Implement user provisioning for Nextcloud accounts and enhance WebDAV client handling
This commit is contained in:
Leon Bösche
77
go_cloud/internal/storage/nextcloud.go
Normal file
77
go_cloud/internal/storage/nextcloud.go
Normal file
@@ -0,0 +1,77 @@
|
||||
package storage
|
||||
|
||||
import (
|
||||
"bytes"
|
||||
"crypto/rand"
|
||||
"encoding/base64"
|
||||
"encoding/json"
|
||||
"fmt"
|
||||
"io"
|
||||
"net/http"
|
||||
"strings"
|
||||
)
|
||||
|
||||
// CreateNextcloudUser creates a new Nextcloud user account via OCS API
|
||||
func CreateNextcloudUser(nextcloudBaseURL, adminUser, adminPass, username, password string) error {
|
||||
// Remove any path from base URL, we need just the scheme://host:port
|
||||
baseURL := strings.Split(nextcloudBaseURL, "/remote.php")[0]
|
||||
url := fmt.Sprintf("%s/ocs/v1.php/cloud/users", baseURL)
|
||||
|
||||
payload := map[string]string{
|
||||
"userid": username,
|
||||
"password": password,
|
||||
}
|
||||
|
||||
jsonData, err := json.Marshal(payload)
|
||||
if err != nil {
|
||||
return fmt.Errorf("failed to marshal payload: %w", err)
|
||||
}
|
||||
|
||||
req, err := http.NewRequest("POST", url, bytes.NewBuffer(jsonData))
|
||||
if err != nil {
|
||||
return fmt.Errorf("failed to create request: %w", err)
|
||||
}
|
||||
|
||||
req.SetBasicAuth(adminUser, adminPass)
|
||||
req.Header.Set("OCS-APIRequest", "true")
|
||||
req.Header.Set("Content-Type", "application/json")
|
||||
|
||||
client := &http.Client{}
|
||||
resp, err := client.Do(req)
|
||||
if err != nil {
|
||||
return fmt.Errorf("failed to create user: %w", err)
|
||||
}
|
||||
defer resp.Body.Close()
|
||||
|
||||
body, _ := io.ReadAll(resp.Body)
|
||||
|
||||
// 200 = success, 409 = user already exists (which is fine)
|
||||
if resp.StatusCode != 200 && resp.StatusCode != 409 {
|
||||
return fmt.Errorf("failed to create Nextcloud user (status %d): %s", resp.StatusCode, string(body))
|
||||
}
|
||||
|
||||
fmt.Printf("[NEXTCLOUD] Created user account: %s\n", username)
|
||||
return nil
|
||||
}
|
||||
|
||||
// GenerateSecurePassword generates a random secure password
|
||||
func GenerateSecurePassword(length int) (string, error) {
|
||||
bytes := make([]byte, length)
|
||||
if _, err := rand.Read(bytes); err != nil {
|
||||
return "", err
|
||||
}
|
||||
return base64.URLEncoding.EncodeToString(bytes)[:length], nil
|
||||
}
|
||||
|
||||
// NewUserWebDAVClient creates a WebDAV client for a specific user
|
||||
func NewUserWebDAVClient(nextcloudBaseURL, username, password string) *WebDAVClient {
|
||||
baseURL := fmt.Sprintf("%s/remote.php/dav/files/%s", nextcloudBaseURL, username)
|
||||
|
||||
return &WebDAVClient{
|
||||
baseURL: baseURL,
|
||||
user: username,
|
||||
pass: password,
|
||||
basePrefix: "/",
|
||||
httpClient: &http.Client{},
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user