nextcloud/lib/files/cache/permissions.php

<?php
/**
 * Copyright (c) 2012 Robin Appelman <icewind@owncloud.com>
 * This file is licensed under the Affero General Public License version 3 or
 * later.
 * See the COPYING-README file.
 */

namespace OC\Files\Cache;

class Permissions {
	/**
	 * @var string $storageId
	 */
	private $storageId;

	/**
	 * @param \OC\Files\Storage\Storage|string $storage
	 */
	public function __construct($storage) {
		if ($storage instanceof \OC\Files\Storage\Storage) {
			$this->storageId = $storage->getId();
		} else {
			$this->storageId = $storage;
		}
	}

	/**
	 * get the permissions for a single file
	 *
	 * @param int $fileId
	 * @param string $user
	 * @return int (-1 if file no permissions set)
	 */
	public function get($fileId, $user) {
		$sql = 'SELECT `permissions` FROM `*PREFIX*permissions` WHERE `user` = ? AND `fileid` = ?';
		$result = \OC_DB::executeAudited($sql, array($user, $fileId));
		if ($row = $result->fetchRow()) {
			return $row['permissions'];
		} else {
			return -1;
		}
	}

	/**
	 * set the permissions of a file
	 *
	 * @param int $fileId
	 * @param string $user
	 * @param int $permissions
	 */
	public function set($fileId, $user, $permissions) {
		if (self::get($fileId, $user) !== -1) {
			$sql = 'UPDATE `*PREFIX*permissions` SET `permissions` = ? WHERE `user` = ? AND `fileid` = ?';
		} else {
			$sql = 'INSERT INTO `*PREFIX*permissions`(`permissions`, `user`, `fileid`) VALUES(?, ?,? )';
		}
		\OC_DB::executeAudited($sql, array($permissions, $user, $fileId));
	}

	/**
	 * get the permissions of multiply files
	 *
	 * @param int[] $fileIds
	 * @param string $user
	 * @return int[]
	 */
	public function getMultiple($fileIds, $user) {
		if (count($fileIds) === 0) {
			return array();
		}
		$params = $fileIds;
		$params[] = $user;
		$inPart = implode(', ', array_fill(0, count($fileIds), '?'));

		$sql = 'SELECT `fileid`, `permissions` FROM `*PREFIX*permissions`'
			. ' WHERE `fileid` IN (' . $inPart . ') AND `user` = ?';
		$result = \OC_DB::executeAudited($sql, $params);
		$filePermissions = array();
		while ($row = $result->fetchRow()) {
			$filePermissions[$row['fileid']] = $row['permissions'];
		}
		return $filePermissions;
	}

	/**
	 * get the permissions for all files in a folder
	 *
	 * @param int $parentId
	 * @param string $user
	 * @return int[]
	 */
	public function getDirectoryPermissions($parentId, $user) {
		$sql = 'SELECT `*PREFIX*permissions`.`fileid`, `permissions`
			FROM `*PREFIX*permissions`
			INNER JOIN `*PREFIX*filecache` ON `*PREFIX*permissions`.`fileid` = `*PREFIX*filecache`.`fileid`
			WHERE `*PREFIX*filecache`.`parent` = ? AND `*PREFIX*permissions`.`user` = ?';

		$result = \OC_DB::executeAudited($sql, array($parentId, $user));
		$filePermissions = array();
		while ($row = $result->fetchRow()) {
			$filePermissions[$row['fileid']] = $row['permissions'];
		}
		return $filePermissions;
	}

	/**
	 * remove the permissions for a file
	 *
	 * @param int $fileId
	 * @param string $user
	 */
	public function remove($fileId, $user = null) {
		if (is_null($user)) {
			\OC_DB::executeAudited('DELETE FROM `*PREFIX*permissions` WHERE `fileid` = ?', array($fileId));
		} else {
			$sql = 'DELETE FROM `*PREFIX*permissions` WHERE `fileid` = ? AND `user` = ?';
			\OC_DB::executeAudited($sql, array($fileId, $user));
		}
	}

	public function removeMultiple($fileIds, $user) {
		$query = \OC_DB::prepare('DELETE FROM `*PREFIX*permissions` WHERE `fileid` = ? AND `user` = ?');
		foreach ($fileIds as $fileId) {
			\OC_DB::executeAudited($query, array($fileId, $user));
		}
	}

	/**
	 * get the list of users which have permissions stored for a file
	 *
	 * @param int $fileId
	 */
	public function getUsers($fileId) {
		$sql = 'SELECT `user` FROM `*PREFIX*permissions` WHERE `fileid` = ?';
		$result = \OC_DB::executeAudited($sql, array($fileId));
		$users = array();
		while ($row = $result->fetchRow()) {
			$users[] = $row['user'];
		}
		return $users;
	}
}
add file permissions cache 2012-10-26 21:07:29 +04:00			`<?php`
			`/**`
			`* Copyright (c) 2012 Robin Appelman <icewind@owncloud.com>`
			`* This file is licensed under the Affero General Public License version 3 or`
			`* later.`
			`* See the COPYING-README file.`
			`*/`

			`namespace OC\Files\Cache;`

			`class Permissions {`
allow storage backends to implement custom permission management 2012-11-15 03:57:30 +04:00			`/**`
			`* @var string $storageId`
			`*/`
			`private $storageId;`

			`/**`
			`* @param \OC\Files\Storage\Storage\|string $storage`
			`*/`
Cache: add option to delete file from permissions cache for all users 2013-02-28 20:04:34 +04:00			`public function __construct($storage) {`
			`if ($storage instanceof \OC\Files\Storage\Storage) {`
allow storage backends to implement custom permission management 2012-11-15 03:57:30 +04:00			`$this->storageId = $storage->getId();`
Cache: add option to delete file from permissions cache for all users 2013-02-28 20:04:34 +04:00			`} else {`
allow storage backends to implement custom permission management 2012-11-15 03:57:30 +04:00			`$this->storageId = $storage;`
			`}`
			`}`

add file permissions cache 2012-10-26 21:07:29 +04:00			`/**`
			`* get the permissions for a single file`
			`*`
			`* @param int $fileId`
			`* @param string $user`
			`* @return int (-1 if file no permissions set)`
			`*/`
allow storage backends to implement custom permission management 2012-11-15 03:57:30 +04:00			`public function get($fileId, $user) {`
use executeAudited in files cache 2013-06-07 16:11:05 +04:00			$sql = 'SELECT `permissions` FROM `PREFIXpermissions` WHERE `user` = ? AND `fileid` = ?';
			`$result = \OC_DB::executeAudited($sql, array($user, $fileId));`
add file permissions cache 2012-10-26 21:07:29 +04:00			`if ($row = $result->fetchRow()) {`
			`return $row['permissions'];`
			`} else {`
			`return -1;`
			`}`
			`}`

			`/**`
			`* set the permissions of a file`
			`*`
			`* @param int $fileId`
			`* @param string $user`
			`* @param int $permissions`
			`*/`
allow storage backends to implement custom permission management 2012-11-15 03:57:30 +04:00			`public function set($fileId, $user, $permissions) {`
add file permissions cache 2012-10-26 21:07:29 +04:00			`if (self::get($fileId, $user) !== -1) {`
use executeAudited in files cache 2013-06-07 16:11:05 +04:00			$sql = 'UPDATE `PREFIXpermissions` SET `permissions` = ? WHERE `user` = ? AND `fileid` = ?';
add file permissions cache 2012-10-26 21:07:29 +04:00			`} else {`
use executeAudited in files cache 2013-06-07 16:11:05 +04:00			$sql = 'INSERT INTO `PREFIXpermissions`(`permissions`, `user`, `fileid`) VALUES(?, ?,? )';
add file permissions cache 2012-10-26 21:07:29 +04:00			`}`
use executeAudited in files cache 2013-06-07 16:11:05 +04:00			`\OC_DB::executeAudited($sql, array($permissions, $user, $fileId));`
add file permissions cache 2012-10-26 21:07:29 +04:00			`}`

			`/**`
			`* get the permissions of multiply files`
			`*`
			`* @param int[] $fileIds`
			`* @param string $user`
			`* @return int[]`
			`*/`
allow storage backends to implement custom permission management 2012-11-15 03:57:30 +04:00			`public function getMultiple($fileIds, $user) {`
use absolute paths when resolving mount points 2012-10-27 14:17:35 +04:00			`if (count($fileIds) === 0) {`
			`return array();`
			`}`
add file permissions cache 2012-10-26 21:07:29 +04:00			`$params = $fileIds;`
			`$params[] = $user;`
			`$inPart = implode(', ', array_fill(0, count($fileIds), '?'));`

use executeAudited in files cache 2013-06-07 16:11:05 +04:00			$sql = 'SELECT `fileid`, `permissions` FROM `PREFIXpermissions`'
			. ' WHERE `fileid` IN (' . $inPart . ') AND `user` = ?';
			`$result = \OC_DB::executeAudited($sql, $params);`
add file permissions cache 2012-10-26 21:07:29 +04:00			`$filePermissions = array();`
			`while ($row = $result->fetchRow()) {`
			`$filePermissions[$row['fileid']] = $row['permissions'];`
			`}`
			`return $filePermissions;`
			`}`

Cache: provide a function to get the permissions of all files in a folder with one query 2013-05-29 17:25:42 +04:00			`/**`
			`* get the permissions for all files in a folder`
			`*`
			`* @param int $parentId`
Only retrieve the current user's permissions 2013-05-30 02:08:18 +04:00			`* @param string $user`
Cache: provide a function to get the permissions of all files in a folder with one query 2013-05-29 17:25:42 +04:00			`* @return int[]`
			`*/`
Only retrieve the current user's permissions 2013-05-30 02:08:18 +04:00			`public function getDirectoryPermissions($parentId, $user) {`
use executeAudited in files cache 2013-06-07 16:11:05 +04:00			$sql = 'SELECT `PREFIXpermissions`.`fileid`, `permissions`
			FROM `PREFIXpermissions`
			INNER JOIN `PREFIXfilecache` ON `PREFIXpermissions`.`fileid` = `PREFIXfilecache`.`fileid`
			WHERE `PREFIXfilecache`.`parent` = ? AND `PREFIXpermissions`.`user` = ?';
Cache: provide a function to get the permissions of all files in a folder with one query 2013-05-29 17:25:42 +04:00
use executeAudited in files cache 2013-06-07 16:11:05 +04:00			`$result = \OC_DB::executeAudited($sql, array($parentId, $user));`
Cache: provide a function to get the permissions of all files in a folder with one query 2013-05-29 17:25:42 +04:00			`$filePermissions = array();`
			`while ($row = $result->fetchRow()) {`
			`$filePermissions[$row['fileid']] = $row['permissions'];`
			`}`
			`return $filePermissions;`
			`}`

add file permissions cache 2012-10-26 21:07:29 +04:00			`/**`
			`* remove the permissions for a file`
			`*`
			`* @param int $fileId`
			`* @param string $user`
			`*/`
Cache: add option to delete file from permissions cache for all users 2013-02-28 20:04:34 +04:00			`public function remove($fileId, $user = null) {`
			`if (is_null($user)) {`
use executeAudited in files cache 2013-06-07 16:11:05 +04:00			\OC_DB::executeAudited('DELETE FROM `PREFIXpermissions` WHERE `fileid` = ?', array($fileId));
Cache: add option to delete file from permissions cache for all users 2013-02-28 20:04:34 +04:00			`} else {`
use executeAudited in files cache 2013-06-07 16:11:05 +04:00			$sql = 'DELETE FROM `PREFIXpermissions` WHERE `fileid` = ? AND `user` = ?';
			`\OC_DB::executeAudited($sql, array($fileId, $user));`
Cache: add option to delete file from permissions cache for all users 2013-02-28 20:04:34 +04:00			`}`
add file permissions cache 2012-10-26 21:07:29 +04:00			`}`

allow storage backends to implement custom permission management 2012-11-15 03:57:30 +04:00			`public function removeMultiple($fileIds, $user) {`
			$query = \OC_DB::prepare('DELETE FROM `PREFIXpermissions` WHERE `fileid` = ? AND `user` = ?');
Cache: add option to delete file from permissions cache for all users 2013-02-28 20:04:34 +04:00			`foreach ($fileIds as $fileId) {`
use executeAudited in files cache 2013-06-07 16:11:05 +04:00			`\OC_DB::executeAudited($query, array($fileId, $user));`
allow storage backends to implement custom permission management 2012-11-15 03:57:30 +04:00			`}`
add file permissions cache 2012-10-26 21:07:29 +04:00			`}`
Cache: add a backgroundjob to check for external changes to the filesystem 2013-04-20 18:38:03 +04:00
			`/**`
			`* get the list of users which have permissions stored for a file`
			`*`
			`* @param int $fileId`
			`*/`
			`public function getUsers($fileId) {`
use executeAudited in files cache 2013-06-07 16:11:05 +04:00			$sql = 'SELECT `user` FROM `PREFIXpermissions` WHERE `fileid` = ?';
			`$result = \OC_DB::executeAudited($sql, array($fileId));`
Cache: add a backgroundjob to check for external changes to the filesystem 2013-04-20 18:38:03 +04:00			`$users = array();`
			`while ($row = $result->fetchRow()) {`
			`$users[] = $row['user'];`
			`}`
			`return $users;`
			`}`
add file permissions cache 2012-10-26 21:07:29 +04:00			`}`