diff options
| author | Roeland Jago Douma <roeland@famdouma.nl> | 2019-04-03 16:00:46 +0200 |
|---|---|---|
| committer | Roeland Jago Douma <roeland@famdouma.nl> | 2019-05-20 20:50:27 +0200 |
| commit | f03eb7ec3c130d19323f7fb4bdb5ba398f1b3e2d (patch) | |
| tree | 5af334055b94b3b8119b3f76d974f136d26a0199 /core/Controller | |
| parent | ae7f89fd9f2bb87c0254f5fa087d0d9472612644 (diff) | |
| download | nextcloud-server-f03eb7ec3c130d19323f7fb4bdb5ba398f1b3e2d.tar.gz nextcloud-server-f03eb7ec3c130d19323f7fb4bdb5ba398f1b3e2d.zip | |
Remote wipe support
This allows a user to mark a token for remote wipe.
Clients that support this can then wipe the device properly.
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at>
Diffstat (limited to 'core/Controller')
| -rw-r--r-- | core/Controller/WipeController.php | 98 |
1 files changed, 98 insertions, 0 deletions
diff --git a/core/Controller/WipeController.php b/core/Controller/WipeController.php new file mode 100644 index 00000000000..4b9d9ae38b5 --- /dev/null +++ b/core/Controller/WipeController.php @@ -0,0 +1,98 @@ +<?php + +declare(strict_types=1); + +/** + * @copyright Copyright (c) 2019, Roeland Jago Douma <roeland@famdouma.nl> + * + * @author Roeland Jago Douma <roeland@famdouma.nl> + * + * @license GNU AGPL version 3 or any later version + * + * This program is free software: you can redistribute it and/or modify + * it under the terms of the GNU Affero General Public License as + * published by the Free Software Foundation, either version 3 of the + * License, or (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU Affero General Public License for more details. + * + * You should have received a copy of the GNU Affero General Public License + * along with this program. If not, see <http://www.gnu.org/licenses/>. + * + */ + +namespace OC\Core\Controller; + +use OC\Authentication\Exceptions\InvalidTokenException; +use OC\Authentication\Token\RemoteWipe; +use OCP\AppFramework\Controller; +use OCP\AppFramework\Http; +use OCP\AppFramework\Http\JSONResponse; +use OCP\IRequest; + +class WipeController extends Controller { + + /** @var RemoteWipe */ + private $remoteWipe; + + public function __construct(string $appName, + IRequest $request, + RemoteWipe $remoteWipe) { + parent::__construct($appName, $request); + + $this->remoteWipe = $remoteWipe; + } + + /** + * @NoAdminRequired + * @NoCSRFRequired + * @PublicPage + * + * @AnonRateThrottle(limit=10, period=300) + * + * @param string $token + * + * @return JSONResponse + */ + public function checkWipe(string $token): JSONResponse { + try { + if ($this->remoteWipe->start($token)) { + return new JSONResponse([ + 'wipe' => true + ]); + } + + return new JSONResponse([], Http::STATUS_NOT_FOUND); + } catch (InvalidTokenException $e) { + return new JSONResponse([], Http::STATUS_NOT_FOUND); + } + } + + + /** + * @NoAdminRequired + * @NoCSRFRequired + * @PublicPage + * + * @AnonRateThrottle(limit=10, period=300) + * + * @param string $token + * + * @return JSONResponse + */ + public function wipeDone(string $token): JSONResponse { + try { + if ($this->remoteWipe->finish($token)) { + return new JSONResponse([]); + } + + return new JSONResponse([], Http::STATUS_NOT_FOUND); + } catch (InvalidTokenException $e) { + return new JSONResponse([], Http::STATUS_NOT_FOUND); + } + } + +} |