15c075eba8
Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
133 lines
4.2 KiB
PHP
133 lines
4.2 KiB
PHP
<?php
|
|
/**
|
|
* @copyright Copyright (c) 2016 Bjoern Schiessle <bjoern@schiessle.org>
|
|
* @copyright Copyright (c) 2016 Lukas Reschke <lukas@statuscode.ch>
|
|
*
|
|
* @license GNU AGPL version 3 or any later version
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License as
|
|
* published by the Free Software Foundation, either version 3 of the
|
|
* License, or (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*
|
|
*/
|
|
|
|
namespace OCA\LookupServerConnector;
|
|
|
|
use OC\Accounts\AccountManager;
|
|
use OC\Security\IdentityProof\Manager;
|
|
use OC\Security\IdentityProof\Signer;
|
|
use OCP\Http\Client\IClientService;
|
|
use OCP\IConfig;
|
|
use OCP\IUser;
|
|
use OCP\Security\ISecureRandom;
|
|
|
|
/**
|
|
* Class UpdateLookupServer
|
|
*
|
|
* @package OCA\LookupServerConnector
|
|
*/
|
|
class UpdateLookupServer {
|
|
/** @var AccountManager */
|
|
private $accountManager;
|
|
/** @var IConfig */
|
|
private $config;
|
|
/** @var ISecureRandom */
|
|
private $secureRandom;
|
|
/** @var IClientService */
|
|
private $clientService;
|
|
/** @var Manager */
|
|
private $keyManager;
|
|
/** @var Signer */
|
|
private $signer;
|
|
/** @var string URL point to lookup server */
|
|
private $lookupServer = 'https://lookup.nextcloud.com/users';
|
|
|
|
/**
|
|
* @param AccountManager $accountManager
|
|
* @param IConfig $config
|
|
* @param ISecureRandom $secureRandom
|
|
* @param IClientService $clientService
|
|
* @param Manager $manager
|
|
* @param Signer $signer
|
|
*/
|
|
public function __construct(AccountManager $accountManager,
|
|
IConfig $config,
|
|
ISecureRandom $secureRandom,
|
|
IClientService $clientService,
|
|
Manager $manager,
|
|
Signer $signer) {
|
|
$this->accountManager = $accountManager;
|
|
$this->config = $config;
|
|
$this->secureRandom = $secureRandom;
|
|
$this->clientService = $clientService;
|
|
$this->keyManager = $manager;
|
|
$this->signer = $signer;
|
|
}
|
|
|
|
/**
|
|
* @param IUser $user
|
|
*/
|
|
public function userUpdated(IUser $user) {
|
|
$userData = $this->accountManager->getUser($user);
|
|
$publicData = [];
|
|
|
|
foreach ($userData as $key => $data) {
|
|
if ($data['scope'] === AccountManager::VISIBILITY_PUBLIC) {
|
|
$publicData[$key] = $data;
|
|
}
|
|
}
|
|
|
|
if (empty($publicData) && !empty($authKey)) {
|
|
$this->removeFromLookupServer($user);
|
|
} else {
|
|
$this->sendToLookupServer($user, $publicData);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* TODO: FIXME. Implement removal from lookup server.
|
|
*
|
|
* remove user from lookup server
|
|
*
|
|
* @param IUser $user
|
|
*/
|
|
protected function removeFromLookupServer(IUser $user) {
|
|
$this->config->deleteUserValue($user->getUID(), 'lookup_server_connector', 'authKey');
|
|
}
|
|
|
|
/**
|
|
* send public user data to the lookup server
|
|
*
|
|
* @param IUser $user
|
|
* @param array $publicData
|
|
*/
|
|
protected function sendToLookupServer(IUser $user, array $publicData) {
|
|
$dataArray = [
|
|
'federationId' => $user->getCloudId(),
|
|
'name' => isset($publicData[AccountManager::PROPERTY_DISPLAYNAME]) ? $publicData[AccountManager::PROPERTY_DISPLAYNAME]['value'] : '',
|
|
'email' => isset($publicData[AccountManager::PROPERTY_EMAIL]) ? $publicData[AccountManager::PROPERTY_EMAIL]['value'] : '',
|
|
'address' => isset($publicData[AccountManager::PROPERTY_ADDRESS]) ? $publicData[AccountManager::PROPERTY_ADDRESS]['value'] : '',
|
|
'website' => isset($publicData[AccountManager::PROPERTY_WEBSITE]) ? $publicData[AccountManager::PROPERTY_WEBSITE]['value'] : '',
|
|
'twitter' => isset($publicData[AccountManager::PROPERTY_TWITTER]) ? $publicData[AccountManager::PROPERTY_TWITTER]['value'] : '',
|
|
'phone' => isset($publicData[AccountManager::PROPERTY_PHONE]) ? $publicData[AccountManager::PROPERTY_PHONE]['value'] : '',
|
|
];
|
|
$dataArray = $this->signer->sign('lookupserver', $dataArray, $user);
|
|
$httpClient = $this->clientService->newClient();
|
|
$httpClient->post($this->lookupServer,
|
|
[
|
|
'body' => json_encode($dataArray),
|
|
'timeout' => 10,
|
|
'connect_timeout' => 3,
|
|
]
|
|
);
|
|
}
|
|
}
|