123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263 |
- <?php
- /**
- * @copyright 2017 Christoph Wurst <christoph@winzerhof-wurst.at>
- * @copyright 2017 Lukas Reschke <lukas@statuscode.ch>
- *
- * @author Christoph Wurst <christoph@owncloud.com>
- * @author Georg Ehrke <oc.list@georgehrke.com>
- * @author Lukas Reschke <lukas@statuscode.ch>
- * @author Tobia De Koninck <tobia@ledfan.be>
- *
- * @license GNU AGPL version 3 or any later version
- *
- * This program is free software: you can redistribute it and/or modify
- * it under the terms of the GNU Affero General Public License as
- * published by the Free Software Foundation, either version 3 of the
- * License, or (at your option) any later version.
- *
- * This program is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- * GNU Affero General Public License for more details.
- *
- * You should have received a copy of the GNU Affero General Public License
- * along with this program. If not, see <http://www.gnu.org/licenses/>.
- *
- */
- namespace OC\Contacts\ContactsMenu;
- use OCP\Contacts\ContactsMenu\IEntry;
- use OCP\Contacts\IManager;
- use OCP\IConfig;
- use OCP\IGroupManager;
- use OCP\IUser;
- use OCP\IUserManager;
- use OCP\Contacts\ContactsMenu\IContactsStore;
- class ContactsStore implements IContactsStore {
- /** @var IManager */
- private $contactsManager;
- /** @var IConfig */
- private $config;
- /** @var IUserManager */
- private $userManager;
- /** @var IGroupManager */
- private $groupManager;
- /**
- * @param IManager $contactsManager
- * @param IConfig $config
- * @param IUserManager $userManager
- * @param IGroupManager $groupManager
- */
- public function __construct(IManager $contactsManager,
- IConfig $config,
- IUserManager $userManager,
- IGroupManager $groupManager) {
- $this->contactsManager = $contactsManager;
- $this->config = $config;
- $this->userManager = $userManager;
- $this->groupManager = $groupManager;
- }
- /**
- * @param IUser $user
- * @param string|null $filter
- * @return IEntry[]
- */
- public function getContacts(IUser $user, $filter) {
- $allContacts = $this->contactsManager->search($filter ?: '', [
- 'FN',
- 'EMAIL'
- ]);
- $entries = array_map(function(array $contact) {
- return $this->contactArrayToEntry($contact);
- }, $allContacts);
- return $this->filterContacts(
- $user,
- $entries,
- $filter
- );
- }
- /**
- * Filters the contacts. Applies 3 filters:
- * 1. filter the current user
- * 2. if the `shareapi_allow_share_dialog_user_enumeration` config option is
- * enabled it will filter all local users
- * 3. if the `shareapi_exclude_groups` config option is enabled and the
- * current user is in an excluded group it will filter all local users.
- * 4. if the `shareapi_only_share_with_group_members` config option is
- * enabled it will filter all users which doens't have a common group
- * with the current user.
- *
- * @param IUser $self
- * @param Entry[] $entries
- * @param string $filter
- * @return Entry[] the filtered contacts
- */
- private function filterContacts(IUser $self,
- array $entries,
- $filter) {
- $disallowEnumeration = $this->config->getAppValue('core', 'shareapi_allow_share_dialog_user_enumeration', 'yes') !== 'yes';
- $excludedGroups = $this->config->getAppValue('core', 'shareapi_exclude_groups', 'no') === 'yes';
- // whether to filter out local users
- $skipLocal = false;
- // whether to filter out all users which doesn't have the same group as the current user
- $ownGroupsOnly = $this->config->getAppValue('core', 'shareapi_only_share_with_group_members', 'no') === 'yes';
- $selfGroups = $this->groupManager->getUserGroupIds($self);
- if ($excludedGroups) {
- $excludedGroups = $this->config->getAppValue('core', 'shareapi_exclude_groups_list', '');
- $decodedExcludeGroups = json_decode($excludedGroups, true);
- $excludeGroupsList = ($decodedExcludeGroups !== null) ? $decodedExcludeGroups : [];
- if (count(array_intersect($excludeGroupsList, $selfGroups)) !== 0) {
- // a group of the current user is excluded -> filter all local users
- $skipLocal = true;
- }
- }
- $selfUID = $self->getUID();
- return array_values(array_filter($entries, function(IEntry $entry) use ($self, $skipLocal, $ownGroupsOnly, $selfGroups, $selfUID, $disallowEnumeration, $filter) {
- if ($skipLocal && $entry->getProperty('isLocalSystemBook') === true) {
- return false;
- }
- // Prevent enumerating local users
- if($disallowEnumeration && $entry->getProperty('isLocalSystemBook')) {
- $filterUser = true;
- $mailAddresses = $entry->getEMailAddresses();
- foreach($mailAddresses as $mailAddress) {
- if($mailAddress === $filter) {
- $filterUser = false;
- break;
- }
- }
- if($entry->getProperty('UID') && $entry->getProperty('UID') === $filter) {
- $filterUser = false;
- }
- if($filterUser) {
- return false;
- }
- }
- if ($ownGroupsOnly && $entry->getProperty('isLocalSystemBook') === true) {
- $uid = $this->userManager->get($entry->getProperty('UID'));
- if ($uid === NULL) {
- return false;
- }
- $contactGroups = $this->groupManager->getUserGroupIds($uid);
- if (count(array_intersect($contactGroups, $selfGroups)) === 0) {
- // no groups in common, so shouldn't see the contact
- return false;
- }
- }
- return $entry->getProperty('UID') !== $selfUID;
- }));
- }
- /**
- * @param IUser $user
- * @param integer $shareType
- * @param string $shareWith
- * @return IEntry|null
- */
- public function findOne(IUser $user, $shareType, $shareWith) {
- switch($shareType) {
- case 0:
- case 6:
- $filter = ['UID'];
- break;
- case 4:
- $filter = ['EMAIL'];
- break;
- default:
- return null;
- }
- $userId = $user->getUID();
- $allContacts = $this->contactsManager->search($shareWith, $filter);
- $contacts = array_filter($allContacts, function($contact) use ($userId) {
- return $contact['UID'] !== $userId;
- });
- $match = null;
- foreach ($contacts as $contact) {
- if ($shareType === 4 && isset($contact['EMAIL'])) {
- if (in_array($shareWith, $contact['EMAIL'])) {
- $match = $contact;
- break;
- }
- }
- if ($shareType === 0 || $shareType === 6) {
- $isLocal = $contact['isLocalSystemBook'] ?? false;
- if ($contact['UID'] === $shareWith && $isLocal === true) {
- $match = $contact;
- break;
- }
- }
- }
- if ($match) {
- $match = $this->filterContacts($user, [$this->contactArrayToEntry($match)], $shareWith);
- if (count($match) === 1) {
- $match = $match[0];
- } else {
- $match = null;
- }
- }
- return $match;
- }
- /**
- * @param array $contact
- * @return Entry
- */
- private function contactArrayToEntry(array $contact) {
- $entry = new Entry();
- if (isset($contact['id'])) {
- $entry->setId($contact['id']);
- }
- if (isset($contact['FN'])) {
- $entry->setFullName($contact['FN']);
- }
- $avatarPrefix = "VALUE=uri:";
- if (isset($contact['PHOTO']) && strpos($contact['PHOTO'], $avatarPrefix) === 0) {
- $entry->setAvatar(substr($contact['PHOTO'], strlen($avatarPrefix)));
- }
- if (isset($contact['EMAIL'])) {
- foreach ($contact['EMAIL'] as $email) {
- $entry->addEMailAddress($email);
- }
- }
- // Attach all other properties to the entry too because some
- // providers might make use of it.
- $entry->setProperties($contact);
- return $entry;
- }
- }
|