getUID(); $shares = array_merge( $this->shareManager->getSharedWith($userId, IShare::TYPE_USER, null, -1), $this->shareManager->getSharedWith($userId, IShare::TYPE_GROUP, null, -1), $this->shareManager->getSharedWith($userId, IShare::TYPE_CIRCLE, null, -1), $this->shareManager->getSharedWith($userId, IShare::TYPE_ROOM, null, -1), $this->shareManager->getSharedWith($userId, IShare::TYPE_DECK, null, -1), $this->shareManager->getSharedWith($userId, IShare::TYPE_SCIENCEMESH, null, -1), ); $shares = $this->filterShares($shares, $userId); $superShares = $this->buildSuperShares($shares, $user); return $this->getMountsFromSuperShares($userId, $superShares, $loader, $user); } /** * Groups shares by path (nodeId) and target path * * @param IShare[] $shares * @return IShare[][] array of grouped shares, each element in the * array is a group which itself is an array of shares */ private function groupShares(array $shares) { $tmp = []; foreach ($shares as $share) { $nodeId = $share->getNodeId(); if (!isset($tmp[$nodeId])) { $tmp[$nodeId] = []; } $tmp[$nodeId][] = $share; } $result = []; // sort by stime, the super share will be based on the least recent share foreach ($tmp as &$tmp2) { @usort($tmp2, function ($a, $b) { $aTime = $a->getShareTime()->getTimestamp(); $bTime = $b->getShareTime()->getTimestamp(); if ($aTime === $bTime) { return $a->getId() < $b->getId() ? -1 : 1; } return $aTime < $bTime ? -1 : 1; }); $result[] = $tmp2; } return $result; } /** * Groups shares by node ID and builds a new share object (super share) * which represents a summarized version of all the shares in the group. * * The permissions and attributes of the super share are accumulated from * the shares in the group, forming the most permissive combination * possible. * * @param IShare[] $allShares * @param IUser $user user * @return list}> Tuple of [superShare, groupedShares] */ private function buildSuperShares(array $allShares, IUser $user) { $result = []; $groupedShares = $this->groupShares($allShares); foreach ($groupedShares as $shares) { if (count($shares) === 0) { continue; } $superShare = $this->shareManager->newShare(); // compute super share based on first entry of the group $superShare->setId($shares[0]->getId()) ->setShareOwner($shares[0]->getShareOwner()) ->setNodeId($shares[0]->getNodeId()) ->setShareType($shares[0]->getShareType()) ->setTarget($shares[0]->getTarget()); $this->combineNotes($shares, $superShare); // use most permissive permissions // this covers the case where there are multiple shares for the same // file e.g. from different groups and different permissions $superPermissions = 0; $superAttributes = $this->shareManager->newShare()->newAttributes(); $status = IShare::STATUS_PENDING; foreach ($shares as $share) { $status = max($status, $share->getStatus()); // update permissions $superPermissions |= $share->getPermissions(); // update share permission attributes $attributes = $share->getAttributes(); if ($attributes !== null) { $this->mergeAttributes($attributes, $superAttributes); } $this->adjustTarget($share, $superShare, $user); if ($share->getNodeCacheEntry() !== null) { $superShare->setNodeCacheEntry($share->getNodeCacheEntry()); } } $superShare->setPermissions($superPermissions); $superShare->setStatus($status); $superShare->setAttributes($superAttributes); $result[] = [$superShare, $shares]; } return $result; } /** * Combines $attributes into the most permissive set of attributes and * sets them in $superAttributes. */ private function mergeAttributes( IAttributes $attributes, IAttributes $superAttributes, ): void { foreach ($attributes->toArray() as $attribute) { if ($superAttributes->getAttribute( $attribute['scope'], $attribute['key'] ) === true) { // if super share attribute is already enabled, it is most permissive continue; } // update super share attributes with subshare attribute $superAttributes->setAttribute( $attribute['scope'], $attribute['key'], $attribute['value'] ); } } /** * Gather notes from all the shares. Since these are readily available * here, storing them enables the DAV FilesPlugin to avoid executing many * DB queries to retrieve the same information. * * @param array $shares * @param IShare $superShare * @return void */ private function combineNotes( array &$shares, IShare $superShare, ): void { $allNotes = implode( "\n", array_map(static fn ($sh) => $sh->getNote(), $shares) ); $superShare->setNote($allNotes); } /** * Adjusts the target in $share for DB consistency, if needed. */ private function adjustTarget( IShare $share, IShare $superShare, IUser $user, ): void { if ($share->getTarget() === $superShare->getTarget()) { return; } $share->setTarget($superShare->getTarget()); try { $this->shareManager->moveShare($share, $user->getUID()); } catch (InvalidArgumentException $e) { // ignore as it is not important and we don't want to // block FS setup // the subsequent code anyway only uses the target of the // super share // such issue can usually happen when dealing with // null groups which usually appear with group backend // caching inconsistencies $this->logger->debug( 'Could not adjust share target for share ' . $share->getId( ) . ' to make it consistent: ' . $e->getMessage(), ['app' => 'files_sharing'] ); } } /** * @param string $userId * @param array $superShares * @param IStorageFactory $loader * @param IUser $user * @return array * @throws Exception */ private function getMountsFromSuperShares( string $userId, array $superShares, IStorageFactory $loader, IUser $user, ): array { $allMounts = $this->mountManager->getAll(); $mounts = []; $view = new View('/' . $userId . '/files'); $ownerViews = []; $sharingDisabledForUser = $this->shareManager->sharingDisabledForUser($userId); /** @var CappedMemoryCache $folderExistCache */ $foldersExistCache = new CappedMemoryCache(); $validShareCache = $this->cacheFactory->createLocal('share-valid-mountpoint-max'); $maxValidatedShare = $validShareCache->get($userId) ?? 0; $newMaxValidatedShare = $maxValidatedShare; foreach ($superShares as $share) { [$parentShare, $groupedShares] = $share; try { if ($parentShare->getStatus() !== IShare::STATUS_ACCEPTED && ($parentShare->getShareType() === IShare::TYPE_GROUP || $parentShare->getShareType() === IShare::TYPE_USERGROUP || $parentShare->getShareType() === IShare::TYPE_USER) ) { continue; } $owner = $parentShare->getShareOwner(); if (!isset($ownerViews[$owner])) { $ownerViews[$owner] = new View('/' . $owner . '/files'); } $shareId = (int)$parentShare->getId(); $mount = new SharedMount( '\OCA\Files_Sharing\SharedStorage', $allMounts, [ 'user' => $userId, // parent share 'superShare' => $parentShare, // children/component of the superShare 'groupedShares' => $groupedShares, 'ownerView' => $ownerViews[$owner], 'sharingDisabledForUser' => $sharingDisabledForUser ], $loader, $view, $foldersExistCache, $this->eventDispatcher, $user, $shareId <= $maxValidatedShare, ); $newMaxValidatedShare = max($shareId, $newMaxValidatedShare); $event = new ShareMountedEvent($mount); $this->eventDispatcher->dispatchTyped($event); $mounts[$mount->getMountPoint()] = $allMounts[$mount->getMountPoint()] = $mount; foreach ($event->getAdditionalMounts() as $additionalMount) { $allMounts[$additionalMount->getMountPoint()] = $mounts[$additionalMount->getMountPoint()] = $additionalMount; } } catch (Exception $e) { $this->logger->error( 'Error while trying to create shared mount', [ 'app' => 'files_sharing', 'exception' => $e, ], ); } } $validShareCache->set($userId, $newMaxValidatedShare, 24 * 60 * 60); // array_filter removes the null values from the array return array_values(array_filter($mounts)); } /** * Filters out shares owned or shared by the user and ones for which the * user has no permissions. * * @param IShare[] $shares * @return IShare[] */ private function filterShares(array $shares, string $userId): array { return array_filter( $shares, static function (IShare $share) use ($userId) { return $share->getPermissions() > 0 && $share->getShareOwner() !== $userId && $share->getSharedBy() !== $userId; } ); } }