VladPolskiy/nextcloud-xwiki
1
0
Fork 0
mirror of https://github.com/nextcloud/xwiki.git synced 2026-01-05 11:35:24 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
nextcloud-xwiki/lib/Controller/SettingsController.php
Jana Peper d15363b822 fix: change controller annotations to attributes 
Signed-off-by: Jana Peper <jana.peper@nextcloud.com>
2025-01-10 17:20:15 +01:00

351 lines
9.5 KiB
PHP
Raw Permalink Blame History

<?php
namespace OCA\Xwiki\Controller;
use OCA\Xwiki\Instance;
use OCA\Xwiki\SettingsManager;
use OCP\AppFramework\Controller;
use OCP\AppFramework\Http;
use OCP\AppFramework\Http\DataDisplayResponse;
use OCP\AppFramework\Http\DataResponse;
use OCP\AppFramework\Http\JSONResponse;
use OCP\AppFramework\Http\RedirectResponse;
use OCP\AppFramework\Http\NotFoundResponse;
use OCP\AppFramework\Http\Attribute\NoAdminRequired;
use OCP\AppFramework\Http\Attribute\NoCSRFRequired;
use OCP\Http\Client\IClientService;
use OCP\IL10N;
use OCP\IRequest;
use OCP\IURLGenerator;
use OCP\IUserManager;
use OCP\IUser;
use OCP\Notification\IManager;
use OCP\Util;
use OCP\PreConditionNotMetException;
use GuzzleHttp\Exception\BadResponseException;
class SettingsController extends Controller {
private $userId;
private IClientService $clientService;
private IL10N $l10n;
private IManager $manager;
private IURLGenerator $urlGenerator;
private IUserManager $userManager;
private SettingsManager $settings;
public function __construct(
$appName,
$UserId,
IClientService $clientService,
IL10N $l10n,
IManager $manager,
IRequest $request,
IURLGenerator $urlGenerator,
IUserManager $userManager,
SettingsManager $settings
) {
parent::__construct($appName, $request);
$this->l10n = $l10n;
$this->clientService = $clientService;
$this->request = $request;
$this->urlGenerator = $urlGenerator;
$this->userId = $UserId;
$this->userManager = $userManager;
$this->manager = $manager;
$this->settings = $settings;
}
#[NoAdminRequired]
#[NoCSRFRequired]
public function addToken(): RedirectResponse {
$instanceUrl = $this->request->getParam('i');
$token = $this->request->getParam('token');
$this->settings->setUserToken($instanceUrl, $token);
return new RedirectResponse(
$this->urlGenerator->linkToRoute(
'settings.PersonalSettings.index',
['section' => 'xwiki']
)
);
}
#[NoAdminRequired]
public function requestToken(): ?RedirectResponse {
$instanceUrl = $this->request->getParam('i');
$instance = $this->settings->getInstance($instanceUrl);
if ($instance !== null) {
$state = bin2hex(random_bytes(20));
$states = $this->settings->getFromAppJSON('oidc_states', []);
$states[$state] = [
'user' => $this->userId,
'instance' => $instance->url,
'date' => $_SERVER['REQUEST_TIME']
];
$this->settings->saveAsAppJSON('oidc_states', $states);
// FIXME check instance
return new RedirectResponse(
$instanceUrl
. '/oidc/authorization?' . http_build_query([
'scope' => 'openid',
'response_type' => 'code',
'client_id' => $this->settings->getClientId(),
'state' => $state,
'redirect_uri' => $this->settings->getRedirectURI()
])
);
} // else todo
return null;
}
#[NoAdminRequired]
#[NoCSRFRequired]
public function oidcRedirect(): RedirectResponse {
$state = $this->request->getParam('state');
$code = $this->request->getParam('code');
$states = $this->settings->getFromAppJSON('oidc_states', []);
if (empty($states[$state])) {
return new RedirectResponse(
$this->urlGenerator->linkToRoute(
'settings.PersonalSettings.index',
['section' => 'xwiki', 'diagnostic' => 'state not found']
)
);
}
['instance' => $instanceURL, 'user' => $user] = $states[$state];
unset($states[$state]);
$this->settings->saveAsAppJSON('oidc_states', $states);
$instance = $this->settings->getInstance($instanceURL);
$error = $this->request->getParam('error');
if (!empty($error)) {
return new RedirectResponse(
$this->urlGenerator->linkToRoute(
'settings.PersonalSettings.index', [
'section' => 'xwiki',
'error' => $error,
// 'error_description' => $this->request->getParam('error_description'),
'i' => $instance->url
]
)
);
}
if ($user === $this->userId) {
$client = $this->clientService->newClient();
try {
$response = $client->post(
$instanceURL . '/oidc/token', [
'headers' => [
'Content-type' => 'application/x-www-form-urlencoded',
],
'body' => http_build_query([
'grant_type' => 'authorization_code',
'client_id' => $this->settings->getClientId(),
'code' => $code,
'redirect_uri' => $this->settings->getRedirectURI()
])
]
)->getBody();
} catch (BadResponseException $e) {
$response = '';
die($e->getResponse()->getBody()->getContents());
} catch (\Exception $e) {
$response = '';
die($e->getMessage());
}
$t = json_decode($response, true);
if (empty($t) || empty($t['access_token'])) {
return new RedirectResponse(
$this->urlGenerator->linkToRoute(
'settings.PersonalSettings.index', [
'section' => 'xwiki',
'error' => 'missing_access_token',
'i' => $instance->url
]
)
);
}
$this->settings->setUserToken($instanceURL, $t['access_token']);
}
return new RedirectResponse(
$this->urlGenerator->linkToRoute(
'settings.PersonalSettings.index', [
'section' => 'xwiki',
'i' => $instance->url,
'checkUserLogin' => true
]
)
);
}
#[NoAdminRequired]
public function deleteToken(): RedirectResponse {
$instanceUrl = $this->request->getParam('i');
$this->settings->setUserToken($instanceUrl, '');
return new RedirectResponse(
$this->urlGenerator->linkToRoute(
'settings.PersonalSettings.index',
['section' => 'xwiki']
)
);
}
#[NoAdminRequired]
public function setDisabled(): JSONResponse {
$instanceUrl = $this->request->getParam('i');
$value = $this->request->getParam('v') === 'true';
$this->settings->setUserDisabled($instanceUrl, $value);
return new JSONResponse(['ok' => true]);
}
#[NoAdminRequired]
public function setUserValue(): JSONResponse {
$key = $this->request->getParam('k');
$value = $this->request->getParam('v');
if (empty($key)) {
return new JSONResponse([
'error' => 'Mandatory parameter:' .
' k. Use v to give the value. ' .
'If unset, the setting will be removed'
], Http::STATUS_BAD_REQUEST);
}
if ($key !== 'integratedMode') {
return new JSONResponse(
['error' => 'Unknown key ' . $key],
Http::STATUS_BAD_REQUEST
);
}
if (empty($value)) {
$this->settings->deleteUserValue($this->userId, $key);
}
$this->settings->saveAsUserString($key, $value);
return new JSONResponse(['ok' => true]);
}
public function addInstance(): JSONResponse {
$url = Instance::fixURL($this->request->getParam('url'));
if (empty($url)) {
return new JSONResponse(
['error' => 'Mandatory parameter: url'],
Http::STATUS_BAD_REQUEST
);
}
$instances = $this->settings->getFromAppJSON('instances', '[]');
foreach ($instances as $instance) {
if ($instance['url'] === $url) {
return new JSONResponse(
['error' => $this->l10n->t('An instance with this URL already exists.')],
Http::STATUS_BAD_REQUEST
);
}
}
$instances[] = ['url' => $url];
$this->settings->saveAsAppJSON('instances', $instances);
$this->maybeNotify($url);
return new JSONResponse(['ok' => true, 'url' => $url]);
}
private function maybeNotify(string $url) {
if ($this->request->getParam('notifyUsers') === 'true') {
$instance = new Instance($url);
$prettyName = $instance->getPrettyName();
$notification = $this->manager->createNotification();
$notification->setApp('xwiki')
->setDateTime(new \DateTime())
->setObject('new_wiki_added', $instance->url)
->setSubject('new_wiki_added', [$prettyName]);
$this->userManager->callForAllUsers(function (IUser $user) use (&$notification) {
$notification->setUser($user->getUID());
$this->manager->notify($notification);
});
}
}
#[NoAdminRequired]
public function pingInstance(): JSONResponse {
$url = Instance::fixURL($this->request->getParam('url'));
if (empty($url)) {
return new JSONResponse(
['ok' => false, 'error' => 'Mandatory parameter: url'],
Http::STATUS_BAD_REQUEST
);
}
$client = $this->clientService->newClient();
$ping = Instance::pingURL($client, $this->l10n, $url);
return new JSONResponse(
$ping,
$ping['ok'] ? Http::STATUS_OK : Http::STATUS_BAD_REQUEST
);
}
public function replaceInstance(): JSONResponse {
$oldUrl = $this->request->getParam('oldUrl');
$newUrl = $this->request->getParam('newUrl');
if (empty($oldUrl) || empty($newUrl)) {
return new JSONResponse(
['error' => 'Mandatory parameters: oldUrl and newUrl'],
Http::STATUS_BAD_REQUEST
);
}
$found = null;
$instances = $this->settings->getFromAppJSON('instances', '[]');
foreach ($instances as &$instance) {
if ($instance['url'] === $oldUrl) {
$instance['url'] = Instance::fixURL($newUrl);
$found = $instance;
} else if ($instance['url'] === $newUrl) {
return new JSONResponse(
['error' => $this->l10n->t('An instance with this URL already exists')],
Http::STATUS_BAD_REQUEST
);
}
}
if (!$found) {
return new JSONResponse(['error' => $this->l10n->t('Could not find the instance you are trying to replace. This should not happen, please report a bug.')]);
}
$this->settings->saveAsAppJSON('instances', $instances);
$this->maybeNotify($newUrl);
return new JSONResponse(['ok' => true, 'url' => $found['url']]);
}
public function deleteInstance(): JSONResponse {
$url = $this->request->getParam('url');
$this->settings->saveAsAppJSON('instances', array_filter(
$this->settings->getFromAppJSON('instances', '[]'),
function ($instance) use ($url) {
return !empty($instance['url']) && $instance['url'] !== $url;
}
));
// TODO: cleanup token from all user's config
return new JSONResponse(['ok' => true]);
}
}
Reference in New Issue View Git Blame Copy Permalink