mirror of
https://github.com/nextcloud/passman.git
synced 2025-10-04 02:34:29 +08:00
0e20928c28
Change dev docs link Fix tests Code style fixes Remove console.log Fix for downloading files (Firefox and chrome). Fixes #259 Small fixes Fix password audit links Require vault key strength when changing vault key Add http protocol if its missing Implement onclick disable directive Add feature to request vault destructions Add feature to move vaults to other account Fix selected tag filter doesn't stick after returning from sharing or editing (Fixes #255) Fix Cannot read property in credentialcounter Add a generic CSV importer Fix credential counting (Fixes #253) Fix Call to a member function getId() on array (Fixes #252) Remove sourcemap Signed-off-by: Passman Bot <info@passman.cc>
191 lines
No EOL
5.9 KiB
PHP
191 lines
No EOL
5.9 KiB
PHP
<?php
|
|
/**
|
|
* Nextcloud - passman
|
|
*
|
|
* This file is licensed under the Affero General Public License version 3 or
|
|
* later. See the COPYING file.
|
|
*
|
|
* @author Sander Brand <brantje@gmail.com>
|
|
* @copyright Sander Brand 2016
|
|
*/
|
|
|
|
namespace OCA\Passman\Controller;
|
|
|
|
use OCA\Passman\Db\Credential;
|
|
use OCA\Passman\Db\CredentialRevision;
|
|
use OCA\Passman\Db\DeleteVaultRequest;
|
|
use OCA\Passman\Service\CredentialRevisionService;
|
|
use OCA\Passman\Service\DeleteVaultRequestService;
|
|
use OCA\Passman\Service\FileService;
|
|
use OCA\Passman\Service\VaultService;
|
|
use OCA\Passman\Utility\Utils;
|
|
use OCP\IConfig;
|
|
use OCP\IRequest;
|
|
use OCP\AppFramework\Http\JSONResponse;
|
|
use OCP\AppFramework\ApiController;
|
|
use OCA\Passman\Service\CredentialService;
|
|
|
|
|
|
class AdminController extends ApiController {
|
|
private $userId;
|
|
private $vaultService;
|
|
private $credentialService;
|
|
private $fileService;
|
|
private $revisionService;
|
|
private $deleteVaultRequestService;
|
|
private $config;
|
|
|
|
public function __construct($AppName,
|
|
IRequest $request,
|
|
$UserId,
|
|
VaultService $vaultService,
|
|
CredentialService $credentialService,
|
|
FileService $fileService,
|
|
CredentialRevisionService $revisionService,
|
|
DeleteVaultRequestService $deleteVaultRequestService,
|
|
IConfig $config
|
|
) {
|
|
parent::__construct(
|
|
$AppName,
|
|
$request,
|
|
'GET, POST, DELETE, PUT, PATCH, OPTIONS',
|
|
'Authorization, Content-Type, Accept',
|
|
86400);
|
|
$this->userId = $UserId;
|
|
$this->vaultService = $vaultService;
|
|
$this->credentialService = $credentialService;
|
|
$this->fileService = $fileService;
|
|
$this->revisionService = $revisionService;
|
|
$this->deleteVaultRequestService = $deleteVaultRequestService;
|
|
|
|
$this->config = $config;
|
|
}
|
|
|
|
|
|
public function searchUser($term) {
|
|
$um = \OC::$server->getUserManager();
|
|
$results = array();
|
|
$searchResult = $um->search($term);
|
|
foreach ($searchResult as $user) {
|
|
array_push($results, array(
|
|
"value" => $user->getUID(),
|
|
"label" => $user->getDisplayName() . ' (' . $user->getBackendClassName() . ')',
|
|
));
|
|
}
|
|
return new JSONResponse($results);
|
|
}
|
|
|
|
public function moveCredentials($source_account, $destination_account) {
|
|
$vaults = $this->vaultService->getByUser($source_account);
|
|
foreach ($vaults as $vault) {
|
|
$credentials = $this->credentialService->getCredentialsByVaultId($vault->getId(), $source_account);
|
|
foreach ($credentials as $credential) {
|
|
$revisions = $this->revisionService->getRevisions($credential->getId());
|
|
foreach ($revisions as $revision) {
|
|
$r = new CredentialRevision();
|
|
$r->setId($revision['revision_id']);
|
|
$r->setGuid($revision['guid']);
|
|
$r->setCredentialId($credential->getId());
|
|
$r->setUserId($destination_account);
|
|
$r->setCreated($revision['created']);
|
|
$r->setCredentialData(base64_encode(json_encode($revision['credential_data'])));
|
|
$r->setEditedBy($revision['edited_by']);
|
|
$this->revisionService->updateRevision($r);
|
|
}
|
|
|
|
$c = $credential->jsonSerialize();
|
|
$c['user_id'] = $destination_account;
|
|
$this->credentialService->updateCredential($c, true);
|
|
}
|
|
$vault->setUserId($destination_account);
|
|
$this->vaultService->updateVault($vault);
|
|
}
|
|
|
|
$files = $this->fileService->getFilesFromUser($source_account);
|
|
foreach ($files as $file) {
|
|
$file->setUserId($destination_account);
|
|
$this->fileService->updateFile($file);
|
|
}
|
|
return new JSONResponse(array('success' => true));
|
|
}
|
|
|
|
public function listRequests(){
|
|
$requests = $this->deleteVaultRequestService->getDeleteRequests();
|
|
$results = array();
|
|
foreach($requests as $request){
|
|
$r = $request->jsonSerialize();
|
|
$r['displayName'] = Utils::getNameByUid($request->getRequestedBy());
|
|
array_push($results, $r);
|
|
}
|
|
return new JSONResponse($results);
|
|
}
|
|
|
|
public function acceptRequestDeletion($vault_guid, $requested_by){
|
|
$req = $this->deleteVaultRequestService->getDeleteRequestForVault($vault_guid);
|
|
try{
|
|
$vault = $this->vaultService->getByGuid($vault_guid, $requested_by);
|
|
} catch (\Exception $e){
|
|
//Ignore
|
|
}
|
|
|
|
if(isset($vault)){
|
|
$credentials = $this->credentialService->getCredentialsByVaultId($vault->getId(), $requested_by);
|
|
foreach($credentials as $credential){
|
|
$revisions = $this->revisionService->getRevisions($credential->getId());
|
|
foreach($revisions as $revision){
|
|
$this->revisionService->deleteRevision($revision['revision_id'], $requested_by);
|
|
}
|
|
if($credential instanceof Credential){
|
|
$this->credentialService->deleteCredential($credential);
|
|
}
|
|
}
|
|
$this->vaultService->deleteVault($vault_guid, $requested_by);
|
|
}
|
|
if($req instanceof DeleteVaultRequest) {
|
|
$this->deleteVaultRequestService->removeDeleteRequestForVault($req);
|
|
}
|
|
|
|
return new JSONResponse(array('result' => true));
|
|
}
|
|
|
|
/**
|
|
* @NoAdminRequired
|
|
*/
|
|
public function requestDeletion($vault_guid, $reason) {
|
|
$req = $this->deleteVaultRequestService->getDeleteRequestForVault($vault_guid);
|
|
if($req){
|
|
return new JSONResponse('Already exists');
|
|
}
|
|
$vault = $this->vaultService->getByGuid($vault_guid, $this->userId);
|
|
$result = false;
|
|
if ($vault) {
|
|
$delete_request = new DeleteVaultRequest();
|
|
$delete_request->setRequestedBy($this->userId);
|
|
$delete_request->setVaultGuid($vault->getGuid());
|
|
$delete_request->setReason($reason);
|
|
$delete_request->setCreated(time());
|
|
$result = $this->deleteVaultRequestService->createRequest($delete_request);
|
|
|
|
}
|
|
return new JSONResponse(array('result' => $result));
|
|
}
|
|
|
|
/**
|
|
* @NoAdminRequired
|
|
*/
|
|
public function deleteRequestDeletion($vault_guid) {
|
|
$delete_request = false;
|
|
$result = false;
|
|
try {
|
|
$delete_request = $this->deleteVaultRequestService->getDeleteRequestForVault($vault_guid);
|
|
} catch (\Exception $exception){
|
|
// Ignore it
|
|
}
|
|
|
|
if ($delete_request instanceof DeleteVaultRequest) {
|
|
$this->deleteVaultRequestService->removeDeleteRequestForVault($delete_request);
|
|
$result = true;
|
|
}
|
|
return new JSONResponse(array('result' => $result));
|
|
}
|
|
} |