2011-08-15 23:06:29 +04:00
|
|
|
<?php
|
2012-02-26 00:19:32 +04:00
|
|
|
/**
|
2016-07-21 18:07:57 +03:00
|
|
|
* @copyright Copyright (c) 2016, ownCloud, Inc.
|
|
|
|
*
|
2016-05-26 20:56:05 +03:00
|
|
|
* @author Arthur Schiwon <blizzz@arthur-schiwon.de>
|
2015-03-26 13:44:34 +03:00
|
|
|
* @author Bart Visscher <bartv@thisnet.nl>
|
2016-05-26 20:56:05 +03:00
|
|
|
* @author Björn Schießle <bjoern@schiessle.org>
|
2015-03-26 13:44:34 +03:00
|
|
|
* @author Christopher Schäpers <kondou@ts.unde.re>
|
|
|
|
* @author Felix Moeller <mail@felixmoeller.de>
|
2017-11-06 22:15:27 +03:00
|
|
|
* @author Georg Ehrke <oc.list@georgehrke.com>
|
2017-11-06 17:56:42 +03:00
|
|
|
* @author Joas Schilling <coding@schilljs.com>
|
2016-05-26 20:56:05 +03:00
|
|
|
* @author Lukas Reschke <lukas@statuscode.ch>
|
2015-03-26 13:44:34 +03:00
|
|
|
* @author Morris Jobke <hey@morrisjobke.de>
|
2016-07-21 19:13:36 +03:00
|
|
|
* @author Robin Appelman <robin@icewind.nl>
|
2015-03-26 13:44:34 +03:00
|
|
|
* @author Thomas Müller <thomas.mueller@tmit.eu>
|
|
|
|
*
|
|
|
|
* @license AGPL-3.0
|
|
|
|
*
|
|
|
|
* This code is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU Affero General Public License, version 3,
|
|
|
|
* as published by the Free Software Foundation.
|
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU Affero General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU Affero General Public License, version 3,
|
|
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>
|
|
|
|
*
|
2012-02-26 00:19:32 +04:00
|
|
|
*/
|
2015-02-26 13:37:37 +03:00
|
|
|
|
2012-07-19 18:37:41 +04:00
|
|
|
OC_JSON::checkSubAdminUser();
|
2012-07-07 17:27:04 +04:00
|
|
|
OCP\JSON::callCheck();
|
2011-08-15 23:06:29 +04:00
|
|
|
|
2016-11-10 19:18:12 +03:00
|
|
|
$lastConfirm = (int) \OC::$server->getSession()->get('last-password-confirm');
|
|
|
|
if ($lastConfirm < (time() - 30 * 60 + 15)) { // allow 15 seconds delay
|
|
|
|
$l = \OC::$server->getL10N('core');
|
|
|
|
OC_JSON::error(array( 'data' => array( 'message' => $l->t('Password confirmation is required'))));
|
|
|
|
exit();
|
|
|
|
}
|
|
|
|
|
2015-02-13 15:33:20 +03:00
|
|
|
$username = isset($_POST["username"]) ? (string)$_POST["username"] : '';
|
2011-12-14 04:16:14 +04:00
|
|
|
|
2015-10-27 16:09:45 +03:00
|
|
|
$isUserAccessible = false;
|
|
|
|
$currentUserObject = \OC::$server->getUserSession()->getUser();
|
|
|
|
$targetUserObject = \OC::$server->getUserManager()->get($username);
|
|
|
|
if($targetUserObject !== null && $currentUserObject !== null) {
|
|
|
|
$isUserAccessible = \OC::$server->getGroupManager()->getSubAdmin()->isUserAccessible($currentUserObject, $targetUserObject);
|
|
|
|
}
|
|
|
|
|
2013-04-17 17:32:03 +04:00
|
|
|
if(($username === '' && !OC_User::isAdminUser(OC_User::getUser()))
|
2013-02-15 02:29:51 +04:00
|
|
|
|| (!OC_User::isAdminUser(OC_User::getUser())
|
2015-10-27 16:09:45 +03:00
|
|
|
&& !$isUserAccessible)) {
|
2014-08-31 12:05:59 +04:00
|
|
|
$l = \OC::$server->getL10N('core');
|
2012-07-19 20:00:33 +04:00
|
|
|
OC_JSON::error(array( 'data' => array( 'message' => $l->t('Authentication error') )));
|
2012-07-19 18:37:41 +04:00
|
|
|
exit();
|
|
|
|
}
|
|
|
|
|
2011-12-14 04:16:14 +04:00
|
|
|
//make sure the quota is in the expected format
|
2015-02-13 15:33:20 +03:00
|
|
|
$quota= (string)$_POST["quota"];
|
2013-04-17 17:32:03 +04:00
|
|
|
if($quota !== 'none' and $quota !== 'default') {
|
2012-02-24 17:10:19 +04:00
|
|
|
$quota= OC_Helper::computerFileSize($quota);
|
2013-05-06 13:43:50 +04:00
|
|
|
$quota=OC_Helper::humanFileSize($quota);
|
2012-02-24 17:10:19 +04:00
|
|
|
}
|
2011-08-15 23:06:29 +04:00
|
|
|
|
|
|
|
// Return Success story
|
2012-09-04 13:36:21 +04:00
|
|
|
if($username) {
|
2016-02-09 19:16:43 +03:00
|
|
|
$targetUserObject->setQuota($quota);
|
2012-02-25 00:19:23 +04:00
|
|
|
}else{//set the default quota when no username is specified
|
2013-04-17 17:32:03 +04:00
|
|
|
if($quota === 'default') {//'default' as default quota makes no sense
|
2012-02-25 00:19:23 +04:00
|
|
|
$quota='none';
|
|
|
|
}
|
2018-01-17 23:14:09 +03:00
|
|
|
\OC::$server->getConfig()->setAppValue('files', 'default_quota', $quota);
|
2012-02-25 00:19:23 +04:00
|
|
|
}
|
2012-11-04 14:10:46 +04:00
|
|
|
OC_JSON::success(array("data" => array( "username" => $username , 'quota' => $quota)));
|
2011-08-15 23:06:29 +04:00
|
|
|
|