Home Explore Help
Sign In
RISCI_ATOM
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Files Issues 23 Wiki
Tree: 75eba0374f
Branches Tags
nextcloud-serve...
/
apps
/
files_external
/
lib
/
Lib
/
Auth
/
PublicKey
/
RSA.php

RSA.php 2.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * SPDX-FileCopyrightText: 2017-2024 Nextcloud GmbH and Nextcloud contributors
    4. 

  4.  * SPDX-FileCopyrightText: 2016 ownCloud, Inc.
    5. 

  5.  * SPDX-License-Identifier: AGPL-3.0-only
    6. 

  6.  */
    7. 

  7. namespace OCA\Files_External\Lib\Auth\PublicKey;
    8. 

  8. 

  9. use OCA\Files_External\Lib\Auth\AuthMechanism;
    10. 

  10. use OCA\Files_External\Lib\DefinitionParameter;
    11. 

  11. use OCA\Files_External\Lib\StorageConfig;
    12. 

  12. use OCP\IConfig;
    13. 

  13. use OCP\IL10N;
    14. 

  14. use OCP\IUser;
    15. 

  15. use phpseclib\Crypt\RSA as RSACrypt;
    16. 

  16. 

  17. /**
    18. 

  18.  * RSA public key authentication
    19. 

  19.  */
    20. 

  20. class RSA extends AuthMechanism {
    21. 

  21. 

  22. 	/** @var IConfig */
    23. 

  23. 	private $config;
    24. 

  24. 

  25. 	public function __construct(IL10N $l, IConfig $config) {
    26. 

  26. 		$this->config = $config;
    27. 

  27. 

  28. 		$this
    29. 

  29. 			->setIdentifier('publickey::rsa')
    30. 

  30. 			->setScheme(self::SCHEME_PUBLICKEY)
    31. 

  31. 			->setText($l->t('RSA public key'))
    32. 

  32. 			->addParameters([
    33. 

  33. 				new DefinitionParameter('user', $l->t('Login')),
    34. 

  34. 				new DefinitionParameter('public_key', $l->t('Public key')),
    35. 

  35. 				(new DefinitionParameter('private_key', 'private_key'))
    36. 

  36. 					->setType(DefinitionParameter::VALUE_HIDDEN),
    37. 

  37. 			])
    38. 

  38. 			->addCustomJs('public_key')
    39. 

  39. 		;
    40. 

  40. 	}
    41. 

  41. 

  42. 	/**
    43. 

  43. 	 * @return void
    44. 

  44. 	 */
    45. 

  45. 	public function manipulateStorageConfig(StorageConfig &$storage, ?IUser $user = null) {
    46. 

  46. 		$auth = new RSACrypt();
    47. 

  47. 		$auth->setPassword($this->config->getSystemValue('secret', ''));
    48. 

  48. 		if (!$auth->loadKey($storage->getBackendOption('private_key'))) {
    49. 

  49. 			// Add fallback routine for a time where secret was not enforced to be exists
    50. 

  50. 			$auth->setPassword('');
    51. 

  51. 			if (!$auth->loadKey($storage->getBackendOption('private_key'))) {
    52. 

  52. 				throw new \RuntimeException('unable to load private key');
    53. 

  53. 			}
    54. 

  54. 		}
    55. 

  55. 		$storage->setBackendOption('public_key_auth', $auth);
    56. 

  56. 	}
    57. 

  57. 

  58. 	/**
    59. 

  59. 	 * Generate a keypair
    60. 

  60. 	 *
    61. 

  61. 	 * @param int $keyLenth
    62. 

  62. 	 * @return array ['privatekey' => $privateKey, 'publickey' => $publicKey]
    63. 

  63. 	 */
    64. 

  64. 	public function createKey($keyLength) {
    65. 

  65. 		$rsa = new RSACrypt();
    66. 

  66. 		$rsa->setPublicKeyFormat(RSACrypt::PUBLIC_FORMAT_OPENSSH);
    67. 

  67. 		$rsa->setPassword($this->config->getSystemValue('secret', ''));
    68. 

  68. 

  69. 		if ($keyLength !== 1024 && $keyLength !== 2048 && $keyLength !== 4096) {
    70. 

  70. 			$keyLength = 1024;
    71. 

  71. 		}
    72. 

  72. 

  73. 		return $rsa->createKey($keyLength);
    74. 

  74. 	}
    75. 

  75. }
    76.