nextcloud /
server
@@ -33,30 +33,30 @@ |
||
| 33 | 33 | */ |
| 34 | 34 | class TokenHandler { |
| 35 | 35 | |
| 36 | - const TOKEN_LENGTH = 15; |
|
| 37 | - |
|
| 38 | - /** @var ISecureRandom */ |
|
| 39 | - private $secureRandom; |
|
| 40 | - |
|
| 41 | - /** |
|
| 42 | - * TokenHandler constructor. |
|
| 43 | - * |
|
| 44 | - * @param ISecureRandom $secureRandom |
|
| 45 | - */ |
|
| 46 | - public function __construct(ISecureRandom $secureRandom) { |
|
| 47 | - $this->secureRandom = $secureRandom; |
|
| 48 | - } |
|
| 49 | - |
|
| 50 | - /** |
|
| 51 | - * generate to token used to authenticate federated shares |
|
| 52 | - * |
|
| 53 | - * @return string |
|
| 54 | - */ |
|
| 55 | - public function generateToken() { |
|
| 56 | - $token = $this->secureRandom->generate( |
|
| 57 | - self::TOKEN_LENGTH, |
|
| 58 | - ISecureRandom::CHAR_LOWER . ISecureRandom::CHAR_UPPER . ISecureRandom::CHAR_DIGITS); |
|
| 59 | - return $token; |
|
| 60 | - } |
|
| 36 | + const TOKEN_LENGTH = 15; |
|
| 37 | + |
|
| 38 | + /** @var ISecureRandom */ |
|
| 39 | + private $secureRandom; |
|
| 40 | + |
|
| 41 | + /** |
|
| 42 | + * TokenHandler constructor. |
|
| 43 | + * |
|
| 44 | + * @param ISecureRandom $secureRandom |
|
| 45 | + */ |
|
| 46 | + public function __construct(ISecureRandom $secureRandom) { |
|
| 47 | + $this->secureRandom = $secureRandom; |
|
| 48 | + } |
|
| 49 | + |
|
| 50 | + /** |
|
| 51 | + * generate to token used to authenticate federated shares |
|
| 52 | + * |
|
| 53 | + * @return string |
|
| 54 | + */ |
|
| 55 | + public function generateToken() { |
|
| 56 | + $token = $this->secureRandom->generate( |
|
| 57 | + self::TOKEN_LENGTH, |
|
| 58 | + ISecureRandom::CHAR_LOWER . ISecureRandom::CHAR_UPPER . ISecureRandom::CHAR_DIGITS); |
|
| 59 | + return $token; |
|
| 60 | + } |
|
| 61 | 61 | |
| 62 | 62 | } |
@@ -33,122 +33,122 @@ |
||
| 33 | 33 | */ |
| 34 | 34 | class AddressHandler { |
| 35 | 35 | |
| 36 | - /** @var IL10N */ |
|
| 37 | - private $l; |
|
| 38 | - |
|
| 39 | - /** @var IURLGenerator */ |
|
| 40 | - private $urlGenerator; |
|
| 41 | - |
|
| 42 | - /** @var ICloudIdManager */ |
|
| 43 | - private $cloudIdManager; |
|
| 44 | - |
|
| 45 | - /** |
|
| 46 | - * AddressHandler constructor. |
|
| 47 | - * |
|
| 48 | - * @param IURLGenerator $urlGenerator |
|
| 49 | - * @param IL10N $il10n |
|
| 50 | - * @param ICloudIdManager $cloudIdManager |
|
| 51 | - */ |
|
| 52 | - public function __construct( |
|
| 53 | - IURLGenerator $urlGenerator, |
|
| 54 | - IL10N $il10n, |
|
| 55 | - ICloudIdManager $cloudIdManager |
|
| 56 | - ) { |
|
| 57 | - $this->l = $il10n; |
|
| 58 | - $this->urlGenerator = $urlGenerator; |
|
| 59 | - $this->cloudIdManager = $cloudIdManager; |
|
| 60 | - } |
|
| 61 | - |
|
| 62 | - /** |
|
| 63 | - * split user and remote from federated cloud id |
|
| 64 | - * |
|
| 65 | - * @param string $address federated share address |
|
| 66 | - * @return array [user, remoteURL] |
|
| 67 | - * @throws HintException |
|
| 68 | - */ |
|
| 69 | - public function splitUserRemote($address) { |
|
| 70 | - try { |
|
| 71 | - $cloudId = $this->cloudIdManager->resolveCloudId($address); |
|
| 72 | - return [$cloudId->getUser(), $cloudId->getRemote()]; |
|
| 73 | - } catch (\InvalidArgumentException $e) { |
|
| 74 | - $hint = $this->l->t('Invalid Federated Cloud ID'); |
|
| 75 | - throw new HintException('Invalid Federated Cloud ID', $hint, 0, $e); |
|
| 76 | - } |
|
| 77 | - } |
|
| 78 | - |
|
| 79 | - /** |
|
| 80 | - * generate remote URL part of federated ID |
|
| 81 | - * |
|
| 82 | - * @return string url of the current server |
|
| 83 | - */ |
|
| 84 | - public function generateRemoteURL() { |
|
| 85 | - $url = $this->urlGenerator->getAbsoluteURL('/'); |
|
| 86 | - return $url; |
|
| 87 | - } |
|
| 88 | - |
|
| 89 | - /** |
|
| 90 | - * check if two federated cloud IDs refer to the same user |
|
| 91 | - * |
|
| 92 | - * @param string $user1 |
|
| 93 | - * @param string $server1 |
|
| 94 | - * @param string $user2 |
|
| 95 | - * @param string $server2 |
|
| 96 | - * @return bool true if both users and servers are the same |
|
| 97 | - */ |
|
| 98 | - public function compareAddresses($user1, $server1, $user2, $server2) { |
|
| 99 | - $normalizedServer1 = strtolower($this->removeProtocolFromUrl($server1)); |
|
| 100 | - $normalizedServer2 = strtolower($this->removeProtocolFromUrl($server2)); |
|
| 101 | - |
|
| 102 | - if (rtrim($normalizedServer1, '/') === rtrim($normalizedServer2, '/')) { |
|
| 103 | - // FIXME this should be a method in the user management instead |
|
| 104 | - \OCP\Util::emitHook( |
|
| 105 | - '\OCA\Files_Sharing\API\Server2Server', |
|
| 106 | - 'preLoginNameUsedAsUserName', |
|
| 107 | - array('uid' => &$user1) |
|
| 108 | - ); |
|
| 109 | - \OCP\Util::emitHook( |
|
| 110 | - '\OCA\Files_Sharing\API\Server2Server', |
|
| 111 | - 'preLoginNameUsedAsUserName', |
|
| 112 | - array('uid' => &$user2) |
|
| 113 | - ); |
|
| 114 | - |
|
| 115 | - if ($user1 === $user2) { |
|
| 116 | - return true; |
|
| 117 | - } |
|
| 118 | - } |
|
| 119 | - |
|
| 120 | - return false; |
|
| 121 | - } |
|
| 122 | - |
|
| 123 | - /** |
|
| 124 | - * remove protocol from URL |
|
| 125 | - * |
|
| 126 | - * @param string $url |
|
| 127 | - * @return string |
|
| 128 | - */ |
|
| 129 | - public function removeProtocolFromUrl($url) { |
|
| 130 | - if (strpos($url, 'https://') === 0) { |
|
| 131 | - return substr($url, strlen('https://')); |
|
| 132 | - } else if (strpos($url, 'http://') === 0) { |
|
| 133 | - return substr($url, strlen('http://')); |
|
| 134 | - } |
|
| 135 | - |
|
| 136 | - return $url; |
|
| 137 | - } |
|
| 138 | - |
|
| 139 | - /** |
|
| 140 | - * check if the url contain the protocol (http or https) |
|
| 141 | - * |
|
| 142 | - * @param string $url |
|
| 143 | - * @return bool |
|
| 144 | - */ |
|
| 145 | - public function urlContainProtocol($url) { |
|
| 146 | - if (strpos($url, 'https://') === 0 || |
|
| 147 | - strpos($url, 'http://') === 0) { |
|
| 148 | - |
|
| 149 | - return true; |
|
| 150 | - } |
|
| 151 | - |
|
| 152 | - return false; |
|
| 153 | - } |
|
| 36 | + /** @var IL10N */ |
|
| 37 | + private $l; |
|
| 38 | + |
|
| 39 | + /** @var IURLGenerator */ |
|
| 40 | + private $urlGenerator; |
|
| 41 | + |
|
| 42 | + /** @var ICloudIdManager */ |
|
| 43 | + private $cloudIdManager; |
|
| 44 | + |
|
| 45 | + /** |
|
| 46 | + * AddressHandler constructor. |
|
| 47 | + * |
|
| 48 | + * @param IURLGenerator $urlGenerator |
|
| 49 | + * @param IL10N $il10n |
|
| 50 | + * @param ICloudIdManager $cloudIdManager |
|
| 51 | + */ |
|
| 52 | + public function __construct( |
|
| 53 | + IURLGenerator $urlGenerator, |
|
| 54 | + IL10N $il10n, |
|
| 55 | + ICloudIdManager $cloudIdManager |
|
| 56 | + ) { |
|
| 57 | + $this->l = $il10n; |
|
| 58 | + $this->urlGenerator = $urlGenerator; |
|
| 59 | + $this->cloudIdManager = $cloudIdManager; |
|
| 60 | + } |
|
| 61 | + |
|
| 62 | + /** |
|
| 63 | + * split user and remote from federated cloud id |
|
| 64 | + * |
|
| 65 | + * @param string $address federated share address |
|
| 66 | + * @return array [user, remoteURL] |
|
| 67 | + * @throws HintException |
|
| 68 | + */ |
|
| 69 | + public function splitUserRemote($address) { |
|
| 70 | + try { |
|
| 71 | + $cloudId = $this->cloudIdManager->resolveCloudId($address); |
|
| 72 | + return [$cloudId->getUser(), $cloudId->getRemote()]; |
|
| 73 | + } catch (\InvalidArgumentException $e) { |
|
| 74 | + $hint = $this->l->t('Invalid Federated Cloud ID'); |
|
| 75 | + throw new HintException('Invalid Federated Cloud ID', $hint, 0, $e); |
|
| 76 | + } |
|
| 77 | + } |
|
| 78 | + |
|
| 79 | + /** |
|
| 80 | + * generate remote URL part of federated ID |
|
| 81 | + * |
|
| 82 | + * @return string url of the current server |
|
| 83 | + */ |
|
| 84 | + public function generateRemoteURL() { |
|
| 85 | + $url = $this->urlGenerator->getAbsoluteURL('/'); |
|
| 86 | + return $url; |
|
| 87 | + } |
|
| 88 | + |
|
| 89 | + /** |
|
| 90 | + * check if two federated cloud IDs refer to the same user |
|
| 91 | + * |
|
| 92 | + * @param string $user1 |
|
| 93 | + * @param string $server1 |
|
| 94 | + * @param string $user2 |
|
| 95 | + * @param string $server2 |
|
| 96 | + * @return bool true if both users and servers are the same |
|
| 97 | + */ |
|
| 98 | + public function compareAddresses($user1, $server1, $user2, $server2) { |
|
| 99 | + $normalizedServer1 = strtolower($this->removeProtocolFromUrl($server1)); |
|
| 100 | + $normalizedServer2 = strtolower($this->removeProtocolFromUrl($server2)); |
|
| 101 | + |
|
| 102 | + if (rtrim($normalizedServer1, '/') === rtrim($normalizedServer2, '/')) { |
|
| 103 | + // FIXME this should be a method in the user management instead |
|
| 104 | + \OCP\Util::emitHook( |
|
| 105 | + '\OCA\Files_Sharing\API\Server2Server', |
|
| 106 | + 'preLoginNameUsedAsUserName', |
|
| 107 | + array('uid' => &$user1) |
|
| 108 | + ); |
|
| 109 | + \OCP\Util::emitHook( |
|
| 110 | + '\OCA\Files_Sharing\API\Server2Server', |
|
| 111 | + 'preLoginNameUsedAsUserName', |
|
| 112 | + array('uid' => &$user2) |
|
| 113 | + ); |
|
| 114 | + |
|
| 115 | + if ($user1 === $user2) { |
|
| 116 | + return true; |
|
| 117 | + } |
|
| 118 | + } |
|
| 119 | + |
|
| 120 | + return false; |
|
| 121 | + } |
|
| 122 | + |
|
| 123 | + /** |
|
| 124 | + * remove protocol from URL |
|
| 125 | + * |
|
| 126 | + * @param string $url |
|
| 127 | + * @return string |
|
| 128 | + */ |
|
| 129 | + public function removeProtocolFromUrl($url) { |
|
| 130 | + if (strpos($url, 'https://') === 0) { |
|
| 131 | + return substr($url, strlen('https://')); |
|
| 132 | + } else if (strpos($url, 'http://') === 0) { |
|
| 133 | + return substr($url, strlen('http://')); |
|
| 134 | + } |
|
| 135 | + |
|
| 136 | + return $url; |
|
| 137 | + } |
|
| 138 | + |
|
| 139 | + /** |
|
| 140 | + * check if the url contain the protocol (http or https) |
|
| 141 | + * |
|
| 142 | + * @param string $url |
|
| 143 | + * @return bool |
|
| 144 | + */ |
|
| 145 | + public function urlContainProtocol($url) { |
|
| 146 | + if (strpos($url, 'https://') === 0 || |
|
| 147 | + strpos($url, 'http://') === 0) { |
|
| 148 | + |
|
| 149 | + return true; |
|
| 150 | + } |
|
| 151 | + |
|
| 152 | + return false; |
|
| 153 | + } |
|
| 154 | 154 | } |
@@ -28,10 +28,10 @@ |
||
| 28 | 28 | <?php if((int)$trustedServer['status'] === TrustedServers::STATUS_OK) { ?> |
| 29 | 29 | <span class="status success"></span> |
| 30 | 30 | <?php |
| 31 | - } elseif( |
|
| 32 | - (int)$trustedServer['status'] === TrustedServers::STATUS_PENDING || |
|
| 33 | - (int)$trustedServer['status'] === TrustedServers::STATUS_ACCESS_REVOKED |
|
| 34 | - ) { ?> |
|
| 31 | + } elseif( |
|
| 32 | + (int)$trustedServer['status'] === TrustedServers::STATUS_PENDING || |
|
| 33 | + (int)$trustedServer['status'] === TrustedServers::STATUS_ACCESS_REVOKED |
|
| 34 | + ) { ?> |
|
| 35 | 35 | <span class="status indeterminate"></span> |
| 36 | 36 | <?php } else {?> |
| 37 | 37 | <span class="status error"></span> |
@@ -29,41 +29,41 @@ |
||
| 29 | 29 | |
| 30 | 30 | class Admin implements ISettings { |
| 31 | 31 | |
| 32 | - /** @var TrustedServers */ |
|
| 33 | - private $trustedServers; |
|
| 32 | + /** @var TrustedServers */ |
|
| 33 | + private $trustedServers; |
|
| 34 | 34 | |
| 35 | - public function __construct(TrustedServers $trustedServers) { |
|
| 36 | - $this->trustedServers = $trustedServers; |
|
| 37 | - } |
|
| 35 | + public function __construct(TrustedServers $trustedServers) { |
|
| 36 | + $this->trustedServers = $trustedServers; |
|
| 37 | + } |
|
| 38 | 38 | |
| 39 | - /** |
|
| 40 | - * @return TemplateResponse |
|
| 41 | - */ |
|
| 42 | - public function getForm() { |
|
| 43 | - $parameters = [ |
|
| 44 | - 'trustedServers' => $this->trustedServers->getServers(), |
|
| 45 | - 'autoAddServers' => $this->trustedServers->getAutoAddServers(), |
|
| 46 | - ]; |
|
| 39 | + /** |
|
| 40 | + * @return TemplateResponse |
|
| 41 | + */ |
|
| 42 | + public function getForm() { |
|
| 43 | + $parameters = [ |
|
| 44 | + 'trustedServers' => $this->trustedServers->getServers(), |
|
| 45 | + 'autoAddServers' => $this->trustedServers->getAutoAddServers(), |
|
| 46 | + ]; |
|
| 47 | 47 | |
| 48 | - return new TemplateResponse('federation', 'settings-admin', $parameters, ''); |
|
| 49 | - } |
|
| 48 | + return new TemplateResponse('federation', 'settings-admin', $parameters, ''); |
|
| 49 | + } |
|
| 50 | 50 | |
| 51 | - /** |
|
| 52 | - * @return string the section ID, e.g. 'sharing' |
|
| 53 | - */ |
|
| 54 | - public function getSection() { |
|
| 55 | - return 'sharing'; |
|
| 56 | - } |
|
| 51 | + /** |
|
| 52 | + * @return string the section ID, e.g. 'sharing' |
|
| 53 | + */ |
|
| 54 | + public function getSection() { |
|
| 55 | + return 'sharing'; |
|
| 56 | + } |
|
| 57 | 57 | |
| 58 | - /** |
|
| 59 | - * @return int whether the form should be rather on the top or bottom of |
|
| 60 | - * the admin section. The forms are arranged in ascending order of the |
|
| 61 | - * priority values. It is required to return a value between 0 and 100. |
|
| 62 | - * |
|
| 63 | - * E.g.: 70 |
|
| 64 | - */ |
|
| 65 | - public function getPriority() { |
|
| 66 | - return 30; |
|
| 67 | - } |
|
| 58 | + /** |
|
| 59 | + * @return int whether the form should be rather on the top or bottom of |
|
| 60 | + * the admin section. The forms are arranged in ascending order of the |
|
| 61 | + * priority values. It is required to return a value between 0 and 100. |
|
| 62 | + * |
|
| 63 | + * E.g.: 70 |
|
| 64 | + */ |
|
| 65 | + public function getPriority() { |
|
| 66 | + return 30; |
|
| 67 | + } |
|
| 68 | 68 | |
| 69 | 69 | } |
@@ -27,25 +27,25 @@ |
||
| 27 | 27 | |
| 28 | 28 | class Hooks { |
| 29 | 29 | |
| 30 | - /** @var TrustedServers */ |
|
| 31 | - private $trustedServers; |
|
| 32 | - |
|
| 33 | - public function __construct(TrustedServers $trustedServers) { |
|
| 34 | - $this->trustedServers = $trustedServers; |
|
| 35 | - } |
|
| 36 | - |
|
| 37 | - /** |
|
| 38 | - * add servers to the list of trusted servers once a federated share was established |
|
| 39 | - * |
|
| 40 | - * @param array $params |
|
| 41 | - */ |
|
| 42 | - public function addServerHook($params) { |
|
| 43 | - if ( |
|
| 44 | - $this->trustedServers->getAutoAddServers() === true && |
|
| 45 | - $this->trustedServers->isTrustedServer($params['server']) === false |
|
| 46 | - ) { |
|
| 47 | - $this->trustedServers->addServer($params['server']); |
|
| 48 | - } |
|
| 49 | - } |
|
| 30 | + /** @var TrustedServers */ |
|
| 31 | + private $trustedServers; |
|
| 32 | + |
|
| 33 | + public function __construct(TrustedServers $trustedServers) { |
|
| 34 | + $this->trustedServers = $trustedServers; |
|
| 35 | + } |
|
| 36 | + |
|
| 37 | + /** |
|
| 38 | + * add servers to the list of trusted servers once a federated share was established |
|
| 39 | + * |
|
| 40 | + * @param array $params |
|
| 41 | + */ |
|
| 42 | + public function addServerHook($params) { |
|
| 43 | + if ( |
|
| 44 | + $this->trustedServers->getAutoAddServers() === true && |
|
| 45 | + $this->trustedServers->isTrustedServer($params['server']) === false |
|
| 46 | + ) { |
|
| 47 | + $this->trustedServers->addServer($params['server']); |
|
| 48 | + } |
|
| 49 | + } |
|
| 50 | 50 | |
| 51 | 51 | } |
@@ -26,67 +26,67 @@ |
||
| 26 | 26 | |
| 27 | 27 | class PublicAuth implements BackendInterface { |
| 28 | 28 | |
| 29 | - /** @var string[] */ |
|
| 30 | - private $publicURLs; |
|
| 29 | + /** @var string[] */ |
|
| 30 | + private $publicURLs; |
|
| 31 | 31 | |
| 32 | - public function __construct() { |
|
| 33 | - $this->publicURLs = [ |
|
| 34 | - 'public-calendars', |
|
| 35 | - 'principals/system/public' |
|
| 36 | - ]; |
|
| 37 | - } |
|
| 32 | + public function __construct() { |
|
| 33 | + $this->publicURLs = [ |
|
| 34 | + 'public-calendars', |
|
| 35 | + 'principals/system/public' |
|
| 36 | + ]; |
|
| 37 | + } |
|
| 38 | 38 | |
| 39 | - /** |
|
| 40 | - * When this method is called, the backend must check if authentication was |
|
| 41 | - * successful. |
|
| 42 | - * |
|
| 43 | - * The returned value must be one of the following |
|
| 44 | - * |
|
| 45 | - * [true, "principals/username"] |
|
| 46 | - * [false, "reason for failure"] |
|
| 47 | - * |
|
| 48 | - * If authentication was successful, it's expected that the authentication |
|
| 49 | - * backend returns a so-called principal url. |
|
| 50 | - * |
|
| 51 | - * Examples of a principal url: |
|
| 52 | - * |
|
| 53 | - * principals/admin |
|
| 54 | - * principals/user1 |
|
| 55 | - * principals/users/joe |
|
| 56 | - * principals/uid/123457 |
|
| 57 | - * |
|
| 58 | - * If you don't use WebDAV ACL (RFC3744) we recommend that you simply |
|
| 59 | - * return a string such as: |
|
| 60 | - * |
|
| 61 | - * principals/users/[username] |
|
| 62 | - * |
|
| 63 | - * @param RequestInterface $request |
|
| 64 | - * @param ResponseInterface $response |
|
| 65 | - * @return array |
|
| 66 | - */ |
|
| 67 | - function check(RequestInterface $request, ResponseInterface $response) { |
|
| 39 | + /** |
|
| 40 | + * When this method is called, the backend must check if authentication was |
|
| 41 | + * successful. |
|
| 42 | + * |
|
| 43 | + * The returned value must be one of the following |
|
| 44 | + * |
|
| 45 | + * [true, "principals/username"] |
|
| 46 | + * [false, "reason for failure"] |
|
| 47 | + * |
|
| 48 | + * If authentication was successful, it's expected that the authentication |
|
| 49 | + * backend returns a so-called principal url. |
|
| 50 | + * |
|
| 51 | + * Examples of a principal url: |
|
| 52 | + * |
|
| 53 | + * principals/admin |
|
| 54 | + * principals/user1 |
|
| 55 | + * principals/users/joe |
|
| 56 | + * principals/uid/123457 |
|
| 57 | + * |
|
| 58 | + * If you don't use WebDAV ACL (RFC3744) we recommend that you simply |
|
| 59 | + * return a string such as: |
|
| 60 | + * |
|
| 61 | + * principals/users/[username] |
|
| 62 | + * |
|
| 63 | + * @param RequestInterface $request |
|
| 64 | + * @param ResponseInterface $response |
|
| 65 | + * @return array |
|
| 66 | + */ |
|
| 67 | + function check(RequestInterface $request, ResponseInterface $response) { |
|
| 68 | 68 | |
| 69 | - if ($this->isRequestPublic($request)) { |
|
| 70 | - return [true, "principals/system/public"]; |
|
| 71 | - } |
|
| 72 | - return [false, "No public access to this resource."]; |
|
| 73 | - } |
|
| 69 | + if ($this->isRequestPublic($request)) { |
|
| 70 | + return [true, "principals/system/public"]; |
|
| 71 | + } |
|
| 72 | + return [false, "No public access to this resource."]; |
|
| 73 | + } |
|
| 74 | 74 | |
| 75 | - /** |
|
| 76 | - * @inheritdoc |
|
| 77 | - */ |
|
| 78 | - function challenge(RequestInterface $request, ResponseInterface $response) { |
|
| 79 | - } |
|
| 75 | + /** |
|
| 76 | + * @inheritdoc |
|
| 77 | + */ |
|
| 78 | + function challenge(RequestInterface $request, ResponseInterface $response) { |
|
| 79 | + } |
|
| 80 | 80 | |
| 81 | - /** |
|
| 82 | - * @param RequestInterface $request |
|
| 83 | - * @return bool |
|
| 84 | - */ |
|
| 85 | - private function isRequestPublic(RequestInterface $request) { |
|
| 86 | - $url = $request->getPath(); |
|
| 87 | - $matchingUrls = array_filter($this->publicURLs, function ($publicUrl) use ($url) { |
|
| 88 | - return strpos($url, $publicUrl, 0) === 0; |
|
| 89 | - }); |
|
| 90 | - return !empty($matchingUrls); |
|
| 91 | - } |
|
| 81 | + /** |
|
| 82 | + * @param RequestInterface $request |
|
| 83 | + * @return bool |
|
| 84 | + */ |
|
| 85 | + private function isRequestPublic(RequestInterface $request) { |
|
| 86 | + $url = $request->getPath(); |
|
| 87 | + $matchingUrls = array_filter($this->publicURLs, function ($publicUrl) use ($url) { |
|
| 88 | + return strpos($url, $publicUrl, 0) === 0; |
|
| 89 | + }); |
|
| 90 | + return !empty($matchingUrls); |
|
| 91 | + } |
|
| 92 | 92 | } |
@@ -41,130 +41,130 @@ |
||
| 41 | 41 | */ |
| 42 | 42 | class Invite implements XmlSerializable { |
| 43 | 43 | |
| 44 | - /** |
|
| 45 | - * The list of users a calendar has been shared to. |
|
| 46 | - * |
|
| 47 | - * @var array |
|
| 48 | - */ |
|
| 49 | - protected $users; |
|
| 50 | - |
|
| 51 | - /** |
|
| 52 | - * The organizer contains information about the person who shared the |
|
| 53 | - * object. |
|
| 54 | - * |
|
| 55 | - * @var array|null |
|
| 56 | - */ |
|
| 57 | - protected $organizer; |
|
| 58 | - |
|
| 59 | - /** |
|
| 60 | - * Creates the property. |
|
| 61 | - * |
|
| 62 | - * Users is an array. Each element of the array has the following |
|
| 63 | - * properties: |
|
| 64 | - * |
|
| 65 | - * * href - Often a mailto: address |
|
| 66 | - * * commonName - Optional, for example a first and lastname for a user. |
|
| 67 | - * * status - One of the SharingPlugin::STATUS_* constants. |
|
| 68 | - * * readOnly - true or false |
|
| 69 | - * * summary - Optional, description of the share |
|
| 70 | - * |
|
| 71 | - * The organizer key is optional to specify. It's only useful when a |
|
| 72 | - * 'sharee' requests the sharing information. |
|
| 73 | - * |
|
| 74 | - * The organizer may have the following properties: |
|
| 75 | - * * href - Often a mailto: address. |
|
| 76 | - * * commonName - Optional human-readable name. |
|
| 77 | - * * firstName - Optional first name. |
|
| 78 | - * * lastName - Optional last name. |
|
| 79 | - * |
|
| 80 | - * If you wonder why these two structures are so different, I guess a |
|
| 81 | - * valid answer is that the current spec is still a draft. |
|
| 82 | - * |
|
| 83 | - * @param array $users |
|
| 84 | - */ |
|
| 85 | - function __construct(array $users, array $organizer = null) { |
|
| 86 | - |
|
| 87 | - $this->users = $users; |
|
| 88 | - $this->organizer = $organizer; |
|
| 89 | - |
|
| 90 | - } |
|
| 91 | - |
|
| 92 | - /** |
|
| 93 | - * Returns the list of users, as it was passed to the constructor. |
|
| 94 | - * |
|
| 95 | - * @return array |
|
| 96 | - */ |
|
| 97 | - function getValue() { |
|
| 98 | - |
|
| 99 | - return $this->users; |
|
| 100 | - |
|
| 101 | - } |
|
| 102 | - |
|
| 103 | - /** |
|
| 104 | - * The xmlSerialize metod is called during xml writing. |
|
| 105 | - * |
|
| 106 | - * Use the $writer argument to write its own xml serialization. |
|
| 107 | - * |
|
| 108 | - * An important note: do _not_ create a parent element. Any element |
|
| 109 | - * implementing XmlSerializble should only ever write what's considered |
|
| 110 | - * its 'inner xml'. |
|
| 111 | - * |
|
| 112 | - * The parent of the current element is responsible for writing a |
|
| 113 | - * containing element. |
|
| 114 | - * |
|
| 115 | - * This allows serializers to be re-used for different element names. |
|
| 116 | - * |
|
| 117 | - * If you are opening new elements, you must also close them again. |
|
| 118 | - * |
|
| 119 | - * @param Writer $writer |
|
| 120 | - * @return void |
|
| 121 | - */ |
|
| 122 | - function xmlSerialize(Writer $writer) { |
|
| 123 | - |
|
| 124 | - $cs = '{' . Plugin::NS_OWNCLOUD . '}'; |
|
| 125 | - |
|
| 126 | - if (!is_null($this->organizer)) { |
|
| 127 | - |
|
| 128 | - $writer->startElement($cs . 'organizer'); |
|
| 129 | - $writer->writeElement('{DAV:}href', $this->organizer['href']); |
|
| 130 | - |
|
| 131 | - if (isset($this->organizer['commonName']) && $this->organizer['commonName']) { |
|
| 132 | - $writer->writeElement($cs . 'common-name', $this->organizer['commonName']); |
|
| 133 | - } |
|
| 134 | - if (isset($this->organizer['firstName']) && $this->organizer['firstName']) { |
|
| 135 | - $writer->writeElement($cs . 'first-name', $this->organizer['firstName']); |
|
| 136 | - } |
|
| 137 | - if (isset($this->organizer['lastName']) && $this->organizer['lastName']) { |
|
| 138 | - $writer->writeElement($cs . 'last-name', $this->organizer['lastName']); |
|
| 139 | - } |
|
| 140 | - $writer->endElement(); // organizer |
|
| 141 | - |
|
| 142 | - } |
|
| 143 | - |
|
| 144 | - foreach ($this->users as $user) { |
|
| 145 | - |
|
| 146 | - $writer->startElement($cs . 'user'); |
|
| 147 | - $writer->writeElement('{DAV:}href', $user['href']); |
|
| 148 | - if (isset($user['commonName']) && $user['commonName']) { |
|
| 149 | - $writer->writeElement($cs . 'common-name', $user['commonName']); |
|
| 150 | - } |
|
| 151 | - $writer->writeElement($cs . 'invite-accepted'); |
|
| 152 | - |
|
| 153 | - $writer->startElement($cs . 'access'); |
|
| 154 | - if ($user['readOnly']) { |
|
| 155 | - $writer->writeElement($cs . 'read'); |
|
| 156 | - } else { |
|
| 157 | - $writer->writeElement($cs . 'read-write'); |
|
| 158 | - } |
|
| 159 | - $writer->endElement(); // access |
|
| 160 | - |
|
| 161 | - if (isset($user['summary']) && $user['summary']) { |
|
| 162 | - $writer->writeElement($cs . 'summary', $user['summary']); |
|
| 163 | - } |
|
| 164 | - |
|
| 165 | - $writer->endElement(); //user |
|
| 166 | - |
|
| 167 | - } |
|
| 168 | - |
|
| 169 | - } |
|
| 44 | + /** |
|
| 45 | + * The list of users a calendar has been shared to. |
|
| 46 | + * |
|
| 47 | + * @var array |
|
| 48 | + */ |
|
| 49 | + protected $users; |
|
| 50 | + |
|
| 51 | + /** |
|
| 52 | + * The organizer contains information about the person who shared the |
|
| 53 | + * object. |
|
| 54 | + * |
|
| 55 | + * @var array|null |
|
| 56 | + */ |
|
| 57 | + protected $organizer; |
|
| 58 | + |
|
| 59 | + /** |
|
| 60 | + * Creates the property. |
|
| 61 | + * |
|
| 62 | + * Users is an array. Each element of the array has the following |
|
| 63 | + * properties: |
|
| 64 | + * |
|
| 65 | + * * href - Often a mailto: address |
|
| 66 | + * * commonName - Optional, for example a first and lastname for a user. |
|
| 67 | + * * status - One of the SharingPlugin::STATUS_* constants. |
|
| 68 | + * * readOnly - true or false |
|
| 69 | + * * summary - Optional, description of the share |
|
| 70 | + * |
|
| 71 | + * The organizer key is optional to specify. It's only useful when a |
|
| 72 | + * 'sharee' requests the sharing information. |
|
| 73 | + * |
|
| 74 | + * The organizer may have the following properties: |
|
| 75 | + * * href - Often a mailto: address. |
|
| 76 | + * * commonName - Optional human-readable name. |
|
| 77 | + * * firstName - Optional first name. |
|
| 78 | + * * lastName - Optional last name. |
|
| 79 | + * |
|
| 80 | + * If you wonder why these two structures are so different, I guess a |
|
| 81 | + * valid answer is that the current spec is still a draft. |
|
| 82 | + * |
|
| 83 | + * @param array $users |
|
| 84 | + */ |
|
| 85 | + function __construct(array $users, array $organizer = null) { |
|
| 86 | + |
|
| 87 | + $this->users = $users; |
|
| 88 | + $this->organizer = $organizer; |
|
| 89 | + |
|
| 90 | + } |
|
| 91 | + |
|
| 92 | + /** |
|
| 93 | + * Returns the list of users, as it was passed to the constructor. |
|
| 94 | + * |
|
| 95 | + * @return array |
|
| 96 | + */ |
|
| 97 | + function getValue() { |
|
| 98 | + |
|
| 99 | + return $this->users; |
|
| 100 | + |
|
| 101 | + } |
|
| 102 | + |
|
| 103 | + /** |
|
| 104 | + * The xmlSerialize metod is called during xml writing. |
|
| 105 | + * |
|
| 106 | + * Use the $writer argument to write its own xml serialization. |
|
| 107 | + * |
|
| 108 | + * An important note: do _not_ create a parent element. Any element |
|
| 109 | + * implementing XmlSerializble should only ever write what's considered |
|
| 110 | + * its 'inner xml'. |
|
| 111 | + * |
|
| 112 | + * The parent of the current element is responsible for writing a |
|
| 113 | + * containing element. |
|
| 114 | + * |
|
| 115 | + * This allows serializers to be re-used for different element names. |
|
| 116 | + * |
|
| 117 | + * If you are opening new elements, you must also close them again. |
|
| 118 | + * |
|
| 119 | + * @param Writer $writer |
|
| 120 | + * @return void |
|
| 121 | + */ |
|
| 122 | + function xmlSerialize(Writer $writer) { |
|
| 123 | + |
|
| 124 | + $cs = '{' . Plugin::NS_OWNCLOUD . '}'; |
|
| 125 | + |
|
| 126 | + if (!is_null($this->organizer)) { |
|
| 127 | + |
|
| 128 | + $writer->startElement($cs . 'organizer'); |
|
| 129 | + $writer->writeElement('{DAV:}href', $this->organizer['href']); |
|
| 130 | + |
|
| 131 | + if (isset($this->organizer['commonName']) && $this->organizer['commonName']) { |
|
| 132 | + $writer->writeElement($cs . 'common-name', $this->organizer['commonName']); |
|
| 133 | + } |
|
| 134 | + if (isset($this->organizer['firstName']) && $this->organizer['firstName']) { |
|
| 135 | + $writer->writeElement($cs . 'first-name', $this->organizer['firstName']); |
|
| 136 | + } |
|
| 137 | + if (isset($this->organizer['lastName']) && $this->organizer['lastName']) { |
|
| 138 | + $writer->writeElement($cs . 'last-name', $this->organizer['lastName']); |
|
| 139 | + } |
|
| 140 | + $writer->endElement(); // organizer |
|
| 141 | + |
|
| 142 | + } |
|
| 143 | + |
|
| 144 | + foreach ($this->users as $user) { |
|
| 145 | + |
|
| 146 | + $writer->startElement($cs . 'user'); |
|
| 147 | + $writer->writeElement('{DAV:}href', $user['href']); |
|
| 148 | + if (isset($user['commonName']) && $user['commonName']) { |
|
| 149 | + $writer->writeElement($cs . 'common-name', $user['commonName']); |
|
| 150 | + } |
|
| 151 | + $writer->writeElement($cs . 'invite-accepted'); |
|
| 152 | + |
|
| 153 | + $writer->startElement($cs . 'access'); |
|
| 154 | + if ($user['readOnly']) { |
|
| 155 | + $writer->writeElement($cs . 'read'); |
|
| 156 | + } else { |
|
| 157 | + $writer->writeElement($cs . 'read-write'); |
|
| 158 | + } |
|
| 159 | + $writer->endElement(); // access |
|
| 160 | + |
|
| 161 | + if (isset($user['summary']) && $user['summary']) { |
|
| 162 | + $writer->writeElement($cs . 'summary', $user['summary']); |
|
| 163 | + } |
|
| 164 | + |
|
| 165 | + $writer->endElement(); //user |
|
| 166 | + |
|
| 167 | + } |
|
| 168 | + |
|
| 169 | + } |
|
| 170 | 170 | } |
@@ -28,48 +28,48 @@ |
||
| 28 | 28 | */ |
| 29 | 29 | interface IShareable extends INode { |
| 30 | 30 | |
| 31 | - /** |
|
| 32 | - * Updates the list of shares. |
|
| 33 | - * |
|
| 34 | - * The first array is a list of people that are to be added to the |
|
| 35 | - * resource. |
|
| 36 | - * |
|
| 37 | - * Every element in the add array has the following properties: |
|
| 38 | - * * href - A url. Usually a mailto: address |
|
| 39 | - * * commonName - Usually a first and last name, or false |
|
| 40 | - * * summary - A description of the share, can also be false |
|
| 41 | - * * readOnly - A boolean value |
|
| 42 | - * |
|
| 43 | - * Every element in the remove array is just the address string. |
|
| 44 | - * |
|
| 45 | - * @param array $add |
|
| 46 | - * @param array $remove |
|
| 47 | - * @return void |
|
| 48 | - */ |
|
| 49 | - function updateShares(array $add, array $remove); |
|
| 31 | + /** |
|
| 32 | + * Updates the list of shares. |
|
| 33 | + * |
|
| 34 | + * The first array is a list of people that are to be added to the |
|
| 35 | + * resource. |
|
| 36 | + * |
|
| 37 | + * Every element in the add array has the following properties: |
|
| 38 | + * * href - A url. Usually a mailto: address |
|
| 39 | + * * commonName - Usually a first and last name, or false |
|
| 40 | + * * summary - A description of the share, can also be false |
|
| 41 | + * * readOnly - A boolean value |
|
| 42 | + * |
|
| 43 | + * Every element in the remove array is just the address string. |
|
| 44 | + * |
|
| 45 | + * @param array $add |
|
| 46 | + * @param array $remove |
|
| 47 | + * @return void |
|
| 48 | + */ |
|
| 49 | + function updateShares(array $add, array $remove); |
|
| 50 | 50 | |
| 51 | - /** |
|
| 52 | - * Returns the list of people whom this resource is shared with. |
|
| 53 | - * |
|
| 54 | - * Every element in this array should have the following properties: |
|
| 55 | - * * href - Often a mailto: address |
|
| 56 | - * * commonName - Optional, for example a first + last name |
|
| 57 | - * * status - See the Sabre\CalDAV\SharingPlugin::STATUS_ constants. |
|
| 58 | - * * readOnly - boolean |
|
| 59 | - * * summary - Optional, a description for the share |
|
| 60 | - * |
|
| 61 | - * @return array |
|
| 62 | - */ |
|
| 63 | - function getShares(); |
|
| 51 | + /** |
|
| 52 | + * Returns the list of people whom this resource is shared with. |
|
| 53 | + * |
|
| 54 | + * Every element in this array should have the following properties: |
|
| 55 | + * * href - Often a mailto: address |
|
| 56 | + * * commonName - Optional, for example a first + last name |
|
| 57 | + * * status - See the Sabre\CalDAV\SharingPlugin::STATUS_ constants. |
|
| 58 | + * * readOnly - boolean |
|
| 59 | + * * summary - Optional, a description for the share |
|
| 60 | + * |
|
| 61 | + * @return array |
|
| 62 | + */ |
|
| 63 | + function getShares(); |
|
| 64 | 64 | |
| 65 | - /** |
|
| 66 | - * @return int |
|
| 67 | - */ |
|
| 68 | - public function getResourceId(); |
|
| 65 | + /** |
|
| 66 | + * @return int |
|
| 67 | + */ |
|
| 68 | + public function getResourceId(); |
|
| 69 | 69 | |
| 70 | - /** |
|
| 71 | - * @return string |
|
| 72 | - */ |
|
| 73 | - public function getOwner(); |
|
| 70 | + /** |
|
| 71 | + * @return string |
|
| 72 | + */ |
|
| 73 | + public function getOwner(); |
|
| 74 | 74 | |
| 75 | 75 | } |
| 76 | 76 | \ No newline at end of file |
@@ -43,85 +43,85 @@ |
||
| 43 | 43 | */ |
| 44 | 44 | class EntityTypeCollection extends RootCollection { |
| 45 | 45 | |
| 46 | - /** @var ILogger */ |
|
| 47 | - protected $logger; |
|
| 46 | + /** @var ILogger */ |
|
| 47 | + protected $logger; |
|
| 48 | 48 | |
| 49 | - /** @var IUserManager */ |
|
| 50 | - protected $userManager; |
|
| 49 | + /** @var IUserManager */ |
|
| 50 | + protected $userManager; |
|
| 51 | 51 | |
| 52 | - /** @var \Closure */ |
|
| 53 | - protected $childExistsFunction; |
|
| 52 | + /** @var \Closure */ |
|
| 53 | + protected $childExistsFunction; |
|
| 54 | 54 | |
| 55 | - /** |
|
| 56 | - * @param string $name |
|
| 57 | - * @param ICommentsManager $commentsManager |
|
| 58 | - * @param IUserManager $userManager |
|
| 59 | - * @param IUserSession $userSession |
|
| 60 | - * @param ILogger $logger |
|
| 61 | - * @param \Closure $childExistsFunction |
|
| 62 | - */ |
|
| 63 | - public function __construct( |
|
| 64 | - $name, |
|
| 65 | - ICommentsManager $commentsManager, |
|
| 66 | - IUserManager $userManager, |
|
| 67 | - IUserSession $userSession, |
|
| 68 | - ILogger $logger, |
|
| 69 | - \Closure $childExistsFunction |
|
| 70 | - ) { |
|
| 71 | - $name = trim($name); |
|
| 72 | - if(empty($name) || !is_string($name)) { |
|
| 73 | - throw new \InvalidArgumentException('"name" parameter must be non-empty string'); |
|
| 74 | - } |
|
| 75 | - $this->name = $name; |
|
| 76 | - $this->commentsManager = $commentsManager; |
|
| 77 | - $this->logger = $logger; |
|
| 78 | - $this->userManager = $userManager; |
|
| 79 | - $this->userSession = $userSession; |
|
| 80 | - $this->childExistsFunction = $childExistsFunction; |
|
| 81 | - } |
|
| 55 | + /** |
|
| 56 | + * @param string $name |
|
| 57 | + * @param ICommentsManager $commentsManager |
|
| 58 | + * @param IUserManager $userManager |
|
| 59 | + * @param IUserSession $userSession |
|
| 60 | + * @param ILogger $logger |
|
| 61 | + * @param \Closure $childExistsFunction |
|
| 62 | + */ |
|
| 63 | + public function __construct( |
|
| 64 | + $name, |
|
| 65 | + ICommentsManager $commentsManager, |
|
| 66 | + IUserManager $userManager, |
|
| 67 | + IUserSession $userSession, |
|
| 68 | + ILogger $logger, |
|
| 69 | + \Closure $childExistsFunction |
|
| 70 | + ) { |
|
| 71 | + $name = trim($name); |
|
| 72 | + if(empty($name) || !is_string($name)) { |
|
| 73 | + throw new \InvalidArgumentException('"name" parameter must be non-empty string'); |
|
| 74 | + } |
|
| 75 | + $this->name = $name; |
|
| 76 | + $this->commentsManager = $commentsManager; |
|
| 77 | + $this->logger = $logger; |
|
| 78 | + $this->userManager = $userManager; |
|
| 79 | + $this->userSession = $userSession; |
|
| 80 | + $this->childExistsFunction = $childExistsFunction; |
|
| 81 | + } |
|
| 82 | 82 | |
| 83 | - /** |
|
| 84 | - * Returns a specific child node, referenced by its name |
|
| 85 | - * |
|
| 86 | - * This method must throw Sabre\DAV\Exception\NotFound if the node does not |
|
| 87 | - * exist. |
|
| 88 | - * |
|
| 89 | - * @param string $name |
|
| 90 | - * @return \Sabre\DAV\INode |
|
| 91 | - * @throws NotFound |
|
| 92 | - */ |
|
| 93 | - function getChild($name) { |
|
| 94 | - if(!$this->childExists($name)) { |
|
| 95 | - throw new NotFound('Entity does not exist or is not available'); |
|
| 96 | - } |
|
| 97 | - return new EntityCollection( |
|
| 98 | - $name, |
|
| 99 | - $this->name, |
|
| 100 | - $this->commentsManager, |
|
| 101 | - $this->userManager, |
|
| 102 | - $this->userSession, |
|
| 103 | - $this->logger |
|
| 104 | - ); |
|
| 105 | - } |
|
| 83 | + /** |
|
| 84 | + * Returns a specific child node, referenced by its name |
|
| 85 | + * |
|
| 86 | + * This method must throw Sabre\DAV\Exception\NotFound if the node does not |
|
| 87 | + * exist. |
|
| 88 | + * |
|
| 89 | + * @param string $name |
|
| 90 | + * @return \Sabre\DAV\INode |
|
| 91 | + * @throws NotFound |
|
| 92 | + */ |
|
| 93 | + function getChild($name) { |
|
| 94 | + if(!$this->childExists($name)) { |
|
| 95 | + throw new NotFound('Entity does not exist or is not available'); |
|
| 96 | + } |
|
| 97 | + return new EntityCollection( |
|
| 98 | + $name, |
|
| 99 | + $this->name, |
|
| 100 | + $this->commentsManager, |
|
| 101 | + $this->userManager, |
|
| 102 | + $this->userSession, |
|
| 103 | + $this->logger |
|
| 104 | + ); |
|
| 105 | + } |
|
| 106 | 106 | |
| 107 | - /** |
|
| 108 | - * Returns an array with all the child nodes |
|
| 109 | - * |
|
| 110 | - * @return \Sabre\DAV\INode[] |
|
| 111 | - * @throws MethodNotAllowed |
|
| 112 | - */ |
|
| 113 | - function getChildren() { |
|
| 114 | - throw new MethodNotAllowed('No permission to list folder contents'); |
|
| 115 | - } |
|
| 107 | + /** |
|
| 108 | + * Returns an array with all the child nodes |
|
| 109 | + * |
|
| 110 | + * @return \Sabre\DAV\INode[] |
|
| 111 | + * @throws MethodNotAllowed |
|
| 112 | + */ |
|
| 113 | + function getChildren() { |
|
| 114 | + throw new MethodNotAllowed('No permission to list folder contents'); |
|
| 115 | + } |
|
| 116 | 116 | |
| 117 | - /** |
|
| 118 | - * Checks if a child-node with the specified name exists |
|
| 119 | - * |
|
| 120 | - * @param string $name |
|
| 121 | - * @return bool |
|
| 122 | - */ |
|
| 123 | - function childExists($name) { |
|
| 124 | - return call_user_func($this->childExistsFunction, $name); |
|
| 125 | - } |
|
| 117 | + /** |
|
| 118 | + * Checks if a child-node with the specified name exists |
|
| 119 | + * |
|
| 120 | + * @param string $name |
|
| 121 | + * @return bool |
|
| 122 | + */ |
|
| 123 | + function childExists($name) { |
|
| 124 | + return call_user_func($this->childExistsFunction, $name); |
|
| 125 | + } |
|
| 126 | 126 | |
| 127 | 127 | } |
