nextcloud/passman
1
1
Fork 0
mirror of https://github.com/nextcloud/passman.git synced 2024-11-15 04:22:03 +08:00
Code Issues Projects Releases Packages Wiki Activity
passman/js/app/controllers/share.js

422 lines
15 KiB
JavaScript
Raw Blame History

/**
* Nextcloud - passman
*
* @copyright Copyright (c) 2016, Sander Brand (brantje@gmail.com)
* @copyright Copyright (c) 2016, Marcos Zuriaga Miguel (wolfi@wolfi.es)
* @license GNU AGPL version 3 or any later version
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as
* published by the Free Software Foundation, either version 3 of the
* License, or (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*
*/
(function () {
'use strict';
/**
* @ngdoc function
* @name passmanApp.controller:MainCtrl
* @description
* # MainCtrl
* Controller of the passmanApp
* This file is part of passman, licensed under AGPLv3
*/
angular.module('passmanApp')
.controller('ShareCtrl', ['$scope', 'VaultService', 'CredentialService', 'SettingsService', '$location', '$routeParams', 'ShareService', 'NotificationService', 'SharingACL', 'EncryptService', '$translate', '$rootScope',
function ($scope, VaultService, CredentialService, SettingsService, $location, $routeParams, ShareService, NotificationService, SharingACL, EncryptService, $translate, $rootScope) {
$scope.active_vault = VaultService.getActiveVault();
$scope.tabs = [{
title: $translate.instant('share.u.g'),
url: 'views/partials/forms/share_credential/basics.html'
}, {
title: $translate.instant('share.link'),
url: 'views/partials/forms/share_credential/link_sharing.html',
color: 'green'
}];
$scope.currentTab = $scope.tabs[0];
var settingsLoaded = function () {
var settings = SettingsService.getSettings();
if(settings.user_sharing_enabled === 0 || settings.user_sharing_enabled ==='0'){
$scope.tabs.splice(0,1);
}
if(settings.link_sharing_enabled === 0 || settings.link_sharing_enabled ==='0'){
$scope.tabs.splice(1,1);
}
if($scope.tabs.length > 0){
$scope.currentTab = $scope.tabs[0];
}
};
if(!SettingsService.getSetting('settings_loaded')){
$rootScope.$on('settings_loaded', function () {
settingsLoaded();
});
} else {
settingsLoaded();
}
$scope.onClickTab = function (tab) {
$scope.currentTab = tab;
};
$scope.isActiveTab = function (tab) {
return tab.url === $scope.currentTab.url;
};
if (!SettingsService.getSetting('defaultVault') || !SettingsService.getSetting('defaultVaultPass')) {
if (!$scope.active_vault) {
$location.path('/');
}
} else {
if (SettingsService.getSetting('defaultVault') && SettingsService.getSetting('defaultVaultPass')) {
var _vault = angular.copy(SettingsService.getSetting('defaultVault'));
_vault.vaultKey = angular.copy(SettingsService.getSetting('defaultVaultPass'));
VaultService.setActiveVault(_vault);
$scope.active_vault = _vault;
}
}
var storedCredential = SettingsService.getSetting('share_credential');
if (!storedCredential) {
$location.path('/vault/' + $routeParams.vault_id);
} else {
$scope.storedCredential = CredentialService.decryptCredential(angular.copy(storedCredential));
}
if ($scope.active_vault) {
$scope.$parent.selectedVault = true;
}
$scope.cancel = function () {
SettingsService.setSetting('share_credential', null);
$location.path('/vault/' + $routeParams.vault_id);
};
$scope.default_permissions = new SharingACL(0);
$scope.default_permissions.addPermission(
$scope.default_permissions.permissions.READ |
$scope.default_permissions.permissions.WRITE |
$scope.default_permissions.permissions.FILES
);
var link_acl = angular.copy($scope.default_permissions);
link_acl.removePermission($scope.default_permissions.permissions.WRITE);
var oneMonthLater = new Date();
oneMonthLater.setMonth(oneMonthLater.getMonth() + 1);
$scope.share_settings = {
linkSharing: {
enabled: false,
settings: {
expire_time: oneMonthLater,
expire_views: 5,
acl: link_acl
}
},
credentialSharedWithUserAndGroup: [],
cypher_progress: {
done: 0,
total: 0
},
upload_progress: {
done: 0,
total: 0
}
};
var getAcl = function () {
ShareService.getSharedCredentialACL($scope.storedCredential).then(function (aclList) {
var _list = [];
var enc_key = ($scope.storedCredential.shared_key) ? EncryptService.decryptString(angular.copy($scope.storedCredential.shared_key)) : false;
for (var i = 0; i < aclList.length; i++) {
var acl = aclList[i];
if (acl.user_id === null) {
$scope.share_settings.linkSharing = {
enabled: true,
settings: {
expire_time: new Date(acl.expire * 1000),
expire_views: acl.expire_views,
acl: new SharingACL(acl.permissions)
}
};
if (enc_key) {
var hash = window.btoa($scope.storedCredential.guid + '<::>' + enc_key);
$scope.share_link = getShareLink(hash);
}
} else {
var obj = {
userId: acl.user_id,
displayName: acl.user_id,
type: 'user',
acl: new SharingACL(acl.permissions),
acl_id: acl.acl_id,
pending: acl.pending,
credential_guid: acl.item_guid,
created: acl.created
};
_list.push(obj);
}
}
$scope.share_settings.credentialSharedWithUserAndGroup = _list;
});
};
getAcl();
var acl = new SharingACL(0);
$scope.$watch('share_settings.upload_progress.done', function () {
if ($scope.share_settings.upload_progress.done === $scope.share_settings.upload_progress.total && $scope.share_settings.upload_progress.total > 0) {
getAcl();
}
});
$scope.inputSharedWith = [];
$scope.searchUsers = function ($query) {
return ShareService.search($query);
};
$scope.hasPermission = function (acl, permission) {
return acl.hasPermission(permission);
};
$scope.setPermission = function (acl, permission) {
acl.togglePermission(permission);
};
$scope.shareWith = function (shareWith) {
$scope.inputSharedWith = [];
if (shareWith.length > 0) {
for (var i = 0; i < shareWith.length; i++) {
var obj = {
userId: shareWith[i].uid,
displayName: shareWith[i].text,
type: shareWith[i].type,
acl: angular.copy($scope.default_permissions),
pending: true,
credential_guid: $scope.storedCredential.guid
};
var found = false;
for (var z = 0; z < $scope.share_settings.credentialSharedWithUserAndGroup.length; z++) {
if (shareWith[z] && $scope.share_settings.credentialSharedWithUserAndGroup[z].userId === shareWith[z].uid) {
found = true;
}
}
if (found === false) {
$scope.share_settings.credentialSharedWithUserAndGroup.push(obj);
}
}
}
};
$scope.unshareUser = function (user) {
ShareService.unshareCredentialFromUser($scope.storedCredential, user.userId).then(function (result) {
if (result.result === true) {
var idx = $scope.share_settings.credentialSharedWithUserAndGroup.indexOf(user);
$scope.share_settings.credentialSharedWithUserAndGroup.splice(idx, 1);
}
});
};
$scope.unshareCredential = function (credential) {
var _credential = angular.copy(credential);
var old_key = EncryptService.decryptString(angular.copy(_credential.shared_key));
var new_key = VaultService.getActiveVault().vaultKey;
_credential.shared_key = null;
_credential.unshare_action = true;
_credential.skip_revision = true;
CredentialService.reencryptCredential(_credential.guid, old_key, new_key, true).then(function (data) {
getAcl();
var c = data.cryptogram;
c.shared_key = null;
c.unshare_action = true;
c.skip_revision = true;
ShareService.unshareCredential(c);
CredentialService.updateCredential(c, true).then(function () {
NotificationService.showNotification($translate.instant('credential.unshared'), 4000);
$scope.sharing_complete = true;
$scope.storedCredential.shared_key = null;
$scope.share_settings.credentialSharedWithUserAndGroup = [];
});
});
};
/**
* Apply a share to a new user
* @param user A user object to who we should share the data
* @param enc_key The shared key we are going to ecnrypt with his public rsa key
*/
$scope.applyShareToUser = function (user, enc_key) {
ShareService.getVaultsByUser(user.userId).then(function (data) {
$scope.share_settings.cypher_progress.total += data.length;
user.vaults = data;
var start = new Date().getTime() / 1000;
ShareService.cypherRSAStringWithPublicKeyBulkAsync(user.vaults, enc_key)
.progress(function () {
$scope.share_settings.cypher_progress.done++;
$scope.share_settings.cypher_progress.percent = $scope.share_settings.cypher_progress.done / $scope.share_settings.cypher_progress.total * 100;
$scope.$digest();
})
.then(function (result) {
$scope.share_settings.cypher_progress.times.push({
time: ((new Date().getTime() / 1000) - start),
user: data[0].user_id
});
user.vaults = result;
if (!user.hasOwnProperty('acl_id')) {
$scope.uploadChanges(user);
}
$scope.$digest();
});
});
};
$scope.$on("$locationChangeStart", function(event) {
if(!$scope.sharing_complete){
if(!confirm($translate.instant('share.navigate.away.warning'))){
event.preventDefault();
}
}
});
var getShareLink = function(hash){
var port;
var defaultPort = ($location.$$protocol === 'http') ? 80 : 443;
port = (defaultPort !== $location.$$port) ? ':'+ $location.$$port : '';
return $location.$$protocol + '://' + $location.$$host + port + OC.generateUrl('apps/passman/share/public#') + hash;
};
$scope.sharing_complete = true;
$scope.applyShare = function () {
$scope.sharing_complete = false;
$scope.share_settings.cypher_progress.percent = 0;
$scope.share_settings.cypher_progress.done = 0;
$scope.share_settings.cypher_progress.total = 0;
$scope.share_settings.cypher_progress.times = [];
$scope.share_settings.cypher_progress.times_total = [];
$scope.share_settings.upload_progress.done = 0;
$scope.share_settings.upload_progress.total = 0;
//Credential is already shared
if ($scope.storedCredential.shared_key && $scope.storedCredential.shared_key !== '' && $scope.storedCredential.shared_key !== null) {
var enc_key = EncryptService.decryptString(angular.copy($scope.storedCredential.shared_key));
if ($scope.share_settings.linkSharing.enabled) {
var expire_time = new Date(angular.copy($scope.share_settings.linkSharing.settings.expire_time)).getTime() / 1000;
var shareObj = {
item_id: $scope.storedCredential.credential_id,
item_guid: $scope.storedCredential.guid,
permissions: $scope.share_settings.linkSharing.settings.acl.getAccessLevel(),
expire_timestamp: expire_time,
expire_views: $scope.share_settings.linkSharing.settings.expire_views
};
ShareService.createPublicSharedCredential(shareObj).then(function () {
var hash = window.btoa($scope.storedCredential.guid + '<::>' + enc_key);
$scope.share_link = getShareLink(hash);
});
}
var list = $scope.share_settings.credentialSharedWithUserAndGroup;
for (var i = 0; i < list.length; i++) {
var iterator = i;
var target_user = list[i];
if (target_user.hasOwnProperty('created')) {
var acl = {
user_id: target_user.userId,
permission: target_user.acl.getAccessLevel()
};
ShareService.updateCredentialAcl($scope.storedCredential, acl);
} else {
$scope.applyShareToUser(list[iterator], enc_key);
}
}
NotificationService.showNotification($translate.instant('saved'), 4000);
$scope.sharing_complete = true;
} else {
ShareService.generateSharedKey(20).then(function (key) {
var encryptedSharedCredential = angular.copy($scope.storedCredential);
var old_key = VaultService.getActiveVault().vaultKey;
CredentialService.reencryptCredential(encryptedSharedCredential.guid, old_key, key).progress(function () {
}).then(function (data) {
var _credential = data.cryptogram;
_credential.set_share_key = true;
_credential.skip_revision = true;
_credential.shared_key = EncryptService.encryptString(key);
CredentialService.updateCredential(_credential, true).then(function () {
$scope.storedCredential.shared_key = _credential.shared_key;
NotificationService.showNotification($translate.instant('credential.shared'), 4000);
$scope.sharing_complete = true;
});
});
var list = $scope.share_settings.credentialSharedWithUserAndGroup;
for (var i = 0; i < list.length; i++) {
if (list[i].type === "user") {
$scope.applyShareToUser(list[i], key);
}
}
if ($scope.share_settings.linkSharing.enabled) {
var expire_time = new Date(angular.copy($scope.share_settings.linkSharing.settings.expire_time)).getTime() / 1000;
var shareObj = {
item_id: $scope.storedCredential.credential_id,
item_guid: $scope.storedCredential.guid,
permissions: $scope.share_settings.linkSharing.settings.acl.getAccessLevel(),
expire_timestamp: expire_time,
expire_views: $scope.share_settings.linkSharing.settings.expire_views
};
ShareService.createPublicSharedCredential(shareObj).then(function () {
var hash = window.btoa($scope.storedCredential.guid + '<::>' + key);
$scope.share_link = getShareLink(hash);
});
}
});
}
};
$scope.uploadChanges = function (user) {
$scope.share_settings.upload_progress.total++;
user.accessLevel = angular.copy(user.acl.getAccessLevel());
ShareService.shareWithUser(storedCredential, user)
.then(function () {
$scope.share_settings.upload_progress.done++;
$scope.share_settings.upload_progress.percent = $scope.share_settings.upload_progress.done / $scope.share_settings.upload_progress.total * 100;
});
};
$scope.calculate_total_time = function () {
$scope.share_settings.cypher_progress.times = $scope.share_settings.cypher_progress.times || [];
var total = 0;
for (var i = 0; i < $scope.share_settings.cypher_progress.times.length; i++) {
total += $scope.share_settings.cypher_progress.times[i].time;
}
return total;
};
}]);
}());
Reference in a new issue View git blame Copy permalink