Merge pull request #1194 from nextcloud/feat/password-hash-backend

feat: Implement IPasswordHashBackend
nextcloud · Jul 11, 2024 · 07f19a6 · 07f19a6
2 parents f4e252b + 4166c63
commit 07f19a6
Show file tree

Hide file tree

Showing 3 changed files with 40 additions and 9 deletions.
diff --git a/appinfo/info.xml b/appinfo/info.xml
@@ -9,7 +9,7 @@
 Guests accounts can be created from the share menu by entering either the recipients email or name and choosing "create guest account", once the share is created the guest user will receive an email notification about the mail with a link to set their password.
 
 Guests users can only access files shared to them and cannot create any files outside of shares, additionally, the apps accessible to guest accounts are whitelisted.]]></description>
-	<version>3.2.0</version>
+	<version>4.0.0</version>
 	<licence>agpl</licence>
 	<author>Nextcloud</author>
 	<types>
@@ -26,7 +26,7 @@ Guests users can only access files shared to them and cannot create any files ou
 	<screenshot>https://github.com/raw/nextcloud/guests/master/screenshots/settings.png</screenshot>
 	<screenshot>https://github.com/raw/nextcloud/guests/master/screenshots/dropdown.png</screenshot>
 	<dependencies>
-		<nextcloud min-version="29" max-version="30" />
+		<nextcloud min-version="30" max-version="30" />
 	</dependencies>
 	<commands>
 		<command>OCA\Guests\Command\ListCommand</command>

diff --git a/composer.lock b/composer.lock
diff --git a/lib/UserBackend.php b/lib/UserBackend.php
@@ -23,6 +23,7 @@
 
 namespace OCA\Guests;
 
+use InvalidArgumentException;
 use OC\Cache\CappedMemoryCache;
 use OCP\EventDispatcher\IEventDispatcher;
 use OCP\IDBConnection;
@@ -34,6 +35,7 @@
 use OCP\User\Backend\IGetDisplayNameBackend;
 use OCP\User\Backend\IGetHomeBackend;
 use OCP\User\Backend\IGetRealUIDBackend;
+use OCP\User\Backend\IPasswordHashBackend;
 use OCP\User\Backend\ISetDisplayNameBackend;
 use OCP\User\Backend\ISetPasswordBackend;
 
@@ -47,7 +49,8 @@ class UserBackend extends ABackend implements
 	ICheckPasswordBackend,
 	IGetHomeBackend,
 	ICountUsersBackend,
-	IGetRealUIDBackend {
+	IGetRealUIDBackend,
+	IPasswordHashBackend {
 	/** @var CappedMemoryCache */
 	private $cache;
 	/** @var IEventDispatcher */
@@ -160,6 +163,34 @@ public function setPassword(string $uid, string $password): bool {
 		return false;
 	}
 
+	public function getPasswordHash(string $userId): ?string {
+		if (!$this->userExists($userId)) {
+			return null;
+		}
+		$qb = $this->dbConn->getQueryBuilder();
+		$qb->select('password')
+			->from('guests_users')
+			->where($qb->expr()->eq('uid_lower', $qb->createNamedParameter(mb_strtolower($userId))));
+		/** @var false|string $hash */
+		$hash = $qb->executeQuery()->fetchOne();
+		if ($hash === false) {
+			return null;
+		}
+		return $hash;
+	}
+
+	public function setPasswordHash(string $userId, string $passwordHash): bool {
+		if (!$this->hasher->validate($passwordHash)) {
+			throw new InvalidArgumentException();
+		}
+		$qb = $this->dbConn->getQueryBuilder();
+		$qb->update('guests_users')
+			->set('password', $qb->createNamedParameter($passwordHash))
+			->where($qb->expr()->eq('uid_lower', $qb->createNamedParameter(mb_strtolower($userId))));
+		$result = $qb->executeStatement();
+		return ($result !== 0);
+	}
+
 	/**
 	 * Set display name
 	 *