mirror of
https://github.com/nextcloud/server.git
synced 2026-02-11 23:04:22 -05:00
ca9272d147
This prevents the password from being sent to the webui. While an admin will always be able to retrieve the passwords (as they can do arbitrairy code execution by design) this prevents casual password snooping Signed-off-by: Robin Appelman <robin@icewind.nl>
190 lines
4.7 KiB
PHP
190 lines
4.7 KiB
PHP
<?php
|
|
/**
|
|
* @copyright Copyright (c) 2016, ownCloud, Inc.
|
|
*
|
|
* @author Joas Schilling <coding@schilljs.com>
|
|
* @author Juan Pablo Villafáñez <jvillafanez@solidgear.es>
|
|
* @author Robin Appelman <robin@icewind.nl>
|
|
* @author Robin McCorkell <robin@mccorkell.me.uk>
|
|
* @author Roeland Jago Douma <roeland@famdouma.nl>
|
|
* @author Vincent Petry <pvince81@owncloud.com>
|
|
*
|
|
* @license AGPL-3.0
|
|
*
|
|
* This code is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License, version 3,
|
|
* as published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License, version 3,
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>
|
|
*
|
|
*/
|
|
|
|
namespace OCA\Files_External\Controller;
|
|
|
|
|
|
use OCA\Files_External\NotFoundException;
|
|
use OCA\Files_External\Service\GlobalStoragesService;
|
|
use OCP\AppFramework\Http;
|
|
use OCP\AppFramework\Http\DataResponse;
|
|
use OCP\IL10N;
|
|
use OCP\ILogger;
|
|
use OCP\IRequest;
|
|
|
|
/**
|
|
* Global storages controller
|
|
*/
|
|
class GlobalStoragesController extends StoragesController {
|
|
/**
|
|
* Creates a new global storages controller.
|
|
*
|
|
* @param string $AppName application name
|
|
* @param IRequest $request request object
|
|
* @param IL10N $l10n l10n service
|
|
* @param GlobalStoragesService $globalStoragesService storage service
|
|
* @param ILogger $logger
|
|
*/
|
|
public function __construct(
|
|
$AppName,
|
|
IRequest $request,
|
|
IL10N $l10n,
|
|
GlobalStoragesService $globalStoragesService,
|
|
ILogger $logger
|
|
) {
|
|
parent::__construct(
|
|
$AppName,
|
|
$request,
|
|
$l10n,
|
|
$globalStoragesService,
|
|
$logger
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Create an external storage entry.
|
|
*
|
|
* @param string $mountPoint storage mount point
|
|
* @param string $backend backend identifier
|
|
* @param string $authMechanism authentication mechanism identifier
|
|
* @param array $backendOptions backend-specific options
|
|
* @param array $mountOptions mount-specific options
|
|
* @param array $applicableUsers users for which to mount the storage
|
|
* @param array $applicableGroups groups for which to mount the storage
|
|
* @param int $priority priority
|
|
*
|
|
* @return DataResponse
|
|
*/
|
|
public function create(
|
|
$mountPoint,
|
|
$backend,
|
|
$authMechanism,
|
|
$backendOptions,
|
|
$mountOptions,
|
|
$applicableUsers,
|
|
$applicableGroups,
|
|
$priority
|
|
) {
|
|
$newStorage = $this->createStorage(
|
|
$mountPoint,
|
|
$backend,
|
|
$authMechanism,
|
|
$backendOptions,
|
|
$mountOptions,
|
|
$applicableUsers,
|
|
$applicableGroups,
|
|
$priority
|
|
);
|
|
if ($newStorage instanceof DataResponse) {
|
|
return $newStorage;
|
|
}
|
|
|
|
$response = $this->validate($newStorage);
|
|
if (!empty($response)) {
|
|
return $response;
|
|
}
|
|
|
|
$newStorage = $this->service->addStorage($newStorage);
|
|
|
|
$this->updateStorageStatus($newStorage);
|
|
|
|
return new DataResponse(
|
|
$this->formatStorageForUI($newStorage),
|
|
Http::STATUS_CREATED
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Update an external storage entry.
|
|
*
|
|
* @param int $id storage id
|
|
* @param string $mountPoint storage mount point
|
|
* @param string $backend backend identifier
|
|
* @param string $authMechanism authentication mechansim identifier
|
|
* @param array $backendOptions backend-specific options
|
|
* @param array $mountOptions mount-specific options
|
|
* @param array $applicableUsers users for which to mount the storage
|
|
* @param array $applicableGroups groups for which to mount the storage
|
|
* @param int $priority priority
|
|
* @param bool $testOnly whether to storage should only test the connection or do more things
|
|
*
|
|
* @return DataResponse
|
|
*/
|
|
public function update(
|
|
$id,
|
|
$mountPoint,
|
|
$backend,
|
|
$authMechanism,
|
|
$backendOptions,
|
|
$mountOptions,
|
|
$applicableUsers,
|
|
$applicableGroups,
|
|
$priority,
|
|
$testOnly = true
|
|
) {
|
|
$storage = $this->createStorage(
|
|
$mountPoint,
|
|
$backend,
|
|
$authMechanism,
|
|
$backendOptions,
|
|
$mountOptions,
|
|
$applicableUsers,
|
|
$applicableGroups,
|
|
$priority
|
|
);
|
|
if ($storage instanceof DataResponse) {
|
|
return $storage;
|
|
}
|
|
$storage->setId($id);
|
|
|
|
$response = $this->validate($storage);
|
|
if (!empty($response)) {
|
|
return $response;
|
|
}
|
|
|
|
try {
|
|
$storage = $this->service->updateStorage($storage);
|
|
} catch (NotFoundException $e) {
|
|
return new DataResponse(
|
|
[
|
|
'message' => (string)$this->l10n->t('Storage with ID "%d" not found', array($id))
|
|
],
|
|
Http::STATUS_NOT_FOUND
|
|
);
|
|
}
|
|
|
|
$this->updateStorageStatus($storage, $testOnly);
|
|
|
|
return new DataResponse(
|
|
$this->formatStorageForUI($storage),
|
|
Http::STATUS_OK
|
|
);
|
|
|
|
}
|
|
|
|
|
|
}
|