mirrors
/
nextcloud
mirror of https://github.com/nextcloud/server.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 994 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21700 Commits
371 Branches
Tree: 0d4f0ab871
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0d4f0ab871'
${ noResults }
nextcloud/lib/private/user/session.php

session.php 6.8KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272 
  1. <?php

  2. 

  3. /**

  4.  * Copyright (c) 2013 Robin Appelman <icewind@owncloud.com>

  5.  * This file is licensed under the Affero General Public License version 3 or

  6.  * later.

  7.  * See the COPYING-README file.

  8.  */

  9. 

  10. namespace OC\User;

  11. 

  12. use OC\Hooks\Emitter;

  13. use OCP\IUserSession;

  14. 

  15. /**

  16.  * Class Session

  17.  *

  18.  * Hooks available in scope \OC\User:

  19.  * - preSetPassword(\OC\User\User $user, string $password, string $recoverPassword)

  20.  * - postSetPassword(\OC\User\User $user, string $password, string $recoverPassword)

  21.  * - preDelete(\OC\User\User $user)

  22.  * - postDelete(\OC\User\User $user)

  23.  * - preCreateUser(string $uid, string $password)

  24.  * - postCreateUser(\OC\User\User $user)

  25.  * - preLogin(string $user, string $password)

  26.  * - postLogin(\OC\User\User $user, string $password)

  27.  * - preRememberedLogin(string $uid)

  28.  * - postRememberedLogin(\OC\User\User $user)

  29.  * - logout()

  30.  *

  31.  * @package OC\User

  32.  */

  33. class Session implements IUserSession, Emitter {

  34. 	/**

  35. 	 * @var \OC\User\Manager $manager

  36. 	 */

  37. 	private $manager;

  38. 

  39. 	/**

  40. 	 * @var \OC\Session\Session $session

  41. 	 */

  42. 	private $session;

  43. 

  44. 	/**

  45. 	 * @var \OC\User\User $activeUser

  46. 	 */

  47. 	protected $activeUser;

  48. 

  49. 	/**

  50. 	 * @param \OCP\IUserManager $manager

  51. 	 * @param \OCP\ISession $session

  52. 	 */

  53. 	public function __construct(\OCP\IUserManager $manager, \OCP\ISession $session) {

  54. 		$this->manager = $manager;

  55. 		$this->session = $session;

  56. 	}

  57. 

  58. 	/**

  59. 	 * @param string $scope

  60. 	 * @param string $method

  61. 	 * @param callable $callback

  62. 	 */

  63. 	public function listen($scope, $method, $callback) {

  64. 		$this->manager->listen($scope, $method, $callback);

  65. 	}

  66. 

  67. 	/**

  68. 	 * @param string $scope optional

  69. 	 * @param string $method optional

  70. 	 * @param callable $callback optional

  71. 	 */

  72. 	public function removeListener($scope = null, $method = null, $callback = null) {

  73. 		$this->manager->removeListener($scope, $method, $callback);

  74. 	}

  75. 

  76. 	/**

  77. 	 * get the manager object

  78. 	 *

  79. 	 * @return \OC\User\Manager

  80. 	 */

  81. 	public function getManager() {

  82. 		return $this->manager;

  83. 	}

  84. 

  85. 	/**

  86. 	 * get the session object

  87. 	 *

  88. 	 * @return \OCP\ISession

  89. 	 */

  90. 	public function getSession() {

  91. 		return $this->session;

  92. 	}

  93. 

  94. 	/**

  95. 	 * set the session object

  96. 	 *

  97. 	 * @param \OCP\ISession $session

  98. 	 */

  99. 	public function setSession(\OCP\ISession $session) {

  100. 		if ($this->session instanceof \OCP\ISession) {

  101. 			$this->session->close();

  102. 		}

  103. 		$this->session = $session;

  104. 		$this->activeUser = null;

  105. 	}

  106. 

  107. 	/**

  108. 	 * set the currently active user

  109. 	 *

  110. 	 * @param \OC\User\User|null $user

  111. 	 */

  112. 	public function setUser($user) {

  113. 		if (is_null($user)) {

  114. 			$this->session->remove('user_id');

  115. 		} else {

  116. 			$this->session->set('user_id', $user->getUID());

  117. 		}

  118. 		$this->activeUser = $user;

  119. 	}

  120. 

  121. 	/**

  122. 	 * get the current active user

  123. 	 *

  124. 	 * @return \OC\User\User

  125. 	 */

  126. 	public function getUser() {

  127. 		if ($this->activeUser) {

  128. 			return $this->activeUser;

  129. 		} else {

  130. 			$uid = $this->session->get('user_id');

  131. 			if ($uid !== null) {

  132. 				$this->activeUser = $this->manager->get($uid);

  133. 				return $this->activeUser;

  134. 			} else {

  135. 				return null;

  136. 			}

  137. 		}

  138. 	}

  139. 

  140. 	/**

  141. 	 * set the login name

  142. 	 *

  143. 	 * @param string|null $loginName for the logged in user

  144. 	 */

  145. 	public function setLoginName($loginName) {

  146. 		if (is_null($loginName)) {

  147. 			$this->session->remove('loginname');

  148. 		} else {

  149. 			$this->session->set('loginname', $loginName);

  150. 		}

  151. 	}

  152. 

  153. 	/**

  154. 	 * get the login name of the current user

  155. 	 *

  156. 	 * @return string

  157. 	 */

  158. 	public function getLoginName() {

  159. 		if ($this->activeUser) {

  160. 			return $this->session->get('loginname');

  161. 		} else {

  162. 			$uid = $this->session->get('user_id');

  163. 			if ($uid) {

  164. 				$this->activeUser = $this->manager->get($uid);

  165. 				return $this->session->get('loginname');

  166. 			} else {

  167. 				return null;

  168. 			}

  169. 		}

  170. 	}

  171. 

  172. 	/**

  173. 	 * try to login with the provided credentials

  174. 	 *

  175. 	 * @param string $uid

  176. 	 * @param string $password

  177. 	 * @return boolean|null

  178. 	 */

  179. 	public function login($uid, $password) {

  180. 		$this->manager->emit('\OC\User', 'preLogin', array($uid, $password));

  181. 		$user = $this->manager->checkPassword($uid, $password);

  182. 		if ($user !== false) {

  183. 			if (!is_null($user)) {

  184. 				if ($user->isEnabled()) {

  185. 					$this->setUser($user);

  186. 					$this->setLoginName($uid);

  187. 					$this->manager->emit('\OC\User', 'postLogin', array($user, $password));

  188. 					return true;

  189. 				} else {

  190. 					return false;

  191. 				}

  192. 			}

  193. 		} else {

  194. 			return false;

  195. 		}

  196. 	}

  197. 

  198. 	/**

  199. 	 * perform login using the magic cookie (remember login)

  200. 	 *

  201. 	 * @param string $uid the username

  202. 	 * @param string $currentToken

  203. 	 * @return bool

  204. 	 */

  205. 	public function loginWithCookie($uid, $currentToken) {

  206. 		$this->manager->emit('\OC\User', 'preRememberedLogin', array($uid));

  207. 		$user = $this->manager->get($uid);

  208. 		if (is_null($user)) {

  209. 			// user does not exist

  210. 			return false;

  211. 		}

  212. 

  213. 		// get stored tokens

  214. 		$tokens = \OC::$server->getConfig()->getUserKeys($uid, 'login_token');

  215. 		// test cookies token against stored tokens

  216. 		if (!in_array($currentToken, $tokens, true)) {

  217. 			return false;

  218. 		}

  219. 		// replace successfully used token with a new one

  220. 		\OC::$server->getConfig()->deleteUserValue($uid, 'login_token', $currentToken);

  221. 		$newToken = \OC::$server->getSecureRandom()->getMediumStrengthGenerator()->generate(32);

  222. 		\OC::$server->getConfig()->setUserValue($uid, 'login_token', $newToken, time());

  223. 		$this->setMagicInCookie($user->getUID(), $newToken);

  224. 

  225. 		//login

  226. 		$this->setUser($user);

  227. 		$this->manager->emit('\OC\User', 'postRememberedLogin', array($user));

  228. 		return true;

  229. 	}

  230. 

  231. 	/**

  232. 	 * logout the user from the session

  233. 	 */

  234. 	public function logout() {

  235. 		$this->manager->emit('\OC\User', 'logout');

  236. 		$this->setUser(null);

  237. 		$this->setLoginName(null);

  238. 		$this->unsetMagicInCookie();

  239. 		$this->session->clear();

  240. 	}

  241. 

  242. 	/**

  243. 	 * Set cookie value to use in next page load

  244. 	 *

  245. 	 * @param string $username username to be set

  246. 	 * @param string $token

  247. 	 */

  248. 	public function setMagicInCookie($username, $token) {

  249. 		$secure_cookie = \OC_Config::getValue("forcessl", false); //TODO: DI for cookies and OC_Config

  250. 		$expires = time() + \OC_Config::getValue('remember_login_cookie_lifetime', 60 * 60 * 24 * 15);

  251. 		setcookie("oc_username", $username, $expires, \OC::$WEBROOT, '', $secure_cookie);

  252. 		setcookie("oc_token", $token, $expires, \OC::$WEBROOT, '', $secure_cookie, true);

  253. 		setcookie("oc_remember_login", "1", $expires, \OC::$WEBROOT, '', $secure_cookie);

  254. 	}

  255. 

  256. 	/**

  257. 	 * Remove cookie for "remember username"

  258. 	 */

  259. 	public function unsetMagicInCookie() {

  260. 		unset($_COOKIE["oc_username"]); //TODO: DI

  261. 		unset($_COOKIE["oc_token"]);

  262. 		unset($_COOKIE["oc_remember_login"]);

  263. 		setcookie('oc_username', '', time() - 3600, \OC::$WEBROOT);

  264. 		setcookie('oc_token', '', time() - 3600, \OC::$WEBROOT);

  265. 		setcookie('oc_remember_login', '', time() - 3600, \OC::$WEBROOT);

  266. 		// old cookies might be stored under /webroot/ instead of /webroot

  267. 		// and Firefox doesn't like it!

  268. 		setcookie('oc_username', '', time() - 3600, \OC::$WEBROOT . '/');

  269. 		setcookie('oc_token', '', time() - 3600, \OC::$WEBROOT . '/');

  270. 		setcookie('oc_remember_login', '', time() - 3600, \OC::$WEBROOT . '/');

  271. 	}

  272. }