feature(files): add support for viewing public links in widget

[AIlkiv]

• Resolves: #

Summary

I added support for viewing public links to files.

For example: /index.php/s/Wnb3jd8PZqqd8kB or /s/Wnb3jd8PZqqd8kB

demo:

2025-04-26.15-34-15.mp4

I think this is an important PR for the entire community, because it will give us the opportunity to view videos and documents on the public page/collective (previously, this was not possible).

TODO

• ...

Checklist

• Code is properly formatted
• Sign-off message is added to all commits
• [*] Tests (unit, integration, api and/or acceptance) are included
• Screenshots before/after for front-end changes
• Documentation (manuals or wiki) has been updated or is not required
• Backports requested where applicable (ex: critical bugfixes)

[susnux]

cc @juliusknorr as reference picker / widget is mostly office

[AIlkiv]

I found out that it doesn't work for pictures and office files that “hide download”. I'll try to investigate why it doesn't work.

[github-actions]

Hello there,
Thank you so much for taking the time and effort to create a pull request to our Nextcloud project.

We hope that the review process is going smooth and is helpful for you. We want to ensure your pull request is reviewed to your satisfaction. If you have a moment, our community management team would very much appreciate your feedback on your experience with this PR review process.

Your feedback is valuable to us as we continuously strive to improve our community developer experience. Please take a moment to complete our short survey by clicking on the following link: https://cloud.nextcloud.com/apps/forms/s/i9Ago4EQRZ7TWxjfmeEpPkf6

Thank you for contributing to Nextcloud and we hope to hear from you soon!

(If you believe you should not receive this message, you can add yourself to the blocklist.)

[juliusknorr]

Suggested change

	public function resolveReferencePublic(string $referenceText, string $shareToken): ?IReference {
	public function resolveReferencePublic(string $referenceText, string $sharingToken): ?IReference {

As suggested by psalm to fit the interface definition

[juliusknorr]

Very minor nitpick as pointed out by the static analysis already, otherwise this is a very nice addition. Thanks a lot for this

[blizzz]

unfamiliar with the reference providers, but looks good. Left a remark, otherwise what Julius said.

(was meant to be non-blocking)

[blizzz]

not sure where these values come from, maybe worth to put them into a constant, or using an existing one?

[AIlkiv]

Please adjust your commit message to pass CI:

- feature(files): add support for viewing public links in widget
+ feat(files): add support for viewing public links in widget

Also please run the code fixer locally:

composer cs:fix

@susnux done

[nickvergessen]

Objecting for now, will discuss later

[provokateurin]

Rich object values must be strings and the current could should be failing due to this 🤔

[provokateurin]

Suggested change

	'size' => $node->getSize(),
	'size' => (string)$node->getSize(),

[provokateurin]

Suggested change

	'is-public-link' => true,
	'is-public-link' => 'yes',

[provokateurin]

Suggested change

	'preview-available' => $this->previewManager->isAvailable($node),
	'preview-available' => $this->previewManager->isAvailable($node) ? 'yes' : 'no',

[AIlkiv]

@nickvergessen Is there anything else I can do to improve this PR so that you will accept it?

[nickvergessen]

this needs to log a brute-force attempt or needs some kind of other protection to not allow users to iterate public share links.
But if we add that, I can get you bruteforce protected by propering a document with a lot of share links you don't have access to.

I'm not sure this is solvable in a sensible and working way at the moment, so my objection still stands