123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171 |
- <?php
- /**
- * @copyright Copyright (c) 2016 Bjoern Schiessle <bjoern@schiessle.org>
- * @copyright Copyright (c) 2016 Lukas Reschke <lukas@statuscode.ch>
- *
- * @license GNU AGPL version 3 or any later version
- *
- * This program is free software: you can redistribute it and/or modify
- * it under the terms of the GNU Affero General Public License as
- * published by the Free Software Foundation, either version 3 of the
- * License, or (at your option) any later version.
- *
- * This program is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- * GNU Affero General Public License for more details.
- *
- * You should have received a copy of the GNU Affero General Public License
- * along with this program. If not, see <http://www.gnu.org/licenses/>.
- *
- */
- namespace OCA\LookupServerConnector;
- use OC\Accounts\AccountManager;
- use OC\Security\IdentityProof\Signer;
- use OCA\LookupServerConnector\BackgroundJobs\RetryJob;
- use OCP\BackgroundJob\IJobList;
- use OCP\Http\Client\IClientService;
- use OCP\IConfig;
- use OCP\IUser;
- /**
- * Class UpdateLookupServer
- *
- * @package OCA\LookupServerConnector
- */
- class UpdateLookupServer {
- /** @var AccountManager */
- private $accountManager;
- /** @var IClientService */
- private $clientService;
- /** @var Signer */
- private $signer;
- /** @var IJobList */
- private $jobList;
- /** @var string URL point to lookup server */
- private $lookupServer;
- /** @var bool */
- private $lookupServerEnabled;
- /**
- * @param AccountManager $accountManager
- * @param IClientService $clientService
- * @param Signer $signer
- * @param IJobList $jobList
- * @param IConfig $config
- */
- public function __construct(AccountManager $accountManager,
- IClientService $clientService,
- Signer $signer,
- IJobList $jobList,
- IConfig $config) {
- $this->accountManager = $accountManager;
- $this->clientService = $clientService;
- $this->signer = $signer;
- $this->jobList = $jobList;
- if($config->getSystemValue('has_internet_connection', true) === false) {
- return;
- }
- $this->lookupServerEnabled = $config->getAppValue('files_sharing', 'lookupServerUploadEnabled', 'yes') === 'yes';
- $this->lookupServer = $config->getSystemValue('lookup_server', 'https://lookup.nextcloud.com');
- if(!empty($this->lookupServer)) {
- $this->lookupServer = rtrim($this->lookupServer, '/');
- $this->lookupServer .= '/users';
- }
- }
- /**
- * @param IUser $user
- */
- public function userUpdated(IUser $user) {
- if (!$this->shouldUpdateLookupServer()) {
- return;
- }
- $userData = $this->accountManager->getUser($user);
- $publicData = [];
- foreach ($userData as $key => $data) {
- if ($data['scope'] === AccountManager::VISIBILITY_PUBLIC) {
- $publicData[$key] = $data;
- }
- }
- $this->sendToLookupServer($user, $publicData);
- }
- /**
- * send public user data to the lookup server
- *
- * @param IUser $user
- * @param array $publicData
- */
- protected function sendToLookupServer(IUser $user, array $publicData) {
- $dataArray = ['federationId' => $user->getCloudId()];
- if (!empty($publicData)) {
- $dataArray['name'] = isset($publicData[AccountManager::PROPERTY_DISPLAYNAME]) ? $publicData[AccountManager::PROPERTY_DISPLAYNAME]['value'] : '';
- $dataArray['email'] = isset($publicData[AccountManager::PROPERTY_EMAIL]) ? $publicData[AccountManager::PROPERTY_EMAIL]['value'] : '';
- $dataArray['address'] = isset($publicData[AccountManager::PROPERTY_ADDRESS]) ? $publicData[AccountManager::PROPERTY_ADDRESS]['value'] : '';
- $dataArray['website'] = isset($publicData[AccountManager::PROPERTY_WEBSITE]) ? $publicData[AccountManager::PROPERTY_WEBSITE]['value'] : '';
- $dataArray['twitter'] = isset($publicData[AccountManager::PROPERTY_TWITTER]) ? $publicData[AccountManager::PROPERTY_TWITTER]['value'] : '';
- $dataArray['phone'] = isset($publicData[AccountManager::PROPERTY_PHONE]) ? $publicData[AccountManager::PROPERTY_PHONE]['value'] : '';
- $dataArray['twitter_signature'] = isset($publicData[AccountManager::PROPERTY_TWITTER]['signature']) ? $publicData[AccountManager::PROPERTY_TWITTER]['signature'] : '';
- $dataArray['website_signature'] = isset($publicData[AccountManager::PROPERTY_WEBSITE]['signature']) ? $publicData[AccountManager::PROPERTY_WEBSITE]['signature'] : '';
- $dataArray['verificationStatus'] =
- [
- AccountManager::PROPERTY_WEBSITE => isset($publicData[AccountManager::PROPERTY_WEBSITE]) ? $publicData[AccountManager::PROPERTY_WEBSITE]['verified'] : '',
- AccountManager::PROPERTY_TWITTER => isset($publicData[AccountManager::PROPERTY_TWITTER]) ? $publicData[AccountManager::PROPERTY_TWITTER]['verified'] : '',
- ];
- }
- $dataArray = $this->signer->sign('lookupserver', $dataArray, $user);
- $httpClient = $this->clientService->newClient();
- try {
- if (empty($publicData)) {
- $httpClient->delete($this->lookupServer,
- [
- 'body' => json_encode($dataArray),
- 'timeout' => 10,
- 'connect_timeout' => 3,
- ]
- );
- } else {
- $httpClient->post($this->lookupServer,
- [
- 'body' => json_encode($dataArray),
- 'timeout' => 10,
- 'connect_timeout' => 3,
- ]
- );
- }
- } catch (\Exception $e) {
- $this->jobList->add(RetryJob::class,
- [
- 'dataArray' => $dataArray,
- 'retryNo' => 0,
- ]
- );
- }
- }
- /**
- * check if we should update the lookup server, we only do it if
- *
- * * we have a valid URL
- * * the lookup server update was enabled by the admin
- *
- * @return bool
- */
- private function shouldUpdateLookupServer() {
- return $this->lookupServerEnabled && !empty($this->lookupServer);
- }
- }
|