mirrors
/
nextcloud
mirror of https://github.com/nextcloud/server.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 1010 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
12997 Commits
414 Branches
Tree: 9a8908b643
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '9a8908b643'
${ noResults }
nextcloud/lib/user.php

user.php 15KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542 
  1. <?php

  2. /**

  3.  * ownCloud

  4.  *

  5.  * @author Frank Karlitschek

  6.  * @copyright 2012 Frank Karlitschek frank@owncloud.org

  7.  *

  8.  * This library is free software; you can redistribute it and/or

  9.  * modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE

  10.  * License as published by the Free Software Foundation; either

  11.  * version 3 of the License, or any later version.

  12.  *

  13.  * This library is distributed in the hope that it will be useful,

  14.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  15.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  16.  * GNU AFFERO GENERAL PUBLIC LICENSE for more details.

  17.  *

  18.  * You should have received a copy of the GNU Affero General Public

  19.  * License along with this library.  If not, see <http://www.gnu.org/licenses/>.

  20.  *

  21.  */

  22. 

  23. /**

  24.  * This class provides wrapper methods for user management. Multiple backends are

  25.  * supported. User management operations are delegated to the configured backend for

  26.  * execution.

  27.  *

  28.  * Hooks provided:

  29.  *   pre_createUser(&run, uid, password)

  30.  *   post_createUser(uid, password)

  31.  *   pre_deleteUser(&run, uid)

  32.  *   post_deleteUser(uid)

  33.  *   pre_setPassword(&run, uid, password, recoveryPassword)

  34.  *   post_setPassword(uid, password, recoveryPassword)

  35.  *   pre_login(&run, uid, password)

  36.  *   post_login(uid)

  37.  *   logout()

  38.  */

  39. class OC_User {

  40. 	public static $userSession = null;

  41. 

  42. 	public static function getUserSession() {

  43. 		if (!self::$userSession) {

  44. 			$manager = new \OC\User\Manager();

  45. 			self::$userSession = new \OC\User\Session($manager, \OC::$session);

  46. 			self::$userSession->listen('\OC\User', 'preCreateUser', function ($uid, $password) {

  47. 				\OC_Hook::emit('OC_User', 'pre_createUser', array('run' => true, 'uid' => $uid, 'password' => $password));

  48. 			});

  49. 			self::$userSession->listen('\OC\User', 'postCreateUser', function ($user, $password) {

  50. 				/** @var $user \OC\User\User */

  51. 				\OC_Hook::emit('OC_User', 'post_createUser', array('uid' => $user->getUID(), 'password' => $password));

  52. 			});

  53. 			self::$userSession->listen('\OC\User', 'preDelete', function ($user) {

  54. 				/** @var $user \OC\User\User */

  55. 				\OC_Hook::emit('OC_User', 'pre_deleteUser', array('run' => true, 'uid' => $user->getUID()));

  56. 			});

  57. 			self::$userSession->listen('\OC\User', 'postDelete', function ($user) {

  58. 				/** @var $user \OC\User\User */

  59. 				\OC_Hook::emit('OC_User', 'post_deleteUser', array('uid' => $user->getUID()));

  60. 			});

  61. 			self::$userSession->listen('\OC\User', 'preSetPassword', function ($user, $password, $recoveryPassword) {

  62. 				/** @var $user \OC\User\User */

  63. 				OC_Hook::emit('OC_User', 'pre_setPassword', array('run' => true, 'uid' => $user->getUID(), 'password' => $password, 'recoveryPassword' => $recoveryPassword));

  64. 			});

  65. 			self::$userSession->listen('\OC\User', 'postSetPassword', function ($user, $password, $recoveryPassword) {

  66. 				/** @var $user \OC\User\User */

  67. 				OC_Hook::emit('OC_User', 'post_setPassword', array('run' => true, 'uid' => $user->getUID(), 'password' => $password, 'recoveryPassword' => $recoveryPassword));

  68. 			});

  69. 			self::$userSession->listen('\OC\User', 'preLogin', function ($uid, $password) {

  70. 				\OC_Hook::emit('OC_User', 'pre_login', array('run' => true, 'uid' => $uid, 'password' => $password));

  71. 			});

  72. 			self::$userSession->listen('\OC\User', 'postLogin', function ($user, $password) {

  73. 				/** @var $user \OC\User\User */

  74. 				\OC_Hook::emit('OC_User', 'post_login', array('run' => true, 'uid' => $user->getUID(), 'password' => $password));

  75. 			});

  76. 			self::$userSession->listen('\OC\User', 'logout', function () {

  77. 				\OC_Hook::emit('OC_User', 'logout', array());

  78. 			});

  79. 		}

  80. 		return self::$userSession;

  81. 	}

  82. 

  83. 	/**

  84. 	 * @return \OC\User\Manager

  85. 	 */

  86. 	public static function getManager() {

  87. 		return self::getUserSession()->getManager();

  88. 	}

  89. 

  90. 	private static $_backends = array();

  91. 

  92. 	private static $_usedBackends = array();

  93. 

  94. 	private static $_setupedBackends = array();

  95. 

  96. 	/**

  97. 	 * @brief registers backend

  98. 	 * @param string $backend name of the backend

  99. 	 * @deprecated Add classes by calling useBackend with a class instance instead

  100. 	 * @return bool

  101. 	 *

  102. 	 * Makes a list of backends that can be used by other modules

  103. 	 */

  104. 	public static function registerBackend($backend) {

  105. 		self::$_backends[] = $backend;

  106. 		return true;

  107. 	}

  108. 

  109. 	/**

  110. 	 * @brief gets available backends

  111. 	 * @deprecated

  112. 	 * @returns array of backends

  113. 	 *

  114. 	 * Returns the names of all backends.

  115. 	 */

  116. 	public static function getBackends() {

  117. 		return self::$_backends;

  118. 	}

  119. 

  120. 	/**

  121. 	 * @brief gets used backends

  122. 	 * @deprecated

  123. 	 * @returns array of backends

  124. 	 *

  125. 	 * Returns the names of all used backends.

  126. 	 */

  127. 	public static function getUsedBackends() {

  128. 		return array_keys(self::$_usedBackends);

  129. 	}

  130. 

  131. 	/**

  132. 	 * @brief Adds the backend to the list of used backends

  133. 	 * @param string | OC_User_Backend $backend default: database The backend to use for user management

  134. 	 * @return bool

  135. 	 *

  136. 	 * Set the User Authentication Module

  137. 	 */

  138. 	public static function useBackend($backend = 'database') {

  139. 		if ($backend instanceof OC_User_Interface) {

  140. 			self::$_usedBackends[get_class($backend)] = $backend;

  141. 			self::getManager()->registerBackend($backend);

  142. 		} else {

  143. 			// You'll never know what happens

  144. 			if (null === $backend OR !is_string($backend)) {

  145. 				$backend = 'database';

  146. 			}

  147. 

  148. 			// Load backend

  149. 			switch ($backend) {

  150. 				case 'database':

  151. 				case 'mysql':

  152. 				case 'sqlite':

  153. 					OC_Log::write('core', 'Adding user backend ' . $backend . '.', OC_Log::DEBUG);

  154. 					self::$_usedBackends[$backend] = new OC_User_Database();

  155. 					self::getManager()->registerBackend(self::$_usedBackends[$backend]);

  156. 					break;

  157. 				default:

  158. 					OC_Log::write('core', 'Adding default user backend ' . $backend . '.', OC_Log::DEBUG);

  159. 					$className = 'OC_USER_' . strToUpper($backend);

  160. 					self::$_usedBackends[$backend] = new $className();

  161. 					self::getManager()->registerBackend(self::$_usedBackends[$backend]);

  162. 					break;

  163. 			}

  164. 		}

  165. 		return true;

  166. 	}

  167. 

  168. 	/**

  169. 	 * remove all used backends

  170. 	 */

  171. 	public static function clearBackends() {

  172. 		self::$_usedBackends = array();

  173. 		self::getManager()->clearBackends();

  174. 	}

  175. 

  176. 	/**

  177. 	 * setup the configured backends in config.php

  178. 	 */

  179. 	public static function setupBackends() {

  180. 		$backends = OC_Config::getValue('user_backends', array());

  181. 		foreach ($backends as $i => $config) {

  182. 			$class = $config['class'];

  183. 			$arguments = $config['arguments'];

  184. 			if (class_exists($class)) {

  185. 				if (array_search($i, self::$_setupedBackends) === false) {

  186. 					// make a reflection object

  187. 					$reflectionObj = new ReflectionClass($class);

  188. 

  189. 					// use Reflection to create a new instance, using the $args

  190. 					$backend = $reflectionObj->newInstanceArgs($arguments);

  191. 					self::useBackend($backend);

  192. 					self::$_setupedBackends[] = $i;

  193. 				} else {

  194. 					OC_Log::write('core', 'User backend ' . $class . ' already initialized.', OC_Log::DEBUG);

  195. 				}

  196. 			} else {

  197. 				OC_Log::write('core', 'User backend ' . $class . ' not found.', OC_Log::ERROR);

  198. 			}

  199. 		}

  200. 	}

  201. 

  202. 	/**

  203. 	 * @brief Create a new user

  204. 	 * @param string $uid The username of the user to create

  205. 	 * @param string $password The password of the new user

  206. 	 * @throws Exception

  207. 	 * @return bool true/false

  208. 	 *

  209. 	 * Creates a new user. Basic checking of username is done in OC_User

  210. 	 * itself, not in its subclasses.

  211. 	 *

  212. 	 * Allowed characters in the username are: "a-z", "A-Z", "0-9" and "_.@-"

  213. 	 */

  214. 	public static function createUser($uid, $password) {

  215. 		return self::getManager()->createUser($uid, $password);

  216. 	}

  217. 

  218. 	/**

  219. 	 * @brief delete a user

  220. 	 * @param string $uid The username of the user to delete

  221. 	 * @return bool

  222. 	 *

  223. 	 * Deletes a user

  224. 	 */

  225. 	public static function deleteUser($uid) {

  226. 		$user = self::getManager()->get($uid);

  227. 		if ($user) {

  228. 			$user->delete();

  229. 

  230. 			// We have to delete the user from all groups

  231. 			foreach (OC_Group::getUserGroups($uid) as $i) {

  232. 				OC_Group::removeFromGroup($uid, $i);

  233. 			}

  234. 			// Delete the user's keys in preferences

  235. 			OC_Preferences::deleteUser($uid);

  236. 

  237. 			// Delete user files in /data/

  238. 			OC_Helper::rmdirr(OC_Config::getValue('datadirectory', OC::$SERVERROOT . '/data') . '/' . $uid . '/');

  239. 		}

  240. 	}

  241. 

  242. 	/**

  243. 	 * @brief Try to login a user

  244. 	 * @param $uid The username of the user to log in

  245. 	 * @param $password The password of the user

  246. 	 * @return bool

  247. 	 *

  248. 	 * Log in a user and regenerate a new session - if the password is ok

  249. 	 */

  250. 	public static function login($uid, $password) {

  251. 		return self::getUserSession()->login($uid, $password);

  252. 	}

  253. 

  254. 	/**

  255. 	 * @brief Sets user id for session and triggers emit

  256. 	 */

  257. 	public static function setUserId($uid) {

  258. 		OC::$session->set('user_id', $uid);

  259. 	}

  260. 

  261. 	/**

  262. 	 * @brief Sets user display name for session

  263. 	 */

  264. 	public static function setDisplayName($uid, $displayName = null) {

  265. 		if (is_null($displayName)) {

  266. 			$displayName = $uid;

  267. 		}

  268. 		$user = self::getManager()->get($uid);

  269. 		if ($user) {

  270. 			return $user->setDisplayName($displayName);

  271. 		} else {

  272. 			return false;

  273. 		}

  274. 	}

  275. 

  276. 	/**

  277. 	 * @brief Logs the current user out and kills all the session data

  278. 	 *

  279. 	 * Logout, destroys session

  280. 	 */

  281. 	public static function logout() {

  282. 		self::getUserSession()->logout();

  283. 	}

  284. 

  285. 	/**

  286. 	 * @brief Check if the user is logged in

  287. 	 * @returns bool

  288. 	 *

  289. 	 * Checks if the user is logged in

  290. 	 */

  291. 	public static function isLoggedIn() {

  292. 		if (\OC::$session->get('user_id')) {

  293. 			OC_App::loadApps(array('authentication'));

  294. 			self::setupBackends();

  295. 			return self::userExists(\OC::$session->get('user_id'));

  296. 		}

  297. 		return false;

  298. 	}

  299. 

  300. 	/**

  301. 	 * @brief Check if the user is an admin user

  302. 	 * @param string $uid uid of the admin

  303. 	 * @return bool

  304. 	 */

  305. 	public static function isAdminUser($uid) {

  306. 		if (OC_Group::inGroup($uid, 'admin')) {

  307. 			return true;

  308. 		}

  309. 		return false;

  310. 	}

  311. 

  312. 

  313. 	/**

  314. 	 * @brief get the user id of the user currently logged in.

  315. 	 * @return string uid or false

  316. 	 */

  317. 	public static function getUser() {

  318. 		$uid = OC::$session ? OC::$session->get('user_id') : null;

  319. 		if (!is_null($uid)) {

  320. 			return $uid;

  321. 		} else {

  322. 			return false;

  323. 		}

  324. 	}

  325. 

  326. 	/**

  327. 	 * @brief get the display name of the user currently logged in.

  328. 	 * @param string $uid

  329. 	 * @return string uid or false

  330. 	 */

  331. 	public static function getDisplayName($uid = null) {

  332. 		if ($uid) {

  333. 			$user = self::getManager()->get($uid);

  334. 			if ($user) {

  335. 				return $user->getDisplayName();

  336. 			} else {

  337. 				return $uid;

  338. 			}

  339. 		} else {

  340. 			$user = self::getUserSession()->getUser();

  341. 			if ($user) {

  342. 				return $user->getDisplayName();

  343. 			} else {

  344. 				return false;

  345. 			}

  346. 		}

  347. 	}

  348. 

  349. 	/**

  350. 	 * @brief Autogenerate a password

  351. 	 * @return string

  352. 	 *

  353. 	 * generates a password

  354. 	 */

  355. 	public static function generatePassword() {

  356. 		return OC_Util::generate_random_bytes(30);

  357. 	}

  358. 

  359. 	/**

  360. 	 * @brief Set password

  361. 	 * @param string $uid The username

  362. 	 * @param string $password The new password

  363. 	 * @param string $recoveryPassword for the encryption app to reset encryption keys

  364. 	 * @return bool

  365. 	 *

  366. 	 * Change the password of a user

  367. 	 */

  368. 	public static function setPassword($uid, $password, $recoveryPassword = null) {

  369. 		$user = self::getManager()->get($uid);

  370. 		if ($user) {

  371. 			return $user->setPassword($password, $recoveryPassword);

  372. 		} else {

  373. 			return false;

  374. 		}

  375. 	}

  376. 

  377. 	/**

  378. 	 * @brief Check whether user can change his password

  379. 	 * @param string $uid The username

  380. 	 * @return bool

  381. 	 *

  382. 	 * Check whether a specified user can change his password

  383. 	 */

  384. 	public static function canUserChangePassword($uid) {

  385. 		$user = self::getManager()->get($uid);

  386. 		if ($user) {

  387. 			return $user->canChangePassword();

  388. 		} else {

  389. 			return false;

  390. 		}

  391. 	}

  392. 

  393. 	/**

  394. 	 * @brief Check whether user can change his display name

  395. 	 * @param string $uid The username

  396. 	 * @return bool

  397. 	 *

  398. 	 * Check whether a specified user can change his display name

  399. 	 */

  400. 	public static function canUserChangeDisplayName($uid) {

  401. 		$user = self::getManager()->get($uid);

  402. 		if ($user) {

  403. 			return $user->canChangeDisplayName();

  404. 		} else {

  405. 			return false;

  406. 		}

  407. 	}

  408. 

  409. 	/**

  410. 	 * @brief Check if the password is correct

  411. 	 * @param string $uid The username

  412. 	 * @param string $password The password

  413. 	 * @return bool

  414. 	 *

  415. 	 * Check if the password is correct without logging in the user

  416. 	 * returns the user id or false

  417. 	 */

  418. 	public static function checkPassword($uid, $password) {

  419. 		$user = self::getManager()->get($uid);

  420. 		if ($user) {

  421. 			if ($user->checkPassword($password)) {

  422. 				return $user->getUID();

  423. 			} else {

  424. 				return false;

  425. 			}

  426. 		} else {

  427. 			return false;

  428. 		}

  429. 	}

  430. 

  431. 	/**

  432. 	 * @param string $uid The username

  433. 	 * @return string

  434. 	 *

  435. 	 * returns the path to the users home directory

  436. 	 */

  437. 	public static function getHome($uid) {

  438. 		$user = self::getManager()->get($uid);

  439. 		if ($user) {

  440. 			return $user->getHome();

  441. 		} else {

  442. 			return OC_Config::getValue('datadirectory', OC::$SERVERROOT . '/data') . '/' . $uid;

  443. 		}

  444. 	}

  445. 

  446. 	/**

  447. 	 * @brief Get a list of all users

  448. 	 * @returns array with all uids

  449. 	 *

  450. 	 * Get a list of all users.

  451. 	 */

  452. 	public static function getUsers($search = '', $limit = null, $offset = null) {

  453. 		$users = self::getManager()->search($search, $limit, $offset);

  454. 		$uids = array();

  455. 		foreach ($users as $user) {

  456. 			$uids[] = $user->getUID();

  457. 		}

  458. 		return $uids;

  459. 	}

  460. 

  461. 	/**

  462. 	 * @brief Get a list of all users display name

  463. 	 * @param string $search

  464. 	 * @param int $limit

  465. 	 * @param int $offset

  466. 	 * @return array associative array with all display names (value) and corresponding uids (key)

  467. 	 *

  468. 	 * Get a list of all display names and user ids.

  469. 	 */

  470. 	public static function getDisplayNames($search = '', $limit = null, $offset = null) {

  471. 		$displayNames = array();

  472. 		$users = self::getManager()->searchDisplayName($search, $limit, $offset);

  473. 		foreach ($users as $user) {

  474. 			$displayNames[$user->getUID()] = $user->getDisplayName();

  475. 		}

  476. 		return $displayNames;

  477. 	}

  478. 

  479. 	/**

  480. 	 * @brief check if a user exists

  481. 	 * @param string $uid the username

  482. 	 * @return boolean

  483. 	 */

  484. 	public static function userExists($uid) {

  485. 		return self::getManager()->userExists($uid);

  486. 	}

  487. 

  488. 	/**

  489. 	 * disables a user

  490. 	 *

  491. 	 * @param string $uid the user to disable

  492. 	 */

  493. 	public static function disableUser($uid) {

  494. 		$user = self::getManager()->get($uid);

  495. 		if ($user) {

  496. 			$user->setEnabled(false);

  497. 		}

  498. 	}

  499. 

  500. 	/**

  501. 	 * enable a user

  502. 	 *

  503. 	 * @param string $uid

  504. 	 */

  505. 	public static function enableUser($uid) {

  506. 		$user = self::getManager()->get($uid);

  507. 		if ($user) {

  508. 			$user->setEnabled(true);

  509. 		}

  510. 	}

  511. 

  512. 	/**

  513. 	 * checks if a user is enabled

  514. 	 *

  515. 	 * @param string $uid

  516. 	 * @return bool

  517. 	 */

  518. 	public static function isEnabled($uid) {

  519. 		$user = self::getManager()->get($uid);

  520. 		if ($user) {

  521. 			return $user->isEnabled();

  522. 		} else {

  523. 			return false;

  524. 		}

  525. 	}

  526. 

  527. 	/**

  528. 	 * @brief Set cookie value to use in next page load

  529. 	 * @param string $username username to be set

  530. 	 * @param string $token

  531. 	 */

  532. 	public static function setMagicInCookie($username, $token) {

  533. 		self::getUserSession()->setMagicInCookie($username, $token);

  534. 	}

  535. 

  536. 	/**

  537. 	 * @brief Remove cookie for "remember username"

  538. 	 */

  539. 	public static function unsetMagicInCookie() {

  540. 		self::getUserSession()->unsetMagicInCookie();

  541. 	}

  542. }