/* * * (c) Copyright Ascensio System Limited 2010-2018 * * This program is freeware. You can redistribute it and/or modify it under the terms of the GNU * General Public License (GPL) version 3 as published by the Free Software Foundation (https://www.gnu.org/copyleft/gpl.html). * In accordance with Section 7(a) of the GNU GPL its Section 15 shall be amended to the effect that * Ascensio System SIA expressly excludes the warranty of non-infringement of any third-party rights. * * THIS PROGRAM IS DISTRIBUTED WITHOUT ANY WARRANTY; WITHOUT EVEN THE IMPLIED WARRANTY OF MERCHANTABILITY OR * FITNESS FOR A PARTICULAR PURPOSE. For more details, see GNU GPL at https://www.gnu.org/copyleft/gpl.html * * You can contact Ascensio System SIA by email at sales@onlyoffice.com * * The interactive user interfaces in modified source and object code versions of ONLYOFFICE must display * Appropriate Legal Notices, as required under Section 5 of the GNU GPL version 3. * * Pursuant to Section 7 § 3(b) of the GNU GPL you must retain the original ONLYOFFICE logo which contains * relevant author attributions when distributing the software. If the display of the logo in its graphic * form is not reasonably feasible for technical reasons, you must include the words "Powered by ONLYOFFICE" * in every copy of the program you distribute. * Pursuant to Section 7 § 3(e) we decline to grant you any rights under trademark law for use of our trademarks. * */ using System; using System.IO; using System.Linq; using System.Security.Cryptography; using System.Text; using ASC.Common; using ASC.Common.Logging; using ASC.Core.Tenants; using ASC.Core.Users; using Microsoft.AspNetCore.WebUtilities; using Microsoft.Extensions.Configuration; using Microsoft.Extensions.Options; namespace ASC.Core.Billing { public class LicenseReader { private readonly ILog Log; private readonly string LicensePath; private readonly string LicensePathTemp; public const string CustomerIdKey = "CustomerId"; public const int MaxUserCount = 10000; public LicenseReader( UserManager userManager, TenantManager tenantManager, PaymentManager paymentManager, CoreSettings coreSettings, IConfiguration configuration, IOptionsMonitor options) { UserManager = userManager; TenantManager = tenantManager; PaymentManager = paymentManager; CoreSettings = coreSettings; Configuration = configuration; LicensePath = Configuration["license:file:path"]; LicensePathTemp = LicensePath + ".tmp"; Log = options.CurrentValue; } public string CustomerId { get { return CoreSettings.GetSetting(CustomerIdKey); } private set { CoreSettings.SaveSetting(CustomerIdKey, value); } } private Stream GetLicenseStream(bool temp = false) { var path = temp ? LicensePathTemp : LicensePath; if (!File.Exists(path)) throw new BillingNotFoundException("License not found"); return File.OpenRead(path); } public void RejectLicense() { if (File.Exists(LicensePathTemp)) File.Delete(LicensePathTemp); if (File.Exists(LicensePath)) File.Delete(LicensePath); PaymentManager.DeleteDefaultTariff(); } public void RefreshLicense() { try { var temp = true; if (!File.Exists(LicensePathTemp)) { Log.Debug("Temp license not found"); if (!File.Exists(LicensePath)) { throw new BillingNotFoundException("License not found"); } temp = false; } using (var licenseStream = GetLicenseStream(temp)) using (var reader = new StreamReader(licenseStream)) { var licenseJsonString = reader.ReadToEnd(); var license = License.Parse(licenseJsonString); LicenseToDB(license); if (temp) { SaveLicense(licenseStream, LicensePath); } } if (temp) File.Delete(LicensePathTemp); } catch (Exception ex) { LogError(ex); throw; } } public DateTime SaveLicenseTemp(Stream licenseStream) { try { using var reader = new StreamReader(licenseStream); var licenseJsonString = reader.ReadToEnd(); var license = License.Parse(licenseJsonString); var dueDate = Validate(license); SaveLicense(licenseStream, LicensePathTemp); return dueDate; } catch (Exception ex) { LogError(ex); throw; } } private static void SaveLicense(Stream licenseStream, string path) { if (licenseStream == null) throw new ArgumentNullException("licenseStream"); if (licenseStream.CanSeek) { licenseStream.Seek(0, SeekOrigin.Begin); } const int bufferSize = 4096; using var fs = File.Open(path, FileMode.Create); var buffer = new byte[bufferSize]; int readed; while ((readed = licenseStream.Read(buffer, 0, bufferSize)) != 0) { fs.Write(buffer, 0, readed); } } private DateTime Validate(License license) { if (string.IsNullOrEmpty(license.CustomerId) || string.IsNullOrEmpty(license.Signature)) { throw new BillingNotConfiguredException("License not correct", license.OriginalLicense); } if (license.DueDate.Date < VersionReleaseDate) { throw new LicenseExpiredException("License expired", license.OriginalLicense); } if (license.ActiveUsers.Equals(default) || license.ActiveUsers < 1) license.ActiveUsers = MaxUserCount; if (license.ActiveUsers < UserManager.GetUsers(EmployeeStatus.Default, EmployeeType.User).Length) { throw new LicenseQuotaException("License quota", license.OriginalLicense); } if (license.PortalCount <= 0) { license.PortalCount = TenantManager.GetTenantQuota(Tenant.DEFAULT_TENANT).CountPortals; } var activePortals = TenantManager.GetTenants().Count(); if (activePortals > 1 && license.PortalCount < activePortals) { throw new LicensePortalException("License portal count", license.OriginalLicense); } return license.DueDate.Date; } private void LicenseToDB(License license) { Validate(license); CustomerId = license.CustomerId; var defaultQuota = TenantManager.GetTenantQuota(Tenant.DEFAULT_TENANT); var quota = new TenantQuota(-1000) { ActiveUsers = license.ActiveUsers, MaxFileSize = defaultQuota.MaxFileSize, MaxTotalSize = defaultQuota.MaxTotalSize, Name = "license", HasDomain = true, Audit = true, ControlPanel = true, HealthCheck = true, Ldap = true, Sso = true, WhiteLabel = license.WhiteLabel || license.Customization, Update = true, Support = true, Trial = license.Trial, CountPortals = license.PortalCount, }; TenantManager.SaveTenantQuota(quota); if (defaultQuota.CountPortals != license.PortalCount) { defaultQuota.CountPortals = license.PortalCount; TenantManager.SaveTenantQuota(defaultQuota); } var tariff = new Tariff { QuotaId = quota.Id, DueDate = license.DueDate, }; PaymentManager.SetTariff(-1, tariff); if (!string.IsNullOrEmpty(license.AffiliateId)) { var tenant = TenantManager.GetCurrentTenant(); tenant.AffiliateId = license.AffiliateId; TenantManager.SaveTenant(tenant); } } private void LogError(Exception error) { if (error is BillingNotFoundException) { Log.DebugFormat("License not found: {0}", error.Message); } else { if (Log.IsDebugEnabled) { Log.Error(error); } else { Log.Error(error.Message); } } } private static DateTime _date = DateTime.MinValue; public DateTime VersionReleaseDate { get { if (_date != DateTime.MinValue) return _date; _date = DateTime.MaxValue; try { var versionDate = Configuration["version:release:date"]; var sign = Configuration["version:release:sign"]; if (!sign.StartsWith("ASC ")) { throw new Exception("sign without ASC"); } var splitted = sign.Substring(4).Split(':'); var pkey = splitted[0]; if (pkey != versionDate) { throw new Exception("sign with different date"); } var date = splitted[1]; var orighash = splitted[2]; var skey = Configuration["core:machinekey"]; using (var hasher = new HMACSHA1(Encoding.UTF8.GetBytes(skey))) { var data = string.Join("\n", date, pkey); var hash = hasher.ComputeHash(Encoding.UTF8.GetBytes(data)); if (WebEncoders.Base64UrlEncode(hash) != orighash && Convert.ToBase64String(hash) != orighash) { throw new Exception("incorrect hash"); } } var year = int.Parse(versionDate.Substring(0, 4)); var month = int.Parse(versionDate.Substring(4, 2)); var day = int.Parse(versionDate.Substring(6, 2)); _date = new DateTime(year, month, day); } catch (Exception ex) { Log.Error("VersionReleaseDate", ex); } return _date; } } public UserManager UserManager { get; } public TenantManager TenantManager { get; } public PaymentManager PaymentManager { get; } public CoreSettings CoreSettings { get; } public IConfiguration Configuration { get; } } public static class LicenseReaderExtension { public static DIHelper AddLicenseReaderService(this DIHelper services) { services.TryAddScoped(); return services .AddUserManagerService() .AddPaymentManagerService() .AddTenantManagerService() .AddCoreSettingsService(); } } }