eventDispatcher = $eventDispatcher; $this->initialState = $initialState; $this->userSession = $userSession; $this->rootFolder = $rootFolder; $this->shareManager = $shareManager; $this->userManager = $userManager; $this->appManager = $appManager; $this->db = $db; $this->config = $config; } /** * @PublicPage * * @NoCSRFRequired * * Show the authentication page * The form has to submit to the authenticate method route */ public function showAuthenticate(): TemplateResponse { $this->redirectIfOwned($this->share); $templateParameters = ['share' => $this->share]; return new TemplateResponse('core', 'publicshareauth', $templateParameters, 'guest'); } public function isValidToken(): bool { try { $this->share = $this->shareManager->getShareByToken($this->getToken()); return true; } catch (\Exception $e) { return false; } } /** * @PublicPage * * @NoCSRFRequired */ public function showShare(): TemplateResponse { // Check whether share exists try { $share = $this->shareManager->getShareByToken($this->getToken()); } catch (\Exception $e) { throw new NotFoundException(); } if (!self::validateShare($share)) { throw new NotFoundException(); } // Redirect to main app if user owns this share $this->redirectIfOwned($share); // Set incognito mode \OC_User::setIncognitoMode(true); // Scripts Util::addScript($this->appName, 'memories-main'); PageController::provideCommonInitialState($this->initialState); // Share info $this->initialState->provideInitialState('no_download', $share->getHideDownload()); // Share file id only if not a folder $node = $share->getNode(); if ($node instanceof \OCP\Files\File) { $this->initialState->provideInitialState('single_item', $this->getSingleItemInitialState($node)); } $response = new PublicTemplateResponse($this->appName, 'main'); $response->setHeaderTitle($node->getName()); $response->setFooterVisible(false); // wth is that anyway? $response->setContentSecurityPolicy(PageController::getCSP()); $response->cacheFor(0); return $response; } /** * Validate the permissions of the share. */ public static function validateShare(?IShare $share): bool { if (null === $share) { return false; } // Get user manager $userManager = \OC::$server->get(IUserManager::class); // Check if share read is allowed if (!($share->getPermissions() & \OCP\Constants::PERMISSION_READ)) { return false; } // If the owner is disabled no access to the linke is granted $owner = $userManager->get($share->getShareOwner()); if (null === $owner || !$owner->isEnabled()) { return false; } // If the initiator of the share is disabled no access is granted $initiator = $userManager->get($share->getSharedBy()); if (null === $initiator || !$initiator->isEnabled()) { return false; } return $share->getNode()->isReadable() && $share->getNode()->isShareable(); } protected function showAuthFailed(): TemplateResponse { $templateParameters = ['share' => $this->share, 'wrongpw' => true]; return new TemplateResponse('core', 'publicshareauth', $templateParameters, 'guest'); } protected function verifyPassword(string $password): bool { return $this->shareManager->checkPassword($this->share, $password); } protected function getPasswordHash(): string { return $this->share->getPassword(); } protected function isPasswordProtected(): bool { return null !== $this->share->getPassword(); } protected function redirectIfOwned(IShare $share) { $user = $this->userSession->getUser(); if (!$user) { return null; } /** @var \OCP\Files\Node */ $node = null; /** @var \OCP\Files\Folder */ $userFolder = null; // Check if the user has this folder in their root try { $userFolder = $this->rootFolder->getUserFolder($user->getUID()); $nodes = $userFolder->getById($share->getNodeId()); if (0 === \count($nodes)) { return null; } $node = $nodes[0]; } catch (NotFoundException $e) { return null; } // Check if node is a folder if (!$node instanceof \OCP\Files\Folder) { return null; } // Remove user folder path from start of node path $relPath = substr($node->getPath(), \strlen($userFolder->getPath())); // Get the user's folders path $foldersPath = $this->config->getUserValue($user->getUID(), Application::APPNAME, 'foldersPath', '/'); // Check if relPath starts with foldersPath if (0 !== strpos($relPath, $foldersPath)) { return null; } // Remove foldersPath from start of relPath $relPath = substr($relPath, \strlen($foldersPath)); // Redirect to the local path $url = $this->urlGenerator->linkToRouteAbsolute('memories.Page.folder', ['path' => $relPath]); // Cannot send a redirect response here because the return // type is a template response for the base class header('HTTP/1.1 302 Found'); header('Location: '.$url); exit; } /** Get initial state of single item */ private function getSingleItemInitialState(\OCP\Files\File $file): string { $timelineQuery = new TimelineQuery($this->db); $photo = $timelineQuery->getSingleItem($file->getId()); return json_encode($photo); } }