Inspection of "Merge pull request #56773 from nextcloud/carl/remo..." - nextcloud/server - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 752d90...32327c )

unknown

created 2025-12-30 13:23 UTC

Status

Indentation +633 added lines, -633 removed lines patch added patch discarded remove patch

@@ -22,637 +22,637 @@
 block discarded – undo
  * @since 9.0.0
  */
 interface IShare {
-	/**
-	 * @since 17.0.0
-	 */
-	public const TYPE_USER = 0;
-
-	/**
-	 * @since 17.0.0
-	 */
-	public const TYPE_GROUP = 1;
-
-	/**
-	 * @internal
-	 * @since 18.0.0
-	 */
-	public const TYPE_USERGROUP = 2;
-
-	/**
-	 * @since 17.0.0
-	 */
-	public const TYPE_LINK = 3;
-
-	/**
-	 * @since 17.0.0
-	 */
-	public const TYPE_EMAIL = 4;
-
-	/**
-	 * ToDo Check if it is still in use otherwise remove it
-	 * @since 17.0.0
-	 */
-	// public const TYPE_CONTACT = 5;
-
-	/**
-	 * @since 17.0.0
-	 */
-	public const TYPE_REMOTE = 6;
-
-	/**
-	 * @since 17.0.0
-	 */
-	public const TYPE_CIRCLE = 7;
-
-	/**
-	 * @since 17.0.0
-	 */
-	public const TYPE_GUEST = 8;
-
-	/**
-	 * @since 17.0.0
-	 */
-	public const TYPE_REMOTE_GROUP = 9;
-
-	/**
-	 * @since 17.0.0
-	 */
-	public const TYPE_ROOM = 10;
-
-	/**
-	 * Internal type used by RoomShareProvider
-	 * @since 17.0.0
-	 */
-	// const TYPE_USERROOM = 11;
-
-	/**
-	 * @since 21.0.0
-	 */
-	public const TYPE_DECK = 12;
-
-	/**
-	 * @internal
-	 * @since 21.0.0
-	 */
-	public const TYPE_DECK_USER = 13;
-
-	/**
-	 * @since 26.0.0
-	 * @deprecated 33.0.0 The app is abandonned.
-	 */
-	public const TYPE_SCIENCEMESH = 15;
-
-	/**
-	 * @since 18.0.0
-	 */
-	public const STATUS_PENDING = 0;
-
-	/**
-	 * @since 18.0.0
-	 */
-	public const STATUS_ACCEPTED = 1;
-
-	/**
-	 * @since 18.0.0
-	 */
-	public const STATUS_REJECTED = 2;
-
-	/**
-	 * Set the internal id of the share
-	 * It is only allowed to set the internal id of a share once.
-	 * Attempts to override the internal id will result in an IllegalIDChangeException
-	 *
-	 * @param string $id
-	 * @return \OCP\Share\IShare
-	 * @throws IllegalIDChangeException
-	 * @throws \InvalidArgumentException
-	 * @since 9.1.0
-	 */
-	public function setId($id);
-
-	/**
-	 * Get the internal id of the share.
-	 *
-	 * @return string
-	 * @since 9.0.0
-	 */
-	public function getId();
-
-	/**
-	 * Get the full share id. This is the <providerid>:<internalid>.
-	 * The full id is unique in the system.
-	 *
-	 * @return string
-	 * @since 9.0.0
-	 * @throws \UnexpectedValueException If the fullId could not be constructed
-	 */
-	public function getFullId();
-
-	/**
-	 * Set the provider id of the share
-	 * It is only allowed to set the provider id of a share once.
-	 * Attempts to override the provider id will result in an IllegalIDChangeException
-	 *
-	 * @param string $id
-	 * @return \OCP\Share\IShare
-	 * @throws IllegalIDChangeException
-	 * @throws \InvalidArgumentException
-	 * @since 9.1.0
-	 */
-	public function setProviderId($id);
-
-	/**
-	 * Set the node of the file/folder that is shared
-	 *
-	 * @param Node $node
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setNode(Node $node);
-
-	/**
-	 * Get the node of the file/folder that is shared
-	 *
-	 * @return File|Folder
-	 * @since 9.0.0
-	 * @throws NotFoundException
-	 */
-	public function getNode();
-
-	/**
-	 * Set file id for lazy evaluation of the node
-	 * @param int $fileId
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setNodeId($fileId);
-
-	/**
-	 * Get the fileid of the node of this share
-	 * @return int
-	 * @since 9.0.0
-	 * @throws NotFoundException
-	 */
-	public function getNodeId(): int;
-
-	/**
-	 * Set the type of node (file/folder)
-	 *
-	 * @param string $type
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setNodeType($type);
-
-	/**
-	 * Get the type of node (file/folder)
-	 *
-	 * @return string
-	 * @since 9.0.0
-	 * @throws NotFoundException
-	 */
-	public function getNodeType();
-
-	/**
-	 * Set the shareType
-	 *
-	 * @param int $shareType
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setShareType($shareType);
-
-	/**
-	 * Get the shareType
-	 *
-	 * @return int
-	 * @since 9.0.0
-	 */
-	public function getShareType();
-
-	/**
-	 * Set the receiver of this share.
-	 *
-	 * @param string $sharedWith
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setSharedWith($sharedWith);
-
-	/**
-	 * Get the receiver of this share.
-	 *
-	 * @return string
-	 * @since 9.0.0
-	 */
-	public function getSharedWith();
-
-	/**
-	 * Set the display name of the receiver of this share.
-	 *
-	 * @param string $displayName
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 14.0.0
-	 */
-	public function setSharedWithDisplayName($displayName);
-
-	/**
-	 * Get the display name of the receiver of this share.
-	 *
-	 * @return string
-	 * @since 14.0.0
-	 */
-	public function getSharedWithDisplayName();
-
-	/**
-	 * Set the avatar of the receiver of this share.
-	 *
-	 * @param string $src
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 14.0.0
-	 */
-	public function setSharedWithAvatar($src);
-
-	/**
-	 * Get the avatar of the receiver of this share.
-	 *
-	 * @return string
-	 * @since 14.0.0
-	 */
-	public function getSharedWithAvatar();
-
-	/**
-	 * Set the permissions.
-	 * See \OCP\Constants::PERMISSION_*
-	 *
-	 * @param int $permissions
-	 * @return IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setPermissions($permissions);
-
-	/**
-	 * Get the share permissions
-	 * See \OCP\Constants::PERMISSION_*
-	 *
-	 * @return int
-	 * @since 9.0.0
-	 */
-	public function getPermissions();
-
-	/**
-	 * Create share attributes object
-	 *
-	 * @since 25.0.0
-	 * @return IAttributes
-	 */
-	public function newAttributes(): IAttributes;
-
-	/**
-	 * Set share attributes
-	 *
-	 * @param ?IAttributes $attributes
-	 * @since 25.0.0
-	 * @return IShare The modified object
-	 */
-	public function setAttributes(?IAttributes $attributes);
-
-	/**
-	 * Get share attributes
-	 *
-	 * @since 25.0.0
-	 * @return ?IAttributes
-	 */
-	public function getAttributes(): ?IAttributes;
-
-	/**
-	 * Set the accepted status
-	 * See self::STATUS_*
-	 *
-	 * @param int $status
-	 * @return IShare The modified object
-	 * @since 18.0.0
-	 */
-	public function setStatus(int $status): IShare;
-
-	/**
-	 * Get the accepted status
-	 * See self::STATUS_*
-	 *
-	 * @return int
-	 * @since 18.0.0
-	 */
-	public function getStatus(): int;
-
-	/**
-	 * Attach a note to a share
-	 *
-	 * @param string $note
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 14.0.0
-	 */
-	public function setNote($note);
-
-	/**
-	 * Get note attached to a share
-	 *
-	 * @return string
-	 * @since 14.0.0
-	 */
-	public function getNote();
-
-
-	/**
-	 * Set the expiration date
-	 *
-	 * @param \DateTime|null $expireDate
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setExpirationDate(?\DateTime $expireDate);
-
-	/**
-	 * Get the expiration date
-	 *
-	 * @return \DateTime|null
-	 * @since 9.0.0
-	 */
-	public function getExpirationDate();
-
-	/**
-	 * Set overwrite flag for falsy expiry date values
-	 *
-	 * @param bool $noExpirationDate
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 30.0.0
-	 */
-	public function setNoExpirationDate(bool $noExpirationDate);
-
-
-	/**
-	 * Get value of overwrite falsy expiry date flag
-	 *
-	 * @return bool
-	 * @since 30.0.0
-	 */
-	public function getNoExpirationDate();
-
-	/**
-	 * Is the share expired ?
-	 *
-	 * @return boolean
-	 * @since 18.0.0
-	 */
-	public function isExpired();
-
-	/**
-	 * set a label for a share, some shares, e.g. public links can have a label
-	 *
-	 * @param string $label
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 15.0.0
-	 */
-	public function setLabel($label);
-
-	/**
-	 * get label for the share, some shares, e.g. public links can have a label
-	 *
-	 * @return string
-	 * @since 15.0.0
-	 */
-	public function getLabel();
-
-	/**
-	 * Set the sharer of the path.
-	 *
-	 * @param string $sharedBy
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setSharedBy($sharedBy);
-
-	/**
-	 * Get share sharer
-	 *
-	 * @return string
-	 * @since 9.0.0
-	 */
-	public function getSharedBy();
-
-	/**
-	 * Set the original share owner (who owns the path that is shared)
-	 *
-	 * @param string $shareOwner
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setShareOwner($shareOwner);
-
-	/**
-	 * Get the original share owner (who owns the path that is shared)
-	 *
-	 * @return string
-	 * @since 9.0.0
-	 */
-	public function getShareOwner();
-
-	/**
-	 * Set the password for this share.
-	 * When the share is passed to the share manager to be created
-	 * or updated the password will be hashed.
-	 *
-	 * @param string|null $password
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setPassword($password);
-
-	/**
-	 * Get the password of this share.
-	 * If this share is obtained via a shareprovider the password is
-	 * hashed.
-	 *
-	 * @return string|null
-	 * @since 9.0.0
-	 */
-	public function getPassword();
-
-	/**
-	 * Set the password's expiration time of this share.
-	 *
-	 * @return self The modified object
-	 * @since 24.0.0
-	 */
-	public function setPasswordExpirationTime(?\DateTimeInterface $passwordExpirationTime = null): IShare;
-
-	/**
-	 * Get the password's expiration time of this share.
-	 * @since 24.0.0
-	 */
-	public function getPasswordExpirationTime(): ?\DateTimeInterface;
-
-	/**
-	 * Set if the recipient can start a conversation with the owner to get the
-	 * password using Nextcloud Talk.
-	 *
-	 * @param bool $sendPasswordByTalk
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 14.0.0
-	 */
-	public function setSendPasswordByTalk(bool $sendPasswordByTalk);
-
-	/**
-	 * Get if the recipient can start a conversation with the owner to get the
-	 * password using Nextcloud Talk.
-	 * The returned value does not take into account other factors, like Talk
-	 * being enabled for the owner of the share or not; it just cover whether
-	 * the option is enabled for the share itself or not.
-	 *
-	 * @return bool
-	 * @since 14.0.0
-	 */
-	public function getSendPasswordByTalk(): bool;
-
-	/**
-	 * Set the public link token.
-	 *
-	 * @param string $token
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setToken($token);
-
-	/**
-	 * Get the public link token.
-	 *
-	 * @return string
-	 * @since 9.0.0
-	 */
-	public function getToken();
-
-	/**
-	 * Set the parent of this share
-	 *
-	 * @since 9.0.0
-	 */
-	public function setParent(int $parent): self;
-
-	/**
-	 * Get the parent of this share.
-	 *
-	 * @since 9.0.0
-	 */
-	public function getParent(): ?int;
-
-	/**
-	 * Set the target path of this share relative to the recipients user folder.
-	 *
-	 * @param string $target
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setTarget($target);
-
-	/**
-	 * Get the target path of this share relative to the recipients user folder.
-	 *
-	 * @return string
-	 * @since 9.0.0
-	 */
-	public function getTarget();
-
-	/**
-	 * Set the time this share was created
-	 *
-	 * @param \DateTime $shareTime
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setShareTime(\DateTime $shareTime);
-
-	/**
-	 * Get the timestamp this share was created
-	 *
-	 * @return \DateTime
-	 * @since 9.0.0
-	 */
-	public function getShareTime();
-
-	/**
-	 * Set if the recipient should be informed by mail about the share.
-	 *
-	 * @param bool $mailSend
-	 * @return \OCP\Share\IShare The modified object
-	 * @since 9.0.0
-	 */
-	public function setMailSend($mailSend);
-
-	/**
-	 * Get if the recipient should be informed by mail about the share.
-	 *
-	 * @return bool
-	 * @since 9.0.0
-	 */
-	public function getMailSend();
-
-	/**
-	 * Set the cache entry for the shared node
-	 *
-	 * @param ICacheEntry $entry
-	 * @return void
-	 * @since 11.0.0
-	 */
-	public function setNodeCacheEntry(ICacheEntry $entry);
-
-	/**
-	 * Get the cache entry for the shared node
-	 *
-	 * @return null|ICacheEntry
-	 * @since 11.0.0
-	 */
-	public function getNodeCacheEntry();
-
-	/**
-	 * Sets a shares hide download state
-	 * This is mainly for public shares. It will signal that the share page should
-	 * hide download buttons etc.
-	 *
-	 * @param bool $hide
-	 * @return IShare
-	 * @since 15.0.0
-	 */
-	public function setHideDownload(bool $hide): IShare;
-
-	/**
-	 * Gets a shares hide download state
-	 * This is mainly for public shares. It will signal that the share page should
-	 * hide download buttons etc.
-	 *
-	 * @return bool
-	 * @since 15.0.0
-	 */
-	public function getHideDownload(): bool;
-
-	/**
-	 * Sets a flag that stores whether a reminder via email has been sent
-	 *
-	 * @return self The modified object
-	 * @since 31.0.0
-	 */
-	public function setReminderSent(bool $reminderSent): IShare;
-
-	/**
-	 * Gets a flag that stores whether a reminder via email has been sent
-	 *
-	 * @return bool
-	 * @since 31.0.0
-	 */
-	public function getReminderSent(): bool;
-
-	/**
-	 * Check if the current user can see this share files contents.
-	 * This will check the download permissions as well as the global
-	 * admin setting to allow viewing files without downloading.
-	 */
-	public function canSeeContent(): bool;
+    /**
+     * @since 17.0.0
+     */
+    public const TYPE_USER = 0;
+
+    /**
+     * @since 17.0.0
+     */
+    public const TYPE_GROUP = 1;
+
+    /**
+     * @internal
+     * @since 18.0.0
+     */
+    public const TYPE_USERGROUP = 2;
+
+    /**
+     * @since 17.0.0
+     */
+    public const TYPE_LINK = 3;
+
+    /**
+     * @since 17.0.0
+     */
+    public const TYPE_EMAIL = 4;
+
+    /**
+     * ToDo Check if it is still in use otherwise remove it
+     * @since 17.0.0
+     */
+    // public const TYPE_CONTACT = 5;
+
+    /**
+     * @since 17.0.0
+     */
+    public const TYPE_REMOTE = 6;
+
+    /**
+     * @since 17.0.0
+     */
+    public const TYPE_CIRCLE = 7;
+
+    /**
+     * @since 17.0.0
+     */
+    public const TYPE_GUEST = 8;
+
+    /**
+     * @since 17.0.0
+     */
+    public const TYPE_REMOTE_GROUP = 9;
+
+    /**
+     * @since 17.0.0
+     */
+    public const TYPE_ROOM = 10;
+
+    /**
+     * Internal type used by RoomShareProvider
+     * @since 17.0.0
+     */
+    // const TYPE_USERROOM = 11;
+
+    /**
+     * @since 21.0.0
+     */
+    public const TYPE_DECK = 12;
+
+    /**
+     * @internal
+     * @since 21.0.0
+     */
+    public const TYPE_DECK_USER = 13;
+
+    /**
+     * @since 26.0.0
+     * @deprecated 33.0.0 The app is abandonned.
+     */
+    public const TYPE_SCIENCEMESH = 15;
+
+    /**
+     * @since 18.0.0
+     */
+    public const STATUS_PENDING = 0;
+
+    /**
+     * @since 18.0.0
+     */
+    public const STATUS_ACCEPTED = 1;
+
+    /**
+     * @since 18.0.0
+     */
+    public const STATUS_REJECTED = 2;
+
+    /**
+     * Set the internal id of the share
+     * It is only allowed to set the internal id of a share once.
+     * Attempts to override the internal id will result in an IllegalIDChangeException
+     *
+     * @param string $id
+     * @return \OCP\Share\IShare
+     * @throws IllegalIDChangeException
+     * @throws \InvalidArgumentException
+     * @since 9.1.0
+     */
+    public function setId($id);
+
+    /**
+     * Get the internal id of the share.
+     *
+     * @return string
+     * @since 9.0.0
+     */
+    public function getId();
+
+    /**
+     * Get the full share id. This is the <providerid>:<internalid>.
+     * The full id is unique in the system.
+     *
+     * @return string
+     * @since 9.0.0
+     * @throws \UnexpectedValueException If the fullId could not be constructed
+     */
+    public function getFullId();
+
+    /**
+     * Set the provider id of the share
+     * It is only allowed to set the provider id of a share once.
+     * Attempts to override the provider id will result in an IllegalIDChangeException
+     *
+     * @param string $id
+     * @return \OCP\Share\IShare
+     * @throws IllegalIDChangeException
+     * @throws \InvalidArgumentException
+     * @since 9.1.0
+     */
+    public function setProviderId($id);
+
+    /**
+     * Set the node of the file/folder that is shared
+     *
+     * @param Node $node
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setNode(Node $node);
+
+    /**
+     * Get the node of the file/folder that is shared
+     *
+     * @return File|Folder
+     * @since 9.0.0
+     * @throws NotFoundException
+     */
+    public function getNode();
+
+    /**
+     * Set file id for lazy evaluation of the node
+     * @param int $fileId
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setNodeId($fileId);
+
+    /**
+     * Get the fileid of the node of this share
+     * @return int
+     * @since 9.0.0
+     * @throws NotFoundException
+     */
+    public function getNodeId(): int;
+
+    /**
+     * Set the type of node (file/folder)
+     *
+     * @param string $type
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setNodeType($type);
+
+    /**
+     * Get the type of node (file/folder)
+     *
+     * @return string
+     * @since 9.0.0
+     * @throws NotFoundException
+     */
+    public function getNodeType();
+
+    /**
+     * Set the shareType
+     *
+     * @param int $shareType
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setShareType($shareType);
+
+    /**
+     * Get the shareType
+     *
+     * @return int
+     * @since 9.0.0
+     */
+    public function getShareType();
+
+    /**
+     * Set the receiver of this share.
+     *
+     * @param string $sharedWith
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setSharedWith($sharedWith);
+
+    /**
+     * Get the receiver of this share.
+     *
+     * @return string
+     * @since 9.0.0
+     */
+    public function getSharedWith();
+
+    /**
+     * Set the display name of the receiver of this share.
+     *
+     * @param string $displayName
+     * @return \OCP\Share\IShare The modified object
+     * @since 14.0.0
+     */
+    public function setSharedWithDisplayName($displayName);
+
+    /**
+     * Get the display name of the receiver of this share.
+     *
+     * @return string
+     * @since 14.0.0
+     */
+    public function getSharedWithDisplayName();
+
+    /**
+     * Set the avatar of the receiver of this share.
+     *
+     * @param string $src
+     * @return \OCP\Share\IShare The modified object
+     * @since 14.0.0
+     */
+    public function setSharedWithAvatar($src);
+
+    /**
+     * Get the avatar of the receiver of this share.
+     *
+     * @return string
+     * @since 14.0.0
+     */
+    public function getSharedWithAvatar();
+
+    /**
+     * Set the permissions.
+     * See \OCP\Constants::PERMISSION_*
+     *
+     * @param int $permissions
+     * @return IShare The modified object
+     * @since 9.0.0
+     */
+    public function setPermissions($permissions);
+
+    /**
+     * Get the share permissions
+     * See \OCP\Constants::PERMISSION_*
+     *
+     * @return int
+     * @since 9.0.0
+     */
+    public function getPermissions();
+
+    /**
+     * Create share attributes object
+     *
+     * @since 25.0.0
+     * @return IAttributes
+     */
+    public function newAttributes(): IAttributes;
+
+    /**
+     * Set share attributes
+     *
+     * @param ?IAttributes $attributes
+     * @since 25.0.0
+     * @return IShare The modified object
+     */
+    public function setAttributes(?IAttributes $attributes);
+
+    /**
+     * Get share attributes
+     *
+     * @since 25.0.0
+     * @return ?IAttributes
+     */
+    public function getAttributes(): ?IAttributes;
+
+    /**
+     * Set the accepted status
+     * See self::STATUS_*
+     *
+     * @param int $status
+     * @return IShare The modified object
+     * @since 18.0.0
+     */
+    public function setStatus(int $status): IShare;
+
+    /**
+     * Get the accepted status
+     * See self::STATUS_*
+     *
+     * @return int
+     * @since 18.0.0
+     */
+    public function getStatus(): int;
+
+    /**
+     * Attach a note to a share
+     *
+     * @param string $note
+     * @return \OCP\Share\IShare The modified object
+     * @since 14.0.0
+     */
+    public function setNote($note);
+
+    /**
+     * Get note attached to a share
+     *
+     * @return string
+     * @since 14.0.0
+     */
+    public function getNote();
+
+
+    /**
+     * Set the expiration date
+     *
+     * @param \DateTime|null $expireDate
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setExpirationDate(?\DateTime $expireDate);
+
+    /**
+     * Get the expiration date
+     *
+     * @return \DateTime|null
+     * @since 9.0.0
+     */
+    public function getExpirationDate();
+
+    /**
+     * Set overwrite flag for falsy expiry date values
+     *
+     * @param bool $noExpirationDate
+     * @return \OCP\Share\IShare The modified object
+     * @since 30.0.0
+     */
+    public function setNoExpirationDate(bool $noExpirationDate);
+
+
+    /**
+     * Get value of overwrite falsy expiry date flag
+     *
+     * @return bool
+     * @since 30.0.0
+     */
+    public function getNoExpirationDate();
+
+    /**
+     * Is the share expired ?
+     *
+     * @return boolean
+     * @since 18.0.0
+     */
+    public function isExpired();
+
+    /**
+     * set a label for a share, some shares, e.g. public links can have a label
+     *
+     * @param string $label
+     * @return \OCP\Share\IShare The modified object
+     * @since 15.0.0
+     */
+    public function setLabel($label);
+
+    /**
+     * get label for the share, some shares, e.g. public links can have a label
+     *
+     * @return string
+     * @since 15.0.0
+     */
+    public function getLabel();
+
+    /**
+     * Set the sharer of the path.
+     *
+     * @param string $sharedBy
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setSharedBy($sharedBy);
+
+    /**
+     * Get share sharer
+     *
+     * @return string
+     * @since 9.0.0
+     */
+    public function getSharedBy();
+
+    /**
+     * Set the original share owner (who owns the path that is shared)
+     *
+     * @param string $shareOwner
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setShareOwner($shareOwner);
+
+    /**
+     * Get the original share owner (who owns the path that is shared)
+     *
+     * @return string
+     * @since 9.0.0
+     */
+    public function getShareOwner();
+
+    /**
+     * Set the password for this share.
+     * When the share is passed to the share manager to be created
+     * or updated the password will be hashed.
+     *
+     * @param string|null $password
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setPassword($password);
+
+    /**
+     * Get the password of this share.
+     * If this share is obtained via a shareprovider the password is
+     * hashed.
+     *
+     * @return string|null
+     * @since 9.0.0
+     */
+    public function getPassword();
+
+    /**
+     * Set the password's expiration time of this share.
+     *
+     * @return self The modified object
+     * @since 24.0.0
+     */
+    public function setPasswordExpirationTime(?\DateTimeInterface $passwordExpirationTime = null): IShare;
+
+    /**
+     * Get the password's expiration time of this share.
+     * @since 24.0.0
+     */
+    public function getPasswordExpirationTime(): ?\DateTimeInterface;
+
+    /**
+     * Set if the recipient can start a conversation with the owner to get the
+     * password using Nextcloud Talk.
+     *
+     * @param bool $sendPasswordByTalk
+     * @return \OCP\Share\IShare The modified object
+     * @since 14.0.0
+     */
+    public function setSendPasswordByTalk(bool $sendPasswordByTalk);
+
+    /**
+     * Get if the recipient can start a conversation with the owner to get the
+     * password using Nextcloud Talk.
+     * The returned value does not take into account other factors, like Talk
+     * being enabled for the owner of the share or not; it just cover whether
+     * the option is enabled for the share itself or not.
+     *
+     * @return bool
+     * @since 14.0.0
+     */
+    public function getSendPasswordByTalk(): bool;
+
+    /**
+     * Set the public link token.
+     *
+     * @param string $token
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setToken($token);
+
+    /**
+     * Get the public link token.
+     *
+     * @return string
+     * @since 9.0.0
+     */
+    public function getToken();
+
+    /**
+     * Set the parent of this share
+     *
+     * @since 9.0.0
+     */
+    public function setParent(int $parent): self;
+
+    /**
+     * Get the parent of this share.
+     *
+     * @since 9.0.0
+     */
+    public function getParent(): ?int;
+
+    /**
+     * Set the target path of this share relative to the recipients user folder.
+     *
+     * @param string $target
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setTarget($target);
+
+    /**
+     * Get the target path of this share relative to the recipients user folder.
+     *
+     * @return string
+     * @since 9.0.0
+     */
+    public function getTarget();
+
+    /**
+     * Set the time this share was created
+     *
+     * @param \DateTime $shareTime
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setShareTime(\DateTime $shareTime);
+
+    /**
+     * Get the timestamp this share was created
+     *
+     * @return \DateTime
+     * @since 9.0.0
+     */
+    public function getShareTime();
+
+    /**
+     * Set if the recipient should be informed by mail about the share.
+     *
+     * @param bool $mailSend
+     * @return \OCP\Share\IShare The modified object
+     * @since 9.0.0
+     */
+    public function setMailSend($mailSend);
+
+    /**
+     * Get if the recipient should be informed by mail about the share.
+     *
+     * @return bool
+     * @since 9.0.0
+     */
+    public function getMailSend();
+
+    /**
+     * Set the cache entry for the shared node
+     *
+     * @param ICacheEntry $entry
+     * @return void
+     * @since 11.0.0
+     */
+    public function setNodeCacheEntry(ICacheEntry $entry);
+
+    /**
+     * Get the cache entry for the shared node
+     *
+     * @return null|ICacheEntry
+     * @since 11.0.0
+     */
+    public function getNodeCacheEntry();
+
+    /**
+     * Sets a shares hide download state
+     * This is mainly for public shares. It will signal that the share page should
+     * hide download buttons etc.
+     *
+     * @param bool $hide
+     * @return IShare
+     * @since 15.0.0
+     */
+    public function setHideDownload(bool $hide): IShare;
+
+    /**
+     * Gets a shares hide download state
+     * This is mainly for public shares. It will signal that the share page should
+     * hide download buttons etc.
+     *
+     * @return bool
+     * @since 15.0.0
+     */
+    public function getHideDownload(): bool;
+
+    /**
+     * Sets a flag that stores whether a reminder via email has been sent
+     *
+     * @return self The modified object
+     * @since 31.0.0
+     */
+    public function setReminderSent(bool $reminderSent): IShare;
+
+    /**
+     * Gets a flag that stores whether a reminder via email has been sent
+     *
+     * @return bool
+     * @since 31.0.0
+     */
+    public function getReminderSent(): bool;
+
+    /**
+     * Check if the current user can see this share files contents.
+     * This will check the download permissions as well as the global
+     * admin setting to allow viewing files without downloading.
+     */
+    public function canSeeContent(): bool;
 }

Please login to merge, or discard this patch.

lib/private/Files/View.php 1 patch

Indentation +2227 added lines, -2227 removed lines patch added patch discarded remove patch

@@ -60,2231 +60,2231 @@
 block discarded – undo
  * @internal Since 33.0.0. use IRootFolder and the Folder/File/Node API instead in new code.
  */
 class View {
-	private string $fakeRoot = '';
-	private ILockingProvider $lockingProvider;
-	private bool $lockingEnabled;
-	private bool $updaterEnabled = true;
-	private UserManager $userManager;
-	private LoggerInterface $logger;
-
-	/**
-	 * @throws \Exception If $root contains an invalid path
-	 */
-	public function __construct(string $root = '') {
-		if (!Filesystem::isValidPath($root)) {
-			throw new \Exception();
-		}
-
-		$this->fakeRoot = $root;
-		$this->lockingProvider = \OC::$server->get(ILockingProvider::class);
-		$this->lockingEnabled = !($this->lockingProvider instanceof \OC\Lock\NoopLockingProvider);
-		$this->userManager = \OC::$server->getUserManager();
-		$this->logger = \OC::$server->get(LoggerInterface::class);
-	}
-
-	/**
-	 * @param ?string $path
-	 * @psalm-template S as string|null
-	 * @psalm-param S $path
-	 * @psalm-return (S is string ? string : null)
-	 */
-	public function getAbsolutePath($path = '/'): ?string {
-		if ($path === null) {
-			return null;
-		}
-		$this->assertPathLength($path);
-		return PathHelper::normalizePath($this->fakeRoot . '/' . $path);
-	}
-
-	/**
-	 * Change the root to a fake root
-	 *
-	 * @param string $fakeRoot
-	 */
-	public function chroot($fakeRoot): void {
-		if (!$fakeRoot == '') {
-			if ($fakeRoot[0] !== '/') {
-				$fakeRoot = '/' . $fakeRoot;
-			}
-		}
-		$this->fakeRoot = $fakeRoot;
-	}
-
-	/**
-	 * Get the fake root
-	 */
-	public function getRoot(): string {
-		return $this->fakeRoot;
-	}
-
-	/**
-	 * get path relative to the root of the view
-	 *
-	 * @param string $path
-	 */
-	public function getRelativePath($path): ?string {
-		$this->assertPathLength($path);
-		if ($this->fakeRoot == '') {
-			return $path;
-		}
-
-		if (rtrim($path, '/') === rtrim($this->fakeRoot, '/')) {
-			return '/';
-		}
-
-		// missing slashes can cause wrong matches!
-		$root = rtrim($this->fakeRoot, '/') . '/';
-
-		if (!str_starts_with($path, $root)) {
-			return null;
-		} else {
-			$path = substr($path, strlen($this->fakeRoot));
-			if (strlen($path) === 0) {
-				return '/';
-			} else {
-				return $path;
-			}
-		}
-	}
-
-	/**
-	 * Get the mountpoint of the storage object for a path
-	 * ( note: because a storage is not always mounted inside the fakeroot, the
-	 * returned mountpoint is relative to the absolute root of the filesystem
-	 * and does not take the chroot into account )
-	 *
-	 * @param string $path
-	 */
-	public function getMountPoint($path): string {
-		return Filesystem::getMountPoint($this->getAbsolutePath($path));
-	}
-
-	/**
-	 * Get the mountpoint of the storage object for a path
-	 * ( note: because a storage is not always mounted inside the fakeroot, the
-	 * returned mountpoint is relative to the absolute root of the filesystem
-	 * and does not take the chroot into account )
-	 *
-	 * @param string $path
-	 */
-	public function getMount($path): IMountPoint {
-		return Filesystem::getMountManager()->find($this->getAbsolutePath($path));
-	}
-
-	/**
-	 * Resolve a path to a storage and internal path
-	 *
-	 * @param string $path
-	 * @return array{?\OCP\Files\Storage\IStorage, string} an array consisting of the storage and the internal path
-	 */
-	public function resolvePath($path): array {
-		$a = $this->getAbsolutePath($path);
-		$p = Filesystem::normalizePath($a);
-		return Filesystem::resolvePath($p);
-	}
-
-	/**
-	 * Return the path to a local version of the file
-	 * we need this because we can't know if a file is stored local or not from
-	 * outside the filestorage and for some purposes a local file is needed
-	 *
-	 * @param string $path
-	 */
-	public function getLocalFile($path): string|false {
-		$parent = substr($path, 0, strrpos($path, '/') ?: 0);
-		$path = $this->getAbsolutePath($path);
-		[$storage, $internalPath] = Filesystem::resolvePath($path);
-		if (Filesystem::isValidPath($parent) && $storage) {
-			return $storage->getLocalFile($internalPath);
-		} else {
-			return false;
-		}
-	}
-
-	/**
-	 * the following functions operate with arguments and return values identical
-	 * to those of their PHP built-in equivalents. Mostly they are merely wrappers
-	 * for \OC\Files\Storage\Storage via basicOperation().
-	 */
-	public function mkdir($path) {
-		return $this->basicOperation('mkdir', $path, ['create', 'write']);
-	}
-
-	/**
-	 * remove mount point
-	 *
-	 * @param IMountPoint $mount
-	 * @param string $path relative to data/
-	 */
-	protected function removeMount($mount, $path): bool {
-		if ($mount instanceof MoveableMount) {
-			// cut of /user/files to get the relative path to data/user/files
-			$pathParts = explode('/', $path, 4);
-			$relPath = '/' . $pathParts[3];
-			$this->lockFile($relPath, ILockingProvider::LOCK_SHARED, true);
-			\OC_Hook::emit(
-				Filesystem::CLASSNAME, 'umount',
-				[Filesystem::signal_param_path => $relPath]
-			);
-			$this->changeLock($relPath, ILockingProvider::LOCK_EXCLUSIVE, true);
-			$result = $mount->removeMount();
-			$this->changeLock($relPath, ILockingProvider::LOCK_SHARED, true);
-			if ($result) {
-				\OC_Hook::emit(
-					Filesystem::CLASSNAME, 'post_umount',
-					[Filesystem::signal_param_path => $relPath]
-				);
-			}
-			$this->unlockFile($relPath, ILockingProvider::LOCK_SHARED, true);
-			return $result;
-		} else {
-			// do not allow deleting the storage's root / the mount point
-			// because for some storages it might delete the whole contents
-			// but isn't supposed to work that way
-			return false;
-		}
-	}
-
-	public function disableCacheUpdate(): void {
-		$this->updaterEnabled = false;
-	}
-
-	public function enableCacheUpdate(): void {
-		$this->updaterEnabled = true;
-	}
-
-	protected function writeUpdate(Storage $storage, string $internalPath, ?int $time = null, ?int $sizeDifference = null): void {
-		if ($this->updaterEnabled) {
-			if (is_null($time)) {
-				$time = time();
-			}
-			$storage->getUpdater()->update($internalPath, $time, $sizeDifference);
-		}
-	}
-
-	protected function removeUpdate(Storage $storage, string $internalPath): void {
-		if ($this->updaterEnabled) {
-			$storage->getUpdater()->remove($internalPath);
-		}
-	}
-
-	protected function renameUpdate(Storage $sourceStorage, Storage $targetStorage, string $sourceInternalPath, string $targetInternalPath): void {
-		if ($this->updaterEnabled) {
-			$targetStorage->getUpdater()->renameFromStorage($sourceStorage, $sourceInternalPath, $targetInternalPath);
-		}
-	}
-
-	protected function copyUpdate(Storage $sourceStorage, Storage $targetStorage, string $sourceInternalPath, string $targetInternalPath): void {
-		if ($this->updaterEnabled) {
-			$targetStorage->getUpdater()->copyFromStorage($sourceStorage, $sourceInternalPath, $targetInternalPath);
-		}
-	}
-
-	/**
-	 * @param string $path
-	 * @return bool|mixed
-	 */
-	public function rmdir($path) {
-		$absolutePath = $this->getAbsolutePath($path);
-		$mount = Filesystem::getMountManager()->find($absolutePath);
-		if ($mount->getInternalPath($absolutePath) === '') {
-			return $this->removeMount($mount, $absolutePath);
-		}
-		if ($this->is_dir($path)) {
-			$result = $this->basicOperation('rmdir', $path, ['delete']);
-		} else {
-			$result = false;
-		}
-
-		if (!$result && !$this->file_exists($path)) { //clear ghost files from the cache on delete
-			$storage = $mount->getStorage();
-			$internalPath = $mount->getInternalPath($absolutePath);
-			$storage->getUpdater()->remove($internalPath);
-		}
-		return $result;
-	}
-
-	/**
-	 * @param string $path
-	 * @return resource|false
-	 */
-	public function opendir($path) {
-		return $this->basicOperation('opendir', $path, ['read']);
-	}
-
-	/**
-	 * @param string $path
-	 * @return bool|mixed
-	 */
-	public function is_dir($path) {
-		if ($path == '/') {
-			return true;
-		}
-		return $this->basicOperation('is_dir', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return bool|mixed
-	 */
-	public function is_file($path) {
-		if ($path == '/') {
-			return false;
-		}
-		return $this->basicOperation('is_file', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return mixed
-	 */
-	public function stat($path) {
-		return $this->basicOperation('stat', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return mixed
-	 */
-	public function filetype($path) {
-		return $this->basicOperation('filetype', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return mixed
-	 */
-	public function filesize(string $path) {
-		return $this->basicOperation('filesize', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return bool|mixed
-	 * @throws InvalidPathException
-	 */
-	public function readfile($path) {
-		$this->assertPathLength($path);
-		if (ob_get_level()) {
-			ob_end_clean();
-		}
-		$handle = $this->fopen($path, 'rb');
-		if ($handle) {
-			$chunkSize = 524288; // 512 kiB chunks
-			while (!feof($handle)) {
-				echo fread($handle, $chunkSize);
-				flush();
-				$this->checkConnectionStatus();
-			}
-			fclose($handle);
-			return $this->filesize($path);
-		}
-		return false;
-	}
-
-	/**
-	 * @param string $path
-	 * @param int $from
-	 * @param int $to
-	 * @return bool|mixed
-	 * @throws InvalidPathException
-	 * @throws \OCP\Files\UnseekableException
-	 */
-	public function readfilePart($path, $from, $to) {
-		$this->assertPathLength($path);
-		if (ob_get_level()) {
-			ob_end_clean();
-		}
-		$handle = $this->fopen($path, 'rb');
-		if ($handle) {
-			$chunkSize = 524288; // 512 kiB chunks
-			$startReading = true;
-
-			if ($from !== 0 && $from !== '0' && fseek($handle, $from) !== 0) {
-				// forward file handle via chunked fread because fseek seem to have failed
-
-				$end = $from + 1;
-				while (!feof($handle) && ftell($handle) < $end && ftell($handle) !== $from) {
-					$len = $from - ftell($handle);
-					if ($len > $chunkSize) {
-						$len = $chunkSize;
-					}
-					$result = fread($handle, $len);
-
-					if ($result === false) {
-						$startReading = false;
-						break;
-					}
-				}
-			}
-
-			if ($startReading) {
-				$end = $to + 1;
-				while (!feof($handle) && ftell($handle) < $end) {
-					$len = $end - ftell($handle);
-					if ($len > $chunkSize) {
-						$len = $chunkSize;
-					}
-					echo fread($handle, $len);
-					flush();
-					$this->checkConnectionStatus();
-				}
-				return ftell($handle) - $from;
-			}
-
-			throw new \OCP\Files\UnseekableException('fseek error');
-		}
-		return false;
-	}
-
-	private function checkConnectionStatus(): void {
-		$connectionStatus = \connection_status();
-		if ($connectionStatus !== CONNECTION_NORMAL) {
-			throw new ConnectionLostException("Connection lost. Status: $connectionStatus");
-		}
-	}
-
-	/**
-	 * @param string $path
-	 * @return mixed
-	 */
-	public function isCreatable($path) {
-		return $this->basicOperation('isCreatable', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return mixed
-	 */
-	public function isReadable($path) {
-		return $this->basicOperation('isReadable', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return mixed
-	 */
-	public function isUpdatable($path) {
-		return $this->basicOperation('isUpdatable', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return bool|mixed
-	 */
-	public function isDeletable($path) {
-		$absolutePath = $this->getAbsolutePath($path);
-		$mount = Filesystem::getMountManager()->find($absolutePath);
-		if ($mount->getInternalPath($absolutePath) === '') {
-			return $mount instanceof MoveableMount;
-		}
-		return $this->basicOperation('isDeletable', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return mixed
-	 */
-	public function isSharable($path) {
-		return $this->basicOperation('isSharable', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return bool|mixed
-	 */
-	public function file_exists($path) {
-		if ($path == '/') {
-			return true;
-		}
-		return $this->basicOperation('file_exists', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @return mixed
-	 */
-	public function filemtime($path) {
-		return $this->basicOperation('filemtime', $path);
-	}
-
-	/**
-	 * @param string $path
-	 * @param int|string $mtime
-	 */
-	public function touch($path, $mtime = null): bool {
-		if (!is_null($mtime) && !is_numeric($mtime)) {
-			$mtime = strtotime($mtime);
-		}
-
-		$hooks = ['touch'];
-
-		if (!$this->file_exists($path)) {
-			$hooks[] = 'create';
-			$hooks[] = 'write';
-		}
-		try {
-			$result = $this->basicOperation('touch', $path, $hooks, $mtime);
-		} catch (\Exception $e) {
-			$this->logger->info('Error while setting modified time', ['app' => 'core', 'exception' => $e]);
-			$result = false;
-		}
-		if (!$result) {
-			// If create file fails because of permissions on external storage like SMB folders,
-			// check file exists and return false if not.
-			if (!$this->file_exists($path)) {
-				return false;
-			}
-			if (is_null($mtime)) {
-				$mtime = time();
-			}
-			//if native touch fails, we emulate it by changing the mtime in the cache
-			$this->putFileInfo($path, ['mtime' => floor($mtime)]);
-		}
-		return true;
-	}
-
-	/**
-	 * @param string $path
-	 * @return string|false
-	 * @throws LockedException
-	 */
-	public function file_get_contents($path) {
-		return $this->basicOperation('file_get_contents', $path, ['read']);
-	}
-
-	protected function emit_file_hooks_pre(bool $exists, string $path, bool &$run): void {
-		if (!$exists) {
-			\OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_create, [
-				Filesystem::signal_param_path => $this->getHookPath($path),
-				Filesystem::signal_param_run => &$run,
-			]);
-		} else {
-			\OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_update, [
-				Filesystem::signal_param_path => $this->getHookPath($path),
-				Filesystem::signal_param_run => &$run,
-			]);
-		}
-		\OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_write, [
-			Filesystem::signal_param_path => $this->getHookPath($path),
-			Filesystem::signal_param_run => &$run,
-		]);
-	}
-
-	protected function emit_file_hooks_post(bool $exists, string $path): void {
-		if (!$exists) {
-			\OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_post_create, [
-				Filesystem::signal_param_path => $this->getHookPath($path),
-			]);
-		} else {
-			\OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_post_update, [
-				Filesystem::signal_param_path => $this->getHookPath($path),
-			]);
-		}
-		\OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_post_write, [
-			Filesystem::signal_param_path => $this->getHookPath($path),
-		]);
-	}
-
-	/**
-	 * @param string $path
-	 * @param string|resource $data
-	 * @return bool|mixed
-	 * @throws LockedException
-	 */
-	public function file_put_contents($path, $data) {
-		if (is_resource($data)) { //not having to deal with streams in file_put_contents makes life easier
-			$absolutePath = Filesystem::normalizePath($this->getAbsolutePath($path));
-			if (Filesystem::isValidPath($path)
-				&& !Filesystem::isFileBlacklisted($path)
-			) {
-				$path = $this->getRelativePath($absolutePath);
-				if ($path === null) {
-					throw new InvalidPathException("Path $absolutePath is not in the expected root");
-				}
-
-				$this->lockFile($path, ILockingProvider::LOCK_SHARED);
-
-				$exists = $this->file_exists($path);
-				if ($this->shouldEmitHooks($path)) {
-					$run = true;
-					$this->emit_file_hooks_pre($exists, $path, $run);
-					if (!$run) {
-						$this->unlockFile($path, ILockingProvider::LOCK_SHARED);
-						return false;
-					}
-				}
-
-				try {
-					$this->changeLock($path, ILockingProvider::LOCK_EXCLUSIVE);
-				} catch (\Exception $e) {
-					// Release the shared lock before throwing.
-					$this->unlockFile($path, ILockingProvider::LOCK_SHARED);
-					throw $e;
-				}
-
-				/** @var Storage $storage */
-				[$storage, $internalPath] = $this->resolvePath($path);
-				$target = $storage->fopen($internalPath, 'w');
-				if ($target) {
-					[, $result] = Files::streamCopy($data, $target, true);
-					fclose($target);
-					fclose($data);
-
-					$this->writeUpdate($storage, $internalPath);
-
-					$this->changeLock($path, ILockingProvider::LOCK_SHARED);
-
-					if ($this->shouldEmitHooks($path) && $result !== false) {
-						$this->emit_file_hooks_post($exists, $path);
-					}
-					$this->unlockFile($path, ILockingProvider::LOCK_SHARED);
-					return $result;
-				} else {
-					$this->unlockFile($path, ILockingProvider::LOCK_EXCLUSIVE);
-					return false;
-				}
-			} else {
-				return false;
-			}
-		} else {
-			$hooks = $this->file_exists($path) ? ['update', 'write'] : ['create', 'write'];
-			return $this->basicOperation('file_put_contents', $path, $hooks, $data);
-		}
-	}
-
-	/**
-	 * @param string $path
-	 * @return bool|mixed
-	 */
-	public function unlink($path) {
-		if ($path === '' || $path === '/') {
-			// do not allow deleting the root
-			return false;
-		}
-		$postFix = (substr($path, -1) === '/') ? '/' : '';
-		$absolutePath = Filesystem::normalizePath($this->getAbsolutePath($path));
-		$mount = Filesystem::getMountManager()->find($absolutePath . $postFix);
-		if ($mount->getInternalPath($absolutePath) === '') {
-			return $this->removeMount($mount, $absolutePath);
-		}
-		if ($this->is_dir($path)) {
-			$result = $this->basicOperation('rmdir', $path, ['delete']);
-		} else {
-			$result = $this->basicOperation('unlink', $path, ['delete']);
-		}
-		if (!$result && !$this->file_exists($path)) { //clear ghost files from the cache on delete
-			$storage = $mount->getStorage();
-			$internalPath = $mount->getInternalPath($absolutePath);
-			$storage->getUpdater()->remove($internalPath);
-			return true;
-		} else {
-			return $result;
-		}
-	}
-
-	/**
-	 * @param string $directory
-	 * @return bool|mixed
-	 */
-	public function deleteAll($directory) {
-		return $this->rmdir($directory);
-	}
-
-	/**
-	 * Rename/move a file or folder from the source path to target path.
-	 *
-	 * @param string $source source path
-	 * @param string $target target path
-	 * @param array $options
-	 *
-	 * @return bool|mixed
-	 * @throws LockedException
-	 */
-	public function rename($source, $target, array $options = []) {
-		$checkSubMounts = $options['checkSubMounts'] ?? true;
-
-		$absolutePath1 = Filesystem::normalizePath($this->getAbsolutePath($source));
-		$absolutePath2 = Filesystem::normalizePath($this->getAbsolutePath($target));
-
-		if (str_starts_with($absolutePath2, $absolutePath1 . '/')) {
-			throw new ForbiddenException('Moving a folder into a child folder is forbidden', false);
-		}
-
-		/** @var IMountManager $mountManager */
-		$mountManager = \OC::$server->get(IMountManager::class);
-
-		$targetParts = explode('/', $absolutePath2);
-		$targetUser = $targetParts[1] ?? null;
-		$result = false;
-		if (
-			Filesystem::isValidPath($target)
-			&& Filesystem::isValidPath($source)
-			&& !Filesystem::isFileBlacklisted($target)
-		) {
-			$source = $this->getRelativePath($absolutePath1);
-			$target = $this->getRelativePath($absolutePath2);
-			$exists = $this->file_exists($target);
-
-			if ($source == null || $target == null) {
-				return false;
-			}
-
-			try {
-				$this->verifyPath(dirname($target), basename($target));
-			} catch (InvalidPathException) {
-				return false;
-			}
-
-			$this->lockFile($source, ILockingProvider::LOCK_SHARED, true);
-			try {
-				$this->lockFile($target, ILockingProvider::LOCK_SHARED, true);
-
-				$run = true;
-				if ($this->shouldEmitHooks($source) && (Cache\Scanner::isPartialFile($source) && !Cache\Scanner::isPartialFile($target))) {
-					// if it was a rename from a part file to a regular file it was a write and not a rename operation
-					$this->emit_file_hooks_pre($exists, $target, $run);
-				} elseif ($this->shouldEmitHooks($source)) {
-					$sourcePath = $this->getHookPath($source);
-					$targetPath = $this->getHookPath($target);
-					if ($sourcePath !== null && $targetPath !== null) {
-						\OC_Hook::emit(
-							Filesystem::CLASSNAME, Filesystem::signal_rename,
-							[
-								Filesystem::signal_param_oldpath => $sourcePath,
-								Filesystem::signal_param_newpath => $targetPath,
-								Filesystem::signal_param_run => &$run
-							]
-						);
-					}
-				}
-				if ($run) {
-					$manager = Filesystem::getMountManager();
-					$mount1 = $this->getMount($source);
-					$mount2 = $this->getMount($target);
-					$storage1 = $mount1->getStorage();
-					$storage2 = $mount2->getStorage();
-					$internalPath1 = $mount1->getInternalPath($absolutePath1);
-					$internalPath2 = $mount2->getInternalPath($absolutePath2);
-
-					$this->changeLock($source, ILockingProvider::LOCK_EXCLUSIVE, true);
-					try {
-						$this->changeLock($target, ILockingProvider::LOCK_EXCLUSIVE, true);
-
-						if ($checkSubMounts) {
-							$movedMounts = $mountManager->findIn($this->getAbsolutePath($source));
-						} else {
-							$movedMounts = [];
-						}
-
-						if ($internalPath1 === '') {
-							$sourceParentMount = $this->getMount(dirname($source));
-							$movedMounts[] = $mount1;
-							$this->validateMountMove($movedMounts, $sourceParentMount, $mount2, !$this->targetIsNotShared($targetUser, $absolutePath2));
-							/**
-							 * @var \OC\Files\Mount\MountPoint | \OC\Files\Mount\MoveableMount $mount1
-							 */
-							$sourceMountPoint = $mount1->getMountPoint();
-							$result = $mount1->moveMount($absolutePath2);
-							$manager->moveMount($sourceMountPoint, $mount1->getMountPoint());
-
-							// moving a file/folder within the same mount point
-						} elseif ($storage1 === $storage2) {
-							if (count($movedMounts) > 0) {
-								$this->validateMountMove($movedMounts, $mount1, $mount2, !$this->targetIsNotShared($targetUser, $absolutePath2));
-							}
-							if ($storage1) {
-								$result = $storage1->rename($internalPath1, $internalPath2);
-							} else {
-								$result = false;
-							}
-							// moving a file/folder between storages (from $storage1 to $storage2)
-						} else {
-							if (count($movedMounts) > 0) {
-								$this->validateMountMove($movedMounts, $mount1, $mount2, !$this->targetIsNotShared($targetUser, $absolutePath2));
-							}
-							$result = $storage2->moveFromStorage($storage1, $internalPath1, $internalPath2);
-						}
-
-						if ((Cache\Scanner::isPartialFile($source) && !Cache\Scanner::isPartialFile($target)) && $result !== false) {
-							// if it was a rename from a part file to a regular file it was a write and not a rename operation
-							$this->writeUpdate($storage2, $internalPath2);
-						} elseif ($result) {
-							if ($internalPath1 !== '') { // don't do a cache update for moved mounts
-								$this->renameUpdate($storage1, $storage2, $internalPath1, $internalPath2);
-							}
-						}
-					} catch (\Exception $e) {
-						throw $e;
-					} finally {
-						$this->changeLock($source, ILockingProvider::LOCK_SHARED, true);
-						$this->changeLock($target, ILockingProvider::LOCK_SHARED, true);
-					}
-
-					if ((Cache\Scanner::isPartialFile($source) && !Cache\Scanner::isPartialFile($target)) && $result !== false) {
-						if ($this->shouldEmitHooks()) {
-							$this->emit_file_hooks_post($exists, $target);
-						}
-					} elseif ($result) {
-						if ($this->shouldEmitHooks($source) && $this->shouldEmitHooks($target)) {
-							$sourcePath = $this->getHookPath($source);
-							$targetPath = $this->getHookPath($target);
-							if ($sourcePath !== null && $targetPath !== null) {
-								\OC_Hook::emit(
-									Filesystem::CLASSNAME,
-									Filesystem::signal_post_rename,
-									[
-										Filesystem::signal_param_oldpath => $sourcePath,
-										Filesystem::signal_param_newpath => $targetPath,
-									]
-								);
-							}
-						}
-					}
-				}
-			} catch (\Exception $e) {
-				throw $e;
-			} finally {
-				$this->unlockFile($source, ILockingProvider::LOCK_SHARED, true);
-				$this->unlockFile($target, ILockingProvider::LOCK_SHARED, true);
-			}
-		}
-		return $result;
-	}
-
-	/**
-	 * @throws ForbiddenException
-	 */
-	private function validateMountMove(array $mounts, IMountPoint $sourceMount, IMountPoint $targetMount, bool $targetIsShared): void {
-		$targetPath = $this->getRelativePath($targetMount->getMountPoint());
-		if ($targetPath) {
-			$targetPath = trim($targetPath, '/');
-		} else {
-			$targetPath = $targetMount->getMountPoint();
-		}
-
-		$l = \OC::$server->get(IFactory::class)->get('files');
-		foreach ($mounts as $mount) {
-			$sourcePath = $this->getRelativePath($mount->getMountPoint());
-			if ($sourcePath) {
-				$sourcePath = trim($sourcePath, '/');
-			} else {
-				$sourcePath = $mount->getMountPoint();
-			}
-
-			if (!$mount instanceof MoveableMount) {
-				throw new ForbiddenException($l->t('Storage %s cannot be moved', [$sourcePath]), false);
-			}
-
-			if ($targetIsShared) {
-				if ($sourceMount instanceof SharedMount) {
-					throw new ForbiddenException($l->t('Moving a share (%s) into a shared folder is not allowed', [$sourcePath]), false);
-				} else {
-					throw new ForbiddenException($l->t('Moving a storage (%s) into a shared folder is not allowed', [$sourcePath]), false);
-				}
-			}
-
-			if ($sourceMount !== $targetMount) {
-				if ($sourceMount instanceof SharedMount) {
-					if ($targetMount instanceof SharedMount) {
-						throw new ForbiddenException($l->t('Moving a share (%s) into another share (%s) is not allowed', [$sourcePath, $targetPath]), false);
-					} else {
-						throw new ForbiddenException($l->t('Moving a share (%s) into another storage (%s) is not allowed', [$sourcePath, $targetPath]), false);
-					}
-				} else {
-					if ($targetMount instanceof SharedMount) {
-						throw new ForbiddenException($l->t('Moving a storage (%s) into a share (%s) is not allowed', [$sourcePath, $targetPath]), false);
-					} else {
-						throw new ForbiddenException($l->t('Moving a storage (%s) into another storage (%s) is not allowed', [$sourcePath, $targetPath]), false);
-					}
-				}
-			}
-		}
-	}
-
-	/**
-	 * Copy a file/folder from the source path to target path
-	 *
-	 * @param string $source source path
-	 * @param string $target target path
-	 * @param bool $preserveMtime whether to preserve mtime on the copy
-	 *
-	 * @return bool|mixed
-	 */
-	public function copy($source, $target, $preserveMtime = false) {
-		$absolutePath1 = Filesystem::normalizePath($this->getAbsolutePath($source));
-		$absolutePath2 = Filesystem::normalizePath($this->getAbsolutePath($target));
-		$result = false;
-		if (
-			Filesystem::isValidPath($target)
-			&& Filesystem::isValidPath($source)
-			&& !Filesystem::isFileBlacklisted($target)
-		) {
-			$source = $this->getRelativePath($absolutePath1);
-			$target = $this->getRelativePath($absolutePath2);
-
-			if ($source == null || $target == null) {
-				return false;
-			}
-			$run = true;
-
-			$this->lockFile($target, ILockingProvider::LOCK_SHARED);
-			$this->lockFile($source, ILockingProvider::LOCK_SHARED);
-			$lockTypePath1 = ILockingProvider::LOCK_SHARED;
-			$lockTypePath2 = ILockingProvider::LOCK_SHARED;
-
-			try {
-				$exists = $this->file_exists($target);
-				if ($this->shouldEmitHooks($target)) {
-					\OC_Hook::emit(
-						Filesystem::CLASSNAME,
-						Filesystem::signal_copy,
-						[
-							Filesystem::signal_param_oldpath => $this->getHookPath($source),
-							Filesystem::signal_param_newpath => $this->getHookPath($target),
-							Filesystem::signal_param_run => &$run
-						]
-					);
-					$this->emit_file_hooks_pre($exists, $target, $run);
-				}
-				if ($run) {
-					$mount1 = $this->getMount($source);
-					$mount2 = $this->getMount($target);
-					$storage1 = $mount1->getStorage();
-					$internalPath1 = $mount1->getInternalPath($absolutePath1);
-					$storage2 = $mount2->getStorage();
-					$internalPath2 = $mount2->getInternalPath($absolutePath2);
-
-					$this->changeLock($target, ILockingProvider::LOCK_EXCLUSIVE);
-					$lockTypePath2 = ILockingProvider::LOCK_EXCLUSIVE;
-
-					if ($mount1->getMountPoint() == $mount2->getMountPoint()) {
-						if ($storage1) {
-							$result = $storage1->copy($internalPath1, $internalPath2);
-						} else {
-							$result = false;
-						}
-					} else {
-						$result = $storage2->copyFromStorage($storage1, $internalPath1, $internalPath2);
-					}
-
-					if ($result) {
-						$this->copyUpdate($storage1, $storage2, $internalPath1, $internalPath2);
-					}
-
-					$this->changeLock($target, ILockingProvider::LOCK_SHARED);
-					$lockTypePath2 = ILockingProvider::LOCK_SHARED;
-
-					if ($this->shouldEmitHooks($target) && $result !== false) {
-						\OC_Hook::emit(
-							Filesystem::CLASSNAME,
-							Filesystem::signal_post_copy,
-							[
-								Filesystem::signal_param_oldpath => $this->getHookPath($source),
-								Filesystem::signal_param_newpath => $this->getHookPath($target)
-							]
-						);
-						$this->emit_file_hooks_post($exists, $target);
-					}
-				}
-			} catch (\Exception $e) {
-				$this->unlockFile($target, $lockTypePath2);
-				$this->unlockFile($source, $lockTypePath1);
-				throw $e;
-			}
-
-			$this->unlockFile($target, $lockTypePath2);
-			$this->unlockFile($source, $lockTypePath1);
-		}
-		return $result;
-	}
-
-	/**
-	 * @param string $path
-	 * @param string $mode 'r' or 'w'
-	 * @return resource|false
-	 * @throws LockedException
-	 */
-	public function fopen($path, $mode) {
-		$mode = str_replace('b', '', $mode); // the binary flag is a windows only feature which we do not support
-		$hooks = [];
-		switch ($mode) {
-			case 'r':
-				$hooks[] = 'read';
-				break;
-			case 'r+':
-			case 'w+':
-			case 'x+':
-			case 'a+':
-				$hooks[] = 'read';
-				$hooks[] = 'write';
-				break;
-			case 'w':
-			case 'x':
-			case 'a':
-				$hooks[] = 'write';
-				break;
-			default:
-				$this->logger->error('invalid mode (' . $mode . ') for ' . $path, ['app' => 'core']);
-		}
-
-		if ($mode !== 'r' && $mode !== 'w') {
-			$this->logger->info('Trying to open a file with a mode other than "r" or "w" can cause severe performance issues with some backends', ['app' => 'core']);
-		}
-
-		$handle = $this->basicOperation('fopen', $path, $hooks, $mode);
-		if (!is_resource($handle) && $mode === 'r') {
-			// trying to read a file that isn't on disk, check if the cache is out of sync and rescan if needed
-			$mount = $this->getMount($path);
-			$internalPath = $mount->getInternalPath($this->getAbsolutePath($path));
-			$storage = $mount->getStorage();
-			if ($storage->getCache()->inCache($internalPath) && !$storage->file_exists($path)) {
-				$this->writeUpdate($storage, $internalPath);
-			}
-		}
-		return $handle;
-	}
-
-	/**
-	 * @param string $path
-	 * @throws InvalidPathException
-	 */
-	public function toTmpFile($path): string|false {
-		$this->assertPathLength($path);
-		if (Filesystem::isValidPath($path)) {
-			$source = $this->fopen($path, 'r');
-			if ($source) {
-				$extension = pathinfo($path, PATHINFO_EXTENSION);
-				$tmpFile = \OC::$server->getTempManager()->getTemporaryFile($extension);
-				file_put_contents($tmpFile, $source);
-				return $tmpFile;
-			} else {
-				return false;
-			}
-		} else {
-			return false;
-		}
-	}
-
-	/**
-	 * @param string $tmpFile
-	 * @param string $path
-	 * @return bool|mixed
-	 * @throws InvalidPathException
-	 */
-	public function fromTmpFile($tmpFile, $path) {
-		$this->assertPathLength($path);
-		if (Filesystem::isValidPath($path)) {
-			// Get directory that the file is going into
-			$filePath = dirname($path);
-
-			// Create the directories if any
-			if (!$this->file_exists($filePath)) {
-				$result = $this->createParentDirectories($filePath);
-				if ($result === false) {
-					return false;
-				}
-			}
-
-			$source = fopen($tmpFile, 'r');
-			if ($source) {
-				$result = $this->file_put_contents($path, $source);
-				/**
-				 * $this->file_put_contents() might have already closed
-				 * the resource, so we check it, before trying to close it
-				 * to avoid messages in the error log.
-				 * @psalm-suppress RedundantCondition false-positive
-				 */
-				if (is_resource($source)) {
-					fclose($source);
-				}
-				unlink($tmpFile);
-				return $result;
-			} else {
-				return false;
-			}
-		} else {
-			return false;
-		}
-	}
-
-
-	/**
-	 * @param string $path
-	 * @return mixed
-	 * @throws InvalidPathException
-	 */
-	public function getMimeType($path) {
-		$this->assertPathLength($path);
-		return $this->basicOperation('getMimeType', $path);
-	}
-
-	/**
-	 * @param string $type
-	 * @param string $path
-	 * @param bool $raw
-	 */
-	public function hash($type, $path, $raw = false): string|bool {
-		$postFix = (substr($path, -1) === '/') ? '/' : '';
-		$absolutePath = Filesystem::normalizePath($this->getAbsolutePath($path));
-		if (Filesystem::isValidPath($path)) {
-			$path = $this->getRelativePath($absolutePath);
-			if ($path == null) {
-				return false;
-			}
-			if ($this->shouldEmitHooks($path)) {
-				\OC_Hook::emit(
-					Filesystem::CLASSNAME,
-					Filesystem::signal_read,
-					[Filesystem::signal_param_path => $this->getHookPath($path)]
-				);
-			}
-			/** @var Storage|null $storage */
-			[$storage, $internalPath] = Filesystem::resolvePath($absolutePath . $postFix);
-			if ($storage) {
-				return $storage->hash($type, $internalPath, $raw);
-			}
-		}
-		return false;
-	}
-
-	/**
-	 * @param string $path
-	 * @return mixed
-	 * @throws InvalidPathException
-	 */
-	public function free_space($path = '/') {
-		$this->assertPathLength($path);
-		$result = $this->basicOperation('free_space', $path);
-		if ($result === null) {
-			throw new InvalidPathException();
-		}
-		return $result;
-	}
-
-	/**
-	 * abstraction layer for basic filesystem functions: wrapper for \OC\Files\Storage\Storage
-	 *
-	 * @param mixed $extraParam (optional)
-	 * @return mixed
-	 * @throws LockedException
-	 *
-	 * This method takes requests for basic filesystem functions (e.g. reading & writing
-	 * files), processes hooks and proxies, sanitises paths, and finally passes them on to
-	 * \OC\Files\Storage\Storage for delegation to a storage backend for execution
-	 */
-	private function basicOperation(string $operation, string $path, array $hooks = [], $extraParam = null) {
-		$postFix = (substr($path, -1) === '/') ? '/' : '';
-		$absolutePath = Filesystem::normalizePath($this->getAbsolutePath($path));
-		if (Filesystem::isValidPath($path)
-			&& !Filesystem::isFileBlacklisted($path)
-		) {
-			$path = $this->getRelativePath($absolutePath);
-			if ($path == null) {
-				return false;
-			}
-
-			if (in_array('write', $hooks) || in_array('delete', $hooks) || in_array('read', $hooks)) {
-				// always a shared lock during pre-hooks so the hook can read the file
-				$this->lockFile($path, ILockingProvider::LOCK_SHARED);
-			}
-
-			$run = $this->runHooks($hooks, $path);
-			[$storage, $internalPath] = Filesystem::resolvePath($absolutePath . $postFix);
-			if ($run && $storage) {
-				/** @var Storage $storage */
-				if (in_array('write', $hooks) || in_array('delete', $hooks)) {
-					try {
-						$this->changeLock($path, ILockingProvider::LOCK_EXCLUSIVE);
-					} catch (LockedException $e) {
-						// release the shared lock we acquired before quitting
-						$this->unlockFile($path, ILockingProvider::LOCK_SHARED);
-						throw $e;
-					}
-				}
-				try {
-					if (!is_null($extraParam)) {
-						$result = $storage->$operation($internalPath, $extraParam);
-					} else {
-						$result = $storage->$operation($internalPath);
-					}
-				} catch (\Exception $e) {
-					if (in_array('write', $hooks) || in_array('delete', $hooks)) {
-						$this->unlockFile($path, ILockingProvider::LOCK_EXCLUSIVE);
-					} elseif (in_array('read', $hooks)) {
-						$this->unlockFile($path, ILockingProvider::LOCK_SHARED);
-					}
-					throw $e;
-				}
-
-				if ($result !== false && in_array('delete', $hooks)) {
-					$this->removeUpdate($storage, $internalPath);
-				}
-				if ($result !== false && in_array('write', $hooks, true) && $operation !== 'fopen' && $operation !== 'touch') {
-					$isCreateOperation = $operation === 'mkdir' || ($operation === 'file_put_contents' && in_array('create', $hooks, true));
-					$sizeDifference = $operation === 'mkdir' ? 0 : $result;
-					$this->writeUpdate($storage, $internalPath, null, $isCreateOperation ? $sizeDifference : null);
-				}
-				if ($result !== false && in_array('touch', $hooks)) {
-					$this->writeUpdate($storage, $internalPath, $extraParam, 0);
-				}
-
-				if ((in_array('write', $hooks) || in_array('delete', $hooks)) && ($operation !== 'fopen' || $result === false)) {
-					$this->changeLock($path, ILockingProvider::LOCK_SHARED);
-				}
-
-				$unlockLater = false;
-				if ($this->lockingEnabled && $operation === 'fopen' && is_resource($result)) {
-					$unlockLater = true;
-					// make sure our unlocking callback will still be called if connection is aborted
-					ignore_user_abort(true);
-					$result = CallbackWrapper::wrap($result, null, null, function () use ($hooks, $path) {
-						if (in_array('write', $hooks)) {
-							$this->unlockFile($path, ILockingProvider::LOCK_EXCLUSIVE);
-						} elseif (in_array('read', $hooks)) {
-							$this->unlockFile($path, ILockingProvider::LOCK_SHARED);
-						}
-					});
-				}
-
-				if ($this->shouldEmitHooks($path) && $result !== false) {
-					if ($operation != 'fopen') { //no post hooks for fopen, the file stream is still open
-						$this->runHooks($hooks, $path, true);
-					}
-				}
-
-				if (!$unlockLater
-					&& (in_array('write', $hooks) || in_array('delete', $hooks) || in_array('read', $hooks))
-				) {
-					$this->unlockFile($path, ILockingProvider::LOCK_SHARED);
-				}
-				return $result;
-			} else {
-				$this->unlockFile($path, ILockingProvider::LOCK_SHARED);
-			}
-		}
-		return null;
-	}
-
-	/**
-	 * get the path relative to the default root for hook usage
-	 *
-	 * @param string $path
-	 * @return ?string
-	 */
-	private function getHookPath($path): ?string {
-		$view = Filesystem::getView();
-		if (!$view) {
-			return $path;
-		}
-		return $view->getRelativePath($this->getAbsolutePath($path));
-	}
-
-	private function shouldEmitHooks(string $path = ''): bool {
-		if ($path && Cache\Scanner::isPartialFile($path)) {
-			return false;
-		}
-		if (!Filesystem::$loaded) {
-			return false;
-		}
-		$defaultRoot = Filesystem::getRoot();
-		if ($defaultRoot === null) {
-			return false;
-		}
-		if ($this->fakeRoot === $defaultRoot) {
-			return true;
-		}
-		$fullPath = $this->getAbsolutePath($path);
-
-		if ($fullPath === $defaultRoot) {
-			return true;
-		}
-
-		return (strlen($fullPath) > strlen($defaultRoot)) && (substr($fullPath, 0, strlen($defaultRoot) + 1) === $defaultRoot . '/');
-	}
-
-	/**
-	 * @param string[] $hooks
-	 * @param string $path
-	 * @param bool $post
-	 * @return bool
-	 */
-	private function runHooks($hooks, $path, $post = false) {
-		$relativePath = $path;
-		$path = $this->getHookPath($path);
-		$prefix = $post ? 'post_' : '';
-		$run = true;
-		if ($this->shouldEmitHooks($relativePath)) {
-			foreach ($hooks as $hook) {
-				if ($hook != 'read') {
-					\OC_Hook::emit(
-						Filesystem::CLASSNAME,
-						$prefix . $hook,
-						[
-							Filesystem::signal_param_run => &$run,
-							Filesystem::signal_param_path => $path
-						]
-					);
-				} elseif (!$post) {
-					\OC_Hook::emit(
-						Filesystem::CLASSNAME,
-						$prefix . $hook,
-						[
-							Filesystem::signal_param_path => $path
-						]
-					);
-				}
-			}
-		}
-		return $run;
-	}
-
-	/**
-	 * check if a file or folder has been updated since $time
-	 *
-	 * @param string $path
-	 * @param int $time
-	 * @return bool
-	 */
-	public function hasUpdated($path, $time) {
-		return $this->basicOperation('hasUpdated', $path, [], $time);
-	}
-
-	/**
-	 * @param string $ownerId
-	 * @return IUser
-	 */
-	private function getUserObjectForOwner(string $ownerId) {
-		return new LazyUser($ownerId, $this->userManager);
-	}
-
-	/**
-	 * Get file info from cache
-	 *
-	 * If the file is not in cached it will be scanned
-	 * If the file has changed on storage the cache will be updated
-	 *
-	 * @param Storage $storage
-	 * @param string $internalPath
-	 * @param string $relativePath
-	 * @return ICacheEntry|bool
-	 */
-	private function getCacheEntry($storage, $internalPath, $relativePath) {
-		$cache = $storage->getCache($internalPath);
-		$data = $cache->get($internalPath);
-		$watcher = $storage->getWatcher($internalPath);
-
-		try {
-			// if the file is not in the cache or needs to be updated, trigger the scanner and reload the data
-			if (!$data || (isset($data['size']) && $data['size'] === -1)) {
-				if (!$storage->file_exists($internalPath)) {
-					return false;
-				}
-				// don't need to get a lock here since the scanner does it's own locking
-				$scanner = $storage->getScanner($internalPath);
-				$scanner->scan($internalPath, Cache\Scanner::SCAN_SHALLOW);
-				$data = $cache->get($internalPath);
-			} elseif (!Cache\Scanner::isPartialFile($internalPath) && $watcher->needsUpdate($internalPath, $data)) {
-				$this->lockFile($relativePath, ILockingProvider::LOCK_SHARED);
-				$watcher->update($internalPath, $data);
-				$storage->getPropagator()->propagateChange($internalPath, time());
-				$data = $cache->get($internalPath);
-				$this->unlockFile($relativePath, ILockingProvider::LOCK_SHARED);
-			}
-		} catch (LockedException $e) {
-			// if the file is locked we just use the old cache info
-		}
-
-		return $data;
-	}
-
-	/**
-	 * get the filesystem info
-	 *
-	 * @param string $path
-	 * @param bool|string $includeMountPoints true to add mountpoint sizes,
-	 *                                        'ext' to add only ext storage mount point sizes. Defaults to true.
-	 * @return \OC\Files\FileInfo|false False if file does not exist
-	 */
-	public function getFileInfo($path, $includeMountPoints = true) {
-		$this->assertPathLength($path);
-		if (!Filesystem::isValidPath($path)) {
-			return false;
-		}
-		$relativePath = $path;
-		$path = Filesystem::normalizePath($this->fakeRoot . '/' . $path);
-
-		$mount = Filesystem::getMountManager()->find($path);
-		$storage = $mount->getStorage();
-		$internalPath = $mount->getInternalPath($path);
-		if ($storage) {
-			$data = $this->getCacheEntry($storage, $internalPath, $relativePath);
-
-			if (!$data instanceof ICacheEntry) {
-				if (Cache\Scanner::isPartialFile($relativePath)) {
-					return $this->getPartFileInfo($relativePath);
-				}
-
-				return false;
-			}
-
-			if ($mount instanceof MoveableMount && $internalPath === '') {
-				$data['permissions'] |= \OCP\Constants::PERMISSION_DELETE;
-			}
-			if ($internalPath === '' && $data['name']) {
-				$data['name'] = basename($path);
-			}
-
-			$ownerId = $storage->getOwner($internalPath);
-			$owner = null;
-			if ($ownerId !== false) {
-				// ownerId might be null if files are accessed with an access token without file system access
-				$owner = $this->getUserObjectForOwner($ownerId);
-			}
-			$info = new FileInfo($path, $storage, $internalPath, $data, $mount, $owner);
-
-			if (isset($data['fileid'])) {
-				if ($includeMountPoints && $data['mimetype'] === 'httpd/unix-directory') {
-					//add the sizes of other mount points to the folder
-					$extOnly = ($includeMountPoints === 'ext');
-					$this->addSubMounts($info, $extOnly);
-				}
-			}
-
-			return $info;
-		} else {
-			$this->logger->warning('Storage not valid for mountpoint: ' . $mount->getMountPoint(), ['app' => 'core']);
-		}
-
-		return false;
-	}
-
-	/**
-	 * Extend a FileInfo that was previously requested with `$includeMountPoints = false` to include the sub mounts
-	 */
-	public function addSubMounts(FileInfo $info, $extOnly = false): void {
-		$mounts = Filesystem::getMountManager()->findIn($info->getPath());
-		$info->setSubMounts(array_filter($mounts, function (IMountPoint $mount) use ($extOnly) {
-			return !($extOnly && $mount instanceof SharedMount);
-		}));
-	}
-
-	/**
-	 * get the content of a directory
-	 *
-	 * @param string $directory path under datadirectory
-	 * @param string $mimetype_filter limit returned content to this mimetype or mimepart
-	 * @return FileInfo[]
-	 */
-	public function getDirectoryContent($directory, $mimetype_filter = '', ?\OCP\Files\FileInfo $directoryInfo = null) {
-		$this->assertPathLength($directory);
-		if (!Filesystem::isValidPath($directory)) {
-			return [];
-		}
-
-		$path = $this->getAbsolutePath($directory);
-		$path = Filesystem::normalizePath($path);
-		$mount = $this->getMount($directory);
-		$storage = $mount->getStorage();
-		$internalPath = $mount->getInternalPath($path);
-		if (!$storage) {
-			return [];
-		}
-
-		$cache = $storage->getCache($internalPath);
-		$user = \OC_User::getUser();
-
-		if (!$directoryInfo) {
-			$data = $this->getCacheEntry($storage, $internalPath, $directory);
-			if (!$data instanceof ICacheEntry || !isset($data['fileid'])) {
-				return [];
-			}
-		} else {
-			$data = $directoryInfo;
-		}
-
-		if (!($data->getPermissions() & Constants::PERMISSION_READ)) {
-			return [];
-		}
-
-		$folderId = $data->getId();
-		$contents = $cache->getFolderContentsById($folderId); //TODO: mimetype_filter
-
-		$sharingDisabled = \OCP\Util::isSharingDisabledForUser();
-
-		$fileNames = array_map(function (ICacheEntry $content) {
-			return $content->getName();
-		}, $contents);
-		/**
-		 * @var \OC\Files\FileInfo[] $fileInfos
-		 */
-		$fileInfos = array_map(function (ICacheEntry $content) use ($path, $storage, $mount, $sharingDisabled) {
-			if ($sharingDisabled) {
-				$content['permissions'] = $content['permissions'] & ~\OCP\Constants::PERMISSION_SHARE;
-			}
-			$ownerId = $storage->getOwner($content['path']);
-			if ($ownerId !== false) {
-				$owner = $this->getUserObjectForOwner($ownerId);
-			} else {
-				$owner = null;
-			}
-			return new FileInfo($path . '/' . $content['name'], $storage, $content['path'], $content, $mount, $owner);
-		}, $contents);
-		$files = array_combine($fileNames, $fileInfos);
-
-		//add a folder for any mountpoint in this directory and add the sizes of other mountpoints to the folders
-		$mounts = Filesystem::getMountManager()->findIn($path);
-
-		// make sure nested mounts are sorted after their parent mounts
-		// otherwise doesn't propagate the etag across storage boundaries correctly
-		usort($mounts, function (IMountPoint $a, IMountPoint $b) {
-			return $a->getMountPoint() <=> $b->getMountPoint();
-		});
-
-		$dirLength = strlen($path);
-		foreach ($mounts as $mount) {
-			$mountPoint = $mount->getMountPoint();
-			$subStorage = $mount->getStorage();
-			if ($subStorage) {
-				$subCache = $subStorage->getCache('');
-
-				$rootEntry = $subCache->get('');
-				if (!$rootEntry) {
-					$subScanner = $subStorage->getScanner();
-					try {
-						$subScanner->scanFile('');
-					} catch (\OCP\Files\StorageNotAvailableException $e) {
-						continue;
-					} catch (\OCP\Files\StorageInvalidException $e) {
-						continue;
-					} catch (\Exception $e) {
-						// sometimes when the storage is not available it can be any exception
-						$this->logger->error('Exception while scanning storage "' . $subStorage->getId() . '"', [
-							'exception' => $e,
-							'app' => 'core',
-						]);
-						continue;
-					}
-					$rootEntry = $subCache->get('');
-				}
-
-				if ($rootEntry && ($rootEntry->getPermissions() & Constants::PERMISSION_READ)) {
-					$relativePath = trim(substr($mountPoint, $dirLength), '/');
-					if ($pos = strpos($relativePath, '/')) {
-						//mountpoint inside subfolder add size to the correct folder
-						$entryName = substr($relativePath, 0, $pos);
-
-						// Create parent folders if the mountpoint is inside a subfolder that doesn't exist yet
-						if (!isset($files[$entryName])) {
-							try {
-								[$storage, ] = $this->resolvePath($path . '/' . $entryName);
-								// make sure we can create the mountpoint folder, even if the user has a quota of 0
-								if ($storage->instanceOfStorage(Quota::class)) {
-									$storage->enableQuota(false);
-								}
-
-								if ($this->mkdir($path . '/' . $entryName) !== false) {
-									$info = $this->getFileInfo($path . '/' . $entryName);
-									if ($info !== false) {
-										$files[$entryName] = $info;
-									}
-								}
-
-								if ($storage->instanceOfStorage(Quota::class)) {
-									$storage->enableQuota(true);
-								}
-							} catch (\Exception $e) {
-								// Creating the parent folder might not be possible, for example due to a lack of permissions.
-								$this->logger->debug('Failed to create non-existent parent', ['exception' => $e, 'path' => $path . '/' . $entryName]);
-							}
-						}
-
-						if (isset($files[$entryName])) {
-							$files[$entryName]->addSubEntry($rootEntry, $mountPoint);
-						}
-					} else { //mountpoint in this folder, add an entry for it
-						$rootEntry['name'] = $relativePath;
-						$rootEntry['type'] = $rootEntry['mimetype'] === 'httpd/unix-directory' ? 'dir' : 'file';
-						$permissions = $rootEntry['permissions'];
-						// do not allow renaming/deleting the mount point if they are not shared files/folders
-						// for shared files/folders we use the permissions given by the owner
-						if ($mount instanceof MoveableMount) {
-							$rootEntry['permissions'] = $permissions | \OCP\Constants::PERMISSION_UPDATE | \OCP\Constants::PERMISSION_DELETE;
-						} else {
-							$rootEntry['permissions'] = $permissions & (\OCP\Constants::PERMISSION_ALL - (\OCP\Constants::PERMISSION_UPDATE | \OCP\Constants::PERMISSION_DELETE));
-						}
-
-						$rootEntry['path'] = substr(Filesystem::normalizePath($path . '/' . $rootEntry['name']), strlen($user) + 2); // full path without /$user/
-
-						// if sharing was disabled for the user we remove the share permissions
-						if ($sharingDisabled) {
-							$rootEntry['permissions'] = $rootEntry['permissions'] & ~\OCP\Constants::PERMISSION_SHARE;
-						}
-
-						$ownerId = $subStorage->getOwner('');
-						if ($ownerId !== false) {
-							$owner = $this->getUserObjectForOwner($ownerId);
-						} else {
-							$owner = null;
-						}
-						$files[$rootEntry->getName()] = new FileInfo($path . '/' . $rootEntry['name'], $subStorage, '', $rootEntry, $mount, $owner);
-					}
-				}
-			}
-		}
-
-		if ($mimetype_filter) {
-			$files = array_filter($files, function (FileInfo $file) use ($mimetype_filter) {
-				if (strpos($mimetype_filter, '/')) {
-					return $file->getMimetype() === $mimetype_filter;
-				} else {
-					return $file->getMimePart() === $mimetype_filter;
-				}
-			});
-		}
-
-		return array_values($files);
-	}
-
-	/**
-	 * change file metadata
-	 *
-	 * @param string $path
-	 * @param array|\OCP\Files\FileInfo $data
-	 * @return int
-	 *
-	 * returns the fileid of the updated file
-	 */
-	public function putFileInfo($path, $data) {
-		$this->assertPathLength($path);
-		if ($data instanceof FileInfo) {
-			$data = $data->getData();
-		}
-		$path = Filesystem::normalizePath($this->fakeRoot . '/' . $path);
-		/**
-		 * @var Storage $storage
-		 * @var string $internalPath
-		 */
-		[$storage, $internalPath] = Filesystem::resolvePath($path);
-		if ($storage) {
-			$cache = $storage->getCache($path);
-
-			if (!$cache->inCache($internalPath)) {
-				$scanner = $storage->getScanner($internalPath);
-				$scanner->scan($internalPath, Cache\Scanner::SCAN_SHALLOW);
-			}
-
-			return $cache->put($internalPath, $data);
-		} else {
-			return -1;
-		}
-	}
-
-	/**
-	 * search for files with the name matching $query
-	 *
-	 * @param string $query
-	 * @return FileInfo[]
-	 */
-	public function search($query) {
-		return $this->searchCommon('search', ['%' . $query . '%']);
-	}
-
-	/**
-	 * search for files with the name matching $query
-	 *
-	 * @param string $query
-	 * @return FileInfo[]
-	 */
-	public function searchRaw($query) {
-		return $this->searchCommon('search', [$query]);
-	}
-
-	/**
-	 * search for files by mimetype
-	 *
-	 * @param string $mimetype
-	 * @return FileInfo[]
-	 */
-	public function searchByMime($mimetype) {
-		return $this->searchCommon('searchByMime', [$mimetype]);
-	}
-
-	/**
-	 * search for files by tag
-	 *
-	 * @param string|int $tag name or tag id
-	 * @param string $userId owner of the tags
-	 * @return FileInfo[]
-	 */
-	public function searchByTag($tag, $userId) {
-		return $this->searchCommon('searchByTag', [$tag, $userId]);
-	}
-
-	/**
-	 * @param string $method cache method
-	 * @param array $args
-	 * @return FileInfo[]
-	 */
-	private function searchCommon($method, $args) {
-		$files = [];
-		$rootLength = strlen($this->fakeRoot);
-
-		$mount = $this->getMount('');
-		$mountPoint = $mount->getMountPoint();
-		$storage = $mount->getStorage();
-		$userManager = \OC::$server->getUserManager();
-		if ($storage) {
-			$cache = $storage->getCache('');
-
-			$results = call_user_func_array([$cache, $method], $args);
-			foreach ($results as $result) {
-				if (substr($mountPoint . $result['path'], 0, $rootLength + 1) === $this->fakeRoot . '/') {
-					$internalPath = $result['path'];
-					$path = $mountPoint . $result['path'];
-					$result['path'] = substr($mountPoint . $result['path'], $rootLength);
-					$ownerId = $storage->getOwner($internalPath);
-					if ($ownerId !== false) {
-						$owner = $userManager->get($ownerId);
-					} else {
-						$owner = null;
-					}
-					$files[] = new FileInfo($path, $storage, $internalPath, $result, $mount, $owner);
-				}
-			}
-
-			$mounts = Filesystem::getMountManager()->findIn($this->fakeRoot);
-			foreach ($mounts as $mount) {
-				$mountPoint = $mount->getMountPoint();
-				$storage = $mount->getStorage();
-				if ($storage) {
-					$cache = $storage->getCache('');
-
-					$relativeMountPoint = substr($mountPoint, $rootLength);
-					$results = call_user_func_array([$cache, $method], $args);
-					if ($results) {
-						foreach ($results as $result) {
-							$internalPath = $result['path'];
-							$result['path'] = rtrim($relativeMountPoint . $result['path'], '/');
-							$path = rtrim($mountPoint . $internalPath, '/');
-							$ownerId = $storage->getOwner($internalPath);
-							if ($ownerId !== false) {
-								$owner = $userManager->get($ownerId);
-							} else {
-								$owner = null;
-							}
-							$files[] = new FileInfo($path, $storage, $internalPath, $result, $mount, $owner);
-						}
-					}
-				}
-			}
-		}
-		return $files;
-	}
-
-	/**
-	 * Get the owner for a file or folder
-	 *
-	 * @throws NotFoundException
-	 */
-	public function getOwner(string $path): string {
-		$info = $this->getFileInfo($path);
-		if (!$info) {
-			throw new NotFoundException($path . ' not found while trying to get owner');
-		}
-
-		if ($info->getOwner() === null) {
-			throw new NotFoundException($path . ' has no owner');
-		}
-
-		return $info->getOwner()->getUID();
-	}
-
-	/**
-	 * get the ETag for a file or folder
-	 *
-	 * @param string $path
-	 * @return string|false
-	 */
-	public function getETag($path) {
-		[$storage, $internalPath] = $this->resolvePath($path);
-		if ($storage) {
-			return $storage->getETag($internalPath);
-		} else {
-			return false;
-		}
-	}
-
-	/**
-	 * Get the path of a file by id, relative to the view
-	 *
-	 * Note that the resulting path is not guaranteed to be unique for the id, multiple paths can point to the same file
-	 *
-	 * @param int $id
-	 * @param int|null $storageId
-	 * @return string
-	 * @throws NotFoundException
-	 */
-	public function getPath($id, ?int $storageId = null): string {
-		$id = (int)$id;
-		$rootFolder = Server::get(Files\IRootFolder::class);
-
-		$node = $rootFolder->getFirstNodeByIdInPath($id, $this->getRoot());
-		if ($node) {
-			if ($storageId === null || $storageId === $node->getStorage()->getCache()->getNumericStorageId()) {
-				return $this->getRelativePath($node->getPath()) ?? '';
-			}
-		} else {
-			throw new NotFoundException(sprintf('File with id "%s" has not been found.', $id));
-		}
-
-		foreach ($rootFolder->getByIdInPath($id, $this->getRoot()) as $node) {
-			if ($storageId === $node->getStorage()->getCache()->getNumericStorageId()) {
-				return $this->getRelativePath($node->getPath()) ?? '';
-			}
-		}
-
-		throw new NotFoundException(sprintf('File with id "%s" has not been found.', $id));
-	}
-
-	/**
-	 * @param string $path
-	 * @throws InvalidPathException
-	 */
-	private function assertPathLength($path): void {
-		$maxLen = min(PHP_MAXPATHLEN, 4000);
-		// Check for the string length - performed using isset() instead of strlen()
-		// because isset() is about 5x-40x faster.
-		if (isset($path[$maxLen])) {
-			$pathLen = strlen($path);
-			throw new InvalidPathException("Path length($pathLen) exceeds max path length($maxLen): $path");
-		}
-	}
-
-	/**
-	 * check if it is allowed to move a mount point to a given target.
-	 * It is not allowed to move a mount point into a different mount point or
-	 * into an already shared folder
-	 */
-	private function targetIsNotShared(string $user, string $targetPath): bool {
-		$providers = [
-			IShare::TYPE_USER,
-			IShare::TYPE_GROUP,
-			IShare::TYPE_EMAIL,
-			IShare::TYPE_CIRCLE,
-			IShare::TYPE_ROOM,
-			IShare::TYPE_DECK,
-		];
-		$shareManager = Server::get(IManager::class);
-		/** @var IShare[] $shares */
-		$shares = array_merge(...array_map(function (int $type) use ($shareManager, $user) {
-			return $shareManager->getSharesBy($user, $type);
-		}, $providers));
-
-		foreach ($shares as $share) {
-			try {
-				$sharedPath = $share->getNode()->getPath();
-			} catch (NotFoundException $e) {
-				// node is not found, ignoring
-				$this->logger->debug(
-					'Could not find the node linked to a share',
-					['app' => 'files', 'exception' => $e]);
-				continue;
-			}
-			if ($targetPath === $sharedPath || str_starts_with($targetPath, $sharedPath . '/')) {
-				$this->logger->debug(
-					'It is not allowed to move one mount point into a shared folder',
-					['app' => 'files']);
-				return false;
-			}
-		}
-
-		return true;
-	}
-
-	/**
-	 * Get a fileinfo object for files that are ignored in the cache (part files)
-	 */
-	private function getPartFileInfo(string $path): \OC\Files\FileInfo {
-		$mount = $this->getMount($path);
-		$storage = $mount->getStorage();
-		$internalPath = $mount->getInternalPath($this->getAbsolutePath($path));
-		$ownerId = $storage->getOwner($internalPath);
-		if ($ownerId !== false) {
-			$owner = Server::get(IUserManager::class)->get($ownerId);
-		} else {
-			$owner = null;
-		}
-		return new FileInfo(
-			$this->getAbsolutePath($path),
-			$storage,
-			$internalPath,
-			[
-				'fileid' => null,
-				'mimetype' => $storage->getMimeType($internalPath),
-				'name' => basename($path),
-				'etag' => null,
-				'size' => $storage->filesize($internalPath),
-				'mtime' => $storage->filemtime($internalPath),
-				'encrypted' => false,
-				'permissions' => \OCP\Constants::PERMISSION_ALL
-			],
-			$mount,
-			$owner
-		);
-	}
-
-	/**
-	 * @param string $path
-	 * @param string $fileName
-	 * @param bool $readonly Check only if the path is allowed for read-only access
-	 * @throws InvalidPathException
-	 */
-	public function verifyPath($path, $fileName, $readonly = false): void {
-		// All of the view's functions disallow '..' in the path so we can short cut if the path is invalid
-		if (!Filesystem::isValidPath($path ?: '/')) {
-			$l = \OCP\Util::getL10N('lib');
-			throw new InvalidPathException($l->t('Path contains invalid segments'));
-		}
-
-		// Short cut for read-only validation
-		if ($readonly) {
-			$validator = Server::get(FilenameValidator::class);
-			if ($validator->isForbidden($fileName)) {
-				$l = \OCP\Util::getL10N('lib');
-				throw new InvalidPathException($l->t('Filename is a reserved word'));
-			}
-			return;
-		}
-
-		try {
-			/** @type \OCP\Files\Storage $storage */
-			[$storage, $internalPath] = $this->resolvePath($path);
-			$storage->verifyPath($internalPath, $fileName);
-		} catch (ReservedWordException $ex) {
-			$l = \OCP\Util::getL10N('lib');
-			throw new InvalidPathException($ex->getMessage() ?: $l->t('Filename is a reserved word'));
-		} catch (InvalidCharacterInPathException $ex) {
-			$l = \OCP\Util::getL10N('lib');
-			throw new InvalidPathException($ex->getMessage() ?: $l->t('Filename contains at least one invalid character'));
-		} catch (FileNameTooLongException $ex) {
-			$l = \OCP\Util::getL10N('lib');
-			throw new InvalidPathException($l->t('Filename is too long'));
-		} catch (InvalidDirectoryException $ex) {
-			$l = \OCP\Util::getL10N('lib');
-			throw new InvalidPathException($l->t('Dot files are not allowed'));
-		} catch (EmptyFileNameException $ex) {
-			$l = \OCP\Util::getL10N('lib');
-			throw new InvalidPathException($l->t('Empty filename is not allowed'));
-		}
-	}
-
-	/**
-	 * get all parent folders of $path
-	 *
-	 * @param string $path
-	 * @return string[]
-	 */
-	private function getParents($path) {
-		$path = trim($path, '/');
-		if (!$path) {
-			return [];
-		}
-
-		$parts = explode('/', $path);
-
-		// remove the single file
-		array_pop($parts);
-		$result = ['/'];
-		$resultPath = '';
-		foreach ($parts as $part) {
-			if ($part) {
-				$resultPath .= '/' . $part;
-				$result[] = $resultPath;
-			}
-		}
-		return $result;
-	}
-
-	/**
-	 * Returns the mount point for which to lock
-	 *
-	 * @param string $absolutePath absolute path
-	 * @param bool $useParentMount true to return parent mount instead of whatever
-	 *                             is mounted directly on the given path, false otherwise
-	 * @return IMountPoint mount point for which to apply locks
-	 */
-	private function getMountForLock(string $absolutePath, bool $useParentMount = false): IMountPoint {
-		$mount = Filesystem::getMountManager()->find($absolutePath);
-
-		if ($useParentMount) {
-			// find out if something is mounted directly on the path
-			$internalPath = $mount->getInternalPath($absolutePath);
-			if ($internalPath === '') {
-				// resolve the parent mount instead
-				$mount = Filesystem::getMountManager()->find(dirname($absolutePath));
-			}
-		}
-
-		return $mount;
-	}
-
-	/**
-	 * Lock the given path
-	 *
-	 * @param string $path the path of the file to lock, relative to the view
-	 * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE
-	 * @param bool $lockMountPoint true to lock the mount point, false to lock the attached mount/storage
-	 *
-	 * @return bool False if the path is excluded from locking, true otherwise
-	 * @throws LockedException if the path is already locked
-	 */
-	private function lockPath($path, $type, $lockMountPoint = false) {
-		$absolutePath = $this->getAbsolutePath($path);
-		$absolutePath = Filesystem::normalizePath($absolutePath);
-		if (!$this->shouldLockFile($absolutePath)) {
-			return false;
-		}
-
-		$mount = $this->getMountForLock($absolutePath, $lockMountPoint);
-		try {
-			$storage = $mount->getStorage();
-			if ($storage && $storage->instanceOfStorage('\OCP\Files\Storage\ILockingStorage')) {
-				$storage->acquireLock(
-					$mount->getInternalPath($absolutePath),
-					$type,
-					$this->lockingProvider
-				);
-			}
-		} catch (LockedException $e) {
-			// rethrow with the human-readable path
-			throw new LockedException(
-				$path,
-				$e,
-				$e->getExistingLock()
-			);
-		}
-
-		return true;
-	}
-
-	/**
-	 * Change the lock type
-	 *
-	 * @param string $path the path of the file to lock, relative to the view
-	 * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE
-	 * @param bool $lockMountPoint true to lock the mount point, false to lock the attached mount/storage
-	 *
-	 * @return bool False if the path is excluded from locking, true otherwise
-	 * @throws LockedException if the path is already locked
-	 */
-	public function changeLock($path, $type, $lockMountPoint = false) {
-		$path = Filesystem::normalizePath($path);
-		$absolutePath = $this->getAbsolutePath($path);
-		$absolutePath = Filesystem::normalizePath($absolutePath);
-		if (!$this->shouldLockFile($absolutePath)) {
-			return false;
-		}
-
-		$mount = $this->getMountForLock($absolutePath, $lockMountPoint);
-		try {
-			$storage = $mount->getStorage();
-			if ($storage && $storage->instanceOfStorage('\OCP\Files\Storage\ILockingStorage')) {
-				$storage->changeLock(
-					$mount->getInternalPath($absolutePath),
-					$type,
-					$this->lockingProvider
-				);
-			}
-		} catch (LockedException $e) {
-			// rethrow with the a human-readable path
-			throw new LockedException(
-				$path,
-				$e,
-				$e->getExistingLock()
-			);
-		}
-
-		return true;
-	}
-
-	/**
-	 * Unlock the given path
-	 *
-	 * @param string $path the path of the file to unlock, relative to the view
-	 * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE
-	 * @param bool $lockMountPoint true to lock the mount point, false to lock the attached mount/storage
-	 *
-	 * @return bool False if the path is excluded from locking, true otherwise
-	 * @throws LockedException
-	 */
-	private function unlockPath($path, $type, $lockMountPoint = false) {
-		$absolutePath = $this->getAbsolutePath($path);
-		$absolutePath = Filesystem::normalizePath($absolutePath);
-		if (!$this->shouldLockFile($absolutePath)) {
-			return false;
-		}
-
-		$mount = $this->getMountForLock($absolutePath, $lockMountPoint);
-		$storage = $mount->getStorage();
-		if ($storage && $storage->instanceOfStorage('\OCP\Files\Storage\ILockingStorage')) {
-			$storage->releaseLock(
-				$mount->getInternalPath($absolutePath),
-				$type,
-				$this->lockingProvider
-			);
-		}
-
-		return true;
-	}
-
-	/**
-	 * Lock a path and all its parents up to the root of the view
-	 *
-	 * @param string $path the path of the file to lock relative to the view
-	 * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE
-	 * @param bool $lockMountPoint true to lock the mount point, false to lock the attached mount/storage
-	 *
-	 * @return bool False if the path is excluded from locking, true otherwise
-	 * @throws LockedException
-	 */
-	public function lockFile($path, $type, $lockMountPoint = false) {
-		$absolutePath = $this->getAbsolutePath($path);
-		$absolutePath = Filesystem::normalizePath($absolutePath);
-		if (!$this->shouldLockFile($absolutePath)) {
-			return false;
-		}
-
-		$this->lockPath($path, $type, $lockMountPoint);
-
-		$parents = $this->getParents($path);
-		foreach ($parents as $parent) {
-			$this->lockPath($parent, ILockingProvider::LOCK_SHARED);
-		}
-
-		return true;
-	}
-
-	/**
-	 * Unlock a path and all its parents up to the root of the view
-	 *
-	 * @param string $path the path of the file to lock relative to the view
-	 * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE
-	 * @param bool $lockMountPoint true to lock the mount point, false to lock the attached mount/storage
-	 *
-	 * @return bool False if the path is excluded from locking, true otherwise
-	 * @throws LockedException
-	 */
-	public function unlockFile($path, $type, $lockMountPoint = false) {
-		$absolutePath = $this->getAbsolutePath($path);
-		$absolutePath = Filesystem::normalizePath($absolutePath);
-		if (!$this->shouldLockFile($absolutePath)) {
-			return false;
-		}
-
-		$this->unlockPath($path, $type, $lockMountPoint);
-
-		$parents = $this->getParents($path);
-		foreach ($parents as $parent) {
-			$this->unlockPath($parent, ILockingProvider::LOCK_SHARED);
-		}
-
-		return true;
-	}
-
-	/**
-	 * Only lock files in data/user/files/
-	 *
-	 * @param string $path Absolute path to the file/folder we try to (un)lock
-	 * @return bool
-	 */
-	protected function shouldLockFile($path) {
-		$path = Filesystem::normalizePath($path);
-
-		$pathSegments = explode('/', $path);
-		if (isset($pathSegments[2])) {
-			// E.g.: /username/files/path-to-file
-			return ($pathSegments[2] === 'files') && (count($pathSegments) > 3);
-		}
-
-		return !str_starts_with($path, '/appdata_');
-	}
-
-	/**
-	 * Shortens the given absolute path to be relative to
-	 * "$user/files".
-	 *
-	 * @param string $absolutePath absolute path which is under "files"
-	 *
-	 * @return string path relative to "files" with trimmed slashes or null
-	 *                if the path was NOT relative to files
-	 *
-	 * @throws \InvalidArgumentException if the given path was not under "files"
-	 * @since 8.1.0
-	 */
-	public function getPathRelativeToFiles($absolutePath) {
-		$path = Filesystem::normalizePath($absolutePath);
-		$parts = explode('/', trim($path, '/'), 3);
-		// "$user", "files", "path/to/dir"
-		if (!isset($parts[1]) || $parts[1] !== 'files') {
-			$this->logger->error(
-				'$absolutePath must be relative to "files", value is "{absolutePath}"',
-				[
-					'absolutePath' => $absolutePath,
-				]
-			);
-			throw new \InvalidArgumentException('$absolutePath must be relative to "files"');
-		}
-		if (isset($parts[2])) {
-			return $parts[2];
-		}
-		return '';
-	}
-
-	/**
-	 * @param string $filename
-	 * @return array
-	 * @throws \OC\User\NoUserException
-	 * @throws NotFoundException
-	 */
-	public function getUidAndFilename($filename) {
-		$info = $this->getFileInfo($filename);
-		if (!$info instanceof \OCP\Files\FileInfo) {
-			throw new NotFoundException($this->getAbsolutePath($filename) . ' not found');
-		}
-		$uid = $info->getOwner()->getUID();
-		if ($uid != \OC_User::getUser()) {
-			Filesystem::initMountPoints($uid);
-			$ownerView = new View('/' . $uid . '/files');
-			try {
-				$filename = $ownerView->getPath($info['fileid']);
-			} catch (NotFoundException $e) {
-				throw new NotFoundException('File with id ' . $info['fileid'] . ' not found for user ' . $uid);
-			}
-		}
-		return [$uid, $filename];
-	}
-
-	/**
-	 * Creates parent non-existing folders
-	 *
-	 * @param string $filePath
-	 * @return bool
-	 */
-	private function createParentDirectories($filePath) {
-		$directoryParts = explode('/', $filePath);
-		$directoryParts = array_filter($directoryParts);
-		foreach ($directoryParts as $key => $part) {
-			$currentPathElements = array_slice($directoryParts, 0, $key);
-			$currentPath = '/' . implode('/', $currentPathElements);
-			if ($this->is_file($currentPath)) {
-				return false;
-			}
-			if (!$this->file_exists($currentPath)) {
-				$this->mkdir($currentPath);
-			}
-		}
-
-		return true;
-	}
+    private string $fakeRoot = '';
+    private ILockingProvider $lockingProvider;
+    private bool $lockingEnabled;
+    private bool $updaterEnabled = true;
+    private UserManager $userManager;
+    private LoggerInterface $logger;
+
+    /**
+     * @throws \Exception If $root contains an invalid path
+     */
+    public function __construct(string $root = '') {
+        if (!Filesystem::isValidPath($root)) {
+            throw new \Exception();
+        }
+
+        $this->fakeRoot = $root;
+        $this->lockingProvider = \OC::$server->get(ILockingProvider::class);
+        $this->lockingEnabled = !($this->lockingProvider instanceof \OC\Lock\NoopLockingProvider);
+        $this->userManager = \OC::$server->getUserManager();
+        $this->logger = \OC::$server->get(LoggerInterface::class);
+    }
+
+    /**
+     * @param ?string $path
+     * @psalm-template S as string|null
+     * @psalm-param S $path
+     * @psalm-return (S is string ? string : null)
+     */
+    public function getAbsolutePath($path = '/'): ?string {
+        if ($path === null) {
+            return null;
+        }
+        $this->assertPathLength($path);
+        return PathHelper::normalizePath($this->fakeRoot . '/' . $path);
+    }
+
+    /**
+     * Change the root to a fake root
+     *
+     * @param string $fakeRoot
+     */
+    public function chroot($fakeRoot): void {
+        if (!$fakeRoot == '') {
+            if ($fakeRoot[0] !== '/') {
+                $fakeRoot = '/' . $fakeRoot;
+            }
+        }
+        $this->fakeRoot = $fakeRoot;
+    }
+
+    /**
+     * Get the fake root
+     */
+    public function getRoot(): string {
+        return $this->fakeRoot;
+    }
+
+    /**
+     * get path relative to the root of the view
+     *
+     * @param string $path
+     */
+    public function getRelativePath($path): ?string {
+        $this->assertPathLength($path);
+        if ($this->fakeRoot == '') {
+            return $path;
+        }
+
+        if (rtrim($path, '/') === rtrim($this->fakeRoot, '/')) {
+            return '/';
+        }
+
+        // missing slashes can cause wrong matches!
+        $root = rtrim($this->fakeRoot, '/') . '/';
+
+        if (!str_starts_with($path, $root)) {
+            return null;
+        } else {
+            $path = substr($path, strlen($this->fakeRoot));
+            if (strlen($path) === 0) {
+                return '/';
+            } else {
+                return $path;
+            }
+        }
+    }
+
+    /**
+     * Get the mountpoint of the storage object for a path
+     * ( note: because a storage is not always mounted inside the fakeroot, the
+     * returned mountpoint is relative to the absolute root of the filesystem
+     * and does not take the chroot into account )
+     *
+     * @param string $path
+     */
+    public function getMountPoint($path): string {
+        return Filesystem::getMountPoint($this->getAbsolutePath($path));
+    }
+
+    /**
+     * Get the mountpoint of the storage object for a path
+     * ( note: because a storage is not always mounted inside the fakeroot, the
+     * returned mountpoint is relative to the absolute root of the filesystem
+     * and does not take the chroot into account )
+     *
+     * @param string $path
+     */
+    public function getMount($path): IMountPoint {
+        return Filesystem::getMountManager()->find($this->getAbsolutePath($path));
+    }
+
+    /**
+     * Resolve a path to a storage and internal path
+     *
+     * @param string $path
+     * @return array{?\OCP\Files\Storage\IStorage, string} an array consisting of the storage and the internal path
+     */
+    public function resolvePath($path): array {
+        $a = $this->getAbsolutePath($path);
+        $p = Filesystem::normalizePath($a);
+        return Filesystem::resolvePath($p);
+    }
+
+    /**
+     * Return the path to a local version of the file
+     * we need this because we can't know if a file is stored local or not from
+     * outside the filestorage and for some purposes a local file is needed
+     *
+     * @param string $path
+     */
+    public function getLocalFile($path): string|false {
+        $parent = substr($path, 0, strrpos($path, '/') ?: 0);
+        $path = $this->getAbsolutePath($path);
+        [$storage, $internalPath] = Filesystem::resolvePath($path);
+        if (Filesystem::isValidPath($parent) && $storage) {
+            return $storage->getLocalFile($internalPath);
+        } else {
+            return false;
+        }
+    }
+
+    /**
+     * the following functions operate with arguments and return values identical
+     * to those of their PHP built-in equivalents. Mostly they are merely wrappers
+     * for \OC\Files\Storage\Storage via basicOperation().
+     */
+    public function mkdir($path) {
+        return $this->basicOperation('mkdir', $path, ['create', 'write']);
+    }
+
+    /**
+     * remove mount point
+     *
+     * @param IMountPoint $mount
+     * @param string $path relative to data/
+     */
+    protected function removeMount($mount, $path): bool {
+        if ($mount instanceof MoveableMount) {
+            // cut of /user/files to get the relative path to data/user/files
+            $pathParts = explode('/', $path, 4);
+            $relPath = '/' . $pathParts[3];
+            $this->lockFile($relPath, ILockingProvider::LOCK_SHARED, true);
+            \OC_Hook::emit(
+                Filesystem::CLASSNAME, 'umount',
+                [Filesystem::signal_param_path => $relPath]
+            );
+            $this->changeLock($relPath, ILockingProvider::LOCK_EXCLUSIVE, true);
+            $result = $mount->removeMount();
+            $this->changeLock($relPath, ILockingProvider::LOCK_SHARED, true);
+            if ($result) {
+                \OC_Hook::emit(
+                    Filesystem::CLASSNAME, 'post_umount',
+                    [Filesystem::signal_param_path => $relPath]
+                );
+            }
+            $this->unlockFile($relPath, ILockingProvider::LOCK_SHARED, true);
+            return $result;
+        } else {
+            // do not allow deleting the storage's root / the mount point
+            // because for some storages it might delete the whole contents
+            // but isn't supposed to work that way
+            return false;
+        }
+    }
+
+    public function disableCacheUpdate(): void {
+        $this->updaterEnabled = false;
+    }
+
+    public function enableCacheUpdate(): void {
+        $this->updaterEnabled = true;
+    }
+
+    protected function writeUpdate(Storage $storage, string $internalPath, ?int $time = null, ?int $sizeDifference = null): void {
+        if ($this->updaterEnabled) {
+            if (is_null($time)) {
+                $time = time();
+            }
+            $storage->getUpdater()->update($internalPath, $time, $sizeDifference);
+        }
+    }
+
+    protected function removeUpdate(Storage $storage, string $internalPath): void {
+        if ($this->updaterEnabled) {
+            $storage->getUpdater()->remove($internalPath);
+        }
+    }
+
+    protected function renameUpdate(Storage $sourceStorage, Storage $targetStorage, string $sourceInternalPath, string $targetInternalPath): void {
+        if ($this->updaterEnabled) {
+            $targetStorage->getUpdater()->renameFromStorage($sourceStorage, $sourceInternalPath, $targetInternalPath);
+        }
+    }
+
+    protected function copyUpdate(Storage $sourceStorage, Storage $targetStorage, string $sourceInternalPath, string $targetInternalPath): void {
+        if ($this->updaterEnabled) {
+            $targetStorage->getUpdater()->copyFromStorage($sourceStorage, $sourceInternalPath, $targetInternalPath);
+        }
+    }
+
+    /**
+     * @param string $path
+     * @return bool|mixed
+     */
+    public function rmdir($path) {
+        $absolutePath = $this->getAbsolutePath($path);
+        $mount = Filesystem::getMountManager()->find($absolutePath);
+        if ($mount->getInternalPath($absolutePath) === '') {
+            return $this->removeMount($mount, $absolutePath);
+        }
+        if ($this->is_dir($path)) {
+            $result = $this->basicOperation('rmdir', $path, ['delete']);
+        } else {
+            $result = false;
+        }
+
+        if (!$result && !$this->file_exists($path)) { //clear ghost files from the cache on delete
+            $storage = $mount->getStorage();
+            $internalPath = $mount->getInternalPath($absolutePath);
+            $storage->getUpdater()->remove($internalPath);
+        }
+        return $result;
+    }
+
+    /**
+     * @param string $path
+     * @return resource|false
+     */
+    public function opendir($path) {
+        return $this->basicOperation('opendir', $path, ['read']);
+    }
+
+    /**
+     * @param string $path
+     * @return bool|mixed
+     */
+    public function is_dir($path) {
+        if ($path == '/') {
+            return true;
+        }
+        return $this->basicOperation('is_dir', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return bool|mixed
+     */
+    public function is_file($path) {
+        if ($path == '/') {
+            return false;
+        }
+        return $this->basicOperation('is_file', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return mixed
+     */
+    public function stat($path) {
+        return $this->basicOperation('stat', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return mixed
+     */
+    public function filetype($path) {
+        return $this->basicOperation('filetype', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return mixed
+     */
+    public function filesize(string $path) {
+        return $this->basicOperation('filesize', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return bool|mixed
+     * @throws InvalidPathException
+     */
+    public function readfile($path) {
+        $this->assertPathLength($path);
+        if (ob_get_level()) {
+            ob_end_clean();
+        }
+        $handle = $this->fopen($path, 'rb');
+        if ($handle) {
+            $chunkSize = 524288; // 512 kiB chunks
+            while (!feof($handle)) {
+                echo fread($handle, $chunkSize);
+                flush();
+                $this->checkConnectionStatus();
+            }
+            fclose($handle);
+            return $this->filesize($path);
+        }
+        return false;
+    }
+
+    /**
+     * @param string $path
+     * @param int $from
+     * @param int $to
+     * @return bool|mixed
+     * @throws InvalidPathException
+     * @throws \OCP\Files\UnseekableException
+     */
+    public function readfilePart($path, $from, $to) {
+        $this->assertPathLength($path);
+        if (ob_get_level()) {
+            ob_end_clean();
+        }
+        $handle = $this->fopen($path, 'rb');
+        if ($handle) {
+            $chunkSize = 524288; // 512 kiB chunks
+            $startReading = true;
+
+            if ($from !== 0 && $from !== '0' && fseek($handle, $from) !== 0) {
+                // forward file handle via chunked fread because fseek seem to have failed
+
+                $end = $from + 1;
+                while (!feof($handle) && ftell($handle) < $end && ftell($handle) !== $from) {
+                    $len = $from - ftell($handle);
+                    if ($len > $chunkSize) {
+                        $len = $chunkSize;
+                    }
+                    $result = fread($handle, $len);
+
+                    if ($result === false) {
+                        $startReading = false;
+                        break;
+                    }
+                }
+            }
+
+            if ($startReading) {
+                $end = $to + 1;
+                while (!feof($handle) && ftell($handle) < $end) {
+                    $len = $end - ftell($handle);
+                    if ($len > $chunkSize) {
+                        $len = $chunkSize;
+                    }
+                    echo fread($handle, $len);
+                    flush();
+                    $this->checkConnectionStatus();
+                }
+                return ftell($handle) - $from;
+            }
+
+            throw new \OCP\Files\UnseekableException('fseek error');
+        }
+        return false;
+    }
+
+    private function checkConnectionStatus(): void {
+        $connectionStatus = \connection_status();
+        if ($connectionStatus !== CONNECTION_NORMAL) {
+            throw new ConnectionLostException("Connection lost. Status: $connectionStatus");
+        }
+    }
+
+    /**
+     * @param string $path
+     * @return mixed
+     */
+    public function isCreatable($path) {
+        return $this->basicOperation('isCreatable', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return mixed
+     */
+    public function isReadable($path) {
+        return $this->basicOperation('isReadable', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return mixed
+     */
+    public function isUpdatable($path) {
+        return $this->basicOperation('isUpdatable', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return bool|mixed
+     */
+    public function isDeletable($path) {
+        $absolutePath = $this->getAbsolutePath($path);
+        $mount = Filesystem::getMountManager()->find($absolutePath);
+        if ($mount->getInternalPath($absolutePath) === '') {
+            return $mount instanceof MoveableMount;
+        }
+        return $this->basicOperation('isDeletable', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return mixed
+     */
+    public function isSharable($path) {
+        return $this->basicOperation('isSharable', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return bool|mixed
+     */
+    public function file_exists($path) {
+        if ($path == '/') {
+            return true;
+        }
+        return $this->basicOperation('file_exists', $path);
+    }
+
+    /**
+     * @param string $path
+     * @return mixed
+     */
+    public function filemtime($path) {
+        return $this->basicOperation('filemtime', $path);
+    }
+
+    /**
+     * @param string $path
+     * @param int|string $mtime
+     */
+    public function touch($path, $mtime = null): bool {
+        if (!is_null($mtime) && !is_numeric($mtime)) {
+            $mtime = strtotime($mtime);
+        }
+
+        $hooks = ['touch'];
+
+        if (!$this->file_exists($path)) {
+            $hooks[] = 'create';
+            $hooks[] = 'write';
+        }
+        try {
+            $result = $this->basicOperation('touch', $path, $hooks, $mtime);
+        } catch (\Exception $e) {
+            $this->logger->info('Error while setting modified time', ['app' => 'core', 'exception' => $e]);
+            $result = false;
+        }
+        if (!$result) {
+            // If create file fails because of permissions on external storage like SMB folders,
+            // check file exists and return false if not.
+            if (!$this->file_exists($path)) {
+                return false;
+            }
+            if (is_null($mtime)) {
+                $mtime = time();
+            }
+            //if native touch fails, we emulate it by changing the mtime in the cache
+            $this->putFileInfo($path, ['mtime' => floor($mtime)]);
+        }
+        return true;
+    }
+
+    /**
+     * @param string $path
+     * @return string|false
+     * @throws LockedException
+     */
+    public function file_get_contents($path) {
+        return $this->basicOperation('file_get_contents', $path, ['read']);
+    }
+
+    protected function emit_file_hooks_pre(bool $exists, string $path, bool &$run): void {
+        if (!$exists) {
+            \OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_create, [
+                Filesystem::signal_param_path => $this->getHookPath($path),
+                Filesystem::signal_param_run => &$run,
+            ]);
+        } else {
+            \OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_update, [
+                Filesystem::signal_param_path => $this->getHookPath($path),
+                Filesystem::signal_param_run => &$run,
+            ]);
+        }
+        \OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_write, [
+            Filesystem::signal_param_path => $this->getHookPath($path),
+            Filesystem::signal_param_run => &$run,
+        ]);
+    }
+
+    protected function emit_file_hooks_post(bool $exists, string $path): void {
+        if (!$exists) {
+            \OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_post_create, [
+                Filesystem::signal_param_path => $this->getHookPath($path),
+            ]);
+        } else {
+            \OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_post_update, [
+                Filesystem::signal_param_path => $this->getHookPath($path),
+            ]);
+        }
+        \OC_Hook::emit(Filesystem::CLASSNAME, Filesystem::signal_post_write, [
+            Filesystem::signal_param_path => $this->getHookPath($path),
+        ]);
+    }
+
+    /**
+     * @param string $path
+     * @param string|resource $data
+     * @return bool|mixed
+     * @throws LockedException
+     */
+    public function file_put_contents($path, $data) {
+        if (is_resource($data)) { //not having to deal with streams in file_put_contents makes life easier
+            $absolutePath = Filesystem::normalizePath($this->getAbsolutePath($path));
+            if (Filesystem::isValidPath($path)
+                && !Filesystem::isFileBlacklisted($path)
+            ) {
+                $path = $this->getRelativePath($absolutePath);
+                if ($path === null) {
+                    throw new InvalidPathException("Path $absolutePath is not in the expected root");
+                }
+
+                $this->lockFile($path, ILockingProvider::LOCK_SHARED);
+
+                $exists = $this->file_exists($path);
+                if ($this->shouldEmitHooks($path)) {
+                    $run = true;
+                    $this->emit_file_hooks_pre($exists, $path, $run);
+                    if (!$run) {
+                        $this->unlockFile($path, ILockingProvider::LOCK_SHARED);
+                        return false;
+                    }
+                }
+
+                try {
+                    $this->changeLock($path, ILockingProvider::LOCK_EXCLUSIVE);
+                } catch (\Exception $e) {
+                    // Release the shared lock before throwing.
+                    $this->unlockFile($path, ILockingProvider::LOCK_SHARED);
+                    throw $e;
+                }
+
+                /** @var Storage $storage */
+                [$storage, $internalPath] = $this->resolvePath($path);
+                $target = $storage->fopen($internalPath, 'w');
+                if ($target) {
+                    [, $result] = Files::streamCopy($data, $target, true);
+                    fclose($target);
+                    fclose($data);
+
+                    $this->writeUpdate($storage, $internalPath);
+
+                    $this->changeLock($path, ILockingProvider::LOCK_SHARED);
+
+                    if ($this->shouldEmitHooks($path) && $result !== false) {
+                        $this->emit_file_hooks_post($exists, $path);
+                    }
+                    $this->unlockFile($path, ILockingProvider::LOCK_SHARED);
+                    return $result;
+                } else {
+                    $this->unlockFile($path, ILockingProvider::LOCK_EXCLUSIVE);
+                    return false;
+                }
+            } else {
+                return false;
+            }
+        } else {
+            $hooks = $this->file_exists($path) ? ['update', 'write'] : ['create', 'write'];
+            return $this->basicOperation('file_put_contents', $path, $hooks, $data);
+        }
+    }
+
+    /**
+     * @param string $path
+     * @return bool|mixed
+     */
+    public function unlink($path) {
+        if ($path === '' || $path === '/') {
+            // do not allow deleting the root
+            return false;
+        }
+        $postFix = (substr($path, -1) === '/') ? '/' : '';
+        $absolutePath = Filesystem::normalizePath($this->getAbsolutePath($path));
+        $mount = Filesystem::getMountManager()->find($absolutePath . $postFix);
+        if ($mount->getInternalPath($absolutePath) === '') {
+            return $this->removeMount($mount, $absolutePath);
+        }
+        if ($this->is_dir($path)) {
+            $result = $this->basicOperation('rmdir', $path, ['delete']);
+        } else {
+            $result = $this->basicOperation('unlink', $path, ['delete']);
+        }
+        if (!$result && !$this->file_exists($path)) { //clear ghost files from the cache on delete
+            $storage = $mount->getStorage();
+            $internalPath = $mount->getInternalPath($absolutePath);
+            $storage->getUpdater()->remove($internalPath);
+            return true;
+        } else {
+            return $result;
+        }
+    }
+
+    /**
+     * @param string $directory
+     * @return bool|mixed
+     */
+    public function deleteAll($directory) {
+        return $this->rmdir($directory);
+    }
+
+    /**
+     * Rename/move a file or folder from the source path to target path.
+     *
+     * @param string $source source path
+     * @param string $target target path
+     * @param array $options
+     *
+     * @return bool|mixed
+     * @throws LockedException
+     */
+    public function rename($source, $target, array $options = []) {
+        $checkSubMounts = $options['checkSubMounts'] ?? true;
+
+        $absolutePath1 = Filesystem::normalizePath($this->getAbsolutePath($source));
+        $absolutePath2 = Filesystem::normalizePath($this->getAbsolutePath($target));
+
+        if (str_starts_with($absolutePath2, $absolutePath1 . '/')) {
+            throw new ForbiddenException('Moving a folder into a child folder is forbidden', false);
+        }
+
+        /** @var IMountManager $mountManager */
+        $mountManager = \OC::$server->get(IMountManager::class);
+
+        $targetParts = explode('/', $absolutePath2);
+        $targetUser = $targetParts[1] ?? null;
+        $result = false;
+        if (
+            Filesystem::isValidPath($target)
+            && Filesystem::isValidPath($source)
+            && !Filesystem::isFileBlacklisted($target)
+        ) {
+            $source = $this->getRelativePath($absolutePath1);
+            $target = $this->getRelativePath($absolutePath2);
+            $exists = $this->file_exists($target);
+
+            if ($source == null || $target == null) {
+                return false;
+            }
+
+            try {
+                $this->verifyPath(dirname($target), basename($target));
+            } catch (InvalidPathException) {
+                return false;
+            }
+
+            $this->lockFile($source, ILockingProvider::LOCK_SHARED, true);
+            try {
+                $this->lockFile($target, ILockingProvider::LOCK_SHARED, true);
+
+                $run = true;
+                if ($this->shouldEmitHooks($source) && (Cache\Scanner::isPartialFile($source) && !Cache\Scanner::isPartialFile($target))) {
+                    // if it was a rename from a part file to a regular file it was a write and not a rename operation
+                    $this->emit_file_hooks_pre($exists, $target, $run);
+                } elseif ($this->shouldEmitHooks($source)) {
+                    $sourcePath = $this->getHookPath($source);
+                    $targetPath = $this->getHookPath($target);
+                    if ($sourcePath !== null && $targetPath !== null) {
+                        \OC_Hook::emit(
+                            Filesystem::CLASSNAME, Filesystem::signal_rename,
+                            [
+                                Filesystem::signal_param_oldpath => $sourcePath,
+                                Filesystem::signal_param_newpath => $targetPath,
+                                Filesystem::signal_param_run => &$run
+                            ]
+                        );
+                    }
+                }
+                if ($run) {
+                    $manager = Filesystem::getMountManager();
+                    $mount1 = $this->getMount($source);
+                    $mount2 = $this->getMount($target);
+                    $storage1 = $mount1->getStorage();
+                    $storage2 = $mount2->getStorage();
+                    $internalPath1 = $mount1->getInternalPath($absolutePath1);
+                    $internalPath2 = $mount2->getInternalPath($absolutePath2);
+
+                    $this->changeLock($source, ILockingProvider::LOCK_EXCLUSIVE, true);
+                    try {
+                        $this->changeLock($target, ILockingProvider::LOCK_EXCLUSIVE, true);
+
+                        if ($checkSubMounts) {
+                            $movedMounts = $mountManager->findIn($this->getAbsolutePath($source));
+                        } else {
+                            $movedMounts = [];
+                        }
+
+                        if ($internalPath1 === '') {
+                            $sourceParentMount = $this->getMount(dirname($source));
+                            $movedMounts[] = $mount1;
+                            $this->validateMountMove($movedMounts, $sourceParentMount, $mount2, !$this->targetIsNotShared($targetUser, $absolutePath2));
+                            /**
+                             * @var \OC\Files\Mount\MountPoint | \OC\Files\Mount\MoveableMount $mount1
+                             */
+                            $sourceMountPoint = $mount1->getMountPoint();
+                            $result = $mount1->moveMount($absolutePath2);
+                            $manager->moveMount($sourceMountPoint, $mount1->getMountPoint());
+
+                            // moving a file/folder within the same mount point
+                        } elseif ($storage1 === $storage2) {
+                            if (count($movedMounts) > 0) {
+                                $this->validateMountMove($movedMounts, $mount1, $mount2, !$this->targetIsNotShared($targetUser, $absolutePath2));
+                            }
+                            if ($storage1) {
+                                $result = $storage1->rename($internalPath1, $internalPath2);
+                            } else {
+                                $result = false;
+                            }
+                            // moving a file/folder between storages (from $storage1 to $storage2)
+                        } else {
+                            if (count($movedMounts) > 0) {
+                                $this->validateMountMove($movedMounts, $mount1, $mount2, !$this->targetIsNotShared($targetUser, $absolutePath2));
+                            }
+                            $result = $storage2->moveFromStorage($storage1, $internalPath1, $internalPath2);
+                        }
+
+                        if ((Cache\Scanner::isPartialFile($source) && !Cache\Scanner::isPartialFile($target)) && $result !== false) {
+                            // if it was a rename from a part file to a regular file it was a write and not a rename operation
+                            $this->writeUpdate($storage2, $internalPath2);
+                        } elseif ($result) {
+                            if ($internalPath1 !== '') { // don't do a cache update for moved mounts
+                                $this->renameUpdate($storage1, $storage2, $internalPath1, $internalPath2);
+                            }
+                        }
+                    } catch (\Exception $e) {
+                        throw $e;
+                    } finally {
+                        $this->changeLock($source, ILockingProvider::LOCK_SHARED, true);
+                        $this->changeLock($target, ILockingProvider::LOCK_SHARED, true);
+                    }
+
+                    if ((Cache\Scanner::isPartialFile($source) && !Cache\Scanner::isPartialFile($target)) && $result !== false) {
+                        if ($this->shouldEmitHooks()) {
+                            $this->emit_file_hooks_post($exists, $target);
+                        }
+                    } elseif ($result) {
+                        if ($this->shouldEmitHooks($source) && $this->shouldEmitHooks($target)) {
+                            $sourcePath = $this->getHookPath($source);
+                            $targetPath = $this->getHookPath($target);
+                            if ($sourcePath !== null && $targetPath !== null) {
+                                \OC_Hook::emit(
+                                    Filesystem::CLASSNAME,
+                                    Filesystem::signal_post_rename,
+                                    [
+                                        Filesystem::signal_param_oldpath => $sourcePath,
+                                        Filesystem::signal_param_newpath => $targetPath,
+                                    ]
+                                );
+                            }
+                        }
+                    }
+                }
+            } catch (\Exception $e) {
+                throw $e;
+            } finally {
+                $this->unlockFile($source, ILockingProvider::LOCK_SHARED, true);
+                $this->unlockFile($target, ILockingProvider::LOCK_SHARED, true);
+            }
+        }
+        return $result;
+    }
+
+    /**
+     * @throws ForbiddenException
+     */
+    private function validateMountMove(array $mounts, IMountPoint $sourceMount, IMountPoint $targetMount, bool $targetIsShared): void {
+        $targetPath = $this->getRelativePath($targetMount->getMountPoint());
+        if ($targetPath) {
+            $targetPath = trim($targetPath, '/');
+        } else {
+            $targetPath = $targetMount->getMountPoint();
+        }
+
+        $l = \OC::$server->get(IFactory::class)->get('files');
+        foreach ($mounts as $mount) {
+            $sourcePath = $this->getRelativePath($mount->getMountPoint());
+            if ($sourcePath) {
+                $sourcePath = trim($sourcePath, '/');
+            } else {
+                $sourcePath = $mount->getMountPoint();
+            }
+
+            if (!$mount instanceof MoveableMount) {
+                throw new ForbiddenException($l->t('Storage %s cannot be moved', [$sourcePath]), false);
+            }
+
+            if ($targetIsShared) {
+                if ($sourceMount instanceof SharedMount) {
+                    throw new ForbiddenException($l->t('Moving a share (%s) into a shared folder is not allowed', [$sourcePath]), false);
+                } else {
+                    throw new ForbiddenException($l->t('Moving a storage (%s) into a shared folder is not allowed', [$sourcePath]), false);
+                }
+            }
+
+            if ($sourceMount !== $targetMount) {
+                if ($sourceMount instanceof SharedMount) {
+                    if ($targetMount instanceof SharedMount) {
+                        throw new ForbiddenException($l->t('Moving a share (%s) into another share (%s) is not allowed', [$sourcePath, $targetPath]), false);
+                    } else {
+                        throw new ForbiddenException($l->t('Moving a share (%s) into another storage (%s) is not allowed', [$sourcePath, $targetPath]), false);
+                    }
+                } else {
+                    if ($targetMount instanceof SharedMount) {
+                        throw new ForbiddenException($l->t('Moving a storage (%s) into a share (%s) is not allowed', [$sourcePath, $targetPath]), false);
+                    } else {
+                        throw new ForbiddenException($l->t('Moving a storage (%s) into another storage (%s) is not allowed', [$sourcePath, $targetPath]), false);
+                    }
+                }
+            }
+        }
+    }
+
+    /**
+     * Copy a file/folder from the source path to target path
+     *
+     * @param string $source source path
+     * @param string $target target path
+     * @param bool $preserveMtime whether to preserve mtime on the copy
+     *
+     * @return bool|mixed
+     */
+    public function copy($source, $target, $preserveMtime = false) {
+        $absolutePath1 = Filesystem::normalizePath($this->getAbsolutePath($source));
+        $absolutePath2 = Filesystem::normalizePath($this->getAbsolutePath($target));
+        $result = false;
+        if (
+            Filesystem::isValidPath($target)
+            && Filesystem::isValidPath($source)
+            && !Filesystem::isFileBlacklisted($target)
+        ) {
+            $source = $this->getRelativePath($absolutePath1);
+            $target = $this->getRelativePath($absolutePath2);
+
+            if ($source == null || $target == null) {
+                return false;
+            }
+            $run = true;
+
+            $this->lockFile($target, ILockingProvider::LOCK_SHARED);
+            $this->lockFile($source, ILockingProvider::LOCK_SHARED);
+            $lockTypePath1 = ILockingProvider::LOCK_SHARED;
+            $lockTypePath2 = ILockingProvider::LOCK_SHARED;
+
+            try {
+                $exists = $this->file_exists($target);
+                if ($this->shouldEmitHooks($target)) {
+                    \OC_Hook::emit(
+                        Filesystem::CLASSNAME,
+                        Filesystem::signal_copy,
+                        [
+                            Filesystem::signal_param_oldpath => $this->getHookPath($source),
+                            Filesystem::signal_param_newpath => $this->getHookPath($target),
+                            Filesystem::signal_param_run => &$run
+                        ]
+                    );
+                    $this->emit_file_hooks_pre($exists, $target, $run);
+                }
+                if ($run) {
+                    $mount1 = $this->getMount($source);
+                    $mount2 = $this->getMount($target);
+                    $storage1 = $mount1->getStorage();
+                    $internalPath1 = $mount1->getInternalPath($absolutePath1);
+                    $storage2 = $mount2->getStorage();
+                    $internalPath2 = $mount2->getInternalPath($absolutePath2);
+
+                    $this->changeLock($target, ILockingProvider::LOCK_EXCLUSIVE);
+                    $lockTypePath2 = ILockingProvider::LOCK_EXCLUSIVE;
+
+                    if ($mount1->getMountPoint() == $mount2->getMountPoint()) {
+                        if ($storage1) {
+                            $result = $storage1->copy($internalPath1, $internalPath2);
+                        } else {
+                            $result = false;
+                        }
+                    } else {
+                        $result = $storage2->copyFromStorage($storage1, $internalPath1, $internalPath2);
+                    }
+
+                    if ($result) {
+                        $this->copyUpdate($storage1, $storage2, $internalPath1, $internalPath2);
+                    }
+
+                    $this->changeLock($target, ILockingProvider::LOCK_SHARED);
+                    $lockTypePath2 = ILockingProvider::LOCK_SHARED;
+
+                    if ($this->shouldEmitHooks($target) && $result !== false) {
+                        \OC_Hook::emit(
+                            Filesystem::CLASSNAME,
+                            Filesystem::signal_post_copy,
+                            [
+                                Filesystem::signal_param_oldpath => $this->getHookPath($source),
+                                Filesystem::signal_param_newpath => $this->getHookPath($target)
+                            ]
+                        );
+                        $this->emit_file_hooks_post($exists, $target);
+                    }
+                }
+            } catch (\Exception $e) {
+                $this->unlockFile($target, $lockTypePath2);
+                $this->unlockFile($source, $lockTypePath1);
+                throw $e;
+            }
+
+            $this->unlockFile($target, $lockTypePath2);
+            $this->unlockFile($source, $lockTypePath1);
+        }
+        return $result;
+    }
+
+    /**
+     * @param string $path
+     * @param string $mode 'r' or 'w'
+     * @return resource|false
+     * @throws LockedException
+     */
+    public function fopen($path, $mode) {
+        $mode = str_replace('b', '', $mode); // the binary flag is a windows only feature which we do not support
+        $hooks = [];
+        switch ($mode) {
+            case 'r':
+                $hooks[] = 'read';
+                break;
+            case 'r+':
+            case 'w+':
+            case 'x+':
+            case 'a+':
+                $hooks[] = 'read';
+                $hooks[] = 'write';
+                break;
+            case 'w':
+            case 'x':
+            case 'a':
+                $hooks[] = 'write';
+                break;
+            default:
+                $this->logger->error('invalid mode (' . $mode . ') for ' . $path, ['app' => 'core']);
+        }
+
+        if ($mode !== 'r' && $mode !== 'w') {
+            $this->logger->info('Trying to open a file with a mode other than "r" or "w" can cause severe performance issues with some backends', ['app' => 'core']);
+        }
+
+        $handle = $this->basicOperation('fopen', $path, $hooks, $mode);
+        if (!is_resource($handle) && $mode === 'r') {
+            // trying to read a file that isn't on disk, check if the cache is out of sync and rescan if needed
+            $mount = $this->getMount($path);
+            $internalPath = $mount->getInternalPath($this->getAbsolutePath($path));
+            $storage = $mount->getStorage();
+            if ($storage->getCache()->inCache($internalPath) && !$storage->file_exists($path)) {
+                $this->writeUpdate($storage, $internalPath);
+            }
+        }
+        return $handle;
+    }
+
+    /**
+     * @param string $path
+     * @throws InvalidPathException
+     */
+    public function toTmpFile($path): string|false {
+        $this->assertPathLength($path);
+        if (Filesystem::isValidPath($path)) {
+            $source = $this->fopen($path, 'r');
+            if ($source) {
+                $extension = pathinfo($path, PATHINFO_EXTENSION);
+                $tmpFile = \OC::$server->getTempManager()->getTemporaryFile($extension);
+                file_put_contents($tmpFile, $source);
+                return $tmpFile;
+            } else {
+                return false;
+            }
+        } else {
+            return false;
+        }
+    }
+
+    /**
+     * @param string $tmpFile
+     * @param string $path
+     * @return bool|mixed
+     * @throws InvalidPathException
+     */
+    public function fromTmpFile($tmpFile, $path) {
+        $this->assertPathLength($path);
+        if (Filesystem::isValidPath($path)) {
+            // Get directory that the file is going into
+            $filePath = dirname($path);
+
+            // Create the directories if any
+            if (!$this->file_exists($filePath)) {
+                $result = $this->createParentDirectories($filePath);
+                if ($result === false) {
+                    return false;
+                }
+            }
+
+            $source = fopen($tmpFile, 'r');
+            if ($source) {
+                $result = $this->file_put_contents($path, $source);
+                /**
+                 * $this->file_put_contents() might have already closed
+                 * the resource, so we check it, before trying to close it
+                 * to avoid messages in the error log.
+                 * @psalm-suppress RedundantCondition false-positive
+                 */
+                if (is_resource($source)) {
+                    fclose($source);
+                }
+                unlink($tmpFile);
+                return $result;
+            } else {
+                return false;
+            }
+        } else {
+            return false;
+        }
+    }
+
+
+    /**
+     * @param string $path
+     * @return mixed
+     * @throws InvalidPathException
+     */
+    public function getMimeType($path) {
+        $this->assertPathLength($path);
+        return $this->basicOperation('getMimeType', $path);
+    }
+
+    /**
+     * @param string $type
+     * @param string $path
+     * @param bool $raw
+     */
+    public function hash($type, $path, $raw = false): string|bool {
+        $postFix = (substr($path, -1) === '/') ? '/' : '';
+        $absolutePath = Filesystem::normalizePath($this->getAbsolutePath($path));
+        if (Filesystem::isValidPath($path)) {
+            $path = $this->getRelativePath($absolutePath);
+            if ($path == null) {
+                return false;
+            }
+            if ($this->shouldEmitHooks($path)) {
+                \OC_Hook::emit(
+                    Filesystem::CLASSNAME,
+                    Filesystem::signal_read,
+                    [Filesystem::signal_param_path => $this->getHookPath($path)]
+                );
+            }
+            /** @var Storage|null $storage */
+            [$storage, $internalPath] = Filesystem::resolvePath($absolutePath . $postFix);
+            if ($storage) {
+                return $storage->hash($type, $internalPath, $raw);
+            }
+        }
+        return false;
+    }
+
+    /**
+     * @param string $path
+     * @return mixed
+     * @throws InvalidPathException
+     */
+    public function free_space($path = '/') {
+        $this->assertPathLength($path);
+        $result = $this->basicOperation('free_space', $path);
+        if ($result === null) {
+            throw new InvalidPathException();
+        }
+        return $result;
+    }
+
+    /**
+     * abstraction layer for basic filesystem functions: wrapper for \OC\Files\Storage\Storage
+     *
+     * @param mixed $extraParam (optional)
+     * @return mixed
+     * @throws LockedException
+     *
+     * This method takes requests for basic filesystem functions (e.g. reading & writing
+     * files), processes hooks and proxies, sanitises paths, and finally passes them on to
+     * \OC\Files\Storage\Storage for delegation to a storage backend for execution
+     */
+    private function basicOperation(string $operation, string $path, array $hooks = [], $extraParam = null) {
+        $postFix = (substr($path, -1) === '/') ? '/' : '';
+        $absolutePath = Filesystem::normalizePath($this->getAbsolutePath($path));
+        if (Filesystem::isValidPath($path)
+            && !Filesystem::isFileBlacklisted($path)
+        ) {
+            $path = $this->getRelativePath($absolutePath);
+            if ($path == null) {
+                return false;
+            }
+
+            if (in_array('write', $hooks) || in_array('delete', $hooks) || in_array('read', $hooks)) {
+                // always a shared lock during pre-hooks so the hook can read the file
+                $this->lockFile($path, ILockingProvider::LOCK_SHARED);
+            }
+
+            $run = $this->runHooks($hooks, $path);
+            [$storage, $internalPath] = Filesystem::resolvePath($absolutePath . $postFix);
+            if ($run && $storage) {
+                /** @var Storage $storage */
+                if (in_array('write', $hooks) || in_array('delete', $hooks)) {
+                    try {
+                        $this->changeLock($path, ILockingProvider::LOCK_EXCLUSIVE);
+                    } catch (LockedException $e) {
+                        // release the shared lock we acquired before quitting
+                        $this->unlockFile($path, ILockingProvider::LOCK_SHARED);
+                        throw $e;
+                    }
+                }
+                try {
+                    if (!is_null($extraParam)) {
+                        $result = $storage->$operation($internalPath, $extraParam);
+                    } else {
+                        $result = $storage->$operation($internalPath);
+                    }
+                } catch (\Exception $e) {
+                    if (in_array('write', $hooks) || in_array('delete', $hooks)) {
+                        $this->unlockFile($path, ILockingProvider::LOCK_EXCLUSIVE);
+                    } elseif (in_array('read', $hooks)) {
+                        $this->unlockFile($path, ILockingProvider::LOCK_SHARED);
+                    }
+                    throw $e;
+                }
+
+                if ($result !== false && in_array('delete', $hooks)) {
+                    $this->removeUpdate($storage, $internalPath);
+                }
+                if ($result !== false && in_array('write', $hooks, true) && $operation !== 'fopen' && $operation !== 'touch') {
+                    $isCreateOperation = $operation === 'mkdir' || ($operation === 'file_put_contents' && in_array('create', $hooks, true));
+                    $sizeDifference = $operation === 'mkdir' ? 0 : $result;
+                    $this->writeUpdate($storage, $internalPath, null, $isCreateOperation ? $sizeDifference : null);
+                }
+                if ($result !== false && in_array('touch', $hooks)) {
+                    $this->writeUpdate($storage, $internalPath, $extraParam, 0);
+                }
+
+                if ((in_array('write', $hooks) || in_array('delete', $hooks)) && ($operation !== 'fopen' || $result === false)) {
+                    $this->changeLock($path, ILockingProvider::LOCK_SHARED);
+                }
+
+                $unlockLater = false;
+                if ($this->lockingEnabled && $operation === 'fopen' && is_resource($result)) {
+                    $unlockLater = true;
+                    // make sure our unlocking callback will still be called if connection is aborted
+                    ignore_user_abort(true);
+                    $result = CallbackWrapper::wrap($result, null, null, function () use ($hooks, $path) {
+                        if (in_array('write', $hooks)) {
+                            $this->unlockFile($path, ILockingProvider::LOCK_EXCLUSIVE);
+                        } elseif (in_array('read', $hooks)) {
+                            $this->unlockFile($path, ILockingProvider::LOCK_SHARED);
+                        }
+                    });
+                }
+
+                if ($this->shouldEmitHooks($path) && $result !== false) {
+                    if ($operation != 'fopen') { //no post hooks for fopen, the file stream is still open
+                        $this->runHooks($hooks, $path, true);
+                    }
+                }
+
+                if (!$unlockLater
+                    && (in_array('write', $hooks) || in_array('delete', $hooks) || in_array('read', $hooks))
+                ) {
+                    $this->unlockFile($path, ILockingProvider::LOCK_SHARED);
+                }
+                return $result;
+            } else {
+                $this->unlockFile($path, ILockingProvider::LOCK_SHARED);
+            }
+        }
+        return null;
+    }
+
+    /**
+     * get the path relative to the default root for hook usage
+     *
+     * @param string $path
+     * @return ?string
+     */
+    private function getHookPath($path): ?string {
+        $view = Filesystem::getView();
+        if (!$view) {
+            return $path;
+        }
+        return $view->getRelativePath($this->getAbsolutePath($path));
+    }
+
+    private function shouldEmitHooks(string $path = ''): bool {
+        if ($path && Cache\Scanner::isPartialFile($path)) {
+            return false;
+        }
+        if (!Filesystem::$loaded) {
+            return false;
+        }
+        $defaultRoot = Filesystem::getRoot();
+        if ($defaultRoot === null) {
+            return false;
+        }
+        if ($this->fakeRoot === $defaultRoot) {
+            return true;
+        }
+        $fullPath = $this->getAbsolutePath($path);
+
+        if ($fullPath === $defaultRoot) {
+            return true;
+        }
+
+        return (strlen($fullPath) > strlen($defaultRoot)) && (substr($fullPath, 0, strlen($defaultRoot) + 1) === $defaultRoot . '/');
+    }
+
+    /**
+     * @param string[] $hooks
+     * @param string $path
+     * @param bool $post
+     * @return bool
+     */
+    private function runHooks($hooks, $path, $post = false) {
+        $relativePath = $path;
+        $path = $this->getHookPath($path);
+        $prefix = $post ? 'post_' : '';
+        $run = true;
+        if ($this->shouldEmitHooks($relativePath)) {
+            foreach ($hooks as $hook) {
+                if ($hook != 'read') {
+                    \OC_Hook::emit(
+                        Filesystem::CLASSNAME,
+                        $prefix . $hook,
+                        [
+                            Filesystem::signal_param_run => &$run,
+                            Filesystem::signal_param_path => $path
+                        ]
+                    );
+                } elseif (!$post) {
+                    \OC_Hook::emit(
+                        Filesystem::CLASSNAME,
+                        $prefix . $hook,
+                        [
+                            Filesystem::signal_param_path => $path
+                        ]
+                    );
+                }
+            }
+        }
+        return $run;
+    }
+
+    /**
+     * check if a file or folder has been updated since $time
+     *
+     * @param string $path
+     * @param int $time
+     * @return bool
+     */
+    public function hasUpdated($path, $time) {
+        return $this->basicOperation('hasUpdated', $path, [], $time);
+    }
+
+    /**
+     * @param string $ownerId
+     * @return IUser
+     */
+    private function getUserObjectForOwner(string $ownerId) {
+        return new LazyUser($ownerId, $this->userManager);
+    }
+
+    /**
+     * Get file info from cache
+     *
+     * If the file is not in cached it will be scanned
+     * If the file has changed on storage the cache will be updated
+     *
+     * @param Storage $storage
+     * @param string $internalPath
+     * @param string $relativePath
+     * @return ICacheEntry|bool
+     */
+    private function getCacheEntry($storage, $internalPath, $relativePath) {
+        $cache = $storage->getCache($internalPath);
+        $data = $cache->get($internalPath);
+        $watcher = $storage->getWatcher($internalPath);
+
+        try {
+            // if the file is not in the cache or needs to be updated, trigger the scanner and reload the data
+            if (!$data || (isset($data['size']) && $data['size'] === -1)) {
+                if (!$storage->file_exists($internalPath)) {
+                    return false;
+                }
+                // don't need to get a lock here since the scanner does it's own locking
+                $scanner = $storage->getScanner($internalPath);
+                $scanner->scan($internalPath, Cache\Scanner::SCAN_SHALLOW);
+                $data = $cache->get($internalPath);
+            } elseif (!Cache\Scanner::isPartialFile($internalPath) && $watcher->needsUpdate($internalPath, $data)) {
+                $this->lockFile($relativePath, ILockingProvider::LOCK_SHARED);
+                $watcher->update($internalPath, $data);
+                $storage->getPropagator()->propagateChange($internalPath, time());
+                $data = $cache->get($internalPath);
+                $this->unlockFile($relativePath, ILockingProvider::LOCK_SHARED);
+            }
+        } catch (LockedException $e) {
+            // if the file is locked we just use the old cache info
+        }
+
+        return $data;
+    }
+
+    /**
+     * get the filesystem info
+     *
+     * @param string $path
+     * @param bool|string $includeMountPoints true to add mountpoint sizes,
+     *                                        'ext' to add only ext storage mount point sizes. Defaults to true.
+     * @return \OC\Files\FileInfo|false False if file does not exist
+     */
+    public function getFileInfo($path, $includeMountPoints = true) {
+        $this->assertPathLength($path);
+        if (!Filesystem::isValidPath($path)) {
+            return false;
+        }
+        $relativePath = $path;
+        $path = Filesystem::normalizePath($this->fakeRoot . '/' . $path);
+
+        $mount = Filesystem::getMountManager()->find($path);
+        $storage = $mount->getStorage();
+        $internalPath = $mount->getInternalPath($path);
+        if ($storage) {
+            $data = $this->getCacheEntry($storage, $internalPath, $relativePath);
+
+            if (!$data instanceof ICacheEntry) {
+                if (Cache\Scanner::isPartialFile($relativePath)) {
+                    return $this->getPartFileInfo($relativePath);
+                }
+
+                return false;
+            }
+
+            if ($mount instanceof MoveableMount && $internalPath === '') {
+                $data['permissions'] |= \OCP\Constants::PERMISSION_DELETE;
+            }
+            if ($internalPath === '' && $data['name']) {
+                $data['name'] = basename($path);
+            }
+
+            $ownerId = $storage->getOwner($internalPath);
+            $owner = null;
+            if ($ownerId !== false) {
+                // ownerId might be null if files are accessed with an access token without file system access
+                $owner = $this->getUserObjectForOwner($ownerId);
+            }
+            $info = new FileInfo($path, $storage, $internalPath, $data, $mount, $owner);
+
+            if (isset($data['fileid'])) {
+                if ($includeMountPoints && $data['mimetype'] === 'httpd/unix-directory') {
+                    //add the sizes of other mount points to the folder
+                    $extOnly = ($includeMountPoints === 'ext');
+                    $this->addSubMounts($info, $extOnly);
+                }
+            }
+
+            return $info;
+        } else {
+            $this->logger->warning('Storage not valid for mountpoint: ' . $mount->getMountPoint(), ['app' => 'core']);
+        }
+
+        return false;
+    }
+
+    /**
+     * Extend a FileInfo that was previously requested with `$includeMountPoints = false` to include the sub mounts
+     */
+    public function addSubMounts(FileInfo $info, $extOnly = false): void {
+        $mounts = Filesystem::getMountManager()->findIn($info->getPath());
+        $info->setSubMounts(array_filter($mounts, function (IMountPoint $mount) use ($extOnly) {
+            return !($extOnly && $mount instanceof SharedMount);
+        }));
+    }
+
+    /**
+     * get the content of a directory
+     *
+     * @param string $directory path under datadirectory
+     * @param string $mimetype_filter limit returned content to this mimetype or mimepart
+     * @return FileInfo[]
+     */
+    public function getDirectoryContent($directory, $mimetype_filter = '', ?\OCP\Files\FileInfo $directoryInfo = null) {
+        $this->assertPathLength($directory);
+        if (!Filesystem::isValidPath($directory)) {
+            return [];
+        }
+
+        $path = $this->getAbsolutePath($directory);
+        $path = Filesystem::normalizePath($path);
+        $mount = $this->getMount($directory);
+        $storage = $mount->getStorage();
+        $internalPath = $mount->getInternalPath($path);
+        if (!$storage) {
+            return [];
+        }
+
+        $cache = $storage->getCache($internalPath);
+        $user = \OC_User::getUser();
+
+        if (!$directoryInfo) {
+            $data = $this->getCacheEntry($storage, $internalPath, $directory);
+            if (!$data instanceof ICacheEntry || !isset($data['fileid'])) {
+                return [];
+            }
+        } else {
+            $data = $directoryInfo;
+        }
+
+        if (!($data->getPermissions() & Constants::PERMISSION_READ)) {
+            return [];
+        }
+
+        $folderId = $data->getId();
+        $contents = $cache->getFolderContentsById($folderId); //TODO: mimetype_filter
+
+        $sharingDisabled = \OCP\Util::isSharingDisabledForUser();
+
+        $fileNames = array_map(function (ICacheEntry $content) {
+            return $content->getName();
+        }, $contents);
+        /**
+         * @var \OC\Files\FileInfo[] $fileInfos
+         */
+        $fileInfos = array_map(function (ICacheEntry $content) use ($path, $storage, $mount, $sharingDisabled) {
+            if ($sharingDisabled) {
+                $content['permissions'] = $content['permissions'] & ~\OCP\Constants::PERMISSION_SHARE;
+            }
+            $ownerId = $storage->getOwner($content['path']);
+            if ($ownerId !== false) {
+                $owner = $this->getUserObjectForOwner($ownerId);
+            } else {
+                $owner = null;
+            }
+            return new FileInfo($path . '/' . $content['name'], $storage, $content['path'], $content, $mount, $owner);
+        }, $contents);
+        $files = array_combine($fileNames, $fileInfos);
+
+        //add a folder for any mountpoint in this directory and add the sizes of other mountpoints to the folders
+        $mounts = Filesystem::getMountManager()->findIn($path);
+
+        // make sure nested mounts are sorted after their parent mounts
+        // otherwise doesn't propagate the etag across storage boundaries correctly
+        usort($mounts, function (IMountPoint $a, IMountPoint $b) {
+            return $a->getMountPoint() <=> $b->getMountPoint();
+        });
+
+        $dirLength = strlen($path);
+        foreach ($mounts as $mount) {
+            $mountPoint = $mount->getMountPoint();
+            $subStorage = $mount->getStorage();
+            if ($subStorage) {
+                $subCache = $subStorage->getCache('');
+
+                $rootEntry = $subCache->get('');
+                if (!$rootEntry) {
+                    $subScanner = $subStorage->getScanner();
+                    try {
+                        $subScanner->scanFile('');
+                    } catch (\OCP\Files\StorageNotAvailableException $e) {
+                        continue;
+                    } catch (\OCP\Files\StorageInvalidException $e) {
+                        continue;
+                    } catch (\Exception $e) {
+                        // sometimes when the storage is not available it can be any exception
+                        $this->logger->error('Exception while scanning storage "' . $subStorage->getId() . '"', [
+                            'exception' => $e,
+                            'app' => 'core',
+                        ]);
+                        continue;
+                    }
+                    $rootEntry = $subCache->get('');
+                }
+
+                if ($rootEntry && ($rootEntry->getPermissions() & Constants::PERMISSION_READ)) {
+                    $relativePath = trim(substr($mountPoint, $dirLength), '/');
+                    if ($pos = strpos($relativePath, '/')) {
+                        //mountpoint inside subfolder add size to the correct folder
+                        $entryName = substr($relativePath, 0, $pos);
+
+                        // Create parent folders if the mountpoint is inside a subfolder that doesn't exist yet
+                        if (!isset($files[$entryName])) {
+                            try {
+                                [$storage, ] = $this->resolvePath($path . '/' . $entryName);
+                                // make sure we can create the mountpoint folder, even if the user has a quota of 0
+                                if ($storage->instanceOfStorage(Quota::class)) {
+                                    $storage->enableQuota(false);
+                                }
+
+                                if ($this->mkdir($path . '/' . $entryName) !== false) {
+                                    $info = $this->getFileInfo($path . '/' . $entryName);
+                                    if ($info !== false) {
+                                        $files[$entryName] = $info;
+                                    }
+                                }
+
+                                if ($storage->instanceOfStorage(Quota::class)) {
+                                    $storage->enableQuota(true);
+                                }
+                            } catch (\Exception $e) {
+                                // Creating the parent folder might not be possible, for example due to a lack of permissions.
+                                $this->logger->debug('Failed to create non-existent parent', ['exception' => $e, 'path' => $path . '/' . $entryName]);
+                            }
+                        }
+
+                        if (isset($files[$entryName])) {
+                            $files[$entryName]->addSubEntry($rootEntry, $mountPoint);
+                        }
+                    } else { //mountpoint in this folder, add an entry for it
+                        $rootEntry['name'] = $relativePath;
+                        $rootEntry['type'] = $rootEntry['mimetype'] === 'httpd/unix-directory' ? 'dir' : 'file';
+                        $permissions = $rootEntry['permissions'];
+                        // do not allow renaming/deleting the mount point if they are not shared files/folders
+                        // for shared files/folders we use the permissions given by the owner
+                        if ($mount instanceof MoveableMount) {
+                            $rootEntry['permissions'] = $permissions | \OCP\Constants::PERMISSION_UPDATE | \OCP\Constants::PERMISSION_DELETE;
+                        } else {
+                            $rootEntry['permissions'] = $permissions & (\OCP\Constants::PERMISSION_ALL - (\OCP\Constants::PERMISSION_UPDATE | \OCP\Constants::PERMISSION_DELETE));
+                        }
+
+                        $rootEntry['path'] = substr(Filesystem::normalizePath($path . '/' . $rootEntry['name']), strlen($user) + 2); // full path without /$user/
+
+                        // if sharing was disabled for the user we remove the share permissions
+                        if ($sharingDisabled) {
+                            $rootEntry['permissions'] = $rootEntry['permissions'] & ~\OCP\Constants::PERMISSION_SHARE;
+                        }
+
+                        $ownerId = $subStorage->getOwner('');
+                        if ($ownerId !== false) {
+                            $owner = $this->getUserObjectForOwner($ownerId);
+                        } else {
+                            $owner = null;
+                        }
+                        $files[$rootEntry->getName()] = new FileInfo($path . '/' . $rootEntry['name'], $subStorage, '', $rootEntry, $mount, $owner);
+                    }
+                }
+            }
+        }
+
+        if ($mimetype_filter) {
+            $files = array_filter($files, function (FileInfo $file) use ($mimetype_filter) {
+                if (strpos($mimetype_filter, '/')) {
+                    return $file->getMimetype() === $mimetype_filter;
+                } else {
+                    return $file->getMimePart() === $mimetype_filter;
+                }
+            });
+        }
+
+        return array_values($files);
+    }
+
+    /**
+     * change file metadata
+     *
+     * @param string $path
+     * @param array|\OCP\Files\FileInfo $data
+     * @return int
+     *
+     * returns the fileid of the updated file
+     */
+    public function putFileInfo($path, $data) {
+        $this->assertPathLength($path);
+        if ($data instanceof FileInfo) {
+            $data = $data->getData();
+        }
+        $path = Filesystem::normalizePath($this->fakeRoot . '/' . $path);
+        /**
+         * @var Storage $storage
+         * @var string $internalPath
+         */
+        [$storage, $internalPath] = Filesystem::resolvePath($path);
+        if ($storage) {
+            $cache = $storage->getCache($path);
+
+            if (!$cache->inCache($internalPath)) {
+                $scanner = $storage->getScanner($internalPath);
+                $scanner->scan($internalPath, Cache\Scanner::SCAN_SHALLOW);
+            }
+
+            return $cache->put($internalPath, $data);
+        } else {
+            return -1;
+        }
+    }
+
+    /**
+     * search for files with the name matching $query
+     *
+     * @param string $query
+     * @return FileInfo[]
+     */
+    public function search($query) {
+        return $this->searchCommon('search', ['%' . $query . '%']);
+    }
+
+    /**
+     * search for files with the name matching $query
+     *
+     * @param string $query
+     * @return FileInfo[]
+     */
+    public function searchRaw($query) {
+        return $this->searchCommon('search', [$query]);
+    }
+
+    /**
+     * search for files by mimetype
+     *
+     * @param string $mimetype
+     * @return FileInfo[]
+     */
+    public function searchByMime($mimetype) {
+        return $this->searchCommon('searchByMime', [$mimetype]);
+    }
+
+    /**
+     * search for files by tag
+     *
+     * @param string|int $tag name or tag id
+     * @param string $userId owner of the tags
+     * @return FileInfo[]
+     */
+    public function searchByTag($tag, $userId) {
+        return $this->searchCommon('searchByTag', [$tag, $userId]);
+    }
+
+    /**
+     * @param string $method cache method
+     * @param array $args
+     * @return FileInfo[]
+     */
+    private function searchCommon($method, $args) {
+        $files = [];
+        $rootLength = strlen($this->fakeRoot);
+
+        $mount = $this->getMount('');
+        $mountPoint = $mount->getMountPoint();
+        $storage = $mount->getStorage();
+        $userManager = \OC::$server->getUserManager();
+        if ($storage) {
+            $cache = $storage->getCache('');
+
+            $results = call_user_func_array([$cache, $method], $args);
+            foreach ($results as $result) {
+                if (substr($mountPoint . $result['path'], 0, $rootLength + 1) === $this->fakeRoot . '/') {
+                    $internalPath = $result['path'];
+                    $path = $mountPoint . $result['path'];
+                    $result['path'] = substr($mountPoint . $result['path'], $rootLength);
+                    $ownerId = $storage->getOwner($internalPath);
+                    if ($ownerId !== false) {
+                        $owner = $userManager->get($ownerId);
+                    } else {
+                        $owner = null;
+                    }
+                    $files[] = new FileInfo($path, $storage, $internalPath, $result, $mount, $owner);
+                }
+            }
+
+            $mounts = Filesystem::getMountManager()->findIn($this->fakeRoot);
+            foreach ($mounts as $mount) {
+                $mountPoint = $mount->getMountPoint();
+                $storage = $mount->getStorage();
+                if ($storage) {
+                    $cache = $storage->getCache('');
+
+                    $relativeMountPoint = substr($mountPoint, $rootLength);
+                    $results = call_user_func_array([$cache, $method], $args);
+                    if ($results) {
+                        foreach ($results as $result) {
+                            $internalPath = $result['path'];
+                            $result['path'] = rtrim($relativeMountPoint . $result['path'], '/');
+                            $path = rtrim($mountPoint . $internalPath, '/');
+                            $ownerId = $storage->getOwner($internalPath);
+                            if ($ownerId !== false) {
+                                $owner = $userManager->get($ownerId);
+                            } else {
+                                $owner = null;
+                            }
+                            $files[] = new FileInfo($path, $storage, $internalPath, $result, $mount, $owner);
+                        }
+                    }
+                }
+            }
+        }
+        return $files;
+    }
+
+    /**
+     * Get the owner for a file or folder
+     *
+     * @throws NotFoundException
+     */
+    public function getOwner(string $path): string {
+        $info = $this->getFileInfo($path);
+        if (!$info) {
+            throw new NotFoundException($path . ' not found while trying to get owner');
+        }
+
+        if ($info->getOwner() === null) {
+            throw new NotFoundException($path . ' has no owner');
+        }
+
+        return $info->getOwner()->getUID();
+    }
+
+    /**
+     * get the ETag for a file or folder
+     *
+     * @param string $path
+     * @return string|false
+     */
+    public function getETag($path) {
+        [$storage, $internalPath] = $this->resolvePath($path);
+        if ($storage) {
+            return $storage->getETag($internalPath);
+        } else {
+            return false;
+        }
+    }
+
+    /**
+     * Get the path of a file by id, relative to the view
+     *
+     * Note that the resulting path is not guaranteed to be unique for the id, multiple paths can point to the same file
+     *
+     * @param int $id
+     * @param int|null $storageId
+     * @return string
+     * @throws NotFoundException
+     */
+    public function getPath($id, ?int $storageId = null): string {
+        $id = (int)$id;
+        $rootFolder = Server::get(Files\IRootFolder::class);
+
+        $node = $rootFolder->getFirstNodeByIdInPath($id, $this->getRoot());
+        if ($node) {
+            if ($storageId === null || $storageId === $node->getStorage()->getCache()->getNumericStorageId()) {
+                return $this->getRelativePath($node->getPath()) ?? '';
+            }
+        } else {
+            throw new NotFoundException(sprintf('File with id "%s" has not been found.', $id));
+        }
+
+        foreach ($rootFolder->getByIdInPath($id, $this->getRoot()) as $node) {
+            if ($storageId === $node->getStorage()->getCache()->getNumericStorageId()) {
+                return $this->getRelativePath($node->getPath()) ?? '';
+            }
+        }
+
+        throw new NotFoundException(sprintf('File with id "%s" has not been found.', $id));
+    }
+
+    /**
+     * @param string $path
+     * @throws InvalidPathException
+     */
+    private function assertPathLength($path): void {
+        $maxLen = min(PHP_MAXPATHLEN, 4000);
+        // Check for the string length - performed using isset() instead of strlen()
+        // because isset() is about 5x-40x faster.
+        if (isset($path[$maxLen])) {
+            $pathLen = strlen($path);
+            throw new InvalidPathException("Path length($pathLen) exceeds max path length($maxLen): $path");
+        }
+    }
+
+    /**
+     * check if it is allowed to move a mount point to a given target.
+     * It is not allowed to move a mount point into a different mount point or
+     * into an already shared folder
+     */
+    private function targetIsNotShared(string $user, string $targetPath): bool {
+        $providers = [
+            IShare::TYPE_USER,
+            IShare::TYPE_GROUP,
+            IShare::TYPE_EMAIL,
+            IShare::TYPE_CIRCLE,
+            IShare::TYPE_ROOM,
+            IShare::TYPE_DECK,
+        ];
+        $shareManager = Server::get(IManager::class);
+        /** @var IShare[] $shares */
+        $shares = array_merge(...array_map(function (int $type) use ($shareManager, $user) {
+            return $shareManager->getSharesBy($user, $type);
+        }, $providers));
+
+        foreach ($shares as $share) {
+            try {
+                $sharedPath = $share->getNode()->getPath();
+            } catch (NotFoundException $e) {
+                // node is not found, ignoring
+                $this->logger->debug(
+                    'Could not find the node linked to a share',
+                    ['app' => 'files', 'exception' => $e]);
+                continue;
+            }
+            if ($targetPath === $sharedPath || str_starts_with($targetPath, $sharedPath . '/')) {
+                $this->logger->debug(
+                    'It is not allowed to move one mount point into a shared folder',
+                    ['app' => 'files']);
+                return false;
+            }
+        }
+
+        return true;
+    }
+
+    /**
+     * Get a fileinfo object for files that are ignored in the cache (part files)
+     */
+    private function getPartFileInfo(string $path): \OC\Files\FileInfo {
+        $mount = $this->getMount($path);
+        $storage = $mount->getStorage();
+        $internalPath = $mount->getInternalPath($this->getAbsolutePath($path));
+        $ownerId = $storage->getOwner($internalPath);
+        if ($ownerId !== false) {
+            $owner = Server::get(IUserManager::class)->get($ownerId);
+        } else {
+            $owner = null;
+        }
+        return new FileInfo(
+            $this->getAbsolutePath($path),
+            $storage,
+            $internalPath,
+            [
+                'fileid' => null,
+                'mimetype' => $storage->getMimeType($internalPath),
+                'name' => basename($path),
+                'etag' => null,
+                'size' => $storage->filesize($internalPath),
+                'mtime' => $storage->filemtime($internalPath),
+                'encrypted' => false,
+                'permissions' => \OCP\Constants::PERMISSION_ALL
+            ],
+            $mount,
+            $owner
+        );
+    }
+
+    /**
+     * @param string $path
+     * @param string $fileName
+     * @param bool $readonly Check only if the path is allowed for read-only access
+     * @throws InvalidPathException
+     */
+    public function verifyPath($path, $fileName, $readonly = false): void {
+        // All of the view's functions disallow '..' in the path so we can short cut if the path is invalid
+        if (!Filesystem::isValidPath($path ?: '/')) {
+            $l = \OCP\Util::getL10N('lib');
+            throw new InvalidPathException($l->t('Path contains invalid segments'));
+        }
+
+        // Short cut for read-only validation
+        if ($readonly) {
+            $validator = Server::get(FilenameValidator::class);
+            if ($validator->isForbidden($fileName)) {
+                $l = \OCP\Util::getL10N('lib');
+                throw new InvalidPathException($l->t('Filename is a reserved word'));
+            }
+            return;
+        }
+
+        try {
+            /** @type \OCP\Files\Storage $storage */
+            [$storage, $internalPath] = $this->resolvePath($path);
+            $storage->verifyPath($internalPath, $fileName);
+        } catch (ReservedWordException $ex) {
+            $l = \OCP\Util::getL10N('lib');
+            throw new InvalidPathException($ex->getMessage() ?: $l->t('Filename is a reserved word'));
+        } catch (InvalidCharacterInPathException $ex) {
+            $l = \OCP\Util::getL10N('lib');
+            throw new InvalidPathException($ex->getMessage() ?: $l->t('Filename contains at least one invalid character'));
+        } catch (FileNameTooLongException $ex) {
+            $l = \OCP\Util::getL10N('lib');
+            throw new InvalidPathException($l->t('Filename is too long'));
+        } catch (InvalidDirectoryException $ex) {
+            $l = \OCP\Util::getL10N('lib');
+            throw new InvalidPathException($l->t('Dot files are not allowed'));
+        } catch (EmptyFileNameException $ex) {
+            $l = \OCP\Util::getL10N('lib');
+            throw new InvalidPathException($l->t('Empty filename is not allowed'));
+        }
+    }
+
+    /**
+     * get all parent folders of $path
+     *
+     * @param string $path
+     * @return string[]
+     */
+    private function getParents($path) {
+        $path = trim($path, '/');
+        if (!$path) {
+            return [];
+        }
+
+        $parts = explode('/', $path);
+
+        // remove the single file
+        array_pop($parts);
+        $result = ['/'];
+        $resultPath = '';
+        foreach ($parts as $part) {
+            if ($part) {
+                $resultPath .= '/' . $part;
+                $result[] = $resultPath;
+            }
+        }
+        return $result;
+    }
+
+    /**
+     * Returns the mount point for which to lock
+     *
+     * @param string $absolutePath absolute path
+     * @param bool $useParentMount true to return parent mount instead of whatever
+     *                             is mounted directly on the given path, false otherwise
+     * @return IMountPoint mount point for which to apply locks
+     */
+    private function getMountForLock(string $absolutePath, bool $useParentMount = false): IMountPoint {
+        $mount = Filesystem::getMountManager()->find($absolutePath);
+
+        if ($useParentMount) {
+            // find out if something is mounted directly on the path
+            $internalPath = $mount->getInternalPath($absolutePath);
+            if ($internalPath === '') {
+                // resolve the parent mount instead
+                $mount = Filesystem::getMountManager()->find(dirname($absolutePath));
+            }
+        }
+
+        return $mount;
+    }
+
+    /**
+     * Lock the given path
+     *
+     * @param string $path the path of the file to lock, relative to the view
+     * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE
+     * @param bool $lockMountPoint true to lock the mount point, false to lock the attached mount/storage
+     *
+     * @return bool False if the path is excluded from locking, true otherwise
+     * @throws LockedException if the path is already locked
+     */
+    private function lockPath($path, $type, $lockMountPoint = false) {
+        $absolutePath = $this->getAbsolutePath($path);
+        $absolutePath = Filesystem::normalizePath($absolutePath);
+        if (!$this->shouldLockFile($absolutePath)) {
+            return false;
+        }
+
+        $mount = $this->getMountForLock($absolutePath, $lockMountPoint);
+        try {
+            $storage = $mount->getStorage();
+            if ($storage && $storage->instanceOfStorage('\OCP\Files\Storage\ILockingStorage')) {
+                $storage->acquireLock(
+                    $mount->getInternalPath($absolutePath),
+                    $type,
+                    $this->lockingProvider
+                );
+            }
+        } catch (LockedException $e) {
+            // rethrow with the human-readable path
+            throw new LockedException(
+                $path,
+                $e,
+                $e->getExistingLock()
+            );
+        }
+
+        return true;
+    }
+
+    /**
+     * Change the lock type
+     *
+     * @param string $path the path of the file to lock, relative to the view
+     * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE
+     * @param bool $lockMountPoint true to lock the mount point, false to lock the attached mount/storage
+     *
+     * @return bool False if the path is excluded from locking, true otherwise
+     * @throws LockedException if the path is already locked
+     */
+    public function changeLock($path, $type, $lockMountPoint = false) {
+        $path = Filesystem::normalizePath($path);
+        $absolutePath = $this->getAbsolutePath($path);
+        $absolutePath = Filesystem::normalizePath($absolutePath);
+        if (!$this->shouldLockFile($absolutePath)) {
+            return false;
+        }
+
+        $mount = $this->getMountForLock($absolutePath, $lockMountPoint);
+        try {
+            $storage = $mount->getStorage();
+            if ($storage && $storage->instanceOfStorage('\OCP\Files\Storage\ILockingStorage')) {
+                $storage->changeLock(
+                    $mount->getInternalPath($absolutePath),
+                    $type,
+                    $this->lockingProvider
+                );
+            }
+        } catch (LockedException $e) {
+            // rethrow with the a human-readable path
+            throw new LockedException(
+                $path,
+                $e,
+                $e->getExistingLock()
+            );
+        }
+
+        return true;
+    }
+
+    /**
+     * Unlock the given path
+     *
+     * @param string $path the path of the file to unlock, relative to the view
+     * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE
+     * @param bool $lockMountPoint true to lock the mount point, false to lock the attached mount/storage
+     *
+     * @return bool False if the path is excluded from locking, true otherwise
+     * @throws LockedException
+     */
+    private function unlockPath($path, $type, $lockMountPoint = false) {
+        $absolutePath = $this->getAbsolutePath($path);
+        $absolutePath = Filesystem::normalizePath($absolutePath);
+        if (!$this->shouldLockFile($absolutePath)) {
+            return false;
+        }
+
+        $mount = $this->getMountForLock($absolutePath, $lockMountPoint);
+        $storage = $mount->getStorage();
+        if ($storage && $storage->instanceOfStorage('\OCP\Files\Storage\ILockingStorage')) {
+            $storage->releaseLock(
+                $mount->getInternalPath($absolutePath),
+                $type,
+                $this->lockingProvider
+            );
+        }
+
+        return true;
+    }
+
+    /**
+     * Lock a path and all its parents up to the root of the view
+     *
+     * @param string $path the path of the file to lock relative to the view
+     * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE
+     * @param bool $lockMountPoint true to lock the mount point, false to lock the attached mount/storage
+     *
+     * @return bool False if the path is excluded from locking, true otherwise
+     * @throws LockedException
+     */
+    public function lockFile($path, $type, $lockMountPoint = false) {
+        $absolutePath = $this->getAbsolutePath($path);
+        $absolutePath = Filesystem::normalizePath($absolutePath);
+        if (!$this->shouldLockFile($absolutePath)) {
+            return false;
+        }
+
+        $this->lockPath($path, $type, $lockMountPoint);
+
+        $parents = $this->getParents($path);
+        foreach ($parents as $parent) {
+            $this->lockPath($parent, ILockingProvider::LOCK_SHARED);
+        }
+
+        return true;
+    }
+
+    /**
+     * Unlock a path and all its parents up to the root of the view
+     *
+     * @param string $path the path of the file to lock relative to the view
+     * @param int $type \OCP\Lock\ILockingProvider::LOCK_SHARED or \OCP\Lock\ILockingProvider::LOCK_EXCLUSIVE
+     * @param bool $lockMountPoint true to lock the mount point, false to lock the attached mount/storage
+     *
+     * @return bool False if the path is excluded from locking, true otherwise
+     * @throws LockedException
+     */
+    public function unlockFile($path, $type, $lockMountPoint = false) {
+        $absolutePath = $this->getAbsolutePath($path);
+        $absolutePath = Filesystem::normalizePath($absolutePath);
+        if (!$this->shouldLockFile($absolutePath)) {
+            return false;
+        }
+
+        $this->unlockPath($path, $type, $lockMountPoint);
+
+        $parents = $this->getParents($path);
+        foreach ($parents as $parent) {
+            $this->unlockPath($parent, ILockingProvider::LOCK_SHARED);
+        }
+
+        return true;
+    }
+
+    /**
+     * Only lock files in data/user/files/
+     *
+     * @param string $path Absolute path to the file/folder we try to (un)lock
+     * @return bool
+     */
+    protected function shouldLockFile($path) {
+        $path = Filesystem::normalizePath($path);
+
+        $pathSegments = explode('/', $path);
+        if (isset($pathSegments[2])) {
+            // E.g.: /username/files/path-to-file
+            return ($pathSegments[2] === 'files') && (count($pathSegments) > 3);
+        }
+
+        return !str_starts_with($path, '/appdata_');
+    }
+
+    /**
+     * Shortens the given absolute path to be relative to
+     * "$user/files".
+     *
+     * @param string $absolutePath absolute path which is under "files"
+     *
+     * @return string path relative to "files" with trimmed slashes or null
+     *                if the path was NOT relative to files
+     *
+     * @throws \InvalidArgumentException if the given path was not under "files"
+     * @since 8.1.0
+     */
+    public function getPathRelativeToFiles($absolutePath) {
+        $path = Filesystem::normalizePath($absolutePath);
+        $parts = explode('/', trim($path, '/'), 3);
+        // "$user", "files", "path/to/dir"
+        if (!isset($parts[1]) || $parts[1] !== 'files') {
+            $this->logger->error(
+                '$absolutePath must be relative to "files", value is "{absolutePath}"',
+                [
+                    'absolutePath' => $absolutePath,
+                ]
+            );
+            throw new \InvalidArgumentException('$absolutePath must be relative to "files"');
+        }
+        if (isset($parts[2])) {
+            return $parts[2];
+        }
+        return '';
+    }
+
+    /**
+     * @param string $filename
+     * @return array
+     * @throws \OC\User\NoUserException
+     * @throws NotFoundException
+     */
+    public function getUidAndFilename($filename) {
+        $info = $this->getFileInfo($filename);
+        if (!$info instanceof \OCP\Files\FileInfo) {
+            throw new NotFoundException($this->getAbsolutePath($filename) . ' not found');
+        }
+        $uid = $info->getOwner()->getUID();
+        if ($uid != \OC_User::getUser()) {
+            Filesystem::initMountPoints($uid);
+            $ownerView = new View('/' . $uid . '/files');
+            try {
+                $filename = $ownerView->getPath($info['fileid']);
+            } catch (NotFoundException $e) {
+                throw new NotFoundException('File with id ' . $info['fileid'] . ' not found for user ' . $uid);
+            }
+        }
+        return [$uid, $filename];
+    }
+
+    /**
+     * Creates parent non-existing folders
+     *
+     * @param string $filePath
+     * @return bool
+     */
+    private function createParentDirectories($filePath) {
+        $directoryParts = explode('/', $filePath);
+        $directoryParts = array_filter($directoryParts);
+        foreach ($directoryParts as $key => $part) {
+            $currentPathElements = array_slice($directoryParts, 0, $key);
+            $currentPath = '/' . implode('/', $currentPathElements);
+            if ($this->is_file($currentPath)) {
+                return false;
+            }
+            if (!$this->file_exists($currentPath)) {
+                $this->mkdir($currentPath);
+            }
+        }
+
+        return true;
+    }
 }

Please login to merge, or discard this patch.

lib/private/Share20/ProviderFactory.php 1 patch

Indentation +199 added lines, -199 removed lines patch added patch discarded remove patch

@@ -27,209 +27,209 @@
 block discarded – undo
  * @package OC\Share20
  */
 class ProviderFactory implements IProviderFactory {
-	private ?DefaultShareProvider $defaultProvider = null;
-	private ?FederatedShareProvider $federatedProvider = null;
-	private ?ShareByMailProvider $shareByMailProvider = null;
-	/**
-	 * @psalm-suppress UndefinedDocblockClass
-	 * @var ?RoomShareProvider
-	 */
-	private $roomShareProvider = null;
-
-	private array $registeredShareProviders = [];
-
-	private array $shareProviders = [];
-
-	public function __construct(
-		protected IAppManager $appManager,
-		protected LoggerInterface $logger,
-	) {
-	}
-
-	public function registerProvider(string $shareProviderClass): void {
-		$this->registeredShareProviders[] = $shareProviderClass;
-	}
-
-	/**
-	 * Create the default share provider.
-	 */
-	protected function defaultShareProvider(): DefaultShareProvider {
-		return Server::get(DefaultShareProvider::class);
-	}
-
-	/**
-	 * Create the federated share provider
-	 */
-	protected function federatedShareProvider(): ?FederatedShareProvider {
-		if ($this->federatedProvider === null) {
-			/*
+    private ?DefaultShareProvider $defaultProvider = null;
+    private ?FederatedShareProvider $federatedProvider = null;
+    private ?ShareByMailProvider $shareByMailProvider = null;
+    /**
+     * @psalm-suppress UndefinedDocblockClass
+     * @var ?RoomShareProvider
+     */
+    private $roomShareProvider = null;
+
+    private array $registeredShareProviders = [];
+
+    private array $shareProviders = [];
+
+    public function __construct(
+        protected IAppManager $appManager,
+        protected LoggerInterface $logger,
+    ) {
+    }
+
+    public function registerProvider(string $shareProviderClass): void {
+        $this->registeredShareProviders[] = $shareProviderClass;
+    }
+
+    /**
+     * Create the default share provider.
+     */
+    protected function defaultShareProvider(): DefaultShareProvider {
+        return Server::get(DefaultShareProvider::class);
+    }
+
+    /**
+     * Create the federated share provider
+     */
+    protected function federatedShareProvider(): ?FederatedShareProvider {
+        if ($this->federatedProvider === null) {
+            /*
 			 * Check if the app is enabled
 			 */
-			if (!$this->appManager->isEnabledForUser('federatedfilesharing')) {
-				return null;
-			}
-
-			$this->federatedProvider = Server::get(FederatedShareProvider::class);
-		}
-
-		return $this->federatedProvider;
-	}
-
-	/**
-	 * Create the federated share provider
-	 */
-	protected function getShareByMailProvider(): ?ShareByMailProvider {
-		if ($this->shareByMailProvider === null) {
-			/*
+            if (!$this->appManager->isEnabledForUser('federatedfilesharing')) {
+                return null;
+            }
+
+            $this->federatedProvider = Server::get(FederatedShareProvider::class);
+        }
+
+        return $this->federatedProvider;
+    }
+
+    /**
+     * Create the federated share provider
+     */
+    protected function getShareByMailProvider(): ?ShareByMailProvider {
+        if ($this->shareByMailProvider === null) {
+            /*
 			 * Check if the app is enabled
 			 */
-			if (!$this->appManager->isEnabledForUser('sharebymail')) {
-				return null;
-			}
-
-			$this->shareByMailProvider = Server::get(ShareByMailProvider::class);
-		}
-
-		return $this->shareByMailProvider;
-	}
-
-	/**
-	 * Create the room share provider
-	 *
-	 * @psalm-suppress UndefinedDocblockClass
-	 * @return ?RoomShareProvider
-	 */
-	protected function getRoomShareProvider() {
-		if ($this->roomShareProvider === null) {
-			/*
+            if (!$this->appManager->isEnabledForUser('sharebymail')) {
+                return null;
+            }
+
+            $this->shareByMailProvider = Server::get(ShareByMailProvider::class);
+        }
+
+        return $this->shareByMailProvider;
+    }
+
+    /**
+     * Create the room share provider
+     *
+     * @psalm-suppress UndefinedDocblockClass
+     * @return ?RoomShareProvider
+     */
+    protected function getRoomShareProvider() {
+        if ($this->roomShareProvider === null) {
+            /*
 			 * Check if the app is enabled
 			 */
-			if (!$this->appManager->isEnabledForUser('spreed')) {
-				return null;
-			}
-
-			try {
-				/**
-				 * @psalm-suppress UndefinedClass
-				 */
-				$this->roomShareProvider = Server::get(RoomShareProvider::class);
-			} catch (\Throwable $e) {
-				$this->logger->error(
-					$e->getMessage(),
-					['exception' => $e]
-				);
-				return null;
-			}
-		}
-
-		return $this->roomShareProvider;
-	}
-
-	/**
-	 * @inheritdoc
-	 */
-	public function getProvider($id) {
-		$provider = null;
-		if (isset($this->shareProviders[$id])) {
-			return $this->shareProviders[$id];
-		}
-
-		if ($id === 'ocinternal') {
-			$provider = $this->defaultShareProvider();
-		} elseif ($id === 'ocFederatedSharing') {
-			$provider = $this->federatedShareProvider();
-		} elseif ($id === 'ocMailShare') {
-			$provider = $this->getShareByMailProvider();
-		} elseif ($id === 'ocRoomShare') {
-			$provider = $this->getRoomShareProvider();
-		}
-
-		foreach ($this->registeredShareProviders as $shareProvider) {
-			try {
-				/** @var IShareProvider $instance */
-				$instance = Server::get($shareProvider);
-				$this->shareProviders[$instance->identifier()] = $instance;
-			} catch (\Throwable $e) {
-				$this->logger->error(
-					$e->getMessage(),
-					['exception' => $e]
-				);
-			}
-		}
-
-		if (isset($this->shareProviders[$id])) {
-			$provider = $this->shareProviders[$id];
-		}
-
-		if ($provider === null) {
-			throw new ProviderException('No provider with id .' . $id . ' found.');
-		}
-
-		return $provider;
-	}
-
-	/**
-	 * @inheritdoc
-	 */
-	public function getProviderForType($shareType) {
-		$provider = null;
-
-		if ($shareType === IShare::TYPE_USER
-			|| $shareType === IShare::TYPE_GROUP
-			|| $shareType === IShare::TYPE_LINK
-		) {
-			$provider = $this->defaultShareProvider();
-		} elseif ($shareType === IShare::TYPE_REMOTE || $shareType === IShare::TYPE_REMOTE_GROUP) {
-			$provider = $this->federatedShareProvider();
-		} elseif ($shareType === IShare::TYPE_EMAIL) {
-			$provider = $this->getShareByMailProvider();
-		} elseif ($shareType === IShare::TYPE_CIRCLE) {
-			$provider = $this->getProvider('ocCircleShare');
-		} elseif ($shareType === IShare::TYPE_ROOM) {
-			$provider = $this->getRoomShareProvider();
-		} elseif ($shareType === IShare::TYPE_DECK) {
-			$provider = $this->getProvider('deck');
-		}
-
-
-		if ($provider === null) {
-			throw new ProviderException('No share provider for share type ' . $shareType);
-		}
-
-		return $provider;
-	}
-
-	public function getAllProviders() {
-		$shares = [$this->defaultShareProvider(), $this->federatedShareProvider()];
-		$shareByMail = $this->getShareByMailProvider();
-		if ($shareByMail !== null) {
-			$shares[] = $shareByMail;
-		}
-		$roomShare = $this->getRoomShareProvider();
-		if ($roomShare !== null) {
-			$shares[] = $roomShare;
-		}
-
-		foreach ($this->registeredShareProviders as $shareProvider) {
-			try {
-				/** @var IShareProvider $instance */
-				$instance = Server::get($shareProvider);
-			} catch (\Throwable $e) {
-				$this->logger->error(
-					$e->getMessage(),
-					['exception' => $e]
-				);
-				continue;
-			}
-
-			if (!isset($this->shareProviders[$instance->identifier()])) {
-				$this->shareProviders[$instance->identifier()] = $instance;
-			}
-			$shares[] = $this->shareProviders[$instance->identifier()];
-		}
-
-
-
-		return $shares;
-	}
+            if (!$this->appManager->isEnabledForUser('spreed')) {
+                return null;
+            }
+
+            try {
+                /**
+                 * @psalm-suppress UndefinedClass
+                 */
+                $this->roomShareProvider = Server::get(RoomShareProvider::class);
+            } catch (\Throwable $e) {
+                $this->logger->error(
+                    $e->getMessage(),
+                    ['exception' => $e]
+                );
+                return null;
+            }
+        }
+
+        return $this->roomShareProvider;
+    }
+
+    /**
+     * @inheritdoc
+     */
+    public function getProvider($id) {
+        $provider = null;
+        if (isset($this->shareProviders[$id])) {
+            return $this->shareProviders[$id];
+        }
+
+        if ($id === 'ocinternal') {
+            $provider = $this->defaultShareProvider();
+        } elseif ($id === 'ocFederatedSharing') {
+            $provider = $this->federatedShareProvider();
+        } elseif ($id === 'ocMailShare') {
+            $provider = $this->getShareByMailProvider();
+        } elseif ($id === 'ocRoomShare') {
+            $provider = $this->getRoomShareProvider();
+        }
+
+        foreach ($this->registeredShareProviders as $shareProvider) {
+            try {
+                /** @var IShareProvider $instance */
+                $instance = Server::get($shareProvider);
+                $this->shareProviders[$instance->identifier()] = $instance;
+            } catch (\Throwable $e) {
+                $this->logger->error(
+                    $e->getMessage(),
+                    ['exception' => $e]
+                );
+            }
+        }
+
+        if (isset($this->shareProviders[$id])) {
+            $provider = $this->shareProviders[$id];
+        }
+
+        if ($provider === null) {
+            throw new ProviderException('No provider with id .' . $id . ' found.');
+        }
+
+        return $provider;
+    }
+
+    /**
+     * @inheritdoc
+     */
+    public function getProviderForType($shareType) {
+        $provider = null;
+
+        if ($shareType === IShare::TYPE_USER
+            || $shareType === IShare::TYPE_GROUP
+            || $shareType === IShare::TYPE_LINK
+        ) {
+            $provider = $this->defaultShareProvider();
+        } elseif ($shareType === IShare::TYPE_REMOTE || $shareType === IShare::TYPE_REMOTE_GROUP) {
+            $provider = $this->federatedShareProvider();
+        } elseif ($shareType === IShare::TYPE_EMAIL) {
+            $provider = $this->getShareByMailProvider();
+        } elseif ($shareType === IShare::TYPE_CIRCLE) {
+            $provider = $this->getProvider('ocCircleShare');
+        } elseif ($shareType === IShare::TYPE_ROOM) {
+            $provider = $this->getRoomShareProvider();
+        } elseif ($shareType === IShare::TYPE_DECK) {
+            $provider = $this->getProvider('deck');
+        }
+
+
+        if ($provider === null) {
+            throw new ProviderException('No share provider for share type ' . $shareType);
+        }
+
+        return $provider;
+    }
+
+    public function getAllProviders() {
+        $shares = [$this->defaultShareProvider(), $this->federatedShareProvider()];
+        $shareByMail = $this->getShareByMailProvider();
+        if ($shareByMail !== null) {
+            $shares[] = $shareByMail;
+        }
+        $roomShare = $this->getRoomShareProvider();
+        if ($roomShare !== null) {
+            $shares[] = $roomShare;
+        }
+
+        foreach ($this->registeredShareProviders as $shareProvider) {
+            try {
+                /** @var IShareProvider $instance */
+                $instance = Server::get($shareProvider);
+            } catch (\Throwable $e) {
+                $this->logger->error(
+                    $e->getMessage(),
+                    ['exception' => $e]
+                );
+                continue;
+            }
+
+            if (!isset($this->shareProviders[$instance->identifier()])) {
+                $this->shareProviders[$instance->identifier()] = $instance;
+            }
+            $shares[] = $this->shareProviders[$instance->identifier()];
+        }
+
+
+
+        return $shares;
+    }
 }

Please login to merge, or discard this patch.

lib/private/Share20/Manager.php 1 patch

Indentation +1801 added lines, -1801 removed lines patch added patch discarded remove patch

@@ -63,1822 +63,1822 @@
 block discarded – undo
  */
 class Manager implements IManager {
 
-	private ?IL10N $l;
-	private LegacyHooks $legacyHooks;
-
-	public function __construct(
-		private LoggerInterface $logger,
-		private IConfig $config,
-		private ISecureRandom $secureRandom,
-		private IHasher $hasher,
-		private IMountManager $mountManager,
-		private IGroupManager $groupManager,
-		private IFactory $l10nFactory,
-		private IProviderFactory $factory,
-		private IUserManager $userManager,
-		private IRootFolder $rootFolder,
-		private IEventDispatcher $dispatcher,
-		private IUserSession $userSession,
-		private KnownUserService $knownUserService,
-		private ShareDisableChecker $shareDisableChecker,
-		private IDateTimeZone $dateTimeZone,
-		private IAppConfig $appConfig,
-	) {
-		$this->l = $this->l10nFactory->get('lib');
-		// The constructor of LegacyHooks registers the listeners of share events
-		// do not remove if those are not properly migrated
-		$this->legacyHooks = new LegacyHooks($this->dispatcher);
-	}
-
-	/**
-	 * Convert from a full share id to a tuple (providerId, shareId)
-	 *
-	 * @return string[]
-	 */
-	private function splitFullId(string $id): array {
-		return explode(':', $id, 2);
-	}
-
-	/**
-	 * Verify if a password meets all requirements
-	 *
-	 * @throws HintException
-	 */
-	protected function verifyPassword(?string $password): void {
-		if ($password === null) {
-			// No password is set, check if this is allowed.
-			if ($this->shareApiLinkEnforcePassword()) {
-				throw new \InvalidArgumentException($this->l->t('Passwords are enforced for link and mail shares'));
-			}
-
-			return;
-		}
-
-		// Let others verify the password
-		try {
-			$event = new ValidatePasswordPolicyEvent($password, PasswordContext::SHARING);
-			$this->dispatcher->dispatchTyped($event);
-		} catch (HintException $e) {
-			/* Wrap in a 400 bad request error */
-			throw new HintException($e->getMessage(), $e->getHint(), 400, $e);
-		}
-	}
-
-	/**
-	 * Check for generic requirements before creating a share
-	 *
-	 * @param IShare $share
-	 * @throws \InvalidArgumentException
-	 * @throws GenericShareException
-	 *
-	 * @suppress PhanUndeclaredClassMethod
-	 */
-	protected function generalCreateChecks(IShare $share, bool $isUpdate = false): void {
-		if ($share->getShareType() === IShare::TYPE_USER) {
-			// We expect a valid user as sharedWith for user shares
-			if (!$this->userManager->userExists($share->getSharedWith())) {
-				throw new \InvalidArgumentException($this->l->t('Share recipient is not a valid user'));
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_GROUP) {
-			// We expect a valid group as sharedWith for group shares
-			if (!$this->groupManager->groupExists($share->getSharedWith())) {
-				throw new \InvalidArgumentException($this->l->t('Share recipient is not a valid group'));
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_LINK) {
-			// No check for TYPE_EMAIL here as we have a recipient for them
-			if ($share->getSharedWith() !== null) {
-				throw new \InvalidArgumentException($this->l->t('Share recipient should be empty'));
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_EMAIL) {
-			if ($share->getSharedWith() === null) {
-				throw new \InvalidArgumentException($this->l->t('Share recipient should not be empty'));
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_REMOTE) {
-			if ($share->getSharedWith() === null) {
-				throw new \InvalidArgumentException($this->l->t('Share recipient should not be empty'));
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_REMOTE_GROUP) {
-			if ($share->getSharedWith() === null) {
-				throw new \InvalidArgumentException($this->l->t('Share recipient should not be empty'));
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_CIRCLE) {
-			$circle = \OCA\Circles\Api\v1\Circles::detailsCircle($share->getSharedWith());
-			if ($circle === null) {
-				throw new \InvalidArgumentException($this->l->t('Share recipient is not a valid circle'));
-			}
-		} elseif ($share->getShareType() !== IShare::TYPE_ROOM && $share->getShareType() !== IShare::TYPE_DECK) {
-			// We cannot handle other types yet
-			throw new \InvalidArgumentException($this->l->t('Unknown share type'));
-		}
-
-		// Verify the initiator of the share is set
-		if ($share->getSharedBy() === null) {
-			throw new \InvalidArgumentException($this->l->t('Share initiator must be set'));
-		}
-
-		// Cannot share with yourself
-		if ($share->getShareType() === IShare::TYPE_USER
-			&& $share->getSharedWith() === $share->getSharedBy()) {
-			throw new \InvalidArgumentException($this->l->t('Cannot share with yourself'));
-		}
-
-		// The path should be set
-		if ($share->getNode() === null) {
-			throw new \InvalidArgumentException($this->l->t('Shared path must be set'));
-		}
-
-		// And it should be a file or a folder
-		if (!($share->getNode() instanceof \OCP\Files\File)
-			&& !($share->getNode() instanceof \OCP\Files\Folder)) {
-			throw new \InvalidArgumentException($this->l->t('Shared path must be either a file or a folder'));
-		}
-
-		// And you cannot share your rootfolder
-		if ($this->userManager->userExists($share->getSharedBy())) {
-			$userFolder = $this->rootFolder->getUserFolder($share->getSharedBy());
-		} else {
-			$userFolder = $this->rootFolder->getUserFolder($share->getShareOwner());
-		}
-		if ($userFolder->getId() === $share->getNode()->getId()) {
-			throw new \InvalidArgumentException($this->l->t('You cannot share your root folder'));
-		}
-
-		// Check if we actually have share permissions
-		if (!$share->getNode()->isShareable()) {
-			throw new GenericShareException($this->l->t('You are not allowed to share %s', [$share->getNode()->getName()]), code: 404);
-		}
-
-		// Permissions should be set
-		if ($share->getPermissions() === null) {
-			throw new \InvalidArgumentException($this->l->t('Valid permissions are required for sharing'));
-		}
-
-		// Permissions must be valid
-		if ($share->getPermissions() < 0 || $share->getPermissions() > \OCP\Constants::PERMISSION_ALL) {
-			throw new \InvalidArgumentException($this->l->t('Valid permissions are required for sharing'));
-		}
-
-		// Single file shares should never have delete or create permissions
-		if (($share->getNode() instanceof File)
-			&& (($share->getPermissions() & (\OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_DELETE)) !== 0)) {
-			throw new \InvalidArgumentException($this->l->t('File shares cannot have create or delete permissions'));
-		}
-
-		$permissions = 0;
-		$nodesForUser = $userFolder->getById($share->getNodeId());
-		foreach ($nodesForUser as $node) {
-			if ($node->getInternalPath() === '' && !$node->getMountPoint() instanceof MoveableMount) {
-				// for the root of non-movable mount, the permissions we see if limited by the mount itself,
-				// so we instead use the "raw" permissions from the storage
-				$permissions |= $node->getStorage()->getPermissions('');
-			} else {
-				$permissions |= $node->getPermissions();
-			}
-		}
-
-		// Check that we do not share with more permissions than we have
-		if ($share->getPermissions() & ~$permissions) {
-			$path = $userFolder->getRelativePath($share->getNode()->getPath());
-			throw new GenericShareException($this->l->t('Cannot increase permissions of %s', [$path]), code: 404);
-		}
-
-		// Check that read permissions are always set
-		// Link shares are allowed to have no read permissions to allow upload to hidden folders
-		$noReadPermissionRequired = $share->getShareType() === IShare::TYPE_LINK
-			|| $share->getShareType() === IShare::TYPE_EMAIL;
-		if (!$noReadPermissionRequired
-			&& ($share->getPermissions() & \OCP\Constants::PERMISSION_READ) === 0) {
-			throw new \InvalidArgumentException($this->l->t('Shares need at least read permissions'));
-		}
-
-		if ($share->getNode() instanceof \OCP\Files\File) {
-			if ($share->getPermissions() & \OCP\Constants::PERMISSION_DELETE) {
-				throw new GenericShareException($this->l->t('Files cannot be shared with delete permissions'));
-			}
-			if ($share->getPermissions() & \OCP\Constants::PERMISSION_CREATE) {
-				throw new GenericShareException($this->l->t('Files cannot be shared with create permissions'));
-			}
-		}
-	}
-
-	/**
-	 * Validate if the expiration date fits the system settings
-	 *
-	 * @param IShare $share The share to validate the expiration date of
-	 * @return IShare The modified share object
-	 * @throws GenericShareException
-	 * @throws \InvalidArgumentException
-	 * @throws \Exception
-	 */
-	protected function validateExpirationDateInternal(IShare $share): IShare {
-		$isRemote = $share->getShareType() === IShare::TYPE_REMOTE || $share->getShareType() === IShare::TYPE_REMOTE_GROUP;
-
-		$expirationDate = $share->getExpirationDate();
-
-		if ($isRemote) {
-			$defaultExpireDate = $this->shareApiRemoteDefaultExpireDate();
-			$defaultExpireDays = $this->shareApiRemoteDefaultExpireDays();
-			$configProp = 'remote_defaultExpDays';
-			$isEnforced = $this->shareApiRemoteDefaultExpireDateEnforced();
-		} else {
-			$defaultExpireDate = $this->shareApiInternalDefaultExpireDate();
-			$defaultExpireDays = $this->shareApiInternalDefaultExpireDays();
-			$configProp = 'internal_defaultExpDays';
-			$isEnforced = $this->shareApiInternalDefaultExpireDateEnforced();
-		}
-
-		// If $expirationDate is falsy, noExpirationDate is true and expiration not enforced
-		// Then skip expiration date validation as null is accepted
-		if (!$share->getNoExpirationDate() || $isEnforced) {
-			if ($expirationDate !== null) {
-				$expirationDate->setTimezone($this->dateTimeZone->getTimeZone());
-				$expirationDate->setTime(0, 0, 0);
-
-				$date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
-				$date->setTime(0, 0, 0);
-				if ($date >= $expirationDate) {
-					throw new GenericShareException($this->l->t('Expiration date is in the past'), code: 404);
-				}
-			}
-
-			// If expiredate is empty set a default one if there is a default
-			$fullId = null;
-			try {
-				$fullId = $share->getFullId();
-			} catch (\UnexpectedValueException $e) {
-				// This is a new share
-			}
-
-			if ($fullId === null && $expirationDate === null && $defaultExpireDate) {
-				$expirationDate = new \DateTime('now', $this->dateTimeZone->getTimeZone());
-				$expirationDate->setTime(0, 0, 0);
-				$days = (int)$this->config->getAppValue('core', $configProp, (string)$defaultExpireDays);
-				if ($days > $defaultExpireDays) {
-					$days = $defaultExpireDays;
-				}
-				$expirationDate->add(new \DateInterval('P' . $days . 'D'));
-			}
-
-			// If we enforce the expiration date check that is does not exceed
-			if ($isEnforced) {
-				if (empty($expirationDate)) {
-					throw new \InvalidArgumentException($this->l->t('Expiration date is enforced'));
-				}
-
-				$date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
-				$date->setTime(0, 0, 0);
-				$date->add(new \DateInterval('P' . $defaultExpireDays . 'D'));
-				if ($date < $expirationDate) {
-					throw new GenericShareException($this->l->n('Cannot set expiration date more than %n day in the future', 'Cannot set expiration date more than %n days in the future', $defaultExpireDays), code: 404);
-				}
-			}
-		}
-
-		$accepted = true;
-		$message = '';
-		\OCP\Util::emitHook('\OC\Share', 'verifyExpirationDate', [
-			'expirationDate' => &$expirationDate,
-			'accepted' => &$accepted,
-			'message' => &$message,
-			'passwordSet' => $share->getPassword() !== null,
-		]);
-
-		if (!$accepted) {
-			throw new \Exception($message);
-		}
-
-		$share->setExpirationDate($expirationDate);
-
-		return $share;
-	}
-
-	/**
-	 * Validate if the expiration date fits the system settings
-	 *
-	 * @param IShare $share The share to validate the expiration date of
-	 * @return IShare The modified share object
-	 * @throws GenericShareException
-	 * @throws \InvalidArgumentException
-	 * @throws \Exception
-	 */
-	protected function validateExpirationDateLink(IShare $share): IShare {
-		$expirationDate = $share->getExpirationDate();
-		$isEnforced = $this->shareApiLinkDefaultExpireDateEnforced();
-
-		// If $expirationDate is falsy, noExpirationDate is true and expiration not enforced
-		// Then skip expiration date validation as null is accepted
-		if (!($share->getNoExpirationDate() && !$isEnforced)) {
-			if ($expirationDate !== null) {
-				$expirationDate->setTimezone($this->dateTimeZone->getTimeZone());
-				$expirationDate->setTime(0, 0, 0);
-
-				$date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
-				$date->setTime(0, 0, 0);
-				if ($date >= $expirationDate) {
-					throw new GenericShareException($this->l->t('Expiration date is in the past'), code: 404);
-				}
-			}
-
-			// If expiredate is empty set a default one if there is a default
-			$fullId = null;
-			try {
-				$fullId = $share->getFullId();
-			} catch (\UnexpectedValueException $e) {
-				// This is a new share
-			}
-
-			if ($fullId === null && $expirationDate === null && $this->shareApiLinkDefaultExpireDate()) {
-				$expirationDate = new \DateTime('now', $this->dateTimeZone->getTimeZone());
-				$expirationDate->setTime(0, 0, 0);
-
-				$days = (int)$this->config->getAppValue('core', 'link_defaultExpDays', (string)$this->shareApiLinkDefaultExpireDays());
-				if ($days > $this->shareApiLinkDefaultExpireDays()) {
-					$days = $this->shareApiLinkDefaultExpireDays();
-				}
-				$expirationDate->add(new \DateInterval('P' . $days . 'D'));
-			}
-
-			// If we enforce the expiration date check that is does not exceed
-			if ($isEnforced) {
-				if (empty($expirationDate)) {
-					throw new \InvalidArgumentException($this->l->t('Expiration date is enforced'));
-				}
-
-				$date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
-				$date->setTime(0, 0, 0);
-				$date->add(new \DateInterval('P' . $this->shareApiLinkDefaultExpireDays() . 'D'));
-				if ($date < $expirationDate) {
-					throw new GenericShareException(
-						$this->l->n('Cannot set expiration date more than %n day in the future', 'Cannot set expiration date more than %n days in the future', $this->shareApiLinkDefaultExpireDays()),
-						code: 404,
-					);
-				}
-			}
-
-		}
-
-		$accepted = true;
-		$message = '';
-		\OCP\Util::emitHook('\OC\Share', 'verifyExpirationDate', [
-			'expirationDate' => &$expirationDate,
-			'accepted' => &$accepted,
-			'message' => &$message,
-			'passwordSet' => $share->getPassword() !== null,
-		]);
-
-		if (!$accepted) {
-			throw new \Exception($message);
-		}
-
-		$share->setExpirationDate($expirationDate);
-
-		return $share;
-	}
-
-	/**
-	 * Check for pre share requirements for user shares
-	 *
-	 * @throws \Exception
-	 */
-	protected function userCreateChecks(IShare $share): void {
-		// Check if we can share with group members only
-		if ($this->shareWithGroupMembersOnly()) {
-			$sharedBy = $this->userManager->get($share->getSharedBy());
-			$sharedWith = $this->userManager->get($share->getSharedWith());
-			// Verify we can share with this user
-			$groups = array_intersect(
-				$this->groupManager->getUserGroupIds($sharedBy),
-				$this->groupManager->getUserGroupIds($sharedWith)
-			);
-
-			// optional excluded groups
-			$excludedGroups = $this->shareWithGroupMembersOnlyExcludeGroupsList();
-			$groups = array_diff($groups, $excludedGroups);
-
-			if (empty($groups)) {
-				throw new \Exception($this->l->t('Sharing is only allowed with group members'));
-			}
-		}
-
-		/*
+    private ?IL10N $l;
+    private LegacyHooks $legacyHooks;
+
+    public function __construct(
+        private LoggerInterface $logger,
+        private IConfig $config,
+        private ISecureRandom $secureRandom,
+        private IHasher $hasher,
+        private IMountManager $mountManager,
+        private IGroupManager $groupManager,
+        private IFactory $l10nFactory,
+        private IProviderFactory $factory,
+        private IUserManager $userManager,
+        private IRootFolder $rootFolder,
+        private IEventDispatcher $dispatcher,
+        private IUserSession $userSession,
+        private KnownUserService $knownUserService,
+        private ShareDisableChecker $shareDisableChecker,
+        private IDateTimeZone $dateTimeZone,
+        private IAppConfig $appConfig,
+    ) {
+        $this->l = $this->l10nFactory->get('lib');
+        // The constructor of LegacyHooks registers the listeners of share events
+        // do not remove if those are not properly migrated
+        $this->legacyHooks = new LegacyHooks($this->dispatcher);
+    }
+
+    /**
+     * Convert from a full share id to a tuple (providerId, shareId)
+     *
+     * @return string[]
+     */
+    private function splitFullId(string $id): array {
+        return explode(':', $id, 2);
+    }
+
+    /**
+     * Verify if a password meets all requirements
+     *
+     * @throws HintException
+     */
+    protected function verifyPassword(?string $password): void {
+        if ($password === null) {
+            // No password is set, check if this is allowed.
+            if ($this->shareApiLinkEnforcePassword()) {
+                throw new \InvalidArgumentException($this->l->t('Passwords are enforced for link and mail shares'));
+            }
+
+            return;
+        }
+
+        // Let others verify the password
+        try {
+            $event = new ValidatePasswordPolicyEvent($password, PasswordContext::SHARING);
+            $this->dispatcher->dispatchTyped($event);
+        } catch (HintException $e) {
+            /* Wrap in a 400 bad request error */
+            throw new HintException($e->getMessage(), $e->getHint(), 400, $e);
+        }
+    }
+
+    /**
+     * Check for generic requirements before creating a share
+     *
+     * @param IShare $share
+     * @throws \InvalidArgumentException
+     * @throws GenericShareException
+     *
+     * @suppress PhanUndeclaredClassMethod
+     */
+    protected function generalCreateChecks(IShare $share, bool $isUpdate = false): void {
+        if ($share->getShareType() === IShare::TYPE_USER) {
+            // We expect a valid user as sharedWith for user shares
+            if (!$this->userManager->userExists($share->getSharedWith())) {
+                throw new \InvalidArgumentException($this->l->t('Share recipient is not a valid user'));
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_GROUP) {
+            // We expect a valid group as sharedWith for group shares
+            if (!$this->groupManager->groupExists($share->getSharedWith())) {
+                throw new \InvalidArgumentException($this->l->t('Share recipient is not a valid group'));
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_LINK) {
+            // No check for TYPE_EMAIL here as we have a recipient for them
+            if ($share->getSharedWith() !== null) {
+                throw new \InvalidArgumentException($this->l->t('Share recipient should be empty'));
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_EMAIL) {
+            if ($share->getSharedWith() === null) {
+                throw new \InvalidArgumentException($this->l->t('Share recipient should not be empty'));
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_REMOTE) {
+            if ($share->getSharedWith() === null) {
+                throw new \InvalidArgumentException($this->l->t('Share recipient should not be empty'));
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_REMOTE_GROUP) {
+            if ($share->getSharedWith() === null) {
+                throw new \InvalidArgumentException($this->l->t('Share recipient should not be empty'));
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_CIRCLE) {
+            $circle = \OCA\Circles\Api\v1\Circles::detailsCircle($share->getSharedWith());
+            if ($circle === null) {
+                throw new \InvalidArgumentException($this->l->t('Share recipient is not a valid circle'));
+            }
+        } elseif ($share->getShareType() !== IShare::TYPE_ROOM && $share->getShareType() !== IShare::TYPE_DECK) {
+            // We cannot handle other types yet
+            throw new \InvalidArgumentException($this->l->t('Unknown share type'));
+        }
+
+        // Verify the initiator of the share is set
+        if ($share->getSharedBy() === null) {
+            throw new \InvalidArgumentException($this->l->t('Share initiator must be set'));
+        }
+
+        // Cannot share with yourself
+        if ($share->getShareType() === IShare::TYPE_USER
+            && $share->getSharedWith() === $share->getSharedBy()) {
+            throw new \InvalidArgumentException($this->l->t('Cannot share with yourself'));
+        }
+
+        // The path should be set
+        if ($share->getNode() === null) {
+            throw new \InvalidArgumentException($this->l->t('Shared path must be set'));
+        }
+
+        // And it should be a file or a folder
+        if (!($share->getNode() instanceof \OCP\Files\File)
+            && !($share->getNode() instanceof \OCP\Files\Folder)) {
+            throw new \InvalidArgumentException($this->l->t('Shared path must be either a file or a folder'));
+        }
+
+        // And you cannot share your rootfolder
+        if ($this->userManager->userExists($share->getSharedBy())) {
+            $userFolder = $this->rootFolder->getUserFolder($share->getSharedBy());
+        } else {
+            $userFolder = $this->rootFolder->getUserFolder($share->getShareOwner());
+        }
+        if ($userFolder->getId() === $share->getNode()->getId()) {
+            throw new \InvalidArgumentException($this->l->t('You cannot share your root folder'));
+        }
+
+        // Check if we actually have share permissions
+        if (!$share->getNode()->isShareable()) {
+            throw new GenericShareException($this->l->t('You are not allowed to share %s', [$share->getNode()->getName()]), code: 404);
+        }
+
+        // Permissions should be set
+        if ($share->getPermissions() === null) {
+            throw new \InvalidArgumentException($this->l->t('Valid permissions are required for sharing'));
+        }
+
+        // Permissions must be valid
+        if ($share->getPermissions() < 0 || $share->getPermissions() > \OCP\Constants::PERMISSION_ALL) {
+            throw new \InvalidArgumentException($this->l->t('Valid permissions are required for sharing'));
+        }
+
+        // Single file shares should never have delete or create permissions
+        if (($share->getNode() instanceof File)
+            && (($share->getPermissions() & (\OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_DELETE)) !== 0)) {
+            throw new \InvalidArgumentException($this->l->t('File shares cannot have create or delete permissions'));
+        }
+
+        $permissions = 0;
+        $nodesForUser = $userFolder->getById($share->getNodeId());
+        foreach ($nodesForUser as $node) {
+            if ($node->getInternalPath() === '' && !$node->getMountPoint() instanceof MoveableMount) {
+                // for the root of non-movable mount, the permissions we see if limited by the mount itself,
+                // so we instead use the "raw" permissions from the storage
+                $permissions |= $node->getStorage()->getPermissions('');
+            } else {
+                $permissions |= $node->getPermissions();
+            }
+        }
+
+        // Check that we do not share with more permissions than we have
+        if ($share->getPermissions() & ~$permissions) {
+            $path = $userFolder->getRelativePath($share->getNode()->getPath());
+            throw new GenericShareException($this->l->t('Cannot increase permissions of %s', [$path]), code: 404);
+        }
+
+        // Check that read permissions are always set
+        // Link shares are allowed to have no read permissions to allow upload to hidden folders
+        $noReadPermissionRequired = $share->getShareType() === IShare::TYPE_LINK
+            || $share->getShareType() === IShare::TYPE_EMAIL;
+        if (!$noReadPermissionRequired
+            && ($share->getPermissions() & \OCP\Constants::PERMISSION_READ) === 0) {
+            throw new \InvalidArgumentException($this->l->t('Shares need at least read permissions'));
+        }
+
+        if ($share->getNode() instanceof \OCP\Files\File) {
+            if ($share->getPermissions() & \OCP\Constants::PERMISSION_DELETE) {
+                throw new GenericShareException($this->l->t('Files cannot be shared with delete permissions'));
+            }
+            if ($share->getPermissions() & \OCP\Constants::PERMISSION_CREATE) {
+                throw new GenericShareException($this->l->t('Files cannot be shared with create permissions'));
+            }
+        }
+    }
+
+    /**
+     * Validate if the expiration date fits the system settings
+     *
+     * @param IShare $share The share to validate the expiration date of
+     * @return IShare The modified share object
+     * @throws GenericShareException
+     * @throws \InvalidArgumentException
+     * @throws \Exception
+     */
+    protected function validateExpirationDateInternal(IShare $share): IShare {
+        $isRemote = $share->getShareType() === IShare::TYPE_REMOTE || $share->getShareType() === IShare::TYPE_REMOTE_GROUP;
+
+        $expirationDate = $share->getExpirationDate();
+
+        if ($isRemote) {
+            $defaultExpireDate = $this->shareApiRemoteDefaultExpireDate();
+            $defaultExpireDays = $this->shareApiRemoteDefaultExpireDays();
+            $configProp = 'remote_defaultExpDays';
+            $isEnforced = $this->shareApiRemoteDefaultExpireDateEnforced();
+        } else {
+            $defaultExpireDate = $this->shareApiInternalDefaultExpireDate();
+            $defaultExpireDays = $this->shareApiInternalDefaultExpireDays();
+            $configProp = 'internal_defaultExpDays';
+            $isEnforced = $this->shareApiInternalDefaultExpireDateEnforced();
+        }
+
+        // If $expirationDate is falsy, noExpirationDate is true and expiration not enforced
+        // Then skip expiration date validation as null is accepted
+        if (!$share->getNoExpirationDate() || $isEnforced) {
+            if ($expirationDate !== null) {
+                $expirationDate->setTimezone($this->dateTimeZone->getTimeZone());
+                $expirationDate->setTime(0, 0, 0);
+
+                $date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
+                $date->setTime(0, 0, 0);
+                if ($date >= $expirationDate) {
+                    throw new GenericShareException($this->l->t('Expiration date is in the past'), code: 404);
+                }
+            }
+
+            // If expiredate is empty set a default one if there is a default
+            $fullId = null;
+            try {
+                $fullId = $share->getFullId();
+            } catch (\UnexpectedValueException $e) {
+                // This is a new share
+            }
+
+            if ($fullId === null && $expirationDate === null && $defaultExpireDate) {
+                $expirationDate = new \DateTime('now', $this->dateTimeZone->getTimeZone());
+                $expirationDate->setTime(0, 0, 0);
+                $days = (int)$this->config->getAppValue('core', $configProp, (string)$defaultExpireDays);
+                if ($days > $defaultExpireDays) {
+                    $days = $defaultExpireDays;
+                }
+                $expirationDate->add(new \DateInterval('P' . $days . 'D'));
+            }
+
+            // If we enforce the expiration date check that is does not exceed
+            if ($isEnforced) {
+                if (empty($expirationDate)) {
+                    throw new \InvalidArgumentException($this->l->t('Expiration date is enforced'));
+                }
+
+                $date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
+                $date->setTime(0, 0, 0);
+                $date->add(new \DateInterval('P' . $defaultExpireDays . 'D'));
+                if ($date < $expirationDate) {
+                    throw new GenericShareException($this->l->n('Cannot set expiration date more than %n day in the future', 'Cannot set expiration date more than %n days in the future', $defaultExpireDays), code: 404);
+                }
+            }
+        }
+
+        $accepted = true;
+        $message = '';
+        \OCP\Util::emitHook('\OC\Share', 'verifyExpirationDate', [
+            'expirationDate' => &$expirationDate,
+            'accepted' => &$accepted,
+            'message' => &$message,
+            'passwordSet' => $share->getPassword() !== null,
+        ]);
+
+        if (!$accepted) {
+            throw new \Exception($message);
+        }
+
+        $share->setExpirationDate($expirationDate);
+
+        return $share;
+    }
+
+    /**
+     * Validate if the expiration date fits the system settings
+     *
+     * @param IShare $share The share to validate the expiration date of
+     * @return IShare The modified share object
+     * @throws GenericShareException
+     * @throws \InvalidArgumentException
+     * @throws \Exception
+     */
+    protected function validateExpirationDateLink(IShare $share): IShare {
+        $expirationDate = $share->getExpirationDate();
+        $isEnforced = $this->shareApiLinkDefaultExpireDateEnforced();
+
+        // If $expirationDate is falsy, noExpirationDate is true and expiration not enforced
+        // Then skip expiration date validation as null is accepted
+        if (!($share->getNoExpirationDate() && !$isEnforced)) {
+            if ($expirationDate !== null) {
+                $expirationDate->setTimezone($this->dateTimeZone->getTimeZone());
+                $expirationDate->setTime(0, 0, 0);
+
+                $date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
+                $date->setTime(0, 0, 0);
+                if ($date >= $expirationDate) {
+                    throw new GenericShareException($this->l->t('Expiration date is in the past'), code: 404);
+                }
+            }
+
+            // If expiredate is empty set a default one if there is a default
+            $fullId = null;
+            try {
+                $fullId = $share->getFullId();
+            } catch (\UnexpectedValueException $e) {
+                // This is a new share
+            }
+
+            if ($fullId === null && $expirationDate === null && $this->shareApiLinkDefaultExpireDate()) {
+                $expirationDate = new \DateTime('now', $this->dateTimeZone->getTimeZone());
+                $expirationDate->setTime(0, 0, 0);
+
+                $days = (int)$this->config->getAppValue('core', 'link_defaultExpDays', (string)$this->shareApiLinkDefaultExpireDays());
+                if ($days > $this->shareApiLinkDefaultExpireDays()) {
+                    $days = $this->shareApiLinkDefaultExpireDays();
+                }
+                $expirationDate->add(new \DateInterval('P' . $days . 'D'));
+            }
+
+            // If we enforce the expiration date check that is does not exceed
+            if ($isEnforced) {
+                if (empty($expirationDate)) {
+                    throw new \InvalidArgumentException($this->l->t('Expiration date is enforced'));
+                }
+
+                $date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
+                $date->setTime(0, 0, 0);
+                $date->add(new \DateInterval('P' . $this->shareApiLinkDefaultExpireDays() . 'D'));
+                if ($date < $expirationDate) {
+                    throw new GenericShareException(
+                        $this->l->n('Cannot set expiration date more than %n day in the future', 'Cannot set expiration date more than %n days in the future', $this->shareApiLinkDefaultExpireDays()),
+                        code: 404,
+                    );
+                }
+            }
+
+        }
+
+        $accepted = true;
+        $message = '';
+        \OCP\Util::emitHook('\OC\Share', 'verifyExpirationDate', [
+            'expirationDate' => &$expirationDate,
+            'accepted' => &$accepted,
+            'message' => &$message,
+            'passwordSet' => $share->getPassword() !== null,
+        ]);
+
+        if (!$accepted) {
+            throw new \Exception($message);
+        }
+
+        $share->setExpirationDate($expirationDate);
+
+        return $share;
+    }
+
+    /**
+     * Check for pre share requirements for user shares
+     *
+     * @throws \Exception
+     */
+    protected function userCreateChecks(IShare $share): void {
+        // Check if we can share with group members only
+        if ($this->shareWithGroupMembersOnly()) {
+            $sharedBy = $this->userManager->get($share->getSharedBy());
+            $sharedWith = $this->userManager->get($share->getSharedWith());
+            // Verify we can share with this user
+            $groups = array_intersect(
+                $this->groupManager->getUserGroupIds($sharedBy),
+                $this->groupManager->getUserGroupIds($sharedWith)
+            );
+
+            // optional excluded groups
+            $excludedGroups = $this->shareWithGroupMembersOnlyExcludeGroupsList();
+            $groups = array_diff($groups, $excludedGroups);
+
+            if (empty($groups)) {
+                throw new \Exception($this->l->t('Sharing is only allowed with group members'));
+            }
+        }
+
+        /*
 		 * TODO: Could be costly, fix
 		 *
 		 * Also this is not what we want in the future.. then we want to squash identical shares.
 		 */
-		$provider = $this->factory->getProviderForType(IShare::TYPE_USER);
-		$existingShares = $provider->getSharesByPath($share->getNode());
-		foreach ($existingShares as $existingShare) {
-			// Ignore if it is the same share
-			try {
-				if ($existingShare->getFullId() === $share->getFullId()) {
-					continue;
-				}
-			} catch (\UnexpectedValueException $e) {
-				//Shares are not identical
-			}
-
-			// Identical share already exists
-			if ($existingShare->getSharedWith() === $share->getSharedWith() && $existingShare->getShareType() === $share->getShareType()) {
-				throw new AlreadySharedException($this->l->t('Sharing %s failed, because this item is already shared with the account %s', [$share->getNode()->getName(), $share->getSharedWithDisplayName()]), $existingShare);
-			}
-
-			// The share is already shared with this user via a group share
-			if ($existingShare->getShareType() === IShare::TYPE_GROUP) {
-				$group = $this->groupManager->get($existingShare->getSharedWith());
-				if (!is_null($group)) {
-					$user = $this->userManager->get($share->getSharedWith());
-
-					if ($group->inGroup($user) && $existingShare->getShareOwner() !== $share->getShareOwner()) {
-						throw new AlreadySharedException($this->l->t('Sharing %s failed, because this item is already shared with the account %s', [$share->getNode()->getName(), $share->getSharedWithDisplayName()]), $existingShare);
-					}
-				}
-			}
-		}
-	}
-
-	/**
-	 * Check for pre share requirements for group shares
-	 *
-	 * @throws \Exception
-	 */
-	protected function groupCreateChecks(IShare $share): void {
-		// Verify group shares are allowed
-		if (!$this->allowGroupSharing()) {
-			throw new \Exception($this->l->t('Group sharing is now allowed'));
-		}
-
-		// Verify if the user can share with this group
-		if ($this->shareWithGroupMembersOnly()) {
-			$sharedBy = $this->userManager->get($share->getSharedBy());
-			$sharedWith = $this->groupManager->get($share->getSharedWith());
-
-			// optional excluded groups
-			$excludedGroups = $this->shareWithGroupMembersOnlyExcludeGroupsList();
-			if (is_null($sharedWith) || in_array($share->getSharedWith(), $excludedGroups) || !$sharedWith->inGroup($sharedBy)) {
-				throw new \Exception($this->l->t('Sharing is only allowed within your own groups'));
-			}
-		}
-
-		/*
+        $provider = $this->factory->getProviderForType(IShare::TYPE_USER);
+        $existingShares = $provider->getSharesByPath($share->getNode());
+        foreach ($existingShares as $existingShare) {
+            // Ignore if it is the same share
+            try {
+                if ($existingShare->getFullId() === $share->getFullId()) {
+                    continue;
+                }
+            } catch (\UnexpectedValueException $e) {
+                //Shares are not identical
+            }
+
+            // Identical share already exists
+            if ($existingShare->getSharedWith() === $share->getSharedWith() && $existingShare->getShareType() === $share->getShareType()) {
+                throw new AlreadySharedException($this->l->t('Sharing %s failed, because this item is already shared with the account %s', [$share->getNode()->getName(), $share->getSharedWithDisplayName()]), $existingShare);
+            }
+
+            // The share is already shared with this user via a group share
+            if ($existingShare->getShareType() === IShare::TYPE_GROUP) {
+                $group = $this->groupManager->get($existingShare->getSharedWith());
+                if (!is_null($group)) {
+                    $user = $this->userManager->get($share->getSharedWith());
+
+                    if ($group->inGroup($user) && $existingShare->getShareOwner() !== $share->getShareOwner()) {
+                        throw new AlreadySharedException($this->l->t('Sharing %s failed, because this item is already shared with the account %s', [$share->getNode()->getName(), $share->getSharedWithDisplayName()]), $existingShare);
+                    }
+                }
+            }
+        }
+    }
+
+    /**
+     * Check for pre share requirements for group shares
+     *
+     * @throws \Exception
+     */
+    protected function groupCreateChecks(IShare $share): void {
+        // Verify group shares are allowed
+        if (!$this->allowGroupSharing()) {
+            throw new \Exception($this->l->t('Group sharing is now allowed'));
+        }
+
+        // Verify if the user can share with this group
+        if ($this->shareWithGroupMembersOnly()) {
+            $sharedBy = $this->userManager->get($share->getSharedBy());
+            $sharedWith = $this->groupManager->get($share->getSharedWith());
+
+            // optional excluded groups
+            $excludedGroups = $this->shareWithGroupMembersOnlyExcludeGroupsList();
+            if (is_null($sharedWith) || in_array($share->getSharedWith(), $excludedGroups) || !$sharedWith->inGroup($sharedBy)) {
+                throw new \Exception($this->l->t('Sharing is only allowed within your own groups'));
+            }
+        }
+
+        /*
 		 * TODO: Could be costly, fix
 		 *
 		 * Also this is not what we want in the future.. then we want to squash identical shares.
 		 */
-		$provider = $this->factory->getProviderForType(IShare::TYPE_GROUP);
-		$existingShares = $provider->getSharesByPath($share->getNode());
-		foreach ($existingShares as $existingShare) {
-			try {
-				if ($existingShare->getFullId() === $share->getFullId()) {
-					continue;
-				}
-			} catch (\UnexpectedValueException $e) {
-				//It is a new share so just continue
-			}
-
-			if ($existingShare->getSharedWith() === $share->getSharedWith() && $existingShare->getShareType() === $share->getShareType()) {
-				throw new AlreadySharedException($this->l->t('Path is already shared with this group'), $existingShare);
-			}
-		}
-	}
-
-	/**
-	 * Check for pre share requirements for link shares
-	 *
-	 * @throws \Exception
-	 */
-	protected function linkCreateChecks(IShare $share): void {
-		// Are link shares allowed?
-		if (!$this->shareApiAllowLinks()) {
-			throw new \Exception($this->l->t('Link sharing is not allowed'));
-		}
-
-		// Check if public upload is allowed
-		if ($share->getNodeType() === 'folder' && !$this->shareApiLinkAllowPublicUpload()
-			&& ($share->getPermissions() & (\OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE | \OCP\Constants::PERMISSION_DELETE))) {
-			throw new \InvalidArgumentException($this->l->t('Public upload is not allowed'));
-		}
-	}
-
-	/**
-	 * To make sure we don't get invisible link shares we set the parent
-	 * of a link if it is a reshare. This is a quick word around
-	 * until we can properly display multiple link shares in the UI
-	 *
-	 * See: https://github.com/owncloud/core/issues/22295
-	 *
-	 * FIXME: Remove once multiple link shares can be properly displayed
-	 */
-	protected function setLinkParent(IShare $share): void {
-		$storage = $share->getNode()->getStorage();
-		if ($storage->instanceOfStorage(SharedStorage::class)) {
-			/** @var \OCA\Files_Sharing\SharedStorage $storage */
-			$share->setParent((int)$storage->getShareId());
-		}
-	}
-
-	protected function pathCreateChecks(Node $path): void {
-		// Make sure that we do not share a path that contains a shared mountpoint
-		if ($path instanceof \OCP\Files\Folder) {
-			$mounts = $this->mountManager->findIn($path->getPath());
-			foreach ($mounts as $mount) {
-				if ($mount->getStorage()->instanceOfStorage('\OCA\Files_Sharing\ISharedStorage')) {
-					// Using a flat sharing model ensures the file owner can always see who has access.
-					// Allowing parent folder sharing would require tracking inherited access, which adds complexity
-					// and hurts performance/scalability.
-					// So we forbid sharing a parent folder of a share you received.
-					throw new \InvalidArgumentException($this->l->t('You cannot share a folder that contains other shares'));
-				}
-			}
-		}
-	}
-
-	/**
-	 * Check if the user that is sharing can actually share
-	 *
-	 * @throws \Exception
-	 */
-	protected function canShare(IShare $share): void {
-		if (!$this->shareApiEnabled()) {
-			throw new \Exception($this->l->t('Sharing is disabled'));
-		}
-
-		if ($this->sharingDisabledForUser($share->getSharedBy())) {
-			throw new \Exception($this->l->t('Sharing is disabled for you'));
-		}
-	}
-
-	#[Override]
-	public function createShare(IShare $share): IShare {
-		// TODO: handle link share permissions or check them
-		$this->canShare($share);
-
-		$this->generalCreateChecks($share);
-
-		// Verify if there are any issues with the path
-		$this->pathCreateChecks($share->getNode());
-
-		/*
+        $provider = $this->factory->getProviderForType(IShare::TYPE_GROUP);
+        $existingShares = $provider->getSharesByPath($share->getNode());
+        foreach ($existingShares as $existingShare) {
+            try {
+                if ($existingShare->getFullId() === $share->getFullId()) {
+                    continue;
+                }
+            } catch (\UnexpectedValueException $e) {
+                //It is a new share so just continue
+            }
+
+            if ($existingShare->getSharedWith() === $share->getSharedWith() && $existingShare->getShareType() === $share->getShareType()) {
+                throw new AlreadySharedException($this->l->t('Path is already shared with this group'), $existingShare);
+            }
+        }
+    }
+
+    /**
+     * Check for pre share requirements for link shares
+     *
+     * @throws \Exception
+     */
+    protected function linkCreateChecks(IShare $share): void {
+        // Are link shares allowed?
+        if (!$this->shareApiAllowLinks()) {
+            throw new \Exception($this->l->t('Link sharing is not allowed'));
+        }
+
+        // Check if public upload is allowed
+        if ($share->getNodeType() === 'folder' && !$this->shareApiLinkAllowPublicUpload()
+            && ($share->getPermissions() & (\OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE | \OCP\Constants::PERMISSION_DELETE))) {
+            throw new \InvalidArgumentException($this->l->t('Public upload is not allowed'));
+        }
+    }
+
+    /**
+     * To make sure we don't get invisible link shares we set the parent
+     * of a link if it is a reshare. This is a quick word around
+     * until we can properly display multiple link shares in the UI
+     *
+     * See: https://github.com/owncloud/core/issues/22295
+     *
+     * FIXME: Remove once multiple link shares can be properly displayed
+     */
+    protected function setLinkParent(IShare $share): void {
+        $storage = $share->getNode()->getStorage();
+        if ($storage->instanceOfStorage(SharedStorage::class)) {
+            /** @var \OCA\Files_Sharing\SharedStorage $storage */
+            $share->setParent((int)$storage->getShareId());
+        }
+    }
+
+    protected function pathCreateChecks(Node $path): void {
+        // Make sure that we do not share a path that contains a shared mountpoint
+        if ($path instanceof \OCP\Files\Folder) {
+            $mounts = $this->mountManager->findIn($path->getPath());
+            foreach ($mounts as $mount) {
+                if ($mount->getStorage()->instanceOfStorage('\OCA\Files_Sharing\ISharedStorage')) {
+                    // Using a flat sharing model ensures the file owner can always see who has access.
+                    // Allowing parent folder sharing would require tracking inherited access, which adds complexity
+                    // and hurts performance/scalability.
+                    // So we forbid sharing a parent folder of a share you received.
+                    throw new \InvalidArgumentException($this->l->t('You cannot share a folder that contains other shares'));
+                }
+            }
+        }
+    }
+
+    /**
+     * Check if the user that is sharing can actually share
+     *
+     * @throws \Exception
+     */
+    protected function canShare(IShare $share): void {
+        if (!$this->shareApiEnabled()) {
+            throw new \Exception($this->l->t('Sharing is disabled'));
+        }
+
+        if ($this->sharingDisabledForUser($share->getSharedBy())) {
+            throw new \Exception($this->l->t('Sharing is disabled for you'));
+        }
+    }
+
+    #[Override]
+    public function createShare(IShare $share): IShare {
+        // TODO: handle link share permissions or check them
+        $this->canShare($share);
+
+        $this->generalCreateChecks($share);
+
+        // Verify if there are any issues with the path
+        $this->pathCreateChecks($share->getNode());
+
+        /*
 		 * On creation of a share the owner is always the owner of the path
 		 * Except for mounted federated shares.
 		 */
-		$storage = $share->getNode()->getStorage();
-		if ($storage->instanceOfStorage('OCA\Files_Sharing\External\Storage')) {
-			$parent = $share->getNode()->getParent();
-			while ($parent->getStorage()->instanceOfStorage('OCA\Files_Sharing\External\Storage')) {
-				$parent = $parent->getParent();
-			}
-			$share->setShareOwner($parent->getOwner()->getUID());
-		} else {
-			if ($share->getNode()->getOwner()) {
-				$share->setShareOwner($share->getNode()->getOwner()->getUID());
-			} else {
-				$share->setShareOwner($share->getSharedBy());
-			}
-		}
-
-		try {
-			// Verify share type
-			if ($share->getShareType() === IShare::TYPE_USER) {
-				$this->userCreateChecks($share);
-
-				// Verify the expiration date
-				$share = $this->validateExpirationDateInternal($share);
-			} elseif ($share->getShareType() === IShare::TYPE_GROUP) {
-				$this->groupCreateChecks($share);
-
-				// Verify the expiration date
-				$share = $this->validateExpirationDateInternal($share);
-			} elseif ($share->getShareType() === IShare::TYPE_REMOTE || $share->getShareType() === IShare::TYPE_REMOTE_GROUP) {
-				// Verify the expiration date
-				$share = $this->validateExpirationDateInternal($share);
-			} elseif ($share->getShareType() === IShare::TYPE_LINK
-				|| $share->getShareType() === IShare::TYPE_EMAIL) {
-				$this->linkCreateChecks($share);
-				$this->setLinkParent($share);
-
-				$token = $this->generateToken();
-				// Set the unique token
-				$share->setToken($token);
-
-				// Verify the expiration date
-				$share = $this->validateExpirationDateLink($share);
-
-				// Verify the password
-				$this->verifyPassword($share->getPassword());
-
-				// If a password is set. Hash it!
-				if ($share->getShareType() === IShare::TYPE_LINK
-					&& $share->getPassword() !== null) {
-					$share->setPassword($this->hasher->hash($share->getPassword()));
-				}
-			}
-
-			// Cannot share with the owner
-			if ($share->getShareType() === IShare::TYPE_USER
-				&& $share->getSharedWith() === $share->getShareOwner()) {
-				throw new \InvalidArgumentException($this->l->t('Cannot share with the share owner'));
-			}
-
-			// Generate the target
-			$shareFolder = $this->config->getSystemValue('share_folder', '/');
-			if ($share->getShareType() === IShare::TYPE_USER) {
-				$allowCustomShareFolder = $this->config->getSystemValueBool('sharing.allow_custom_share_folder', true);
-				if ($allowCustomShareFolder) {
-					$shareFolder = $this->config->getUserValue($share->getSharedWith(), Application::APP_ID, 'share_folder', $shareFolder);
-				}
-			}
-
-			$target = $shareFolder . '/' . $share->getNode()->getName();
-			$target = \OC\Files\Filesystem::normalizePath($target);
-			$share->setTarget($target);
-
-			// Pre share event
-			$event = new Share\Events\BeforeShareCreatedEvent($share);
-			$this->dispatchEvent($event, 'before share created');
-			if ($event->isPropagationStopped() && $event->getError()) {
-				throw new \Exception($event->getError());
-			}
-
-			$oldShare = $share;
-			$provider = $this->factory->getProviderForType($share->getShareType());
-			$share = $provider->create($share);
-
-			// Reuse the node we already have
-			$share->setNode($oldShare->getNode());
-
-			// Reset the target if it is null for the new share
-			if ($share->getTarget() === '') {
-				$share->setTarget($target);
-			}
-		} catch (AlreadySharedException $e) {
-			// If a share for the same target already exists, dont create a new one,
-			// but do trigger the hooks and notifications again
-			$oldShare = $share;
-
-			// Reuse the node we already have
-			$share = $e->getExistingShare();
-			$share->setNode($oldShare->getNode());
-		}
-
-		// Post share event
-		$this->dispatchEvent(new ShareCreatedEvent($share), 'share created');
-
-		// Send email if needed
-		if ($this->config->getSystemValueBool('sharing.enable_share_mail', true)) {
-			if ($share->getMailSend()) {
-				$provider = $this->factory->getProviderForType($share->getShareType());
-				if ($provider instanceof IShareProviderWithNotification) {
-					$provider->sendMailNotification($share);
-				} else {
-					$this->logger->debug('Share notification not sent because the provider does not support it.', ['app' => 'share']);
-				}
-			} else {
-				$this->logger->debug('Share notification not sent because mailsend is false.', ['app' => 'share']);
-			}
-		} else {
-			$this->logger->debug('Share notification not sent because sharing notification emails is disabled.', ['app' => 'share']);
-		}
-
-		return $share;
-	}
-
-	#[Override]
-	public function updateShare(IShare $share, bool $onlyValid = true): IShare {
-		$expirationDateUpdated = false;
-
-		$this->canShare($share);
-
-		try {
-			$originalShare = $this->getShareById($share->getFullId(), onlyValid: $onlyValid);
-		} catch (\UnexpectedValueException $e) {
-			throw new \InvalidArgumentException($this->l->t('Share does not have a full ID'));
-		}
-
-		// We cannot change the share type!
-		if ($share->getShareType() !== $originalShare->getShareType()) {
-			throw new \InvalidArgumentException($this->l->t('Cannot change share type'));
-		}
-
-		// We can only change the recipient on user shares
-		if ($share->getSharedWith() !== $originalShare->getSharedWith()
-			&& $share->getShareType() !== IShare::TYPE_USER) {
-			throw new \InvalidArgumentException($this->l->t('Can only update recipient on user shares'));
-		}
-
-		// Cannot share with the owner
-		if ($share->getShareType() === IShare::TYPE_USER
-			&& $share->getSharedWith() === $share->getShareOwner()) {
-			throw new \InvalidArgumentException($this->l->t('Cannot share with the share owner'));
-		}
-
-		$this->generalCreateChecks($share, true);
-
-		if ($share->getShareType() === IShare::TYPE_USER) {
-			$this->userCreateChecks($share);
-
-			if ($share->getExpirationDate() != $originalShare->getExpirationDate()) {
-				// Verify the expiration date
-				$this->validateExpirationDateInternal($share);
-				$expirationDateUpdated = true;
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_GROUP) {
-			$this->groupCreateChecks($share);
-
-			if ($share->getExpirationDate() != $originalShare->getExpirationDate()) {
-				// Verify the expiration date
-				$this->validateExpirationDateInternal($share);
-				$expirationDateUpdated = true;
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_LINK
-			|| $share->getShareType() === IShare::TYPE_EMAIL) {
-			$this->linkCreateChecks($share);
-
-			// The new password is not set again if it is the same as the old
-			// one, unless when switching from sending by Talk to sending by
-			// mail.
-			$plainTextPassword = $share->getPassword();
-			$updatedPassword = $this->updateSharePasswordIfNeeded($share, $originalShare);
-
-			/**
-			 * Cannot enable the getSendPasswordByTalk if there is no password set
-			 */
-			if (empty($plainTextPassword) && $share->getSendPasswordByTalk()) {
-				throw new \InvalidArgumentException($this->l->t('Cannot enable sending the password by Talk with an empty password'));
-			}
-
-			/**
-			 * If we're in a mail share, we need to force a password change
-			 * as either the user is not aware of the password or is already (received by mail)
-			 * Thus the SendPasswordByTalk feature would not make sense
-			 */
-			if (!$updatedPassword && $share->getShareType() === IShare::TYPE_EMAIL) {
-				if (!$originalShare->getSendPasswordByTalk() && $share->getSendPasswordByTalk()) {
-					throw new \InvalidArgumentException($this->l->t('Cannot enable sending the password by Talk without setting a new password'));
-				}
-				if ($originalShare->getSendPasswordByTalk() && !$share->getSendPasswordByTalk()) {
-					throw new \InvalidArgumentException($this->l->t('Cannot disable sending the password by Talk without setting a new password'));
-				}
-			}
-
-			if ($share->getExpirationDate() != $originalShare->getExpirationDate()) {
-				// Verify the expiration date
-				$this->validateExpirationDateLink($share);
-				$expirationDateUpdated = true;
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_REMOTE || $share->getShareType() === IShare::TYPE_REMOTE_GROUP) {
-			if ($share->getExpirationDate() != $originalShare->getExpirationDate()) {
-				// Verify the expiration date
-				$this->validateExpirationDateInternal($share);
-				$expirationDateUpdated = true;
-			}
-		}
-
-		$this->pathCreateChecks($share->getNode());
-
-		// Now update the share!
-		$provider = $this->factory->getProviderForType($share->getShareType());
-		if ($share->getShareType() === IShare::TYPE_EMAIL) {
-			/** @var ShareByMailProvider $provider */
-			$share = $provider->update($share, $plainTextPassword);
-		} else {
-			$share = $provider->update($share);
-		}
-
-		if ($expirationDateUpdated === true) {
-			\OC_Hook::emit(Share::class, 'post_set_expiration_date', [
-				'itemType' => $share->getNode() instanceof \OCP\Files\File ? 'file' : 'folder',
-				'itemSource' => $share->getNode()->getId(),
-				'date' => $share->getExpirationDate(),
-				'uidOwner' => $share->getSharedBy(),
-			]);
-		}
-
-		if ($share->getPassword() !== $originalShare->getPassword()) {
-			\OC_Hook::emit(Share::class, 'post_update_password', [
-				'itemType' => $share->getNode() instanceof \OCP\Files\File ? 'file' : 'folder',
-				'itemSource' => $share->getNode()->getId(),
-				'uidOwner' => $share->getSharedBy(),
-				'token' => $share->getToken(),
-				'disabled' => is_null($share->getPassword()),
-			]);
-		}
-
-		if ($share->getPermissions() !== $originalShare->getPermissions()) {
-			if ($this->userManager->userExists($share->getShareOwner())) {
-				$userFolder = $this->rootFolder->getUserFolder($share->getShareOwner());
-			} else {
-				$userFolder = $this->rootFolder->getUserFolder($share->getSharedBy());
-			}
-			\OC_Hook::emit(Share::class, 'post_update_permissions', [
-				'itemType' => $share->getNode() instanceof \OCP\Files\File ? 'file' : 'folder',
-				'itemSource' => $share->getNode()->getId(),
-				'shareType' => $share->getShareType(),
-				'shareWith' => $share->getSharedWith(),
-				'uidOwner' => $share->getSharedBy(),
-				'permissions' => $share->getPermissions(),
-				'attributes' => $share->getAttributes() !== null ? $share->getAttributes()->toArray() : null,
-				'path' => $userFolder->getRelativePath($share->getNode()->getPath()),
-			]);
-		}
-
-		return $share;
-	}
-
-	#[Override]
-	public function acceptShare(IShare $share, string $recipientId): IShare {
-		[$providerId,] = $this->splitFullId($share->getFullId());
-		$provider = $this->factory->getProvider($providerId);
-
-		if (!($provider instanceof IShareProviderSupportsAccept)) {
-			throw new \InvalidArgumentException($this->l->t('Share provider does not support accepting'));
-		}
-		/** @var IShareProvider&IShareProviderSupportsAccept $provider */
-		$provider->acceptShare($share, $recipientId);
-
-		$event = new ShareAcceptedEvent($share);
-		$this->dispatchEvent($event, 'share accepted');
-
-		return $share;
-	}
-
-	/**
-	 * Updates the password of the given share if it is not the same as the
-	 * password of the original share.
-	 *
-	 * @param IShare $share the share to update its password.
-	 * @param IShare $originalShare the original share to compare its
-	 *                              password with.
-	 * @return bool whether the password was updated or not.
-	 */
-	private function updateSharePasswordIfNeeded(IShare $share, IShare $originalShare): bool {
-		$passwordsAreDifferent = ($share->getPassword() !== $originalShare->getPassword())
-			&& (($share->getPassword() !== null && $originalShare->getPassword() === null)
-				|| ($share->getPassword() === null && $originalShare->getPassword() !== null)
-				|| ($share->getPassword() !== null && $originalShare->getPassword() !== null
-					&& !$this->hasher->verify($share->getPassword(), $originalShare->getPassword())));
-
-		// Password updated.
-		if ($passwordsAreDifferent) {
-			// Verify the password
-			$this->verifyPassword($share->getPassword());
-
-			// If a password is set. Hash it!
-			if (!empty($share->getPassword())) {
-				$share->setPassword($this->hasher->hash($share->getPassword()));
-				if ($share->getShareType() === IShare::TYPE_EMAIL) {
-					// Shares shared by email have temporary passwords
-					$this->setSharePasswordExpirationTime($share);
-				}
-
-				return true;
-			} else {
-				// Empty string and null are seen as NOT password protected
-				$share->setPassword(null);
-				if ($share->getShareType() === IShare::TYPE_EMAIL) {
-					$share->setPasswordExpirationTime(null);
-				}
-				return true;
-			}
-		} else {
-			// Reset the password to the original one, as it is either the same
-			// as the "new" password or a hashed version of it.
-			$share->setPassword($originalShare->getPassword());
-		}
-
-		return false;
-	}
-
-	/**
-	 * Set the share's password expiration time
-	 */
-	private function setSharePasswordExpirationTime(IShare $share): void {
-		if (!$this->config->getSystemValueBool('sharing.enable_mail_link_password_expiration', false)) {
-			// Sets password expiration date to NULL
-			$share->setPasswordExpirationTime();
-			return;
-		}
-		// Sets password expiration date
-		$expirationTime = null;
-		$now = new \DateTime();
-		$expirationInterval = $this->config->getSystemValue('sharing.mail_link_password_expiration_interval', 3600);
-		$expirationTime = $now->add(new \DateInterval('PT' . $expirationInterval . 'S'));
-		$share->setPasswordExpirationTime($expirationTime);
-	}
-
-
-	/**
-	 * Delete all the children of this share
-	 *
-	 * @param IShare $share
-	 * @return list<IShare> List of deleted shares
-	 */
-	protected function deleteChildren(IShare $share): array {
-		$deletedShares = [];
-
-		$provider = $this->factory->getProviderForType($share->getShareType());
-
-		foreach ($provider->getChildren($share) as $child) {
-			$this->dispatchEvent(new BeforeShareDeletedEvent($child), 'before share deleted');
-
-			$deletedChildren = $this->deleteChildren($child);
-			$deletedShares = array_merge($deletedShares, $deletedChildren);
-
-			$provider->delete($child);
-			$this->dispatchEvent(new ShareDeletedEvent($child), 'share deleted');
-			$deletedShares[] = $child;
-		}
-
-		return $deletedShares;
-	}
-
-	/** Promote re-shares into direct shares so that target user keeps access */
-	protected function promoteReshares(IShare $share): void {
-		try {
-			$node = $share->getNode();
-		} catch (NotFoundException) {
-			/* Skip if node not found */
-			return;
-		}
-
-		$userIds = [];
-
-		if ($share->getShareType() === IShare::TYPE_USER) {
-			$userIds[] = $share->getSharedWith();
-		} elseif ($share->getShareType() === IShare::TYPE_GROUP) {
-			$group = $this->groupManager->get($share->getSharedWith());
-			$users = $group?->getUsers() ?? [];
-
-			foreach ($users as $user) {
-				/* Skip share owner */
-				if ($user->getUID() === $share->getShareOwner() || $user->getUID() === $share->getSharedBy()) {
-					continue;
-				}
-				$userIds[] = $user->getUID();
-			}
-		} else {
-			/* We only support user and group shares */
-			return;
-		}
-
-		$reshareRecords = [];
-		$shareTypes = [
-			IShare::TYPE_GROUP,
-			IShare::TYPE_USER,
-			IShare::TYPE_LINK,
-			IShare::TYPE_REMOTE,
-			IShare::TYPE_EMAIL,
-		];
-
-		foreach ($userIds as $userId) {
-			foreach ($shareTypes as $shareType) {
-				try {
-					$provider = $this->factory->getProviderForType($shareType);
-				} catch (ProviderException $e) {
-					continue;
-				}
-
-				if ($node instanceof Folder) {
-					/* We need to get all shares by this user to get subshares */
-					$shares = $provider->getSharesBy($userId, $shareType, null, false, -1, 0);
-
-					foreach ($shares as $share) {
-						try {
-							$path = $share->getNode()->getPath();
-						} catch (NotFoundException) {
-							/* Ignore share of non-existing node */
-							continue;
-						}
-						if ($node->getRelativePath($path) !== null) {
-							/* If relative path is not null it means the shared node is the same or in a subfolder */
-							$reshareRecords[] = $share;
-						}
-					}
-				} else {
-					$shares = $provider->getSharesBy($userId, $shareType, $node, false, -1, 0);
-					foreach ($shares as $child) {
-						$reshareRecords[] = $child;
-					}
-				}
-			}
-		}
-
-		foreach ($reshareRecords as $child) {
-			try {
-				/* Check if the share is still valid (means the resharer still has access to the file through another mean) */
-				$this->generalCreateChecks($child);
-			} catch (GenericShareException $e) {
-				/* The check is invalid, promote it to a direct share from the sharer of parent share */
-				$this->logger->debug('Promote reshare because of exception ' . $e->getMessage(), ['exception' => $e, 'fullId' => $child->getFullId()]);
-				try {
-					$child->setSharedBy($share->getSharedBy());
-					$this->updateShare($child);
-				} catch (GenericShareException|\InvalidArgumentException $e) {
-					$this->logger->warning('Failed to promote reshare because of exception ' . $e->getMessage(), ['exception' => $e, 'fullId' => $child->getFullId()]);
-				}
-			}
-		}
-	}
-
-	#[Override]
-	public function deleteShare(IShare $share): void {
-		try {
-			$share->getFullId();
-		} catch (\UnexpectedValueException $e) {
-			throw new \InvalidArgumentException($this->l->t('Share does not have a full ID'));
-		}
-
-		$this->dispatchEvent(new BeforeShareDeletedEvent($share), 'before share deleted');
-
-		// Get all children and delete them as well
-		$this->deleteChildren($share);
-
-		// Do the actual delete
-		$provider = $this->factory->getProviderForType($share->getShareType());
-		$provider->delete($share);
-
-		$this->dispatchEvent(new ShareDeletedEvent($share), 'share deleted');
-
-		// Promote reshares of the deleted share
-		$this->promoteReshares($share);
-	}
-
-	#[Override]
-	public function deleteFromSelf(IShare $share, string $recipientId): void {
-		[$providerId,] = $this->splitFullId($share->getFullId());
-		$provider = $this->factory->getProvider($providerId);
-
-		$provider->deleteFromSelf($share, $recipientId);
-		$event = new ShareDeletedFromSelfEvent($share);
-		$this->dispatchEvent($event, 'leave share');
-	}
-
-	#[Override]
-	public function restoreShare(IShare $share, string $recipientId): IShare {
-		[$providerId,] = $this->splitFullId($share->getFullId());
-		$provider = $this->factory->getProvider($providerId);
-
-		return $provider->restore($share, $recipientId);
-	}
-
-	#[Override]
-	public function moveShare(IShare $share, string $recipientId): IShare {
-		if ($share->getShareType() === IShare::TYPE_LINK
-			|| $share->getShareType() === IShare::TYPE_EMAIL) {
-			throw new \InvalidArgumentException($this->l->t('Cannot change target of link share'));
-		}
-
-		if ($share->getShareType() === IShare::TYPE_USER && $share->getSharedWith() !== $recipientId) {
-			throw new \InvalidArgumentException($this->l->t('Invalid share recipient'));
-		}
-
-		if ($share->getShareType() === IShare::TYPE_GROUP) {
-			$sharedWith = $this->groupManager->get($share->getSharedWith());
-			if (is_null($sharedWith)) {
-				throw new \InvalidArgumentException($this->l->t('Group "%s" does not exist', [$share->getSharedWith()]));
-			}
-			$recipient = $this->userManager->get($recipientId);
-			if (!$sharedWith->inGroup($recipient)) {
-				throw new \InvalidArgumentException($this->l->t('Invalid share recipient'));
-			}
-		}
-
-		[$providerId,] = $this->splitFullId($share->getFullId());
-		$provider = $this->factory->getProvider($providerId);
-
-		return $provider->move($share, $recipientId);
-	}
-
-	#[Override]
-	public function getSharesInFolder($userId, Folder $node, bool $reshares = false, bool $shallow = true): array {
-		$providers = $this->factory->getAllProviders();
-		if (!$shallow) {
-			throw new \Exception('non-shallow getSharesInFolder is no longer supported');
-		}
-
-		$isOwnerless = $node->getMountPoint() instanceof IShareOwnerlessMount;
-
-		$shares = [];
-		foreach ($providers as $provider) {
-			if ($isOwnerless) {
-				// If the provider does not implement the additional interface,
-				// we lack a performant way of querying all shares and therefore ignore the provider.
-				if ($provider instanceof IShareProviderSupportsAllSharesInFolder) {
-					foreach ($provider->getAllSharesInFolder($node) as $fid => $data) {
-						$shares[$fid] ??= [];
-						$shares[$fid] = array_merge($shares[$fid], $data);
-					}
-				}
-			} else {
-				foreach ($provider->getSharesInFolder($userId, $node, $reshares) as $fid => $data) {
-					$shares[$fid] ??= [];
-					$shares[$fid] = array_merge($shares[$fid], $data);
-				}
-			}
-		}
-
-		return $shares;
-	}
-
-	#[Override]
-	public function getSharesBy(string $userId, int $shareType, ?Node $path = null, bool $reshares = false, int $limit = 50, int $offset = 0, bool $onlyValid = true): array {
-		if ($path !== null
-			&& !($path instanceof \OCP\Files\File)
-			&& !($path instanceof \OCP\Files\Folder)) {
-			throw new \InvalidArgumentException($this->l->t('Invalid path'));
-		}
-
-		try {
-			$provider = $this->factory->getProviderForType($shareType);
-		} catch (ProviderException $e) {
-			return [];
-		}
-
-		if ($path?->getMountPoint() instanceof IShareOwnerlessMount) {
-			$shares = array_filter($provider->getSharesByPath($path), static fn (IShare $share) => $share->getShareType() === $shareType);
-		} else {
-			$shares = $provider->getSharesBy($userId, $shareType, $path, $reshares, $limit, $offset);
-		}
-
-		/*
+        $storage = $share->getNode()->getStorage();
+        if ($storage->instanceOfStorage('OCA\Files_Sharing\External\Storage')) {
+            $parent = $share->getNode()->getParent();
+            while ($parent->getStorage()->instanceOfStorage('OCA\Files_Sharing\External\Storage')) {
+                $parent = $parent->getParent();
+            }
+            $share->setShareOwner($parent->getOwner()->getUID());
+        } else {
+            if ($share->getNode()->getOwner()) {
+                $share->setShareOwner($share->getNode()->getOwner()->getUID());
+            } else {
+                $share->setShareOwner($share->getSharedBy());
+            }
+        }
+
+        try {
+            // Verify share type
+            if ($share->getShareType() === IShare::TYPE_USER) {
+                $this->userCreateChecks($share);
+
+                // Verify the expiration date
+                $share = $this->validateExpirationDateInternal($share);
+            } elseif ($share->getShareType() === IShare::TYPE_GROUP) {
+                $this->groupCreateChecks($share);
+
+                // Verify the expiration date
+                $share = $this->validateExpirationDateInternal($share);
+            } elseif ($share->getShareType() === IShare::TYPE_REMOTE || $share->getShareType() === IShare::TYPE_REMOTE_GROUP) {
+                // Verify the expiration date
+                $share = $this->validateExpirationDateInternal($share);
+            } elseif ($share->getShareType() === IShare::TYPE_LINK
+                || $share->getShareType() === IShare::TYPE_EMAIL) {
+                $this->linkCreateChecks($share);
+                $this->setLinkParent($share);
+
+                $token = $this->generateToken();
+                // Set the unique token
+                $share->setToken($token);
+
+                // Verify the expiration date
+                $share = $this->validateExpirationDateLink($share);
+
+                // Verify the password
+                $this->verifyPassword($share->getPassword());
+
+                // If a password is set. Hash it!
+                if ($share->getShareType() === IShare::TYPE_LINK
+                    && $share->getPassword() !== null) {
+                    $share->setPassword($this->hasher->hash($share->getPassword()));
+                }
+            }
+
+            // Cannot share with the owner
+            if ($share->getShareType() === IShare::TYPE_USER
+                && $share->getSharedWith() === $share->getShareOwner()) {
+                throw new \InvalidArgumentException($this->l->t('Cannot share with the share owner'));
+            }
+
+            // Generate the target
+            $shareFolder = $this->config->getSystemValue('share_folder', '/');
+            if ($share->getShareType() === IShare::TYPE_USER) {
+                $allowCustomShareFolder = $this->config->getSystemValueBool('sharing.allow_custom_share_folder', true);
+                if ($allowCustomShareFolder) {
+                    $shareFolder = $this->config->getUserValue($share->getSharedWith(), Application::APP_ID, 'share_folder', $shareFolder);
+                }
+            }
+
+            $target = $shareFolder . '/' . $share->getNode()->getName();
+            $target = \OC\Files\Filesystem::normalizePath($target);
+            $share->setTarget($target);
+
+            // Pre share event
+            $event = new Share\Events\BeforeShareCreatedEvent($share);
+            $this->dispatchEvent($event, 'before share created');
+            if ($event->isPropagationStopped() && $event->getError()) {
+                throw new \Exception($event->getError());
+            }
+
+            $oldShare = $share;
+            $provider = $this->factory->getProviderForType($share->getShareType());
+            $share = $provider->create($share);
+
+            // Reuse the node we already have
+            $share->setNode($oldShare->getNode());
+
+            // Reset the target if it is null for the new share
+            if ($share->getTarget() === '') {
+                $share->setTarget($target);
+            }
+        } catch (AlreadySharedException $e) {
+            // If a share for the same target already exists, dont create a new one,
+            // but do trigger the hooks and notifications again
+            $oldShare = $share;
+
+            // Reuse the node we already have
+            $share = $e->getExistingShare();
+            $share->setNode($oldShare->getNode());
+        }
+
+        // Post share event
+        $this->dispatchEvent(new ShareCreatedEvent($share), 'share created');
+
+        // Send email if needed
+        if ($this->config->getSystemValueBool('sharing.enable_share_mail', true)) {
+            if ($share->getMailSend()) {
+                $provider = $this->factory->getProviderForType($share->getShareType());
+                if ($provider instanceof IShareProviderWithNotification) {
+                    $provider->sendMailNotification($share);
+                } else {
+                    $this->logger->debug('Share notification not sent because the provider does not support it.', ['app' => 'share']);
+                }
+            } else {
+                $this->logger->debug('Share notification not sent because mailsend is false.', ['app' => 'share']);
+            }
+        } else {
+            $this->logger->debug('Share notification not sent because sharing notification emails is disabled.', ['app' => 'share']);
+        }
+
+        return $share;
+    }
+
+    #[Override]
+    public function updateShare(IShare $share, bool $onlyValid = true): IShare {
+        $expirationDateUpdated = false;
+
+        $this->canShare($share);
+
+        try {
+            $originalShare = $this->getShareById($share->getFullId(), onlyValid: $onlyValid);
+        } catch (\UnexpectedValueException $e) {
+            throw new \InvalidArgumentException($this->l->t('Share does not have a full ID'));
+        }
+
+        // We cannot change the share type!
+        if ($share->getShareType() !== $originalShare->getShareType()) {
+            throw new \InvalidArgumentException($this->l->t('Cannot change share type'));
+        }
+
+        // We can only change the recipient on user shares
+        if ($share->getSharedWith() !== $originalShare->getSharedWith()
+            && $share->getShareType() !== IShare::TYPE_USER) {
+            throw new \InvalidArgumentException($this->l->t('Can only update recipient on user shares'));
+        }
+
+        // Cannot share with the owner
+        if ($share->getShareType() === IShare::TYPE_USER
+            && $share->getSharedWith() === $share->getShareOwner()) {
+            throw new \InvalidArgumentException($this->l->t('Cannot share with the share owner'));
+        }
+
+        $this->generalCreateChecks($share, true);
+
+        if ($share->getShareType() === IShare::TYPE_USER) {
+            $this->userCreateChecks($share);
+
+            if ($share->getExpirationDate() != $originalShare->getExpirationDate()) {
+                // Verify the expiration date
+                $this->validateExpirationDateInternal($share);
+                $expirationDateUpdated = true;
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_GROUP) {
+            $this->groupCreateChecks($share);
+
+            if ($share->getExpirationDate() != $originalShare->getExpirationDate()) {
+                // Verify the expiration date
+                $this->validateExpirationDateInternal($share);
+                $expirationDateUpdated = true;
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_LINK
+            || $share->getShareType() === IShare::TYPE_EMAIL) {
+            $this->linkCreateChecks($share);
+
+            // The new password is not set again if it is the same as the old
+            // one, unless when switching from sending by Talk to sending by
+            // mail.
+            $plainTextPassword = $share->getPassword();
+            $updatedPassword = $this->updateSharePasswordIfNeeded($share, $originalShare);
+
+            /**
+             * Cannot enable the getSendPasswordByTalk if there is no password set
+             */
+            if (empty($plainTextPassword) && $share->getSendPasswordByTalk()) {
+                throw new \InvalidArgumentException($this->l->t('Cannot enable sending the password by Talk with an empty password'));
+            }
+
+            /**
+             * If we're in a mail share, we need to force a password change
+             * as either the user is not aware of the password or is already (received by mail)
+             * Thus the SendPasswordByTalk feature would not make sense
+             */
+            if (!$updatedPassword && $share->getShareType() === IShare::TYPE_EMAIL) {
+                if (!$originalShare->getSendPasswordByTalk() && $share->getSendPasswordByTalk()) {
+                    throw new \InvalidArgumentException($this->l->t('Cannot enable sending the password by Talk without setting a new password'));
+                }
+                if ($originalShare->getSendPasswordByTalk() && !$share->getSendPasswordByTalk()) {
+                    throw new \InvalidArgumentException($this->l->t('Cannot disable sending the password by Talk without setting a new password'));
+                }
+            }
+
+            if ($share->getExpirationDate() != $originalShare->getExpirationDate()) {
+                // Verify the expiration date
+                $this->validateExpirationDateLink($share);
+                $expirationDateUpdated = true;
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_REMOTE || $share->getShareType() === IShare::TYPE_REMOTE_GROUP) {
+            if ($share->getExpirationDate() != $originalShare->getExpirationDate()) {
+                // Verify the expiration date
+                $this->validateExpirationDateInternal($share);
+                $expirationDateUpdated = true;
+            }
+        }
+
+        $this->pathCreateChecks($share->getNode());
+
+        // Now update the share!
+        $provider = $this->factory->getProviderForType($share->getShareType());
+        if ($share->getShareType() === IShare::TYPE_EMAIL) {
+            /** @var ShareByMailProvider $provider */
+            $share = $provider->update($share, $plainTextPassword);
+        } else {
+            $share = $provider->update($share);
+        }
+
+        if ($expirationDateUpdated === true) {
+            \OC_Hook::emit(Share::class, 'post_set_expiration_date', [
+                'itemType' => $share->getNode() instanceof \OCP\Files\File ? 'file' : 'folder',
+                'itemSource' => $share->getNode()->getId(),
+                'date' => $share->getExpirationDate(),
+                'uidOwner' => $share->getSharedBy(),
+            ]);
+        }
+
+        if ($share->getPassword() !== $originalShare->getPassword()) {
+            \OC_Hook::emit(Share::class, 'post_update_password', [
+                'itemType' => $share->getNode() instanceof \OCP\Files\File ? 'file' : 'folder',
+                'itemSource' => $share->getNode()->getId(),
+                'uidOwner' => $share->getSharedBy(),
+                'token' => $share->getToken(),
+                'disabled' => is_null($share->getPassword()),
+            ]);
+        }
+
+        if ($share->getPermissions() !== $originalShare->getPermissions()) {
+            if ($this->userManager->userExists($share->getShareOwner())) {
+                $userFolder = $this->rootFolder->getUserFolder($share->getShareOwner());
+            } else {
+                $userFolder = $this->rootFolder->getUserFolder($share->getSharedBy());
+            }
+            \OC_Hook::emit(Share::class, 'post_update_permissions', [
+                'itemType' => $share->getNode() instanceof \OCP\Files\File ? 'file' : 'folder',
+                'itemSource' => $share->getNode()->getId(),
+                'shareType' => $share->getShareType(),
+                'shareWith' => $share->getSharedWith(),
+                'uidOwner' => $share->getSharedBy(),
+                'permissions' => $share->getPermissions(),
+                'attributes' => $share->getAttributes() !== null ? $share->getAttributes()->toArray() : null,
+                'path' => $userFolder->getRelativePath($share->getNode()->getPath()),
+            ]);
+        }
+
+        return $share;
+    }
+
+    #[Override]
+    public function acceptShare(IShare $share, string $recipientId): IShare {
+        [$providerId,] = $this->splitFullId($share->getFullId());
+        $provider = $this->factory->getProvider($providerId);
+
+        if (!($provider instanceof IShareProviderSupportsAccept)) {
+            throw new \InvalidArgumentException($this->l->t('Share provider does not support accepting'));
+        }
+        /** @var IShareProvider&IShareProviderSupportsAccept $provider */
+        $provider->acceptShare($share, $recipientId);
+
+        $event = new ShareAcceptedEvent($share);
+        $this->dispatchEvent($event, 'share accepted');
+
+        return $share;
+    }
+
+    /**
+     * Updates the password of the given share if it is not the same as the
+     * password of the original share.
+     *
+     * @param IShare $share the share to update its password.
+     * @param IShare $originalShare the original share to compare its
+     *                              password with.
+     * @return bool whether the password was updated or not.
+     */
+    private function updateSharePasswordIfNeeded(IShare $share, IShare $originalShare): bool {
+        $passwordsAreDifferent = ($share->getPassword() !== $originalShare->getPassword())
+            && (($share->getPassword() !== null && $originalShare->getPassword() === null)
+                || ($share->getPassword() === null && $originalShare->getPassword() !== null)
+                || ($share->getPassword() !== null && $originalShare->getPassword() !== null
+                    && !$this->hasher->verify($share->getPassword(), $originalShare->getPassword())));
+
+        // Password updated.
+        if ($passwordsAreDifferent) {
+            // Verify the password
+            $this->verifyPassword($share->getPassword());
+
+            // If a password is set. Hash it!
+            if (!empty($share->getPassword())) {
+                $share->setPassword($this->hasher->hash($share->getPassword()));
+                if ($share->getShareType() === IShare::TYPE_EMAIL) {
+                    // Shares shared by email have temporary passwords
+                    $this->setSharePasswordExpirationTime($share);
+                }
+
+                return true;
+            } else {
+                // Empty string and null are seen as NOT password protected
+                $share->setPassword(null);
+                if ($share->getShareType() === IShare::TYPE_EMAIL) {
+                    $share->setPasswordExpirationTime(null);
+                }
+                return true;
+            }
+        } else {
+            // Reset the password to the original one, as it is either the same
+            // as the "new" password or a hashed version of it.
+            $share->setPassword($originalShare->getPassword());
+        }
+
+        return false;
+    }
+
+    /**
+     * Set the share's password expiration time
+     */
+    private function setSharePasswordExpirationTime(IShare $share): void {
+        if (!$this->config->getSystemValueBool('sharing.enable_mail_link_password_expiration', false)) {
+            // Sets password expiration date to NULL
+            $share->setPasswordExpirationTime();
+            return;
+        }
+        // Sets password expiration date
+        $expirationTime = null;
+        $now = new \DateTime();
+        $expirationInterval = $this->config->getSystemValue('sharing.mail_link_password_expiration_interval', 3600);
+        $expirationTime = $now->add(new \DateInterval('PT' . $expirationInterval . 'S'));
+        $share->setPasswordExpirationTime($expirationTime);
+    }
+
+
+    /**
+     * Delete all the children of this share
+     *
+     * @param IShare $share
+     * @return list<IShare> List of deleted shares
+     */
+    protected function deleteChildren(IShare $share): array {
+        $deletedShares = [];
+
+        $provider = $this->factory->getProviderForType($share->getShareType());
+
+        foreach ($provider->getChildren($share) as $child) {
+            $this->dispatchEvent(new BeforeShareDeletedEvent($child), 'before share deleted');
+
+            $deletedChildren = $this->deleteChildren($child);
+            $deletedShares = array_merge($deletedShares, $deletedChildren);
+
+            $provider->delete($child);
+            $this->dispatchEvent(new ShareDeletedEvent($child), 'share deleted');
+            $deletedShares[] = $child;
+        }
+
+        return $deletedShares;
+    }
+
+    /** Promote re-shares into direct shares so that target user keeps access */
+    protected function promoteReshares(IShare $share): void {
+        try {
+            $node = $share->getNode();
+        } catch (NotFoundException) {
+            /* Skip if node not found */
+            return;
+        }
+
+        $userIds = [];
+
+        if ($share->getShareType() === IShare::TYPE_USER) {
+            $userIds[] = $share->getSharedWith();
+        } elseif ($share->getShareType() === IShare::TYPE_GROUP) {
+            $group = $this->groupManager->get($share->getSharedWith());
+            $users = $group?->getUsers() ?? [];
+
+            foreach ($users as $user) {
+                /* Skip share owner */
+                if ($user->getUID() === $share->getShareOwner() || $user->getUID() === $share->getSharedBy()) {
+                    continue;
+                }
+                $userIds[] = $user->getUID();
+            }
+        } else {
+            /* We only support user and group shares */
+            return;
+        }
+
+        $reshareRecords = [];
+        $shareTypes = [
+            IShare::TYPE_GROUP,
+            IShare::TYPE_USER,
+            IShare::TYPE_LINK,
+            IShare::TYPE_REMOTE,
+            IShare::TYPE_EMAIL,
+        ];
+
+        foreach ($userIds as $userId) {
+            foreach ($shareTypes as $shareType) {
+                try {
+                    $provider = $this->factory->getProviderForType($shareType);
+                } catch (ProviderException $e) {
+                    continue;
+                }
+
+                if ($node instanceof Folder) {
+                    /* We need to get all shares by this user to get subshares */
+                    $shares = $provider->getSharesBy($userId, $shareType, null, false, -1, 0);
+
+                    foreach ($shares as $share) {
+                        try {
+                            $path = $share->getNode()->getPath();
+                        } catch (NotFoundException) {
+                            /* Ignore share of non-existing node */
+                            continue;
+                        }
+                        if ($node->getRelativePath($path) !== null) {
+                            /* If relative path is not null it means the shared node is the same or in a subfolder */
+                            $reshareRecords[] = $share;
+                        }
+                    }
+                } else {
+                    $shares = $provider->getSharesBy($userId, $shareType, $node, false, -1, 0);
+                    foreach ($shares as $child) {
+                        $reshareRecords[] = $child;
+                    }
+                }
+            }
+        }
+
+        foreach ($reshareRecords as $child) {
+            try {
+                /* Check if the share is still valid (means the resharer still has access to the file through another mean) */
+                $this->generalCreateChecks($child);
+            } catch (GenericShareException $e) {
+                /* The check is invalid, promote it to a direct share from the sharer of parent share */
+                $this->logger->debug('Promote reshare because of exception ' . $e->getMessage(), ['exception' => $e, 'fullId' => $child->getFullId()]);
+                try {
+                    $child->setSharedBy($share->getSharedBy());
+                    $this->updateShare($child);
+                } catch (GenericShareException|\InvalidArgumentException $e) {
+                    $this->logger->warning('Failed to promote reshare because of exception ' . $e->getMessage(), ['exception' => $e, 'fullId' => $child->getFullId()]);
+                }
+            }
+        }
+    }
+
+    #[Override]
+    public function deleteShare(IShare $share): void {
+        try {
+            $share->getFullId();
+        } catch (\UnexpectedValueException $e) {
+            throw new \InvalidArgumentException($this->l->t('Share does not have a full ID'));
+        }
+
+        $this->dispatchEvent(new BeforeShareDeletedEvent($share), 'before share deleted');
+
+        // Get all children and delete them as well
+        $this->deleteChildren($share);
+
+        // Do the actual delete
+        $provider = $this->factory->getProviderForType($share->getShareType());
+        $provider->delete($share);
+
+        $this->dispatchEvent(new ShareDeletedEvent($share), 'share deleted');
+
+        // Promote reshares of the deleted share
+        $this->promoteReshares($share);
+    }
+
+    #[Override]
+    public function deleteFromSelf(IShare $share, string $recipientId): void {
+        [$providerId,] = $this->splitFullId($share->getFullId());
+        $provider = $this->factory->getProvider($providerId);
+
+        $provider->deleteFromSelf($share, $recipientId);
+        $event = new ShareDeletedFromSelfEvent($share);
+        $this->dispatchEvent($event, 'leave share');
+    }
+
+    #[Override]
+    public function restoreShare(IShare $share, string $recipientId): IShare {
+        [$providerId,] = $this->splitFullId($share->getFullId());
+        $provider = $this->factory->getProvider($providerId);
+
+        return $provider->restore($share, $recipientId);
+    }
+
+    #[Override]
+    public function moveShare(IShare $share, string $recipientId): IShare {
+        if ($share->getShareType() === IShare::TYPE_LINK
+            || $share->getShareType() === IShare::TYPE_EMAIL) {
+            throw new \InvalidArgumentException($this->l->t('Cannot change target of link share'));
+        }
+
+        if ($share->getShareType() === IShare::TYPE_USER && $share->getSharedWith() !== $recipientId) {
+            throw new \InvalidArgumentException($this->l->t('Invalid share recipient'));
+        }
+
+        if ($share->getShareType() === IShare::TYPE_GROUP) {
+            $sharedWith = $this->groupManager->get($share->getSharedWith());
+            if (is_null($sharedWith)) {
+                throw new \InvalidArgumentException($this->l->t('Group "%s" does not exist', [$share->getSharedWith()]));
+            }
+            $recipient = $this->userManager->get($recipientId);
+            if (!$sharedWith->inGroup($recipient)) {
+                throw new \InvalidArgumentException($this->l->t('Invalid share recipient'));
+            }
+        }
+
+        [$providerId,] = $this->splitFullId($share->getFullId());
+        $provider = $this->factory->getProvider($providerId);
+
+        return $provider->move($share, $recipientId);
+    }
+
+    #[Override]
+    public function getSharesInFolder($userId, Folder $node, bool $reshares = false, bool $shallow = true): array {
+        $providers = $this->factory->getAllProviders();
+        if (!$shallow) {
+            throw new \Exception('non-shallow getSharesInFolder is no longer supported');
+        }
+
+        $isOwnerless = $node->getMountPoint() instanceof IShareOwnerlessMount;
+
+        $shares = [];
+        foreach ($providers as $provider) {
+            if ($isOwnerless) {
+                // If the provider does not implement the additional interface,
+                // we lack a performant way of querying all shares and therefore ignore the provider.
+                if ($provider instanceof IShareProviderSupportsAllSharesInFolder) {
+                    foreach ($provider->getAllSharesInFolder($node) as $fid => $data) {
+                        $shares[$fid] ??= [];
+                        $shares[$fid] = array_merge($shares[$fid], $data);
+                    }
+                }
+            } else {
+                foreach ($provider->getSharesInFolder($userId, $node, $reshares) as $fid => $data) {
+                    $shares[$fid] ??= [];
+                    $shares[$fid] = array_merge($shares[$fid], $data);
+                }
+            }
+        }
+
+        return $shares;
+    }
+
+    #[Override]
+    public function getSharesBy(string $userId, int $shareType, ?Node $path = null, bool $reshares = false, int $limit = 50, int $offset = 0, bool $onlyValid = true): array {
+        if ($path !== null
+            && !($path instanceof \OCP\Files\File)
+            && !($path instanceof \OCP\Files\Folder)) {
+            throw new \InvalidArgumentException($this->l->t('Invalid path'));
+        }
+
+        try {
+            $provider = $this->factory->getProviderForType($shareType);
+        } catch (ProviderException $e) {
+            return [];
+        }
+
+        if ($path?->getMountPoint() instanceof IShareOwnerlessMount) {
+            $shares = array_filter($provider->getSharesByPath($path), static fn (IShare $share) => $share->getShareType() === $shareType);
+        } else {
+            $shares = $provider->getSharesBy($userId, $shareType, $path, $reshares, $limit, $offset);
+        }
+
+        /*
 		 * Work around so we don't return expired shares but still follow
 		 * proper pagination.
 		 */
 
-		$shares2 = [];
-
-		while (true) {
-			$added = 0;
-			foreach ($shares as $share) {
-				$added++;
-				if ($onlyValid) {
-					try {
-						$this->checkShare($share, $added);
-					} catch (ShareNotFound $e) {
-						// Ignore since this basically means the share is deleted
-						continue;
-					}
-				}
-
-				$shares2[] = $share;
-
-				if (count($shares2) === $limit) {
-					break;
-				}
-			}
-
-			// If we did not fetch more shares than the limit then there are no more shares
-			if (count($shares) < $limit) {
-				break;
-			}
-
-			if (count($shares2) === $limit) {
-				break;
-			}
-
-			// If there was no limit on the select we are done
-			if ($limit === -1) {
-				break;
-			}
-
-			$offset += $added;
-
-			// Fetch again $limit shares
-			if ($path?->getMountPoint() instanceof IShareOwnerlessMount) {
-				// We already fetched all shares, so end here
-				$shares = [];
-			} else {
-				$shares = $provider->getSharesBy($userId, $shareType, $path, $reshares, $limit, $offset);
-			}
-
-			// No more shares means we are done
-			if (empty($shares)) {
-				break;
-			}
-		}
-
-		$shares = $shares2;
-
-		return $shares;
-	}
-
-	#[Override]
-	public function getSharedWith(string $userId, int $shareType, ?Node $node = null, int $limit = 50, int $offset = 0): array {
-		try {
-			$provider = $this->factory->getProviderForType($shareType);
-		} catch (ProviderException $e) {
-			return [];
-		}
-
-		$shares = $provider->getSharedWith($userId, $shareType, $node, $limit, $offset);
-
-		// remove all shares which are already expired
-		foreach ($shares as $key => $share) {
-			try {
-				$this->checkShare($share);
-			} catch (ShareNotFound $e) {
-				unset($shares[$key]);
-			}
-		}
-
-		return $shares;
-	}
-
-	#[Override]
-	public function getDeletedSharedWith(string $userId, int $shareType, ?Node $node = null, int $limit = 50, int $offset = 0): array {
-		$shares = $this->getSharedWith($userId, $shareType, $node, $limit, $offset);
-
-		// Only get shares deleted shares and where the owner still exists
-		return array_filter($shares, fn (IShare $share): bool => $share->getPermissions() === 0
-			&& $this->userManager->userExists($share->getShareOwner()));
-	}
-
-	#[Override]
-	public function getShareById($id, $recipient = null, bool $onlyValid = true): IShare {
-		if ($id === null) {
-			throw new ShareNotFound();
-		}
-
-		[$providerId, $id] = $this->splitFullId($id);
-
-		try {
-			$provider = $this->factory->getProvider($providerId);
-		} catch (ProviderException $e) {
-			throw new ShareNotFound();
-		}
-
-		$share = $provider->getShareById($id, $recipient);
-
-		if ($onlyValid) {
-			$this->checkShare($share);
-		}
-
-		return $share;
-	}
-
-	#[Override]
-	public function getShareByToken(string $token): IShare {
-		// tokens cannot be valid local usernames
-		if ($this->userManager->userExists($token)) {
-			throw new ShareNotFound();
-		}
-		$share = null;
-		try {
-			if ($this->config->getAppValue('core', 'shareapi_allow_links', 'yes') === 'yes') {
-				$provider = $this->factory->getProviderForType(IShare::TYPE_LINK);
-				$share = $provider->getShareByToken($token);
-			}
-		} catch (ProviderException|ShareNotFound) {
-		}
-
-
-		// If it is not a link share try to fetch a federated share by token
-		if ($share === null) {
-			try {
-				$provider = $this->factory->getProviderForType(IShare::TYPE_REMOTE);
-				$share = $provider->getShareByToken($token);
-			} catch (ProviderException|ShareNotFound) {
-			}
-		}
-
-		// If it is not a link share try to fetch a mail share by token
-		if ($share === null && $this->shareProviderExists(IShare::TYPE_EMAIL)) {
-			try {
-				$provider = $this->factory->getProviderForType(IShare::TYPE_EMAIL);
-				$share = $provider->getShareByToken($token);
-			} catch (ProviderException|ShareNotFound) {
-			}
-		}
-
-		if ($share === null && $this->shareProviderExists(IShare::TYPE_CIRCLE)) {
-			try {
-				$provider = $this->factory->getProviderForType(IShare::TYPE_CIRCLE);
-				$share = $provider->getShareByToken($token);
-			} catch (ProviderException|ShareNotFound) {
-			}
-		}
-
-		if ($share === null && $this->shareProviderExists(IShare::TYPE_ROOM)) {
-			try {
-				$provider = $this->factory->getProviderForType(IShare::TYPE_ROOM);
-				$share = $provider->getShareByToken($token);
-			} catch (ProviderException|ShareNotFound) {
-			}
-		}
-
-		if ($share === null) {
-			throw new ShareNotFound($this->l->t('The requested share does not exist anymore'));
-		}
-
-		$this->checkShare($share);
-
-		/*
+        $shares2 = [];
+
+        while (true) {
+            $added = 0;
+            foreach ($shares as $share) {
+                $added++;
+                if ($onlyValid) {
+                    try {
+                        $this->checkShare($share, $added);
+                    } catch (ShareNotFound $e) {
+                        // Ignore since this basically means the share is deleted
+                        continue;
+                    }
+                }
+
+                $shares2[] = $share;
+
+                if (count($shares2) === $limit) {
+                    break;
+                }
+            }
+
+            // If we did not fetch more shares than the limit then there are no more shares
+            if (count($shares) < $limit) {
+                break;
+            }
+
+            if (count($shares2) === $limit) {
+                break;
+            }
+
+            // If there was no limit on the select we are done
+            if ($limit === -1) {
+                break;
+            }
+
+            $offset += $added;
+
+            // Fetch again $limit shares
+            if ($path?->getMountPoint() instanceof IShareOwnerlessMount) {
+                // We already fetched all shares, so end here
+                $shares = [];
+            } else {
+                $shares = $provider->getSharesBy($userId, $shareType, $path, $reshares, $limit, $offset);
+            }
+
+            // No more shares means we are done
+            if (empty($shares)) {
+                break;
+            }
+        }
+
+        $shares = $shares2;
+
+        return $shares;
+    }
+
+    #[Override]
+    public function getSharedWith(string $userId, int $shareType, ?Node $node = null, int $limit = 50, int $offset = 0): array {
+        try {
+            $provider = $this->factory->getProviderForType($shareType);
+        } catch (ProviderException $e) {
+            return [];
+        }
+
+        $shares = $provider->getSharedWith($userId, $shareType, $node, $limit, $offset);
+
+        // remove all shares which are already expired
+        foreach ($shares as $key => $share) {
+            try {
+                $this->checkShare($share);
+            } catch (ShareNotFound $e) {
+                unset($shares[$key]);
+            }
+        }
+
+        return $shares;
+    }
+
+    #[Override]
+    public function getDeletedSharedWith(string $userId, int $shareType, ?Node $node = null, int $limit = 50, int $offset = 0): array {
+        $shares = $this->getSharedWith($userId, $shareType, $node, $limit, $offset);
+
+        // Only get shares deleted shares and where the owner still exists
+        return array_filter($shares, fn (IShare $share): bool => $share->getPermissions() === 0
+            && $this->userManager->userExists($share->getShareOwner()));
+    }
+
+    #[Override]
+    public function getShareById($id, $recipient = null, bool $onlyValid = true): IShare {
+        if ($id === null) {
+            throw new ShareNotFound();
+        }
+
+        [$providerId, $id] = $this->splitFullId($id);
+
+        try {
+            $provider = $this->factory->getProvider($providerId);
+        } catch (ProviderException $e) {
+            throw new ShareNotFound();
+        }
+
+        $share = $provider->getShareById($id, $recipient);
+
+        if ($onlyValid) {
+            $this->checkShare($share);
+        }
+
+        return $share;
+    }
+
+    #[Override]
+    public function getShareByToken(string $token): IShare {
+        // tokens cannot be valid local usernames
+        if ($this->userManager->userExists($token)) {
+            throw new ShareNotFound();
+        }
+        $share = null;
+        try {
+            if ($this->config->getAppValue('core', 'shareapi_allow_links', 'yes') === 'yes') {
+                $provider = $this->factory->getProviderForType(IShare::TYPE_LINK);
+                $share = $provider->getShareByToken($token);
+            }
+        } catch (ProviderException|ShareNotFound) {
+        }
+
+
+        // If it is not a link share try to fetch a federated share by token
+        if ($share === null) {
+            try {
+                $provider = $this->factory->getProviderForType(IShare::TYPE_REMOTE);
+                $share = $provider->getShareByToken($token);
+            } catch (ProviderException|ShareNotFound) {
+            }
+        }
+
+        // If it is not a link share try to fetch a mail share by token
+        if ($share === null && $this->shareProviderExists(IShare::TYPE_EMAIL)) {
+            try {
+                $provider = $this->factory->getProviderForType(IShare::TYPE_EMAIL);
+                $share = $provider->getShareByToken($token);
+            } catch (ProviderException|ShareNotFound) {
+            }
+        }
+
+        if ($share === null && $this->shareProviderExists(IShare::TYPE_CIRCLE)) {
+            try {
+                $provider = $this->factory->getProviderForType(IShare::TYPE_CIRCLE);
+                $share = $provider->getShareByToken($token);
+            } catch (ProviderException|ShareNotFound) {
+            }
+        }
+
+        if ($share === null && $this->shareProviderExists(IShare::TYPE_ROOM)) {
+            try {
+                $provider = $this->factory->getProviderForType(IShare::TYPE_ROOM);
+                $share = $provider->getShareByToken($token);
+            } catch (ProviderException|ShareNotFound) {
+            }
+        }
+
+        if ($share === null) {
+            throw new ShareNotFound($this->l->t('The requested share does not exist anymore'));
+        }
+
+        $this->checkShare($share);
+
+        /*
 		 * Reduce the permissions for link or email shares if public upload is not enabled
 		 */
-		if (($share->getShareType() === IShare::TYPE_LINK || $share->getShareType() === IShare::TYPE_EMAIL)
-			&& $share->getNodeType() === 'folder' && !$this->shareApiLinkAllowPublicUpload()) {
-			$share->setPermissions($share->getPermissions() & ~(\OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE));
-		}
-
-		return $share;
-	}
-
-	/**
-	 * Check expire date and disabled owner
-	 *
-	 * @param int &$added If given, will be decremented if the share is deleted
-	 * @throws ShareNotFound
-	 */
-	private function checkShare(IShare $share, int &$added = 1): void {
-		if ($share->isExpired()) {
-			$this->deleteShare($share);
-			// Remove 1 to added, because this share was deleted
-			$added--;
-			throw new ShareNotFound($this->l->t('The requested share does not exist anymore'));
-		}
-		if ($this->config->getAppValue('files_sharing', 'hide_disabled_user_shares', 'no') === 'yes') {
-			$uids = array_unique([$share->getShareOwner(),$share->getSharedBy()]);
-			foreach ($uids as $uid) {
-				$user = $this->userManager->get($uid);
-				if ($user?->isEnabled() === false) {
-					throw new ShareNotFound($this->l->t('The requested share comes from a disabled user'));
-				}
-			}
-		}
-
-		// For link and email shares, verify the share owner can still create such shares
-		if ($share->getShareType() === IShare::TYPE_LINK || $share->getShareType() === IShare::TYPE_EMAIL) {
-			$shareOwner = $this->userManager->get($share->getShareOwner());
-			if ($shareOwner === null) {
-				throw new ShareNotFound($this->l->t('The requested share does not exist anymore'));
-			}
-			if (!$this->userCanCreateLinkShares($shareOwner)) {
-				throw new ShareNotFound($this->l->t('The requested share does not exist anymore'));
-			}
-		}
-	}
-
-	#[Override]
-	public function checkPassword(IShare $share, ?string $password): bool {
-
-		// if there is no password on the share object / passsword is null, there is nothing to check
-		if ($password === null || $share->getPassword() === null) {
-			return false;
-		}
-
-		// Makes sure password hasn't expired
-		$expirationTime = $share->getPasswordExpirationTime();
-		if ($expirationTime !== null && $expirationTime < new \DateTime()) {
-			return false;
-		}
-
-		$newHash = '';
-		if (!$this->hasher->verify($password, $share->getPassword(), $newHash)) {
-			return false;
-		}
-
-		if (!empty($newHash)) {
-			$share->setPassword($newHash);
-			$provider = $this->factory->getProviderForType($share->getShareType());
-			$provider->update($share);
-		}
-
-		return true;
-	}
-
-	#[Override]
-	public function userDeleted(string $uid): void {
-		$types = [IShare::TYPE_USER, IShare::TYPE_GROUP, IShare::TYPE_LINK, IShare::TYPE_REMOTE, IShare::TYPE_EMAIL];
-
-		foreach ($types as $type) {
-			try {
-				$provider = $this->factory->getProviderForType($type);
-			} catch (ProviderException $e) {
-				continue;
-			}
-			$provider->userDeleted($uid, $type);
-		}
-	}
-
-	#[Override]
-	public function groupDeleted(string $gid): void {
-		foreach ([IShare::TYPE_GROUP, IShare::TYPE_REMOTE_GROUP] as $type) {
-			try {
-				$provider = $this->factory->getProviderForType($type);
-			} catch (ProviderException $e) {
-				continue;
-			}
-			$provider->groupDeleted($gid);
-		}
-
-		$excludedGroups = $this->config->getAppValue('core', 'shareapi_exclude_groups_list', '');
-		if ($excludedGroups === '') {
-			return;
-		}
-
-		$excludedGroups = json_decode($excludedGroups, true);
-		if (json_last_error() !== JSON_ERROR_NONE) {
-			return;
-		}
-
-		$excludedGroups = array_diff($excludedGroups, [$gid]);
-		$this->config->setAppValue('core', 'shareapi_exclude_groups_list', json_encode($excludedGroups));
-	}
-
-	#[Override]
-	public function userDeletedFromGroup(string $uid, string $gid): void {
-		foreach ([IShare::TYPE_GROUP, IShare::TYPE_REMOTE_GROUP] as $type) {
-			try {
-				$provider = $this->factory->getProviderForType($type);
-			} catch (ProviderException $e) {
-				continue;
-			}
-			$provider->userDeletedFromGroup($uid, $gid);
-		}
-	}
-
-	#[\Override]
-	public function getAccessList(\OCP\Files\Node $path, $recursive = true, $currentAccess = false): array {
-		$owner = $path->getOwner();
-
-		if ($owner === null) {
-			return [];
-		}
-
-		$owner = $owner->getUID();
-
-		if ($currentAccess) {
-			$al = ['users' => [], 'remote' => [], 'public' => false, 'mail' => []];
-		} else {
-			$al = ['users' => [], 'remote' => false, 'public' => false, 'mail' => []];
-		}
-		if (!$this->userManager->userExists($owner)) {
-			return $al;
-		}
-
-		//Get node for the owner and correct the owner in case of external storage
-		$userFolder = $this->rootFolder->getUserFolder($owner);
-		if ($path->getId() !== $userFolder->getId() && !$userFolder->isSubNode($path)) {
-			$path = $userFolder->getFirstNodeById($path->getId());
-			if ($path === null || $path->getOwner() === null) {
-				return [];
-			}
-			$owner = $path->getOwner()->getUID();
-		}
-
-		$providers = $this->factory->getAllProviders();
-
-		/** @var Node[] $nodes */
-		$nodes = [];
-
-
-		if ($currentAccess) {
-			$ownerPath = $path->getPath();
-			$ownerPath = explode('/', $ownerPath, 4);
-			if (count($ownerPath) < 4) {
-				$ownerPath = '';
-			} else {
-				$ownerPath = $ownerPath[3];
-			}
-			$al['users'][$owner] = [
-				'node_id' => $path->getId(),
-				'node_path' => '/' . $ownerPath,
-			];
-		} else {
-			$al['users'][] = $owner;
-		}
-
-		// Collect all the shares
-		while ($path->getPath() !== $userFolder->getPath()) {
-			$nodes[] = $path;
-			if (!$recursive) {
-				break;
-			}
-			$path = $path->getParent();
-		}
-
-		foreach ($providers as $provider) {
-			$tmp = $provider->getAccessList($nodes, $currentAccess);
-
-			foreach ($tmp as $k => $v) {
-				if (isset($al[$k])) {
-					if (is_array($al[$k])) {
-						if ($currentAccess) {
-							$al[$k] += $v;
-						} else {
-							$al[$k] = array_merge($al[$k], $v);
-							$al[$k] = array_unique($al[$k]);
-							$al[$k] = array_values($al[$k]);
-						}
-					} else {
-						$al[$k] = $al[$k] || $v;
-					}
-				} else {
-					$al[$k] = $v;
-				}
-			}
-		}
-
-		return $al;
-	}
-
-	#[Override]
-	public function newShare(): IShare {
-		return new \OC\Share20\Share($this->rootFolder, $this->userManager);
-	}
-
-	#[Override]
-	public function shareApiEnabled(): bool {
-		return $this->config->getAppValue('core', 'shareapi_enabled', 'yes') === 'yes';
-	}
-
-	#[Override]
-	public function shareApiAllowLinks(?IUser $user = null): bool {
-		if ($this->config->getAppValue('core', 'shareapi_allow_links', 'yes') !== 'yes') {
-			return false;
-		}
-
-		$user = $user ?? $this->userSession->getUser();
-		if ($user) {
-			$excludedGroups = json_decode($this->config->getAppValue('core', 'shareapi_allow_links_exclude_groups', '[]'));
-			if ($excludedGroups) {
-				$userGroups = $this->groupManager->getUserGroupIds($user);
-				return !(bool)array_intersect($excludedGroups, $userGroups);
-			}
-		}
-
-		return true;
-	}
-
-	/**
-	 * Check if a specific user can create link shares
-	 *
-	 * @param IUser $user The user to check
-	 * @return bool
-	 */
-	protected function userCanCreateLinkShares(IUser $user): bool {
-		return $this->shareApiAllowLinks($user);
-	}
-
-	#[Override]
-	public function shareApiLinkEnforcePassword(bool $checkGroupMembership = true): bool {
-		$excludedGroups = $this->config->getAppValue('core', 'shareapi_enforce_links_password_excluded_groups', '');
-		if ($excludedGroups !== '' && $checkGroupMembership) {
-			$excludedGroups = json_decode($excludedGroups);
-			$user = $this->userSession->getUser();
-			if ($user) {
-				$userGroups = $this->groupManager->getUserGroupIds($user);
-				if ((bool)array_intersect($excludedGroups, $userGroups)) {
-					return false;
-				}
-			}
-		}
-		return $this->appConfig->getValueBool('core', ConfigLexicon::SHARE_LINK_PASSWORD_ENFORCED);
-	}
-
-	#[Override]
-	public function shareApiLinkDefaultExpireDate(): bool {
-		return $this->appConfig->getValueBool('core', ConfigLexicon::SHARE_LINK_EXPIRE_DATE_DEFAULT);
-	}
-
-	#[Override]
-	public function shareApiLinkDefaultExpireDateEnforced(): bool {
-		return $this->shareApiLinkDefaultExpireDate()
-			&& $this->appConfig->getValueBool('core', ConfigLexicon::SHARE_LINK_EXPIRE_DATE_ENFORCED);
-	}
-
-	#[Override]
-	public function shareApiLinkDefaultExpireDays(): int {
-		return (int)$this->config->getAppValue('core', 'shareapi_expire_after_n_days', '7');
-	}
-
-	#[Override]
-	public function shareApiInternalDefaultExpireDate(): bool {
-		return $this->config->getAppValue('core', 'shareapi_default_internal_expire_date', 'no') === 'yes';
-	}
-
-	#[Override]
-	public function shareApiRemoteDefaultExpireDate(): bool {
-		return $this->config->getAppValue('core', 'shareapi_default_remote_expire_date', 'no') === 'yes';
-	}
-
-	#[Override]
-	public function shareApiInternalDefaultExpireDateEnforced(): bool {
-		return $this->shareApiInternalDefaultExpireDate()
-			&& $this->config->getAppValue('core', 'shareapi_enforce_internal_expire_date', 'no') === 'yes';
-	}
-
-	#[Override]
-	public function shareApiRemoteDefaultExpireDateEnforced(): bool {
-		return $this->shareApiRemoteDefaultExpireDate()
-			&& $this->config->getAppValue('core', 'shareapi_enforce_remote_expire_date', 'no') === 'yes';
-	}
-
-	#[Override]
-	public function shareApiInternalDefaultExpireDays(): int {
-		return (int)$this->config->getAppValue('core', 'shareapi_internal_expire_after_n_days', '7');
-	}
-
-	#[Override]
-	public function shareApiRemoteDefaultExpireDays(): int {
-		return (int)$this->config->getAppValue('core', 'shareapi_remote_expire_after_n_days', '7');
-	}
-
-	#[Override]
-	public function shareApiLinkAllowPublicUpload(): bool {
-		return $this->config->getAppValue('core', 'shareapi_allow_public_upload', 'yes') === 'yes';
-	}
-
-	#[Override]
-	public function shareWithGroupMembersOnly(): bool {
-		return $this->config->getAppValue('core', 'shareapi_only_share_with_group_members', 'no') === 'yes';
-	}
-
-	#[Override]
-	public function shareWithGroupMembersOnlyExcludeGroupsList(): array {
-		if (!$this->shareWithGroupMembersOnly()) {
-			return [];
-		}
-		$excludeGroups = $this->config->getAppValue('core', 'shareapi_only_share_with_group_members_exclude_group_list', '');
-		return json_decode($excludeGroups, true) ?? [];
-	}
-
-	#[Override]
-	public function allowGroupSharing(): bool {
-		return $this->config->getAppValue('core', 'shareapi_allow_group_sharing', 'yes') === 'yes';
-	}
-
-	#[Override]
-	public function allowEnumeration(): bool {
-		return $this->config->getAppValue('core', 'shareapi_allow_share_dialog_user_enumeration', 'yes') === 'yes';
-	}
-
-	#[Override]
-	public function limitEnumerationToGroups(): bool {
-		return $this->allowEnumeration()
-			&& $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_to_group', 'no') === 'yes';
-	}
-
-	#[Override]
-	public function limitEnumerationToPhone(): bool {
-		return $this->allowEnumeration()
-			&& $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_to_phone', 'no') === 'yes';
-	}
-
-	#[Override]
-	public function allowEnumerationFullMatch(): bool {
-		return $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_full_match', 'yes') === 'yes';
-	}
-
-	#[Override]
-	public function matchEmail(): bool {
-		return $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_full_match_email', 'yes') === 'yes';
-	}
-
-	#[Override]
-	public function matchUserId(): bool {
-		return $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_full_match_user_id', 'yes') === 'yes';
-	}
-
-	public function matchDisplayName(): bool {
-		return $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_full_match_displayname', 'yes') === 'yes';
-	}
-
-	#[Override]
-	public function ignoreSecondDisplayName(): bool {
-		return $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_full_match_ignore_second_dn', 'no') === 'yes';
-	}
-
-	#[Override]
-	public function allowCustomTokens(): bool {
-		return $this->appConfig->getValueBool('core', ConfigLexicon::SHARE_CUSTOM_TOKEN);
-	}
-
-	#[Override]
-	public function allowViewWithoutDownload(): bool {
-		return $this->appConfig->getValueBool('core', 'shareapi_allow_view_without_download', true);
-	}
-
-	#[Override]
-	public function currentUserCanEnumerateTargetUser(?IUser $currentUser, IUser $targetUser): bool {
-		if ($this->allowEnumerationFullMatch()) {
-			return true;
-		}
-
-		if (!$this->allowEnumeration()) {
-			return false;
-		}
-
-		if (!$this->limitEnumerationToPhone() && !$this->limitEnumerationToGroups()) {
-			// Enumeration is enabled and not restricted: OK
-			return true;
-		}
-
-		if (!$currentUser instanceof IUser) {
-			// Enumeration restrictions require an account
-			return false;
-		}
-
-		// Enumeration is limited to phone match
-		if ($this->limitEnumerationToPhone() && $this->knownUserService->isKnownToUser($currentUser->getUID(), $targetUser->getUID())) {
-			return true;
-		}
-
-		// Enumeration is limited to groups
-		if ($this->limitEnumerationToGroups()) {
-			$currentUserGroupIds = $this->groupManager->getUserGroupIds($currentUser);
-			$targetUserGroupIds = $this->groupManager->getUserGroupIds($targetUser);
-			if (!empty(array_intersect($currentUserGroupIds, $targetUserGroupIds))) {
-				return true;
-			}
-		}
-
-		return false;
-	}
-
-	#[Override]
-	public function sharingDisabledForUser(?string $userId): bool {
-		return $this->shareDisableChecker->sharingDisabledForUser($userId);
-	}
-
-	#[Override]
-	public function outgoingServer2ServerSharesAllowed(): bool {
-		return $this->config->getAppValue('files_sharing', 'outgoing_server2server_share_enabled', 'yes') === 'yes';
-	}
-
-	#[Override]
-	public function outgoingServer2ServerGroupSharesAllowed(): bool {
-		return $this->config->getAppValue('files_sharing', 'outgoing_server2server_group_share_enabled', 'no') === 'yes';
-	}
-
-	#[Override]
-	public function shareProviderExists(int $shareType): bool {
-		try {
-			$this->factory->getProviderForType($shareType);
-		} catch (ProviderException $e) {
-			return false;
-		}
-
-		return true;
-	}
-
-	public function registerShareProvider(string $shareProviderClass): void {
-		$this->factory->registerProvider($shareProviderClass);
-	}
-
-	#[Override]
-	public function getAllShares(): iterable {
-		$providers = $this->factory->getAllProviders();
-
-		foreach ($providers as $provider) {
-			yield from $provider->getAllShares();
-		}
-	}
-
-	#[Override]
-	public function generateToken(): string {
-		// Initial token length
-		$tokenLength = Helper::getTokenLength();
-
-		do {
-			$tokenExists = false;
-
-			for ($i = 0; $i <= 2; $i++) {
-				// Generate a new token
-				$token = $this->secureRandom->generate(
-					$tokenLength,
-					ISecureRandom::CHAR_HUMAN_READABLE,
-				);
-
-				try {
-					// Try to fetch a share with the generated token
-					$this->getShareByToken($token);
-					$tokenExists = true; // Token exists, we need to try again
-				} catch (ShareNotFound $e) {
-					// Token is unique, exit the loop
-					$tokenExists = false;
-					break;
-				}
-			}
-
-			// If we've reached the maximum attempts and the token still exists, increase the token length
-			if ($tokenExists) {
-				$tokenLength++;
-
-				// Check if the token length exceeds the maximum allowed length
-				if ($tokenLength > \OC\Share\Constants::MAX_TOKEN_LENGTH) {
-					throw new ShareTokenException('Unable to generate a unique share token. Maximum token length exceeded.');
-				}
-			}
-		} while ($tokenExists);
-
-		return $token;
-	}
-
-	private function dispatchEvent(Event $event, string $name): void {
-		try {
-			$this->dispatcher->dispatchTyped($event);
-		} catch (\Exception $e) {
-			$this->logger->error("Error while sending ' . $name . ' event", ['exception' => $e]);
-		}
-	}
+        if (($share->getShareType() === IShare::TYPE_LINK || $share->getShareType() === IShare::TYPE_EMAIL)
+            && $share->getNodeType() === 'folder' && !$this->shareApiLinkAllowPublicUpload()) {
+            $share->setPermissions($share->getPermissions() & ~(\OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE));
+        }
+
+        return $share;
+    }
+
+    /**
+     * Check expire date and disabled owner
+     *
+     * @param int &$added If given, will be decremented if the share is deleted
+     * @throws ShareNotFound
+     */
+    private function checkShare(IShare $share, int &$added = 1): void {
+        if ($share->isExpired()) {
+            $this->deleteShare($share);
+            // Remove 1 to added, because this share was deleted
+            $added--;
+            throw new ShareNotFound($this->l->t('The requested share does not exist anymore'));
+        }
+        if ($this->config->getAppValue('files_sharing', 'hide_disabled_user_shares', 'no') === 'yes') {
+            $uids = array_unique([$share->getShareOwner(),$share->getSharedBy()]);
+            foreach ($uids as $uid) {
+                $user = $this->userManager->get($uid);
+                if ($user?->isEnabled() === false) {
+                    throw new ShareNotFound($this->l->t('The requested share comes from a disabled user'));
+                }
+            }
+        }
+
+        // For link and email shares, verify the share owner can still create such shares
+        if ($share->getShareType() === IShare::TYPE_LINK || $share->getShareType() === IShare::TYPE_EMAIL) {
+            $shareOwner = $this->userManager->get($share->getShareOwner());
+            if ($shareOwner === null) {
+                throw new ShareNotFound($this->l->t('The requested share does not exist anymore'));
+            }
+            if (!$this->userCanCreateLinkShares($shareOwner)) {
+                throw new ShareNotFound($this->l->t('The requested share does not exist anymore'));
+            }
+        }
+    }
+
+    #[Override]
+    public function checkPassword(IShare $share, ?string $password): bool {
+
+        // if there is no password on the share object / passsword is null, there is nothing to check
+        if ($password === null || $share->getPassword() === null) {
+            return false;
+        }
+
+        // Makes sure password hasn't expired
+        $expirationTime = $share->getPasswordExpirationTime();
+        if ($expirationTime !== null && $expirationTime < new \DateTime()) {
+            return false;
+        }
+
+        $newHash = '';
+        if (!$this->hasher->verify($password, $share->getPassword(), $newHash)) {
+            return false;
+        }
+
+        if (!empty($newHash)) {
+            $share->setPassword($newHash);
+            $provider = $this->factory->getProviderForType($share->getShareType());
+            $provider->update($share);
+        }
+
+        return true;
+    }
+
+    #[Override]
+    public function userDeleted(string $uid): void {
+        $types = [IShare::TYPE_USER, IShare::TYPE_GROUP, IShare::TYPE_LINK, IShare::TYPE_REMOTE, IShare::TYPE_EMAIL];
+
+        foreach ($types as $type) {
+            try {
+                $provider = $this->factory->getProviderForType($type);
+            } catch (ProviderException $e) {
+                continue;
+            }
+            $provider->userDeleted($uid, $type);
+        }
+    }
+
+    #[Override]
+    public function groupDeleted(string $gid): void {
+        foreach ([IShare::TYPE_GROUP, IShare::TYPE_REMOTE_GROUP] as $type) {
+            try {
+                $provider = $this->factory->getProviderForType($type);
+            } catch (ProviderException $e) {
+                continue;
+            }
+            $provider->groupDeleted($gid);
+        }
+
+        $excludedGroups = $this->config->getAppValue('core', 'shareapi_exclude_groups_list', '');
+        if ($excludedGroups === '') {
+            return;
+        }
+
+        $excludedGroups = json_decode($excludedGroups, true);
+        if (json_last_error() !== JSON_ERROR_NONE) {
+            return;
+        }
+
+        $excludedGroups = array_diff($excludedGroups, [$gid]);
+        $this->config->setAppValue('core', 'shareapi_exclude_groups_list', json_encode($excludedGroups));
+    }
+
+    #[Override]
+    public function userDeletedFromGroup(string $uid, string $gid): void {
+        foreach ([IShare::TYPE_GROUP, IShare::TYPE_REMOTE_GROUP] as $type) {
+            try {
+                $provider = $this->factory->getProviderForType($type);
+            } catch (ProviderException $e) {
+                continue;
+            }
+            $provider->userDeletedFromGroup($uid, $gid);
+        }
+    }
+
+    #[\Override]
+    public function getAccessList(\OCP\Files\Node $path, $recursive = true, $currentAccess = false): array {
+        $owner = $path->getOwner();
+
+        if ($owner === null) {
+            return [];
+        }
+
+        $owner = $owner->getUID();
+
+        if ($currentAccess) {
+            $al = ['users' => [], 'remote' => [], 'public' => false, 'mail' => []];
+        } else {
+            $al = ['users' => [], 'remote' => false, 'public' => false, 'mail' => []];
+        }
+        if (!$this->userManager->userExists($owner)) {
+            return $al;
+        }
+
+        //Get node for the owner and correct the owner in case of external storage
+        $userFolder = $this->rootFolder->getUserFolder($owner);
+        if ($path->getId() !== $userFolder->getId() && !$userFolder->isSubNode($path)) {
+            $path = $userFolder->getFirstNodeById($path->getId());
+            if ($path === null || $path->getOwner() === null) {
+                return [];
+            }
+            $owner = $path->getOwner()->getUID();
+        }
+
+        $providers = $this->factory->getAllProviders();
+
+        /** @var Node[] $nodes */
+        $nodes = [];
+
+
+        if ($currentAccess) {
+            $ownerPath = $path->getPath();
+            $ownerPath = explode('/', $ownerPath, 4);
+            if (count($ownerPath) < 4) {
+                $ownerPath = '';
+            } else {
+                $ownerPath = $ownerPath[3];
+            }
+            $al['users'][$owner] = [
+                'node_id' => $path->getId(),
+                'node_path' => '/' . $ownerPath,
+            ];
+        } else {
+            $al['users'][] = $owner;
+        }
+
+        // Collect all the shares
+        while ($path->getPath() !== $userFolder->getPath()) {
+            $nodes[] = $path;
+            if (!$recursive) {
+                break;
+            }
+            $path = $path->getParent();
+        }
+
+        foreach ($providers as $provider) {
+            $tmp = $provider->getAccessList($nodes, $currentAccess);
+
+            foreach ($tmp as $k => $v) {
+                if (isset($al[$k])) {
+                    if (is_array($al[$k])) {
+                        if ($currentAccess) {
+                            $al[$k] += $v;
+                        } else {
+                            $al[$k] = array_merge($al[$k], $v);
+                            $al[$k] = array_unique($al[$k]);
+                            $al[$k] = array_values($al[$k]);
+                        }
+                    } else {
+                        $al[$k] = $al[$k] || $v;
+                    }
+                } else {
+                    $al[$k] = $v;
+                }
+            }
+        }
+
+        return $al;
+    }
+
+    #[Override]
+    public function newShare(): IShare {
+        return new \OC\Share20\Share($this->rootFolder, $this->userManager);
+    }
+
+    #[Override]
+    public function shareApiEnabled(): bool {
+        return $this->config->getAppValue('core', 'shareapi_enabled', 'yes') === 'yes';
+    }
+
+    #[Override]
+    public function shareApiAllowLinks(?IUser $user = null): bool {
+        if ($this->config->getAppValue('core', 'shareapi_allow_links', 'yes') !== 'yes') {
+            return false;
+        }
+
+        $user = $user ?? $this->userSession->getUser();
+        if ($user) {
+            $excludedGroups = json_decode($this->config->getAppValue('core', 'shareapi_allow_links_exclude_groups', '[]'));
+            if ($excludedGroups) {
+                $userGroups = $this->groupManager->getUserGroupIds($user);
+                return !(bool)array_intersect($excludedGroups, $userGroups);
+            }
+        }
+
+        return true;
+    }
+
+    /**
+     * Check if a specific user can create link shares
+     *
+     * @param IUser $user The user to check
+     * @return bool
+     */
+    protected function userCanCreateLinkShares(IUser $user): bool {
+        return $this->shareApiAllowLinks($user);
+    }
+
+    #[Override]
+    public function shareApiLinkEnforcePassword(bool $checkGroupMembership = true): bool {
+        $excludedGroups = $this->config->getAppValue('core', 'shareapi_enforce_links_password_excluded_groups', '');
+        if ($excludedGroups !== '' && $checkGroupMembership) {
+            $excludedGroups = json_decode($excludedGroups);
+            $user = $this->userSession->getUser();
+            if ($user) {
+                $userGroups = $this->groupManager->getUserGroupIds($user);
+                if ((bool)array_intersect($excludedGroups, $userGroups)) {
+                    return false;
+                }
+            }
+        }
+        return $this->appConfig->getValueBool('core', ConfigLexicon::SHARE_LINK_PASSWORD_ENFORCED);
+    }
+
+    #[Override]
+    public function shareApiLinkDefaultExpireDate(): bool {
+        return $this->appConfig->getValueBool('core', ConfigLexicon::SHARE_LINK_EXPIRE_DATE_DEFAULT);
+    }
+
+    #[Override]
+    public function shareApiLinkDefaultExpireDateEnforced(): bool {
+        return $this->shareApiLinkDefaultExpireDate()
+            && $this->appConfig->getValueBool('core', ConfigLexicon::SHARE_LINK_EXPIRE_DATE_ENFORCED);
+    }
+
+    #[Override]
+    public function shareApiLinkDefaultExpireDays(): int {
+        return (int)$this->config->getAppValue('core', 'shareapi_expire_after_n_days', '7');
+    }
+
+    #[Override]
+    public function shareApiInternalDefaultExpireDate(): bool {
+        return $this->config->getAppValue('core', 'shareapi_default_internal_expire_date', 'no') === 'yes';
+    }
+
+    #[Override]
+    public function shareApiRemoteDefaultExpireDate(): bool {
+        return $this->config->getAppValue('core', 'shareapi_default_remote_expire_date', 'no') === 'yes';
+    }
+
+    #[Override]
+    public function shareApiInternalDefaultExpireDateEnforced(): bool {
+        return $this->shareApiInternalDefaultExpireDate()
+            && $this->config->getAppValue('core', 'shareapi_enforce_internal_expire_date', 'no') === 'yes';
+    }
+
+    #[Override]
+    public function shareApiRemoteDefaultExpireDateEnforced(): bool {
+        return $this->shareApiRemoteDefaultExpireDate()
+            && $this->config->getAppValue('core', 'shareapi_enforce_remote_expire_date', 'no') === 'yes';
+    }
+
+    #[Override]
+    public function shareApiInternalDefaultExpireDays(): int {
+        return (int)$this->config->getAppValue('core', 'shareapi_internal_expire_after_n_days', '7');
+    }
+
+    #[Override]
+    public function shareApiRemoteDefaultExpireDays(): int {
+        return (int)$this->config->getAppValue('core', 'shareapi_remote_expire_after_n_days', '7');
+    }
+
+    #[Override]
+    public function shareApiLinkAllowPublicUpload(): bool {
+        return $this->config->getAppValue('core', 'shareapi_allow_public_upload', 'yes') === 'yes';
+    }
+
+    #[Override]
+    public function shareWithGroupMembersOnly(): bool {
+        return $this->config->getAppValue('core', 'shareapi_only_share_with_group_members', 'no') === 'yes';
+    }
+
+    #[Override]
+    public function shareWithGroupMembersOnlyExcludeGroupsList(): array {
+        if (!$this->shareWithGroupMembersOnly()) {
+            return [];
+        }
+        $excludeGroups = $this->config->getAppValue('core', 'shareapi_only_share_with_group_members_exclude_group_list', '');
+        return json_decode($excludeGroups, true) ?? [];
+    }
+
+    #[Override]
+    public function allowGroupSharing(): bool {
+        return $this->config->getAppValue('core', 'shareapi_allow_group_sharing', 'yes') === 'yes';
+    }
+
+    #[Override]
+    public function allowEnumeration(): bool {
+        return $this->config->getAppValue('core', 'shareapi_allow_share_dialog_user_enumeration', 'yes') === 'yes';
+    }
+
+    #[Override]
+    public function limitEnumerationToGroups(): bool {
+        return $this->allowEnumeration()
+            && $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_to_group', 'no') === 'yes';
+    }
+
+    #[Override]
+    public function limitEnumerationToPhone(): bool {
+        return $this->allowEnumeration()
+            && $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_to_phone', 'no') === 'yes';
+    }
+
+    #[Override]
+    public function allowEnumerationFullMatch(): bool {
+        return $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_full_match', 'yes') === 'yes';
+    }
+
+    #[Override]
+    public function matchEmail(): bool {
+        return $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_full_match_email', 'yes') === 'yes';
+    }
+
+    #[Override]
+    public function matchUserId(): bool {
+        return $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_full_match_user_id', 'yes') === 'yes';
+    }
+
+    public function matchDisplayName(): bool {
+        return $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_full_match_displayname', 'yes') === 'yes';
+    }
+
+    #[Override]
+    public function ignoreSecondDisplayName(): bool {
+        return $this->config->getAppValue('core', 'shareapi_restrict_user_enumeration_full_match_ignore_second_dn', 'no') === 'yes';
+    }
+
+    #[Override]
+    public function allowCustomTokens(): bool {
+        return $this->appConfig->getValueBool('core', ConfigLexicon::SHARE_CUSTOM_TOKEN);
+    }
+
+    #[Override]
+    public function allowViewWithoutDownload(): bool {
+        return $this->appConfig->getValueBool('core', 'shareapi_allow_view_without_download', true);
+    }
+
+    #[Override]
+    public function currentUserCanEnumerateTargetUser(?IUser $currentUser, IUser $targetUser): bool {
+        if ($this->allowEnumerationFullMatch()) {
+            return true;
+        }
+
+        if (!$this->allowEnumeration()) {
+            return false;
+        }
+
+        if (!$this->limitEnumerationToPhone() && !$this->limitEnumerationToGroups()) {
+            // Enumeration is enabled and not restricted: OK
+            return true;
+        }
+
+        if (!$currentUser instanceof IUser) {
+            // Enumeration restrictions require an account
+            return false;
+        }
+
+        // Enumeration is limited to phone match
+        if ($this->limitEnumerationToPhone() && $this->knownUserService->isKnownToUser($currentUser->getUID(), $targetUser->getUID())) {
+            return true;
+        }
+
+        // Enumeration is limited to groups
+        if ($this->limitEnumerationToGroups()) {
+            $currentUserGroupIds = $this->groupManager->getUserGroupIds($currentUser);
+            $targetUserGroupIds = $this->groupManager->getUserGroupIds($targetUser);
+            if (!empty(array_intersect($currentUserGroupIds, $targetUserGroupIds))) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+
+    #[Override]
+    public function sharingDisabledForUser(?string $userId): bool {
+        return $this->shareDisableChecker->sharingDisabledForUser($userId);
+    }
+
+    #[Override]
+    public function outgoingServer2ServerSharesAllowed(): bool {
+        return $this->config->getAppValue('files_sharing', 'outgoing_server2server_share_enabled', 'yes') === 'yes';
+    }
+
+    #[Override]
+    public function outgoingServer2ServerGroupSharesAllowed(): bool {
+        return $this->config->getAppValue('files_sharing', 'outgoing_server2server_group_share_enabled', 'no') === 'yes';
+    }
+
+    #[Override]
+    public function shareProviderExists(int $shareType): bool {
+        try {
+            $this->factory->getProviderForType($shareType);
+        } catch (ProviderException $e) {
+            return false;
+        }
+
+        return true;
+    }
+
+    public function registerShareProvider(string $shareProviderClass): void {
+        $this->factory->registerProvider($shareProviderClass);
+    }
+
+    #[Override]
+    public function getAllShares(): iterable {
+        $providers = $this->factory->getAllProviders();
+
+        foreach ($providers as $provider) {
+            yield from $provider->getAllShares();
+        }
+    }
+
+    #[Override]
+    public function generateToken(): string {
+        // Initial token length
+        $tokenLength = Helper::getTokenLength();
+
+        do {
+            $tokenExists = false;
+
+            for ($i = 0; $i <= 2; $i++) {
+                // Generate a new token
+                $token = $this->secureRandom->generate(
+                    $tokenLength,
+                    ISecureRandom::CHAR_HUMAN_READABLE,
+                );
+
+                try {
+                    // Try to fetch a share with the generated token
+                    $this->getShareByToken($token);
+                    $tokenExists = true; // Token exists, we need to try again
+                } catch (ShareNotFound $e) {
+                    // Token is unique, exit the loop
+                    $tokenExists = false;
+                    break;
+                }
+            }
+
+            // If we've reached the maximum attempts and the token still exists, increase the token length
+            if ($tokenExists) {
+                $tokenLength++;
+
+                // Check if the token length exceeds the maximum allowed length
+                if ($tokenLength > \OC\Share\Constants::MAX_TOKEN_LENGTH) {
+                    throw new ShareTokenException('Unable to generate a unique share token. Maximum token length exceeded.');
+                }
+            }
+        } while ($tokenExists);
+
+        return $token;
+    }
+
+    private function dispatchEvent(Event $event, string $name): void {
+        try {
+            $this->dispatcher->dispatchTyped($event);
+        } catch (\Exception $e) {
+            $this->logger->error("Error while sending ' . $name . ' event", ['exception' => $e]);
+        }
+    }
 }

Please login to merge, or discard this patch.

apps/files/lib/Service/OwnershipTransferService.php 1 patch

Indentation +585 added lines, -585 removed lines patch added patch discarded remove patch

@@ -44,589 +44,589 @@
 block discarded – undo
 
 class OwnershipTransferService {
 
-	public function __construct(
-		private IEncryptionManager $encryptionManager,
-		private IShareManager $shareManager,
-		private IMountManager $mountManager,
-		private IUserMountCache $userMountCache,
-		private IUserManager $userManager,
-		private IFactory $l10nFactory,
-		private IRootFolder $rootFolder,
-	) {
-	}
-
-	/**
-	 * @param IUser $sourceUser
-	 * @param IUser $destinationUser
-	 * @param string $path
-	 *
-	 * @param OutputInterface|null $output
-	 * @param bool $move
-	 * @throws TransferOwnershipException
-	 * @throws NoUserException
-	 */
-	public function transfer(
-		IUser $sourceUser,
-		IUser $destinationUser,
-		string $path,
-		?OutputInterface $output = null,
-		bool $move = false,
-		bool $firstLogin = false,
-		bool $includeExternalStorage = false,
-		bool $useUserId = false,
-	): void {
-		$output = $output ?? new NullOutput();
-		$sourceUid = $sourceUser->getUID();
-		$destinationUid = $destinationUser->getUID();
-		$sourcePath = rtrim($sourceUid . '/files/' . $path, '/');
-
-		// If encryption is on we have to ensure the user has logged in before and that all encryption modules are ready
-		if (($this->encryptionManager->isEnabled() && $destinationUser->getLastLogin() === 0)
-			|| !$this->encryptionManager->isReadyForUser($destinationUid)) {
-			throw new TransferOwnershipException('The target user is not ready to accept files. The user has at least to have logged in once.', 2);
-		}
-
-		// setup filesystem
-		// Requesting the user folder will set it up if the user hasn't logged in before
-		// We need a setupFS for the full filesystem setup before as otherwise we will just return
-		// a lazy root folder which does not create the destination users folder
-		\OC_Util::setupFS($sourceUser->getUID());
-		\OC_Util::setupFS($destinationUser->getUID());
-		$this->rootFolder->getUserFolder($sourceUser->getUID());
-		$this->rootFolder->getUserFolder($destinationUser->getUID());
-		Filesystem::initMountPoints($sourceUid);
-		Filesystem::initMountPoints($destinationUid);
-
-		$view = new View();
-
-		if ($move) {
-			$finalTarget = "$destinationUid/files/";
-		} else {
-			$l = $this->l10nFactory->get('files', $this->l10nFactory->getUserLanguage($destinationUser));
-			$date = date('Y-m-d H-i-s');
-
-			if ($useUserId) {
-				$cleanUserName = $sourceUid;
-			} else {
-				$cleanUserName = $this->sanitizeFolderName($sourceUser->getDisplayName());
-				if ($cleanUserName === '') {
-					$cleanUserName = $sourceUid;
-				}
-			}
-
-			$finalTarget = "$destinationUid/files/" . $this->sanitizeFolderName($l->t('Transferred from %1$s on %2$s', [$cleanUserName, $date]));
-			try {
-				$view->verifyPath(dirname($finalTarget), basename($finalTarget));
-			} catch (InvalidPathException $e) {
-				$finalTarget = "$destinationUid/files/" . $this->sanitizeFolderName($l->t('Transferred from %1$s on %2$s', [$sourceUid, $date]));
-			}
-		}
-
-		if (!($view->is_dir($sourcePath) || $view->is_file($sourcePath))) {
-			throw new TransferOwnershipException("Unknown path provided: $path", 1);
-		}
-
-		if ($move && !$view->is_dir($finalTarget)) {
-			// Initialize storage
-			\OC_Util::setupFS($destinationUser->getUID());
-		}
-
-		if ($move && !$firstLogin && count($view->getDirectoryContent($finalTarget)) > 0) {
-			throw new TransferOwnershipException('Destination path does not exists or is not empty', 1);
-		}
-
-
-		// analyse source folder
-		$this->analyse(
-			$sourceUid,
-			$destinationUid,
-			$sourcePath,
-			$view,
-			$output
-		);
-
-		// collect all the shares
-		$shares = $this->collectUsersShares(
-			$sourceUid,
-			$output,
-			$view,
-			$sourcePath
-		);
-
-		$sourceSize = $view->getFileInfo($sourcePath)->getSize();
-
-		// transfer the files
-		$this->transferFiles(
-			$sourceUid,
-			$sourcePath,
-			$finalTarget,
-			$view,
-			$output,
-			$includeExternalStorage,
-		);
-		$sizeDifference = $sourceSize - $view->getFileInfo($finalTarget)->getSize();
-
-		// transfer the incoming shares
-		$sourceShares = $this->collectIncomingShares(
-			$sourceUid,
-			$output,
-			$sourcePath,
-		);
-		$destinationShares = $this->collectIncomingShares(
-			$destinationUid,
-			$output,
-			null,
-		);
-		$this->transferIncomingShares(
-			$sourceUid,
-			$destinationUid,
-			$sourceShares,
-			$destinationShares,
-			$output,
-			$path,
-			$finalTarget,
-			$move
-		);
-
-		$destinationPath = $finalTarget . '/' . $path;
-		// restore the shares
-		$this->restoreShares(
-			$sourceUid,
-			$destinationUid,
-			$destinationPath,
-			$shares,
-			$output
-		);
-		if ($sizeDifference !== 0) {
-			$output->writeln("Transferred folder have a size difference of: $sizeDifference Bytes which means the transfer may be incomplete. Please check the logs if there was any issue during the transfer operation.");
-		}
-	}
-
-	private function sanitizeFolderName(string $name): string {
-		// Remove some characters which are prone to cause errors
-		$name = str_replace(['\\', '/', ':', '.', '?', '#', '\'', '"'], '-', $name);
-		// Replace multiple dashes with one dash
-		return preg_replace('/-{2,}/s', '-', $name);
-	}
-
-	private function walkFiles(View $view, $path, Closure $callBack) {
-		foreach ($view->getDirectoryContent($path) as $fileInfo) {
-			if (!$callBack($fileInfo)) {
-				return;
-			}
-			if ($fileInfo->getType() === FileInfo::TYPE_FOLDER) {
-				$this->walkFiles($view, $fileInfo->getPath(), $callBack);
-			}
-		}
-	}
-
-	/**
-	 * @param OutputInterface $output
-	 *
-	 * @throws TransferOwnershipException
-	 */
-	protected function analyse(
-		string $sourceUid,
-		string $destinationUid,
-		string $sourcePath,
-		View $view,
-		OutputInterface $output,
-		bool $includeExternalStorage = false,
-	): void {
-		$output->writeln('Validating quota');
-		$sourceFileInfo = $view->getFileInfo($sourcePath, false);
-		if ($sourceFileInfo === false) {
-			throw new TransferOwnershipException("Unknown path provided: $sourcePath", 1);
-		}
-		$size = $sourceFileInfo->getSize(false);
-		$freeSpace = $view->free_space($destinationUid . '/files/');
-		if ($size > $freeSpace && $freeSpace !== FileInfo::SPACE_UNKNOWN) {
-			throw new TransferOwnershipException('Target user does not have enough free space available.', 1);
-		}
-
-		$output->writeln("Analysing files of $sourceUid ...");
-		$progress = new ProgressBar($output);
-		$progress->start();
-
-		if ($this->encryptionManager->isEnabled()) {
-			$masterKeyEnabled = Server::get(Util::class)->isMasterKeyEnabled();
-		} else {
-			$masterKeyEnabled = false;
-		}
-		$encryptedFiles = [];
-		if ($sourceFileInfo->getType() === FileInfo::TYPE_FOLDER) {
-			if ($sourceFileInfo->isEncrypted()) {
-				/* Encrypted folder means e2ee encrypted */
-				$encryptedFiles[] = $sourceFileInfo;
-			} else {
-				$this->walkFiles($view, $sourcePath,
-					function (FileInfo $fileInfo) use ($progress, $masterKeyEnabled, &$encryptedFiles, $includeExternalStorage) {
-						if ($fileInfo->getType() === FileInfo::TYPE_FOLDER) {
-							$mount = $fileInfo->getMountPoint();
-							// only analyze into folders from main storage,
-							if (
-								$mount->getMountProvider() instanceof IHomeMountProvider
-								|| ($includeExternalStorage && $mount->getMountProvider() instanceof ConfigAdapter)
-							) {
-								if ($fileInfo->isEncrypted()) {
-									/* Encrypted folder means e2ee encrypted, we cannot transfer it */
-									$encryptedFiles[] = $fileInfo;
-								}
-								return true;
-							} else {
-								return false;
-							}
-						}
-						$progress->advance();
-						if ($fileInfo->isEncrypted() && !$masterKeyEnabled) {
-							/* Encrypted file means SSE, we can only transfer it if master key is enabled */
-							$encryptedFiles[] = $fileInfo;
-						}
-						return true;
-					});
-			}
-		} elseif ($sourceFileInfo->isEncrypted() && !$masterKeyEnabled) {
-			/* Encrypted file means SSE, we can only transfer it if master key is enabled */
-			$encryptedFiles[] = $sourceFileInfo;
-		}
-		$progress->finish();
-		$output->writeln('');
-
-		// no file is allowed to be encrypted
-		if (!empty($encryptedFiles)) {
-			$output->writeln('<error>Some files are encrypted - please decrypt them first.</error>');
-			foreach ($encryptedFiles as $encryptedFile) {
-				/** @var FileInfo $encryptedFile */
-				$output->writeln('  ' . $encryptedFile->getPath());
-			}
-			throw new TransferOwnershipException('Some files are encrypted - please decrypt them first.', 1);
-		}
-	}
-
-	/**
-	 * @return array<array{share: IShare, suffix: string}>
-	 */
-	private function collectUsersShares(
-		string $sourceUid,
-		OutputInterface $output,
-		View $view,
-		string $path,
-	): array {
-		$output->writeln("Collecting all share information for files and folders of $sourceUid ...");
-
-		$shares = [];
-		$progress = new ProgressBar($output);
-
-		$normalizedPath = Filesystem::normalizePath($path);
-
-		$supportedShareTypes = [
-			IShare::TYPE_GROUP,
-			IShare::TYPE_USER,
-			IShare::TYPE_LINK,
-			IShare::TYPE_REMOTE,
-			IShare::TYPE_ROOM,
-			IShare::TYPE_EMAIL,
-			IShare::TYPE_CIRCLE,
-			IShare::TYPE_DECK,
-		];
-
-		foreach ($supportedShareTypes as $shareType) {
-			$offset = 0;
-			while (true) {
-				$sharePage = $this->shareManager->getSharesBy($sourceUid, $shareType, null, true, 50, $offset, onlyValid: false);
-				$progress->advance(count($sharePage));
-				if (empty($sharePage)) {
-					break;
-				}
-				if ($path !== "$sourceUid/files") {
-					$sharePage = array_filter($sharePage, function (IShare $share) use ($view, $normalizedPath) {
-						try {
-							$sourceNode = $share->getNode();
-							$relativePath = $view->getRelativePath($sourceNode->getPath());
-
-							return str_starts_with($relativePath . '/', $normalizedPath . '/');
-						} catch (Exception $e) {
-							return false;
-						}
-					});
-				}
-				$shares = array_merge($shares, $sharePage);
-				$offset += 50;
-			}
-		}
-
-		$progress->finish();
-		$output->writeln('');
-
-		return array_values(array_filter(array_map(function (IShare $share) use ($view, $normalizedPath, $output, $sourceUid) {
-			try {
-				$nodePath = $view->getRelativePath($share->getNode()->getPath());
-			} catch (NotFoundException $e) {
-				$output->writeln("<error>Failed to find path for shared file {$share->getNodeId()} for user $sourceUid, skipping</error>");
-				return null;
-			}
-
-			return [
-				'share' => $share,
-				'suffix' => substr(Filesystem::normalizePath($nodePath), strlen($normalizedPath)),
-			];
-		}, $shares)));
-	}
-
-	private function collectIncomingShares(
-		string $sourceUid,
-		OutputInterface $output,
-		?string $path,
-	): array {
-		$output->writeln("Collecting all incoming share information for files and folders of $sourceUid ...");
-
-		$shares = [];
-		$progress = new ProgressBar($output);
-		$normalizedPath = Filesystem::normalizePath($path);
-
-		$offset = 0;
-		while (true) {
-			$sharePage = $this->shareManager->getSharedWith($sourceUid, IShare::TYPE_USER, null, 50, $offset);
-			$progress->advance(count($sharePage));
-			if (empty($sharePage)) {
-				break;
-			}
-
-			if ($path !== null && $path !== "$sourceUid/files") {
-				$sharePage = array_filter($sharePage, static function (IShare $share) use ($sourceUid, $normalizedPath) {
-					try {
-						return str_starts_with(Filesystem::normalizePath($sourceUid . '/files' . $share->getTarget() . '/', false), $normalizedPath . '/');
-					} catch (Exception) {
-						return false;
-					}
-				});
-			}
-
-			foreach ($sharePage as $share) {
-				$shares[$share->getNodeId()] = $share;
-			}
-
-			$offset += 50;
-		}
-
-
-		$progress->finish();
-		$output->writeln('');
-		return $shares;
-	}
-
-	/**
-	 * @throws TransferOwnershipException
-	 */
-	protected function transferFiles(
-		string $sourceUid,
-		string $sourcePath,
-		string $finalTarget,
-		View $view,
-		OutputInterface $output,
-		bool $includeExternalStorage,
-	): void {
-		$output->writeln("Transferring files to $finalTarget ...");
-
-		// This change will help user to transfer the folder specified using --path option.
-		// Else only the content inside folder is transferred which is not correct.
-		if ($sourcePath !== "$sourceUid/files") {
-			$view->mkdir($finalTarget);
-			$finalTarget = $finalTarget . '/' . basename($sourcePath);
-		}
-		$sourceInfo = $view->getFileInfo($sourcePath);
-
-		/// handle the external storages mounted at the root, or the admin specifying an external storage with --path
-		if ($sourceInfo->getInternalPath() === '' && $includeExternalStorage) {
-			$this->moveMountContents($view, $sourcePath, $finalTarget);
-		} else {
-			if ($view->rename($sourcePath, $finalTarget, ['checkSubMounts' => false]) === false) {
-				throw new TransferOwnershipException('Could not transfer files.', 1);
-			}
-		}
-
-		if ($includeExternalStorage) {
-			$nestedMounts = $this->mountManager->findIn($sourcePath);
-			foreach ($nestedMounts as $mount) {
-				if ($mount->getMountProvider() === ConfigAdapter::class) {
-					$relativePath = substr(trim($mount->getMountPoint(), '/'), strlen($sourcePath));
-					$this->moveMountContents($view, $mount->getMountPoint(), $finalTarget . $relativePath);
-				}
-			}
-		}
-
-		if (!is_dir("$sourceUid/files")) {
-			// because the files folder is moved away we need to recreate it
-			$view->mkdir("$sourceUid/files");
-		}
-	}
-
-	private function moveMountContents(View $rootView, string $source, string $target) {
-		if ($rootView->copy($source, $target)) {
-			// just doing `rmdir` on the mountpoint would cause it to try and unmount the storage
-			// we need to empty the contents instead
-			$content = $rootView->getDirectoryContent($source);
-			foreach ($content as $item) {
-				if ($item->getType() === FileInfo::TYPE_FOLDER) {
-					$rootView->rmdir($item->getPath());
-				} else {
-					$rootView->unlink($item->getPath());
-				}
-			}
-		} else {
-			throw new TransferOwnershipException("Could not transfer $source to $target");
-		}
-	}
-
-	/**
-	 * @param string $targetLocation New location of the transfered node
-	 * @param array<array{share: IShare, suffix: string}> $shares previously collected share information
-	 */
-	private function restoreShares(
-		string $sourceUid,
-		string $destinationUid,
-		string $targetLocation,
-		array $shares,
-		OutputInterface $output,
-	):void {
-		$output->writeln('Restoring shares ...');
-		$progress = new ProgressBar($output, count($shares));
-
-		foreach ($shares as ['share' => $share, 'suffix' => $suffix]) {
-			try {
-				$output->writeln('Transfering share ' . $share->getId() . ' of type ' . $share->getShareType(), OutputInterface::VERBOSITY_VERBOSE);
-				if ($share->getShareType() === IShare::TYPE_USER
-					&& $share->getSharedWith() === $destinationUid) {
-					// Unmount the shares before deleting, so we don't try to get the storage later on.
-					$shareMountPoint = $this->mountManager->find('/' . $destinationUid . '/files' . $share->getTarget());
-					if ($shareMountPoint) {
-						$this->mountManager->removeMount($shareMountPoint->getMountPoint());
-					}
-					$this->shareManager->deleteShare($share);
-				} else {
-					if ($share->getShareOwner() === $sourceUid) {
-						$share->setShareOwner($destinationUid);
-					}
-					if ($share->getSharedBy() === $sourceUid) {
-						$share->setSharedBy($destinationUid);
-					}
-
-					if ($share->getShareType() === IShare::TYPE_USER
-						&& !$this->userManager->userExists($share->getSharedWith())) {
-						// stray share with deleted user
-						$output->writeln('<error>Share with id ' . $share->getId() . ' points at deleted user "' . $share->getSharedWith() . '", deleting</error>');
-						$this->shareManager->deleteShare($share);
-						continue;
-					} else {
-						// trigger refetching of the node so that the new owner and mountpoint are taken into account
-						// otherwise the checks on the share update will fail due to the original node not being available in the new user scope
-						$this->userMountCache->clear();
-
-						try {
-							// Try to get the "old" id.
-							// Normally the ID is preserved,
-							// but for transferes between different storages the ID might change
-							$newNodeId = $share->getNode()->getId();
-						} catch (NotFoundException) {
-							// ID has changed due to transfer between different storages
-							// Try to get the new ID from the target path and suffix of the share
-							$node = $this->rootFolder->get(Filesystem::normalizePath($targetLocation . '/' . $suffix));
-							$newNodeId = $node->getId();
-							$output->writeln('Had to change node id to ' . $newNodeId, OutputInterface::VERBOSITY_VERY_VERBOSE);
-						}
-						$share->setNodeId($newNodeId);
-
-						$this->shareManager->updateShare($share, onlyValid: false);
-					}
-				}
-			} catch (NotFoundException $e) {
-				$output->writeln('<error>Share with id ' . $share->getId() . ' points at deleted file, skipping</error>');
-			} catch (\Throwable $e) {
-				$output->writeln('<error>Could not restore share with id ' . $share->getId() . ':' . $e->getMessage() . ' : ' . $e->getTraceAsString() . '</error>');
-			}
-			$progress->advance();
-		}
-		$progress->finish();
-		$output->writeln('');
-	}
-
-	private function transferIncomingShares(string $sourceUid,
-		string $destinationUid,
-		array $sourceShares,
-		array $destinationShares,
-		OutputInterface $output,
-		string $path,
-		string $finalTarget,
-		bool $move): void {
-		$output->writeln('Restoring incoming shares ...');
-		$progress = new ProgressBar($output, count($sourceShares));
-		$prefix = "$destinationUid/files";
-		$finalShareTarget = '';
-		if (str_starts_with($finalTarget, $prefix)) {
-			$finalShareTarget = substr($finalTarget, strlen($prefix));
-		}
-		foreach ($sourceShares as $share) {
-			try {
-				// Only restore if share is in given path.
-				$pathToCheck = '/';
-				if (trim($path, '/') !== '') {
-					$pathToCheck = '/' . trim($path) . '/';
-				}
-				if (!str_starts_with($share->getTarget(), $pathToCheck)) {
-					continue;
-				}
-				$shareTarget = $share->getTarget();
-				$shareTarget = $finalShareTarget . $shareTarget;
-				if ($share->getShareType() === IShare::TYPE_USER
-					&& $share->getSharedBy() === $destinationUid) {
-					$this->shareManager->deleteShare($share);
-				} elseif (isset($destinationShares[$share->getNodeId()])) {
-					$destinationShare = $destinationShares[$share->getNodeId()];
-					// Keep the share which has the most permissions and discard the other one.
-					if ($destinationShare->getPermissions() < $share->getPermissions()) {
-						$this->shareManager->deleteShare($destinationShare);
-						$share->setSharedWith($destinationUid);
-						// trigger refetching of the node so that the new owner and mountpoint are taken into account
-						// otherwise the checks on the share update will fail due to the original node not being available in the new user scope
-						$this->userMountCache->clear();
-						$share->setNodeId($share->getNode()->getId());
-						$this->shareManager->updateShare($share);
-						// The share is already transferred.
-						$progress->advance();
-						if ($move) {
-							continue;
-						}
-						$share->setTarget($shareTarget);
-						$this->shareManager->moveShare($share, $destinationUid);
-						continue;
-					}
-					$this->shareManager->deleteShare($share);
-				} elseif ($share->getShareOwner() === $destinationUid) {
-					$this->shareManager->deleteShare($share);
-				} else {
-					$share->setSharedWith($destinationUid);
-					$share->setNodeId($share->getNode()->getId());
-					$this->shareManager->updateShare($share);
-					// trigger refetching of the node so that the new owner and mountpoint are taken into account
-					// otherwise the checks on the share update will fail due to the original node not being available in the new user scope
-					$this->userMountCache->clear();
-					// The share is already transferred.
-					$progress->advance();
-					if ($move) {
-						continue;
-					}
-					$share->setTarget($shareTarget);
-					$this->shareManager->moveShare($share, $destinationUid);
-					continue;
-				}
-			} catch (NotFoundException $e) {
-				$output->writeln('<error>Share with id ' . $share->getId() . ' points at deleted file, skipping</error>');
-			} catch (\Throwable $e) {
-				$output->writeln('<error>Could not restore share with id ' . $share->getId() . ':' . $e->getTraceAsString() . '</error>');
-			}
-			$progress->advance();
-		}
-		$progress->finish();
-		$output->writeln('');
-	}
+    public function __construct(
+        private IEncryptionManager $encryptionManager,
+        private IShareManager $shareManager,
+        private IMountManager $mountManager,
+        private IUserMountCache $userMountCache,
+        private IUserManager $userManager,
+        private IFactory $l10nFactory,
+        private IRootFolder $rootFolder,
+    ) {
+    }
+
+    /**
+     * @param IUser $sourceUser
+     * @param IUser $destinationUser
+     * @param string $path
+     *
+     * @param OutputInterface|null $output
+     * @param bool $move
+     * @throws TransferOwnershipException
+     * @throws NoUserException
+     */
+    public function transfer(
+        IUser $sourceUser,
+        IUser $destinationUser,
+        string $path,
+        ?OutputInterface $output = null,
+        bool $move = false,
+        bool $firstLogin = false,
+        bool $includeExternalStorage = false,
+        bool $useUserId = false,
+    ): void {
+        $output = $output ?? new NullOutput();
+        $sourceUid = $sourceUser->getUID();
+        $destinationUid = $destinationUser->getUID();
+        $sourcePath = rtrim($sourceUid . '/files/' . $path, '/');
+
+        // If encryption is on we have to ensure the user has logged in before and that all encryption modules are ready
+        if (($this->encryptionManager->isEnabled() && $destinationUser->getLastLogin() === 0)
+            || !$this->encryptionManager->isReadyForUser($destinationUid)) {
+            throw new TransferOwnershipException('The target user is not ready to accept files. The user has at least to have logged in once.', 2);
+        }
+
+        // setup filesystem
+        // Requesting the user folder will set it up if the user hasn't logged in before
+        // We need a setupFS for the full filesystem setup before as otherwise we will just return
+        // a lazy root folder which does not create the destination users folder
+        \OC_Util::setupFS($sourceUser->getUID());
+        \OC_Util::setupFS($destinationUser->getUID());
+        $this->rootFolder->getUserFolder($sourceUser->getUID());
+        $this->rootFolder->getUserFolder($destinationUser->getUID());
+        Filesystem::initMountPoints($sourceUid);
+        Filesystem::initMountPoints($destinationUid);
+
+        $view = new View();
+
+        if ($move) {
+            $finalTarget = "$destinationUid/files/";
+        } else {
+            $l = $this->l10nFactory->get('files', $this->l10nFactory->getUserLanguage($destinationUser));
+            $date = date('Y-m-d H-i-s');
+
+            if ($useUserId) {
+                $cleanUserName = $sourceUid;
+            } else {
+                $cleanUserName = $this->sanitizeFolderName($sourceUser->getDisplayName());
+                if ($cleanUserName === '') {
+                    $cleanUserName = $sourceUid;
+                }
+            }
+
+            $finalTarget = "$destinationUid/files/" . $this->sanitizeFolderName($l->t('Transferred from %1$s on %2$s', [$cleanUserName, $date]));
+            try {
+                $view->verifyPath(dirname($finalTarget), basename($finalTarget));
+            } catch (InvalidPathException $e) {
+                $finalTarget = "$destinationUid/files/" . $this->sanitizeFolderName($l->t('Transferred from %1$s on %2$s', [$sourceUid, $date]));
+            }
+        }
+
+        if (!($view->is_dir($sourcePath) || $view->is_file($sourcePath))) {
+            throw new TransferOwnershipException("Unknown path provided: $path", 1);
+        }
+
+        if ($move && !$view->is_dir($finalTarget)) {
+            // Initialize storage
+            \OC_Util::setupFS($destinationUser->getUID());
+        }
+
+        if ($move && !$firstLogin && count($view->getDirectoryContent($finalTarget)) > 0) {
+            throw new TransferOwnershipException('Destination path does not exists or is not empty', 1);
+        }
+
+
+        // analyse source folder
+        $this->analyse(
+            $sourceUid,
+            $destinationUid,
+            $sourcePath,
+            $view,
+            $output
+        );
+
+        // collect all the shares
+        $shares = $this->collectUsersShares(
+            $sourceUid,
+            $output,
+            $view,
+            $sourcePath
+        );
+
+        $sourceSize = $view->getFileInfo($sourcePath)->getSize();
+
+        // transfer the files
+        $this->transferFiles(
+            $sourceUid,
+            $sourcePath,
+            $finalTarget,
+            $view,
+            $output,
+            $includeExternalStorage,
+        );
+        $sizeDifference = $sourceSize - $view->getFileInfo($finalTarget)->getSize();
+
+        // transfer the incoming shares
+        $sourceShares = $this->collectIncomingShares(
+            $sourceUid,
+            $output,
+            $sourcePath,
+        );
+        $destinationShares = $this->collectIncomingShares(
+            $destinationUid,
+            $output,
+            null,
+        );
+        $this->transferIncomingShares(
+            $sourceUid,
+            $destinationUid,
+            $sourceShares,
+            $destinationShares,
+            $output,
+            $path,
+            $finalTarget,
+            $move
+        );
+
+        $destinationPath = $finalTarget . '/' . $path;
+        // restore the shares
+        $this->restoreShares(
+            $sourceUid,
+            $destinationUid,
+            $destinationPath,
+            $shares,
+            $output
+        );
+        if ($sizeDifference !== 0) {
+            $output->writeln("Transferred folder have a size difference of: $sizeDifference Bytes which means the transfer may be incomplete. Please check the logs if there was any issue during the transfer operation.");
+        }
+    }
+
+    private function sanitizeFolderName(string $name): string {
+        // Remove some characters which are prone to cause errors
+        $name = str_replace(['\\', '/', ':', '.', '?', '#', '\'', '"'], '-', $name);
+        // Replace multiple dashes with one dash
+        return preg_replace('/-{2,}/s', '-', $name);
+    }
+
+    private function walkFiles(View $view, $path, Closure $callBack) {
+        foreach ($view->getDirectoryContent($path) as $fileInfo) {
+            if (!$callBack($fileInfo)) {
+                return;
+            }
+            if ($fileInfo->getType() === FileInfo::TYPE_FOLDER) {
+                $this->walkFiles($view, $fileInfo->getPath(), $callBack);
+            }
+        }
+    }
+
+    /**
+     * @param OutputInterface $output
+     *
+     * @throws TransferOwnershipException
+     */
+    protected function analyse(
+        string $sourceUid,
+        string $destinationUid,
+        string $sourcePath,
+        View $view,
+        OutputInterface $output,
+        bool $includeExternalStorage = false,
+    ): void {
+        $output->writeln('Validating quota');
+        $sourceFileInfo = $view->getFileInfo($sourcePath, false);
+        if ($sourceFileInfo === false) {
+            throw new TransferOwnershipException("Unknown path provided: $sourcePath", 1);
+        }
+        $size = $sourceFileInfo->getSize(false);
+        $freeSpace = $view->free_space($destinationUid . '/files/');
+        if ($size > $freeSpace && $freeSpace !== FileInfo::SPACE_UNKNOWN) {
+            throw new TransferOwnershipException('Target user does not have enough free space available.', 1);
+        }
+
+        $output->writeln("Analysing files of $sourceUid ...");
+        $progress = new ProgressBar($output);
+        $progress->start();
+
+        if ($this->encryptionManager->isEnabled()) {
+            $masterKeyEnabled = Server::get(Util::class)->isMasterKeyEnabled();
+        } else {
+            $masterKeyEnabled = false;
+        }
+        $encryptedFiles = [];
+        if ($sourceFileInfo->getType() === FileInfo::TYPE_FOLDER) {
+            if ($sourceFileInfo->isEncrypted()) {
+                /* Encrypted folder means e2ee encrypted */
+                $encryptedFiles[] = $sourceFileInfo;
+            } else {
+                $this->walkFiles($view, $sourcePath,
+                    function (FileInfo $fileInfo) use ($progress, $masterKeyEnabled, &$encryptedFiles, $includeExternalStorage) {
+                        if ($fileInfo->getType() === FileInfo::TYPE_FOLDER) {
+                            $mount = $fileInfo->getMountPoint();
+                            // only analyze into folders from main storage,
+                            if (
+                                $mount->getMountProvider() instanceof IHomeMountProvider
+                                || ($includeExternalStorage && $mount->getMountProvider() instanceof ConfigAdapter)
+                            ) {
+                                if ($fileInfo->isEncrypted()) {
+                                    /* Encrypted folder means e2ee encrypted, we cannot transfer it */
+                                    $encryptedFiles[] = $fileInfo;
+                                }
+                                return true;
+                            } else {
+                                return false;
+                            }
+                        }
+                        $progress->advance();
+                        if ($fileInfo->isEncrypted() && !$masterKeyEnabled) {
+                            /* Encrypted file means SSE, we can only transfer it if master key is enabled */
+                            $encryptedFiles[] = $fileInfo;
+                        }
+                        return true;
+                    });
+            }
+        } elseif ($sourceFileInfo->isEncrypted() && !$masterKeyEnabled) {
+            /* Encrypted file means SSE, we can only transfer it if master key is enabled */
+            $encryptedFiles[] = $sourceFileInfo;
+        }
+        $progress->finish();
+        $output->writeln('');
+
+        // no file is allowed to be encrypted
+        if (!empty($encryptedFiles)) {
+            $output->writeln('<error>Some files are encrypted - please decrypt them first.</error>');
+            foreach ($encryptedFiles as $encryptedFile) {
+                /** @var FileInfo $encryptedFile */
+                $output->writeln('  ' . $encryptedFile->getPath());
+            }
+            throw new TransferOwnershipException('Some files are encrypted - please decrypt them first.', 1);
+        }
+    }
+
+    /**
+     * @return array<array{share: IShare, suffix: string}>
+     */
+    private function collectUsersShares(
+        string $sourceUid,
+        OutputInterface $output,
+        View $view,
+        string $path,
+    ): array {
+        $output->writeln("Collecting all share information for files and folders of $sourceUid ...");
+
+        $shares = [];
+        $progress = new ProgressBar($output);
+
+        $normalizedPath = Filesystem::normalizePath($path);
+
+        $supportedShareTypes = [
+            IShare::TYPE_GROUP,
+            IShare::TYPE_USER,
+            IShare::TYPE_LINK,
+            IShare::TYPE_REMOTE,
+            IShare::TYPE_ROOM,
+            IShare::TYPE_EMAIL,
+            IShare::TYPE_CIRCLE,
+            IShare::TYPE_DECK,
+        ];
+
+        foreach ($supportedShareTypes as $shareType) {
+            $offset = 0;
+            while (true) {
+                $sharePage = $this->shareManager->getSharesBy($sourceUid, $shareType, null, true, 50, $offset, onlyValid: false);
+                $progress->advance(count($sharePage));
+                if (empty($sharePage)) {
+                    break;
+                }
+                if ($path !== "$sourceUid/files") {
+                    $sharePage = array_filter($sharePage, function (IShare $share) use ($view, $normalizedPath) {
+                        try {
+                            $sourceNode = $share->getNode();
+                            $relativePath = $view->getRelativePath($sourceNode->getPath());
+
+                            return str_starts_with($relativePath . '/', $normalizedPath . '/');
+                        } catch (Exception $e) {
+                            return false;
+                        }
+                    });
+                }
+                $shares = array_merge($shares, $sharePage);
+                $offset += 50;
+            }
+        }
+
+        $progress->finish();
+        $output->writeln('');
+
+        return array_values(array_filter(array_map(function (IShare $share) use ($view, $normalizedPath, $output, $sourceUid) {
+            try {
+                $nodePath = $view->getRelativePath($share->getNode()->getPath());
+            } catch (NotFoundException $e) {
+                $output->writeln("<error>Failed to find path for shared file {$share->getNodeId()} for user $sourceUid, skipping</error>");
+                return null;
+            }
+
+            return [
+                'share' => $share,
+                'suffix' => substr(Filesystem::normalizePath($nodePath), strlen($normalizedPath)),
+            ];
+        }, $shares)));
+    }
+
+    private function collectIncomingShares(
+        string $sourceUid,
+        OutputInterface $output,
+        ?string $path,
+    ): array {
+        $output->writeln("Collecting all incoming share information for files and folders of $sourceUid ...");
+
+        $shares = [];
+        $progress = new ProgressBar($output);
+        $normalizedPath = Filesystem::normalizePath($path);
+
+        $offset = 0;
+        while (true) {
+            $sharePage = $this->shareManager->getSharedWith($sourceUid, IShare::TYPE_USER, null, 50, $offset);
+            $progress->advance(count($sharePage));
+            if (empty($sharePage)) {
+                break;
+            }
+
+            if ($path !== null && $path !== "$sourceUid/files") {
+                $sharePage = array_filter($sharePage, static function (IShare $share) use ($sourceUid, $normalizedPath) {
+                    try {
+                        return str_starts_with(Filesystem::normalizePath($sourceUid . '/files' . $share->getTarget() . '/', false), $normalizedPath . '/');
+                    } catch (Exception) {
+                        return false;
+                    }
+                });
+            }
+
+            foreach ($sharePage as $share) {
+                $shares[$share->getNodeId()] = $share;
+            }
+
+            $offset += 50;
+        }
+
+
+        $progress->finish();
+        $output->writeln('');
+        return $shares;
+    }
+
+    /**
+     * @throws TransferOwnershipException
+     */
+    protected function transferFiles(
+        string $sourceUid,
+        string $sourcePath,
+        string $finalTarget,
+        View $view,
+        OutputInterface $output,
+        bool $includeExternalStorage,
+    ): void {
+        $output->writeln("Transferring files to $finalTarget ...");
+
+        // This change will help user to transfer the folder specified using --path option.
+        // Else only the content inside folder is transferred which is not correct.
+        if ($sourcePath !== "$sourceUid/files") {
+            $view->mkdir($finalTarget);
+            $finalTarget = $finalTarget . '/' . basename($sourcePath);
+        }
+        $sourceInfo = $view->getFileInfo($sourcePath);
+
+        /// handle the external storages mounted at the root, or the admin specifying an external storage with --path
+        if ($sourceInfo->getInternalPath() === '' && $includeExternalStorage) {
+            $this->moveMountContents($view, $sourcePath, $finalTarget);
+        } else {
+            if ($view->rename($sourcePath, $finalTarget, ['checkSubMounts' => false]) === false) {
+                throw new TransferOwnershipException('Could not transfer files.', 1);
+            }
+        }
+
+        if ($includeExternalStorage) {
+            $nestedMounts = $this->mountManager->findIn($sourcePath);
+            foreach ($nestedMounts as $mount) {
+                if ($mount->getMountProvider() === ConfigAdapter::class) {
+                    $relativePath = substr(trim($mount->getMountPoint(), '/'), strlen($sourcePath));
+                    $this->moveMountContents($view, $mount->getMountPoint(), $finalTarget . $relativePath);
+                }
+            }
+        }
+
+        if (!is_dir("$sourceUid/files")) {
+            // because the files folder is moved away we need to recreate it
+            $view->mkdir("$sourceUid/files");
+        }
+    }
+
+    private function moveMountContents(View $rootView, string $source, string $target) {
+        if ($rootView->copy($source, $target)) {
+            // just doing `rmdir` on the mountpoint would cause it to try and unmount the storage
+            // we need to empty the contents instead
+            $content = $rootView->getDirectoryContent($source);
+            foreach ($content as $item) {
+                if ($item->getType() === FileInfo::TYPE_FOLDER) {
+                    $rootView->rmdir($item->getPath());
+                } else {
+                    $rootView->unlink($item->getPath());
+                }
+            }
+        } else {
+            throw new TransferOwnershipException("Could not transfer $source to $target");
+        }
+    }
+
+    /**
+     * @param string $targetLocation New location of the transfered node
+     * @param array<array{share: IShare, suffix: string}> $shares previously collected share information
+     */
+    private function restoreShares(
+        string $sourceUid,
+        string $destinationUid,
+        string $targetLocation,
+        array $shares,
+        OutputInterface $output,
+    ):void {
+        $output->writeln('Restoring shares ...');
+        $progress = new ProgressBar($output, count($shares));
+
+        foreach ($shares as ['share' => $share, 'suffix' => $suffix]) {
+            try {
+                $output->writeln('Transfering share ' . $share->getId() . ' of type ' . $share->getShareType(), OutputInterface::VERBOSITY_VERBOSE);
+                if ($share->getShareType() === IShare::TYPE_USER
+                    && $share->getSharedWith() === $destinationUid) {
+                    // Unmount the shares before deleting, so we don't try to get the storage later on.
+                    $shareMountPoint = $this->mountManager->find('/' . $destinationUid . '/files' . $share->getTarget());
+                    if ($shareMountPoint) {
+                        $this->mountManager->removeMount($shareMountPoint->getMountPoint());
+                    }
+                    $this->shareManager->deleteShare($share);
+                } else {
+                    if ($share->getShareOwner() === $sourceUid) {
+                        $share->setShareOwner($destinationUid);
+                    }
+                    if ($share->getSharedBy() === $sourceUid) {
+                        $share->setSharedBy($destinationUid);
+                    }
+
+                    if ($share->getShareType() === IShare::TYPE_USER
+                        && !$this->userManager->userExists($share->getSharedWith())) {
+                        // stray share with deleted user
+                        $output->writeln('<error>Share with id ' . $share->getId() . ' points at deleted user "' . $share->getSharedWith() . '", deleting</error>');
+                        $this->shareManager->deleteShare($share);
+                        continue;
+                    } else {
+                        // trigger refetching of the node so that the new owner and mountpoint are taken into account
+                        // otherwise the checks on the share update will fail due to the original node not being available in the new user scope
+                        $this->userMountCache->clear();
+
+                        try {
+                            // Try to get the "old" id.
+                            // Normally the ID is preserved,
+                            // but for transferes between different storages the ID might change
+                            $newNodeId = $share->getNode()->getId();
+                        } catch (NotFoundException) {
+                            // ID has changed due to transfer between different storages
+                            // Try to get the new ID from the target path and suffix of the share
+                            $node = $this->rootFolder->get(Filesystem::normalizePath($targetLocation . '/' . $suffix));
+                            $newNodeId = $node->getId();
+                            $output->writeln('Had to change node id to ' . $newNodeId, OutputInterface::VERBOSITY_VERY_VERBOSE);
+                        }
+                        $share->setNodeId($newNodeId);
+
+                        $this->shareManager->updateShare($share, onlyValid: false);
+                    }
+                }
+            } catch (NotFoundException $e) {
+                $output->writeln('<error>Share with id ' . $share->getId() . ' points at deleted file, skipping</error>');
+            } catch (\Throwable $e) {
+                $output->writeln('<error>Could not restore share with id ' . $share->getId() . ':' . $e->getMessage() . ' : ' . $e->getTraceAsString() . '</error>');
+            }
+            $progress->advance();
+        }
+        $progress->finish();
+        $output->writeln('');
+    }
+
+    private function transferIncomingShares(string $sourceUid,
+        string $destinationUid,
+        array $sourceShares,
+        array $destinationShares,
+        OutputInterface $output,
+        string $path,
+        string $finalTarget,
+        bool $move): void {
+        $output->writeln('Restoring incoming shares ...');
+        $progress = new ProgressBar($output, count($sourceShares));
+        $prefix = "$destinationUid/files";
+        $finalShareTarget = '';
+        if (str_starts_with($finalTarget, $prefix)) {
+            $finalShareTarget = substr($finalTarget, strlen($prefix));
+        }
+        foreach ($sourceShares as $share) {
+            try {
+                // Only restore if share is in given path.
+                $pathToCheck = '/';
+                if (trim($path, '/') !== '') {
+                    $pathToCheck = '/' . trim($path) . '/';
+                }
+                if (!str_starts_with($share->getTarget(), $pathToCheck)) {
+                    continue;
+                }
+                $shareTarget = $share->getTarget();
+                $shareTarget = $finalShareTarget . $shareTarget;
+                if ($share->getShareType() === IShare::TYPE_USER
+                    && $share->getSharedBy() === $destinationUid) {
+                    $this->shareManager->deleteShare($share);
+                } elseif (isset($destinationShares[$share->getNodeId()])) {
+                    $destinationShare = $destinationShares[$share->getNodeId()];
+                    // Keep the share which has the most permissions and discard the other one.
+                    if ($destinationShare->getPermissions() < $share->getPermissions()) {
+                        $this->shareManager->deleteShare($destinationShare);
+                        $share->setSharedWith($destinationUid);
+                        // trigger refetching of the node so that the new owner and mountpoint are taken into account
+                        // otherwise the checks on the share update will fail due to the original node not being available in the new user scope
+                        $this->userMountCache->clear();
+                        $share->setNodeId($share->getNode()->getId());
+                        $this->shareManager->updateShare($share);
+                        // The share is already transferred.
+                        $progress->advance();
+                        if ($move) {
+                            continue;
+                        }
+                        $share->setTarget($shareTarget);
+                        $this->shareManager->moveShare($share, $destinationUid);
+                        continue;
+                    }
+                    $this->shareManager->deleteShare($share);
+                } elseif ($share->getShareOwner() === $destinationUid) {
+                    $this->shareManager->deleteShare($share);
+                } else {
+                    $share->setSharedWith($destinationUid);
+                    $share->setNodeId($share->getNode()->getId());
+                    $this->shareManager->updateShare($share);
+                    // trigger refetching of the node so that the new owner and mountpoint are taken into account
+                    // otherwise the checks on the share update will fail due to the original node not being available in the new user scope
+                    $this->userMountCache->clear();
+                    // The share is already transferred.
+                    $progress->advance();
+                    if ($move) {
+                        continue;
+                    }
+                    $share->setTarget($shareTarget);
+                    $this->shareManager->moveShare($share, $destinationUid);
+                    continue;
+                }
+            } catch (NotFoundException $e) {
+                $output->writeln('<error>Share with id ' . $share->getId() . ' points at deleted file, skipping</error>');
+            } catch (\Throwable $e) {
+                $output->writeln('<error>Could not restore share with id ' . $share->getId() . ':' . $e->getTraceAsString() . '</error>');
+            }
+            $progress->advance();
+        }
+        $progress->finish();
+        $output->writeln('');
+    }
 }

Please login to merge, or discard this patch.

apps/files/lib/Controller/ApiController.php 1 patch

Indentation +405 added lines, -405 removed lines patch added patch discarded remove patch

@@ -53,409 +53,409 @@
 block discarded – undo
  * @package OCA\Files\Controller
  */
 class ApiController extends Controller {
-	public function __construct(
-		string $appName,
-		IRequest $request,
-		private IUserSession $userSession,
-		private TagService $tagService,
-		private IPreview $previewManager,
-		private IManager $shareManager,
-		private IConfig $config,
-		private ?Folder $userFolder,
-		private UserConfig $userConfig,
-		private ViewConfig $viewConfig,
-		private IL10N $l10n,
-		private IRootFolder $rootFolder,
-		private LoggerInterface $logger,
-	) {
-		parent::__construct($appName, $request);
-	}
-
-	/**
-	 * Gets a thumbnail of the specified file
-	 *
-	 * @since API version 1.0
-	 * @deprecated 32.0.0 Use the preview endpoint provided by core instead
-	 *
-	 * @param int $x Width of the thumbnail
-	 * @param int $y Height of the thumbnail
-	 * @param string $file URL-encoded filename
-	 * @return FileDisplayResponse<Http::STATUS_OK, array{Content-Type: string}>|DataResponse<Http::STATUS_BAD_REQUEST|Http::STATUS_NOT_FOUND, array{message?: string}, array{}>
-	 *
-	 * 200: Thumbnail returned
-	 * 400: Getting thumbnail is not possible
-	 * 404: File not found
-	 */
-	#[NoAdminRequired]
-	#[NoCSRFRequired]
-	#[StrictCookiesRequired]
-	#[OpenAPI(scope: OpenAPI::SCOPE_DEFAULT)]
-	public function getThumbnail($x, $y, $file) {
-		if ($x < 1 || $y < 1) {
-			return new DataResponse(['message' => 'Requested size must be numeric and a positive value.'], Http::STATUS_BAD_REQUEST);
-		}
-
-		try {
-			$file = $this->userFolder?->get($file);
-			if ($file === null
-				|| !($file instanceof File)
-				|| ($file->getId() <= 0)
-			) {
-				throw new NotFoundException();
-			}
-
-			// Validate the user is allowed to download the file (preview is some kind of download)
-			/** @var ISharedStorage $storage */
-			$storage = $file->getStorage();
-			if ($storage->instanceOfStorage(ISharedStorage::class)) {
-				/** @var IShare $share */
-				$share = $storage->getShare();
-				if (!$share->canSeeContent()) {
-					throw new NotFoundException();
-				}
-			}
-
-			$preview = $this->previewManager->getPreview($file, $x, $y, true);
-
-			return new FileDisplayResponse($preview, Http::STATUS_OK, ['Content-Type' => $preview->getMimeType()]);
-		} catch (NotFoundException|NotPermittedException|InvalidPathException) {
-			return new DataResponse(['message' => 'File not found.'], Http::STATUS_NOT_FOUND);
-		} catch (\Exception $e) {
-			return new DataResponse([], Http::STATUS_BAD_REQUEST);
-		}
-	}
-
-	/**
-	 * Updates the info of the specified file path
-	 * The passed tags are absolute, which means they will
-	 * replace the actual tag selection.
-	 *
-	 * @param string $path path
-	 * @param array|string $tags array of tags
-	 * @return DataResponse
-	 */
-	#[NoAdminRequired]
-	public function updateFileTags($path, $tags = null) {
-		$result = [];
-		// if tags specified or empty array, update tags
-		if (!is_null($tags)) {
-			try {
-				$this->tagService->updateFileTags($path, $tags);
-			} catch (NotFoundException $e) {
-				return new DataResponse([
-					'message' => $e->getMessage()
-				], Http::STATUS_NOT_FOUND);
-			} catch (StorageNotAvailableException $e) {
-				return new DataResponse([
-					'message' => $e->getMessage()
-				], Http::STATUS_SERVICE_UNAVAILABLE);
-			} catch (\Exception $e) {
-				return new DataResponse([
-					'message' => $e->getMessage()
-				], Http::STATUS_NOT_FOUND);
-			}
-			$result['tags'] = $tags;
-		}
-		return new DataResponse($result);
-	}
-
-	/**
-	 * @param \OCP\Files\Node[] $nodes
-	 * @return array
-	 */
-	private function formatNodes(array $nodes) {
-		$shareTypesForNodes = $this->getShareTypesForNodes($nodes);
-		return array_values(array_map(function (Node $node) use ($shareTypesForNodes) {
-			$shareTypes = $shareTypesForNodes[$node->getId()] ?? [];
-			$file = Helper::formatFileInfo($node->getFileInfo());
-			$file['hasPreview'] = $this->previewManager->isAvailable($node);
-			$parts = explode('/', dirname($node->getPath()), 4);
-			if (isset($parts[3])) {
-				$file['path'] = '/' . $parts[3];
-			} else {
-				$file['path'] = '/';
-			}
-			if (!empty($shareTypes)) {
-				$file['shareTypes'] = $shareTypes;
-			}
-			return $file;
-		}, $nodes));
-	}
-
-	/**
-	 * Get the share types for each node
-	 *
-	 * @param \OCP\Files\Node[] $nodes
-	 * @return array<int, int[]> list of share types for each fileid
-	 */
-	private function getShareTypesForNodes(array $nodes): array {
-		$userId = $this->userSession->getUser()->getUID();
-		$requestedShareTypes = [
-			IShare::TYPE_USER,
-			IShare::TYPE_GROUP,
-			IShare::TYPE_LINK,
-			IShare::TYPE_REMOTE,
-			IShare::TYPE_EMAIL,
-			IShare::TYPE_ROOM,
-			IShare::TYPE_DECK,
-		];
-		$shareTypes = [];
-
-		$nodeIds = array_map(function (Node $node) {
-			return $node->getId();
-		}, $nodes);
-
-		foreach ($requestedShareTypes as $shareType) {
-			$nodesLeft = array_combine($nodeIds, array_fill(0, count($nodeIds), true));
-			$offset = 0;
-
-			// fetch shares until we've either found shares for all nodes or there are no more shares left
-			while (count($nodesLeft) > 0) {
-				$shares = $this->shareManager->getSharesBy($userId, $shareType, null, false, 100, $offset);
-				foreach ($shares as $share) {
-					$fileId = $share->getNodeId();
-					if (isset($nodesLeft[$fileId])) {
-						if (!isset($shareTypes[$fileId])) {
-							$shareTypes[$fileId] = [];
-						}
-						$shareTypes[$fileId][] = $shareType;
-						unset($nodesLeft[$fileId]);
-					}
-				}
-
-				if (count($shares) < 100) {
-					break;
-				} else {
-					$offset += count($shares);
-				}
-			}
-		}
-		return $shareTypes;
-	}
-
-	/**
-	 * Returns a list of recently modified files.
-	 *
-	 * @return DataResponse
-	 */
-	#[NoAdminRequired]
-	public function getRecentFiles() {
-		$nodes = $this->userFolder->getRecent(100);
-		$files = $this->formatNodes($nodes);
-		return new DataResponse(['files' => $files]);
-	}
-
-	/**
-	 * @param \OCP\Files\Node[] $nodes
-	 * @param int $depth The depth to traverse into the contents of each node
-	 */
-	private function getChildren(array $nodes, int $depth = 1, int $currentDepth = 0): array {
-		if ($currentDepth >= $depth) {
-			return [];
-		}
-
-		$children = [];
-		foreach ($nodes as $node) {
-			if (!($node instanceof Folder)) {
-				continue;
-			}
-
-			$basename = basename($node->getPath());
-			$entry = [
-				'id' => $node->getId(),
-				'basename' => $basename,
-				'children' => $this->getChildren($node->getDirectoryListing(), $depth, $currentDepth + 1),
-			];
-			$displayName = $node->getName();
-			if ($basename !== $displayName) {
-				$entry['displayName'] = $displayName;
-			}
-			$children[] = $entry;
-		}
-		return $children;
-	}
-
-	/**
-	 * Returns the folder tree of the user
-	 *
-	 * @param string $path The path relative to the user folder
-	 * @param int $depth The depth of the tree
-	 *
-	 * @return JSONResponse<Http::STATUS_OK, FilesFolderTree, array{}>|JSONResponse<Http::STATUS_UNAUTHORIZED|Http::STATUS_BAD_REQUEST|Http::STATUS_NOT_FOUND, array{message: string}, array{}>
-	 *
-	 * 200: Folder tree returned successfully
-	 * 400: Invalid folder path
-	 * 401: Unauthorized
-	 * 404: Folder not found
-	 */
-	#[NoAdminRequired]
-	#[ApiRoute(verb: 'GET', url: '/api/v1/folder-tree')]
-	#[OpenAPI(scope: OpenAPI::SCOPE_DEFAULT)]
-	public function getFolderTree(string $path = '/', int $depth = 1): JSONResponse {
-		$user = $this->userSession->getUser();
-		if (!($user instanceof IUser)) {
-			return new JSONResponse([
-				'message' => $this->l10n->t('Failed to authorize'),
-			], Http::STATUS_UNAUTHORIZED);
-		}
-		try {
-			$userFolder = $this->rootFolder->getUserFolder($user->getUID());
-			$userFolderPath = $userFolder->getPath();
-			$fullPath = implode('/', [$userFolderPath, trim($path, '/')]);
-			$node = $this->rootFolder->get($fullPath);
-			if (!($node instanceof Folder)) {
-				return new JSONResponse([
-					'message' => $this->l10n->t('Invalid folder path'),
-				], Http::STATUS_BAD_REQUEST);
-			}
-			$nodes = $node->getDirectoryListing();
-			$tree = $this->getChildren($nodes, $depth);
-		} catch (NotFoundException $e) {
-			return new JSONResponse([
-				'message' => $this->l10n->t('Folder not found'),
-			], Http::STATUS_NOT_FOUND);
-		} catch (Throwable $th) {
-			$this->logger->error($th->getMessage(), ['exception' => $th]);
-			$tree = [];
-		}
-		return new JSONResponse($tree);
-	}
-
-	/**
-	 * Returns the current logged-in user's storage stats.
-	 *
-	 * @param ?string $dir the directory to get the storage stats from
-	 * @return JSONResponse
-	 */
-	#[NoAdminRequired]
-	public function getStorageStats($dir = '/'): JSONResponse {
-		$storageInfo = \OC_Helper::getStorageInfo($dir ?: '/');
-		$response = new JSONResponse(['message' => 'ok', 'data' => $storageInfo]);
-		$response->cacheFor(5 * 60);
-		return $response;
-	}
-
-	/**
-	 * Set a user view config
-	 *
-	 * @param string $view
-	 * @param string $key
-	 * @param string|bool $value
-	 * @return JSONResponse
-	 */
-	#[NoAdminRequired]
-	public function setViewConfig(string $view, string $key, $value): JSONResponse {
-		try {
-			$this->viewConfig->setConfig($view, $key, (string)$value);
-		} catch (\InvalidArgumentException $e) {
-			return new JSONResponse(['message' => $e->getMessage()], Http::STATUS_BAD_REQUEST);
-		}
-
-		return new JSONResponse(['message' => 'ok', 'data' => $this->viewConfig->getConfig($view)]);
-	}
-
-
-	/**
-	 * Get the user view config
-	 *
-	 * @return JSONResponse
-	 */
-	#[NoAdminRequired]
-	public function getViewConfigs(): JSONResponse {
-		return new JSONResponse(['message' => 'ok', 'data' => $this->viewConfig->getConfigs()]);
-	}
-
-	/**
-	 * Set a user config
-	 *
-	 * @param string $key
-	 * @param string|bool $value
-	 * @return JSONResponse
-	 */
-	#[NoAdminRequired]
-	public function setConfig(string $key, $value): JSONResponse {
-		try {
-			$this->userConfig->setConfig($key, (string)$value);
-		} catch (\InvalidArgumentException $e) {
-			return new JSONResponse(['message' => $e->getMessage()], Http::STATUS_BAD_REQUEST);
-		}
-
-		return new JSONResponse(['message' => 'ok', 'data' => ['key' => $key, 'value' => $value]]);
-	}
-
-
-	/**
-	 * Get the user config
-	 *
-	 * @return JSONResponse
-	 */
-	#[NoAdminRequired]
-	public function getConfigs(): JSONResponse {
-		return new JSONResponse(['message' => 'ok', 'data' => $this->userConfig->getConfigs()]);
-	}
-
-	/**
-	 * Toggle default for showing/hiding hidden files
-	 *
-	 * @param bool $value
-	 * @return Response
-	 * @throws PreConditionNotMetException
-	 */
-	#[NoAdminRequired]
-	public function showHiddenFiles(bool $value): Response {
-		$this->config->setUserValue($this->userSession->getUser()->getUID(), 'files', 'show_hidden', $value ? '1' : '0');
-		return new Response();
-	}
-
-	/**
-	 * Toggle default for cropping preview images
-	 *
-	 * @param bool $value
-	 * @return Response
-	 * @throws PreConditionNotMetException
-	 */
-	#[NoAdminRequired]
-	public function cropImagePreviews(bool $value): Response {
-		$this->config->setUserValue($this->userSession->getUser()->getUID(), 'files', 'crop_image_previews', $value ? '1' : '0');
-		return new Response();
-	}
-
-	/**
-	 * Toggle default for files grid view
-	 *
-	 * @param bool $show
-	 * @return Response
-	 * @throws PreConditionNotMetException
-	 */
-	#[NoAdminRequired]
-	public function showGridView(bool $show): Response {
-		$this->config->setUserValue($this->userSession->getUser()->getUID(), 'files', 'show_grid', $show ? '1' : '0');
-		return new Response();
-	}
-
-	/**
-	 * Get default settings for the grid view
-	 */
-	#[NoAdminRequired]
-	public function getGridView() {
-		$status = $this->config->getUserValue($this->userSession->getUser()->getUID(), 'files', 'show_grid', '0') === '1';
-		return new JSONResponse(['gridview' => $status]);
-	}
-
-	#[PublicPage]
-	#[NoCSRFRequired]
-	#[OpenAPI(scope: OpenAPI::SCOPE_IGNORE)]
-	public function serviceWorker(): StreamResponse {
-		$response = new StreamResponse(__DIR__ . '/../../../../dist/preview-service-worker.js');
-		$response->setHeaders([
-			'Content-Type' => 'application/javascript',
-			'Service-Worker-Allowed' => '/'
-		]);
-		$policy = new ContentSecurityPolicy();
-		$policy->addAllowedWorkerSrcDomain("'self'");
-		$policy->addAllowedScriptDomain("'self'");
-		$policy->addAllowedConnectDomain("'self'");
-		$response->setContentSecurityPolicy($policy);
-		return $response;
-	}
+    public function __construct(
+        string $appName,
+        IRequest $request,
+        private IUserSession $userSession,
+        private TagService $tagService,
+        private IPreview $previewManager,
+        private IManager $shareManager,
+        private IConfig $config,
+        private ?Folder $userFolder,
+        private UserConfig $userConfig,
+        private ViewConfig $viewConfig,
+        private IL10N $l10n,
+        private IRootFolder $rootFolder,
+        private LoggerInterface $logger,
+    ) {
+        parent::__construct($appName, $request);
+    }
+
+    /**
+     * Gets a thumbnail of the specified file
+     *
+     * @since API version 1.0
+     * @deprecated 32.0.0 Use the preview endpoint provided by core instead
+     *
+     * @param int $x Width of the thumbnail
+     * @param int $y Height of the thumbnail
+     * @param string $file URL-encoded filename
+     * @return FileDisplayResponse<Http::STATUS_OK, array{Content-Type: string}>|DataResponse<Http::STATUS_BAD_REQUEST|Http::STATUS_NOT_FOUND, array{message?: string}, array{}>
+     *
+     * 200: Thumbnail returned
+     * 400: Getting thumbnail is not possible
+     * 404: File not found
+     */
+    #[NoAdminRequired]
+    #[NoCSRFRequired]
+    #[StrictCookiesRequired]
+    #[OpenAPI(scope: OpenAPI::SCOPE_DEFAULT)]
+    public function getThumbnail($x, $y, $file) {
+        if ($x < 1 || $y < 1) {
+            return new DataResponse(['message' => 'Requested size must be numeric and a positive value.'], Http::STATUS_BAD_REQUEST);
+        }
+
+        try {
+            $file = $this->userFolder?->get($file);
+            if ($file === null
+                || !($file instanceof File)
+                || ($file->getId() <= 0)
+            ) {
+                throw new NotFoundException();
+            }
+
+            // Validate the user is allowed to download the file (preview is some kind of download)
+            /** @var ISharedStorage $storage */
+            $storage = $file->getStorage();
+            if ($storage->instanceOfStorage(ISharedStorage::class)) {
+                /** @var IShare $share */
+                $share = $storage->getShare();
+                if (!$share->canSeeContent()) {
+                    throw new NotFoundException();
+                }
+            }
+
+            $preview = $this->previewManager->getPreview($file, $x, $y, true);
+
+            return new FileDisplayResponse($preview, Http::STATUS_OK, ['Content-Type' => $preview->getMimeType()]);
+        } catch (NotFoundException|NotPermittedException|InvalidPathException) {
+            return new DataResponse(['message' => 'File not found.'], Http::STATUS_NOT_FOUND);
+        } catch (\Exception $e) {
+            return new DataResponse([], Http::STATUS_BAD_REQUEST);
+        }
+    }
+
+    /**
+     * Updates the info of the specified file path
+     * The passed tags are absolute, which means they will
+     * replace the actual tag selection.
+     *
+     * @param string $path path
+     * @param array|string $tags array of tags
+     * @return DataResponse
+     */
+    #[NoAdminRequired]
+    public function updateFileTags($path, $tags = null) {
+        $result = [];
+        // if tags specified or empty array, update tags
+        if (!is_null($tags)) {
+            try {
+                $this->tagService->updateFileTags($path, $tags);
+            } catch (NotFoundException $e) {
+                return new DataResponse([
+                    'message' => $e->getMessage()
+                ], Http::STATUS_NOT_FOUND);
+            } catch (StorageNotAvailableException $e) {
+                return new DataResponse([
+                    'message' => $e->getMessage()
+                ], Http::STATUS_SERVICE_UNAVAILABLE);
+            } catch (\Exception $e) {
+                return new DataResponse([
+                    'message' => $e->getMessage()
+                ], Http::STATUS_NOT_FOUND);
+            }
+            $result['tags'] = $tags;
+        }
+        return new DataResponse($result);
+    }
+
+    /**
+     * @param \OCP\Files\Node[] $nodes
+     * @return array
+     */
+    private function formatNodes(array $nodes) {
+        $shareTypesForNodes = $this->getShareTypesForNodes($nodes);
+        return array_values(array_map(function (Node $node) use ($shareTypesForNodes) {
+            $shareTypes = $shareTypesForNodes[$node->getId()] ?? [];
+            $file = Helper::formatFileInfo($node->getFileInfo());
+            $file['hasPreview'] = $this->previewManager->isAvailable($node);
+            $parts = explode('/', dirname($node->getPath()), 4);
+            if (isset($parts[3])) {
+                $file['path'] = '/' . $parts[3];
+            } else {
+                $file['path'] = '/';
+            }
+            if (!empty($shareTypes)) {
+                $file['shareTypes'] = $shareTypes;
+            }
+            return $file;
+        }, $nodes));
+    }
+
+    /**
+     * Get the share types for each node
+     *
+     * @param \OCP\Files\Node[] $nodes
+     * @return array<int, int[]> list of share types for each fileid
+     */
+    private function getShareTypesForNodes(array $nodes): array {
+        $userId = $this->userSession->getUser()->getUID();
+        $requestedShareTypes = [
+            IShare::TYPE_USER,
+            IShare::TYPE_GROUP,
+            IShare::TYPE_LINK,
+            IShare::TYPE_REMOTE,
+            IShare::TYPE_EMAIL,
+            IShare::TYPE_ROOM,
+            IShare::TYPE_DECK,
+        ];
+        $shareTypes = [];
+
+        $nodeIds = array_map(function (Node $node) {
+            return $node->getId();
+        }, $nodes);
+
+        foreach ($requestedShareTypes as $shareType) {
+            $nodesLeft = array_combine($nodeIds, array_fill(0, count($nodeIds), true));
+            $offset = 0;
+
+            // fetch shares until we've either found shares for all nodes or there are no more shares left
+            while (count($nodesLeft) > 0) {
+                $shares = $this->shareManager->getSharesBy($userId, $shareType, null, false, 100, $offset);
+                foreach ($shares as $share) {
+                    $fileId = $share->getNodeId();
+                    if (isset($nodesLeft[$fileId])) {
+                        if (!isset($shareTypes[$fileId])) {
+                            $shareTypes[$fileId] = [];
+                        }
+                        $shareTypes[$fileId][] = $shareType;
+                        unset($nodesLeft[$fileId]);
+                    }
+                }
+
+                if (count($shares) < 100) {
+                    break;
+                } else {
+                    $offset += count($shares);
+                }
+            }
+        }
+        return $shareTypes;
+    }
+
+    /**
+     * Returns a list of recently modified files.
+     *
+     * @return DataResponse
+     */
+    #[NoAdminRequired]
+    public function getRecentFiles() {
+        $nodes = $this->userFolder->getRecent(100);
+        $files = $this->formatNodes($nodes);
+        return new DataResponse(['files' => $files]);
+    }
+
+    /**
+     * @param \OCP\Files\Node[] $nodes
+     * @param int $depth The depth to traverse into the contents of each node
+     */
+    private function getChildren(array $nodes, int $depth = 1, int $currentDepth = 0): array {
+        if ($currentDepth >= $depth) {
+            return [];
+        }
+
+        $children = [];
+        foreach ($nodes as $node) {
+            if (!($node instanceof Folder)) {
+                continue;
+            }
+
+            $basename = basename($node->getPath());
+            $entry = [
+                'id' => $node->getId(),
+                'basename' => $basename,
+                'children' => $this->getChildren($node->getDirectoryListing(), $depth, $currentDepth + 1),
+            ];
+            $displayName = $node->getName();
+            if ($basename !== $displayName) {
+                $entry['displayName'] = $displayName;
+            }
+            $children[] = $entry;
+        }
+        return $children;
+    }
+
+    /**
+     * Returns the folder tree of the user
+     *
+     * @param string $path The path relative to the user folder
+     * @param int $depth The depth of the tree
+     *
+     * @return JSONResponse<Http::STATUS_OK, FilesFolderTree, array{}>|JSONResponse<Http::STATUS_UNAUTHORIZED|Http::STATUS_BAD_REQUEST|Http::STATUS_NOT_FOUND, array{message: string}, array{}>
+     *
+     * 200: Folder tree returned successfully
+     * 400: Invalid folder path
+     * 401: Unauthorized
+     * 404: Folder not found
+     */
+    #[NoAdminRequired]
+    #[ApiRoute(verb: 'GET', url: '/api/v1/folder-tree')]
+    #[OpenAPI(scope: OpenAPI::SCOPE_DEFAULT)]
+    public function getFolderTree(string $path = '/', int $depth = 1): JSONResponse {
+        $user = $this->userSession->getUser();
+        if (!($user instanceof IUser)) {
+            return new JSONResponse([
+                'message' => $this->l10n->t('Failed to authorize'),
+            ], Http::STATUS_UNAUTHORIZED);
+        }
+        try {
+            $userFolder = $this->rootFolder->getUserFolder($user->getUID());
+            $userFolderPath = $userFolder->getPath();
+            $fullPath = implode('/', [$userFolderPath, trim($path, '/')]);
+            $node = $this->rootFolder->get($fullPath);
+            if (!($node instanceof Folder)) {
+                return new JSONResponse([
+                    'message' => $this->l10n->t('Invalid folder path'),
+                ], Http::STATUS_BAD_REQUEST);
+            }
+            $nodes = $node->getDirectoryListing();
+            $tree = $this->getChildren($nodes, $depth);
+        } catch (NotFoundException $e) {
+            return new JSONResponse([
+                'message' => $this->l10n->t('Folder not found'),
+            ], Http::STATUS_NOT_FOUND);
+        } catch (Throwable $th) {
+            $this->logger->error($th->getMessage(), ['exception' => $th]);
+            $tree = [];
+        }
+        return new JSONResponse($tree);
+    }
+
+    /**
+     * Returns the current logged-in user's storage stats.
+     *
+     * @param ?string $dir the directory to get the storage stats from
+     * @return JSONResponse
+     */
+    #[NoAdminRequired]
+    public function getStorageStats($dir = '/'): JSONResponse {
+        $storageInfo = \OC_Helper::getStorageInfo($dir ?: '/');
+        $response = new JSONResponse(['message' => 'ok', 'data' => $storageInfo]);
+        $response->cacheFor(5 * 60);
+        return $response;
+    }
+
+    /**
+     * Set a user view config
+     *
+     * @param string $view
+     * @param string $key
+     * @param string|bool $value
+     * @return JSONResponse
+     */
+    #[NoAdminRequired]
+    public function setViewConfig(string $view, string $key, $value): JSONResponse {
+        try {
+            $this->viewConfig->setConfig($view, $key, (string)$value);
+        } catch (\InvalidArgumentException $e) {
+            return new JSONResponse(['message' => $e->getMessage()], Http::STATUS_BAD_REQUEST);
+        }
+
+        return new JSONResponse(['message' => 'ok', 'data' => $this->viewConfig->getConfig($view)]);
+    }
+
+
+    /**
+     * Get the user view config
+     *
+     * @return JSONResponse
+     */
+    #[NoAdminRequired]
+    public function getViewConfigs(): JSONResponse {
+        return new JSONResponse(['message' => 'ok', 'data' => $this->viewConfig->getConfigs()]);
+    }
+
+    /**
+     * Set a user config
+     *
+     * @param string $key
+     * @param string|bool $value
+     * @return JSONResponse
+     */
+    #[NoAdminRequired]
+    public function setConfig(string $key, $value): JSONResponse {
+        try {
+            $this->userConfig->setConfig($key, (string)$value);
+        } catch (\InvalidArgumentException $e) {
+            return new JSONResponse(['message' => $e->getMessage()], Http::STATUS_BAD_REQUEST);
+        }
+
+        return new JSONResponse(['message' => 'ok', 'data' => ['key' => $key, 'value' => $value]]);
+    }
+
+
+    /**
+     * Get the user config
+     *
+     * @return JSONResponse
+     */
+    #[NoAdminRequired]
+    public function getConfigs(): JSONResponse {
+        return new JSONResponse(['message' => 'ok', 'data' => $this->userConfig->getConfigs()]);
+    }
+
+    /**
+     * Toggle default for showing/hiding hidden files
+     *
+     * @param bool $value
+     * @return Response
+     * @throws PreConditionNotMetException
+     */
+    #[NoAdminRequired]
+    public function showHiddenFiles(bool $value): Response {
+        $this->config->setUserValue($this->userSession->getUser()->getUID(), 'files', 'show_hidden', $value ? '1' : '0');
+        return new Response();
+    }
+
+    /**
+     * Toggle default for cropping preview images
+     *
+     * @param bool $value
+     * @return Response
+     * @throws PreConditionNotMetException
+     */
+    #[NoAdminRequired]
+    public function cropImagePreviews(bool $value): Response {
+        $this->config->setUserValue($this->userSession->getUser()->getUID(), 'files', 'crop_image_previews', $value ? '1' : '0');
+        return new Response();
+    }
+
+    /**
+     * Toggle default for files grid view
+     *
+     * @param bool $show
+     * @return Response
+     * @throws PreConditionNotMetException
+     */
+    #[NoAdminRequired]
+    public function showGridView(bool $show): Response {
+        $this->config->setUserValue($this->userSession->getUser()->getUID(), 'files', 'show_grid', $show ? '1' : '0');
+        return new Response();
+    }
+
+    /**
+     * Get default settings for the grid view
+     */
+    #[NoAdminRequired]
+    public function getGridView() {
+        $status = $this->config->getUserValue($this->userSession->getUser()->getUID(), 'files', 'show_grid', '0') === '1';
+        return new JSONResponse(['gridview' => $status]);
+    }
+
+    #[PublicPage]
+    #[NoCSRFRequired]
+    #[OpenAPI(scope: OpenAPI::SCOPE_IGNORE)]
+    public function serviceWorker(): StreamResponse {
+        $response = new StreamResponse(__DIR__ . '/../../../../dist/preview-service-worker.js');
+        $response->setHeaders([
+            'Content-Type' => 'application/javascript',
+            'Service-Worker-Allowed' => '/'
+        ]);
+        $policy = new ContentSecurityPolicy();
+        $policy->addAllowedWorkerSrcDomain("'self'");
+        $policy->addAllowedScriptDomain("'self'");
+        $policy->addAllowedConnectDomain("'self'");
+        $response->setContentSecurityPolicy($policy);
+        return $response;
+    }
 }

Please login to merge, or discard this patch.

apps/files_sharing/lib/MountProvider.php 1 patch

Indentation +326 added lines, -326 removed lines patch added patch discarded remove patch

@@ -27,330 +27,330 @@
 block discarded – undo
 use function count;
 
 class MountProvider implements IMountProvider {
-	/**
-	 * @param IConfig $config
-	 * @param IManager $shareManager
-	 * @param LoggerInterface $logger
-	 */
-	public function __construct(
-		protected IConfig $config,
-		protected IManager $shareManager,
-		protected LoggerInterface $logger,
-		protected IEventDispatcher $eventDispatcher,
-		protected ICacheFactory $cacheFactory,
-		protected IMountManager $mountManager,
-	) {
-	}
-
-	/**
-	 * Get all mountpoints applicable for the user and check for shares where we need to update the etags
-	 *
-	 * @param IUser $user
-	 * @param IStorageFactory $loader
-	 * @return IMountPoint[]
-	 */
-	public function getMountsForUser(IUser $user, IStorageFactory $loader) {
-		$userId = $user->getUID();
-		$shares = array_merge(
-			$this->shareManager->getSharedWith($userId, IShare::TYPE_USER, null, -1),
-			$this->shareManager->getSharedWith($userId, IShare::TYPE_GROUP, null, -1),
-			$this->shareManager->getSharedWith($userId, IShare::TYPE_CIRCLE, null, -1),
-			$this->shareManager->getSharedWith($userId, IShare::TYPE_ROOM, null, -1),
-			$this->shareManager->getSharedWith($userId, IShare::TYPE_DECK, null, -1),
-		);
-
-		$shares = $this->filterShares($shares, $userId);
-		$superShares = $this->buildSuperShares($shares, $user);
-
-		return $this->getMountsFromSuperShares($userId, $superShares, $loader, $user);
-	}
-
-	/**
-	 * Groups shares by path (nodeId) and target path
-	 *
-	 * @param IShare[] $shares
-	 * @return IShare[][] array of grouped shares, each element in the
-	 *                    array is a group which itself is an array of shares
-	 */
-	private function groupShares(array $shares) {
-		$tmp = [];
-
-		foreach ($shares as $share) {
-			$nodeId = $share->getNodeId();
-			if (!isset($tmp[$nodeId])) {
-				$tmp[$nodeId] = [];
-			}
-			$tmp[$nodeId][] = $share;
-		}
-
-		$result = [];
-		// sort by stime, the super share will be based on the least recent share
-		foreach ($tmp as &$tmp2) {
-			@usort($tmp2, function ($a, $b) {
-				$aTime = $a->getShareTime()->getTimestamp();
-				$bTime = $b->getShareTime()->getTimestamp();
-				if ($aTime === $bTime) {
-					return $a->getId() < $b->getId() ? -1 : 1;
-				}
-				return $aTime < $bTime ? -1 : 1;
-			});
-			$result[] = $tmp2;
-		}
-
-		return $result;
-	}
-
-	/**
-	 * Groups shares by node ID and builds a new share object (super share)
-	 * which represents a summarized version of all the shares in the group.
-	 *
-	 * The permissions and attributes of the super share are accumulated from
-	 * the shares in the group, forming the most permissive combination
-	 * possible.
-	 *
-	 * @param IShare[] $allShares
-	 * @param IUser $user user
-	 * @return list<array{IShare, array<IShare>}> Tuple of [superShare, groupedShares]
-	 */
-	private function buildSuperShares(array $allShares, IUser $user) {
-		$result = [];
-
-		$groupedShares = $this->groupShares($allShares);
-
-		foreach ($groupedShares as $shares) {
-			if (count($shares) === 0) {
-				continue;
-			}
-
-			$superShare = $this->shareManager->newShare();
-
-			// compute super share based on first entry of the group
-			$superShare->setId($shares[0]->getId())
-				->setShareOwner($shares[0]->getShareOwner())
-				->setNodeId($shares[0]->getNodeId())
-				->setShareType($shares[0]->getShareType())
-				->setTarget($shares[0]->getTarget());
-
-			$this->combineNotes($shares, $superShare);
-
-			// use most permissive permissions
-			// this covers the case where there are multiple shares for the same
-			// file e.g. from different groups and different permissions
-			$superPermissions = 0;
-			$superAttributes = $this->shareManager->newShare()->newAttributes();
-			$status = IShare::STATUS_PENDING;
-			foreach ($shares as $share) {
-				$status = max($status, $share->getStatus());
-				// update permissions
-				$superPermissions |= $share->getPermissions();
-
-				// update share permission attributes
-				$attributes = $share->getAttributes();
-				if ($attributes !== null) {
-					$this->mergeAttributes($attributes, $superAttributes);
-				}
-
-				$this->adjustTarget($share, $superShare, $user);
-				if ($share->getNodeCacheEntry() !== null) {
-					$superShare->setNodeCacheEntry($share->getNodeCacheEntry());
-				}
-			}
-
-			$superShare->setPermissions($superPermissions);
-			$superShare->setStatus($status);
-			$superShare->setAttributes($superAttributes);
-
-			$result[] = [$superShare, $shares];
-		}
-
-		return $result;
-	}
-
-	/**
-	 * Combines $attributes into the most permissive set of attributes and
-	 * sets them in $superAttributes.
-	 */
-	private function mergeAttributes(
-		IAttributes $attributes,
-		IAttributes $superAttributes,
-	): void {
-		foreach ($attributes->toArray() as $attribute) {
-			if ($superAttributes->getAttribute(
-				$attribute['scope'],
-				$attribute['key']
-			) === true) {
-				// if super share attribute is already enabled, it is most permissive
-				continue;
-			}
-			// update super share attributes with subshare attribute
-			$superAttributes->setAttribute(
-				$attribute['scope'],
-				$attribute['key'],
-				$attribute['value']
-			);
-		}
-	}
-
-	/**
-	 * Gather notes from all the shares. Since these are readily available
-	 * here, storing them enables the DAV FilesPlugin to avoid executing many
-	 * DB queries to retrieve the same information.
-	 *
-	 * @param array<IShare> $shares
-	 * @param IShare $superShare
-	 * @return void
-	 */
-	private function combineNotes(
-		array &$shares,
-		IShare $superShare,
-	): void {
-		$allNotes = implode(
-			"\n",
-			array_map(static fn ($sh) => $sh->getNote(), $shares)
-		);
-		$superShare->setNote($allNotes);
-	}
-
-	/**
-	 * Adjusts the target in $share for DB consistency, if needed.
-	 */
-	private function adjustTarget(
-		IShare $share,
-		IShare $superShare,
-		IUser $user,
-	): void {
-		if ($share->getTarget() === $superShare->getTarget()) {
-			return;
-		}
-
-		$share->setTarget($superShare->getTarget());
-		try {
-			$this->shareManager->moveShare($share, $user->getUID());
-		} catch (InvalidArgumentException $e) {
-			// ignore as it is not important and we don't want to
-			// block FS setup
-
-			// the subsequent code anyway only uses the target of the
-			// super share
-
-			// such issue can usually happen when dealing with
-			// null groups which usually appear with group backend
-			// caching inconsistencies
-			$this->logger->debug(
-				'Could not adjust share target for share ' . $share->getId(
-				) . ' to make it consistent: ' . $e->getMessage(),
-				['app' => 'files_sharing']
-			);
-		}
-	}
-	/**
-	 * @param string $userId
-	 * @param array $superShares
-	 * @param IStorageFactory $loader
-	 * @param IUser $user
-	 * @return array
-	 * @throws Exception
-	 */
-	private function getMountsFromSuperShares(
-		string $userId,
-		array $superShares,
-		IStorageFactory $loader,
-		IUser $user,
-	): array {
-		$allMounts = $this->mountManager->getAll();
-		$mounts = [];
-		$view = new View('/' . $userId . '/files');
-		$ownerViews = [];
-		$sharingDisabledForUser
-			= $this->shareManager->sharingDisabledForUser($userId);
-		/** @var CappedMemoryCache<bool> $folderExistCache */
-		$foldersExistCache = new CappedMemoryCache();
-
-		$validShareCache
-			= $this->cacheFactory->createLocal('share-valid-mountpoint-max');
-		$maxValidatedShare = $validShareCache->get($userId) ?? 0;
-		$newMaxValidatedShare = $maxValidatedShare;
-
-		foreach ($superShares as $share) {
-			[$parentShare, $groupedShares] = $share;
-			try {
-				if ($parentShare->getStatus() !== IShare::STATUS_ACCEPTED
-					&& ($parentShare->getShareType() === IShare::TYPE_GROUP
-						|| $parentShare->getShareType() === IShare::TYPE_USERGROUP
-						|| $parentShare->getShareType() === IShare::TYPE_USER)
-				) {
-					continue;
-				}
-
-				$owner = $parentShare->getShareOwner();
-				if (!isset($ownerViews[$owner])) {
-					$ownerViews[$owner] = new View('/' . $owner . '/files');
-				}
-				$shareId = (int)$parentShare->getId();
-				$mount = new SharedMount(
-					'\OCA\Files_Sharing\SharedStorage',
-					$allMounts,
-					[
-						'user' => $userId,
-						// parent share
-						'superShare' => $parentShare,
-						// children/component of the superShare
-						'groupedShares' => $groupedShares,
-						'ownerView' => $ownerViews[$owner],
-						'sharingDisabledForUser' => $sharingDisabledForUser
-					],
-					$loader,
-					$view,
-					$foldersExistCache,
-					$this->eventDispatcher,
-					$user,
-					$shareId <= $maxValidatedShare,
-				);
-
-				$newMaxValidatedShare = max($shareId, $newMaxValidatedShare);
-
-				$event = new ShareMountedEvent($mount);
-				$this->eventDispatcher->dispatchTyped($event);
-
-				$mounts[$mount->getMountPoint()]
-				= $allMounts[$mount->getMountPoint()] = $mount;
-				foreach ($event->getAdditionalMounts() as $additionalMount) {
-					$allMounts[$additionalMount->getMountPoint()]
-					= $mounts[$additionalMount->getMountPoint()]
-						= $additionalMount;
-				}
-			} catch (Exception $e) {
-				$this->logger->error(
-					'Error while trying to create shared mount',
-					[
-						'app' => 'files_sharing',
-						'exception' => $e,
-					],
-				);
-			}
-		}
-
-		$validShareCache->set($userId, $newMaxValidatedShare, 24 * 60 * 60);
-
-		// array_filter removes the null values from the array
-		return array_values(array_filter($mounts));
-	}
-
-	/**
-	 * Filters out shares owned or shared by the user and ones for which the
-	 * user has no permissions.
-	 *
-	 * @param IShare[] $shares
-	 * @return IShare[]
-	 */
-	private function filterShares(array $shares, string $userId): array {
-		return array_filter(
-			$shares,
-			static function (IShare $share) use ($userId) {
-				return $share->getPermissions() > 0
-					&& $share->getShareOwner() !== $userId
-					&& $share->getSharedBy() !== $userId;
-			}
-		);
-	}
+    /**
+     * @param IConfig $config
+     * @param IManager $shareManager
+     * @param LoggerInterface $logger
+     */
+    public function __construct(
+        protected IConfig $config,
+        protected IManager $shareManager,
+        protected LoggerInterface $logger,
+        protected IEventDispatcher $eventDispatcher,
+        protected ICacheFactory $cacheFactory,
+        protected IMountManager $mountManager,
+    ) {
+    }
+
+    /**
+     * Get all mountpoints applicable for the user and check for shares where we need to update the etags
+     *
+     * @param IUser $user
+     * @param IStorageFactory $loader
+     * @return IMountPoint[]
+     */
+    public function getMountsForUser(IUser $user, IStorageFactory $loader) {
+        $userId = $user->getUID();
+        $shares = array_merge(
+            $this->shareManager->getSharedWith($userId, IShare::TYPE_USER, null, -1),
+            $this->shareManager->getSharedWith($userId, IShare::TYPE_GROUP, null, -1),
+            $this->shareManager->getSharedWith($userId, IShare::TYPE_CIRCLE, null, -1),
+            $this->shareManager->getSharedWith($userId, IShare::TYPE_ROOM, null, -1),
+            $this->shareManager->getSharedWith($userId, IShare::TYPE_DECK, null, -1),
+        );
+
+        $shares = $this->filterShares($shares, $userId);
+        $superShares = $this->buildSuperShares($shares, $user);
+
+        return $this->getMountsFromSuperShares($userId, $superShares, $loader, $user);
+    }
+
+    /**
+     * Groups shares by path (nodeId) and target path
+     *
+     * @param IShare[] $shares
+     * @return IShare[][] array of grouped shares, each element in the
+     *                    array is a group which itself is an array of shares
+     */
+    private function groupShares(array $shares) {
+        $tmp = [];
+
+        foreach ($shares as $share) {
+            $nodeId = $share->getNodeId();
+            if (!isset($tmp[$nodeId])) {
+                $tmp[$nodeId] = [];
+            }
+            $tmp[$nodeId][] = $share;
+        }
+
+        $result = [];
+        // sort by stime, the super share will be based on the least recent share
+        foreach ($tmp as &$tmp2) {
+            @usort($tmp2, function ($a, $b) {
+                $aTime = $a->getShareTime()->getTimestamp();
+                $bTime = $b->getShareTime()->getTimestamp();
+                if ($aTime === $bTime) {
+                    return $a->getId() < $b->getId() ? -1 : 1;
+                }
+                return $aTime < $bTime ? -1 : 1;
+            });
+            $result[] = $tmp2;
+        }
+
+        return $result;
+    }
+
+    /**
+     * Groups shares by node ID and builds a new share object (super share)
+     * which represents a summarized version of all the shares in the group.
+     *
+     * The permissions and attributes of the super share are accumulated from
+     * the shares in the group, forming the most permissive combination
+     * possible.
+     *
+     * @param IShare[] $allShares
+     * @param IUser $user user
+     * @return list<array{IShare, array<IShare>}> Tuple of [superShare, groupedShares]
+     */
+    private function buildSuperShares(array $allShares, IUser $user) {
+        $result = [];
+
+        $groupedShares = $this->groupShares($allShares);
+
+        foreach ($groupedShares as $shares) {
+            if (count($shares) === 0) {
+                continue;
+            }
+
+            $superShare = $this->shareManager->newShare();
+
+            // compute super share based on first entry of the group
+            $superShare->setId($shares[0]->getId())
+                ->setShareOwner($shares[0]->getShareOwner())
+                ->setNodeId($shares[0]->getNodeId())
+                ->setShareType($shares[0]->getShareType())
+                ->setTarget($shares[0]->getTarget());
+
+            $this->combineNotes($shares, $superShare);
+
+            // use most permissive permissions
+            // this covers the case where there are multiple shares for the same
+            // file e.g. from different groups and different permissions
+            $superPermissions = 0;
+            $superAttributes = $this->shareManager->newShare()->newAttributes();
+            $status = IShare::STATUS_PENDING;
+            foreach ($shares as $share) {
+                $status = max($status, $share->getStatus());
+                // update permissions
+                $superPermissions |= $share->getPermissions();
+
+                // update share permission attributes
+                $attributes = $share->getAttributes();
+                if ($attributes !== null) {
+                    $this->mergeAttributes($attributes, $superAttributes);
+                }
+
+                $this->adjustTarget($share, $superShare, $user);
+                if ($share->getNodeCacheEntry() !== null) {
+                    $superShare->setNodeCacheEntry($share->getNodeCacheEntry());
+                }
+            }
+
+            $superShare->setPermissions($superPermissions);
+            $superShare->setStatus($status);
+            $superShare->setAttributes($superAttributes);
+
+            $result[] = [$superShare, $shares];
+        }
+
+        return $result;
+    }
+
+    /**
+     * Combines $attributes into the most permissive set of attributes and
+     * sets them in $superAttributes.
+     */
+    private function mergeAttributes(
+        IAttributes $attributes,
+        IAttributes $superAttributes,
+    ): void {
+        foreach ($attributes->toArray() as $attribute) {
+            if ($superAttributes->getAttribute(
+                $attribute['scope'],
+                $attribute['key']
+            ) === true) {
+                // if super share attribute is already enabled, it is most permissive
+                continue;
+            }
+            // update super share attributes with subshare attribute
+            $superAttributes->setAttribute(
+                $attribute['scope'],
+                $attribute['key'],
+                $attribute['value']
+            );
+        }
+    }
+
+    /**
+     * Gather notes from all the shares. Since these are readily available
+     * here, storing them enables the DAV FilesPlugin to avoid executing many
+     * DB queries to retrieve the same information.
+     *
+     * @param array<IShare> $shares
+     * @param IShare $superShare
+     * @return void
+     */
+    private function combineNotes(
+        array &$shares,
+        IShare $superShare,
+    ): void {
+        $allNotes = implode(
+            "\n",
+            array_map(static fn ($sh) => $sh->getNote(), $shares)
+        );
+        $superShare->setNote($allNotes);
+    }
+
+    /**
+     * Adjusts the target in $share for DB consistency, if needed.
+     */
+    private function adjustTarget(
+        IShare $share,
+        IShare $superShare,
+        IUser $user,
+    ): void {
+        if ($share->getTarget() === $superShare->getTarget()) {
+            return;
+        }
+
+        $share->setTarget($superShare->getTarget());
+        try {
+            $this->shareManager->moveShare($share, $user->getUID());
+        } catch (InvalidArgumentException $e) {
+            // ignore as it is not important and we don't want to
+            // block FS setup
+
+            // the subsequent code anyway only uses the target of the
+            // super share
+
+            // such issue can usually happen when dealing with
+            // null groups which usually appear with group backend
+            // caching inconsistencies
+            $this->logger->debug(
+                'Could not adjust share target for share ' . $share->getId(
+                ) . ' to make it consistent: ' . $e->getMessage(),
+                ['app' => 'files_sharing']
+            );
+        }
+    }
+    /**
+     * @param string $userId
+     * @param array $superShares
+     * @param IStorageFactory $loader
+     * @param IUser $user
+     * @return array
+     * @throws Exception
+     */
+    private function getMountsFromSuperShares(
+        string $userId,
+        array $superShares,
+        IStorageFactory $loader,
+        IUser $user,
+    ): array {
+        $allMounts = $this->mountManager->getAll();
+        $mounts = [];
+        $view = new View('/' . $userId . '/files');
+        $ownerViews = [];
+        $sharingDisabledForUser
+            = $this->shareManager->sharingDisabledForUser($userId);
+        /** @var CappedMemoryCache<bool> $folderExistCache */
+        $foldersExistCache = new CappedMemoryCache();
+
+        $validShareCache
+            = $this->cacheFactory->createLocal('share-valid-mountpoint-max');
+        $maxValidatedShare = $validShareCache->get($userId) ?? 0;
+        $newMaxValidatedShare = $maxValidatedShare;
+
+        foreach ($superShares as $share) {
+            [$parentShare, $groupedShares] = $share;
+            try {
+                if ($parentShare->getStatus() !== IShare::STATUS_ACCEPTED
+                    && ($parentShare->getShareType() === IShare::TYPE_GROUP
+                        || $parentShare->getShareType() === IShare::TYPE_USERGROUP
+                        || $parentShare->getShareType() === IShare::TYPE_USER)
+                ) {
+                    continue;
+                }
+
+                $owner = $parentShare->getShareOwner();
+                if (!isset($ownerViews[$owner])) {
+                    $ownerViews[$owner] = new View('/' . $owner . '/files');
+                }
+                $shareId = (int)$parentShare->getId();
+                $mount = new SharedMount(
+                    '\OCA\Files_Sharing\SharedStorage',
+                    $allMounts,
+                    [
+                        'user' => $userId,
+                        // parent share
+                        'superShare' => $parentShare,
+                        // children/component of the superShare
+                        'groupedShares' => $groupedShares,
+                        'ownerView' => $ownerViews[$owner],
+                        'sharingDisabledForUser' => $sharingDisabledForUser
+                    ],
+                    $loader,
+                    $view,
+                    $foldersExistCache,
+                    $this->eventDispatcher,
+                    $user,
+                    $shareId <= $maxValidatedShare,
+                );
+
+                $newMaxValidatedShare = max($shareId, $newMaxValidatedShare);
+
+                $event = new ShareMountedEvent($mount);
+                $this->eventDispatcher->dispatchTyped($event);
+
+                $mounts[$mount->getMountPoint()]
+                = $allMounts[$mount->getMountPoint()] = $mount;
+                foreach ($event->getAdditionalMounts() as $additionalMount) {
+                    $allMounts[$additionalMount->getMountPoint()]
+                    = $mounts[$additionalMount->getMountPoint()]
+                        = $additionalMount;
+                }
+            } catch (Exception $e) {
+                $this->logger->error(
+                    'Error while trying to create shared mount',
+                    [
+                        'app' => 'files_sharing',
+                        'exception' => $e,
+                    ],
+                );
+            }
+        }
+
+        $validShareCache->set($userId, $newMaxValidatedShare, 24 * 60 * 60);
+
+        // array_filter removes the null values from the array
+        return array_values(array_filter($mounts));
+    }
+
+    /**
+     * Filters out shares owned or shared by the user and ones for which the
+     * user has no permissions.
+     *
+     * @param IShare[] $shares
+     * @return IShare[]
+     */
+    private function filterShares(array $shares, string $userId): array {
+        return array_filter(
+            $shares,
+            static function (IShare $share) use ($userId) {
+                return $share->getPermissions() > 0
+                    && $share->getShareOwner() !== $userId
+                    && $share->getSharedBy() !== $userId;
+            }
+        );
+    }
 }

Please login to merge, or discard this patch.

apps/files_sharing/lib/Controller/ShareAPIController.php 2 patches

Indentation +2172 added lines, -2172 removed lines patch added patch discarded remove patch

@@ -77,2179 +77,2179 @@
 block discarded – undo
  */
 class ShareAPIController extends OCSController {
 
-	private ?Node $lockedNode = null;
-	private array $trustedServerCache = [];
-
-	/**
-	 * Share20OCS constructor.
-	 */
-	public function __construct(
-		string $appName,
-		IRequest $request,
-		private IManager $shareManager,
-		private IGroupManager $groupManager,
-		private IUserManager $userManager,
-		private IRootFolder $rootFolder,
-		private IURLGenerator $urlGenerator,
-		private IL10N $l,
-		private IConfig $config,
-		private IAppConfig $appConfig,
-		private IAppManager $appManager,
-		private ContainerInterface $serverContainer,
-		private IUserStatusManager $userStatusManager,
-		private IPreview $previewManager,
-		private IDateTimeZone $dateTimeZone,
-		private LoggerInterface $logger,
-		private IProviderFactory $factory,
-		private IMailer $mailer,
-		private ITagManager $tagManager,
-		private IEmailValidator $emailValidator,
-		private ?TrustedServers $trustedServers,
-		private ?string $userId = null,
-	) {
-		parent::__construct($appName, $request);
-	}
-
-	/**
-	 * Convert an IShare to an array for OCS output
-	 *
-	 * @param IShare $share
-	 * @param Node|null $recipientNode
-	 * @return Files_SharingShare
-	 * @throws NotFoundException In case the node can't be resolved.
-	 *
-	 * @suppress PhanUndeclaredClassMethod
-	 */
-	protected function formatShare(IShare $share, ?Node $recipientNode = null): array {
-		$sharedBy = $this->userManager->get($share->getSharedBy());
-		$shareOwner = $this->userManager->get($share->getShareOwner());
-
-		$isOwnShare = false;
-		if ($shareOwner !== null) {
-			$isOwnShare = $shareOwner->getUID() === $this->userId;
-		}
-
-		$result = [
-			'id' => $share->getId(),
-			'share_type' => $share->getShareType(),
-			'uid_owner' => $share->getSharedBy(),
-			'displayname_owner' => $sharedBy !== null ? $sharedBy->getDisplayName() : $share->getSharedBy(),
-			// recipient permissions
-			'permissions' => $share->getPermissions(),
-			// current user permissions on this share
-			'can_edit' => $this->canEditShare($share),
-			'can_delete' => $this->canDeleteShare($share),
-			'stime' => $share->getShareTime()->getTimestamp(),
-			'parent' => null,
-			'expiration' => null,
-			'token' => null,
-			'uid_file_owner' => $share->getShareOwner(),
-			'note' => $share->getNote(),
-			'label' => $share->getLabel(),
-			'displayname_file_owner' => $shareOwner !== null ? $shareOwner->getDisplayName() : $share->getShareOwner(),
-		];
-
-		$userFolder = $this->rootFolder->getUserFolder($this->userId);
-		if ($recipientNode) {
-			$node = $recipientNode;
-		} else {
-			$node = $userFolder->getFirstNodeById($share->getNodeId());
-			if (!$node) {
-				// fallback to guessing the path
-				$node = $userFolder->get($share->getTarget());
-				if ($node === null || $share->getTarget() === '') {
-					throw new NotFoundException();
-				}
-			}
-		}
-
-		$result['path'] = $userFolder->getRelativePath($node->getPath());
-		if ($node instanceof Folder) {
-			$result['item_type'] = 'folder';
-		} else {
-			$result['item_type'] = 'file';
-		}
-
-		// Get the original node permission if the share owner is the current user
-		if ($isOwnShare) {
-			$result['item_permissions'] = $node->getPermissions();
-		}
-
-		// If we're on the recipient side, the node permissions
-		// are bound to the share permissions. So we need to
-		// adjust the permissions to the share permissions if necessary.
-		if (!$isOwnShare) {
-			$result['item_permissions'] = $share->getPermissions();
-
-			// For some reason, single files share are forbidden to have the delete permission
-			// since we have custom methods to check those, let's adjust straight away.
-			// DAV permissions does not have that issue though.
-			if ($this->canDeleteShare($share) || $this->canDeleteShareFromSelf($share)) {
-				$result['item_permissions'] |= Constants::PERMISSION_DELETE;
-			}
-			if ($this->canEditShare($share)) {
-				$result['item_permissions'] |= Constants::PERMISSION_UPDATE;
-			}
-		}
-
-		// See MOUNT_ROOT_PROPERTYNAME dav property
-		$result['is-mount-root'] = $node->getInternalPath() === '';
-		$result['mount-type'] = $node->getMountPoint()->getMountType();
-
-		$result['mimetype'] = $node->getMimetype();
-		$result['has_preview'] = $this->previewManager->isAvailable($node);
-		$result['storage_id'] = $node->getStorage()->getId();
-		$result['storage'] = $node->getStorage()->getCache()->getNumericStorageId();
-		$result['item_source'] = $node->getId();
-		$result['file_source'] = $node->getId();
-		$result['file_parent'] = $node->getParent()->getId();
-		$result['file_target'] = $share->getTarget();
-		$result['item_size'] = $node->getSize();
-		$result['item_mtime'] = $node->getMTime();
-
-		if ($this->trustedServers !== null && in_array($share->getShareType(), [IShare::TYPE_REMOTE, IShare::TYPE_REMOTE_GROUP], true)) {
-			$result['is_trusted_server'] = false;
-			$sharedWith = $share->getSharedWith();
-			$remoteIdentifier = is_string($sharedWith) ? strrchr($sharedWith, '@') : false;
-			if ($remoteIdentifier !== false) {
-				$remote = substr($remoteIdentifier, 1);
-
-				if (isset($this->trustedServerCache[$remote])) {
-					$result['is_trusted_server'] = $this->trustedServerCache[$remote];
-				} else {
-					try {
-						$isTrusted = $this->trustedServers->isTrustedServer($remote);
-						$this->trustedServerCache[$remote] = $isTrusted;
-						$result['is_trusted_server'] = $isTrusted;
-					} catch (\Exception $e) {
-						// Server not found or other issue, we consider it not trusted
-						$this->trustedServerCache[$remote] = false;
-						$this->logger->error(
-							'Error checking if remote server is trusted (treating as untrusted): ' . $e->getMessage(),
-							['exception' => $e]
-						);
-					}
-				}
-			}
-		}
-
-		$expiration = $share->getExpirationDate();
-		if ($expiration !== null) {
-			$expiration->setTimezone($this->dateTimeZone->getTimeZone());
-			$result['expiration'] = $expiration->format('Y-m-d 00:00:00');
-		}
-
-		if ($share->getShareType() === IShare::TYPE_USER) {
-			$sharedWith = $this->userManager->get($share->getSharedWith());
-			$result['share_with'] = $share->getSharedWith();
-			$result['share_with_displayname'] = $sharedWith !== null ? $sharedWith->getDisplayName() : $share->getSharedWith();
-			$result['share_with_displayname_unique'] = $sharedWith !== null ? (
-				!empty($sharedWith->getSystemEMailAddress()) ? $sharedWith->getSystemEMailAddress() : $sharedWith->getUID()
-			) : $share->getSharedWith();
-
-			$userStatuses = $this->userStatusManager->getUserStatuses([$share->getSharedWith()]);
-			$userStatus = array_shift($userStatuses);
-			if ($userStatus) {
-				$result['status'] = [
-					'status' => $userStatus->getStatus(),
-					'message' => $userStatus->getMessage(),
-					'icon' => $userStatus->getIcon(),
-					'clearAt' => $userStatus->getClearAt()
-						? (int)$userStatus->getClearAt()->format('U')
-						: null,
-				];
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_GROUP) {
-			$group = $this->groupManager->get($share->getSharedWith());
-			$result['share_with'] = $share->getSharedWith();
-			$result['share_with_displayname'] = $group !== null ? $group->getDisplayName() : $share->getSharedWith();
-		} elseif ($share->getShareType() === IShare::TYPE_LINK) {
-
-			// "share_with" and "share_with_displayname" for passwords of link
-			// shares was deprecated in Nextcloud 15, use "password" instead.
-			$result['share_with'] = $share->getPassword();
-			$result['share_with_displayname'] = '(' . $this->l->t('Shared link') . ')';
-
-			$result['password'] = $share->getPassword();
-
-			$result['send_password_by_talk'] = $share->getSendPasswordByTalk();
-
-			$result['token'] = $share->getToken();
-			$result['url'] = $this->urlGenerator->linkToRouteAbsolute('files_sharing.sharecontroller.showShare', ['token' => $share->getToken()]);
-		} elseif ($share->getShareType() === IShare::TYPE_REMOTE) {
-			$result['share_with'] = $share->getSharedWith();
-			$result['share_with_displayname'] = $this->getCachedFederatedDisplayName($share->getSharedWith());
-			$result['token'] = $share->getToken();
-		} elseif ($share->getShareType() === IShare::TYPE_REMOTE_GROUP) {
-			$result['share_with'] = $share->getSharedWith();
-			$result['share_with_displayname'] = $this->getDisplayNameFromAddressBook($share->getSharedWith(), 'CLOUD');
-			$result['token'] = $share->getToken();
-		} elseif ($share->getShareType() === IShare::TYPE_EMAIL) {
-			$result['share_with'] = $share->getSharedWith();
-			$result['password'] = $share->getPassword();
-			$result['password_expiration_time'] = $share->getPasswordExpirationTime() !== null ? $share->getPasswordExpirationTime()->format(\DateTime::ATOM) : null;
-			$result['send_password_by_talk'] = $share->getSendPasswordByTalk();
-			$result['share_with_displayname'] = $this->getDisplayNameFromAddressBook($share->getSharedWith(), 'EMAIL');
-			$result['token'] = $share->getToken();
-		} elseif ($share->getShareType() === IShare::TYPE_CIRCLE) {
-			// getSharedWith() returns either "name (type, owner)" or
-			// "name (type, owner) [id]", depending on the Teams app version.
-			$hasCircleId = (substr($share->getSharedWith(), -1) === ']');
-
-			$result['share_with_displayname'] = $share->getSharedWithDisplayName();
-			if (empty($result['share_with_displayname'])) {
-				$displayNameLength = ($hasCircleId ? strrpos($share->getSharedWith(), ' ') : strlen($share->getSharedWith()));
-				$result['share_with_displayname'] = substr($share->getSharedWith(), 0, $displayNameLength);
-			}
-
-			$result['share_with_avatar'] = $share->getSharedWithAvatar();
-
-			$shareWithStart = ($hasCircleId ? strrpos($share->getSharedWith(), '[') + 1 : 0);
-			$shareWithLength = ($hasCircleId ? -1 : strpos($share->getSharedWith(), ' '));
-			if ($shareWithLength === false) {
-				$result['share_with'] = substr($share->getSharedWith(), $shareWithStart);
-			} else {
-				$result['share_with'] = substr($share->getSharedWith(), $shareWithStart, $shareWithLength);
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_ROOM) {
-			$result['share_with'] = $share->getSharedWith();
-			$result['share_with_displayname'] = '';
-
-			try {
-				/** @var array{share_with_displayname: string, share_with_link: string, share_with?: string, token?: string} $roomShare */
-				$roomShare = $this->getRoomShareHelper()->formatShare($share);
-				$result = array_merge($result, $roomShare);
-			} catch (ContainerExceptionInterface $e) {
-			}
-		} elseif ($share->getShareType() === IShare::TYPE_DECK) {
-			$result['share_with'] = $share->getSharedWith();
-			$result['share_with_displayname'] = '';
-
-			try {
-				/** @var array{share_with: string, share_with_displayname: string, share_with_link: string} $deckShare */
-				$deckShare = $this->getDeckShareHelper()->formatShare($share);
-				$result = array_merge($result, $deckShare);
-			} catch (ContainerExceptionInterface $e) {
-			}
-		}
-
-
-		$result['mail_send'] = $share->getMailSend() ? 1 : 0;
-		$result['hide_download'] = $share->getHideDownload() ? 1 : 0;
-
-		$result['attributes'] = null;
-		if ($attributes = $share->getAttributes()) {
-			$result['attributes'] = (string)\json_encode($attributes->toArray());
-		}
-
-		return $result;
-	}
-
-	/**
-	 * Check if one of the users address books knows the exact property, if
-	 * not we return the full name.
-	 *
-	 * @param string $query
-	 * @param string $property
-	 * @return string
-	 */
-	private function getDisplayNameFromAddressBook(string $query, string $property): string {
-		// FIXME: If we inject the contacts manager it gets initialized before any address books are registered
-		try {
-			$result = Server::get(\OCP\Contacts\IManager::class)->search($query, [$property], [
-				'limit' => 1,
-				'enumeration' => false,
-				'strict_search' => true,
-			]);
-		} catch (Exception $e) {
-			$this->logger->error(
-				$e->getMessage(),
-				['exception' => $e]
-			);
-			return $query;
-		}
-
-		foreach ($result as $r) {
-			foreach ($r[$property] as $value) {
-				if ($value === $query && $r['FN']) {
-					return $r['FN'];
-				}
-			}
-		}
-
-		return $query;
-	}
-
-
-	/**
-	 * @param list<Files_SharingShare> $shares
-	 * @param array<string, string>|null $updatedDisplayName
-	 *
-	 * @return list<Files_SharingShare>
-	 */
-	private function fixMissingDisplayName(array $shares, ?array $updatedDisplayName = null): array {
-		$userIds = $updated = [];
-		foreach ($shares as $share) {
-			// share is federated and share have no display name yet
-			if ($share['share_type'] === IShare::TYPE_REMOTE
-				&& ($share['share_with'] ?? '') !== ''
-				&& ($share['share_with_displayname'] ?? '') === '') {
-				$userIds[] = $userId = $share['share_with'];
-
-				if ($updatedDisplayName !== null && array_key_exists($userId, $updatedDisplayName)) {
-					$share['share_with_displayname'] = $updatedDisplayName[$userId];
-				}
-			}
-
-			// prepping userIds with displayName to be updated
-			$updated[] = $share;
-		}
-
-		// if $updatedDisplayName is not null, it means we should have already fixed displayNames of the shares
-		if ($updatedDisplayName !== null) {
-			return $updated;
-		}
-
-		// get displayName for the generated list of userId with no displayName
-		$displayNames = $this->retrieveFederatedDisplayName($userIds);
-
-		// if no displayName are updated, we exit
-		if (empty($displayNames)) {
-			return $updated;
-		}
-
-		// let's fix missing display name and returns all shares
-		return $this->fixMissingDisplayName($shares, $displayNames);
-	}
-
-
-	/**
-	 * get displayName of a list of userIds from the lookup-server; through the globalsiteselector app.
-	 * returns an array with userIds as keys and displayName as values.
-	 *
-	 * @param array $userIds
-	 * @param bool $cacheOnly - do not reach LUS, get data from cache.
-	 *
-	 * @return array
-	 * @throws ContainerExceptionInterface
-	 */
-	private function retrieveFederatedDisplayName(array $userIds, bool $cacheOnly = false): array {
-		// check if gss is enabled and available
-		if (count($userIds) === 0
-			|| !$this->appManager->isEnabledForAnyone('globalsiteselector')
-			|| !class_exists('\OCA\GlobalSiteSelector\Service\SlaveService')) {
-			return [];
-		}
-
-		try {
-			$slaveService = Server::get(SlaveService::class);
-		} catch (\Throwable $e) {
-			$this->logger->error(
-				$e->getMessage(),
-				['exception' => $e]
-			);
-			return [];
-		}
-
-		return $slaveService->getUsersDisplayName($userIds, $cacheOnly);
-	}
-
-
-	/**
-	 * retrieve displayName from cache if available (should be used on federated shares)
-	 * if not available in cache/lus, try for get from address-book, else returns empty string.
-	 *
-	 * @param string $userId
-	 * @param bool $cacheOnly if true will not reach the lus but will only get data from cache
-	 *
-	 * @return string
-	 */
-	private function getCachedFederatedDisplayName(string $userId, bool $cacheOnly = true): string {
-		$details = $this->retrieveFederatedDisplayName([$userId], $cacheOnly);
-		if (array_key_exists($userId, $details)) {
-			return $details[$userId];
-		}
-
-		$displayName = $this->getDisplayNameFromAddressBook($userId, 'CLOUD');
-		return ($displayName === $userId) ? '' : $displayName;
-	}
-
-
-
-	/**
-	 * Get a specific share by id
-	 *
-	 * @param string $id ID of the share
-	 * @param bool $include_tags Include tags in the share
-	 * @return DataResponse<Http::STATUS_OK, list<Files_SharingShare>, array{}>
-	 * @throws OCSNotFoundException Share not found
-	 *
-	 * 200: Share returned
-	 */
-	#[NoAdminRequired]
-	public function getShare(string $id, bool $include_tags = false): DataResponse {
-		try {
-			$share = $this->getShareById($id);
-		} catch (ShareNotFound $e) {
-			throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
-		}
-
-		try {
-			if ($this->canAccessShare($share)) {
-				$share = $this->formatShare($share);
-
-				if ($include_tags) {
-					$share = $this->populateTags([$share]);
-				} else {
-					$share = [$share];
-				}
-
-				return new DataResponse($share);
-			}
-		} catch (NotFoundException $e) {
-			// Fall through
-		}
-
-		throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
-	}
-
-	/**
-	 * Delete a share
-	 *
-	 * @param string $id ID of the share
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSNotFoundException Share not found
-	 * @throws OCSForbiddenException Missing permissions to delete the share
-	 *
-	 * 200: Share deleted successfully
-	 */
-	#[NoAdminRequired]
-	public function deleteShare(string $id): DataResponse {
-		try {
-			$share = $this->getShareById($id);
-		} catch (ShareNotFound $e) {
-			throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
-		}
-
-		try {
-			$this->lock($share->getNode());
-		} catch (LockedException $e) {
-			throw new OCSNotFoundException($this->l->t('Could not delete share'));
-		} catch (NotFoundException $e) {
-			$this->logger->debug('File of to be deleted share was not found, skip locking', ['exception' => $e]);
-		}
-
-		if (!$this->canAccessShare($share)) {
-			throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
-		}
-
-		// if it's a group share or a room share
-		// we don't delete the share, but only the
-		// mount point. Allowing it to be restored
-		// from the deleted shares
-		if ($this->canDeleteShareFromSelf($share)) {
-			$this->shareManager->deleteFromSelf($share, $this->userId);
-		} else {
-			if (!$this->canDeleteShare($share)) {
-				throw new OCSForbiddenException($this->l->t('Could not delete share'));
-			}
-
-			$this->shareManager->deleteShare($share);
-		}
-
-		return new DataResponse();
-	}
-
-	/**
-	 * Create a share
-	 *
-	 * @param string|null $path Path of the share
-	 * @param int|null $permissions Permissions for the share
-	 * @param int $shareType Type of the share
-	 * @param ?string $shareWith The entity this should be shared with
-	 * @param 'true'|'false'|null $publicUpload If public uploading is allowed (deprecated)
-	 * @param string $password Password for the share
-	 * @param string|null $sendPasswordByTalk Send the password for the share over Talk
-	 * @param ?string $expireDate The expiry date of the share in the user's timezone at 00:00.
-	 *                            If $expireDate is not supplied or set to `null`, the system default will be used.
-	 * @param string $note Note for the share
-	 * @param string $label Label for the share (only used in link and email)
-	 * @param string|null $attributes Additional attributes for the share
-	 * @param 'false'|'true'|null $sendMail Send a mail to the recipient
-	 *
-	 * @return DataResponse<Http::STATUS_OK, Files_SharingShare, array{}>
-	 * @throws OCSBadRequestException Unknown share type
-	 * @throws OCSException
-	 * @throws OCSForbiddenException Creating the share is not allowed
-	 * @throws OCSNotFoundException Creating the share failed
-	 * @suppress PhanUndeclaredClassMethod
-	 *
-	 * 200: Share created
-	 */
-	#[NoAdminRequired]
-	#[UserRateLimit(limit: 20, period: 600)]
-	public function createShare(
-		?string $path = null,
-		?int $permissions = null,
-		int $shareType = -1,
-		?string $shareWith = null,
-		?string $publicUpload = null,
-		string $password = '',
-		?string $sendPasswordByTalk = null,
-		?string $expireDate = null,
-		string $note = '',
-		string $label = '',
-		?string $attributes = null,
-		?string $sendMail = null,
-	): DataResponse {
-		assert($this->userId !== null);
-
-		$share = $this->shareManager->newShare();
-		$hasPublicUpload = $this->getLegacyPublicUpload($publicUpload);
-
-		// Verify path
-		if ($path === null) {
-			throw new OCSNotFoundException($this->l->t('Please specify a file or folder path'));
-		}
-
-		$userFolder = $this->rootFolder->getUserFolder($this->userId);
-		try {
-			/** @var \OC\Files\Node\Node $node */
-			$node = $userFolder->get($path);
-		} catch (NotFoundException $e) {
-			throw new OCSNotFoundException($this->l->t('Wrong path, file/folder does not exist'));
-		}
-
-		// a user can have access to a file through different paths, with differing permissions
-		// combine all permissions to determine if the user can share this file
-		$nodes = $userFolder->getById($node->getId());
-		foreach ($nodes as $nodeById) {
-			/** @var FileInfo $fileInfo */
-			$fileInfo = $node->getFileInfo();
-			$fileInfo['permissions'] |= $nodeById->getPermissions();
-		}
-
-		$share->setNode($node);
-
-		try {
-			$this->lock($share->getNode());
-		} catch (LockedException $e) {
-			throw new OCSNotFoundException($this->l->t('Could not create share'));
-		}
-
-		// Set permissions
-		if ($shareType === IShare::TYPE_LINK || $shareType === IShare::TYPE_EMAIL) {
-			$permissions = $this->getLinkSharePermissions($permissions, $hasPublicUpload);
-			$this->validateLinkSharePermissions($node, $permissions, $hasPublicUpload);
-		} else {
-			// Use default permissions only for non-link shares to keep legacy behavior
-			if ($permissions === null) {
-				$permissions = (int)$this->config->getAppValue('core', 'shareapi_default_permissions', (string)Constants::PERMISSION_ALL);
-			}
-			// Non-link shares always require read permissions (link shares could be file drop)
-			$permissions |= Constants::PERMISSION_READ;
-		}
-
-		// For legacy reasons the API allows to pass PERMISSIONS_ALL even for single file shares (I look at you Talk)
-		if ($node instanceof File) {
-			// if this is a single file share we remove the DELETE and CREATE permissions
-			$permissions = $permissions & ~(Constants::PERMISSION_DELETE | Constants::PERMISSION_CREATE);
-		}
-
-		/**
-		 * Hack for https://github.com/owncloud/core/issues/22587
-		 * We check the permissions via webdav. But the permissions of the mount point
-		 * do not equal the share permissions. Here we fix that for federated mounts.
-		 */
-		if ($node->getStorage()->instanceOfStorage(Storage::class)) {
-			$permissions &= ~($permissions & ~$node->getPermissions());
-		}
-
-		if ($attributes !== null) {
-			$share = $this->setShareAttributes($share, $attributes);
-		}
-
-		// Expire date checks
-		// Normally, null means no expiration date but we still set the default for backwards compatibility
-		// If the client sends an empty string, we set noExpirationDate to true
-		if ($expireDate !== null) {
-			if ($expireDate !== '') {
-				try {
-					$expireDateTime = $this->parseDate($expireDate);
-					$share->setExpirationDate($expireDateTime);
-				} catch (\Exception $e) {
-					throw new OCSNotFoundException($e->getMessage(), $e);
-				}
-			} else {
-				// Client sent empty string for expire date.
-				// Set noExpirationDate to true so overwrite is prevented.
-				$share->setNoExpirationDate(true);
-			}
-		}
-
-		$share->setSharedBy($this->userId);
-
-		// Handle mail send
-		if (is_null($sendMail)) {
-			$allowSendMail = $this->config->getSystemValueBool('sharing.enable_share_mail', true);
-			if ($allowSendMail !== true || $shareType === IShare::TYPE_EMAIL) {
-				// Define a default behavior when sendMail is not provided
-				// For email shares with a valid recipient, the default is to send the mail
-				// For all other share types, the default is to not send the mail
-				$allowSendMail = ($shareType === IShare::TYPE_EMAIL && $shareWith !== null && $shareWith !== '');
-			}
-			$share->setMailSend($allowSendMail);
-		} else {
-			$share->setMailSend($sendMail === 'true');
-		}
-
-		if ($shareType === IShare::TYPE_USER) {
-			// Valid user is required to share
-			if ($shareWith === null || !$this->userManager->userExists($shareWith)) {
-				throw new OCSNotFoundException($this->l->t('Please specify a valid account to share with'));
-			}
-			$share->setSharedWith($shareWith);
-			$share->setPermissions($permissions);
-		} elseif ($shareType === IShare::TYPE_GROUP) {
-			if (!$this->shareManager->allowGroupSharing()) {
-				throw new OCSNotFoundException($this->l->t('Group sharing is disabled by the administrator'));
-			}
-
-			// Valid group is required to share
-			if ($shareWith === null || !$this->groupManager->groupExists($shareWith)) {
-				throw new OCSNotFoundException($this->l->t('Please specify a valid group'));
-			}
-			$share->setSharedWith($shareWith);
-			$share->setPermissions($permissions);
-		} elseif ($shareType === IShare::TYPE_LINK
-			|| $shareType === IShare::TYPE_EMAIL) {
-
-			// Can we even share links?
-			if (!$this->shareManager->shareApiAllowLinks()) {
-				throw new OCSNotFoundException($this->l->t('Public link sharing is disabled by the administrator'));
-			}
-
-			$this->validateLinkSharePermissions($node, $permissions, $hasPublicUpload);
-			$share->setPermissions($permissions);
-
-			// Set password
-			if ($password !== '') {
-				$share->setPassword($password);
-			}
-
-			// Only share by mail have a recipient
-			if (is_string($shareWith) && $shareType === IShare::TYPE_EMAIL) {
-				// If sending a mail have been requested, validate the mail address
-				if ($share->getMailSend() && !$this->emailValidator->isValid($shareWith)) {
-					throw new OCSNotFoundException($this->l->t('Please specify a valid email address'));
-				}
-				$share->setSharedWith($shareWith);
-			}
-
-			// If we have a label, use it
-			if ($label !== '') {
-				if (strlen($label) > 255) {
-					throw new OCSBadRequestException('Maximum label length is 255');
-				}
-				$share->setLabel($label);
-			}
-
-			if ($sendPasswordByTalk === 'true') {
-				if (!$this->appManager->isEnabledForUser('spreed')) {
-					throw new OCSForbiddenException($this->l->t('Sharing %s sending the password by Nextcloud Talk failed because Nextcloud Talk is not enabled', [$node->getPath()]));
-				}
-
-				$share->setSendPasswordByTalk(true);
-			}
-		} elseif ($shareType === IShare::TYPE_REMOTE) {
-			if (!$this->shareManager->outgoingServer2ServerSharesAllowed()) {
-				throw new OCSForbiddenException($this->l->t('Sharing %1$s failed because the back end does not allow shares from type %2$s', [$node->getPath(), $shareType]));
-			}
-
-			if ($shareWith === null) {
-				throw new OCSNotFoundException($this->l->t('Please specify a valid federated account ID'));
-			}
-
-			$share->setSharedWith($shareWith);
-			$share->setPermissions($permissions);
-			$share->setSharedWithDisplayName($this->getCachedFederatedDisplayName($shareWith, false));
-		} elseif ($shareType === IShare::TYPE_REMOTE_GROUP) {
-			if (!$this->shareManager->outgoingServer2ServerGroupSharesAllowed()) {
-				throw new OCSForbiddenException($this->l->t('Sharing %1$s failed because the back end does not allow shares from type %2$s', [$node->getPath(), $shareType]));
-			}
-
-			if ($shareWith === null) {
-				throw new OCSNotFoundException($this->l->t('Please specify a valid federated group ID'));
-			}
-
-			$share->setSharedWith($shareWith);
-			$share->setPermissions($permissions);
-		} elseif ($shareType === IShare::TYPE_CIRCLE) {
-			if (!Server::get(IAppManager::class)->isEnabledForUser('circles') || !class_exists('\OCA\Circles\ShareByCircleProvider')) {
-				throw new OCSNotFoundException($this->l->t('You cannot share to a Team if the app is not enabled'));
-			}
-
-			$circle = Circles::detailsCircle($shareWith);
-
-			// Valid team is required to share
-			if ($circle === null) {
-				throw new OCSNotFoundException($this->l->t('Please specify a valid team'));
-			}
-			$share->setSharedWith($shareWith);
-			$share->setPermissions($permissions);
-		} elseif ($shareType === IShare::TYPE_ROOM) {
-			try {
-				$this->getRoomShareHelper()->createShare($share, $shareWith, $permissions, $expireDate ?? '');
-			} catch (ContainerExceptionInterface $e) {
-				throw new OCSForbiddenException($this->l->t('Sharing %s failed because the back end does not support room shares', [$node->getPath()]));
-			}
-		} elseif ($shareType === IShare::TYPE_DECK) {
-			try {
-				$this->getDeckShareHelper()->createShare($share, $shareWith, $permissions, $expireDate ?? '');
-			} catch (ContainerExceptionInterface $e) {
-				throw new OCSForbiddenException($this->l->t('Sharing %s failed because the back end does not support room shares', [$node->getPath()]));
-			}
-		} else {
-			throw new OCSBadRequestException($this->l->t('Unknown share type'));
-		}
-
-		$share->setShareType($shareType);
-		$this->checkInheritedAttributes($share);
-
-		if ($note !== '') {
-			$share->setNote($note);
-		}
-
-		try {
-			$share = $this->shareManager->createShare($share);
-		} catch (HintException $e) {
-			$code = $e->getCode() === 0 ? 403 : $e->getCode();
-			throw new OCSException($e->getHint(), $code);
-		} catch (GenericShareException|\InvalidArgumentException $e) {
-			$this->logger->error($e->getMessage(), ['exception' => $e]);
-			throw new OCSForbiddenException($e->getMessage(), $e);
-		} catch (\Exception $e) {
-			$this->logger->error($e->getMessage(), ['exception' => $e]);
-			throw new OCSForbiddenException('Failed to create share.', $e);
-		}
-
-		$output = $this->formatShare($share);
-
-		return new DataResponse($output);
-	}
-
-	/**
-	 * @param null|Node $node
-	 * @param boolean $includeTags
-	 *
-	 * @return list<Files_SharingShare>
-	 */
-	private function getSharedWithMe($node, bool $includeTags): array {
-		$userShares = $this->shareManager->getSharedWith($this->userId, IShare::TYPE_USER, $node, -1, 0);
-		$groupShares = $this->shareManager->getSharedWith($this->userId, IShare::TYPE_GROUP, $node, -1, 0);
-		$circleShares = $this->shareManager->getSharedWith($this->userId, IShare::TYPE_CIRCLE, $node, -1, 0);
-		$roomShares = $this->shareManager->getSharedWith($this->userId, IShare::TYPE_ROOM, $node, -1, 0);
-		$deckShares = $this->shareManager->getSharedWith($this->userId, IShare::TYPE_DECK, $node, -1, 0);
-
-		$shares = array_merge($userShares, $groupShares, $circleShares, $roomShares, $deckShares);
-
-		$filteredShares = array_filter($shares, function (IShare $share) {
-			return $share->getShareOwner() !== $this->userId && $share->getSharedBy() !== $this->userId;
-		});
-
-		$formatted = [];
-		foreach ($filteredShares as $share) {
-			if ($this->canAccessShare($share)) {
-				try {
-					$formatted[] = $this->formatShare($share);
-				} catch (NotFoundException $e) {
-					// Ignore this share
-				}
-			}
-		}
-
-		if ($includeTags) {
-			$formatted = $this->populateTags($formatted);
-		}
-
-		return $formatted;
-	}
-
-	/**
-	 * @param Node $folder
-	 *
-	 * @return list<Files_SharingShare>
-	 * @throws OCSBadRequestException
-	 * @throws NotFoundException
-	 */
-	private function getSharesInDir(Node $folder): array {
-		if (!($folder instanceof Folder)) {
-			throw new OCSBadRequestException($this->l->t('Not a directory'));
-		}
-
-		$nodes = $folder->getDirectoryListing();
-
-		/** @var IShare[] $shares */
-		$shares = array_reduce($nodes, function ($carry, $node) {
-			$carry = array_merge($carry, $this->getAllShares($node, true));
-			return $carry;
-		}, []);
-
-		// filter out duplicate shares
-		$known = [];
-
-		$formatted = $miniFormatted = [];
-		$resharingRight = false;
-		$known = [];
-		foreach ($shares as $share) {
-			if (in_array($share->getId(), $known) || $share->getSharedWith() === $this->userId) {
-				continue;
-			}
-
-			try {
-				$format = $this->formatShare($share);
-
-				$known[] = $share->getId();
-				$formatted[] = $format;
-				if ($share->getSharedBy() === $this->userId) {
-					$miniFormatted[] = $format;
-				}
-				if (!$resharingRight && $this->shareProviderResharingRights($this->userId, $share, $folder)) {
-					$resharingRight = true;
-				}
-			} catch (\Exception $e) {
-				//Ignore this share
-			}
-		}
-
-		if (!$resharingRight) {
-			$formatted = $miniFormatted;
-		}
-
-		return $formatted;
-	}
-
-	/**
-	 * Get shares of the current user
-	 *
-	 * @param string $shared_with_me Only get shares with the current user
-	 * @param string $reshares Only get shares by the current user and reshares
-	 * @param string $subfiles Only get all shares in a folder
-	 * @param string $path Get shares for a specific path
-	 * @param string $include_tags Include tags in the share
-	 *
-	 * @return DataResponse<Http::STATUS_OK, list<Files_SharingShare>, array{}>
-	 * @throws OCSNotFoundException The folder was not found or is inaccessible
-	 *
-	 * 200: Shares returned
-	 */
-	#[NoAdminRequired]
-	public function getShares(
-		string $shared_with_me = 'false',
-		string $reshares = 'false',
-		string $subfiles = 'false',
-		string $path = '',
-		string $include_tags = 'false',
-	): DataResponse {
-		$node = null;
-		if ($path !== '') {
-			$userFolder = $this->rootFolder->getUserFolder($this->userId);
-			try {
-				$node = $userFolder->get($path);
-				$this->lock($node);
-			} catch (NotFoundException $e) {
-				throw new OCSNotFoundException(
-					$this->l->t('Wrong path, file/folder does not exist')
-				);
-			} catch (LockedException $e) {
-				throw new OCSNotFoundException($this->l->t('Could not lock node'));
-			}
-		}
-
-		$shares = $this->getFormattedShares(
-			$this->userId,
-			$node,
-			($shared_with_me === 'true'),
-			($reshares === 'true'),
-			($subfiles === 'true'),
-			($include_tags === 'true')
-		);
-
-		return new DataResponse($shares);
-	}
-
-	private function getLinkSharePermissions(?int $permissions, ?bool $legacyPublicUpload): int {
-		$permissions = $permissions ?? Constants::PERMISSION_READ;
-
-		// Legacy option handling
-		if ($legacyPublicUpload !== null) {
-			$permissions = $legacyPublicUpload
-				? (Constants::PERMISSION_READ | Constants::PERMISSION_CREATE | Constants::PERMISSION_UPDATE | Constants::PERMISSION_DELETE)
-				: Constants::PERMISSION_READ;
-		}
-
-		if ($this->hasPermission($permissions, Constants::PERMISSION_READ)
-			&& $this->shareManager->outgoingServer2ServerSharesAllowed()
-			&& $this->appConfig->getValueBool('core', ConfigLexicon::SHAREAPI_ALLOW_FEDERATION_ON_PUBLIC_SHARES)) {
-			$permissions |= Constants::PERMISSION_SHARE;
-		}
-
-		return $permissions;
-	}
-
-	/**
-	 * Helper to check for legacy "publicUpload" handling.
-	 * If the value is set to `true` or `false` then true or false are returned.
-	 * Otherwise null is returned to indicate that the option was not (or wrong) set.
-	 *
-	 * @param null|string $legacyPublicUpload The value of `publicUpload`
-	 */
-	private function getLegacyPublicUpload(?string $legacyPublicUpload): ?bool {
-		if ($legacyPublicUpload === 'true') {
-			return true;
-		} elseif ($legacyPublicUpload === 'false') {
-			return false;
-		}
-		// Not set at all
-		return null;
-	}
-
-	/**
-	 * For link and email shares validate that only allowed combinations are set.
-	 *
-	 * @throw OCSBadRequestException If permission combination is invalid.
-	 * @throw OCSForbiddenException If public upload was forbidden by the administrator.
-	 */
-	private function validateLinkSharePermissions(Node $node, int $permissions, ?bool $legacyPublicUpload): void {
-		if ($legacyPublicUpload && ($node instanceof File)) {
-			throw new OCSBadRequestException($this->l->t('Public upload is only possible for publicly shared folders'));
-		}
-
-		// We need at least READ or CREATE (file drop)
-		if (!$this->hasPermission($permissions, Constants::PERMISSION_READ)
-			&& !$this->hasPermission($permissions, Constants::PERMISSION_CREATE)) {
-			throw new OCSBadRequestException($this->l->t('Share must at least have READ or CREATE permissions'));
-		}
-
-		// UPDATE and DELETE require a READ permission
-		if (!$this->hasPermission($permissions, Constants::PERMISSION_READ)
-			&& ($this->hasPermission($permissions, Constants::PERMISSION_UPDATE) || $this->hasPermission($permissions, Constants::PERMISSION_DELETE))) {
-			throw new OCSBadRequestException($this->l->t('Share must have READ permission if UPDATE or DELETE permission is set'));
-		}
-
-		// Check if public uploading was disabled
-		if ($this->hasPermission($permissions, Constants::PERMISSION_CREATE)
-			&& !$this->shareManager->shareApiLinkAllowPublicUpload()) {
-			throw new OCSForbiddenException($this->l->t('Public upload disabled by the administrator'));
-		}
-	}
-
-	/**
-	 * @param string $viewer
-	 * @param Node $node
-	 * @param bool $sharedWithMe
-	 * @param bool $reShares
-	 * @param bool $subFiles
-	 * @param bool $includeTags
-	 *
-	 * @return list<Files_SharingShare>
-	 * @throws NotFoundException
-	 * @throws OCSBadRequestException
-	 */
-	private function getFormattedShares(
-		string $viewer,
-		$node = null,
-		bool $sharedWithMe = false,
-		bool $reShares = false,
-		bool $subFiles = false,
-		bool $includeTags = false,
-	): array {
-		if ($sharedWithMe) {
-			return $this->getSharedWithMe($node, $includeTags);
-		}
-
-		if ($subFiles) {
-			return $this->getSharesInDir($node);
-		}
-
-		$shares = $this->getSharesFromNode($viewer, $node, $reShares);
-
-		$known = $formatted = $miniFormatted = [];
-		$resharingRight = false;
-		foreach ($shares as $share) {
-			try {
-				$share->getNode();
-			} catch (NotFoundException $e) {
-				/*
+    private ?Node $lockedNode = null;
+    private array $trustedServerCache = [];
+
+    /**
+     * Share20OCS constructor.
+     */
+    public function __construct(
+        string $appName,
+        IRequest $request,
+        private IManager $shareManager,
+        private IGroupManager $groupManager,
+        private IUserManager $userManager,
+        private IRootFolder $rootFolder,
+        private IURLGenerator $urlGenerator,
+        private IL10N $l,
+        private IConfig $config,
+        private IAppConfig $appConfig,
+        private IAppManager $appManager,
+        private ContainerInterface $serverContainer,
+        private IUserStatusManager $userStatusManager,
+        private IPreview $previewManager,
+        private IDateTimeZone $dateTimeZone,
+        private LoggerInterface $logger,
+        private IProviderFactory $factory,
+        private IMailer $mailer,
+        private ITagManager $tagManager,
+        private IEmailValidator $emailValidator,
+        private ?TrustedServers $trustedServers,
+        private ?string $userId = null,
+    ) {
+        parent::__construct($appName, $request);
+    }
+
+    /**
+     * Convert an IShare to an array for OCS output
+     *
+     * @param IShare $share
+     * @param Node|null $recipientNode
+     * @return Files_SharingShare
+     * @throws NotFoundException In case the node can't be resolved.
+     *
+     * @suppress PhanUndeclaredClassMethod
+     */
+    protected function formatShare(IShare $share, ?Node $recipientNode = null): array {
+        $sharedBy = $this->userManager->get($share->getSharedBy());
+        $shareOwner = $this->userManager->get($share->getShareOwner());
+
+        $isOwnShare = false;
+        if ($shareOwner !== null) {
+            $isOwnShare = $shareOwner->getUID() === $this->userId;
+        }
+
+        $result = [
+            'id' => $share->getId(),
+            'share_type' => $share->getShareType(),
+            'uid_owner' => $share->getSharedBy(),
+            'displayname_owner' => $sharedBy !== null ? $sharedBy->getDisplayName() : $share->getSharedBy(),
+            // recipient permissions
+            'permissions' => $share->getPermissions(),
+            // current user permissions on this share
+            'can_edit' => $this->canEditShare($share),
+            'can_delete' => $this->canDeleteShare($share),
+            'stime' => $share->getShareTime()->getTimestamp(),
+            'parent' => null,
+            'expiration' => null,
+            'token' => null,
+            'uid_file_owner' => $share->getShareOwner(),
+            'note' => $share->getNote(),
+            'label' => $share->getLabel(),
+            'displayname_file_owner' => $shareOwner !== null ? $shareOwner->getDisplayName() : $share->getShareOwner(),
+        ];
+
+        $userFolder = $this->rootFolder->getUserFolder($this->userId);
+        if ($recipientNode) {
+            $node = $recipientNode;
+        } else {
+            $node = $userFolder->getFirstNodeById($share->getNodeId());
+            if (!$node) {
+                // fallback to guessing the path
+                $node = $userFolder->get($share->getTarget());
+                if ($node === null || $share->getTarget() === '') {
+                    throw new NotFoundException();
+                }
+            }
+        }
+
+        $result['path'] = $userFolder->getRelativePath($node->getPath());
+        if ($node instanceof Folder) {
+            $result['item_type'] = 'folder';
+        } else {
+            $result['item_type'] = 'file';
+        }
+
+        // Get the original node permission if the share owner is the current user
+        if ($isOwnShare) {
+            $result['item_permissions'] = $node->getPermissions();
+        }
+
+        // If we're on the recipient side, the node permissions
+        // are bound to the share permissions. So we need to
+        // adjust the permissions to the share permissions if necessary.
+        if (!$isOwnShare) {
+            $result['item_permissions'] = $share->getPermissions();
+
+            // For some reason, single files share are forbidden to have the delete permission
+            // since we have custom methods to check those, let's adjust straight away.
+            // DAV permissions does not have that issue though.
+            if ($this->canDeleteShare($share) || $this->canDeleteShareFromSelf($share)) {
+                $result['item_permissions'] |= Constants::PERMISSION_DELETE;
+            }
+            if ($this->canEditShare($share)) {
+                $result['item_permissions'] |= Constants::PERMISSION_UPDATE;
+            }
+        }
+
+        // See MOUNT_ROOT_PROPERTYNAME dav property
+        $result['is-mount-root'] = $node->getInternalPath() === '';
+        $result['mount-type'] = $node->getMountPoint()->getMountType();
+
+        $result['mimetype'] = $node->getMimetype();
+        $result['has_preview'] = $this->previewManager->isAvailable($node);
+        $result['storage_id'] = $node->getStorage()->getId();
+        $result['storage'] = $node->getStorage()->getCache()->getNumericStorageId();
+        $result['item_source'] = $node->getId();
+        $result['file_source'] = $node->getId();
+        $result['file_parent'] = $node->getParent()->getId();
+        $result['file_target'] = $share->getTarget();
+        $result['item_size'] = $node->getSize();
+        $result['item_mtime'] = $node->getMTime();
+
+        if ($this->trustedServers !== null && in_array($share->getShareType(), [IShare::TYPE_REMOTE, IShare::TYPE_REMOTE_GROUP], true)) {
+            $result['is_trusted_server'] = false;
+            $sharedWith = $share->getSharedWith();
+            $remoteIdentifier = is_string($sharedWith) ? strrchr($sharedWith, '@') : false;
+            if ($remoteIdentifier !== false) {
+                $remote = substr($remoteIdentifier, 1);
+
+                if (isset($this->trustedServerCache[$remote])) {
+                    $result['is_trusted_server'] = $this->trustedServerCache[$remote];
+                } else {
+                    try {
+                        $isTrusted = $this->trustedServers->isTrustedServer($remote);
+                        $this->trustedServerCache[$remote] = $isTrusted;
+                        $result['is_trusted_server'] = $isTrusted;
+                    } catch (\Exception $e) {
+                        // Server not found or other issue, we consider it not trusted
+                        $this->trustedServerCache[$remote] = false;
+                        $this->logger->error(
+                            'Error checking if remote server is trusted (treating as untrusted): ' . $e->getMessage(),
+                            ['exception' => $e]
+                        );
+                    }
+                }
+            }
+        }
+
+        $expiration = $share->getExpirationDate();
+        if ($expiration !== null) {
+            $expiration->setTimezone($this->dateTimeZone->getTimeZone());
+            $result['expiration'] = $expiration->format('Y-m-d 00:00:00');
+        }
+
+        if ($share->getShareType() === IShare::TYPE_USER) {
+            $sharedWith = $this->userManager->get($share->getSharedWith());
+            $result['share_with'] = $share->getSharedWith();
+            $result['share_with_displayname'] = $sharedWith !== null ? $sharedWith->getDisplayName() : $share->getSharedWith();
+            $result['share_with_displayname_unique'] = $sharedWith !== null ? (
+                !empty($sharedWith->getSystemEMailAddress()) ? $sharedWith->getSystemEMailAddress() : $sharedWith->getUID()
+            ) : $share->getSharedWith();
+
+            $userStatuses = $this->userStatusManager->getUserStatuses([$share->getSharedWith()]);
+            $userStatus = array_shift($userStatuses);
+            if ($userStatus) {
+                $result['status'] = [
+                    'status' => $userStatus->getStatus(),
+                    'message' => $userStatus->getMessage(),
+                    'icon' => $userStatus->getIcon(),
+                    'clearAt' => $userStatus->getClearAt()
+                        ? (int)$userStatus->getClearAt()->format('U')
+                        : null,
+                ];
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_GROUP) {
+            $group = $this->groupManager->get($share->getSharedWith());
+            $result['share_with'] = $share->getSharedWith();
+            $result['share_with_displayname'] = $group !== null ? $group->getDisplayName() : $share->getSharedWith();
+        } elseif ($share->getShareType() === IShare::TYPE_LINK) {
+
+            // "share_with" and "share_with_displayname" for passwords of link
+            // shares was deprecated in Nextcloud 15, use "password" instead.
+            $result['share_with'] = $share->getPassword();
+            $result['share_with_displayname'] = '(' . $this->l->t('Shared link') . ')';
+
+            $result['password'] = $share->getPassword();
+
+            $result['send_password_by_talk'] = $share->getSendPasswordByTalk();
+
+            $result['token'] = $share->getToken();
+            $result['url'] = $this->urlGenerator->linkToRouteAbsolute('files_sharing.sharecontroller.showShare', ['token' => $share->getToken()]);
+        } elseif ($share->getShareType() === IShare::TYPE_REMOTE) {
+            $result['share_with'] = $share->getSharedWith();
+            $result['share_with_displayname'] = $this->getCachedFederatedDisplayName($share->getSharedWith());
+            $result['token'] = $share->getToken();
+        } elseif ($share->getShareType() === IShare::TYPE_REMOTE_GROUP) {
+            $result['share_with'] = $share->getSharedWith();
+            $result['share_with_displayname'] = $this->getDisplayNameFromAddressBook($share->getSharedWith(), 'CLOUD');
+            $result['token'] = $share->getToken();
+        } elseif ($share->getShareType() === IShare::TYPE_EMAIL) {
+            $result['share_with'] = $share->getSharedWith();
+            $result['password'] = $share->getPassword();
+            $result['password_expiration_time'] = $share->getPasswordExpirationTime() !== null ? $share->getPasswordExpirationTime()->format(\DateTime::ATOM) : null;
+            $result['send_password_by_talk'] = $share->getSendPasswordByTalk();
+            $result['share_with_displayname'] = $this->getDisplayNameFromAddressBook($share->getSharedWith(), 'EMAIL');
+            $result['token'] = $share->getToken();
+        } elseif ($share->getShareType() === IShare::TYPE_CIRCLE) {
+            // getSharedWith() returns either "name (type, owner)" or
+            // "name (type, owner) [id]", depending on the Teams app version.
+            $hasCircleId = (substr($share->getSharedWith(), -1) === ']');
+
+            $result['share_with_displayname'] = $share->getSharedWithDisplayName();
+            if (empty($result['share_with_displayname'])) {
+                $displayNameLength = ($hasCircleId ? strrpos($share->getSharedWith(), ' ') : strlen($share->getSharedWith()));
+                $result['share_with_displayname'] = substr($share->getSharedWith(), 0, $displayNameLength);
+            }
+
+            $result['share_with_avatar'] = $share->getSharedWithAvatar();
+
+            $shareWithStart = ($hasCircleId ? strrpos($share->getSharedWith(), '[') + 1 : 0);
+            $shareWithLength = ($hasCircleId ? -1 : strpos($share->getSharedWith(), ' '));
+            if ($shareWithLength === false) {
+                $result['share_with'] = substr($share->getSharedWith(), $shareWithStart);
+            } else {
+                $result['share_with'] = substr($share->getSharedWith(), $shareWithStart, $shareWithLength);
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_ROOM) {
+            $result['share_with'] = $share->getSharedWith();
+            $result['share_with_displayname'] = '';
+
+            try {
+                /** @var array{share_with_displayname: string, share_with_link: string, share_with?: string, token?: string} $roomShare */
+                $roomShare = $this->getRoomShareHelper()->formatShare($share);
+                $result = array_merge($result, $roomShare);
+            } catch (ContainerExceptionInterface $e) {
+            }
+        } elseif ($share->getShareType() === IShare::TYPE_DECK) {
+            $result['share_with'] = $share->getSharedWith();
+            $result['share_with_displayname'] = '';
+
+            try {
+                /** @var array{share_with: string, share_with_displayname: string, share_with_link: string} $deckShare */
+                $deckShare = $this->getDeckShareHelper()->formatShare($share);
+                $result = array_merge($result, $deckShare);
+            } catch (ContainerExceptionInterface $e) {
+            }
+        }
+
+
+        $result['mail_send'] = $share->getMailSend() ? 1 : 0;
+        $result['hide_download'] = $share->getHideDownload() ? 1 : 0;
+
+        $result['attributes'] = null;
+        if ($attributes = $share->getAttributes()) {
+            $result['attributes'] = (string)\json_encode($attributes->toArray());
+        }
+
+        return $result;
+    }
+
+    /**
+     * Check if one of the users address books knows the exact property, if
+     * not we return the full name.
+     *
+     * @param string $query
+     * @param string $property
+     * @return string
+     */
+    private function getDisplayNameFromAddressBook(string $query, string $property): string {
+        // FIXME: If we inject the contacts manager it gets initialized before any address books are registered
+        try {
+            $result = Server::get(\OCP\Contacts\IManager::class)->search($query, [$property], [
+                'limit' => 1,
+                'enumeration' => false,
+                'strict_search' => true,
+            ]);
+        } catch (Exception $e) {
+            $this->logger->error(
+                $e->getMessage(),
+                ['exception' => $e]
+            );
+            return $query;
+        }
+
+        foreach ($result as $r) {
+            foreach ($r[$property] as $value) {
+                if ($value === $query && $r['FN']) {
+                    return $r['FN'];
+                }
+            }
+        }
+
+        return $query;
+    }
+
+
+    /**
+     * @param list<Files_SharingShare> $shares
+     * @param array<string, string>|null $updatedDisplayName
+     *
+     * @return list<Files_SharingShare>
+     */
+    private function fixMissingDisplayName(array $shares, ?array $updatedDisplayName = null): array {
+        $userIds = $updated = [];
+        foreach ($shares as $share) {
+            // share is federated and share have no display name yet
+            if ($share['share_type'] === IShare::TYPE_REMOTE
+                && ($share['share_with'] ?? '') !== ''
+                && ($share['share_with_displayname'] ?? '') === '') {
+                $userIds[] = $userId = $share['share_with'];
+
+                if ($updatedDisplayName !== null && array_key_exists($userId, $updatedDisplayName)) {
+                    $share['share_with_displayname'] = $updatedDisplayName[$userId];
+                }
+            }
+
+            // prepping userIds with displayName to be updated
+            $updated[] = $share;
+        }
+
+        // if $updatedDisplayName is not null, it means we should have already fixed displayNames of the shares
+        if ($updatedDisplayName !== null) {
+            return $updated;
+        }
+
+        // get displayName for the generated list of userId with no displayName
+        $displayNames = $this->retrieveFederatedDisplayName($userIds);
+
+        // if no displayName are updated, we exit
+        if (empty($displayNames)) {
+            return $updated;
+        }
+
+        // let's fix missing display name and returns all shares
+        return $this->fixMissingDisplayName($shares, $displayNames);
+    }
+
+
+    /**
+     * get displayName of a list of userIds from the lookup-server; through the globalsiteselector app.
+     * returns an array with userIds as keys and displayName as values.
+     *
+     * @param array $userIds
+     * @param bool $cacheOnly - do not reach LUS, get data from cache.
+     *
+     * @return array
+     * @throws ContainerExceptionInterface
+     */
+    private function retrieveFederatedDisplayName(array $userIds, bool $cacheOnly = false): array {
+        // check if gss is enabled and available
+        if (count($userIds) === 0
+            || !$this->appManager->isEnabledForAnyone('globalsiteselector')
+            || !class_exists('\OCA\GlobalSiteSelector\Service\SlaveService')) {
+            return [];
+        }
+
+        try {
+            $slaveService = Server::get(SlaveService::class);
+        } catch (\Throwable $e) {
+            $this->logger->error(
+                $e->getMessage(),
+                ['exception' => $e]
+            );
+            return [];
+        }
+
+        return $slaveService->getUsersDisplayName($userIds, $cacheOnly);
+    }
+
+
+    /**
+     * retrieve displayName from cache if available (should be used on federated shares)
+     * if not available in cache/lus, try for get from address-book, else returns empty string.
+     *
+     * @param string $userId
+     * @param bool $cacheOnly if true will not reach the lus but will only get data from cache
+     *
+     * @return string
+     */
+    private function getCachedFederatedDisplayName(string $userId, bool $cacheOnly = true): string {
+        $details = $this->retrieveFederatedDisplayName([$userId], $cacheOnly);
+        if (array_key_exists($userId, $details)) {
+            return $details[$userId];
+        }
+
+        $displayName = $this->getDisplayNameFromAddressBook($userId, 'CLOUD');
+        return ($displayName === $userId) ? '' : $displayName;
+    }
+
+
+
+    /**
+     * Get a specific share by id
+     *
+     * @param string $id ID of the share
+     * @param bool $include_tags Include tags in the share
+     * @return DataResponse<Http::STATUS_OK, list<Files_SharingShare>, array{}>
+     * @throws OCSNotFoundException Share not found
+     *
+     * 200: Share returned
+     */
+    #[NoAdminRequired]
+    public function getShare(string $id, bool $include_tags = false): DataResponse {
+        try {
+            $share = $this->getShareById($id);
+        } catch (ShareNotFound $e) {
+            throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
+        }
+
+        try {
+            if ($this->canAccessShare($share)) {
+                $share = $this->formatShare($share);
+
+                if ($include_tags) {
+                    $share = $this->populateTags([$share]);
+                } else {
+                    $share = [$share];
+                }
+
+                return new DataResponse($share);
+            }
+        } catch (NotFoundException $e) {
+            // Fall through
+        }
+
+        throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
+    }
+
+    /**
+     * Delete a share
+     *
+     * @param string $id ID of the share
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSNotFoundException Share not found
+     * @throws OCSForbiddenException Missing permissions to delete the share
+     *
+     * 200: Share deleted successfully
+     */
+    #[NoAdminRequired]
+    public function deleteShare(string $id): DataResponse {
+        try {
+            $share = $this->getShareById($id);
+        } catch (ShareNotFound $e) {
+            throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
+        }
+
+        try {
+            $this->lock($share->getNode());
+        } catch (LockedException $e) {
+            throw new OCSNotFoundException($this->l->t('Could not delete share'));
+        } catch (NotFoundException $e) {
+            $this->logger->debug('File of to be deleted share was not found, skip locking', ['exception' => $e]);
+        }
+
+        if (!$this->canAccessShare($share)) {
+            throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
+        }
+
+        // if it's a group share or a room share
+        // we don't delete the share, but only the
+        // mount point. Allowing it to be restored
+        // from the deleted shares
+        if ($this->canDeleteShareFromSelf($share)) {
+            $this->shareManager->deleteFromSelf($share, $this->userId);
+        } else {
+            if (!$this->canDeleteShare($share)) {
+                throw new OCSForbiddenException($this->l->t('Could not delete share'));
+            }
+
+            $this->shareManager->deleteShare($share);
+        }
+
+        return new DataResponse();
+    }
+
+    /**
+     * Create a share
+     *
+     * @param string|null $path Path of the share
+     * @param int|null $permissions Permissions for the share
+     * @param int $shareType Type of the share
+     * @param ?string $shareWith The entity this should be shared with
+     * @param 'true'|'false'|null $publicUpload If public uploading is allowed (deprecated)
+     * @param string $password Password for the share
+     * @param string|null $sendPasswordByTalk Send the password for the share over Talk
+     * @param ?string $expireDate The expiry date of the share in the user's timezone at 00:00.
+     *                            If $expireDate is not supplied or set to `null`, the system default will be used.
+     * @param string $note Note for the share
+     * @param string $label Label for the share (only used in link and email)
+     * @param string|null $attributes Additional attributes for the share
+     * @param 'false'|'true'|null $sendMail Send a mail to the recipient
+     *
+     * @return DataResponse<Http::STATUS_OK, Files_SharingShare, array{}>
+     * @throws OCSBadRequestException Unknown share type
+     * @throws OCSException
+     * @throws OCSForbiddenException Creating the share is not allowed
+     * @throws OCSNotFoundException Creating the share failed
+     * @suppress PhanUndeclaredClassMethod
+     *
+     * 200: Share created
+     */
+    #[NoAdminRequired]
+    #[UserRateLimit(limit: 20, period: 600)]
+    public function createShare(
+        ?string $path = null,
+        ?int $permissions = null,
+        int $shareType = -1,
+        ?string $shareWith = null,
+        ?string $publicUpload = null,
+        string $password = '',
+        ?string $sendPasswordByTalk = null,
+        ?string $expireDate = null,
+        string $note = '',
+        string $label = '',
+        ?string $attributes = null,
+        ?string $sendMail = null,
+    ): DataResponse {
+        assert($this->userId !== null);
+
+        $share = $this->shareManager->newShare();
+        $hasPublicUpload = $this->getLegacyPublicUpload($publicUpload);
+
+        // Verify path
+        if ($path === null) {
+            throw new OCSNotFoundException($this->l->t('Please specify a file or folder path'));
+        }
+
+        $userFolder = $this->rootFolder->getUserFolder($this->userId);
+        try {
+            /** @var \OC\Files\Node\Node $node */
+            $node = $userFolder->get($path);
+        } catch (NotFoundException $e) {
+            throw new OCSNotFoundException($this->l->t('Wrong path, file/folder does not exist'));
+        }
+
+        // a user can have access to a file through different paths, with differing permissions
+        // combine all permissions to determine if the user can share this file
+        $nodes = $userFolder->getById($node->getId());
+        foreach ($nodes as $nodeById) {
+            /** @var FileInfo $fileInfo */
+            $fileInfo = $node->getFileInfo();
+            $fileInfo['permissions'] |= $nodeById->getPermissions();
+        }
+
+        $share->setNode($node);
+
+        try {
+            $this->lock($share->getNode());
+        } catch (LockedException $e) {
+            throw new OCSNotFoundException($this->l->t('Could not create share'));
+        }
+
+        // Set permissions
+        if ($shareType === IShare::TYPE_LINK || $shareType === IShare::TYPE_EMAIL) {
+            $permissions = $this->getLinkSharePermissions($permissions, $hasPublicUpload);
+            $this->validateLinkSharePermissions($node, $permissions, $hasPublicUpload);
+        } else {
+            // Use default permissions only for non-link shares to keep legacy behavior
+            if ($permissions === null) {
+                $permissions = (int)$this->config->getAppValue('core', 'shareapi_default_permissions', (string)Constants::PERMISSION_ALL);
+            }
+            // Non-link shares always require read permissions (link shares could be file drop)
+            $permissions |= Constants::PERMISSION_READ;
+        }
+
+        // For legacy reasons the API allows to pass PERMISSIONS_ALL even for single file shares (I look at you Talk)
+        if ($node instanceof File) {
+            // if this is a single file share we remove the DELETE and CREATE permissions
+            $permissions = $permissions & ~(Constants::PERMISSION_DELETE | Constants::PERMISSION_CREATE);
+        }
+
+        /**
+         * Hack for https://github.com/owncloud/core/issues/22587
+         * We check the permissions via webdav. But the permissions of the mount point
+         * do not equal the share permissions. Here we fix that for federated mounts.
+         */
+        if ($node->getStorage()->instanceOfStorage(Storage::class)) {
+            $permissions &= ~($permissions & ~$node->getPermissions());
+        }
+
+        if ($attributes !== null) {
+            $share = $this->setShareAttributes($share, $attributes);
+        }
+
+        // Expire date checks
+        // Normally, null means no expiration date but we still set the default for backwards compatibility
+        // If the client sends an empty string, we set noExpirationDate to true
+        if ($expireDate !== null) {
+            if ($expireDate !== '') {
+                try {
+                    $expireDateTime = $this->parseDate($expireDate);
+                    $share->setExpirationDate($expireDateTime);
+                } catch (\Exception $e) {
+                    throw new OCSNotFoundException($e->getMessage(), $e);
+                }
+            } else {
+                // Client sent empty string for expire date.
+                // Set noExpirationDate to true so overwrite is prevented.
+                $share->setNoExpirationDate(true);
+            }
+        }
+
+        $share->setSharedBy($this->userId);
+
+        // Handle mail send
+        if (is_null($sendMail)) {
+            $allowSendMail = $this->config->getSystemValueBool('sharing.enable_share_mail', true);
+            if ($allowSendMail !== true || $shareType === IShare::TYPE_EMAIL) {
+                // Define a default behavior when sendMail is not provided
+                // For email shares with a valid recipient, the default is to send the mail
+                // For all other share types, the default is to not send the mail
+                $allowSendMail = ($shareType === IShare::TYPE_EMAIL && $shareWith !== null && $shareWith !== '');
+            }
+            $share->setMailSend($allowSendMail);
+        } else {
+            $share->setMailSend($sendMail === 'true');
+        }
+
+        if ($shareType === IShare::TYPE_USER) {
+            // Valid user is required to share
+            if ($shareWith === null || !$this->userManager->userExists($shareWith)) {
+                throw new OCSNotFoundException($this->l->t('Please specify a valid account to share with'));
+            }
+            $share->setSharedWith($shareWith);
+            $share->setPermissions($permissions);
+        } elseif ($shareType === IShare::TYPE_GROUP) {
+            if (!$this->shareManager->allowGroupSharing()) {
+                throw new OCSNotFoundException($this->l->t('Group sharing is disabled by the administrator'));
+            }
+
+            // Valid group is required to share
+            if ($shareWith === null || !$this->groupManager->groupExists($shareWith)) {
+                throw new OCSNotFoundException($this->l->t('Please specify a valid group'));
+            }
+            $share->setSharedWith($shareWith);
+            $share->setPermissions($permissions);
+        } elseif ($shareType === IShare::TYPE_LINK
+            || $shareType === IShare::TYPE_EMAIL) {
+
+            // Can we even share links?
+            if (!$this->shareManager->shareApiAllowLinks()) {
+                throw new OCSNotFoundException($this->l->t('Public link sharing is disabled by the administrator'));
+            }
+
+            $this->validateLinkSharePermissions($node, $permissions, $hasPublicUpload);
+            $share->setPermissions($permissions);
+
+            // Set password
+            if ($password !== '') {
+                $share->setPassword($password);
+            }
+
+            // Only share by mail have a recipient
+            if (is_string($shareWith) && $shareType === IShare::TYPE_EMAIL) {
+                // If sending a mail have been requested, validate the mail address
+                if ($share->getMailSend() && !$this->emailValidator->isValid($shareWith)) {
+                    throw new OCSNotFoundException($this->l->t('Please specify a valid email address'));
+                }
+                $share->setSharedWith($shareWith);
+            }
+
+            // If we have a label, use it
+            if ($label !== '') {
+                if (strlen($label) > 255) {
+                    throw new OCSBadRequestException('Maximum label length is 255');
+                }
+                $share->setLabel($label);
+            }
+
+            if ($sendPasswordByTalk === 'true') {
+                if (!$this->appManager->isEnabledForUser('spreed')) {
+                    throw new OCSForbiddenException($this->l->t('Sharing %s sending the password by Nextcloud Talk failed because Nextcloud Talk is not enabled', [$node->getPath()]));
+                }
+
+                $share->setSendPasswordByTalk(true);
+            }
+        } elseif ($shareType === IShare::TYPE_REMOTE) {
+            if (!$this->shareManager->outgoingServer2ServerSharesAllowed()) {
+                throw new OCSForbiddenException($this->l->t('Sharing %1$s failed because the back end does not allow shares from type %2$s', [$node->getPath(), $shareType]));
+            }
+
+            if ($shareWith === null) {
+                throw new OCSNotFoundException($this->l->t('Please specify a valid federated account ID'));
+            }
+
+            $share->setSharedWith($shareWith);
+            $share->setPermissions($permissions);
+            $share->setSharedWithDisplayName($this->getCachedFederatedDisplayName($shareWith, false));
+        } elseif ($shareType === IShare::TYPE_REMOTE_GROUP) {
+            if (!$this->shareManager->outgoingServer2ServerGroupSharesAllowed()) {
+                throw new OCSForbiddenException($this->l->t('Sharing %1$s failed because the back end does not allow shares from type %2$s', [$node->getPath(), $shareType]));
+            }
+
+            if ($shareWith === null) {
+                throw new OCSNotFoundException($this->l->t('Please specify a valid federated group ID'));
+            }
+
+            $share->setSharedWith($shareWith);
+            $share->setPermissions($permissions);
+        } elseif ($shareType === IShare::TYPE_CIRCLE) {
+            if (!Server::get(IAppManager::class)->isEnabledForUser('circles') || !class_exists('\OCA\Circles\ShareByCircleProvider')) {
+                throw new OCSNotFoundException($this->l->t('You cannot share to a Team if the app is not enabled'));
+            }
+
+            $circle = Circles::detailsCircle($shareWith);
+
+            // Valid team is required to share
+            if ($circle === null) {
+                throw new OCSNotFoundException($this->l->t('Please specify a valid team'));
+            }
+            $share->setSharedWith($shareWith);
+            $share->setPermissions($permissions);
+        } elseif ($shareType === IShare::TYPE_ROOM) {
+            try {
+                $this->getRoomShareHelper()->createShare($share, $shareWith, $permissions, $expireDate ?? '');
+            } catch (ContainerExceptionInterface $e) {
+                throw new OCSForbiddenException($this->l->t('Sharing %s failed because the back end does not support room shares', [$node->getPath()]));
+            }
+        } elseif ($shareType === IShare::TYPE_DECK) {
+            try {
+                $this->getDeckShareHelper()->createShare($share, $shareWith, $permissions, $expireDate ?? '');
+            } catch (ContainerExceptionInterface $e) {
+                throw new OCSForbiddenException($this->l->t('Sharing %s failed because the back end does not support room shares', [$node->getPath()]));
+            }
+        } else {
+            throw new OCSBadRequestException($this->l->t('Unknown share type'));
+        }
+
+        $share->setShareType($shareType);
+        $this->checkInheritedAttributes($share);
+
+        if ($note !== '') {
+            $share->setNote($note);
+        }
+
+        try {
+            $share = $this->shareManager->createShare($share);
+        } catch (HintException $e) {
+            $code = $e->getCode() === 0 ? 403 : $e->getCode();
+            throw new OCSException($e->getHint(), $code);
+        } catch (GenericShareException|\InvalidArgumentException $e) {
+            $this->logger->error($e->getMessage(), ['exception' => $e]);
+            throw new OCSForbiddenException($e->getMessage(), $e);
+        } catch (\Exception $e) {
+            $this->logger->error($e->getMessage(), ['exception' => $e]);
+            throw new OCSForbiddenException('Failed to create share.', $e);
+        }
+
+        $output = $this->formatShare($share);
+
+        return new DataResponse($output);
+    }
+
+    /**
+     * @param null|Node $node
+     * @param boolean $includeTags
+     *
+     * @return list<Files_SharingShare>
+     */
+    private function getSharedWithMe($node, bool $includeTags): array {
+        $userShares = $this->shareManager->getSharedWith($this->userId, IShare::TYPE_USER, $node, -1, 0);
+        $groupShares = $this->shareManager->getSharedWith($this->userId, IShare::TYPE_GROUP, $node, -1, 0);
+        $circleShares = $this->shareManager->getSharedWith($this->userId, IShare::TYPE_CIRCLE, $node, -1, 0);
+        $roomShares = $this->shareManager->getSharedWith($this->userId, IShare::TYPE_ROOM, $node, -1, 0);
+        $deckShares = $this->shareManager->getSharedWith($this->userId, IShare::TYPE_DECK, $node, -1, 0);
+
+        $shares = array_merge($userShares, $groupShares, $circleShares, $roomShares, $deckShares);
+
+        $filteredShares = array_filter($shares, function (IShare $share) {
+            return $share->getShareOwner() !== $this->userId && $share->getSharedBy() !== $this->userId;
+        });
+
+        $formatted = [];
+        foreach ($filteredShares as $share) {
+            if ($this->canAccessShare($share)) {
+                try {
+                    $formatted[] = $this->formatShare($share);
+                } catch (NotFoundException $e) {
+                    // Ignore this share
+                }
+            }
+        }
+
+        if ($includeTags) {
+            $formatted = $this->populateTags($formatted);
+        }
+
+        return $formatted;
+    }
+
+    /**
+     * @param Node $folder
+     *
+     * @return list<Files_SharingShare>
+     * @throws OCSBadRequestException
+     * @throws NotFoundException
+     */
+    private function getSharesInDir(Node $folder): array {
+        if (!($folder instanceof Folder)) {
+            throw new OCSBadRequestException($this->l->t('Not a directory'));
+        }
+
+        $nodes = $folder->getDirectoryListing();
+
+        /** @var IShare[] $shares */
+        $shares = array_reduce($nodes, function ($carry, $node) {
+            $carry = array_merge($carry, $this->getAllShares($node, true));
+            return $carry;
+        }, []);
+
+        // filter out duplicate shares
+        $known = [];
+
+        $formatted = $miniFormatted = [];
+        $resharingRight = false;
+        $known = [];
+        foreach ($shares as $share) {
+            if (in_array($share->getId(), $known) || $share->getSharedWith() === $this->userId) {
+                continue;
+            }
+
+            try {
+                $format = $this->formatShare($share);
+
+                $known[] = $share->getId();
+                $formatted[] = $format;
+                if ($share->getSharedBy() === $this->userId) {
+                    $miniFormatted[] = $format;
+                }
+                if (!$resharingRight && $this->shareProviderResharingRights($this->userId, $share, $folder)) {
+                    $resharingRight = true;
+                }
+            } catch (\Exception $e) {
+                //Ignore this share
+            }
+        }
+
+        if (!$resharingRight) {
+            $formatted = $miniFormatted;
+        }
+
+        return $formatted;
+    }
+
+    /**
+     * Get shares of the current user
+     *
+     * @param string $shared_with_me Only get shares with the current user
+     * @param string $reshares Only get shares by the current user and reshares
+     * @param string $subfiles Only get all shares in a folder
+     * @param string $path Get shares for a specific path
+     * @param string $include_tags Include tags in the share
+     *
+     * @return DataResponse<Http::STATUS_OK, list<Files_SharingShare>, array{}>
+     * @throws OCSNotFoundException The folder was not found or is inaccessible
+     *
+     * 200: Shares returned
+     */
+    #[NoAdminRequired]
+    public function getShares(
+        string $shared_with_me = 'false',
+        string $reshares = 'false',
+        string $subfiles = 'false',
+        string $path = '',
+        string $include_tags = 'false',
+    ): DataResponse {
+        $node = null;
+        if ($path !== '') {
+            $userFolder = $this->rootFolder->getUserFolder($this->userId);
+            try {
+                $node = $userFolder->get($path);
+                $this->lock($node);
+            } catch (NotFoundException $e) {
+                throw new OCSNotFoundException(
+                    $this->l->t('Wrong path, file/folder does not exist')
+                );
+            } catch (LockedException $e) {
+                throw new OCSNotFoundException($this->l->t('Could not lock node'));
+            }
+        }
+
+        $shares = $this->getFormattedShares(
+            $this->userId,
+            $node,
+            ($shared_with_me === 'true'),
+            ($reshares === 'true'),
+            ($subfiles === 'true'),
+            ($include_tags === 'true')
+        );
+
+        return new DataResponse($shares);
+    }
+
+    private function getLinkSharePermissions(?int $permissions, ?bool $legacyPublicUpload): int {
+        $permissions = $permissions ?? Constants::PERMISSION_READ;
+
+        // Legacy option handling
+        if ($legacyPublicUpload !== null) {
+            $permissions = $legacyPublicUpload
+                ? (Constants::PERMISSION_READ | Constants::PERMISSION_CREATE | Constants::PERMISSION_UPDATE | Constants::PERMISSION_DELETE)
+                : Constants::PERMISSION_READ;
+        }
+
+        if ($this->hasPermission($permissions, Constants::PERMISSION_READ)
+            && $this->shareManager->outgoingServer2ServerSharesAllowed()
+            && $this->appConfig->getValueBool('core', ConfigLexicon::SHAREAPI_ALLOW_FEDERATION_ON_PUBLIC_SHARES)) {
+            $permissions |= Constants::PERMISSION_SHARE;
+        }
+
+        return $permissions;
+    }
+
+    /**
+     * Helper to check for legacy "publicUpload" handling.
+     * If the value is set to `true` or `false` then true or false are returned.
+     * Otherwise null is returned to indicate that the option was not (or wrong) set.
+     *
+     * @param null|string $legacyPublicUpload The value of `publicUpload`
+     */
+    private function getLegacyPublicUpload(?string $legacyPublicUpload): ?bool {
+        if ($legacyPublicUpload === 'true') {
+            return true;
+        } elseif ($legacyPublicUpload === 'false') {
+            return false;
+        }
+        // Not set at all
+        return null;
+    }
+
+    /**
+     * For link and email shares validate that only allowed combinations are set.
+     *
+     * @throw OCSBadRequestException If permission combination is invalid.
+     * @throw OCSForbiddenException If public upload was forbidden by the administrator.
+     */
+    private function validateLinkSharePermissions(Node $node, int $permissions, ?bool $legacyPublicUpload): void {
+        if ($legacyPublicUpload && ($node instanceof File)) {
+            throw new OCSBadRequestException($this->l->t('Public upload is only possible for publicly shared folders'));
+        }
+
+        // We need at least READ or CREATE (file drop)
+        if (!$this->hasPermission($permissions, Constants::PERMISSION_READ)
+            && !$this->hasPermission($permissions, Constants::PERMISSION_CREATE)) {
+            throw new OCSBadRequestException($this->l->t('Share must at least have READ or CREATE permissions'));
+        }
+
+        // UPDATE and DELETE require a READ permission
+        if (!$this->hasPermission($permissions, Constants::PERMISSION_READ)
+            && ($this->hasPermission($permissions, Constants::PERMISSION_UPDATE) || $this->hasPermission($permissions, Constants::PERMISSION_DELETE))) {
+            throw new OCSBadRequestException($this->l->t('Share must have READ permission if UPDATE or DELETE permission is set'));
+        }
+
+        // Check if public uploading was disabled
+        if ($this->hasPermission($permissions, Constants::PERMISSION_CREATE)
+            && !$this->shareManager->shareApiLinkAllowPublicUpload()) {
+            throw new OCSForbiddenException($this->l->t('Public upload disabled by the administrator'));
+        }
+    }
+
+    /**
+     * @param string $viewer
+     * @param Node $node
+     * @param bool $sharedWithMe
+     * @param bool $reShares
+     * @param bool $subFiles
+     * @param bool $includeTags
+     *
+     * @return list<Files_SharingShare>
+     * @throws NotFoundException
+     * @throws OCSBadRequestException
+     */
+    private function getFormattedShares(
+        string $viewer,
+        $node = null,
+        bool $sharedWithMe = false,
+        bool $reShares = false,
+        bool $subFiles = false,
+        bool $includeTags = false,
+    ): array {
+        if ($sharedWithMe) {
+            return $this->getSharedWithMe($node, $includeTags);
+        }
+
+        if ($subFiles) {
+            return $this->getSharesInDir($node);
+        }
+
+        $shares = $this->getSharesFromNode($viewer, $node, $reShares);
+
+        $known = $formatted = $miniFormatted = [];
+        $resharingRight = false;
+        foreach ($shares as $share) {
+            try {
+                $share->getNode();
+            } catch (NotFoundException $e) {
+                /*
 				 * Ignore shares where we can't get the node
 				 * For example deleted shares
 				 */
-				continue;
-			}
-
-			if (in_array($share->getId(), $known)
-				|| ($share->getSharedWith() === $this->userId && $share->getShareType() === IShare::TYPE_USER)) {
-				continue;
-			}
-
-			$known[] = $share->getId();
-			try {
-				/** @var IShare $share */
-				$format = $this->formatShare($share, $node);
-				$formatted[] = $format;
-
-				// let's also build a list of shares created
-				// by the current user only, in case
-				// there is no resharing rights
-				if ($share->getSharedBy() === $this->userId) {
-					$miniFormatted[] = $format;
-				}
-
-				// check if one of those share is shared with me
-				// and if I have resharing rights on it
-				if (!$resharingRight && $this->shareProviderResharingRights($this->userId, $share, $node)) {
-					$resharingRight = true;
-				}
-			} catch (InvalidPathException|NotFoundException $e) {
-			}
-		}
-
-		if (!$resharingRight) {
-			$formatted = $miniFormatted;
-		}
-
-		// fix eventual missing display name from federated shares
-		$formatted = $this->fixMissingDisplayName($formatted);
-
-		if ($includeTags) {
-			$formatted = $this->populateTags($formatted);
-		}
-
-		return $formatted;
-	}
-
-
-	/**
-	 * Get all shares relative to a file, including parent folders shares rights
-	 *
-	 * @param string $path Path all shares will be relative to
-	 *
-	 * @return DataResponse<Http::STATUS_OK, list<Files_SharingShare>, array{}>
-	 * @throws InvalidPathException
-	 * @throws NotFoundException
-	 * @throws OCSNotFoundException The given path is invalid
-	 * @throws SharingRightsException
-	 *
-	 * 200: Shares returned
-	 */
-	#[NoAdminRequired]
-	public function getInheritedShares(string $path): DataResponse {
-		// get Node from (string) path.
-		$userFolder = $this->rootFolder->getUserFolder($this->userId);
-		try {
-			$node = $userFolder->get($path);
-			$this->lock($node);
-		} catch (NotFoundException $e) {
-			throw new OCSNotFoundException($this->l->t('Wrong path, file/folder does not exist'));
-		} catch (LockedException $e) {
-			throw new OCSNotFoundException($this->l->t('Could not lock path'));
-		}
-
-		if (!($node->getPermissions() & Constants::PERMISSION_SHARE)) {
-			throw new SharingRightsException($this->l->t('no sharing rights on this item'));
-		}
-
-		// The current top parent we have access to
-		$parent = $node;
-
-		// initiate real owner.
-		$owner = $node->getOwner()
-			->getUID();
-		if (!$this->userManager->userExists($owner)) {
-			return new DataResponse([]);
-		}
-
-		// get node based on the owner, fix owner in case of external storage
-		$userFolder = $this->rootFolder->getUserFolder($owner);
-		if ($node->getId() !== $userFolder->getId() && !$userFolder->isSubNode($node)) {
-			$owner = $node->getOwner()
-				->getUID();
-			$userFolder = $this->rootFolder->getUserFolder($owner);
-			$node = $userFolder->getFirstNodeById($node->getId());
-		}
-		$basePath = $userFolder->getPath();
-
-		// generate node list for each parent folders
-		/** @var Node[] $nodes */
-		$nodes = [];
-		while (true) {
-			$node = $node->getParent();
-			if ($node->getPath() === $basePath) {
-				break;
-			}
-			$nodes[] = $node;
-		}
-
-		// The user that is requesting this list
-		$currentUserFolder = $this->rootFolder->getUserFolder($this->userId);
-
-		// for each nodes, retrieve shares.
-		$shares = [];
-
-		foreach ($nodes as $node) {
-			$getShares = $this->getFormattedShares($owner, $node, false, true);
-
-			$currentUserNode = $currentUserFolder->getFirstNodeById($node->getId());
-			if ($currentUserNode) {
-				$parent = $currentUserNode;
-			}
-
-			$subPath = $currentUserFolder->getRelativePath($parent->getPath());
-			foreach ($getShares as &$share) {
-				$share['via_fileid'] = $parent->getId();
-				$share['via_path'] = $subPath;
-			}
-			$this->mergeFormattedShares($shares, $getShares);
-		}
-
-		return new DataResponse(array_values($shares));
-	}
-
-	/**
-	 * Check whether a set of permissions contains the permissions to check.
-	 */
-	private function hasPermission(int $permissionsSet, int $permissionsToCheck): bool {
-		return ($permissionsSet & $permissionsToCheck) === $permissionsToCheck;
-	}
-
-	/**
-	 * Update a share
-	 *
-	 * @param string $id ID of the share
-	 * @param int|null $permissions New permissions
-	 * @param string|null $password New password
-	 * @param string|null $sendPasswordByTalk New condition if the password should be send over Talk
-	 * @param string|null $publicUpload New condition if public uploading is allowed
-	 * @param string|null $expireDate New expiry date
-	 * @param string|null $note New note
-	 * @param string|null $label New label
-	 * @param string|null $hideDownload New condition if the download should be hidden
-	 * @param string|null $attributes New additional attributes
-	 * @param string|null $sendMail if the share should be send by mail.
-	 *                              Considering the share already exists, no mail will be send after the share is updated.
-	 *                              You will have to use the sendMail action to send the mail.
-	 * @param string|null $shareWith New recipient for email shares
-	 * @param string|null $token New token
-	 * @return DataResponse<Http::STATUS_OK, Files_SharingShare, array{}>
-	 * @throws OCSBadRequestException Share could not be updated because the requested changes are invalid
-	 * @throws OCSForbiddenException Missing permissions to update the share
-	 * @throws OCSNotFoundException Share not found
-	 *
-	 * 200: Share updated successfully
-	 */
-	#[NoAdminRequired]
-	public function updateShare(
-		string $id,
-		?int $permissions = null,
-		?string $password = null,
-		?string $sendPasswordByTalk = null,
-		?string $publicUpload = null,
-		?string $expireDate = null,
-		?string $note = null,
-		?string $label = null,
-		?string $hideDownload = null,
-		?string $attributes = null,
-		?string $sendMail = null,
-		?string $token = null,
-	): DataResponse {
-		try {
-			$share = $this->getShareById($id);
-		} catch (ShareNotFound $e) {
-			throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
-		}
-
-		$this->lock($share->getNode());
-
-		if (!$this->canAccessShare($share, false)) {
-			throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
-		}
-
-		if (!$this->canEditShare($share)) {
-			throw new OCSForbiddenException($this->l->t('You are not allowed to edit incoming shares'));
-		}
-
-		if (
-			$permissions === null
-			&& $password === null
-			&& $sendPasswordByTalk === null
-			&& $publicUpload === null
-			&& $expireDate === null
-			&& $note === null
-			&& $label === null
-			&& $hideDownload === null
-			&& $attributes === null
-			&& $sendMail === null
-			&& $token === null
-		) {
-			throw new OCSBadRequestException($this->l->t('Wrong or no update parameter given'));
-		}
-
-		if ($note !== null) {
-			$share->setNote($note);
-		}
-
-		if ($attributes !== null) {
-			$share = $this->setShareAttributes($share, $attributes);
-		}
-
-		// Handle mail send
-		if ($sendMail === 'true' || $sendMail === 'false') {
-			$share->setMailSend($sendMail === 'true');
-		}
-
-		/**
-		 * expiration date, password and publicUpload only make sense for link shares
-		 */
-		if ($share->getShareType() === IShare::TYPE_LINK
-			|| $share->getShareType() === IShare::TYPE_EMAIL) {
-
-			// Update hide download state
-			if ($hideDownload === 'true') {
-				$share->setHideDownload(true);
-			} elseif ($hideDownload === 'false') {
-				$share->setHideDownload(false);
-			}
-
-			// If either manual permissions are specified or publicUpload
-			// then we need to also update the permissions of the share
-			if ($permissions !== null || $publicUpload !== null) {
-				$hasPublicUpload = $this->getLegacyPublicUpload($publicUpload);
-				$permissions = $this->getLinkSharePermissions($permissions ?? Constants::PERMISSION_READ, $hasPublicUpload);
-				$this->validateLinkSharePermissions($share->getNode(), $permissions, $hasPublicUpload);
-				$share->setPermissions($permissions);
-			}
-
-			$passwordParamSent = $password !== null;
-			if ($passwordParamSent) {
-				if ($password === '') {
-					$share->setPassword(null);
-				} else {
-					$share->setPassword($password);
-				}
-			}
-
-			if ($label !== null) {
-				if (strlen($label) > 255) {
-					throw new OCSBadRequestException('Maximum label length is 255');
-				}
-				$share->setLabel($label);
-			}
-
-			if ($sendPasswordByTalk === 'true') {
-				if (!$this->appManager->isEnabledForUser('spreed')) {
-					throw new OCSForbiddenException($this->l->t('"Sending the password by Nextcloud Talk" for sharing a file or folder failed because Nextcloud Talk is not enabled.'));
-				}
-
-				$share->setSendPasswordByTalk(true);
-			} elseif ($sendPasswordByTalk !== null) {
-				$share->setSendPasswordByTalk(false);
-			}
-
-			if ($token !== null) {
-				if (!$this->shareManager->allowCustomTokens()) {
-					throw new OCSForbiddenException($this->l->t('Custom share link tokens have been disabled by the administrator'));
-				}
-				if (!$this->validateToken($token)) {
-					throw new OCSBadRequestException($this->l->t('Tokens must contain at least 1 character and may only contain letters, numbers, or a hyphen'));
-				}
-				$share->setToken($token);
-			}
-		}
-
-		// NOT A LINK SHARE
-		else {
-			if ($permissions !== null) {
-				$share->setPermissions($permissions);
-			}
-		}
-
-		if ($expireDate === '') {
-			$share->setExpirationDate(null);
-		} elseif ($expireDate !== null) {
-			try {
-				$expireDateTime = $this->parseDate($expireDate);
-				$share->setExpirationDate($expireDateTime);
-			} catch (\Exception $e) {
-				throw new OCSBadRequestException($e->getMessage(), $e);
-			}
-		}
-
-		try {
-			$this->checkInheritedAttributes($share);
-			$share = $this->shareManager->updateShare($share);
-		} catch (HintException $e) {
-			$code = $e->getCode() === 0 ? 403 : $e->getCode();
-			throw new OCSException($e->getHint(), (int)$code);
-		} catch (\Exception $e) {
-			$this->logger->error($e->getMessage(), ['exception' => $e]);
-			throw new OCSBadRequestException('Failed to update share.', $e);
-		}
-
-		return new DataResponse($this->formatShare($share));
-	}
-
-	private function validateToken(string $token): bool {
-		if (mb_strlen($token) === 0) {
-			return false;
-		}
-		if (!preg_match('/^[a-z0-9-]+$/i', $token)) {
-			return false;
-		}
-		return true;
-	}
-
-	/**
-	 * Get all shares that are still pending
-	 *
-	 * @return DataResponse<Http::STATUS_OK, list<Files_SharingShare>, array{}>
-	 *
-	 * 200: Pending shares returned
-	 */
-	#[NoAdminRequired]
-	public function pendingShares(): DataResponse {
-		$pendingShares = [];
-
-		$shareTypes = [
-			IShare::TYPE_USER,
-			IShare::TYPE_GROUP
-		];
-
-		foreach ($shareTypes as $shareType) {
-			$shares = $this->shareManager->getSharedWith($this->userId, $shareType, null, -1, 0);
-
-			foreach ($shares as $share) {
-				if ($share->getStatus() === IShare::STATUS_PENDING || $share->getStatus() === IShare::STATUS_REJECTED) {
-					$pendingShares[] = $share;
-				}
-			}
-		}
-
-		$result = array_values(array_filter(array_map(function (IShare $share) {
-			$userFolder = $this->rootFolder->getUserFolder($share->getSharedBy());
-			$node = $userFolder->getFirstNodeById($share->getNodeId());
-			if (!$node) {
-				// fallback to guessing the path
-				$node = $userFolder->get($share->getTarget());
-				if ($node === null || $share->getTarget() === '') {
-					return null;
-				}
-			}
-
-			try {
-				$formattedShare = $this->formatShare($share, $node);
-				$formattedShare['path'] = '/' . $share->getNode()->getName();
-				$formattedShare['permissions'] = 0;
-				return $formattedShare;
-			} catch (NotFoundException $e) {
-				return null;
-			}
-		}, $pendingShares), function ($entry) {
-			return $entry !== null;
-		}));
-
-		return new DataResponse($result);
-	}
-
-	/**
-	 * Accept a share
-	 *
-	 * @param string $id ID of the share
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 * @throws OCSNotFoundException Share not found
-	 * @throws OCSException
-	 * @throws OCSBadRequestException Share could not be accepted
-	 *
-	 * 200: Share accepted successfully
-	 */
-	#[NoAdminRequired]
-	public function acceptShare(string $id): DataResponse {
-		try {
-			$share = $this->getShareById($id);
-		} catch (ShareNotFound $e) {
-			throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
-		}
-
-		if (!$this->canAccessShare($share)) {
-			throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
-		}
-
-		try {
-			$this->shareManager->acceptShare($share, $this->userId);
-		} catch (HintException $e) {
-			$code = $e->getCode() === 0 ? 403 : $e->getCode();
-			throw new OCSException($e->getHint(), (int)$code);
-		} catch (\Exception $e) {
-			$this->logger->error($e->getMessage(), ['exception' => $e]);
-			throw new OCSBadRequestException('Failed to accept share.', $e);
-		}
-
-		return new DataResponse();
-	}
-
-	/**
-	 * Does the user have read permission on the share
-	 *
-	 * @param IShare $share the share to check
-	 * @param boolean $checkGroups check groups as well?
-	 * @return boolean
-	 * @throws NotFoundException
-	 *
-	 * @suppress PhanUndeclaredClassMethod
-	 */
-	protected function canAccessShare(IShare $share, bool $checkGroups = true): bool {
-		// A file with permissions 0 can't be accessed by us. So Don't show it
-		if ($share->getPermissions() === 0) {
-			return false;
-		}
-
-		// Owner of the file and the sharer of the file can always get share
-		if ($share->getShareOwner() === $this->userId
-			|| $share->getSharedBy() === $this->userId) {
-			return true;
-		}
-
-		// If the share is shared with you, you can access it!
-		if ($share->getShareType() === IShare::TYPE_USER
-			&& $share->getSharedWith() === $this->userId) {
-			return true;
-		}
-
-		// Have reshare rights on the shared file/folder ?
-		// Does the currentUser have access to the shared file?
-		$userFolder = $this->rootFolder->getUserFolder($this->userId);
-		$file = $userFolder->getFirstNodeById($share->getNodeId());
-		if ($file && $this->shareProviderResharingRights($this->userId, $share, $file)) {
-			return true;
-		}
-
-		// If in the recipient group, you can see the share
-		if ($checkGroups && $share->getShareType() === IShare::TYPE_GROUP) {
-			$sharedWith = $this->groupManager->get($share->getSharedWith());
-			$user = $this->userManager->get($this->userId);
-			if ($user !== null && $sharedWith !== null && $sharedWith->inGroup($user)) {
-				return true;
-			}
-		}
-
-		if ($share->getShareType() === IShare::TYPE_CIRCLE) {
-			// TODO: have a sanity check like above?
-			return true;
-		}
-
-		if ($share->getShareType() === IShare::TYPE_ROOM) {
-			try {
-				return $this->getRoomShareHelper()->canAccessShare($share, $this->userId);
-			} catch (ContainerExceptionInterface $e) {
-				return false;
-			}
-		}
-
-		if ($share->getShareType() === IShare::TYPE_DECK) {
-			try {
-				return $this->getDeckShareHelper()->canAccessShare($share, $this->userId);
-			} catch (ContainerExceptionInterface $e) {
-				return false;
-			}
-		}
-
-		return false;
-	}
-
-	/**
-	 * Does the user have edit permission on the share
-	 *
-	 * @param IShare $share the share to check
-	 * @return boolean
-	 */
-	protected function canEditShare(IShare $share): bool {
-		// A file with permissions 0 can't be accessed by us. So Don't show it
-		if ($share->getPermissions() === 0) {
-			return false;
-		}
-
-		// The owner of the file and the creator of the share
-		// can always edit the share
-		if ($share->getShareOwner() === $this->userId
-			|| $share->getSharedBy() === $this->userId
-		) {
-			return true;
-		}
-
-		$userFolder = $this->rootFolder->getUserFolder($this->userId);
-		$file = $userFolder->getFirstNodeById($share->getNodeId());
-		if ($file?->getMountPoint() instanceof IShareOwnerlessMount && $this->shareProviderResharingRights($this->userId, $share, $file)) {
-			return true;
-		}
-
-		//! we do NOT support some kind of `admin` in groups.
-		//! You cannot edit shares shared to a group you're
-		//! a member of if you're not the share owner or the file owner!
-
-		return false;
-	}
-
-	/**
-	 * Does the user have delete permission on the share
-	 *
-	 * @param IShare $share the share to check
-	 * @return boolean
-	 */
-	protected function canDeleteShare(IShare $share): bool {
-		// A file with permissions 0 can't be accessed by us. So Don't show it
-		if ($share->getPermissions() === 0) {
-			return false;
-		}
-
-		// if the user is the recipient, i can unshare
-		// the share with self
-		if ($share->getShareType() === IShare::TYPE_USER
-			&& $share->getSharedWith() === $this->userId
-		) {
-			return true;
-		}
-
-		// The owner of the file and the creator of the share
-		// can always delete the share
-		if ($share->getShareOwner() === $this->userId
-			|| $share->getSharedBy() === $this->userId
-		) {
-			return true;
-		}
-
-		$userFolder = $this->rootFolder->getUserFolder($this->userId);
-		$file = $userFolder->getFirstNodeById($share->getNodeId());
-		if ($file?->getMountPoint() instanceof IShareOwnerlessMount && $this->shareProviderResharingRights($this->userId, $share, $file)) {
-			return true;
-		}
-
-		return false;
-	}
-
-	/**
-	 * Does the user have delete permission on the share
-	 * This differs from the canDeleteShare function as it only
-	 * remove the share for the current user. It does NOT
-	 * completely delete the share but only the mount point.
-	 * It can then be restored from the deleted shares section.
-	 *
-	 * @param IShare $share the share to check
-	 * @return boolean
-	 *
-	 * @suppress PhanUndeclaredClassMethod
-	 */
-	protected function canDeleteShareFromSelf(IShare $share): bool {
-		if ($share->getShareType() !== IShare::TYPE_GROUP
-			&& $share->getShareType() !== IShare::TYPE_ROOM
-			&& $share->getShareType() !== IShare::TYPE_DECK
-		) {
-			return false;
-		}
-
-		if ($share->getShareOwner() === $this->userId
-			|| $share->getSharedBy() === $this->userId
-		) {
-			// Delete the whole share, not just for self
-			return false;
-		}
-
-		// If in the recipient group, you can delete the share from self
-		if ($share->getShareType() === IShare::TYPE_GROUP) {
-			$sharedWith = $this->groupManager->get($share->getSharedWith());
-			$user = $this->userManager->get($this->userId);
-			if ($user !== null && $sharedWith !== null && $sharedWith->inGroup($user)) {
-				return true;
-			}
-		}
-
-		if ($share->getShareType() === IShare::TYPE_ROOM) {
-			try {
-				return $this->getRoomShareHelper()->canAccessShare($share, $this->userId);
-			} catch (ContainerExceptionInterface $e) {
-				return false;
-			}
-		}
-
-		if ($share->getShareType() === IShare::TYPE_DECK) {
-			try {
-				return $this->getDeckShareHelper()->canAccessShare($share, $this->userId);
-			} catch (ContainerExceptionInterface $e) {
-				return false;
-			}
-		}
-
-		return false;
-	}
-
-	/**
-	 * Make sure that the passed date is valid ISO 8601
-	 * So YYYY-MM-DD
-	 * If not throw an exception
-	 *
-	 * @param string $expireDate
-	 *
-	 * @throws \Exception
-	 * @return \DateTime
-	 */
-	private function parseDate(string $expireDate): \DateTime {
-		try {
-			$date = new \DateTime(trim($expireDate, '"'), $this->dateTimeZone->getTimeZone());
-			// Make sure it expires at midnight in owner timezone
-			$date->setTime(0, 0, 0);
-		} catch (\Exception $e) {
-			throw new \Exception($this->l->t('Invalid date. Format must be YYYY-MM-DD'));
-		}
-
-		return $date;
-	}
-
-	/**
-	 * Since we have multiple providers but the OCS Share API v1 does
-	 * not support this we need to check all backends.
-	 *
-	 * @param string $id
-	 * @return IShare
-	 * @throws ShareNotFound
-	 */
-	private function getShareById(string $id): IShare {
-		$providers = [
-			'ocinternal' => null, // No type check needed
-			'ocCircleShare' => IShare::TYPE_CIRCLE,
-			'ocMailShare' => IShare::TYPE_EMAIL,
-			'ocRoomShare' => null,
-			'deck' => IShare::TYPE_DECK,
-		];
-
-		// Add federated sharing as a provider only if it's allowed
-		if ($this->shareManager->outgoingServer2ServerSharesAllowed()) {
-			$providers['ocFederatedSharing'] = null; // No type check needed
-		}
-
-		foreach ($providers as $prefix => $type) {
-			try {
-				if ($type === null || $this->shareManager->shareProviderExists($type)) {
-					return $this->shareManager->getShareById($prefix . ':' . $id, $this->userId);
-				}
-			} catch (ShareNotFound $e) {
-				// Do nothing, continue to next provider
-			} catch (\Exception $e) {
-				$this->logger->warning('Unexpected error in share provider', [
-					'shareId' => $id,
-					'provider' => $prefix,
-					'exception' => $e,
-				]);
-			}
-		}
-		throw new ShareNotFound();
-	}
-
-	/**
-	 * Lock a Node
-	 *
-	 * @param Node $node
-	 * @throws LockedException
-	 */
-	private function lock(Node $node) {
-		$node->lock(ILockingProvider::LOCK_SHARED);
-		$this->lockedNode = $node;
-	}
-
-	/**
-	 * Cleanup the remaining locks
-	 * @throws LockedException
-	 */
-	public function cleanup() {
-		if ($this->lockedNode !== null) {
-			$this->lockedNode->unlock(ILockingProvider::LOCK_SHARED);
-		}
-	}
-
-	/**
-	 * Returns the helper of ShareAPIController for room shares.
-	 *
-	 * If the Talk application is not enabled or the helper is not available
-	 * a ContainerExceptionInterface is thrown instead.
-	 *
-	 * @return \OCA\Talk\Share\Helper\ShareAPIController
-	 * @throws ContainerExceptionInterface
-	 */
-	private function getRoomShareHelper() {
-		if (!$this->appManager->isEnabledForUser('spreed')) {
-			throw new QueryException();
-		}
-
-		return $this->serverContainer->get('\OCA\Talk\Share\Helper\ShareAPIController');
-	}
-
-	/**
-	 * Returns the helper of ShareAPIHelper for deck shares.
-	 *
-	 * If the Deck application is not enabled or the helper is not available
-	 * a ContainerExceptionInterface is thrown instead.
-	 *
-	 * @return ShareAPIHelper
-	 * @throws ContainerExceptionInterface
-	 */
-	private function getDeckShareHelper() {
-		if (!$this->appManager->isEnabledForUser('deck')) {
-			throw new QueryException();
-		}
-
-		return $this->serverContainer->get('\OCA\Deck\Sharing\ShareAPIHelper');
-	}
-
-	/**
-	 * Returns the helper of ShareAPIHelper for sciencemesh shares.
-	 *
-	 * If the sciencemesh application is not enabled or the helper is not available
-	 * a ContainerExceptionInterface is thrown instead.
-	 *
-	 * @return ShareAPIHelper
-	 * @throws ContainerExceptionInterface
-	 */
-	private function getSciencemeshShareHelper() {
-		if (!$this->appManager->isEnabledForUser('sciencemesh')) {
-			throw new QueryException();
-		}
-
-		return $this->serverContainer->get('\OCA\ScienceMesh\Sharing\ShareAPIHelper');
-	}
-
-	/**
-	 * @param string $viewer
-	 * @param Node $node
-	 * @param bool $reShares
-	 *
-	 * @return IShare[]
-	 */
-	private function getSharesFromNode(string $viewer, $node, bool $reShares): array {
-		$providers = [
-			IShare::TYPE_USER,
-			IShare::TYPE_GROUP,
-			IShare::TYPE_LINK,
-			IShare::TYPE_EMAIL,
-			IShare::TYPE_CIRCLE,
-			IShare::TYPE_ROOM,
-			IShare::TYPE_DECK,
-		];
-
-		// Should we assume that the (currentUser) viewer is the owner of the node !?
-		$shares = [];
-		foreach ($providers as $provider) {
-			if (!$this->shareManager->shareProviderExists($provider)) {
-				continue;
-			}
-
-			$providerShares
-				= $this->shareManager->getSharesBy($viewer, $provider, $node, $reShares, -1, 0);
-			$shares = array_merge($shares, $providerShares);
-		}
-
-		if ($this->shareManager->outgoingServer2ServerSharesAllowed()) {
-			$federatedShares = $this->shareManager->getSharesBy(
-				$this->userId, IShare::TYPE_REMOTE, $node, $reShares, -1, 0
-			);
-			$shares = array_merge($shares, $federatedShares);
-		}
-
-		if ($this->shareManager->outgoingServer2ServerGroupSharesAllowed()) {
-			$federatedShares = $this->shareManager->getSharesBy(
-				$this->userId, IShare::TYPE_REMOTE_GROUP, $node, $reShares, -1, 0
-			);
-			$shares = array_merge($shares, $federatedShares);
-		}
-
-		return $shares;
-	}
-
-
-	/**
-	 * @param Node $node
-	 *
-	 * @throws SharingRightsException
-	 */
-	private function confirmSharingRights(Node $node): void {
-		if (!$this->hasResharingRights($this->userId, $node)) {
-			throw new SharingRightsException($this->l->t('No sharing rights on this item'));
-		}
-	}
-
-
-	/**
-	 * @param string $viewer
-	 * @param Node $node
-	 *
-	 * @return bool
-	 */
-	private function hasResharingRights($viewer, $node): bool {
-		if ($viewer === $node->getOwner()->getUID()) {
-			return true;
-		}
-
-		foreach ([$node, $node->getParent()] as $node) {
-			$shares = $this->getSharesFromNode($viewer, $node, true);
-			foreach ($shares as $share) {
-				try {
-					if ($this->shareProviderResharingRights($viewer, $share, $node)) {
-						return true;
-					}
-				} catch (InvalidPathException|NotFoundException $e) {
-				}
-			}
-		}
-
-		return false;
-	}
-
-
-	/**
-	 * Returns if we can find resharing rights in an IShare object for a specific user.
-	 *
-	 * @suppress PhanUndeclaredClassMethod
-	 *
-	 * @param string $userId
-	 * @param IShare $share
-	 * @param Node $node
-	 *
-	 * @return bool
-	 * @throws NotFoundException
-	 * @throws InvalidPathException
-	 */
-	private function shareProviderResharingRights(string $userId, IShare $share, $node): bool {
-		if ($share->getShareOwner() === $userId) {
-			return true;
-		}
-
-		// we check that current user have parent resharing rights on the current file
-		if ($node !== null && ($node->getPermissions() & Constants::PERMISSION_SHARE) !== 0) {
-			return true;
-		}
-
-		if ((Constants::PERMISSION_SHARE & $share->getPermissions()) === 0) {
-			return false;
-		}
-
-		if ($share->getShareType() === IShare::TYPE_USER && $share->getSharedWith() === $userId) {
-			return true;
-		}
-
-		if ($share->getShareType() === IShare::TYPE_GROUP && $this->groupManager->isInGroup($userId, $share->getSharedWith())) {
-			return true;
-		}
-
-		if ($share->getShareType() === IShare::TYPE_CIRCLE && Server::get(IAppManager::class)->isEnabledForUser('circles')
-			&& class_exists('\OCA\Circles\Api\v1\Circles')) {
-			$hasCircleId = (str_ends_with($share->getSharedWith(), ']'));
-			$shareWithStart = ($hasCircleId ? strrpos($share->getSharedWith(), '[') + 1 : 0);
-			$shareWithLength = ($hasCircleId ? -1 : strpos($share->getSharedWith(), ' '));
-			if ($shareWithLength === false) {
-				$sharedWith = substr($share->getSharedWith(), $shareWithStart);
-			} else {
-				$sharedWith = substr($share->getSharedWith(), $shareWithStart, $shareWithLength);
-			}
-			try {
-				$member = Circles::getMember($sharedWith, $userId, 1);
-				if ($member->getLevel() >= 4) {
-					return true;
-				}
-				return false;
-			} catch (ContainerExceptionInterface $e) {
-				return false;
-			}
-		}
-
-		return false;
-	}
-
-	/**
-	 * Get all the shares for the current user
-	 *
-	 * @param Node|null $path
-	 * @param boolean $reshares
-	 * @return IShare[]
-	 */
-	private function getAllShares(?Node $path = null, bool $reshares = false) {
-		// Get all shares
-		$userShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_USER, $path, $reshares, -1, 0);
-		$groupShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_GROUP, $path, $reshares, -1, 0);
-		$linkShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_LINK, $path, $reshares, -1, 0);
-
-		// EMAIL SHARES
-		$mailShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_EMAIL, $path, $reshares, -1, 0);
-
-		// TEAM SHARES
-		$circleShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_CIRCLE, $path, $reshares, -1, 0);
-
-		// TALK SHARES
-		$roomShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_ROOM, $path, $reshares, -1, 0);
-
-		// DECK SHARES
-		$deckShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_DECK, $path, $reshares, -1, 0);
-
-		// FEDERATION
-		if ($this->shareManager->outgoingServer2ServerSharesAllowed()) {
-			$federatedShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_REMOTE, $path, $reshares, -1, 0);
-		} else {
-			$federatedShares = [];
-		}
-		if ($this->shareManager->outgoingServer2ServerGroupSharesAllowed()) {
-			$federatedGroupShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_REMOTE_GROUP, $path, $reshares, -1, 0);
-		} else {
-			$federatedGroupShares = [];
-		}
-
-		return array_merge($userShares, $groupShares, $linkShares, $mailShares, $circleShares, $roomShares, $deckShares, $federatedShares, $federatedGroupShares);
-	}
-
-
-	/**
-	 * merging already formatted shares.
-	 * We'll make an associative array to easily detect duplicate Ids.
-	 * Keys _needs_ to be removed after all shares are retrieved and merged.
-	 *
-	 * @param array $shares
-	 * @param array $newShares
-	 */
-	private function mergeFormattedShares(array &$shares, array $newShares) {
-		foreach ($newShares as $newShare) {
-			if (!array_key_exists($newShare['id'], $shares)) {
-				$shares[$newShare['id']] = $newShare;
-			}
-		}
-	}
-
-	/**
-	 * @param IShare $share
-	 * @param string|null $attributesString
-	 * @return IShare modified share
-	 */
-	private function setShareAttributes(IShare $share, ?string $attributesString) {
-		$newShareAttributes = null;
-		if ($attributesString !== null) {
-			$newShareAttributes = $this->shareManager->newShare()->newAttributes();
-			$formattedShareAttributes = \json_decode($attributesString, true);
-			if (is_array($formattedShareAttributes)) {
-				foreach ($formattedShareAttributes as $formattedAttr) {
-					$newShareAttributes->setAttribute(
-						$formattedAttr['scope'],
-						$formattedAttr['key'],
-						$formattedAttr['value'],
-					);
-				}
-			} else {
-				throw new OCSBadRequestException($this->l->t('Invalid share attributes provided: "%s"', [$attributesString]));
-			}
-		}
-		$share->setAttributes($newShareAttributes);
-
-		return $share;
-	}
-
-	private function checkInheritedAttributes(IShare $share): void {
-		if (!$share->getSharedBy()) {
-			return; // Probably in a test
-		}
-
-		$canDownload = false;
-		$hideDownload = true;
-		$userExplicitlySetHideDownload = $share->getHideDownload(); // Capture user's explicit choice
-
-		$userFolder = $this->rootFolder->getUserFolder($share->getSharedBy());
-		$nodes = $userFolder->getById($share->getNodeId());
-		foreach ($nodes as $node) {
-			// Owner always can download it - so allow it, but respect their explicit choice about hiding downloads
-			if ($node->getOwner()?->getUID() === $share->getSharedBy()) {
-				$canDownload = true;
-				$hideDownload = $userExplicitlySetHideDownload;
-				break;
-			}
-
-			if ($node->getStorage()->instanceOfStorage(SharedStorage::class)) {
-				$storage = $node->getStorage();
-				if ($storage instanceof Wrapper) {
-					$storage = $storage->getInstanceOfStorage(SharedStorage::class);
-					if ($storage === null) {
-						throw new \RuntimeException('Should not happen, instanceOfStorage but getInstanceOfStorage return null');
-					}
-				} else {
-					throw new \RuntimeException('Should not happen, instanceOfStorage but not a wrapper');
-				}
-
-				/** @var SharedStorage $storage */
-				$originalShare = $storage->getShare();
-				$inheritedAttributes = $originalShare->getAttributes();
-
-				// For federated shares: users can only be MORE restrictive, never LESS restrictive
-				// If parent has hideDownload=true, child MUST have hideDownload=true
-				$parentHidesDownload = $originalShare->getHideDownload();
-
-				// Check if download permission is available from parent
-				$parentAllowsDownload = $inheritedAttributes === null || $inheritedAttributes->getAttribute('permissions', 'download') !== false;
-
-				// Apply inheritance rules:
-				// 1. If parent hides download, child must hide download
-				// 2. If parent allows download, child can choose to hide or allow
-				// 3. If parent forbids download, child cannot allow download
-				$hideDownload = $parentHidesDownload || $userExplicitlySetHideDownload;
-
-				$canDownload = $canDownload || $parentAllowsDownload;
-
-			} elseif ($node->getStorage()->instanceOfStorage(Storage::class)) {
-				$canDownload = true; // in case of federation storage, we can expect the download to be activated by default
-				// For external federation storage, respect user's choice if downloads are available
-				$hideDownload = $userExplicitlySetHideDownload;
-			}
-		}
-
-		// Apply the final restrictions:
-		// 1. If parent doesn't allow downloads at all, force hide and disable download attribute
-		// 2. If parent allows downloads, respect user's hideDownload choice
-		if (!$canDownload) {
-			// Parent completely forbids downloads - must enforce this restriction
-			$share->setHideDownload(true);
-			$attributes = $share->getAttributes() ?? $share->newAttributes();
-			$attributes->setAttribute('permissions', 'download', false);
-			$share->setAttributes($attributes);
-		} elseif ($hideDownload) {
-			// Either parent forces hide, or user chooses to hide - respect this
-			$share->setHideDownload(true);
-		} else {
-			// User explicitly wants to allow downloads and parent permits it
-			$share->setHideDownload(false);
-		}
-	}
-
-	/**
-	 * Send a mail notification again for a share.
-	 * The mail_send option must be enabled for the given share.
-	 * @param string $id the share ID
-	 * @param string $password the password to check against. Necessary for password protected shares.
-	 * @throws OCSNotFoundException Share not found
-	 * @throws OCSForbiddenException You are not allowed to send mail notifications
-	 * @throws OCSBadRequestException Invalid request or wrong password
-	 * @throws OCSException Error while sending mail notification
-	 * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
-	 *
-	 * 200: The email notification was sent successfully
-	 */
-	#[NoAdminRequired]
-	#[UserRateLimit(limit: 10, period: 600)]
-	public function sendShareEmail(string $id, $password = ''): DataResponse {
-		try {
-			$share = $this->getShareById($id);
-
-			if (!$this->canAccessShare($share, false)) {
-				throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
-			}
-
-			if (!$this->canEditShare($share)) {
-				throw new OCSForbiddenException($this->l->t('You are not allowed to send mail notifications'));
-			}
-
-			// For mail and link shares, the user must be
-			// the owner of the share, not only the file owner.
-			if ($share->getShareType() === IShare::TYPE_EMAIL
-				|| $share->getShareType() === IShare::TYPE_LINK) {
-				if ($share->getSharedBy() !== $this->userId) {
-					throw new OCSForbiddenException($this->l->t('You are not allowed to send mail notifications'));
-				}
-			}
-
-			try {
-				$provider = $this->factory->getProviderForType($share->getShareType());
-				if (!($provider instanceof IShareProviderWithNotification)) {
-					throw new OCSBadRequestException($this->l->t('No mail notification configured for this share type'));
-				}
-
-				// Circumvent the password encrypted data by
-				// setting the password clear. We're not storing
-				// the password clear, it is just a temporary
-				// object manipulation. The password will stay
-				// encrypted in the database.
-				if ($share->getPassword() !== null && $share->getPassword() !== $password) {
-					if (!$this->shareManager->checkPassword($share, $password)) {
-						throw new OCSBadRequestException($this->l->t('Wrong password'));
-					}
-					$share = $share->setPassword($password);
-				}
-
-				$provider->sendMailNotification($share);
-				return new DataResponse();
-			} catch (Exception $e) {
-				$this->logger->error($e->getMessage(), ['exception' => $e]);
-				throw new OCSException($this->l->t('Error while sending mail notification'));
-			}
-
-		} catch (ShareNotFound $e) {
-			throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
-		}
-	}
-
-	/**
-	 * Get a unique share token
-	 *
-	 * @throws OCSException Failed to generate a unique token
-	 *
-	 * @return DataResponse<Http::STATUS_OK, array{token: string}, array{}>
-	 *
-	 * 200: Token generated successfully
-	 */
-	#[ApiRoute(verb: 'GET', url: '/api/v1/token')]
-	#[NoAdminRequired]
-	public function generateToken(): DataResponse {
-		try {
-			$token = $this->shareManager->generateToken();
-			return new DataResponse([
-				'token' => $token,
-			]);
-		} catch (ShareTokenException $e) {
-			throw new OCSException($this->l->t('Failed to generate a unique token'));
-		}
-	}
-
-	/**
-	 * Populate the result set with file tags
-	 *
-	 * @psalm-template T of array{tags?: list<string>, file_source: int, ...array<string, mixed>}
-	 * @param list<T> $fileList
-	 * @return list<T> file list populated with tags
-	 */
-	private function populateTags(array $fileList): array {
-		$tagger = $this->tagManager->load('files');
-		$tags = $tagger->getTagsForObjects(array_map(static fn (array $fileData) => $fileData['file_source'], $fileList));
-
-		if (!is_array($tags)) {
-			throw new \UnexpectedValueException('$tags must be an array');
-		}
-
-		// Set empty tag array
-		foreach ($fileList as &$fileData) {
-			$fileData['tags'] = [];
-		}
-		unset($fileData);
-
-		if (!empty($tags)) {
-			foreach ($tags as $fileId => $fileTags) {
-				foreach ($fileList as &$fileData) {
-					if ($fileId !== $fileData['file_source']) {
-						continue;
-					}
-
-					$fileData['tags'] = $fileTags;
-				}
-				unset($fileData);
-			}
-		}
-
-		return $fileList;
-	}
+                continue;
+            }
+
+            if (in_array($share->getId(), $known)
+                || ($share->getSharedWith() === $this->userId && $share->getShareType() === IShare::TYPE_USER)) {
+                continue;
+            }
+
+            $known[] = $share->getId();
+            try {
+                /** @var IShare $share */
+                $format = $this->formatShare($share, $node);
+                $formatted[] = $format;
+
+                // let's also build a list of shares created
+                // by the current user only, in case
+                // there is no resharing rights
+                if ($share->getSharedBy() === $this->userId) {
+                    $miniFormatted[] = $format;
+                }
+
+                // check if one of those share is shared with me
+                // and if I have resharing rights on it
+                if (!$resharingRight && $this->shareProviderResharingRights($this->userId, $share, $node)) {
+                    $resharingRight = true;
+                }
+            } catch (InvalidPathException|NotFoundException $e) {
+            }
+        }
+
+        if (!$resharingRight) {
+            $formatted = $miniFormatted;
+        }
+
+        // fix eventual missing display name from federated shares
+        $formatted = $this->fixMissingDisplayName($formatted);
+
+        if ($includeTags) {
+            $formatted = $this->populateTags($formatted);
+        }
+
+        return $formatted;
+    }
+
+
+    /**
+     * Get all shares relative to a file, including parent folders shares rights
+     *
+     * @param string $path Path all shares will be relative to
+     *
+     * @return DataResponse<Http::STATUS_OK, list<Files_SharingShare>, array{}>
+     * @throws InvalidPathException
+     * @throws NotFoundException
+     * @throws OCSNotFoundException The given path is invalid
+     * @throws SharingRightsException
+     *
+     * 200: Shares returned
+     */
+    #[NoAdminRequired]
+    public function getInheritedShares(string $path): DataResponse {
+        // get Node from (string) path.
+        $userFolder = $this->rootFolder->getUserFolder($this->userId);
+        try {
+            $node = $userFolder->get($path);
+            $this->lock($node);
+        } catch (NotFoundException $e) {
+            throw new OCSNotFoundException($this->l->t('Wrong path, file/folder does not exist'));
+        } catch (LockedException $e) {
+            throw new OCSNotFoundException($this->l->t('Could not lock path'));
+        }
+
+        if (!($node->getPermissions() & Constants::PERMISSION_SHARE)) {
+            throw new SharingRightsException($this->l->t('no sharing rights on this item'));
+        }
+
+        // The current top parent we have access to
+        $parent = $node;
+
+        // initiate real owner.
+        $owner = $node->getOwner()
+            ->getUID();
+        if (!$this->userManager->userExists($owner)) {
+            return new DataResponse([]);
+        }
+
+        // get node based on the owner, fix owner in case of external storage
+        $userFolder = $this->rootFolder->getUserFolder($owner);
+        if ($node->getId() !== $userFolder->getId() && !$userFolder->isSubNode($node)) {
+            $owner = $node->getOwner()
+                ->getUID();
+            $userFolder = $this->rootFolder->getUserFolder($owner);
+            $node = $userFolder->getFirstNodeById($node->getId());
+        }
+        $basePath = $userFolder->getPath();
+
+        // generate node list for each parent folders
+        /** @var Node[] $nodes */
+        $nodes = [];
+        while (true) {
+            $node = $node->getParent();
+            if ($node->getPath() === $basePath) {
+                break;
+            }
+            $nodes[] = $node;
+        }
+
+        // The user that is requesting this list
+        $currentUserFolder = $this->rootFolder->getUserFolder($this->userId);
+
+        // for each nodes, retrieve shares.
+        $shares = [];
+
+        foreach ($nodes as $node) {
+            $getShares = $this->getFormattedShares($owner, $node, false, true);
+
+            $currentUserNode = $currentUserFolder->getFirstNodeById($node->getId());
+            if ($currentUserNode) {
+                $parent = $currentUserNode;
+            }
+
+            $subPath = $currentUserFolder->getRelativePath($parent->getPath());
+            foreach ($getShares as &$share) {
+                $share['via_fileid'] = $parent->getId();
+                $share['via_path'] = $subPath;
+            }
+            $this->mergeFormattedShares($shares, $getShares);
+        }
+
+        return new DataResponse(array_values($shares));
+    }
+
+    /**
+     * Check whether a set of permissions contains the permissions to check.
+     */
+    private function hasPermission(int $permissionsSet, int $permissionsToCheck): bool {
+        return ($permissionsSet & $permissionsToCheck) === $permissionsToCheck;
+    }
+
+    /**
+     * Update a share
+     *
+     * @param string $id ID of the share
+     * @param int|null $permissions New permissions
+     * @param string|null $password New password
+     * @param string|null $sendPasswordByTalk New condition if the password should be send over Talk
+     * @param string|null $publicUpload New condition if public uploading is allowed
+     * @param string|null $expireDate New expiry date
+     * @param string|null $note New note
+     * @param string|null $label New label
+     * @param string|null $hideDownload New condition if the download should be hidden
+     * @param string|null $attributes New additional attributes
+     * @param string|null $sendMail if the share should be send by mail.
+     *                              Considering the share already exists, no mail will be send after the share is updated.
+     *                              You will have to use the sendMail action to send the mail.
+     * @param string|null $shareWith New recipient for email shares
+     * @param string|null $token New token
+     * @return DataResponse<Http::STATUS_OK, Files_SharingShare, array{}>
+     * @throws OCSBadRequestException Share could not be updated because the requested changes are invalid
+     * @throws OCSForbiddenException Missing permissions to update the share
+     * @throws OCSNotFoundException Share not found
+     *
+     * 200: Share updated successfully
+     */
+    #[NoAdminRequired]
+    public function updateShare(
+        string $id,
+        ?int $permissions = null,
+        ?string $password = null,
+        ?string $sendPasswordByTalk = null,
+        ?string $publicUpload = null,
+        ?string $expireDate = null,
+        ?string $note = null,
+        ?string $label = null,
+        ?string $hideDownload = null,
+        ?string $attributes = null,
+        ?string $sendMail = null,
+        ?string $token = null,
+    ): DataResponse {
+        try {
+            $share = $this->getShareById($id);
+        } catch (ShareNotFound $e) {
+            throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
+        }
+
+        $this->lock($share->getNode());
+
+        if (!$this->canAccessShare($share, false)) {
+            throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
+        }
+
+        if (!$this->canEditShare($share)) {
+            throw new OCSForbiddenException($this->l->t('You are not allowed to edit incoming shares'));
+        }
+
+        if (
+            $permissions === null
+            && $password === null
+            && $sendPasswordByTalk === null
+            && $publicUpload === null
+            && $expireDate === null
+            && $note === null
+            && $label === null
+            && $hideDownload === null
+            && $attributes === null
+            && $sendMail === null
+            && $token === null
+        ) {
+            throw new OCSBadRequestException($this->l->t('Wrong or no update parameter given'));
+        }
+
+        if ($note !== null) {
+            $share->setNote($note);
+        }
+
+        if ($attributes !== null) {
+            $share = $this->setShareAttributes($share, $attributes);
+        }
+
+        // Handle mail send
+        if ($sendMail === 'true' || $sendMail === 'false') {
+            $share->setMailSend($sendMail === 'true');
+        }
+
+        /**
+         * expiration date, password and publicUpload only make sense for link shares
+         */
+        if ($share->getShareType() === IShare::TYPE_LINK
+            || $share->getShareType() === IShare::TYPE_EMAIL) {
+
+            // Update hide download state
+            if ($hideDownload === 'true') {
+                $share->setHideDownload(true);
+            } elseif ($hideDownload === 'false') {
+                $share->setHideDownload(false);
+            }
+
+            // If either manual permissions are specified or publicUpload
+            // then we need to also update the permissions of the share
+            if ($permissions !== null || $publicUpload !== null) {
+                $hasPublicUpload = $this->getLegacyPublicUpload($publicUpload);
+                $permissions = $this->getLinkSharePermissions($permissions ?? Constants::PERMISSION_READ, $hasPublicUpload);
+                $this->validateLinkSharePermissions($share->getNode(), $permissions, $hasPublicUpload);
+                $share->setPermissions($permissions);
+            }
+
+            $passwordParamSent = $password !== null;
+            if ($passwordParamSent) {
+                if ($password === '') {
+                    $share->setPassword(null);
+                } else {
+                    $share->setPassword($password);
+                }
+            }
+
+            if ($label !== null) {
+                if (strlen($label) > 255) {
+                    throw new OCSBadRequestException('Maximum label length is 255');
+                }
+                $share->setLabel($label);
+            }
+
+            if ($sendPasswordByTalk === 'true') {
+                if (!$this->appManager->isEnabledForUser('spreed')) {
+                    throw new OCSForbiddenException($this->l->t('"Sending the password by Nextcloud Talk" for sharing a file or folder failed because Nextcloud Talk is not enabled.'));
+                }
+
+                $share->setSendPasswordByTalk(true);
+            } elseif ($sendPasswordByTalk !== null) {
+                $share->setSendPasswordByTalk(false);
+            }
+
+            if ($token !== null) {
+                if (!$this->shareManager->allowCustomTokens()) {
+                    throw new OCSForbiddenException($this->l->t('Custom share link tokens have been disabled by the administrator'));
+                }
+                if (!$this->validateToken($token)) {
+                    throw new OCSBadRequestException($this->l->t('Tokens must contain at least 1 character and may only contain letters, numbers, or a hyphen'));
+                }
+                $share->setToken($token);
+            }
+        }
+
+        // NOT A LINK SHARE
+        else {
+            if ($permissions !== null) {
+                $share->setPermissions($permissions);
+            }
+        }
+
+        if ($expireDate === '') {
+            $share->setExpirationDate(null);
+        } elseif ($expireDate !== null) {
+            try {
+                $expireDateTime = $this->parseDate($expireDate);
+                $share->setExpirationDate($expireDateTime);
+            } catch (\Exception $e) {
+                throw new OCSBadRequestException($e->getMessage(), $e);
+            }
+        }
+
+        try {
+            $this->checkInheritedAttributes($share);
+            $share = $this->shareManager->updateShare($share);
+        } catch (HintException $e) {
+            $code = $e->getCode() === 0 ? 403 : $e->getCode();
+            throw new OCSException($e->getHint(), (int)$code);
+        } catch (\Exception $e) {
+            $this->logger->error($e->getMessage(), ['exception' => $e]);
+            throw new OCSBadRequestException('Failed to update share.', $e);
+        }
+
+        return new DataResponse($this->formatShare($share));
+    }
+
+    private function validateToken(string $token): bool {
+        if (mb_strlen($token) === 0) {
+            return false;
+        }
+        if (!preg_match('/^[a-z0-9-]+$/i', $token)) {
+            return false;
+        }
+        return true;
+    }
+
+    /**
+     * Get all shares that are still pending
+     *
+     * @return DataResponse<Http::STATUS_OK, list<Files_SharingShare>, array{}>
+     *
+     * 200: Pending shares returned
+     */
+    #[NoAdminRequired]
+    public function pendingShares(): DataResponse {
+        $pendingShares = [];
+
+        $shareTypes = [
+            IShare::TYPE_USER,
+            IShare::TYPE_GROUP
+        ];
+
+        foreach ($shareTypes as $shareType) {
+            $shares = $this->shareManager->getSharedWith($this->userId, $shareType, null, -1, 0);
+
+            foreach ($shares as $share) {
+                if ($share->getStatus() === IShare::STATUS_PENDING || $share->getStatus() === IShare::STATUS_REJECTED) {
+                    $pendingShares[] = $share;
+                }
+            }
+        }
+
+        $result = array_values(array_filter(array_map(function (IShare $share) {
+            $userFolder = $this->rootFolder->getUserFolder($share->getSharedBy());
+            $node = $userFolder->getFirstNodeById($share->getNodeId());
+            if (!$node) {
+                // fallback to guessing the path
+                $node = $userFolder->get($share->getTarget());
+                if ($node === null || $share->getTarget() === '') {
+                    return null;
+                }
+            }
+
+            try {
+                $formattedShare = $this->formatShare($share, $node);
+                $formattedShare['path'] = '/' . $share->getNode()->getName();
+                $formattedShare['permissions'] = 0;
+                return $formattedShare;
+            } catch (NotFoundException $e) {
+                return null;
+            }
+        }, $pendingShares), function ($entry) {
+            return $entry !== null;
+        }));
+
+        return new DataResponse($result);
+    }
+
+    /**
+     * Accept a share
+     *
+     * @param string $id ID of the share
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     * @throws OCSNotFoundException Share not found
+     * @throws OCSException
+     * @throws OCSBadRequestException Share could not be accepted
+     *
+     * 200: Share accepted successfully
+     */
+    #[NoAdminRequired]
+    public function acceptShare(string $id): DataResponse {
+        try {
+            $share = $this->getShareById($id);
+        } catch (ShareNotFound $e) {
+            throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
+        }
+
+        if (!$this->canAccessShare($share)) {
+            throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
+        }
+
+        try {
+            $this->shareManager->acceptShare($share, $this->userId);
+        } catch (HintException $e) {
+            $code = $e->getCode() === 0 ? 403 : $e->getCode();
+            throw new OCSException($e->getHint(), (int)$code);
+        } catch (\Exception $e) {
+            $this->logger->error($e->getMessage(), ['exception' => $e]);
+            throw new OCSBadRequestException('Failed to accept share.', $e);
+        }
+
+        return new DataResponse();
+    }
+
+    /**
+     * Does the user have read permission on the share
+     *
+     * @param IShare $share the share to check
+     * @param boolean $checkGroups check groups as well?
+     * @return boolean
+     * @throws NotFoundException
+     *
+     * @suppress PhanUndeclaredClassMethod
+     */
+    protected function canAccessShare(IShare $share, bool $checkGroups = true): bool {
+        // A file with permissions 0 can't be accessed by us. So Don't show it
+        if ($share->getPermissions() === 0) {
+            return false;
+        }
+
+        // Owner of the file and the sharer of the file can always get share
+        if ($share->getShareOwner() === $this->userId
+            || $share->getSharedBy() === $this->userId) {
+            return true;
+        }
+
+        // If the share is shared with you, you can access it!
+        if ($share->getShareType() === IShare::TYPE_USER
+            && $share->getSharedWith() === $this->userId) {
+            return true;
+        }
+
+        // Have reshare rights on the shared file/folder ?
+        // Does the currentUser have access to the shared file?
+        $userFolder = $this->rootFolder->getUserFolder($this->userId);
+        $file = $userFolder->getFirstNodeById($share->getNodeId());
+        if ($file && $this->shareProviderResharingRights($this->userId, $share, $file)) {
+            return true;
+        }
+
+        // If in the recipient group, you can see the share
+        if ($checkGroups && $share->getShareType() === IShare::TYPE_GROUP) {
+            $sharedWith = $this->groupManager->get($share->getSharedWith());
+            $user = $this->userManager->get($this->userId);
+            if ($user !== null && $sharedWith !== null && $sharedWith->inGroup($user)) {
+                return true;
+            }
+        }
+
+        if ($share->getShareType() === IShare::TYPE_CIRCLE) {
+            // TODO: have a sanity check like above?
+            return true;
+        }
+
+        if ($share->getShareType() === IShare::TYPE_ROOM) {
+            try {
+                return $this->getRoomShareHelper()->canAccessShare($share, $this->userId);
+            } catch (ContainerExceptionInterface $e) {
+                return false;
+            }
+        }
+
+        if ($share->getShareType() === IShare::TYPE_DECK) {
+            try {
+                return $this->getDeckShareHelper()->canAccessShare($share, $this->userId);
+            } catch (ContainerExceptionInterface $e) {
+                return false;
+            }
+        }
+
+        return false;
+    }
+
+    /**
+     * Does the user have edit permission on the share
+     *
+     * @param IShare $share the share to check
+     * @return boolean
+     */
+    protected function canEditShare(IShare $share): bool {
+        // A file with permissions 0 can't be accessed by us. So Don't show it
+        if ($share->getPermissions() === 0) {
+            return false;
+        }
+
+        // The owner of the file and the creator of the share
+        // can always edit the share
+        if ($share->getShareOwner() === $this->userId
+            || $share->getSharedBy() === $this->userId
+        ) {
+            return true;
+        }
+
+        $userFolder = $this->rootFolder->getUserFolder($this->userId);
+        $file = $userFolder->getFirstNodeById($share->getNodeId());
+        if ($file?->getMountPoint() instanceof IShareOwnerlessMount && $this->shareProviderResharingRights($this->userId, $share, $file)) {
+            return true;
+        }
+
+        //! we do NOT support some kind of `admin` in groups.
+        //! You cannot edit shares shared to a group you're
+        //! a member of if you're not the share owner or the file owner!
+
+        return false;
+    }
+
+    /**
+     * Does the user have delete permission on the share
+     *
+     * @param IShare $share the share to check
+     * @return boolean
+     */
+    protected function canDeleteShare(IShare $share): bool {
+        // A file with permissions 0 can't be accessed by us. So Don't show it
+        if ($share->getPermissions() === 0) {
+            return false;
+        }
+
+        // if the user is the recipient, i can unshare
+        // the share with self
+        if ($share->getShareType() === IShare::TYPE_USER
+            && $share->getSharedWith() === $this->userId
+        ) {
+            return true;
+        }
+
+        // The owner of the file and the creator of the share
+        // can always delete the share
+        if ($share->getShareOwner() === $this->userId
+            || $share->getSharedBy() === $this->userId
+        ) {
+            return true;
+        }
+
+        $userFolder = $this->rootFolder->getUserFolder($this->userId);
+        $file = $userFolder->getFirstNodeById($share->getNodeId());
+        if ($file?->getMountPoint() instanceof IShareOwnerlessMount && $this->shareProviderResharingRights($this->userId, $share, $file)) {
+            return true;
+        }
+
+        return false;
+    }
+
+    /**
+     * Does the user have delete permission on the share
+     * This differs from the canDeleteShare function as it only
+     * remove the share for the current user. It does NOT
+     * completely delete the share but only the mount point.
+     * It can then be restored from the deleted shares section.
+     *
+     * @param IShare $share the share to check
+     * @return boolean
+     *
+     * @suppress PhanUndeclaredClassMethod
+     */
+    protected function canDeleteShareFromSelf(IShare $share): bool {
+        if ($share->getShareType() !== IShare::TYPE_GROUP
+            && $share->getShareType() !== IShare::TYPE_ROOM
+            && $share->getShareType() !== IShare::TYPE_DECK
+        ) {
+            return false;
+        }
+
+        if ($share->getShareOwner() === $this->userId
+            || $share->getSharedBy() === $this->userId
+        ) {
+            // Delete the whole share, not just for self
+            return false;
+        }
+
+        // If in the recipient group, you can delete the share from self
+        if ($share->getShareType() === IShare::TYPE_GROUP) {
+            $sharedWith = $this->groupManager->get($share->getSharedWith());
+            $user = $this->userManager->get($this->userId);
+            if ($user !== null && $sharedWith !== null && $sharedWith->inGroup($user)) {
+                return true;
+            }
+        }
+
+        if ($share->getShareType() === IShare::TYPE_ROOM) {
+            try {
+                return $this->getRoomShareHelper()->canAccessShare($share, $this->userId);
+            } catch (ContainerExceptionInterface $e) {
+                return false;
+            }
+        }
+
+        if ($share->getShareType() === IShare::TYPE_DECK) {
+            try {
+                return $this->getDeckShareHelper()->canAccessShare($share, $this->userId);
+            } catch (ContainerExceptionInterface $e) {
+                return false;
+            }
+        }
+
+        return false;
+    }
+
+    /**
+     * Make sure that the passed date is valid ISO 8601
+     * So YYYY-MM-DD
+     * If not throw an exception
+     *
+     * @param string $expireDate
+     *
+     * @throws \Exception
+     * @return \DateTime
+     */
+    private function parseDate(string $expireDate): \DateTime {
+        try {
+            $date = new \DateTime(trim($expireDate, '"'), $this->dateTimeZone->getTimeZone());
+            // Make sure it expires at midnight in owner timezone
+            $date->setTime(0, 0, 0);
+        } catch (\Exception $e) {
+            throw new \Exception($this->l->t('Invalid date. Format must be YYYY-MM-DD'));
+        }
+
+        return $date;
+    }
+
+    /**
+     * Since we have multiple providers but the OCS Share API v1 does
+     * not support this we need to check all backends.
+     *
+     * @param string $id
+     * @return IShare
+     * @throws ShareNotFound
+     */
+    private function getShareById(string $id): IShare {
+        $providers = [
+            'ocinternal' => null, // No type check needed
+            'ocCircleShare' => IShare::TYPE_CIRCLE,
+            'ocMailShare' => IShare::TYPE_EMAIL,
+            'ocRoomShare' => null,
+            'deck' => IShare::TYPE_DECK,
+        ];
+
+        // Add federated sharing as a provider only if it's allowed
+        if ($this->shareManager->outgoingServer2ServerSharesAllowed()) {
+            $providers['ocFederatedSharing'] = null; // No type check needed
+        }
+
+        foreach ($providers as $prefix => $type) {
+            try {
+                if ($type === null || $this->shareManager->shareProviderExists($type)) {
+                    return $this->shareManager->getShareById($prefix . ':' . $id, $this->userId);
+                }
+            } catch (ShareNotFound $e) {
+                // Do nothing, continue to next provider
+            } catch (\Exception $e) {
+                $this->logger->warning('Unexpected error in share provider', [
+                    'shareId' => $id,
+                    'provider' => $prefix,
+                    'exception' => $e,
+                ]);
+            }
+        }
+        throw new ShareNotFound();
+    }
+
+    /**
+     * Lock a Node
+     *
+     * @param Node $node
+     * @throws LockedException
+     */
+    private function lock(Node $node) {
+        $node->lock(ILockingProvider::LOCK_SHARED);
+        $this->lockedNode = $node;
+    }
+
+    /**
+     * Cleanup the remaining locks
+     * @throws LockedException
+     */
+    public function cleanup() {
+        if ($this->lockedNode !== null) {
+            $this->lockedNode->unlock(ILockingProvider::LOCK_SHARED);
+        }
+    }
+
+    /**
+     * Returns the helper of ShareAPIController for room shares.
+     *
+     * If the Talk application is not enabled or the helper is not available
+     * a ContainerExceptionInterface is thrown instead.
+     *
+     * @return \OCA\Talk\Share\Helper\ShareAPIController
+     * @throws ContainerExceptionInterface
+     */
+    private function getRoomShareHelper() {
+        if (!$this->appManager->isEnabledForUser('spreed')) {
+            throw new QueryException();
+        }
+
+        return $this->serverContainer->get('\OCA\Talk\Share\Helper\ShareAPIController');
+    }
+
+    /**
+     * Returns the helper of ShareAPIHelper for deck shares.
+     *
+     * If the Deck application is not enabled or the helper is not available
+     * a ContainerExceptionInterface is thrown instead.
+     *
+     * @return ShareAPIHelper
+     * @throws ContainerExceptionInterface
+     */
+    private function getDeckShareHelper() {
+        if (!$this->appManager->isEnabledForUser('deck')) {
+            throw new QueryException();
+        }
+
+        return $this->serverContainer->get('\OCA\Deck\Sharing\ShareAPIHelper');
+    }
+
+    /**
+     * Returns the helper of ShareAPIHelper for sciencemesh shares.
+     *
+     * If the sciencemesh application is not enabled or the helper is not available
+     * a ContainerExceptionInterface is thrown instead.
+     *
+     * @return ShareAPIHelper
+     * @throws ContainerExceptionInterface
+     */
+    private function getSciencemeshShareHelper() {
+        if (!$this->appManager->isEnabledForUser('sciencemesh')) {
+            throw new QueryException();
+        }
+
+        return $this->serverContainer->get('\OCA\ScienceMesh\Sharing\ShareAPIHelper');
+    }
+
+    /**
+     * @param string $viewer
+     * @param Node $node
+     * @param bool $reShares
+     *
+     * @return IShare[]
+     */
+    private function getSharesFromNode(string $viewer, $node, bool $reShares): array {
+        $providers = [
+            IShare::TYPE_USER,
+            IShare::TYPE_GROUP,
+            IShare::TYPE_LINK,
+            IShare::TYPE_EMAIL,
+            IShare::TYPE_CIRCLE,
+            IShare::TYPE_ROOM,
+            IShare::TYPE_DECK,
+        ];
+
+        // Should we assume that the (currentUser) viewer is the owner of the node !?
+        $shares = [];
+        foreach ($providers as $provider) {
+            if (!$this->shareManager->shareProviderExists($provider)) {
+                continue;
+            }
+
+            $providerShares
+                = $this->shareManager->getSharesBy($viewer, $provider, $node, $reShares, -1, 0);
+            $shares = array_merge($shares, $providerShares);
+        }
+
+        if ($this->shareManager->outgoingServer2ServerSharesAllowed()) {
+            $federatedShares = $this->shareManager->getSharesBy(
+                $this->userId, IShare::TYPE_REMOTE, $node, $reShares, -1, 0
+            );
+            $shares = array_merge($shares, $federatedShares);
+        }
+
+        if ($this->shareManager->outgoingServer2ServerGroupSharesAllowed()) {
+            $federatedShares = $this->shareManager->getSharesBy(
+                $this->userId, IShare::TYPE_REMOTE_GROUP, $node, $reShares, -1, 0
+            );
+            $shares = array_merge($shares, $federatedShares);
+        }
+
+        return $shares;
+    }
+
+
+    /**
+     * @param Node $node
+     *
+     * @throws SharingRightsException
+     */
+    private function confirmSharingRights(Node $node): void {
+        if (!$this->hasResharingRights($this->userId, $node)) {
+            throw new SharingRightsException($this->l->t('No sharing rights on this item'));
+        }
+    }
+
+
+    /**
+     * @param string $viewer
+     * @param Node $node
+     *
+     * @return bool
+     */
+    private function hasResharingRights($viewer, $node): bool {
+        if ($viewer === $node->getOwner()->getUID()) {
+            return true;
+        }
+
+        foreach ([$node, $node->getParent()] as $node) {
+            $shares = $this->getSharesFromNode($viewer, $node, true);
+            foreach ($shares as $share) {
+                try {
+                    if ($this->shareProviderResharingRights($viewer, $share, $node)) {
+                        return true;
+                    }
+                } catch (InvalidPathException|NotFoundException $e) {
+                }
+            }
+        }
+
+        return false;
+    }
+
+
+    /**
+     * Returns if we can find resharing rights in an IShare object for a specific user.
+     *
+     * @suppress PhanUndeclaredClassMethod
+     *
+     * @param string $userId
+     * @param IShare $share
+     * @param Node $node
+     *
+     * @return bool
+     * @throws NotFoundException
+     * @throws InvalidPathException
+     */
+    private function shareProviderResharingRights(string $userId, IShare $share, $node): bool {
+        if ($share->getShareOwner() === $userId) {
+            return true;
+        }
+
+        // we check that current user have parent resharing rights on the current file
+        if ($node !== null && ($node->getPermissions() & Constants::PERMISSION_SHARE) !== 0) {
+            return true;
+        }
+
+        if ((Constants::PERMISSION_SHARE & $share->getPermissions()) === 0) {
+            return false;
+        }
+
+        if ($share->getShareType() === IShare::TYPE_USER && $share->getSharedWith() === $userId) {
+            return true;
+        }
+
+        if ($share->getShareType() === IShare::TYPE_GROUP && $this->groupManager->isInGroup($userId, $share->getSharedWith())) {
+            return true;
+        }
+
+        if ($share->getShareType() === IShare::TYPE_CIRCLE && Server::get(IAppManager::class)->isEnabledForUser('circles')
+            && class_exists('\OCA\Circles\Api\v1\Circles')) {
+            $hasCircleId = (str_ends_with($share->getSharedWith(), ']'));
+            $shareWithStart = ($hasCircleId ? strrpos($share->getSharedWith(), '[') + 1 : 0);
+            $shareWithLength = ($hasCircleId ? -1 : strpos($share->getSharedWith(), ' '));
+            if ($shareWithLength === false) {
+                $sharedWith = substr($share->getSharedWith(), $shareWithStart);
+            } else {
+                $sharedWith = substr($share->getSharedWith(), $shareWithStart, $shareWithLength);
+            }
+            try {
+                $member = Circles::getMember($sharedWith, $userId, 1);
+                if ($member->getLevel() >= 4) {
+                    return true;
+                }
+                return false;
+            } catch (ContainerExceptionInterface $e) {
+                return false;
+            }
+        }
+
+        return false;
+    }
+
+    /**
+     * Get all the shares for the current user
+     *
+     * @param Node|null $path
+     * @param boolean $reshares
+     * @return IShare[]
+     */
+    private function getAllShares(?Node $path = null, bool $reshares = false) {
+        // Get all shares
+        $userShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_USER, $path, $reshares, -1, 0);
+        $groupShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_GROUP, $path, $reshares, -1, 0);
+        $linkShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_LINK, $path, $reshares, -1, 0);
+
+        // EMAIL SHARES
+        $mailShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_EMAIL, $path, $reshares, -1, 0);
+
+        // TEAM SHARES
+        $circleShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_CIRCLE, $path, $reshares, -1, 0);
+
+        // TALK SHARES
+        $roomShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_ROOM, $path, $reshares, -1, 0);
+
+        // DECK SHARES
+        $deckShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_DECK, $path, $reshares, -1, 0);
+
+        // FEDERATION
+        if ($this->shareManager->outgoingServer2ServerSharesAllowed()) {
+            $federatedShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_REMOTE, $path, $reshares, -1, 0);
+        } else {
+            $federatedShares = [];
+        }
+        if ($this->shareManager->outgoingServer2ServerGroupSharesAllowed()) {
+            $federatedGroupShares = $this->shareManager->getSharesBy($this->userId, IShare::TYPE_REMOTE_GROUP, $path, $reshares, -1, 0);
+        } else {
+            $federatedGroupShares = [];
+        }
+
+        return array_merge($userShares, $groupShares, $linkShares, $mailShares, $circleShares, $roomShares, $deckShares, $federatedShares, $federatedGroupShares);
+    }
+
+
+    /**
+     * merging already formatted shares.
+     * We'll make an associative array to easily detect duplicate Ids.
+     * Keys _needs_ to be removed after all shares are retrieved and merged.
+     *
+     * @param array $shares
+     * @param array $newShares
+     */
+    private function mergeFormattedShares(array &$shares, array $newShares) {
+        foreach ($newShares as $newShare) {
+            if (!array_key_exists($newShare['id'], $shares)) {
+                $shares[$newShare['id']] = $newShare;
+            }
+        }
+    }
+
+    /**
+     * @param IShare $share
+     * @param string|null $attributesString
+     * @return IShare modified share
+     */
+    private function setShareAttributes(IShare $share, ?string $attributesString) {
+        $newShareAttributes = null;
+        if ($attributesString !== null) {
+            $newShareAttributes = $this->shareManager->newShare()->newAttributes();
+            $formattedShareAttributes = \json_decode($attributesString, true);
+            if (is_array($formattedShareAttributes)) {
+                foreach ($formattedShareAttributes as $formattedAttr) {
+                    $newShareAttributes->setAttribute(
+                        $formattedAttr['scope'],
+                        $formattedAttr['key'],
+                        $formattedAttr['value'],
+                    );
+                }
+            } else {
+                throw new OCSBadRequestException($this->l->t('Invalid share attributes provided: "%s"', [$attributesString]));
+            }
+        }
+        $share->setAttributes($newShareAttributes);
+
+        return $share;
+    }
+
+    private function checkInheritedAttributes(IShare $share): void {
+        if (!$share->getSharedBy()) {
+            return; // Probably in a test
+        }
+
+        $canDownload = false;
+        $hideDownload = true;
+        $userExplicitlySetHideDownload = $share->getHideDownload(); // Capture user's explicit choice
+
+        $userFolder = $this->rootFolder->getUserFolder($share->getSharedBy());
+        $nodes = $userFolder->getById($share->getNodeId());
+        foreach ($nodes as $node) {
+            // Owner always can download it - so allow it, but respect their explicit choice about hiding downloads
+            if ($node->getOwner()?->getUID() === $share->getSharedBy()) {
+                $canDownload = true;
+                $hideDownload = $userExplicitlySetHideDownload;
+                break;
+            }
+
+            if ($node->getStorage()->instanceOfStorage(SharedStorage::class)) {
+                $storage = $node->getStorage();
+                if ($storage instanceof Wrapper) {
+                    $storage = $storage->getInstanceOfStorage(SharedStorage::class);
+                    if ($storage === null) {
+                        throw new \RuntimeException('Should not happen, instanceOfStorage but getInstanceOfStorage return null');
+                    }
+                } else {
+                    throw new \RuntimeException('Should not happen, instanceOfStorage but not a wrapper');
+                }
+
+                /** @var SharedStorage $storage */
+                $originalShare = $storage->getShare();
+                $inheritedAttributes = $originalShare->getAttributes();
+
+                // For federated shares: users can only be MORE restrictive, never LESS restrictive
+                // If parent has hideDownload=true, child MUST have hideDownload=true
+                $parentHidesDownload = $originalShare->getHideDownload();
+
+                // Check if download permission is available from parent
+                $parentAllowsDownload = $inheritedAttributes === null || $inheritedAttributes->getAttribute('permissions', 'download') !== false;
+
+                // Apply inheritance rules:
+                // 1. If parent hides download, child must hide download
+                // 2. If parent allows download, child can choose to hide or allow
+                // 3. If parent forbids download, child cannot allow download
+                $hideDownload = $parentHidesDownload || $userExplicitlySetHideDownload;
+
+                $canDownload = $canDownload || $parentAllowsDownload;
+
+            } elseif ($node->getStorage()->instanceOfStorage(Storage::class)) {
+                $canDownload = true; // in case of federation storage, we can expect the download to be activated by default
+                // For external federation storage, respect user's choice if downloads are available
+                $hideDownload = $userExplicitlySetHideDownload;
+            }
+        }
+
+        // Apply the final restrictions:
+        // 1. If parent doesn't allow downloads at all, force hide and disable download attribute
+        // 2. If parent allows downloads, respect user's hideDownload choice
+        if (!$canDownload) {
+            // Parent completely forbids downloads - must enforce this restriction
+            $share->setHideDownload(true);
+            $attributes = $share->getAttributes() ?? $share->newAttributes();
+            $attributes->setAttribute('permissions', 'download', false);
+            $share->setAttributes($attributes);
+        } elseif ($hideDownload) {
+            // Either parent forces hide, or user chooses to hide - respect this
+            $share->setHideDownload(true);
+        } else {
+            // User explicitly wants to allow downloads and parent permits it
+            $share->setHideDownload(false);
+        }
+    }
+
+    /**
+     * Send a mail notification again for a share.
+     * The mail_send option must be enabled for the given share.
+     * @param string $id the share ID
+     * @param string $password the password to check against. Necessary for password protected shares.
+     * @throws OCSNotFoundException Share not found
+     * @throws OCSForbiddenException You are not allowed to send mail notifications
+     * @throws OCSBadRequestException Invalid request or wrong password
+     * @throws OCSException Error while sending mail notification
+     * @return DataResponse<Http::STATUS_OK, list<empty>, array{}>
+     *
+     * 200: The email notification was sent successfully
+     */
+    #[NoAdminRequired]
+    #[UserRateLimit(limit: 10, period: 600)]
+    public function sendShareEmail(string $id, $password = ''): DataResponse {
+        try {
+            $share = $this->getShareById($id);
+
+            if (!$this->canAccessShare($share, false)) {
+                throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
+            }
+
+            if (!$this->canEditShare($share)) {
+                throw new OCSForbiddenException($this->l->t('You are not allowed to send mail notifications'));
+            }
+
+            // For mail and link shares, the user must be
+            // the owner of the share, not only the file owner.
+            if ($share->getShareType() === IShare::TYPE_EMAIL
+                || $share->getShareType() === IShare::TYPE_LINK) {
+                if ($share->getSharedBy() !== $this->userId) {
+                    throw new OCSForbiddenException($this->l->t('You are not allowed to send mail notifications'));
+                }
+            }
+
+            try {
+                $provider = $this->factory->getProviderForType($share->getShareType());
+                if (!($provider instanceof IShareProviderWithNotification)) {
+                    throw new OCSBadRequestException($this->l->t('No mail notification configured for this share type'));
+                }
+
+                // Circumvent the password encrypted data by
+                // setting the password clear. We're not storing
+                // the password clear, it is just a temporary
+                // object manipulation. The password will stay
+                // encrypted in the database.
+                if ($share->getPassword() !== null && $share->getPassword() !== $password) {
+                    if (!$this->shareManager->checkPassword($share, $password)) {
+                        throw new OCSBadRequestException($this->l->t('Wrong password'));
+                    }
+                    $share = $share->setPassword($password);
+                }
+
+                $provider->sendMailNotification($share);
+                return new DataResponse();
+            } catch (Exception $e) {
+                $this->logger->error($e->getMessage(), ['exception' => $e]);
+                throw new OCSException($this->l->t('Error while sending mail notification'));
+            }
+
+        } catch (ShareNotFound $e) {
+            throw new OCSNotFoundException($this->l->t('Wrong share ID, share does not exist'));
+        }
+    }
+
+    /**
+     * Get a unique share token
+     *
+     * @throws OCSException Failed to generate a unique token
+     *
+     * @return DataResponse<Http::STATUS_OK, array{token: string}, array{}>
+     *
+     * 200: Token generated successfully
+     */
+    #[ApiRoute(verb: 'GET', url: '/api/v1/token')]
+    #[NoAdminRequired]
+    public function generateToken(): DataResponse {
+        try {
+            $token = $this->shareManager->generateToken();
+            return new DataResponse([
+                'token' => $token,
+            ]);
+        } catch (ShareTokenException $e) {
+            throw new OCSException($this->l->t('Failed to generate a unique token'));
+        }
+    }
+
+    /**
+     * Populate the result set with file tags
+     *
+     * @psalm-template T of array{tags?: list<string>, file_source: int, ...array<string, mixed>}
+     * @param list<T> $fileList
+     * @return list<T> file list populated with tags
+     */
+    private function populateTags(array $fileList): array {
+        $tagger = $this->tagManager->load('files');
+        $tags = $tagger->getTagsForObjects(array_map(static fn (array $fileData) => $fileData['file_source'], $fileList));
+
+        if (!is_array($tags)) {
+            throw new \UnexpectedValueException('$tags must be an array');
+        }
+
+        // Set empty tag array
+        foreach ($fileList as &$fileData) {
+            $fileData['tags'] = [];
+        }
+        unset($fileData);
+
+        if (!empty($tags)) {
+            foreach ($tags as $fileId => $fileTags) {
+                foreach ($fileList as &$fileData) {
+                    if ($fileId !== $fileData['file_source']) {
+                        continue;
+                    }
+
+                    $fileData['tags'] = $fileTags;
+                }
+                unset($fileData);
+            }
+        }
+
+        return $fileList;
+    }
 }

Please login to merge, or discard this patch.

Spacing +16 added lines, -16 removed lines patch added patch discarded remove patch

@@ -225,7 +225,7 @@  discard block
 block discarded – undo
 						// Server not found or other issue, we consider it not trusted
 						$this->trustedServerCache[$remote] = false;
 						$this->logger->error(
-							'Error checking if remote server is trusted (treating as untrusted): ' . $e->getMessage(),
+							'Error checking if remote server is trusted (treating as untrusted): '.$e->getMessage(),
 							['exception' => $e]
 						);
 					}
@@ -255,7 +255,7 @@  discard block
 block discarded – undo
 					'message' => $userStatus->getMessage(),
 					'icon' => $userStatus->getIcon(),
 					'clearAt' => $userStatus->getClearAt()
-						? (int)$userStatus->getClearAt()->format('U')
+						? (int) $userStatus->getClearAt()->format('U')
 						: null,
 				];
 			}
@@ -268,7 +268,7 @@  discard block
 block discarded – undo
 			// "share_with" and "share_with_displayname" for passwords of link
 			// shares was deprecated in Nextcloud 15, use "password" instead.
 			$result['share_with'] = $share->getPassword();
-			$result['share_with_displayname'] = '(' . $this->l->t('Shared link') . ')';
+			$result['share_with_displayname'] = '('.$this->l->t('Shared link').')';
 
 			$result['password'] = $share->getPassword();
 
@@ -339,7 +339,7 @@  discard block
 block discarded – undo
 
 		$result['attributes'] = null;
 		if ($attributes = $share->getAttributes()) {
-			$result['attributes'] = (string)\json_encode($attributes->toArray());
+			$result['attributes'] = (string) \json_encode($attributes->toArray());
 		}
 
 		return $result;
@@ -644,7 +644,7 @@  discard block
 block discarded – undo
 		} else {
 			// Use default permissions only for non-link shares to keep legacy behavior
 			if ($permissions === null) {
-				$permissions = (int)$this->config->getAppValue('core', 'shareapi_default_permissions', (string)Constants::PERMISSION_ALL);
+				$permissions = (int) $this->config->getAppValue('core', 'shareapi_default_permissions', (string) Constants::PERMISSION_ALL);
 			}
 			// Non-link shares always require read permissions (link shares could be file drop)
 			$permissions |= Constants::PERMISSION_READ;
@@ -825,7 +825,7 @@  discard block
 block discarded – undo
 		} catch (HintException $e) {
 			$code = $e->getCode() === 0 ? 403 : $e->getCode();
 			throw new OCSException($e->getHint(), $code);
-		} catch (GenericShareException|\InvalidArgumentException $e) {
+		} catch (GenericShareException | \InvalidArgumentException $e) {
 			$this->logger->error($e->getMessage(), ['exception' => $e]);
 			throw new OCSForbiddenException($e->getMessage(), $e);
 		} catch (\Exception $e) {
@@ -853,7 +853,7 @@  discard block
 block discarded – undo
 
 		$shares = array_merge($userShares, $groupShares, $circleShares, $roomShares, $deckShares);
 
-		$filteredShares = array_filter($shares, function (IShare $share) {
+		$filteredShares = array_filter($shares, function(IShare $share) {
 			return $share->getShareOwner() !== $this->userId && $share->getSharedBy() !== $this->userId;
 		});
 
@@ -890,7 +890,7 @@  discard block
 block discarded – undo
 		$nodes = $folder->getDirectoryListing();
 
 		/** @var IShare[] $shares */
-		$shares = array_reduce($nodes, function ($carry, $node) {
+		$shares = array_reduce($nodes, function($carry, $node) {
 			$carry = array_merge($carry, $this->getAllShares($node, true));
 			return $carry;
 		}, []);
@@ -1110,7 +1110,7 @@  discard block
 block discarded – undo
 				if (!$resharingRight && $this->shareProviderResharingRights($this->userId, $share, $node)) {
 					$resharingRight = true;
 				}
-			} catch (InvalidPathException|NotFoundException $e) {
+			} catch (InvalidPathException | NotFoundException $e) {
 			}
 		}
 
@@ -1389,7 +1389,7 @@  discard block
 block discarded – undo
 			$share = $this->shareManager->updateShare($share);
 		} catch (HintException $e) {
 			$code = $e->getCode() === 0 ? 403 : $e->getCode();
-			throw new OCSException($e->getHint(), (int)$code);
+			throw new OCSException($e->getHint(), (int) $code);
 		} catch (\Exception $e) {
 			$this->logger->error($e->getMessage(), ['exception' => $e]);
 			throw new OCSBadRequestException('Failed to update share.', $e);
@@ -1434,7 +1434,7 @@  discard block
 block discarded – undo
 			}
 		}
 
-		$result = array_values(array_filter(array_map(function (IShare $share) {
+		$result = array_values(array_filter(array_map(function(IShare $share) {
 			$userFolder = $this->rootFolder->getUserFolder($share->getSharedBy());
 			$node = $userFolder->getFirstNodeById($share->getNodeId());
 			if (!$node) {
@@ -1447,13 +1447,13 @@  discard block
 block discarded – undo
 
 			try {
 				$formattedShare = $this->formatShare($share, $node);
-				$formattedShare['path'] = '/' . $share->getNode()->getName();
+				$formattedShare['path'] = '/'.$share->getNode()->getName();
 				$formattedShare['permissions'] = 0;
 				return $formattedShare;
 			} catch (NotFoundException $e) {
 				return null;
 			}
-		}, $pendingShares), function ($entry) {
+		}, $pendingShares), function($entry) {
 			return $entry !== null;
 		}));
 
@@ -1487,7 +1487,7 @@  discard block
 block discarded – undo
 			$this->shareManager->acceptShare($share, $this->userId);
 		} catch (HintException $e) {
 			$code = $e->getCode() === 0 ? 403 : $e->getCode();
-			throw new OCSException($e->getHint(), (int)$code);
+			throw new OCSException($e->getHint(), (int) $code);
 		} catch (\Exception $e) {
 			$this->logger->error($e->getMessage(), ['exception' => $e]);
 			throw new OCSBadRequestException('Failed to accept share.', $e);
@@ -1737,7 +1737,7 @@  discard block
 block discarded – undo
 		foreach ($providers as $prefix => $type) {
 			try {
 				if ($type === null || $this->shareManager->shareProviderExists($type)) {
-					return $this->shareManager->getShareById($prefix . ':' . $id, $this->userId);
+					return $this->shareManager->getShareById($prefix.':'.$id, $this->userId);
 				}
 			} catch (ShareNotFound $e) {
 				// Do nothing, continue to next provider
@@ -1902,7 +1902,7 @@  discard block
 block discarded – undo
 					if ($this->shareProviderResharingRights($viewer, $share, $node)) {
 						return true;
 					}
-				} catch (InvalidPathException|NotFoundException $e) {
+				} catch (InvalidPathException | NotFoundException $e) {
 				}
 			}
 		}

Please login to merge, or discard this patch.

apps/files_sharing/lib/Controller/ShareesAPIController.php 1 patch

Indentation +346 added lines, -346 removed lines patch added patch discarded remove patch

@@ -39,350 +39,350 @@
 block discarded – undo
  */
 class ShareesAPIController extends OCSController {
 
-	protected int $offset = 0;
-	protected int $limit = 10;
-
-	/** @var Files_SharingShareesSearchResult */
-	protected array $result = [
-		'exact' => [
-			'users' => [],
-			'groups' => [],
-			'remotes' => [],
-			'remote_groups' => [],
-			'emails' => [],
-			'circles' => [],
-			'rooms' => [],
-		],
-		'users' => [],
-		'groups' => [],
-		'remotes' => [],
-		'remote_groups' => [],
-		'emails' => [],
-		'lookup' => [],
-		'circles' => [],
-		'rooms' => [],
-		'lookupEnabled' => false,
-	];
-
-	public function __construct(
-		string $appName,
-		IRequest $request,
-		protected ?string $userId,
-		protected IConfig $config,
-		protected IURLGenerator $urlGenerator,
-		protected IManager $shareManager,
-		protected ISearch $collaboratorSearch,
-	) {
-		parent::__construct($appName, $request);
-	}
-
-	/**
-	 * Search for sharees
-	 *
-	 * @param string $search Text to search for
-	 * @param string|null $itemType Limit to specific item types
-	 * @param int $page Page offset for searching
-	 * @param int $perPage Limit amount of search results per page
-	 * @param int|list<int>|null $shareType Limit to specific share types
-	 * @param bool $lookup If a global lookup should be performed too
-	 * @return DataResponse<Http::STATUS_OK, Files_SharingShareesSearchResult, array{Link?: string}>
-	 * @throws OCSBadRequestException Invalid search parameters
-	 *
-	 * 200: Sharees search result returned
-	 */
-	#[NoAdminRequired]
-	public function search(string $search = '', ?string $itemType = null, int $page = 1, int $perPage = 200, $shareType = null, bool $lookup = false): DataResponse {
-
-		// only search for string larger than a given threshold
-		$threshold = $this->config->getSystemValueInt('sharing.minSearchStringLength', 0);
-		if (strlen($search) < $threshold) {
-			return new DataResponse($this->result);
-		}
-
-		if ($this->shareManager->sharingDisabledForUser($this->userId)) {
-			return new DataResponse($this->result);
-		}
-
-		// never return more than the max. number of results configured in the config.php
-		$maxResults = $this->config->getSystemValueInt('sharing.maxAutocompleteResults', Constants::SHARING_MAX_AUTOCOMPLETE_RESULTS_DEFAULT);
-		if ($maxResults > 0) {
-			$perPage = min($perPage, $maxResults);
-		}
-		if ($perPage <= 0) {
-			throw new OCSBadRequestException('Invalid perPage argument');
-		}
-		if ($page <= 0) {
-			throw new OCSBadRequestException('Invalid page');
-		}
-
-		$shareTypes = [
-			IShare::TYPE_USER,
-		];
-
-		if ($itemType === null) {
-			throw new OCSBadRequestException('Missing itemType');
-		} elseif ($itemType === 'file' || $itemType === 'folder') {
-			if ($this->shareManager->allowGroupSharing()) {
-				$shareTypes[] = IShare::TYPE_GROUP;
-			}
-
-			if ($this->isRemoteSharingAllowed($itemType)) {
-				$shareTypes[] = IShare::TYPE_REMOTE;
-			}
-
-			if ($this->isRemoteGroupSharingAllowed($itemType)) {
-				$shareTypes[] = IShare::TYPE_REMOTE_GROUP;
-			}
-
-			if ($this->shareManager->shareProviderExists(IShare::TYPE_EMAIL)) {
-				$shareTypes[] = IShare::TYPE_EMAIL;
-			}
-
-			if ($this->shareManager->shareProviderExists(IShare::TYPE_ROOM)) {
-				$shareTypes[] = IShare::TYPE_ROOM;
-			}
-		} else {
-			if ($this->shareManager->allowGroupSharing()) {
-				$shareTypes[] = IShare::TYPE_GROUP;
-			}
-			$shareTypes[] = IShare::TYPE_EMAIL;
-		}
-
-		// FIXME: DI
-		if (Server::get(IAppManager::class)->isEnabledForUser('circles') && class_exists('\OCA\Circles\ShareByCircleProvider')) {
-			$shareTypes[] = IShare::TYPE_CIRCLE;
-		}
-
-		if ($itemType === 'calendar') {
-			$shareTypes[] = IShare::TYPE_REMOTE;
-		}
-
-		if ($shareType !== null && is_array($shareType)) {
-			$shareTypes = array_intersect($shareTypes, $shareType);
-		} elseif (is_numeric($shareType)) {
-			$shareTypes = array_intersect($shareTypes, [(int)$shareType]);
-		}
-		sort($shareTypes);
-
-		$this->limit = $perPage;
-		$this->offset = $perPage * ($page - 1);
-
-		// In global scale mode we always search the lookup server
-		$this->result['lookupEnabled'] = Server::get(GlobalScaleIConfig::class)->isGlobalScaleEnabled();
-		// TODO: Reconsider using lookup server for non-global-scale federation
-
-		[$result, $hasMoreResults] = $this->collaboratorSearch->search($search, $shareTypes, $this->result['lookupEnabled'], $this->limit, $this->offset);
-
-		// extra treatment for 'exact' subarray, with a single merge expected keys might be lost
-		if (isset($result['exact'])) {
-			$result['exact'] = array_merge($this->result['exact'], $result['exact']);
-		}
-		$this->result = array_merge($this->result, $result);
-		$response = new DataResponse($this->result);
-
-		if ($hasMoreResults) {
-			$response->setHeaders(['Link' => $this->getPaginationLink($page, [
-				'search' => $search,
-				'itemType' => $itemType,
-				'shareType' => $shareTypes,
-				'perPage' => $perPage,
-			])]);
-		}
-
-		return $response;
-	}
-
-	/**
-	 * @param string $user
-	 * @param int $shareType
-	 *
-	 * @return Generator<array<string>>
-	 */
-	private function getAllShareesByType(string $user, int $shareType): Generator {
-		$offset = 0;
-		$pageSize = 50;
-
-		while (count($page = $this->shareManager->getSharesBy(
-			$user,
-			$shareType,
-			null,
-			false,
-			$pageSize,
-			$offset
-		))) {
-			foreach ($page as $share) {
-				yield [$share->getSharedWith(), $share->getSharedWithDisplayName() ?? $share->getSharedWith()];
-			}
-
-			$offset += $pageSize;
-		}
-	}
-
-	private function sortShareesByFrequency(array $sharees): array {
-		usort($sharees, function (array $s1, array $s2): int {
-			return $s2['count'] - $s1['count'];
-		});
-		return $sharees;
-	}
-
-	private $searchResultTypeMap = [
-		IShare::TYPE_USER => 'users',
-		IShare::TYPE_GROUP => 'groups',
-		IShare::TYPE_REMOTE => 'remotes',
-		IShare::TYPE_REMOTE_GROUP => 'remote_groups',
-		IShare::TYPE_EMAIL => 'emails',
-	];
-
-	private function getAllSharees(string $user, array $shareTypes): ISearchResult {
-		$result = [];
-		foreach ($shareTypes as $shareType) {
-			$sharees = $this->getAllShareesByType($user, $shareType);
-			$shareTypeResults = [];
-			foreach ($sharees as [$sharee, $displayname]) {
-				if (!isset($this->searchResultTypeMap[$shareType]) || trim($sharee) === '') {
-					continue;
-				}
-
-				if (!isset($shareTypeResults[$sharee])) {
-					$shareTypeResults[$sharee] = [
-						'count' => 1,
-						'label' => $displayname,
-						'value' => [
-							'shareType' => $shareType,
-							'shareWith' => $sharee,
-						],
-					];
-				} else {
-					$shareTypeResults[$sharee]['count']++;
-				}
-			}
-			$result = array_merge($result, array_values($shareTypeResults));
-		}
-
-		$top5 = array_slice(
-			$this->sortShareesByFrequency($result),
-			0,
-			5
-		);
-
-		$searchResult = new SearchResult();
-		foreach ($this->searchResultTypeMap as $int => $str) {
-			$searchResult->addResultSet(new SearchResultType($str), [], []);
-			foreach ($top5 as $x) {
-				if ($x['value']['shareType'] === $int) {
-					$searchResult->addResultSet(new SearchResultType($str), [], [$x]);
-				}
-			}
-		}
-		return $searchResult;
-	}
-
-	/**
-	 * Find recommended sharees
-	 *
-	 * @param string $itemType Limit to specific item types
-	 * @param int|list<int>|null $shareType Limit to specific share types
-	 * @return DataResponse<Http::STATUS_OK, Files_SharingShareesRecommendedResult, array{}>
-	 *
-	 * 200: Recommended sharees returned
-	 */
-	#[NoAdminRequired]
-	public function findRecommended(string $itemType, $shareType = null): DataResponse {
-		$shareTypes = [
-			IShare::TYPE_USER,
-		];
-
-		if ($itemType === 'file' || $itemType === 'folder') {
-			if ($this->shareManager->allowGroupSharing()) {
-				$shareTypes[] = IShare::TYPE_GROUP;
-			}
-
-			if ($this->isRemoteSharingAllowed($itemType)) {
-				$shareTypes[] = IShare::TYPE_REMOTE;
-			}
-
-			if ($this->isRemoteGroupSharingAllowed($itemType)) {
-				$shareTypes[] = IShare::TYPE_REMOTE_GROUP;
-			}
-
-			if ($this->shareManager->shareProviderExists(IShare::TYPE_EMAIL)) {
-				$shareTypes[] = IShare::TYPE_EMAIL;
-			}
-
-			if ($this->shareManager->shareProviderExists(IShare::TYPE_ROOM)) {
-				$shareTypes[] = IShare::TYPE_ROOM;
-			}
-		} else {
-			$shareTypes[] = IShare::TYPE_GROUP;
-			$shareTypes[] = IShare::TYPE_EMAIL;
-		}
-
-		// FIXME: DI
-		if (Server::get(IAppManager::class)->isEnabledForUser('circles') && class_exists('\OCA\Circles\ShareByCircleProvider')) {
-			$shareTypes[] = IShare::TYPE_CIRCLE;
-		}
-
-		if (isset($_GET['shareType']) && is_array($_GET['shareType'])) {
-			$shareTypes = array_intersect($shareTypes, $_GET['shareType']);
-			sort($shareTypes);
-		} elseif (is_numeric($shareType)) {
-			$shareTypes = array_intersect($shareTypes, [(int)$shareType]);
-			sort($shareTypes);
-		}
-
-		return new DataResponse(
-			$this->getAllSharees($this->userId, $shareTypes)->asArray()
-		);
-	}
-
-	/**
-	 * Method to get out the static call for better testing
-	 *
-	 * @param string $itemType
-	 * @return bool
-	 */
-	protected function isRemoteSharingAllowed(string $itemType): bool {
-		try {
-			// FIXME: static foo makes unit testing unnecessarily difficult
-			$backend = Share::getBackend($itemType);
-			return $backend->isShareTypeAllowed(IShare::TYPE_REMOTE);
-		} catch (\Exception $e) {
-			return false;
-		}
-	}
-
-	protected function isRemoteGroupSharingAllowed(string $itemType): bool {
-		try {
-			// FIXME: static foo makes unit testing unnecessarily difficult
-			$backend = Share::getBackend($itemType);
-			return $backend->isShareTypeAllowed(IShare::TYPE_REMOTE_GROUP);
-		} catch (\Exception $e) {
-			return false;
-		}
-	}
-
-
-	/**
-	 * Generates a bunch of pagination links for the current page
-	 *
-	 * @param int $page Current page
-	 * @param array $params Parameters for the URL
-	 * @return string
-	 */
-	protected function getPaginationLink(int $page, array $params): string {
-		if ($this->isV2()) {
-			$url = $this->urlGenerator->getAbsoluteURL('/ocs/v2.php/apps/files_sharing/api/v1/sharees') . '?';
-		} else {
-			$url = $this->urlGenerator->getAbsoluteURL('/ocs/v1.php/apps/files_sharing/api/v1/sharees') . '?';
-		}
-		$params['page'] = $page + 1;
-		return '<' . $url . http_build_query($params) . '>; rel="next"';
-	}
-
-	/**
-	 * @return bool
-	 */
-	protected function isV2(): bool {
-		return $this->request->getScriptName() === '/ocs/v2.php';
-	}
+    protected int $offset = 0;
+    protected int $limit = 10;
+
+    /** @var Files_SharingShareesSearchResult */
+    protected array $result = [
+        'exact' => [
+            'users' => [],
+            'groups' => [],
+            'remotes' => [],
+            'remote_groups' => [],
+            'emails' => [],
+            'circles' => [],
+            'rooms' => [],
+        ],
+        'users' => [],
+        'groups' => [],
+        'remotes' => [],
+        'remote_groups' => [],
+        'emails' => [],
+        'lookup' => [],
+        'circles' => [],
+        'rooms' => [],
+        'lookupEnabled' => false,
+    ];
+
+    public function __construct(
+        string $appName,
+        IRequest $request,
+        protected ?string $userId,
+        protected IConfig $config,
+        protected IURLGenerator $urlGenerator,
+        protected IManager $shareManager,
+        protected ISearch $collaboratorSearch,
+    ) {
+        parent::__construct($appName, $request);
+    }
+
+    /**
+     * Search for sharees
+     *
+     * @param string $search Text to search for
+     * @param string|null $itemType Limit to specific item types
+     * @param int $page Page offset for searching
+     * @param int $perPage Limit amount of search results per page
+     * @param int|list<int>|null $shareType Limit to specific share types
+     * @param bool $lookup If a global lookup should be performed too
+     * @return DataResponse<Http::STATUS_OK, Files_SharingShareesSearchResult, array{Link?: string}>
+     * @throws OCSBadRequestException Invalid search parameters
+     *
+     * 200: Sharees search result returned
+     */
+    #[NoAdminRequired]
+    public function search(string $search = '', ?string $itemType = null, int $page = 1, int $perPage = 200, $shareType = null, bool $lookup = false): DataResponse {
+
+        // only search for string larger than a given threshold
+        $threshold = $this->config->getSystemValueInt('sharing.minSearchStringLength', 0);
+        if (strlen($search) < $threshold) {
+            return new DataResponse($this->result);
+        }
+
+        if ($this->shareManager->sharingDisabledForUser($this->userId)) {
+            return new DataResponse($this->result);
+        }
+
+        // never return more than the max. number of results configured in the config.php
+        $maxResults = $this->config->getSystemValueInt('sharing.maxAutocompleteResults', Constants::SHARING_MAX_AUTOCOMPLETE_RESULTS_DEFAULT);
+        if ($maxResults > 0) {
+            $perPage = min($perPage, $maxResults);
+        }
+        if ($perPage <= 0) {
+            throw new OCSBadRequestException('Invalid perPage argument');
+        }
+        if ($page <= 0) {
+            throw new OCSBadRequestException('Invalid page');
+        }
+
+        $shareTypes = [
+            IShare::TYPE_USER,
+        ];
+
+        if ($itemType === null) {
+            throw new OCSBadRequestException('Missing itemType');
+        } elseif ($itemType === 'file' || $itemType === 'folder') {
+            if ($this->shareManager->allowGroupSharing()) {
+                $shareTypes[] = IShare::TYPE_GROUP;
+            }
+
+            if ($this->isRemoteSharingAllowed($itemType)) {
+                $shareTypes[] = IShare::TYPE_REMOTE;
+            }
+
+            if ($this->isRemoteGroupSharingAllowed($itemType)) {
+                $shareTypes[] = IShare::TYPE_REMOTE_GROUP;
+            }
+
+            if ($this->shareManager->shareProviderExists(IShare::TYPE_EMAIL)) {
+                $shareTypes[] = IShare::TYPE_EMAIL;
+            }
+
+            if ($this->shareManager->shareProviderExists(IShare::TYPE_ROOM)) {
+                $shareTypes[] = IShare::TYPE_ROOM;
+            }
+        } else {
+            if ($this->shareManager->allowGroupSharing()) {
+                $shareTypes[] = IShare::TYPE_GROUP;
+            }
+            $shareTypes[] = IShare::TYPE_EMAIL;
+        }
+
+        // FIXME: DI
+        if (Server::get(IAppManager::class)->isEnabledForUser('circles') && class_exists('\OCA\Circles\ShareByCircleProvider')) {
+            $shareTypes[] = IShare::TYPE_CIRCLE;
+        }
+
+        if ($itemType === 'calendar') {
+            $shareTypes[] = IShare::TYPE_REMOTE;
+        }
+
+        if ($shareType !== null && is_array($shareType)) {
+            $shareTypes = array_intersect($shareTypes, $shareType);
+        } elseif (is_numeric($shareType)) {
+            $shareTypes = array_intersect($shareTypes, [(int)$shareType]);
+        }
+        sort($shareTypes);
+
+        $this->limit = $perPage;
+        $this->offset = $perPage * ($page - 1);
+
+        // In global scale mode we always search the lookup server
+        $this->result['lookupEnabled'] = Server::get(GlobalScaleIConfig::class)->isGlobalScaleEnabled();
+        // TODO: Reconsider using lookup server for non-global-scale federation
+
+        [$result, $hasMoreResults] = $this->collaboratorSearch->search($search, $shareTypes, $this->result['lookupEnabled'], $this->limit, $this->offset);
+
+        // extra treatment for 'exact' subarray, with a single merge expected keys might be lost
+        if (isset($result['exact'])) {
+            $result['exact'] = array_merge($this->result['exact'], $result['exact']);
+        }
+        $this->result = array_merge($this->result, $result);
+        $response = new DataResponse($this->result);
+
+        if ($hasMoreResults) {
+            $response->setHeaders(['Link' => $this->getPaginationLink($page, [
+                'search' => $search,
+                'itemType' => $itemType,
+                'shareType' => $shareTypes,
+                'perPage' => $perPage,
+            ])]);
+        }
+
+        return $response;
+    }
+
+    /**
+     * @param string $user
+     * @param int $shareType
+     *
+     * @return Generator<array<string>>
+     */
+    private function getAllShareesByType(string $user, int $shareType): Generator {
+        $offset = 0;
+        $pageSize = 50;
+
+        while (count($page = $this->shareManager->getSharesBy(
+            $user,
+            $shareType,
+            null,
+            false,
+            $pageSize,
+            $offset
+        ))) {
+            foreach ($page as $share) {
+                yield [$share->getSharedWith(), $share->getSharedWithDisplayName() ?? $share->getSharedWith()];
+            }
+
+            $offset += $pageSize;
+        }
+    }
+
+    private function sortShareesByFrequency(array $sharees): array {
+        usort($sharees, function (array $s1, array $s2): int {
+            return $s2['count'] - $s1['count'];
+        });
+        return $sharees;
+    }
+
+    private $searchResultTypeMap = [
+        IShare::TYPE_USER => 'users',
+        IShare::TYPE_GROUP => 'groups',
+        IShare::TYPE_REMOTE => 'remotes',
+        IShare::TYPE_REMOTE_GROUP => 'remote_groups',
+        IShare::TYPE_EMAIL => 'emails',
+    ];
+
+    private function getAllSharees(string $user, array $shareTypes): ISearchResult {
+        $result = [];
+        foreach ($shareTypes as $shareType) {
+            $sharees = $this->getAllShareesByType($user, $shareType);
+            $shareTypeResults = [];
+            foreach ($sharees as [$sharee, $displayname]) {
+                if (!isset($this->searchResultTypeMap[$shareType]) || trim($sharee) === '') {
+                    continue;
+                }
+
+                if (!isset($shareTypeResults[$sharee])) {
+                    $shareTypeResults[$sharee] = [
+                        'count' => 1,
+                        'label' => $displayname,
+                        'value' => [
+                            'shareType' => $shareType,
+                            'shareWith' => $sharee,
+                        ],
+                    ];
+                } else {
+                    $shareTypeResults[$sharee]['count']++;
+                }
+            }
+            $result = array_merge($result, array_values($shareTypeResults));
+        }
+
+        $top5 = array_slice(
+            $this->sortShareesByFrequency($result),
+            0,
+            5
+        );
+
+        $searchResult = new SearchResult();
+        foreach ($this->searchResultTypeMap as $int => $str) {
+            $searchResult->addResultSet(new SearchResultType($str), [], []);
+            foreach ($top5 as $x) {
+                if ($x['value']['shareType'] === $int) {
+                    $searchResult->addResultSet(new SearchResultType($str), [], [$x]);
+                }
+            }
+        }
+        return $searchResult;
+    }
+
+    /**
+     * Find recommended sharees
+     *
+     * @param string $itemType Limit to specific item types
+     * @param int|list<int>|null $shareType Limit to specific share types
+     * @return DataResponse<Http::STATUS_OK, Files_SharingShareesRecommendedResult, array{}>
+     *
+     * 200: Recommended sharees returned
+     */
+    #[NoAdminRequired]
+    public function findRecommended(string $itemType, $shareType = null): DataResponse {
+        $shareTypes = [
+            IShare::TYPE_USER,
+        ];
+
+        if ($itemType === 'file' || $itemType === 'folder') {
+            if ($this->shareManager->allowGroupSharing()) {
+                $shareTypes[] = IShare::TYPE_GROUP;
+            }
+
+            if ($this->isRemoteSharingAllowed($itemType)) {
+                $shareTypes[] = IShare::TYPE_REMOTE;
+            }
+
+            if ($this->isRemoteGroupSharingAllowed($itemType)) {
+                $shareTypes[] = IShare::TYPE_REMOTE_GROUP;
+            }
+
+            if ($this->shareManager->shareProviderExists(IShare::TYPE_EMAIL)) {
+                $shareTypes[] = IShare::TYPE_EMAIL;
+            }
+
+            if ($this->shareManager->shareProviderExists(IShare::TYPE_ROOM)) {
+                $shareTypes[] = IShare::TYPE_ROOM;
+            }
+        } else {
+            $shareTypes[] = IShare::TYPE_GROUP;
+            $shareTypes[] = IShare::TYPE_EMAIL;
+        }
+
+        // FIXME: DI
+        if (Server::get(IAppManager::class)->isEnabledForUser('circles') && class_exists('\OCA\Circles\ShareByCircleProvider')) {
+            $shareTypes[] = IShare::TYPE_CIRCLE;
+        }
+
+        if (isset($_GET['shareType']) && is_array($_GET['shareType'])) {
+            $shareTypes = array_intersect($shareTypes, $_GET['shareType']);
+            sort($shareTypes);
+        } elseif (is_numeric($shareType)) {
+            $shareTypes = array_intersect($shareTypes, [(int)$shareType]);
+            sort($shareTypes);
+        }
+
+        return new DataResponse(
+            $this->getAllSharees($this->userId, $shareTypes)->asArray()
+        );
+    }
+
+    /**
+     * Method to get out the static call for better testing
+     *
+     * @param string $itemType
+     * @return bool
+     */
+    protected function isRemoteSharingAllowed(string $itemType): bool {
+        try {
+            // FIXME: static foo makes unit testing unnecessarily difficult
+            $backend = Share::getBackend($itemType);
+            return $backend->isShareTypeAllowed(IShare::TYPE_REMOTE);
+        } catch (\Exception $e) {
+            return false;
+        }
+    }
+
+    protected function isRemoteGroupSharingAllowed(string $itemType): bool {
+        try {
+            // FIXME: static foo makes unit testing unnecessarily difficult
+            $backend = Share::getBackend($itemType);
+            return $backend->isShareTypeAllowed(IShare::TYPE_REMOTE_GROUP);
+        } catch (\Exception $e) {
+            return false;
+        }
+    }
+
+
+    /**
+     * Generates a bunch of pagination links for the current page
+     *
+     * @param int $page Current page
+     * @param array $params Parameters for the URL
+     * @return string
+     */
+    protected function getPaginationLink(int $page, array $params): string {
+        if ($this->isV2()) {
+            $url = $this->urlGenerator->getAbsoluteURL('/ocs/v2.php/apps/files_sharing/api/v1/sharees') . '?';
+        } else {
+            $url = $this->urlGenerator->getAbsoluteURL('/ocs/v1.php/apps/files_sharing/api/v1/sharees') . '?';
+        }
+        $params['page'] = $page + 1;
+        return '<' . $url . http_build_query($params) . '>; rel="next"';
+    }
+
+    /**
+     * @return bool
+     */
+    protected function isV2(): bool {
+        return $this->request->getScriptName() === '/ocs/v2.php';
+    }
 }

Please login to merge, or discard this patch.

		@@ -225,7 +225,7 @@ discard block
		block discarded – undo
225	225	// Server not found or other issue, we consider it not trusted
226	226	$this->trustedServerCache[$remote] = false;
227	227	$this->logger->error(
228		- 'Error checking if remote server is trusted (treating as untrusted): ' . $e->getMessage(),
	228	+ 'Error checking if remote server is trusted (treating as untrusted): '.$e->getMessage(),
229	229	['exception' => $e]
230	230	);
231	231	}
		@@ -255,7 +255,7 @@ discard block
		block discarded – undo
255	255	'message' => $userStatus->getMessage(),
256	256	'icon' => $userStatus->getIcon(),
257	257	'clearAt' => $userStatus->getClearAt()
258		- ? (int)$userStatus->getClearAt()->format('U')
	258	+ ? (int) $userStatus->getClearAt()->format('U')
259	259	: null,
260	260	];
261	261	}
		@@ -268,7 +268,7 @@ discard block
		block discarded – undo
268	268	// "share_with" and "share_with_displayname" for passwords of link
269	269	// shares was deprecated in Nextcloud 15, use "password" instead.
270	270	$result['share_with'] = $share->getPassword();
271		- $result['share_with_displayname'] = '(' . $this->l->t('Shared link') . ')';
	271	+ $result['share_with_displayname'] = '('.$this->l->t('Shared link').')';
272	272
273	273	$result['password'] = $share->getPassword();
274	274
		@@ -339,7 +339,7 @@ discard block
		block discarded – undo
339	339
340	340	$result['attributes'] = null;
341	341	if ($attributes = $share->getAttributes()) {
342		- $result['attributes'] = (string)\json_encode($attributes->toArray());
	342	+ $result['attributes'] = (string) \json_encode($attributes->toArray());
343	343	}
344	344
345	345	return $result;
		@@ -644,7 +644,7 @@ discard block
		block discarded – undo
644	644	} else {
645	645	// Use default permissions only for non-link shares to keep legacy behavior
646	646	if ($permissions === null) {
647		- $permissions = (int)$this->config->getAppValue('core', 'shareapi_default_permissions', (string)Constants::PERMISSION_ALL);
	647	+ $permissions = (int) $this->config->getAppValue('core', 'shareapi_default_permissions', (string) Constants::PERMISSION_ALL);
648	648	}
649	649	// Non-link shares always require read permissions (link shares could be file drop)
650	650	$permissions \|= Constants::PERMISSION_READ;
		@@ -825,7 +825,7 @@ discard block
		block discarded – undo
825	825	} catch (HintException $e) {
826	826	$code = $e->getCode() === 0 ? 403 : $e->getCode();
827	827	throw new OCSException($e->getHint(), $code);
828		- } catch (GenericShareException\|\InvalidArgumentException $e) {
	828	+ } catch (GenericShareException \| \InvalidArgumentException $e) {
829	829	$this->logger->error($e->getMessage(), ['exception' => $e]);
830	830	throw new OCSForbiddenException($e->getMessage(), $e);
831	831	} catch (\Exception $e) {
		@@ -853,7 +853,7 @@ discard block
		block discarded – undo
853	853
854	854	$shares = array_merge($userShares, $groupShares, $circleShares, $roomShares, $deckShares);
855	855
856		- $filteredShares = array_filter($shares, function (IShare $share) {
	856	+ $filteredShares = array_filter($shares, function(IShare $share) {
857	857	return $share->getShareOwner() !== $this->userId && $share->getSharedBy() !== $this->userId;
858	858	});
859	859
		@@ -890,7 +890,7 @@ discard block
		block discarded – undo
890	890	$nodes = $folder->getDirectoryListing();
891	891
892	892	/** @var IShare[] $shares */
893		- $shares = array_reduce($nodes, function ($carry, $node) {
	893	+ $shares = array_reduce($nodes, function($carry, $node) {
894	894	$carry = array_merge($carry, $this->getAllShares($node, true));
895	895	return $carry;
896	896	}, []);
		@@ -1110,7 +1110,7 @@ discard block
		block discarded – undo
1110	1110	if (!$resharingRight && $this->shareProviderResharingRights($this->userId, $share, $node)) {
1111	1111	$resharingRight = true;
1112	1112	}
1113		- } catch (InvalidPathException\|NotFoundException $e) {
	1113	+ } catch (InvalidPathException \| NotFoundException $e) {
1114	1114	}
1115	1115	}
1116	1116
		@@ -1389,7 +1389,7 @@ discard block
		block discarded – undo
1389	1389	$share = $this->shareManager->updateShare($share);
1390	1390	} catch (HintException $e) {
1391	1391	$code = $e->getCode() === 0 ? 403 : $e->getCode();
1392		- throw new OCSException($e->getHint(), (int)$code);
	1392	+ throw new OCSException($e->getHint(), (int) $code);
1393	1393	} catch (\Exception $e) {
1394	1394	$this->logger->error($e->getMessage(), ['exception' => $e]);
1395	1395	throw new OCSBadRequestException('Failed to update share.', $e);
		@@ -1434,7 +1434,7 @@ discard block
		block discarded – undo
1434	1434	}
1435	1435	}
1436	1436
1437		- $result = array_values(array_filter(array_map(function (IShare $share) {
	1437	+ $result = array_values(array_filter(array_map(function(IShare $share) {
1438	1438	$userFolder = $this->rootFolder->getUserFolder($share->getSharedBy());
1439	1439	$node = $userFolder->getFirstNodeById($share->getNodeId());
1440	1440	if (!$node) {
		@@ -1447,13 +1447,13 @@ discard block
		block discarded – undo
1447	1447
1448	1448	try {
1449	1449	$formattedShare = $this->formatShare($share, $node);
1450		- $formattedShare['path'] = '/' . $share->getNode()->getName();
	1450	+ $formattedShare['path'] = '/'.$share->getNode()->getName();
1451	1451	$formattedShare['permissions'] = 0;
1452	1452	return $formattedShare;
1453	1453	} catch (NotFoundException $e) {
1454	1454	return null;
1455	1455	}
1456		- }, $pendingShares), function ($entry) {
	1456	+ }, $pendingShares), function($entry) {
1457	1457	return $entry !== null;
1458	1458	}));
1459	1459
		@@ -1487,7 +1487,7 @@ discard block
		block discarded – undo
1487	1487	$this->shareManager->acceptShare($share, $this->userId);
1488	1488	} catch (HintException $e) {
1489	1489	$code = $e->getCode() === 0 ? 403 : $e->getCode();
1490		- throw new OCSException($e->getHint(), (int)$code);
	1490	+ throw new OCSException($e->getHint(), (int) $code);
1491	1491	} catch (\Exception $e) {
1492	1492	$this->logger->error($e->getMessage(), ['exception' => $e]);
1493	1493	throw new OCSBadRequestException('Failed to accept share.', $e);
		@@ -1737,7 +1737,7 @@ discard block
		block discarded – undo
1737	1737	foreach ($providers as $prefix => $type) {
1738	1738	try {
1739	1739	if ($type === null \|\| $this->shareManager->shareProviderExists($type)) {
1740		- return $this->shareManager->getShareById($prefix . ':' . $id, $this->userId);
	1740	+ return $this->shareManager->getShareById($prefix.':'.$id, $this->userId);
1741	1741	}
1742	1742	} catch (ShareNotFound $e) {
1743	1743	// Do nothing, continue to next provider
		@@ -1902,7 +1902,7 @@ discard block
		block discarded – undo
1902	1902	if ($this->shareProviderResharingRights($viewer, $share, $node)) {
1903	1903	return true;
1904	1904	}
1905		- } catch (InvalidPathException\|NotFoundException $e) {
	1905	+ } catch (InvalidPathException \| NotFoundException $e) {
1906	1906	}
1907	1907	}
1908	1908	}

		@@ -27,209 +27,209 @@
		block discarded – undo
27	27	* @package OC\Share20
28	28	*/
29	29	class ProviderFactory implements IProviderFactory {
30		- private ?DefaultShareProvider $defaultProvider = null;
31		- private ?FederatedShareProvider $federatedProvider = null;
32		- private ?ShareByMailProvider $shareByMailProvider = null;
33		- /**
34		- * @psalm-suppress UndefinedDocblockClass
35		- * @var ?RoomShareProvider
36		- */
37		- private $roomShareProvider = null;
38		-
39		- private array $registeredShareProviders = [];
40		-
41		- private array $shareProviders = [];
42		-
43		- public function __construct(
44		- protected IAppManager $appManager,
45		- protected LoggerInterface $logger,
46		- ) {
47		- }
48		-
49		- public function registerProvider(string $shareProviderClass): void {
50		- $this->registeredShareProviders[] = $shareProviderClass;
51		- }
52		-
53		- /**
54		- * Create the default share provider.
55		- */
56		- protected function defaultShareProvider(): DefaultShareProvider {
57		- return Server::get(DefaultShareProvider::class);
58		- }
59		-
60		- /**
61		- * Create the federated share provider
62		- */
63		- protected function federatedShareProvider(): ?FederatedShareProvider {
64		- if ($this->federatedProvider === null) {
65		- /*
	30	+ private ?DefaultShareProvider $defaultProvider = null;
	31	+ private ?FederatedShareProvider $federatedProvider = null;
	32	+ private ?ShareByMailProvider $shareByMailProvider = null;
	33	+ /**
	34	+ * @psalm-suppress UndefinedDocblockClass
	35	+ * @var ?RoomShareProvider
	36	+ */
	37	+ private $roomShareProvider = null;
	38	+
	39	+ private array $registeredShareProviders = [];
	40	+
	41	+ private array $shareProviders = [];
	42	+
	43	+ public function __construct(
	44	+ protected IAppManager $appManager,
	45	+ protected LoggerInterface $logger,
	46	+ ) {
	47	+ }
	48	+
	49	+ public function registerProvider(string $shareProviderClass): void {
	50	+ $this->registeredShareProviders[] = $shareProviderClass;
	51	+ }
	52	+
	53	+ /**
	54	+ * Create the default share provider.
	55	+ */
	56	+ protected function defaultShareProvider(): DefaultShareProvider {
	57	+ return Server::get(DefaultShareProvider::class);
	58	+ }
	59	+
	60	+ /**
	61	+ * Create the federated share provider
	62	+ */
	63	+ protected function federatedShareProvider(): ?FederatedShareProvider {
	64	+ if ($this->federatedProvider === null) {
	65	+ /*
66	66	* Check if the app is enabled
67	67	*/
68		- if (!$this->appManager->isEnabledForUser('federatedfilesharing')) {
69		- return null;
70		- }
71		-
72		- $this->federatedProvider = Server::get(FederatedShareProvider::class);
73		- }
74		-
75		- return $this->federatedProvider;
76		- }
77		-
78		- /**
79		- * Create the federated share provider
80		- */
81		- protected function getShareByMailProvider(): ?ShareByMailProvider {
82		- if ($this->shareByMailProvider === null) {
83		- /*
	68	+ if (!$this->appManager->isEnabledForUser('federatedfilesharing')) {
	69	+ return null;
	70	+ }
	71	+
	72	+ $this->federatedProvider = Server::get(FederatedShareProvider::class);
	73	+ }
	74	+
	75	+ return $this->federatedProvider;
	76	+ }
	77	+
	78	+ /**
	79	+ * Create the federated share provider
	80	+ */
	81	+ protected function getShareByMailProvider(): ?ShareByMailProvider {
	82	+ if ($this->shareByMailProvider === null) {
	83	+ /*
84	84	* Check if the app is enabled
85	85	*/
86		- if (!$this->appManager->isEnabledForUser('sharebymail')) {
87		- return null;
88		- }
89		-
90		- $this->shareByMailProvider = Server::get(ShareByMailProvider::class);
91		- }
92		-
93		- return $this->shareByMailProvider;
94		- }
95		-
96		- /**
97		- * Create the room share provider
98		- *
99		- * @psalm-suppress UndefinedDocblockClass
100		- * @return ?RoomShareProvider
101		- */
102		- protected function getRoomShareProvider() {
103		- if ($this->roomShareProvider === null) {
104		- /*
	86	+ if (!$this->appManager->isEnabledForUser('sharebymail')) {
	87	+ return null;
	88	+ }
	89	+
	90	+ $this->shareByMailProvider = Server::get(ShareByMailProvider::class);
	91	+ }
	92	+
	93	+ return $this->shareByMailProvider;
	94	+ }
	95	+
	96	+ /**
	97	+ * Create the room share provider
	98	+ *
	99	+ * @psalm-suppress UndefinedDocblockClass
	100	+ * @return ?RoomShareProvider
	101	+ */
	102	+ protected function getRoomShareProvider() {
	103	+ if ($this->roomShareProvider === null) {
	104	+ /*
105	105	* Check if the app is enabled
106	106	*/
107		- if (!$this->appManager->isEnabledForUser('spreed')) {
108		- return null;
109		- }
110		-
111		- try {
112		- /**
113		- * @psalm-suppress UndefinedClass
114		- */
115		- $this->roomShareProvider = Server::get(RoomShareProvider::class);
116		- } catch (\Throwable $e) {
117		- $this->logger->error(
118		- $e->getMessage(),
119		- ['exception' => $e]
120		- );
121		- return null;
122		- }
123		- }
124		-
125		- return $this->roomShareProvider;
126		- }
127		-
128		- /**
129		- * @inheritdoc
130		- */
131		- public function getProvider($id) {
132		- $provider = null;
133		- if (isset($this->shareProviders[$id])) {
134		- return $this->shareProviders[$id];
135		- }
136		-
137		- if ($id === 'ocinternal') {
138		- $provider = $this->defaultShareProvider();
139		- } elseif ($id === 'ocFederatedSharing') {
140		- $provider = $this->federatedShareProvider();
141		- } elseif ($id === 'ocMailShare') {
142		- $provider = $this->getShareByMailProvider();
143		- } elseif ($id === 'ocRoomShare') {
144		- $provider = $this->getRoomShareProvider();
145		- }
146		-
147		- foreach ($this->registeredShareProviders as $shareProvider) {
148		- try {
149		- /** @var IShareProvider $instance */
150		- $instance = Server::get($shareProvider);
151		- $this->shareProviders[$instance->identifier()] = $instance;
152		- } catch (\Throwable $e) {
153		- $this->logger->error(
154		- $e->getMessage(),
155		- ['exception' => $e]
156		- );
157		- }
158		- }
159		-
160		- if (isset($this->shareProviders[$id])) {
161		- $provider = $this->shareProviders[$id];
162		- }
163		-
164		- if ($provider === null) {
165		- throw new ProviderException('No provider with id .' . $id . ' found.');
166		- }
167		-
168		- return $provider;
169		- }
170		-
171		- /**
172		- * @inheritdoc
173		- */
174		- public function getProviderForType($shareType) {
175		- $provider = null;
176		-
177		- if ($shareType === IShare::TYPE_USER
178		- \|\| $shareType === IShare::TYPE_GROUP
179		- \|\| $shareType === IShare::TYPE_LINK
180		- ) {
181		- $provider = $this->defaultShareProvider();
182		- } elseif ($shareType === IShare::TYPE_REMOTE \|\| $shareType === IShare::TYPE_REMOTE_GROUP) {
183		- $provider = $this->federatedShareProvider();
184		- } elseif ($shareType === IShare::TYPE_EMAIL) {
185		- $provider = $this->getShareByMailProvider();
186		- } elseif ($shareType === IShare::TYPE_CIRCLE) {
187		- $provider = $this->getProvider('ocCircleShare');
188		- } elseif ($shareType === IShare::TYPE_ROOM) {
189		- $provider = $this->getRoomShareProvider();
190		- } elseif ($shareType === IShare::TYPE_DECK) {
191		- $provider = $this->getProvider('deck');
192		- }
193		-
194		-
195		- if ($provider === null) {
196		- throw new ProviderException('No share provider for share type ' . $shareType);
197		- }
198		-
199		- return $provider;
200		- }
201		-
202		- public function getAllProviders() {
203		- $shares = [$this->defaultShareProvider(), $this->federatedShareProvider()];
204		- $shareByMail = $this->getShareByMailProvider();
205		- if ($shareByMail !== null) {
206		- $shares[] = $shareByMail;
207		- }
208		- $roomShare = $this->getRoomShareProvider();
209		- if ($roomShare !== null) {
210		- $shares[] = $roomShare;
211		- }
212		-
213		- foreach ($this->registeredShareProviders as $shareProvider) {
214		- try {
215		- /** @var IShareProvider $instance */
216		- $instance = Server::get($shareProvider);
217		- } catch (\Throwable $e) {
218		- $this->logger->error(
219		- $e->getMessage(),
220		- ['exception' => $e]
221		- );
222		- continue;
223		- }
224		-
225		- if (!isset($this->shareProviders[$instance->identifier()])) {
226		- $this->shareProviders[$instance->identifier()] = $instance;
227		- }
228		- $shares[] = $this->shareProviders[$instance->identifier()];
229		- }
230		-
231		-
232		-
233		- return $shares;
234		- }
	107	+ if (!$this->appManager->isEnabledForUser('spreed')) {
	108	+ return null;
	109	+ }
	110	+
	111	+ try {
	112	+ /**
	113	+ * @psalm-suppress UndefinedClass
	114	+ */
	115	+ $this->roomShareProvider = Server::get(RoomShareProvider::class);
	116	+ } catch (\Throwable $e) {
	117	+ $this->logger->error(
	118	+ $e->getMessage(),
	119	+ ['exception' => $e]
	120	+ );
	121	+ return null;
	122	+ }
	123	+ }
	124	+
	125	+ return $this->roomShareProvider;
	126	+ }
	127	+
	128	+ /**
	129	+ * @inheritdoc
	130	+ */
	131	+ public function getProvider($id) {
	132	+ $provider = null;
	133	+ if (isset($this->shareProviders[$id])) {
	134	+ return $this->shareProviders[$id];
	135	+ }
	136	+
	137	+ if ($id === 'ocinternal') {
	138	+ $provider = $this->defaultShareProvider();
	139	+ } elseif ($id === 'ocFederatedSharing') {
	140	+ $provider = $this->federatedShareProvider();
	141	+ } elseif ($id === 'ocMailShare') {
	142	+ $provider = $this->getShareByMailProvider();
	143	+ } elseif ($id === 'ocRoomShare') {
	144	+ $provider = $this->getRoomShareProvider();
	145	+ }
	146	+
	147	+ foreach ($this->registeredShareProviders as $shareProvider) {
	148	+ try {
	149	+ /** @var IShareProvider $instance */
	150	+ $instance = Server::get($shareProvider);
	151	+ $this->shareProviders[$instance->identifier()] = $instance;
	152	+ } catch (\Throwable $e) {
	153	+ $this->logger->error(
	154	+ $e->getMessage(),
	155	+ ['exception' => $e]
	156	+ );
	157	+ }
	158	+ }
	159	+
	160	+ if (isset($this->shareProviders[$id])) {
	161	+ $provider = $this->shareProviders[$id];
	162	+ }
	163	+
	164	+ if ($provider === null) {
	165	+ throw new ProviderException('No provider with id .' . $id . ' found.');
	166	+ }
	167	+
	168	+ return $provider;
	169	+ }
	170	+
	171	+ /**
	172	+ * @inheritdoc
	173	+ */
	174	+ public function getProviderForType($shareType) {
	175	+ $provider = null;
	176	+
	177	+ if ($shareType === IShare::TYPE_USER
	178	+ \|\| $shareType === IShare::TYPE_GROUP
	179	+ \|\| $shareType === IShare::TYPE_LINK
	180	+ ) {
	181	+ $provider = $this->defaultShareProvider();
	182	+ } elseif ($shareType === IShare::TYPE_REMOTE \|\| $shareType === IShare::TYPE_REMOTE_GROUP) {
	183	+ $provider = $this->federatedShareProvider();
	184	+ } elseif ($shareType === IShare::TYPE_EMAIL) {
	185	+ $provider = $this->getShareByMailProvider();
	186	+ } elseif ($shareType === IShare::TYPE_CIRCLE) {
	187	+ $provider = $this->getProvider('ocCircleShare');
	188	+ } elseif ($shareType === IShare::TYPE_ROOM) {
	189	+ $provider = $this->getRoomShareProvider();
	190	+ } elseif ($shareType === IShare::TYPE_DECK) {
	191	+ $provider = $this->getProvider('deck');
	192	+ }
	193	+
	194	+
	195	+ if ($provider === null) {
	196	+ throw new ProviderException('No share provider for share type ' . $shareType);
	197	+ }
	198	+
	199	+ return $provider;
	200	+ }
	201	+
	202	+ public function getAllProviders() {
	203	+ $shares = [$this->defaultShareProvider(), $this->federatedShareProvider()];
	204	+ $shareByMail = $this->getShareByMailProvider();
	205	+ if ($shareByMail !== null) {
	206	+ $shares[] = $shareByMail;
	207	+ }
	208	+ $roomShare = $this->getRoomShareProvider();
	209	+ if ($roomShare !== null) {
	210	+ $shares[] = $roomShare;
	211	+ }
	212	+
	213	+ foreach ($this->registeredShareProviders as $shareProvider) {
	214	+ try {
	215	+ /** @var IShareProvider $instance */
	216	+ $instance = Server::get($shareProvider);
	217	+ } catch (\Throwable $e) {
	218	+ $this->logger->error(
	219	+ $e->getMessage(),
	220	+ ['exception' => $e]
	221	+ );
	222	+ continue;
	223	+ }
	224	+
	225	+ if (!isset($this->shareProviders[$instance->identifier()])) {
	226	+ $this->shareProviders[$instance->identifier()] = $instance;
	227	+ }
	228	+ $shares[] = $this->shareProviders[$instance->identifier()];
	229	+ }
	230	+
	231	+
	232	+
	233	+ return $shares;
	234	+ }
235	235	}

		@@ -27,330 +27,330 @@
		block discarded – undo
27	27	use function count;
28	28
29	29	class MountProvider implements IMountProvider {
30		- /**
31		- * @param IConfig $config
32		- * @param IManager $shareManager
33		- * @param LoggerInterface $logger
34		- */
35		- public function __construct(
36		- protected IConfig $config,
37		- protected IManager $shareManager,
38		- protected LoggerInterface $logger,
39		- protected IEventDispatcher $eventDispatcher,
40		- protected ICacheFactory $cacheFactory,
41		- protected IMountManager $mountManager,
42		- ) {
43		- }
44		-
45		- /**
46		- * Get all mountpoints applicable for the user and check for shares where we need to update the etags
47		- *
48		- * @param IUser $user
49		- * @param IStorageFactory $loader
50		- * @return IMountPoint[]
51		- */
52		- public function getMountsForUser(IUser $user, IStorageFactory $loader) {
53		- $userId = $user->getUID();
54		- $shares = array_merge(
55		- $this->shareManager->getSharedWith($userId, IShare::TYPE_USER, null, -1),
56		- $this->shareManager->getSharedWith($userId, IShare::TYPE_GROUP, null, -1),
57		- $this->shareManager->getSharedWith($userId, IShare::TYPE_CIRCLE, null, -1),
58		- $this->shareManager->getSharedWith($userId, IShare::TYPE_ROOM, null, -1),
59		- $this->shareManager->getSharedWith($userId, IShare::TYPE_DECK, null, -1),
60		- );
61		-
62		- $shares = $this->filterShares($shares, $userId);
63		- $superShares = $this->buildSuperShares($shares, $user);
64		-
65		- return $this->getMountsFromSuperShares($userId, $superShares, $loader, $user);
66		- }
67		-
68		- /**
69		- * Groups shares by path (nodeId) and target path
70		- *
71		- * @param IShare[] $shares
72		- * @return IShare[][] array of grouped shares, each element in the
73		- * array is a group which itself is an array of shares
74		- */
75		- private function groupShares(array $shares) {
76		- $tmp = [];
77		-
78		- foreach ($shares as $share) {
79		- $nodeId = $share->getNodeId();
80		- if (!isset($tmp[$nodeId])) {
81		- $tmp[$nodeId] = [];
82		- }
83		- $tmp[$nodeId][] = $share;
84		- }
85		-
86		- $result = [];
87		- // sort by stime, the super share will be based on the least recent share
88		- foreach ($tmp as &$tmp2) {
89		- @usort($tmp2, function ($a, $b) {
90		- $aTime = $a->getShareTime()->getTimestamp();
91		- $bTime = $b->getShareTime()->getTimestamp();
92		- if ($aTime === $bTime) {
93		- return $a->getId() < $b->getId() ? -1 : 1;
94		- }
95		- return $aTime < $bTime ? -1 : 1;
96		- });
97		- $result[] = $tmp2;
98		- }
99		-
100		- return $result;
101		- }
102		-
103		- /**
104		- * Groups shares by node ID and builds a new share object (super share)
105		- * which represents a summarized version of all the shares in the group.
106		- *
107		- * The permissions and attributes of the super share are accumulated from
108		- * the shares in the group, forming the most permissive combination
109		- * possible.
110		- *
111		- * @param IShare[] $allShares
112		- * @param IUser $user user
113		- * @return list<array{IShare, array<IShare>}> Tuple of [superShare, groupedShares]
114		- */
115		- private function buildSuperShares(array $allShares, IUser $user) {
116		- $result = [];
117		-
118		- $groupedShares = $this->groupShares($allShares);
119		-
120		- foreach ($groupedShares as $shares) {
121		- if (count($shares) === 0) {
122		- continue;
123		- }
124		-
125		- $superShare = $this->shareManager->newShare();
126		-
127		- // compute super share based on first entry of the group
128		- $superShare->setId($shares[0]->getId())
129		- ->setShareOwner($shares[0]->getShareOwner())
130		- ->setNodeId($shares[0]->getNodeId())
131		- ->setShareType($shares[0]->getShareType())
132		- ->setTarget($shares[0]->getTarget());
133		-
134		- $this->combineNotes($shares, $superShare);
135		-
136		- // use most permissive permissions
137		- // this covers the case where there are multiple shares for the same
138		- // file e.g. from different groups and different permissions
139		- $superPermissions = 0;
140		- $superAttributes = $this->shareManager->newShare()->newAttributes();
141		- $status = IShare::STATUS_PENDING;
142		- foreach ($shares as $share) {
143		- $status = max($status, $share->getStatus());
144		- // update permissions
145		- $superPermissions \|= $share->getPermissions();
146		-
147		- // update share permission attributes
148		- $attributes = $share->getAttributes();
149		- if ($attributes !== null) {
150		- $this->mergeAttributes($attributes, $superAttributes);
151		- }
152		-
153		- $this->adjustTarget($share, $superShare, $user);
154		- if ($share->getNodeCacheEntry() !== null) {
155		- $superShare->setNodeCacheEntry($share->getNodeCacheEntry());
156		- }
157		- }
158		-
159		- $superShare->setPermissions($superPermissions);
160		- $superShare->setStatus($status);
161		- $superShare->setAttributes($superAttributes);
162		-
163		- $result[] = [$superShare, $shares];
164		- }
165		-
166		- return $result;
167		- }
168		-
169		- /**
170		- * Combines $attributes into the most permissive set of attributes and
171		- * sets them in $superAttributes.
172		- */
173		- private function mergeAttributes(
174		- IAttributes $attributes,
175		- IAttributes $superAttributes,
176		- ): void {
177		- foreach ($attributes->toArray() as $attribute) {
178		- if ($superAttributes->getAttribute(
179		- $attribute['scope'],
180		- $attribute['key']
181		- ) === true) {
182		- // if super share attribute is already enabled, it is most permissive
183		- continue;
184		- }
185		- // update super share attributes with subshare attribute
186		- $superAttributes->setAttribute(
187		- $attribute['scope'],
188		- $attribute['key'],
189		- $attribute['value']
190		- );
191		- }
192		- }
193		-
194		- /**
195		- * Gather notes from all the shares. Since these are readily available
196		- * here, storing them enables the DAV FilesPlugin to avoid executing many
197		- * DB queries to retrieve the same information.
198		- *
199		- * @param array<IShare> $shares
200		- * @param IShare $superShare
201		- * @return void
202		- */
203		- private function combineNotes(
204		- array &$shares,
205		- IShare $superShare,
206		- ): void {
207		- $allNotes = implode(
208		- "\n",
209		- array_map(static fn ($sh) => $sh->getNote(), $shares)
210		- );
211		- $superShare->setNote($allNotes);
212		- }
213		-
214		- /**
215		- * Adjusts the target in $share for DB consistency, if needed.
216		- */
217		- private function adjustTarget(
218		- IShare $share,
219		- IShare $superShare,
220		- IUser $user,
221		- ): void {
222		- if ($share->getTarget() === $superShare->getTarget()) {
223		- return;
224		- }
225		-
226		- $share->setTarget($superShare->getTarget());
227		- try {
228		- $this->shareManager->moveShare($share, $user->getUID());
229		- } catch (InvalidArgumentException $e) {
230		- // ignore as it is not important and we don't want to
231		- // block FS setup
232		-
233		- // the subsequent code anyway only uses the target of the
234		- // super share
235		-
236		- // such issue can usually happen when dealing with
237		- // null groups which usually appear with group backend
238		- // caching inconsistencies
239		- $this->logger->debug(
240		- 'Could not adjust share target for share ' . $share->getId(
241		- ) . ' to make it consistent: ' . $e->getMessage(),
242		- ['app' => 'files_sharing']
243		- );
244		- }
245		- }
246		- /**
247		- * @param string $userId
248		- * @param array $superShares
249		- * @param IStorageFactory $loader
250		- * @param IUser $user
251		- * @return array
252		- * @throws Exception
253		- */
254		- private function getMountsFromSuperShares(
255		- string $userId,
256		- array $superShares,
257		- IStorageFactory $loader,
258		- IUser $user,
259		- ): array {
260		- $allMounts = $this->mountManager->getAll();
261		- $mounts = [];
262		- $view = new View('/' . $userId . '/files');
263		- $ownerViews = [];
264		- $sharingDisabledForUser
265		- = $this->shareManager->sharingDisabledForUser($userId);
266		- /** @var CappedMemoryCache<bool> $folderExistCache */
267		- $foldersExistCache = new CappedMemoryCache();
268		-
269		- $validShareCache
270		- = $this->cacheFactory->createLocal('share-valid-mountpoint-max');
271		- $maxValidatedShare = $validShareCache->get($userId) ?? 0;
272		- $newMaxValidatedShare = $maxValidatedShare;
273		-
274		- foreach ($superShares as $share) {
275		- [$parentShare, $groupedShares] = $share;
276		- try {
277		- if ($parentShare->getStatus() !== IShare::STATUS_ACCEPTED
278		- && ($parentShare->getShareType() === IShare::TYPE_GROUP
279		- \|\| $parentShare->getShareType() === IShare::TYPE_USERGROUP
280		- \|\| $parentShare->getShareType() === IShare::TYPE_USER)
281		- ) {
282		- continue;
283		- }
284		-
285		- $owner = $parentShare->getShareOwner();
286		- if (!isset($ownerViews[$owner])) {
287		- $ownerViews[$owner] = new View('/' . $owner . '/files');
288		- }
289		- $shareId = (int)$parentShare->getId();
290		- $mount = new SharedMount(
291		- '\OCA\Files_Sharing\SharedStorage',
292		- $allMounts,
293		- [
294		- 'user' => $userId,
295		- // parent share
296		- 'superShare' => $parentShare,
297		- // children/component of the superShare
298		- 'groupedShares' => $groupedShares,
299		- 'ownerView' => $ownerViews[$owner],
300		- 'sharingDisabledForUser' => $sharingDisabledForUser
301		- ],
302		- $loader,
303		- $view,
304		- $foldersExistCache,
305		- $this->eventDispatcher,
306		- $user,
307		- $shareId <= $maxValidatedShare,
308		- );
309		-
310		- $newMaxValidatedShare = max($shareId, $newMaxValidatedShare);
311		-
312		- $event = new ShareMountedEvent($mount);
313		- $this->eventDispatcher->dispatchTyped($event);
314		-
315		- $mounts[$mount->getMountPoint()]
316		- = $allMounts[$mount->getMountPoint()] = $mount;
317		- foreach ($event->getAdditionalMounts() as $additionalMount) {
318		- $allMounts[$additionalMount->getMountPoint()]
319		- = $mounts[$additionalMount->getMountPoint()]
320		- = $additionalMount;
321		- }
322		- } catch (Exception $e) {
323		- $this->logger->error(
324		- 'Error while trying to create shared mount',
325		- [
326		- 'app' => 'files_sharing',
327		- 'exception' => $e,
328		- ],
329		- );
330		- }
331		- }
332		-
333		- $validShareCache->set($userId, $newMaxValidatedShare, 24 * 60 * 60);
334		-
335		- // array_filter removes the null values from the array
336		- return array_values(array_filter($mounts));
337		- }
338		-
339		- /**
340		- * Filters out shares owned or shared by the user and ones for which the
341		- * user has no permissions.
342		- *
343		- * @param IShare[] $shares
344		- * @return IShare[]
345		- */
346		- private function filterShares(array $shares, string $userId): array {
347		- return array_filter(
348		- $shares,
349		- static function (IShare $share) use ($userId) {
350		- return $share->getPermissions() > 0
351		- && $share->getShareOwner() !== $userId
352		- && $share->getSharedBy() !== $userId;
353		- }
354		- );
355		- }
	30	+ /**
	31	+ * @param IConfig $config
	32	+ * @param IManager $shareManager
	33	+ * @param LoggerInterface $logger
	34	+ */
	35	+ public function __construct(
	36	+ protected IConfig $config,
	37	+ protected IManager $shareManager,
	38	+ protected LoggerInterface $logger,
	39	+ protected IEventDispatcher $eventDispatcher,
	40	+ protected ICacheFactory $cacheFactory,
	41	+ protected IMountManager $mountManager,
	42	+ ) {
	43	+ }
	44	+
	45	+ /**
	46	+ * Get all mountpoints applicable for the user and check for shares where we need to update the etags
	47	+ *
	48	+ * @param IUser $user
	49	+ * @param IStorageFactory $loader
	50	+ * @return IMountPoint[]
	51	+ */
	52	+ public function getMountsForUser(IUser $user, IStorageFactory $loader) {
	53	+ $userId = $user->getUID();
	54	+ $shares = array_merge(
	55	+ $this->shareManager->getSharedWith($userId, IShare::TYPE_USER, null, -1),
	56	+ $this->shareManager->getSharedWith($userId, IShare::TYPE_GROUP, null, -1),
	57	+ $this->shareManager->getSharedWith($userId, IShare::TYPE_CIRCLE, null, -1),
	58	+ $this->shareManager->getSharedWith($userId, IShare::TYPE_ROOM, null, -1),
	59	+ $this->shareManager->getSharedWith($userId, IShare::TYPE_DECK, null, -1),
	60	+ );
	61	+
	62	+ $shares = $this->filterShares($shares, $userId);
	63	+ $superShares = $this->buildSuperShares($shares, $user);
	64	+
	65	+ return $this->getMountsFromSuperShares($userId, $superShares, $loader, $user);
	66	+ }
	67	+
	68	+ /**
	69	+ * Groups shares by path (nodeId) and target path
	70	+ *
	71	+ * @param IShare[] $shares
	72	+ * @return IShare[][] array of grouped shares, each element in the
	73	+ * array is a group which itself is an array of shares
	74	+ */
	75	+ private function groupShares(array $shares) {
	76	+ $tmp = [];
	77	+
	78	+ foreach ($shares as $share) {
	79	+ $nodeId = $share->getNodeId();
	80	+ if (!isset($tmp[$nodeId])) {
	81	+ $tmp[$nodeId] = [];
	82	+ }
	83	+ $tmp[$nodeId][] = $share;
	84	+ }
	85	+
	86	+ $result = [];
	87	+ // sort by stime, the super share will be based on the least recent share
	88	+ foreach ($tmp as &$tmp2) {
	89	+ @usort($tmp2, function ($a, $b) {
	90	+ $aTime = $a->getShareTime()->getTimestamp();
	91	+ $bTime = $b->getShareTime()->getTimestamp();
	92	+ if ($aTime === $bTime) {
	93	+ return $a->getId() < $b->getId() ? -1 : 1;
	94	+ }
	95	+ return $aTime < $bTime ? -1 : 1;
	96	+ });
	97	+ $result[] = $tmp2;
	98	+ }
	99	+
	100	+ return $result;
	101	+ }
	102	+
	103	+ /**
	104	+ * Groups shares by node ID and builds a new share object (super share)
	105	+ * which represents a summarized version of all the shares in the group.
	106	+ *
	107	+ * The permissions and attributes of the super share are accumulated from
	108	+ * the shares in the group, forming the most permissive combination
	109	+ * possible.
	110	+ *
	111	+ * @param IShare[] $allShares
	112	+ * @param IUser $user user
	113	+ * @return list<array{IShare, array<IShare>}> Tuple of [superShare, groupedShares]
	114	+ */
	115	+ private function buildSuperShares(array $allShares, IUser $user) {
	116	+ $result = [];
	117	+
	118	+ $groupedShares = $this->groupShares($allShares);
	119	+
	120	+ foreach ($groupedShares as $shares) {
	121	+ if (count($shares) === 0) {
	122	+ continue;
	123	+ }
	124	+
	125	+ $superShare = $this->shareManager->newShare();
	126	+
	127	+ // compute super share based on first entry of the group
	128	+ $superShare->setId($shares[0]->getId())
	129	+ ->setShareOwner($shares[0]->getShareOwner())
	130	+ ->setNodeId($shares[0]->getNodeId())
	131	+ ->setShareType($shares[0]->getShareType())
	132	+ ->setTarget($shares[0]->getTarget());
	133	+
	134	+ $this->combineNotes($shares, $superShare);
	135	+
	136	+ // use most permissive permissions
	137	+ // this covers the case where there are multiple shares for the same
	138	+ // file e.g. from different groups and different permissions
	139	+ $superPermissions = 0;
	140	+ $superAttributes = $this->shareManager->newShare()->newAttributes();
	141	+ $status = IShare::STATUS_PENDING;
	142	+ foreach ($shares as $share) {
	143	+ $status = max($status, $share->getStatus());
	144	+ // update permissions
	145	+ $superPermissions \|= $share->getPermissions();
	146	+
	147	+ // update share permission attributes
	148	+ $attributes = $share->getAttributes();
	149	+ if ($attributes !== null) {
	150	+ $this->mergeAttributes($attributes, $superAttributes);
	151	+ }
	152	+
	153	+ $this->adjustTarget($share, $superShare, $user);
	154	+ if ($share->getNodeCacheEntry() !== null) {
	155	+ $superShare->setNodeCacheEntry($share->getNodeCacheEntry());
	156	+ }
	157	+ }
	158	+
	159	+ $superShare->setPermissions($superPermissions);
	160	+ $superShare->setStatus($status);
	161	+ $superShare->setAttributes($superAttributes);
	162	+
	163	+ $result[] = [$superShare, $shares];
	164	+ }
	165	+
	166	+ return $result;
	167	+ }
	168	+
	169	+ /**
	170	+ * Combines $attributes into the most permissive set of attributes and
	171	+ * sets them in $superAttributes.
	172	+ */
	173	+ private function mergeAttributes(
	174	+ IAttributes $attributes,
	175	+ IAttributes $superAttributes,
	176	+ ): void {
	177	+ foreach ($attributes->toArray() as $attribute) {
	178	+ if ($superAttributes->getAttribute(
	179	+ $attribute['scope'],
	180	+ $attribute['key']
	181	+ ) === true) {
	182	+ // if super share attribute is already enabled, it is most permissive
	183	+ continue;
	184	+ }
	185	+ // update super share attributes with subshare attribute
	186	+ $superAttributes->setAttribute(
	187	+ $attribute['scope'],
	188	+ $attribute['key'],
	189	+ $attribute['value']
	190	+ );
	191	+ }
	192	+ }
	193	+
	194	+ /**
	195	+ * Gather notes from all the shares. Since these are readily available
	196	+ * here, storing them enables the DAV FilesPlugin to avoid executing many
	197	+ * DB queries to retrieve the same information.
	198	+ *
	199	+ * @param array<IShare> $shares
	200	+ * @param IShare $superShare
	201	+ * @return void
	202	+ */
	203	+ private function combineNotes(
	204	+ array &$shares,
	205	+ IShare $superShare,
	206	+ ): void {
	207	+ $allNotes = implode(
	208	+ "\n",
	209	+ array_map(static fn ($sh) => $sh->getNote(), $shares)
	210	+ );
	211	+ $superShare->setNote($allNotes);
	212	+ }
	213	+
	214	+ /**
	215	+ * Adjusts the target in $share for DB consistency, if needed.
	216	+ */
	217	+ private function adjustTarget(
	218	+ IShare $share,
	219	+ IShare $superShare,
	220	+ IUser $user,
	221	+ ): void {
	222	+ if ($share->getTarget() === $superShare->getTarget()) {
	223	+ return;
	224	+ }
	225	+
	226	+ $share->setTarget($superShare->getTarget());
	227	+ try {
	228	+ $this->shareManager->moveShare($share, $user->getUID());
	229	+ } catch (InvalidArgumentException $e) {
	230	+ // ignore as it is not important and we don't want to
	231	+ // block FS setup
	232	+
	233	+ // the subsequent code anyway only uses the target of the
	234	+ // super share
	235	+
	236	+ // such issue can usually happen when dealing with
	237	+ // null groups which usually appear with group backend
	238	+ // caching inconsistencies
	239	+ $this->logger->debug(
	240	+ 'Could not adjust share target for share ' . $share->getId(
	241	+ ) . ' to make it consistent: ' . $e->getMessage(),
	242	+ ['app' => 'files_sharing']
	243	+ );
	244	+ }
	245	+ }
	246	+ /**
	247	+ * @param string $userId
	248	+ * @param array $superShares
	249	+ * @param IStorageFactory $loader
	250	+ * @param IUser $user
	251	+ * @return array
	252	+ * @throws Exception
	253	+ */
	254	+ private function getMountsFromSuperShares(
	255	+ string $userId,
	256	+ array $superShares,
	257	+ IStorageFactory $loader,
	258	+ IUser $user,
	259	+ ): array {
	260	+ $allMounts = $this->mountManager->getAll();
	261	+ $mounts = [];
	262	+ $view = new View('/' . $userId . '/files');
	263	+ $ownerViews = [];
	264	+ $sharingDisabledForUser
	265	+ = $this->shareManager->sharingDisabledForUser($userId);
	266	+ /** @var CappedMemoryCache<bool> $folderExistCache */
	267	+ $foldersExistCache = new CappedMemoryCache();
	268	+
	269	+ $validShareCache
	270	+ = $this->cacheFactory->createLocal('share-valid-mountpoint-max');
	271	+ $maxValidatedShare = $validShareCache->get($userId) ?? 0;
	272	+ $newMaxValidatedShare = $maxValidatedShare;
	273	+
	274	+ foreach ($superShares as $share) {
	275	+ [$parentShare, $groupedShares] = $share;
	276	+ try {
	277	+ if ($parentShare->getStatus() !== IShare::STATUS_ACCEPTED
	278	+ && ($parentShare->getShareType() === IShare::TYPE_GROUP
	279	+ \|\| $parentShare->getShareType() === IShare::TYPE_USERGROUP
	280	+ \|\| $parentShare->getShareType() === IShare::TYPE_USER)
	281	+ ) {
	282	+ continue;
	283	+ }
	284	+
	285	+ $owner = $parentShare->getShareOwner();
	286	+ if (!isset($ownerViews[$owner])) {
	287	+ $ownerViews[$owner] = new View('/' . $owner . '/files');
	288	+ }
	289	+ $shareId = (int)$parentShare->getId();
	290	+ $mount = new SharedMount(
	291	+ '\OCA\Files_Sharing\SharedStorage',
	292	+ $allMounts,
	293	+ [
	294	+ 'user' => $userId,
	295	+ // parent share
	296	+ 'superShare' => $parentShare,
	297	+ // children/component of the superShare
	298	+ 'groupedShares' => $groupedShares,
	299	+ 'ownerView' => $ownerViews[$owner],
	300	+ 'sharingDisabledForUser' => $sharingDisabledForUser
	301	+ ],
	302	+ $loader,
	303	+ $view,
	304	+ $foldersExistCache,
	305	+ $this->eventDispatcher,
	306	+ $user,
	307	+ $shareId <= $maxValidatedShare,
	308	+ );
	309	+
	310	+ $newMaxValidatedShare = max($shareId, $newMaxValidatedShare);
	311	+
	312	+ $event = new ShareMountedEvent($mount);
	313	+ $this->eventDispatcher->dispatchTyped($event);
	314	+
	315	+ $mounts[$mount->getMountPoint()]
	316	+ = $allMounts[$mount->getMountPoint()] = $mount;
	317	+ foreach ($event->getAdditionalMounts() as $additionalMount) {
	318	+ $allMounts[$additionalMount->getMountPoint()]
	319	+ = $mounts[$additionalMount->getMountPoint()]
	320	+ = $additionalMount;
	321	+ }
	322	+ } catch (Exception $e) {
	323	+ $this->logger->error(
	324	+ 'Error while trying to create shared mount',
	325	+ [
	326	+ 'app' => 'files_sharing',
	327	+ 'exception' => $e,
	328	+ ],
	329	+ );
	330	+ }
	331	+ }
	332	+
	333	+ $validShareCache->set($userId, $newMaxValidatedShare, 24 * 60 * 60);
	334	+
	335	+ // array_filter removes the null values from the array
	336	+ return array_values(array_filter($mounts));
	337	+ }
	338	+
	339	+ /**
	340	+ * Filters out shares owned or shared by the user and ones for which the
	341	+ * user has no permissions.
	342	+ *
	343	+ * @param IShare[] $shares
	344	+ * @return IShare[]
	345	+ */
	346	+ private function filterShares(array $shares, string $userId): array {
	347	+ return array_filter(
	348	+ $shares,
	349	+ static function (IShare $share) use ($userId) {
	350	+ return $share->getPermissions() > 0
	351	+ && $share->getShareOwner() !== $userId
	352	+ && $share->getSharedBy() !== $userId;
	353	+ }
	354	+ );
	355	+ }
356	356	}

nextcloud / server

Push — master ( 752d90...32327c )

Status

Category

Indentation +633 added lines, -633 removed lines patch added patch discarded remove patch

Indentation +2227 added lines, -2227 removed lines patch added patch discarded remove patch

Indentation +199 added lines, -199 removed lines patch added patch discarded remove patch

Indentation +1801 added lines, -1801 removed lines patch added patch discarded remove patch

Indentation +585 added lines, -585 removed lines patch added patch discarded remove patch

Indentation +405 added lines, -405 removed lines patch added patch discarded remove patch

Indentation +326 added lines, -326 removed lines patch added patch discarded remove patch

Indentation +2172 added lines, -2172 removed lines patch added patch discarded remove patch

Spacing +16 added lines, -16 removed lines patch added patch discarded remove patch

Indentation +346 added lines, -346 removed lines patch added patch discarded remove patch