alpcentaur
/
sncf-docker-compose
mirror of https://git.42l.fr/alpcentaur/sncf-docker-compose.git
1
0
Fork 0
Code Issues 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
20 MiB
Tree: 70323168b1
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '70323168b1'
${ noResults }
sncf-docker-compose/docker/overlays/nextcloud/html/lib/private/User/Database.php

498 lines
13 KiB
Raw Normal View History

first commit
3 years ago
 
  1. <?php
  2. 

  3. declare(strict_types=1);
  4. 

  5. /**
  6.  * @copyright Copyright (c) 2016, ownCloud, Inc.
  7.  *
  8.  * @author adrien <adrien.waksberg@believedigital.com>
  9.  * @author Aldo "xoen" Giambelluca <xoen@xoen.org>
  10.  * @author Arthur Schiwon <blizzz@arthur-schiwon.de>
  11.  * @author Bart Visscher <bartv@thisnet.nl>
  12.  * @author Bjoern Schiessle <bjoern@schiessle.org>
  13.  * @author Björn Schießle <bjoern@schiessle.org>
  14.  * @author Christoph Wurst <christoph@winzerhof-wurst.at>
  15.  * @author Daniel Calviño Sánchez <danxuliu@gmail.com>
  16.  * @author fabian <fabian@web2.0-apps.de>
  17.  * @author Georg Ehrke <oc.list@georgehrke.com>
  18.  * @author Jakob Sack <mail@jakobsack.de>
  19.  * @author Joas Schilling <coding@schilljs.com>
  20.  * @author Jörn Friedrich Dreyer <jfd@butonic.de>
  21.  * @author Loki3000 <github@labcms.ru>
  22.  * @author Lukas Reschke <lukas@statuscode.ch>
  23.  * @author Morris Jobke <hey@morrisjobke.de>
  24.  * @author nishiki <nishiki@yaegashi.fr>
  25.  * @author Robin Appelman <robin@icewind.nl>
  26.  * @author Robin McCorkell <robin@mccorkell.me.uk>
  27.  * @author Roeland Jago Douma <roeland@famdouma.nl>
  28.  * @author Thomas Müller <thomas.mueller@tmit.eu>
  29.  * @author Vincent Petry <pvince81@owncloud.com>
  30.  *
  31.  * @license AGPL-3.0
  32.  *
  33.  * This code is free software: you can redistribute it and/or modify
  34.  * it under the terms of the GNU Affero General Public License, version 3,
  35.  * as published by the Free Software Foundation.
  36.  *
  37.  * This program is distributed in the hope that it will be useful,
  38.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  39.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  40.  * GNU Affero General Public License for more details.
  41.  *
  42.  * You should have received a copy of the GNU Affero General Public License, version 3,
  43.  * along with this program. If not, see <http://www.gnu.org/licenses/>
  44.  *
  45.  */
  46. 

  47. /*
  48.  *
  49.  * The following SQL statement is just a help for developers and will not be
  50.  * executed!
  51.  *
  52.  * CREATE TABLE `users` (
  53.  *   `uid` varchar(64) COLLATE utf8_unicode_ci NOT NULL,
  54.  *   `password` varchar(255) COLLATE utf8_unicode_ci NOT NULL,
  55.  *   PRIMARY KEY (`uid`)
  56.  * ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;
  57.  *
  58.  */
  59. 

  60. namespace OC\User;
  61. 

  62. use OC\Cache\CappedMemoryCache;
  63. use OCP\EventDispatcher\IEventDispatcher;
  64. use OCP\IDBConnection;
  65. use OCP\Security\Events\ValidatePasswordPolicyEvent;
  66. use OCP\User\Backend\ABackend;
  67. use OCP\User\Backend\ICheckPasswordBackend;
  68. use OCP\User\Backend\ICountUsersBackend;
  69. use OCP\User\Backend\ICreateUserBackend;
  70. use OCP\User\Backend\IGetDisplayNameBackend;
  71. use OCP\User\Backend\IGetHomeBackend;
  72. use OCP\User\Backend\IGetRealUIDBackend;
  73. use OCP\User\Backend\ISetDisplayNameBackend;
  74. use OCP\User\Backend\ISetPasswordBackend;
  75. 

  76. /**
  77.  * Class for user management in a SQL Database (e.g. MySQL, SQLite)
  78.  */
  79. class Database extends ABackend implements
  80. 	ICreateUserBackend,
  81. 			   ISetPasswordBackend,
  82. 			   ISetDisplayNameBackend,
  83. 			   IGetDisplayNameBackend,
  84. 			   ICheckPasswordBackend,
  85. 			   IGetHomeBackend,
  86. 			   ICountUsersBackend,
  87. 			   IGetRealUIDBackend {
  88. 	/** @var CappedMemoryCache */
  89. 	private $cache;
  90. 

  91. 	/** @var IEventDispatcher */
  92. 	private $eventDispatcher;
  93. 

  94. 	/** @var IDBConnection */
  95. 	private $dbConn;
  96. 

  97. 	/** @var string */
  98. 	private $table;
  99. 

  100. 	/**
  101. 	 * \OC\User\Database constructor.
  102. 	 *
  103. 	 * @param IEventDispatcher $eventDispatcher
  104. 	 * @param string $table
  105. 	 */
  106. 	public function __construct($eventDispatcher = null, $table = 'users') {
  107. 		$this->cache = new CappedMemoryCache();
  108. 		$this->table = $table;
  109. 		$this->eventDispatcher = $eventDispatcher ? $eventDispatcher : \OC::$server->query(IEventDispatcher::class);
  110. 	}
  111. 

  112. 	/**
  113. 	 * FIXME: This function should not be required!
  114. 	 */
  115. 	private function fixDI() {
  116. 		if ($this->dbConn === null) {
  117. 			$this->dbConn = \OC::$server->getDatabaseConnection();
  118. 		}
  119. 	}
  120. 

  121. 	/**
  122. 	 * Create a new user
  123. 	 *
  124. 	 * @param string $uid The username of the user to create
  125. 	 * @param string $password The password of the new user
  126. 	 * @return bool
  127. 	 *
  128. 	 * Creates a new user. Basic checking of username is done in OC_User
  129. 	 * itself, not in its subclasses.
  130. 	 */
  131. 	public function createUser(string $uid, string $password): bool {
  132. 		$this->fixDI();
  133. 

  134. 		if (!$this->userExists($uid)) {
  135. 			$this->eventDispatcher->dispatchTyped(new ValidatePasswordPolicyEvent($password));
  136. 

  137. 			$qb = $this->dbConn->getQueryBuilder();
  138. 			$qb->insert($this->table)
  139. 				->values([
  140. 					'uid' => $qb->createNamedParameter($uid),
  141. 					'password' => $qb->createNamedParameter(\OC::$server->getHasher()->hash($password)),
  142. 					'uid_lower' => $qb->createNamedParameter(mb_strtolower($uid)),
  143. 				]);
  144. 

  145. 			$result = $qb->execute();
  146. 

  147. 			// Clear cache

  148. 			unset($this->cache[$uid]);
  149. 

  150. 			return $result ? true : false;
  151. 		}
  152. 

  153. 		return false;
  154. 	}
  155. 

  156. 	/**
  157. 	 * delete a user
  158. 	 *
  159. 	 * @param string $uid The username of the user to delete
  160. 	 * @return bool
  161. 	 *
  162. 	 * Deletes a user
  163. 	 */
  164. 	public function deleteUser($uid) {
  165. 		$this->fixDI();
  166. 

  167. 		// Delete user-group-relation

  168. 		$query = $this->dbConn->getQueryBuilder();
  169. 		$query->delete($this->table)
  170. 			->where($query->expr()->eq('uid_lower', $query->createNamedParameter(mb_strtolower($uid))));
  171. 		$result = $query->execute();
  172. 

  173. 		if (isset($this->cache[$uid])) {
  174. 			unset($this->cache[$uid]);
  175. 		}
  176. 

  177. 		return $result ? true : false;
  178. 	}
  179. 

  180. 	private function updatePassword(string $uid, string $passwordHash): bool {
  181. 		$query = $this->dbConn->getQueryBuilder();
  182. 		$query->update($this->table)
  183. 			->set('password', $query->createNamedParameter($passwordHash))
  184. 			->where($query->expr()->eq('uid_lower', $query->createNamedParameter(mb_strtolower($uid))));
  185. 		$result = $query->execute();
  186. 

  187. 		return $result ? true : false;
  188. 	}
  189. 

  190. 	/**
  191. 	 * Set password
  192. 	 *
  193. 	 * @param string $uid The username
  194. 	 * @param string $password The new password
  195. 	 * @return bool
  196. 	 *
  197. 	 * Change the password of a user
  198. 	 */
  199. 	public function setPassword(string $uid, string $password): bool {
  200. 		$this->fixDI();
  201. 

  202. 		if ($this->userExists($uid)) {
  203. 			$this->eventDispatcher->dispatchTyped(new ValidatePasswordPolicyEvent($password));
  204. 

  205. 			$hasher = \OC::$server->getHasher();
  206. 			$hashedPassword = $hasher->hash($password);
  207. 

  208. 			return $this->updatePassword($uid, $hashedPassword);
  209. 		}
  210. 

  211. 		return false;
  212. 	}
  213. 

  214. 	/**
  215. 	 * Set display name
  216. 	 *
  217. 	 * @param string $uid The username
  218. 	 * @param string $displayName The new display name
  219. 	 * @return bool
  220. 	 *
  221. 	 * Change the display name of a user
  222. 	 */
  223. 	public function setDisplayName(string $uid, string $displayName): bool {
  224. 		$this->fixDI();
  225. 

  226. 		if ($this->userExists($uid)) {
  227. 			$query = $this->dbConn->getQueryBuilder();
  228. 			$query->update($this->table)
  229. 				->set('displayname', $query->createNamedParameter($displayName))
  230. 				->where($query->expr()->eq('uid_lower', $query->createNamedParameter(mb_strtolower($uid))));
  231. 			$query->execute();
  232. 

  233. 			$this->cache[$uid]['displayname'] = $displayName;
  234. 

  235. 			return true;
  236. 		}
  237. 

  238. 		return false;
  239. 	}
  240. 

  241. 	/**
  242. 	 * get display name of the user
  243. 	 *
  244. 	 * @param string $uid user ID of the user
  245. 	 * @return string display name
  246. 	 */
  247. 	public function getDisplayName($uid): string {
  248. 		$uid = (string)$uid;
  249. 		$this->loadUser($uid);
  250. 		return empty($this->cache[$uid]['displayname']) ? $uid : $this->cache[$uid]['displayname'];
  251. 	}
  252. 

  253. 	/**
  254. 	 * Get a list of all display names and user ids.
  255. 	 *
  256. 	 * @param string $search
  257. 	 * @param string|null $limit
  258. 	 * @param string|null $offset
  259. 	 * @return array an array of all displayNames (value) and the corresponding uids (key)
  260. 	 */
  261. 	public function getDisplayNames($search = '', $limit = null, $offset = null) {
  262. 		$limit = $this->fixLimit($limit);
  263. 

  264. 		$this->fixDI();
  265. 

  266. 		$query = $this->dbConn->getQueryBuilder();
  267. 

  268. 		$query->select('uid', 'displayname')
  269. 			->from($this->table, 'u')
  270. 			->leftJoin('u', 'preferences', 'p', $query->expr()->andX(
  271. 				$query->expr()->eq('userid', 'uid'),
  272. 				$query->expr()->eq('appid', $query->expr()->literal('settings')),
  273. 				$query->expr()->eq('configkey', $query->expr()->literal('email')))
  274. 			)
  275. 			// sqlite doesn't like re-using a single named parameter here

  276. 			->where($query->expr()->iLike('uid', $query->createPositionalParameter('%' . $this->dbConn->escapeLikeParameter($search) . '%')))
  277. 			->orWhere($query->expr()->iLike('displayname', $query->createPositionalParameter('%' . $this->dbConn->escapeLikeParameter($search) . '%')))
  278. 			->orWhere($query->expr()->iLike('configvalue', $query->createPositionalParameter('%' . $this->dbConn->escapeLikeParameter($search) . '%')))
  279. 			->orderBy($query->func()->lower('displayname'), 'ASC')
  280. 			->orderBy('uid_lower', 'ASC')
  281. 			->setMaxResults($limit)
  282. 			->setFirstResult($offset);
  283. 

  284. 		$result = $query->execute();
  285. 		$displayNames = [];
  286. 		while ($row = $result->fetch()) {
  287. 			$displayNames[(string)$row['uid']] = (string)$row['displayname'];
  288. 		}
  289. 

  290. 		return $displayNames;
  291. 	}
  292. 

  293. 	/**
  294. 	 * Check if the password is correct
  295. 	 *
  296. 	 * @param string $loginName The loginname
  297. 	 * @param string $password The password
  298. 	 * @return string
  299. 	 *
  300. 	 * Check if the password is correct without logging in the user
  301. 	 * returns the user id or false
  302. 	 */
  303. 	public function checkPassword(string $loginName, string $password) {
  304. 		$this->fixDI();
  305. 

  306. 		$qb = $this->dbConn->getQueryBuilder();
  307. 		$qb->select('uid', 'password')
  308. 			->from($this->table)
  309. 			->where(
  310. 				$qb->expr()->eq(
  311. 					'uid_lower', $qb->createNamedParameter(mb_strtolower($loginName))
  312. 				)
  313. 			);
  314. 		$result = $qb->execute();
  315. 		$row = $result->fetch();
  316. 		$result->closeCursor();
  317. 

  318. 		if ($row) {
  319. 			$storedHash = $row['password'];
  320. 			$newHash = '';
  321. 			if (\OC::$server->getHasher()->verify($password, $storedHash, $newHash)) {
  322. 				if (!empty($newHash)) {
  323. 					$this->updatePassword($loginName, $newHash);
  324. 				}
  325. 				return (string)$row['uid'];
  326. 			}
  327. 		}
  328. 

  329. 		return false;
  330. 	}
  331. 

  332. 	/**
  333. 	 * Load an user in the cache
  334. 	 *
  335. 	 * @param string $uid the username
  336. 	 * @return boolean true if user was found, false otherwise
  337. 	 */
  338. 	private function loadUser($uid) {
  339. 		$this->fixDI();
  340. 

  341. 		$uid = (string)$uid;
  342. 		if (!isset($this->cache[$uid])) {
  343. 			//guests $uid could be NULL or ''

  344. 			if ($uid === '') {
  345. 				$this->cache[$uid] = false;
  346. 				return true;
  347. 			}
  348. 

  349. 			$qb = $this->dbConn->getQueryBuilder();
  350. 			$qb->select('uid', 'displayname')
  351. 				->from($this->table)
  352. 				->where(
  353. 					$qb->expr()->eq(
  354. 						'uid_lower', $qb->createNamedParameter(mb_strtolower($uid))
  355. 					)
  356. 				);
  357. 			$result = $qb->execute();
  358. 			$row = $result->fetch();
  359. 			$result->closeCursor();
  360. 

  361. 			$this->cache[$uid] = false;
  362. 

  363. 			// "uid" is primary key, so there can only be a single result

  364. 			if ($row !== false) {
  365. 				$this->cache[$uid]['uid'] = (string)$row['uid'];
  366. 				$this->cache[$uid]['displayname'] = (string)$row['displayname'];
  367. 			} else {
  368. 				return false;
  369. 			}
  370. 		}
  371. 

  372. 		return true;
  373. 	}
  374. 

  375. 	/**
  376. 	 * Get a list of all users
  377. 	 *
  378. 	 * @param string $search
  379. 	 * @param null|int $limit
  380. 	 * @param null|int $offset
  381. 	 * @return string[] an array of all uids
  382. 	 */
  383. 	public function getUsers($search = '', $limit = null, $offset = null) {
  384. 		$limit = $this->fixLimit($limit);
  385. 

  386. 		$users = $this->getDisplayNames($search, $limit, $offset);
  387. 		$userIds = array_map(function ($uid) {
  388. 			return (string)$uid;
  389. 		}, array_keys($users));
  390. 		sort($userIds, SORT_STRING | SORT_FLAG_CASE);
  391. 		return $userIds;
  392. 	}
  393. 

  394. 	/**
  395. 	 * check if a user exists
  396. 	 *
  397. 	 * @param string $uid the username
  398. 	 * @return boolean
  399. 	 */
  400. 	public function userExists($uid) {
  401. 		$this->loadUser($uid);
  402. 		return $this->cache[$uid] !== false;
  403. 	}
  404. 

  405. 	/**
  406. 	 * get the user's home directory
  407. 	 *
  408. 	 * @param string $uid the username
  409. 	 * @return string|false
  410. 	 */
  411. 	public function getHome(string $uid) {
  412. 		if ($this->userExists($uid)) {
  413. 			return \OC::$server->getConfig()->getSystemValue('datadirectory', \OC::$SERVERROOT . '/data') . '/' . $uid;
  414. 		}
  415. 

  416. 		return false;
  417. 	}
  418. 

  419. 	/**
  420. 	 * @return bool
  421. 	 */
  422. 	public function hasUserListings() {
  423. 		return true;
  424. 	}
  425. 

  426. 	/**
  427. 	 * counts the users in the database
  428. 	 *
  429. 	 * @return int|bool
  430. 	 */
  431. 	public function countUsers() {
  432. 		$this->fixDI();
  433. 

  434. 		$query = $this->dbConn->getQueryBuilder();
  435. 		$query->select($query->func()->count('uid'))
  436. 			->from($this->table);
  437. 		$result = $query->execute();
  438. 

  439. 		return $result->fetchColumn();
  440. 	}
  441. 

  442. 	/**
  443. 	 * returns the username for the given login name in the correct casing
  444. 	 *
  445. 	 * @param string $loginName
  446. 	 * @return string|false
  447. 	 */
  448. 	public function loginName2UserName($loginName) {
  449. 		if ($this->userExists($loginName)) {
  450. 			return $this->cache[$loginName]['uid'];
  451. 		}
  452. 

  453. 		return false;
  454. 	}
  455. 

  456. 	/**
  457. 	 * Backend name to be shown in user management
  458. 	 *
  459. 	 * @return string the name of the backend to be shown
  460. 	 */
  461. 	public function getBackendName() {
  462. 		return 'Database';
  463. 	}
  464. 

  465. 	public static function preLoginNameUsedAsUserName($param) {
  466. 		if (!isset($param['uid'])) {
  467. 			throw new \Exception('key uid is expected to be set in $param');
  468. 		}
  469. 

  470. 		$backends = \OC::$server->getUserManager()->getBackends();
  471. 		foreach ($backends as $backend) {
  472. 			if ($backend instanceof Database) {
  473. 				/** @var \OC\User\Database $backend */
  474. 				$uid = $backend->loginName2UserName($param['uid']);
  475. 				if ($uid !== false) {
  476. 					$param['uid'] = $uid;
  477. 					return;
  478. 				}
  479. 			}
  480. 		}
  481. 	}
  482. 

  483. 	public function getRealUID(string $uid): string {
  484. 		if (!$this->userExists($uid)) {
  485. 			throw new \RuntimeException($uid . ' does not exist');
  486. 		}
  487. 

  488. 		return $this->cache[$uid]['uid'];
  489. 	}
  490. 

  491. 	private function fixLimit($limit) {
  492. 		if (is_int($limit) && $limit >= 0) {
  493. 			return $limit;
  494. 		}
  495. 

  496. 		return null;
  497. 	}
  498. }