mirrors
/
nextcloud
mirror of https://github.com/nextcloud/server.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 1008 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
37672 Commits
416 Branches
Tree: 21641302a9
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '21641302a9'
${ noResults }
nextcloud/lib/private/User/Manager.php

Manager.php 13KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472 
  1. <?php

  2. /**

  3.  * @copyright Copyright (c) 2016, ownCloud, Inc.

  4.  *

  5.  * @author Arthur Schiwon <blizzz@arthur-schiwon.de>

  6.  * @author Joas Schilling <coding@schilljs.com>

  7.  * @author Jörn Friedrich Dreyer <jfd@butonic.de>

  8.  * @author Lukas Reschke <lukas@statuscode.ch>

  9.  * @author Michael U <mdusher@users.noreply.github.com>

  10.  * @author Morris Jobke <hey@morrisjobke.de>

  11.  * @author Robin Appelman <robin@icewind.nl>

  12.  * @author Robin McCorkell <robin@mccorkell.me.uk>

  13.  * @author Roeland Jago Douma <roeland@famdouma.nl>

  14.  * @author Thomas Müller <thomas.mueller@tmit.eu>

  15.  * @author Vincent Chan <plus.vincchan@gmail.com>

  16.  * @author Volkan Gezer <volkangezer@gmail.com>

  17.  *

  18.  * @license AGPL-3.0

  19.  *

  20.  * This code is free software: you can redistribute it and/or modify

  21.  * it under the terms of the GNU Affero General Public License, version 3,

  22.  * as published by the Free Software Foundation.

  23.  *

  24.  * This program is distributed in the hope that it will be useful,

  25.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  26.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

  27.  * GNU Affero General Public License for more details.

  28.  *

  29.  * You should have received a copy of the GNU Affero General Public License, version 3,

  30.  * along with this program.  If not, see <http://www.gnu.org/licenses/>

  31.  *

  32.  */

  33. 

  34. namespace OC\User;

  35. 

  36. use OC\Hooks\PublicEmitter;

  37. use OCP\IUser;

  38. use OCP\IUserBackend;

  39. use OCP\IUserManager;

  40. use OCP\IConfig;

  41. 

  42. /**

  43.  * Class Manager

  44.  *

  45.  * Hooks available in scope \OC\User:

  46.  * - preSetPassword(\OC\User\User $user, string $password, string $recoverPassword)

  47.  * - postSetPassword(\OC\User\User $user, string $password, string $recoverPassword)

  48.  * - preDelete(\OC\User\User $user)

  49.  * - postDelete(\OC\User\User $user)

  50.  * - preCreateUser(string $uid, string $password)

  51.  * - postCreateUser(\OC\User\User $user, string $password)

  52.  * - change(\OC\User\User $user)

  53.  *

  54.  * @package OC\User

  55.  */

  56. class Manager extends PublicEmitter implements IUserManager {

  57. 	/**

  58. 	 * @var \OCP\UserInterface[] $backends

  59. 	 */

  60. 	private $backends = array();

  61. 

  62. 	/**

  63. 	 * @var \OC\User\User[] $cachedUsers

  64. 	 */

  65. 	private $cachedUsers = array();

  66. 

  67. 	/**

  68. 	 * @var \OCP\IConfig $config

  69. 	 */

  70. 	private $config;

  71. 

  72. 	/**

  73. 	 * @param \OCP\IConfig $config

  74. 	 */

  75. 	public function __construct(IConfig $config) {

  76. 		$this->config = $config;

  77. 		$cachedUsers = &$this->cachedUsers;

  78. 		$this->listen('\OC\User', 'postDelete', function ($user) use (&$cachedUsers) {

  79. 			/** @var \OC\User\User $user */

  80. 			unset($cachedUsers[$user->getUID()]);

  81. 		});

  82. 	}

  83. 

  84. 	/**

  85. 	 * Get the active backends

  86. 	 * @return \OCP\UserInterface[]

  87. 	 */

  88. 	public function getBackends() {

  89. 		return $this->backends;

  90. 	}

  91. 

  92. 	/**

  93. 	 * register a user backend

  94. 	 *

  95. 	 * @param \OCP\UserInterface $backend

  96. 	 */

  97. 	public function registerBackend($backend) {

  98. 		$this->backends[] = $backend;

  99. 	}

  100. 

  101. 	/**

  102. 	 * remove a user backend

  103. 	 *

  104. 	 * @param \OCP\UserInterface $backend

  105. 	 */

  106. 	public function removeBackend($backend) {

  107. 		$this->cachedUsers = array();

  108. 		if (($i = array_search($backend, $this->backends)) !== false) {

  109. 			unset($this->backends[$i]);

  110. 		}

  111. 	}

  112. 

  113. 	/**

  114. 	 * remove all user backends

  115. 	 */

  116. 	public function clearBackends() {

  117. 		$this->cachedUsers = array();

  118. 		$this->backends = array();

  119. 	}

  120. 

  121. 	/**

  122. 	 * get a user by user id

  123. 	 *

  124. 	 * @param string $uid

  125. 	 * @return \OC\User\User|null Either the user or null if the specified user does not exist

  126. 	 */

  127. 	public function get($uid) {

  128. 		if (isset($this->cachedUsers[$uid])) { //check the cache first to prevent having to loop over the backends

  129. 			return $this->cachedUsers[$uid];

  130. 		}

  131. 		foreach ($this->backends as $backend) {

  132. 			if ($backend->userExists($uid)) {

  133. 				return $this->getUserObject($uid, $backend);

  134. 			}

  135. 		}

  136. 		return null;

  137. 	}

  138. 

  139. 	/**

  140. 	 * get or construct the user object

  141. 	 *

  142. 	 * @param string $uid

  143. 	 * @param \OCP\UserInterface $backend

  144. 	 * @param bool $cacheUser If false the newly created user object will not be cached

  145. 	 * @return \OC\User\User

  146. 	 */

  147. 	protected function getUserObject($uid, $backend, $cacheUser = true) {

  148. 		if (isset($this->cachedUsers[$uid])) {

  149. 			return $this->cachedUsers[$uid];

  150. 		}

  151. 

  152. 		if (method_exists($backend, 'loginName2UserName')) {

  153. 			$loginName = $backend->loginName2UserName($uid);

  154. 			if ($loginName !== false) {

  155. 				$uid = $loginName;

  156. 			}

  157. 			if (isset($this->cachedUsers[$uid])) {

  158. 				return $this->cachedUsers[$uid];

  159. 			}

  160. 		}

  161. 

  162. 		$user = new User($uid, $backend, $this, $this->config);

  163. 		if ($cacheUser) {

  164. 			$this->cachedUsers[$uid] = $user;

  165. 		}

  166. 		return $user;

  167. 	}

  168. 

  169. 	/**

  170. 	 * check if a user exists

  171. 	 *

  172. 	 * @param string $uid

  173. 	 * @return bool

  174. 	 */

  175. 	public function userExists($uid) {

  176. 		$user = $this->get($uid);

  177. 		return ($user !== null);

  178. 	}

  179. 

  180. 	/**

  181. 	 * Check if the password is valid for the user

  182. 	 *

  183. 	 * @param string $loginName

  184. 	 * @param string $password

  185. 	 * @return mixed the User object on success, false otherwise

  186. 	 */

  187. 	public function checkPassword($loginName, $password) {

  188. 		$loginName = str_replace("\0", '', $loginName);

  189. 		$password = str_replace("\0", '', $password);

  190. 		

  191. 		foreach ($this->backends as $backend) {

  192. 			if ($backend->implementsActions(Backend::CHECK_PASSWORD)) {

  193. 				$uid = $backend->checkPassword($loginName, $password);

  194. 				if ($uid !== false) {

  195. 					return $this->getUserObject($uid, $backend);

  196. 				}

  197. 			}

  198. 		}

  199. 

  200. 		\OC::$server->getLogger()->warning('Login failed: \''. $loginName .'\' (Remote IP: \''. \OC::$server->getRequest()->getRemoteAddress(). '\')', ['app' => 'core']);

  201. 		return false;

  202. 	}

  203. 

  204. 	/**

  205. 	 * search by user id

  206. 	 *

  207. 	 * @param string $pattern

  208. 	 * @param int $limit

  209. 	 * @param int $offset

  210. 	 * @return \OC\User\User[]

  211. 	 */

  212. 	public function search($pattern, $limit = null, $offset = null) {

  213. 		$users = array();

  214. 		foreach ($this->backends as $backend) {

  215. 			$backendUsers = $backend->getUsers($pattern, $limit, $offset);

  216. 			if (is_array($backendUsers)) {

  217. 				foreach ($backendUsers as $uid) {

  218. 					$users[$uid] = $this->getUserObject($uid, $backend);

  219. 				}

  220. 			}

  221. 		}

  222. 

  223. 		uasort($users, function ($a, $b) {

  224. 			/**

  225. 			 * @var \OC\User\User $a

  226. 			 * @var \OC\User\User $b

  227. 			 */

  228. 			return strcmp($a->getUID(), $b->getUID());

  229. 		});

  230. 		return $users;

  231. 	}

  232. 

  233. 	/**

  234. 	 * search by displayName

  235. 	 *

  236. 	 * @param string $pattern

  237. 	 * @param int $limit

  238. 	 * @param int $offset

  239. 	 * @return \OC\User\User[]

  240. 	 */

  241. 	public function searchDisplayName($pattern, $limit = null, $offset = null) {

  242. 		$users = array();

  243. 		foreach ($this->backends as $backend) {

  244. 			$backendUsers = $backend->getDisplayNames($pattern, $limit, $offset);

  245. 			if (is_array($backendUsers)) {

  246. 				foreach ($backendUsers as $uid => $displayName) {

  247. 					$users[] = $this->getUserObject($uid, $backend);

  248. 				}

  249. 			}

  250. 		}

  251. 

  252. 		usort($users, function ($a, $b) {

  253. 			/**

  254. 			 * @var \OC\User\User $a

  255. 			 * @var \OC\User\User $b

  256. 			 */

  257. 			return strcmp($a->getDisplayName(), $b->getDisplayName());

  258. 		});

  259. 		return $users;

  260. 	}

  261. 

  262. 	/**

  263. 	 * @param string $uid

  264. 	 * @param string $password

  265. 	 * @throws \Exception

  266. 	 * @return bool|\OC\User\User the created user or false

  267. 	 */

  268. 	public function createUser($uid, $password) {

  269. 		$l = \OC::$server->getL10N('lib');

  270. 		// Check the name for bad characters

  271. 		// Allowed are: "a-z", "A-Z", "0-9" and "_.@-'"

  272. 		if (preg_match('/[^a-zA-Z0-9 _\.@\-\']/', $uid)) {

  273. 			throw new \Exception($l->t('Only the following characters are allowed in a username:'

  274. 				. ' "a-z", "A-Z", "0-9", and "_.@-\'"'));

  275. 		}

  276. 		// No empty username

  277. 		if (trim($uid) == '') {

  278. 			throw new \Exception($l->t('A valid username must be provided'));

  279. 		}

  280. 		// No whitespace at the beginning or at the end

  281. 		if (strlen(trim($uid, "\t\n\r\0\x0B\xe2\x80\x8b")) !== strlen(trim($uid))) {

  282. 			throw new \Exception($l->t('Username contains whitespace at the beginning or at the end'));

  283. 		}

  284. 		// No empty password

  285. 		if (trim($password) == '') {

  286. 			throw new \Exception($l->t('A valid password must be provided'));

  287. 		}

  288. 

  289. 		// Check if user already exists

  290. 		if ($this->userExists($uid)) {

  291. 			throw new \Exception($l->t('The username is already being used'));

  292. 		}

  293. 

  294. 		$this->emit('\OC\User', 'preCreateUser', array($uid, $password));

  295. 		foreach ($this->backends as $backend) {

  296. 			if ($backend->implementsActions(Backend::CREATE_USER)) {

  297. 				$backend->createUser($uid, $password);

  298. 				$user = $this->getUserObject($uid, $backend);

  299. 				$this->emit('\OC\User', 'postCreateUser', array($user, $password));

  300. 				return $user;

  301. 			}

  302. 		}

  303. 		return false;

  304. 	}

  305. 

  306. 	/**

  307. 	 * returns how many users per backend exist (if supported by backend)

  308. 	 *

  309. 	 * @param boolean $hasLoggedIn when true only users that have a lastLogin

  310. 	 *                entry in the preferences table will be affected

  311. 	 * @return array|int an array of backend class as key and count number as value

  312. 	 *                if $hasLoggedIn is true only an int is returned

  313. 	 */

  314. 	public function countUsers($hasLoggedIn = false) {

  315. 		if ($hasLoggedIn) {

  316. 			return $this->countSeenUsers();

  317. 		}

  318. 		$userCountStatistics = [];

  319. 		foreach ($this->backends as $backend) {

  320. 			if ($backend->implementsActions(Backend::COUNT_USERS)) {

  321. 				$backendUsers = $backend->countUsers();

  322. 				if($backendUsers !== false) {

  323. 					if($backend instanceof IUserBackend) {

  324. 						$name = $backend->getBackendName();

  325. 					} else {

  326. 						$name = get_class($backend);

  327. 					}

  328. 					if(isset($userCountStatistics[$name])) {

  329. 						$userCountStatistics[$name] += $backendUsers;

  330. 					} else {

  331. 						$userCountStatistics[$name] = $backendUsers;

  332. 					}

  333. 				}

  334. 			}

  335. 		}

  336. 		return $userCountStatistics;

  337. 	}

  338. 

  339. 	/**

  340. 	 * The callback is executed for each user on each backend.

  341. 	 * If the callback returns false no further users will be retrieved.

  342. 	 *

  343. 	 * @param \Closure $callback

  344. 	 * @param string $search

  345. 	 * @param boolean $onlySeen when true only users that have a lastLogin entry

  346. 	 *                in the preferences table will be affected

  347. 	 * @since 9.0.0

  348. 	 */

  349. 	public function callForAllUsers(\Closure $callback, $search = '', $onlySeen = false) {

  350. 		if ($onlySeen) {

  351. 			$this->callForSeenUsers($callback);

  352. 		} else {

  353. 			foreach ($this->getBackends() as $backend) {

  354. 				$limit = 500;

  355. 				$offset = 0;

  356. 				do {

  357. 					$users = $backend->getUsers($search, $limit, $offset);

  358. 					foreach ($users as $uid) {

  359. 						if (!$backend->userExists($uid)) {

  360. 							continue;

  361. 						}

  362. 						$user = $this->getUserObject($uid, $backend, false);

  363. 						$return = $callback($user);

  364. 						if ($return === false) {

  365. 							break;

  366. 						}

  367. 					}

  368. 					$offset += $limit;

  369. 				} while (count($users) >= $limit);

  370. 			}

  371. 		}

  372. 	}

  373. 

  374. 	/**

  375. 	 * returns how many users have logged in once

  376. 	 *

  377. 	 * @return int

  378. 	 * @since 11.0.0

  379. 	 */

  380. 	public function countSeenUsers() {

  381. 		$queryBuilder = \OC::$server->getDatabaseConnection()->getQueryBuilder();

  382. 		$queryBuilder->select($queryBuilder->createFunction('COUNT(*)'))

  383. 			->from('preferences')

  384. 			->where($queryBuilder->expr()->eq('appid', $queryBuilder->createNamedParameter('login')))

  385. 			->andWhere($queryBuilder->expr()->eq('configkey', $queryBuilder->createNamedParameter('lastLogin')))

  386. 			->andWhere($queryBuilder->expr()->isNotNull('configvalue'));

  387. 

  388. 		$query = $queryBuilder->execute();

  389. 

  390. 		$result = (int)$query->fetchColumn();

  391. 		$query->closeCursor();

  392. 

  393. 		return $result;

  394. 	}

  395. 

  396. 	/**

  397. 	 * @param \Closure $callback

  398. 	 * @since 11.0.0

  399. 	 */

  400. 	public function callForSeenUsers(\Closure $callback) {

  401. 		$limit = 1000;

  402. 		$offset = 0;

  403. 		do {

  404. 			$userIds = $this->getSeenUserIds($limit, $offset);

  405. 			$offset += $limit;

  406. 			foreach ($userIds as $userId) {

  407. 				foreach ($this->backends as $backend) {

  408. 					if ($backend->userExists($userId)) {

  409. 						$user = $this->getUserObject($userId, $backend, false);

  410. 						$return = $callback($user);

  411. 						if ($return === false) {

  412. 							return;

  413. 						}

  414. 					}

  415. 				}

  416. 			}

  417. 		} while (count($userIds) >= $limit);

  418. 	}

  419. 

  420. 	/**

  421. 	 * Getting all userIds that have a listLogin value requires checking the

  422. 	 * value in php because on oracle you cannot use a clob in a where clause,

  423. 	 * preventing us from doing a not null or length(value) > 0 check.

  424. 	 * 

  425. 	 * @param int $limit

  426. 	 * @param int $offset

  427. 	 * @return string[] with user ids

  428. 	 */

  429. 	private function getSeenUserIds($limit = null, $offset = null) {

  430. 		$queryBuilder = \OC::$server->getDatabaseConnection()->getQueryBuilder();

  431. 		$queryBuilder->select(['userid'])

  432. 			->from('preferences')

  433. 			->where($queryBuilder->expr()->eq(

  434. 				'appid', $queryBuilder->createNamedParameter('login'))

  435. 			)

  436. 			->andWhere($queryBuilder->expr()->eq(

  437. 				'configkey', $queryBuilder->createNamedParameter('lastLogin'))

  438. 			)

  439. 			->andWhere($queryBuilder->expr()->isNotNull('configvalue')

  440. 			);

  441. 

  442. 		if ($limit !== null) {

  443. 			$queryBuilder->setMaxResults($limit);

  444. 		}

  445. 		if ($offset !== null) {

  446. 			$queryBuilder->setFirstResult($offset);

  447. 		}

  448. 		$query = $queryBuilder->execute();

  449. 		$result = [];

  450. 

  451. 		while ($row = $query->fetch()) {

  452. 			$result[] = $row['userid'];

  453. 		}

  454. 

  455. 		$query->closeCursor();

  456. 

  457. 		return $result;

  458. 	}

  459. 

  460. 	/**

  461. 	 * @param string $email

  462. 	 * @return IUser[]

  463. 	 * @since 9.1.0

  464. 	 */

  465. 	public function getByEmail($email) {

  466. 		$userIds = $this->config->getUsersForUserValue('settings', 'email', $email);

  467. 

  468. 		return array_map(function($uid) {

  469. 			return $this->get($uid);

  470. 		}, $userIds);

  471. 	}

  472. }