mirrors
/
nextcloud
mirror of https://github.com/nextcloud/server.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 1008 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
52930 Commits
425 Branches
Tree: fa4162e86f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'fa4162e86f'
${ noResults }
nextcloud/apps/encryption/lib/Session.php

Session.php 4.6KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188 
  1. <?php

  2. /**

  3.  * @copyright Copyright (c) 2016, ownCloud, Inc.

  4.  *

  5.  * @author Bjoern Schiessle <bjoern@schiessle.org>

  6.  * @author Björn Schießle <bjoern@schiessle.org>

  7.  * @author Clark Tomlinson <fallen013@gmail.com>

  8.  * @author Lukas Reschke <lukas@statuscode.ch>

  9.  * @author Roeland Jago Douma <roeland@famdouma.nl>

  10.  *

  11.  * @license AGPL-3.0

  12.  *

  13.  * This code is free software: you can redistribute it and/or modify

  14.  * it under the terms of the GNU Affero General Public License, version 3,

  15.  * as published by the Free Software Foundation.

  16.  *

  17.  * This program is distributed in the hope that it will be useful,

  18.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  19.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

  20.  * GNU Affero General Public License for more details.

  21.  *

  22.  * You should have received a copy of the GNU Affero General Public License, version 3,

  23.  * along with this program. If not, see <http://www.gnu.org/licenses/>

  24.  *

  25.  */

  26. 

  27. namespace OCA\Encryption;

  28. 

  29. use OCA\Encryption\Exceptions\PrivateKeyMissingException;

  30. use OCP\ISession;

  31. 

  32. class Session {

  33. 

  34. 	/** @var ISession */

  35. 	protected $session;

  36. 

  37. 	const NOT_INITIALIZED = '0';

  38. 	const INIT_EXECUTED = '1';

  39. 	const INIT_SUCCESSFUL = '2';

  40. 

  41. 	/**

  42. 	 * @param ISession $session

  43. 	 */

  44. 	public function __construct(ISession $session) {

  45. 		$this->session = $session;

  46. 	}

  47. 

  48. 	/**

  49. 	 * Sets status of encryption app

  50. 	 *

  51. 	 * @param string $status INIT_SUCCESSFUL, INIT_EXECUTED, NOT_INITIALIZED

  52. 	 */

  53. 	public function setStatus($status) {

  54. 		$this->session->set('encryptionInitialized', $status);

  55. 	}

  56. 

  57. 	/**

  58. 	 * Gets status if we already tried to initialize the encryption app

  59. 	 *

  60. 	 * @return string init status INIT_SUCCESSFUL, INIT_EXECUTED, NOT_INITIALIZED

  61. 	 */

  62. 	public function getStatus() {

  63. 		$status = $this->session->get('encryptionInitialized');

  64. 		if (is_null($status)) {

  65. 			$status = self::NOT_INITIALIZED;

  66. 		}

  67. 

  68. 		return $status;

  69. 	}

  70. 

  71. 	/**

  72. 	 * check if encryption was initialized successfully

  73. 	 *

  74. 	 * @return bool

  75. 	 */

  76. 	public function isReady() {

  77. 		$status = $this->getStatus();

  78. 		return $status === self::INIT_SUCCESSFUL;

  79. 	}

  80. 

  81. 	/**

  82. 	 * Gets user or public share private key from session

  83. 	 *

  84. 	 * @return string $privateKey The user's plaintext private key

  85. 	 * @throws Exceptions\PrivateKeyMissingException

  86. 	 */

  87. 	public function getPrivateKey() {

  88. 		$key = $this->session->get('privateKey');

  89. 		if (is_null($key)) {

  90. 			throw new Exceptions\PrivateKeyMissingException('please try to log-out and log-in again', 0);

  91. 		}

  92. 		return $key;

  93. 	}

  94. 

  95. 	/**

  96. 	 * check if private key is set

  97. 	 *

  98. 	 * @return boolean

  99. 	 */

  100. 	public function isPrivateKeySet() {

  101. 		$key = $this->session->get('privateKey');

  102. 		if (is_null($key)) {

  103. 			return false;

  104. 		}

  105. 

  106. 		return true;

  107. 	}

  108. 

  109. 	/**

  110. 	 * Sets user private key to session

  111. 	 *

  112. 	 * @param string $key users private key

  113. 	 *

  114. 	 * @note this should only be set on login

  115. 	 */

  116. 	public function setPrivateKey($key) {

  117. 		$this->session->set('privateKey', $key);

  118. 	}

  119. 

  120. 	/**

  121. 	 * store data needed for the decrypt all operation in the session

  122. 	 *

  123. 	 * @param string $user

  124. 	 * @param string $key

  125. 	 */

  126. 	public function prepareDecryptAll($user, $key) {

  127. 		$this->session->set('decryptAll', true);

  128. 		$this->session->set('decryptAllKey', $key);

  129. 		$this->session->set('decryptAllUid', $user);

  130. 	}

  131. 

  132. 	/**

  133. 	 * check if we are in decrypt all mode

  134. 	 *

  135. 	 * @return bool

  136. 	 */

  137. 	public function decryptAllModeActivated() {

  138. 		$decryptAll = $this->session->get('decryptAll');

  139. 		return ($decryptAll === true);

  140. 	}

  141. 

  142. 	/**

  143. 	 * get uid used for decrypt all operation

  144. 	 *

  145. 	 * @return string

  146. 	 * @throws \Exception

  147. 	 */

  148. 	public function getDecryptAllUid() {

  149. 		$uid = $this->session->get('decryptAllUid');

  150. 		if (is_null($uid) && $this->decryptAllModeActivated()) {

  151. 			throw new \Exception('No uid found while in decrypt all mode');

  152. 		} elseif (is_null($uid)) {

  153. 			throw new \Exception('Please activate decrypt all mode first');

  154. 		}

  155. 

  156. 		return $uid;

  157. 	}

  158. 

  159. 	/**

  160. 	 * get private key for decrypt all operation

  161. 	 *

  162. 	 * @return string

  163. 	 * @throws PrivateKeyMissingException

  164. 	 */

  165. 	public function getDecryptAllKey() {

  166. 		$privateKey = $this->session->get('decryptAllKey');

  167. 		if (is_null($privateKey) && $this->decryptAllModeActivated()) {

  168. 			throw new PrivateKeyMissingException('No private key found while in decrypt all mode');

  169. 		} elseif (is_null($privateKey)) {

  170. 			throw new PrivateKeyMissingException('Please activate decrypt all mode first');

  171. 		}

  172. 

  173. 		return $privateKey;

  174. 	}

  175. 

  176. 	/**

  177. 	 * remove keys from session

  178. 	 */

  179. 	public function clear() {

  180. 		$this->session->remove('publicSharePrivateKey');

  181. 		$this->session->remove('privateKey');

  182. 		$this->session->remove('encryptionInitialized');

  183. 		$this->session->remove('decryptAll');

  184. 		$this->session->remove('decryptAllKey');

  185. 		$this->session->remove('decryptAllUid');

  186. 	}

  187. 

  188. }