nextcloud/lib/private/legacy/json.php

163 lines
5.3 KiB
PHP
Raw Normal View History

<?php
/**
2016-07-21 18:07:57 +03:00
* @copyright Copyright (c) 2016, ownCloud, Inc.
*
2015-03-26 13:44:34 +03:00
* @author Bart Visscher <bartv@thisnet.nl>
* @author Bernhard Posselt <dev@bernhard-posselt.com>
2016-07-21 18:07:57 +03:00
* @author Christoph Wurst <christoph@owncloud.com>
2015-03-26 13:44:34 +03:00
* @author Felix Moeller <mail@felixmoeller.de>
* @author Georg Ehrke <oc.list@georgehrke.com>
2016-05-26 20:56:05 +03:00
* @author Lukas Reschke <lukas@statuscode.ch>
2015-03-26 13:44:34 +03:00
* @author Morris Jobke <hey@morrisjobke.de>
2016-07-21 19:13:36 +03:00
* @author Robin Appelman <robin@icewind.nl>
* @author Roeland Jago Douma <roeland@famdouma.nl>
* @author Sebastian Wessalowski <sebastian@wessalowski.org>
2015-03-26 13:44:34 +03:00
* @author Thomas Müller <thomas.mueller@tmit.eu>
* @author Thomas Tanghus <thomas@tanghus.net>
* @author Vincent Petry <pvince81@owncloud.com>
*
* @license AGPL-3.0
*
* This code is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License, version 3,
* as published by the Free Software Foundation.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License, version 3,
* along with this program. If not, see <http://www.gnu.org/licenses/>
*
*/
/**
* Class OC_JSON
* @deprecated Use a AppFramework JSONResponse instead
*/
class OC_JSON{
/**
* Check if the app is enabled, send json error msg if not
* @param string $app
* @deprecated Use the AppFramework instead. It will automatically check if the app is enabled.
* @suppress PhanDeprecatedFunction
*/
2012-09-07 17:22:01 +04:00
public static function checkAppEnabled($app) {
if( !\OC::$server->getAppManager()->isEnabledForUser($app)) {
2014-08-31 12:05:59 +04:00
$l = \OC::$server->getL10N('lib');
self::error(array( 'data' => array( 'message' => $l->t('Application is not enabled'), 'error' => 'application_not_enabled' )));
exit();
}
}
/**
* Check if the user is logged in, send json error msg if not
* @deprecated Use annotation based ACLs from the AppFramework instead
* @suppress PhanDeprecatedFunction
*/
2012-09-07 17:22:01 +04:00
public static function checkLoggedIn() {
2016-06-10 10:52:52 +03:00
$twoFactorAuthManger = \OC::$server->getTwoFactorAuthManager();
if( !\OC::$server->getUserSession()->isLoggedIn()
|| $twoFactorAuthManger->needsSecondFactor(\OC::$server->getUserSession()->getUser())) {
2014-08-31 12:05:59 +04:00
$l = \OC::$server->getL10N('lib');
http_response_code(\OCP\AppFramework\Http::STATUS_UNAUTHORIZED);
self::error(array( 'data' => array( 'message' => $l->t('Authentication error'), 'error' => 'authentication_error' )));
exit();
}
}
/**
2014-04-21 17:44:54 +04:00
* Check an ajax get/post call if the request token is valid, send json error msg if not.
* @deprecated Use annotation based CSRF checks from the AppFramework instead
* @suppress PhanDeprecatedFunction
*/
2012-09-07 17:22:01 +04:00
public static function callCheck() {
if(!\OC::$server->getRequest()->passesStrictCookieCheck()) {
header('Location: '.\OC::$WEBROOT);
exit();
}
if( !\OC::$server->getRequest()->passesCSRFCheck()) {
2014-08-31 12:05:59 +04:00
$l = \OC::$server->getL10N('lib');
self::error(array( 'data' => array( 'message' => $l->t('Token expired. Please reload page.'), 'error' => 'token_expired' )));
exit();
}
}
2012-08-29 10:38:33 +04:00
/**
* Check if the user is a admin, send json error msg if not.
* @deprecated Use annotation based ACLs from the AppFramework instead
* @suppress PhanDeprecatedFunction
*/
2012-09-07 17:22:01 +04:00
public static function checkAdminUser() {
if( !OC_User::isAdminUser(OC_User::getUser())) {
2014-08-31 12:05:59 +04:00
$l = \OC::$server->getL10N('lib');
self::error(array( 'data' => array( 'message' => $l->t('Authentication error'), 'error' => 'authentication_error' )));
exit();
}
}
2012-08-29 10:38:33 +04:00
/**
* Check if the user is a subadmin, send json error msg if not
* @deprecated Use annotation based ACLs from the AppFramework instead
* @suppress PhanDeprecatedFunction
*/
2012-09-07 17:22:01 +04:00
public static function checkSubAdminUser() {
2015-10-27 16:09:45 +03:00
$userObject = \OC::$server->getUserSession()->getUser();
$isSubAdmin = false;
if($userObject !== null) {
$isSubAdmin = \OC::$server->getGroupManager()->getSubAdmin()->isSubAdmin($userObject);
}
if(!$isSubAdmin) {
2014-08-31 12:05:59 +04:00
$l = \OC::$server->getL10N('lib');
self::error(array( 'data' => array( 'message' => $l->t('Authentication error'), 'error' => 'authentication_error' )));
exit();
}
}
2013-01-14 23:30:39 +04:00
/**
* Send json error msg
* @deprecated Use a AppFramework JSONResponse instead
* @suppress PhanDeprecatedFunction
*/
2012-09-07 17:22:01 +04:00
public static function error($data = array()) {
$data['status'] = 'error';
header( 'Content-Type: application/json; charset=utf-8');
echo self::encode($data);
}
/**
* Send json success msg
* @deprecated Use a AppFramework JSONResponse instead
* @suppress PhanDeprecatedFunction
*/
2012-09-07 17:22:01 +04:00
public static function success($data = array()) {
$data['status'] = 'success';
header( 'Content-Type: application/json; charset=utf-8');
echo self::encode($data);
}
/**
* Convert OC_L10N_String to string, for use in json encodings
*/
2012-09-07 17:22:01 +04:00
protected static function to_string(&$value) {
if ($value instanceof \OC\L10N\L10NString) {
$value = (string)$value;
}
}
/**
* Encode JSON
* @deprecated Use a AppFramework JSONResponse instead
*/
public static function encode($data) {
2013-12-18 18:25:28 +04:00
if (is_array($data)) {
array_walk_recursive($data, array('OC_JSON', 'to_string'));
}
return json_encode($data, JSON_HEX_TAG);
}
}