fix: Use hashed password in files_external settings

Signed-off-by: Louis Chemineau <louis@chmn.me>

diff --git a/apps/files_external/lib/Lib/Auth/Password/GlobalAuth.php b/apps/files_external/lib/Lib/Auth/Password/GlobalAuth.php
index ca1c9ca2beeef120c504eb41118ebba5781c64c7..f11dab2785f3b9f912c9e1d8c0bcc7f0ed3ff5c1 100644 (file)
--- a/apps/files_external/lib/Lib/Auth/Password/GlobalAuth.php
+++ b/apps/files_external/lib/Lib/Auth/Password/GlobalAuth.php
@@ -19,6 +19,7 @@ use OCP\Security\ICredentialsManager;
  */
 class GlobalAuth extends AuthMechanism {
        public const CREDENTIALS_IDENTIFIER = 'password::global';
+       private const PWD_PLACEHOLDER = '************************';
 
        /** @var ICredentialsManager */
        protected $credentialsManager;
@@ -41,11 +42,18 @@ class GlobalAuth extends AuthMechanism {
                                'password' => ''
                        ];
                } else {
+                       $auth['password'] = self::PWD_PLACEHOLDER;
                        return $auth;
                }
        }
 
        public function saveAuth($uid, $user, $password) {
+               // Use old password if it has not changed.
+               if ($password === self::PWD_PLACEHOLDER) {
+                       $auth = $this->credentialsManager->retrieve($uid, self::CREDENTIALS_IDENTIFIER);
+                       $password = $auth['password'];
+               }
+
                $this->credentialsManager->store($uid, self::CREDENTIALS_IDENTIFIER, [
                        'user' => $user,
                        'password' => $password