You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
124 lines
3.8 KiB
124 lines
3.8 KiB
<?php |
|
declare(strict_types=1); |
|
/** |
|
* @copyright Copyright (c) 2017 Lukas Reschke <lukas@statuscode.ch> |
|
* |
|
* @license GNU AGPL version 3 or any later version |
|
* |
|
* This program is free software: you can redistribute it and/or modify |
|
* it under the terms of the GNU Affero General Public License as |
|
* published by the Free Software Foundation, either version 3 of the |
|
* License, or (at your option) any later version. |
|
* |
|
* This program is distributed in the hope that it will be useful, |
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of |
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
|
* GNU Affero General Public License for more details. |
|
* |
|
* You should have received a copy of the GNU Affero General Public License |
|
* along with this program. If not, see <http://www.gnu.org/licenses/>. |
|
* |
|
*/ |
|
|
|
namespace OCA\OAuth2\Controller; |
|
|
|
use OC\Authentication\Token\DefaultTokenMapper; |
|
use OCA\OAuth2\Db\AccessTokenMapper; |
|
use OCA\OAuth2\Db\Client; |
|
use OCA\OAuth2\Db\ClientMapper; |
|
use OCP\AppFramework\Controller; |
|
use OCP\AppFramework\Http; |
|
use OCP\AppFramework\Http\JSONResponse; |
|
use OCP\IL10N; |
|
use OCP\IRequest; |
|
use OCP\Security\ISecureRandom; |
|
|
|
class SettingsController extends Controller { |
|
/** @var ClientMapper */ |
|
private $clientMapper; |
|
/** @var ISecureRandom */ |
|
private $secureRandom; |
|
/** @var AccessTokenMapper */ |
|
private $accessTokenMapper; |
|
/** @var DefaultTokenMapper */ |
|
private $defaultTokenMapper; |
|
/** @var IL10N */ |
|
private $l; |
|
|
|
const validChars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789'; |
|
|
|
/** |
|
* @param string $appName |
|
* @param IRequest $request |
|
* @param ClientMapper $clientMapper |
|
* @param ISecureRandom $secureRandom |
|
* @param AccessTokenMapper $accessTokenMapper |
|
* @param DefaultTokenMapper $defaultTokenMapper |
|
*/ |
|
public function __construct(string $appName, |
|
IRequest $request, |
|
ClientMapper $clientMapper, |
|
ISecureRandom $secureRandom, |
|
AccessTokenMapper $accessTokenMapper, |
|
DefaultTokenMapper $defaultTokenMapper, |
|
IL10N $l |
|
) { |
|
parent::__construct($appName, $request); |
|
$this->secureRandom = $secureRandom; |
|
$this->clientMapper = $clientMapper; |
|
$this->accessTokenMapper = $accessTokenMapper; |
|
$this->defaultTokenMapper = $defaultTokenMapper; |
|
$this->l = $l; |
|
} |
|
|
|
public function addClient(string $name, |
|
string $redirectUri): JSONResponse { |
|
|
|
if (filter_var($redirectUri, FILTER_VALIDATE_URL) === false) { |
|
return new JSONResponse(['message' => $this->l->t('Your redirect URL needs to be a full URL for example: https://yourdomain.com/path')], Http::STATUS_BAD_REQUEST); |
|
} |
|
|
|
$client = new Client(); |
|
$client->setName($name); |
|
$client->setRedirectUri($redirectUri); |
|
$client->setSecret($this->secureRandom->generate(64, self::validChars)); |
|
$client->setClientIdentifier($this->secureRandom->generate(64, self::validChars)); |
|
$client = $this->clientMapper->insert($client); |
|
|
|
$result = [ |
|
'id' => $client->getId(), |
|
'name' => $client->getName(), |
|
'redirectUri' => $client->getRedirectUri(), |
|
'clientId' => $client->getClientIdentifier(), |
|
'clientSecret' => $client->getSecret(), |
|
]; |
|
|
|
return new JSONResponse($result); |
|
} |
|
|
|
public function deleteClient(int $id): JSONResponse { |
|
$client = $this->clientMapper->getByUid($id); |
|
$this->accessTokenMapper->deleteByClientId($id); |
|
$this->defaultTokenMapper->deleteByName($client->getName()); |
|
$this->clientMapper->delete($client); |
|
return new JSONResponse([]); |
|
} |
|
|
|
public function getClients(): JSONResponse { |
|
$clients = $this->clientMapper->getClients(); |
|
|
|
$result = []; |
|
|
|
foreach ($clients as $client) { |
|
$result[] = [ |
|
'id' => $client->getId(), |
|
'name' => $client->getName(), |
|
'redirectUri' => $client->getRedirectUri(), |
|
'clientId' => $client->getClientIdentifier(), |
|
'clientSecret' => $client->getSecret(), |
|
]; |
|
} |
|
|
|
return new JSONResponse($result); |
|
} |
|
}
|
|
|