richdocuments/lib/file.php

<?php
/**
 * ownCloud - Documents App
 *
 * @author Victor Dubiniuk
 * @copyright 2013 Victor Dubiniuk victor.dubiniuk@gmail.com
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
 * License as published by the Free Software Foundation; either 
 * version 3 of the License, or any later version.
 * 
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU AFFERO GENERAL PUBLIC LICENSE for more details.
 *  
 * You should have received a copy of the GNU Affero General Public
 * License along with this library.  If not, see <http://www.gnu.org/licenses/>.
 * 
 */

namespace OCA\Documents;

use \OC\Files\View;

class File {
	protected $fileId;
	protected $owner;
	protected $path;
	protected $sharing;
	protected $token ='';
	protected $passwordProtected = false;


	public function __construct($fileId, $shareOps = null){
		if (!$fileId){
			throw new \Exception('No valid file has been passed');
		}

		$this->fileId = $fileId;
		$this->sharing = $shareOps;
	}
	
	
	public static function getByShareToken($token){
		$linkItem = \OCP\Share::getShareByToken($token, false);
		if (is_array($linkItem) && isset($linkItem['uid_owner'])) {
			// seems to be a valid share
			$rootLinkItem = \OCP\Share::resolveReShare($linkItem);
		} else {
			throw new \Exception('This file was probably unshared');
		}
		
		$file = new File($rootLinkItem['file_source'], $rootLinkItem);
		$file->setToken($token);
		
		if (isset($linkItem['share_with']) && !empty($linkItem['share_with'])){
			$file->setPasswordProtected(true);
		}
		
		return $file;
	}

	public function getToken(){
		return $this->token;
	}
	
	public function getFileId(){
		return $this->fileId;
	}
	
	public function setOwner($owner){
		$this->owner = $owner;
	}
	
	public function setPath($path){
		$this->path = $path;
	}
	
	public function setToken($token){
		$this->token = $token;
	}
	
	public function isPublicShare(){
		return  !empty($this->token);
	}
	
	public function isPasswordProtected(){
		return $this->passwordProtected;
	}

	/**
	 * @param string $password
	 * @return boolean
	 */
	public function checkPassword($password){
		$shareId  = $this->sharing['id'];
		if (!$this->isPasswordProtected()
			|| (\OC::$server->getSession()->exists('public_link_authenticated')
				&& \OC::$server->getSession()->get('public_link_authenticated') === $shareId
			)
		){
			return true;
		}
		
		// Check Password
		$newHash = '';
		if(\OC::$server->getHasher()->verify($password, $this->getPassword(), $newHash)) {
			\OC::$server->getSession()->set('public_link_authenticated', $shareId);

			/**
			 * FIXME: Migrate old hashes to new hash format
			 * Due to the fact that there is no reasonable functionality to update the password
			 * of an existing share no migration is yet performed there.
			 * The only possibility is to update the existing share which will result in a new
			 * share ID and is a major hack.
			 *
			 * In the future the migration should be performed once there is a proper method
			 * to update the share's password. (for example `$share->updatePassword($password)`
			 *
			 * @link https://github.com/owncloud/core/issues/10671
			 */
			if(!empty($newHash)) {

			}

			return true;
		}
		return false;
	}
	
	/**
	 * @param boolean $value
	 */
	public function setPasswordProtected($value){
		$this->passwordProtected = $value;
	}
	

	/**
	 * 
	 * @return string owner of the current file item
	 * @throws \Exception
	 */
	public function getOwnerViewAndPath($useDefaultRoot = false){
		if ($this->isPublicShare()){
			if (isset($this->sharing['uid_owner'])){
				$owner = $this->sharing['uid_owner'];
				if (!\OC::$server->getUserManager()->userExists($this->sharing['uid_owner'])) {
					throw new \Exception('Share owner' . $this->sharing['uid_owner'] . ' does not exist ');
				}

				\OC_Util::tearDownFS();
				\OC_Util::setupFS($this->sharing['uid_owner']);
			} else {
				throw new \Exception($this->fileId . ' is a broken share');
			}
			$view = new View('/' . $owner . '/files');
		} else {
			$owner = \OC::$server->getUserSession()->getUser()->getUID();
			$root = '/' . $owner;
			if ($useDefaultRoot){
				$root .= '/' . 'files';
			}
			$view = new View($root);
		}
			
		$path = $view->getPath($this->fileId);
		if (!$path){
			throw new \Exception($this->fileId . ' can not be resolved');
		}
		$this->path = $path;
		$this->owner = $owner;
		
		if (!$view->file_exists($this->path)){
			throw new \Exception($this->path . ' doesn\'t exist');
		}

		return array($view, $this->path);
	}
	

	public function getOwner(){
		if (!$this->owner){
			$this->getOwnerViewAndPath();
		}
		return $this->owner;
	}
	
	
	protected function getPassword(){
		return $this->sharing['share_with'];
	}
}
Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00			`<?php`
			`/**`
			`* ownCloud - Documents App`
			`*`
			`* @author Victor Dubiniuk`
			`* @copyright 2013 Victor Dubiniuk victor.dubiniuk@gmail.com`
			`*`
			`* This library is free software; you can redistribute it and/or`
			`* modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE`
			`* License as published by the Free Software Foundation; either`
			`* version 3 of the License, or any later version.`
			`*`
			`* This library is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU AFFERO GENERAL PUBLIC LICENSE for more details.`
			`*`
Fix comment about LGPL 2014-05-17 15:29:51 -04:00			`* You should have received a copy of the GNU Affero General Public`
Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00			`* License along with this library. If not, see <http://www.gnu.org/licenses/>.`
			`*`
			`*/`

			`namespace OCA\Documents;`

Remove View model. Get permissions from FileInfo 2014-11-11 03:22:31 +03:00			`use \OC\Files\View;`

Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00			`class File {`
			`protected $fileId;`
Refactoring permissions. Allow guests to join session 2013-09-25 16:34:35 +03:00			`protected $owner;`
			`protected $path;`
Sharing info is needed for public links only. 2014-11-11 01:49:32 +03:00			`protected $sharing;`
Further switch to member is_guest property 2014-04-10 21:23:26 +03:00			`protected $token ='';`
handle password protected links. Closes #97 2013-11-10 12:50:06 +03:00			`protected $passwordProtected = false;`


			`public function __construct($fileId, $shareOps = null){`
Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00			`if (!$fileId){`
			`throw new \Exception('No valid file has been passed');`
			`}`

			`$this->fileId = $fileId;`
Sharing info is needed for public links only. 2014-11-11 01:49:32 +03:00			`$this->sharing = $shareOps;`
Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00			`}`

Move File out of controller 2014-04-09 16:57:42 +03:00
Refactoring permissions. Allow guests to join session 2013-09-25 16:34:35 +03:00			`public static function getByShareToken($token){`
Fixing disconnection injected twice 2014-03-05 18:47:06 +03:00			`$linkItem = \OCP\Share::getShareByToken($token, false);`
Refactoring permissions. Allow guests to join session 2013-09-25 16:34:35 +03:00			`if (is_array($linkItem) && isset($linkItem['uid_owner'])) {`
			`// seems to be a valid share`
			`$rootLinkItem = \OCP\Share::resolveReShare($linkItem);`
			`} else {`
			`throw new \Exception('This file was probably unshared');`
			`}`

Sharing info is needed for public links only. 2014-11-11 01:49:32 +03:00			`$file = new File($rootLinkItem['file_source'], $rootLinkItem);`
Further switch to member is_guest property 2014-04-10 21:23:26 +03:00			`$file->setToken($token);`
Properly resolve share token. Fixes #153 2013-12-04 21:33:37 +03:00
handle password protected links. Closes #97 2013-11-10 12:50:06 +03:00			`if (isset($linkItem['share_with']) && !empty($linkItem['share_with'])){`
			`$file->setPasswordProtected(true);`
			`}`
Refactoring permissions. Allow guests to join session 2013-09-25 16:34:35 +03:00
			`return $file;`
			`}`

Remove unused parameter 2014-04-14 19:34:33 +03:00			`public function getToken(){`
Store share token to guest users 2014-04-11 00:59:51 +03:00			`return $this->token;`
			`}`

Refactoring permissions. Allow guests to join session 2013-09-25 16:34:35 +03:00			`public function getFileId(){`
			`return $this->fileId;`
			`}`

			`public function setOwner($owner){`
			`$this->owner = $owner;`
			`}`

			`public function setPath($path){`
			`$this->path = $path;`
			`}`
Guest can finally edit 2013-09-26 21:01:41 +03:00
Further switch to member is_guest property 2014-04-10 21:23:26 +03:00			`public function setToken($token){`
			`$this->token = $token;`
			`}`

Guest can finally edit 2013-09-26 21:01:41 +03:00			`public function isPublicShare(){`
Further switch to member is_guest property 2014-04-10 21:23:26 +03:00			`return !empty($this->token);`
Guest can finally edit 2013-09-26 21:01:41 +03:00			`}`
handle password protected links. Closes #97 2013-11-10 12:50:06 +03:00
			`public function isPasswordProtected(){`
			`return $this->passwordProtected;`
			`}`
Check session token 2014-09-08 22:05:31 +03:00
Fix some issues found by code inspector 2014-10-29 18:06:05 +03:00			`/**`
			`* @param string $password`
			`* @return boolean`
			`*/`
handle password protected links. Closes #97 2013-11-10 12:50:06 +03:00			`public function checkPassword($password){`
Sharing info is needed for public links only. 2014-11-11 01:49:32 +03:00			`$shareId = $this->sharing['id'];`
handle password protected links. Closes #97 2013-11-10 12:50:06 +03:00			`if (!$this->isPasswordProtected()`
use accessor to get session 2014-07-17 12:02:43 +02:00			`\|\| (\OC::$server->getSession()->exists('public_link_authenticated')`
			`&& \OC::$server->getSession()->get('public_link_authenticated') === $shareId`
			`)`
			`){`
Remove stinky code, ref #287 2014-10-16 23:34:43 +03:00			`return true;`
handle password protected links. Closes #97 2013-11-10 12:50:06 +03:00			`}`

			`// Check Password`
Remove phpass See https://github.com/owncloud/core/pull/12226 2014-11-17 14:11:37 +01:00			`$newHash = '';`
			`if(\OC::$server->getHasher()->verify($password, $this->getPassword(), $newHash)) {`
use accessor to get session 2014-07-17 12:02:43 +02:00			`\OC::$server->getSession()->set('public_link_authenticated', $shareId);`
Remove phpass See https://github.com/owncloud/core/pull/12226 2014-11-17 14:11:37 +01:00
			`/**`
			`* FIXME: Migrate old hashes to new hash format`
			`* Due to the fact that there is no reasonable functionality to update the password`
			`* of an existing share no migration is yet performed there.`
			`* The only possibility is to update the existing share which will result in a new`
			`* share ID and is a major hack.`
			`*`
			`* In the future the migration should be performed once there is a proper method`
			* to update the share's password. (for example `$share->updatePassword($password)`
			`*`
			`* @link https://github.com/owncloud/core/issues/10671`
			`*/`
			`if(!empty($newHash)) {`

			`}`

handle password protected links. Closes #97 2013-11-10 12:50:06 +03:00			`return true;`
			`}`
			`return false;`
			`}`

Fix some issues found by code inspector 2014-10-29 18:06:05 +03:00			`/**`
			`* @param boolean $value`
			`*/`
handle password protected links. Closes #97 2013-11-10 12:50:06 +03:00			`public function setPasswordProtected($value){`
			`$this->passwordProtected = $value;`
			`}`
Open readonly shares with viewer. Ref #62 2013-12-05 01:02:08 +03:00
Refactoring permissions. Allow guests to join session 2013-09-25 16:34:35 +03:00
Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00			`/**`
			`*`
			`* @return string owner of the current file item`
			`* @throws \Exception`
			`*/`
Use default root when saving a session 2014-06-26 18:21:51 +03:00			`public function getOwnerViewAndPath($useDefaultRoot = false){`
Store share token to guest users 2014-04-11 00:59:51 +03:00			`if ($this->isPublicShare()){`
Sharing info is needed for public links only. 2014-11-11 01:49:32 +03:00			`if (isset($this->sharing['uid_owner'])){`
			`$owner = $this->sharing['uid_owner'];`
Remove deprecated API usage. Step 3 2015-08-27 01:57:31 +03:00			`if (!\OC::$server->getUserManager()->userExists($this->sharing['uid_owner'])) {`
			`throw new \Exception('Share owner' . $this->sharing['uid_owner'] . ' does not exist ');`
			`}`

Use owner FS for guests 2014-07-04 19:10:25 +03:00			`\OC_Util::tearDownFS();`
Sharing info is needed for public links only. 2014-11-11 01:49:32 +03:00			`\OC_Util::setupFS($this->sharing['uid_owner']);`
Refactoring permissions. Allow guests to join session 2013-09-25 16:34:35 +03:00			`} else {`
Store share token to guest users 2014-04-11 00:59:51 +03:00			`throw new \Exception($this->fileId . ' is a broken share');`
Refactoring permissions. Allow guests to join session 2013-09-25 16:34:35 +03:00			`}`
Store share token to guest users 2014-04-11 00:59:51 +03:00			`$view = new View('/' . $owner . '/files');`
			`} else {`
Remove deprecated API usage. Step 3 2015-08-27 01:57:31 +03:00			`$owner = \OC::$server->getUserSession()->getUser()->getUID();`
Use default root when saving a session 2014-06-26 18:21:51 +03:00			`$root = '/' . $owner;`
			`if ($useDefaultRoot){`
			`$root .= '/' . 'files';`
			`}`
			`$view = new View($root);`
Store share token to guest users 2014-04-11 00:59:51 +03:00			`}`
Refactoring permissions. Allow guests to join session 2013-09-25 16:34:35 +03:00
Use getPath instead of shareInfo 2014-07-04 18:22:07 +03:00			`$path = $view->getPath($this->fileId);`
Store share token to guest users 2014-04-11 00:59:51 +03:00			`if (!$path){`
			`throw new \Exception($this->fileId . ' can not be resolved');`
Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00			`}`
Store share token to guest users 2014-04-11 00:59:51 +03:00			`$this->path = $path;`
			`$this->owner = $owner;`
Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00
Improve shared files resolution. Fixes #162,#167 2013-12-18 22:22:32 +03:00			`if (!$view->file_exists($this->path)){`
Guest can finally edit 2013-09-26 21:01:41 +03:00			`throw new \Exception($this->path . ' doesn\'t exist');`
Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00			`}`
Improve shared files resolution. Fixes #162,#167 2013-12-18 22:22:32 +03:00
			`return array($view, $this->path);`
Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00			`}`
Store share token to guest users 2014-04-11 00:59:51 +03:00
Guest can finally edit 2013-09-26 21:01:41 +03:00
Store genesis to the real file owner instead of session starter 2013-09-24 03:39:05 +03:00			`public function getOwner(){`
Refactoring permissions. Allow guests to join session 2013-09-25 16:34:35 +03:00			`if (!$this->owner){`
Guest can finally edit 2013-09-26 21:01:41 +03:00			`$this->getOwnerViewAndPath();`
			`}`
			`return $this->owner;`
			`}`

handle password protected links. Closes #97 2013-11-10 12:50:06 +03:00
			`protected function getPassword(){`
Sharing info is needed for public links only. 2014-11-11 01:49:32 +03:00			`return $this->sharing['share_with'];`
handle password protected links. Closes #97 2013-11-10 12:50:06 +03:00			`}`
Guest can finally edit 2013-09-26 21:01:41 +03:00			`}`