authenticated communication

Author: ArtificialOwl

appinfo/info.xml

@@ -25,6 +25,9 @@
 		<command>OCA\Backup\Command\RemoteAdd</command>
 		<command>OCA\Backup\Command\RemoteList</command>
 		<command>OCA\Backup\Command\RemoteRemove</command>
+
+		<command>OCA\Backup\Command\RestoringBrowse</command>
+
 		<!--		<command>OCA\Backup\Command\Create</command>-->
 		<!--		<command>OCA\Backup\Command\Listing</command>-->
 		<!--		<command>OCA\Backup\Command\Details</command>-->

appinfo/routes.php

@@ -3,6 +3,14 @@
 return [
 	'routes' => [
 		['name' => 'Remote#appService', 'url' => '/', 'verb' => 'GET'],
-		['name' => 'Remote#test', 'url' => '/test', 'verb' => 'GET']
+		['name' => 'Remote#test', 'url' => '/test', 'verb' => 'GET'],
+
+		['name' => 'Remote#listRestoringPoint', 'url' => '/rp', 'verb' => 'GET'],
+		['name' => 'Remote#detailsRestoringPoint', 'url' => '/rp/{restoringId}', 'verb' => 'GET'],
+		['name' => 'Remote#partRestoringPoint', 'url' => '/rp/{restoringId}/part', 'verb' => 'GET'],
+		['name' => 'Remote#downloadRestoringPoint', 'url' => '/rp/{restoringId}/download', 'verb' => 'GET'],
+		['name' => 'Remote#createRestoringPoint', 'url' => '/rp', 'verb' => 'PUT'],
+		['name' => 'Remote#updateRestoringPoint', 'url' => '/rp/{restoringId}', 'verb' => 'PUT'],
+		['name' => 'Remote#uploadRestoringPoint', 'url' => '/rp/{restoringId}', 'verb' => 'POST']
 	]
 ];

lib/Command/RemoteAdd.php

@@ -136,7 +136,6 @@ protected function execute(InputInterface $input, OutputInterface $output): int
 		}
 
 		$remoteSignatory->setInstance($address);
-echo json_encode($knownInstance) . "\n";
 		if (!is_null($knownInstance)) {
 			if ($remoteSignatory->getInstance() !== $knownInstance->getInstance()) {
 				throw new RemoteInstanceDuplicateException(

lib/Command/RestoringBrowse.php

@@ -0,0 +1,167 @@
+<?php
+
+declare(strict_types=1);
+
+
+/**
+ * Nextcloud - Backup
+ *
+ * This file is licensed under the Affero General Public License version 3 or
+ * later. See the COPYING file.
+ *
+ * @author Maxence Lange <maxence@artificial-owl.com>
+ * @copyright 2021, Maxence Lange <maxence@artificial-owl.com>
+ * @license GNU AGPL version 3 or any later version
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU Affero General Public License as
+ * published by the Free Software Foundation, either version 3 of the
+ * License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU Affero General Public License for more details.
+ *
+ * You should have received a copy of the GNU Affero General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ *
+ */
+
+
+namespace OCA\Backup\Command;
+
+
+use ArtificialOwl\MySmallPhpTools\Exceptions\InvalidItemException;
+use ArtificialOwl\MySmallPhpTools\Model\Request;
+use ArtificialOwl\MySmallPhpTools\Traits\Nextcloud\nc23\TNC23Deserialize;
+use OC\Core\Command\Base;
+use OCA\Backup\Db\RemoteRequest;
+use OCA\Backup\Exceptions\RemoteInstanceException;
+use OCA\Backup\Exceptions\RemoteInstanceNotFoundException;
+use OCA\Backup\Exceptions\RemoteResourceNotFoundException;
+use OCA\Backup\Model\RemoteInstance;
+use OCA\Backup\Model\RestoringPoint;
+use OCA\Backup\Service\RemoteStreamService;
+use Symfony\Component\Console\Input\InputInterface;
+use Symfony\Component\Console\Output\OutputInterface;
+use Symfony\Component\Console\Question\ChoiceQuestion;
+
+
+/**
+ * Class RemoteList
+ *
+ * @package OCA\Backup\Command
+ */
+class RestoringBrowse extends Base {
+
+
+	use TNC23Deserialize;
+
+
+	const LOCAL = 'local';
+
+
+	/** @var RemoteRequest */
+	private $remoteRequest;
+
+	/** @var RemoteStreamService */
+	private $remoteStreamService;
+
+
+	public function __construct(RemoteRequest $remoteRequest, RemoteStreamService $remoteStreamService) {
+		$this->remoteRequest = $remoteRequest;
+		$this->remoteStreamService = $remoteStreamService;
+
+		parent::__construct();
+	}
+
+
+	/**
+	 *
+	 */
+	protected function configure() {
+		$this->setName('backup:point:browse')
+			 ->setDescription('Browse restoring point');
+	}
+
+
+	/**
+	 * @param InputInterface $input
+	 * @param OutputInterface $output
+	 *
+	 * @return int
+	 * @throws RemoteInstanceException
+	 * @throws RemoteInstanceNotFoundException
+	 * @throws RemoteResourceNotFoundException
+	 */
+	protected function execute(InputInterface $input, OutputInterface $output): int {
+		$instance = $this->selectInstanceToBrowse($input, $output);
+
+		$output->writeln('');
+		$output->writeln('Browsing available Restoring Point on <info>' . $instance . '</info>');
+
+		$rp = $this->getRestoringPoint($instance, ($instance === self::LOCAL));
+		echo 'RP: ' . json_encode($rp, JSON_PRETTY_PRINT);
+
+		return 0;
+	}
+
+
+	/**
+	 * @param InputInterface $input
+	 * @param OutputInterface $output
+	 *
+	 * @return string
+	 */
+	private function selectInstanceToBrowse(InputInterface $input, OutputInterface $output): string {
+		$remote = array_filter(
+			array_map(
+				function (RemoteInstance $remoteInstance): ?string {
+					if (!$remoteInstance->isOutgoing()) {
+						return null;
+					}
+
+					return $remoteInstance->getInstance();
+				}, $this->remoteRequest->getAll()
+			)
+		);
+
+		$output->writeln('');
+		$helper = $this->getHelper('question');
+		$question = new ChoiceQuestion(
+			'Which location to browse ?',
+			array_merge([self::LOCAL], $remote),
+			0
+		);
+		$question->setErrorMessage('Instance %s is not known.');
+
+		return $helper->ask($input, $output, $question);
+	}
+
+
+	/**
+	 * @param string $instance
+	 * @param bool $local
+	 *
+	 * @return RestoringPoint[]
+	 * @throws RemoteInstanceNotFoundException
+	 * @throws RemoteInstanceException
+	 * @throws RemoteResourceNotFoundException
+	 * @throws InvalidItemException
+	 */
+	private function getRestoringPoint(string $instance, bool $local = false): array {
+		if ($local) {
+			return [];
+		}
+
+		$result = $this->remoteStreamService->resultRequestRemoteInstance(
+			$instance,
+			RemoteInstance::RP_LIST,
+			Request::TYPE_GET
+		);
+
+	return 	$this->deserializeArray($result, RestoringPoint::class);
+	}
+
+}

lib/Controller/RemoteController.php

@@ -32,12 +32,22 @@
 namespace OCA\Backup\Controller;
 
 
+use ArtificialOwl\MySmallPhpTools\Exceptions\InvalidOriginException;
 use ArtificialOwl\MySmallPhpTools\Exceptions\JsonNotRequestedException;
+use ArtificialOwl\MySmallPhpTools\Exceptions\MalformedArrayException;
 use ArtificialOwl\MySmallPhpTools\Exceptions\SignatoryException;
+use ArtificialOwl\MySmallPhpTools\Exceptions\SignatureException;
+use ArtificialOwl\MySmallPhpTools\Model\Nextcloud\nc23\NC23SignedRequest;
 use ArtificialOwl\MySmallPhpTools\Traits\Nextcloud\nc22\TNC22Controller;
+use Exception;
 use OC\AppFramework\Middleware\Security\Exceptions\NotLoggedInException;
+use OCA\Backup\Exceptions\RemoteRequestException;
+use OCA\Backup\IRemoteRequest;
+use OCA\Backup\Model\RemoteInstance;
+use OCA\Backup\RemoteRequest\ListRestoringPoint;
 use OCA\Backup\Service\RemoteStreamService;
 use OCP\AppFramework\Controller;
+use OCP\AppFramework\Http;
 use OCP\AppFramework\Http\DataResponse;
 use OCP\IRequest;
 
@@ -95,5 +105,117 @@ public function appService(): DataResponse {
 		return new DataResponse($signatory);
 	}
 
+
+	/**
+	 * @PublicPage
+	 * @NoCSRFRequired
+	 *
+	 * @return DataResponse
+	 */
+	public function listRestoringPoint(): DataResponse {
+		try {
+			$request = $this->extractRequest(ListRestoringPoint::class);
+		} catch (Exception $e) {
+			return $this->exceptionResponse($e, Http::STATUS_UNAUTHORIZED);
+		}
+
+		try {
+			$request->execute();
+
+			return new DataResponse($request->getOutcomeData());
+		} catch (Exception $e) {
+			$this->e($e, ['request' => $request]);
+
+			return $this->exceptionResponse($e);
+		}
+	}
+
+
+	public function detailsRestoringPoint(int $restoringId): DataResponse {
+	}
+
+
+	public function partRestoringPoint(int $restoringId): DataResponse {
+	}
+
+
+	public function downloadRestoringPoint(int $restoringId): DataResponse {
+	}
+
+	public function uploadRestoringPoint(int $restoringId): DataResponse {
+	}
+
+
+	/**
+	 * @param string $class
+	 *
+	 * @return IRemoteRequest
+	 * @throws RemoteRequestException
+	 * @throws SignatoryException
+	 * @throws InvalidOriginException
+	 * @throws MalformedArrayException
+	 * @throws SignatureException
+	 */
+	private function extractRequest(string $class = ''): ?IRemoteRequest {
+		$signed = $this->remoteStreamService->incomingSignedRequest();
+		$this->confirmRemoteInstance($signed);
+
+		if ($class === '') {
+			return null;
+		}
+
+		$request = new $class();
+		if (!($request instanceof IRemoteRequest)) {
+			throw new RemoteRequestException('invalid class ' . $class);
+		}
+
+		$request->import(json_decode($signed->getBody(), true));
+		$request->setSignedRequest($signed);
+
+		return $request;
+	}
+
+
+	/**
+	 * @param NC23SignedRequest $signedRequest
+	 *
+	 * @return RemoteInstance
+	 * @throws SignatoryException
+	 */
+	private function confirmRemoteInstance(NC23SignedRequest $signedRequest): RemoteInstance {
+		/** @var RemoteInstance $signatory */
+		$signatory = $signedRequest->getSignatory();
+
+		if (!$signatory instanceof RemoteInstance) {
+			$this->debug('Signatory is not a known RemoteInstance', ['signedRequest' => $signedRequest]);
+			throw new SignatoryException('Could not confirm identity');
+		}
+
+		if (!$signatory->isIncoming()) {
+			throw new SignatoryException('Remote instance is not configured as Incoming');
+		}
+
+		return $signatory;
+	}
+
+
+	/**
+	 * @param Exception $e
+	 * @param int $httpErrorCode
+	 *
+	 * @return DataResponse
+	 */
+	public function exceptionResponse(
+		Exception $e,
+		int $httpErrorCode = Http::STATUS_BAD_REQUEST
+	): DataResponse {
+		return new DataResponse(
+			[
+				'message' => $e->getMessage(),
+				'code' => $e->getCode()
+			],
+			($e->getCode() > 0) ? $e->getCode() : $httpErrorCode
+		);
+	}
 }
 

lib/Exceptions/RemoteInstanceException.php

@@ -0,0 +1,46 @@
+<?php
+
+declare(strict_types=1);
+
+
+/**
+ * Nextcloud - Backup
+ *
+ * This file is licensed under the Affero General Public License version 3 or
+ * later. See the COPYING file.
+ *
+ * @author Maxence Lange <maxence@artificial-owl.com>
+ * @copyright 2021, Maxence Lange <maxence@artificial-owl.com>
+ * @license GNU AGPL version 3 or any later version
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU Affero General Public License as
+ * published by the Free Software Foundation, either version 3 of the
+ * License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU Affero General Public License for more details.
+ *
+ * You should have received a copy of the GNU Affero General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ *
+ */
+
+
+namespace OCA\Backup\Exceptions;
+
+
+use Exception;
+
+
+/**
+ * Class RemoteInstanceException
+ *
+ * @package OCA\Backup\Exceptions
+ */
+class RemoteInstanceException extends Exception {
+
+}
+