alpcentaur
/
sncf-docker-compose
mirror of https://git.42l.fr/alpcentaur/sncf-docker-compose.git
1
0
Fork 0
Code Issues 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
20 MiB
Tree: 70323168b1
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '70323168b1'
${ noResults }
sncf-docker-compose/docker/overlays/nextcloud/html/lib/private/Authentication/Token/PublicKeyTokenMapper.php

190 lines
6.3 KiB
Raw Normal View History

first commit
3 years ago
 
  1. <?php
  2. 

  3. declare(strict_types=1);
  4. 

  5. /**
  6.  * @copyright Copyright (c) 2018 Roeland Jago Douma <roeland@famdouma.nl>
  7.  *
  8.  * @author Daniel Kesselberg <mail@danielkesselberg.de>
  9.  * @author Roeland Jago Douma <roeland@famdouma.nl>
  10.  *
  11.  * @license GNU AGPL version 3 or any later version
  12.  *
  13.  * This program is free software: you can redistribute it and/or modify
  14.  * it under the terms of the GNU Affero General Public License as
  15.  * published by the Free Software Foundation, either version 3 of the
  16.  * License, or (at your option) any later version.
  17.  *
  18.  * This program is distributed in the hope that it will be useful,
  19.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  20.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  21.  * GNU Affero General Public License for more details.
  22.  *
  23.  * You should have received a copy of the GNU Affero General Public License
  24.  * along with this program. If not, see <http://www.gnu.org/licenses/>.
  25.  *
  26.  */
  27. 

  28. namespace OC\Authentication\Token;
  29. 

  30. use OCP\AppFramework\Db\DoesNotExistException;
  31. use OCP\AppFramework\Db\QBMapper;
  32. use OCP\DB\QueryBuilder\IQueryBuilder;
  33. use OCP\IDBConnection;
  34. 

  35. class PublicKeyTokenMapper extends QBMapper {
  36. 	public function __construct(IDBConnection $db) {
  37. 		parent::__construct($db, 'authtoken');
  38. 	}
  39. 

  40. 	/**
  41. 	 * Invalidate (delete) a given token
  42. 	 *
  43. 	 * @param string $token
  44. 	 */
  45. 	public function invalidate(string $token) {
  46. 		/* @var $qb IQueryBuilder */
  47. 		$qb = $this->db->getQueryBuilder();
  48. 		$qb->delete('authtoken')
  49. 			->where($qb->expr()->eq('token', $qb->createNamedParameter($token)))
  50. 			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(PublicKeyToken::VERSION, IQueryBuilder::PARAM_INT)))
  51. 			->execute();
  52. 	}
  53. 

  54. 	/**
  55. 	 * @param int $olderThan
  56. 	 * @param int $remember
  57. 	 */
  58. 	public function invalidateOld(int $olderThan, int $remember = IToken::DO_NOT_REMEMBER) {
  59. 		/* @var $qb IQueryBuilder */
  60. 		$qb = $this->db->getQueryBuilder();
  61. 		$qb->delete('authtoken')
  62. 			->where($qb->expr()->lt('last_activity', $qb->createNamedParameter($olderThan, IQueryBuilder::PARAM_INT)))
  63. 			->andWhere($qb->expr()->eq('type', $qb->createNamedParameter(IToken::TEMPORARY_TOKEN, IQueryBuilder::PARAM_INT)))
  64. 			->andWhere($qb->expr()->eq('remember', $qb->createNamedParameter($remember, IQueryBuilder::PARAM_INT)))
  65. 			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(PublicKeyToken::VERSION, IQueryBuilder::PARAM_INT)))
  66. 			->execute();
  67. 	}
  68. 

  69. 	/**
  70. 	 * Get the user UID for the given token
  71. 	 *
  72. 	 * @throws DoesNotExistException
  73. 	 */
  74. 	public function getToken(string $token): PublicKeyToken {
  75. 		/* @var $qb IQueryBuilder */
  76. 		$qb = $this->db->getQueryBuilder();
  77. 		$result = $qb->select('*')
  78. 			->from('authtoken')
  79. 			->where($qb->expr()->eq('token', $qb->createNamedParameter($token)))
  80. 			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(PublicKeyToken::VERSION, IQueryBuilder::PARAM_INT)))
  81. 			->execute();
  82. 

  83. 		$data = $result->fetch();
  84. 		$result->closeCursor();
  85. 		if ($data === false) {
  86. 			throw new DoesNotExistException('token does not exist');
  87. 		}
  88. 		return PublicKeyToken::fromRow($data);
  89. 	}
  90. 

  91. 	/**
  92. 	 * Get the token for $id
  93. 	 *
  94. 	 * @throws DoesNotExistException
  95. 	 */
  96. 	public function getTokenById(int $id): PublicKeyToken {
  97. 		/* @var $qb IQueryBuilder */
  98. 		$qb = $this->db->getQueryBuilder();
  99. 		$result = $qb->select('*')
  100. 			->from('authtoken')
  101. 			->where($qb->expr()->eq('id', $qb->createNamedParameter($id)))
  102. 			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(PublicKeyToken::VERSION, IQueryBuilder::PARAM_INT)))
  103. 			->execute();
  104. 

  105. 		$data = $result->fetch();
  106. 		$result->closeCursor();
  107. 		if ($data === false) {
  108. 			throw new DoesNotExistException('token does not exist');
  109. 		}
  110. 		return PublicKeyToken::fromRow($data);
  111. 	}
  112. 

  113. 	/**
  114. 	 * Get all tokens of a user
  115. 	 *
  116. 	 * The provider may limit the number of result rows in case of an abuse
  117. 	 * where a high number of (session) tokens is generated
  118. 	 *
  119. 	 * @param string $uid
  120. 	 * @return PublicKeyToken[]
  121. 	 */
  122. 	public function getTokenByUser(string $uid): array {
  123. 		/* @var $qb IQueryBuilder */
  124. 		$qb = $this->db->getQueryBuilder();
  125. 		$qb->select('*')
  126. 			->from('authtoken')
  127. 			->where($qb->expr()->eq('uid', $qb->createNamedParameter($uid)))
  128. 			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(PublicKeyToken::VERSION, IQueryBuilder::PARAM_INT)))
  129. 			->setMaxResults(1000);
  130. 		$result = $qb->execute();
  131. 		$data = $result->fetchAll();
  132. 		$result->closeCursor();
  133. 

  134. 		$entities = array_map(function ($row) {
  135. 			return PublicKeyToken::fromRow($row);
  136. 		}, $data);
  137. 

  138. 		return $entities;
  139. 	}
  140. 

  141. 	public function deleteById(string $uid, int $id) {
  142. 		/* @var $qb IQueryBuilder */
  143. 		$qb = $this->db->getQueryBuilder();
  144. 		$qb->delete('authtoken')
  145. 			->where($qb->expr()->eq('id', $qb->createNamedParameter($id)))
  146. 			->andWhere($qb->expr()->eq('uid', $qb->createNamedParameter($uid)))
  147. 			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(PublicKeyToken::VERSION, IQueryBuilder::PARAM_INT)));
  148. 		$qb->execute();
  149. 	}
  150. 

  151. 	/**
  152. 	 * delete all auth token which belong to a specific client if the client was deleted
  153. 	 *
  154. 	 * @param string $name
  155. 	 */
  156. 	public function deleteByName(string $name) {
  157. 		$qb = $this->db->getQueryBuilder();
  158. 		$qb->delete('authtoken')
  159. 			->where($qb->expr()->eq('name', $qb->createNamedParameter($name), IQueryBuilder::PARAM_STR))
  160. 			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(PublicKeyToken::VERSION, IQueryBuilder::PARAM_INT)));
  161. 		$qb->execute();
  162. 	}
  163. 

  164. 	public function deleteTempToken(PublicKeyToken $except) {
  165. 		$qb = $this->db->getQueryBuilder();
  166. 

  167. 		$qb->delete('authtoken')
  168. 			->where($qb->expr()->eq('uid', $qb->createNamedParameter($except->getUID())))
  169. 			->andWhere($qb->expr()->eq('type', $qb->createNamedParameter(IToken::TEMPORARY_TOKEN)))
  170. 			->andWhere($qb->expr()->neq('id', $qb->createNamedParameter($except->getId())))
  171. 			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(PublicKeyToken::VERSION, IQueryBuilder::PARAM_INT)));
  172. 

  173. 		$qb->execute();
  174. 	}
  175. 

  176. 	public function hasExpiredTokens(string $uid): bool {
  177. 		$qb = $this->db->getQueryBuilder();
  178. 		$qb->select('*')
  179. 			->from('authtoken')
  180. 			->where($qb->expr()->eq('uid', $qb->createNamedParameter($uid)))
  181. 			->andWhere($qb->expr()->eq('password_invalid', $qb->createNamedParameter(true), IQueryBuilder::PARAM_BOOL))
  182. 			->setMaxResults(1);
  183. 

  184. 		$cursor = $qb->execute();
  185. 		$data = $cursor->fetchAll();
  186. 		$cursor->closeCursor();
  187. 

  188. 		return count($data) === 1;
  189. 	}
  190. }