mirrors
/
nextcloud
mirror of https://github.com/nextcloud/server.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 984 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
52940 Commits
367 Branches
Tree: 1a9330cd69
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '1a9330cd69'
${ noResults }
nextcloud/apps/admin_audit/lib/AppInfo/Application.php

Application.php 8.6KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265 
  1. <?php

  2. 

  3. declare(strict_types=1);

  4. 

  5. /**

  6.  * @copyright Copyright (c) 2017 Joas Schilling <coding@schilljs.com>

  7.  *

  8.  * @author Arthur Schiwon <blizzz@arthur-schiwon.de>

  9.  * @author Bjoern Schiessle <bjoern@schiessle.org>

  10.  * @author GrayFix <grayfix@gmail.com>

  11.  * @author Joas Schilling <coding@schilljs.com>

  12.  * @author Morris Jobke <hey@morrisjobke.de>

  13.  * @author Roeland Jago Douma <roeland@famdouma.nl>

  14.  * @author Tiago Flores <tiago.flores@yahoo.com.br>

  15.  *

  16.  * @license GNU AGPL version 3 or any later version

  17.  *

  18.  * This program is free software: you can redistribute it and/or modify

  19.  * it under the terms of the GNU Affero General Public License as

  20.  * published by the Free Software Foundation, either version 3 of the

  21.  * License, or (at your option) any later version.

  22.  *

  23.  * This program is distributed in the hope that it will be useful,

  24.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  25.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  26.  * GNU Affero General Public License for more details.

  27.  *

  28.  * You should have received a copy of the GNU Affero General Public License

  29.  * along with this program. If not, see <http://www.gnu.org/licenses/>.

  30.  *

  31.  */

  32. 

  33. namespace OCA\AdminAudit\AppInfo;

  34. 

  35. use OC\Files\Filesystem;

  36. use OC\Files\Node\File;

  37. use OC\Group\Manager;

  38. use OC\User\Session;

  39. use OCA\AdminAudit\Actions\AppManagement;

  40. use OCA\AdminAudit\Actions\Auth;

  41. use OCA\AdminAudit\Actions\Console;

  42. use OCA\AdminAudit\Actions\Files;

  43. use OCA\AdminAudit\Actions\GroupManagement;

  44. use OCA\AdminAudit\Actions\Security;

  45. use OCA\AdminAudit\Actions\Sharing;

  46. use OCA\AdminAudit\Actions\Trashbin;

  47. use OCA\AdminAudit\Actions\UserManagement;

  48. use OCA\AdminAudit\Actions\Versions;

  49. use OCP\App\ManagerEvent;

  50. use OCP\AppFramework\App;

  51. use OCP\Authentication\TwoFactorAuth\IProvider;

  52. use OCP\Console\ConsoleEvent;

  53. use OCP\IGroupManager;

  54. use OCP\ILogger;

  55. use OCP\IPreview;

  56. use OCP\IUserSession;

  57. use OCP\Share;

  58. use OCP\Util;

  59. use Symfony\Component\EventDispatcher\GenericEvent;

  60. 

  61. class Application extends App {

  62. 

  63. 	/** @var ILogger */

  64. 	protected $logger;

  65. 

  66. 	public function __construct() {

  67. 		parent::__construct('admin_audit');

  68. 		$this->initLogger();

  69. 	}

  70. 

  71. 	public function initLogger() {

  72. 		$c = $this->getContainer()->getServer();

  73. 		$config = $c->getConfig();

  74. 

  75. 		$default = $config->getSystemValue('datadirectory', \OC::$SERVERROOT . '/data') . '/audit.log';

  76. 		$logFile = $config->getAppValue('admin_audit', 'logfile', $default);

  77. 		if($logFile === null) {

  78. 			$this->logger = $c->getLogger();

  79. 			return;

  80. 		}

  81. 		$this->logger = $c->getLogFactory()->getCustomLogger($logFile);

  82. 

  83. 	}

  84. 

  85. 	public function register() {

  86. 		$this->registerHooks();

  87. 	}

  88. 

  89. 	/**

  90. 	 * Register hooks in order to log them

  91. 	 */

  92. 	protected function registerHooks() {

  93. 		$this->userManagementHooks();

  94. 		$this->groupHooks();

  95. 		$this->authHooks();

  96. 

  97. 		$this->consoleHooks();

  98. 		$this->appHooks();

  99. 

  100. 		$this->sharingHooks();

  101. 

  102. 		$this->fileHooks();

  103. 		$this->trashbinHooks();

  104. 		$this->versionsHooks();

  105. 

  106. 		$this->securityHooks();

  107. 	}

  108. 

  109. 	protected function userManagementHooks() {

  110. 		$userActions = new UserManagement($this->logger);

  111. 

  112. 		Util::connectHook('OC_User', 'post_createUser',	$userActions, 'create');

  113. 		Util::connectHook('OC_User', 'post_deleteUser',	$userActions, 'delete');

  114. 		Util::connectHook('OC_User', 'changeUser',	$userActions, 'change');

  115. 

  116. 		/** @var IUserSession|Session $userSession */

  117. 		$userSession = $this->getContainer()->getServer()->getUserSession();

  118. 		$userSession->listen('\OC\User', 'postSetPassword', [$userActions, 'setPassword']);

  119. 		$userSession->listen('\OC\User', 'assignedUserId', [$userActions, 'assign']);

  120. 		$userSession->listen('\OC\User', 'postUnassignedUserId', [$userActions, 'unassign']);

  121. 	}

  122. 

  123. 	protected function groupHooks()  {

  124. 		$groupActions = new GroupManagement($this->logger);

  125. 

  126. 		/** @var IGroupManager|Manager $groupManager */

  127. 		$groupManager = $this->getContainer()->getServer()->getGroupManager();

  128. 		$groupManager->listen('\OC\Group', 'postRemoveUser',  [$groupActions, 'removeUser']);

  129. 		$groupManager->listen('\OC\Group', 'postAddUser',  [$groupActions, 'addUser']);

  130. 		$groupManager->listen('\OC\Group', 'postDelete',  [$groupActions, 'deleteGroup']);

  131. 		$groupManager->listen('\OC\Group', 'postCreate',  [$groupActions, 'createGroup']);

  132. 	}

  133. 

  134. 	protected function sharingHooks() {

  135. 		$shareActions = new Sharing($this->logger);

  136. 

  137. 		Util::connectHook(Share::class, 'post_shared', $shareActions, 'shared');

  138. 		Util::connectHook(Share::class, 'post_unshare', $shareActions, 'unshare');

  139. 		Util::connectHook(Share::class, 'post_unshareFromSelf', $shareActions, 'unshare');

  140. 		Util::connectHook(Share::class, 'post_update_permissions', $shareActions, 'updatePermissions');

  141. 		Util::connectHook(Share::class, 'post_update_password', $shareActions, 'updatePassword');

  142. 		Util::connectHook(Share::class, 'post_set_expiration_date', $shareActions, 'updateExpirationDate');

  143. 		Util::connectHook(Share::class, 'share_link_access', $shareActions, 'shareAccessed');

  144. 	}

  145. 

  146. 	protected function authHooks() {

  147. 		$authActions = new Auth($this->logger);

  148. 

  149. 		Util::connectHook('OC_User', 'pre_login', $authActions, 'loginAttempt');

  150. 		Util::connectHook('OC_User', 'post_login', $authActions, 'loginSuccessful');

  151. 		Util::connectHook('OC_User', 'logout', $authActions, 'logout');

  152. 	}

  153. 

  154. 	protected function appHooks() {

  155. 

  156. 		$eventDispatcher = $this->getContainer()->getServer()->getEventDispatcher();

  157. 		$eventDispatcher->addListener(ManagerEvent::EVENT_APP_ENABLE, function(ManagerEvent $event) {

  158. 			$appActions = new AppManagement($this->logger);

  159. 			$appActions->enableApp($event->getAppID());

  160. 		});

  161. 		$eventDispatcher->addListener(ManagerEvent::EVENT_APP_ENABLE_FOR_GROUPS, function(ManagerEvent $event) {

  162. 			$appActions = new AppManagement($this->logger);

  163. 			$appActions->enableAppForGroups($event->getAppID(), $event->getGroups());

  164. 		});

  165. 		$eventDispatcher->addListener(ManagerEvent::EVENT_APP_DISABLE, function(ManagerEvent $event) {

  166. 			$appActions = new AppManagement($this->logger);

  167. 			$appActions->disableApp($event->getAppID());

  168. 		});

  169. 

  170. 	}

  171. 

  172. 	protected function consoleHooks() {

  173. 		$eventDispatcher = $this->getContainer()->getServer()->getEventDispatcher();

  174. 		$eventDispatcher->addListener(ConsoleEvent::EVENT_RUN, function(ConsoleEvent $event) {

  175. 			$appActions = new Console($this->logger);

  176. 			$appActions->runCommand($event->getArguments());

  177. 		});

  178. 	}

  179. 

  180. 	protected function fileHooks() {

  181. 		$fileActions = new Files($this->logger);

  182. 		$eventDispatcher = $this->getContainer()->getServer()->getEventDispatcher();

  183. 		$eventDispatcher->addListener(

  184. 			IPreview::EVENT,

  185. 			function(GenericEvent $event) use ($fileActions) {

  186. 				/** @var File $file */

  187. 				$file = $event->getSubject();

  188. 				$fileActions->preview([

  189. 					'path' => mb_substr($file->getInternalPath(), 5),

  190. 					'width' => $event->getArguments()['width'],

  191. 					'height' => $event->getArguments()['height'],

  192. 					'crop' => $event->getArguments()['crop'],

  193. 					'mode'  => $event->getArguments()['mode']

  194. 				]);

  195. 			}

  196. 		);

  197. 

  198. 		Util::connectHook(

  199. 			Filesystem::CLASSNAME,

  200. 			Filesystem::signal_post_rename,

  201. 			$fileActions,

  202. 			'rename'

  203. 		);

  204. 		Util::connectHook(

  205. 			Filesystem::CLASSNAME,

  206. 			Filesystem::signal_post_create,

  207. 			$fileActions,

  208. 			'create'

  209. 		);

  210. 		Util::connectHook(

  211. 			Filesystem::CLASSNAME,

  212. 			Filesystem::signal_post_copy,

  213. 			$fileActions,

  214. 			'copy'

  215. 		);

  216. 		Util::connectHook(

  217. 			Filesystem::CLASSNAME,

  218. 			Filesystem::signal_post_write,

  219. 			$fileActions,

  220. 			'write'

  221. 		);

  222. 		Util::connectHook(

  223. 			Filesystem::CLASSNAME,

  224. 			Filesystem::signal_post_update,

  225. 			$fileActions,

  226. 			'update'

  227. 		);

  228. 		Util::connectHook(

  229. 			Filesystem::CLASSNAME,

  230. 			Filesystem::signal_read,

  231. 			$fileActions,

  232. 			'read'

  233. 		);

  234. 		Util::connectHook(

  235. 			Filesystem::CLASSNAME,

  236. 			Filesystem::signal_delete,

  237. 			$fileActions,

  238. 			'delete'

  239. 		);

  240. 	}

  241. 

  242. 	protected function versionsHooks() {

  243. 		$versionsActions = new Versions($this->logger);

  244. 		Util::connectHook('\OCP\Versions', 'rollback', $versionsActions, 'rollback');

  245. 		Util::connectHook('\OCP\Versions', 'delete',$versionsActions, 'delete');

  246. 	}

  247. 

  248. 	protected function trashbinHooks() {

  249. 		$trashActions = new Trashbin($this->logger);

  250. 		Util::connectHook('\OCP\Trashbin', 'preDelete', $trashActions, 'delete');

  251. 		Util::connectHook('\OCA\Files_Trashbin\Trashbin', 'post_restore', $trashActions, 'restore');

  252. 	}

  253. 

  254. 	protected function securityHooks() {

  255. 		$eventDispatcher = $this->getContainer()->getServer()->getEventDispatcher();

  256. 		$eventDispatcher->addListener(IProvider::EVENT_SUCCESS, function(GenericEvent $event) {

  257. 			$security = new Security($this->logger);

  258. 			$security->twofactorSuccess($event->getSubject(), $event->getArguments());

  259. 		});

  260. 		$eventDispatcher->addListener(IProvider::EVENT_FAILED, function(GenericEvent $event) {

  261. 			$security = new Security($this->logger);

  262. 			$security->twofactorFailed($event->getSubject(), $event->getArguments());

  263. 		});

  264. 	}

  265. }