2010-07-15 16:09:22 +04:00
|
|
|
<?php
|
|
|
|
/**
|
2015-03-26 13:44:34 +03:00
|
|
|
* @author adrien <adrien.waksberg@believedigital.com>
|
|
|
|
* @author Aldo "xoen" Giambelluca <xoen@xoen.org>
|
|
|
|
* @author Arthur Schiwon <blizzz@owncloud.com>
|
|
|
|
* @author Bart Visscher <bartv@thisnet.nl>
|
|
|
|
* @author Björn Schießle <schiessle@owncloud.com>
|
|
|
|
* @author fabian <fabian@web2.0-apps.de>
|
|
|
|
* @author Georg Ehrke <georg@owncloud.com>
|
|
|
|
* @author Jakob Sack <mail@jakobsack.de>
|
2015-06-25 12:43:55 +03:00
|
|
|
* @author Joas Schilling <nickvergessen@owncloud.com>
|
2015-03-26 13:44:34 +03:00
|
|
|
* @author Jörn Friedrich Dreyer <jfd@butonic.de>
|
|
|
|
* @author Lukas Reschke <lukas@owncloud.com>
|
|
|
|
* @author Michael Gapczynski <GapczynskiM@gmail.com>
|
|
|
|
* @author Morris Jobke <hey@morrisjobke.de>
|
|
|
|
* @author nishiki <nishiki@yaegashi.fr>
|
|
|
|
* @author Robin Appelman <icewind@owncloud.com>
|
|
|
|
* @author Robin McCorkell <rmccorkell@karoshi.org.uk>
|
|
|
|
* @author Thomas Müller <thomas.mueller@tmit.eu>
|
|
|
|
* @author Victor Dubiniuk <dubiniuk@owncloud.com>
|
2011-04-15 19:14:02 +04:00
|
|
|
*
|
2015-03-26 13:44:34 +03:00
|
|
|
* @copyright Copyright (c) 2015, ownCloud, Inc.
|
|
|
|
* @license AGPL-3.0
|
2011-04-15 19:14:02 +04:00
|
|
|
*
|
2015-03-26 13:44:34 +03:00
|
|
|
* This code is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU Affero General Public License, version 3,
|
|
|
|
* as published by the Free Software Foundation.
|
2011-04-15 19:14:02 +04:00
|
|
|
*
|
2015-03-26 13:44:34 +03:00
|
|
|
* This program is distributed in the hope that it will be useful,
|
2011-04-15 19:14:02 +04:00
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
2015-03-26 13:44:34 +03:00
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU Affero General Public License for more details.
|
2015-02-26 13:37:37 +03:00
|
|
|
*
|
2015-03-26 13:44:34 +03:00
|
|
|
* You should have received a copy of the GNU Affero General Public License, version 3,
|
|
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>
|
2015-02-26 13:37:37 +03:00
|
|
|
*
|
|
|
|
*/
|
|
|
|
/*
|
2011-04-15 19:14:02 +04:00
|
|
|
*
|
2015-02-26 13:37:37 +03:00
|
|
|
* The following SQL statement is just a help for developers and will not be
|
|
|
|
* executed!
|
2011-04-15 19:14:02 +04:00
|
|
|
*
|
2015-02-26 13:37:37 +03:00
|
|
|
* CREATE TABLE `users` (
|
|
|
|
* `uid` varchar(64) COLLATE utf8_unicode_ci NOT NULL,
|
|
|
|
* `password` varchar(255) COLLATE utf8_unicode_ci NOT NULL,
|
|
|
|
* PRIMARY KEY (`uid`)
|
|
|
|
* ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;
|
|
|
|
*
|
|
|
|
*/
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Class for user management in a SQL Database (e.g. MySQL, SQLite)
|
2010-07-15 16:09:22 +04:00
|
|
|
*/
|
2014-12-12 19:25:03 +03:00
|
|
|
class OC_User_Database extends OC_User_Backend implements \OCP\IUserBackend {
|
2014-03-11 14:56:46 +04:00
|
|
|
private $cache = array();
|
2012-08-29 10:38:33 +04:00
|
|
|
|
2010-07-15 16:09:22 +04:00
|
|
|
/**
|
2014-05-19 19:50:53 +04:00
|
|
|
* Create a new user
|
2014-05-12 00:51:30 +04:00
|
|
|
* @param string $uid The username of the user to create
|
|
|
|
* @param string $password The password of the new user
|
|
|
|
* @return bool
|
2010-07-23 01:42:18 +04:00
|
|
|
*
|
2011-07-29 23:36:03 +04:00
|
|
|
* Creates a new user. Basic checking of username is done in OC_User
|
2011-04-18 13:39:29 +04:00
|
|
|
* itself, not in its subclasses.
|
2010-07-23 01:42:18 +04:00
|
|
|
*/
|
2013-12-11 19:22:26 +04:00
|
|
|
public function createUser($uid, $password) {
|
2014-03-07 01:34:43 +04:00
|
|
|
if (!$this->userExists($uid)) {
|
2013-12-11 19:22:26 +04:00
|
|
|
$query = OC_DB::prepare('INSERT INTO `*PREFIX*users` ( `uid`, `password` ) VALUES( ?, ? )');
|
2014-11-06 17:42:06 +03:00
|
|
|
$result = $query->execute(array($uid, \OC::$server->getHasher()->hash($password)));
|
2011-04-15 19:14:02 +04:00
|
|
|
|
2010-07-23 01:42:18 +04:00
|
|
|
return $result ? true : false;
|
2010-07-15 21:56:13 +04:00
|
|
|
}
|
2014-03-07 01:34:43 +04:00
|
|
|
|
|
|
|
return false;
|
2010-07-21 19:53:51 +04:00
|
|
|
}
|
2010-07-23 01:42:18 +04:00
|
|
|
|
2011-04-17 03:04:23 +04:00
|
|
|
/**
|
2014-05-19 19:50:53 +04:00
|
|
|
* delete a user
|
2014-05-12 00:51:30 +04:00
|
|
|
* @param string $uid The username of the user to delete
|
|
|
|
* @return bool
|
2011-04-17 03:04:23 +04:00
|
|
|
*
|
2011-04-18 12:41:01 +04:00
|
|
|
* Deletes a user
|
2011-04-17 03:04:23 +04:00
|
|
|
*/
|
2013-12-11 19:22:26 +04:00
|
|
|
public function deleteUser($uid) {
|
2011-04-18 12:41:01 +04:00
|
|
|
// Delete user-group-relation
|
2013-12-11 19:22:26 +04:00
|
|
|
$query = OC_DB::prepare('DELETE FROM `*PREFIX*users` WHERE `uid` = ?');
|
2014-03-09 15:22:47 +04:00
|
|
|
$result = $query->execute(array($uid));
|
|
|
|
|
2014-03-11 19:58:10 +04:00
|
|
|
if (isset($this->cache[$uid])) {
|
|
|
|
unset($this->cache[$uid]);
|
2014-03-10 20:27:51 +04:00
|
|
|
}
|
|
|
|
|
2014-03-11 19:58:10 +04:00
|
|
|
return $result ? true : false;
|
2011-04-17 03:04:23 +04:00
|
|
|
}
|
|
|
|
|
2010-07-15 16:09:22 +04:00
|
|
|
/**
|
2014-05-19 19:50:53 +04:00
|
|
|
* Set password
|
2014-05-12 00:51:30 +04:00
|
|
|
* @param string $uid The username
|
|
|
|
* @param string $password The new password
|
|
|
|
* @return bool
|
2010-07-23 01:42:18 +04:00
|
|
|
*
|
2011-04-18 12:41:01 +04:00
|
|
|
* Change the password of a user
|
2010-07-23 01:42:18 +04:00
|
|
|
*/
|
2013-12-11 19:22:26 +04:00
|
|
|
public function setPassword($uid, $password) {
|
|
|
|
if ($this->userExists($uid)) {
|
|
|
|
$query = OC_DB::prepare('UPDATE `*PREFIX*users` SET `password` = ? WHERE `uid` = ?');
|
2014-11-06 17:42:06 +03:00
|
|
|
$result = $query->execute(array(\OC::$server->getHasher()->hash($password), $uid));
|
2011-04-18 12:41:01 +04:00
|
|
|
|
2014-03-09 15:22:47 +04:00
|
|
|
return $result ? true : false;
|
2011-04-18 17:07:14 +04:00
|
|
|
}
|
2014-03-07 11:46:34 +04:00
|
|
|
|
|
|
|
return false;
|
2010-07-15 16:09:22 +04:00
|
|
|
}
|
2013-02-22 20:21:57 +04:00
|
|
|
|
2013-02-12 01:01:52 +04:00
|
|
|
/**
|
2014-05-19 19:50:53 +04:00
|
|
|
* Set display name
|
2014-05-12 00:51:30 +04:00
|
|
|
* @param string $uid The username
|
|
|
|
* @param string $displayName The new display name
|
|
|
|
* @return bool
|
2013-02-12 01:01:52 +04:00
|
|
|
*
|
|
|
|
* Change the display name of a user
|
2013-01-28 17:23:15 +04:00
|
|
|
*/
|
2013-12-11 19:22:26 +04:00
|
|
|
public function setDisplayName($uid, $displayName) {
|
|
|
|
if ($this->userExists($uid)) {
|
2014-04-14 22:49:46 +04:00
|
|
|
$query = OC_DB::prepare('UPDATE `*PREFIX*users` SET `displayname` = ? WHERE LOWER(`uid`) = LOWER(?)');
|
2013-12-11 19:22:26 +04:00
|
|
|
$query->execute(array($displayName, $uid));
|
2014-03-11 14:56:46 +04:00
|
|
|
$this->cache[$uid]['displayname'] = $displayName;
|
|
|
|
|
2013-02-12 01:01:52 +04:00
|
|
|
return true;
|
|
|
|
}
|
2014-03-07 01:34:43 +04:00
|
|
|
|
|
|
|
return false;
|
2013-01-28 17:23:15 +04:00
|
|
|
}
|
2010-07-19 20:52:49 +04:00
|
|
|
|
2013-02-12 01:01:52 +04:00
|
|
|
/**
|
2014-05-19 19:50:53 +04:00
|
|
|
* get display name of the user
|
2014-05-12 00:51:30 +04:00
|
|
|
* @param string $uid user ID of the user
|
2013-12-11 19:22:26 +04:00
|
|
|
* @return string display name
|
2013-02-12 01:01:52 +04:00
|
|
|
*/
|
|
|
|
public function getDisplayName($uid) {
|
2014-03-06 20:57:09 +04:00
|
|
|
$this->loadUser($uid);
|
2014-03-11 14:56:46 +04:00
|
|
|
return empty($this->cache[$uid]['displayname']) ? $uid : $this->cache[$uid]['displayname'];
|
2013-01-28 18:07:31 +04:00
|
|
|
}
|
2013-02-22 20:21:57 +04:00
|
|
|
|
2013-02-12 01:01:52 +04:00
|
|
|
/**
|
|
|
|
* Get a list of all display names and user ids.
|
2015-06-27 21:35:47 +03:00
|
|
|
*
|
|
|
|
* @param string $search
|
|
|
|
* @param string|null $limit
|
|
|
|
* @param string|null $offset
|
|
|
|
* @return array an array of all displayNames (value) and the corresponding uids (key)
|
2013-02-12 01:01:52 +04:00
|
|
|
*/
|
2013-01-28 18:07:31 +04:00
|
|
|
public function getDisplayNames($search = '', $limit = null, $offset = null) {
|
2015-05-18 17:38:56 +03:00
|
|
|
$parameters = [];
|
|
|
|
$searchLike = '';
|
|
|
|
if ($search !== '') {
|
|
|
|
$parameters[] = '%' . $search . '%';
|
|
|
|
$parameters[] = '%' . $search . '%';
|
|
|
|
$searchLike = ' WHERE LOWER(`displayname`) LIKE LOWER(?) OR '
|
|
|
|
. 'LOWER(`uid`) LIKE LOWER(?)';
|
|
|
|
}
|
|
|
|
|
2013-01-28 18:07:31 +04:00
|
|
|
$displayNames = array();
|
2013-02-11 20:44:02 +04:00
|
|
|
$query = OC_DB::prepare('SELECT `uid`, `displayname` FROM `*PREFIX*users`'
|
2015-05-18 17:38:56 +03:00
|
|
|
. $searchLike .' ORDER BY `uid` ASC', $limit, $offset);
|
|
|
|
$result = $query->execute($parameters);
|
2013-02-12 01:01:52 +04:00
|
|
|
while ($row = $result->fetchRow()) {
|
|
|
|
$displayNames[$row['uid']] = $row['displayname'];
|
2013-01-31 15:09:42 +04:00
|
|
|
}
|
2013-02-22 20:21:57 +04:00
|
|
|
|
2013-02-12 01:01:52 +04:00
|
|
|
return $displayNames;
|
2013-01-28 18:07:31 +04:00
|
|
|
}
|
2013-02-22 20:21:57 +04:00
|
|
|
|
2010-07-15 16:09:22 +04:00
|
|
|
/**
|
2014-05-19 19:50:53 +04:00
|
|
|
* Check if the password is correct
|
2014-05-12 00:51:30 +04:00
|
|
|
* @param string $uid The username
|
|
|
|
* @param string $password The password
|
2014-05-11 21:05:28 +04:00
|
|
|
* @return string
|
2010-07-23 01:42:18 +04:00
|
|
|
*
|
2011-04-18 12:41:01 +04:00
|
|
|
* Check if the password is correct without logging in the user
|
2012-05-17 02:57:43 +04:00
|
|
|
* returns the user id or false
|
2010-07-23 01:42:18 +04:00
|
|
|
*/
|
2013-12-11 19:22:26 +04:00
|
|
|
public function checkPassword($uid, $password) {
|
|
|
|
$query = OC_DB::prepare('SELECT `uid`, `password` FROM `*PREFIX*users` WHERE LOWER(`uid`) = LOWER(?)');
|
|
|
|
$result = $query->execute(array($uid));
|
2010-07-15 16:09:22 +04:00
|
|
|
|
2013-12-11 19:22:26 +04:00
|
|
|
$row = $result->fetchRow();
|
|
|
|
if ($row) {
|
|
|
|
$storedHash = $row['password'];
|
2014-11-06 17:42:06 +03:00
|
|
|
$newHash = '';
|
|
|
|
if(\OC::$server->getHasher()->verify($password, $storedHash, $newHash)) {
|
|
|
|
if(!empty($newHash)) {
|
|
|
|
$this->setPassword($uid, $password);
|
2012-02-26 16:49:51 +04:00
|
|
|
}
|
2014-03-06 20:57:09 +04:00
|
|
|
return $row['uid'];
|
2012-02-26 16:49:51 +04:00
|
|
|
}
|
2014-11-06 17:42:06 +03:00
|
|
|
|
2010-07-15 16:09:22 +04:00
|
|
|
}
|
2014-03-06 20:57:09 +04:00
|
|
|
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2014-05-19 19:50:53 +04:00
|
|
|
* Load an user in the cache
|
2014-03-07 01:23:17 +04:00
|
|
|
* @param string $uid the username
|
2014-05-11 21:05:28 +04:00
|
|
|
* @return boolean
|
2014-03-06 20:57:09 +04:00
|
|
|
*/
|
2014-03-11 14:56:46 +04:00
|
|
|
private function loadUser($uid) {
|
|
|
|
if (empty($this->cache[$uid])) {
|
2014-03-06 20:57:09 +04:00
|
|
|
$query = OC_DB::prepare('SELECT `uid`, `displayname` FROM `*PREFIX*users` WHERE LOWER(`uid`) = LOWER(?)');
|
|
|
|
$result = $query->execute(array($uid));
|
|
|
|
|
|
|
|
if (OC_DB::isError($result)) {
|
2015-07-03 15:06:40 +03:00
|
|
|
\OCP\Util::writeLog('core', OC_DB::getErrorMessage(), \OCP\Util::ERROR);
|
2014-03-06 20:57:09 +04:00
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
while ($row = $result->fetchRow()) {
|
2014-03-11 14:56:46 +04:00
|
|
|
$this->cache[$uid]['uid'] = $row['uid'];
|
|
|
|
$this->cache[$uid]['displayname'] = $row['displayname'];
|
2012-02-26 16:49:51 +04:00
|
|
|
}
|
2010-07-15 16:09:22 +04:00
|
|
|
}
|
2014-03-06 20:57:09 +04:00
|
|
|
|
|
|
|
return true;
|
2010-07-15 16:09:22 +04:00
|
|
|
}
|
|
|
|
|
2010-09-12 19:04:52 +04:00
|
|
|
/**
|
2014-05-19 19:50:53 +04:00
|
|
|
* Get a list of all users
|
2010-09-12 19:04:52 +04:00
|
|
|
*
|
2015-06-27 21:35:47 +03:00
|
|
|
* @param string $search
|
|
|
|
* @param null|int $limit
|
|
|
|
* @param null|int $offset
|
|
|
|
* @return string[] an array of all uids
|
2010-09-12 19:04:52 +04:00
|
|
|
*/
|
2012-08-25 02:05:07 +04:00
|
|
|
public function getUsers($search = '', $limit = null, $offset = null) {
|
2015-05-18 17:38:56 +03:00
|
|
|
$parameters = [];
|
|
|
|
$searchLike = '';
|
|
|
|
if ($search !== '') {
|
|
|
|
$parameters[] = '%' . $search . '%';
|
|
|
|
$searchLike = ' WHERE LOWER(`uid`) LIKE LOWER(?)';
|
|
|
|
}
|
|
|
|
|
|
|
|
$query = OC_DB::prepare('SELECT `uid` FROM `*PREFIX*users`' . $searchLike . ' ORDER BY `uid` ASC', $limit, $offset);
|
|
|
|
$result = $query->execute($parameters);
|
2012-07-31 04:20:46 +04:00
|
|
|
$users = array();
|
|
|
|
while ($row = $result->fetchRow()) {
|
|
|
|
$users[] = $row['uid'];
|
2010-09-12 19:04:52 +04:00
|
|
|
}
|
|
|
|
return $users;
|
|
|
|
}
|
2011-06-21 21:28:46 +04:00
|
|
|
|
|
|
|
/**
|
2014-05-19 19:50:53 +04:00
|
|
|
* check if a user exists
|
2011-06-21 21:28:46 +04:00
|
|
|
* @param string $uid the username
|
|
|
|
* @return boolean
|
|
|
|
*/
|
2012-09-07 17:22:01 +04:00
|
|
|
public function userExists($uid) {
|
2014-03-06 20:57:09 +04:00
|
|
|
$this->loadUser($uid);
|
2014-03-11 14:56:46 +04:00
|
|
|
return !empty($this->cache[$uid]);
|
2011-06-21 21:28:46 +04:00
|
|
|
}
|
2012-08-26 18:24:25 +04:00
|
|
|
|
|
|
|
/**
|
2014-05-19 19:50:53 +04:00
|
|
|
* get the user's home directory
|
2013-12-11 19:22:26 +04:00
|
|
|
* @param string $uid the username
|
2014-02-06 19:30:58 +04:00
|
|
|
* @return string|false
|
2013-12-11 19:22:26 +04:00
|
|
|
*/
|
2012-09-07 17:22:01 +04:00
|
|
|
public function getHome($uid) {
|
2013-12-11 19:22:26 +04:00
|
|
|
if ($this->userExists($uid)) {
|
|
|
|
return OC_Config::getValue("datadirectory", OC::$SERVERROOT . "/data") . '/' . $uid;
|
2012-08-26 18:24:25 +04:00
|
|
|
}
|
2014-03-06 20:57:09 +04:00
|
|
|
|
|
|
|
return false;
|
2012-08-26 18:24:25 +04:00
|
|
|
}
|
2013-02-12 01:01:52 +04:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function hasUserListings() {
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2014-01-08 02:05:37 +04:00
|
|
|
/**
|
|
|
|
* counts the users in the database
|
|
|
|
*
|
2014-05-11 21:28:45 +04:00
|
|
|
* @return int|bool
|
2014-01-08 02:05:37 +04:00
|
|
|
*/
|
|
|
|
public function countUsers() {
|
|
|
|
$query = OC_DB::prepare('SELECT COUNT(*) FROM `*PREFIX*users`');
|
|
|
|
$result = $query->execute();
|
|
|
|
if (OC_DB::isError($result)) {
|
2015-07-03 15:06:40 +03:00
|
|
|
\OCP\Util::writeLog('core', OC_DB::getErrorMessage(), \OCP\Util::ERROR);
|
2014-01-08 02:05:37 +04:00
|
|
|
return false;
|
|
|
|
}
|
|
|
|
return $result->fetchOne();
|
|
|
|
}
|
|
|
|
|
2014-12-12 19:25:03 +03:00
|
|
|
/**
|
|
|
|
* Backend name to be shown in user management
|
|
|
|
* @return string the name of the backend to be shown
|
|
|
|
*/
|
|
|
|
public function getBackendName(){
|
|
|
|
return 'Database';
|
|
|
|
}
|
|
|
|
|
2010-07-15 21:56:13 +04:00
|
|
|
}
|