passman/controller/vaultcontroller.php

<?php
/**
 * Nextcloud - passman
 *
 * This file is licensed under the Affero General Public License version 3 or
 * later. See the COPYING file.
 *
 * @author Sander Brand <brantje@gmail.com>
 * @copyright Sander Brand 2016
 */

namespace OCA\Passman\Controller;

use OCA\Passman\Service\DeleteVaultRequestService;
use OCA\Passman\Service\EncryptService;
use OCA\Passman\Service\SettingsService;
use OCA\Passman\Utility\NotFoundJSONResponse;
use OCP\AppFramework\Db\DoesNotExistException;
use OCP\IRequest;
use OCP\AppFramework\Http\JSONResponse;
use OCP\AppFramework\ApiController;
use OCA\Passman\Service\VaultService;
use OCA\Passman\Service\CredentialService;


class VaultController extends ApiController {
	private $userId;
	private $vaultService;
	private $credentialService;
	private $settings;
	private $deleteVaultRequestService;

	public function __construct($AppName,
								IRequest $request,
								$UserId,
								VaultService $vaultService,
								CredentialService $credentialService,
								DeleteVaultRequestService $deleteVaultRequestService,
								SettingsService $settings) {
		parent::__construct(
			$AppName,
			$request,
			'GET, POST, DELETE, PUT, PATCH, OPTIONS',
			'Authorization, Content-Type, Accept',
			86400);
		$this->userId = $UserId;
		$this->vaultService = $vaultService;
		$this->credentialService = $credentialService;
		$this->deleteVaultRequestService = $deleteVaultRequestService;
		$this->settings = $settings;
	}

	/**
	 * @NoAdminRequired
	 * @NoCSRFRequired
	 */
	public function listVaults() {
		$result = array();
		$vaults = $this->vaultService->getByUser($this->userId);

		$protected_credential_fields = array('getDescription', 'getEmail', 'getUsername', 'getPassword');
		if (isset($vaults)) {
			foreach ($vaults as $vault) {
				$credential = $this->credentialService->getRandomCredentialByVaultId($vault->getId(), $this->userId);
				$secret_field = $protected_credential_fields[array_rand($protected_credential_fields)];
				if(isset($credential)) {
					array_push($result, array(
						'vault_id' => $vault->getId(),
						'guid' => $vault->getGuid(),
						'name' => $vault->getName(),
						'created' => $vault->getCreated(),
						'public_sharing_key' => $vault->getPublicSharingKey(),
						'last_access' => $vault->getlastAccess(),
						'challenge_password' => $credential->{$secret_field}(),
						'delete_request_pending' => ($this->deleteVaultRequestService->getDeleteRequestForVault($vault->getGuid())) ? true : false
					));
				}
			}
		}

		return new JSONResponse($result);
	}

	/**
	 * @NoAdminRequired
	 * @NoCSRFRequired
	 */
	public function create($vault_name) {
		$vault = $this->vaultService->createVault($vault_name, $this->userId);
		return new JSONResponse($vault);
	}

	/**
	 * @NoAdminRequired
	 * @NoCSRFRequired
	 */
	public function get($vault_guid) {
		$vault = null;
		try {
			$vault = $this->vaultService->getByGuid($vault_guid, $this->userId);
		} catch (\Exception $e) {
			return new NotFoundJSONResponse();
		}
		$result = array();
		if (isset($vault)) {
			$credentials = $this->credentialService->getCredentialsByVaultId($vault->getId(), $this->userId);

			$result = array(
				'vault_id' => $vault->getId(),
				'guid' => $vault->getGuid(),
				'name' => $vault->getName(),
				'created' => $vault->getCreated(),
				'private_sharing_key' => $vault->getPrivateSharingKey(),
				'public_sharing_key' => $vault->getPublicSharingKey(),
				'sharing_keys_generated' => $vault->getSharingKeysGenerated(),
				'vault_settings' => $vault->getVaultSettings(),
				'last_access' => $vault->getlastAccess(),
				'delete_request_pending' => ($this->deleteVaultRequestService->getDeleteRequestForVault($vault->getGuid())) ? true : false
			);
			$result['credentials'] = $credentials;

			$this->vaultService->setLastAccess($vault->getId(), $this->userId);
		}


		return new JSONResponse($result);
	}

	/**
	 * @NoAdminRequired
	 * @NoCSRFRequired
	 */
	public function update($vault_guid, $name, $vault_settings) {
		$vault = $this->vaultService->getByGuid($vault_guid, $this->userId);
		if ($name && $vault) {
			$vault->setName($name);
		}
		if ($vault_settings && $vault) {
			$vault->setVaultSettings($vault_settings);
		}
		$this->vaultService->updateVault($vault);
	}

	/**
	 * @NoAdminRequired
	 * @NoCSRFRequired
	 */
	public function updateSharingKeys($vault_guid, $private_sharing_key, $public_sharing_key) {
		$vault = null;
		try {
			$vault = $this->vaultService->getByGuid($vault_guid, $this->userId);
		} catch (\Exception $e) {
			// No need to catch the execption
		}

		if ($vault) {
			$this->vaultService->updateSharingKeys($vault->getId(), $private_sharing_key, $public_sharing_key);
		}

		return;
	}

	/**
	 * @NoAdminRequired
	 * @NoCSRFRequired
	 */
	public function delete($vault_guid) {
		$this->vaultService->deleteVault($vault_guid, $this->userId);
		return new JSONResponse(array('ok' => true));
	}
}
Initial commit 2016-09-09 23:36:35 +08:00			`<?php`
			`/**`
			`* Nextcloud - passman`
			`*`
			`* This file is licensed under the Affero General Public License version 3 or`
			`* later. See the COPYING file.`
			`*`
			`* @author Sander Brand <brantje@gmail.com>`
			`* @copyright Sander Brand 2016`
			`*/`

			`namespace OCA\Passman\Controller;`

Add feature to request vault destructions 2017-02-20 07:01:01 +08:00			`use OCA\Passman\Service\DeleteVaultRequestService;`
Implement encryption class 2017-01-02 22:25:41 +08:00			`use OCA\Passman\Service\EncryptService;`
			`use OCA\Passman\Service\SettingsService;`
Return 404 if vault is not found 2016-10-07 23:04:26 +08:00			`use OCA\Passman\Utility\NotFoundJSONResponse;`
Vault use guids 2016-10-07 18:58:41 +08:00			`use OCP\AppFramework\Db\DoesNotExistException;`
Initial commit 2016-09-09 23:36:35 +08:00			`use OCP\IRequest;`
First setup of vaults 2016-09-11 05:30:17 +08:00			`use OCP\AppFramework\Http\JSONResponse;`
Use ApiController 2016-09-10 00:02:53 +08:00			`use OCP\AppFramework\ApiController;`
Creating vaults works, getting vaults not 2016-09-11 18:33:09 +08:00			`use OCA\Passman\Service\VaultService;`
Login to vault works 2016-09-12 02:47:29 +08:00			`use OCA\Passman\Service\CredentialService;`
Starting to work on login to vault 2016-09-12 01:45:20 +08:00
File upload / delete works 2016-09-15 00:57:38 +08:00
Use ApiController 2016-09-10 00:02:53 +08:00			`class VaultController extends ApiController {`
Initial commit 2016-09-09 23:36:35 +08:00			`private $userId;`
Creating vaults works, getting vaults not 2016-09-11 18:33:09 +08:00			`private $vaultService;`
Login to vault works 2016-09-12 02:47:29 +08:00			`private $credentialService;`
Implement encryption class 2017-01-02 22:25:41 +08:00			`private $settings;`
Add feature to request vault destructions 2017-02-20 07:01:01 +08:00			`private $deleteVaultRequestService;`
Initial commit 2016-09-09 23:36:35 +08:00
Creating vaults works, getting vaults not 2016-09-11 18:33:09 +08:00			`public function __construct($AppName,`
			`IRequest $request,`
			`$UserId,`
Login to vault works 2016-09-12 02:47:29 +08:00			`VaultService $vaultService,`
Implement encryption class 2017-01-02 22:25:41 +08:00			`CredentialService $credentialService,`
Add feature to request vault destructions 2017-02-20 07:01:01 +08:00			`DeleteVaultRequestService $deleteVaultRequestService,`
Fixes 2017-01-03 05:06:55 +08:00			`SettingsService $settings) {`
Make api endpoints available to extensions 2016-12-23 20:46:43 +08:00			`parent::__construct(`
			`$AppName,`
			`$request,`
Fix cors headers 2017-01-19 20:39:01 +08:00			`'GET, POST, DELETE, PUT, PATCH, OPTIONS',`
Make api endpoints available to extensions 2016-12-23 20:46:43 +08:00			`'Authorization, Content-Type, Accept',`
			`86400);`
Initial commit 2016-09-09 23:36:35 +08:00			`$this->userId = $UserId;`
Creating vaults works, getting vaults not 2016-09-11 18:33:09 +08:00			`$this->vaultService = $vaultService;`
Login to vault works 2016-09-12 02:47:29 +08:00			`$this->credentialService = $credentialService;`
Add feature to request vault destructions 2017-02-20 07:01:01 +08:00			`$this->deleteVaultRequestService = $deleteVaultRequestService;`
Implement encryption class 2017-01-02 22:25:41 +08:00			`$this->settings = $settings;`
Initial commit 2016-09-09 23:36:35 +08:00			`}`

First setup of vaults 2016-09-11 05:30:17 +08:00			`/**`
			`* @NoAdminRequired`
Make api endpoints available to extensions 2016-12-23 20:46:43 +08:00			`* @NoCSRFRequired`
First setup of vaults 2016-09-11 05:30:17 +08:00			`*/`
			`public function listVaults() {`
Implement a challenge password 2016-10-01 02:43:20 +08:00			`$result = array();`
Creating vaults works, getting vaults not 2016-09-11 18:33:09 +08:00			`$vaults = $this->vaultService->getByUser($this->userId);`
Implement a challenge password 2016-10-01 02:43:20 +08:00
Remove double if check 2016-10-07 19:01:57 +08:00			`$protected_credential_fields = array('getDescription', 'getEmail', 'getUsername', 'getPassword');`
Implement delete vault 2017-01-12 06:55:28 +08:00			`if (isset($vaults)) {`
Fixes for errors found by tests 2017-01-04 18:55:48 +08:00			`foreach ($vaults as $vault) {`
			`$credential = $this->credentialService->getRandomCredentialByVaultId($vault->getId(), $this->userId);`
			`$secret_field = $protected_credential_fields[array_rand($protected_credential_fields)];`
Implement delete vault 2017-01-12 06:55:28 +08:00			`if(isset($credential)) {`
			`array_push($result, array(`
			`'vault_id' => $vault->getId(),`
			`'guid' => $vault->getGuid(),`
			`'name' => $vault->getName(),`
			`'created' => $vault->getCreated(),`
			`'public_sharing_key' => $vault->getPublicSharingKey(),`
			`'last_access' => $vault->getlastAccess(),`
			`'challenge_password' => $credential->{$secret_field}(),`
Add feature to request vault destructions 2017-02-20 07:01:01 +08:00			`'delete_request_pending' => ($this->deleteVaultRequestService->getDeleteRequestForVault($vault->getGuid())) ? true : false`
Implement delete vault 2017-01-12 06:55:28 +08:00			`));`
			`}`
Fixes for errors found by tests 2017-01-04 18:55:48 +08:00			`}`
Implement a challenge password 2016-10-01 02:43:20 +08:00			`}`

			`return new JSONResponse($result);`
First setup of vaults 2016-09-11 05:30:17 +08:00			`}`

Initial commit 2016-09-09 23:36:35 +08:00			`/**`
			`* @NoAdminRequired`
Make api endpoints available to extensions 2016-12-23 20:46:43 +08:00			`* @NoCSRFRequired`
Initial commit 2016-09-09 23:36:35 +08:00			`*/`
Creating vaults works, getting vaults not 2016-09-11 18:33:09 +08:00			`public function create($vault_name) {`
			`$vault = $this->vaultService->createVault($vault_name, $this->userId);`
			`return new JSONResponse($vault);`
Initial commit 2016-09-09 23:36:35 +08:00			`}`

			`/**`
			`* @NoAdminRequired`
Make api endpoints available to extensions 2016-12-23 20:46:43 +08:00			`* @NoCSRFRequired`
Initial commit 2016-09-09 23:36:35 +08:00			`*/`
Vault use guids 2016-10-07 18:58:41 +08:00			`public function get($vault_guid) {`
			`$vault = null;`
Remove double if check 2016-10-07 19:01:57 +08:00			`try {`
Vault use guids 2016-10-07 18:58:41 +08:00			`$vault = $this->vaultService->getByGuid($vault_guid, $this->userId);`
Check if shared_key exists Remove value set by php Replace DoesNotExistException with Exeption 2016-12-29 07:07:27 +08:00			`} catch (\Exception $e) {`
Fixes for errors found by tests 2017-01-04 18:55:48 +08:00			`return new NotFoundJSONResponse();`
Move response format to controller 2016-09-29 03:22:49 +08:00			`}`
Vault use guids 2016-10-07 18:58:41 +08:00			`$result = array();`
Implement delete vault 2017-01-12 06:55:28 +08:00			`if (isset($vault)) {`
Vault use guids 2016-10-07 18:58:41 +08:00			`$credentials = $this->credentialService->getCredentialsByVaultId($vault->getId(), $this->userId);`
Remove double if check 2016-10-07 19:01:57 +08:00
			`$result = array(`
			`'vault_id' => $vault->getId(),`
			`'guid' => $vault->getGuid(),`
			`'name' => $vault->getName(),`
			`'created' => $vault->getCreated(),`
			`'private_sharing_key' => $vault->getPrivateSharingKey(),`
			`'public_sharing_key' => $vault->getPublicSharingKey(),`
			`'sharing_keys_generated' => $vault->getSharingKeysGenerated(),`
			`'vault_settings' => $vault->getVaultSettings(),`
Add feature to request vault destructions 2017-02-20 07:01:01 +08:00			`'last_access' => $vault->getlastAccess(),`
			`'delete_request_pending' => ($this->deleteVaultRequestService->getDeleteRequestForVault($vault->getGuid())) ? true : false`
Remove double if check 2016-10-07 19:01:57 +08:00			`);`
			`$result['credentials'] = $credentials;`

			`$this->vaultService->setLastAccess($vault->getId(), $this->userId);`
Vault use guids 2016-10-07 18:58:41 +08:00			`}`

Remove double if check 2016-10-07 19:01:57 +08:00
Change api/v2/vaults/{id} response format 2016-09-29 02:27:52 +08:00			`return new JSONResponse($result);`
Initial commit 2016-09-09 23:36:35 +08:00			`}`

			`/**`
			`* @NoAdminRequired`
Make api endpoints available to extensions 2016-12-23 20:46:43 +08:00			`* @NoCSRFRequired`
Initial commit 2016-09-09 23:36:35 +08:00			`*/`
Vault use guids 2016-10-07 18:58:41 +08:00			`public function update($vault_guid, $name, $vault_settings) {`
			`$vault = $this->vaultService->getByGuid($vault_guid, $this->userId);`
Fixes for errors found by tests 2017-01-04 18:55:48 +08:00			`if ($name && $vault) {`
Save work 2016-09-29 04:05:09 +08:00			`$vault->setName($name);`
			`}`
Fixes for errors found by tests 2017-01-04 18:55:48 +08:00			`if ($vault_settings && $vault) {`
Save work 2016-09-29 04:05:09 +08:00			`$vault->setVaultSettings($vault_settings);`
			`}`
			`$this->vaultService->updateVault($vault);`
Initial commit 2016-09-09 23:36:35 +08:00			`}`

Save sharing keys to db 2016-09-26 00:34:33 +08:00			`/**`
			`* @NoAdminRequired`
Make api endpoints available to extensions 2016-12-23 20:46:43 +08:00			`* @NoCSRFRequired`
Save sharing keys to db 2016-09-26 00:34:33 +08:00			`*/`
Vault use guids 2016-10-07 18:58:41 +08:00			`public function updateSharingKeys($vault_guid, $private_sharing_key, $public_sharing_key) {`
			`$vault = null;`
Remove double if check 2016-10-07 19:01:57 +08:00			`try {`
Vault use guids 2016-10-07 18:58:41 +08:00			`$vault = $this->vaultService->getByGuid($vault_guid, $this->userId);`
Check if shared_key exists Remove value set by php Replace DoesNotExistException with Exeption 2016-12-29 07:07:27 +08:00			`} catch (\Exception $e) {`
Fixes for errors found by tests 2017-01-04 18:55:48 +08:00			`// No need to catch the execption`
			`}`
Vault use guids 2016-10-07 18:58:41 +08:00
Fixes for errors found by tests 2017-01-04 18:55:48 +08:00			`if ($vault) {`
			`$this->vaultService->updateSharingKeys($vault->getId(), $private_sharing_key, $public_sharing_key);`
Vault use guids 2016-10-07 18:58:41 +08:00			`}`

Save sharing keys to db 2016-09-26 00:34:33 +08:00			`return;`
			`}`

Initial commit 2016-09-09 23:36:35 +08:00			`/**`
			`* @NoAdminRequired`
Make api endpoints available to extensions 2016-12-23 20:46:43 +08:00			`* @NoCSRFRequired`
Initial commit 2016-09-09 23:36:35 +08:00			`*/`
Fix missing admin-settings.js Remove settings property (Fixes #211) Add file to avoid errors (Fixes #210) Fix for deleting credential Fix for deleting vault (fixes #212) 2017-01-19 01:38:28 +08:00			`public function delete($vault_guid) {`
			`$this->vaultService->deleteVault($vault_guid, $this->userId);`
Implement delete vault 2017-01-12 06:55:28 +08:00			`return new JSONResponse(array('ok' => true));`
Initial commit 2016-09-09 23:36:35 +08:00			`}`
			`}`