Mirrors
/
nextcloud-server
mirror of https://github.com/nextcloud/server
3
0
Fork 0
Code Releases Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
54337 Commits
678 Branches
1186 Tags
4.3 GiB
Tree: 2e4cc6da17
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '2e4cc6da17'
${ noResults }
nextcloud-server/apps/encryption/lib/Controller/RecoveryController.php

191 lines
6.1 KiB
Raw Normal View History

Initial commit
11 years ago
Fix apps/
10 years ago
Update license headers
10 years ago
Update license headers for 19 Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
6 years ago
fixing license headers - encryption code related
11 years ago
Update license headers
10 years ago
Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
6 years ago
fixing license headers - encryption code related
11 years ago
Initial commit
11 years ago
Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
6 years ago
Initial commit
11 years ago
fix messages from settings crontroller
11 years ago
Some php-cs fixes * Order the imports * No leading slash on imports * Empty line before namespace * One line per import * Empty after imports * Emmpty line at bottom of file Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
6 years ago
Initial commit
11 years ago
Fix code style
11 years ago
Initial commit
11 years ago
Enforce string as passed type
11 years ago
Initial commit
11 years ago
fixing return values and adding tests
11 years ago
change error codes to 400
11 years ago
Initial commit
11 years ago
fixing return values and adding tests
11 years ago
change error codes to 400
11 years ago
Initial commit
11 years ago
fixing return values and adding tests
11 years ago
change error codes to 400
11 years ago
Initial commit
11 years ago
fix set recovery key and implement change password
11 years ago
remove status's and adjust js
11 years ago
Initial commit
11 years ago
change error codes to 400
11 years ago
Initial commit
11 years ago
fix set recovery key and implement change password
11 years ago
remove status's and adjust js
11 years ago
Initial commit
11 years ago
change error codes to 400
11 years ago
fix set recovery key and implement change password
11 years ago
fixing return values and adding tests
11 years ago
change error codes to 400
11 years ago
fix set recovery key and implement change password
11 years ago
Enforce string as passed type
11 years ago
fix set recovery key and implement change password
11 years ago
fixing return values and adding tests
11 years ago
change error codes to 400
11 years ago
fix set recovery key and implement change password
11 years ago
fixing return values and adding tests
11 years ago
Remove spaces after method or function call Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
6 years ago
fix set recovery key and implement change password
11 years ago
fixing return values and adding tests
11 years ago
change error codes to 400
11 years ago
fix set recovery key and implement change password
11 years ago
fixing return values and adding tests
11 years ago
change error codes to 400
11 years ago
fix set recovery key and implement change password
11 years ago
fixing return values and adding tests
11 years ago
fix set recovery key and implement change password
11 years ago
add helper class accessible for encryption modules to ask for a list of users with access to a file, needed to apply the recovery key to all files
11 years ago
remove status's and adjust js
11 years ago
destupify tests
11 years ago
remove status's and adjust js
11 years ago
fixing return values and adding tests
11 years ago
Initial commit
11 years ago
destupify tests
11 years ago
remove status's and adjust js
11 years ago
destupify tests
11 years ago
change error codes to 400
11 years ago
Initial commit
11 years ago
make recovery key work
11 years ago
Fix code style
11 years ago
make recovery key work
11 years ago
add helper class accessible for encryption modules to ask for a list of users with access to a file, needed to apply the recovery key to all files
11 years ago
remove status's and adjust js
11 years ago
add helper class accessible for encryption modules to ask for a list of users with access to a file, needed to apply the recovery key to all files
11 years ago
remove status's and adjust js
11 years ago
destupify tests
11 years ago
remove status's and adjust js
11 years ago
add helper class accessible for encryption modules to ask for a list of users with access to a file, needed to apply the recovery key to all files
11 years ago
destupify tests
11 years ago
remove status's and adjust js
11 years ago
destupify tests
11 years ago
change error codes to 400
11 years ago
add helper class accessible for encryption modules to ask for a list of users with access to a file, needed to apply the recovery key to all files
11 years ago
Initial commit
11 years ago
  1. <?php
  2. /**
  3. * @copyright Copyright (c) 2016, ownCloud, Inc.
  4. *
  5. * @author Björn Schießle <bjoern@schiessle.org>
  6. * @author Christoph Wurst <christoph@winzerhof-wurst.at>
  7. * @author Clark Tomlinson <fallen013@gmail.com>
  8. * @author Lukas Reschke <lukas@statuscode.ch>
  9. * @author Roeland Jago Douma <roeland@famdouma.nl>
  10. *
  11. * @license AGPL-3.0
  12. *
  13. * This code is free software: you can redistribute it and/or modify
  14. * it under the terms of the GNU Affero General Public License, version 3,
  15. * as published by the Free Software Foundation.
  16. *
  17. * This program is distributed in the hope that it will be useful,
  18. * but WITHOUT ANY WARRANTY; without even the implied warranty of
  19. * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  20. * GNU Affero General Public License for more details.
  21. *
  22. * You should have received a copy of the GNU Affero General Public License, version 3,
  23. * along with this program. If not, see <http://www.gnu.org/licenses/>
  24. *
  25. */
  27. namespace OCA\Encryption\Controller;
  29. use OCA\Encryption\Recovery;
  30. use OCP\AppFramework\Controller;
  31. use OCP\AppFramework\Http;
  32. use OCP\AppFramework\Http\DataResponse;
  33. use OCP\IConfig;
  34. use OCP\IL10N;
  35. use OCP\IRequest;
  37. class RecoveryController extends Controller {
  38. /**
  39. * @var IConfig
  40. */
  41. private $config;
  42. /**
  43. * @var IL10N
  44. */
  45. private $l;
  46. /**
  47. * @var Recovery
  48. */
  49. private $recovery;
  51. /**
  52. * @param string $AppName
  53. * @param IRequest $request
  54. * @param IConfig $config
  55. * @param IL10N $l10n
  56. * @param Recovery $recovery
  57. */
  58. public function __construct($AppName,
  59. IRequest $request,
  60. IConfig $config,
  61. IL10N $l10n,
  62. Recovery $recovery) {
  63. parent::__construct($AppName, $request);
  64. $this->config = $config;
  65. $this->l = $l10n;
  66. $this->recovery = $recovery;
  67. }
  69. /**
  70. * @param string $recoveryPassword
  71. * @param string $confirmPassword
  72. * @param string $adminEnableRecovery
  73. * @return DataResponse
  74. */
  75. public function adminRecovery($recoveryPassword, $confirmPassword, $adminEnableRecovery) {
  76. // Check if both passwords are the same
  77. if (empty($recoveryPassword)) {
  78. $errorMessage = (string)$this->l->t('Missing recovery key password');
  79. return new DataResponse(['data' => ['message' => $errorMessage]],
  80. Http::STATUS_BAD_REQUEST);
  81. }
  83. if (empty($confirmPassword)) {
  84. $errorMessage = (string)$this->l->t('Please repeat the recovery key password');
  85. return new DataResponse(['data' => ['message' => $errorMessage]],
  86. Http::STATUS_BAD_REQUEST);
  87. }
  89. if ($recoveryPassword !== $confirmPassword) {
  90. $errorMessage = (string)$this->l->t('Repeated recovery key password does not match the provided recovery key password');
  91. return new DataResponse(['data' => ['message' => $errorMessage]],
  92. Http::STATUS_BAD_REQUEST);
  93. }
  95. if (isset($adminEnableRecovery) && $adminEnableRecovery === '1') {
  96. if ($this->recovery->enableAdminRecovery($recoveryPassword)) {
  97. return new DataResponse(['data' => ['message' => (string)$this->l->t('Recovery key successfully enabled')]]);
  98. }
  99. return new DataResponse(['data' => ['message' => (string)$this->l->t('Could not enable recovery key. Please check your recovery key password!')]], Http::STATUS_BAD_REQUEST);
  100. } elseif (isset($adminEnableRecovery) && $adminEnableRecovery === '0') {
  101. if ($this->recovery->disableAdminRecovery($recoveryPassword)) {
  102. return new DataResponse(['data' => ['message' => (string)$this->l->t('Recovery key successfully disabled')]]);
  103. }
  104. return new DataResponse(['data' => ['message' => (string)$this->l->t('Could not disable recovery key. Please check your recovery key password!')]], Http::STATUS_BAD_REQUEST);
  105. }
  106. // this response should never be sent but just in case.
  107. return new DataResponse(['data' => ['message' => (string)$this->l->t('Missing parameters')]], Http::STATUS_BAD_REQUEST);
  108. }
  110. /**
  111. * @param string $newPassword
  112. * @param string $oldPassword
  113. * @param string $confirmPassword
  114. * @return DataResponse
  115. */
  116. public function changeRecoveryPassword($newPassword, $oldPassword, $confirmPassword) {
  117. //check if both passwords are the same
  118. if (empty($oldPassword)) {
  119. $errorMessage = (string)$this->l->t('Please provide the old recovery password');
  120. return new DataResponse(['data' => ['message' => $errorMessage]], Http::STATUS_BAD_REQUEST);
  121. }
  123. if (empty($newPassword)) {
  124. $errorMessage = (string)$this->l->t('Please provide a new recovery password');
  125. return new DataResponse(['data' => ['message' => $errorMessage]], Http::STATUS_BAD_REQUEST);
  126. }
  128. if (empty($confirmPassword)) {
  129. $errorMessage = (string)$this->l->t('Please repeat the new recovery password');
  130. return new DataResponse(['data' => ['message' => $errorMessage]], Http::STATUS_BAD_REQUEST);
  131. }
  133. if ($newPassword !== $confirmPassword) {
  134. $errorMessage = (string)$this->l->t('Repeated recovery key password does not match the provided recovery key password');
  135. return new DataResponse(['data' => ['message' => $errorMessage]], Http::STATUS_BAD_REQUEST);
  136. }
  138. $result = $this->recovery->changeRecoveryKeyPassword($newPassword,
  139. $oldPassword);
  141. if ($result) {
  142. return new DataResponse(
  143. [
  144. 'data' => [
  145. 'message' => (string)$this->l->t('Password successfully changed.')]
  146. ]
  147. );
  148. }
  149. return new DataResponse(
  150. [
  151. 'data' => [
  152. 'message' => (string)$this->l->t('Could not change the password. Maybe the old password was not correct.')
  153. ]
  154. ], Http::STATUS_BAD_REQUEST);
  155. }
  157. /**
  158. * @NoAdminRequired
  159. *
  160. * @param string $userEnableRecovery
  161. * @return DataResponse
  162. */
  163. public function userSetRecovery($userEnableRecovery) {
  164. if ($userEnableRecovery === '0' || $userEnableRecovery === '1') {
  165. $result = $this->recovery->setRecoveryForUser($userEnableRecovery);
  167. if ($result) {
  168. if ($userEnableRecovery === '0') {
  169. return new DataResponse(
  170. [
  171. 'data' => [
  172. 'message' => (string)$this->l->t('Recovery Key disabled')]
  173. ]
  174. );
  175. }
  176. return new DataResponse(
  177. [
  178. 'data' => [
  179. 'message' => (string)$this->l->t('Recovery Key enabled')]
  180. ]
  181. );
  182. }
  183. }
  184. return new DataResponse(
  185. [
  186. 'data' => [
  187. 'message' => (string)$this->l->t('Could not enable the recovery key, please try again or contact your administrator')
  188. ]
  189. ], Http::STATUS_BAD_REQUEST);
  190. }
  191. }