fix: automatically disable sab

Signed-off-by: SebastianKrupinski <krupinskis05@gmail.com>

Author: SebastianKrupinski

apps/dav/lib/CardDAV/SyncService.php

@@ -10,6 +10,7 @@
 
 use OCP\AppFramework\Db\TTransactional;
 use OCP\AppFramework\Http;
+use OCP\AppFramework\Services\IAppConfig;
 use OCP\DB\Exception;
 use OCP\Http\Client\IClient;
 use OCP\Http\Client\IClientService;
@@ -38,6 +39,7 @@ public function __construct(
 		private Converter $converter,
 		private IClientService $clientService,
 		private IConfig $config,
+		private IAppConfig $appConfig,
 	) {
 		$this->certPath = '';
 	}
@@ -239,6 +241,15 @@ private function parseMultiStatus($body) {
 	 * @param IUser $user
 	 */
 	public function updateUser(IUser $user): void {
+		// automatically disable the system addressbook if the limit is reached
+		if ($this->appConfig->getAppValueBool('system_addressbook_exposed', true)) {
+			$limit = (int)$this->appConfig->getAppValueInt('system_addressbook_limit', 5000);
+			// we use
+			if ($this->userManager->countSeenUsers() >= $limit) {
+				$this->appConfig->setAppValueBool('system_addressbook_exposed', false);
+			}
+		}
+
 		$systemAddressBook = $this->getLocalSystemAddressBook();
 		$addressBookId = $systemAddressBook['id'];
 

apps/dav/tests/unit/CardDAV/SyncServiceTest.php

@@ -14,6 +14,7 @@
 use OCA\DAV\CardDAV\CardDavBackend;
 use OCA\DAV\CardDAV\Converter;
 use OCA\DAV\CardDAV\SyncService;
+use OCP\AppFramework\Services\IAppConfig;
 use OCP\Http\Client\IClient;
 use OCP\Http\Client\IClientService;
 use OCP\IConfig;
@@ -36,30 +37,35 @@ class SyncServiceTest extends TestCase {
 	protected Converter&MockObject $converter;
 	protected IClient&MockObject $client;
 	protected IConfig&MockObject $config;
+	protected IAppConfig&MockObject $appConfig;
 	protected SyncService $service;
 
 	public function setUp(): void {
 		parent::setUp();
 
+		$this->backend = $this->createMock(CardDavBackend::class);
 		$addressBook = [
 			'id' => 1,
 			'uri' => 'system',
 			'principaluri' => 'principals/system/system',
 			'{DAV:}displayname' => 'system',
 			// watch out, incomplete address book mock.
 		];
-
-		$this->backend = $this->createMock(CardDavBackend::class);
 		$this->backend->method('getAddressBooksByUri')
-			->with('principals/system/system', 1)
-			->willReturn($addressBook);
+			->willReturnCallback(function ($principal, $idOrUri) use ($addressBook) {
+				if ($principal === 'principals/system/system' && ($idOrUri === 'system' || $idOrUri === 1 || $idOrUri === '1')) {
+					return $addressBook;
+				}
+				return null;
+			});
 
 		$this->userManager = $this->createMock(IUserManager::class);
 		$this->dbConnection = $this->createMock(IDBConnection::class);
 		$this->logger = new NullLogger();
 		$this->converter = $this->createMock(Converter::class);
 		$this->client = $this->createMock(IClient::class);
 		$this->config = $this->createMock(IConfig::class);
+		$this->appConfig = $this->createMock(IAppConfig::class);
 
 		$clientService = $this->createMock(IClientService::class);
 		$clientService->method('newClient')
@@ -72,7 +78,8 @@ public function setUp(): void {
 			$this->logger,
 			$this->converter,
 			$clientService,
-			$this->config
+			$this->config,
+			$this->appConfig
 		);
 	}
 
@@ -313,8 +320,9 @@ public function testEnsureSystemAddressBookExists(): void {
 		$converter = $this->createMock(Converter::class);
 		$clientService = $this->createMock(IClientService::class);
 		$config = $this->createMock(IConfig::class);
+		$appConfig = $this->createMock(IAppConfig::class);
 
-		$ss = new SyncService($backend, $userManager, $dbConnection, $logger, $converter, $clientService, $config);
+		$ss = new SyncService($backend, $userManager, $dbConnection, $logger, $converter, $clientService, $config, $appConfig);
 		$ss->ensureSystemAddressBookExists('principals/users/adam', 'contacts', []);
 	}
 
@@ -360,8 +368,9 @@ public function testUpdateAndDeleteUser(bool $activated, int $createCalls, int $
 
 		$clientService = $this->createMock(IClientService::class);
 		$config = $this->createMock(IConfig::class);
+		$appConfig = $this->createMock(IAppConfig::class);
 
-		$ss = new SyncService($backend, $userManager, $dbConnection, $logger, $converter, $clientService, $config);
+		$ss = new SyncService($backend, $userManager, $dbConnection, $logger, $converter, $clientService, $config, $appConfig);
 		$ss->updateUser($user);
 
 		$ss->updateUser($user);
@@ -402,8 +411,9 @@ public function testDeleteAddressbookWhenAccessRevoked(): void {
 		$message = 'Client error: `REPORT https://server2.internal/cloud/remote.php/dav/addressbooks/system/system/system` resulted in a `401 Unauthorized` response:
 <?xml version="1.0" encoding="utf-8"?>
 <d:error xmlns:d="DAV:" xmlns:s="http://sabredav.org/ns">
-  <s:exception>Sabre\DA (truncated...)
-';
+  <s:exception>Sabre\DAV\Exception\NotAuthenticated</s:exception>
+  <s:message>No public access to this resource., Username or password was incorrect, No \'Authorization: Bearer\' header found. Either the client didn\'t send one, or the server is mis-configured, Username or password was incorrect</s:message>
+</d:error>';
 
 		$reportException = new ClientException(
 			$message,
@@ -481,4 +491,102 @@ public static function providerUseAbsoluteUriReport(): array {
 			['https://server.internal:8080/nextcloud/', 'https://server.internal:8080/nextcloud/remote.php/dav/addressbooks/system/system/system'],
 		];
 	}
+
+	public function testUpdateUserDisablesSystemAddressBookWhenLimitReached(): void {
+		$this->appConfig->method('getAppValueBool')
+			->with('system_addressbook_exposed', true)
+			->willReturn(true);
+		$this->appConfig->method('getAppValueInt')
+			->with('system_addressbook_limit', 5000)
+			->willReturn(2);
+		$this->userManager->method('countSeenUsers')->willReturn(2);
+		$this->appConfig->expects($this->once())
+			->method('setAppValueBool')
+			->with('system_addressbook_exposed', false);
+		$user = $this->createMock(IUser::class);
+		$user->method('isEnabled')->willReturn(false);
+		$user->method('getBackendClassName')->willReturn('unittest');
+		$user->method('getUID')->willReturn('test-user');
+		$this->backend->method('getAddressBooksByUri')
+			->with('principals/system/system', 'system')
+			->willReturn(['id' => 1]);
+		$this->backend->expects($this->once())->method('deleteCard');
+		$this->service->updateUser($user);
+	}
+
+	public function testUpdateUserCreatesCardIfNotExistsAndEnabled(): void {
+		$this->appConfig->method('getAppValueBool')->willReturn(true);
+		$this->appConfig->method('getAppValueInt')->willReturn(5000);
+		$user = $this->createMock(IUser::class);
+		$user->method('isEnabled')->willReturn(true);
+		$user->method('getBackendClassName')->willReturn('unittest');
+		$user->method('getUID')->willReturn('test-user');
+		$this->backend->method('getAddressBooksByUri')
+			->with('principals/system/system', 'system')
+			->willReturn(['id' => 1]);
+		$this->backend->method('getCard')->willReturn(false);
+		$vCard = $this->createMock(VCard::class);
+		$vCard->method('serialize')->willReturn('VCARD-DATA');
+		$this->converter->method('createCardFromUser')->willReturn($vCard);
+		$this->backend->expects($this->once())
+			->method('createCard')
+			->with(1, 'unittest:test-user.vcf', 'VCARD-DATA', false);
+		$this->service->updateUser($user);
+	}
+
+	public function testUpdateUserUpdatesCardIfExistsAndEnabled(): void {
+		$this->appConfig->method('getAppValueBool')->willReturn(true);
+		$this->appConfig->method('getAppValueInt')->willReturn(5000);
+		$user = $this->createMock(IUser::class);
+		$user->method('isEnabled')->willReturn(true);
+		$user->method('getBackendClassName')->willReturn('unittest');
+		$user->method('getUID')->willReturn('test-user');
+		$this->backend->method('getAddressBooksByUri')
+			->with('principals/system/system', 'system')
+			->willReturn(['id' => 1]);
+		$this->backend->method('getCard')->willReturn(['carddata' => 'foo']);
+		$vCard = $this->createMock(VCard::class);
+		$vCard->method('serialize')->willReturn('VCARD-DATA');
+		$this->converter->method('createCardFromUser')->willReturn($vCard);
+		$this->backend->expects($this->once())
+			->method('updateCard')
+			->with(1, 'unittest:test-user.vcf', 'VCARD-DATA');
+		$this->service->updateUser($user);
+	}
+
+	public function testUpdateUserDeletesCardIfConverterReturnsNull(): void {
+		$this->appConfig->method('getAppValueBool')->willReturn(true);
+		$this->appConfig->method('getAppValueInt')->willReturn(5000);
+		$user = $this->createMock(IUser::class);
+		$user->method('isEnabled')->willReturn(true);
+		$user->method('getBackendClassName')->willReturn('unittest');
+		$user->method('getUID')->willReturn('test-user');
+		$this->backend->method('getAddressBooksByUri')
+			->with('principals/system/system', 'system')
+			->willReturn(['id' => 1]);
+		$this->backend->method('getCard')->willReturn(['carddata' => 'foo']);
+		$this->converter->method('createCardFromUser')->willReturn(null);
+		$this->backend->expects($this->once())
+			->method('deleteCard')
+			->with(1, 'unittest:test-user.vcf');
+		$this->service->updateUser($user);
+	}
+
+	public function testUpdateUserDeletesCardIfUserDisabled(): void {
+		$this->appConfig->method('getAppValueBool')->willReturn(true);
+		$this->appConfig->method('getAppValueInt')->willReturn(5000);
+		$user = $this->createMock(IUser::class);
+		$user->method('isEnabled')->willReturn(false);
+		$user->method('getBackendClassName')->willReturn('unittest');
+		$user->method('getUID')->willReturn('test-user');
+		$this->backend->method('getAddressBooksByUri')
+			->with('principals/system/system', 'system')
+			->willReturn(['id' => 1]);
+		$this->backend->expects($this->once())
+			->method('deleteCard')
+			->with(1, 'unittest:test-user.vcf');
+		$this->service->updateUser($user);
+	}
+
+
 }