123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236 |
- <?php
- declare(strict_types=1);
- /**
- * SPDX-FileCopyrightText: 2023 Nextcloud GmbH and Nextcloud contributors
- * SPDX-License-Identifier: AGPL-3.0-or-later
- */
- namespace OCA\Files_Sharing;
- use OCA\FederatedFileSharing\FederatedShareProvider;
- use OCA\Files_Sharing\AppInfo\Application;
- use OCA\Files_Sharing\Event\BeforeTemplateRenderedEvent;
- use OCA\Viewer\Event\LoadViewer;
- use OCP\Accounts\IAccountManager;
- use OCP\AppFramework\Http\ContentSecurityPolicy;
- use OCP\AppFramework\Http\Template\ExternalShareMenuAction;
- use OCP\AppFramework\Http\Template\LinkMenuAction;
- use OCP\AppFramework\Http\Template\PublicTemplateResponse;
- use OCP\AppFramework\Http\Template\SimpleMenuAction;
- use OCP\AppFramework\Http\TemplateResponse;
- use OCP\AppFramework\Services\IInitialState;
- use OCP\Constants;
- use OCP\Defaults;
- use OCP\EventDispatcher\IEventDispatcher;
- use OCP\Files\File;
- use OCP\IAppConfig;
- use OCP\IConfig;
- use OCP\IL10N;
- use OCP\IPreview;
- use OCP\IRequest;
- use OCP\IURLGenerator;
- use OCP\IUser;
- use OCP\IUserManager;
- use OCP\Share\IPublicShareTemplateProvider;
- use OCP\Share\IShare;
- use OCP\Util;
- class DefaultPublicShareTemplateProvider implements IPublicShareTemplateProvider {
- public function __construct(
- private IUserManager $userManager,
- private IAccountManager $accountManager,
- private IPreview $previewManager,
- protected FederatedShareProvider $federatedShareProvider,
- private IUrlGenerator $urlGenerator,
- private IEventDispatcher $eventDispatcher,
- private IL10N $l10n,
- private Defaults $defaults,
- private IConfig $config,
- private IRequest $request,
- private IInitialState $initialState,
- private IAppConfig $appConfig,
- ) {
- }
- public function shouldRespond(IShare $share): bool {
- return true;
- }
- public function renderPage(IShare $share, string $token, string $path): TemplateResponse {
- $shareNode = $share->getNode();
- $ownerName = '';
- $ownerId = '';
- // Only make the share owner public if they allowed to show their name
- $owner = $this->userManager->get($share->getShareOwner());
- if ($owner instanceof IUser) {
- $ownerAccount = $this->accountManager->getAccount($owner);
- $ownerNameProperty = $ownerAccount->getProperty(IAccountManager::PROPERTY_DISPLAYNAME);
- if ($ownerNameProperty->getScope() === IAccountManager::SCOPE_PUBLISHED) {
- $ownerName = $owner->getDisplayName();
- $ownerId = $owner->getUID();
- }
- }
- $view = 'public-share';
- if ($shareNode instanceof File) {
- $view = 'public-file-share';
- $this->initialState->provideInitialState('fileId', $shareNode->getId());
- } elseif (($share->getPermissions() & Constants::PERMISSION_CREATE)
- && !($share->getPermissions() & Constants::PERMISSION_READ)
- ) {
- // share is a folder with create but no read permissions -> file drop only
- $view = 'public-file-drop';
- // Only needed for file drops
- $this->initialState->provideInitialState(
- 'disclaimer',
- $this->appConfig->getValueString('core', 'shareapi_public_link_disclaimertext'),
- );
- }
- // Set up initial state
- $this->initialState->provideInitialState('isPublic', true);
- $this->initialState->provideInitialState('sharingToken', $token);
- $this->initialState->provideInitialState('sharePermissions', $share->getPermissions());
- $this->initialState->provideInitialState('filename', $shareNode->getName());
- $this->initialState->provideInitialState('view', $view);
- // Load scripts and styles for UI
- Util::addInitScript('files', 'init');
- Util::addInitScript(Application::APP_ID, 'init');
- Util::addInitScript(Application::APP_ID, 'init-public');
- Util::addScript('files', 'main');
- // Add file-request script if needed
- $attributes = $share->getAttributes();
- $isFileRequest = $attributes?->getAttribute('fileRequest', 'enabled') === true;
- if ($isFileRequest) {
- Util::addScript(Application::APP_ID, 'public-file-request');
- }
- // Load Viewer scripts
- if (class_exists(LoadViewer::class)) {
- $this->eventDispatcher->dispatchTyped(new LoadViewer());
- }
- // Allow external apps to register their scripts
- $this->eventDispatcher->dispatchTyped(new BeforeTemplateRenderedEvent($share));
- // OpenGraph Support: http://ogp.me/
- $this->addOpenGraphHeaders($share);
- // CSP to allow office
- $csp = new ContentSecurityPolicy();
- $csp->addAllowedFrameDomain('\'self\'');
- $response = new PublicTemplateResponse(
- 'files',
- 'index',
- );
- $response->setContentSecurityPolicy($csp);
- // If the share has a label, use it as the title
- if ($share->getLabel() !== '') {
- $response->setHeaderTitle($share->getLabel());
- $response->setParams(['pageTitle' => $share->getLabel()]);
- } else {
- $response->setHeaderTitle($shareNode->getName());
- $response->setParams(['pageTitle' => $shareNode->getName()]);
- }
- if ($ownerName !== '') {
- $response->setHeaderDetails($this->l10n->t('shared by %s', [$ownerName]));
- }
- // Create the header action menu
- $headerActions = [];
- if ($view !== 'public-file-drop') {
- // The download URL is used for the "download" header action as well as in some cases for the direct link
- $downloadUrl = $this->urlGenerator->linkToRouteAbsolute('files_sharing.sharecontroller.downloadShare', [
- 'token' => $token,
- 'filename' => ($shareNode instanceof File) ? $shareNode->getName() : null,
- ]);
- // If not a file drop, then add the download header action
- $headerActions[] = new SimpleMenuAction('download', $this->l10n->t('Download'), 'icon-download', $downloadUrl, 0, (string)$shareNode->getSize());
- // If remote sharing is enabled also add the remote share action to the menu
- if ($this->federatedShareProvider->isOutgoingServer2serverShareEnabled() && !$share->getHideDownload()) {
- $headerActions[] = new ExternalShareMenuAction(
- // TRANSLATORS The placeholder refers to the software product name as in 'Add to your Nextcloud'
- $this->l10n->t('Add to your %s', [$this->defaults->getProductName()]),
- 'icon-external',
- $ownerId,
- $ownerName,
- $shareNode->getName(),
- );
- }
- }
- $shareUrl = $this->urlGenerator->linkToRouteAbsolute('files_sharing.sharecontroller.showShare', ['token' => $token]);
- // By default use the share link as the direct link
- $directLink = $shareUrl;
- // Add the direct link header actions
- if ($shareNode->getMimePart() === 'image') {
- // If this is a file and especially an image directly point to the image preview
- $directLink = $this->urlGenerator->linkToRouteAbsolute('files_sharing.publicpreview.directLink', ['token' => $token]);
- } elseif (($share->getPermissions() & Constants::PERMISSION_READ) && !$share->getHideDownload()) {
- // Can read and no download restriction, so just download it
- $directLink = $downloadUrl ?? $shareUrl;
- }
- $headerActions[] = new LinkMenuAction($this->l10n->t('Direct link'), 'icon-public', $directLink);
- $response->setHeaderActions($headerActions);
- return $response;
- }
- /**
- * Add OpenGraph headers to response for preview
- * @param IShare $share The share for which to add the headers
- */
- protected function addOpenGraphHeaders(IShare $share): void {
- $shareNode = $share->getNode();
- $token = $share->getToken();
- $shareUrl = $this->urlGenerator->linkToRouteAbsolute('files_sharing.sharecontroller.showShare', ['token' => $token]);
- // Handle preview generation for OpenGraph
- if ($this->previewManager->isMimeSupported($shareNode->getMimetype())) {
- // For images we can use direct links
- if ($shareNode->getMimePart() === 'image') {
- $ogPreview = $this->urlGenerator->linkToRouteAbsolute('files_sharing.publicpreview.directLink', ['token' => $token]);
- // Whatsapp is kind of picky about their size requirements
- if ($this->request->isUserAgent(['/^WhatsApp/'])) {
- $ogPreview = $this->urlGenerator->linkToRouteAbsolute('files_sharing.PublicPreview.getPreview', [
- 'token' => $token,
- 'x' => 256,
- 'y' => 256,
- 'a' => true,
- ]);
- }
- } else {
- // For normal files use preview API
- $ogPreview = $this->urlGenerator->linkToRouteAbsolute(
- 'files_sharing.PublicPreview.getPreview',
- [
- 'x' => 256,
- 'y' => 256,
- 'file' => $share->getTarget(),
- 'token' => $token,
- ],
- );
- }
- } else {
- // No preview supported, so we just add the favicon
- $ogPreview = $this->urlGenerator->getAbsoluteURL($this->urlGenerator->imagePath('core', 'favicon-fb.png'));
- }
- Util::addHeader('meta', ['property' => 'og:title', 'content' => $shareNode->getName()]);
- Util::addHeader('meta', ['property' => 'og:description', 'content' => $this->defaults->getName() . ($this->defaults->getSlogan() !== '' ? ' - ' . $this->defaults->getSlogan() : '')]);
- Util::addHeader('meta', ['property' => 'og:site_name', 'content' => $this->defaults->getName()]);
- Util::addHeader('meta', ['property' => 'og:url', 'content' => $shareUrl]);
- Util::addHeader('meta', ['property' => 'og:type', 'content' => 'object']);
- Util::addHeader('meta', ['property' => 'og:image', 'content' => $ogPreview]);
- }
- }
|