// (c) Copyright Ascensio System SIA 2010-2022 // // This program is a free software product. // You can redistribute it and/or modify it under the terms // of the GNU Affero General Public License (AGPL) version 3 as published by the Free Software // Foundation. In accordance with Section 7(a) of the GNU AGPL its Section 15 shall be amended // to the effect that Ascensio System SIA expressly excludes the warranty of non-infringement of // any third-party rights. // // This program is distributed WITHOUT ANY WARRANTY, without even the implied warranty // of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. For details, see // the GNU AGPL at: http://www.gnu.org/licenses/agpl-3.0.html // // You can contact Ascensio System SIA at Lubanas st. 125a-25, Riga, Latvia, EU, LV-1021. // // The interactive user interfaces in modified source and object code versions of the Program must // display Appropriate Legal Notices, as required under Section 5 of the GNU AGPL version 3. // // Pursuant to Section 7(b) of the License you must retain the original Product logo when // distributing the program. Pursuant to Section 7(e) we decline to grant you any rights under // trademark law for use of our trademarks. // // All the Product's GUI elements, including illustrations and icon sets, as well as technical writing // content are licensed under the terms of the Creative Commons Attribution-ShareAlike 4.0 // International. See the License terms at http://creativecommons.org/licenses/by-sa/4.0/legalcode namespace ASC.People.Api; public abstract class PeopleControllerBase : ApiControllerBase { protected readonly UserManager _userManager; protected readonly PermissionContext _permissionContext; protected readonly ApiContext _apiContext; protected readonly UserPhotoManager _userPhotoManager; protected readonly IHttpClientFactory _httpClientFactory; protected readonly IHttpContextAccessor _httpContextAccessor; public PeopleControllerBase( UserManager userManager, PermissionContext permissionContext, ApiContext apiContext, UserPhotoManager userPhotoManager, IHttpClientFactory httpClientFactory, IHttpContextAccessor httpContextAccessor) { _userManager = userManager; _permissionContext = permissionContext; _apiContext = apiContext; _userPhotoManager = userPhotoManager; _httpClientFactory = httpClientFactory; _httpContextAccessor = httpContextAccessor; } protected UserInfo GetUserInfo(string userNameOrId) { UserInfo user; try { var userId = new Guid(userNameOrId); user = _userManager.GetUsers(userId); } catch (FormatException) { user = _userManager.GetUserByUserName(userNameOrId); } if (user == null || user.Id == Constants.LostUser.Id) { throw new ItemNotFoundException("user not found"); } return user; } protected void UpdateContacts(IEnumerable contacts, UserInfo user) { _permissionContext.DemandPermissions(new UserSecurityProvider(user.Id), Constants.Action_EditUser); if (contacts == null) { return; } var values = contacts.Where(r => !string.IsNullOrEmpty(r.Value)).Select(r => $"{r.Type}|{r.Value}"); user.Contacts = string.Join('|', values); } protected async Task UpdatePhotoUrl(string files, UserInfo user) { if (string.IsNullOrEmpty(files)) { return; } _permissionContext.DemandPermissions(new UserSecurityProvider(user.Id), Constants.Action_EditUser); if (!files.StartsWith("http://") && !files.StartsWith("https://")) { files = new Uri(_httpContextAccessor.HttpContext.Request.GetDisplayUrl()).GetLeftPart(UriPartial.Authority) + "/" + files.TrimStart('/'); } var request = new HttpRequestMessage { RequestUri = new Uri(files) }; var httpClient = _httpClientFactory.CreateClient(); using var response = httpClient.Send(request); using var inputStream = response.Content.ReadAsStream(); using var br = new BinaryReader(inputStream); var imageByteArray = br.ReadBytes((int)inputStream.Length); await _userPhotoManager.SaveOrUpdatePhoto(user.Id, imageByteArray); } }