Mirrors
/
nextcloud-server
mirror of https://github.com/nextcloud/server
3
0
Fork 0
Code Releases Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
83872 Commits
675 Branches
1186 Tags
4.3 GiB
Branch: availability-same-request-patch
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'availability-same-request-patch'
${ noResults }
nextcloud-server/core/Controller/WipeController.php

87 lines
2.3 KiB
Raw Permalink Normal View History

Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
chore: Add SPDX header Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de>
2 years ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
refactor(core): Replace security annotations with respective attributes Signed-off-by: provokateurin <kate@provokateurin.de>
2 years ago
refactor(core): Switch to attribute based routing Signed-off-by: provokateurin <kate@provokateurin.de>
2 years ago
refactor(core): Replace security annotations with respective attributes Signed-off-by: provokateurin <kate@provokateurin.de>
2 years ago
refactor(OpenAPI): Adjust scopes to match previous behavior Signed-off-by: provokateurin <kate@provokateurin.de>
1 year ago
refactor(core): Replace security annotations with respective attributes Signed-off-by: provokateurin <kate@provokateurin.de>
2 years ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
Always catch OCP versions of authentication exceptions And always throw OC versions for BC Signed-off-by: Côme Chilliet <come.chilliet@nextcloud.com>
2 years ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
refactor(OpenAPI): Adjust scopes to match previous behavior Signed-off-by: provokateurin <kate@provokateurin.de>
1 year ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
Applies agreed-upon indentation convention to the changed controllers. Based on https://github.com/nextcloud/server/pull/38636#discussion_r1218167753 Signed-off-by: Faraz Samapoor <f.samapoor@gmail.com>
3 years ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
core: Add OpenAPI spec Signed-off-by: jld3103 <jld3103yt@gmail.com>
3 years ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
core: Add OpenAPI spec Signed-off-by: jld3103 <jld3103yt@gmail.com>
3 years ago
fix(OpenAPI): Adjust array syntax to avoid ambiguities Signed-off-by: provokateurin <kate@provokateurin.de>
1 year ago
core: Add OpenAPI spec Signed-off-by: jld3103 <jld3103yt@gmail.com>
3 years ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
refactor(core): Replace security annotations with respective attributes Signed-off-by: provokateurin <kate@provokateurin.de>
2 years ago
refactor(core): Make all attribute arguments named Signed-off-by: provokateurin <kate@provokateurin.de>
2 years ago
refactor(core): Switch to attribute based routing Signed-off-by: provokateurin <kate@provokateurin.de>
2 years ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
core: Add OpenAPI spec Signed-off-by: jld3103 <jld3103yt@gmail.com>
3 years ago
fix(OpenAPI): Adjust array syntax to avoid ambiguities Signed-off-by: provokateurin <kate@provokateurin.de>
1 year ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
core: Add OpenAPI spec Signed-off-by: jld3103 <jld3103yt@gmail.com>
3 years ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
refactor(core): Replace security annotations with respective attributes Signed-off-by: provokateurin <kate@provokateurin.de>
2 years ago
refactor(core): Make all attribute arguments named Signed-off-by: provokateurin <kate@provokateurin.de>
2 years ago
refactor(core): Switch to attribute based routing Signed-off-by: provokateurin <kate@provokateurin.de>
2 years ago
Remote wipe support This allows a user to mark a token for remote wipe. Clients that support this can then wipe the device properly. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
7 years ago
  1. <?php
  3. declare(strict_types=1);
  5. /**
  6. * SPDX-FileCopyrightText: 2019 Nextcloud GmbH and Nextcloud contributors
  7. * SPDX-License-Identifier: AGPL-3.0-or-later
  8. */
  9. namespace OC\Core\Controller;
  11. use OC\Authentication\Token\RemoteWipe;
  12. use OCP\AppFramework\Controller;
  13. use OCP\AppFramework\Http;
  14. use OCP\AppFramework\Http\Attribute\AnonRateLimit;
  15. use OCP\AppFramework\Http\Attribute\FrontpageRoute;
  16. use OCP\AppFramework\Http\Attribute\NoCSRFRequired;
  17. use OCP\AppFramework\Http\Attribute\OpenAPI;
  18. use OCP\AppFramework\Http\Attribute\PublicPage;
  19. use OCP\AppFramework\Http\JSONResponse;
  20. use OCP\Authentication\Exceptions\InvalidTokenException;
  21. use OCP\IRequest;
  23. #[OpenAPI(scope: OpenAPI::SCOPE_DEFAULT)]
  24. class WipeController extends Controller {
  25. public function __construct(
  26. string $appName,
  27. IRequest $request,
  28. private RemoteWipe $remoteWipe,
  29. ) {
  30. parent::__construct($appName, $request);
  31. }
  33. /**
  34. * Check if the device should be wiped
  35. *
  36. * @param string $token App password
  37. *
  38. * @return JSONResponse<Http::STATUS_OK, array{wipe: bool}, array{}>|JSONResponse<Http::STATUS_NOT_FOUND, list<empty>, array{}>
  39. *
  40. * 200: Device should be wiped
  41. * 404: Device should not be wiped
  42. */
  43. #[PublicPage]
  44. #[NoCSRFRequired]
  45. #[AnonRateLimit(limit: 10, period: 300)]
  46. #[FrontpageRoute(verb: 'POST', url: '/core/wipe/check')]
  47. public function checkWipe(string $token): JSONResponse {
  48. try {
  49. if ($this->remoteWipe->start($token)) {
  50. return new JSONResponse([
  51. 'wipe' => true
  52. ]);
  53. }
  55. return new JSONResponse([], Http::STATUS_NOT_FOUND);
  56. } catch (InvalidTokenException $e) {
  57. return new JSONResponse([], Http::STATUS_NOT_FOUND);
  58. }
  59. }
  62. /**
  63. * Finish the wipe
  64. *
  65. * @param string $token App password
  66. *
  67. * @return JSONResponse<Http::STATUS_OK|Http::STATUS_NOT_FOUND, list<empty>, array{}>
  68. *
  69. * 200: Wipe finished successfully
  70. * 404: Device should not be wiped
  71. */
  72. #[PublicPage]
  73. #[NoCSRFRequired]
  74. #[AnonRateLimit(limit: 10, period: 300)]
  75. #[FrontpageRoute(verb: 'POST', url: '/core/wipe/success')]
  76. public function wipeDone(string $token): JSONResponse {
  77. try {
  78. if ($this->remoteWipe->finish($token)) {
  79. return new JSONResponse([]);
  80. }
  82. return new JSONResponse([], Http::STATUS_NOT_FOUND);
  83. } catch (InvalidTokenException $e) {
  84. return new JSONResponse([], Http::STATUS_NOT_FOUND);
  85. }
  86. }
  87. }