Mirrors
/
nextcloud-server
mirror of https://github.com/nextcloud/server
3
0
Fork 0
Code Releases Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
38005 Commits
570 Branches
1160 Tags
4.1 GiB
Tree: c191173d59
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'c191173d59'
${ noResults }
nextcloud-server/apps/files_sharing/lib/Controller/ShareAPIController.php

930 lines
29 KiB
Raw Normal View History

The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
Happy new year!
10 years ago
Fix apps/
9 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
Throw OCSNotFoundExceptions
9 years ago
More exceptions
9 years ago
Throw OCSNotFoundExceptions
9 years ago
Convert Share API to use the AppFramework
9 years ago
re-use the share node while formating if we already have it Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
OCS Share API should not return invalid shares Since we have lazy shares it can happen that a share is actually invalid. See https://github.com/owncloud/core/issues/20908 This add checks for the get methods to handle the NotFound exception.
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
Translate OCS Share API error messages For https://github.com/owncloud/core/issues/22209
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
[Sharing 2.0] Use the rootfolder to get the path of a share We need to use the rootfolder here since we also other people than the shareOwner can request a share.
10 years ago
Add locking to modifying operation of the OCS Share API Fixes #17243 This is done in the OCS Share API instead of the share manager since we want lazy shares in general. However when doing modifying calls via the OCS Share API it is fine to force real nodes. * Updated unit tests to work with logging
10 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
[Share 2.0] Use GenericShareException
10 years ago
Unlock before all returns
10 years ago
dont show shares you own in "shared with you"
9 years ago
[Share 2.0] Use GenericShareException
10 years ago
Can't convert node to string
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
Convert Share API to use the AppFramework
9 years ago
[Sharing 2.0] Use the rootfolder to get the path of a share We need to use the rootfolder here since we also other people than the shareOwner can request a share.
10 years ago
Fix some scrutinizer warning in the sharing code * Better phpdoc * Promper use statements * Unused parameter
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
Translate OCS Share API error messages For https://github.com/owncloud/core/issues/22209
10 years ago
Add OCSShareAPIMiddleware * This will cleanup the locks after each request * Move check for enabled share api to the middleware
9 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
Convert Share API to use the AppFramework
9 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
Convert Share API to use the AppFramework
9 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
fix getting recipient share in ocs api Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
fix getting recipient share in ocs api Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
Convert Share API to use the AppFramework
9 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
[Sharing 2.0] Use the rootfolder to get the path of a share We need to use the rootfolder here since we also other people than the shareOwner can request a share.
10 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
Translate OCS Share API error messages For https://github.com/owncloud/core/issues/22209
10 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
[Share 2.0] Move IShare to OCP
10 years ago
re-use the share node while formating if we already have it Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
OCS Share API should not return invalid shares Since we have lazy shares it can happen that a share is actually invalid. See https://github.com/owncloud/core/issues/20908 This add checks for the get methods to handle the NotFound exception.
10 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
re-use the share node while formating if we already have it Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
Show the path relative to the requesting user A share can only be requested by 3 'types' of people * owner * initiator * recipient So we have to get the path as the current user. Since that is the only path that has any meaning to the user.
10 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
If the initiator no longer exists return UID It can happen that the share initiator is deleted. Because of the new resharing behaviour this share then still exists. We just can fetch the displayname properly.
10 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
[Share 2.0] Fix interfaces and comments * Made comments more clear * Removed unneeded methods * IShares shareTime is now a proper DateTime object * IShares getPath -> getNode & setPath -> setNode * Fix unit tests
10 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
The owner and recipient can also be null If we have backend hickups it can be that we are unable to retrive the owner and recipient user as well. In such cases just return the UID.
10 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
re-use the share node while formating if we already have it Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
Show the path relative to the requesting user A share can only be requested by 3 'types' of people * owner * initiator * recipient So we have to get the path as the current user. Since that is the only path that has any meaning to the user.
10 years ago
re-use the share node while formating if we already have it Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
get node by path as fallback Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
re-use the share node while formating if we already have it Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
Show the path relative to the requesting user A share can only be requested by 3 'types' of people * owner * initiator * recipient So we have to get the path as the current user. Since that is the only path that has any meaning to the user.
10 years ago
[Share 2.0] Fix interfaces and comments * Made comments more clear * Removed unneeded methods * IShares shareTime is now a proper DateTime object * IShares getPath -> getNode & setPath -> setNode * Fix unit tests
10 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
Convert Share API to use the AppFramework
9 years ago
[Share 2.0] Fix interfaces and comments * Made comments more clear * Removed unneeded methods * IShares shareTime is now a proper DateTime object * IShares getPath -> getNode & setPath -> setNode * Fix unit tests
10 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
The owner and recipient can also be null If we have backend hickups it can be that we are unable to retrive the owner and recipient user as well. In such cases just return the UID.
10 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
Use group display name in sharing API + UI
9 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
Use group display name in sharing API + UI
9 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
show correct display name if we have the user in one of our address books Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
add share by mail share provider Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
add new password column to the share table in order to set passwords for share by mails Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
show correct display name if we have the user in one of our address books Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
add share by mail share provider Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
shares-circles Signed-off-by: Maxence Lange <maxence@nextcloud.com>
9 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
shares-circles Signed-off-by: Maxence Lange <maxence@nextcloud.com>
9 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
show correct display name if we have the user in one of our address books Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
Convert Share API to use the AppFramework
9 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
Move common code to function The code to get a share by id is somewhat messy. And was duplicated. Now this is done is a separate function
10 years ago
[Share 2.0] Use GenericShareException
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
OCS Share API should not return invalid shares Since we have lazy shares it can happen that a share is actually invalid. See https://github.com/owncloud/core/issues/20908 This add checks for the get methods to handle the NotFound exception.
10 years ago
Move the Share20OCS code over to use the proper DataResponse
9 years ago
OCS Share API should not return invalid shares Since we have lazy shares it can happen that a share is actually invalid. See https://github.com/owncloud/core/issues/20908 This add checks for the get methods to handle the NotFound exception.
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
OCS Share API should not return invalid shares Since we have lazy shares it can happen that a share is actually invalid. See https://github.com/owncloud/core/issues/20908 This add checks for the get methods to handle the NotFound exception.
10 years ago
Throw OCSNotFoundExceptions
9 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
Convert Share API to use the AppFramework
9 years ago
[Share2.0] OCS Share API getShare uses new code
10 years ago
Add OCSShareAPIMiddleware * This will cleanup the locks after each request * Move check for enabled share api to the middleware
9 years ago
Throw OCSNotFoundExceptions
9 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
Move common code to function The code to get a share by id is somewhat messy. And was duplicated. Now this is done is a separate function
10 years ago
[Share 2.0] Use GenericShareException
10 years ago
Throw OCSNotFoundExceptions
9 years ago
Use the old code for remote shares for now
10 years ago
Add locking to modifying operation of the OCS Share API Fixes #17243 This is done in the OCS Share API instead of the share manager since we want lazy shares in general. However when doing modifying calls via the OCS Share API it is fine to force real nodes. * Updated unit tests to work with logging
10 years ago
Add OCSShareAPIMiddleware * This will cleanup the locks after each request * Move check for enabled share api to the middleware
9 years ago
Add locking to modifying operation of the OCS Share API Fixes #17243 This is done in the OCS Share API instead of the share manager since we want lazy shares in general. However when doing modifying calls via the OCS Share API it is fine to force real nodes. * Updated unit tests to work with logging
10 years ago
Throw OCSNotFoundExceptions
9 years ago
Add locking to modifying operation of the OCS Share API Fixes #17243 This is done in the OCS Share API instead of the share manager since we want lazy shares in general. However when doing modifying calls via the OCS Share API it is fine to force real nodes. * Updated unit tests to work with logging
10 years ago
Fix OCS API to be able to remove group shares from self as recipient Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
Throw OCSNotFoundExceptions
9 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
Fix OCS API to be able to remove group shares from self as recipient Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
DataResponse required ['data' => DATA]
9 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Convert Share API to use the AppFramework
9 years ago
Use parameters in createShare * Fix tests
9 years ago
Throw OCSNotFoundExceptions
9 years ago
More exceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Use parameters in createShare * Fix tests
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Unlock before all returns
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
[Share 2.0] Fix interfaces and comments * Made comments more clear * Removed unneeded methods * IShares shareTime is now a proper DateTime object * IShares getPath -> getNode & setPath -> setNode * Fix unit tests
10 years ago
Unlock before all returns
10 years ago
Add OCSShareAPIMiddleware * This will cleanup the locks after each request * Move check for enabled share api to the middleware
9 years ago
Unlock before all returns
10 years ago
Throw OCSNotFoundExceptions
9 years ago
Unlock before all returns
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Remove delete permissions for read-only federated reshares An incomming federated share is just a mount point. Therefor if we request the permissions on the mountpoint DELETE permissions will be returned (among others). Since we can always remove a mountpoint, update a mount point. However now when trying to reshare we will try to reshare with DELETE permissions. Which is false. This PR removes the delete permissions if it is a shared storage. Basically a quick hack. Fixes #22587
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Block group sharing in API and in share manager * Fix tests
10 years ago
Throw OCSNotFoundExceptions
9 years ago
Block group sharing in API and in share manager * Fix tests
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
For now only allow 1 link share per file/folder Fixes #22692 This is a temp fix util we get #22327 We just block it in the OCS Share API since we have 1 endpoint now anyway.
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
For now only allow 1 link share per file/folder Fixes #22692 This is a temp fix util we get #22327 We just block it in the OCS Share API since we have 1 endpoint now anyway.
10 years ago
Move the Share20OCS code over to use the proper DataResponse
9 years ago
For now only allow 1 link share per file/folder Fixes #22692 This is a temp fix util we get #22327 We just block it in the OCS Share API since we have 1 endpoint now anyway.
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
More exceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
[Sharing 2.0] Add L10N instance to manager for translated errors
10 years ago
Add explicit delete permission to link shares Link shares always allowed deletion, however internally the permissions were stored as 7 which lacked delete permissions. This created an inconsistency in the Webdav permissions. This fix makes sure we include delete permissions in the share permissions, which now become 15. In case a client is still passing 7 for legacy reasons, it gets converted automatically to 15.
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
[Share 2.0] When passing empty strings don't fail The password and expiration date can be set to empty strings when created. This is now handled gracefully.
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
[Share 2.0] When passing empty strings don't fail The password and expiration date can be set to empty strings when created. This is now handled gracefully.
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Respect not allowing outgoing shares
10 years ago
More exceptions
9 years ago
Respect not allowing outgoing shares
10 years ago
Update OCS Share API to use federated share provider
10 years ago
add share by mail share provider Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
update permissions Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
don't show 'notify by mail' option or permissions not available for mail shares Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
update permissions Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
add share by mail share provider Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
shares-circles Signed-off-by: Maxence Lange <maxence@nextcloud.com>
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
DataResponse required ['data' => DATA]
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
[Share 2.0] Use GenericShareException
10 years ago
[Sharing 2.0] Add L10N instance to manager for translated errors
10 years ago
More exceptions
9 years ago
Always unlock node after trying to create a share Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
More exceptions
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
get node by path as fallback Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
Add locking to modifying operation of the OCS Share API Fixes #17243 This is done in the OCS Share API instead of the share manager since we want lazy shares in general. However when doing modifying calls via the OCS Share API it is fine to force real nodes. * Updated unit tests to work with logging
10 years ago
Move the Share20OCS code over to use the proper DataResponse
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Add path filter to OCS Share API ?shared_with_me=true This allows all clients to quickly get the share info for a given path. Instead of returning everything and filtering it then manually on the client side.
10 years ago
Throw OCSNotFoundExceptions
9 years ago
Add path filter to OCS Share API ?shared_with_me=true This allows all clients to quickly get the share info for a given path. Instead of returning everything and filtering it then manually on the client side.
10 years ago
shares-circles Signed-off-by: Maxence Lange <maxence@nextcloud.com>
9 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
shares-circles Signed-off-by: Maxence Lange <maxence@nextcloud.com>
9 years ago
[Sharing 2.0] Start with getShares
10 years ago
shares-circles Signed-off-by: Maxence Lange <maxence@nextcloud.com>
9 years ago
[Sharing 2.0] Start with getShares
10 years ago
fix getting recipient share in ocs api Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
dont show shares you own in "shared with you"
9 years ago
[Sharing 2.0] Start with getShares
10 years ago
[Share 2.0] Properly handle user deleted group shares If a user deletes a group share we create a special share entry. To the API this is just a normal group share for that user with permissions 0. But we should not return this.
10 years ago
OCS Share API should not return invalid shares Since we have lazy shares it can happen that a share is actually invalid. See https://github.com/owncloud/core/issues/20908 This add checks for the get methods to handle the NotFound exception.
10 years ago
[Share 2.0] Properly handle user deleted group shares If a user deletes a group share we create a special share entry. To the API this is just a normal group share for that user with permissions 0. But we should not return this.
10 years ago
[Sharing 2.0] Start with getShares
10 years ago
Move the Share20OCS code over to use the proper DataResponse
9 years ago
[Sharing 2.0] Start with getShares
10 years ago
[Share 2.0] Add subfiles=x
10 years ago
Throw OCSNotFoundExceptions
9 years ago
More exceptions
9 years ago
[Share 2.0] Add subfiles=x
10 years ago
More exceptions
9 years ago
[Share 2.0] Add subfiles=x
10 years ago
[Share 2.0] Move IShare to OCP
10 years ago
[Share 2.0] Add subfiles=x
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
unit tests updated and new added Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
Respect not allowing outgoing shares
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
Respect not allowing outgoing shares
10 years ago
[Share 2.0] Add subfiles=x
10 years ago
OCS Share API should not return invalid shares Since we have lazy shares it can happen that a share is actually invalid. See https://github.com/owncloud/core/issues/20908 This add checks for the get methods to handle the NotFound exception.
10 years ago
[Share 2.0] Add subfiles=x
10 years ago
Move the Share20OCS code over to use the proper DataResponse
9 years ago
[Share 2.0] Add subfiles=x
10 years ago
Convert Share API to use the AppFramework
9 years ago
Move updateShare and getShares over to use proper parameters * Update tests
9 years ago
[Share 2.0] Add subfiles=x
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Add subfiles=x
10 years ago
Move updateShare and getShares over to use proper parameters * Update tests
9 years ago
[Sharing 2.0] Start with getShares
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
[Sharing 2.0] Start with getShares
10 years ago
Fix tests
9 years ago
[Sharing 2.0] Start with getShares
10 years ago
Throw OCSNotFoundExceptions
9 years ago
Unlock before all returns
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Sharing 2.0] Start with getShares
10 years ago
Move updateShare and getShares over to use proper parameters * Update tests
9 years ago
Unlock before all returns
10 years ago
Add path filter to OCS Share API ?shared_with_me=true This allows all clients to quickly get the share info for a given path. Instead of returning everything and filtering it then manually on the client side.
10 years ago
[Share 2.0] Add subfiles=x
10 years ago
Unlock before all returns
10 years ago
[Share 2.0] Add subfiles=x
10 years ago
[Sharing 2.0] Start with getShares
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
handle case if no share-by-mail share provider is loaded Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
shares-circles Signed-off-by: Maxence Lange <maxence@nextcloud.com>
9 years ago
Respect not allowing outgoing shares
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
Respect not allowing outgoing shares
10 years ago
[Sharing 2.0] Start with getShares
10 years ago
OCS Share API should not return invalid shares Since we have lazy shares it can happen that a share is actually invalid. See https://github.com/owncloud/core/issues/20908 This add checks for the get methods to handle the NotFound exception.
10 years ago
re-use the share node while formating if we already have it Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
OCS Share API should not return invalid shares Since we have lazy shares it can happen that a share is actually invalid. See https://github.com/owncloud/core/issues/20908 This add checks for the get methods to handle the NotFound exception.
10 years ago
[Sharing 2.0] Start with getShares
10 years ago
Move the Share20OCS code over to use the proper DataResponse
9 years ago
[Sharing 2.0] Start with getShares
10 years ago
[Share 2.0] Add update share
10 years ago
Convert Share API to use the AppFramework
9 years ago
[Share 2.0] Add update share
10 years ago
Move updateShare and getShares over to use proper parameters * Update tests
9 years ago
Throw OCSNotFoundExceptions
9 years ago
More exceptions
9 years ago
[Share 2.0] Add update share
10 years ago
Move updateShare and getShares over to use proper parameters * Update tests
9 years ago
[Share 2.0] Add update share
10 years ago
Move common code to function The code to get a share by id is somewhat messy. And was duplicated. Now this is done is a separate function
10 years ago
[Share 2.0] Use GenericShareException
10 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Add update share
10 years ago
Add OCSShareAPIMiddleware * This will cleanup the locks after each request * Move check for enabled share api to the middleware
9 years ago
Add locking to modifying operation of the OCS Share API Fixes #17243 This is done in the OCS Share API instead of the share manager since we want lazy shares in general. However when doing modifying calls via the OCS Share API it is fine to force real nodes. * Updated unit tests to work with logging
10 years ago
Do not allow to delete/update group shares as a group member
9 years ago
Throw OCSNotFoundExceptions
9 years ago
[Share 2.0] Add update share
10 years ago
[Share 2.0] Also handle empty parameter in updateShare * More sanity checks * More unit tests
10 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
More exceptions
9 years ago
[Share 2.0] Also handle empty parameter in updateShare * More sanity checks * More unit tests
10 years ago
[Share 2.0] Add update share
10 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
Add explicit delete permission to link shares Link shares always allowed deletion, however internally the permissions were stored as 7 which lacked delete permissions. This created an inconsistency in the Webdav permissions. This fix makes sure we include delete permissions in the share permissions, which now become 15. In case a client is still passing 7 for legacy reasons, it gets converted automatically to 15.
10 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
[Share 2.0] Add update share
10 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
[Share 2.0] Add update share
10 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
Allow shares with create permissions only aswell
10 years ago
allow editing single files shared as public link Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
Allow shares with create permissions only aswell
10 years ago
Add explicit delete permission to link shares Link shares always allowed deletion, however internally the permissions were stored as 7 which lacked delete permissions. This created an inconsistency in the Webdav permissions. This fix makes sure we include delete permissions in the share permissions, which now become 15. In case a client is still passing 7 for legacy reasons, it gets converted automatically to 15.
10 years ago
More exceptions
9 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
Add explicit delete permission to link shares Link shares always allowed deletion, however internally the permissions were stored as 7 which lacked delete permissions. This created an inconsistency in the Webdav permissions. This fix makes sure we include delete permissions in the share permissions, which now become 15. In case a client is still passing 7 for legacy reasons, it gets converted automatically to 15.
10 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
More exceptions
9 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
Fix OCS unit tests after two share merges * Use getNode * Return IShare object so typechecking is happy
10 years ago
More exceptions
9 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
Add explicit delete permission to link shares Link shares always allowed deletion, however internally the permissions were stored as 7 which lacked delete permissions. This created an inconsistency in the Webdav permissions. This fix makes sure we include delete permissions in the share permissions, which now become 15. In case a client is still passing 7 for legacy reasons, it gets converted automatically to 15.
10 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
Fixes not allowed increasing of link share permissions Fixes the following: 1. user0 shares folder with user1 (RO but with sharing permissions) 2. user1 shares by link 3. user1 send 'publicUpload=true' OCS request to the link share before this increased the permissions of the link share. Which should not happen. now: API reponds with an error that the permissions can't be increased. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
[Share 2.0] Add update share
10 years ago
[Share 2.0] Also handle empty parameter in updateShare * More sanity checks * More unit tests
10 years ago
[Share 2.0] Still allow isolated updates Still allow isolated updates of parameters
10 years ago
[Share 2.0] Also handle empty parameter in updateShare * More sanity checks * More unit tests
10 years ago
More exceptions
9 years ago
[Share 2.0] Also handle empty parameter in updateShare * More sanity checks * More unit tests
10 years ago
[Share 2.0] Add update share
10 years ago
[Share 2.0] Also handle empty parameter in updateShare * More sanity checks * More unit tests
10 years ago
[Share 2.0] Still allow isolated updates Still allow isolated updates of parameters
10 years ago
[Share 2.0] Also handle empty parameter in updateShare * More sanity checks * More unit tests
10 years ago
[Share 2.0] Add update share
10 years ago
[Share 2.0] Also handle empty parameter in updateShare * More sanity checks * More unit tests
10 years ago
[Share 2.0] Allow using permissions to update link share
10 years ago
allow password protected mail shares Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
More exceptions
9 years ago
allow password protected mail shares Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
[Share 2.0] Also handle empty parameter in updateShare * More sanity checks * More unit tests
10 years ago
allow password protected mail shares Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
[Share 2.0] Add update share
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
Check correct permissions when resharing Fixes #22675 Since we only get a share id we do not know the path for the sharer. Now if we edit a share we start searching for shares for that user of that node. And deduce the permissions that way. * Intergration test added * Fix unit tests
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
Check correct permissions when resharing Fixes #22675 Since we only get a share id we do not know the path for the sharer. Now if we edit a share we start searching for shares for that user of that node. And deduce the permissions that way. * Intergration test added * Fix unit tests
10 years ago
Throw OCSNotFoundExceptions
9 years ago
Check correct permissions when resharing Fixes #22675 Since we only get a share id we do not know the path for the sharer. Now if we edit a share we start searching for shares for that user of that node. And deduce the permissions that way. * Intergration test added * Fix unit tests
10 years ago
Fix tests
9 years ago
Check correct permissions when resharing Fixes #22675 Since we only get a share id we do not know the path for the sharer. Now if we edit a share we start searching for shares for that user of that node. And deduce the permissions that way. * Intergration test added * Fix unit tests
10 years ago
[Share 2.0] Also handle empty parameter in updateShare * More sanity checks * More unit tests
10 years ago
[Share 2.0] Add update share
10 years ago
More exceptions
9 years ago
[Share 2.0] Add update share
10 years ago
Move the Share20OCS code over to use the proper DataResponse
9 years ago
[Share 2.0] Add update share
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
[Share 2.0] Move IShare to OCP
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
Do not allow to delete/update group shares as a group member
9 years ago
[Share 2.0] Properly handle user deleted group shares If a user deletes a group share we create a special share entry. To the API this is just a normal group share for that user with permissions 0. But we should not return this.
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
fix getting recipient share in ocs api Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
Do not allow to delete/update group shares as a group member
9 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
Move Share20OCS to ShareAPIController It was already a controller just still residing in its old location. * Moved ShareAPIController to user plain userID instead of user object * Moved Share20OCS to ShareAPIController * Removed initisation of class from Application.php and leave it to the AppFramework * Fixed tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
9 years ago
Skip null groups in group manager (#26871) (#26956) * Skip null groups in group manager (#26871) * Skip null groups in group manager * Also skip null groups in group manager's search function * Add more group null checks in sharing code * Add unit tests for null group safety in group manager * Add unit tests for sharing code null group checks * Added tests for null groups handling in sharing code * Ignore moveShare optional repair in mount provider In some cases, data is inconsistent in the oc_share table due to legacy data. The mount provider might attempt to make it consistent but if the target group does not exist any more it cannot work. In such case we simply ignore the exception as it is not critical. Keeping the exception would break user accounts as they would be unable to use their filesystem. * Adjust null group handing + tests * Fix new group manager tests Signed-off-by: Morris Jobke <hey@morrisjobke.de>
9 years ago
[Share 2.0] Fix OCS endpoint
10 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
shares-circles Signed-off-by: Maxence Lange <maxence@nextcloud.com>
9 years ago
[Sharing 2.0] Move authentication to the OCS API
10 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
fix getting recipient share in ocs api Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
[Share 2.0] Enable share creation via OCS API
10 years ago
Move common code to function The code to get a share by id is somewhat messy. And was duplicated. Now this is done is a separate function
10 years ago
fix getting recipient share in ocs api Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
add share by mail share provider Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
shares-circles Signed-off-by: Maxence Lange <maxence@nextcloud.com>
9 years ago
add share by mail share provider Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
unit tests updated and new added Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
Move common code to function The code to get a share by id is somewhat messy. And was duplicated. Now this is done is a separate function
10 years ago
unit tests updated and new added Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
Move common code to function The code to get a share by id is somewhat messy. And was duplicated. Now this is done is a separate function
10 years ago
unit tests updated and new added Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
Move common code to function The code to get a share by id is somewhat messy. And was duplicated. Now this is done is a separate function
10 years ago
unit tests updated and new added Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org>
9 years ago
Move common code to function The code to get a share by id is somewhat messy. And was duplicated. Now this is done is a separate function
10 years ago
Add OCSShareAPIMiddleware * This will cleanup the locks after each request * Move check for enabled share api to the middleware
9 years ago
fix getting recipient share in ocs api Signed-off-by: Robin Appelman <robin@icewind.nl>
9 years ago
Add OCSShareAPIMiddleware * This will cleanup the locks after each request * Move check for enabled share api to the middleware
9 years ago
The new sharing code now handles deletion OCS -> ShareManager -> DefaultShareProvider
10 years ago
  1. <?php
  2. /**
  3. * @copyright Copyright (c) 2016, ownCloud, Inc.
  4. *
  5. * @author Joas Schilling <coding@schilljs.com>
  6. * @author Roeland Jago Douma <roeland@famdouma.nl>
  7. * @author Vincent Petry <pvince81@owncloud.com>
  8. *
  9. * @license AGPL-3.0
  10. *
  11. * This code is free software: you can redistribute it and/or modify
  12. * it under the terms of the GNU Affero General Public License, version 3,
  13. * as published by the Free Software Foundation.
  14. *
  15. * This program is distributed in the hope that it will be useful,
  16. * but WITHOUT ANY WARRANTY; without even the implied warranty of
  17. * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  18. * GNU Affero General Public License for more details.
  19. *
  20. * You should have received a copy of the GNU Affero General Public License, version 3,
  21. * along with this program. If not, see <http://www.gnu.org/licenses/>
  22. *
  23. */
  24. namespace OCA\Files_Sharing\Controller;
  26. use OCP\AppFramework\Http\DataResponse;
  27. use OCP\AppFramework\OCS\OCSBadRequestException;
  28. use OCP\AppFramework\OCS\OCSException;
  29. use OCP\AppFramework\OCS\OCSForbiddenException;
  30. use OCP\AppFramework\OCS\OCSNotFoundException;
  31. use OCP\AppFramework\OCSController;
  32. use OCP\Files\Node;
  33. use OCP\Files\NotFoundException;
  34. use OCP\IGroupManager;
  35. use OCP\IL10N;
  36. use OCP\IUserManager;
  37. use OCP\IRequest;
  38. use OCP\IURLGenerator;
  39. use OCP\Files\IRootFolder;
  40. use OCP\Lock\LockedException;
  41. use OCP\Share\IManager;
  42. use OCP\Share\Exceptions\ShareNotFound;
  43. use OCP\Share\Exceptions\GenericShareException;
  44. use OCP\Lock\ILockingProvider;
  45. use OCP\Share\IShare;
  47. /**
  48. * Class Share20OCS
  49. *
  50. * @package OCA\Files_Sharing\API
  51. */
  52. class ShareAPIController extends OCSController {
  54. /** @var IManager */
  55. private $shareManager;
  56. /** @var IGroupManager */
  57. private $groupManager;
  58. /** @var IUserManager */
  59. private $userManager;
  60. /** @var IRequest */
  61. protected $request;
  62. /** @var IRootFolder */
  63. private $rootFolder;
  64. /** @var IURLGenerator */
  65. private $urlGenerator;
  66. /** @var string */
  67. private $currentUser;
  68. /** @var IL10N */
  69. private $l;
  70. /** @var \OCP\Files\Node */
  71. private $lockedNode;
  73. /**
  74. * Share20OCS constructor.
  75. *
  76. * @param string $appName
  77. * @param IRequest $request
  78. * @param IManager $shareManager
  79. * @param IGroupManager $groupManager
  80. * @param IUserManager $userManager
  81. * @param IRootFolder $rootFolder
  82. * @param IURLGenerator $urlGenerator
  83. * @param string $userId
  84. * @param IL10N $l10n
  85. */
  86. public function __construct(
  87. $appName,
  88. IRequest $request,
  89. IManager $shareManager,
  90. IGroupManager $groupManager,
  91. IUserManager $userManager,
  92. IRootFolder $rootFolder,
  93. IURLGenerator $urlGenerator,
  94. $userId,
  95. IL10N $l10n
  96. ) {
  97. parent::__construct($appName, $request);
  99. $this->shareManager = $shareManager;
  100. $this->userManager = $userManager;
  101. $this->groupManager = $groupManager;
  102. $this->request = $request;
  103. $this->rootFolder = $rootFolder;
  104. $this->urlGenerator = $urlGenerator;
  105. $this->currentUser = $userId;
  106. $this->l = $l10n;
  107. }
  109. /**
  110. * Convert an IShare to an array for OCS output
  111. *
  112. * @param \OCP\Share\IShare $share
  113. * @param Node|null $recipientNode
  114. * @return array
  115. * @throws NotFoundException In case the node can't be resolved.
  116. */
  117. protected function formatShare(\OCP\Share\IShare $share, Node $recipientNode = null) {
  118. $sharedBy = $this->userManager->get($share->getSharedBy());
  119. $shareOwner = $this->userManager->get($share->getShareOwner());
  121. $result = [
  122. 'id' => $share->getId(),
  123. 'share_type' => $share->getShareType(),
  124. 'uid_owner' => $share->getSharedBy(),
  125. 'displayname_owner' => $sharedBy !== null ? $sharedBy->getDisplayName() : $share->getSharedBy(),
  126. 'permissions' => $share->getPermissions(),
  127. 'stime' => $share->getShareTime()->getTimestamp(),
  128. 'parent' => null,
  129. 'expiration' => null,
  130. 'token' => null,
  131. 'uid_file_owner' => $share->getShareOwner(),
  132. 'displayname_file_owner' => $shareOwner !== null ? $shareOwner->getDisplayName() : $share->getShareOwner(),
  133. ];
  135. $userFolder = $this->rootFolder->getUserFolder($this->currentUser);
  136. if ($recipientNode) {
  137. $node = $recipientNode;
  138. } else {
  139. $nodes = $userFolder->getById($share->getNodeId());
  141. if (empty($nodes)) {
  142. // fallback to guessing the path
  143. $node = $userFolder->get($share->getTarget());
  144. if ($node === null) {
  145. throw new NotFoundException();
  146. }
  147. } else {
  148. $node = $nodes[0];
  149. }
  150. }
  152. $result['path'] = $userFolder->getRelativePath($node->getPath());
  153. if ($node instanceOf \OCP\Files\Folder) {
  154. $result['item_type'] = 'folder';
  155. } else {
  156. $result['item_type'] = 'file';
  157. }
  158. $result['mimetype'] = $node->getMimetype();
  159. $result['storage_id'] = $node->getStorage()->getId();
  160. $result['storage'] = $node->getStorage()->getCache()->getNumericStorageId();
  161. $result['item_source'] = $node->getId();
  162. $result['file_source'] = $node->getId();
  163. $result['file_parent'] = $node->getParent()->getId();
  164. $result['file_target'] = $share->getTarget();
  166. if ($share->getShareType() === \OCP\Share::SHARE_TYPE_USER) {
  167. $sharedWith = $this->userManager->get($share->getSharedWith());
  168. $result['share_with'] = $share->getSharedWith();
  169. $result['share_with_displayname'] = $sharedWith !== null ? $sharedWith->getDisplayName() : $share->getSharedWith();
  170. } else if ($share->getShareType() === \OCP\Share::SHARE_TYPE_GROUP) {
  171. $group = $this->groupManager->get($share->getSharedWith());
  172. $result['share_with'] = $share->getSharedWith();
  173. $result['share_with_displayname'] = $group !== null ? $group->getDisplayName() : $share->getSharedWith();
  174. } else if ($share->getShareType() === \OCP\Share::SHARE_TYPE_LINK) {
  176. $result['share_with'] = $share->getPassword();
  177. $result['share_with_displayname'] = $share->getPassword();
  179. $result['token'] = $share->getToken();
  180. $result['url'] = $this->urlGenerator->linkToRouteAbsolute('files_sharing.sharecontroller.showShare', ['token' => $share->getToken()]);
  182. $expiration = $share->getExpirationDate();
  183. if ($expiration !== null) {
  184. $result['expiration'] = $expiration->format('Y-m-d 00:00:00');
  185. }
  187. } else if ($share->getShareType() === \OCP\Share::SHARE_TYPE_REMOTE) {
  188. $result['share_with'] = $share->getSharedWith();
  189. $result['share_with_displayname'] = $this->getDisplayNameFromAddressBook($share->getSharedWith(), 'CLOUD');
  190. $result['token'] = $share->getToken();
  191. } else if ($share->getShareType() === \OCP\Share::SHARE_TYPE_EMAIL) {
  192. $result['share_with'] = $share->getSharedWith();
  193. $result['password'] = $share->getPassword();
  194. $result['share_with_displayname'] = $this->getDisplayNameFromAddressBook($share->getSharedWith(), 'EMAIL');
  195. $result['token'] = $share->getToken();
  196. } else if ($share->getShareType() === \OCP\Share::SHARE_TYPE_CIRCLE) {
  197. $result['share_with_displayname'] = $share->getSharedWith();
  198. $result['share_with'] = explode(' ', $share->getSharedWith(), 2)[0];
  199. }
  202. $result['mail_send'] = $share->getMailSend() ? 1 : 0;
  204. return $result;
  205. }
  207. /**
  208. * Check if one of the users address books knows the exact property, if
  209. * yes we return the full name.
  210. *
  211. * @param string $query
  212. * @param string $property
  213. * @return string
  214. */
  215. private function getDisplayNameFromAddressBook($query, $property) {
  216. // FIXME: If we inject the contacts manager it gets initialized bofore any address books are registered
  217. $result = \OC::$server->getContactsManager()->search($query, [$property]);
  218. foreach ($result as $r) {
  219. foreach($r[$property] as $value) {
  220. if ($value === $query) {
  221. return $r['FN'];
  222. }
  223. }
  224. }
  226. return $query;
  227. }
  229. /**
  230. * Get a specific share by id
  231. *
  232. * @NoAdminRequired
  233. *
  234. * @param string $id
  235. * @return DataResponse
  236. * @throws OCSNotFoundException
  237. */
  238. public function getShare($id) {
  239. try {
  240. $share = $this->getShareById($id);
  241. } catch (ShareNotFound $e) {
  242. throw new OCSNotFoundException($this->l->t('Wrong share ID, share doesn\'t exist'));
  243. }
  245. if ($this->canAccessShare($share)) {
  246. try {
  247. $share = $this->formatShare($share);
  248. return new DataResponse([$share]);
  249. } catch (NotFoundException $e) {
  250. //Fall trough
  251. }
  252. }
  254. throw new OCSNotFoundException($this->l->t('Wrong share ID, share doesn\'t exist'));
  255. }
  257. /**
  258. * Delete a share
  259. *
  260. * @NoAdminRequired
  261. *
  262. * @param string $id
  263. * @return DataResponse
  264. * @throws OCSNotFoundException
  265. */
  266. public function deleteShare($id) {
  267. try {
  268. $share = $this->getShareById($id);
  269. } catch (ShareNotFound $e) {
  270. throw new OCSNotFoundException($this->l->t('Wrong share ID, share doesn\'t exist'));
  271. }
  273. try {
  274. $this->lock($share->getNode());
  275. } catch (LockedException $e) {
  276. throw new OCSNotFoundException($this->l->t('could not delete share'));
  277. }
  279. if (!$this->canAccessShare($share)) {
  280. throw new OCSNotFoundException($this->l->t('Could not delete share'));
  281. }
  283. if ($share->getShareType() === \OCP\Share::SHARE_TYPE_GROUP &&
  284. $share->getShareOwner() !== $this->currentUser &&
  285. $share->getSharedBy() !== $this->currentUser) {
  286. $this->shareManager->deleteFromSelf($share, $this->currentUser);
  287. } else {
  288. $this->shareManager->deleteShare($share);
  289. }
  291. return new DataResponse();
  292. }
  294. /**
  295. * @NoAdminRequired
  296. *
  297. * @param string $path
  298. * @param int $permissions
  299. * @param int $shareType
  300. * @param string $shareWith
  301. * @param string $publicUpload
  302. * @param string $password
  303. * @param string $expireDate
  304. *
  305. * @return DataResponse
  306. * @throws OCSNotFoundException
  307. * @throws OCSForbiddenException
  308. * @throws OCSBadRequestException
  309. * @throws OCSException
  310. */
  311. public function createShare(
  312. $path = null,
  313. $permissions = \OCP\Constants::PERMISSION_ALL,
  314. $shareType = -1,
  315. $shareWith = null,
  316. $publicUpload = 'false',
  317. $password = '',
  318. $expireDate = ''
  319. ) {
  320. $share = $this->shareManager->newShare();
  322. // Verify path
  323. if ($path === null) {
  324. throw new OCSNotFoundException($this->l->t('Please specify a file or folder path'));
  325. }
  327. $userFolder = $this->rootFolder->getUserFolder($this->currentUser);
  328. try {
  329. $path = $userFolder->get($path);
  330. } catch (NotFoundException $e) {
  331. throw new OCSNotFoundException($this->l->t('Wrong path, file/folder doesn\'t exist'));
  332. }
  334. $share->setNode($path);
  336. try {
  337. $this->lock($share->getNode());
  338. } catch (LockedException $e) {
  339. throw new OCSNotFoundException($this->l->t('Could not create share'));
  340. }
  342. if ($permissions < 0 || $permissions > \OCP\Constants::PERMISSION_ALL) {
  343. throw new OCSNotFoundException($this->l->t('invalid permissions'));
  344. }
  346. // Shares always require read permissions
  347. $permissions |= \OCP\Constants::PERMISSION_READ;
  349. if ($path instanceof \OCP\Files\File) {
  350. // Single file shares should never have delete or create permissions
  351. $permissions &= ~\OCP\Constants::PERMISSION_DELETE;
  352. $permissions &= ~\OCP\Constants::PERMISSION_CREATE;
  353. }
  355. /*
  356. * Hack for https://github.com/owncloud/core/issues/22587
  357. * We check the permissions via webdav. But the permissions of the mount point
  358. * do not equal the share permissions. Here we fix that for federated mounts.
  359. */
  360. if ($path->getStorage()->instanceOfStorage('OCA\Files_Sharing\External\Storage')) {
  361. $permissions &= ~($permissions & ~$path->getPermissions());
  362. }
  364. if ($shareType === \OCP\Share::SHARE_TYPE_USER) {
  365. // Valid user is required to share
  366. if ($shareWith === null || !$this->userManager->userExists($shareWith)) {
  367. throw new OCSNotFoundException($this->l->t('Please specify a valid user'));
  368. }
  369. $share->setSharedWith($shareWith);
  370. $share->setPermissions($permissions);
  371. } else if ($shareType === \OCP\Share::SHARE_TYPE_GROUP) {
  372. if (!$this->shareManager->allowGroupSharing()) {
  373. throw new OCSNotFoundException($this->l->t('Group sharing is disabled by the administrator'));
  374. }
  376. // Valid group is required to share
  377. if ($shareWith === null || !$this->groupManager->groupExists($shareWith)) {
  378. throw new OCSNotFoundException($this->l->t('Please specify a valid group'));
  379. }
  380. $share->setSharedWith($shareWith);
  381. $share->setPermissions($permissions);
  382. } else if ($shareType === \OCP\Share::SHARE_TYPE_LINK) {
  383. //Can we even share links?
  384. if (!$this->shareManager->shareApiAllowLinks()) {
  385. throw new OCSNotFoundException($this->l->t('Public link sharing is disabled by the administrator'));
  386. }
  388. /*
  389. * For now we only allow 1 link share.
  390. * Return the existing link share if this is a duplicate
  391. */
  392. $existingShares = $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_LINK, $path, false, 1, 0);
  393. if (!empty($existingShares)) {
  394. return new DataResponse($this->formatShare($existingShares[0]));
  395. }
  397. if ($publicUpload === 'true') {
  398. // Check if public upload is allowed
  399. if (!$this->shareManager->shareApiLinkAllowPublicUpload()) {
  400. throw new OCSForbiddenException($this->l->t('Public upload disabled by the administrator'));
  401. }
  403. // Public upload can only be set for folders
  404. if ($path instanceof \OCP\Files\File) {
  405. throw new OCSNotFoundException($this->l->t('Public upload is only possible for publicly shared folders'));
  406. }
  408. $share->setPermissions(
  409. \OCP\Constants::PERMISSION_READ |
  410. \OCP\Constants::PERMISSION_CREATE |
  411. \OCP\Constants::PERMISSION_UPDATE |
  412. \OCP\Constants::PERMISSION_DELETE
  413. );
  414. } else {
  415. $share->setPermissions(\OCP\Constants::PERMISSION_READ);
  416. }
  418. // Set password
  419. if ($password !== '') {
  420. $share->setPassword($password);
  421. }
  423. //Expire date
  424. if ($expireDate !== '') {
  425. try {
  426. $expireDate = $this->parseDate($expireDate);
  427. $share->setExpirationDate($expireDate);
  428. } catch (\Exception $e) {
  429. throw new OCSNotFoundException($this->l->t('Invalid date, date format must be YYYY-MM-DD'));
  430. }
  431. }
  433. } else if ($shareType === \OCP\Share::SHARE_TYPE_REMOTE) {
  434. if (!$this->shareManager->outgoingServer2ServerSharesAllowed()) {
  435. throw new OCSForbiddenException($this->l->t('Sharing %s failed because the back end does not allow shares from type %s', [$path->getPath(), $shareType]));
  436. }
  438. $share->setSharedWith($shareWith);
  439. $share->setPermissions($permissions);
  440. } else if ($shareType === \OCP\Share::SHARE_TYPE_EMAIL) {
  441. if ($share->getNodeType() === 'file') {
  442. $share->setPermissions(\OCP\Constants::PERMISSION_READ);
  443. } else {
  444. $share->setPermissions(
  445. \OCP\Constants::PERMISSION_READ |
  446. \OCP\Constants::PERMISSION_CREATE |
  447. \OCP\Constants::PERMISSION_UPDATE |
  448. \OCP\Constants::PERMISSION_DELETE);
  449. }
  450. $share->setSharedWith($shareWith);
  451. } else if ($shareType === \OCP\Share::SHARE_TYPE_CIRCLE) {
  452. if (!\OCP\App::isEnabled('circles')) {
  453. throw new OCSNotFoundException($this->l->t('You cannot share to a Circle if the app is not enabled'));
  454. }
  456. $circle = \OCA\Circles\Api\Circles::detailsCircle($shareWith);
  458. // Valid circle is required to share
  459. if ($circle === null) {
  460. throw new OCSNotFoundException($this->l->t('Please specify a valid circle'));
  461. }
  462. $share->setSharedWith($shareWith);
  463. $share->setPermissions($permissions);
  464. } else {
  465. throw new OCSBadRequestException($this->l->t('Unknown share type'));
  466. }
  468. $share->setShareType($shareType);
  469. $share->setSharedBy($this->currentUser);
  471. try {
  472. $share = $this->shareManager->createShare($share);
  473. } catch (GenericShareException $e) {
  474. $code = $e->getCode() === 0 ? 403 : $e->getCode();
  475. throw new OCSException($e->getHint(), $code);
  476. } catch (\Exception $e) {
  477. throw new OCSForbiddenException($e->getMessage());
  478. }
  480. $output = $this->formatShare($share);
  482. return new DataResponse($output);
  483. }
  485. /**
  486. * @param \OCP\Files\File|\OCP\Files\Folder $node
  487. * @return DataResponse
  488. */
  489. private function getSharedWithMe($node = null) {
  491. $userShares = $this->shareManager->getSharedWith($this->currentUser, \OCP\Share::SHARE_TYPE_USER, $node, -1, 0);
  492. $groupShares = $this->shareManager->getSharedWith($this->currentUser, \OCP\Share::SHARE_TYPE_GROUP, $node, -1, 0);
  493. $circleShares = $this->shareManager->getSharedWith($this->currentUser, \OCP\Share::SHARE_TYPE_CIRCLE, $node, -1, 0);
  495. $shares = array_merge($userShares, $groupShares, $circleShares);
  497. $shares = array_filter($shares, function (IShare $share) {
  498. return $share->getShareOwner() !== $this->currentUser;
  499. });
  501. $formatted = [];
  502. foreach ($shares as $share) {
  503. if ($this->canAccessShare($share)) {
  504. try {
  505. $formatted[] = $this->formatShare($share);
  506. } catch (NotFoundException $e) {
  507. // Ignore this share
  508. }
  509. }
  510. }
  512. return new DataResponse($formatted);
  513. }
  515. /**
  516. * @param \OCP\Files\Folder $folder
  517. * @return DataResponse
  518. * @throws OCSBadRequestException
  519. */
  520. private function getSharesInDir($folder) {
  521. if (!($folder instanceof \OCP\Files\Folder)) {
  522. throw new OCSBadRequestException($this->l->t('Not a directory'));
  523. }
  525. $nodes = $folder->getDirectoryListing();
  526. /** @var \OCP\Share\IShare[] $shares */
  527. $shares = [];
  528. foreach ($nodes as $node) {
  529. $shares = array_merge($shares, $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_USER, $node, false, -1, 0));
  530. $shares = array_merge($shares, $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_GROUP, $node, false, -1, 0));
  531. $shares = array_merge($shares, $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_LINK, $node, false, -1, 0));
  532. if($this->shareManager->shareProviderExists(\OCP\Share::SHARE_TYPE_EMAIL)) {
  533. $shares = array_merge($shares, $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_EMAIL, $node, false, -1, 0));
  534. }
  535. if ($this->shareManager->outgoingServer2ServerSharesAllowed()) {
  536. $shares = array_merge($shares, $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_REMOTE, $node, false, -1, 0));
  537. }
  538. }
  540. $formatted = [];
  541. foreach ($shares as $share) {
  542. try {
  543. $formatted[] = $this->formatShare($share);
  544. } catch (NotFoundException $e) {
  545. //Ignore this share
  546. }
  547. }
  549. return new DataResponse($formatted);
  550. }
  552. /**
  553. * The getShares function.
  554. *
  555. * @NoAdminRequired
  556. *
  557. * @param string $shared_with_me
  558. * @param string $reshares
  559. * @param string $subfiles
  560. * @param string $path
  561. *
  562. * - Get shares by the current user
  563. * - Get shares by the current user and reshares (?reshares=true)
  564. * - Get shares with the current user (?shared_with_me=true)
  565. * - Get shares for a specific path (?path=...)
  566. * - Get all shares in a folder (?subfiles=true&path=..)
  567. *
  568. * @return DataResponse
  569. * @throws OCSNotFoundException
  570. */
  571. public function getShares(
  572. $shared_with_me = 'false',
  573. $reshares = 'false',
  574. $subfiles = 'false',
  575. $path = null
  576. ) {
  578. if ($path !== null) {
  579. $userFolder = $this->rootFolder->getUserFolder($this->currentUser);
  580. try {
  581. $path = $userFolder->get($path);
  582. $this->lock($path);
  583. } catch (\OCP\Files\NotFoundException $e) {
  584. throw new OCSNotFoundException($this->l->t('Wrong path, file/folder doesn\'t exist'));
  585. } catch (LockedException $e) {
  586. throw new OCSNotFoundException($this->l->t('Could not lock path'));
  587. }
  588. }
  590. if ($shared_with_me === 'true') {
  591. $result = $this->getSharedWithMe($path);
  592. return $result;
  593. }
  595. if ($subfiles === 'true') {
  596. $result = $this->getSharesInDir($path);
  597. return $result;
  598. }
  600. if ($reshares === 'true') {
  601. $reshares = true;
  602. } else {
  603. $reshares = false;
  604. }
  606. // Get all shares
  607. $userShares = $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_USER, $path, $reshares, -1, 0);
  608. $groupShares = $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_GROUP, $path, $reshares, -1, 0);
  609. $linkShares = $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_LINK, $path, $reshares, -1, 0);
  610. if ($this->shareManager->shareProviderExists(\OCP\Share::SHARE_TYPE_EMAIL)) {
  611. $mailShares = $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_EMAIL, $path, $reshares, -1, 0);
  612. } else {
  613. $mailShares = [];
  614. }
  615. if ($this->shareManager->shareProviderExists(\OCP\Share::SHARE_TYPE_CIRCLE)) {
  616. $circleShares = $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_CIRCLE, $path, $reshares, -1, 0);
  617. } else {
  618. $circleShares = [];
  619. }
  621. $shares = array_merge($userShares, $groupShares, $linkShares, $mailShares, $circleShares);
  623. if ($this->shareManager->outgoingServer2ServerSharesAllowed()) {
  624. $federatedShares = $this->shareManager->getSharesBy($this->currentUser, \OCP\Share::SHARE_TYPE_REMOTE, $path, $reshares, -1, 0);
  625. $shares = array_merge($shares, $federatedShares);
  626. }
  628. $formatted = [];
  629. foreach ($shares as $share) {
  630. try {
  631. $formatted[] = $this->formatShare($share, $path);
  632. } catch (NotFoundException $e) {
  633. //Ignore share
  634. }
  635. }
  637. return new DataResponse($formatted);
  638. }
  640. /**
  641. * @NoAdminRequired
  642. *
  643. * @param int $id
  644. * @param int $permissions
  645. * @param string $password
  646. * @param string $publicUpload
  647. * @param string $expireDate
  648. * @return DataResponse
  649. * @throws OCSNotFoundException
  650. * @throws OCSBadRequestException
  651. * @throws OCSForbiddenException
  652. */
  653. public function updateShare(
  654. $id,
  655. $permissions = null,
  656. $password = null,
  657. $publicUpload = null,
  658. $expireDate = null
  659. ) {
  660. try {
  661. $share = $this->getShareById($id);
  662. } catch (ShareNotFound $e) {
  663. throw new OCSNotFoundException($this->l->t('Wrong share ID, share doesn\'t exist'));
  664. }
  666. $this->lock($share->getNode());
  668. if (!$this->canAccessShare($share, false)) {
  669. throw new OCSNotFoundException($this->l->t('Wrong share ID, share doesn\'t exist'));
  670. }
  672. /*
  673. * expirationdate, password and publicUpload only make sense for link shares
  674. */
  675. if ($share->getShareType() === \OCP\Share::SHARE_TYPE_LINK) {
  676. if ($permissions === null && $password === null && $publicUpload === null && $expireDate === null) {
  677. throw new OCSBadRequestException($this->l->t('Wrong or no update parameter given'));
  678. }
  680. $newPermissions = null;
  681. if ($publicUpload === 'true') {
  682. $newPermissions = \OCP\Constants::PERMISSION_READ | \OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE | \OCP\Constants::PERMISSION_DELETE;
  683. } else if ($publicUpload === 'false') {
  684. $newPermissions = \OCP\Constants::PERMISSION_READ;
  685. }
  687. if ($permissions !== null) {
  688. $newPermissions = (int)$permissions;
  689. }
  691. if ($newPermissions !== null &&
  692. !in_array($newPermissions, [
  693. \OCP\Constants::PERMISSION_READ,
  694. \OCP\Constants::PERMISSION_READ | \OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE, // legacy
  695. \OCP\Constants::PERMISSION_READ | \OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE | \OCP\Constants::PERMISSION_DELETE, // correct
  696. \OCP\Constants::PERMISSION_CREATE, // hidden file list
  697. \OCP\Constants::PERMISSION_READ | \OCP\Constants::PERMISSION_UPDATE, // allow to edit single files
  698. ])
  699. ) {
  700. throw new OCSBadRequestException($this->l->t('Can\'t change permissions for public share links'));
  701. }
  703. if (
  704. // legacy
  705. $newPermissions === (\OCP\Constants::PERMISSION_READ | \OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE) ||
  706. // correct
  707. $newPermissions === (\OCP\Constants::PERMISSION_READ | \OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE | \OCP\Constants::PERMISSION_DELETE)
  708. ) {
  709. if (!$this->shareManager->shareApiLinkAllowPublicUpload()) {
  710. throw new OCSForbiddenException($this->l->t('Public upload disabled by the administrator'));
  711. }
  713. if (!($share->getNode() instanceof \OCP\Files\Folder)) {
  714. throw new OCSBadRequestException($this->l->t('Public upload is only possible for publicly shared folders'));
  715. }
  717. // normalize to correct public upload permissions
  718. $newPermissions = \OCP\Constants::PERMISSION_READ | \OCP\Constants::PERMISSION_CREATE | \OCP\Constants::PERMISSION_UPDATE | \OCP\Constants::PERMISSION_DELETE;
  719. }
  721. if ($newPermissions !== null) {
  722. $share->setPermissions($newPermissions);
  723. $permissions = $newPermissions;
  724. }
  726. if ($expireDate === '') {
  727. $share->setExpirationDate(null);
  728. } else if ($expireDate !== null) {
  729. try {
  730. $expireDate = $this->parseDate($expireDate);
  731. } catch (\Exception $e) {
  732. throw new OCSBadRequestException($e->getMessage());
  733. }
  734. $share->setExpirationDate($expireDate);
  735. }
  737. if ($password === '') {
  738. $share->setPassword(null);
  739. } else if ($password !== null) {
  740. $share->setPassword($password);
  741. }
  743. } else {
  744. // For other shares only permissions is valid.
  745. if ($share->getShareType() !== \OCP\Share::SHARE_TYPE_EMAIL && $permissions === null) {
  746. throw new OCSBadRequestException($this->l->t('Wrong or no update parameter given'));
  747. } elseif ($permissions !== null) {
  748. $permissions = (int)$permissions;
  749. $share->setPermissions($permissions);
  750. }
  752. if ($share->getShareType() === \OCP\Share::SHARE_TYPE_EMAIL) {
  753. if ($expireDate === '') {
  754. $share->setExpirationDate(null);
  755. } else if ($expireDate !== null) {
  756. try {
  757. $expireDate = $this->parseDate($expireDate);
  758. } catch (\Exception $e) {
  759. throw new OCSBadRequestException($e->getMessage());
  760. }
  761. $share->setExpirationDate($expireDate);
  762. }
  764. if ($password === '') {
  765. $share->setPassword(null);
  766. } else if ($password !== null) {
  767. $share->setPassword($password);
  768. }
  769. }
  770. }
  772. if ($permissions !== null && $share->getShareOwner() !== $this->currentUser) {
  773. /* Check if this is an incomming share */
  774. $incomingShares = $this->shareManager->getSharedWith($this->currentUser, \OCP\Share::SHARE_TYPE_USER, $share->getNode(), -1, 0);
  775. $incomingShares = array_merge($incomingShares, $this->shareManager->getSharedWith($this->currentUser, \OCP\Share::SHARE_TYPE_GROUP, $share->getNode(), -1, 0));
  777. /** @var \OCP\Share\IShare[] $incomingShares */
  778. if (!empty($incomingShares)) {
  779. $maxPermissions = 0;
  780. foreach ($incomingShares as $incomingShare) {
  781. $maxPermissions |= $incomingShare->getPermissions();
  782. }
  784. if ($share->getPermissions() & ~$maxPermissions) {
  785. throw new OCSNotFoundException($this->l->t('Cannot increase permissions'));
  786. }
  787. }
  788. }
  791. try {
  792. $share = $this->shareManager->updateShare($share);
  793. } catch (\Exception $e) {
  794. throw new OCSBadRequestException($e->getMessage());
  795. }
  797. return new DataResponse($this->formatShare($share));
  798. }
  800. /**
  801. * @param \OCP\Share\IShare $share
  802. * @return bool
  803. */
  804. protected function canAccessShare(\OCP\Share\IShare $share, $checkGroups = true) {
  805. // A file with permissions 0 can't be accessed by us. So Don't show it
  806. if ($share->getPermissions() === 0) {
  807. return false;
  808. }
  810. // Owner of the file and the sharer of the file can always get share
  811. if ($share->getShareOwner() === $this->currentUser ||
  812. $share->getSharedBy() === $this->currentUser
  813. ) {
  814. return true;
  815. }
  817. // If the share is shared with you (or a group you are a member of)
  818. if ($share->getShareType() === \OCP\Share::SHARE_TYPE_USER &&
  819. $share->getSharedWith() === $this->currentUser
  820. ) {
  821. return true;
  822. }
  824. if ($checkGroups && $share->getShareType() === \OCP\Share::SHARE_TYPE_GROUP) {
  825. $sharedWith = $this->groupManager->get($share->getSharedWith());
  826. $user = $this->userManager->get($this->currentUser);
  827. if ($user !== null && $sharedWith !== null && $sharedWith->inGroup($user)) {
  828. return true;
  829. }
  830. }
  832. if ($share->getShareType() === \OCP\Share::SHARE_TYPE_CIRCLE) {
  833. // TODO: have a sanity check like above?
  834. return true;
  835. }
  837. return false;
  838. }
  840. /**
  841. * Make sure that the passed date is valid ISO 8601
  842. * So YYYY-MM-DD
  843. * If not throw an exception
  844. *
  845. * @param string $expireDate
  846. *
  847. * @throws \Exception
  848. * @return \DateTime
  849. */
  850. private function parseDate($expireDate) {
  851. try {
  852. $date = new \DateTime($expireDate);
  853. } catch (\Exception $e) {
  854. throw new \Exception('Invalid date. Format must be YYYY-MM-DD');
  855. }
  857. if ($date === false) {
  858. throw new \Exception('Invalid date. Format must be YYYY-MM-DD');
  859. }
  861. $date->setTime(0, 0, 0);
  863. return $date;
  864. }
  866. /**
  867. * Since we have multiple providers but the OCS Share API v1 does
  868. * not support this we need to check all backends.
  869. *
  870. * @param string $id
  871. * @return \OCP\Share\IShare
  872. * @throws ShareNotFound
  873. */
  874. private function getShareById($id) {
  875. $share = null;
  877. // First check if it is an internal share.
  878. try {
  879. $share = $this->shareManager->getShareById('ocinternal:' . $id);
  880. return $share;
  881. } catch (ShareNotFound $e) {
  882. // Do nothing, just try the other share type
  883. }
  886. try {
  887. if ($this->shareManager->shareProviderExists(\OCP\Share::SHARE_TYPE_CIRCLE)) {
  888. $share = $this->shareManager->getShareById('ocCircleShare:' . $id);
  889. return $share;
  890. }
  891. } catch (ShareNotFound $e) {
  892. // Do nothing, just try the other share type
  893. }
  895. try {
  896. if ($this->shareManager->shareProviderExists(\OCP\Share::SHARE_TYPE_EMAIL)) {
  897. $share = $this->shareManager->getShareById('ocMailShare:' . $id);
  898. return $share;
  899. }
  900. } catch (ShareNotFound $e) {
  901. // Do nothing, just try the other share type
  902. }
  904. if (!$this->shareManager->outgoingServer2ServerSharesAllowed()) {
  905. throw new ShareNotFound();
  906. }
  907. $share = $this->shareManager->getShareById('ocFederatedSharing:' . $id);
  909. return $share;
  910. }
  912. /**
  913. * Lock a Node
  914. *
  915. * @param \OCP\Files\Node $node
  916. */
  917. private function lock(\OCP\Files\Node $node) {
  918. $node->lock(ILockingProvider::LOCK_SHARED);
  919. $this->lockedNode = $node;
  920. }
  922. /**
  923. * Cleanup the remaining locks
  924. */
  925. public function cleanup() {
  926. if ($this->lockedNode !== null) {
  927. $this->lockedNode->unlock(ILockingProvider::LOCK_SHARED);
  928. }
  929. }
  930. }