* * This library is free software; you can redistribute it and/or * modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE * License as published by the Free Software Foundation; either * version 3 of the License, or any later version. * * This library is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU AFFERO GENERAL PUBLIC LICENSE for more details. * * You should have received a copy of the GNU Affero General Public * License along with this library. If not, see . * */ /* * * The following SQL statement is just a help for developers and will not be * executed! * * CREATE TABLE contacts_cards ( * id INT(11) UNSIGNED NOT NULL PRIMARY KEY AUTO_INCREMENT, * addressbookid INT(11) UNSIGNED NOT NULL, * fullname VARCHAR(255), * carddata TEXT, * uri VARCHAR(100), * lastmodified INT(11) UNSIGNED * ); */ namespace OCA\Contacts; use Sabre\VObject; /** * This class manages our vCards */ class VCard { /** * @brief Returns all cards of an address book * @param integer $id * @param integer $offset * @param integer $limit * @param array $fields An array of the fields to return. Defaults to all. * @return array|false * * The cards are associative arrays. You'll find the original vCard in * ['carddata'] */ public static function all($id, $offset=null, $limit=null, $fields = array()) { $result = null; \OCP\Util::writeLog('contacts', __METHOD__.'count fields:' . count($fields), \OCP\Util::DEBUG); $qfields = count($fields) > 0 ? '`' . implode('`,`', $fields) . '`' : '*'; if(is_array($id) && count($id)) { $id_sql = join(',', array_fill(0, count($id), '?')); $sql = 'SELECT ' . $qfields . ' FROM `*PREFIX*contacts_cards` WHERE `addressbookid` IN ('.$id_sql.') ORDER BY `fullname`'; try { $stmt = \OCP\DB::prepare($sql, $limit, $offset); $result = $stmt->execute($id); if (\OC_DB::isError($result)) { \OC_Log::write('contacts', __METHOD__. 'DB error: ' . \OC_DB::getErrorMessage($result), \OCP\Util::ERROR); return false; } } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: ' . $e->getMessage(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', ids: ' . join(',', $id), \OCP\Util::DEBUG); \OCP\Util::writeLog('contacts', __METHOD__.'SQL:' . $sql, \OCP\Util::DEBUG); return false; } } elseif(is_int($id) || is_string($id)) { try { $sql = 'SELECT ' . $qfields . ' FROM `*PREFIX*contacts_cards` WHERE `addressbookid` = ? ORDER BY `fullname`'; $stmt = \OCP\DB::prepare($sql, $limit, $offset); $result = $stmt->execute(array($id)); if (\OC_DB::isError($result)) { \OC_Log::write('contacts', __METHOD__. 'DB error: ' . \OC_DB::getErrorMessage($result), \OCP\Util::ERROR); return false; } } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: '.$e->getMessage(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', ids: '. $id, \OCP\Util::DEBUG); return false; } } else { \OCP\Util::writeLog('contacts', __METHOD__ . '. Addressbook id(s) argument is empty: ' . print_r($id, true), \OCP\Util::DEBUG); return false; } $cards = array(); if(!is_null($result)) { while( $row = $result->fetchRow()) { $cards[] = $row; } } return $cards; } /** * @brief Returns a card * @param integer $id * @param array $fields An array of the fields to return. Defaults to all. * @return associative array or false. */ public static function find($id, $fields = array() ) { try { $qfields = count($fields) > 0 ? '`' . implode('`,`', $fields) . '`' : '*'; $stmt = \OCP\DB::prepare( 'SELECT ' . $qfields . ' FROM `*PREFIX*contacts_cards` WHERE `id` = ?' ); $result = $stmt->execute(array($id)); if (\OC_DB::isError($result)) { \OC_Log::write('contacts', __METHOD__. 'DB error: ' . \OC_DB::getErrorMessage($result), \OCP\Util::ERROR); return false; } } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: '.$e->getMessage(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', id: '. $id, \OCP\Util::DEBUG); return false; } return $result->fetchRow(); } /** * @brief finds a card by its DAV Data * @param integer $aid Addressbook id * @param string $uri the uri ('filename') * @return associative array or false. */ public static function findWhereDAVDataIs($aid, $uri) { try { $stmt = \OCP\DB::prepare( 'SELECT * FROM `*PREFIX*contacts_cards` WHERE `addressbookid` = ? AND `uri` = ?' ); $result = $stmt->execute(array($aid,$uri)); if (\OC_DB::isError($result)) { \OC_Log::write('contacts', __METHOD__. 'DB error: ' . \OC_DB::getErrorMessage($result), \OCP\Util::ERROR); return false; } } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: '.$e->getMessage(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', aid: '.$aid.' uri'.$uri, \OCP\Util::DEBUG); return false; } return $result->fetchRow(); } /** * @brief Checks if a contact with the same UID already exist in the address book. * @param $aid Address book ID. * @param $uid UID (passed by reference). * @returns true if the UID has been changed. */ protected static function trueUID($aid, &$uid) { $stmt = \OCP\DB::prepare( 'SELECT * FROM `*PREFIX*contacts_cards` WHERE `addressbookid` = ? AND `uri` = ?' ); $uri = $uid.'.vcf'; try { $result = $stmt->execute(array($aid,$uri)); if (\OC_DB::isError($result)) { \OCP\Util::writeLog('contacts', __METHOD__. 'DB error: ' . \OC_DB::getErrorMessage($result), \OCP\Util::ERROR); return false; } } catch(Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: '.$e->getMessage(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', aid: '.$aid.' uid'.$uid, \OCP\Util::DEBUG); return false; } if($result->numRows() > 0) { while(true) { $tmpuid = substr(md5(rand().time()), 0, 10); $uri = $tmpuid.'.vcf'; $result = $stmt->execute(array($aid, $uri)); if($result->numRows() > 0) { continue; } else { $uid = $tmpuid; return true; } } } else { return false; } } /** * @brief Adds a card * @param $aid integer Addressbook id * @param $vcard \Sabre\VObject\Component vCard object * @param $uri string the uri of the card, default based on the UID * @param $isChecked boolean If the vCard should be checked for validity and version. * @return insertid on success or false. */ public static function add($aid, VObject\Component $vcard, $uri=null, $isChecked=false) { if(is_null($vcard)) { \OCP\Util::writeLog('contacts', __METHOD__ . ', No vCard supplied', \OCP\Util::ERROR); return null; }; $addressbook = Addressbook::find($aid); if ($addressbook['userid'] != \OCP\User::getUser()) { $sharedAddressbook = \OCP\Share::getItemSharedWithBySource('addressbook', $aid); if (!$sharedAddressbook || !($sharedAddressbook['permissions'] & \OCP\PERMISSION_CREATE)) { throw new \Exception( App::$l10n->t( 'You do not have the permissions to add contacts to this addressbook.' ) ); } } $uid = $vcard->UID; if(self::trueUID($aid, $uid)) { $vcard->UID = $uid; } $now = new \DateTime; $vcard->REV = $now->format(\DateTime::W3C); // Add product ID is missing. //$prodid = trim($vcard->getAsString('PRODID')); //if(!$prodid) { if(!isset($vcard->PRODID)) { $appinfo = \OCP\App::getAppInfo('contacts'); $appversion = \OCP\App::getAppVersion('contacts'); $prodid = '-//ownCloud//NONSGML '.$appinfo['name'].' '.$appversion.'//EN'; $vcard->add('PRODID', $prodid); } $fn = isset($vcard->FN) ? $vcard->FN : ''; $uri = isset($uri) ? $uri : $vcard->UID . '.vcf'; $data = $vcard->serialize(); $stmt = \OCP\DB::prepare( 'INSERT INTO `*PREFIX*contacts_cards` (`addressbookid`,`fullname`,`carddata`,`uri`,`lastmodified`) VALUES(?,?,?,?,?)' ); try { $result = $stmt->execute(array($aid, $fn, $data, $uri, time())); if (\OC_DB::isError($result)) { \OC_Log::write('contacts', __METHOD__. 'DB error: ' . \OC_DB::getErrorMessage($result), \OCP\Util::ERROR); return false; } } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: '.$e->getMessage(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', aid: '.$aid.' uri'.$uri, \OCP\Util::DEBUG); return false; } $newid = \OCP\DB::insertid('*PREFIX*contacts_cards'); App::loadCategoriesFromVCard($newid, $vcard); App::updateDBProperties($newid, $vcard); App::cacheThumbnail($newid); Addressbook::touch($aid); \OC_Hook::emit('\OCA\Contacts\VCard', 'post_createVCard', $newid); return $newid; } /** * @brief Adds a card with the data provided by sabredav * @param integer $id Addressbook id * @param string $uri the uri the card will have * @param string $data vCard file * @returns integer|false insertid or false on error */ public static function addFromDAVData($id, $uri, $data) { try { $vcard = \Sabre\VObject\Reader::read($data); return self::add($id, $vcard, $uri); } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: '.$e->getMessage(), \OCP\Util::ERROR); return false; } } /** * @brief Mass updates an array of cards * @param array $objects An array of [id, carddata]. */ public static function updateDataByID($objects) { $stmt = \OCP\DB::prepare( 'UPDATE `*PREFIX*contacts_cards` SET `carddata` = ?, `lastmodified` = ? WHERE `id` = ?' ); $now = new \DateTime; foreach($objects as $object) { $vcard = null; try { $vcard = Sabre\VObject\Reader::read($contact['carddata']); } catch(\Exception $e) { \OC_Log::write('contacts', __METHOD__. $e->getMessage(), \OCP\Util::ERROR); } if(!is_null($vcard)) { $oldcard = self::find($object[0]); if (!$oldcard) { return false; } $addressbook = Addressbook::find($oldcard['addressbookid']); if ($addressbook['userid'] != \OCP\User::getUser()) { $sharedContact = \OCP\Share::getItemSharedWithBySource('contact', $object[0], \OCP\Share::FORMAT_NONE, null, true); if (!$sharedContact || !($sharedContact['permissions'] & \OCP\PERMISSION_UPDATE)) { return false; } } $vcard->{'REV'} = $now->format(\DateTime::W3C); $data = $vcard->serialize(); try { $result = $stmt->execute(array($data,time(),$object[0])); if (\OC_DB::isError($result)) { \OC_Log::write('contacts', __METHOD__. 'DB error: ' . \OC_DB::getErrorMessage($result), \OCP\Util::ERROR); } //OCP\Util::writeLog('contacts','OCA\Contacts\VCard::updateDataByID, id: '.$object[0].': '.$object[1],OCP\Util::DEBUG); } catch(Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: '.$e->getMessage(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', id: '.$object[0], \OCP\Util::DEBUG); } App::updateDBProperties($object[0], $vcard); } } } /** * @brief edits a card * @param integer $id id of card * @param Sabre\VObject\Component $card vCard file * @return boolean true on success, otherwise an exception will be thrown */ public static function edit($id, VObject\Component $card) { $oldcard = self::find($id); if (!$oldcard) { \OCP\Util::writeLog('contacts', __METHOD__.', id: ' . $id . ' not found.', \OCP\Util::DEBUG); throw new \Exception( App::$l10n->t( 'Could not find the vCard with ID.' . $id ) ); } if(is_null($card)) { return false; } // NOTE: Owner checks are being made in the ajax files, which should be done // inside the lib files to prevent any redundancies with sharing checks $addressbook = Addressbook::find($oldcard['addressbookid']); if ($addressbook['userid'] != \OCP\User::getUser()) { $sharedAddressbook = \OCP\Share::getItemSharedWithBySource( 'addressbook', $oldcard['addressbookid'], \OCP\Share::FORMAT_NONE, null, true); $sharedContact = \OCP\Share::getItemSharedWithBySource('contact', $id, \OCP\Share::FORMAT_NONE, null, true); $addressbook_permissions = 0; $contact_permissions = 0; if ($sharedAddressbook) { $addressbook_permissions = $sharedAddressbook['permissions']; } if ($sharedContact) { $contact_permissions = $sharedEvent['permissions']; } $permissions = max($addressbook_permissions, $contact_permissions); if (!($permissions & \OCP\PERMISSION_UPDATE)) { throw new \Exception( App::$l10n->t( 'You do not have the permissions to edit this contact.' ) ); } } App::loadCategoriesFromVCard($id, $card); $fn = isset($card->FN) ? $card->FN : ''; $now = new \DateTime; $card->REV = $now->format(\DateTime::W3C); $data = $card->serialize(); $stmt = \OCP\DB::prepare( 'UPDATE `*PREFIX*contacts_cards` SET `fullname` = ?,`carddata` = ?, `lastmodified` = ? WHERE `id` = ?' ); try { $result = $stmt->execute(array($fn, $data, time(), $id)); if (\OC_DB::isError($result)) { \OCP\Util::writeLog('contacts', __METHOD__. 'DB error: ' . \OC_DB::getErrorMessage($result), \OCP\Util::ERROR); return false; } } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: ' . $e->getMessage(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', id'.$id, \OCP\Util::DEBUG); return false; } App::cacheThumbnail($oldcard['id']); App::updateDBProperties($id, $card); Addressbook::touch($oldcard['addressbookid']); \OC_Hook::emit('\OCA\Contacts\VCard', 'post_updateVCard', $id); return true; } /** * @brief edits a card with the data provided by sabredav * @param integer $id Addressbook id * @param string $uri the uri of the card * @param string $data vCard file * @return boolean */ public static function editFromDAVData($aid, $uri, $data) { $oldcard = self::findWhereDAVDataIs($aid, $uri); try { $vcard = \Sabre\VObject\Reader::read($data); } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__. ', Unable to parse VCARD, : ' . $e->getMessage(), \OCP\Util::ERROR); return false; } try { self::edit($oldcard['id'], $vcard); return true; } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: ' . $e->getMessage() . ', ' . \OCP\USER::getUser(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', uri' . $uri, \OCP\Util::DEBUG); return false; } } /** * @brief deletes a card * @param integer $id id of card * @return boolean true on success, otherwise an exception will be thrown */ public static function delete($id) { $contact = self::find($id); if (!$contact) { \OCP\Util::writeLog('contacts', __METHOD__.', id: ' . $id . ' not found.', \OCP\Util::DEBUG); throw new \Exception( App::$l10n->t( 'Could not find the vCard with ID: ' . $id, 404 ) ); } $addressbook = Addressbook::find($contact['addressbookid']); if(!$addressbook) { throw new \Exception( App::$l10n->t( 'Could not find the Addressbook with ID: ' . $contact['addressbookid'], 404 ) ); } if ($addressbook['userid'] != \OCP\User::getUser() && !\OC_Group::inGroup(\OCP\User::getUser(), 'admin')) { \OCP\Util::writeLog('contacts', __METHOD__.', ' . $addressbook['userid'] . ' != ' . \OCP\User::getUser(), \OCP\Util::DEBUG); $sharedAddressbook = \OCP\Share::getItemSharedWithBySource( 'addressbook', $contact['addressbookid'], \OCP\Share::FORMAT_NONE, null, true); $sharedContact = \OCP\Share::getItemSharedWithBySource( 'contact', $id, \OCP\Share::FORMAT_NONE, null, true); $addressbook_permissions = 0; $contact_permissions = 0; if ($sharedAddressbook) { $addressbook_permissions = $sharedAddressbook['permissions']; } if ($sharedContact) { $contact_permissions = $sharedEvent['permissions']; } $permissions = max($addressbook_permissions, $contact_permissions); if (!($permissions & \OCP\PERMISSION_DELETE)) { throw new \Exception( App::$l10n->t( 'You do not have the permissions to delete this contact.', 403 ) ); } } $aid = $contact['addressbookid']; \OC_Hook::emit('\OCA\Contacts\VCard', 'pre_deleteVCard', array('aid' => null, 'id' => $id, 'uri' => null) ); $stmt = \OCP\DB::prepare('DELETE FROM `*PREFIX*contacts_cards` WHERE `id` = ?'); try { $stmt->execute(array($id)); } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__. ', exception: ' . $e->getMessage(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', id: ' . $id, \OCP\Util::DEBUG); throw new \Exception( App::$l10n->t( 'There was an error deleting this contact.' ) ); } App::updateDBProperties($id); App::getVCategories()->purgeObject($id); Addressbook::touch($addressbook['id']); \OCP\Share::unshareAll('contact', $id); return true; } /** * @brief deletes a card with the data provided by sabredav * @param integer $aid Addressbook id * @param string $uri the uri of the card * @return boolean */ public static function deleteFromDAVData($aid, $uri) { $contact = self::findWhereDAVDataIs($aid, $uri); if(!$contact) { \OCP\Util::writeLog('contacts', __METHOD__.', contact not found: ' . $uri, \OCP\Util::DEBUG); throw new \Sabre_DAV_Exception_NotFound( App::$l10n->t( 'Contact not found.' ) ); } $id = $contact['id']; try { return self::delete($id); } catch (Exception $e) { switch($e->getCode()) { case 403: \OCP\Util::writeLog('contacts', __METHOD__.', forbidden: ' . $uri, \OCP\Util::DEBUG); throw new \Sabre_DAV_Exception_Forbidden( App::$l10n->t( $e->getMessage() ) ); break; case 404: \OCP\Util::writeLog('contacts', __METHOD__.', contact not found: ' . $uri, \OCP\Util::DEBUG); throw new \Sabre_DAV_Exception_NotFound( App::$l10n->t( $e->getMessage() ) ); break; default: throw $e; break; } } return true; } /** * @brief Data structure of vCard * @param Sabre\VObject\Component $property * @return associative array * * look at code ... */ public static function structureContact($vcard) { $details = array(); foreach($vcard->children as $property) { $pname = $property->name; $temp = self::structureProperty($property); if(!is_null($temp)) { // Get Apple X-ABLabels if(isset($vcard->{$property->group . '.X-ABLABEL'})) { $temp['label'] = $vcard->{$property->group . '.X-ABLABEL'}->value; if($temp['label'] == '_$!!$_') { $temp['label'] = App::$l10n->t('Other'); } if($temp['label'] == '_$!!$_') { $temp['label'] = App::$l10n->t('HomePage'); } } if(array_key_exists($pname, $details)) { $details[$pname][] = $temp; } else{ $details[$pname] = array($temp); } } } return $details; } /** * @brief Data structure of properties * @param object $property * @return associative array * * returns an associative array with * ['name'] name of property * ['value'] htmlspecialchars escaped value of property * ['parameters'] associative array name=>value * ['checksum'] checksum of whole property * NOTE: $value is not escaped anymore. It shouldn't make any difference * but we should look out for any problems. */ public static function structureProperty($property) { if(!in_array($property->name, App::$index_properties)) { return; } $value = $property->value; if($property->name == 'ADR' || $property->name == 'N' || $property->name == 'ORG' || $property->name == 'CATEGORIES') { $value = $property->getParts(); $value = array_map('trim', $value); } elseif($property->name == 'BDAY') { if(strpos($value, '-') === false) { if(strlen($value) >= 8) { $value = substr($value, 0, 4).'-'.substr($value, 4, 2).'-'.substr($value, 6, 2); } else { return null; // Badly malformed :-( } } } elseif($property->name == 'PHOTO') { $value = true; } elseif($property->name == 'IMPP') { if(strpos($value, ':') !== false) { $value = explode(':', $value); $protocol = array_shift($value); if(!isset($property['X-SERVICE-TYPE'])) { $property['X-SERVICE-TYPE'] = strtoupper(\OCP\Util::sanitizeHTML($protocol)); } $value = implode('', $value); } } if(is_string($value)) { $value = strtr($value, array('\,' => ',', '\;' => ';')); } $temp = array( //'name' => $property->name, 'value' => \OCP\Util::sanitizeHTML($value), 'parameters' => array() ); // This cuts around a 3rd off of the json response size. if(in_array($property->name, App::$multi_properties)) { $temp['checksum'] = substr(md5($property->serialize()), 0, 8); } foreach($property->parameters as $parameter) { // Faulty entries by kaddressbook // Actually TYPE=PREF is correct according to RFC 2426 // but this way is more handy in the UI. Tanghus. if($parameter->name == 'TYPE' && strtoupper($parameter->value) == 'PREF') { $parameter->name = 'PREF'; $parameter->value = '1'; } // NOTE: Apparently Sabre_VObject_Reader can't always deal with value list parameters // like TYPE=HOME,CELL,VOICE. Tanghus. // TODO: Check if parameter is has commas and split + merge if so. if ($parameter->name == 'TYPE') { $pvalue = $parameter->value; if(is_string($pvalue) && strpos($pvalue, ',') !== false) { $pvalue = array_map('trim', explode(',', $pvalue)); } $pvalue = is_array($pvalue) ? $pvalue : array($pvalue); if (isset($temp['parameters'][$parameter->name])) { $temp['parameters'][$parameter->name][] = \OCP\Util::sanitizeHTML($pvalue); } else { $temp['parameters'][$parameter->name] = \OCP\Util::sanitizeHTML($pvalue); } } else{ $temp['parameters'][$parameter->name] = \OCP\Util::sanitizeHTML($parameter->value); } } return $temp; } /** * @brief Move card(s) to an address book * @param integer $aid Address book id * @param $id Array or integer of cards to be moved. * @return boolean * */ public static function moveToAddressBook($aid, $id, $isAddressbook = false) { Addressbook::find($aid); $addressbook = Addressbook::find($aid); if ($addressbook['userid'] != \OCP\User::getUser()) { $sharedAddressbook = \OCP\Share::getItemSharedWithBySource('addressbook', $aid); if (!$sharedAddressbook || !($sharedAddressbook['permissions'] & \OCP\PERMISSION_CREATE)) { return false; } } if(is_array($id)) { foreach ($id as $index => $cardId) { $card = self::find($cardId); if (!$card) { unset($id[$index]); } $oldAddressbook = Addressbook::find($card['addressbookid']); if ($oldAddressbook['userid'] != \OCP\User::getUser()) { $sharedContact = \OCP\Share::getItemSharedWithBySource('contact', $cardId, \OCP\Share::FORMAT_NONE, null, true); if (!$sharedContact || !($sharedContact['permissions'] & \OCP\PERMISSION_DELETE)) { unset($id[$index]); } } } $id_sql = join(',', array_fill(0, count($id), '?')); $prep = 'UPDATE `*PREFIX*contacts_cards` SET `addressbookid` = ? WHERE `id` IN ('.$id_sql.')'; try { $stmt = \OCP\DB::prepare( $prep ); //$aid = array($aid); $vals = array_merge((array)$aid, $id); $result = $stmt->execute($vals); if (\OC_DB::isError($result)) { \OC_Log::write('contacts', __METHOD__. 'DB error: ' . \OC_DB::getErrorMessage($result), \OC_Log::ERROR); return false; } } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: '.$e->getMessage(), \OCP\Util::ERROR); \OCP\Util::writeLog('contacts', __METHOD__.', ids: '.join(',', $vals), \OCP\Util::DEBUG); \OCP\Util::writeLog('contacts', __METHOD__.', SQL:'.$prep, \OCP\Util::DEBUG); return false; } } else { $stmt = null; if($isAddressbook) { $stmt = \OCP\DB::prepare( 'UPDATE `*PREFIX*contacts_cards` SET `addressbookid` = ? WHERE `addressbookid` = ?' ); } else { $card = self::find($id); if (!$card) { return false; } $oldAddressbook = Addressbook::find($card['addressbookid']); if ($oldAddressbook['userid'] != \OCP\User::getUser()) { $sharedContact = \OCP\Share::getItemSharedWithBySource('contact', $id, \OCP\Share::FORMAT_NONE, null, true); if (!$sharedContact || !($sharedContact['permissions'] & \OCP\PERMISSION_DELETE)) { return false; } } $stmt = \OCP\DB::prepare( 'UPDATE `*PREFIX*contacts_cards` SET `addressbookid` = ? WHERE `id` = ?' ); } try { $result = $stmt->execute(array($aid, $id)); if (\OC_DB::isError($result)) { \OC_Log::write('contacts', __METHOD__. 'DB error: ' . \OC_DB::getErrorMessage($result), \OC_Log::ERROR); return false; } } catch(\Exception $e) { \OCP\Util::writeLog('contacts', __METHOD__.', exception: '.$e->getMessage(), \OCP\Util::DEBUG); \OCP\Util::writeLog('contacts', __METHOD__.' id: '.$id, \OCP\Util::DEBUG); return false; } } \OC_Hook::emit('\OCA\Contacts\VCard', 'post_moveToAddressbook', array('aid' => $aid, 'id' => $id)); Addressbook::touch($aid); return true; } }