mirrors
/
nextcloud
mirror of https://github.com/nextcloud/server.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 1008 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
75029 Commits
434 Branches
Tree: 380a253aab
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '380a253aab'
${ noResults }
nextcloud/core/Controller/LostController.php

LostController.php 10KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316 
  1. <?php

  2. 

  3. /**

  4.  * SPDX-FileCopyrightText: 2016-2024 Nextcloud GmbH and Nextcloud contributors

  5.  * SPDX-FileCopyrightText: 2016 ownCloud, Inc.

  6.  * SPDX-License-Identifier: AGPL-3.0-only

  7.  */

  8. namespace OC\Core\Controller;

  9. 

  10. use Exception;

  11. use OC\Authentication\TwoFactorAuth\Manager;

  12. use OC\Core\Events\BeforePasswordResetEvent;

  13. use OC\Core\Events\PasswordResetEvent;

  14. use OC\Core\Exception\ResetPasswordException;

  15. use OC\Security\RateLimiting\Exception\RateLimitExceededException;

  16. use OC\Security\RateLimiting\Limiter;

  17. use OCP\AppFramework\Controller;

  18. use OCP\AppFramework\Http\Attribute\FrontpageRoute;

  19. use OCP\AppFramework\Http\Attribute\OpenAPI;

  20. use OCP\AppFramework\Http\JSONResponse;

  21. use OCP\AppFramework\Http\TemplateResponse;

  22. use OCP\AppFramework\Services\IInitialState;

  23. use OCP\Defaults;

  24. use OCP\Encryption\IEncryptionModule;

  25. use OCP\Encryption\IManager;

  26. use OCP\EventDispatcher\IEventDispatcher;

  27. use OCP\HintException;

  28. use OCP\IConfig;

  29. use OCP\IL10N;

  30. use OCP\IRequest;

  31. use OCP\IURLGenerator;

  32. use OCP\IUser;

  33. use OCP\IUserManager;

  34. use OCP\Mail\IMailer;

  35. use OCP\Security\VerificationToken\InvalidTokenException;

  36. use OCP\Security\VerificationToken\IVerificationToken;

  37. use Psr\Log\LoggerInterface;

  38. use function array_filter;

  39. use function count;

  40. use function reset;

  41. 

  42. /**

  43.  * Class LostController

  44.  *

  45.  * Successfully changing a password will emit the post_passwordReset hook.

  46.  *

  47.  * @package OC\Core\Controller

  48.  */

  49. #[OpenAPI(scope: OpenAPI::SCOPE_IGNORE)]

  50. class LostController extends Controller {

  51. 	protected string $from;

  52. 

  53. 	public function __construct(

  54. 		string $appName,

  55. 		IRequest $request,

  56. 		private IURLGenerator $urlGenerator,

  57. 		private IUserManager $userManager,

  58. 		private Defaults $defaults,

  59. 		private IL10N $l10n,

  60. 		private IConfig $config,

  61. 		string $defaultMailAddress,

  62. 		private IManager $encryptionManager,

  63. 		private IMailer $mailer,

  64. 		private LoggerInterface $logger,

  65. 		private Manager $twoFactorManager,

  66. 		private IInitialState $initialState,

  67. 		private IVerificationToken $verificationToken,

  68. 		private IEventDispatcher $eventDispatcher,

  69. 		private Limiter $limiter,

  70. 	) {

  71. 		parent::__construct($appName, $request);

  72. 		$this->from = $defaultMailAddress;

  73. 	}

  74. 

  75. 	/**

  76. 	 * Someone wants to reset their password:

  77. 	 *

  78. 	 * @PublicPage

  79. 	 * @NoCSRFRequired

  80. 	 * @BruteForceProtection(action=passwordResetEmail)

  81. 	 * @AnonRateThrottle(limit=10, period=300)

  82. 	 */

  83. 	#[FrontpageRoute(verb: 'GET', url: '/lostpassword/reset/form/{token}/{userId}')]

  84. 	public function resetform(string $token, string $userId): TemplateResponse {

  85. 		try {

  86. 			$this->checkPasswordResetToken($token, $userId);

  87. 		} catch (Exception $e) {

  88. 			if ($this->config->getSystemValue('lost_password_link', '') !== 'disabled'

  89. 				|| ($e instanceof InvalidTokenException

  90. 					&& !in_array($e->getCode(), [InvalidTokenException::TOKEN_NOT_FOUND, InvalidTokenException::USER_UNKNOWN]))

  91. 			) {

  92. 				$response = new TemplateResponse(

  93. 					'core', 'error', [

  94. 						"errors" => [["error" => $e->getMessage()]]

  95. 					],

  96. 					TemplateResponse::RENDER_AS_GUEST

  97. 				);

  98. 				$response->throttle();

  99. 				return $response;

  100. 			}

  101. 			return new TemplateResponse('core', 'error', [

  102. 				'errors' => [['error' => $this->l10n->t('Password reset is disabled')]]

  103. 			],

  104. 				TemplateResponse::RENDER_AS_GUEST

  105. 			);

  106. 		}

  107. 		$this->initialState->provideInitialState('resetPasswordUser', $userId);

  108. 		$this->initialState->provideInitialState('resetPasswordTarget',

  109. 			$this->urlGenerator->linkToRouteAbsolute('core.lost.setPassword', ['userId' => $userId, 'token' => $token])

  110. 		);

  111. 

  112. 		return new TemplateResponse(

  113. 			'core',

  114. 			'login',

  115. 			[],

  116. 			'guest'

  117. 		);

  118. 	}

  119. 

  120. 	/**

  121. 	 * @throws Exception

  122. 	 */

  123. 	protected function checkPasswordResetToken(string $token, string $userId): void {

  124. 		try {

  125. 			$user = $this->userManager->get($userId);

  126. 			$this->verificationToken->check($token, $user, 'lostpassword', $user ? $user->getEMailAddress() : '', true);

  127. 		} catch (InvalidTokenException $e) {

  128. 			$error = $e->getCode() === InvalidTokenException::TOKEN_EXPIRED

  129. 				? $this->l10n->t('Could not reset password because the token is expired')

  130. 				: $this->l10n->t('Could not reset password because the token is invalid');

  131. 			throw new Exception($error, (int)$e->getCode(), $e);

  132. 		}

  133. 	}

  134. 

  135. 	private function error(string $message, array $additional = []): array {

  136. 		return array_merge(['status' => 'error', 'msg' => $message], $additional);

  137. 	}

  138. 

  139. 	private function success(array $data = []): array {

  140. 		return array_merge($data, ['status' => 'success']);

  141. 	}

  142. 

  143. 	/**

  144. 	 * @PublicPage

  145. 	 * @BruteForceProtection(action=passwordResetEmail)

  146. 	 * @AnonRateThrottle(limit=10, period=300)

  147. 	 */

  148. 	#[FrontpageRoute(verb: 'POST', url: '/lostpassword/email')]

  149. 	public function email(string $user): JSONResponse {

  150. 		if ($this->config->getSystemValue('lost_password_link', '') !== '') {

  151. 			return new JSONResponse($this->error($this->l10n->t('Password reset is disabled')));

  152. 		}

  153. 

  154. 		$user = trim($user);

  155. 

  156. 		if (strlen($user) > 255) {

  157. 			return new JSONResponse($this->error($this->l10n->t('Unsupported email length (>255)')));

  158. 		}

  159. 

  160. 		\OCP\Util::emitHook(

  161. 			'\OCA\Files_Sharing\API\Server2Server',

  162. 			'preLoginNameUsedAsUserName',

  163. 			['uid' => &$user]

  164. 		);

  165. 

  166. 		// FIXME: use HTTP error codes

  167. 		try {

  168. 			$this->sendEmail($user);

  169. 		} catch (ResetPasswordException $e) {

  170. 			// Ignore the error since we do not want to leak this info

  171. 			$this->logger->warning('Could not send password reset email: ' . $e->getMessage());

  172. 		} catch (Exception $e) {

  173. 			$this->logger->error($e->getMessage(), ['exception' => $e]);

  174. 		}

  175. 

  176. 		$response = new JSONResponse($this->success());

  177. 		$response->throttle();

  178. 		return $response;

  179. 	}

  180. 

  181. 	/**

  182. 	 * @PublicPage

  183. 	 * @BruteForceProtection(action=passwordResetEmail)

  184. 	 * @AnonRateThrottle(limit=10, period=300)

  185. 	 */

  186. 	#[FrontpageRoute(verb: 'POST', url: '/lostpassword/set/{token}/{userId}')]

  187. 	public function setPassword(string $token, string $userId, string $password, bool $proceed): JSONResponse {

  188. 		if ($this->encryptionManager->isEnabled() && !$proceed) {

  189. 			$encryptionModules = $this->encryptionManager->getEncryptionModules();

  190. 			foreach ($encryptionModules as $module) {

  191. 				/** @var IEncryptionModule $instance */

  192. 				$instance = call_user_func($module['callback']);

  193. 				// this way we can find out whether per-user keys are used or a system wide encryption key

  194. 				if ($instance->needDetailedAccessList()) {

  195. 					return new JSONResponse($this->error('', ['encryption' => true]));

  196. 				}

  197. 			}

  198. 		}

  199. 

  200. 		try {

  201. 			$this->checkPasswordResetToken($token, $userId);

  202. 			$user = $this->userManager->get($userId);

  203. 

  204. 			$this->eventDispatcher->dispatchTyped(new BeforePasswordResetEvent($user, $password));

  205. 			\OC_Hook::emit('\OC\Core\LostPassword\Controller\LostController', 'pre_passwordReset', ['uid' => $userId, 'password' => $password]);

  206. 

  207. 			if (strlen($password) > IUserManager::MAX_PASSWORD_LENGTH) {

  208. 				throw new HintException('Password too long', $this->l10n->t('Password is too long. Maximum allowed length is 469 characters.'));

  209. 			}

  210. 

  211. 			if (!$user->setPassword($password)) {

  212. 				throw new Exception();

  213. 			}

  214. 

  215. 			$this->eventDispatcher->dispatchTyped(new PasswordResetEvent($user, $password));

  216. 			\OC_Hook::emit('\OC\Core\LostPassword\Controller\LostController', 'post_passwordReset', ['uid' => $userId, 'password' => $password]);

  217. 

  218. 			$this->twoFactorManager->clearTwoFactorPending($userId);

  219. 

  220. 			$this->config->deleteUserValue($userId, 'core', 'lostpassword');

  221. 			@\OC::$server->getUserSession()->unsetMagicInCookie();

  222. 		} catch (HintException $e) {

  223. 			$response = new JSONResponse($this->error($e->getHint()));

  224. 			$response->throttle();

  225. 			return $response;

  226. 		} catch (Exception $e) {

  227. 			$response = new JSONResponse($this->error($e->getMessage()));

  228. 			$response->throttle();

  229. 			return $response;

  230. 		}

  231. 

  232. 		return new JSONResponse($this->success(['user' => $userId]));

  233. 	}

  234. 

  235. 	/**

  236. 	 * @throws ResetPasswordException

  237. 	 * @throws \OCP\PreConditionNotMetException

  238. 	 */

  239. 	protected function sendEmail(string $input): void {

  240. 		$user = $this->findUserByIdOrMail($input);

  241. 		$email = $user->getEMailAddress();

  242. 

  243. 		if (empty($email)) {

  244. 			throw new ResetPasswordException('Could not send reset e-mail since there is no email for username ' . $input);

  245. 		}

  246. 

  247. 		try {

  248. 			$this->limiter->registerUserRequest('lostpasswordemail', 5, 1800, $user);

  249. 		} catch (RateLimitExceededException $e) {

  250. 			throw new ResetPasswordException('Could not send reset e-mail, 5 of them were already sent in the last 30 minutes', 0, $e);

  251. 		}

  252. 

  253. 		// Generate the token. It is stored encrypted in the database with the

  254. 		// secret being the users' email address appended with the system secret.

  255. 		// This makes the token automatically invalidate once the user changes

  256. 		// their email address.

  257. 		$token = $this->verificationToken->create($user, 'lostpassword', $email);

  258. 

  259. 		$link = $this->urlGenerator->linkToRouteAbsolute('core.lost.resetform', ['userId' => $user->getUID(), 'token' => $token]);

  260. 

  261. 		$emailTemplate = $this->mailer->createEMailTemplate('core.ResetPassword', [

  262. 			'link' => $link,

  263. 		]);

  264. 

  265. 		$emailTemplate->setSubject($this->l10n->t('%s password reset', [$this->defaults->getName()]));

  266. 		$emailTemplate->addHeader();

  267. 		$emailTemplate->addHeading($this->l10n->t('Password reset'));

  268. 

  269. 		$emailTemplate->addBodyText(

  270. 			htmlspecialchars($this->l10n->t('Click the following button to reset your password. If you have not requested the password reset, then ignore this email.')),

  271. 			$this->l10n->t('Click the following link to reset your password. If you have not requested the password reset, then ignore this email.')

  272. 		);

  273. 

  274. 		$emailTemplate->addBodyButton(

  275. 			htmlspecialchars($this->l10n->t('Reset your password')),

  276. 			$link,

  277. 			false

  278. 		);

  279. 		$emailTemplate->addFooter();

  280. 

  281. 		try {

  282. 			$message = $this->mailer->createMessage();

  283. 			$message->setTo([$email => $user->getDisplayName()]);

  284. 			$message->setFrom([$this->from => $this->defaults->getName()]);

  285. 			$message->useTemplate($emailTemplate);

  286. 			$this->mailer->send($message);

  287. 		} catch (Exception $e) {

  288. 			// Log the exception and continue

  289. 			$this->logger->error($e->getMessage(), ['app' => 'core', 'exception' => $e]);

  290. 		}

  291. 	}

  292. 

  293. 	/**

  294. 	 * @throws ResetPasswordException

  295. 	 */

  296. 	protected function findUserByIdOrMail(string $input): IUser {

  297. 		$user = $this->userManager->get($input);

  298. 		if ($user instanceof IUser) {

  299. 			if (!$user->isEnabled()) {

  300. 				throw new ResetPasswordException('Account ' . $user->getUID() . ' is disabled');

  301. 			}

  302. 

  303. 			return $user;

  304. 		}

  305. 

  306. 		$users = array_filter($this->userManager->getByEmail($input), function (IUser $user) {

  307. 			return $user->isEnabled();

  308. 		});

  309. 

  310. 		if (count($users) === 1) {

  311. 			return reset($users);

  312. 		}

  313. 

  314. 		throw new ResetPasswordException('Could not find user ' . $input);

  315. 	}

  316. }