nextcloud/apps/encryption/lib/Command/DisableMasterKey.php

<?php

/**
 * SPDX-FileCopyrightText: 2017 Nextcloud GmbH and Nextcloud contributors
 * SPDX-License-Identifier: AGPL-3.0-or-later
 */
namespace OCA\Encryption\Command;

use OCA\Encryption\Util;
use OCP\AppFramework\Services\IAppConfig;
use Symfony\Component\Console\Command\Command;
use Symfony\Component\Console\Helper\QuestionHelper;
use Symfony\Component\Console\Input\InputInterface;
use Symfony\Component\Console\Output\OutputInterface;
use Symfony\Component\Console\Question\ConfirmationQuestion;

class DisableMasterKey extends Command {
	public function __construct(
		protected Util $util,
		protected IAppConfig $config,
		protected QuestionHelper $questionHelper,
	) {
		parent::__construct();
	}

	protected function configure(): void {
		$this
			->setName('encryption:disable-master-key')
			->setDescription('Disable the master key and use per-user keys instead. Only available for fresh installations with no existing encrypted data! There is no way to enable it again.');
	}

	protected function execute(InputInterface $input, OutputInterface $output): int {
		$isMasterKeyEnabled = $this->util->isMasterKeyEnabled();

		if (!$isMasterKeyEnabled) {
			$output->writeln('Master key already disabled');
			return self::SUCCESS;
		}

		$question = new ConfirmationQuestion(
			'Warning: Only perform this operation for a fresh installations with no existing encrypted data! '
			. 'There is no way to enable the master key again. '
			. 'We strongly recommend to keep the master key, it provides significant performance improvements '
			. 'and is easier to handle for both, users and administrators. '
			. 'Do you really want to switch to per-user keys? (y/n) ', false);

		if ($this->questionHelper->ask($input, $output, $question)) {
			$this->config->setAppValueBool('useMasterKey', false);
			$output->writeln('Master key successfully disabled.');
			return self::SUCCESS;
		}

		$output->writeln('aborted.');
		return self::FAILURE;
	}
}
add occ command to disable the master key again Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 07:22:48 -04:00			`<?php`
chore: apply new CSFixer rules Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de> # Conflicts: # apps/settings/lib/SetupChecks/PhpOpcacheSetup.php 2025-06-30 09:04:05 -04:00
add occ command to disable the master key again Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 07:22:48 -04:00			`/**`
chore: Add SPDX header Signed-off-by: Andy Scherzinger <info@andy-scherzinger.de> 2024-05-28 10:42:42 -04:00			`* SPDX-FileCopyrightText: 2017 Nextcloud GmbH and Nextcloud contributors`
			`* SPDX-License-Identifier: AGPL-3.0-or-later`
add occ command to disable the master key again Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 07:22:48 -04:00			`*/`
			`namespace OCA\Encryption\Command;`

			`use OCA\Encryption\Util;`
refactor: fix psalm issues from encryption commands Signed-off-by: Carl Schwan <carl.schwan@nextcloud.com> 2025-10-01 09:00:20 -04:00			`use OCP\AppFramework\Services\IAppConfig;`
add occ command to disable the master key again Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 07:22:48 -04:00			`use Symfony\Component\Console\Command\Command;`
			`use Symfony\Component\Console\Helper\QuestionHelper;`
			`use Symfony\Component\Console\Input\InputInterface;`
			`use Symfony\Component\Console\Output\OutputInterface;`
			`use Symfony\Component\Console\Question\ConfirmationQuestion;`

			`class DisableMasterKey extends Command {`
Refactors encryption app commands. To improve code readability. Signed-off-by: Faraz Samapoor <fsa@adlas.at> 2023-08-03 07:06:40 -04:00			`public function __construct(`
			`protected Util $util,`
refactor: fix psalm issues from encryption commands Signed-off-by: Carl Schwan <carl.schwan@nextcloud.com> 2025-10-01 09:00:20 -04:00			`protected IAppConfig $config,`
Refactors encryption app commands. To improve code readability. Signed-off-by: Faraz Samapoor <fsa@adlas.at> 2023-08-03 07:06:40 -04:00			`protected QuestionHelper $questionHelper,`
			`) {`
add occ command to disable the master key again Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 07:22:48 -04:00			`parent::__construct();`
			`}`

Refactors encryption app commands. To improve code readability. Signed-off-by: Faraz Samapoor <fsa@adlas.at> 2023-08-03 07:06:40 -04:00			`protected function configure(): void {`
add occ command to disable the master key again Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 07:22:48 -04:00			`$this`
			`->setName('encryption:disable-master-key')`
			`->setDescription('Disable the master key and use per-user keys instead. Only available for fresh installations with no existing encrypted data! There is no way to enable it again.');`
			`}`

Also always return in app commands Signed-off-by: Joas Schilling <coding@schilljs.com> 2020-06-26 09:12:11 -04:00			`protected function execute(InputInterface $input, OutputInterface $output): int {`
add occ command to disable the master key again Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 07:22:48 -04:00			`$isMasterKeyEnabled = $this->util->isMasterKeyEnabled();`

Format control structures, classes, methods and function To continue this formatting madness, here's a tiny patch that adds unified formatting for control structures like if and loops as well as classes, their methods and anonymous functions. This basically forces the constructs to start on the same line. This is not exactly what PSR2 wants, but I think we can have a few exceptions with "our" style. The starting of braces on the same line is pracrically standard for our code. This also removes and empty lines from method/function bodies at the beginning and end. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2020-04-10 08:19:56 -04:00			`if (!$isMasterKeyEnabled) {`
add occ command to disable the master key again Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 07:22:48 -04:00			`$output->writeln('Master key already disabled');`
Uses early returns. To improve code readability. Signed-off-by: Faraz Samapoor <fsa@adlas.at> 2023-08-03 07:20:33 -04:00			`return self::SUCCESS;`
add occ command to disable the master key again Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 07:22:48 -04:00			`}`
Uses early returns. To improve code readability. Signed-off-by: Faraz Samapoor <fsa@adlas.at> 2023-08-03 07:20:33 -04:00
			`$question = new ConfirmationQuestion(`
			`'Warning: Only perform this operation for a fresh installations with no existing encrypted data! '`
			`. 'There is no way to enable the master key again. '`
			`. 'We strongly recommend to keep the master key, it provides significant performance improvements '`
			`. 'and is easier to handle for both, users and administrators. '`
			`. 'Do you really want to switch to per-user keys? (y/n) ', false);`

			`if ($this->questionHelper->ask($input, $output, $question)) {`
refactor: fix psalm issues from encryption commands Signed-off-by: Carl Schwan <carl.schwan@nextcloud.com> 2025-10-01 09:00:20 -04:00			`$this->config->setAppValueBool('useMasterKey', false);`
Uses early returns. To improve code readability. Signed-off-by: Faraz Samapoor <fsa@adlas.at> 2023-08-03 07:20:33 -04:00			`$output->writeln('Master key successfully disabled.');`
			`return self::SUCCESS;`
			`}`

			`$output->writeln('aborted.');`
			`return self::FAILURE;`
add occ command to disable the master key again Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-30 07:22:48 -04:00			`}`
			`}`