* @author Roeland Jago Douma * * @license AGPL-3.0 * * This code is free software: you can redistribute it and/or modify * it under the terms of the GNU Affero General Public License, version 3, * as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU Affero General Public License for more details. * * You should have received a copy of the GNU Affero General Public License, version 3, * along with this program. If not, see * */ namespace OCA\Files_External\Lib\Auth\PublicKey; use \OCP\IL10N; use \OCA\Files_External\Lib\DefinitionParameter; use \OCA\Files_External\Lib\Auth\AuthMechanism; use \OCA\Files_External\Lib\StorageConfig; use \OCP\IConfig; use OCP\IUser; use \phpseclib\Crypt\RSA as RSACrypt; /** * RSA public key authentication */ class RSA extends AuthMechanism { /** @var IConfig */ private $config; public function __construct(IL10N $l, IConfig $config) { $this->config = $config; $this ->setIdentifier('publickey::rsa') ->setScheme(self::SCHEME_PUBLICKEY) ->setText($l->t('RSA public key')) ->addParameters([ (new DefinitionParameter('user', $l->t('Username'))), (new DefinitionParameter('public_key', $l->t('Public key'))), (new DefinitionParameter('private_key', 'private_key')) ->setType(DefinitionParameter::VALUE_HIDDEN), ]) ->addCustomJs('public_key') ; } public function manipulateStorageConfig(StorageConfig &$storage, IUser $user = null) { $auth = new RSACrypt(); $auth->setPassword($this->config->getSystemValue('secret', '')); if (!$auth->loadKey($storage->getBackendOption('private_key'))) { throw new \RuntimeException('unable to load private key'); } $storage->setBackendOption('public_key_auth', $auth); } /** * Generate a keypair * * @param int $keyLenth * @return array ['privatekey' => $privateKey, 'publickey' => $publicKey] */ public function createKey($keyLength) { $rsa = new RSACrypt(); $rsa->setPublicKeyFormat(RSACrypt::PUBLIC_FORMAT_OPENSSH); $rsa->setPassword($this->config->getSystemValue('secret', '')); if ($keyLength !== 1024 && $keyLength !== 2048 && $keyLength !== 4096) { $keyLength = 1024; } return $rsa->createKey($keyLength); } }