alpcentaur
/
sncf-docker-compose
mirror of https://git.42l.fr/alpcentaur/sncf-docker-compose.git
1
0
Fork 0
Code Issues 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
20 MiB
Tree: 70323168b1
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '70323168b1'
${ noResults }
sncf-docker-compose/docker/overlays/nextcloud/html/lib/private/Authentication/Token/RemoteWipe.php

155 lines
3.9 KiB
Raw Normal View History

first commit
3 years ago
 
  1. <?php
  2. 

  3. declare(strict_types=1);
  4. 

  5. /**
  6.  * @copyright 2019 Christoph Wurst <christoph@winzerhof-wurst.at>
  7.  *
  8.  * @author Christoph Wurst <christoph@winzerhof-wurst.at>
  9.  * @author Joas Schilling <coding@schilljs.com>
  10.  * @author Roeland Jago Douma <roeland@famdouma.nl>
  11.  *
  12.  * @license GNU AGPL version 3 or any later version
  13.  *
  14.  * This program is free software: you can redistribute it and/or modify
  15.  * it under the terms of the GNU Affero General Public License as
  16.  * published by the Free Software Foundation, either version 3 of the
  17.  * License, or (at your option) any later version.
  18.  *
  19.  * This program is distributed in the hope that it will be useful,
  20.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  21.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  22.  * GNU Affero General Public License for more details.
  23.  *
  24.  * You should have received a copy of the GNU Affero General Public License
  25.  * along with this program. If not, see <http://www.gnu.org/licenses/>.
  26.  *
  27.  */
  28. 

  29. namespace OC\Authentication\Token;
  30. 

  31. use function array_filter;
  32. use OC\Authentication\Events\RemoteWipeFinished;
  33. use OC\Authentication\Events\RemoteWipeStarted;
  34. use OC\Authentication\Exceptions\InvalidTokenException;
  35. use OC\Authentication\Exceptions\WipeTokenException;
  36. use OCP\EventDispatcher\IEventDispatcher;
  37. use OCP\ILogger;
  38. use OCP\IUser;
  39. 

  40. class RemoteWipe {
  41. 

  42. 	/** @var IProvider */
  43. 	private $tokenProvider;
  44. 

  45. 	/** @var IEventDispatcher */
  46. 	private $eventDispatcher;
  47. 

  48. 	/** @var ILogger */
  49. 	private $logger;
  50. 

  51. 	public function __construct(IProvider $tokenProvider,
  52. 								IEventDispatcher $eventDispatcher,
  53. 								ILogger $logger) {
  54. 		$this->tokenProvider = $tokenProvider;
  55. 		$this->eventDispatcher = $eventDispatcher;
  56. 		$this->logger = $logger;
  57. 	}
  58. 

  59. 	/**
  60. 	 * @param IToken $token
  61. 	 * @return bool
  62. 	 *
  63. 	 * @throws InvalidTokenException
  64. 	 * @throws WipeTokenException
  65. 	 */
  66. 	public function markTokenForWipe(IToken $token): bool {
  67. 		if (!$token instanceof IWipeableToken) {
  68. 			return false;
  69. 		}
  70. 

  71. 		$token->wipe();
  72. 		$this->tokenProvider->updateToken($token);
  73. 

  74. 		return true;
  75. 	}
  76. 

  77. 	/**
  78. 	 * @param IUser $user
  79. 	 *
  80. 	 * @return bool true if any tokens have been marked for remote wipe
  81. 	 */
  82. 	public function markAllTokensForWipe(IUser $user): bool {
  83. 		$tokens = $this->tokenProvider->getTokenByUser($user->getUID());
  84. 

  85. 		/** @var IWipeableToken[] $wipeable */
  86. 		$wipeable = array_filter($tokens, function (IToken $token) {
  87. 			return $token instanceof IWipeableToken;
  88. 		});
  89. 

  90. 		if (empty($wipeable)) {
  91. 			return false;
  92. 		}
  93. 

  94. 		foreach ($wipeable as $token) {
  95. 			$token->wipe();
  96. 			$this->tokenProvider->updateToken($token);
  97. 		}
  98. 

  99. 		return true;
  100. 	}
  101. 

  102. 	/**
  103. 	 * @param string $token
  104. 	 *
  105. 	 * @return bool whether wiping was started
  106. 	 * @throws InvalidTokenException
  107. 	 *
  108. 	 */
  109. 	public function start(string $token): bool {
  110. 		try {
  111. 			$this->tokenProvider->getToken($token);
  112. 

  113. 			// We expect a WipedTokenException here. If we reach this point this

  114. 			// is an ordinary token

  115. 			return false;
  116. 		} catch (WipeTokenException $e) {
  117. 			// Expected -> continue below

  118. 		}
  119. 

  120. 		$dbToken = $e->getToken();
  121. 

  122. 		$this->logger->info("user " . $dbToken->getUID() . " started a remote wipe");
  123. 

  124. 		$this->eventDispatcher->dispatch(RemoteWipeStarted::class, new RemoteWipeStarted($dbToken));
  125. 

  126. 		return true;
  127. 	}
  128. 

  129. 	/**
  130. 	 * @param string $token
  131. 	 *
  132. 	 * @return bool whether wiping could be finished
  133. 	 * @throws InvalidTokenException
  134. 	 */
  135. 	public function finish(string $token): bool {
  136. 		try {
  137. 			$this->tokenProvider->getToken($token);
  138. 

  139. 			// We expect a WipedTokenException here. If we reach this point this

  140. 			// is an ordinary token

  141. 			return false;
  142. 		} catch (WipeTokenException $e) {
  143. 			// Expected -> continue below

  144. 		}
  145. 

  146. 		$dbToken = $e->getToken();
  147. 

  148. 		$this->tokenProvider->invalidateToken($token);
  149. 

  150. 		$this->logger->info("user " . $dbToken->getUID() . " finished a remote wipe");
  151. 		$this->eventDispatcher->dispatch(RemoteWipeFinished::class, new RemoteWipeFinished($dbToken));
  152. 

  153. 		return true;
  154. 	}
  155. }