78273cb1e6
Now that we allow enforcing 2 factor auth it make sense if we also allow and endpoint where the clients can in the background fetch an apppassword if they were configured before the login flow was present. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
184 lines
9.1 KiB
PHP
184 lines
9.1 KiB
PHP
<?php
|
|
/**
|
|
* @copyright Copyright (c) 2016, ownCloud, Inc.
|
|
*
|
|
* @author Bart Visscher <bartv@thisnet.nl>
|
|
* @author Bernhard Posselt <dev@bernhard-posselt.com>
|
|
* @author Christoph Wurst <christoph@owncloud.com>
|
|
* @author Christopher Schäpers <kondou@ts.unde.re>
|
|
* @author Georg Ehrke <oc.list@georgehrke.com>
|
|
* @author Joas Schilling <coding@schilljs.com>
|
|
* @author John Molakvoæ (skjnldsv) <skjnldsv@protonmail.com>
|
|
* @author Lukas Reschke <lukas@statuscode.ch>
|
|
* @author Morris Jobke <hey@morrisjobke.de>
|
|
* @author Roeland Jago Douma <roeland@famdouma.nl>
|
|
* @author Thomas Müller <thomas.mueller@tmit.eu>
|
|
* @author Victor Dubiniuk <dubiniuk@owncloud.com>
|
|
* @author Vincent Petry <pvince81@owncloud.com>
|
|
*
|
|
* @license AGPL-3.0
|
|
*
|
|
* This code is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License, version 3,
|
|
* as published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License, version 3,
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>
|
|
*
|
|
*/
|
|
|
|
use OC\Core\Application;
|
|
|
|
$application = new Application();
|
|
$application->registerRoutes($this, [
|
|
'routes' => [
|
|
['name' => 'lost#email', 'url' => '/lostpassword/email', 'verb' => 'POST'],
|
|
['name' => 'lost#resetform', 'url' => '/lostpassword/reset/form/{token}/{userId}', 'verb' => 'GET'],
|
|
['name' => 'lost#setPassword', 'url' => '/lostpassword/set/{token}/{userId}', 'verb' => 'POST'],
|
|
['name' => 'user#getDisplayNames', 'url' => '/displaynames', 'verb' => 'POST'],
|
|
['name' => 'avatar#getAvatar', 'url' => '/avatar/{userId}/{size}', 'verb' => 'GET'],
|
|
['name' => 'avatar#deleteAvatar', 'url' => '/avatar/', 'verb' => 'DELETE'],
|
|
['name' => 'avatar#postCroppedAvatar', 'url' => '/avatar/cropped', 'verb' => 'POST'],
|
|
['name' => 'avatar#getTmpAvatar', 'url' => '/avatar/tmp', 'verb' => 'GET'],
|
|
['name' => 'avatar#postAvatar', 'url' => '/avatar/', 'verb' => 'POST'],
|
|
['name' => 'CSRFToken#index', 'url' => '/csrftoken', 'verb' => 'GET'],
|
|
['name' => 'login#tryLogin', 'url' => '/login', 'verb' => 'POST'],
|
|
['name' => 'login#confirmPassword', 'url' => '/login/confirm', 'verb' => 'POST'],
|
|
['name' => 'login#showLoginForm', 'url' => '/login', 'verb' => 'GET'],
|
|
['name' => 'login#logout', 'url' => '/logout', 'verb' => 'GET'],
|
|
['name' => 'ClientFlowLogin#showAuthPickerPage', 'url' => '/login/flow', 'verb' => 'GET'],
|
|
['name' => 'ClientFlowLogin#redirectPage', 'url' => '/login/flow/redirect', 'verb' => 'GET'],
|
|
['name' => 'ClientFlowLogin#generateAppPassword', 'url' => '/login/flow', 'verb' => 'POST'],
|
|
['name' => 'ClientFlowLogin#grantPage', 'url' => '/login/flow/grant', 'verb' => 'GET'],
|
|
['name' => 'TwoFactorChallenge#selectChallenge', 'url' => '/login/selectchallenge', 'verb' => 'GET'],
|
|
['name' => 'TwoFactorChallenge#showChallenge', 'url' => '/login/challenge/{challengeProviderId}', 'verb' => 'GET'],
|
|
['name' => 'TwoFactorChallenge#solveChallenge', 'url' => '/login/challenge/{challengeProviderId}', 'verb' => 'POST'],
|
|
['name' => 'OCJS#getConfig', 'url' => '/core/js/oc.js', 'verb' => 'GET'],
|
|
['name' => 'Preview#getPreviewByFileId', 'url' => '/core/preview', 'verb' => 'GET'],
|
|
['name' => 'Preview#getPreview', 'url' => '/core/preview.png', 'verb' => 'GET'],
|
|
['name' => 'Svg#getSvgFromCore', 'url' => '/svg/core/{folder}/{fileName}/{color}', 'verb' => 'GET'],
|
|
['name' => 'Svg#getSvgFromSettings', 'url' => '/svg/settings/{folder}/{fileName}/{color}', 'verb' => 'GET'],
|
|
['name' => 'Svg#getSvgFromApp', 'url' => '/svg/{app}/{fileName}/{color}', 'verb' => 'GET'],
|
|
['name' => 'Css#getCss', 'url' => '/css/{appName}/{fileName}', 'verb' => 'GET'],
|
|
['name' => 'Js#getJs', 'url' => '/js/{appName}/{fileName}', 'verb' => 'GET'],
|
|
['name' => 'contactsMenu#index', 'url' => '/contactsmenu/contacts', 'verb' => 'POST'],
|
|
['name' => 'contactsMenu#findOne', 'url' => '/contactsmenu/findOne', 'verb' => 'POST'],
|
|
['name' => 'WalledGarden#get', 'url' => '/204', 'verb' => 'GET'],
|
|
['name' => 'Search#search', 'url' => '/core/search', 'verb' => 'GET'],
|
|
],
|
|
'ocs' => [
|
|
['root' => '/cloud', 'name' => 'OCS#getCapabilities', 'url' => '/capabilities', 'verb' => 'GET'],
|
|
['root' => '', 'name' => 'OCS#getConfig', 'url' => '/config', 'verb' => 'GET'],
|
|
['root' => '/person', 'name' => 'OCS#personCheck', 'url' => '/check', 'verb' => 'POST'],
|
|
['root' => '/identityproof', 'name' => 'OCS#getIdentityProof', 'url' => '/key/{cloudId}', 'verb' => 'GET'],
|
|
['root' => '/core', 'name' => 'Navigation#getAppsNavigation', 'url' => '/navigation/apps', 'verb' => 'GET'],
|
|
['root' => '/core', 'name' => 'Navigation#getSettingsNavigation', 'url' => '/navigation/settings', 'verb' => 'GET'],
|
|
['root' => '/core', 'name' => 'AutoComplete#get', 'url' => '/autocomplete/get', 'verb' => 'GET'],
|
|
['root' => '/core', 'name' => 'WhatsNew#get', 'url' => '/whatsnew', 'verb' => 'GET'],
|
|
['root' => '/core', 'name' => 'WhatsNew#dismiss', 'url' => '/whatsnew', 'verb' => 'POST'],
|
|
['root' => '/core', 'name' => 'AppPassword#getAppPassword', 'url' => '/getapppassword', 'verb' => 'GET'],
|
|
],
|
|
]);
|
|
|
|
// Post installation check
|
|
|
|
/** @var $this OCP\Route\IRouter */
|
|
// Core ajax actions
|
|
// Routing
|
|
$this->create('core_ajax_update', '/core/ajax/update.php')
|
|
->actionInclude('core/ajax/update.php');
|
|
|
|
// File routes
|
|
$this->create('files.viewcontroller.showFile', '/f/{fileid}')->action(function($urlParams) {
|
|
$app = new \OCA\Files\AppInfo\Application($urlParams);
|
|
$app->dispatch('ViewController', 'index');
|
|
});
|
|
|
|
// Call routes
|
|
/**
|
|
* @suppress PhanUndeclaredClassConstant
|
|
* @suppress PhanUndeclaredClassMethod
|
|
*/
|
|
$this->create('spreed.pagecontroller.showCall', '/call/{token}')->action(function($urlParams) {
|
|
if (class_exists(\OCA\Spreed\AppInfo\Application::class, false)) {
|
|
$app = new \OCA\Spreed\AppInfo\Application($urlParams);
|
|
$app->dispatch('PageController', 'index');
|
|
} else {
|
|
throw new \OC\HintException('App spreed is not enabled');
|
|
}
|
|
});
|
|
|
|
// OCM routes
|
|
/**
|
|
* @suppress PhanUndeclaredClassConstant
|
|
* @suppress PhanUndeclaredClassMethod
|
|
*/
|
|
$this->create('cloud_federation_api.requesthandlercontroller.addShare', '/ocm/shares')->post()->action(function($urlParams) {
|
|
if (class_exists(\OCA\CloudFederationAPI\AppInfo\Application::class, false)) {
|
|
$app = new \OCA\CloudFederationAPI\AppInfo\Application($urlParams);
|
|
$app->dispatch('RequestHandlerController', 'addShare');
|
|
} else {
|
|
throw new \OC\HintException('Cloud Federation API not enabled');
|
|
}
|
|
});
|
|
|
|
/**
|
|
* @suppress PhanUndeclaredClassConstant
|
|
* @suppress PhanUndeclaredClassMethod
|
|
*/
|
|
$this->create('cloud_federation_api.requesthandlercontroller.receiveNotification', '/ocm/notifications')->post()->action(function($urlParams) {
|
|
if (class_exists(\OCA\CloudFederationAPI\AppInfo\Application::class, false)) {
|
|
$app = new \OCA\CloudFederationAPI\AppInfo\Application($urlParams);
|
|
$app->dispatch('RequestHandlerController', 'receiveNotification');
|
|
} else {
|
|
throw new \OC\HintException('Cloud Federation API not enabled');
|
|
}
|
|
});
|
|
|
|
|
|
// Sharing routes
|
|
$this->create('files_sharing.sharecontroller.showShare', '/s/{token}')->action(function($urlParams) {
|
|
if (class_exists(\OCA\Files_Sharing\AppInfo\Application::class, false)) {
|
|
$app = new \OCA\Files_Sharing\AppInfo\Application($urlParams);
|
|
$app->dispatch('ShareController', 'showShare');
|
|
} else {
|
|
throw new \OC\HintException('App file sharing is not enabled');
|
|
}
|
|
});
|
|
$this->create('files_sharing.sharecontroller.authenticate', '/s/{token}/authenticate/{redirect}')->post()->action(function($urlParams) {
|
|
if (class_exists(\OCA\Files_Sharing\AppInfo\Application::class, false)) {
|
|
$app = new \OCA\Files_Sharing\AppInfo\Application($urlParams);
|
|
$app->dispatch('ShareController', 'authenticate');
|
|
} else {
|
|
throw new \OC\HintException('App file sharing is not enabled');
|
|
}
|
|
});
|
|
$this->create('files_sharing.sharecontroller.showAuthenticate', '/s/{token}/authenticate/{redirect}')->get()->action(function($urlParams) {
|
|
if (class_exists(\OCA\Files_Sharing\AppInfo\Application::class, false)) {
|
|
$app = new \OCA\Files_Sharing\AppInfo\Application($urlParams);
|
|
$app->dispatch('ShareController', 'showAuthenticate');
|
|
} else {
|
|
throw new \OC\HintException('App file sharing is not enabled');
|
|
}
|
|
});
|
|
$this->create('files_sharing.sharecontroller.downloadShare', '/s/{token}/download')->get()->action(function($urlParams) {
|
|
if (class_exists(\OCA\Files_Sharing\AppInfo\Application::class, false)) {
|
|
$app = new \OCA\Files_Sharing\AppInfo\Application($urlParams);
|
|
$app->dispatch('ShareController', 'downloadShare');
|
|
} else {
|
|
throw new \OC\HintException('App file sharing is not enabled');
|
|
}
|
|
});
|
|
$this->create('files_sharing.publicpreview.directLink', '/s/{token}/preview')->get()->action(function($urlParams) {
|
|
if (class_exists(\OCA\Files_Sharing\AppInfo\Application::class, false)) {
|
|
$app = new \OCA\Files_Sharing\AppInfo\Application($urlParams);
|
|
$app->dispatch('PublicPreviewController', 'directLink');
|
|
} else {
|
|
throw new \OC\HintException('App file sharing is not enabled');
|
|
}
|
|
});
|