[PoC] Allow to uplod avatars via a public API
Fixes #10549 * Avatar must be sqaure * POST must be done using a mutlipart form * Key is avatar Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
This commit is contained in:
Roeland Jago Douma
parent
a0058fe601
commit
d9245b0da2
|
|
@ -64,6 +64,9 @@ return [
|
|||
['root' => '/cloud', 'name' => 'Users#addSubAdmin', 'url' => '/users/{userId}/subadmins', 'verb' => 'POST'],
|
||||
['root' => '/cloud', 'name' => 'Users#removeSubAdmin', 'url' => '/users/{userId}/subadmins', 'verb' => 'DELETE'],
|
||||
['root' => '/cloud', 'name' => 'Users#resendWelcomeMessage', 'url' => '/users/{userId}/welcome', 'verb' => 'POST'],
|
||||
['root' => '/cloud', 'name' => 'Users#getAvatar', 'url' => '/users/{userId}/avatar', 'verb' => 'GET'],
|
||||
['root' => '/cloud', 'name' => 'Users#deleteAvatar', 'url' => '/users/{userId}/avatar', 'verb' => 'DELETE'],
|
||||
['root' => '/cloud', 'name' => 'Users#uploadAvatar', 'url' => '/users/{userId}/avatar', 'verb' => 'POST'],
|
||||
|
||||
// Config
|
||||
['name' => 'AppConfig#getApps', 'url' => '/api/v1/config/apps', 'verb' => 'GET'],
|
||||
|
|
|
|||
|
|
@ -43,12 +43,15 @@ namespace OCA\Provisioning_API\Controller;
|
|||
use OC\Accounts\AccountManager;
|
||||
use OC\Authentication\Token\RemoteWipe;
|
||||
use OC\HintException;
|
||||
use OC\NotSquareException;
|
||||
use OCA\Provisioning_API\FederatedFileSharingFactory;
|
||||
use OCA\Settings\Mailer\NewUserMailHelper;
|
||||
use OCP\App\IAppManager;
|
||||
use OCP\AppFramework\Http;
|
||||
use OCP\AppFramework\Http\DataResponse;
|
||||
use OCP\AppFramework\OCS\OCSException;
|
||||
use OCP\AppFramework\OCS\OCSForbiddenException;
|
||||
use OCP\IAvatarManager;
|
||||
use OCP\IConfig;
|
||||
use OCP\IGroup;
|
||||
use OCP\IGroupManager;
|
||||
|
|
@ -76,6 +79,10 @@ class UsersController extends AUserData {
|
|||
private $secureRandom;
|
||||
/** @var RemoteWipe */
|
||||
private $remoteWipe;
|
||||
/**
|
||||
* @var IAvatarManager
|
||||
*/
|
||||
private $avatarManager;
|
||||
|
||||
/**
|
||||
* @param string $appName
|
||||
|
|
@ -105,7 +112,8 @@ class UsersController extends AUserData {
|
|||
NewUserMailHelper $newUserMailHelper,
|
||||
FederatedFileSharingFactory $federatedFileSharingFactory,
|
||||
ISecureRandom $secureRandom,
|
||||
RemoteWipe $remoteWipe) {
|
||||
RemoteWipe $remoteWipe,
|
||||
IAvatarManager $avatarManager) {
|
||||
parent::__construct($appName,
|
||||
$request,
|
||||
$userManager,
|
||||
|
|
@ -121,6 +129,7 @@ class UsersController extends AUserData {
|
|||
$this->federatedFileSharingFactory = $federatedFileSharingFactory;
|
||||
$this->secureRandom = $secureRandom;
|
||||
$this->remoteWipe = $remoteWipe;
|
||||
$this->avatarManager = $avatarManager;
|
||||
}
|
||||
|
||||
/**
|
||||
|
|
@ -984,4 +993,68 @@ class UsersController extends AUserData {
|
|||
|
||||
return new DataResponse();
|
||||
}
|
||||
|
||||
/**
|
||||
* @NoAdminRequired
|
||||
*/
|
||||
public function getAvatar(string $userId): DataResponse {
|
||||
// TODO: Return link to avatar?
|
||||
}
|
||||
|
||||
public function deleteAvatar(string $userId): DataResponse {
|
||||
$currentLoggedInUser = $this->userSession->getUser();
|
||||
|
||||
$targetUser = $this->userManager->get($userId);
|
||||
if ($targetUser === null) {
|
||||
throw new OCSException('', \OCP\API::RESPOND_NOT_FOUND);
|
||||
}
|
||||
|
||||
// Check if admin / subadmin
|
||||
$subAdminManager = $this->groupManager->getSubAdmin();
|
||||
if (!$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)
|
||||
&& !$this->groupManager->isAdmin($currentLoggedInUser->getUID())) {
|
||||
// No rights
|
||||
throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED);
|
||||
}
|
||||
|
||||
$avatar = $this->avatarManager->getAvatar($userId);
|
||||
$avatar->remove();
|
||||
|
||||
return new DataResponse([]);
|
||||
}
|
||||
|
||||
public function uploadAvatar(string $userId): DataResponse {
|
||||
$currentLoggedInUser = $this->userSession->getUser();
|
||||
|
||||
$targetUser = $this->userManager->get($userId);
|
||||
if ($targetUser === null) {
|
||||
throw new OCSException('', \OCP\API::RESPOND_NOT_FOUND);
|
||||
}
|
||||
|
||||
// Check if admin / subadmin
|
||||
$subAdminManager = $this->groupManager->getSubAdmin();
|
||||
if (!$subAdminManager->isUserAccessible($currentLoggedInUser, $targetUser)
|
||||
&& !$this->groupManager->isAdmin($currentLoggedInUser->getUID())) {
|
||||
// No rights
|
||||
throw new OCSException('', \OCP\API::RESPOND_UNAUTHORISED);
|
||||
}
|
||||
|
||||
$file = $this->request->getUploadedFile('avatar');
|
||||
|
||||
if ($file['size'] > 20 * 1024 * 1024) {
|
||||
return new DataResponse([], Http::STATUS_BAD_REQUEST);
|
||||
}
|
||||
|
||||
$data = file_get_contents($file['tmp_name']);
|
||||
|
||||
$avatar = $this->avatarManager->getAvatar($userId);
|
||||
|
||||
try {
|
||||
$avatar->set($data);
|
||||
} catch (NotSquareException $e) {
|
||||
return new DataResponse([], Http::STATUS_BAD_REQUEST);
|
||||
}
|
||||
|
||||
return new DataResponse([]);
|
||||
}
|
||||
}
|
||||
|
|
|
|||
|
|
@ -29,7 +29,7 @@
|
|||
// between betas, final and RCs. This is _not_ the public version number. Reset minor/patchlevel
|
||||
// when updating major/minor version number.
|
||||
|
||||
$OC_Version = array(19, 0, 0, 0);
|
||||
$OC_Version = array(19, 0, 0, 1);
|
||||
|
||||
// The human readable string
|
||||
$OC_VersionString = '19.0.0 alpha';
|
||||
|
|
|
|||
Loading…
Reference in New Issue