nextcloud/apps/files_encryption/hooks/hooks.php

<?php
/**
 * ownCloud
 *
 * @author Sam Tuke
 * @copyright 2012 Sam Tuke samtuke@owncloud.org
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
 * License as published by the Free Software Foundation; either
 * version 3 of the License, or any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU AFFERO GENERAL PUBLIC LICENSE for more details.
 *
 * You should have received a copy of the GNU Affero General Public
 * License along with this library.  If not, see <http://www.gnu.org/licenses/>.
 *
 */

namespace OCA_Encryption;

/**
 * Class for hook specific logic
 */

class Hooks {

	# TODO: use passphrase for encrypting private key that is separate to the login password

	/**
	 * @brief Startup encryption backend upon user login
	 * @note This method should never be called for users using client side encryption
	 */

	public static function login( $params ) {

		if ( Crypt::mode( $params['uid'] ) == 'server' ) {

			$view = new \OC_FilesystemView( '/' );

			$util = new Util( $view, $params['uid'] );

			if ( !$util->ready()) {
				
				return $util->setupServerSide( $params['password'] );

			}

			$encryptedKey = Keymanager::getPrivateKey( $params['uid'] );

			$_SESSION['enckey'] = Crypt::symmetricEncryptFileContent( $encryptedKey, $params['password'] );
		}

		return true;

	}

	
	/**
	 * @brief update the encryption key of the file uploaded by the client
	 */
	public static function updateKeyfile( $params ) {
		if (Crypt::mode() == 'client')
			if (isset($params['properties']['key'])) {
				Keymanager::setFileKey($params['path'], $params['properties']['key']);
			} else {
				\OC_Log::write( 'Encryption library', "Client side encryption is enabled but the client doesn't provide a encryption key for the file!", \OC_Log::ERROR );
				error_log("Client side encryption is enabled but the client doesn't provide a encryption key for the file!");
		}
	}
}

?>
Development snapshot: Rewrote crtpt class as Util, Hooks, and Crypt Switched blowfish for openssl with AES Added setup() method for creating user keys and directory structure Many other changes complete and in progress 2012-07-11 20:51:27 +04:00			`<?php`
			`/**`
			`* ownCloud`
			`*`
			`* @author Sam Tuke`
			`* @copyright 2012 Sam Tuke samtuke@owncloud.org`
			`*`
			`* This library is free software; you can redistribute it and/or`
			`* modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE`
			`* License as published by the Free Software Foundation; either`
			`* version 3 of the License, or any later version.`
			`*`
			`* This library is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU AFFERO GENERAL PUBLIC LICENSE for more details.`
			`*`
			`* You should have received a copy of the GNU Affero General Public`
			`* License along with this library. If not, see <http://www.gnu.org/licenses/>.`
			`*`
			`*/`

			`namespace OCA_Encryption;`

			`/**`
			`* Class for hook specific logic`
			`*/`

			`class Hooks {`

Fixed various bugs in hooks class Fixed documentation syntax in keymanager 2012-07-25 19:51:48 +04:00			`# TODO: use passphrase for encrypting private key that is separate to the login password`

			`/**`
			`* @brief Startup encryption backend upon user login`
			`* @note This method should never be called for users using client side encryption`
			`*/`
run setup routine only for server side encryption 2012-07-27 15:58:58 +04:00
			`public static function login( $params ) {`

Implemented writing of keyfiles and directory hierarchy in proxy class Added crypt::findFiles() method for finding different types of files, ready for batch encrypting / decrypting Added comments to postFopen in proxy class 2012-07-31 22:35:36 +04:00			`if ( Crypt::mode( $params['uid'] ) == 'server' ) {`
run setup routine only for server side encryption 2012-07-27 15:58:58 +04:00
			`$view = new \OC_FilesystemView( '/' );`

			`$util = new Util( $view, $params['uid'] );`

			`if ( !$util->ready()) {`
Implemented writing of keyfiles and directory hierarchy in proxy class Added crypt::findFiles() method for finding different types of files, ready for batch encrypting / decrypting Added comments to postFopen in proxy class 2012-07-31 22:35:36 +04:00
run setup routine only for server side encryption 2012-07-27 15:58:58 +04:00			`return $util->setupServerSide( $params['password'] );`

			`}`

			`$encryptedKey = Keymanager::getPrivateKey( $params['uid'] );`

			`$_SESSION['enckey'] = Crypt::symmetricEncryptFileContent( $encryptedKey, $params['password'] );`
Development snapshot: Rewrote crtpt class as Util, Hooks, and Crypt Switched blowfish for openssl with AES Added setup() method for creating user keys and directory structure Many other changes complete and in progress 2012-07-11 20:51:27 +04:00			`}`
run setup routine only for server side encryption 2012-07-27 15:58:58 +04:00
Started implementation of new encyryption classes into the encryption proxy 2012-07-25 19:25:24 +04:00			`return true;`
run setup routine only for server side encryption 2012-07-27 15:58:58 +04:00
Development snapshot: Rewrote crtpt class as Util, Hooks, and Crypt Switched blowfish for openssl with AES Added setup() method for creating user keys and directory structure Many other changes complete and in progress 2012-07-11 20:51:27 +04:00			`}`

update file encryption key over webdav properties for client side encryption 2012-07-31 17:03:28 +04:00
			`/**`
			`* @brief update the encryption key of the file uploaded by the client`
			`*/`
			`public static function updateKeyfile( $params ) {`
execute file hooks only if server side encryption is enabled 2012-08-10 14:27:09 +04:00			`if (Crypt::mode() == 'client')`
update file encryption key over webdav properties for client side encryption 2012-07-31 17:03:28 +04:00			`if (isset($params['properties']['key'])) {`
fix setFileKey() call in updateKeyfile hook 2012-08-08 17:32:05 +04:00			`Keymanager::setFileKey($params['path'], $params['properties']['key']);`
update file encryption key over webdav properties for client side encryption 2012-07-31 17:03:28 +04:00			`} else {`
write error to OC_Log 2012-08-13 15:29:22 +04:00			`\OC_Log::write( 'Encryption library', "Client side encryption is enabled but the client doesn't provide a encryption key for the file!", \OC_Log::ERROR );`
update file encryption key over webdav properties for client side encryption 2012-07-31 17:03:28 +04:00			`error_log("Client side encryption is enabled but the client doesn't provide a encryption key for the file!");`
			`}`
			`}`
Development snapshot: Rewrote crtpt class as Util, Hooks, and Crypt Switched blowfish for openssl with AES Added setup() method for creating user keys and directory structure Many other changes complete and in progress 2012-07-11 20:51:27 +04:00			`}`

			`?>`