\SecureRandom()),
-			new \OC\AllConfig(new \OC\SystemConfig(self::$config))
-		);
-		$scriptName = $fakeRequest->getScriptName();
-		if (substr($scriptName, -1) == '/') {
-			$scriptName .= 'index.php';
-			//make sure suburi follows the same rules as scriptName
-			if (substr(OC::$SUBURI, -9) != 'index.php') {
-				if (substr(OC::$SUBURI, -1) != '/') {
-					OC::$SUBURI = OC::$SUBURI . '/';
-				}
-				OC::$SUBURI = OC::$SUBURI . 'index.php';
-			}
-		}
-
-
-		if (OC::$CLI) {
-			OC::$WEBROOT = self::$config->getValue('overwritewebroot', '');
-		} else {
-			if (substr($scriptName, 0 - strlen(OC::$SUBURI)) === OC::$SUBURI) {
-				OC::$WEBROOT = substr($scriptName, 0, 0 - strlen(OC::$SUBURI));
-
-				if (OC::$WEBROOT != '' && OC::$WEBROOT[0] !== '/') {
-					OC::$WEBROOT = '/' . OC::$WEBROOT;
-				}
-			} else {
-				// The scriptName is not ending with OC::$SUBURI
-				// This most likely means that we are calling from CLI.
-				// However some cron jobs still need to generate
-				// a web URL, so we use overwritewebroot as a fallback.
-				OC::$WEBROOT = self::$config->getValue('overwritewebroot', '');
-			}
-
-			// Resolve /nextcloud to /nextcloud/ to ensure to always have a trailing
-			// slash which is required by URL generation.
-			if (isset($_SERVER['REQUEST_URI']) && $_SERVER['REQUEST_URI'] === \OC::$WEBROOT &&
-					substr($_SERVER['REQUEST_URI'], -1) !== '/') {
-				header('Location: ' . \OC::$WEBROOT . '/');
-				exit();
-			}
-		}
-
-		// search the apps folder
-		$config_paths = self::$config->getValue('apps_paths', []);
-		if (!empty($config_paths)) {
-			foreach ($config_paths as $paths) {
-				if (isset($paths['url']) && isset($paths['path'])) {
-					$paths['url'] = rtrim($paths['url'], '/');
-					$paths['path'] = rtrim($paths['path'], '/');
-					OC::$APPSROOTS[] = $paths;
-				}
-			}
-		} elseif (file_exists(OC::$SERVERROOT . '/apps')) {
-			OC::$APPSROOTS[] = ['path' => OC::$SERVERROOT . '/apps', 'url' => '/apps', 'writable' => true];
-		}
-
-		if (empty(OC::$APPSROOTS)) {
-			throw new \RuntimeException('apps directory not found! Please put the Nextcloud apps folder in the Nextcloud folder'
-				. '. You can also configure the location in the config.php file.');
-		}
-		$paths = [];
-		foreach (OC::$APPSROOTS as $path) {
-			$paths[] = $path['path'];
-			if (!is_dir($path['path'])) {
-				throw new \RuntimeException(sprintf('App directory "%s" not found! Please put the Nextcloud apps folder in the'
-					. ' Nextcloud folder. You can also configure the location in the config.php file.', $path['path']));
-			}
-		}
-
-		// set the right include path
-		set_include_path(
-			implode(PATH_SEPARATOR, $paths)
-		);
-	}
-
-	public static function checkConfig(): void {
-		$l = Server::get(\OCP\L10N\IFactory::class)->get('lib');
-
-		// Create config if it does not already exist
-		$configFilePath = self::$configDir . '/config.php';
-		if (!file_exists($configFilePath)) {
-			@touch($configFilePath);
-		}
-
-		// Check if config is writable
-		$configFileWritable = is_writable($configFilePath);
-		if (!$configFileWritable && !OC_Helper::isReadOnlyConfigEnabled()
-			|| !$configFileWritable && \OCP\Util::needUpgrade()) {
-			$urlGenerator = Server::get(IURLGenerator::class);
-
-			if (self::$CLI) {
-				echo $l->t('Cannot write into "config" directory!') . "\n";
-				echo $l->t('This can usually be fixed by giving the web server write access to the config directory.') . "\n";
-				echo "\n";
-				echo $l->t('But, if you prefer to keep config.php file read only, set the option "config_is_read_only" to true in it.') . "\n";
-				echo $l->t('See %s', [ $urlGenerator->linkToDocs('admin-config') ]) . "\n";
-				exit;
-			} else {
-				Server::get(ITemplateManager::class)->printErrorPage(
-					$l->t('Cannot write into "config" directory!'),
-					$l->t('This can usually be fixed by giving the web server write access to the config directory.') . ' '
-					. $l->t('But, if you prefer to keep config.php file read only, set the option "config_is_read_only" to true in it.') . ' '
-					. $l->t('See %s', [ $urlGenerator->linkToDocs('admin-config') ]),
-					503
-				);
-			}
-		}
-	}
-
-	public static function checkInstalled(\OC\SystemConfig $systemConfig): void {
-		if (defined('OC_CONSOLE')) {
-			return;
-		}
-		// Redirect to installer if not installed
-		if (!$systemConfig->getValue('installed', false) && OC::$SUBURI !== '/index.php' && OC::$SUBURI !== '/status.php') {
-			if (OC::$CLI) {
-				throw new Exception('Not installed');
-			} else {
-				$url = OC::$WEBROOT . '/index.php';
-				header('Location: ' . $url);
-			}
-			exit();
-		}
-	}
-
-	public static function checkMaintenanceMode(\OC\SystemConfig $systemConfig): void {
-		// Allow ajax update script to execute without being stopped
-		if (((bool)$systemConfig->getValue('maintenance', false)) && OC::$SUBURI != '/core/ajax/update.php') {
-			// send http status 503
-			http_response_code(503);
-			header('X-Nextcloud-Maintenance-Mode: 1');
-			header('Retry-After: 120');
-
-			// render error page
-			$template = Server::get(ITemplateManager::class)->getTemplate('', 'update.user', 'guest');
-			\OCP\Util::addScript('core', 'maintenance');
-			\OCP\Util::addStyle('core', 'guest');
-			$template->printPage();
-			die();
-		}
-	}
-
-	/**
-	 * Prints the upgrade page
-	 */
-	private static function printUpgradePage(\OC\SystemConfig $systemConfig): void {
-		$cliUpgradeLink = $systemConfig->getValue('upgrade.cli-upgrade-link', '');
-		$disableWebUpdater = $systemConfig->getValue('upgrade.disable-web', false);
-		$tooBig = false;
-		if (!$disableWebUpdater) {
-			$apps = Server::get(\OCP\App\IAppManager::class);
-			if ($apps->isEnabledForAnyone('user_ldap')) {
-				$qb = Server::get(\OCP\IDBConnection::class)->getQueryBuilder();
-
-				$result = $qb->select($qb->func()->count('*', 'user_count'))
-					->from('ldap_user_mapping')
-					->executeQuery();
-				$row = $result->fetch();
-				$result->closeCursor();
-
-				$tooBig = ($row['user_count'] > 50);
-			}
-			if (!$tooBig && $apps->isEnabledForAnyone('user_saml')) {
-				$qb = Server::get(\OCP\IDBConnection::class)->getQueryBuilder();
-
-				$result = $qb->select($qb->func()->count('*', 'user_count'))
-					->from('user_saml_users')
-					->executeQuery();
-				$row = $result->fetch();
-				$result->closeCursor();
-
-				$tooBig = ($row['user_count'] > 50);
-			}
-			if (!$tooBig) {
-				// count users
-				$totalUsers = Server::get(\OCP\IUserManager::class)->countUsersTotal(51);
-				$tooBig = ($totalUsers > 50);
-			}
-		}
-		$ignoreTooBigWarning = isset($_GET['IKnowThatThisIsABigInstanceAndTheUpdateRequestCouldRunIntoATimeoutAndHowToRestoreABackup']) &&
-			$_GET['IKnowThatThisIsABigInstanceAndTheUpdateRequestCouldRunIntoATimeoutAndHowToRestoreABackup'] === 'IAmSuperSureToDoThis';
-
-		if ($disableWebUpdater || ($tooBig && !$ignoreTooBigWarning)) {
-			// send http status 503
-			http_response_code(503);
-			header('Retry-After: 120');
-
-			$serverVersion = \OCP\Server::get(\OCP\ServerVersion::class);
-
-			// render error page
-			$template = Server::get(ITemplateManager::class)->getTemplate('', 'update.use-cli', 'guest');
-			$template->assign('productName', 'nextcloud'); // for now
-			$template->assign('version', $serverVersion->getVersionString());
-			$template->assign('tooBig', $tooBig);
-			$template->assign('cliUpgradeLink', $cliUpgradeLink);
-
-			$template->printPage();
-			die();
-		}
-
-		// check whether this is a core update or apps update
-		$installedVersion = $systemConfig->getValue('version', '0.0.0');
-		$currentVersion = implode('.', \OCP\Util::getVersion());
-
-		// if not a core upgrade, then it's apps upgrade
-		$isAppsOnlyUpgrade = version_compare($currentVersion, $installedVersion, '=');
-
-		$oldTheme = $systemConfig->getValue('theme');
-		$systemConfig->setValue('theme', '');
-		\OCP\Util::addScript('core', 'common');
-		\OCP\Util::addScript('core', 'main');
-		\OCP\Util::addTranslations('core');
-		\OCP\Util::addScript('core', 'update');
-
-		/** @var \OC\App\AppManager $appManager */
-		$appManager = Server::get(\OCP\App\IAppManager::class);
-
-		$tmpl = Server::get(ITemplateManager::class)->getTemplate('', 'update.admin', 'guest');
-		$tmpl->assign('version', \OCP\Server::get(\OCP\ServerVersion::class)->getVersionString());
-		$tmpl->assign('isAppsOnlyUpgrade', $isAppsOnlyUpgrade);
-
-		// get third party apps
-		$ocVersion = \OCP\Util::getVersion();
-		$ocVersion = implode('.', $ocVersion);
-		$incompatibleApps = $appManager->getIncompatibleApps($ocVersion);
-		$incompatibleOverwrites = $systemConfig->getValue('app_install_overwrite', []);
-		$incompatibleShippedApps = [];
-		$incompatibleDisabledApps = [];
-		foreach ($incompatibleApps as $appInfo) {
-			if ($appManager->isShipped($appInfo['id'])) {
-				$incompatibleShippedApps[] = $appInfo['name'] . ' (' . $appInfo['id'] . ')';
-			}
-			if (!in_array($appInfo['id'], $incompatibleOverwrites)) {
-				$incompatibleDisabledApps[] = $appInfo;
-			}
-		}
-
-		if (!empty($incompatibleShippedApps)) {
-			$l = Server::get(\OCP\L10N\IFactory::class)->get('core');
-			$hint = $l->t('Application %1$s is not present or has a non-compatible version with this server. Please check the apps directory.', [implode(', ', $incompatibleShippedApps)]);
-			throw new \OCP\HintException('Application ' . implode(', ', $incompatibleShippedApps) . ' is not present or has a non-compatible version with this server. Please check the apps directory.', $hint);
-		}
-
-		$tmpl->assign('appsToUpgrade', $appManager->getAppsNeedingUpgrade($ocVersion));
-		$tmpl->assign('incompatibleAppsList', $incompatibleDisabledApps);
-		try {
-			$defaults = new \OC_Defaults();
-			$tmpl->assign('productName', $defaults->getName());
-		} catch (Throwable $error) {
-			$tmpl->assign('productName', 'Nextcloud');
-		}
-		$tmpl->assign('oldTheme', $oldTheme);
-		$tmpl->printPage();
-	}
-
-	public static function initSession(): void {
-		$request = Server::get(IRequest::class);
-
-		// TODO: Temporary disabled again to solve issues with CalDAV/CardDAV clients like DAVx5 that use cookies
-		// TODO: See https://github.com/nextcloud/server/issues/37277#issuecomment-1476366147 and the other comments
-		// TODO: for further information.
-		// $isDavRequest = strpos($request->getRequestUri(), '/remote.php/dav') === 0 || strpos($request->getRequestUri(), '/remote.php/webdav') === 0;
-		// if ($request->getHeader('Authorization') !== '' && is_null($request->getCookie('cookie_test')) && $isDavRequest && !isset($_COOKIE['nc_session_id'])) {
-		// setcookie('cookie_test', 'test', time() + 3600);
-		// // Do not initialize the session if a request is authenticated directly
-		// // unless there is a session cookie already sent along
-		// return;
-		// }
-
-		if ($request->getServerProtocol() === 'https') {
-			ini_set('session.cookie_secure', 'true');
-		}
-
-		// prevents javascript from accessing php session cookies
-		ini_set('session.cookie_httponly', 'true');
-
-		// Do not initialize sessions for 'status.php' requests
-		// Monitoring endpoints can quickly flood session handlers
-		// and 'status.php' doesn't require sessions anyway
-		if (str_ends_with($request->getScriptName(), '/status.php')) {
-			return;
-		}
-
-		// set the cookie path to the Nextcloud directory
-		$cookie_path = OC::$WEBROOT ? : '/';
-		ini_set('session.cookie_path', $cookie_path);
-
-		// Let the session name be changed in the initSession Hook
-		$sessionName = OC_Util::getInstanceId();
-
-		try {
-			$logger = null;
-			if (Server::get(\OC\SystemConfig::class)->getValue('installed', false)) {
-				$logger = logger('core');
-			}
-
-			// set the session name to the instance id - which is unique
-			$session = new \OC\Session\Internal(
-				$sessionName,
-				$logger,
-			);
-
-			$cryptoWrapper = Server::get(\OC\Session\CryptoWrapper::class);
-			$session = $cryptoWrapper->wrapSession($session);
-			self::$server->setSession($session);
-
-			// if session can't be started break with http 500 error
-		} catch (Exception $e) {
-			Server::get(LoggerInterface::class)->error($e->getMessage(), ['app' => 'base','exception' => $e]);
-			//show the user a detailed error page
-			Server::get(ITemplateManager::class)->printExceptionErrorPage($e, 500);
-			die();
-		}
-
-		//try to set the session lifetime
-		$sessionLifeTime = self::getSessionLifeTime();
-
-		// session timeout
-		if ($session->exists('LAST_ACTIVITY') && (time() - $session->get('LAST_ACTIVITY') > $sessionLifeTime)) {
-			if (isset($_COOKIE[session_name()])) {
-				setcookie(session_name(), '', -1, self::$WEBROOT ? : '/');
-			}
-			Server::get(IUserSession::class)->logout();
-		}
-
-		if (!self::hasSessionRelaxedExpiry()) {
-			$session->set('LAST_ACTIVITY', time());
-		}
-		$session->close();
-	}
-
-	private static function getSessionLifeTime(): int {
-		return Server::get(\OC\AllConfig::class)->getSystemValueInt('session_lifetime', 60 * 60 * 24);
-	}
-
-	/**
-	 * @return bool true if the session expiry should only be done by gc instead of an explicit timeout
-	 */
-	public static function hasSessionRelaxedExpiry(): bool {
-		return Server::get(\OC\AllConfig::class)->getSystemValueBool('session_relaxed_expiry', false);
-	}
-
-	/**
-	 * Try to set some values to the required Nextcloud default
-	 */
-	public static function setRequiredIniValues(): void {
-		// Don't display errors and log them
-		@ini_set('display_errors', '0');
-		@ini_set('log_errors', '1');
-
-		// Try to configure php to enable big file uploads.
-		// This doesn't work always depending on the webserver and php configuration.
-		// Let's try to overwrite some defaults if they are smaller than 1 hour
-
-		if (intval(@ini_get('max_execution_time') ?: 0) < 3600) {
-			@ini_set('max_execution_time', strval(3600));
-		}
-
-		if (intval(@ini_get('max_input_time') ?: 0) < 3600) {
-			@ini_set('max_input_time', strval(3600));
-		}
-
-		// Try to set the maximum execution time to the largest time limit we have
-		if (strpos(@ini_get('disable_functions'), 'set_time_limit') === false) {
-			@set_time_limit(max(intval(@ini_get('max_execution_time')), intval(@ini_get('max_input_time'))));
-		}
-
-		@ini_set('default_charset', 'UTF-8');
-		@ini_set('gd.jpeg_ignore_warning', '1');
-	}
-
-	/**
-	 * Send the same site cookies
-	 */
-	private static function sendSameSiteCookies(): void {
-		$cookieParams = session_get_cookie_params();
-		$secureCookie = ($cookieParams['secure'] === true) ? 'secure; ' : '';
-		$policies = [
-			'lax',
-			'strict',
-		];
-
-		// Append __Host to the cookie if it meets the requirements
-		$cookiePrefix = '';
-		if ($cookieParams['secure'] === true && $cookieParams['path'] === '/') {
-			$cookiePrefix = '__Host-';
-		}
-
-		foreach ($policies as $policy) {
-			header(
-				sprintf(
-					'Set-Cookie: %snc_sameSiteCookie%s=true; path=%s; httponly;' . $secureCookie . 'expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=%s',
-					$cookiePrefix,
-					$policy,
-					$cookieParams['path'],
-					$policy
-				),
-				false
-			);
-		}
-	}
-
-	/**
-	 * Same Site cookie to further mitigate CSRF attacks. This cookie has to
-	 * be set in every request if cookies are sent to add a second level of
-	 * defense against CSRF.
-	 *
-	 * If the cookie is not sent this will set the cookie and reload the page.
-	 * We use an additional cookie since we want to protect logout CSRF and
-	 * also we can't directly interfere with PHP's session mechanism.
-	 */
-	private static function performSameSiteCookieProtection(\OCP\IConfig $config): void {
-		$request = Server::get(IRequest::class);
-
-		// Some user agents are notorious and don't really properly follow HTTP
-		// specifications. For those, have an automated opt-out. Since the protection
-		// for remote.php is applied in base.php as starting point we need to opt out
-		// here.
-		$incompatibleUserAgents = $config->getSystemValue('csrf.optout');
-
-		// Fallback, if csrf.optout is unset
-		if (!is_array($incompatibleUserAgents)) {
-			$incompatibleUserAgents = [
-				// OS X Finder
-				'/^WebDAVFS/',
-				// Windows webdav drive
-				'/^Microsoft-WebDAV-MiniRedir/',
-			];
-		}
-
-		if ($request->isUserAgent($incompatibleUserAgents)) {
-			return;
-		}
-
-		if (count($_COOKIE) > 0) {
-			$requestUri = $request->getScriptName();
-			$processingScript = explode('/', $requestUri);
-			$processingScript = $processingScript[count($processingScript) - 1];
-
-			// index.php routes are handled in the middleware
-			// and cron.php does not need any authentication at all
-			if ($processingScript === 'index.php'
-				|| $processingScript === 'cron.php') {
-				return;
-			}
-
-			// All other endpoints require the lax and the strict cookie
-			if (!$request->passesStrictCookieCheck()) {
-				logger('core')->warning('Request does not pass strict cookie check');
-				self::sendSameSiteCookies();
-				// Debug mode gets access to the resources without strict cookie
-				// due to the fact that the SabreDAV browser also lives there.
-				if (!$config->getSystemValueBool('debug', false)) {
-					http_response_code(\OCP\AppFramework\Http::STATUS_PRECONDITION_FAILED);
-					header('Content-Type: application/json');
-					echo json_encode(['error' => 'Strict Cookie has not been found in request']);
-					exit();
-				}
-			}
-		} elseif (!isset($_COOKIE['nc_sameSiteCookielax']) || !isset($_COOKIE['nc_sameSiteCookiestrict'])) {
-			self::sendSameSiteCookies();
-		}
-	}
-
-	public static function init(): void {
-		// First handle PHP configuration and copy auth headers to the expected
-		// $_SERVER variable before doing anything Server object related
-		self::setRequiredIniValues();
-		self::handleAuthHeaders();
-
-		// prevent any XML processing from loading external entities
-		libxml_set_external_entity_loader(static function () {
-			return null;
-		});
-
-		// Set default timezone before the Server object is booted
-		if (!date_default_timezone_set('UTC')) {
-			throw new \RuntimeException('Could not set timezone to UTC');
-		}
-
-		// calculate the root directories
-		OC::$SERVERROOT = str_replace('\\', '/', substr(__DIR__, 0, -4));
-
-		// register autoloader
-		$loaderStart = microtime(true);
-		require_once __DIR__ . '/autoloader.php';
-		self::$loader = new \OC\Autoloader([
-			OC::$SERVERROOT . '/lib/private/legacy',
-		]);
-		if (defined('PHPUNIT_RUN')) {
-			self::$loader->addValidRoot(OC::$SERVERROOT . '/tests');
-		}
-		spl_autoload_register([self::$loader, 'load']);
-		$loaderEnd = microtime(true);
-
-		self::$CLI = (php_sapi_name() == 'cli');
-
-		// Add default composer PSR-4 autoloader, ensure apcu to be disabled
-		self::$composerAutoloader = require_once OC::$SERVERROOT . '/lib/composer/autoload.php';
-		self::$composerAutoloader->setApcuPrefix(null);
-
-
-		try {
-			self::initPaths();
-			// setup 3rdparty autoloader
-			$vendorAutoLoad = OC::$SERVERROOT . '/3rdparty/autoload.php';
-			if (!file_exists($vendorAutoLoad)) {
-				throw new \RuntimeException('Composer autoloader not found, unable to continue. Check the folder "3rdparty". Running "git submodule update --init" will initialize the git submodule that handles the subfolder "3rdparty".');
-			}
-			require_once $vendorAutoLoad;
-		} catch (\RuntimeException $e) {
-			if (!self::$CLI) {
-				http_response_code(503);
-			}
-			// we can't use the template error page here, because this needs the
-			// DI container which isn't available yet
-			print($e->getMessage());
-			exit();
-		}
-
-		// setup the basic server
-		self::$server = new \OC\Server(\OC::$WEBROOT, self::$config);
-		self::$server->boot();
-
-		if (self::$CLI && in_array('--' . \OCP\Console\ReservedOptions::DEBUG_LOG, $_SERVER['argv'])) {
-			\OC\Core\Listener\BeforeMessageLoggedEventListener::setup();
-		}
-
-		$eventLogger = Server::get(\OCP\Diagnostics\IEventLogger::class);
-		$eventLogger->log('autoloader', 'Autoloader', $loaderStart, $loaderEnd);
-		$eventLogger->start('boot', 'Initialize');
-
-		// Override php.ini and log everything if we're troubleshooting
-		if (self::$config->getValue('loglevel') === ILogger::DEBUG) {
-			error_reporting(E_ALL);
-		}
-
-		$systemConfig = Server::get(\OC\SystemConfig::class);
-		self::registerAutoloaderCache($systemConfig);
-
-		// initialize intl fallback if necessary
-		OC_Util::isSetLocaleWorking();
-
-		$config = Server::get(\OCP\IConfig::class);
-		if (!defined('PHPUNIT_RUN')) {
-			$errorHandler = new OC\Log\ErrorHandler(
-				\OCP\Server::get(\Psr\Log\LoggerInterface::class),
-			);
-			$exceptionHandler = [$errorHandler, 'onException'];
-			if ($config->getSystemValueBool('debug', false)) {
-				set_error_handler([$errorHandler, 'onAll'], E_ALL);
-				if (\OC::$CLI) {
-					$exceptionHandler = [Server::get(ITemplateManager::class), 'printExceptionErrorPage'];
-				}
-			} else {
-				set_error_handler([$errorHandler, 'onError']);
-			}
-			register_shutdown_function([$errorHandler, 'onShutdown']);
-			set_exception_handler($exceptionHandler);
-		}
-
-		/** @var \OC\AppFramework\Bootstrap\Coordinator $bootstrapCoordinator */
-		$bootstrapCoordinator = Server::get(\OC\AppFramework\Bootstrap\Coordinator::class);
-		$bootstrapCoordinator->runInitialRegistration();
-
-		$eventLogger->start('init_session', 'Initialize session');
-
-		// Check for PHP SimpleXML extension earlier since we need it before our other checks and want to provide a useful hint for web users
-		// see https://github.com/nextcloud/server/pull/2619
-		if (!function_exists('simplexml_load_file')) {
-			throw new \OCP\HintException('The PHP SimpleXML/PHP-XML extension is not installed.', 'Install the extension or make sure it is enabled.');
-		}
-
-		$appManager = Server::get(\OCP\App\IAppManager::class);
-		if ($systemConfig->getValue('installed', false)) {
-			$appManager->loadApps(['session']);
-		}
-		if (!self::$CLI) {
-			self::initSession();
-		}
-		$eventLogger->end('init_session');
-		self::checkConfig();
-		self::checkInstalled($systemConfig);
-
-		OC_Response::addSecurityHeaders();
-
-		self::performSameSiteCookieProtection($config);
-
-		if (!defined('OC_CONSOLE')) {
-			$errors = OC_Util::checkServer($systemConfig);
-			if (count($errors) > 0) {
-				if (!self::$CLI) {
-					http_response_code(503);
-					Util::addStyle('guest');
-					try {
-						Server::get(ITemplateManager::class)->printGuestPage('', 'error', ['errors' => $errors]);
-						exit;
-					} catch (\Exception $e) {
-						// In case any error happens when showing the error page, we simply fall back to posting the text.
-						// This might be the case when e.g. the data directory is broken and we can not load/write SCSS to/from it.
-					}
-				}
-
-				// Convert l10n string into regular string for usage in database
-				$staticErrors = [];
-				foreach ($errors as $error) {
-					echo $error['error'] . "\n";
-					echo $error['hint'] . "\n\n";
-					$staticErrors[] = [
-						'error' => (string)$error['error'],
-						'hint' => (string)$error['hint'],
-					];
-				}
-
-				try {
-					$config->setAppValue('core', 'cronErrors', json_encode($staticErrors));
-				} catch (\Exception $e) {
-					echo('Writing to database failed');
-				}
-				exit(1);
-			} elseif (self::$CLI && $config->getSystemValueBool('installed', false)) {
-				$config->deleteAppValue('core', 'cronErrors');
-			}
-		}
-
-		// User and Groups
-		if (!$systemConfig->getValue('installed', false)) {
-			self::$server->getSession()->set('user_id', '');
-		}
-
-		Server::get(\OCP\IUserManager::class)->registerBackend(new \OC\User\Database());
-		Server::get(\OCP\IGroupManager::class)->addBackend(new \OC\Group\Database());
-
-		// Subscribe to the hook
-		\OCP\Util::connectHook(
-			'\OCA\Files_Sharing\API\Server2Server',
-			'preLoginNameUsedAsUserName',
-			'\OC\User\Database',
-			'preLoginNameUsedAsUserName'
-		);
-
-		//setup extra user backends
-		if (!\OCP\Util::needUpgrade()) {
-			OC_User::setupBackends();
-		} else {
-			// Run upgrades in incognito mode
-			OC_User::setIncognitoMode(true);
-		}
-
-		self::registerCleanupHooks($systemConfig);
-		self::registerShareHooks($systemConfig);
-		self::registerEncryptionWrapperAndHooks();
-		self::registerAccountHooks();
-		self::registerResourceCollectionHooks();
-		self::registerFileReferenceEventListener();
-		self::registerRenderReferenceEventListener();
-		self::registerAppRestrictionsHooks();
-
-		// Make sure that the application class is not loaded before the database is setup
-		if ($systemConfig->getValue('installed', false)) {
-			$appManager->loadApp('settings');
-			/* Build core application to make sure that listeners are registered */
-			Server::get(\OC\Core\Application::class);
-		}
-
-		//make sure temporary files are cleaned up
-		$tmpManager = Server::get(\OCP\ITempManager::class);
-		register_shutdown_function([$tmpManager, 'clean']);
-		$lockProvider = Server::get(\OCP\Lock\ILockingProvider::class);
-		register_shutdown_function([$lockProvider, 'releaseAll']);
-
-		// Check whether the sample configuration has been copied
-		if ($systemConfig->getValue('copied_sample_config', false)) {
-			$l = Server::get(\OCP\L10N\IFactory::class)->get('lib');
-			Server::get(ITemplateManager::class)->printErrorPage(
-				$l->t('Sample configuration detected'),
-				$l->t('It has been detected that the sample configuration has been copied. This can break your installation and is unsupported. Please read the documentation before performing changes on config.php'),
-				503
-			);
-			return;
-		}
-
-		$request = Server::get(IRequest::class);
-		$host = $request->getInsecureServerHost();
-		/**
-		 * if the host passed in headers isn't trusted
-		 * FIXME: Should not be in here at all :see_no_evil:
-		 */
-		if (!OC::$CLI
-			&& !Server::get(\OC\Security\TrustedDomainHelper::class)->isTrustedDomain($host)
-			&& $config->getSystemValueBool('installed', false)
-		) {
-			// Allow access to CSS resources
-			$isScssRequest = false;
-			if (strpos($request->getPathInfo() ?: '', '/css/') === 0) {
-				$isScssRequest = true;
-			}
-
-			if (substr($request->getRequestUri(), -11) === '/status.php') {
-				http_response_code(400);
-				header('Content-Type: application/json');
-				echo '{"error": "Trusted domain error.", "code": 15}';
-				exit();
-			}
-
-			if (!$isScssRequest) {
-				http_response_code(400);
-				Server::get(LoggerInterface::class)->info(
-					'Trusted domain error. "{remoteAddress}" tried to access using "{host}" as host.',
-					[
-						'app' => 'core',
-						'remoteAddress' => $request->getRemoteAddress(),
-						'host' => $host,
-					]
-				);
-
-				$tmpl = Server::get(ITemplateManager::class)->getTemplate('core', 'untrustedDomain', 'guest');
-				$tmpl->assign('docUrl', Server::get(IURLGenerator::class)->linkToDocs('admin-trusted-domains'));
-				$tmpl->printPage();
-
-				exit();
-			}
-		}
-		$eventLogger->end('boot');
-		$eventLogger->log('init', 'OC::init', $loaderStart, microtime(true));
-		$eventLogger->start('runtime', 'Runtime');
-		$eventLogger->start('request', 'Full request after boot');
-		register_shutdown_function(function () use ($eventLogger) {
-			$eventLogger->end('request');
-		});
-
-		register_shutdown_function(function () {
-			$memoryPeak = memory_get_peak_usage();
-			$logLevel = match (true) {
-				$memoryPeak > 500_000_000 => ILogger::FATAL,
-				$memoryPeak > 400_000_000 => ILogger::ERROR,
-				$memoryPeak > 300_000_000 => ILogger::WARN,
-				default => null,
-			};
-			if ($logLevel !== null) {
-				$message = 'Request used more than 300 MB of RAM: ' . Util::humanFileSize($memoryPeak);
-				$logger = Server::get(LoggerInterface::class);
-				$logger->log($logLevel, $message, ['app' => 'core']);
-			}
-		});
-	}
-
-	/**
-	 * register hooks for the cleanup of cache and bruteforce protection
-	 */
-	public static function registerCleanupHooks(\OC\SystemConfig $systemConfig): void {
-		//don't try to do this before we are properly setup
-		if ($systemConfig->getValue('installed', false) && !\OCP\Util::needUpgrade()) {
-			// NOTE: This will be replaced to use OCP
-			$userSession = Server::get(\OC\User\Session::class);
-			$userSession->listen('\OC\User', 'postLogin', function () use ($userSession) {
-				if (!defined('PHPUNIT_RUN') && $userSession->isLoggedIn()) {
-					// reset brute force delay for this IP address and username
-					$uid = $userSession->getUser()->getUID();
-					$request = Server::get(IRequest::class);
-					$throttler = Server::get(IThrottler::class);
-					$throttler->resetDelay($request->getRemoteAddress(), 'login', ['user' => $uid]);
-				}
-
-				try {
-					$cache = new \OC\Cache\File();
-					$cache->gc();
-				} catch (\OC\ServerNotAvailableException $e) {
-					// not a GC exception, pass it on
-					throw $e;
-				} catch (\OC\ForbiddenException $e) {
-					// filesystem blocked for this request, ignore
-				} catch (\Exception $e) {
-					// a GC exception should not prevent users from using OC,
-					// so log the exception
-					Server::get(LoggerInterface::class)->warning('Exception when running cache gc.', [
-						'app' => 'core',
-						'exception' => $e,
-					]);
-				}
-			});
-		}
-	}
-
-	private static function registerEncryptionWrapperAndHooks(): void {
-		$manager = Server::get(\OCP\Encryption\IManager::class);
-		\OCP\Util::connectHook('OC_Filesystem', 'preSetup', $manager, 'setupStorage');
-
-		$enabled = $manager->isEnabled();
-		if ($enabled) {
-			\OCP\Util::connectHook(Share::class, 'post_shared', HookManager::class, 'postShared');
-			\OCP\Util::connectHook(Share::class, 'post_unshare', HookManager::class, 'postUnshared');
-			\OCP\Util::connectHook('OC_Filesystem', 'post_rename', HookManager::class, 'postRename');
-			\OCP\Util::connectHook('\OCA\Files_Trashbin\Trashbin', 'post_restore', HookManager::class, 'postRestore');
-		}
-	}
-
-	private static function registerAccountHooks(): void {
-		/** @var IEventDispatcher $dispatcher */
-		$dispatcher = Server::get(IEventDispatcher::class);
-		$dispatcher->addServiceListener(UserChangedEvent::class, \OC\Accounts\Hooks::class);
-	}
-
-	private static function registerAppRestrictionsHooks(): void {
-		/** @var \OC\Group\Manager $groupManager */
-		$groupManager = Server::get(\OCP\IGroupManager::class);
-		$groupManager->listen('\OC\Group', 'postDelete', function (\OCP\IGroup $group) {
-			$appManager = Server::get(\OCP\App\IAppManager::class);
-			$apps = $appManager->getEnabledAppsForGroup($group);
-			foreach ($apps as $appId) {
-				$restrictions = $appManager->getAppRestriction($appId);
-				if (empty($restrictions)) {
-					continue;
-				}
-				$key = array_search($group->getGID(), $restrictions);
-				unset($restrictions[$key]);
-				$restrictions = array_values($restrictions);
-				if (empty($restrictions)) {
-					$appManager->disableApp($appId);
-				} else {
-					$appManager->enableAppForGroups($appId, $restrictions);
-				}
-			}
-		});
-	}
-
-	private static function registerResourceCollectionHooks(): void {
-		\OC\Collaboration\Resources\Listener::register(Server::get(IEventDispatcher::class));
-	}
-
-	private static function registerFileReferenceEventListener(): void {
-		\OC\Collaboration\Reference\File\FileReferenceEventListener::register(Server::get(IEventDispatcher::class));
-	}
-
-	private static function registerRenderReferenceEventListener() {
-		\OC\Collaboration\Reference\RenderReferenceEventListener::register(Server::get(IEventDispatcher::class));
-	}
-
-	/**
-	 * register hooks for sharing
-	 */
-	public static function registerShareHooks(\OC\SystemConfig $systemConfig): void {
-		if ($systemConfig->getValue('installed')) {
-
-			$dispatcher = Server::get(IEventDispatcher::class);
-			$dispatcher->addServiceListener(UserRemovedEvent::class, UserRemovedListener::class);
-			$dispatcher->addServiceListener(GroupDeletedEvent::class, GroupDeletedListener::class);
-			$dispatcher->addServiceListener(UserDeletedEvent::class, UserDeletedListener::class);
-		}
-	}
-
-	protected static function registerAutoloaderCache(\OC\SystemConfig $systemConfig): void {
-		// The class loader takes an optional low-latency cache, which MUST be
-		// namespaced. The instanceid is used for namespacing, but might be
-		// unavailable at this point. Furthermore, it might not be possible to
-		// generate an instanceid via \OC_Util::getInstanceId() because the
-		// config file may not be writable. As such, we only register a class
-		// loader cache if instanceid is available without trying to create one.
-		$instanceId = $systemConfig->getValue('instanceid', null);
-		if ($instanceId) {
-			try {
-				$memcacheFactory = Server::get(\OCP\ICacheFactory::class);
-				self::$loader->setMemoryCache($memcacheFactory->createLocal('Autoloader'));
-			} catch (\Exception $ex) {
-			}
-		}
-	}
-
-	/**
-	 * Handle the request
-	 */
-	public static function handleRequest(): void {
-		Server::get(\OCP\Diagnostics\IEventLogger::class)->start('handle_request', 'Handle request');
-		$systemConfig = Server::get(\OC\SystemConfig::class);
-
-		// Check if Nextcloud is installed or in maintenance (update) mode
-		if (!$systemConfig->getValue('installed', false)) {
-			\OC::$server->getSession()->clear();
-			$controller = Server::get(\OC\Core\Controller\SetupController::class);
-			$controller->run($_POST);
-			exit();
-		}
-
-		$request = Server::get(IRequest::class);
-		$requestPath = $request->getRawPathInfo();
-		if ($requestPath === '/heartbeat') {
-			return;
-		}
-		if (substr($requestPath, -3) !== '.js') { // we need these files during the upgrade
-			self::checkMaintenanceMode($systemConfig);
-
-			if (\OCP\Util::needUpgrade()) {
-				if (function_exists('opcache_reset')) {
-					opcache_reset();
-				}
-				if (!((bool)$systemConfig->getValue('maintenance', false))) {
-					self::printUpgradePage($systemConfig);
-					exit();
-				}
-			}
-		}
-
-		$appManager = Server::get(\OCP\App\IAppManager::class);
-
-		// Always load authentication apps
-		$appManager->loadApps(['authentication']);
-		$appManager->loadApps(['extended_authentication']);
-
-		// Load minimum set of apps
-		if (!\OCP\Util::needUpgrade()
-			&& !((bool)$systemConfig->getValue('maintenance', false))) {
-			// For logged-in users: Load everything
-			if (Server::get(IUserSession::class)->isLoggedIn()) {
-				$appManager->loadApps();
-			} else {
-				// For guests: Load only filesystem and logging
-				$appManager->loadApps(['filesystem', 'logging']);
-
-				// Don't try to login when a client is trying to get a OAuth token.
-				// OAuth needs to support basic auth too, so the login is not valid
-				// inside Nextcloud and the Login exception would ruin it.
-				if ($request->getRawPathInfo() !== '/apps/oauth2/api/v1/token') {
-					self::handleLogin($request);
-				}
-			}
-		}
-
-		if (!self::$CLI) {
-			try {
-				if (!\OCP\Util::needUpgrade()) {
-					$appManager->loadApps(['filesystem', 'logging']);
-					$appManager->loadApps();
-				}
-				Server::get(\OC\Route\Router::class)->match($request->getRawPathInfo());
-				return;
-			} catch (Symfony\Component\Routing\Exception\ResourceNotFoundException $e) {
-				//header('HTTP/1.0 404 Not Found');
-			} catch (Symfony\Component\Routing\Exception\MethodNotAllowedException $e) {
-				http_response_code(405);
-				return;
-			}
-		}
-
-		// Handle WebDAV
-		if (isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] === 'PROPFIND') {
-			// not allowed any more to prevent people
-			// mounting this root directly.
-			// Users need to mount remote.php/webdav instead.
-			http_response_code(405);
-			return;
-		}
-
-		// Handle requests for JSON or XML
-		$acceptHeader = $request->getHeader('Accept');
-		if (in_array($acceptHeader, ['application/json', 'application/xml'], true)) {
-			http_response_code(404);
-			return;
-		}
-
-		// Handle resources that can't be found
-		// This prevents browsers from redirecting to the default page and then
-		// attempting to parse HTML as CSS and similar.
-		$destinationHeader = $request->getHeader('Sec-Fetch-Dest');
-		if (in_array($destinationHeader, ['font', 'script', 'style'])) {
-			http_response_code(404);
-			return;
-		}
-
-		// Redirect to the default app or login only as an entry point
-		if ($requestPath === '') {
-			// Someone is logged in
-			if (Server::get(IUserSession::class)->isLoggedIn()) {
-				header('Location: ' . Server::get(IURLGenerator::class)->linkToDefaultPageUrl());
-			} else {
-				// Not handled and not logged in
-				header('Location: ' . Server::get(IURLGenerator::class)->linkToRouteAbsolute('core.login.showLoginForm'));
-			}
-			return;
-		}
-
-		try {
-			Server::get(\OC\Route\Router::class)->match('/error/404');
-		} catch (\Exception $e) {
-			if (!$e instanceof MethodNotAllowedException) {
-				logger('core')->emergency($e->getMessage(), ['exception' => $e]);
-			}
-			$l = Server::get(\OCP\L10N\IFactory::class)->get('lib');
-			Server::get(ITemplateManager::class)->printErrorPage(
-				'404',
-				$l->t('The page could not be found on the server.'),
-				404
-			);
-		}
-	}
-
-	/**
-	 * Check login: apache auth, auth token, basic auth
-	 */
-	public static function handleLogin(OCP\IRequest $request): bool {
-		if ($request->getHeader('X-Nextcloud-Federation')) {
-			return false;
-		}
-		$userSession = Server::get(\OC\User\Session::class);
-		if (OC_User::handleApacheAuth()) {
-			return true;
-		}
-		if (self::tryAppAPILogin($request)) {
-			return true;
-		}
-		if ($userSession->tryTokenLogin($request)) {
-			return true;
-		}
-		if (isset($_COOKIE['nc_username'])
-			&& isset($_COOKIE['nc_token'])
-			&& isset($_COOKIE['nc_session_id'])
-			&& $userSession->loginWithCookie($_COOKIE['nc_username'], $_COOKIE['nc_token'], $_COOKIE['nc_session_id'])) {
-			return true;
-		}
-		if ($userSession->tryBasicAuthLogin($request, Server::get(IThrottler::class))) {
-			return true;
-		}
-		return false;
-	}
-
-	protected static function handleAuthHeaders(): void {
-		//copy http auth headers for apache+php-fcgid work around
-		if (isset($_SERVER['HTTP_XAUTHORIZATION']) && !isset($_SERVER['HTTP_AUTHORIZATION'])) {
-			$_SERVER['HTTP_AUTHORIZATION'] = $_SERVER['HTTP_XAUTHORIZATION'];
-		}
-
-		// Extract PHP_AUTH_USER/PHP_AUTH_PW from other headers if necessary.
-		$vars = [
-			'HTTP_AUTHORIZATION', // apache+php-cgi work around
-			'REDIRECT_HTTP_AUTHORIZATION', // apache+php-cgi alternative
-		];
-		foreach ($vars as $var) {
-			if (isset($_SERVER[$var]) && is_string($_SERVER[$var]) && preg_match('/Basic\s+(.*)$/i', $_SERVER[$var], $matches)) {
-				$credentials = explode(':', base64_decode($matches[1]), 2);
-				if (count($credentials) === 2) {
-					$_SERVER['PHP_AUTH_USER'] = $credentials[0];
-					$_SERVER['PHP_AUTH_PW'] = $credentials[1];
-					break;
-				}
-			}
-		}
-	}
-
-	protected static function tryAppAPILogin(OCP\IRequest $request): bool {
-		if (!$request->getHeader('AUTHORIZATION-APP-API')) {
-			return false;
-		}
-		$appManager = Server::get(OCP\App\IAppManager::class);
-		if (!$appManager->isEnabledForAnyone('app_api')) {
-			return false;
-		}
-		try {
-			$appAPIService = Server::get(OCA\AppAPI\Service\AppAPIService::class);
-			return $appAPIService->validateExAppRequestToNC($request);
-		} catch (\Psr\Container\NotFoundExceptionInterface|\Psr\Container\ContainerExceptionInterface $e) {
-			return false;
-		}
-	}
+    /**
+     * Associative array for autoloading. classname => filename
+     */
+    public static array $CLASSPATH = [];
+    /**
+     * The installation path for Nextcloud  on the server (e.g. /srv/http/nextcloud)
+     */
+    public static string $SERVERROOT = '';
+    /**
+     * the current request path relative to the Nextcloud root (e.g. files/index.php)
+     */
+    private static string $SUBURI = '';
+    /**
+     * the Nextcloud root path for http requests (e.g. /nextcloud)
+     */
+    public static string $WEBROOT = '';
+    /**
+     * The installation path array of the apps folder on the server (e.g. /srv/http/nextcloud) 'path' and
+     * web path in 'url'
+     */
+    public static array $APPSROOTS = [];
+
+    public static string $configDir;
+
+    /**
+     * requested app
+     */
+    public static string $REQUESTEDAPP = '';
+
+    /**
+     * check if Nextcloud runs in cli mode
+     */
+    public static bool $CLI = false;
+
+    public static \OC\Autoloader $loader;
+
+    public static \Composer\Autoload\ClassLoader $composerAutoloader;
+
+    public static \OC\Server $server;
+
+    private static \OC\Config $config;
+
+    /**
+     * @throws \RuntimeException when the 3rdparty directory is missing or
+     *                           the app path list is empty or contains an invalid path
+     */
+    public static function initPaths(): void {
+        if (defined('PHPUNIT_CONFIG_DIR')) {
+            self::$configDir = OC::$SERVERROOT . '/' . PHPUNIT_CONFIG_DIR . '/';
+        } elseif (defined('PHPUNIT_RUN') and PHPUNIT_RUN and is_dir(OC::$SERVERROOT . '/tests/config/')) {
+            self::$configDir = OC::$SERVERROOT . '/tests/config/';
+        } elseif ($dir = getenv('NEXTCLOUD_CONFIG_DIR')) {
+            self::$configDir = rtrim($dir, '/') . '/';
+        } else {
+            self::$configDir = OC::$SERVERROOT . '/config/';
+        }
+        self::$config = new \OC\Config(self::$configDir);
+
+        OC::$SUBURI = str_replace('\\', '/', substr(realpath($_SERVER['SCRIPT_FILENAME'] ?? ''), strlen(OC::$SERVERROOT)));
+        /**
+         * FIXME: The following lines are required because we can't yet instantiate
+         *        Server::get(\OCP\IRequest::class) since \OC::$server does not yet exist.
+         */
+        $params = [
+            'server' => [
+                'SCRIPT_NAME' => $_SERVER['SCRIPT_NAME'] ?? null,
+                'SCRIPT_FILENAME' => $_SERVER['SCRIPT_FILENAME'] ?? null,
+            ],
+        ];
+        if (isset($_SERVER['REMOTE_ADDR'])) {
+            $params['server']['REMOTE_ADDR'] = $_SERVER['REMOTE_ADDR'];
+        }
+        $fakeRequest = new \OC\AppFramework\Http\Request(
+            $params,
+            new \OC\AppFramework\Http\RequestId($_SERVER['UNIQUE_ID'] ?? '', new \OC\Security\SecureRandom()),
+            new \OC\AllConfig(new \OC\SystemConfig(self::$config))
+        );
+        $scriptName = $fakeRequest->getScriptName();
+        if (substr($scriptName, -1) == '/') {
+            $scriptName .= 'index.php';
+            //make sure suburi follows the same rules as scriptName
+            if (substr(OC::$SUBURI, -9) != 'index.php') {
+                if (substr(OC::$SUBURI, -1) != '/') {
+                    OC::$SUBURI = OC::$SUBURI . '/';
+                }
+                OC::$SUBURI = OC::$SUBURI . 'index.php';
+            }
+        }
+
+
+        if (OC::$CLI) {
+            OC::$WEBROOT = self::$config->getValue('overwritewebroot', '');
+        } else {
+            if (substr($scriptName, 0 - strlen(OC::$SUBURI)) === OC::$SUBURI) {
+                OC::$WEBROOT = substr($scriptName, 0, 0 - strlen(OC::$SUBURI));
+
+                if (OC::$WEBROOT != '' && OC::$WEBROOT[0] !== '/') {
+                    OC::$WEBROOT = '/' . OC::$WEBROOT;
+                }
+            } else {
+                // The scriptName is not ending with OC::$SUBURI
+                // This most likely means that we are calling from CLI.
+                // However some cron jobs still need to generate
+                // a web URL, so we use overwritewebroot as a fallback.
+                OC::$WEBROOT = self::$config->getValue('overwritewebroot', '');
+            }
+
+            // Resolve /nextcloud to /nextcloud/ to ensure to always have a trailing
+            // slash which is required by URL generation.
+            if (isset($_SERVER['REQUEST_URI']) && $_SERVER['REQUEST_URI'] === \OC::$WEBROOT &&
+                    substr($_SERVER['REQUEST_URI'], -1) !== '/') {
+                header('Location: ' . \OC::$WEBROOT . '/');
+                exit();
+            }
+        }
+
+        // search the apps folder
+        $config_paths = self::$config->getValue('apps_paths', []);
+        if (!empty($config_paths)) {
+            foreach ($config_paths as $paths) {
+                if (isset($paths['url']) && isset($paths['path'])) {
+                    $paths['url'] = rtrim($paths['url'], '/');
+                    $paths['path'] = rtrim($paths['path'], '/');
+                    OC::$APPSROOTS[] = $paths;
+                }
+            }
+        } elseif (file_exists(OC::$SERVERROOT . '/apps')) {
+            OC::$APPSROOTS[] = ['path' => OC::$SERVERROOT . '/apps', 'url' => '/apps', 'writable' => true];
+        }
+
+        if (empty(OC::$APPSROOTS)) {
+            throw new \RuntimeException('apps directory not found! Please put the Nextcloud apps folder in the Nextcloud folder'
+                . '. You can also configure the location in the config.php file.');
+        }
+        $paths = [];
+        foreach (OC::$APPSROOTS as $path) {
+            $paths[] = $path['path'];
+            if (!is_dir($path['path'])) {
+                throw new \RuntimeException(sprintf('App directory "%s" not found! Please put the Nextcloud apps folder in the'
+                    . ' Nextcloud folder. You can also configure the location in the config.php file.', $path['path']));
+            }
+        }
+
+        // set the right include path
+        set_include_path(
+            implode(PATH_SEPARATOR, $paths)
+        );
+    }
+
+    public static function checkConfig(): void {
+        $l = Server::get(\OCP\L10N\IFactory::class)->get('lib');
+
+        // Create config if it does not already exist
+        $configFilePath = self::$configDir . '/config.php';
+        if (!file_exists($configFilePath)) {
+            @touch($configFilePath);
+        }
+
+        // Check if config is writable
+        $configFileWritable = is_writable($configFilePath);
+        if (!$configFileWritable && !OC_Helper::isReadOnlyConfigEnabled()
+            || !$configFileWritable && \OCP\Util::needUpgrade()) {
+            $urlGenerator = Server::get(IURLGenerator::class);
+
+            if (self::$CLI) {
+                echo $l->t('Cannot write into "config" directory!') . "\n";
+                echo $l->t('This can usually be fixed by giving the web server write access to the config directory.') . "\n";
+                echo "\n";
+                echo $l->t('But, if you prefer to keep config.php file read only, set the option "config_is_read_only" to true in it.') . "\n";
+                echo $l->t('See %s', [ $urlGenerator->linkToDocs('admin-config') ]) . "\n";
+                exit;
+            } else {
+                Server::get(ITemplateManager::class)->printErrorPage(
+                    $l->t('Cannot write into "config" directory!'),
+                    $l->t('This can usually be fixed by giving the web server write access to the config directory.') . ' '
+                    . $l->t('But, if you prefer to keep config.php file read only, set the option "config_is_read_only" to true in it.') . ' '
+                    . $l->t('See %s', [ $urlGenerator->linkToDocs('admin-config') ]),
+                    503
+                );
+            }
+        }
+    }
+
+    public static function checkInstalled(\OC\SystemConfig $systemConfig): void {
+        if (defined('OC_CONSOLE')) {
+            return;
+        }
+        // Redirect to installer if not installed
+        if (!$systemConfig->getValue('installed', false) && OC::$SUBURI !== '/index.php' && OC::$SUBURI !== '/status.php') {
+            if (OC::$CLI) {
+                throw new Exception('Not installed');
+            } else {
+                $url = OC::$WEBROOT . '/index.php';
+                header('Location: ' . $url);
+            }
+            exit();
+        }
+    }
+
+    public static function checkMaintenanceMode(\OC\SystemConfig $systemConfig): void {
+        // Allow ajax update script to execute without being stopped
+        if (((bool)$systemConfig->getValue('maintenance', false)) && OC::$SUBURI != '/core/ajax/update.php') {
+            // send http status 503
+            http_response_code(503);
+            header('X-Nextcloud-Maintenance-Mode: 1');
+            header('Retry-After: 120');
+
+            // render error page
+            $template = Server::get(ITemplateManager::class)->getTemplate('', 'update.user', 'guest');
+            \OCP\Util::addScript('core', 'maintenance');
+            \OCP\Util::addStyle('core', 'guest');
+            $template->printPage();
+            die();
+        }
+    }
+
+    /**
+     * Prints the upgrade page
+     */
+    private static function printUpgradePage(\OC\SystemConfig $systemConfig): void {
+        $cliUpgradeLink = $systemConfig->getValue('upgrade.cli-upgrade-link', '');
+        $disableWebUpdater = $systemConfig->getValue('upgrade.disable-web', false);
+        $tooBig = false;
+        if (!$disableWebUpdater) {
+            $apps = Server::get(\OCP\App\IAppManager::class);
+            if ($apps->isEnabledForAnyone('user_ldap')) {
+                $qb = Server::get(\OCP\IDBConnection::class)->getQueryBuilder();
+
+                $result = $qb->select($qb->func()->count('*', 'user_count'))
+                    ->from('ldap_user_mapping')
+                    ->executeQuery();
+                $row = $result->fetch();
+                $result->closeCursor();
+
+                $tooBig = ($row['user_count'] > 50);
+            }
+            if (!$tooBig && $apps->isEnabledForAnyone('user_saml')) {
+                $qb = Server::get(\OCP\IDBConnection::class)->getQueryBuilder();
+
+                $result = $qb->select($qb->func()->count('*', 'user_count'))
+                    ->from('user_saml_users')
+                    ->executeQuery();
+                $row = $result->fetch();
+                $result->closeCursor();
+
+                $tooBig = ($row['user_count'] > 50);
+            }
+            if (!$tooBig) {
+                // count users
+                $totalUsers = Server::get(\OCP\IUserManager::class)->countUsersTotal(51);
+                $tooBig = ($totalUsers > 50);
+            }
+        }
+        $ignoreTooBigWarning = isset($_GET['IKnowThatThisIsABigInstanceAndTheUpdateRequestCouldRunIntoATimeoutAndHowToRestoreABackup']) &&
+            $_GET['IKnowThatThisIsABigInstanceAndTheUpdateRequestCouldRunIntoATimeoutAndHowToRestoreABackup'] === 'IAmSuperSureToDoThis';
+
+        if ($disableWebUpdater || ($tooBig && !$ignoreTooBigWarning)) {
+            // send http status 503
+            http_response_code(503);
+            header('Retry-After: 120');
+
+            $serverVersion = \OCP\Server::get(\OCP\ServerVersion::class);
+
+            // render error page
+            $template = Server::get(ITemplateManager::class)->getTemplate('', 'update.use-cli', 'guest');
+            $template->assign('productName', 'nextcloud'); // for now
+            $template->assign('version', $serverVersion->getVersionString());
+            $template->assign('tooBig', $tooBig);
+            $template->assign('cliUpgradeLink', $cliUpgradeLink);
+
+            $template->printPage();
+            die();
+        }
+
+        // check whether this is a core update or apps update
+        $installedVersion = $systemConfig->getValue('version', '0.0.0');
+        $currentVersion = implode('.', \OCP\Util::getVersion());
+
+        // if not a core upgrade, then it's apps upgrade
+        $isAppsOnlyUpgrade = version_compare($currentVersion, $installedVersion, '=');
+
+        $oldTheme = $systemConfig->getValue('theme');
+        $systemConfig->setValue('theme', '');
+        \OCP\Util::addScript('core', 'common');
+        \OCP\Util::addScript('core', 'main');
+        \OCP\Util::addTranslations('core');
+        \OCP\Util::addScript('core', 'update');
+
+        /** @var \OC\App\AppManager $appManager */
+        $appManager = Server::get(\OCP\App\IAppManager::class);
+
+        $tmpl = Server::get(ITemplateManager::class)->getTemplate('', 'update.admin', 'guest');
+        $tmpl->assign('version', \OCP\Server::get(\OCP\ServerVersion::class)->getVersionString());
+        $tmpl->assign('isAppsOnlyUpgrade', $isAppsOnlyUpgrade);
+
+        // get third party apps
+        $ocVersion = \OCP\Util::getVersion();
+        $ocVersion = implode('.', $ocVersion);
+        $incompatibleApps = $appManager->getIncompatibleApps($ocVersion);
+        $incompatibleOverwrites = $systemConfig->getValue('app_install_overwrite', []);
+        $incompatibleShippedApps = [];
+        $incompatibleDisabledApps = [];
+        foreach ($incompatibleApps as $appInfo) {
+            if ($appManager->isShipped($appInfo['id'])) {
+                $incompatibleShippedApps[] = $appInfo['name'] . ' (' . $appInfo['id'] . ')';
+            }
+            if (!in_array($appInfo['id'], $incompatibleOverwrites)) {
+                $incompatibleDisabledApps[] = $appInfo;
+            }
+        }
+
+        if (!empty($incompatibleShippedApps)) {
+            $l = Server::get(\OCP\L10N\IFactory::class)->get('core');
+            $hint = $l->t('Application %1$s is not present or has a non-compatible version with this server. Please check the apps directory.', [implode(', ', $incompatibleShippedApps)]);
+            throw new \OCP\HintException('Application ' . implode(', ', $incompatibleShippedApps) . ' is not present or has a non-compatible version with this server. Please check the apps directory.', $hint);
+        }
+
+        $tmpl->assign('appsToUpgrade', $appManager->getAppsNeedingUpgrade($ocVersion));
+        $tmpl->assign('incompatibleAppsList', $incompatibleDisabledApps);
+        try {
+            $defaults = new \OC_Defaults();
+            $tmpl->assign('productName', $defaults->getName());
+        } catch (Throwable $error) {
+            $tmpl->assign('productName', 'Nextcloud');
+        }
+        $tmpl->assign('oldTheme', $oldTheme);
+        $tmpl->printPage();
+    }
+
+    public static function initSession(): void {
+        $request = Server::get(IRequest::class);
+
+        // TODO: Temporary disabled again to solve issues with CalDAV/CardDAV clients like DAVx5 that use cookies
+        // TODO: See https://github.com/nextcloud/server/issues/37277#issuecomment-1476366147 and the other comments
+        // TODO: for further information.
+        // $isDavRequest = strpos($request->getRequestUri(), '/remote.php/dav') === 0 || strpos($request->getRequestUri(), '/remote.php/webdav') === 0;
+        // if ($request->getHeader('Authorization') !== '' && is_null($request->getCookie('cookie_test')) && $isDavRequest && !isset($_COOKIE['nc_session_id'])) {
+        // setcookie('cookie_test', 'test', time() + 3600);
+        // // Do not initialize the session if a request is authenticated directly
+        // // unless there is a session cookie already sent along
+        // return;
+        // }
+
+        if ($request->getServerProtocol() === 'https') {
+            ini_set('session.cookie_secure', 'true');
+        }
+
+        // prevents javascript from accessing php session cookies
+        ini_set('session.cookie_httponly', 'true');
+
+        // Do not initialize sessions for 'status.php' requests
+        // Monitoring endpoints can quickly flood session handlers
+        // and 'status.php' doesn't require sessions anyway
+        if (str_ends_with($request->getScriptName(), '/status.php')) {
+            return;
+        }
+
+        // set the cookie path to the Nextcloud directory
+        $cookie_path = OC::$WEBROOT ? : '/';
+        ini_set('session.cookie_path', $cookie_path);
+
+        // Let the session name be changed in the initSession Hook
+        $sessionName = OC_Util::getInstanceId();
+
+        try {
+            $logger = null;
+            if (Server::get(\OC\SystemConfig::class)->getValue('installed', false)) {
+                $logger = logger('core');
+            }
+
+            // set the session name to the instance id - which is unique
+            $session = new \OC\Session\Internal(
+                $sessionName,
+                $logger,
+            );
+
+            $cryptoWrapper = Server::get(\OC\Session\CryptoWrapper::class);
+            $session = $cryptoWrapper->wrapSession($session);
+            self::$server->setSession($session);
+
+            // if session can't be started break with http 500 error
+        } catch (Exception $e) {
+            Server::get(LoggerInterface::class)->error($e->getMessage(), ['app' => 'base','exception' => $e]);
+            //show the user a detailed error page
+            Server::get(ITemplateManager::class)->printExceptionErrorPage($e, 500);
+            die();
+        }
+
+        //try to set the session lifetime
+        $sessionLifeTime = self::getSessionLifeTime();
+
+        // session timeout
+        if ($session->exists('LAST_ACTIVITY') && (time() - $session->get('LAST_ACTIVITY') > $sessionLifeTime)) {
+            if (isset($_COOKIE[session_name()])) {
+                setcookie(session_name(), '', -1, self::$WEBROOT ? : '/');
+            }
+            Server::get(IUserSession::class)->logout();
+        }
+
+        if (!self::hasSessionRelaxedExpiry()) {
+            $session->set('LAST_ACTIVITY', time());
+        }
+        $session->close();
+    }
+
+    private static function getSessionLifeTime(): int {
+        return Server::get(\OC\AllConfig::class)->getSystemValueInt('session_lifetime', 60 * 60 * 24);
+    }
+
+    /**
+     * @return bool true if the session expiry should only be done by gc instead of an explicit timeout
+     */
+    public static function hasSessionRelaxedExpiry(): bool {
+        return Server::get(\OC\AllConfig::class)->getSystemValueBool('session_relaxed_expiry', false);
+    }
+
+    /**
+     * Try to set some values to the required Nextcloud default
+     */
+    public static function setRequiredIniValues(): void {
+        // Don't display errors and log them
+        @ini_set('display_errors', '0');
+        @ini_set('log_errors', '1');
+
+        // Try to configure php to enable big file uploads.
+        // This doesn't work always depending on the webserver and php configuration.
+        // Let's try to overwrite some defaults if they are smaller than 1 hour
+
+        if (intval(@ini_get('max_execution_time') ?: 0) < 3600) {
+            @ini_set('max_execution_time', strval(3600));
+        }
+
+        if (intval(@ini_get('max_input_time') ?: 0) < 3600) {
+            @ini_set('max_input_time', strval(3600));
+        }
+
+        // Try to set the maximum execution time to the largest time limit we have
+        if (strpos(@ini_get('disable_functions'), 'set_time_limit') === false) {
+            @set_time_limit(max(intval(@ini_get('max_execution_time')), intval(@ini_get('max_input_time'))));
+        }
+
+        @ini_set('default_charset', 'UTF-8');
+        @ini_set('gd.jpeg_ignore_warning', '1');
+    }
+
+    /**
+     * Send the same site cookies
+     */
+    private static function sendSameSiteCookies(): void {
+        $cookieParams = session_get_cookie_params();
+        $secureCookie = ($cookieParams['secure'] === true) ? 'secure; ' : '';
+        $policies = [
+            'lax',
+            'strict',
+        ];
+
+        // Append __Host to the cookie if it meets the requirements
+        $cookiePrefix = '';
+        if ($cookieParams['secure'] === true && $cookieParams['path'] === '/') {
+            $cookiePrefix = '__Host-';
+        }
+
+        foreach ($policies as $policy) {
+            header(
+                sprintf(
+                    'Set-Cookie: %snc_sameSiteCookie%s=true; path=%s; httponly;' . $secureCookie . 'expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=%s',
+                    $cookiePrefix,
+                    $policy,
+                    $cookieParams['path'],
+                    $policy
+                ),
+                false
+            );
+        }
+    }
+
+    /**
+     * Same Site cookie to further mitigate CSRF attacks. This cookie has to
+     * be set in every request if cookies are sent to add a second level of
+     * defense against CSRF.
+     *
+     * If the cookie is not sent this will set the cookie and reload the page.
+     * We use an additional cookie since we want to protect logout CSRF and
+     * also we can't directly interfere with PHP's session mechanism.
+     */
+    private static function performSameSiteCookieProtection(\OCP\IConfig $config): void {
+        $request = Server::get(IRequest::class);
+
+        // Some user agents are notorious and don't really properly follow HTTP
+        // specifications. For those, have an automated opt-out. Since the protection
+        // for remote.php is applied in base.php as starting point we need to opt out
+        // here.
+        $incompatibleUserAgents = $config->getSystemValue('csrf.optout');
+
+        // Fallback, if csrf.optout is unset
+        if (!is_array($incompatibleUserAgents)) {
+            $incompatibleUserAgents = [
+                // OS X Finder
+                '/^WebDAVFS/',
+                // Windows webdav drive
+                '/^Microsoft-WebDAV-MiniRedir/',
+            ];
+        }
+
+        if ($request->isUserAgent($incompatibleUserAgents)) {
+            return;
+        }
+
+        if (count($_COOKIE) > 0) {
+            $requestUri = $request->getScriptName();
+            $processingScript = explode('/', $requestUri);
+            $processingScript = $processingScript[count($processingScript) - 1];
+
+            // index.php routes are handled in the middleware
+            // and cron.php does not need any authentication at all
+            if ($processingScript === 'index.php'
+                || $processingScript === 'cron.php') {
+                return;
+            }
+
+            // All other endpoints require the lax and the strict cookie
+            if (!$request->passesStrictCookieCheck()) {
+                logger('core')->warning('Request does not pass strict cookie check');
+                self::sendSameSiteCookies();
+                // Debug mode gets access to the resources without strict cookie
+                // due to the fact that the SabreDAV browser also lives there.
+                if (!$config->getSystemValueBool('debug', false)) {
+                    http_response_code(\OCP\AppFramework\Http::STATUS_PRECONDITION_FAILED);
+                    header('Content-Type: application/json');
+                    echo json_encode(['error' => 'Strict Cookie has not been found in request']);
+                    exit();
+                }
+            }
+        } elseif (!isset($_COOKIE['nc_sameSiteCookielax']) || !isset($_COOKIE['nc_sameSiteCookiestrict'])) {
+            self::sendSameSiteCookies();
+        }
+    }
+
+    public static function init(): void {
+        // First handle PHP configuration and copy auth headers to the expected
+        // $_SERVER variable before doing anything Server object related
+        self::setRequiredIniValues();
+        self::handleAuthHeaders();
+
+        // prevent any XML processing from loading external entities
+        libxml_set_external_entity_loader(static function () {
+            return null;
+        });
+
+        // Set default timezone before the Server object is booted
+        if (!date_default_timezone_set('UTC')) {
+            throw new \RuntimeException('Could not set timezone to UTC');
+        }
+
+        // calculate the root directories
+        OC::$SERVERROOT = str_replace('\\', '/', substr(__DIR__, 0, -4));
+
+        // register autoloader
+        $loaderStart = microtime(true);
+        require_once __DIR__ . '/autoloader.php';
+        self::$loader = new \OC\Autoloader([
+            OC::$SERVERROOT . '/lib/private/legacy',
+        ]);
+        if (defined('PHPUNIT_RUN')) {
+            self::$loader->addValidRoot(OC::$SERVERROOT . '/tests');
+        }
+        spl_autoload_register([self::$loader, 'load']);
+        $loaderEnd = microtime(true);
+
+        self::$CLI = (php_sapi_name() == 'cli');
+
+        // Add default composer PSR-4 autoloader, ensure apcu to be disabled
+        self::$composerAutoloader = require_once OC::$SERVERROOT . '/lib/composer/autoload.php';
+        self::$composerAutoloader->setApcuPrefix(null);
+
+
+        try {
+            self::initPaths();
+            // setup 3rdparty autoloader
+            $vendorAutoLoad = OC::$SERVERROOT . '/3rdparty/autoload.php';
+            if (!file_exists($vendorAutoLoad)) {
+                throw new \RuntimeException('Composer autoloader not found, unable to continue. Check the folder "3rdparty". Running "git submodule update --init" will initialize the git submodule that handles the subfolder "3rdparty".');
+            }
+            require_once $vendorAutoLoad;
+        } catch (\RuntimeException $e) {
+            if (!self::$CLI) {
+                http_response_code(503);
+            }
+            // we can't use the template error page here, because this needs the
+            // DI container which isn't available yet
+            print($e->getMessage());
+            exit();
+        }
+
+        // setup the basic server
+        self::$server = new \OC\Server(\OC::$WEBROOT, self::$config);
+        self::$server->boot();
+
+        if (self::$CLI && in_array('--' . \OCP\Console\ReservedOptions::DEBUG_LOG, $_SERVER['argv'])) {
+            \OC\Core\Listener\BeforeMessageLoggedEventListener::setup();
+        }
+
+        $eventLogger = Server::get(\OCP\Diagnostics\IEventLogger::class);
+        $eventLogger->log('autoloader', 'Autoloader', $loaderStart, $loaderEnd);
+        $eventLogger->start('boot', 'Initialize');
+
+        // Override php.ini and log everything if we're troubleshooting
+        if (self::$config->getValue('loglevel') === ILogger::DEBUG) {
+            error_reporting(E_ALL);
+        }
+
+        $systemConfig = Server::get(\OC\SystemConfig::class);
+        self::registerAutoloaderCache($systemConfig);
+
+        // initialize intl fallback if necessary
+        OC_Util::isSetLocaleWorking();
+
+        $config = Server::get(\OCP\IConfig::class);
+        if (!defined('PHPUNIT_RUN')) {
+            $errorHandler = new OC\Log\ErrorHandler(
+                \OCP\Server::get(\Psr\Log\LoggerInterface::class),
+            );
+            $exceptionHandler = [$errorHandler, 'onException'];
+            if ($config->getSystemValueBool('debug', false)) {
+                set_error_handler([$errorHandler, 'onAll'], E_ALL);
+                if (\OC::$CLI) {
+                    $exceptionHandler = [Server::get(ITemplateManager::class), 'printExceptionErrorPage'];
+                }
+            } else {
+                set_error_handler([$errorHandler, 'onError']);
+            }
+            register_shutdown_function([$errorHandler, 'onShutdown']);
+            set_exception_handler($exceptionHandler);
+        }
+
+        /** @var \OC\AppFramework\Bootstrap\Coordinator $bootstrapCoordinator */
+        $bootstrapCoordinator = Server::get(\OC\AppFramework\Bootstrap\Coordinator::class);
+        $bootstrapCoordinator->runInitialRegistration();
+
+        $eventLogger->start('init_session', 'Initialize session');
+
+        // Check for PHP SimpleXML extension earlier since we need it before our other checks and want to provide a useful hint for web users
+        // see https://github.com/nextcloud/server/pull/2619
+        if (!function_exists('simplexml_load_file')) {
+            throw new \OCP\HintException('The PHP SimpleXML/PHP-XML extension is not installed.', 'Install the extension or make sure it is enabled.');
+        }
+
+        $appManager = Server::get(\OCP\App\IAppManager::class);
+        if ($systemConfig->getValue('installed', false)) {
+            $appManager->loadApps(['session']);
+        }
+        if (!self::$CLI) {
+            self::initSession();
+        }
+        $eventLogger->end('init_session');
+        self::checkConfig();
+        self::checkInstalled($systemConfig);
+
+        OC_Response::addSecurityHeaders();
+
+        self::performSameSiteCookieProtection($config);
+
+        if (!defined('OC_CONSOLE')) {
+            $errors = OC_Util::checkServer($systemConfig);
+            if (count($errors) > 0) {
+                if (!self::$CLI) {
+                    http_response_code(503);
+                    Util::addStyle('guest');
+                    try {
+                        Server::get(ITemplateManager::class)->printGuestPage('', 'error', ['errors' => $errors]);
+                        exit;
+                    } catch (\Exception $e) {
+                        // In case any error happens when showing the error page, we simply fall back to posting the text.
+                        // This might be the case when e.g. the data directory is broken and we can not load/write SCSS to/from it.
+                    }
+                }
+
+                // Convert l10n string into regular string for usage in database
+                $staticErrors = [];
+                foreach ($errors as $error) {
+                    echo $error['error'] . "\n";
+                    echo $error['hint'] . "\n\n";
+                    $staticErrors[] = [
+                        'error' => (string)$error['error'],
+                        'hint' => (string)$error['hint'],
+                    ];
+                }
+
+                try {
+                    $config->setAppValue('core', 'cronErrors', json_encode($staticErrors));
+                } catch (\Exception $e) {
+                    echo('Writing to database failed');
+                }
+                exit(1);
+            } elseif (self::$CLI && $config->getSystemValueBool('installed', false)) {
+                $config->deleteAppValue('core', 'cronErrors');
+            }
+        }
+
+        // User and Groups
+        if (!$systemConfig->getValue('installed', false)) {
+            self::$server->getSession()->set('user_id', '');
+        }
+
+        Server::get(\OCP\IUserManager::class)->registerBackend(new \OC\User\Database());
+        Server::get(\OCP\IGroupManager::class)->addBackend(new \OC\Group\Database());
+
+        // Subscribe to the hook
+        \OCP\Util::connectHook(
+            '\OCA\Files_Sharing\API\Server2Server',
+            'preLoginNameUsedAsUserName',
+            '\OC\User\Database',
+            'preLoginNameUsedAsUserName'
+        );
+
+        //setup extra user backends
+        if (!\OCP\Util::needUpgrade()) {
+            OC_User::setupBackends();
+        } else {
+            // Run upgrades in incognito mode
+            OC_User::setIncognitoMode(true);
+        }
+
+        self::registerCleanupHooks($systemConfig);
+        self::registerShareHooks($systemConfig);
+        self::registerEncryptionWrapperAndHooks();
+        self::registerAccountHooks();
+        self::registerResourceCollectionHooks();
+        self::registerFileReferenceEventListener();
+        self::registerRenderReferenceEventListener();
+        self::registerAppRestrictionsHooks();
+
+        // Make sure that the application class is not loaded before the database is setup
+        if ($systemConfig->getValue('installed', false)) {
+            $appManager->loadApp('settings');
+            /* Build core application to make sure that listeners are registered */
+            Server::get(\OC\Core\Application::class);
+        }
+
+        //make sure temporary files are cleaned up
+        $tmpManager = Server::get(\OCP\ITempManager::class);
+        register_shutdown_function([$tmpManager, 'clean']);
+        $lockProvider = Server::get(\OCP\Lock\ILockingProvider::class);
+        register_shutdown_function([$lockProvider, 'releaseAll']);
+
+        // Check whether the sample configuration has been copied
+        if ($systemConfig->getValue('copied_sample_config', false)) {
+            $l = Server::get(\OCP\L10N\IFactory::class)->get('lib');
+            Server::get(ITemplateManager::class)->printErrorPage(
+                $l->t('Sample configuration detected'),
+                $l->t('It has been detected that the sample configuration has been copied. This can break your installation and is unsupported. Please read the documentation before performing changes on config.php'),
+                503
+            );
+            return;
+        }
+
+        $request = Server::get(IRequest::class);
+        $host = $request->getInsecureServerHost();
+        /**
+         * if the host passed in headers isn't trusted
+         * FIXME: Should not be in here at all :see_no_evil:
+         */
+        if (!OC::$CLI
+            && !Server::get(\OC\Security\TrustedDomainHelper::class)->isTrustedDomain($host)
+            && $config->getSystemValueBool('installed', false)
+        ) {
+            // Allow access to CSS resources
+            $isScssRequest = false;
+            if (strpos($request->getPathInfo() ?: '', '/css/') === 0) {
+                $isScssRequest = true;
+            }
+
+            if (substr($request->getRequestUri(), -11) === '/status.php') {
+                http_response_code(400);
+                header('Content-Type: application/json');
+                echo '{"error": "Trusted domain error.", "code": 15}';
+                exit();
+            }
+
+            if (!$isScssRequest) {
+                http_response_code(400);
+                Server::get(LoggerInterface::class)->info(
+                    'Trusted domain error. "{remoteAddress}" tried to access using "{host}" as host.',
+                    [
+                        'app' => 'core',
+                        'remoteAddress' => $request->getRemoteAddress(),
+                        'host' => $host,
+                    ]
+                );
+
+                $tmpl = Server::get(ITemplateManager::class)->getTemplate('core', 'untrustedDomain', 'guest');
+                $tmpl->assign('docUrl', Server::get(IURLGenerator::class)->linkToDocs('admin-trusted-domains'));
+                $tmpl->printPage();
+
+                exit();
+            }
+        }
+        $eventLogger->end('boot');
+        $eventLogger->log('init', 'OC::init', $loaderStart, microtime(true));
+        $eventLogger->start('runtime', 'Runtime');
+        $eventLogger->start('request', 'Full request after boot');
+        register_shutdown_function(function () use ($eventLogger) {
+            $eventLogger->end('request');
+        });
+
+        register_shutdown_function(function () {
+            $memoryPeak = memory_get_peak_usage();
+            $logLevel = match (true) {
+                $memoryPeak > 500_000_000 => ILogger::FATAL,
+                $memoryPeak > 400_000_000 => ILogger::ERROR,
+                $memoryPeak > 300_000_000 => ILogger::WARN,
+                default => null,
+            };
+            if ($logLevel !== null) {
+                $message = 'Request used more than 300 MB of RAM: ' . Util::humanFileSize($memoryPeak);
+                $logger = Server::get(LoggerInterface::class);
+                $logger->log($logLevel, $message, ['app' => 'core']);
+            }
+        });
+    }
+
+    /**
+     * register hooks for the cleanup of cache and bruteforce protection
+     */
+    public static function registerCleanupHooks(\OC\SystemConfig $systemConfig): void {
+        //don't try to do this before we are properly setup
+        if ($systemConfig->getValue('installed', false) && !\OCP\Util::needUpgrade()) {
+            // NOTE: This will be replaced to use OCP
+            $userSession = Server::get(\OC\User\Session::class);
+            $userSession->listen('\OC\User', 'postLogin', function () use ($userSession) {
+                if (!defined('PHPUNIT_RUN') && $userSession->isLoggedIn()) {
+                    // reset brute force delay for this IP address and username
+                    $uid = $userSession->getUser()->getUID();
+                    $request = Server::get(IRequest::class);
+                    $throttler = Server::get(IThrottler::class);
+                    $throttler->resetDelay($request->getRemoteAddress(), 'login', ['user' => $uid]);
+                }
+
+                try {
+                    $cache = new \OC\Cache\File();
+                    $cache->gc();
+                } catch (\OC\ServerNotAvailableException $e) {
+                    // not a GC exception, pass it on
+                    throw $e;
+                } catch (\OC\ForbiddenException $e) {
+                    // filesystem blocked for this request, ignore
+                } catch (\Exception $e) {
+                    // a GC exception should not prevent users from using OC,
+                    // so log the exception
+                    Server::get(LoggerInterface::class)->warning('Exception when running cache gc.', [
+                        'app' => 'core',
+                        'exception' => $e,
+                    ]);
+                }
+            });
+        }
+    }
+
+    private static function registerEncryptionWrapperAndHooks(): void {
+        $manager = Server::get(\OCP\Encryption\IManager::class);
+        \OCP\Util::connectHook('OC_Filesystem', 'preSetup', $manager, 'setupStorage');
+
+        $enabled = $manager->isEnabled();
+        if ($enabled) {
+            \OCP\Util::connectHook(Share::class, 'post_shared', HookManager::class, 'postShared');
+            \OCP\Util::connectHook(Share::class, 'post_unshare', HookManager::class, 'postUnshared');
+            \OCP\Util::connectHook('OC_Filesystem', 'post_rename', HookManager::class, 'postRename');
+            \OCP\Util::connectHook('\OCA\Files_Trashbin\Trashbin', 'post_restore', HookManager::class, 'postRestore');
+        }
+    }
+
+    private static function registerAccountHooks(): void {
+        /** @var IEventDispatcher $dispatcher */
+        $dispatcher = Server::get(IEventDispatcher::class);
+        $dispatcher->addServiceListener(UserChangedEvent::class, \OC\Accounts\Hooks::class);
+    }
+
+    private static function registerAppRestrictionsHooks(): void {
+        /** @var \OC\Group\Manager $groupManager */
+        $groupManager = Server::get(\OCP\IGroupManager::class);
+        $groupManager->listen('\OC\Group', 'postDelete', function (\OCP\IGroup $group) {
+            $appManager = Server::get(\OCP\App\IAppManager::class);
+            $apps = $appManager->getEnabledAppsForGroup($group);
+            foreach ($apps as $appId) {
+                $restrictions = $appManager->getAppRestriction($appId);
+                if (empty($restrictions)) {
+                    continue;
+                }
+                $key = array_search($group->getGID(), $restrictions);
+                unset($restrictions[$key]);
+                $restrictions = array_values($restrictions);
+                if (empty($restrictions)) {
+                    $appManager->disableApp($appId);
+                } else {
+                    $appManager->enableAppForGroups($appId, $restrictions);
+                }
+            }
+        });
+    }
+
+    private static function registerResourceCollectionHooks(): void {
+        \OC\Collaboration\Resources\Listener::register(Server::get(IEventDispatcher::class));
+    }
+
+    private static function registerFileReferenceEventListener(): void {
+        \OC\Collaboration\Reference\File\FileReferenceEventListener::register(Server::get(IEventDispatcher::class));
+    }
+
+    private static function registerRenderReferenceEventListener() {
+        \OC\Collaboration\Reference\RenderReferenceEventListener::register(Server::get(IEventDispatcher::class));
+    }
+
+    /**
+     * register hooks for sharing
+     */
+    public static function registerShareHooks(\OC\SystemConfig $systemConfig): void {
+        if ($systemConfig->getValue('installed')) {
+
+            $dispatcher = Server::get(IEventDispatcher::class);
+            $dispatcher->addServiceListener(UserRemovedEvent::class, UserRemovedListener::class);
+            $dispatcher->addServiceListener(GroupDeletedEvent::class, GroupDeletedListener::class);
+            $dispatcher->addServiceListener(UserDeletedEvent::class, UserDeletedListener::class);
+        }
+    }
+
+    protected static function registerAutoloaderCache(\OC\SystemConfig $systemConfig): void {
+        // The class loader takes an optional low-latency cache, which MUST be
+        // namespaced. The instanceid is used for namespacing, but might be
+        // unavailable at this point. Furthermore, it might not be possible to
+        // generate an instanceid via \OC_Util::getInstanceId() because the
+        // config file may not be writable. As such, we only register a class
+        // loader cache if instanceid is available without trying to create one.
+        $instanceId = $systemConfig->getValue('instanceid', null);
+        if ($instanceId) {
+            try {
+                $memcacheFactory = Server::get(\OCP\ICacheFactory::class);
+                self::$loader->setMemoryCache($memcacheFactory->createLocal('Autoloader'));
+            } catch (\Exception $ex) {
+            }
+        }
+    }
+
+    /**
+     * Handle the request
+     */
+    public static function handleRequest(): void {
+        Server::get(\OCP\Diagnostics\IEventLogger::class)->start('handle_request', 'Handle request');
+        $systemConfig = Server::get(\OC\SystemConfig::class);
+
+        // Check if Nextcloud is installed or in maintenance (update) mode
+        if (!$systemConfig->getValue('installed', false)) {
+            \OC::$server->getSession()->clear();
+            $controller = Server::get(\OC\Core\Controller\SetupController::class);
+            $controller->run($_POST);
+            exit();
+        }
+
+        $request = Server::get(IRequest::class);
+        $requestPath = $request->getRawPathInfo();
+        if ($requestPath === '/heartbeat') {
+            return;
+        }
+        if (substr($requestPath, -3) !== '.js') { // we need these files during the upgrade
+            self::checkMaintenanceMode($systemConfig);
+
+            if (\OCP\Util::needUpgrade()) {
+                if (function_exists('opcache_reset')) {
+                    opcache_reset();
+                }
+                if (!((bool)$systemConfig->getValue('maintenance', false))) {
+                    self::printUpgradePage($systemConfig);
+                    exit();
+                }
+            }
+        }
+
+        $appManager = Server::get(\OCP\App\IAppManager::class);
+
+        // Always load authentication apps
+        $appManager->loadApps(['authentication']);
+        $appManager->loadApps(['extended_authentication']);
+
+        // Load minimum set of apps
+        if (!\OCP\Util::needUpgrade()
+            && !((bool)$systemConfig->getValue('maintenance', false))) {
+            // For logged-in users: Load everything
+            if (Server::get(IUserSession::class)->isLoggedIn()) {
+                $appManager->loadApps();
+            } else {
+                // For guests: Load only filesystem and logging
+                $appManager->loadApps(['filesystem', 'logging']);
+
+                // Don't try to login when a client is trying to get a OAuth token.
+                // OAuth needs to support basic auth too, so the login is not valid
+                // inside Nextcloud and the Login exception would ruin it.
+                if ($request->getRawPathInfo() !== '/apps/oauth2/api/v1/token') {
+                    self::handleLogin($request);
+                }
+            }
+        }
+
+        if (!self::$CLI) {
+            try {
+                if (!\OCP\Util::needUpgrade()) {
+                    $appManager->loadApps(['filesystem', 'logging']);
+                    $appManager->loadApps();
+                }
+                Server::get(\OC\Route\Router::class)->match($request->getRawPathInfo());
+                return;
+            } catch (Symfony\Component\Routing\Exception\ResourceNotFoundException $e) {
+                //header('HTTP/1.0 404 Not Found');
+            } catch (Symfony\Component\Routing\Exception\MethodNotAllowedException $e) {
+                http_response_code(405);
+                return;
+            }
+        }
+
+        // Handle WebDAV
+        if (isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] === 'PROPFIND') {
+            // not allowed any more to prevent people
+            // mounting this root directly.
+            // Users need to mount remote.php/webdav instead.
+            http_response_code(405);
+            return;
+        }
+
+        // Handle requests for JSON or XML
+        $acceptHeader = $request->getHeader('Accept');
+        if (in_array($acceptHeader, ['application/json', 'application/xml'], true)) {
+            http_response_code(404);
+            return;
+        }
+
+        // Handle resources that can't be found
+        // This prevents browsers from redirecting to the default page and then
+        // attempting to parse HTML as CSS and similar.
+        $destinationHeader = $request->getHeader('Sec-Fetch-Dest');
+        if (in_array($destinationHeader, ['font', 'script', 'style'])) {
+            http_response_code(404);
+            return;
+        }
+
+        // Redirect to the default app or login only as an entry point
+        if ($requestPath === '') {
+            // Someone is logged in
+            if (Server::get(IUserSession::class)->isLoggedIn()) {
+                header('Location: ' . Server::get(IURLGenerator::class)->linkToDefaultPageUrl());
+            } else {
+                // Not handled and not logged in
+                header('Location: ' . Server::get(IURLGenerator::class)->linkToRouteAbsolute('core.login.showLoginForm'));
+            }
+            return;
+        }
+
+        try {
+            Server::get(\OC\Route\Router::class)->match('/error/404');
+        } catch (\Exception $e) {
+            if (!$e instanceof MethodNotAllowedException) {
+                logger('core')->emergency($e->getMessage(), ['exception' => $e]);
+            }
+            $l = Server::get(\OCP\L10N\IFactory::class)->get('lib');
+            Server::get(ITemplateManager::class)->printErrorPage(
+                '404',
+                $l->t('The page could not be found on the server.'),
+                404
+            );
+        }
+    }
+
+    /**
+     * Check login: apache auth, auth token, basic auth
+     */
+    public static function handleLogin(OCP\IRequest $request): bool {
+        if ($request->getHeader('X-Nextcloud-Federation')) {
+            return false;
+        }
+        $userSession = Server::get(\OC\User\Session::class);
+        if (OC_User::handleApacheAuth()) {
+            return true;
+        }
+        if (self::tryAppAPILogin($request)) {
+            return true;
+        }
+        if ($userSession->tryTokenLogin($request)) {
+            return true;
+        }
+        if (isset($_COOKIE['nc_username'])
+            && isset($_COOKIE['nc_token'])
+            && isset($_COOKIE['nc_session_id'])
+            && $userSession->loginWithCookie($_COOKIE['nc_username'], $_COOKIE['nc_token'], $_COOKIE['nc_session_id'])) {
+            return true;
+        }
+        if ($userSession->tryBasicAuthLogin($request, Server::get(IThrottler::class))) {
+            return true;
+        }
+        return false;
+    }
+
+    protected static function handleAuthHeaders(): void {
+        //copy http auth headers for apache+php-fcgid work around
+        if (isset($_SERVER['HTTP_XAUTHORIZATION']) && !isset($_SERVER['HTTP_AUTHORIZATION'])) {
+            $_SERVER['HTTP_AUTHORIZATION'] = $_SERVER['HTTP_XAUTHORIZATION'];
+        }
+
+        // Extract PHP_AUTH_USER/PHP_AUTH_PW from other headers if necessary.
+        $vars = [
+            'HTTP_AUTHORIZATION', // apache+php-cgi work around
+            'REDIRECT_HTTP_AUTHORIZATION', // apache+php-cgi alternative
+        ];
+        foreach ($vars as $var) {
+            if (isset($_SERVER[$var]) && is_string($_SERVER[$var]) && preg_match('/Basic\s+(.*)$/i', $_SERVER[$var], $matches)) {
+                $credentials = explode(':', base64_decode($matches[1]), 2);
+                if (count($credentials) === 2) {
+                    $_SERVER['PHP_AUTH_USER'] = $credentials[0];
+                    $_SERVER['PHP_AUTH_PW'] = $credentials[1];
+                    break;
+                }
+            }
+        }
+    }
+
+    protected static function tryAppAPILogin(OCP\IRequest $request): bool {
+        if (!$request->getHeader('AUTHORIZATION-APP-API')) {
+            return false;
+        }
+        $appManager = Server::get(OCP\App\IAppManager::class);
+        if (!$appManager->isEnabledForAnyone('app_api')) {
+            return false;
+        }
+        try {
+            $appAPIService = Server::get(OCA\AppAPI\Service\AppAPIService::class);
+            return $appAPIService->validateExAppRequestToNC($request);
+        } catch (\Psr\Container\NotFoundExceptionInterface|\Psr\Container\ContainerExceptionInterface $e) {
+            return false;
+        }
+    }
 }
 
 OC::init();

Please login to merge, or discard this patch.

apps/files_trashbin/tests/TrashbinTest.php 1 patch

Indentation +661 added lines, -661 removed lines patch added patch discarded remove patch

@@ -33,681 +33,681 @@
 block discarded – undo
  * @group DB
  */
 class TrashbinTest extends \Test\TestCase {
-	public const TEST_TRASHBIN_USER1 = 'test-trashbin-user1';
-	public const TEST_TRASHBIN_USER2 = 'test-trashbin-user2';
-
-	private $trashRoot1;
-	private $trashRoot2;
-
-	private static $rememberRetentionObligation;
-
-	/**
-	 * @var bool
-	 */
-	private static $trashBinStatus;
-
-	/**
-	 * @var View
-	 */
-	private $rootView;
-
-	public static function setUpBeforeClass(): void {
-		parent::setUpBeforeClass();
-
-		$appManager = Server::get(IAppManager::class);
-		self::$trashBinStatus = $appManager->isEnabledForUser('files_trashbin');
-
-		// reset backend
-		Server::get(IUserManager::class)->clearBackends();
-		Server::get(IUserManager::class)->registerBackend(new \OC\User\Database());
-
-		// clear share hooks
-		\OC_Hook::clear('OCP\\Share');
-		\OC::registerShareHooks(Server::get(SystemConfig::class));
-
-		// init files sharing
-		new Application();
-
-		//disable encryption
-		Server::get(IAppManager::class)->disableApp('encryption');
-
-		$config = Server::get(IConfig::class);
-		//configure trashbin
-		self::$rememberRetentionObligation = $config->getSystemValue('trashbin_retention_obligation', Expiration::DEFAULT_RETENTION_OBLIGATION);
-		/** @var Expiration $expiration */
-		$expiration = Server::get(Expiration::class);
-		$expiration->setRetentionObligation('auto, 2');
-
-		// register trashbin hooks
-		$trashbinApp = new TrashbinApplication();
-		$trashbinApp->boot(new BootContext(new DIContainer('', [], \OC::$server)));
-
-		// create test user
-		self::loginHelper(self::TEST_TRASHBIN_USER2, true);
-		self::loginHelper(self::TEST_TRASHBIN_USER1, true);
-	}
-
-
-	public static function tearDownAfterClass(): void {
-		// cleanup test user
-		$user = Server::get(IUserManager::class)->get(self::TEST_TRASHBIN_USER1);
-		if ($user !== null) {
-			$user->delete();
-		}
-
-		/** @var Expiration $expiration */
-		$expiration = Server::get(Expiration::class);
-		$expiration->setRetentionObligation(self::$rememberRetentionObligation);
-
-		\OC_Hook::clear();
-
-		Filesystem::getLoader()->removeStorageWrapper('oc_trashbin');
-
-		if (self::$trashBinStatus) {
-			Server::get(IAppManager::class)->enableApp('files_trashbin');
-		}
-
-		parent::tearDownAfterClass();
-	}
-
-	protected function setUp(): void {
-		parent::setUp();
-
-		Server::get(IAppManager::class)->enableApp('files_trashbin');
-		$config = Server::get(IConfig::class);
-		$mockConfig = $this->createMock(IConfig::class);
-		$mockConfig
-			->method('getSystemValue')
-			->willReturnCallback(static function ($key, $default) use ($config) {
-				if ($key === 'filesystem_check_changes') {
-					return Watcher::CHECK_ONCE;
-				} else {
-					return $config->getSystemValue($key, $default);
-				}
-			});
-		$mockConfig
-			->method('getUserValue')
-			->willReturnCallback(static function ($userId, $appName, $key, $default = '') use ($config) {
-				return $config->getUserValue($userId, $appName, $key, $default);
-			});
-		$mockConfig
-			->method('getAppValue')
-			->willReturnCallback(static function ($appName, $key, $default = '') use ($config) {
-				return $config->getAppValue($appName, $key, $default);
-			});
-		$this->overwriteService(AllConfig::class, $mockConfig);
-
-		$this->trashRoot1 = '/' . self::TEST_TRASHBIN_USER1 . '/files_trashbin';
-		$this->trashRoot2 = '/' . self::TEST_TRASHBIN_USER2 . '/files_trashbin';
-		$this->rootView = new View();
-		self::loginHelper(self::TEST_TRASHBIN_USER1);
-	}
-
-	protected function tearDown(): void {
-		$this->restoreService(AllConfig::class);
-		// disable trashbin to be able to properly clean up
-		Server::get(IAppManager::class)->disableApp('files_trashbin');
-
-		$this->rootView->deleteAll('/' . self::TEST_TRASHBIN_USER1 . '/files');
-		$this->rootView->deleteAll('/' . self::TEST_TRASHBIN_USER2 . '/files');
-		$this->rootView->deleteAll($this->trashRoot1);
-		$this->rootView->deleteAll($this->trashRoot2);
-
-		// clear trash table
-		$connection = Server::get(IDBConnection::class);
-		$connection->executeUpdate('DELETE FROM `*PREFIX*files_trash`');
-
-		parent::tearDown();
-	}
-
-	/**
-	 * test expiration of files older then the max storage time defined for the trash
-	 */
-	public function testExpireOldFiles(): void {
-
-		/** @var ITimeFactory $time */
-		$time = Server::get(ITimeFactory::class);
-		$currentTime = $time->getTime();
-		$expireAt = $currentTime - 2 * 24 * 60 * 60;
-		$expiredDate = $currentTime - 3 * 24 * 60 * 60;
-
-		// create some files
-		Filesystem::file_put_contents('file1.txt', 'file1');
-		Filesystem::file_put_contents('file2.txt', 'file2');
-		Filesystem::file_put_contents('file3.txt', 'file3');
-
-		// delete them so that they end up in the trash bin
-		Filesystem::unlink('file1.txt');
-		Filesystem::unlink('file2.txt');
-		Filesystem::unlink('file3.txt');
-
-		//make sure that files are in the trash bin
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'name');
-		$this->assertSame(3, count($filesInTrash));
-
-		// every second file will get a date in the past so that it will get expired
-		$manipulatedList = $this->manipulateDeleteTime($filesInTrash, $this->trashRoot1, $expiredDate);
-
-		$testClass = new TrashbinForTesting();
-		[$sizeOfDeletedFiles, $count] = $testClass->dummyDeleteExpiredFiles($manipulatedList, $expireAt);
-
-		$this->assertSame(10, $sizeOfDeletedFiles);
-		$this->assertSame(2, $count);
-
-		// only file2.txt should be left
-		$remainingFiles = array_slice($manipulatedList, $count);
-		$this->assertSame(1, count($remainingFiles));
-		$remainingFile = reset($remainingFiles);
-		// TODO: failing test
-		#$this->assertSame('file2.txt', $remainingFile['name']);
-
-		// check that file1.txt and file3.txt was really deleted
-		$newTrashContent = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1);
-		$this->assertSame(1, count($newTrashContent));
-		$element = reset($newTrashContent);
-		// TODO: failing test
-		#$this->assertSame('file2.txt', $element['name']);
-	}
-
-	/**
-	 * test expiration of files older then the max storage time defined for the trash
-	 * in this test we delete a shared file and check if both trash bins, the one from
-	 * the owner of the file and the one from the user who deleted the file get expired
-	 * correctly
-	 */
-	public function testExpireOldFilesShared(): void {
-		$currentTime = time();
-		$folder = 'trashTest-' . $currentTime . '/';
-		$expiredDate = $currentTime - 3 * 24 * 60 * 60;
-
-		// create some files
-		Filesystem::mkdir($folder);
-		Filesystem::file_put_contents($folder . 'user1-1.txt', 'file1');
-		Filesystem::file_put_contents($folder . 'user1-2.txt', 'file2');
-		Filesystem::file_put_contents($folder . 'user1-3.txt', 'file3');
-		Filesystem::file_put_contents($folder . 'user1-4.txt', 'file4');
-
-		//share user1-4.txt with user2
-		$node = \OC::$server->getUserFolder(self::TEST_TRASHBIN_USER1)->get($folder);
-		$share = Server::get(\OCP\Share\IManager::class)->newShare();
-		$share->setShareType(IShare::TYPE_USER)
-			->setNode($node)
-			->setSharedBy(self::TEST_TRASHBIN_USER1)
-			->setSharedWith(self::TEST_TRASHBIN_USER2)
-			->setPermissions(Constants::PERMISSION_ALL);
-		$share = Server::get(\OCP\Share\IManager::class)->createShare($share);
-		Server::get(\OCP\Share\IManager::class)->acceptShare($share, self::TEST_TRASHBIN_USER2);
-
-		// delete them so that they end up in the trash bin
-		Filesystem::unlink($folder . 'user1-1.txt');
-		Filesystem::unlink($folder . 'user1-2.txt');
-		Filesystem::unlink($folder . 'user1-3.txt');
-
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'name');
-		$this->assertSame(3, count($filesInTrash));
-
-		// every second file will get a date in the past so that it will get expired
-		$this->manipulateDeleteTime($filesInTrash, $this->trashRoot1, $expiredDate);
-
-		// login as user2
-		self::loginHelper(self::TEST_TRASHBIN_USER2);
-
-		$this->assertTrue(Filesystem::file_exists($folder . 'user1-4.txt'));
-
-		// create some files
-		Filesystem::file_put_contents('user2-1.txt', 'file1');
-		Filesystem::file_put_contents('user2-2.txt', 'file2');
-
-		// delete them so that they end up in the trash bin
-		Filesystem::unlink('user2-1.txt');
-		Filesystem::unlink('user2-2.txt');
-
-		$filesInTrashUser2 = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER2, 'name');
-		$this->assertSame(2, count($filesInTrashUser2));
-
-		// every second file will get a date in the past so that it will get expired
-		$this->manipulateDeleteTime($filesInTrashUser2, $this->trashRoot2, $expiredDate);
-
-		Filesystem::unlink($folder . 'user1-4.txt');
-
-		$this->runCommands();
-
-		$filesInTrashUser2AfterDelete = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER2);
-
-		// user2-1.txt should have been expired
-		$this->verifyArray($filesInTrashUser2AfterDelete, ['user2-2.txt', 'user1-4.txt']);
-
-		self::loginHelper(self::TEST_TRASHBIN_USER1);
-
-		// user1-1.txt and user1-3.txt should have been expired
-		$filesInTrashUser1AfterDelete = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1);
-
-		$this->verifyArray($filesInTrashUser1AfterDelete, ['user1-2.txt', 'user1-4.txt']);
-	}
-
-	/**
-	 * verify that the array contains the expected results
-	 *
-	 * @param FileInfo[] $result
-	 * @param string[] $expected
-	 */
-	private function verifyArray($result, $expected) {
-		$this->assertSame(count($expected), count($result));
-		foreach ($expected as $expectedFile) {
-			$found = false;
-			foreach ($result as $fileInTrash) {
-				if ($expectedFile === $fileInTrash['name']) {
-					$found = true;
-					break;
-				}
-			}
-			if (!$found) {
-				// if we didn't found the expected file, something went wrong
-				$this->assertTrue(false, "can't find expected file '" . $expectedFile . "' in trash bin");
-			}
-		}
-	}
-
-	/**
-	 * @param FileInfo[] $files
-	 * @param string $trashRoot
-	 * @param integer $expireDate
-	 */
-	private function manipulateDeleteTime($files, $trashRoot, $expireDate) {
-		$counter = 0;
-		foreach ($files as &$file) {
-			// modify every second file
-			$counter = ($counter + 1) % 2;
-			if ($counter === 1) {
-				$source = $trashRoot . '/files/' . $file['name'] . '.d' . $file['mtime'];
-				$target = Filesystem::normalizePath($trashRoot . '/files/' . $file['name'] . '.d' . $expireDate);
-				$this->rootView->rename($source, $target);
-				$file['mtime'] = $expireDate;
-			}
-		}
-		return \OCA\Files\Helper::sortFiles($files, 'mtime');
-	}
-
-
-	/**
-	 * test expiration of old files in the trash bin until the max size
-	 * of the trash bin is met again
-	 */
-	public function testExpireOldFilesUtilLimitsAreMet(): void {
-
-		// create some files
-		Filesystem::file_put_contents('file1.txt', 'file1');
-		Filesystem::file_put_contents('file2.txt', 'file2');
-		Filesystem::file_put_contents('file3.txt', 'file3');
-
-		// delete them so that they end up in the trash bin
-		Filesystem::unlink('file3.txt');
-		sleep(1); // make sure that every file has a unique mtime
-		Filesystem::unlink('file2.txt');
-		sleep(1); // make sure that every file has a unique mtime
-		Filesystem::unlink('file1.txt');
-
-		//make sure that files are in the trash bin
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
-		$this->assertSame(3, count($filesInTrash));
-
-		$testClass = new TrashbinForTesting();
-		$sizeOfDeletedFiles = $testClass->dummyDeleteFiles($filesInTrash, -8);
-
-		// the two oldest files (file3.txt and file2.txt) should be deleted
-		$this->assertSame(10, $sizeOfDeletedFiles);
-
-		$newTrashContent = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1);
-		$this->assertSame(1, count($newTrashContent));
-		$element = reset($newTrashContent);
-		$this->assertSame('file1.txt', $element['name']);
-	}
-
-	/**
-	 * Test restoring a file
-	 */
-	public function testRestoreFileInRoot(): void {
-		$userFolder = \OC::$server->getUserFolder();
-		$file = $userFolder->newFile('file1.txt');
-		$file->putContent('foo');
-
-		$this->assertTrue($userFolder->nodeExists('file1.txt'));
-
-		$file->delete();
-
-		$this->assertFalse($userFolder->nodeExists('file1.txt'));
-
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
-		$this->assertCount(1, $filesInTrash);
-
-		/** @var FileInfo */
-		$trashedFile = $filesInTrash[0];
-
-		$this->assertTrue(
-			Trashbin::restore(
-				'file1.txt.d' . $trashedFile->getMtime(),
-				$trashedFile->getName(),
-				$trashedFile->getMtime()
-			)
-		);
-
-		$file = $userFolder->get('file1.txt');
-		$this->assertEquals('foo', $file->getContent());
-	}
-
-	/**
-	 * Test restoring a file in subfolder
-	 */
-	public function testRestoreFileInSubfolder(): void {
-		$userFolder = \OC::$server->getUserFolder();
-		$folder = $userFolder->newFolder('folder');
-		$file = $folder->newFile('file1.txt');
-		$file->putContent('foo');
-
-		$this->assertTrue($userFolder->nodeExists('folder/file1.txt'));
-
-		$file->delete();
-
-		$this->assertFalse($userFolder->nodeExists('folder/file1.txt'));
-
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
-		$this->assertCount(1, $filesInTrash);
-
-		/** @var FileInfo */
-		$trashedFile = $filesInTrash[0];
-
-		$this->assertTrue(
-			Trashbin::restore(
-				'file1.txt.d' . $trashedFile->getMtime(),
-				$trashedFile->getName(),
-				$trashedFile->getMtime()
-			)
-		);
-
-		$file = $userFolder->get('folder/file1.txt');
-		$this->assertEquals('foo', $file->getContent());
-	}
-
-	/**
-	 * Test restoring a folder
-	 */
-	public function testRestoreFolder(): void {
-		$userFolder = \OC::$server->getUserFolder();
-		$folder = $userFolder->newFolder('folder');
-		$file = $folder->newFile('file1.txt');
-		$file->putContent('foo');
-
-		$this->assertTrue($userFolder->nodeExists('folder'));
-
-		$folder->delete();
-
-		$this->assertFalse($userFolder->nodeExists('folder'));
-
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
-		$this->assertCount(1, $filesInTrash);
+    public const TEST_TRASHBIN_USER1 = 'test-trashbin-user1';
+    public const TEST_TRASHBIN_USER2 = 'test-trashbin-user2';
+
+    private $trashRoot1;
+    private $trashRoot2;
+
+    private static $rememberRetentionObligation;
+
+    /**
+     * @var bool
+     */
+    private static $trashBinStatus;
+
+    /**
+     * @var View
+     */
+    private $rootView;
+
+    public static function setUpBeforeClass(): void {
+        parent::setUpBeforeClass();
+
+        $appManager = Server::get(IAppManager::class);
+        self::$trashBinStatus = $appManager->isEnabledForUser('files_trashbin');
+
+        // reset backend
+        Server::get(IUserManager::class)->clearBackends();
+        Server::get(IUserManager::class)->registerBackend(new \OC\User\Database());
+
+        // clear share hooks
+        \OC_Hook::clear('OCP\\Share');
+        \OC::registerShareHooks(Server::get(SystemConfig::class));
+
+        // init files sharing
+        new Application();
+
+        //disable encryption
+        Server::get(IAppManager::class)->disableApp('encryption');
+
+        $config = Server::get(IConfig::class);
+        //configure trashbin
+        self::$rememberRetentionObligation = $config->getSystemValue('trashbin_retention_obligation', Expiration::DEFAULT_RETENTION_OBLIGATION);
+        /** @var Expiration $expiration */
+        $expiration = Server::get(Expiration::class);
+        $expiration->setRetentionObligation('auto, 2');
+
+        // register trashbin hooks
+        $trashbinApp = new TrashbinApplication();
+        $trashbinApp->boot(new BootContext(new DIContainer('', [], \OC::$server)));
+
+        // create test user
+        self::loginHelper(self::TEST_TRASHBIN_USER2, true);
+        self::loginHelper(self::TEST_TRASHBIN_USER1, true);
+    }
+
+
+    public static function tearDownAfterClass(): void {
+        // cleanup test user
+        $user = Server::get(IUserManager::class)->get(self::TEST_TRASHBIN_USER1);
+        if ($user !== null) {
+            $user->delete();
+        }
+
+        /** @var Expiration $expiration */
+        $expiration = Server::get(Expiration::class);
+        $expiration->setRetentionObligation(self::$rememberRetentionObligation);
+
+        \OC_Hook::clear();
+
+        Filesystem::getLoader()->removeStorageWrapper('oc_trashbin');
+
+        if (self::$trashBinStatus) {
+            Server::get(IAppManager::class)->enableApp('files_trashbin');
+        }
+
+        parent::tearDownAfterClass();
+    }
+
+    protected function setUp(): void {
+        parent::setUp();
+
+        Server::get(IAppManager::class)->enableApp('files_trashbin');
+        $config = Server::get(IConfig::class);
+        $mockConfig = $this->createMock(IConfig::class);
+        $mockConfig
+            ->method('getSystemValue')
+            ->willReturnCallback(static function ($key, $default) use ($config) {
+                if ($key === 'filesystem_check_changes') {
+                    return Watcher::CHECK_ONCE;
+                } else {
+                    return $config->getSystemValue($key, $default);
+                }
+            });
+        $mockConfig
+            ->method('getUserValue')
+            ->willReturnCallback(static function ($userId, $appName, $key, $default = '') use ($config) {
+                return $config->getUserValue($userId, $appName, $key, $default);
+            });
+        $mockConfig
+            ->method('getAppValue')
+            ->willReturnCallback(static function ($appName, $key, $default = '') use ($config) {
+                return $config->getAppValue($appName, $key, $default);
+            });
+        $this->overwriteService(AllConfig::class, $mockConfig);
+
+        $this->trashRoot1 = '/' . self::TEST_TRASHBIN_USER1 . '/files_trashbin';
+        $this->trashRoot2 = '/' . self::TEST_TRASHBIN_USER2 . '/files_trashbin';
+        $this->rootView = new View();
+        self::loginHelper(self::TEST_TRASHBIN_USER1);
+    }
+
+    protected function tearDown(): void {
+        $this->restoreService(AllConfig::class);
+        // disable trashbin to be able to properly clean up
+        Server::get(IAppManager::class)->disableApp('files_trashbin');
+
+        $this->rootView->deleteAll('/' . self::TEST_TRASHBIN_USER1 . '/files');
+        $this->rootView->deleteAll('/' . self::TEST_TRASHBIN_USER2 . '/files');
+        $this->rootView->deleteAll($this->trashRoot1);
+        $this->rootView->deleteAll($this->trashRoot2);
+
+        // clear trash table
+        $connection = Server::get(IDBConnection::class);
+        $connection->executeUpdate('DELETE FROM `*PREFIX*files_trash`');
+
+        parent::tearDown();
+    }
+
+    /**
+     * test expiration of files older then the max storage time defined for the trash
+     */
+    public function testExpireOldFiles(): void {
+
+        /** @var ITimeFactory $time */
+        $time = Server::get(ITimeFactory::class);
+        $currentTime = $time->getTime();
+        $expireAt = $currentTime - 2 * 24 * 60 * 60;
+        $expiredDate = $currentTime - 3 * 24 * 60 * 60;
+
+        // create some files
+        Filesystem::file_put_contents('file1.txt', 'file1');
+        Filesystem::file_put_contents('file2.txt', 'file2');
+        Filesystem::file_put_contents('file3.txt', 'file3');
+
+        // delete them so that they end up in the trash bin
+        Filesystem::unlink('file1.txt');
+        Filesystem::unlink('file2.txt');
+        Filesystem::unlink('file3.txt');
+
+        //make sure that files are in the trash bin
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'name');
+        $this->assertSame(3, count($filesInTrash));
+
+        // every second file will get a date in the past so that it will get expired
+        $manipulatedList = $this->manipulateDeleteTime($filesInTrash, $this->trashRoot1, $expiredDate);
+
+        $testClass = new TrashbinForTesting();
+        [$sizeOfDeletedFiles, $count] = $testClass->dummyDeleteExpiredFiles($manipulatedList, $expireAt);
+
+        $this->assertSame(10, $sizeOfDeletedFiles);
+        $this->assertSame(2, $count);
+
+        // only file2.txt should be left
+        $remainingFiles = array_slice($manipulatedList, $count);
+        $this->assertSame(1, count($remainingFiles));
+        $remainingFile = reset($remainingFiles);
+        // TODO: failing test
+        #$this->assertSame('file2.txt', $remainingFile['name']);
+
+        // check that file1.txt and file3.txt was really deleted
+        $newTrashContent = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1);
+        $this->assertSame(1, count($newTrashContent));
+        $element = reset($newTrashContent);
+        // TODO: failing test
+        #$this->assertSame('file2.txt', $element['name']);
+    }
+
+    /**
+     * test expiration of files older then the max storage time defined for the trash
+     * in this test we delete a shared file and check if both trash bins, the one from
+     * the owner of the file and the one from the user who deleted the file get expired
+     * correctly
+     */
+    public function testExpireOldFilesShared(): void {
+        $currentTime = time();
+        $folder = 'trashTest-' . $currentTime . '/';
+        $expiredDate = $currentTime - 3 * 24 * 60 * 60;
+
+        // create some files
+        Filesystem::mkdir($folder);
+        Filesystem::file_put_contents($folder . 'user1-1.txt', 'file1');
+        Filesystem::file_put_contents($folder . 'user1-2.txt', 'file2');
+        Filesystem::file_put_contents($folder . 'user1-3.txt', 'file3');
+        Filesystem::file_put_contents($folder . 'user1-4.txt', 'file4');
+
+        //share user1-4.txt with user2
+        $node = \OC::$server->getUserFolder(self::TEST_TRASHBIN_USER1)->get($folder);
+        $share = Server::get(\OCP\Share\IManager::class)->newShare();
+        $share->setShareType(IShare::TYPE_USER)
+            ->setNode($node)
+            ->setSharedBy(self::TEST_TRASHBIN_USER1)
+            ->setSharedWith(self::TEST_TRASHBIN_USER2)
+            ->setPermissions(Constants::PERMISSION_ALL);
+        $share = Server::get(\OCP\Share\IManager::class)->createShare($share);
+        Server::get(\OCP\Share\IManager::class)->acceptShare($share, self::TEST_TRASHBIN_USER2);
+
+        // delete them so that they end up in the trash bin
+        Filesystem::unlink($folder . 'user1-1.txt');
+        Filesystem::unlink($folder . 'user1-2.txt');
+        Filesystem::unlink($folder . 'user1-3.txt');
+
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'name');
+        $this->assertSame(3, count($filesInTrash));
+
+        // every second file will get a date in the past so that it will get expired
+        $this->manipulateDeleteTime($filesInTrash, $this->trashRoot1, $expiredDate);
+
+        // login as user2
+        self::loginHelper(self::TEST_TRASHBIN_USER2);
+
+        $this->assertTrue(Filesystem::file_exists($folder . 'user1-4.txt'));
+
+        // create some files
+        Filesystem::file_put_contents('user2-1.txt', 'file1');
+        Filesystem::file_put_contents('user2-2.txt', 'file2');
+
+        // delete them so that they end up in the trash bin
+        Filesystem::unlink('user2-1.txt');
+        Filesystem::unlink('user2-2.txt');
+
+        $filesInTrashUser2 = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER2, 'name');
+        $this->assertSame(2, count($filesInTrashUser2));
+
+        // every second file will get a date in the past so that it will get expired
+        $this->manipulateDeleteTime($filesInTrashUser2, $this->trashRoot2, $expiredDate);
+
+        Filesystem::unlink($folder . 'user1-4.txt');
+
+        $this->runCommands();
+
+        $filesInTrashUser2AfterDelete = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER2);
+
+        // user2-1.txt should have been expired
+        $this->verifyArray($filesInTrashUser2AfterDelete, ['user2-2.txt', 'user1-4.txt']);
+
+        self::loginHelper(self::TEST_TRASHBIN_USER1);
+
+        // user1-1.txt and user1-3.txt should have been expired
+        $filesInTrashUser1AfterDelete = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1);
+
+        $this->verifyArray($filesInTrashUser1AfterDelete, ['user1-2.txt', 'user1-4.txt']);
+    }
+
+    /**
+     * verify that the array contains the expected results
+     *
+     * @param FileInfo[] $result
+     * @param string[] $expected
+     */
+    private function verifyArray($result, $expected) {
+        $this->assertSame(count($expected), count($result));
+        foreach ($expected as $expectedFile) {
+            $found = false;
+            foreach ($result as $fileInTrash) {
+                if ($expectedFile === $fileInTrash['name']) {
+                    $found = true;
+                    break;
+                }
+            }
+            if (!$found) {
+                // if we didn't found the expected file, something went wrong
+                $this->assertTrue(false, "can't find expected file '" . $expectedFile . "' in trash bin");
+            }
+        }
+    }
+
+    /**
+     * @param FileInfo[] $files
+     * @param string $trashRoot
+     * @param integer $expireDate
+     */
+    private function manipulateDeleteTime($files, $trashRoot, $expireDate) {
+        $counter = 0;
+        foreach ($files as &$file) {
+            // modify every second file
+            $counter = ($counter + 1) % 2;
+            if ($counter === 1) {
+                $source = $trashRoot . '/files/' . $file['name'] . '.d' . $file['mtime'];
+                $target = Filesystem::normalizePath($trashRoot . '/files/' . $file['name'] . '.d' . $expireDate);
+                $this->rootView->rename($source, $target);
+                $file['mtime'] = $expireDate;
+            }
+        }
+        return \OCA\Files\Helper::sortFiles($files, 'mtime');
+    }
+
+
+    /**
+     * test expiration of old files in the trash bin until the max size
+     * of the trash bin is met again
+     */
+    public function testExpireOldFilesUtilLimitsAreMet(): void {
+
+        // create some files
+        Filesystem::file_put_contents('file1.txt', 'file1');
+        Filesystem::file_put_contents('file2.txt', 'file2');
+        Filesystem::file_put_contents('file3.txt', 'file3');
+
+        // delete them so that they end up in the trash bin
+        Filesystem::unlink('file3.txt');
+        sleep(1); // make sure that every file has a unique mtime
+        Filesystem::unlink('file2.txt');
+        sleep(1); // make sure that every file has a unique mtime
+        Filesystem::unlink('file1.txt');
+
+        //make sure that files are in the trash bin
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
+        $this->assertSame(3, count($filesInTrash));
+
+        $testClass = new TrashbinForTesting();
+        $sizeOfDeletedFiles = $testClass->dummyDeleteFiles($filesInTrash, -8);
+
+        // the two oldest files (file3.txt and file2.txt) should be deleted
+        $this->assertSame(10, $sizeOfDeletedFiles);
+
+        $newTrashContent = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1);
+        $this->assertSame(1, count($newTrashContent));
+        $element = reset($newTrashContent);
+        $this->assertSame('file1.txt', $element['name']);
+    }
+
+    /**
+     * Test restoring a file
+     */
+    public function testRestoreFileInRoot(): void {
+        $userFolder = \OC::$server->getUserFolder();
+        $file = $userFolder->newFile('file1.txt');
+        $file->putContent('foo');
+
+        $this->assertTrue($userFolder->nodeExists('file1.txt'));
+
+        $file->delete();
+
+        $this->assertFalse($userFolder->nodeExists('file1.txt'));
+
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
+        $this->assertCount(1, $filesInTrash);
+
+        /** @var FileInfo */
+        $trashedFile = $filesInTrash[0];
+
+        $this->assertTrue(
+            Trashbin::restore(
+                'file1.txt.d' . $trashedFile->getMtime(),
+                $trashedFile->getName(),
+                $trashedFile->getMtime()
+            )
+        );
+
+        $file = $userFolder->get('file1.txt');
+        $this->assertEquals('foo', $file->getContent());
+    }
+
+    /**
+     * Test restoring a file in subfolder
+     */
+    public function testRestoreFileInSubfolder(): void {
+        $userFolder = \OC::$server->getUserFolder();
+        $folder = $userFolder->newFolder('folder');
+        $file = $folder->newFile('file1.txt');
+        $file->putContent('foo');
+
+        $this->assertTrue($userFolder->nodeExists('folder/file1.txt'));
+
+        $file->delete();
+
+        $this->assertFalse($userFolder->nodeExists('folder/file1.txt'));
+
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
+        $this->assertCount(1, $filesInTrash);
+
+        /** @var FileInfo */
+        $trashedFile = $filesInTrash[0];
+
+        $this->assertTrue(
+            Trashbin::restore(
+                'file1.txt.d' . $trashedFile->getMtime(),
+                $trashedFile->getName(),
+                $trashedFile->getMtime()
+            )
+        );
+
+        $file = $userFolder->get('folder/file1.txt');
+        $this->assertEquals('foo', $file->getContent());
+    }
+
+    /**
+     * Test restoring a folder
+     */
+    public function testRestoreFolder(): void {
+        $userFolder = \OC::$server->getUserFolder();
+        $folder = $userFolder->newFolder('folder');
+        $file = $folder->newFile('file1.txt');
+        $file->putContent('foo');
+
+        $this->assertTrue($userFolder->nodeExists('folder'));
+
+        $folder->delete();
+
+        $this->assertFalse($userFolder->nodeExists('folder'));
+
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
+        $this->assertCount(1, $filesInTrash);
 
-		/** @var FileInfo */
-		$trashedFolder = $filesInTrash[0];
+        /** @var FileInfo */
+        $trashedFolder = $filesInTrash[0];
 
-		$this->assertTrue(
-			Trashbin::restore(
-				'folder.d' . $trashedFolder->getMtime(),
-				$trashedFolder->getName(),
-				$trashedFolder->getMtime()
-			)
-		);
+        $this->assertTrue(
+            Trashbin::restore(
+                'folder.d' . $trashedFolder->getMtime(),
+                $trashedFolder->getName(),
+                $trashedFolder->getMtime()
+            )
+        );
 
-		$file = $userFolder->get('folder/file1.txt');
-		$this->assertEquals('foo', $file->getContent());
-	}
-
-	/**
-	 * Test restoring a file from inside a trashed folder
-	 */
-	public function testRestoreFileFromTrashedSubfolder(): void {
-		$userFolder = \OC::$server->getUserFolder();
-		$folder = $userFolder->newFolder('folder');
-		$file = $folder->newFile('file1.txt');
-		$file->putContent('foo');
+        $file = $userFolder->get('folder/file1.txt');
+        $this->assertEquals('foo', $file->getContent());
+    }
+
+    /**
+     * Test restoring a file from inside a trashed folder
+     */
+    public function testRestoreFileFromTrashedSubfolder(): void {
+        $userFolder = \OC::$server->getUserFolder();
+        $folder = $userFolder->newFolder('folder');
+        $file = $folder->newFile('file1.txt');
+        $file->putContent('foo');
 
-		$this->assertTrue($userFolder->nodeExists('folder'));
+        $this->assertTrue($userFolder->nodeExists('folder'));
 
-		$folder->delete();
-
-		$this->assertFalse($userFolder->nodeExists('folder'));
-
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
-		$this->assertCount(1, $filesInTrash);
-
-		/** @var FileInfo */
-		$trashedFile = $filesInTrash[0];
-
-		$this->assertTrue(
-			Trashbin::restore(
-				'folder.d' . $trashedFile->getMtime() . '/file1.txt',
-				'file1.txt',
-				$trashedFile->getMtime()
-			)
-		);
+        $folder->delete();
+
+        $this->assertFalse($userFolder->nodeExists('folder'));
+
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
+        $this->assertCount(1, $filesInTrash);
+
+        /** @var FileInfo */
+        $trashedFile = $filesInTrash[0];
+
+        $this->assertTrue(
+            Trashbin::restore(
+                'folder.d' . $trashedFile->getMtime() . '/file1.txt',
+                'file1.txt',
+                $trashedFile->getMtime()
+            )
+        );
 
-		$file = $userFolder->get('file1.txt');
-		$this->assertEquals('foo', $file->getContent());
-	}
+        $file = $userFolder->get('file1.txt');
+        $this->assertEquals('foo', $file->getContent());
+    }
 
-	/**
-	 * Test restoring a file whenever the source folder was removed.
-	 * The file should then land in the root.
-	 */
-	public function testRestoreFileWithMissingSourceFolder(): void {
-		$userFolder = \OC::$server->getUserFolder();
-		$folder = $userFolder->newFolder('folder');
-		$file = $folder->newFile('file1.txt');
-		$file->putContent('foo');
+    /**
+     * Test restoring a file whenever the source folder was removed.
+     * The file should then land in the root.
+     */
+    public function testRestoreFileWithMissingSourceFolder(): void {
+        $userFolder = \OC::$server->getUserFolder();
+        $folder = $userFolder->newFolder('folder');
+        $file = $folder->newFile('file1.txt');
+        $file->putContent('foo');
 
-		$this->assertTrue($userFolder->nodeExists('folder/file1.txt'));
+        $this->assertTrue($userFolder->nodeExists('folder/file1.txt'));
 
-		$file->delete();
+        $file->delete();
 
-		$this->assertFalse($userFolder->nodeExists('folder/file1.txt'));
-
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
-		$this->assertCount(1, $filesInTrash);
-
-		/** @var FileInfo */
-		$trashedFile = $filesInTrash[0];
-
-		// delete source folder
-		$folder->delete();
-
-		$this->assertTrue(
-			Trashbin::restore(
-				'file1.txt.d' . $trashedFile->getMtime(),
-				$trashedFile->getName(),
-				$trashedFile->getMtime()
-			)
-		);
-
-		$file = $userFolder->get('file1.txt');
-		$this->assertEquals('foo', $file->getContent());
-	}
-
-	/**
-	 * Test restoring a file in the root folder whenever there is another file
-	 * with the same name in the root folder
-	 */
-	public function testRestoreFileDoesNotOverwriteExistingInRoot(): void {
-		$userFolder = \OC::$server->getUserFolder();
-		$file = $userFolder->newFile('file1.txt');
-		$file->putContent('foo');
-
-		$this->assertTrue($userFolder->nodeExists('file1.txt'));
-
-		$file->delete();
-
-		$this->assertFalse($userFolder->nodeExists('file1.txt'));
-
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
-		$this->assertCount(1, $filesInTrash);
-
-		/** @var FileInfo */
-		$trashedFile = $filesInTrash[0];
-
-		// create another file
-		$file = $userFolder->newFile('file1.txt');
-		$file->putContent('bar');
-
-		$this->assertTrue(
-			Trashbin::restore(
-				'file1.txt.d' . $trashedFile->getMtime(),
-				$trashedFile->getName(),
-				$trashedFile->getMtime()
-			)
-		);
-
-		$anotherFile = $userFolder->get('file1.txt');
-		$this->assertEquals('bar', $anotherFile->getContent());
-
-		$restoredFile = $userFolder->get('file1 (restored).txt');
-		$this->assertEquals('foo', $restoredFile->getContent());
-	}
-
-	/**
-	 * Test restoring a file whenever there is another file
-	 * with the same name in the source folder
-	 */
-	public function testRestoreFileDoesNotOverwriteExistingInSubfolder(): void {
-		$userFolder = \OC::$server->getUserFolder();
-		$folder = $userFolder->newFolder('folder');
-		$file = $folder->newFile('file1.txt');
-		$file->putContent('foo');
-
-		$this->assertTrue($userFolder->nodeExists('folder/file1.txt'));
-
-		$file->delete();
-
-		$this->assertFalse($userFolder->nodeExists('folder/file1.txt'));
-
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
-		$this->assertCount(1, $filesInTrash);
-
-		/** @var FileInfo */
-		$trashedFile = $filesInTrash[0];
-
-		// create another file
-		$file = $folder->newFile('file1.txt');
-		$file->putContent('bar');
-
-		$this->assertTrue(
-			Trashbin::restore(
-				'file1.txt.d' . $trashedFile->getMtime(),
-				$trashedFile->getName(),
-				$trashedFile->getMtime()
-			)
-		);
-
-		$anotherFile = $userFolder->get('folder/file1.txt');
-		$this->assertEquals('bar', $anotherFile->getContent());
-
-		$restoredFile = $userFolder->get('folder/file1 (restored).txt');
-		$this->assertEquals('foo', $restoredFile->getContent());
-	}
-
-	/**
-	 * Test restoring a non-existing file from trashbin, returns false
-	 */
-	public function testRestoreUnexistingFile(): void {
-		$this->assertFalse(
-			Trashbin::restore(
-				'unexist.txt.d123456',
-				'unexist.txt',
-				'123456'
-			)
-		);
-	}
-
-	/**
-	 * Test restoring a file into a read-only folder, will restore
-	 * the file to root instead
-	 */
-	public function testRestoreFileIntoReadOnlySourceFolder(): void {
-		$userFolder = \OC::$server->getUserFolder();
-		$folder = $userFolder->newFolder('folder');
-		$file = $folder->newFile('file1.txt');
-		$file->putContent('foo');
-
-		$this->assertTrue($userFolder->nodeExists('folder/file1.txt'));
-
-		$file->delete();
-
-		$this->assertFalse($userFolder->nodeExists('folder/file1.txt'));
-
-		$filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
-		$this->assertCount(1, $filesInTrash);
-
-		/** @var FileInfo */
-		$trashedFile = $filesInTrash[0];
-
-		// delete source folder
-		[$storage, $internalPath] = $this->rootView->resolvePath('/' . self::TEST_TRASHBIN_USER1 . '/files/folder');
-		if ($storage instanceof Local) {
-			$folderAbsPath = $storage->getSourcePath($internalPath);
-			// make folder read-only
-			chmod($folderAbsPath, 0555);
-
-			$this->assertTrue(
-				Trashbin::restore(
-					'file1.txt.d' . $trashedFile->getMtime(),
-					$trashedFile->getName(),
-					$trashedFile->getMtime()
-				)
-			);
-
-			$file = $userFolder->get('file1.txt');
-			$this->assertEquals('foo', $file->getContent());
-
-			chmod($folderAbsPath, 0755);
-		}
-	}
-
-	/**
-	 * @param string $user
-	 * @param bool $create
-	 */
-	public static function loginHelper($user, $create = false) {
-		if ($create) {
-			try {
-				Server::get(IUserManager::class)->createUser($user, $user);
-			} catch (\Exception $e) { // catch username is already being used from previous aborted runs
-			}
-		}
-
-		\OC_Util::tearDownFS();
-		\OC_User::setUserId('');
-		Filesystem::tearDown();
-		\OC_User::setUserId($user);
-		\OC_Util::setupFS($user);
-		\OC::$server->getUserFolder($user);
-	}
+        $this->assertFalse($userFolder->nodeExists('folder/file1.txt'));
+
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
+        $this->assertCount(1, $filesInTrash);
+
+        /** @var FileInfo */
+        $trashedFile = $filesInTrash[0];
+
+        // delete source folder
+        $folder->delete();
+
+        $this->assertTrue(
+            Trashbin::restore(
+                'file1.txt.d' . $trashedFile->getMtime(),
+                $trashedFile->getName(),
+                $trashedFile->getMtime()
+            )
+        );
+
+        $file = $userFolder->get('file1.txt');
+        $this->assertEquals('foo', $file->getContent());
+    }
+
+    /**
+     * Test restoring a file in the root folder whenever there is another file
+     * with the same name in the root folder
+     */
+    public function testRestoreFileDoesNotOverwriteExistingInRoot(): void {
+        $userFolder = \OC::$server->getUserFolder();
+        $file = $userFolder->newFile('file1.txt');
+        $file->putContent('foo');
+
+        $this->assertTrue($userFolder->nodeExists('file1.txt'));
+
+        $file->delete();
+
+        $this->assertFalse($userFolder->nodeExists('file1.txt'));
+
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
+        $this->assertCount(1, $filesInTrash);
+
+        /** @var FileInfo */
+        $trashedFile = $filesInTrash[0];
+
+        // create another file
+        $file = $userFolder->newFile('file1.txt');
+        $file->putContent('bar');
+
+        $this->assertTrue(
+            Trashbin::restore(
+                'file1.txt.d' . $trashedFile->getMtime(),
+                $trashedFile->getName(),
+                $trashedFile->getMtime()
+            )
+        );
+
+        $anotherFile = $userFolder->get('file1.txt');
+        $this->assertEquals('bar', $anotherFile->getContent());
+
+        $restoredFile = $userFolder->get('file1 (restored).txt');
+        $this->assertEquals('foo', $restoredFile->getContent());
+    }
+
+    /**
+     * Test restoring a file whenever there is another file
+     * with the same name in the source folder
+     */
+    public function testRestoreFileDoesNotOverwriteExistingInSubfolder(): void {
+        $userFolder = \OC::$server->getUserFolder();
+        $folder = $userFolder->newFolder('folder');
+        $file = $folder->newFile('file1.txt');
+        $file->putContent('foo');
+
+        $this->assertTrue($userFolder->nodeExists('folder/file1.txt'));
+
+        $file->delete();
+
+        $this->assertFalse($userFolder->nodeExists('folder/file1.txt'));
+
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
+        $this->assertCount(1, $filesInTrash);
+
+        /** @var FileInfo */
+        $trashedFile = $filesInTrash[0];
+
+        // create another file
+        $file = $folder->newFile('file1.txt');
+        $file->putContent('bar');
+
+        $this->assertTrue(
+            Trashbin::restore(
+                'file1.txt.d' . $trashedFile->getMtime(),
+                $trashedFile->getName(),
+                $trashedFile->getMtime()
+            )
+        );
+
+        $anotherFile = $userFolder->get('folder/file1.txt');
+        $this->assertEquals('bar', $anotherFile->getContent());
+
+        $restoredFile = $userFolder->get('folder/file1 (restored).txt');
+        $this->assertEquals('foo', $restoredFile->getContent());
+    }
+
+    /**
+     * Test restoring a non-existing file from trashbin, returns false
+     */
+    public function testRestoreUnexistingFile(): void {
+        $this->assertFalse(
+            Trashbin::restore(
+                'unexist.txt.d123456',
+                'unexist.txt',
+                '123456'
+            )
+        );
+    }
+
+    /**
+     * Test restoring a file into a read-only folder, will restore
+     * the file to root instead
+     */
+    public function testRestoreFileIntoReadOnlySourceFolder(): void {
+        $userFolder = \OC::$server->getUserFolder();
+        $folder = $userFolder->newFolder('folder');
+        $file = $folder->newFile('file1.txt');
+        $file->putContent('foo');
+
+        $this->assertTrue($userFolder->nodeExists('folder/file1.txt'));
+
+        $file->delete();
+
+        $this->assertFalse($userFolder->nodeExists('folder/file1.txt'));
+
+        $filesInTrash = Helper::getTrashFiles('/', self::TEST_TRASHBIN_USER1, 'mtime');
+        $this->assertCount(1, $filesInTrash);
+
+        /** @var FileInfo */
+        $trashedFile = $filesInTrash[0];
+
+        // delete source folder
+        [$storage, $internalPath] = $this->rootView->resolvePath('/' . self::TEST_TRASHBIN_USER1 . '/files/folder');
+        if ($storage instanceof Local) {
+            $folderAbsPath = $storage->getSourcePath($internalPath);
+            // make folder read-only
+            chmod($folderAbsPath, 0555);
+
+            $this->assertTrue(
+                Trashbin::restore(
+                    'file1.txt.d' . $trashedFile->getMtime(),
+                    $trashedFile->getName(),
+                    $trashedFile->getMtime()
+                )
+            );
+
+            $file = $userFolder->get('file1.txt');
+            $this->assertEquals('foo', $file->getContent());
+
+            chmod($folderAbsPath, 0755);
+        }
+    }
+
+    /**
+     * @param string $user
+     * @param bool $create
+     */
+    public static function loginHelper($user, $create = false) {
+        if ($create) {
+            try {
+                Server::get(IUserManager::class)->createUser($user, $user);
+            } catch (\Exception $e) { // catch username is already being used from previous aborted runs
+            }
+        }
+
+        \OC_Util::tearDownFS();
+        \OC_User::setUserId('');
+        Filesystem::tearDown();
+        \OC_User::setUserId($user);
+        \OC_Util::setupFS($user);
+        \OC::$server->getUserFolder($user);
+    }
 }
 
 
 // just a dummy class to make protected methods available for testing
 class TrashbinForTesting extends Trashbin {
 
-	/**
-	 * @param FileInfo[] $files
-	 * @param integer $limit
-	 */
-	public function dummyDeleteExpiredFiles($files) {
-		// dummy value for $retention_obligation because it is not needed here
-		return parent::deleteExpiredFiles($files, TrashbinTest::TEST_TRASHBIN_USER1);
-	}
-
-	/**
-	 * @param FileInfo[] $files
-	 * @param integer $availableSpace
-	 */
-	public function dummyDeleteFiles($files, $availableSpace) {
-		return parent::deleteFiles($files, TrashbinTest::TEST_TRASHBIN_USER1, $availableSpace);
-	}
+    /**
+     * @param FileInfo[] $files
+     * @param integer $limit
+     */
+    public function dummyDeleteExpiredFiles($files) {
+        // dummy value for $retention_obligation because it is not needed here
+        return parent::deleteExpiredFiles($files, TrashbinTest::TEST_TRASHBIN_USER1);
+    }
+
+    /**
+     * @param FileInfo[] $files
+     * @param integer $availableSpace
+     */
+    public function dummyDeleteFiles($files, $availableSpace) {
+        return parent::deleteFiles($files, TrashbinTest::TEST_TRASHBIN_USER1, $availableSpace);
+    }
 }

Please login to merge, or discard this patch.

apps/federatedfilesharing/tests/TestCase.php 1 patch

Indentation +78 added lines, -78 removed lines patch added patch discarded remove patch

@@ -22,82 +22,82 @@
 block discarded – undo
  * Base class for sharing tests.
  */
 abstract class TestCase extends \Test\TestCase {
-	public const TEST_FILES_SHARING_API_USER1 = 'test-share-user1';
-	public const TEST_FILES_SHARING_API_USER2 = 'test-share-user2';
-
-	public static function setUpBeforeClass(): void {
-		parent::setUpBeforeClass();
-
-		// reset backend
-		Server::get(IUserManager::class)->clearBackends();
-		Server::get(IGroupManager::class)->clearBackends();
-
-		// create users
-		$backend = new \Test\Util\User\Dummy();
-		Server::get(IUserManager::class)->registerBackend($backend);
-		$backend->createUser(self::TEST_FILES_SHARING_API_USER1, self::TEST_FILES_SHARING_API_USER1);
-		$backend->createUser(self::TEST_FILES_SHARING_API_USER2, self::TEST_FILES_SHARING_API_USER2);
-	}
-
-	protected function setUp(): void {
-		parent::setUp();
-
-		//login as user1
-		self::loginHelper(self::TEST_FILES_SHARING_API_USER1);
-	}
-
-	public static function tearDownAfterClass(): void {
-		// cleanup users
-		$user = Server::get(IUserManager::class)->get(self::TEST_FILES_SHARING_API_USER1);
-		if ($user !== null) {
-			$user->delete();
-		}
-		$user = Server::get(IUserManager::class)->get(self::TEST_FILES_SHARING_API_USER2);
-		if ($user !== null) {
-			$user->delete();
-		}
-
-		\OC_Util::tearDownFS();
-		\OC_User::setUserId('');
-		Filesystem::tearDown();
-
-		// reset backend
-		Server::get(IUserManager::class)->clearBackends();
-		Server::get(IUserManager::class)->registerBackend(new \OC\User\Database());
-		Server::get(IGroupManager::class)->clearBackends();
-		Server::get(IGroupManager::class)->addBackend(new Database());
-
-		parent::tearDownAfterClass();
-	}
-
-	/**
-	 * @param string $user
-	 * @param bool $create
-	 * @param bool $password
-	 */
-	protected static function loginHelper($user, $create = false, $password = false) {
-		if ($password === false) {
-			$password = $user;
-		}
-
-		if ($create) {
-			$userManager = Server::get(IUserManager::class);
-			$groupManager = Server::get(IGroupManager::class);
-
-			$userObject = $userManager->createUser($user, $password);
-			$group = $groupManager->createGroup('group');
-
-			if ($group and $userObject) {
-				$group->addUser($userObject);
-			}
-		}
-
-		\OC_Util::tearDownFS();
-		Server::get(IUserSession::class)->setUser(null);
-		Filesystem::tearDown();
-		Server::get(IUserSession::class)->login($user, $password);
-		\OC::$server->getUserFolder($user);
-
-		\OC_Util::setupFS($user);
-	}
+    public const TEST_FILES_SHARING_API_USER1 = 'test-share-user1';
+    public const TEST_FILES_SHARING_API_USER2 = 'test-share-user2';
+
+    public static function setUpBeforeClass(): void {
+        parent::setUpBeforeClass();
+
+        // reset backend
+        Server::get(IUserManager::class)->clearBackends();
+        Server::get(IGroupManager::class)->clearBackends();
+
+        // create users
+        $backend = new \Test\Util\User\Dummy();
+        Server::get(IUserManager::class)->registerBackend($backend);
+        $backend->createUser(self::TEST_FILES_SHARING_API_USER1, self::TEST_FILES_SHARING_API_USER1);
+        $backend->createUser(self::TEST_FILES_SHARING_API_USER2, self::TEST_FILES_SHARING_API_USER2);
+    }
+
+    protected function setUp(): void {
+        parent::setUp();
+
+        //login as user1
+        self::loginHelper(self::TEST_FILES_SHARING_API_USER1);
+    }
+
+    public static function tearDownAfterClass(): void {
+        // cleanup users
+        $user = Server::get(IUserManager::class)->get(self::TEST_FILES_SHARING_API_USER1);
+        if ($user !== null) {
+            $user->delete();
+        }
+        $user = Server::get(IUserManager::class)->get(self::TEST_FILES_SHARING_API_USER2);
+        if ($user !== null) {
+            $user->delete();
+        }
+
+        \OC_Util::tearDownFS();
+        \OC_User::setUserId('');
+        Filesystem::tearDown();
+
+        // reset backend
+        Server::get(IUserManager::class)->clearBackends();
+        Server::get(IUserManager::class)->registerBackend(new \OC\User\Database());
+        Server::get(IGroupManager::class)->clearBackends();
+        Server::get(IGroupManager::class)->addBackend(new Database());
+
+        parent::tearDownAfterClass();
+    }
+
+    /**
+     * @param string $user
+     * @param bool $create
+     * @param bool $password
+     */
+    protected static function loginHelper($user, $create = false, $password = false) {
+        if ($password === false) {
+            $password = $user;
+        }
+
+        if ($create) {
+            $userManager = Server::get(IUserManager::class);
+            $groupManager = Server::get(IGroupManager::class);
+
+            $userObject = $userManager->createUser($user, $password);
+            $group = $groupManager->createGroup('group');
+
+            if ($group and $userObject) {
+                $group->addUser($userObject);
+            }
+        }
+
+        \OC_Util::tearDownFS();
+        Server::get(IUserSession::class)->setUser(null);
+        Filesystem::tearDown();
+        Server::get(IUserSession::class)->login($user, $password);
+        \OC::$server->getUserFolder($user);
+
+        \OC_Util::setupFS($user);
+    }
 }

Please login to merge, or discard this patch.

apps/user_ldap/lib/AppInfo/Application.php 1 patch

Indentation +92 added lines, -92 removed lines patch added patch discarded remove patch

@@ -44,108 +44,108 @@
 block discarded – undo
 use Psr\Log\LoggerInterface;
 
 class Application extends App implements IBootstrap {
-	public function __construct() {
-		parent::__construct('user_ldap');
-		$container = $this->getContainer();
+    public function __construct() {
+        parent::__construct('user_ldap');
+        $container = $this->getContainer();
 
-		/**
-		 * Controller
-		 */
-		$container->registerService('RenewPasswordController', function (IAppContainer $appContainer) {
-			/** @var IServerContainer $server */
-			$server = $appContainer->get(IServerContainer::class);
+        /**
+         * Controller
+         */
+        $container->registerService('RenewPasswordController', function (IAppContainer $appContainer) {
+            /** @var IServerContainer $server */
+            $server = $appContainer->get(IServerContainer::class);
 
-			return new RenewPasswordController(
-				$appContainer->get('AppName'),
-				$server->getRequest(),
-				$appContainer->get('UserManager'),
-				$server->getConfig(),
-				$appContainer->get(IL10N::class),
-				$appContainer->get('Session'),
-				$server->getURLGenerator()
-			);
-		});
+            return new RenewPasswordController(
+                $appContainer->get('AppName'),
+                $server->getRequest(),
+                $appContainer->get('UserManager'),
+                $server->getConfig(),
+                $appContainer->get(IL10N::class),
+                $appContainer->get('Session'),
+                $server->getURLGenerator()
+            );
+        });
 
-		$container->registerService(ILDAPWrapper::class, function (IAppContainer $appContainer) {
-			/** @var IServerContainer $server */
-			$server = $appContainer->get(IServerContainer::class);
+        $container->registerService(ILDAPWrapper::class, function (IAppContainer $appContainer) {
+            /** @var IServerContainer $server */
+            $server = $appContainer->get(IServerContainer::class);
 
-			return new LDAP(
-				$server->getConfig()->getSystemValueString('ldap_log_file')
-			);
-		});
-	}
+            return new LDAP(
+                $server->getConfig()->getSystemValueString('ldap_log_file')
+            );
+        });
+    }
 
-	public function register(IRegistrationContext $context): void {
-		$context->registerNotifierService(Notifier::class);
+    public function register(IRegistrationContext $context): void {
+        $context->registerNotifierService(Notifier::class);
 
-		$context->registerService(
-			Manager::class,
-			function (ContainerInterface $c) {
-				return new Manager(
-					$c->get(IConfig::class),
-					$c->get(LoggerInterface::class),
-					$c->get(IAvatarManager::class),
-					$c->get(Image::class),
-					$c->get(IUserManager::class),
-					$c->get(INotificationManager::class),
-					$c->get(IShareManager::class),
-				);
-			},
-			// the instance is specific to a lazy bound Access instance, thus cannot be shared.
-			false
-		);
-		$context->registerEventListener(PostLoginEvent::class, LoginListener::class);
-		$context->registerSetupCheck(LdapInvalidUuids::class);
-		$context->registerSetupCheck(LdapConnection::class);
-	}
+        $context->registerService(
+            Manager::class,
+            function (ContainerInterface $c) {
+                return new Manager(
+                    $c->get(IConfig::class),
+                    $c->get(LoggerInterface::class),
+                    $c->get(IAvatarManager::class),
+                    $c->get(Image::class),
+                    $c->get(IUserManager::class),
+                    $c->get(INotificationManager::class),
+                    $c->get(IShareManager::class),
+                );
+            },
+            // the instance is specific to a lazy bound Access instance, thus cannot be shared.
+            false
+        );
+        $context->registerEventListener(PostLoginEvent::class, LoginListener::class);
+        $context->registerSetupCheck(LdapInvalidUuids::class);
+        $context->registerSetupCheck(LdapConnection::class);
+    }
 
-	public function boot(IBootContext $context): void {
-		$context->injectFn(function (
-			INotificationManager $notificationManager,
-			IAppContainer $appContainer,
-			IEventDispatcher $dispatcher,
-			IUserManager $userManager,
-			IGroupManager $groupManager,
-			User_Proxy $userBackend,
-			Group_Proxy $groupBackend,
-			Helper $helper,
-		): void {
-			$configPrefixes = $helper->getServerConfigurationPrefixes(true);
-			if (count($configPrefixes) > 0) {
-				$userPluginManager = $appContainer->get(UserPluginManager::class);
-				$groupPluginManager = $appContainer->get(GroupPluginManager::class);
+    public function boot(IBootContext $context): void {
+        $context->injectFn(function (
+            INotificationManager $notificationManager,
+            IAppContainer $appContainer,
+            IEventDispatcher $dispatcher,
+            IUserManager $userManager,
+            IGroupManager $groupManager,
+            User_Proxy $userBackend,
+            Group_Proxy $groupBackend,
+            Helper $helper,
+        ): void {
+            $configPrefixes = $helper->getServerConfigurationPrefixes(true);
+            if (count($configPrefixes) > 0) {
+                $userPluginManager = $appContainer->get(UserPluginManager::class);
+                $groupPluginManager = $appContainer->get(GroupPluginManager::class);
 
-				$userManager->registerBackend($userBackend);
-				$groupManager->addBackend($groupBackend);
+                $userManager->registerBackend($userBackend);
+                $groupManager->addBackend($groupBackend);
 
-				$userBackendRegisteredEvent = new UserBackendRegistered($userBackend, $userPluginManager);
-				$dispatcher->dispatch('OCA\\User_LDAP\\User\\User::postLDAPBackendAdded', $userBackendRegisteredEvent);
-				$dispatcher->dispatchTyped($userBackendRegisteredEvent);
-				$groupBackendRegisteredEvent = new GroupBackendRegistered($groupBackend, $groupPluginManager);
-				$dispatcher->dispatchTyped($groupBackendRegisteredEvent);
-			}
-		});
+                $userBackendRegisteredEvent = new UserBackendRegistered($userBackend, $userPluginManager);
+                $dispatcher->dispatch('OCA\\User_LDAP\\User\\User::postLDAPBackendAdded', $userBackendRegisteredEvent);
+                $dispatcher->dispatchTyped($userBackendRegisteredEvent);
+                $groupBackendRegisteredEvent = new GroupBackendRegistered($groupBackend, $groupPluginManager);
+                $dispatcher->dispatchTyped($groupBackendRegisteredEvent);
+            }
+        });
 
-		$context->injectFn(Closure::fromCallable([$this, 'registerBackendDependents']));
+        $context->injectFn(Closure::fromCallable([$this, 'registerBackendDependents']));
 
-		Util::connectHook(
-			'\OCA\Files_Sharing\API\Server2Server',
-			'preLoginNameUsedAsUserName',
-			'\OCA\User_LDAP\Helper',
-			'loginName2UserName'
-		);
-	}
+        Util::connectHook(
+            '\OCA\Files_Sharing\API\Server2Server',
+            'preLoginNameUsedAsUserName',
+            '\OCA\User_LDAP\Helper',
+            'loginName2UserName'
+        );
+    }
 
-	private function registerBackendDependents(IAppContainer $appContainer, IEventDispatcher $dispatcher): void {
-		$dispatcher->addListener(
-			'OCA\\Files_External::loadAdditionalBackends',
-			function () use ($appContainer): void {
-				$storagesBackendService = $appContainer->get(BackendService::class);
-				$storagesBackendService->registerConfigHandler('home', function () use ($appContainer) {
-					return $appContainer->get(ExtStorageConfigHandler::class);
-				});
-			}
-		);
-	}
+    private function registerBackendDependents(IAppContainer $appContainer, IEventDispatcher $dispatcher): void {
+        $dispatcher->addListener(
+            'OCA\\Files_External::loadAdditionalBackends',
+            function () use ($appContainer): void {
+                $storagesBackendService = $appContainer->get(BackendService::class);
+                $storagesBackendService->registerConfigHandler('home', function () use ($appContainer) {
+                    return $appContainer->get(ExtStorageConfigHandler::class);
+                });
+            }
+        );
+    }
 }

Please login to merge, or discard this patch.

user_ldap/tests/Integration/Lib/User/IntegrationTestUserDisplayName.php 1 patch

Indentation +62 added lines, -62 removed lines patch added patch discarded remove patch

@@ -20,75 +20,75 @@
 block discarded – undo
 require_once __DIR__ . '/../../Bootstrap.php';
 
 class IntegrationTestUserDisplayName extends AbstractIntegrationTest {
-	/** @var UserMapping */
-	protected $mapping;
+    /** @var UserMapping */
+    protected $mapping;
 
-	/**
-	 * prepares the LDAP environment and sets up a test configuration for
-	 * the LDAP backend.
-	 */
-	public function init() {
-		require(__DIR__ . '/../../setup-scripts/createExplicitUsers.php');
-		parent::init();
-		$this->mapping = new UserMapping(Server::get(IDBConnection::class));
-		$this->mapping->clear();
-		$this->access->setUserMapper($this->mapping);
-		$userBackend = new User_LDAP($this->access, Server::get(\OCP\Notification\IManager::class), Server::get(UserPluginManager::class), Server::get(LoggerInterface::class), Server::get(DeletedUsersIndex::class));
-		Server::get(IUserManager::class)->registerBackend($userBackend);
-	}
+    /**
+     * prepares the LDAP environment and sets up a test configuration for
+     * the LDAP backend.
+     */
+    public function init() {
+        require(__DIR__ . '/../../setup-scripts/createExplicitUsers.php');
+        parent::init();
+        $this->mapping = new UserMapping(Server::get(IDBConnection::class));
+        $this->mapping->clear();
+        $this->access->setUserMapper($this->mapping);
+        $userBackend = new User_LDAP($this->access, Server::get(\OCP\Notification\IManager::class), Server::get(UserPluginManager::class), Server::get(LoggerInterface::class), Server::get(DeletedUsersIndex::class));
+        Server::get(IUserManager::class)->registerBackend($userBackend);
+    }
 
-	/**
-	 * adds a map entry for the user, so we know the username
-	 *
-	 * @param $dn
-	 * @param $username
-	 */
-	private function prepareUser($dn, $username) {
-		// assigns our self-picked oc username to the dn
-		$this->mapping->map($dn, $username, 'fakeUUID-' . $username);
-	}
+    /**
+     * adds a map entry for the user, so we know the username
+     *
+     * @param $dn
+     * @param $username
+     */
+    private function prepareUser($dn, $username) {
+        // assigns our self-picked oc username to the dn
+        $this->mapping->map($dn, $username, 'fakeUUID-' . $username);
+    }
 
-	/**
-	 * tests whether a display name consisting of two parts is created correctly
-	 *
-	 * @return bool
-	 */
-	protected function case1() {
-		$username = 'alice1337';
-		$dn = 'uid=alice,ou=Users,' . $this->base;
-		$this->prepareUser($dn, $username);
-		$displayName = Server::get(IUserManager::class)->get($username)->getDisplayName();
+    /**
+     * tests whether a display name consisting of two parts is created correctly
+     *
+     * @return bool
+     */
+    protected function case1() {
+        $username = 'alice1337';
+        $dn = 'uid=alice,ou=Users,' . $this->base;
+        $this->prepareUser($dn, $username);
+        $displayName = Server::get(IUserManager::class)->get($username)->getDisplayName();
 
-		return str_contains($displayName, '([email protected])');
-	}
+        return str_contains($displayName, '([email protected])');
+    }
 
-	/**
-	 * tests whether a display name consisting of one part is created correctly
-	 *
-	 * @return bool
-	 */
-	protected function case2() {
-		$this->connection->setConfiguration([
-			'ldapUserDisplayName2' => '',
-		]);
-		$username = 'boris23421';
-		$dn = 'uid=boris,ou=Users,' . $this->base;
-		$this->prepareUser($dn, $username);
-		$displayName = Server::get(IUserManager::class)->get($username)->getDisplayName();
+    /**
+     * tests whether a display name consisting of one part is created correctly
+     *
+     * @return bool
+     */
+    protected function case2() {
+        $this->connection->setConfiguration([
+            'ldapUserDisplayName2' => '',
+        ]);
+        $username = 'boris23421';
+        $dn = 'uid=boris,ou=Users,' . $this->base;
+        $this->prepareUser($dn, $username);
+        $displayName = Server::get(IUserManager::class)->get($username)->getDisplayName();
 
-		return !str_contains($displayName, '([email protected])');
-	}
+        return !str_contains($displayName, '([email protected])');
+    }
 
-	/**
-	 * sets up the LDAP configuration to be used for the test
-	 */
-	protected function initConnection() {
-		parent::initConnection();
-		$this->connection->setConfiguration([
-			'ldapUserDisplayName' => 'displayName',
-			'ldapUserDisplayName2' => 'mail',
-		]);
-	}
+    /**
+     * sets up the LDAP configuration to be used for the test
+     */
+    protected function initConnection() {
+        parent::initConnection();
+        $this->connection->setConfiguration([
+            'ldapUserDisplayName' => 'displayName',
+            'ldapUserDisplayName2' => 'mail',
+        ]);
+    }
 }
 
 /** @var string $host */

Please login to merge, or discard this patch.

apps/user_ldap/tests/Integration/Lib/User/IntegrationTestUserAvatar.php 1 patch

Indentation +114 added lines, -114 removed lines patch added patch discarded remove patch

@@ -25,120 +25,120 @@
 block discarded – undo
 require_once __DIR__ . '/../../Bootstrap.php';
 
 class IntegrationTestUserAvatar extends AbstractIntegrationTest {
-	/** @var UserMapping */
-	protected $mapping;
-
-	/**
-	 * prepares the LDAP environment and sets up a test configuration for
-	 * the LDAP backend.
-	 */
-	public function init() {
-		require(__DIR__ . '/../../setup-scripts/createExplicitUsers.php');
-		parent::init();
-		$this->mapping = new UserMapping(Server::get(IDBConnection::class));
-		$this->mapping->clear();
-		$this->access->setUserMapper($this->mapping);
-		$userBackend = new User_LDAP($this->access, Server::get(\OCP\Notification\IManager::class), Server::get(UserPluginManager::class), Server::get(LoggerInterface::class), Server::get(DeletedUsersIndex::class));
-		Server::get(IUserManager::class)->registerBackend($userBackend);
-	}
-
-	/**
-	 * A method that does the common steps of test cases 1 and 2. The evaluation
-	 * is not happening here.
-	 *
-	 * @param string $dn
-	 * @param string $username
-	 * @param string $image
-	 */
-	private function execFetchTest($dn, $username, $image) {
-		$this->setJpegPhotoAttribute($dn, $image);
-
-		// assigns our self-picked oc username to the dn
-		$this->mapping->map($dn, $username, 'fakeUUID-' . $username);
-
-		// initialize home folder and make sure that the user will update
-		// also remove an possibly existing avatar
-		\OC_Util::tearDownFS();
-		\OC_Util::setupFS($username);
-		\OC::$server->getUserFolder($username);
-		Server::get(IConfig::class)->deleteUserValue($username, 'user_ldap', User::USER_PREFKEY_LASTREFRESH);
-		if (Server::get(IAvatarManager::class)->getAvatar($username)->exists()) {
-			Server::get(IAvatarManager::class)->getAvatar($username)->remove();
-		}
-
-		// finally attempt to get the avatar set
-		$user = $this->userManager->get($dn);
-		$user->updateAvatar();
-	}
-
-	/**
-	 * tests whether an avatar can be retrieved from LDAP and stored correctly
-	 *
-	 * @return bool
-	 */
-	protected function case1() {
-		$image = file_get_contents(__DIR__ . '/../../data/avatar-valid.jpg');
-		$dn = 'uid=alice,ou=Users,' . $this->base;
-		$username = 'alice1337';
-
-		$this->execFetchTest($dn, $username, $image);
-
-		return Server::get(IAvatarManager::class)->getAvatar($username)->exists();
-	}
-
-	/**
-	 * tests whether an image received from LDAP which is of an invalid file
-	 * type is dealt with properly (i.e. not set and not dying).
-	 *
-	 * @return bool
-	 */
-	protected function case2() {
-		// gif by Pmspinner from https://commons.wikimedia.org/wiki/File:Avatar2469_3.gif
-		$image = file_get_contents(__DIR__ . '/../../data/avatar-invalid.gif');
-		$dn = 'uid=boris,ou=Users,' . $this->base;
-		$username = 'boris7844';
-
-		$this->execFetchTest($dn, $username, $image);
-
-		return !Server::get(IAvatarManager::class)->getAvatar($username)->exists();
-	}
-
-	/**
-	 * This writes an image to the 'jpegPhoto' attribute on LDAP.
-	 *
-	 * @param string $dn
-	 * @param string $image An image read via file_get_contents
-	 * @throws \OC\ServerNotAvailableException
-	 */
-	private function setJpegPhotoAttribute($dn, $image) {
-		$changeSet = ['jpegphoto' => $image];
-		ldap_mod_add($this->connection->getConnectionResource(), $dn, $changeSet);
-	}
-
-	protected function initUserManager() {
-		$this->userManager = new Manager(
-			Server::get(IConfig::class),
-			Server::get(LoggerInterface::class),
-			Server::get(IAvatarManager::class),
-			new Image(),
-			Server::get(IDBConnection::class),
-			Server::get(IUserManager::class),
-			Server::get(\OCP\Notification\IManager::class)
-		);
-	}
-
-	/**
-	 * sets up the LDAP configuration to be used for the test
-	 */
-	protected function initConnection() {
-		parent::initConnection();
-		$this->connection->setConfiguration([
-			'ldapUserFilter' => 'objectclass=inetOrgPerson',
-			'ldapUserDisplayName' => 'displayName',
-			'ldapGroupDisplayName' => 'cn',
-			'ldapLoginFilter' => 'uid=%uid',
-		]);
-	}
+    /** @var UserMapping */
+    protected $mapping;
+
+    /**
+     * prepares the LDAP environment and sets up a test configuration for
+     * the LDAP backend.
+     */
+    public function init() {
+        require(__DIR__ . '/../../setup-scripts/createExplicitUsers.php');
+        parent::init();
+        $this->mapping = new UserMapping(Server::get(IDBConnection::class));
+        $this->mapping->clear();
+        $this->access->setUserMapper($this->mapping);
+        $userBackend = new User_LDAP($this->access, Server::get(\OCP\Notification\IManager::class), Server::get(UserPluginManager::class), Server::get(LoggerInterface::class), Server::get(DeletedUsersIndex::class));
+        Server::get(IUserManager::class)->registerBackend($userBackend);
+    }
+
+    /**
+     * A method that does the common steps of test cases 1 and 2. The evaluation
+     * is not happening here.
+     *
+     * @param string $dn
+     * @param string $username
+     * @param string $image
+     */
+    private function execFetchTest($dn, $username, $image) {
+        $this->setJpegPhotoAttribute($dn, $image);
+
+        // assigns our self-picked oc username to the dn
+        $this->mapping->map($dn, $username, 'fakeUUID-' . $username);
+
+        // initialize home folder and make sure that the user will update
+        // also remove an possibly existing avatar
+        \OC_Util::tearDownFS();
+        \OC_Util::setupFS($username);
+        \OC::$server->getUserFolder($username);
+        Server::get(IConfig::class)->deleteUserValue($username, 'user_ldap', User::USER_PREFKEY_LASTREFRESH);
+        if (Server::get(IAvatarManager::class)->getAvatar($username)->exists()) {
+            Server::get(IAvatarManager::class)->getAvatar($username)->remove();
+        }
+
+        // finally attempt to get the avatar set
+        $user = $this->userManager->get($dn);
+        $user->updateAvatar();
+    }
+
+    /**
+     * tests whether an avatar can be retrieved from LDAP and stored correctly
+     *
+     * @return bool
+     */
+    protected function case1() {
+        $image = file_get_contents(__DIR__ . '/../../data/avatar-valid.jpg');
+        $dn = 'uid=alice,ou=Users,' . $this->base;
+        $username = 'alice1337';
+
+        $this->execFetchTest($dn, $username, $image);
+
+        return Server::get(IAvatarManager::class)->getAvatar($username)->exists();
+    }
+
+    /**
+     * tests whether an image received from LDAP which is of an invalid file
+     * type is dealt with properly (i.e. not set and not dying).
+     *
+     * @return bool
+     */
+    protected function case2() {
+        // gif by Pmspinner from https://commons.wikimedia.org/wiki/File:Avatar2469_3.gif
+        $image = file_get_contents(__DIR__ . '/../../data/avatar-invalid.gif');
+        $dn = 'uid=boris,ou=Users,' . $this->base;
+        $username = 'boris7844';
+
+        $this->execFetchTest($dn, $username, $image);
+
+        return !Server::get(IAvatarManager::class)->getAvatar($username)->exists();
+    }
+
+    /**
+     * This writes an image to the 'jpegPhoto' attribute on LDAP.
+     *
+     * @param string $dn
+     * @param string $image An image read via file_get_contents
+     * @throws \OC\ServerNotAvailableException
+     */
+    private function setJpegPhotoAttribute($dn, $image) {
+        $changeSet = ['jpegphoto' => $image];
+        ldap_mod_add($this->connection->getConnectionResource(), $dn, $changeSet);
+    }
+
+    protected function initUserManager() {
+        $this->userManager = new Manager(
+            Server::get(IConfig::class),
+            Server::get(LoggerInterface::class),
+            Server::get(IAvatarManager::class),
+            new Image(),
+            Server::get(IDBConnection::class),
+            Server::get(IUserManager::class),
+            Server::get(\OCP\Notification\IManager::class)
+        );
+    }
+
+    /**
+     * sets up the LDAP configuration to be used for the test
+     */
+    protected function initConnection() {
+        parent::initConnection();
+        $this->connection->setConfiguration([
+            'ldapUserFilter' => 'objectclass=inetOrgPerson',
+            'ldapUserDisplayName' => 'displayName',
+            'ldapGroupDisplayName' => 'cn',
+            'ldapLoginFilter' => 'uid=%uid',
+        ]);
+    }
 }
 
 /** @var string $host */

Please login to merge, or discard this patch.

		@@ -24,223 +24,223 @@
		block discarded – undo
24	24	* @since 8.0.0
25	25	*/
26	26	interface IUserManager {
27		- /**
28		- * @since 26.0.0
29		- */
30		- public const MAX_PASSWORD_LENGTH = 469;
31		-
32		- /**
33		- * register a user backend
34		- *
35		- * @since 8.0.0
36		- * @return void
37		- */
38		- public function registerBackend(UserInterface $backend);
39		-
40		- /**
41		- * Get the active backends
42		- * @return UserInterface[]
43		- * @since 8.0.0
44		- */
45		- public function getBackends();
46		-
47		- /**
48		- * remove a user backend
49		- *
50		- * @since 8.0.0
51		- * @return void
52		- */
53		- public function removeBackend(UserInterface $backend);
54		-
55		- /**
56		- * remove all user backends
57		- * @since 8.0.0
58		- * @return void
59		- */
60		- public function clearBackends();
61		-
62		- /**
63		- * get a user by user id
64		- *
65		- * @param string $uid
66		- * @return \OCP\IUser\|null Either the user or null if the specified user does not exist
67		- * @since 8.0.0
68		- */
69		- public function get($uid);
70		-
71		- /**
72		- * Get the display name of a user
73		- *
74		- * @param string $uid
75		- * @return string\|null
76		- * @since 25.0.0
77		- */
78		- public function getDisplayName(string $uid): ?string;
79		-
80		- /**
81		- * check if a user exists
82		- *
83		- * @param string $uid
84		- * @return bool
85		- * @since 8.0.0
86		- */
87		- public function userExists($uid);
88		-
89		- /**
90		- * Check if the password is valid for the user
91		- *
92		- * @param string $loginName
93		- * @param string $password
94		- * @return IUser\|false the User object on success, false otherwise
95		- * @since 8.0.0
96		- */
97		- public function checkPassword($loginName, $password);
98		-
99		- /**
100		- * search by user id
101		- *
102		- * @param string $pattern
103		- * @param int $limit
104		- * @param int $offset
105		- * @return \OCP\IUser[]
106		- * @since 8.0.0
107		- */
108		- public function search($pattern, $limit = null, $offset = null);
109		-
110		- /**
111		- * search by displayName
112		- *
113		- * @param string $pattern
114		- * @param int $limit
115		- * @param int $offset
116		- * @return \OCP\IUser[]
117		- * @since 8.0.0
118		- */
119		- public function searchDisplayName($pattern, $limit = null, $offset = null);
120		-
121		- /**
122		- * @return IUser[]
123		- * @since 28.0.0
124		- * @since 30.0.0 $search parameter added
125		- */
126		- public function getDisabledUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
127		-
128		- /**
129		- * Search known users (from phonebook sync) by displayName
130		- *
131		- * @param string $searcher
132		- * @param string $pattern
133		- * @param int\|null $limit
134		- * @param int\|null $offset
135		- * @return IUser[]
136		- * @since 21.0.1
137		- */
138		- public function searchKnownUsersByDisplayName(string $searcher, string $pattern, ?int $limit = null, ?int $offset = null): array;
139		-
140		- /**
141		- * @param string $uid
142		- * @param string $password
143		- * @throws \InvalidArgumentException
144		- * @return false\|\OCP\IUser the created user or false
145		- * @since 8.0.0
146		- */
147		- public function createUser($uid, $password);
148		-
149		- /**
150		- * @param string $uid
151		- * @param string $password
152		- * @param UserInterface $backend
153		- * @return IUser\|null
154		- * @throws \InvalidArgumentException
155		- * @since 12.0.0
156		- */
157		- public function createUserFromBackend($uid, $password, UserInterface $backend);
158		-
159		- /**
160		- * Get how many users per backend exist (if supported by backend)
161		- *
162		- * @return array<string, int> an array of backend class name as key and count number as value
163		- * @since 8.0.0
164		- */
165		- public function countUsers();
166		-
167		- /**
168		- * Get how many users exists in total, whithin limit
169		- *
170		- * @param int $limit Limit the count to avoid resource waste. 0 to disable
171		- * @param bool $onlyMappedUsers Count mapped users instead of all users for compatible backends
172		- *
173		- * @since 31.0.0
174		- */
175		- public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int\|false;
176		-
177		- /**
178		- * @param \Closure $callback
179		- * @psalm-param \Closure(\OCP\IUser):void $callback
180		- * @param string $search
181		- * @since 9.0.0
182		- */
183		- public function callForAllUsers(\Closure $callback, $search = '');
184		-
185		- /**
186		- * returns how many users have logged in once
187		- *
188		- * @return int
189		- * @since 11.0.0
190		- */
191		- public function countDisabledUsers();
192		-
193		- /**
194		- * returns how many users have logged in once
195		- *
196		- * @return int
197		- * @since 11.0.0
198		- */
199		- public function countSeenUsers();
200		-
201		- /**
202		- * @param \Closure $callback
203		- * @psalm-param \Closure(\OCP\IUser):?bool $callback
204		- * @since 11.0.0
205		- */
206		- public function callForSeenUsers(\Closure $callback);
207		-
208		- /**
209		- * returns all users having the provided email set as system email address
210		- *
211		- * @param string $email
212		- * @return IUser[]
213		- * @since 9.1.0
214		- */
215		- public function getByEmail($email);
216		-
217		- /**
218		- * @param string $uid The user ID to validate
219		- * @param bool $checkDataDirectory Whether it should be checked if files for the ID exist inside the data directory
220		- * @throws \InvalidArgumentException Message is an already translated string with a reason why the ID is not valid
221		- * @since 26.0.0
222		- */
223		- public function validateUserId(string $uid, bool $checkDataDirectory = false): void;
224		-
225		- /**
226		- * Gets the list of users sorted by lastLogin, from most recent to least recent
227		- *
228		- * @param int\|null $limit how many records to fetch
229		- * @param int $offset from which offset to fetch
230		- * @param string $search search users based on search params
231		- * @return list<string> list of user IDs
232		- * @since 30.0.0
233		- */
234		- public function getLastLoggedInUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
235		-
236		- /**
237		- * Gets the list of users.
238		- * An iterator is returned allowing the caller to stop the iteration at any time.
239		- * The offset argument allows the caller to continue the iteration at a specific offset.
240		- *
241		- * @param int $offset from which offset to fetch
242		- * @return \Iterator<IUser> list of IUser object
243		- * @since 32.0.0
244		- */
245		- public function getSeenUsers(int $offset = 0): \Iterator;
	27	+ /**
	28	+ * @since 26.0.0
	29	+ */
	30	+ public const MAX_PASSWORD_LENGTH = 469;
	31	+
	32	+ /**
	33	+ * register a user backend
	34	+ *
	35	+ * @since 8.0.0
	36	+ * @return void
	37	+ */
	38	+ public function registerBackend(UserInterface $backend);
	39	+
	40	+ /**
	41	+ * Get the active backends
	42	+ * @return UserInterface[]
	43	+ * @since 8.0.0
	44	+ */
	45	+ public function getBackends();
	46	+
	47	+ /**
	48	+ * remove a user backend
	49	+ *
	50	+ * @since 8.0.0
	51	+ * @return void
	52	+ */
	53	+ public function removeBackend(UserInterface $backend);
	54	+
	55	+ /**
	56	+ * remove all user backends
	57	+ * @since 8.0.0
	58	+ * @return void
	59	+ */
	60	+ public function clearBackends();
	61	+
	62	+ /**
	63	+ * get a user by user id
	64	+ *
	65	+ * @param string $uid
	66	+ * @return \OCP\IUser\|null Either the user or null if the specified user does not exist
	67	+ * @since 8.0.0
	68	+ */
	69	+ public function get($uid);
	70	+
	71	+ /**
	72	+ * Get the display name of a user
	73	+ *
	74	+ * @param string $uid
	75	+ * @return string\|null
	76	+ * @since 25.0.0
	77	+ */
	78	+ public function getDisplayName(string $uid): ?string;
	79	+
	80	+ /**
	81	+ * check if a user exists
	82	+ *
	83	+ * @param string $uid
	84	+ * @return bool
	85	+ * @since 8.0.0
	86	+ */
	87	+ public function userExists($uid);
	88	+
	89	+ /**
	90	+ * Check if the password is valid for the user
	91	+ *
	92	+ * @param string $loginName
	93	+ * @param string $password
	94	+ * @return IUser\|false the User object on success, false otherwise
	95	+ * @since 8.0.0
	96	+ */
	97	+ public function checkPassword($loginName, $password);
	98	+
	99	+ /**
	100	+ * search by user id
	101	+ *
	102	+ * @param string $pattern
	103	+ * @param int $limit
	104	+ * @param int $offset
	105	+ * @return \OCP\IUser[]
	106	+ * @since 8.0.0
	107	+ */
	108	+ public function search($pattern, $limit = null, $offset = null);
	109	+
	110	+ /**
	111	+ * search by displayName
	112	+ *
	113	+ * @param string $pattern
	114	+ * @param int $limit
	115	+ * @param int $offset
	116	+ * @return \OCP\IUser[]
	117	+ * @since 8.0.0
	118	+ */
	119	+ public function searchDisplayName($pattern, $limit = null, $offset = null);
	120	+
	121	+ /**
	122	+ * @return IUser[]
	123	+ * @since 28.0.0
	124	+ * @since 30.0.0 $search parameter added
	125	+ */
	126	+ public function getDisabledUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
	127	+
	128	+ /**
	129	+ * Search known users (from phonebook sync) by displayName
	130	+ *
	131	+ * @param string $searcher
	132	+ * @param string $pattern
	133	+ * @param int\|null $limit
	134	+ * @param int\|null $offset
	135	+ * @return IUser[]
	136	+ * @since 21.0.1
	137	+ */
	138	+ public function searchKnownUsersByDisplayName(string $searcher, string $pattern, ?int $limit = null, ?int $offset = null): array;
	139	+
	140	+ /**
	141	+ * @param string $uid
	142	+ * @param string $password
	143	+ * @throws \InvalidArgumentException
	144	+ * @return false\|\OCP\IUser the created user or false
	145	+ * @since 8.0.0
	146	+ */
	147	+ public function createUser($uid, $password);
	148	+
	149	+ /**
	150	+ * @param string $uid
	151	+ * @param string $password
	152	+ * @param UserInterface $backend
	153	+ * @return IUser\|null
	154	+ * @throws \InvalidArgumentException
	155	+ * @since 12.0.0
	156	+ */
	157	+ public function createUserFromBackend($uid, $password, UserInterface $backend);
	158	+
	159	+ /**
	160	+ * Get how many users per backend exist (if supported by backend)
	161	+ *
	162	+ * @return array<string, int> an array of backend class name as key and count number as value
	163	+ * @since 8.0.0
	164	+ */
	165	+ public function countUsers();
	166	+
	167	+ /**
	168	+ * Get how many users exists in total, whithin limit
	169	+ *
	170	+ * @param int $limit Limit the count to avoid resource waste. 0 to disable
	171	+ * @param bool $onlyMappedUsers Count mapped users instead of all users for compatible backends
	172	+ *
	173	+ * @since 31.0.0
	174	+ */
	175	+ public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int\|false;
	176	+
	177	+ /**
	178	+ * @param \Closure $callback
	179	+ * @psalm-param \Closure(\OCP\IUser):void $callback
	180	+ * @param string $search
	181	+ * @since 9.0.0
	182	+ */
	183	+ public function callForAllUsers(\Closure $callback, $search = '');
	184	+
	185	+ /**
	186	+ * returns how many users have logged in once
	187	+ *
	188	+ * @return int
	189	+ * @since 11.0.0
	190	+ */
	191	+ public function countDisabledUsers();
	192	+
	193	+ /**
	194	+ * returns how many users have logged in once
	195	+ *
	196	+ * @return int
	197	+ * @since 11.0.0
	198	+ */
	199	+ public function countSeenUsers();
	200	+
	201	+ /**
	202	+ * @param \Closure $callback
	203	+ * @psalm-param \Closure(\OCP\IUser):?bool $callback
	204	+ * @since 11.0.0
	205	+ */
	206	+ public function callForSeenUsers(\Closure $callback);
	207	+
	208	+ /**
	209	+ * returns all users having the provided email set as system email address
	210	+ *
	211	+ * @param string $email
	212	+ * @return IUser[]
	213	+ * @since 9.1.0
	214	+ */
	215	+ public function getByEmail($email);
	216	+
	217	+ /**
	218	+ * @param string $uid The user ID to validate
	219	+ * @param bool $checkDataDirectory Whether it should be checked if files for the ID exist inside the data directory
	220	+ * @throws \InvalidArgumentException Message is an already translated string with a reason why the ID is not valid
	221	+ * @since 26.0.0
	222	+ */
	223	+ public function validateUserId(string $uid, bool $checkDataDirectory = false): void;
	224	+
	225	+ /**
	226	+ * Gets the list of users sorted by lastLogin, from most recent to least recent
	227	+ *
	228	+ * @param int\|null $limit how many records to fetch
	229	+ * @param int $offset from which offset to fetch
	230	+ * @param string $search search users based on search params
	231	+ * @return list<string> list of user IDs
	232	+ * @since 30.0.0
	233	+ */
	234	+ public function getLastLoggedInUsers(?int $limit = null, int $offset = 0, string $search = ''): array;
	235	+
	236	+ /**
	237	+ * Gets the list of users.
	238	+ * An iterator is returned allowing the caller to stop the iteration at any time.
	239	+ * The offset argument allows the caller to continue the iteration at a specific offset.
	240	+ *
	241	+ * @param int $offset from which offset to fetch
	242	+ * @return \Iterator<IUser> list of IUser object
	243	+ * @since 32.0.0
	244	+ */
	245	+ public function getSeenUsers(int $offset = 0): \Iterator;
246	246	}

		@@ -172,7 +172,7 @@
		block discarded – undo
172	172	*
173	173	* @since 31.0.0
174	174	*/
175		- public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int\|false;
	175	+ public function countUsersTotal(int $limit = 0, bool $onlyMappedUsers = false): int \| false;
176	176
177	177	/**
178	178	* @param \Closure $callback

		@@ -68,15 +68,15 @@ discard block
		block discarded – undo
68	68	case 'database':
69	69	case 'mysql':
70	70	case 'sqlite':
71		- Server::get(LoggerInterface::class)->debug('Adding user backend ' . $backend . '.', ['app' => 'core']);
	71	+ Server::get(LoggerInterface::class)->debug('Adding user backend '.$backend.'.', ['app' => 'core']);
72	72	Server::get(IUserManager::class)->registerBackend(new \OC\User\Database());
73	73	break;
74	74	case 'dummy':
75	75	Server::get(IUserManager::class)->registerBackend(new \Test\Util\User\Dummy());
76	76	break;
77	77	default:
78		- Server::get(LoggerInterface::class)->debug('Adding default user backend ' . $backend . '.', ['app' => 'core']);
79		- $className = 'OC_USER_' . strtoupper($backend);
	78	+ Server::get(LoggerInterface::class)->debug('Adding default user backend '.$backend.'.', ['app' => 'core']);
	79	+ $className = 'OC_USER_'.strtoupper($backend);
80	80	Server::get(IUserManager::class)->registerBackend(new $className());
81	81	break;
82	82	}
		@@ -119,10 +119,10 @@ discard block
		block discarded – undo
119	119	self::useBackend($backend);
120	120	self::$_setupedBackends[] = $i;
121	121	} else {
122		- Server::get(LoggerInterface::class)->debug('User backend ' . $class . ' already initialized.', ['app' => 'core']);
	122	+ Server::get(LoggerInterface::class)->debug('User backend '.$class.' already initialized.', ['app' => 'core']);
123	123	}
124	124	} else {
125		- Server::get(LoggerInterface::class)->error('User backend ' . $class . ' not found.', ['app' => 'core']);
	125	+ Server::get(LoggerInterface::class)->error('User backend '.$class.' not found.', ['app' => 'core']);
126	126	}
127	127	}
128	128	}
		@@ -175,7 +175,7 @@ discard block
		block discarded – undo
175	175	IToken::SCOPE_FILESYSTEM => true,
176	176	]);
177	177	$tokenProvider->updateToken($token);
178		- } catch (InvalidTokenException\|WipeTokenException\|SessionNotAvailableException) {
	178	+ } catch (InvalidTokenException \| WipeTokenException \| SessionNotAvailableException) {
179	179	// swallow the exceptions as we do not deal with them here
180	180	// simply skip updating the token when is it missing
181	181	}
		@@ -299,7 +299,7 @@ discard block
		block discarded – undo
299	299	}
300	300
301	301	$logoutUrl = $urlGenerator->linkToRoute('core.login.logout');
302		- $logoutUrl .= '?requesttoken=' . urlencode(\OCP\Util::callRegister());
	302	+ $logoutUrl .= '?requesttoken='.urlencode(\OCP\Util::callRegister());
303	303
304	304	return $logoutUrl;
305	305	}
		@@ -362,7 +362,7 @@ discard block
		block discarded – undo
362	362	if ($user) {
363	363	return $user->getHome();
364	364	} else {
365		- return \OC::$server->getSystemConfig()->getValue('datadirectory', OC::$SERVERROOT . '/data') . '/' . $uid;
	365	+ return \OC::$server->getSystemConfig()->getValue('datadirectory', OC::$SERVERROOT.'/data').'/'.$uid;
366	366	}
367	367	}
368	368

		@@ -22,82 +22,82 @@
		block discarded – undo
22	22	* Base class for sharing tests.
23	23	*/
24	24	abstract class TestCase extends \Test\TestCase {
25		- public const TEST_FILES_SHARING_API_USER1 = 'test-share-user1';
26		- public const TEST_FILES_SHARING_API_USER2 = 'test-share-user2';
27		-
28		- public static function setUpBeforeClass(): void {
29		- parent::setUpBeforeClass();
30		-
31		- // reset backend
32		- Server::get(IUserManager::class)->clearBackends();
33		- Server::get(IGroupManager::class)->clearBackends();
34		-
35		- // create users
36		- $backend = new \Test\Util\User\Dummy();
37		- Server::get(IUserManager::class)->registerBackend($backend);
38		- $backend->createUser(self::TEST_FILES_SHARING_API_USER1, self::TEST_FILES_SHARING_API_USER1);
39		- $backend->createUser(self::TEST_FILES_SHARING_API_USER2, self::TEST_FILES_SHARING_API_USER2);
40		- }
41		-
42		- protected function setUp(): void {
43		- parent::setUp();
44		-
45		- //login as user1
46		- self::loginHelper(self::TEST_FILES_SHARING_API_USER1);
47		- }
48		-
49		- public static function tearDownAfterClass(): void {
50		- // cleanup users
51		- $user = Server::get(IUserManager::class)->get(self::TEST_FILES_SHARING_API_USER1);
52		- if ($user !== null) {
53		- $user->delete();
54		- }
55		- $user = Server::get(IUserManager::class)->get(self::TEST_FILES_SHARING_API_USER2);
56		- if ($user !== null) {
57		- $user->delete();
58		- }
59		-
60		- \OC_Util::tearDownFS();
61		- \OC_User::setUserId('');
62		- Filesystem::tearDown();
63		-
64		- // reset backend
65		- Server::get(IUserManager::class)->clearBackends();
66		- Server::get(IUserManager::class)->registerBackend(new \OC\User\Database());
67		- Server::get(IGroupManager::class)->clearBackends();
68		- Server::get(IGroupManager::class)->addBackend(new Database());
69		-
70		- parent::tearDownAfterClass();
71		- }
72		-
73		- /**
74		- * @param string $user
75		- * @param bool $create
76		- * @param bool $password
77		- */
78		- protected static function loginHelper($user, $create = false, $password = false) {
79		- if ($password === false) {
80		- $password = $user;
81		- }
82		-
83		- if ($create) {
84		- $userManager = Server::get(IUserManager::class);
85		- $groupManager = Server::get(IGroupManager::class);
86		-
87		- $userObject = $userManager->createUser($user, $password);
88		- $group = $groupManager->createGroup('group');
89		-
90		- if ($group and $userObject) {
91		- $group->addUser($userObject);
92		- }
93		- }
94		-
95		- \OC_Util::tearDownFS();
96		- Server::get(IUserSession::class)->setUser(null);
97		- Filesystem::tearDown();
98		- Server::get(IUserSession::class)->login($user, $password);
99		- \OC::$server->getUserFolder($user);
100		-
101		- \OC_Util::setupFS($user);
102		- }
	25	+ public const TEST_FILES_SHARING_API_USER1 = 'test-share-user1';
	26	+ public const TEST_FILES_SHARING_API_USER2 = 'test-share-user2';
	27	+
	28	+ public static function setUpBeforeClass(): void {
	29	+ parent::setUpBeforeClass();
	30	+
	31	+ // reset backend
	32	+ Server::get(IUserManager::class)->clearBackends();
	33	+ Server::get(IGroupManager::class)->clearBackends();
	34	+
	35	+ // create users
	36	+ $backend = new \Test\Util\User\Dummy();
	37	+ Server::get(IUserManager::class)->registerBackend($backend);
	38	+ $backend->createUser(self::TEST_FILES_SHARING_API_USER1, self::TEST_FILES_SHARING_API_USER1);
	39	+ $backend->createUser(self::TEST_FILES_SHARING_API_USER2, self::TEST_FILES_SHARING_API_USER2);
	40	+ }
	41	+
	42	+ protected function setUp(): void {
	43	+ parent::setUp();
	44	+
	45	+ //login as user1
	46	+ self::loginHelper(self::TEST_FILES_SHARING_API_USER1);
	47	+ }
	48	+
	49	+ public static function tearDownAfterClass(): void {
	50	+ // cleanup users
	51	+ $user = Server::get(IUserManager::class)->get(self::TEST_FILES_SHARING_API_USER1);
	52	+ if ($user !== null) {
	53	+ $user->delete();
	54	+ }
	55	+ $user = Server::get(IUserManager::class)->get(self::TEST_FILES_SHARING_API_USER2);
	56	+ if ($user !== null) {
	57	+ $user->delete();
	58	+ }
	59	+
	60	+ \OC_Util::tearDownFS();
	61	+ \OC_User::setUserId('');
	62	+ Filesystem::tearDown();
	63	+
	64	+ // reset backend
	65	+ Server::get(IUserManager::class)->clearBackends();
	66	+ Server::get(IUserManager::class)->registerBackend(new \OC\User\Database());
	67	+ Server::get(IGroupManager::class)->clearBackends();
	68	+ Server::get(IGroupManager::class)->addBackend(new Database());
	69	+
	70	+ parent::tearDownAfterClass();
	71	+ }
	72	+
	73	+ /**
	74	+ * @param string $user
	75	+ * @param bool $create
	76	+ * @param bool $password
	77	+ */
	78	+ protected static function loginHelper($user, $create = false, $password = false) {
	79	+ if ($password === false) {
	80	+ $password = $user;
	81	+ }
	82	+
	83	+ if ($create) {
	84	+ $userManager = Server::get(IUserManager::class);
	85	+ $groupManager = Server::get(IGroupManager::class);
	86	+
	87	+ $userObject = $userManager->createUser($user, $password);
	88	+ $group = $groupManager->createGroup('group');
	89	+
	90	+ if ($group and $userObject) {
	91	+ $group->addUser($userObject);
	92	+ }
	93	+ }
	94	+
	95	+ \OC_Util::tearDownFS();
	96	+ Server::get(IUserSession::class)->setUser(null);
	97	+ Filesystem::tearDown();
	98	+ Server::get(IUserSession::class)->login($user, $password);
	99	+ \OC::$server->getUserFolder($user);
	100	+
	101	+ \OC_Util::setupFS($user);
	102	+ }
103	103	}

		@@ -44,108 +44,108 @@
		block discarded – undo
44	44	use Psr\Log\LoggerInterface;
45	45
46	46	class Application extends App implements IBootstrap {
47		- public function __construct() {
48		- parent::__construct('user_ldap');
49		- $container = $this->getContainer();
	47	+ public function __construct() {
	48	+ parent::__construct('user_ldap');
	49	+ $container = $this->getContainer();
50	50
51		- /**
52		- * Controller
53		- */
54		- $container->registerService('RenewPasswordController', function (IAppContainer $appContainer) {
55		- /** @var IServerContainer $server */
56		- $server = $appContainer->get(IServerContainer::class);
	51	+ /**
	52	+ * Controller
	53	+ */
	54	+ $container->registerService('RenewPasswordController', function (IAppContainer $appContainer) {
	55	+ /** @var IServerContainer $server */
	56	+ $server = $appContainer->get(IServerContainer::class);
57	57
58		- return new RenewPasswordController(
59		- $appContainer->get('AppName'),
60		- $server->getRequest(),
61		- $appContainer->get('UserManager'),
62		- $server->getConfig(),
63		- $appContainer->get(IL10N::class),
64		- $appContainer->get('Session'),
65		- $server->getURLGenerator()
66		- );
67		- });
	58	+ return new RenewPasswordController(
	59	+ $appContainer->get('AppName'),
	60	+ $server->getRequest(),
	61	+ $appContainer->get('UserManager'),
	62	+ $server->getConfig(),
	63	+ $appContainer->get(IL10N::class),
	64	+ $appContainer->get('Session'),
	65	+ $server->getURLGenerator()
	66	+ );
	67	+ });
68	68
69		- $container->registerService(ILDAPWrapper::class, function (IAppContainer $appContainer) {
70		- /** @var IServerContainer $server */
71		- $server = $appContainer->get(IServerContainer::class);
	69	+ $container->registerService(ILDAPWrapper::class, function (IAppContainer $appContainer) {
	70	+ /** @var IServerContainer $server */
	71	+ $server = $appContainer->get(IServerContainer::class);
72	72
73		- return new LDAP(
74		- $server->getConfig()->getSystemValueString('ldap_log_file')
75		- );
76		- });
77		- }
	73	+ return new LDAP(
	74	+ $server->getConfig()->getSystemValueString('ldap_log_file')
	75	+ );
	76	+ });
	77	+ }
78	78
79		- public function register(IRegistrationContext $context): void {
80		- $context->registerNotifierService(Notifier::class);
	79	+ public function register(IRegistrationContext $context): void {
	80	+ $context->registerNotifierService(Notifier::class);
81	81
82		- $context->registerService(
83		- Manager::class,
84		- function (ContainerInterface $c) {
85		- return new Manager(
86		- $c->get(IConfig::class),
87		- $c->get(LoggerInterface::class),
88		- $c->get(IAvatarManager::class),
89		- $c->get(Image::class),
90		- $c->get(IUserManager::class),
91		- $c->get(INotificationManager::class),
92		- $c->get(IShareManager::class),
93		- );
94		- },
95		- // the instance is specific to a lazy bound Access instance, thus cannot be shared.
96		- false
97		- );
98		- $context->registerEventListener(PostLoginEvent::class, LoginListener::class);
99		- $context->registerSetupCheck(LdapInvalidUuids::class);
100		- $context->registerSetupCheck(LdapConnection::class);
101		- }
	82	+ $context->registerService(
	83	+ Manager::class,
	84	+ function (ContainerInterface $c) {
	85	+ return new Manager(
	86	+ $c->get(IConfig::class),
	87	+ $c->get(LoggerInterface::class),
	88	+ $c->get(IAvatarManager::class),
	89	+ $c->get(Image::class),
	90	+ $c->get(IUserManager::class),
	91	+ $c->get(INotificationManager::class),
	92	+ $c->get(IShareManager::class),
	93	+ );
	94	+ },
	95	+ // the instance is specific to a lazy bound Access instance, thus cannot be shared.
	96	+ false
	97	+ );
	98	+ $context->registerEventListener(PostLoginEvent::class, LoginListener::class);
	99	+ $context->registerSetupCheck(LdapInvalidUuids::class);
	100	+ $context->registerSetupCheck(LdapConnection::class);
	101	+ }
102	102
103		- public function boot(IBootContext $context): void {
104		- $context->injectFn(function (
105		- INotificationManager $notificationManager,
106		- IAppContainer $appContainer,
107		- IEventDispatcher $dispatcher,
108		- IUserManager $userManager,
109		- IGroupManager $groupManager,
110		- User_Proxy $userBackend,
111		- Group_Proxy $groupBackend,
112		- Helper $helper,
113		- ): void {
114		- $configPrefixes = $helper->getServerConfigurationPrefixes(true);
115		- if (count($configPrefixes) > 0) {
116		- $userPluginManager = $appContainer->get(UserPluginManager::class);
117		- $groupPluginManager = $appContainer->get(GroupPluginManager::class);
	103	+ public function boot(IBootContext $context): void {
	104	+ $context->injectFn(function (
	105	+ INotificationManager $notificationManager,
	106	+ IAppContainer $appContainer,
	107	+ IEventDispatcher $dispatcher,
	108	+ IUserManager $userManager,
	109	+ IGroupManager $groupManager,
	110	+ User_Proxy $userBackend,
	111	+ Group_Proxy $groupBackend,
	112	+ Helper $helper,
	113	+ ): void {
	114	+ $configPrefixes = $helper->getServerConfigurationPrefixes(true);
	115	+ if (count($configPrefixes) > 0) {
	116	+ $userPluginManager = $appContainer->get(UserPluginManager::class);
	117	+ $groupPluginManager = $appContainer->get(GroupPluginManager::class);
118	118
119		- $userManager->registerBackend($userBackend);
120		- $groupManager->addBackend($groupBackend);
	119	+ $userManager->registerBackend($userBackend);
	120	+ $groupManager->addBackend($groupBackend);
121	121
122		- $userBackendRegisteredEvent = new UserBackendRegistered($userBackend, $userPluginManager);
123		- $dispatcher->dispatch('OCA\\User_LDAP\\User\\User::postLDAPBackendAdded', $userBackendRegisteredEvent);
124		- $dispatcher->dispatchTyped($userBackendRegisteredEvent);
125		- $groupBackendRegisteredEvent = new GroupBackendRegistered($groupBackend, $groupPluginManager);
126		- $dispatcher->dispatchTyped($groupBackendRegisteredEvent);
127		- }
128		- });
	122	+ $userBackendRegisteredEvent = new UserBackendRegistered($userBackend, $userPluginManager);
	123	+ $dispatcher->dispatch('OCA\\User_LDAP\\User\\User::postLDAPBackendAdded', $userBackendRegisteredEvent);
	124	+ $dispatcher->dispatchTyped($userBackendRegisteredEvent);
	125	+ $groupBackendRegisteredEvent = new GroupBackendRegistered($groupBackend, $groupPluginManager);
	126	+ $dispatcher->dispatchTyped($groupBackendRegisteredEvent);
	127	+ }
	128	+ });
129	129
130		- $context->injectFn(Closure::fromCallable([$this, 'registerBackendDependents']));
	130	+ $context->injectFn(Closure::fromCallable([$this, 'registerBackendDependents']));
131	131
132		- Util::connectHook(
133		- '\OCA\Files_Sharing\API\Server2Server',
134		- 'preLoginNameUsedAsUserName',
135		- '\OCA\User_LDAP\Helper',
136		- 'loginName2UserName'
137		- );
138		- }
	132	+ Util::connectHook(
	133	+ '\OCA\Files_Sharing\API\Server2Server',
	134	+ 'preLoginNameUsedAsUserName',
	135	+ '\OCA\User_LDAP\Helper',
	136	+ 'loginName2UserName'
	137	+ );
	138	+ }
139	139
140		- private function registerBackendDependents(IAppContainer $appContainer, IEventDispatcher $dispatcher): void {
141		- $dispatcher->addListener(
142		- 'OCA\\Files_External::loadAdditionalBackends',
143		- function () use ($appContainer): void {
144		- $storagesBackendService = $appContainer->get(BackendService::class);
145		- $storagesBackendService->registerConfigHandler('home', function () use ($appContainer) {
146		- return $appContainer->get(ExtStorageConfigHandler::class);
147		- });
148		- }
149		- );
150		- }
	140	+ private function registerBackendDependents(IAppContainer $appContainer, IEventDispatcher $dispatcher): void {
	141	+ $dispatcher->addListener(
	142	+ 'OCA\\Files_External::loadAdditionalBackends',
	143	+ function () use ($appContainer): void {
	144	+ $storagesBackendService = $appContainer->get(BackendService::class);
	145	+ $storagesBackendService->registerConfigHandler('home', function () use ($appContainer) {
	146	+ return $appContainer->get(ExtStorageConfigHandler::class);
	147	+ });
	148	+ }
	149	+ );
	150	+ }
151	151	}

		@@ -20,75 +20,75 @@
		block discarded – undo
20	20	require_once __DIR__ . '/../../Bootstrap.php';
21	21
22	22	class IntegrationTestUserDisplayName extends AbstractIntegrationTest {
23		- /** @var UserMapping */
24		- protected $mapping;
	23	+ /** @var UserMapping */
	24	+ protected $mapping;
25	25
26		- /**
27		- * prepares the LDAP environment and sets up a test configuration for
28		- * the LDAP backend.
29		- */
30		- public function init() {
31		- require(__DIR__ . '/../../setup-scripts/createExplicitUsers.php');
32		- parent::init();
33		- $this->mapping = new UserMapping(Server::get(IDBConnection::class));
34		- $this->mapping->clear();
35		- $this->access->setUserMapper($this->mapping);
36		- $userBackend = new User_LDAP($this->access, Server::get(\OCP\Notification\IManager::class), Server::get(UserPluginManager::class), Server::get(LoggerInterface::class), Server::get(DeletedUsersIndex::class));
37		- Server::get(IUserManager::class)->registerBackend($userBackend);
38		- }
	26	+ /**
	27	+ * prepares the LDAP environment and sets up a test configuration for
	28	+ * the LDAP backend.
	29	+ */
	30	+ public function init() {
	31	+ require(__DIR__ . '/../../setup-scripts/createExplicitUsers.php');
	32	+ parent::init();
	33	+ $this->mapping = new UserMapping(Server::get(IDBConnection::class));
	34	+ $this->mapping->clear();
	35	+ $this->access->setUserMapper($this->mapping);
	36	+ $userBackend = new User_LDAP($this->access, Server::get(\OCP\Notification\IManager::class), Server::get(UserPluginManager::class), Server::get(LoggerInterface::class), Server::get(DeletedUsersIndex::class));
	37	+ Server::get(IUserManager::class)->registerBackend($userBackend);
	38	+ }
39	39
40		- /**
41		- * adds a map entry for the user, so we know the username
42		- *
43		- * @param $dn
44		- * @param $username
45		- */
46		- private function prepareUser($dn, $username) {
47		- // assigns our self-picked oc username to the dn
48		- $this->mapping->map($dn, $username, 'fakeUUID-' . $username);
49		- }
	40	+ /**
	41	+ * adds a map entry for the user, so we know the username
	42	+ *
	43	+ * @param $dn
	44	+ * @param $username
	45	+ */
	46	+ private function prepareUser($dn, $username) {
	47	+ // assigns our self-picked oc username to the dn
	48	+ $this->mapping->map($dn, $username, 'fakeUUID-' . $username);
	49	+ }
50	50
51		- /**
52		- * tests whether a display name consisting of two parts is created correctly
53		- *
54		- * @return bool
55		- */
56		- protected function case1() {
57		- $username = 'alice1337';
58		- $dn = 'uid=alice,ou=Users,' . $this->base;
59		- $this->prepareUser($dn, $username);
60		- $displayName = Server::get(IUserManager::class)->get($username)->getDisplayName();
	51	+ /**
	52	+ * tests whether a display name consisting of two parts is created correctly
	53	+ *
	54	+ * @return bool
	55	+ */
	56	+ protected function case1() {
	57	+ $username = 'alice1337';
	58	+ $dn = 'uid=alice,ou=Users,' . $this->base;
	59	+ $this->prepareUser($dn, $username);
	60	+ $displayName = Server::get(IUserManager::class)->get($username)->getDisplayName();
61	61
62		- return str_contains($displayName, '([email protected])');
63		- }
	62	+ return str_contains($displayName, '([email protected])');
	63	+ }
64	64
65		- /**
66		- * tests whether a display name consisting of one part is created correctly
67		- *
68		- * @return bool
69		- */
70		- protected function case2() {
71		- $this->connection->setConfiguration([
72		- 'ldapUserDisplayName2' => '',
73		- ]);
74		- $username = 'boris23421';
75		- $dn = 'uid=boris,ou=Users,' . $this->base;
76		- $this->prepareUser($dn, $username);
77		- $displayName = Server::get(IUserManager::class)->get($username)->getDisplayName();
	65	+ /**
	66	+ * tests whether a display name consisting of one part is created correctly
	67	+ *
	68	+ * @return bool
	69	+ */
	70	+ protected function case2() {
	71	+ $this->connection->setConfiguration([
	72	+ 'ldapUserDisplayName2' => '',
	73	+ ]);
	74	+ $username = 'boris23421';
	75	+ $dn = 'uid=boris,ou=Users,' . $this->base;
	76	+ $this->prepareUser($dn, $username);
	77	+ $displayName = Server::get(IUserManager::class)->get($username)->getDisplayName();
78	78
79		- return !str_contains($displayName, '([email protected])');
80		- }
	79	+ return !str_contains($displayName, '([email protected])');
	80	+ }
81	81
82		- /**
83		- * sets up the LDAP configuration to be used for the test
84		- */
85		- protected function initConnection() {
86		- parent::initConnection();
87		- $this->connection->setConfiguration([
88		- 'ldapUserDisplayName' => 'displayName',
89		- 'ldapUserDisplayName2' => 'mail',
90		- ]);
91		- }
	82	+ /**
	83	+ * sets up the LDAP configuration to be used for the test
	84	+ */
	85	+ protected function initConnection() {
	86	+ parent::initConnection();
	87	+ $this->connection->setConfiguration([
	88	+ 'ldapUserDisplayName' => 'displayName',
	89	+ 'ldapUserDisplayName2' => 'mail',
	90	+ ]);
	91	+ }
92	92	}
93	93
94	94	/** @var string $host */

		@@ -25,120 +25,120 @@
		block discarded – undo
25	25	require_once __DIR__ . '/../../Bootstrap.php';
26	26
27	27	class IntegrationTestUserAvatar extends AbstractIntegrationTest {
28		- /** @var UserMapping */
29		- protected $mapping;
30		-
31		- /**
32		- * prepares the LDAP environment and sets up a test configuration for
33		- * the LDAP backend.
34		- */
35		- public function init() {
36		- require(__DIR__ . '/../../setup-scripts/createExplicitUsers.php');
37		- parent::init();
38		- $this->mapping = new UserMapping(Server::get(IDBConnection::class));
39		- $this->mapping->clear();
40		- $this->access->setUserMapper($this->mapping);
41		- $userBackend = new User_LDAP($this->access, Server::get(\OCP\Notification\IManager::class), Server::get(UserPluginManager::class), Server::get(LoggerInterface::class), Server::get(DeletedUsersIndex::class));
42		- Server::get(IUserManager::class)->registerBackend($userBackend);
43		- }
44		-
45		- /**
46		- * A method that does the common steps of test cases 1 and 2. The evaluation
47		- * is not happening here.
48		- *
49		- * @param string $dn
50		- * @param string $username
51		- * @param string $image
52		- */
53		- private function execFetchTest($dn, $username, $image) {
54		- $this->setJpegPhotoAttribute($dn, $image);
55		-
56		- // assigns our self-picked oc username to the dn
57		- $this->mapping->map($dn, $username, 'fakeUUID-' . $username);
58		-
59		- // initialize home folder and make sure that the user will update
60		- // also remove an possibly existing avatar
61		- \OC_Util::tearDownFS();
62		- \OC_Util::setupFS($username);
63		- \OC::$server->getUserFolder($username);
64		- Server::get(IConfig::class)->deleteUserValue($username, 'user_ldap', User::USER_PREFKEY_LASTREFRESH);
65		- if (Server::get(IAvatarManager::class)->getAvatar($username)->exists()) {
66		- Server::get(IAvatarManager::class)->getAvatar($username)->remove();
67		- }
68		-
69		- // finally attempt to get the avatar set
70		- $user = $this->userManager->get($dn);
71		- $user->updateAvatar();
72		- }
73		-
74		- /**
75		- * tests whether an avatar can be retrieved from LDAP and stored correctly
76		- *
77		- * @return bool
78		- */
79		- protected function case1() {
80		- $image = file_get_contents(__DIR__ . '/../../data/avatar-valid.jpg');
81		- $dn = 'uid=alice,ou=Users,' . $this->base;
82		- $username = 'alice1337';
83		-
84		- $this->execFetchTest($dn, $username, $image);
85		-
86		- return Server::get(IAvatarManager::class)->getAvatar($username)->exists();
87		- }
88		-
89		- /**
90		- * tests whether an image received from LDAP which is of an invalid file
91		- * type is dealt with properly (i.e. not set and not dying).
92		- *
93		- * @return bool
94		- */
95		- protected function case2() {
96		- // gif by Pmspinner from https://commons.wikimedia.org/wiki/File:Avatar2469_3.gif
97		- $image = file_get_contents(__DIR__ . '/../../data/avatar-invalid.gif');
98		- $dn = 'uid=boris,ou=Users,' . $this->base;
99		- $username = 'boris7844';
100		-
101		- $this->execFetchTest($dn, $username, $image);
102		-
103		- return !Server::get(IAvatarManager::class)->getAvatar($username)->exists();
104		- }
105		-
106		- /**
107		- * This writes an image to the 'jpegPhoto' attribute on LDAP.
108		- *
109		- * @param string $dn
110		- * @param string $image An image read via file_get_contents
111		- * @throws \OC\ServerNotAvailableException
112		- */
113		- private function setJpegPhotoAttribute($dn, $image) {
114		- $changeSet = ['jpegphoto' => $image];
115		- ldap_mod_add($this->connection->getConnectionResource(), $dn, $changeSet);
116		- }
117		-
118		- protected function initUserManager() {
119		- $this->userManager = new Manager(
120		- Server::get(IConfig::class),
121		- Server::get(LoggerInterface::class),
122		- Server::get(IAvatarManager::class),
123		- new Image(),
124		- Server::get(IDBConnection::class),
125		- Server::get(IUserManager::class),
126		- Server::get(\OCP\Notification\IManager::class)
127		- );
128		- }
129		-
130		- /**
131		- * sets up the LDAP configuration to be used for the test
132		- */
133		- protected function initConnection() {
134		- parent::initConnection();
135		- $this->connection->setConfiguration([
136		- 'ldapUserFilter' => 'objectclass=inetOrgPerson',
137		- 'ldapUserDisplayName' => 'displayName',
138		- 'ldapGroupDisplayName' => 'cn',
139		- 'ldapLoginFilter' => 'uid=%uid',
140		- ]);
141		- }
	28	+ /** @var UserMapping */
	29	+ protected $mapping;
	30	+
	31	+ /**
	32	+ * prepares the LDAP environment and sets up a test configuration for
	33	+ * the LDAP backend.
	34	+ */
	35	+ public function init() {
	36	+ require(__DIR__ . '/../../setup-scripts/createExplicitUsers.php');
	37	+ parent::init();
	38	+ $this->mapping = new UserMapping(Server::get(IDBConnection::class));
	39	+ $this->mapping->clear();
	40	+ $this->access->setUserMapper($this->mapping);
	41	+ $userBackend = new User_LDAP($this->access, Server::get(\OCP\Notification\IManager::class), Server::get(UserPluginManager::class), Server::get(LoggerInterface::class), Server::get(DeletedUsersIndex::class));
	42	+ Server::get(IUserManager::class)->registerBackend($userBackend);
	43	+ }
	44	+
	45	+ /**
	46	+ * A method that does the common steps of test cases 1 and 2. The evaluation
	47	+ * is not happening here.
	48	+ *
	49	+ * @param string $dn
	50	+ * @param string $username
	51	+ * @param string $image
	52	+ */
	53	+ private function execFetchTest($dn, $username, $image) {
	54	+ $this->setJpegPhotoAttribute($dn, $image);
	55	+
	56	+ // assigns our self-picked oc username to the dn
	57	+ $this->mapping->map($dn, $username, 'fakeUUID-' . $username);
	58	+
	59	+ // initialize home folder and make sure that the user will update
	60	+ // also remove an possibly existing avatar
	61	+ \OC_Util::tearDownFS();
	62	+ \OC_Util::setupFS($username);
	63	+ \OC::$server->getUserFolder($username);
	64	+ Server::get(IConfig::class)->deleteUserValue($username, 'user_ldap', User::USER_PREFKEY_LASTREFRESH);
	65	+ if (Server::get(IAvatarManager::class)->getAvatar($username)->exists()) {
	66	+ Server::get(IAvatarManager::class)->getAvatar($username)->remove();
	67	+ }
	68	+
	69	+ // finally attempt to get the avatar set
	70	+ $user = $this->userManager->get($dn);
	71	+ $user->updateAvatar();
	72	+ }
	73	+
	74	+ /**
	75	+ * tests whether an avatar can be retrieved from LDAP and stored correctly
	76	+ *
	77	+ * @return bool
	78	+ */
	79	+ protected function case1() {
	80	+ $image = file_get_contents(__DIR__ . '/../../data/avatar-valid.jpg');
	81	+ $dn = 'uid=alice,ou=Users,' . $this->base;
	82	+ $username = 'alice1337';
	83	+
	84	+ $this->execFetchTest($dn, $username, $image);
	85	+
	86	+ return Server::get(IAvatarManager::class)->getAvatar($username)->exists();
	87	+ }
	88	+
	89	+ /**
	90	+ * tests whether an image received from LDAP which is of an invalid file
	91	+ * type is dealt with properly (i.e. not set and not dying).
	92	+ *
	93	+ * @return bool
	94	+ */
	95	+ protected function case2() {
	96	+ // gif by Pmspinner from https://commons.wikimedia.org/wiki/File:Avatar2469_3.gif
	97	+ $image = file_get_contents(__DIR__ . '/../../data/avatar-invalid.gif');
	98	+ $dn = 'uid=boris,ou=Users,' . $this->base;
	99	+ $username = 'boris7844';
	100	+
	101	+ $this->execFetchTest($dn, $username, $image);
	102	+
	103	+ return !Server::get(IAvatarManager::class)->getAvatar($username)->exists();
	104	+ }
	105	+
	106	+ /**
	107	+ * This writes an image to the 'jpegPhoto' attribute on LDAP.
	108	+ *
	109	+ * @param string $dn
	110	+ * @param string $image An image read via file_get_contents
	111	+ * @throws \OC\ServerNotAvailableException
	112	+ */
	113	+ private function setJpegPhotoAttribute($dn, $image) {
	114	+ $changeSet = ['jpegphoto' => $image];
	115	+ ldap_mod_add($this->connection->getConnectionResource(), $dn, $changeSet);
	116	+ }
	117	+
	118	+ protected function initUserManager() {
	119	+ $this->userManager = new Manager(
	120	+ Server::get(IConfig::class),
	121	+ Server::get(LoggerInterface::class),
	122	+ Server::get(IAvatarManager::class),
	123	+ new Image(),
	124	+ Server::get(IDBConnection::class),
	125	+ Server::get(IUserManager::class),
	126	+ Server::get(\OCP\Notification\IManager::class)
	127	+ );
	128	+ }
	129	+
	130	+ /**
	131	+ * sets up the LDAP configuration to be used for the test
	132	+ */
	133	+ protected function initConnection() {
	134	+ parent::initConnection();
	135	+ $this->connection->setConfiguration([
	136	+ 'ldapUserFilter' => 'objectclass=inetOrgPerson',
	137	+ 'ldapUserDisplayName' => 'displayName',
	138	+ 'ldapGroupDisplayName' => 'cn',
	139	+ 'ldapLoginFilter' => 'uid=%uid',
	140	+ ]);
	141	+ }
142	142	}
143	143
144	144	/** @var string $host */

nextcloud / server

Push — master ( 96a8a7...696e16 )

Status

Category

Indentation +219 added lines, -219 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +362 added lines, -362 removed lines patch added patch discarded remove patch

Spacing +8 added lines, -8 removed lines patch added patch discarded remove patch

Indentation +771 added lines, -771 removed lines patch added patch discarded remove patch

Indentation +1136 added lines, -1136 removed lines patch added patch discarded remove patch

Indentation +661 added lines, -661 removed lines patch added patch discarded remove patch

Indentation +78 added lines, -78 removed lines patch added patch discarded remove patch

Indentation +92 added lines, -92 removed lines patch added patch discarded remove patch

Indentation +62 added lines, -62 removed lines patch added patch discarded remove patch

Indentation +114 added lines, -114 removed lines patch added patch discarded remove patch