mirrors
/
nextcloud
mirror of https://github.com/nextcloud/server.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 984 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
51604 Commits
370 Branches
Tree: 5bf3d1bb38
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '5bf3d1bb38'
${ noResults }
nextcloud/apps/admin_audit/lib/AppInfo/Application.php

Application.php 8.4KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262 
  1. <?php

  2. 

  3. declare(strict_types=1);

  4. 

  5. /**

  6.  * @copyright Copyright (c) 2017 Joas Schilling <coding@schilljs.com>

  7.  *

  8.  * @author Arthur Schiwon <blizzz@arthur-schiwon.de>

  9.  * @author Bjoern Schiessle <bjoern@schiessle.org>

  10.  * @author Joas Schilling <coding@schilljs.com>

  11.  * @author Morris Jobke <hey@morrisjobke.de>

  12.  * @author Roeland Jago Douma <roeland@famdouma.nl>

  13.  *

  14.  * @license GNU AGPL version 3 or any later version

  15.  *

  16.  * This program is free software: you can redistribute it and/or modify

  17.  * it under the terms of the GNU Affero General Public License as

  18.  * published by the Free Software Foundation, either version 3 of the

  19.  * License, or (at your option) any later version.

  20.  *

  21.  * This program is distributed in the hope that it will be useful,

  22.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  23.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  24.  * GNU Affero General Public License for more details.

  25.  *

  26.  * You should have received a copy of the GNU Affero General Public License

  27.  * along with this program. If not, see <http://www.gnu.org/licenses/>.

  28.  *

  29.  */

  30. 

  31. namespace OCA\AdminAudit\AppInfo;

  32. 

  33. use OC\Files\Filesystem;

  34. use OC\Files\Node\File;

  35. use OC\Group\Manager;

  36. use OC\User\Session;

  37. use OCA\AdminAudit\Actions\AppManagement;

  38. use OCA\AdminAudit\Actions\Auth;

  39. use OCA\AdminAudit\Actions\Console;

  40. use OCA\AdminAudit\Actions\Files;

  41. use OCA\AdminAudit\Actions\GroupManagement;

  42. use OCA\AdminAudit\Actions\Security;

  43. use OCA\AdminAudit\Actions\Sharing;

  44. use OCA\AdminAudit\Actions\Trashbin;

  45. use OCA\AdminAudit\Actions\UserManagement;

  46. use OCA\AdminAudit\Actions\Versions;

  47. use OCP\App\ManagerEvent;

  48. use OCP\AppFramework\App;

  49. use OCP\Authentication\TwoFactorAuth\IProvider;

  50. use OCP\Console\ConsoleEvent;

  51. use OCP\IGroupManager;

  52. use OCP\ILogger;

  53. use OCP\IPreview;

  54. use OCP\IUserSession;

  55. use OCP\Share;

  56. use OCP\Util;

  57. use Symfony\Component\EventDispatcher\GenericEvent;

  58. 

  59. class Application extends App {

  60. 

  61. 	/** @var ILogger */

  62. 	protected $logger;

  63. 

  64. 	public function __construct() {

  65. 		parent::__construct('admin_audit');

  66. 		$this->initLogger();

  67. 	}

  68. 

  69. 	public function initLogger() {

  70. 		$c = $this->getContainer()->getServer();

  71. 		$config = $c->getConfig();

  72. 

  73. 		$default = $config->getSystemValue('datadirectory', \OC::$SERVERROOT . '/data') . '/audit.log';

  74. 		$logFile = $config->getAppValue('admin_audit', 'logfile', $default);

  75. 		if($logFile === null) {

  76. 			$this->logger = $c->getLogger();

  77. 			return;

  78. 		}

  79. 		$this->logger = $c->getLogFactory()->getCustomLogger($logFile);

  80. 

  81. 	}

  82. 

  83. 	public function register() {

  84. 		$this->registerHooks();

  85. 	}

  86. 

  87. 	/**

  88. 	 * Register hooks in order to log them

  89. 	 */

  90. 	protected function registerHooks() {

  91. 		$this->userManagementHooks();

  92. 		$this->groupHooks();

  93. 		$this->authHooks();

  94. 

  95. 		$this->consoleHooks();

  96. 		$this->appHooks();

  97. 

  98. 		$this->sharingHooks();

  99. 

  100. 		$this->fileHooks();

  101. 		$this->trashbinHooks();

  102. 		$this->versionsHooks();

  103. 

  104. 		$this->securityHooks();

  105. 	}

  106. 

  107. 	protected function userManagementHooks() {

  108. 		$userActions = new UserManagement($this->logger);

  109. 

  110. 		Util::connectHook('OC_User', 'post_createUser',	$userActions, 'create');

  111. 		Util::connectHook('OC_User', 'post_deleteUser',	$userActions, 'delete');

  112. 		Util::connectHook('OC_User', 'changeUser',	$userActions, 'change');

  113. 

  114. 		/** @var IUserSession|Session $userSession */

  115. 		$userSession = $this->getContainer()->getServer()->getUserSession();

  116. 		$userSession->listen('\OC\User', 'postSetPassword', [$userActions, 'setPassword']);

  117. 		$userSession->listen('\OC\User', 'assignedUserId', [$userActions, 'assign']);

  118. 		$userSession->listen('\OC\User', 'postUnassignedUserId', [$userActions, 'unassign']);

  119. 	}

  120. 

  121. 	protected function groupHooks()  {

  122. 		$groupActions = new GroupManagement($this->logger);

  123. 

  124. 		/** @var IGroupManager|Manager $groupManager */

  125. 		$groupManager = $this->getContainer()->getServer()->getGroupManager();

  126. 		$groupManager->listen('\OC\Group', 'postRemoveUser',  [$groupActions, 'removeUser']);

  127. 		$groupManager->listen('\OC\Group', 'postAddUser',  [$groupActions, 'addUser']);

  128. 		$groupManager->listen('\OC\Group', 'postDelete',  [$groupActions, 'deleteGroup']);

  129. 		$groupManager->listen('\OC\Group', 'postCreate',  [$groupActions, 'createGroup']);

  130. 	}

  131. 

  132. 	protected function sharingHooks() {

  133. 		$shareActions = new Sharing($this->logger);

  134. 

  135. 		Util::connectHook(Share::class, 'post_shared', $shareActions, 'shared');

  136. 		Util::connectHook(Share::class, 'post_unshare', $shareActions, 'unshare');

  137. 		Util::connectHook(Share::class, 'post_update_permissions', $shareActions, 'updatePermissions');

  138. 		Util::connectHook(Share::class, 'post_update_password', $shareActions, 'updatePassword');

  139. 		Util::connectHook(Share::class, 'post_set_expiration_date', $shareActions, 'updateExpirationDate');

  140. 		Util::connectHook(Share::class, 'share_link_access', $shareActions, 'shareAccessed');

  141. 	}

  142. 

  143. 	protected function authHooks() {

  144. 		$authActions = new Auth($this->logger);

  145. 

  146. 		Util::connectHook('OC_User', 'pre_login', $authActions, 'loginAttempt');

  147. 		Util::connectHook('OC_User', 'post_login', $authActions, 'loginSuccessful');

  148. 		Util::connectHook('OC_User', 'logout', $authActions, 'logout');

  149. 	}

  150. 

  151. 	protected function appHooks() {

  152. 

  153. 		$eventDispatcher = $this->getContainer()->getServer()->getEventDispatcher();

  154. 		$eventDispatcher->addListener(ManagerEvent::EVENT_APP_ENABLE, function(ManagerEvent $event) {

  155. 			$appActions = new AppManagement($this->logger);

  156. 			$appActions->enableApp($event->getAppID());

  157. 		});

  158. 		$eventDispatcher->addListener(ManagerEvent::EVENT_APP_ENABLE_FOR_GROUPS, function(ManagerEvent $event) {

  159. 			$appActions = new AppManagement($this->logger);

  160. 			$appActions->enableAppForGroups($event->getAppID(), $event->getGroups());

  161. 		});

  162. 		$eventDispatcher->addListener(ManagerEvent::EVENT_APP_DISABLE, function(ManagerEvent $event) {

  163. 			$appActions = new AppManagement($this->logger);

  164. 			$appActions->disableApp($event->getAppID());

  165. 		});

  166. 

  167. 	}

  168. 

  169. 	protected function consoleHooks() {

  170. 		$eventDispatcher = $this->getContainer()->getServer()->getEventDispatcher();

  171. 		$eventDispatcher->addListener(ConsoleEvent::EVENT_RUN, function(ConsoleEvent $event) {

  172. 			$appActions = new Console($this->logger);

  173. 			$appActions->runCommand($event->getArguments());

  174. 		});

  175. 	}

  176. 

  177. 	protected function fileHooks() {

  178. 		$fileActions = new Files($this->logger);

  179. 		$eventDispatcher = $this->getContainer()->getServer()->getEventDispatcher();

  180. 		$eventDispatcher->addListener(

  181. 			IPreview::EVENT,

  182. 			function(GenericEvent $event) use ($fileActions) {

  183. 				/** @var File $file */

  184. 				$file = $event->getSubject();

  185. 				$fileActions->preview([

  186. 					'path' => substr($file->getInternalPath(), 5),

  187. 					'width' => $event->getArguments()['width'],

  188. 					'height' => $event->getArguments()['height'],

  189. 					'crop' => $event->getArguments()['crop'],

  190. 					'mode'  => $event->getArguments()['mode']

  191. 				]);

  192. 			}

  193. 		);

  194. 

  195. 		Util::connectHook(

  196. 			Filesystem::CLASSNAME,

  197. 			Filesystem::signal_post_rename,

  198. 			$fileActions,

  199. 			'rename'

  200. 		);

  201. 		Util::connectHook(

  202. 			Filesystem::CLASSNAME,

  203. 			Filesystem::signal_post_create,

  204. 			$fileActions,

  205. 			'create'

  206. 		);

  207. 		Util::connectHook(

  208. 			Filesystem::CLASSNAME,

  209. 			Filesystem::signal_post_copy,

  210. 			$fileActions,

  211. 			'copy'

  212. 		);

  213. 		Util::connectHook(

  214. 			Filesystem::CLASSNAME,

  215. 			Filesystem::signal_post_write,

  216. 			$fileActions,

  217. 			'write'

  218. 		);

  219. 		Util::connectHook(

  220. 			Filesystem::CLASSNAME,

  221. 			Filesystem::signal_post_update,

  222. 			$fileActions,

  223. 			'update'

  224. 		);

  225. 		Util::connectHook(

  226. 			Filesystem::CLASSNAME,

  227. 			Filesystem::signal_read,

  228. 			$fileActions,

  229. 			'read'

  230. 		);

  231. 		Util::connectHook(

  232. 			Filesystem::CLASSNAME,

  233. 			Filesystem::signal_delete,

  234. 			$fileActions,

  235. 			'delete'

  236. 		);

  237. 	}

  238. 

  239. 	protected function versionsHooks() {

  240. 		$versionsActions = new Versions($this->logger);

  241. 		Util::connectHook('\OCP\Versions', 'rollback', $versionsActions, 'rollback');

  242. 		Util::connectHook('\OCP\Versions', 'delete',$versionsActions, 'delete');

  243. 	}

  244. 

  245. 	protected function trashbinHooks() {

  246. 		$trashActions = new Trashbin($this->logger);

  247. 		Util::connectHook('\OCP\Trashbin', 'preDelete', $trashActions, 'delete');

  248. 		Util::connectHook('\OCA\Files_Trashbin\Trashbin', 'post_restore', $trashActions, 'restore');

  249. 	}

  250. 

  251. 	protected function securityHooks() {

  252. 		$eventDispatcher = $this->getContainer()->getServer()->getEventDispatcher();

  253. 		$eventDispatcher->addListener(IProvider::EVENT_SUCCESS, function(GenericEvent $event) {

  254. 			$security = new Security($this->logger);

  255. 			$security->twofactorSuccess($event->getSubject(), $event->getArguments());

  256. 		});

  257. 		$eventDispatcher->addListener(IProvider::EVENT_FAILED, function(GenericEvent $event) {

  258. 			$security = new Security($this->logger);

  259. 			$security->twofactorFailed($event->getSubject(), $event->getArguments());

  260. 		});

  261. 	}

  262. }