nextcloud /
server
@@ -35,186 +35,186 @@ |
||
| 35 | 35 | |
| 36 | 36 | class Provider implements IProvider { |
| 37 | 37 | |
| 38 | - public const PASSWORD_CHANGED_BY = 'password_changed_by'; |
|
| 39 | - public const PASSWORD_CHANGED_SELF = 'password_changed_self'; |
|
| 40 | - public const PASSWORD_RESET = 'password_changed'; |
|
| 41 | - public const EMAIL_CHANGED_BY = 'email_changed_by'; |
|
| 42 | - public const EMAIL_CHANGED_SELF = 'email_changed_self'; |
|
| 43 | - public const EMAIL_CHANGED = 'email_changed'; |
|
| 44 | - public const APP_TOKEN_CREATED = 'app_token_created'; |
|
| 45 | - public const APP_TOKEN_DELETED = 'app_token_deleted'; |
|
| 46 | - public const APP_TOKEN_RENAMED = 'app_token_renamed'; |
|
| 47 | - public const APP_TOKEN_FILESYSTEM_GRANTED = 'app_token_filesystem_granted'; |
|
| 48 | - public const APP_TOKEN_FILESYSTEM_REVOKED = 'app_token_filesystem_revoked'; |
|
| 49 | - |
|
| 50 | - /** @var IFactory */ |
|
| 51 | - protected $languageFactory; |
|
| 52 | - |
|
| 53 | - /** @var IL10N */ |
|
| 54 | - protected $l; |
|
| 55 | - |
|
| 56 | - /** @var IURLGenerator */ |
|
| 57 | - protected $url; |
|
| 58 | - |
|
| 59 | - /** @var IUserManager */ |
|
| 60 | - protected $userManager; |
|
| 61 | - |
|
| 62 | - /** @var IManager */ |
|
| 63 | - private $activityManager; |
|
| 64 | - |
|
| 65 | - /** @var string[] cached displayNames - key is the UID and value the displayname */ |
|
| 66 | - protected $displayNames = []; |
|
| 67 | - |
|
| 68 | - public function __construct(IFactory $languageFactory, |
|
| 69 | - IURLGenerator $url, |
|
| 70 | - IUserManager $userManager, |
|
| 71 | - IManager $activityManager) { |
|
| 72 | - $this->languageFactory = $languageFactory; |
|
| 73 | - $this->url = $url; |
|
| 74 | - $this->userManager = $userManager; |
|
| 75 | - $this->activityManager = $activityManager; |
|
| 76 | - } |
|
| 77 | - |
|
| 78 | - /** |
|
| 79 | - * @param string $language |
|
| 80 | - * @param IEvent $event |
|
| 81 | - * @param IEvent|null $previousEvent |
|
| 82 | - * @return IEvent |
|
| 83 | - * @throws \InvalidArgumentException |
|
| 84 | - * @since 11.0.0 |
|
| 85 | - */ |
|
| 86 | - public function parse($language, IEvent $event, IEvent $previousEvent = null): IEvent { |
|
| 87 | - if ($event->getApp() !== 'settings') { |
|
| 88 | - throw new \InvalidArgumentException('Unknown app'); |
|
| 89 | - } |
|
| 90 | - |
|
| 91 | - $this->l = $this->languageFactory->get('settings', $language); |
|
| 92 | - |
|
| 93 | - if ($this->activityManager->getRequirePNG()) { |
|
| 94 | - $event->setIcon($this->url->getAbsoluteURL($this->url->imagePath('settings', 'personal.png'))); |
|
| 95 | - } else { |
|
| 96 | - $event->setIcon($this->url->getAbsoluteURL($this->url->imagePath('settings', 'personal.svg'))); |
|
| 97 | - } |
|
| 98 | - |
|
| 99 | - if ($event->getSubject() === self::PASSWORD_CHANGED_BY) { |
|
| 100 | - $subject = $this->l->t('{actor} changed your password'); |
|
| 101 | - } else if ($event->getSubject() === self::PASSWORD_CHANGED_SELF) { |
|
| 102 | - $subject = $this->l->t('You changed your password'); |
|
| 103 | - } else if ($event->getSubject() === self::PASSWORD_RESET) { |
|
| 104 | - $subject = $this->l->t('Your password was reset by an administrator'); |
|
| 105 | - |
|
| 106 | - } else if ($event->getSubject() === self::EMAIL_CHANGED_BY) { |
|
| 107 | - $subject = $this->l->t('{actor} changed your email address'); |
|
| 108 | - } else if ($event->getSubject() === self::EMAIL_CHANGED_SELF) { |
|
| 109 | - $subject = $this->l->t('You changed your email address'); |
|
| 110 | - } else if ($event->getSubject() === self::EMAIL_CHANGED) { |
|
| 111 | - $subject = $this->l->t('Your email address was changed by an administrator'); |
|
| 112 | - |
|
| 113 | - } else if ($event->getSubject() === self::APP_TOKEN_CREATED) { |
|
| 114 | - $subject = $this->l->t('You created app password "{token}"'); |
|
| 115 | - } else if ($event->getSubject() === self::APP_TOKEN_DELETED) { |
|
| 116 | - $subject = $this->l->t('You deleted app password "{token}"'); |
|
| 117 | - } else if ($event->getSubject() === self::APP_TOKEN_RENAMED) { |
|
| 118 | - $subject = $this->l->t('You renamed app password "{token}" to "{newToken}"'); |
|
| 119 | - } else if ($event->getSubject() === self::APP_TOKEN_FILESYSTEM_GRANTED) { |
|
| 120 | - $subject = $this->l->t('You granted filesystem access to app password "{token}"'); |
|
| 121 | - } else if ($event->getSubject() === self::APP_TOKEN_FILESYSTEM_REVOKED) { |
|
| 122 | - $subject = $this->l->t('You revoked filesystem access from app password "{token}"'); |
|
| 123 | - |
|
| 124 | - } else { |
|
| 125 | - throw new \InvalidArgumentException('Unknown subject'); |
|
| 126 | - } |
|
| 127 | - |
|
| 128 | - $parsedParameters = $this->getParameters($event); |
|
| 129 | - $this->setSubjects($event, $subject, $parsedParameters); |
|
| 130 | - |
|
| 131 | - return $event; |
|
| 132 | - } |
|
| 133 | - |
|
| 134 | - /** |
|
| 135 | - * @param IEvent $event |
|
| 136 | - * @return array |
|
| 137 | - * @throws \InvalidArgumentException |
|
| 138 | - */ |
|
| 139 | - protected function getParameters(IEvent $event): array { |
|
| 140 | - $subject = $event->getSubject(); |
|
| 141 | - $parameters = $event->getSubjectParameters(); |
|
| 142 | - |
|
| 143 | - switch ($subject) { |
|
| 144 | - case self::PASSWORD_CHANGED_SELF: |
|
| 145 | - case self::PASSWORD_RESET: |
|
| 146 | - case self::EMAIL_CHANGED_SELF: |
|
| 147 | - case self::EMAIL_CHANGED: |
|
| 148 | - return []; |
|
| 149 | - case self::PASSWORD_CHANGED_BY: |
|
| 150 | - case self::EMAIL_CHANGED_BY: |
|
| 151 | - return [ |
|
| 152 | - 'actor' => $this->generateUserParameter($parameters[0]), |
|
| 153 | - ]; |
|
| 154 | - case self::APP_TOKEN_CREATED: |
|
| 155 | - case self::APP_TOKEN_DELETED: |
|
| 156 | - case self::APP_TOKEN_FILESYSTEM_GRANTED: |
|
| 157 | - case self::APP_TOKEN_FILESYSTEM_REVOKED: |
|
| 158 | - return [ |
|
| 159 | - 'token' => [ |
|
| 160 | - 'type' => 'highlight', |
|
| 161 | - 'id' => $event->getObjectId(), |
|
| 162 | - 'name' => $parameters['name'], |
|
| 163 | - ] |
|
| 164 | - ]; |
|
| 165 | - case self::APP_TOKEN_RENAMED: |
|
| 166 | - return [ |
|
| 167 | - 'token' => [ |
|
| 168 | - 'type' => 'highlight', |
|
| 169 | - 'id' => $event->getObjectId(), |
|
| 170 | - 'name' => $parameters['name'], |
|
| 171 | - ], |
|
| 172 | - 'newToken' => [ |
|
| 173 | - 'type' => 'highlight', |
|
| 174 | - 'id' => $event->getObjectId(), |
|
| 175 | - 'name' => $parameters['newName'], |
|
| 176 | - ] |
|
| 177 | - ]; |
|
| 178 | - } |
|
| 179 | - |
|
| 180 | - throw new \InvalidArgumentException('Unknown subject'); |
|
| 181 | - } |
|
| 182 | - |
|
| 183 | - /** |
|
| 184 | - * @param IEvent $event |
|
| 185 | - * @param string $subject |
|
| 186 | - * @param array $parameters |
|
| 187 | - * @throws \InvalidArgumentException |
|
| 188 | - */ |
|
| 189 | - protected function setSubjects(IEvent $event, string $subject, array $parameters): void { |
|
| 190 | - $placeholders = $replacements = []; |
|
| 191 | - foreach ($parameters as $placeholder => $parameter) { |
|
| 192 | - $placeholders[] = '{' . $placeholder . '}'; |
|
| 193 | - $replacements[] = $parameter['name']; |
|
| 194 | - } |
|
| 195 | - |
|
| 196 | - $event->setParsedSubject(str_replace($placeholders, $replacements, $subject)) |
|
| 197 | - ->setRichSubject($subject, $parameters); |
|
| 198 | - } |
|
| 199 | - |
|
| 200 | - protected function generateUserParameter(string $uid): array { |
|
| 201 | - if (!isset($this->displayNames[$uid])) { |
|
| 202 | - $this->displayNames[$uid] = $this->getDisplayName($uid); |
|
| 203 | - } |
|
| 204 | - |
|
| 205 | - return [ |
|
| 206 | - 'type' => 'user', |
|
| 207 | - 'id' => $uid, |
|
| 208 | - 'name' => $this->displayNames[$uid], |
|
| 209 | - ]; |
|
| 210 | - } |
|
| 211 | - |
|
| 212 | - protected function getDisplayName(string $uid): string { |
|
| 213 | - $user = $this->userManager->get($uid); |
|
| 214 | - if ($user instanceof IUser) { |
|
| 215 | - return $user->getDisplayName(); |
|
| 216 | - } |
|
| 217 | - |
|
| 218 | - return $uid; |
|
| 219 | - } |
|
| 38 | + public const PASSWORD_CHANGED_BY = 'password_changed_by'; |
|
| 39 | + public const PASSWORD_CHANGED_SELF = 'password_changed_self'; |
|
| 40 | + public const PASSWORD_RESET = 'password_changed'; |
|
| 41 | + public const EMAIL_CHANGED_BY = 'email_changed_by'; |
|
| 42 | + public const EMAIL_CHANGED_SELF = 'email_changed_self'; |
|
| 43 | + public const EMAIL_CHANGED = 'email_changed'; |
|
| 44 | + public const APP_TOKEN_CREATED = 'app_token_created'; |
|
| 45 | + public const APP_TOKEN_DELETED = 'app_token_deleted'; |
|
| 46 | + public const APP_TOKEN_RENAMED = 'app_token_renamed'; |
|
| 47 | + public const APP_TOKEN_FILESYSTEM_GRANTED = 'app_token_filesystem_granted'; |
|
| 48 | + public const APP_TOKEN_FILESYSTEM_REVOKED = 'app_token_filesystem_revoked'; |
|
| 49 | + |
|
| 50 | + /** @var IFactory */ |
|
| 51 | + protected $languageFactory; |
|
| 52 | + |
|
| 53 | + /** @var IL10N */ |
|
| 54 | + protected $l; |
|
| 55 | + |
|
| 56 | + /** @var IURLGenerator */ |
|
| 57 | + protected $url; |
|
| 58 | + |
|
| 59 | + /** @var IUserManager */ |
|
| 60 | + protected $userManager; |
|
| 61 | + |
|
| 62 | + /** @var IManager */ |
|
| 63 | + private $activityManager; |
|
| 64 | + |
|
| 65 | + /** @var string[] cached displayNames - key is the UID and value the displayname */ |
|
| 66 | + protected $displayNames = []; |
|
| 67 | + |
|
| 68 | + public function __construct(IFactory $languageFactory, |
|
| 69 | + IURLGenerator $url, |
|
| 70 | + IUserManager $userManager, |
|
| 71 | + IManager $activityManager) { |
|
| 72 | + $this->languageFactory = $languageFactory; |
|
| 73 | + $this->url = $url; |
|
| 74 | + $this->userManager = $userManager; |
|
| 75 | + $this->activityManager = $activityManager; |
|
| 76 | + } |
|
| 77 | + |
|
| 78 | + /** |
|
| 79 | + * @param string $language |
|
| 80 | + * @param IEvent $event |
|
| 81 | + * @param IEvent|null $previousEvent |
|
| 82 | + * @return IEvent |
|
| 83 | + * @throws \InvalidArgumentException |
|
| 84 | + * @since 11.0.0 |
|
| 85 | + */ |
|
| 86 | + public function parse($language, IEvent $event, IEvent $previousEvent = null): IEvent { |
|
| 87 | + if ($event->getApp() !== 'settings') { |
|
| 88 | + throw new \InvalidArgumentException('Unknown app'); |
|
| 89 | + } |
|
| 90 | + |
|
| 91 | + $this->l = $this->languageFactory->get('settings', $language); |
|
| 92 | + |
|
| 93 | + if ($this->activityManager->getRequirePNG()) { |
|
| 94 | + $event->setIcon($this->url->getAbsoluteURL($this->url->imagePath('settings', 'personal.png'))); |
|
| 95 | + } else { |
|
| 96 | + $event->setIcon($this->url->getAbsoluteURL($this->url->imagePath('settings', 'personal.svg'))); |
|
| 97 | + } |
|
| 98 | + |
|
| 99 | + if ($event->getSubject() === self::PASSWORD_CHANGED_BY) { |
|
| 100 | + $subject = $this->l->t('{actor} changed your password'); |
|
| 101 | + } else if ($event->getSubject() === self::PASSWORD_CHANGED_SELF) { |
|
| 102 | + $subject = $this->l->t('You changed your password'); |
|
| 103 | + } else if ($event->getSubject() === self::PASSWORD_RESET) { |
|
| 104 | + $subject = $this->l->t('Your password was reset by an administrator'); |
|
| 105 | + |
|
| 106 | + } else if ($event->getSubject() === self::EMAIL_CHANGED_BY) { |
|
| 107 | + $subject = $this->l->t('{actor} changed your email address'); |
|
| 108 | + } else if ($event->getSubject() === self::EMAIL_CHANGED_SELF) { |
|
| 109 | + $subject = $this->l->t('You changed your email address'); |
|
| 110 | + } else if ($event->getSubject() === self::EMAIL_CHANGED) { |
|
| 111 | + $subject = $this->l->t('Your email address was changed by an administrator'); |
|
| 112 | + |
|
| 113 | + } else if ($event->getSubject() === self::APP_TOKEN_CREATED) { |
|
| 114 | + $subject = $this->l->t('You created app password "{token}"'); |
|
| 115 | + } else if ($event->getSubject() === self::APP_TOKEN_DELETED) { |
|
| 116 | + $subject = $this->l->t('You deleted app password "{token}"'); |
|
| 117 | + } else if ($event->getSubject() === self::APP_TOKEN_RENAMED) { |
|
| 118 | + $subject = $this->l->t('You renamed app password "{token}" to "{newToken}"'); |
|
| 119 | + } else if ($event->getSubject() === self::APP_TOKEN_FILESYSTEM_GRANTED) { |
|
| 120 | + $subject = $this->l->t('You granted filesystem access to app password "{token}"'); |
|
| 121 | + } else if ($event->getSubject() === self::APP_TOKEN_FILESYSTEM_REVOKED) { |
|
| 122 | + $subject = $this->l->t('You revoked filesystem access from app password "{token}"'); |
|
| 123 | + |
|
| 124 | + } else { |
|
| 125 | + throw new \InvalidArgumentException('Unknown subject'); |
|
| 126 | + } |
|
| 127 | + |
|
| 128 | + $parsedParameters = $this->getParameters($event); |
|
| 129 | + $this->setSubjects($event, $subject, $parsedParameters); |
|
| 130 | + |
|
| 131 | + return $event; |
|
| 132 | + } |
|
| 133 | + |
|
| 134 | + /** |
|
| 135 | + * @param IEvent $event |
|
| 136 | + * @return array |
|
| 137 | + * @throws \InvalidArgumentException |
|
| 138 | + */ |
|
| 139 | + protected function getParameters(IEvent $event): array { |
|
| 140 | + $subject = $event->getSubject(); |
|
| 141 | + $parameters = $event->getSubjectParameters(); |
|
| 142 | + |
|
| 143 | + switch ($subject) { |
|
| 144 | + case self::PASSWORD_CHANGED_SELF: |
|
| 145 | + case self::PASSWORD_RESET: |
|
| 146 | + case self::EMAIL_CHANGED_SELF: |
|
| 147 | + case self::EMAIL_CHANGED: |
|
| 148 | + return []; |
|
| 149 | + case self::PASSWORD_CHANGED_BY: |
|
| 150 | + case self::EMAIL_CHANGED_BY: |
|
| 151 | + return [ |
|
| 152 | + 'actor' => $this->generateUserParameter($parameters[0]), |
|
| 153 | + ]; |
|
| 154 | + case self::APP_TOKEN_CREATED: |
|
| 155 | + case self::APP_TOKEN_DELETED: |
|
| 156 | + case self::APP_TOKEN_FILESYSTEM_GRANTED: |
|
| 157 | + case self::APP_TOKEN_FILESYSTEM_REVOKED: |
|
| 158 | + return [ |
|
| 159 | + 'token' => [ |
|
| 160 | + 'type' => 'highlight', |
|
| 161 | + 'id' => $event->getObjectId(), |
|
| 162 | + 'name' => $parameters['name'], |
|
| 163 | + ] |
|
| 164 | + ]; |
|
| 165 | + case self::APP_TOKEN_RENAMED: |
|
| 166 | + return [ |
|
| 167 | + 'token' => [ |
|
| 168 | + 'type' => 'highlight', |
|
| 169 | + 'id' => $event->getObjectId(), |
|
| 170 | + 'name' => $parameters['name'], |
|
| 171 | + ], |
|
| 172 | + 'newToken' => [ |
|
| 173 | + 'type' => 'highlight', |
|
| 174 | + 'id' => $event->getObjectId(), |
|
| 175 | + 'name' => $parameters['newName'], |
|
| 176 | + ] |
|
| 177 | + ]; |
|
| 178 | + } |
|
| 179 | + |
|
| 180 | + throw new \InvalidArgumentException('Unknown subject'); |
|
| 181 | + } |
|
| 182 | + |
|
| 183 | + /** |
|
| 184 | + * @param IEvent $event |
|
| 185 | + * @param string $subject |
|
| 186 | + * @param array $parameters |
|
| 187 | + * @throws \InvalidArgumentException |
|
| 188 | + */ |
|
| 189 | + protected function setSubjects(IEvent $event, string $subject, array $parameters): void { |
|
| 190 | + $placeholders = $replacements = []; |
|
| 191 | + foreach ($parameters as $placeholder => $parameter) { |
|
| 192 | + $placeholders[] = '{' . $placeholder . '}'; |
|
| 193 | + $replacements[] = $parameter['name']; |
|
| 194 | + } |
|
| 195 | + |
|
| 196 | + $event->setParsedSubject(str_replace($placeholders, $replacements, $subject)) |
|
| 197 | + ->setRichSubject($subject, $parameters); |
|
| 198 | + } |
|
| 199 | + |
|
| 200 | + protected function generateUserParameter(string $uid): array { |
|
| 201 | + if (!isset($this->displayNames[$uid])) { |
|
| 202 | + $this->displayNames[$uid] = $this->getDisplayName($uid); |
|
| 203 | + } |
|
| 204 | + |
|
| 205 | + return [ |
|
| 206 | + 'type' => 'user', |
|
| 207 | + 'id' => $uid, |
|
| 208 | + 'name' => $this->displayNames[$uid], |
|
| 209 | + ]; |
|
| 210 | + } |
|
| 211 | + |
|
| 212 | + protected function getDisplayName(string $uid): string { |
|
| 213 | + $user = $this->userManager->get($uid); |
|
| 214 | + if ($user instanceof IUser) { |
|
| 215 | + return $user->getDisplayName(); |
|
| 216 | + } |
|
| 217 | + |
|
| 218 | + return $uid; |
|
| 219 | + } |
|
| 220 | 220 | } |
@@ -47,236 +47,236 @@ |
||
| 47 | 47 | |
| 48 | 48 | class AuthSettingsController extends Controller { |
| 49 | 49 | |
| 50 | - /** @var IProvider */ |
|
| 51 | - private $tokenProvider; |
|
| 50 | + /** @var IProvider */ |
|
| 51 | + private $tokenProvider; |
|
| 52 | 52 | |
| 53 | - /** @var ISession */ |
|
| 54 | - private $session; |
|
| 53 | + /** @var ISession */ |
|
| 54 | + private $session; |
|
| 55 | 55 | |
| 56 | - /** @var string */ |
|
| 57 | - private $uid; |
|
| 56 | + /** @var string */ |
|
| 57 | + private $uid; |
|
| 58 | 58 | |
| 59 | - /** @var ISecureRandom */ |
|
| 60 | - private $random; |
|
| 59 | + /** @var ISecureRandom */ |
|
| 60 | + private $random; |
|
| 61 | 61 | |
| 62 | - /** @var IManager */ |
|
| 63 | - private $activityManager; |
|
| 62 | + /** @var IManager */ |
|
| 63 | + private $activityManager; |
|
| 64 | 64 | |
| 65 | - /** @var ILogger */ |
|
| 66 | - private $logger; |
|
| 65 | + /** @var ILogger */ |
|
| 66 | + private $logger; |
|
| 67 | 67 | |
| 68 | - /** |
|
| 69 | - * @param string $appName |
|
| 70 | - * @param IRequest $request |
|
| 71 | - * @param IProvider $tokenProvider |
|
| 72 | - * @param ISession $session |
|
| 73 | - * @param ISecureRandom $random |
|
| 74 | - * @param string|null $userId |
|
| 75 | - * @param IManager $activityManager |
|
| 76 | - * @param ILogger $logger |
|
| 77 | - */ |
|
| 78 | - public function __construct(string $appName, |
|
| 79 | - IRequest $request, |
|
| 80 | - IProvider $tokenProvider, |
|
| 81 | - ISession $session, |
|
| 82 | - ISecureRandom $random, |
|
| 83 | - ?string $userId, |
|
| 84 | - IManager $activityManager, |
|
| 85 | - ILogger $logger) { |
|
| 86 | - parent::__construct($appName, $request); |
|
| 87 | - $this->tokenProvider = $tokenProvider; |
|
| 88 | - $this->uid = $userId; |
|
| 89 | - $this->session = $session; |
|
| 90 | - $this->random = $random; |
|
| 91 | - $this->activityManager = $activityManager; |
|
| 92 | - $this->logger = $logger; |
|
| 93 | - } |
|
| 68 | + /** |
|
| 69 | + * @param string $appName |
|
| 70 | + * @param IRequest $request |
|
| 71 | + * @param IProvider $tokenProvider |
|
| 72 | + * @param ISession $session |
|
| 73 | + * @param ISecureRandom $random |
|
| 74 | + * @param string|null $userId |
|
| 75 | + * @param IManager $activityManager |
|
| 76 | + * @param ILogger $logger |
|
| 77 | + */ |
|
| 78 | + public function __construct(string $appName, |
|
| 79 | + IRequest $request, |
|
| 80 | + IProvider $tokenProvider, |
|
| 81 | + ISession $session, |
|
| 82 | + ISecureRandom $random, |
|
| 83 | + ?string $userId, |
|
| 84 | + IManager $activityManager, |
|
| 85 | + ILogger $logger) { |
|
| 86 | + parent::__construct($appName, $request); |
|
| 87 | + $this->tokenProvider = $tokenProvider; |
|
| 88 | + $this->uid = $userId; |
|
| 89 | + $this->session = $session; |
|
| 90 | + $this->random = $random; |
|
| 91 | + $this->activityManager = $activityManager; |
|
| 92 | + $this->logger = $logger; |
|
| 93 | + } |
|
| 94 | 94 | |
| 95 | - /** |
|
| 96 | - * @NoAdminRequired |
|
| 97 | - * @NoSubadminRequired |
|
| 98 | - * |
|
| 99 | - * @return JSONResponse|array |
|
| 100 | - */ |
|
| 101 | - public function index() { |
|
| 102 | - $tokens = $this->tokenProvider->getTokenByUser($this->uid); |
|
| 95 | + /** |
|
| 96 | + * @NoAdminRequired |
|
| 97 | + * @NoSubadminRequired |
|
| 98 | + * |
|
| 99 | + * @return JSONResponse|array |
|
| 100 | + */ |
|
| 101 | + public function index() { |
|
| 102 | + $tokens = $this->tokenProvider->getTokenByUser($this->uid); |
|
| 103 | 103 | |
| 104 | - try { |
|
| 105 | - $sessionId = $this->session->getId(); |
|
| 106 | - } catch (SessionNotAvailableException $ex) { |
|
| 107 | - return $this->getServiceNotAvailableResponse(); |
|
| 108 | - } |
|
| 109 | - try { |
|
| 110 | - $sessionToken = $this->tokenProvider->getToken($sessionId); |
|
| 111 | - } catch (InvalidTokenException $ex) { |
|
| 112 | - return $this->getServiceNotAvailableResponse(); |
|
| 113 | - } |
|
| 104 | + try { |
|
| 105 | + $sessionId = $this->session->getId(); |
|
| 106 | + } catch (SessionNotAvailableException $ex) { |
|
| 107 | + return $this->getServiceNotAvailableResponse(); |
|
| 108 | + } |
|
| 109 | + try { |
|
| 110 | + $sessionToken = $this->tokenProvider->getToken($sessionId); |
|
| 111 | + } catch (InvalidTokenException $ex) { |
|
| 112 | + return $this->getServiceNotAvailableResponse(); |
|
| 113 | + } |
|
| 114 | 114 | |
| 115 | - return array_map(function (IToken $token) use ($sessionToken) { |
|
| 116 | - $data = $token->jsonSerialize(); |
|
| 117 | - $data['canDelete'] = true; |
|
| 118 | - $data['canRename'] = $token instanceof INamedToken; |
|
| 119 | - if ($sessionToken->getId() === $token->getId()) { |
|
| 120 | - $data['canDelete'] = false; |
|
| 121 | - $data['canRename'] = false; |
|
| 122 | - $data['current'] = true; |
|
| 123 | - } |
|
| 124 | - return $data; |
|
| 125 | - }, $tokens); |
|
| 126 | - } |
|
| 115 | + return array_map(function (IToken $token) use ($sessionToken) { |
|
| 116 | + $data = $token->jsonSerialize(); |
|
| 117 | + $data['canDelete'] = true; |
|
| 118 | + $data['canRename'] = $token instanceof INamedToken; |
|
| 119 | + if ($sessionToken->getId() === $token->getId()) { |
|
| 120 | + $data['canDelete'] = false; |
|
| 121 | + $data['canRename'] = false; |
|
| 122 | + $data['current'] = true; |
|
| 123 | + } |
|
| 124 | + return $data; |
|
| 125 | + }, $tokens); |
|
| 126 | + } |
|
| 127 | 127 | |
| 128 | - /** |
|
| 129 | - * @NoAdminRequired |
|
| 130 | - * @NoSubadminRequired |
|
| 131 | - * @PasswordConfirmationRequired |
|
| 132 | - * |
|
| 133 | - * @param string $name |
|
| 134 | - * @return JSONResponse |
|
| 135 | - */ |
|
| 136 | - public function create($name) { |
|
| 137 | - try { |
|
| 138 | - $sessionId = $this->session->getId(); |
|
| 139 | - } catch (SessionNotAvailableException $ex) { |
|
| 140 | - return $this->getServiceNotAvailableResponse(); |
|
| 141 | - } |
|
| 128 | + /** |
|
| 129 | + * @NoAdminRequired |
|
| 130 | + * @NoSubadminRequired |
|
| 131 | + * @PasswordConfirmationRequired |
|
| 132 | + * |
|
| 133 | + * @param string $name |
|
| 134 | + * @return JSONResponse |
|
| 135 | + */ |
|
| 136 | + public function create($name) { |
|
| 137 | + try { |
|
| 138 | + $sessionId = $this->session->getId(); |
|
| 139 | + } catch (SessionNotAvailableException $ex) { |
|
| 140 | + return $this->getServiceNotAvailableResponse(); |
|
| 141 | + } |
|
| 142 | 142 | |
| 143 | - try { |
|
| 144 | - $sessionToken = $this->tokenProvider->getToken($sessionId); |
|
| 145 | - $loginName = $sessionToken->getLoginName(); |
|
| 146 | - try { |
|
| 147 | - $password = $this->tokenProvider->getPassword($sessionToken, $sessionId); |
|
| 148 | - } catch (PasswordlessTokenException $ex) { |
|
| 149 | - $password = null; |
|
| 150 | - } |
|
| 151 | - } catch (InvalidTokenException $ex) { |
|
| 152 | - return $this->getServiceNotAvailableResponse(); |
|
| 153 | - } |
|
| 143 | + try { |
|
| 144 | + $sessionToken = $this->tokenProvider->getToken($sessionId); |
|
| 145 | + $loginName = $sessionToken->getLoginName(); |
|
| 146 | + try { |
|
| 147 | + $password = $this->tokenProvider->getPassword($sessionToken, $sessionId); |
|
| 148 | + } catch (PasswordlessTokenException $ex) { |
|
| 149 | + $password = null; |
|
| 150 | + } |
|
| 151 | + } catch (InvalidTokenException $ex) { |
|
| 152 | + return $this->getServiceNotAvailableResponse(); |
|
| 153 | + } |
|
| 154 | 154 | |
| 155 | - $token = $this->generateRandomDeviceToken(); |
|
| 156 | - $deviceToken = $this->tokenProvider->generateToken($token, $this->uid, $loginName, $password, $name, IToken::PERMANENT_TOKEN); |
|
| 157 | - $tokenData = $deviceToken->jsonSerialize(); |
|
| 158 | - $tokenData['canDelete'] = true; |
|
| 159 | - $tokenData['canRename'] = true; |
|
| 155 | + $token = $this->generateRandomDeviceToken(); |
|
| 156 | + $deviceToken = $this->tokenProvider->generateToken($token, $this->uid, $loginName, $password, $name, IToken::PERMANENT_TOKEN); |
|
| 157 | + $tokenData = $deviceToken->jsonSerialize(); |
|
| 158 | + $tokenData['canDelete'] = true; |
|
| 159 | + $tokenData['canRename'] = true; |
|
| 160 | 160 | |
| 161 | - $this->publishActivity(Provider::APP_TOKEN_CREATED, $deviceToken->getId(), ['name' => $deviceToken->getName()]); |
|
| 161 | + $this->publishActivity(Provider::APP_TOKEN_CREATED, $deviceToken->getId(), ['name' => $deviceToken->getName()]); |
|
| 162 | 162 | |
| 163 | - return new JSONResponse([ |
|
| 164 | - 'token' => $token, |
|
| 165 | - 'loginName' => $loginName, |
|
| 166 | - 'deviceToken' => $tokenData, |
|
| 167 | - ]); |
|
| 168 | - } |
|
| 163 | + return new JSONResponse([ |
|
| 164 | + 'token' => $token, |
|
| 165 | + 'loginName' => $loginName, |
|
| 166 | + 'deviceToken' => $tokenData, |
|
| 167 | + ]); |
|
| 168 | + } |
|
| 169 | 169 | |
| 170 | - /** |
|
| 171 | - * @return JSONResponse |
|
| 172 | - */ |
|
| 173 | - private function getServiceNotAvailableResponse() { |
|
| 174 | - $resp = new JSONResponse(); |
|
| 175 | - $resp->setStatus(Http::STATUS_SERVICE_UNAVAILABLE); |
|
| 176 | - return $resp; |
|
| 177 | - } |
|
| 170 | + /** |
|
| 171 | + * @return JSONResponse |
|
| 172 | + */ |
|
| 173 | + private function getServiceNotAvailableResponse() { |
|
| 174 | + $resp = new JSONResponse(); |
|
| 175 | + $resp->setStatus(Http::STATUS_SERVICE_UNAVAILABLE); |
|
| 176 | + return $resp; |
|
| 177 | + } |
|
| 178 | 178 | |
| 179 | - /** |
|
| 180 | - * Return a 25 digit device password |
|
| 181 | - * |
|
| 182 | - * Example: AbCdE-fGhJk-MnPqR-sTwXy-23456 |
|
| 183 | - * |
|
| 184 | - * @return string |
|
| 185 | - */ |
|
| 186 | - private function generateRandomDeviceToken() { |
|
| 187 | - $groups = []; |
|
| 188 | - for ($i = 0; $i < 5; $i++) { |
|
| 189 | - $groups[] = $this->random->generate(5, ISecureRandom::CHAR_HUMAN_READABLE); |
|
| 190 | - } |
|
| 191 | - return implode('-', $groups); |
|
| 192 | - } |
|
| 179 | + /** |
|
| 180 | + * Return a 25 digit device password |
|
| 181 | + * |
|
| 182 | + * Example: AbCdE-fGhJk-MnPqR-sTwXy-23456 |
|
| 183 | + * |
|
| 184 | + * @return string |
|
| 185 | + */ |
|
| 186 | + private function generateRandomDeviceToken() { |
|
| 187 | + $groups = []; |
|
| 188 | + for ($i = 0; $i < 5; $i++) { |
|
| 189 | + $groups[] = $this->random->generate(5, ISecureRandom::CHAR_HUMAN_READABLE); |
|
| 190 | + } |
|
| 191 | + return implode('-', $groups); |
|
| 192 | + } |
|
| 193 | 193 | |
| 194 | - /** |
|
| 195 | - * @NoAdminRequired |
|
| 196 | - * @NoSubadminRequired |
|
| 197 | - * |
|
| 198 | - * @param int $id |
|
| 199 | - * @return array|JSONResponse |
|
| 200 | - */ |
|
| 201 | - public function destroy($id) { |
|
| 202 | - try { |
|
| 203 | - $token = $this->findTokenByIdAndUser($id); |
|
| 204 | - } catch (InvalidTokenException $e) { |
|
| 205 | - return new JSONResponse([], Http::STATUS_NOT_FOUND); |
|
| 206 | - } |
|
| 194 | + /** |
|
| 195 | + * @NoAdminRequired |
|
| 196 | + * @NoSubadminRequired |
|
| 197 | + * |
|
| 198 | + * @param int $id |
|
| 199 | + * @return array|JSONResponse |
|
| 200 | + */ |
|
| 201 | + public function destroy($id) { |
|
| 202 | + try { |
|
| 203 | + $token = $this->findTokenByIdAndUser($id); |
|
| 204 | + } catch (InvalidTokenException $e) { |
|
| 205 | + return new JSONResponse([], Http::STATUS_NOT_FOUND); |
|
| 206 | + } |
|
| 207 | 207 | |
| 208 | - $this->tokenProvider->invalidateTokenById($this->uid, $token->getId()); |
|
| 209 | - $this->publishActivity(Provider::APP_TOKEN_DELETED, $token->getId(), ['name' => $token->getName()]); |
|
| 210 | - return []; |
|
| 211 | - } |
|
| 208 | + $this->tokenProvider->invalidateTokenById($this->uid, $token->getId()); |
|
| 209 | + $this->publishActivity(Provider::APP_TOKEN_DELETED, $token->getId(), ['name' => $token->getName()]); |
|
| 210 | + return []; |
|
| 211 | + } |
|
| 212 | 212 | |
| 213 | - /** |
|
| 214 | - * @NoAdminRequired |
|
| 215 | - * @NoSubadminRequired |
|
| 216 | - * |
|
| 217 | - * @param int $id |
|
| 218 | - * @param array $scope |
|
| 219 | - * @param string $name |
|
| 220 | - * @return array|JSONResponse |
|
| 221 | - */ |
|
| 222 | - public function update($id, array $scope, string $name) { |
|
| 223 | - try { |
|
| 224 | - $token = $this->findTokenByIdAndUser($id); |
|
| 225 | - } catch (InvalidTokenException $e) { |
|
| 226 | - return new JSONResponse([], Http::STATUS_NOT_FOUND); |
|
| 227 | - } |
|
| 213 | + /** |
|
| 214 | + * @NoAdminRequired |
|
| 215 | + * @NoSubadminRequired |
|
| 216 | + * |
|
| 217 | + * @param int $id |
|
| 218 | + * @param array $scope |
|
| 219 | + * @param string $name |
|
| 220 | + * @return array|JSONResponse |
|
| 221 | + */ |
|
| 222 | + public function update($id, array $scope, string $name) { |
|
| 223 | + try { |
|
| 224 | + $token = $this->findTokenByIdAndUser($id); |
|
| 225 | + } catch (InvalidTokenException $e) { |
|
| 226 | + return new JSONResponse([], Http::STATUS_NOT_FOUND); |
|
| 227 | + } |
|
| 228 | 228 | |
| 229 | - $currentName = $token->getName(); |
|
| 229 | + $currentName = $token->getName(); |
|
| 230 | 230 | |
| 231 | - if ($scope !== $token->getScopeAsArray()) { |
|
| 232 | - $token->setScope(['filesystem' => $scope['filesystem']]); |
|
| 233 | - $this->publishActivity($scope['filesystem'] ? Provider::APP_TOKEN_FILESYSTEM_GRANTED : Provider::APP_TOKEN_FILESYSTEM_REVOKED, $token->getId(), ['name' => $currentName]); |
|
| 234 | - } |
|
| 231 | + if ($scope !== $token->getScopeAsArray()) { |
|
| 232 | + $token->setScope(['filesystem' => $scope['filesystem']]); |
|
| 233 | + $this->publishActivity($scope['filesystem'] ? Provider::APP_TOKEN_FILESYSTEM_GRANTED : Provider::APP_TOKEN_FILESYSTEM_REVOKED, $token->getId(), ['name' => $currentName]); |
|
| 234 | + } |
|
| 235 | 235 | |
| 236 | - if ($token instanceof INamedToken && $name !== $currentName) { |
|
| 237 | - $token->setName($name); |
|
| 238 | - $this->publishActivity(Provider::APP_TOKEN_RENAMED, $token->getId(), ['name' => $currentName, 'newName' => $name]); |
|
| 239 | - } |
|
| 236 | + if ($token instanceof INamedToken && $name !== $currentName) { |
|
| 237 | + $token->setName($name); |
|
| 238 | + $this->publishActivity(Provider::APP_TOKEN_RENAMED, $token->getId(), ['name' => $currentName, 'newName' => $name]); |
|
| 239 | + } |
|
| 240 | 240 | |
| 241 | - $this->tokenProvider->updateToken($token); |
|
| 242 | - return []; |
|
| 243 | - } |
|
| 241 | + $this->tokenProvider->updateToken($token); |
|
| 242 | + return []; |
|
| 243 | + } |
|
| 244 | 244 | |
| 245 | - /** |
|
| 246 | - * @param string $subject |
|
| 247 | - * @param int $id |
|
| 248 | - * @param array $parameters |
|
| 249 | - */ |
|
| 250 | - private function publishActivity(string $subject, int $id, array $parameters = []): void { |
|
| 251 | - $event = $this->activityManager->generateEvent(); |
|
| 252 | - $event->setApp('settings') |
|
| 253 | - ->setType('security') |
|
| 254 | - ->setAffectedUser($this->uid) |
|
| 255 | - ->setAuthor($this->uid) |
|
| 256 | - ->setSubject($subject, $parameters) |
|
| 257 | - ->setObject('app_token', $id, 'App Password'); |
|
| 245 | + /** |
|
| 246 | + * @param string $subject |
|
| 247 | + * @param int $id |
|
| 248 | + * @param array $parameters |
|
| 249 | + */ |
|
| 250 | + private function publishActivity(string $subject, int $id, array $parameters = []): void { |
|
| 251 | + $event = $this->activityManager->generateEvent(); |
|
| 252 | + $event->setApp('settings') |
|
| 253 | + ->setType('security') |
|
| 254 | + ->setAffectedUser($this->uid) |
|
| 255 | + ->setAuthor($this->uid) |
|
| 256 | + ->setSubject($subject, $parameters) |
|
| 257 | + ->setObject('app_token', $id, 'App Password'); |
|
| 258 | 258 | |
| 259 | - try { |
|
| 260 | - $this->activityManager->publish($event); |
|
| 261 | - } catch (BadMethodCallException $e) { |
|
| 262 | - $this->logger->warning('could not publish activity'); |
|
| 263 | - $this->logger->logException($e); |
|
| 264 | - } |
|
| 265 | - } |
|
| 259 | + try { |
|
| 260 | + $this->activityManager->publish($event); |
|
| 261 | + } catch (BadMethodCallException $e) { |
|
| 262 | + $this->logger->warning('could not publish activity'); |
|
| 263 | + $this->logger->logException($e); |
|
| 264 | + } |
|
| 265 | + } |
|
| 266 | 266 | |
| 267 | - /** |
|
| 268 | - * Find a token by given id and check if uid for current session belongs to this token |
|
| 269 | - * |
|
| 270 | - * @param int $id |
|
| 271 | - * @return IToken |
|
| 272 | - * @throws InvalidTokenException |
|
| 273 | - * @throws \OC\Authentication\Exceptions\ExpiredTokenException |
|
| 274 | - */ |
|
| 275 | - private function findTokenByIdAndUser(int $id): IToken { |
|
| 276 | - $token = $this->tokenProvider->getTokenById($id); |
|
| 277 | - if ($token->getUID() !== $this->uid) { |
|
| 278 | - throw new InvalidTokenException('This token does not belong to you!'); |
|
| 279 | - } |
|
| 280 | - return $token; |
|
| 281 | - } |
|
| 267 | + /** |
|
| 268 | + * Find a token by given id and check if uid for current session belongs to this token |
|
| 269 | + * |
|
| 270 | + * @param int $id |
|
| 271 | + * @return IToken |
|
| 272 | + * @throws InvalidTokenException |
|
| 273 | + * @throws \OC\Authentication\Exceptions\ExpiredTokenException |
|
| 274 | + */ |
|
| 275 | + private function findTokenByIdAndUser(int $id): IToken { |
|
| 276 | + $token = $this->tokenProvider->getTokenById($id); |
|
| 277 | + if ($token->getUID() !== $this->uid) { |
|
| 278 | + throw new InvalidTokenException('This token does not belong to you!'); |
|
| 279 | + } |
|
| 280 | + return $token; |
|
| 281 | + } |
|
| 282 | 282 | } |
