mirror of https://github.com/sualko/cloud_bbb
152 lines
3.9 KiB
PHP
152 lines
3.9 KiB
PHP
<?php
|
|
|
|
namespace OCA\BigBlueButton\Controller;
|
|
|
|
use OCA\BigBlueButton\BigBlueButton\API;
|
|
use OCA\BigBlueButton\BigBlueButton\Presentation;
|
|
use OCA\BigBlueButton\Db\Room;
|
|
use OCA\BigBlueButton\NoPermissionException;
|
|
use OCA\BigBlueButton\NotFoundException;
|
|
use OCA\BigBlueButton\Permission;
|
|
use OCP\AppFramework\Http\RedirectResponse;
|
|
use OCP\IRequest;
|
|
use OCP\ISession;
|
|
use OCP\IURLGenerator;
|
|
use OCP\IUserSession;
|
|
use OCP\IConfig;
|
|
use OCA\BigBlueButton\Service\RoomService;
|
|
use OCP\AppFramework\Controller;
|
|
use OCP\AppFramework\Http\TemplateResponse;
|
|
|
|
class JoinController extends Controller {
|
|
/** @var string */
|
|
protected $token;
|
|
|
|
/** @var Room */
|
|
protected $room;
|
|
|
|
/** @var RoomService */
|
|
private $service;
|
|
|
|
/** @var IURLGenerator */
|
|
private $urlGenerator;
|
|
|
|
/** @var IUserSession */
|
|
private $userSession;
|
|
|
|
/** @var IConfig */
|
|
private $config;
|
|
|
|
/** @var API */
|
|
private $api;
|
|
|
|
/** @var Permission */
|
|
private $permission;
|
|
|
|
public function __construct(
|
|
string $appName,
|
|
IRequest $request,
|
|
ISession $session,
|
|
RoomService $service,
|
|
IURLGenerator $urlGenerator,
|
|
IUserSession $userSession,
|
|
IConfig $config,
|
|
API $api,
|
|
Permission $permission
|
|
) {
|
|
parent::__construct($appName, $request, $session);
|
|
|
|
$this->service = $service;
|
|
$this->urlGenerator = $urlGenerator;
|
|
$this->userSession = $userSession;
|
|
$this->config = $config;
|
|
$this->api = $api;
|
|
$this->permission = $permission;
|
|
}
|
|
|
|
public function setToken(string $token) {
|
|
$this->token = $token;
|
|
$this->room = null;
|
|
}
|
|
|
|
public function isValidToken(): bool {
|
|
$room = $this->getRoom();
|
|
|
|
return $room !== null;
|
|
}
|
|
|
|
/**
|
|
* @PublicPage
|
|
* @NoCSRFRequired
|
|
*/
|
|
public function index($displayname, $u = '', $filename = '', $password = '') {
|
|
$room = $this->getRoom();
|
|
|
|
if ($room === null) {
|
|
throw new NotFoundException();
|
|
}
|
|
|
|
$displayname = trim($displayname);
|
|
$userId = null;
|
|
$presentation = null;
|
|
|
|
if ($this->userSession->isLoggedIn()) {
|
|
$user = $this->userSession->getUser();
|
|
$displayname = $user->getDisplayName();
|
|
$userId = $user->getUID();
|
|
|
|
if ($room->access == Room::ACCESS_INTERNAL_RESTRICTED && !$this->permission->isUser($room, $userId)) {
|
|
throw new NoPermissionException();
|
|
}
|
|
|
|
if ($this->permission->isAdmin($room, $userId)) {
|
|
$presentation = new Presentation($u, $filename);
|
|
}
|
|
} elseif ($room->access === Room::ACCESS_INTERNAL || $room->access == Room::ACCESS_INTERNAL_RESTRICTED) {
|
|
return new RedirectResponse(
|
|
$this->urlGenerator->linkToRoute('core.login.showLoginForm', [
|
|
'redirect_url' => $this->urlGenerator->linkToRoute(
|
|
'bbb.join.index',
|
|
['token' => $this->token]
|
|
),
|
|
])
|
|
);
|
|
} elseif (empty($displayname) || strlen($displayname) < 3 || ($room->access === Room::ACCESS_PASSWORD && $password !== $room->password)) {
|
|
$response = new TemplateResponse($this->appName, 'join', [
|
|
'room' => $room->name,
|
|
'wrongdisplayname' => !empty($displayname) && strlen($displayname) < 3,
|
|
'passwordRequired' => $room->access === Room::ACCESS_PASSWORD,
|
|
'wrongPassword' => $password !== $room->password && $password !== '',
|
|
], 'guest');
|
|
|
|
$this->addFormActionDomain($response);
|
|
|
|
return $response;
|
|
}
|
|
|
|
$creationDate = $this->api->createMeeting($room, $presentation);
|
|
$joinUrl = $this->api->createJoinUrl($room, $creationDate, $displayname, $userId);
|
|
|
|
return new RedirectResponse($joinUrl);
|
|
}
|
|
|
|
private function addFormActionDomain($response) {
|
|
$apiUrl = $this->config->getAppValue($this->appName, 'api.url');
|
|
$parsedApiUrl = parse_url($apiUrl);
|
|
|
|
if ($parsedApiUrl === false) {
|
|
throw new \Exception('No valid api url provided');
|
|
}
|
|
|
|
$response->getContentSecurityPolicy()->addAllowedFormActionDomain(($parsedApiUrl['scheme'] ?: 'https') . '://' . $parsedApiUrl['host']);
|
|
}
|
|
|
|
private function getRoom(): ?Room {
|
|
if ($this->room === null) {
|
|
$this->room = $this->service->findByUid($this->token);
|
|
}
|
|
|
|
return $this->room;
|
|
}
|
|
}
|