Add identity proof

Signed-off-by: Lukas Reschke <lukas@statuscode.ch>

3 files changed, 38 insertions, 6 deletions

diff --git a/core/Application.php b/core/Application.php
index f68f7929e6a..545b5fe420b 100644
--- a/core/Application.php
+++ b/core/Application.php
@@ -30,7 +30,10 @@
 
 namespace OC\Core;
 
+use OC\AppFramework\Utility\SimpleContainer;
+use OC\Security\IdentityProof\Manager;
 use OCP\AppFramework\App;
+use OCP\Files\IAppData;
 use OCP\Util;
 
 /**
@@ -45,8 +48,14 @@ class Application extends App {
 
 		$container = $this->getContainer();
 
-		$container->registerService('defaultMailAddress', function() {
+		$container->registerService('defaultMailAddress', function () {
 			return Util::getDefaultEmailAddress('lostpassword-noreply');
 		});
+		$container->registerService(Manager::class, function () {
+			return new Manager(
+				\OC::$server->getAppDataDir('identityproof'),
+				\OC::$server->getCrypto()
+			);
+		});
 	}
 }
diff --git a/core/Controller/OCSController.php b/core/Controller/OCSController.php
index 27ab9deb08a..b1c4f377a14 100644
--- a/core/Controller/OCSController.php
+++ b/core/Controller/OCSController.php
@@ -23,6 +23,7 @@ namespace OC\Core\Controller;
 
 use OC\CapabilitiesManager;
 use OC\Security\Bruteforce\Throttler;
+use OC\Security\IdentityProof\Manager;
 use OCP\AppFramework\Http\DataResponse;
 use OCP\IRequest;
 use OCP\IUserManager;
@@ -32,13 +33,12 @@ class OCSController extends \OCP\AppFramework\OCSController {
 
 	/** @var CapabilitiesManager */
 	private $capabilitiesManager;
-
 	/** @var IUserSession */
 	private $userSession;
-
 	/** @var IUserManager */
 	private $userManager;
-
+	/** @var Manager */
+	private $keyManager;
 	/** @var Throttler */
 	private $throttler;
 
@@ -51,19 +51,21 @@ class OCSController extends \OCP\AppFramework\OCSController {
 	 * @param IUserSession $userSession
 	 * @param IUserManager $userManager
 	 * @param Throttler $throttler
+	 * @param Manager $keyManager
 	 */
 	public function __construct($appName,
 								IRequest $request,
 								CapabilitiesManager $capabilitiesManager,
 								IUserSession $userSession,
 								IUserManager $userManager,
-								Throttler $throttler) {
+								Throttler $throttler,
+								Manager $keyManager) {
 		parent::__construct($appName, $request);
-
 		$this->capabilitiesManager = $capabilitiesManager;
 		$this->userSession = $userSession;
 		$this->userManager = $userManager;
 		$this->throttler = $throttler;
+		$this->keyManager = $keyManager;
 	}
 
 	/**
@@ -139,4 +141,24 @@ class OCSController extends \OCP\AppFramework\OCSController {
 		}
 		return new DataResponse(null, 101);
 	}
+
+	/**
+	 * @PublicPage
+	 *
+	 * @param string $cloudId
+	 * @return DataResponse
+	 */
+	public function getIdentityProof($cloudId) {
+		$userObject = $this->userManager->get($cloudId);
+
+		if($cloudId !== null) {
+			$key = $this->keyManager->getKey($userObject);
+			$data = [
+				'public' => $key->getPublic(),
+			];
+			return new DataResponse($data);
+		}
+
+		return new DataResponse(101);
+	}
 }
diff --git a/core/routes.php b/core/routes.php
index e5636ff6c00..2b8080a3b7b 100644
--- a/core/routes.php
+++ b/core/routes.php
@@ -61,6 +61,7 @@ $application->registerRoutes($this, [
 		['root' => '/cloud', 'name' => 'OCS#getCurrentUser', 'url' => '/user', 'verb' => 'GET'],
 		['root' => '', 'name' => 'OCS#getConfig', 'url' => '/config', 'verb' => 'GET'],
 		['root' => '/person', 'name' => 'OCS#personCheck', 'url' => '/check', 'verb' => 'POST'],
+		['root' => '/identityproof', 'name' => 'OCS#getIdentityProof', 'url' => '/key/{cloudId}', 'verb' => 'GET'],
 	],
 ]);