feat: request federated locks using webdav propfind

Signed-off-by: Benjamin Frueh <[email protected]>

Author: benjaminfrueh

appinfo/routes.php

@@ -11,6 +11,5 @@
 	'ocs' => [
 		['name' => 'Lock#locking', 'url' => '/lock/{fileId}', 'verb' => 'PUT'],
 		['name' => 'Lock#unlocking', 'url' => '/lock/{fileId}', 'verb' => 'DELETE'],
-		['name' => 'Lock#getLockByToken', 'url' => '/lock/token/{token}', 'verb' => 'GET'],
 	]
 ];

lib/AppInfo/Application.php

@@ -13,6 +13,7 @@
 use OCA\Files\Event\LoadAdditionalScriptsEvent;
 use OCA\FilesLock\Capability;
 use OCA\FilesLock\Listeners\LoadAdditionalScripts;
+use OCA\FilesLock\Listeners\PropfindPropertiesListener;
 use OCA\FilesLock\LockProvider;
 use OCA\FilesLock\Service\FileService;
 use OCA\FilesLock\Service\LockService;
@@ -21,6 +22,7 @@
 use OCP\AppFramework\Bootstrap\IBootContext;
 use OCP\AppFramework\Bootstrap\IBootstrap;
 use OCP\AppFramework\Bootstrap\IRegistrationContext;
+use OCP\Files\Events\BeforePropfindEvent;
 use OCP\Files\Lock\ILockManager;
 use OCP\IUserSession;
 use OCP\Server;
@@ -48,6 +50,10 @@ public function register(IRegistrationContext $context): void {
 			LoadAdditionalScriptsEvent::class,
 			LoadAdditionalScripts::class
 		);
+		$context->registerEventListener(
+			BeforePropfindEvent::class,
+			PropfindPropertiesListener::class
+		);
 	}
 
 	public function boot(IBootContext $context): void {

lib/Controller/LockController.php

@@ -17,21 +17,14 @@
 use OCA\FilesLock\Service\FileService;
 use OCA\FilesLock\Service\LockService;
 use OCP\AppFramework\Http;
-use OCP\AppFramework\Http\Attribute\BruteForceProtection;
-use OCP\AppFramework\Http\Attribute\NoCSRFRequired;
-use OCP\AppFramework\Http\Attribute\PublicPage;
 use OCP\AppFramework\Http\DataResponse;
 use OCP\AppFramework\OCSController;
-use OCP\Files\Folder;
 use OCP\Files\Lock\ILock;
 use OCP\Files\Lock\LockContext;
 use OCP\Files\Lock\OwnerLockedException;
-use OCP\Files\NotFoundException;
 use OCP\IL10N;
 use OCP\IRequest;
 use OCP\IUserSession;
-use OCP\Share\Exceptions\ShareNotFound;
-use OCP\Share\IManager;
 use Psr\Log\LoggerInterface;
 
 /**
@@ -51,7 +44,6 @@ public function __construct(
 		private FileService $fileService,
 		private LockService $lockService,
 		private IL10N $l10n,
-		private IManager $shareManager,
 	) {
 		parent::__construct(Application::APP_ID, $request);
 
@@ -187,40 +179,4 @@ protected function fail(
 
 		return new DataResponse($data, $status);
 	}
-
-	#[PublicPage]
-	#[NoCSRFRequired]
-	#[BruteForceProtection(action: 'files_lock_token')]
-	public function getLockByToken(string $token, string $path = ''): DataResponse {
-		try {
-			$share = $this->shareManager->getShareByToken($token);
-			$node = $share->getNode();
-
-			if ($path !== '' && $node instanceof Folder) {
-				try {
-					$node = $node->get(ltrim($path, '/'));
-				} catch (NotFoundException) {
-					return new DataResponse([], Http::STATUS_NOT_FOUND);
-				}
-			}
-
-			$fileId = $node->getId();
-
-			try {
-				$lock = $this->lockService->getLockFromFileId($fileId);
-				$this->lockService->injectMetadata($lock);
-
-				return new DataResponse([
-					'locked' => true,
-					'lock' => $lock->jsonSerialize()
-				]);
-			} catch (LockNotFoundException) {
-				return new DataResponse(['locked' => false]);
-			}
-		} catch (ShareNotFound) {
-			$response = new DataResponse([], Http::STATUS_NOT_FOUND);
-			$response->throttle(['token' => $token]);
-			return $response;
-		}
-	}
 }

lib/Listeners/PropfindPropertiesListener.php

@@ -0,0 +1,37 @@
+<?php
+
+declare(strict_types=1);
+
+/**
+ * SPDX-FileCopyrightText: 2025 Nextcloud GmbH and Nextcloud contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\FilesLock\Listeners;
+
+use OCA\FilesLock\AppInfo\Application;
+use OCP\EventDispatcher\Event;
+use OCP\EventDispatcher\IEventListener;
+use OCP\Files\Events\BeforePropfindEvent;
+
+/**
+ * @template-implements IEventListener<BeforePropfindEvent>
+ */
+class PropfindPropertiesListener implements IEventListener {
+	public function handle(Event $event): void {
+		if (!($event instanceof BeforePropfindEvent)) {
+			return;
+		}
+
+		$event->addProperties([
+			Application::DAV_PROPERTY_LOCK,
+			Application::DAV_PROPERTY_LOCK_OWNER,
+			Application::DAV_PROPERTY_LOCK_OWNER_DISPLAYNAME,
+			Application::DAV_PROPERTY_LOCK_OWNER_TYPE,
+			Application::DAV_PROPERTY_LOCK_EDITOR,
+			Application::DAV_PROPERTY_LOCK_TIME,
+			Application::DAV_PROPERTY_LOCK_TIMEOUT,
+			Application::DAV_PROPERTY_LOCK_TOKEN,
+		]);
+	}
+}

lib/LockProvider.php

@@ -20,17 +20,13 @@ public function __construct(LockService $lockService) {
 	}
 
 	public function getLocks(int $fileId): array {
-		try {
-			$lock = $this->lockService->getLockFromFileId($fileId);
-			$this->lockService->injectMetadata($lock);
-		} catch (Exceptions\LockNotFoundException $e) {
+		$lock = $this->lockService->getLockForNodeId($fileId);
+		if (!$lock) {
 			return [];
 		}
 
-		if ($lock) {
-			return [$lock];
-		}
-		return [];
+		$this->lockService->injectMetadata($lock);
+		return [$lock];
 	}
 
 	/**

lib/Model/FileLock.php

@@ -312,7 +312,6 @@ public function import(array $data) {
 		$this->setDisplayName($this->get('owner', $data));
 	}
 
-
 	/**
 	 * @return array
 	 */

lib/Service/LockService.php

@@ -10,7 +10,8 @@
 namespace OCA\FilesLock\Service;
 
 use Exception;
-use OCA\Files_Sharing\External\Storage as ExternalStorage;
+use OC\Files\Storage\DAV;
+use OCA\FilesLock\AppInfo\Application;
 use OCA\FilesLock\Db\LocksRequest;
 use OCA\FilesLock\Exceptions\LockNotFoundException;
 use OCA\FilesLock\Exceptions\UnauthorizedUnlockException;
@@ -25,7 +26,6 @@
 use OCP\Files\Lock\LockContext;
 use OCP\Files\Lock\OwnerLockedException;
 use OCP\Files\NotFoundException;
-use OCP\Http\Client\IClientService;
 use OCP\IL10N;
 use OCP\IRequest;
 use OCP\IUserManager;
@@ -68,7 +68,6 @@ public function __construct(
 		IUserSession $userSession,
 		IRequest $request,
 		LoggerInterface $logger,
-		private IClientService $clientService,
 		private IRootFolder $rootFolder,
 	) {
 		$this->l10n = $l10n;
@@ -96,8 +95,8 @@ public function getLockForNodeId(int $nodeId) {
 		try {
 			$this->lockCache[$nodeId] = $this->getLockFromFileId($nodeId);
 		} catch (LockNotFoundException) {
-			$remoteLock = $this->getRemoteLockForFileId($nodeId);
-			$this->lockCache[$nodeId] = $remoteLock ?? false;
+			$remoteLock = $this->getRemoteLockFromDav($nodeId);
+			$this->lockCache[$nodeId] = $remoteLock ?: false;
 		}
 
 		return $this->lockCache[$nodeId];
@@ -168,13 +167,7 @@ public function lock(LockContext $lockScope): FileLock {
 
 			$this->injectMetadata($known);
 			throw new OwnerLockedException($known);
-		} catch (LockNotFoundException) {
-			$remoteLock = $this->getRemoteLockForFileId($lockScope->getNode()->getId());
-			if ($remoteLock !== null) {
-				$this->injectMetadata($remoteLock);
-				throw new OwnerLockedException($remoteLock);
-			}
-
+		} catch (LockNotFoundException $e) {
 			$lock = FileLock::fromLockScope($lockScope, $this->configService->getTimeoutSeconds());
 			$this->generateToken($lock);
 			$lock->setCreation(time());
@@ -353,9 +346,6 @@ public function injectMetadata(FileLock $lock): FileLock {
 		}
 
 		if ($displayName) {
-			if ($lock->getRemoteHost()) {
-				$displayName .= '@' . $lock->getRemoteHost();
-			}
 			$lock->setDisplayName($displayName);
 		}
 		return $lock;
@@ -408,87 +398,60 @@ function (FileLock $lock) {
 		$this->locksRequest->removeIds($ids);
 	}
 
-	private function propagateEtag(LockContext $lockContext): void {
-		$node = $lockContext->getNode();
-		$node->getStorage()->getCache()->update($node->getId(), [
-			'etag' => uniqid(),
-		]);
-		$node->getStorage()->getUpdater()->propagate($node->getInternalPath(), $node->getMTime());
-	}
-
-	public function getRemoteLockForFileId(int $fileId): ?FileLock {
+	public function getRemoteLockFromDav(int $nodeId): ?FileLock {
 		try {
 			$user = $this->userSession->getUser();
 			if (!$user) {
 				return null;
 			}
 
 			$userFolder = $this->rootFolder->getUserFolder($user->getUID());
-			$nodes = $userFolder->getById($fileId);
+			$nodes = $userFolder->getById($nodeId);
 			if (empty($nodes)) {
 				return null;
 			}
 
 			$node = $nodes[0];
 			$storage = $node->getStorage();
-			if (!$storage->instanceOfStorage(ExternalStorage::class)) {
+
+			if (!$storage->instanceOfStorage(DAV::class)) {
 				return null;
 			}
 
-			$internalPath = $node->getInternalPath();
+			$path = $node->getInternalPath();
+			$storage->getMetaData($path);
 
-			/** @var ExternalStorage $storage */
-			$remoteLockData = $this->getRemoteLock(
-				$storage->getRemote(),
-				$storage->getToken(),
-				$internalPath
-			);
-
-			if (!$remoteLockData) {
+			$isLocked = $storage->getPropfindPropertyValue($path, Application::DAV_PROPERTY_LOCK);
+			if (!$isLocked) {
 				return null;
 			}
 
 			$fileLock = new FileLock();
-			$fileLock->import($remoteLockData);
+			$fileLock->import([
+				'fileId' => $nodeId,
+				'owner' => (string)($storage->getPropfindPropertyValue($path, Application::DAV_PROPERTY_LOCK_OWNER_DISPLAYNAME) ?? ''),
+				'type' => (int)($storage->getPropfindPropertyValue($path, Application::DAV_PROPERTY_LOCK_OWNER_TYPE) ?? 0),
+				'creation' => (int)($storage->getPropfindPropertyValue($path, Application::DAV_PROPERTY_LOCK_TIME) ?? 0),
+				'ttl' => (int)($storage->getPropfindPropertyValue($path, Application::DAV_PROPERTY_LOCK_TIMEOUT) ?? 0),
+				'token' => (string)($storage->getPropfindPropertyValue($path, Application::DAV_PROPERTY_LOCK_TOKEN) ?? ''),
+			]);
 
 			$remoteHost = parse_url($storage->getRemote(), PHP_URL_HOST);
 			$fileLock->setRemoteHost($remoteHost);
-
-			$this->injectMetadata($fileLock);
-
-			$this->lockCache[$fileId] = $fileLock;
+			$fileLock->setDisplayName($fileLock->getDisplayName() . '@' . $remoteHost);
 
 			return $fileLock;
 		} catch (\Exception $e) {
-			$this->logger->debug('Failed to get remote lock: ' . $e->getMessage());
+			$this->logger->debug('Failed to get remote lock from DAV: ' . $e->getMessage());
 			return null;
 		}
 	}
 
-	public function getRemoteLock(string $remoteUrl, string $shareToken, string $path = ''): ?array {
-		$url = rtrim($remoteUrl, '/') . "/ocs/v2.php/apps/files_lock/lock/token/{$shareToken}";
-
-		if ($path !== '') {
-			$url .= '?path=' . urlencode($path);
-		}
-
-		try {
-			$response = $this->clientService->newClient()->get($url, [
-				'headers' => [
-					'OCS-APIRequest' => 'true',
-					'Accept' => 'application/json'
-				],
-				'timeout' => 5,
-			]);
-
-			$data = json_decode($response->getBody(), true);
-			if (!isset($data['ocs']['data']['locked']) || !$data['ocs']['data']['locked']) {
-				return null;
-			}
-
-			return $data['ocs']['data']['lock'];
-		} catch (\Exception) {
-			return null;
-		}
+	private function propagateEtag(LockContext $lockContext): void {
+		$node = $lockContext->getNode();
+		$node->getStorage()->getCache()->update($node->getId(), [
+			'etag' => uniqid(),
+		]);
+		$node->getStorage()->getUpdater()->propagate($node->getInternalPath(), $node->getMTime());
 	}
 }