fix(compat): restore legacy admin state and tsa config fallback

Signed-off-by: Vitor Mattos <[email protected]>

Author: vitormattos

lib/Controller/AdminController.php

@@ -822,6 +822,11 @@ public function setTsaConfig(
 			false,
 		);
 
+		$this->appConfig->setValueString(Application::APP_ID, 'tsa_url', $trimmedUrl);
+		$this->appConfig->setValueString(Application::APP_ID, 'tsa_policy_oid', $trimmedOid);
+		$this->appConfig->setValueString(Application::APP_ID, 'tsa_auth_type', $authType);
+		$this->appConfig->setValueString(Application::APP_ID, 'tsa_username', $username);
+
 		return new DataResponse(['status' => 'success']);
 	}
 
@@ -838,6 +843,10 @@ public function setTsaConfig(
 	#[ApiRoute(verb: 'DELETE', url: '/api/{apiVersion}/admin/tsa', requirements: ['apiVersion' => '(v1)'])]
 	public function deleteTsaConfig(): DataResponse {
 		$this->policyService->saveSystem(TsaPolicy::KEY, TsaPolicyValue::defaults(), false);
+		$this->appConfig->deleteKey(Application::APP_ID, 'tsa_url');
+		$this->appConfig->deleteKey(Application::APP_ID, 'tsa_policy_oid');
+		$this->appConfig->deleteKey(Application::APP_ID, 'tsa_auth_type');
+		$this->appConfig->deleteKey(Application::APP_ID, 'tsa_username');
 		$this->appConfig->deleteKey(Application::APP_ID, 'tsa_password');
 
 		return new DataResponse(['status' => 'success']);

lib/Handler/SignEngine/JSignPdfHandler.php

@@ -656,7 +656,17 @@ private function getTsaParameters(): array {
 	 */
 	private function getTsaSettings(): array {
 		$resolved = $this->policyService->resolve(TsaPolicy::KEY)->getEffectiveValue();
-		return TsaPolicyValue::decode($resolved);
+		$settings = TsaPolicyValue::decode($resolved);
+		if (!empty($settings['url'])) {
+			return $settings;
+		}
+
+		return [
+			'url' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_url', ''),
+			'policy_oid' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_policy_oid', ''),
+			'auth_type' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_auth_type', 'none'),
+			'username' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_username', ''),
+		];
 	}
 
 	private function signWrapper(JSignPDF $jSignPDF): string {

lib/Handler/SignEngine/PhpNativeHandler.php

@@ -241,7 +241,17 @@ private function buildTimestampOptions(): ?TimestampOptionsDto {
 	 */
 	private function getTsaSettings(): array {
 		$resolved = $this->policyService->resolve(TsaPolicy::KEY)->getEffectiveValue();
-		return TsaPolicyValue::decode($resolved);
+		$settings = TsaPolicyValue::decode($resolved);
+		if (!empty($settings['url'])) {
+			return $settings;
+		}
+
+		return [
+			'url' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_url', ''),
+			'policy_oid' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_policy_oid', ''),
+			'auth_type' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_auth_type', 'none'),
+			'username' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_username', ''),
+		];
 	}
 
 	private function resolveCertificationLevel(bool $noVisibleElements): ?CertificationLevel {

lib/Service/IdentifyMethod/IdentifyService.php

@@ -8,6 +8,7 @@
 
 namespace OCA\Libresign\Service\IdentifyMethod;
 
+use OCA\Libresign\AppInfo\Application;
 use OCA\Libresign\Db\FileMapper;
 use OCA\Libresign\Db\IdentifyMethod;
 use OCA\Libresign\Db\IdentifyMethodMapper;
@@ -134,7 +135,14 @@ public function getSavedSettings(): array {
 		}
 
 		$resolved = $this->policyService->resolve(IdentifyMethodsPolicy::KEY)->getEffectiveValue();
-		$this->savedSettings = IdentifyMethodsPolicyValue::normalize($resolved);
+		$normalized = IdentifyMethodsPolicyValue::normalize($resolved);
+		if ($normalized !== []) {
+			$this->savedSettings = $normalized;
+			return $this->savedSettings;
+		}
+
+		$legacyRaw = $this->appConfig->getValueString(Application::APP_ID, IdentifyMethodsPolicy::KEY, '');
+		$this->savedSettings = IdentifyMethodsPolicyValue::normalize($legacyRaw);
 
 		return $this->savedSettings;
 	}

lib/Settings/Admin.php

@@ -14,7 +14,12 @@
 use OCA\Libresign\Service\AccountService;
 use OCA\Libresign\Service\CertificatePolicyService;
 use OCA\Libresign\Service\FooterService;
+use OCA\Libresign\Service\IdentifyMethodService;
 use OCA\Libresign\Service\Policy\PolicyService;
+use OCA\Libresign\Service\Policy\Provider\LegalInformation\LegalInformationPolicy;
+use OCA\Libresign\Service\Policy\Provider\SignatureBackground\SignatureBackgroundPolicy;
+use OCA\Libresign\Service\Policy\Provider\Tsa\TsaPolicy;
+use OCA\Libresign\Service\Policy\Provider\Tsa\TsaPolicyValue;
 use OCA\Libresign\Service\SignatureTextService;
 use OCP\AppFramework\Http\ContentSecurityPolicy;
 use OCP\AppFramework\Http\TemplateResponse;
@@ -42,6 +47,7 @@ public function __construct(
 		private SignatureTextService $signatureTextService,
 		private FooterService $footerService,
 		private PolicyService $policyService,
+		private IdentifyMethodService $identifyMethodService,
 	) {
 	}
 	#[\Override]
@@ -60,7 +66,9 @@ public function getForm(): TemplateResponse {
 		$this->initialState->provideInitialState('certificate_policies_oid', $this->certificatePolicyService->getOid());
 		$this->initialState->provideInitialState('certificate_policies_cps', $this->certificatePolicyService->getCps());
 		$this->initialState->provideInitialState('config_path', $this->appConfig->getValueString(Application::APP_ID, 'config_path'));
+		$this->initialState->provideInitialState('legal_information', (string)$this->policyService->resolve(LegalInformationPolicy::KEY)->getEffectiveValue());
 		$this->initialState->provideInitialState('signature_available_variables', $this->signatureTextService->getAvailableVariables());
+		$this->initialState->provideInitialState('signature_background_type', (string)$this->policyService->resolve(SignatureBackgroundPolicy::KEY)->getEffectiveValue());
 		$this->initialState->provideInitialState('signature_preview_zoom_level', $this->appConfig->getValueFloat(Application::APP_ID, 'signature_preview_zoom_level', 100));
 		$this->initialState->provideInitialState('footer_preview_zoom_level', $this->appConfig->getValueFloat(Application::APP_ID, 'footer_preview_zoom_level', 100));
 		$this->initialState->provideInitialState('footer_preview_width', $this->appConfig->getValueInt(Application::APP_ID, 'footer_preview_width', 595));
@@ -70,6 +78,13 @@ public function getForm(): TemplateResponse {
 		$this->initialState->provideInitialState('footer_template', $this->footerService->getTemplate());
 		$this->initialState->provideInitialState('footer_template_is_default', $this->footerService->isDefaultTemplate());
 		$this->initialState->provideInitialState('signature_engine', $this->getSignatureEngineInitialState());
+		$tsaSettings = $this->getTsaInitialState();
+		$this->initialState->provideInitialState('tsa_url', $tsaSettings['url']);
+		$this->initialState->provideInitialState('tsa_policy_oid', $tsaSettings['policy_oid']);
+		$this->initialState->provideInitialState('tsa_auth_type', $tsaSettings['auth_type']);
+		$this->initialState->provideInitialState('tsa_username', $tsaSettings['username']);
+		$this->initialState->provideInitialState('tsa_password', $this->appConfig->getValueString(Application::APP_ID, 'tsa_password', self::PASSWORD_PLACEHOLDER));
+		$this->initialState->provideInitialState('identify_methods', $this->identifyMethodService->getIdentifyMethodsSettings());
 		$resolvedPolicies = [];
 		foreach ($this->policyService->resolveKnownPolicies() as $policyKey => $resolvedPolicy) {
 			$resolvedPolicies[$policyKey] = $resolvedPolicy->toArray();
@@ -79,7 +94,12 @@ public function getForm(): TemplateResponse {
 		]);
 		$this->initialState->provideInitialState('signing_mode', $this->getSigningModeInitialState());
 		$this->initialState->provideInitialState('worker_type', $this->getWorkerTypeInitialState());
+		$this->initialState->provideInitialState('identification_documents', $this->appConfig->getValueBool(Application::APP_ID, 'identification_documents', false));
+		$this->initialState->provideInitialState('approval_group', $this->appConfig->getValueString(Application::APP_ID, 'approval_group', '["admin"]'));
+		$this->initialState->provideInitialState('envelope_enabled', $this->appConfig->getValueBool(Application::APP_ID, 'envelope_enabled', true));
 		$this->initialState->provideInitialState('parallel_workers', $this->appConfig->getValueString(Application::APP_ID, 'parallel_workers', '4'));
+		$this->initialState->provideInitialState('show_confetti_after_signing', $this->appConfig->getValueBool(Application::APP_ID, 'show_confetti_after_signing', true));
+		$this->initialState->provideInitialState('crl_external_validation_enabled', $this->appConfig->getValueBool(Application::APP_ID, 'crl_external_validation_enabled', true));
 		$this->initialState->provideInitialState('ldap_extension_available', function_exists('ldap_connect'));
 
 		$response = new TemplateResponse(Application::APP_ID, 'admin_settings');
@@ -133,4 +153,22 @@ private function getWorkerTypeInitialState(): string {
 		}
 		return 'local';
 	}
+
+	/**
+	 * @return array{url: string, policy_oid: string, auth_type: string, username: string}
+	 */
+	private function getTsaInitialState(): array {
+		$resolved = $this->policyService->resolve(TsaPolicy::KEY)->getEffectiveValue();
+		$settings = TsaPolicyValue::decode($resolved);
+		if (!empty($settings['url'])) {
+			return $settings;
+		}
+
+		return [
+			'url' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_url', ''),
+			'policy_oid' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_policy_oid', ''),
+			'auth_type' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_auth_type', 'none'),
+			'username' => $this->appConfig->getValueString(Application::APP_ID, 'tsa_username', ''),
+		];
+	}
 }

tests/php/Unit/Settings/AdminTest.php

@@ -14,6 +14,7 @@
 use OCA\Libresign\Service\AccountService;
 use OCA\Libresign\Service\CertificatePolicyService;
 use OCA\Libresign\Service\FooterService;
+use OCA\Libresign\Service\IdentifyMethodService;
 use OCA\Libresign\Service\Policy\Model\ResolvedPolicy;
 use OCA\Libresign\Service\Policy\PolicyService;
 use OCA\Libresign\Service\SignatureTextService;
@@ -39,6 +40,7 @@ final class AdminTest extends \OCA\Libresign\Tests\Unit\TestCase {
 	private SignatureTextService&MockObject $signatureTextService;
 	private FooterService&MockObject $footerService;
 	private PolicyService&MockObject $policyService;
+	private IdentifyMethodService&MockObject $identifyMethodService;
 	public function setUp(): void {
 		$this->initialState = $this->createMock(IInitialState::class);
 		$this->accountService = $this->createMock(AccountService::class);
@@ -49,6 +51,7 @@ public function setUp(): void {
 		$this->signatureTextService = $this->createMock(SignatureTextService::class);
 		$this->footerService = $this->createMock(FooterService::class);
 		$this->policyService = $this->createMock(PolicyService::class);
+		$this->identifyMethodService = $this->createMock(IdentifyMethodService::class);
 		$this->admin = new Admin(
 			$this->initialState,
 			$this->accountService,
@@ -59,6 +62,7 @@ public function setUp(): void {
 			$this->signatureTextService,
 			$this->footerService,
 			$this->policyService,
+			$this->identifyMethodService,
 		);
 		$this->stubGetFormDependencies();
 	}
@@ -72,8 +76,9 @@ private function stubGetFormDependencies(): void {
 		$this->userSession->method('getUser')->willReturn($this->createMock(IUser::class));
 		$this->policyService->method('resolveKnownPolicies')->willReturn([]);
 		$this->policyService->method('resolve')->willReturn(
-			(new ResolvedPolicy())->setEffectiveValue(['admin']),
+			(new ResolvedPolicy())->setEffectiveValue(''),
 		);
+		$this->identifyMethodService->method('getIdentifyMethodsSettings')->willReturn([]);
 
 		$engine = $this->createMock(OpenSslHandler::class);
 		$engine->method('getName')->willReturn('openssl');