2015-10-30 15:09:07 +03:00
|
|
|
<?php
|
|
|
|
/**
|
|
|
|
* @author Roeland Jago Douma <rullzer@owncloud.com>
|
|
|
|
*
|
|
|
|
* @copyright Copyright (c) 2015, ownCloud, Inc.
|
|
|
|
* @license AGPL-3.0
|
|
|
|
*
|
|
|
|
* This code is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU Affero General Public License, version 3,
|
|
|
|
* as published by the Free Software Foundation.
|
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU Affero General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU Affero General Public License, version 3,
|
|
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>
|
|
|
|
*
|
|
|
|
*/
|
|
|
|
namespace OC\Share20;
|
|
|
|
|
|
|
|
|
2015-12-15 11:54:12 +03:00
|
|
|
use OCP\IConfig;
|
2016-01-05 14:50:00 +03:00
|
|
|
use OCP\IL10N;
|
2015-10-30 15:09:07 +03:00
|
|
|
use OCP\ILogger;
|
2015-12-15 11:54:12 +03:00
|
|
|
use OCP\Security\ISecureRandom;
|
|
|
|
use OCP\Security\IHasher;
|
|
|
|
use OCP\Files\Mount\IMountManager;
|
|
|
|
use OCP\IGroupManager;
|
2016-01-05 14:50:00 +03:00
|
|
|
use OCP\Files\File;
|
|
|
|
use OCP\Files\Folder;
|
|
|
|
use OCP\IUser;
|
2015-10-30 15:09:07 +03:00
|
|
|
|
2015-10-30 15:10:08 +03:00
|
|
|
use OC\Share20\Exception\ShareNotFound;
|
2016-01-06 13:34:12 +03:00
|
|
|
use OC\HintException;
|
2015-10-30 15:09:07 +03:00
|
|
|
|
|
|
|
/**
|
|
|
|
* This class is the communication hub for all sharing related operations.
|
|
|
|
*/
|
|
|
|
class Manager {
|
|
|
|
|
2016-01-05 14:50:00 +03:00
|
|
|
/** @var IShareProvider[] */
|
2015-10-30 15:10:08 +03:00
|
|
|
private $defaultProvider;
|
2015-10-30 15:09:07 +03:00
|
|
|
|
|
|
|
/** @var ILogger */
|
|
|
|
private $logger;
|
|
|
|
|
2015-12-15 11:54:12 +03:00
|
|
|
/** @var IConfig */
|
|
|
|
private $config;
|
|
|
|
|
|
|
|
/** @var ISecureRandom */
|
|
|
|
private $secureRandom;
|
|
|
|
|
|
|
|
/** @var IHasher */
|
|
|
|
private $hasher;
|
|
|
|
|
|
|
|
/** @var IMountManager */
|
|
|
|
private $mountManager;
|
|
|
|
|
|
|
|
/** @var IGroupManager */
|
|
|
|
private $groupManager;
|
2015-10-30 15:09:07 +03:00
|
|
|
|
2016-01-05 14:50:00 +03:00
|
|
|
/** @var IL10N */
|
|
|
|
private $l;
|
|
|
|
|
2015-11-24 11:58:37 +03:00
|
|
|
/**
|
|
|
|
* Manager constructor.
|
|
|
|
*
|
|
|
|
* @param ILogger $logger
|
2015-12-15 11:54:12 +03:00
|
|
|
* @param IConfig $config
|
2015-11-24 11:58:37 +03:00
|
|
|
* @param IShareProvider $defaultProvider
|
2015-12-15 11:54:12 +03:00
|
|
|
* @param ISecureRandom $secureRandom
|
|
|
|
* @param IHasher $hasher
|
|
|
|
* @param IMountManager $mountManager
|
|
|
|
* @param IGroupManager $groupManager
|
2016-01-05 14:50:00 +03:00
|
|
|
* @param IL10N $l
|
2015-11-24 11:58:37 +03:00
|
|
|
*/
|
2015-11-23 16:06:25 +03:00
|
|
|
public function __construct(
|
|
|
|
ILogger $logger,
|
2015-12-15 11:54:12 +03:00
|
|
|
IConfig $config,
|
|
|
|
IShareProvider $defaultProvider,
|
|
|
|
ISecureRandom $secureRandom,
|
|
|
|
IHasher $hasher,
|
|
|
|
IMountManager $mountManager,
|
2016-01-05 14:50:00 +03:00
|
|
|
IGroupManager $groupManager,
|
|
|
|
IL10N $l
|
2015-11-23 16:06:25 +03:00
|
|
|
) {
|
2015-10-30 15:09:07 +03:00
|
|
|
$this->logger = $logger;
|
2015-12-15 11:54:12 +03:00
|
|
|
$this->config = $config;
|
|
|
|
$this->secureRandom = $secureRandom;
|
|
|
|
$this->hasher = $hasher;
|
|
|
|
$this->mountManager = $mountManager;
|
|
|
|
$this->groupManager = $groupManager;
|
2016-01-05 14:50:00 +03:00
|
|
|
$this->l = $l;
|
2015-10-30 15:09:07 +03:00
|
|
|
|
|
|
|
// TEMP SOLUTION JUST TO GET STARTED
|
2015-10-30 15:10:08 +03:00
|
|
|
$this->defaultProvider = $defaultProvider;
|
2015-10-30 15:09:07 +03:00
|
|
|
}
|
|
|
|
|
2015-12-15 11:54:12 +03:00
|
|
|
/**
|
|
|
|
* Verify if a password meets all requirements
|
|
|
|
*
|
|
|
|
* @param string $password
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
protected function verifyPassword($password) {
|
|
|
|
if ($password === null) {
|
|
|
|
// No password is set, check if this is allowed.
|
|
|
|
if ($this->shareApiLinkEnforcePassword()) {
|
|
|
|
throw new \InvalidArgumentException('Passwords are enforced for link shares');
|
|
|
|
}
|
|
|
|
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Let others verify the password
|
|
|
|
$accepted = true;
|
|
|
|
$message = '';
|
|
|
|
\OCP\Util::emitHook('\OC\Share', 'verifyPassword', [
|
|
|
|
'password' => $password,
|
|
|
|
'accepted' => &$accepted,
|
|
|
|
'message' => &$message
|
|
|
|
]);
|
|
|
|
|
|
|
|
if (!$accepted) {
|
|
|
|
throw new \Exception($message);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check for generic requirements before creating a share
|
|
|
|
*
|
|
|
|
* @param IShare $share
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
protected function generalCreateChecks(IShare $share) {
|
|
|
|
if ($share->getShareType() === \OCP\Share::SHARE_TYPE_USER) {
|
|
|
|
// We expect a valid user as sharedWith for user shares
|
|
|
|
if (!($share->getSharedWith() instanceof \OCP\IUser)) {
|
|
|
|
throw new \InvalidArgumentException('SharedWith should be an IUser');
|
|
|
|
}
|
|
|
|
} else if ($share->getShareType() === \OCP\Share::SHARE_TYPE_GROUP) {
|
|
|
|
// We expect a valid group as sharedWith for group shares
|
|
|
|
if (!($share->getSharedWith() instanceof \OCP\IGroup)) {
|
|
|
|
throw new \InvalidArgumentException('SharedWith should be an IGroup');
|
|
|
|
}
|
|
|
|
} else if ($share->getShareType() === \OCP\Share::SHARE_TYPE_LINK) {
|
|
|
|
if ($share->getSharedWith() !== null) {
|
|
|
|
throw new \InvalidArgumentException('SharedWith should be empty');
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
// We can't handle other types yet
|
|
|
|
throw new \InvalidArgumentException('unkown share type');
|
|
|
|
}
|
|
|
|
|
|
|
|
// Verify the initiator of the share is et
|
|
|
|
if ($share->getSharedBy() === null) {
|
|
|
|
throw new \InvalidArgumentException('SharedBy should be set');
|
|
|
|
}
|
|
|
|
|
|
|
|
// Cannot share with yourself
|
|
|
|
if ($share->getSharedWith() === $share->getSharedBy()) {
|
|
|
|
throw new \InvalidArgumentException('Can\'t share with yourself');
|
|
|
|
}
|
|
|
|
|
|
|
|
// The path should be set
|
|
|
|
if ($share->getPath() === null) {
|
|
|
|
throw new \InvalidArgumentException('Path should be set');
|
|
|
|
}
|
|
|
|
// And it should be a file or a folder
|
|
|
|
if (!($share->getPath() instanceof \OCP\Files\File) &&
|
|
|
|
!($share->getPath() instanceof \OCP\Files\Folder)) {
|
|
|
|
throw new \InvalidArgumentException('Path should be either a file or a folder');
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check if we actually have share permissions
|
|
|
|
if (!$share->getPath()->isShareable()) {
|
2016-01-06 13:34:12 +03:00
|
|
|
$message_t = $this->l->t('You are not allowed to share %s', [$share->getPath()->getPath()]);
|
|
|
|
throw new HintException($message_t, $message_t, 404);
|
2015-12-15 11:54:12 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
// Permissions should be set
|
|
|
|
if ($share->getPermissions() === null) {
|
|
|
|
throw new \InvalidArgumentException('A share requires permissions');
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check that we do not share with more permissions than we have
|
|
|
|
if ($share->getPermissions() & ~$share->getPath()->getPermissions()) {
|
2016-01-06 13:34:12 +03:00
|
|
|
$message_t = $this->l->t('Cannot increase permissions of %s', [$share->getPath()->getPath()]);
|
|
|
|
throw new HintException($message_t, $message_t, 404);
|
2015-12-15 11:54:12 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
// Check that read permissions are always set
|
|
|
|
if (($share->getPermissions() & \OCP\Constants::PERMISSION_READ) === 0) {
|
|
|
|
throw new \InvalidArgumentException('Shares need at least read permissions');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Validate if the expiration date fits the system settings
|
|
|
|
*
|
|
|
|
* @param \DateTime $expireDate The current expiration date (can be null)
|
|
|
|
* @return \DateTime|null The expiration date or null if $expireDate was null and it is not required
|
2016-01-05 14:50:00 +03:00
|
|
|
* @throws \OC\HintException
|
2015-12-15 11:54:12 +03:00
|
|
|
*/
|
|
|
|
protected function validateExpiredate($expireDate) {
|
|
|
|
|
|
|
|
if ($expireDate !== null) {
|
|
|
|
//Make sure the expiration date is a date
|
|
|
|
$expireDate->setTime(0, 0, 0);
|
|
|
|
|
|
|
|
$date = new \DateTime();
|
|
|
|
$date->setTime(0, 0, 0);
|
|
|
|
if ($date >= $expireDate) {
|
2016-01-05 14:50:00 +03:00
|
|
|
$message = $this->l->t('Expiration date is in the past');
|
|
|
|
throw new \OC\HintException($message, $message, 404);
|
2015-12-15 11:54:12 +03:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// If we enforce the expiration date check that is does not exceed
|
|
|
|
if ($this->shareApiLinkDefaultExpireDateEnforced()) {
|
|
|
|
if ($expireDate === null) {
|
|
|
|
throw new \InvalidArgumentException('Expiration date is enforced');
|
|
|
|
}
|
|
|
|
|
|
|
|
$date = new \DateTime();
|
|
|
|
$date->setTime(0, 0, 0);
|
|
|
|
$date->add(new \DateInterval('P' . $this->shareApiLinkDefaultExpireDays() . 'D'));
|
|
|
|
if ($date < $expireDate) {
|
2016-01-05 14:50:00 +03:00
|
|
|
$message = $this->l->t('Cannot set expiration date more than %s days in the future', [$this->shareApiLinkDefaultExpireDays()]);
|
|
|
|
throw new \OC\HintException($message, $message, 404);
|
2015-12-15 11:54:12 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
return $expireDate;
|
|
|
|
}
|
|
|
|
|
|
|
|
// If expiredate is empty set a default one if there is a default
|
|
|
|
if ($expireDate === null && $this->shareApiLinkDefaultExpireDate()) {
|
|
|
|
$date = new \DateTime();
|
|
|
|
$date->setTime(0,0,0);
|
|
|
|
$date->add(new \DateInterval('P'.$this->shareApiLinkDefaultExpireDays().'D'));
|
|
|
|
return $date;
|
|
|
|
}
|
|
|
|
|
|
|
|
return $expireDate;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check for pre share requirements for use shares
|
|
|
|
*
|
|
|
|
* @param IShare $share
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
protected function userCreateChecks(IShare $share) {
|
|
|
|
// Check if we can share with group members only
|
|
|
|
if ($this->shareWithGroupMembersOnly()) {
|
|
|
|
// Verify we can share with this user
|
|
|
|
$groups = array_intersect(
|
|
|
|
$this->groupManager->getUserGroupIds($share->getSharedBy()),
|
|
|
|
$this->groupManager->getUserGroupIds($share->getSharedWith())
|
|
|
|
);
|
|
|
|
if (empty($groups)) {
|
|
|
|
throw new \Exception('Only sharing with group members is allowed');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* TODO: Could be costly, fix
|
|
|
|
*
|
|
|
|
* Also this is not what we want in the future.. then we want to squash identical shares.
|
|
|
|
*/
|
|
|
|
$existingShares = $this->defaultProvider->getSharesByPath($share->getPath());
|
|
|
|
foreach($existingShares as $existingShare) {
|
|
|
|
// Identical share already existst
|
|
|
|
if ($existingShare->getSharedWith() === $share->getSharedWith()) {
|
|
|
|
throw new \Exception('Path already shared with this user');
|
|
|
|
}
|
|
|
|
|
|
|
|
// The share is already shared with this user via a group share
|
|
|
|
if ($existingShare->getShareType() === \OCP\Share::SHARE_TYPE_GROUP &&
|
|
|
|
$existingShare->getSharedWith()->inGroup($share->getSharedWith()) &&
|
|
|
|
$existingShare->getShareOwner() !== $share->getShareOwner()) {
|
|
|
|
throw new \Exception('Path already shared with this user');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check for pre share requirements for group shares
|
|
|
|
*
|
|
|
|
* @param IShare $share
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
protected function groupCreateChecks(IShare $share) {
|
|
|
|
// Verify if the user can share with this group
|
|
|
|
if ($this->shareWithGroupMembersOnly()) {
|
|
|
|
if (!$share->getSharedWith()->inGroup($share->getSharedBy())) {
|
|
|
|
throw new \Exception('Only sharing within your own groups is allowed');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* TODO: Could be costly, fix
|
|
|
|
*
|
|
|
|
* Also this is not what we want in the future.. then we want to squash identical shares.
|
|
|
|
*/
|
|
|
|
$existingShares = $this->defaultProvider->getSharesByPath($share->getPath());
|
|
|
|
foreach($existingShares as $existingShare) {
|
|
|
|
if ($existingShare->getSharedWith() === $share->getSharedWith()) {
|
|
|
|
throw new \Exception('Path already shared with this group');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check for pre share requirements for link shares
|
|
|
|
*
|
|
|
|
* @param IShare $share
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
protected function linkCreateChecks(IShare $share) {
|
|
|
|
// Are link shares allowed?
|
|
|
|
if (!$this->shareApiAllowLinks()) {
|
|
|
|
throw new \Exception('Link sharing not allowed');
|
|
|
|
}
|
|
|
|
|
|
|
|
// Link shares by definition can't have share permissions
|
|
|
|
if ($share->getPermissions() & \OCP\Constants::PERMISSION_SHARE) {
|
|
|
|
throw new \InvalidArgumentException('Link shares can\'t have reshare permissions');
|
|
|
|
}
|
|
|
|
|
|
|
|
// We don't allow deletion on link shares
|
|
|
|
if ($share->getPermissions() & \OCP\Constants::PERMISSION_DELETE) {
|
|
|
|
throw new \InvalidArgumentException('Link shares can\'t have delete permissions');
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check if public upload is allowed
|
|
|
|
if (!$this->shareApiLinkAllowPublicUpload() &&
|
|
|
|
($share->getPermissions() & (\OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE))) {
|
|
|
|
throw new \InvalidArgumentException('Public upload not allowed');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param File|Folder $path
|
|
|
|
*/
|
|
|
|
protected function pathCreateChecks($path) {
|
|
|
|
// Make sure that we do not share a path that contains a shared mountpoint
|
|
|
|
if ($path instanceof \OCP\Files\Folder) {
|
|
|
|
$mounts = $this->mountManager->findIn($path->getPath());
|
|
|
|
foreach($mounts as $mount) {
|
|
|
|
if ($mount->getStorage()->instanceOfStorage('\OCA\Files_Sharing\ISharedStorage')) {
|
|
|
|
throw new \InvalidArgumentException('Path contains files shared with you');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check if the user that is sharing can actually share
|
|
|
|
*
|
|
|
|
* @param IShare $share
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
protected function canShare(IShare $share) {
|
|
|
|
if (!$this->shareApiEnabled()) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($this->isSharingDisabledForUser($share->getSharedBy())) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
2015-10-30 15:09:07 +03:00
|
|
|
/**
|
|
|
|
* Share a path
|
2015-11-24 11:58:37 +03:00
|
|
|
*
|
2015-12-15 11:54:12 +03:00
|
|
|
* @param IShare $share
|
2015-10-30 15:09:07 +03:00
|
|
|
* @return Share The share object
|
2015-12-15 11:54:12 +03:00
|
|
|
* @throws \Exception
|
|
|
|
*
|
|
|
|
* TODO: handle link share permissions or check them
|
2015-10-30 15:09:07 +03:00
|
|
|
*/
|
2015-12-15 11:54:12 +03:00
|
|
|
public function createShare(IShare $share) {
|
|
|
|
if (!$this->canShare($share)) {
|
|
|
|
throw new \Exception('The Share API is disabled');
|
|
|
|
}
|
|
|
|
|
|
|
|
$this->generalCreateChecks($share);
|
|
|
|
|
|
|
|
//Verify share type
|
|
|
|
if ($share->getShareType() === \OCP\Share::SHARE_TYPE_USER) {
|
|
|
|
$this->userCreateChecks($share);
|
|
|
|
} else if ($share->getShareType() === \OCP\Share::SHARE_TYPE_GROUP) {
|
|
|
|
$this->groupCreateChecks($share);
|
|
|
|
} else if ($share->getShareType() === \OCP\Share::SHARE_TYPE_LINK) {
|
|
|
|
$this->linkCreateChecks($share);
|
|
|
|
|
|
|
|
/*
|
|
|
|
* For now ignore a set token.
|
|
|
|
*/
|
|
|
|
$share->setToken(
|
2016-01-05 14:50:00 +03:00
|
|
|
$this->secureRandom->generate(
|
2015-12-15 11:54:12 +03:00
|
|
|
\OC\Share\Constants::TOKEN_LENGTH,
|
|
|
|
\OCP\Security\ISecureRandom::CHAR_LOWER.
|
|
|
|
\OCP\Security\ISecureRandom::CHAR_UPPER.
|
|
|
|
\OCP\Security\ISecureRandom::CHAR_DIGITS
|
|
|
|
)
|
|
|
|
);
|
|
|
|
|
|
|
|
//Verify the expiration date
|
|
|
|
$share->setExpirationDate($this->validateExpiredate($share->getExpirationDate()));
|
|
|
|
|
|
|
|
//Verify the password
|
|
|
|
$this->verifyPassword($share->getPassword());
|
|
|
|
|
|
|
|
// If a password is set. Hash it!
|
|
|
|
if ($share->getPassword() !== null) {
|
|
|
|
$share->setPassword($this->hasher->hash($share->getPassword()));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Verify if there are any issues with the path
|
|
|
|
$this->pathCreateChecks($share->getPath());
|
|
|
|
|
|
|
|
// On creation of a share the owner is always the owner of the path
|
|
|
|
$share->setShareOwner($share->getPath()->getOwner());
|
|
|
|
|
|
|
|
// Generate the target
|
|
|
|
$target = $this->config->getSystemValue('share_folder', '/') .'/'. $share->getPath()->getName();
|
|
|
|
$target = \OC\Files\Filesystem::normalizePath($target);
|
|
|
|
$share->setTarget($target);
|
|
|
|
|
|
|
|
// Pre share hook
|
|
|
|
$run = true;
|
|
|
|
$error = '';
|
|
|
|
$preHookData = [
|
|
|
|
'itemType' => $share->getPath() instanceof \OCP\Files\File ? 'file' : 'folder',
|
|
|
|
'itemSource' => $share->getPath()->getId(),
|
|
|
|
'shareType' => $share->getShareType(),
|
|
|
|
'uidOwner' => $share->getSharedBy()->getUID(),
|
|
|
|
'permissions' => $share->getPermissions(),
|
|
|
|
'fileSource' => $share->getPath()->getId(),
|
|
|
|
'expiration' => $share->getExpirationDate(),
|
|
|
|
'token' => $share->getToken(),
|
|
|
|
'run' => &$run,
|
|
|
|
'error' => &$error
|
|
|
|
];
|
|
|
|
\OC_Hook::emit('OCP\Share', 'pre_shared', $preHookData);
|
|
|
|
|
|
|
|
if ($run === false) {
|
|
|
|
throw new \Exception($error);
|
|
|
|
}
|
|
|
|
|
|
|
|
$share = $this->defaultProvider->create($share);
|
|
|
|
|
|
|
|
// Post share hook
|
|
|
|
$postHookData = [
|
|
|
|
'itemType' => $share->getPath() instanceof \OCP\Files\File ? 'file' : 'folder',
|
|
|
|
'itemSource' => $share->getPath()->getId(),
|
|
|
|
'shareType' => $share->getShareType(),
|
|
|
|
'uidOwner' => $share->getSharedBy()->getUID(),
|
|
|
|
'permissions' => $share->getPermissions(),
|
|
|
|
'fileSource' => $share->getPath()->getId(),
|
|
|
|
'expiration' => $share->getExpirationDate(),
|
|
|
|
'token' => $share->getToken(),
|
|
|
|
'id' => $share->getId(),
|
|
|
|
];
|
|
|
|
\OC_Hook::emit('OCP\Share', 'post_shared', $postHookData);
|
|
|
|
|
|
|
|
return $share;
|
2015-10-30 15:09:07 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Update a share
|
|
|
|
*
|
|
|
|
* @param Share $share
|
|
|
|
* @return Share The share object
|
|
|
|
*/
|
|
|
|
public function updateShare(Share $share) {
|
|
|
|
}
|
|
|
|
|
2015-11-10 16:14:49 +03:00
|
|
|
/**
|
|
|
|
* Delete all the children of this share
|
|
|
|
*
|
|
|
|
* @param IShare $share
|
|
|
|
* @return IShare[] List of deleted shares
|
|
|
|
*/
|
|
|
|
protected function deleteChildren(IShare $share) {
|
|
|
|
$deletedShares = [];
|
|
|
|
foreach($this->defaultProvider->getChildren($share) as $child) {
|
|
|
|
$deletedChildren = $this->deleteChildren($child);
|
|
|
|
$deletedShares = array_merge($deletedShares, $deletedChildren);
|
|
|
|
|
|
|
|
$this->defaultProvider->delete($child);
|
|
|
|
$deletedShares[] = $child;
|
|
|
|
}
|
|
|
|
|
|
|
|
return $deletedShares;
|
|
|
|
}
|
|
|
|
|
2015-10-30 15:09:07 +03:00
|
|
|
/**
|
|
|
|
* Delete a share
|
|
|
|
*
|
2015-11-23 16:06:25 +03:00
|
|
|
* @param IShare $share
|
2015-10-30 15:10:08 +03:00
|
|
|
* @throws ShareNotFound
|
|
|
|
* @throws \OC\Share20\Exception\BackendError
|
2015-10-30 15:09:07 +03:00
|
|
|
*/
|
2015-10-30 15:10:08 +03:00
|
|
|
public function deleteShare(IShare $share) {
|
2015-11-10 16:14:49 +03:00
|
|
|
// Just to make sure we have all the info
|
|
|
|
$share = $this->getShareById($share->getId());
|
|
|
|
|
2015-11-23 16:06:25 +03:00
|
|
|
$formatHookParams = function(IShare $share) {
|
2015-11-10 16:14:49 +03:00
|
|
|
// Prepare hook
|
|
|
|
$shareType = $share->getShareType();
|
|
|
|
$sharedWith = '';
|
|
|
|
if ($shareType === \OCP\Share::SHARE_TYPE_USER) {
|
|
|
|
$sharedWith = $share->getSharedWith()->getUID();
|
|
|
|
} else if ($shareType === \OCP\Share::SHARE_TYPE_GROUP) {
|
|
|
|
$sharedWith = $share->getSharedWith()->getGID();
|
|
|
|
} else if ($shareType === \OCP\Share::SHARE_TYPE_REMOTE) {
|
|
|
|
$sharedWith = $share->getSharedWith();
|
|
|
|
}
|
|
|
|
|
|
|
|
$hookParams = [
|
|
|
|
'id' => $share->getId(),
|
|
|
|
'itemType' => $share->getPath() instanceof \OCP\Files\File ? 'file' : 'folder',
|
|
|
|
'itemSource' => $share->getPath()->getId(),
|
|
|
|
'shareType' => $shareType,
|
|
|
|
'shareWith' => $sharedWith,
|
|
|
|
'itemparent' => $share->getParent(),
|
|
|
|
'uidOwner' => $share->getSharedBy()->getUID(),
|
|
|
|
'fileSource' => $share->getPath()->getId(),
|
|
|
|
'fileTarget' => $share->getTarget()
|
|
|
|
];
|
|
|
|
return $hookParams;
|
|
|
|
};
|
|
|
|
|
|
|
|
$hookParams = $formatHookParams($share);
|
|
|
|
|
|
|
|
// Emit pre-hook
|
|
|
|
\OC_Hook::emit('OCP\Share', 'pre_unshare', $hookParams);
|
|
|
|
|
|
|
|
// Get all children and delete them as well
|
|
|
|
$deletedShares = $this->deleteChildren($share);
|
|
|
|
|
|
|
|
// Do the actual delete
|
2015-10-30 15:10:08 +03:00
|
|
|
$this->defaultProvider->delete($share);
|
2015-11-10 16:14:49 +03:00
|
|
|
|
|
|
|
// All the deleted shares caused by this delete
|
|
|
|
$deletedShares[] = $share;
|
|
|
|
|
|
|
|
//Format hook info
|
|
|
|
$formattedDeletedShares = array_map(function($share) use ($formatHookParams) {
|
|
|
|
return $formatHookParams($share);
|
|
|
|
}, $deletedShares);
|
|
|
|
|
|
|
|
$hookParams['deletedShares'] = $formattedDeletedShares;
|
|
|
|
|
|
|
|
// Emit post hook
|
|
|
|
\OC_Hook::emit('OCP\Share', 'post_unshare', $hookParams);
|
2015-10-30 15:09:07 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Retrieve all shares by the current user
|
|
|
|
*
|
|
|
|
* @param int $page
|
|
|
|
* @param int $perPage
|
|
|
|
* @return Share[]
|
|
|
|
*/
|
|
|
|
public function getShares($page=0, $perPage=50) {
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Retrieve a share by the share id
|
|
|
|
*
|
|
|
|
* @param string $id
|
|
|
|
* @return Share
|
|
|
|
*
|
2015-10-30 15:10:08 +03:00
|
|
|
* @throws ShareNotFound
|
2015-10-30 15:09:07 +03:00
|
|
|
*/
|
|
|
|
public function getShareById($id) {
|
2015-11-10 16:14:49 +03:00
|
|
|
if ($id === null) {
|
|
|
|
throw new ShareNotFound();
|
|
|
|
}
|
|
|
|
|
2015-10-30 15:10:08 +03:00
|
|
|
$share = $this->defaultProvider->getShareById($id);
|
|
|
|
|
|
|
|
return $share;
|
2015-10-30 15:09:07 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get all the shares for a given path
|
|
|
|
*
|
|
|
|
* @param \OCP\Files\Node $path
|
|
|
|
* @param int $page
|
|
|
|
* @param int $perPage
|
|
|
|
*
|
|
|
|
* @return Share[]
|
|
|
|
*/
|
|
|
|
public function getSharesByPath(\OCP\Files\Node $path, $page=0, $perPage=50) {
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get all shares that are shared with the current user
|
|
|
|
*
|
|
|
|
* @param int $shareType
|
|
|
|
* @param int $page
|
|
|
|
* @param int $perPage
|
|
|
|
*
|
|
|
|
* @return Share[]
|
|
|
|
*/
|
|
|
|
public function getSharedWithMe($shareType = null, $page=0, $perPage=50) {
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get the share by token possible with password
|
|
|
|
*
|
|
|
|
* @param string $token
|
|
|
|
* @param string $password
|
|
|
|
*
|
|
|
|
* @return Share
|
|
|
|
*
|
2015-11-23 16:06:25 +03:00
|
|
|
* @throws ShareNotFound
|
2015-10-30 15:09:07 +03:00
|
|
|
*/
|
|
|
|
public function getShareByToken($token, $password=null) {
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get access list to a path. This means
|
|
|
|
* all the users and groups that can access a given path.
|
|
|
|
*
|
|
|
|
* Consider:
|
|
|
|
* -root
|
|
|
|
* |-folder1
|
|
|
|
* |-folder2
|
|
|
|
* |-fileA
|
|
|
|
*
|
|
|
|
* fileA is shared with user1
|
|
|
|
* folder2 is shared with group2
|
|
|
|
* folder1 is shared with user2
|
|
|
|
*
|
|
|
|
* Then the access list will to '/folder1/folder2/fileA' is:
|
|
|
|
* [
|
|
|
|
* 'users' => ['user1', 'user2'],
|
|
|
|
* 'groups' => ['group2']
|
|
|
|
* ]
|
|
|
|
*
|
|
|
|
* This is required for encryption
|
|
|
|
*
|
|
|
|
* @param \OCP\Files\Node $path
|
|
|
|
*/
|
|
|
|
public function getAccessList(\OCP\Files\Node $path) {
|
|
|
|
}
|
2015-12-15 11:54:12 +03:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Create a new share
|
|
|
|
* @return IShare;
|
|
|
|
*/
|
|
|
|
public function newShare() {
|
|
|
|
return new \OC\Share20\Share();
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Is the share API enabled
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function shareApiEnabled() {
|
|
|
|
return $this->config->getAppValue('core', 'shareapi_enabled', 'yes') === 'yes';
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Is public link sharing enabled
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function shareApiAllowLinks() {
|
|
|
|
return $this->config->getAppValue('core', 'shareapi_allow_links', 'yes') === 'yes';
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Is password on public link requires
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function shareApiLinkEnforcePassword() {
|
|
|
|
return $this->config->getAppValue('core', 'shareapi_enforce_links_password', 'no') === 'yes';
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Is default expire date enabled
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function shareApiLinkDefaultExpireDate() {
|
|
|
|
return $this->config->getAppValue('core', 'shareapi_default_expire_date', 'no') === 'yes';
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Is default expire date enforced
|
|
|
|
*`
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function shareApiLinkDefaultExpireDateEnforced() {
|
|
|
|
return $this->config->getAppValue('core', 'shareapi_enforce_expire_date', 'no') === 'yes';
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Number of default expire days
|
|
|
|
*shareApiLinkAllowPublicUpload
|
|
|
|
* @return int
|
|
|
|
*/
|
|
|
|
public function shareApiLinkDefaultExpireDays() {
|
|
|
|
return (int)$this->config->getAppValue('core', 'shareapi_expire_after_n_days', '7');
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Allow public upload on link shares
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function shareApiLinkAllowPublicUpload() {
|
|
|
|
return $this->config->getAppValue('core', 'shareapi_allow_public_upload', 'yes') === 'yes';
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* check if user can only share with group members
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function shareWithGroupMembersOnly() {
|
|
|
|
return $this->config->getAppValue('core', 'shareapi_only_share_with_group_members', 'no') === 'yes';
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Copied from \OC_Util::isSharingDisabledForUser
|
|
|
|
*
|
|
|
|
* TODO: Deprecate fuction from OC_Util
|
|
|
|
*
|
|
|
|
* @param IUser $user
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function isSharingDisabledForUser($user) {
|
|
|
|
if ($this->config->getAppValue('core', 'shareapi_exclude_groups', 'no') === 'yes') {
|
|
|
|
$groupsList = $this->config->getAppValue('core', 'shareapi_exclude_groups_list', '');
|
|
|
|
$excludedGroups = json_decode($groupsList);
|
|
|
|
if (is_null($excludedGroups)) {
|
|
|
|
$excludedGroups = explode(',', $groupsList);
|
|
|
|
$newValue = json_encode($excludedGroups);
|
|
|
|
$this->config->setAppValue('core', 'shareapi_exclude_groups_list', $newValue);
|
|
|
|
}
|
|
|
|
$usersGroups = $this->groupManager->getUserGroupIds($user);
|
|
|
|
if (!empty($usersGroups)) {
|
|
|
|
$remainingGroups = array_diff($usersGroups, $excludedGroups);
|
|
|
|
// if the user is only in groups which are disabled for sharing then
|
|
|
|
// sharing is also disabled for the user
|
|
|
|
if (empty($remainingGroups)) {
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
2015-10-30 15:09:07 +03:00
|
|
|
}
|