nextcloud/apps/encryption/lib/AppInfo/Application.php

<?php
/**
 * @copyright Copyright (c) 2016, ownCloud, Inc.
 *
 * @author Bjoern Schiessle <bjoern@schiessle.org>
 * @author Björn Schießle <bjoern@schiessle.org>
 * @author Christoph Wurst <christoph@winzerhof-wurst.at>
 * @author Clark Tomlinson <fallen013@gmail.com>
 * @author Joas Schilling <coding@schilljs.com>
 * @author Roeland Jago Douma <roeland@famdouma.nl>
 * @author Thomas Müller <thomas.mueller@tmit.eu>
 *
 * @license AGPL-3.0
 *
 * This code is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License, version 3,
 * as published by the Free Software Foundation.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License, version 3,
 * along with this program. If not, see <http://www.gnu.org/licenses/>
 *
 */

namespace OCA\Encryption\AppInfo;

use OC\Files\View;
use OCA\Encryption\Controller\RecoveryController;
use OCA\Encryption\Controller\SettingsController;
use OCA\Encryption\Controller\StatusController;
use OCA\Encryption\Crypto\Crypt;
use OCA\Encryption\Crypto\DecryptAll;
use OCA\Encryption\Crypto\EncryptAll;
use OCA\Encryption\Crypto\Encryption;
use OCA\Encryption\HookManager;
use OCA\Encryption\Hooks\UserHooks;
use OCA\Encryption\KeyManager;
use OCA\Encryption\Recovery;
use OCA\Encryption\Session;
use OCA\Encryption\Users\Setup;
use OCA\Encryption\Util;
use OCP\AppFramework\IAppContainer;
use OCP\Encryption\IManager;
use OCP\IConfig;
use Symfony\Component\Console\Helper\QuestionHelper;

class Application extends \OCP\AppFramework\App {

	/** @var IManager */
	private $encryptionManager;
	/** @var IConfig */
	private $config;

	/**
	 * @param array $urlParams
	 */
	public function __construct($urlParams = []) {
		parent::__construct('encryption', $urlParams);
		$this->encryptionManager = \OC::$server->getEncryptionManager();
		$this->config = \OC::$server->getConfig();
		$this->registerServices();
	}

	public function setUp() {
		if ($this->encryptionManager->isEnabled()) {
			/** @var Setup $setup */
			$setup = $this->getContainer()->query('UserSetup');
			$setup->setupSystem();
		}
	}

	/**
	 * register hooks
	 */
	public function registerHooks() {
		if (!$this->config->getSystemValueBool('maintenance')) {

			$container = $this->getContainer();
			$server = $container->getServer();
			// Register our hooks and fire them.
			$hookManager = new HookManager();

			$hookManager->registerHook([
				new UserHooks($container->query('KeyManager'),
					$server->getUserManager(),
					$server->getLogger(),
					$container->query('UserSetup'),
					$server->getUserSession(),
					$container->query('Util'),
					$container->query('Session'),
					$container->query('Crypt'),
					$container->query('Recovery'))
			]);

			$hookManager->fireHooks();

		} else {
			// Logout user if we are in maintenance to force re-login
			$this->getContainer()->getServer()->getUserSession()->logout();
		}
	}

	public function registerEncryptionModule() {
		$container = $this->getContainer();


		$this->encryptionManager->registerEncryptionModule(
			Encryption::ID,
			Encryption::DISPLAY_NAME,
			function() use ($container) {

			return new Encryption(
				$container->query('Crypt'),
				$container->query('KeyManager'),
				$container->query('Util'),
				$container->query('Session'),
				$container->query('EncryptAll'),
				$container->query('DecryptAll'),
				$container->getServer()->getLogger(),
				$container->getServer()->getL10N($container->getAppName())
			);
		});

	}

	public function registerServices() {
		$container = $this->getContainer();

		$container->registerService('Crypt',
			function (IAppContainer $c) {
				$server = $c->getServer();
				return new Crypt($server->getLogger(),
					$server->getUserSession(),
					$server->getConfig(),
					$server->getL10N($c->getAppName()));
			});

		$container->registerService('Session',
			function (IAppContainer $c) {
				$server = $c->getServer();
				return new Session($server->getSession());
			}
		);

		$container->registerService('KeyManager',
			function (IAppContainer $c) {
				$server = $c->getServer();

				return new KeyManager($server->getEncryptionKeyStorage(),
					$c->query('Crypt'),
					$server->getConfig(),
					$server->getUserSession(),
					new Session($server->getSession()),
					$server->getLogger(),
					$c->query('Util')
				);
			});

		$container->registerService('Recovery',
			function (IAppContainer $c) {
				$server = $c->getServer();

				return new Recovery(
					$server->getUserSession(),
					$c->query('Crypt'),
					$c->query('KeyManager'),
					$server->getConfig(),
					$server->getEncryptionFilesHelper(),
					new View());
			});

		$container->registerService('RecoveryController', function (IAppContainer $c) {
			$server = $c->getServer();
			return new RecoveryController(
				$c->getAppName(),
				$server->getRequest(),
				$server->getConfig(),
				$server->getL10N($c->getAppName()),
				$c->query('Recovery'));
		});

		$container->registerService('StatusController', function (IAppContainer $c) {
			$server = $c->getServer();
			return new StatusController(
				$c->getAppName(),
				$server->getRequest(),
				$server->getL10N($c->getAppName()),
				$c->query('Session'),
				$server->getEncryptionManager()
			);
		});

		$container->registerService('SettingsController', function (IAppContainer $c) {
			$server = $c->getServer();
			return new SettingsController(
				$c->getAppName(),
				$server->getRequest(),
				$server->getL10N($c->getAppName()),
				$server->getUserManager(),
				$server->getUserSession(),
				$c->query('KeyManager'),
				$c->query('Crypt'),
				$c->query('Session'),
				$server->getSession(),
				$c->query('Util')
			);
		});

		$container->registerService('UserSetup',
			function (IAppContainer $c) {
				$server = $c->getServer();
				return new Setup($server->getLogger(),
					$server->getUserSession(),
					$c->query('Crypt'),
					$c->query('KeyManager'));
			});

		$container->registerService('Util',
			function (IAppContainer $c) {
				$server = $c->getServer();

				return new Util(
					new View(),
					$c->query('Crypt'),
					$server->getLogger(),
					$server->getUserSession(),
					$server->getConfig(),
					$server->getUserManager());
			});

		$container->registerService('EncryptAll',
			function (IAppContainer $c) {
				$server = $c->getServer();
				return new EncryptAll(
					$c->query('UserSetup'),
					$c->getServer()->getUserManager(),
					new View(),
					$c->query('KeyManager'),
					$c->query('Util'),
					$server->getConfig(),
					$server->getMailer(),
					$server->getL10N('encryption'),
					new QuestionHelper(),
					$server->getSecureRandom()
				);
			}
		);

		$container->registerService('DecryptAll',
			function (IAppContainer $c) {
				return new DecryptAll(
					$c->query('Util'),
					$c->query('KeyManager'),
					$c->query('Crypt'),
					$c->query('Session'),
					new QuestionHelper()
				);
			}
		);

	}
}
Initial commit 2015-02-24 21:05:19 +03:00			`<?php`
			`/**`
Fix apps/ 2016-07-21 17:49:16 +03:00			`* @copyright Copyright (c) 2016, ownCloud, Inc.`
			`*`
Update license headers Signed-off-by: Morris Jobke <hey@morrisjobke.de> 2017-11-06 17:56:42 +03:00			`* @author Bjoern Schiessle <bjoern@schiessle.org>`
Update license headers 2016-05-26 20:56:05 +03:00			`* @author Björn Schießle <bjoern@schiessle.org>`
Update the license headers for Nextcloud 19 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2020-03-31 11:49:10 +03:00			`* @author Christoph Wurst <christoph@winzerhof-wurst.at>`
fixing license headers - encryption code related 2015-04-07 18:02:49 +03:00			`* @author Clark Tomlinson <fallen013@gmail.com>`
Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2019-12-03 21:57:53 +03:00			`* @author Joas Schilling <coding@schilljs.com>`
			`* @author Roeland Jago Douma <roeland@famdouma.nl>`
update license headers and authors 2015-06-25 12:43:55 +03:00			`* @author Thomas Müller <thomas.mueller@tmit.eu>`
fixing license headers - encryption code related 2015-04-07 18:02:49 +03:00			`*`
Initial commit 2015-02-24 21:05:19 +03:00			`* @license AGPL-3.0`
			`*`
			`* This code is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU Affero General Public License, version 3,`
			`* as published by the Free Software Foundation.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU Affero General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Affero General Public License, version 3,`
Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2019-12-03 21:57:53 +03:00			`* along with this program. If not, see <http://www.gnu.org/licenses/>`
Initial commit 2015-02-24 21:05:19 +03:00			`*`
			`*/`
Some php-cs fixes * Order the imports * No leading slash on imports * Empty line before namespace * One line per import * Empty after imports * Emmpty line at bottom of file Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2019-11-22 22:52:10 +03:00
Initial commit 2015-02-24 21:05:19 +03:00			`namespace OCA\Encryption\AppInfo;`

Updating keystorage movement and fixing hooks 2015-03-25 00:29:10 +03:00			`use OC\Files\View;`
add $encryptionModuleId to methods of Keys/IStorage 2015-04-22 12:18:18 +03:00			`use OCA\Encryption\Controller\RecoveryController;`
			`use OCA\Encryption\Controller\SettingsController;`
			`use OCA\Encryption\Controller\StatusController;`
Initial commit 2015-02-24 21:05:19 +03:00			`use OCA\Encryption\Crypto\Crypt;`
occ script to disable encryption and to decrypt all files again 2015-08-24 13:03:53 +03:00			`use OCA\Encryption\Crypto\DecryptAll;`
occ tool to encrypt all files 2015-08-24 16:56:04 +03:00			`use OCA\Encryption\Crypto\EncryptAll;`
always create a new instance of the encryption module 2015-04-14 17:48:39 +03:00			`use OCA\Encryption\Crypto\Encryption;`
Initial commit 2015-02-24 21:05:19 +03:00			`use OCA\Encryption\HookManager;`
			`use OCA\Encryption\Hooks\UserHooks;`
			`use OCA\Encryption\KeyManager;`
			`use OCA\Encryption\Recovery;`
display warning if password changed or if the keys are not initialized 2015-04-16 14:47:27 +03:00			`use OCA\Encryption\Session;`
Initial commit 2015-02-24 21:05:19 +03:00			`use OCA\Encryption\Users\Setup;`
Updating keystorage movement and fixing hooks 2015-03-25 00:29:10 +03:00			`use OCA\Encryption\Util;`
Initial commit 2015-02-24 21:05:19 +03:00			`use OCP\AppFramework\IAppContainer;`
			`use OCP\Encryption\IManager;`
			`use OCP\IConfig;`
occ tool to encrypt all files 2015-08-24 16:56:04 +03:00			`use Symfony\Component\Console\Helper\QuestionHelper;`
Initial commit 2015-02-24 21:05:19 +03:00
make recovery settings work 2015-03-30 12:49:03 +03:00			`class Application extends \OCP\AppFramework\App {`
add migration script from old encryption to new one 2015-04-07 19:05:54 +03:00
			`/** @var IManager */`
Initial commit 2015-02-24 21:05:19 +03:00			`private $encryptionManager;`
add migration script from old encryption to new one 2015-04-07 19:05:54 +03:00			`/** @var IConfig */`
Initial commit 2015-02-24 21:05:19 +03:00			`private $config;`

			`/**`
			`* @param array $urlParams`
			`*/`
Use the short array syntax, everywhere Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2020-03-26 11:30:18 +03:00			`public function __construct($urlParams = []) {`
make recovery settings work 2015-03-30 12:49:03 +03:00			`parent::__construct('encryption', $urlParams);`
			`$this->encryptionManager = \OC::$server->getEncryptionManager();`
			`$this->config = \OC::$server->getConfig();`
Initial commit 2015-02-24 21:05:19 +03:00			`$this->registerServices();`
after the master key was loaded we are ready to go, no re-login needed Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 13:54:58 +03:00			`}`

			`public function setUp() {`
			`if ($this->encryptionManager->isEnabled()) {`
only create and update user specific key if no master key is enabled 2016-03-02 15:58:06 +03:00			`/** @var Setup $setup */`
			`$setup = $this->getContainer()->query('UserSetup');`
			`$setup->setupSystem();`
			`}`
Initial commit 2015-02-24 21:05:19 +03:00			`}`

add migration script from old encryption to new one 2015-04-07 19:05:54 +03:00			`/**`
			`* register hooks`
			`*/`
Initial commit 2015-02-24 21:05:19 +03:00			`public function registerHooks() {`
Make sure maintenance mode is always casted to bool Signed-off-by: Joas Schilling <coding@schilljs.com> 2019-02-06 19:08:41 +03:00			`if (!$this->config->getSystemValueBool('maintenance')) {`
Initial commit 2015-02-24 21:05:19 +03:00
			`$container = $this->getContainer();`
			`$server = $container->getServer();`
			`// Register our hooks and fire them.`
			`$hookManager = new HookManager();`

			`$hookManager->registerHook([`
cleanup and removing cachefactory 2015-03-27 03:35:36 +03:00			`new UserHooks($container->query('KeyManager'),`
check for the right user if we can change his password 2015-09-11 22:18:13 +03:00			`$server->getUserManager(),`
cleanup and removing cachefactory 2015-03-27 03:35:36 +03:00			`$server->getLogger(),`
			`$container->query('UserSetup'),`
			`$server->getUserSession(),`
fix parameter declaration and class initialisation 2015-03-30 11:43:37 +03:00			`$container->query('Util'),`
display warning if password changed or if the keys are not initialized 2015-04-16 14:47:27 +03:00			`$container->query('Session'),`
make recovery key work 2015-04-01 15:24:56 +03:00			`$container->query('Crypt'),`
use password change logic to userhooks to avoid recursions 2015-03-31 13:01:51 +03:00			`$container->query('Recovery'))`
Initial commit 2015-02-24 21:05:19 +03:00			`]);`

			`$hookManager->fireHooks();`

			`} else {`
			`// Logout user if we are in maintenance to force re-login`
			`$this->getContainer()->getServer()->getUserSession()->logout();`
			`}`
			`}`

			`public function registerEncryptionModule() {`
fixing obvious bugs while testing 2015-03-26 11:32:08 +03:00			`$container = $this->getContainer();`
always create a new instance of the encryption module 2015-04-14 17:48:39 +03:00
skip user if we don't have a public key 2015-04-13 16:56:36 +03:00
always create a new instance of the encryption module 2015-04-14 17:48:39 +03:00			`$this->encryptionManager->registerEncryptionModule(`
			`Encryption::ID,`
			`Encryption::DISPLAY_NAME,`
			`function() use ($container) {`
skip user if we don't have a public key 2015-04-13 16:56:36 +03:00
always create a new instance of the encryption module 2015-04-14 17:48:39 +03:00			`return new Encryption(`
			`$container->query('Crypt'),`
			`$container->query('KeyManager'),`
skip update of encryption keys if file is not encrypted 2015-04-28 18:29:10 +03:00			`$container->query('Util'),`
occ script to disable encryption and to decrypt all files again 2015-08-24 13:03:53 +03:00			`$container->query('Session'),`
occ tool to encrypt all files 2015-08-24 16:56:04 +03:00			`$container->query('EncryptAll'),`
occ script to disable encryption and to decrypt all files again 2015-08-24 13:03:53 +03:00			`$container->query('DecryptAll'),`
add l10n to constructor 2015-05-18 14:09:36 +03:00			`$container->getServer()->getLogger(),`
			`$container->getServer()->getL10N($container->getAppName())`
always create a new instance of the encryption module 2015-04-14 17:48:39 +03:00			`);`
fixing obvious bugs while testing 2015-03-26 11:32:08 +03:00			`});`
skip user if we don't have a public key 2015-04-13 16:56:36 +03:00
Initial commit 2015-02-24 21:05:19 +03:00			`}`

			`public function registerServices() {`
			`$container = $this->getContainer();`

			`$container->registerService('Crypt',`
			`function (IAppContainer $c) {`
			`$server = $c->getServer();`
			`return new Crypt($server->getLogger(),`
			`$server->getUserSession(),`
sign all encrypted blocks and check signature on decrypt 2016-01-05 14:51:05 +03:00			`$server->getConfig(),`
			`$server->getL10N($c->getAppName()));`
Initial commit 2015-02-24 21:05:19 +03:00			`});`

display warning if password changed or if the keys are not initialized 2015-04-16 14:47:27 +03:00			`$container->registerService('Session',`
			`function (IAppContainer $c) {`
			`$server = $c->getServer();`
			`return new Session($server->getSession());`
			`}`
			`);`

Initial commit 2015-02-24 21:05:19 +03:00			`$container->registerService('KeyManager',`
			`function (IAppContainer $c) {`
			`$server = $c->getServer();`

add $encryptionModuleId to methods of Keys/IStorage 2015-04-22 12:18:18 +03:00			`return new KeyManager($server->getEncryptionKeyStorage(),`
Initial commit 2015-02-24 21:05:19 +03:00			`$c->query('Crypt'),`
			`$server->getConfig(),`
Updating keystorage movement and fixing hooks 2015-03-25 00:29:10 +03:00			`$server->getUserSession(),`
add $encryptionModuleId to methods of Keys/IStorage 2015-04-22 12:18:18 +03:00			`new Session($server->getSession()),`
let user enable recovery key 2015-03-31 18:13:36 +03:00			`$server->getLogger(),`
			`$c->query('Util')`
Updating keystorage movement and fixing hooks 2015-03-25 00:29:10 +03:00			`);`
Initial commit 2015-02-24 21:05:19 +03:00			`});`

			`$container->registerService('Recovery',`
			`function (IAppContainer $c) {`
			`$server = $c->getServer();`

			`return new Recovery(`
			`$server->getUserSession(),`
			`$c->query('Crypt'),`
			`$c->query('KeyManager'),`
			`$server->getConfig(),`
add helper class accessible for encryption modules to ask for a list of users with access to a file, needed to apply the recovery key to all files 2015-03-31 17:23:31 +03:00			`$server->getEncryptionFilesHelper(),`
add $encryptionModuleId to methods of Keys/IStorage 2015-04-22 12:18:18 +03:00			`new View());`
Initial commit 2015-02-24 21:05:19 +03:00			`});`

display warning if password changed or if the keys are not initialized 2015-04-16 14:47:27 +03:00			`$container->registerService('RecoveryController', function (IAppContainer $c) {`
make recovery settings work 2015-03-30 12:49:03 +03:00			`$server = $c->getServer();`
add $encryptionModuleId to methods of Keys/IStorage 2015-04-22 12:18:18 +03:00			`return new RecoveryController(`
make recovery settings work 2015-03-30 12:49:03 +03:00			`$c->getAppName(),`
			`$server->getRequest(),`
			`$server->getConfig(),`
			`$server->getL10N($c->getAppName()),`
			`$c->query('Recovery'));`
			`});`

display warning if password changed or if the keys are not initialized 2015-04-16 14:47:27 +03:00			`$container->registerService('StatusController', function (IAppContainer $c) {`
			`$server = $c->getServer();`
add $encryptionModuleId to methods of Keys/IStorage 2015-04-22 12:18:18 +03:00			`return new StatusController(`
display warning if password changed or if the keys are not initialized 2015-04-16 14:47:27 +03:00			`$c->getAppName(),`
			`$server->getRequest(),`
			`$server->getL10N($c->getAppName()),`
improve status messages Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 14:22:27 +03:00			`$c->query('Session'),`
			`$server->getEncryptionManager()`
display warning if password changed or if the keys are not initialized 2015-04-16 14:47:27 +03:00			`);`
			`});`

let user update the private key password in case the login password was changed from outside 2015-04-16 16:42:13 +03:00			`$container->registerService('SettingsController', function (IAppContainer $c) {`
			`$server = $c->getServer();`
add $encryptionModuleId to methods of Keys/IStorage 2015-04-22 12:18:18 +03:00			`return new SettingsController(`
let user update the private key password in case the login password was changed from outside 2015-04-16 16:42:13 +03:00			`$c->getAppName(),`
			`$server->getRequest(),`
			`$server->getL10N($c->getAppName()),`
			`$server->getUserManager(),`
			`$server->getUserSession(),`
			`$c->query('KeyManager'),`
			`$c->query('Crypt'),`
use login name for password reset 2015-08-25 16:05:55 +03:00			`$c->query('Session'),`
make encryption configurable for home storage 2015-10-13 18:54:06 +03:00			`$server->getSession(),`
			`$c->query('Util')`
let user update the private key password in case the login password was changed from outside 2015-04-16 16:42:13 +03:00			`);`
			`});`

Initial commit 2015-02-24 21:05:19 +03:00			`$container->registerService('UserSetup',`
			`function (IAppContainer $c) {`
			`$server = $c->getServer();`
			`return new Setup($server->getLogger(),`
			`$server->getUserSession(),`
			`$c->query('Crypt'),`
			`$c->query('KeyManager'));`
			`});`

Updating keystorage movement and fixing hooks 2015-03-25 00:29:10 +03:00			`$container->registerService('Util',`
			`function (IAppContainer $c) {`
			`$server = $c->getServer();`

let user enable recovery key 2015-03-31 18:13:36 +03:00			`return new Util(`
			`new View(),`
			`$c->query('Crypt'),`
			`$server->getLogger(),`
			`$server->getUserSession(),`
a new approach to display the error message 2015-05-12 19:49:25 +03:00			`$server->getConfig(),`
			`$server->getUserManager());`
Updating keystorage movement and fixing hooks 2015-03-25 00:29:10 +03:00			`});`

occ tool to encrypt all files 2015-08-24 16:56:04 +03:00			`$container->registerService('EncryptAll',`
			`function (IAppContainer $c) {`
			`$server = $c->getServer();`
			`return new EncryptAll(`
			`$c->query('UserSetup'),`
			`$c->getServer()->getUserManager(),`
			`new View(),`
			`$c->query('KeyManager'),`
don't create a private-/public-key pair for each user if the master key is enabled 2016-03-02 13:16:53 +03:00			`$c->query('Util'),`
occ tool to encrypt all files 2015-08-24 16:56:04 +03:00			`$server->getConfig(),`
			`$server->getMailer(),`
			`$server->getL10N('encryption'),`
			`new QuestionHelper(),`
			`$server->getSecureRandom()`
			`);`
			`}`
			`);`

occ script to disable encryption and to decrypt all files again 2015-08-24 13:03:53 +03:00			`$container->registerService('DecryptAll',`
			`function (IAppContainer $c) {`
			`return new DecryptAll(`
			`$c->query('Util'),`
			`$c->query('KeyManager'),`
			`$c->query('Crypt'),`
			`$c->query('Session'),`
			`new QuestionHelper()`
			`);`
			`}`
			`);`

Initial commit 2015-02-24 21:05:19 +03:00			`}`
			`}`