diff --git a/lib/Controller/FolderController.php b/lib/Controller/FolderController.php index 8ea5ebe35..f3dcaca46 100644 --- a/lib/Controller/FolderController.php +++ b/lib/Controller/FolderController.php @@ -13,6 +13,7 @@ use OCA\GroupFolders\Service\DelegationService; use OCA\GroupFolders\Service\FoldersFilter; use OCP\AppFramework\Http; +use OCP\AppFramework\Http\Attribute\PasswordConfirmationRequired; use OCP\AppFramework\Http\DataResponse; use OCP\AppFramework\OCS\OCSNotFoundException; use OCP\AppFramework\OCSController; @@ -148,6 +149,7 @@ private function getRootFolderStorageId(): ?int { * @NoAdminRequired * @throws OCSNotFoundException */ + #[PasswordConfirmationRequired] public function addFolder(string $mountpoint): DataResponse { $id = $this->manager->createFolder(trim($mountpoint)); $folder = $this->manager->getFolder($id, $this->rootFolder->getMountPoint()->getNumericStorageId()); @@ -161,6 +163,7 @@ public function addFolder(string $mountpoint): DataResponse { * @NoAdminRequired * @RequireGroupFolderAdmin */ + #[PasswordConfirmationRequired] public function removeFolder(int $id): DataResponse { $response = $this->checkFolderExists($id); if ($response) { @@ -176,6 +179,7 @@ public function removeFolder(int $id): DataResponse { * @NoAdminRequired * @RequireGroupFolderAdmin */ + #[PasswordConfirmationRequired] public function setMountPoint(int $id, string $mountPoint): DataResponse { $this->manager->renameFolder($id, trim($mountPoint)); return new DataResponse(['success' => true]); @@ -185,6 +189,7 @@ public function setMountPoint(int $id, string $mountPoint): DataResponse { * @NoAdminRequired * @RequireGroupFolderAdmin */ + #[PasswordConfirmationRequired] public function addGroup(int $id, string $group): DataResponse { $response = $this->checkFolderExists($id); if ($response) { @@ -198,6 +203,7 @@ public function addGroup(int $id, string $group): DataResponse { * @NoAdminRequired * @RequireGroupFolderAdmin */ + #[PasswordConfirmationRequired] public function removeGroup(int $id, string $group): DataResponse { $response = $this->checkFolderExists($id); if ($response) { @@ -211,6 +217,7 @@ public function removeGroup(int $id, string $group): DataResponse { * @NoAdminRequired * @RequireGroupFolderAdmin */ + #[PasswordConfirmationRequired] public function setPermissions(int $id, string $group, int $permissions): DataResponse { $response = $this->checkFolderExists($id); if ($response) { @@ -225,6 +232,7 @@ public function setPermissions(int $id, string $group, int $permissions): DataRe * @RequireGroupFolderAdmin * @throws \OCP\DB\Exception */ + #[PasswordConfirmationRequired] public function setManageACL(int $id, string $mappingType, string $mappingId, bool $manageAcl): DataResponse { $response = $this->checkFolderExists($id); if ($response) { @@ -238,6 +246,7 @@ public function setManageACL(int $id, string $mappingType, string $mappingId, bo * @NoAdminRequired * @RequireGroupFolderAdmin */ + #[PasswordConfirmationRequired] public function setQuota(int $id, int $quota): DataResponse { $response = $this->checkFolderExists($id); if ($response) { @@ -251,6 +260,7 @@ public function setQuota(int $id, int $quota): DataResponse { * @NoAdminRequired * @RequireGroupFolderAdmin */ + #[PasswordConfirmationRequired] public function setACL(int $id, bool $acl): DataResponse { $response = $this->checkFolderExists($id); if ($response) { @@ -264,6 +274,7 @@ public function setACL(int $id, bool $acl): DataResponse { * @NoAdminRequired * @RequireGroupFolderAdmin */ + #[PasswordConfirmationRequired] public function renameFolder(int $id, string $mountpoint): DataResponse { $response = $this->checkFolderExists($id); if ($response) { diff --git a/package-lock.json b/package-lock.json index 6077c5e83..a97623175 100644 --- a/package-lock.json +++ b/package-lock.json @@ -16,6 +16,7 @@ "@nextcloud/initial-state": "^2.2.0", "@nextcloud/l10n": "^3.1.0", "@nextcloud/logger": "^3.0.2", + "@nextcloud/password-confirmation": "^5.1.1", "@nextcloud/router": "^3.0.1", "@nextcloud/vue": "^8.17.0", "nextcloud-server": "^0.15.10", @@ -41,7 +42,6 @@ "@nextcloud/webpack-vue-config": "^5.5.1", "@types/bootstrap": "^5.2.10", "@types/jest": "^29.5.12", - "@types/jquery": "^3.5.29", "@types/react": "^17.0.43", "@types/react-dom": "^17.0.0", "@types/webpack": "^5.28.5", @@ -4407,6 +4407,25 @@ "npm": "^10.0.0" } }, + "node_modules/@nextcloud/password-confirmation": { + "version": "5.1.1", + "resolved": "https://registry.npmjs.org/@nextcloud/password-confirmation/-/password-confirmation-5.1.1.tgz", + "integrity": "sha512-UlQcjVe/fr/JaJ6TWaRM+yBLIEZRU6RWMy0JoExcA6UVJs2HJrRIyVMuiCLuIYlH23ReJH+z7zFI3+V7vdeJ1Q==", + "license": "MIT", + "dependencies": { + "@nextcloud/axios": "^2.5.0", + "@nextcloud/l10n": "^3.1.0", + "@nextcloud/router": "^3.0.1" + }, + "engines": { + "node": "^20.0.0", + "npm": "^10.0.0" + }, + "peerDependencies": { + "@nextcloud/vue": "^8.0.0", + "vue": "^2.7.16" + } + }, "node_modules/@nextcloud/paths": { "version": "2.2.1", "resolved": "https://registry.npmjs.org/@nextcloud/paths/-/paths-2.2.1.tgz", @@ -5018,15 +5037,6 @@ "pretty-format": "^29.0.0" } }, - "node_modules/@types/jquery": { - "version": "3.5.29", - "resolved": "https://registry.npmjs.org/@types/jquery/-/jquery-3.5.29.tgz", - "integrity": "sha512-oXQQC9X9MOPRrMhPHHOsXqeQDnWeCDT3PelUIg/Oy8FAbzSZtFHRjc7IpbfFVmpLtJ+UOoywpRsuO5Jxjybyeg==", - "dev": true, - "dependencies": { - "@types/sizzle": "*" - } - }, "node_modules/@types/jsdom": { "version": "20.0.1", "resolved": "https://registry.npmjs.org/@types/jsdom/-/jsdom-20.0.1.tgz", diff --git a/package.json b/package.json index 70807fef5..314cda46e 100644 --- a/package.json +++ b/package.json @@ -27,7 +27,6 @@ "@nextcloud/webpack-vue-config": "^5.5.1", "@types/bootstrap": "^5.2.10", "@types/jest": "^29.5.12", - "@types/jquery": "^3.5.29", "@types/react": "^17.0.43", "@types/react-dom": "^17.0.0", "@types/webpack": "^5.28.5", @@ -60,6 +59,7 @@ "@nextcloud/initial-state": "^2.2.0", "@nextcloud/l10n": "^3.1.0", "@nextcloud/logger": "^3.0.2", + "@nextcloud/password-confirmation": "^5.1.1", "@nextcloud/router": "^3.0.1", "@nextcloud/vue": "^8.17.0", "nextcloud-server": "^0.15.10", diff --git a/src/settings/Api.ts b/src/settings/Api.ts index 5aeb6f3ae..f1ec4de91 100644 --- a/src/settings/Api.ts +++ b/src/settings/Api.ts @@ -3,9 +3,10 @@ * SPDX-License-Identifier: AGPL-3.0-or-later */ import { generateUrl } from '@nextcloud/router' -import { OCSResult, AxiosOCSResult } from 'NC' import axios from '@nextcloud/axios' -import Thenable = JQuery.Thenable; +import { confirmPassword } from '@nextcloud/password-confirmation' +// eslint-disable-next-line n/no-unpublished-import +import type { OCSResponse } from '@nextcloud/typings/lib/ocs' export interface Group { gid: string; @@ -33,7 +34,6 @@ export interface ManageRuleProps { displayname: string; } - export interface Folder { id: number; mount_point: string; @@ -50,118 +50,119 @@ export class Api { return OC.generateUrl(`apps/groupfolders/${endpoint}`) } - listFolders(): Thenable { - return $.getJSON(this.getUrl('folders')) - .then((data: OCSResult) => Object.keys(data.ocs.data).map(id => data.ocs.data[id])) + async listFolders(): Promise { + const response = await axios.get>(this.getUrl('folders')) + return Object.keys(response.data.ocs.data).map(id => response.data.ocs.data[id]) } // Returns all NC groups - listGroups(): Thenable { - return $.getJSON(this.getUrl('delegation/groups')) - .then((data: OCSResult) => data.ocs.data) + async listGroups(): Promise { + const response = await axios.get>(this.getUrl('delegation/groups')) + return response.data.ocs.data } // Returns all visible NC circles - listCircles(): Thenable { - return $.getJSON(this.getUrl('delegation/circles')) - .then((data: OCSResult) => data.ocs.data) + async listCircles(): Promise { + const response = await axios.get>(this.getUrl('delegation/circles')) + return response.data.ocs.data } // Returns all groups that have been granted delegated admin or subadmin rights on groupfolders - listDelegatedGroups(classname: string): Thenable { - return axios.get(this.getUrl('/delegation/authorized-groups'), { params: { classname } }) - .then((data: AxiosOCSResult) => { - // The admin group is always there. We don't want the user to remove it - const groups = data.data.ocs.data.filter(g => g.gid !== 'admin') - return groups - }) + async listDelegatedGroups(classname: string): Promise { + const response = await axios.get>(this.getUrl('/delegation/authorized-groups'), { params: { classname } }) + return response.data.ocs.data.filter(g => g.gid !== 'admin') } // Updates the list of groups that have been granted delegated admin or subadmin rights on groupfolders - updateDelegatedGroups(newGroups: Group[], classname: string): Thenable { - return axios.post(generateUrl('/apps/settings/') + '/settings/authorizedgroups/saveSettings', { + async updateDelegatedGroups(newGroups: Group[], classname: string): Promise { + await confirmPassword() + + await axios.post(generateUrl('/apps/settings/') + '/settings/authorizedgroups/saveSettings', { newGroups, class: classname, - }).then((data) => data.data) + }) } - createFolder(mountPoint: string): Thenable { - return $.post(this.getUrl('folders'), { - mountpoint: mountPoint - }, null, 'json').then((data: OCSResult) => data.ocs.data) + async createFolder(mountPoint: string): Promise { + await confirmPassword() + + const response = await axios.post>(this.getUrl('folders'), { mountpoint: mountPoint }) + return response.data.ocs.data } - deleteFolder(id: number): Thenable { - return $.ajax({ - url: this.getUrl(`folders/${id}`), - type: 'DELETE' - }) + async deleteFolder(id: number): Promise { + await confirmPassword() + + await axios.delete(this.getUrl(`folders/${id}`)) } - addGroup(folderId: number, group: string): Thenable { - return $.post(this.getUrl(`folders/${folderId}/groups`), { - group - }) + async addGroup(folderId: number, group: string): Promise { + await confirmPassword() + + await axios.post(this.getUrl(`folders/${folderId}/groups`), { group }) } - removeGroup(folderId: number, group: string): Thenable { - return $.ajax({ - url: this.getUrl(`folders/${folderId}/groups/${group}`), - type: 'DELETE' - }) + async removeGroup(folderId: number, group: string): Promise { + await confirmPassword() + + await axios.delete(this.getUrl(`folders/${folderId}/groups/${group}`)) } - setPermissions(folderId: number, group: string, permissions: number): Thenable { - return $.post(this.getUrl(`folders/${folderId}/groups/${group}`), { - permissions - }) + async setPermissions(folderId: number, group: string, permissions: number): Promise { + await confirmPassword() + + await axios.post(this.getUrl(`folders/${folderId}/groups/${group}`), { permissions }) } - setManageACL(folderId: number, type: string, id: string, manageACL: boolean): Thenable { - return $.post(this.getUrl(`folders/${folderId}/manageACL`), { + async setManageACL(folderId: number, type: string, id: string, manageACL: boolean): Promise { + await confirmPassword() + + await axios.post(this.getUrl(`folders/${folderId}/manageACL`), { mappingType: type, mappingId: id, - manageAcl: manageACL ? 1 : 0 + manageAcl: manageACL ? 1 : 0, }) } - setQuota(folderId: number, quota: number): Thenable { - return $.post(this.getUrl(`folders/${folderId}/quota`), { - quota - }) + async setQuota(folderId: number, quota: number): Promise { + await confirmPassword() + + await axios.post(this.getUrl(`folders/${folderId}/quota`), { quota }) } - setACL(folderId: number, acl: boolean): Thenable { - return $.post(this.getUrl(`folders/${folderId}/acl`), { - acl: acl ? 1 : 0 - }) + async setACL(folderId: number, acl: boolean): Promise { + await confirmPassword() + + await axios.post(this.getUrl(`folders/${folderId}/acl`), { acl: acl ? 1 : 0 }) } - renameFolder(folderId: number, mountpoint: string): Thenable { - return $.post(this.getUrl(`folders/${folderId}/mountpoint`), { - mountpoint - }) + async renameFolder(folderId: number, mountpoint: string): Promise { + await confirmPassword() + + await axios.post(this.getUrl(`folders/${folderId}/mountpoint`), { mountpoint }) } - aclMappingSearch(folderId: number, search: string): Thenable<{groups: OCSGroup[], users: OCSUser[]}> { - return $.getJSON(this.getUrl(`folders/${folderId}/search?format=json&search=${search}`)) - .then((data: OCSResult<{ groups: OCSGroup[]; users: OCSUser[]; }>) => { + async aclMappingSearch(folderId: number, search: string): Promise<{ + groups: ManageRuleProps[], + users: ManageRuleProps[] + }> { + const response = await axios.get>(this.getUrl(`folders/${folderId}/search`), { params: { search } }) + return { + groups: Object.values(response.data.ocs.data.groups).map((item) => { return { - groups: Object.values(data.ocs.data.groups).map((item) => { - return { - type: 'group', - id: item.gid, - displayname: item.displayname - } - }), - users: Object.values(data.ocs.data.users).map((item) => { - return { - type: 'user', - id: item.uid, - displayname: item.displayname - } - }) + type: 'group', + id: item.gid, + displayname: item.displayname, } - }) + }), + users: Object.values(response.data.ocs.data.users).map((item) => { + return { + type: 'user', + id: item.uid, + displayname: item.displayname, + } + }), + } } + } diff --git a/src/settings/Nextcloud.d.ts b/src/settings/Nextcloud.d.ts index c914cad71..3704d08ba 100644 --- a/src/settings/Nextcloud.d.ts +++ b/src/settings/Nextcloud.d.ts @@ -76,35 +76,3 @@ declare namespace OC { } declare function t(app: string, string: string, vars?: { [key: string]: string }, count?: number, options?: EscapeOptions): string; - -declare module 'NC' { - export interface OCSResult { - ocs: { - data: T; - meta: { - status: 'ok' | 'failure'; - message: string; - statuscode: number; - totalitems: number; - itemsperpage: number; - } - } - } -} - -declare module 'NC' { - export interface AxiosOCSResult { - data: { - ocs: { - data: T; - meta: { - status: 'ok' | 'failure'; - message: string; - statuscode: number; - totalitems: number; - itemsperpage: number; - } - } - } - } -}