migration to nextcloud app v3.0.0

Signed-off-by: Biermair Martin <martin.biermair@wimbergerhaus.at>

lib/IMAP.php

@@ -0,0 +1,120 @@
+<?php
+/**
+ * @author Robin Appelman <icewind@owncloud.com>
+ * @author Jonas Sulzer <jonas@violoncello.ch>
+ * @copyright (c) 2012 Robin Appelman <icewind@owncloud.com>
+ * This file is licensed under the Affero General Public License version 3 or
+ * later.
+ * See the COPYING-README file.
+ */
+namespace OCA\UserExternal;
+
+
+/**
+ * User authentication against an IMAP mail server
+ *
+ * @category Apps
+ * @package  UserExternal
+ * @author   Robin Appelman <icewind@owncloud.com>
+ * @license  http://www.gnu.org/licenses/agpl AGPL
+ * @link     http://github.com/owncloud/apps
+ */
+class IMAP extends Base {
+	private $mailbox;
+	private $port;
+	private $sslmode;
+	private $domain;
+	private $stripeDomain;
+	private $groupDomain;
+
+	/**
+	 * Create new IMAP authentication provider
+	 *
+	 * @param string $mailbox IMAP server domain/IP
+	 * @param int $port IMAP server $port
+	 * @param string $sslmode
+	 * @param string $domain  If provided, loging will be restricted to this domain
+	 * @param boolean $stripeDomain (whether to stripe the domain part from the username or not)
+	 * @param boolean $groupDomain (whether to add the usere to a group corresponding to the domain of the address)
+	 */
+	public function __construct($mailbox, $port = null, $sslmode = null, $domain = null, $stripeDomain = true, $groupDomain = false) {
+		parent::__construct($mailbox);
+		$this->mailbox = $mailbox;
+		$this->port = $port === null ? 143 : $port;
+		$this->sslmode = $sslmode;
+		$this->domain = $domain === null ? '' : $domain;
+		$this->stripeDomain = $stripeDomain;
+		$this->groupDomain = $groupDomain;
+	}
+
+	/**
+	 * Check if the password is correct without logging in the user
+	 *
+	 * @param string $uid      The username
+	 * @param string $password The password
+	 *
+	 * @return true/false
+	 */
+	public function checkPassword($uid, $password) {
+		// Replace escaped @ symbol in uid (which is a mail address)
+		// but only if there is no @ symbol and if there is a %40 inside the uid
+		if (!(strpos($uid, '@') !== false) && (strpos($uid, '%40') !== false)) {
+			$uid = str_replace("%40","@",$uid);
+		}
+
+		$pieces = explode('@', $uid);
+		if ($this->domain !== '') {
+			if (count($pieces) === 1) {
+				$username = $uid . '@' . $this->domain;
+			} else if(count($pieces) === 2 && $pieces[1] === $this->domain) {
+				$username = $uid;
+				if ($this->stripeDomain) {
+					$uid = $pieces[0];
+				}
+			} else {
+				\OC::$server->getLogger()->error(
+					'ERROR: User has a wrong domain! Expecting: '.$this->domain,
+					['app' => 'user_external']
+				);
+				return false;
+			}
+		} else {
+			$username = $uid;
+ 		}
+
+		$groups = [];
+		if ($this->groupDomain && $pieces[1]) {
+					$groups[] = $pieces[1];
+		}
+
+		$protocol = ($this->sslmode === "ssl") ? "imaps" : "imap";
+		$url = "{$protocol}://{$this->mailbox}:{$this->port}";
+		$ch = curl_init();
+		if ($this->sslmode === 'tls') {
+			curl_setopt($ch, CURLOPT_USE_SSL, CURLUSESSL_ALL);
+		}
+		curl_setopt($ch, CURLOPT_URL, $url);
+		curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
+		curl_setopt($ch, CURLOPT_USERPWD, $username.":".$password);
+		curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 10);
+		curl_setopt($ch, CURLOPT_CUSTOMREQUEST, 'CAPABILITY');
+
+		$canconnect = curl_exec($ch);
+
+		if($canconnect) {
+			curl_close($ch);
+			$uid = mb_strtolower($uid);
+			$this->storeUser($uid, $groups);
+			return $uid;
+		} else {
+			\OC::$server->getLogger()->error(
+				'ERROR: Could not connect to imap server via curl: '.curl_error($ch),
+				['app' => 'user_external']
+			);
+		}
+
+		curl_close($ch);
+
+		return false;
+	}
+}