Skip to content

Commit

Permalink
Merge pull request #4003 from nextcloud/backport/3946/stable26
Browse files Browse the repository at this point in the history
  • Loading branch information
@juliusknorr
juliusknorr authored Mar 28, 2023
2 parents b069aa8 + 1f415f4 commit e6efe28
Showing 1 changed file with 25 additions and 5 deletions.
30 changes: 25 additions & 5 deletions lib/Controller/SessionController.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,6 +31,7 @@
use OCP\AppFramework\Controller;
use OCP\AppFramework\Http\DataResponse;
use OCP\IRequest;
use OCP\IUser;
use OCP\IUserManager;
use OCP\IUserSession;

Expand All @@ -41,6 +42,9 @@ class SessionController extends Controller {
private IUserManager $userManager;
private IUserSession $userSession;

private bool $restoreUser = false;
private ?IUser $userToRestore = null;

public function __construct(string $appName, IRequest $request, ApiService $apiService, SessionService $sessionService, NotificationService $notificationService, IUserManager $userManager, IUserSession $userSession) {
parent::__construct($appName, $request);
$this->apiService = $apiService;
Expand Down Expand Up @@ -70,17 +74,25 @@ public function close(int $documentId, int $sessionId, string $sessionToken): Da
* @PublicPage
*/
public function push(int $documentId, int $sessionId, string $sessionToken, int $version, array $steps, string $awareness): DataResponse {
$this->loginSessionUser($documentId, $sessionId, $sessionToken);
return $this->apiService->push($documentId, $sessionId, $sessionToken, $version, $steps, $awareness);
try {
$this->loginSessionUser($documentId, $sessionId, $sessionToken);
return $this->apiService->push($documentId, $sessionId, $sessionToken, $version, $steps, $awareness);
} finally {
$this->restoreSessionUser();
}
}

/**
* @NoAdminRequired
* @PublicPage
*/
public function sync(int $documentId, int $sessionId, string $sessionToken, int $version = 0, string $autosaveContent = null, string $documentState = null, bool $force = false, bool $manualSave = false): DataResponse {
$this->loginSessionUser($documentId, $sessionId, $sessionToken);
return $this->apiService->sync($documentId, $sessionId, $sessionToken, $version, $autosaveContent, $documentState, $force, $manualSave);
try {
$this->loginSessionUser($documentId, $sessionId, $sessionToken);
return $this->apiService->sync($documentId, $sessionId, $sessionToken, $version, $autosaveContent, $documentState, $force, $manualSave);
} finally {
$this->restoreSessionUser();
}
}

/**
Expand All @@ -104,11 +116,19 @@ public function mention(int $documentId, int $sessionId, string $sessionToken, s

private function loginSessionUser(int $documentId, int $sessionId, string $sessionToken) {
$currentSession = $this->sessionService->getSession($documentId, $sessionId, $sessionToken);
if ($currentSession !== false) {
if ($currentSession !== false && !$this->userSession->isLoggedIn()) {
$user = $this->userManager->get($currentSession->getUserId());
if ($user !== null) {
$this->restoreUser = true;
$this->userToRestore = $this->userSession->getUser();
$this->userSession->setUser($user);
}
}
}

private function restoreSessionUser(): void {
if ($this->restoreUser) {
$this->userSession->setUser($this->userToRestore);
}
}
}

0 comments on commit e6efe28

Please sign in to comment.