From 36d259c523bbd54c170e62de0b8fd509bb1cf04c Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:05:55 -0300
Subject: [PATCH 01/51] chore: stop search early if haven't values to search
 for

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/IdentifyAccountController.php | 9 +++------
 1 file changed, 3 insertions(+), 6 deletions(-)

diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index 8b494ac00f..07aab7a6ca 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -56,15 +56,12 @@ public function __construct(
 	#[RequireManager]
 	#[ApiRoute(verb: 'GET', url: '/api/{apiVersion}/identify-account/search', requirements: ['apiVersion' => '(v1)'])]
 	public function search(string $search = '', int $page = 1, int $limit = 25): DataResponse {
-		$shareTypes = $this->getShareTypes();
-		$lookup = false;
-
-		// only search for string larger than a given threshold
-		$threshold = 1;
-		if (strlen($search) < $threshold) {
+		// only search for string larger than a minimum length
+		if (strlen($search) < 1) {
 			return new DataResponse();
 		}
 
+		$lookup = false;
 		$offset = $limit * ($page - 1);
 		[$result] = $this->collaboratorSearch->search($search, $shareTypes, $lookup, $limit, $offset);
 		$result['exact'] = $this->unifyResult($result['exact']);

From 4c843ae84db1989c2f8c5d622a0d29ea991b81d8 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:11:38 -0300
Subject: [PATCH 02/51] feat: Search by signers

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 .../Collaborators/SignerPlugin.php            | 100 ++++++++++++++++++
 lib/Controller/IdentifyAccountController.php  |  43 ++++++--
 lib/Db/IdentifyMethodMapper.php               |  59 +++++++++++
 3 files changed, 196 insertions(+), 6 deletions(-)
 create mode 100644 lib/Collaboration/Collaborators/SignerPlugin.php

diff --git a/lib/Collaboration/Collaborators/SignerPlugin.php b/lib/Collaboration/Collaborators/SignerPlugin.php
new file mode 100644
index 0000000000..d3dacb9eba
--- /dev/null
+++ b/lib/Collaboration/Collaborators/SignerPlugin.php
@@ -0,0 +1,100 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Collaboration\Collaborators;
+
+use OCA\Libresign\Db\IdentifyMethodMapper;
+use OCP\Collaboration\Collaborators\ISearchPlugin;
+use OCP\Collaboration\Collaborators\ISearchResult;
+use OCP\Collaboration\Collaborators\SearchResultType;
+use OCP\IUserSession;
+
+class SignerPlugin implements ISearchPlugin {
+	public const TYPE_SIGNER = 50; // IShare::TYPE_SIGNER = 50; It's a custom share type. Not defined in OCP\Share\IShare
+	public static string $method = '';
+
+	public function __construct(
+		protected IdentifyMethodMapper $identifyMethodMapper,
+		private IUserSession $userSession,
+	) {
+	}
+
+	public static function setMethod(string $method): void {
+		self::$method = $method;
+	}
+
+	/**
+	 * {@inheritdoc}
+	 */
+	public function search($search, $limit, $offset, ISearchResult $searchResult): bool {
+		$user = $this->userSession->getUser()->getUID();
+
+		$limit++;
+		$identifiers = $this->identifyMethodMapper->searchByIdentifierValue(
+			$search,
+			$user,
+			self::$method,
+			$limit,
+			$offset,
+		);
+
+		$result = ['wide' => [], 'exact' => []];
+
+		$hasMore = false;
+		if (count($identifiers) > $limit) {
+			$hasMore = true;
+			array_pop($identifiers);
+		}
+
+		foreach ($identifiers as $row) {
+			$item = $this->rowToSearchResultItem($row);
+			if (strtolower($row['identifier_value']) === strtolower($search)
+				|| strtolower($row['display_name']) === strtolower($search)
+			) {
+				$result['exact'][] = $item;
+			} else {
+				$result['wide'][] = $item;
+			}
+		}
+
+		if (!count($identifiers) && !$this->canValidateMethod()) {
+			$result['exact'][] = [
+				'label' => $search,
+				'shareWithDisplayNameUnique' => $search,
+				'key' => self::$method,
+				'value' => [
+					'shareWith' => $search,
+					'shareType' => self::TYPE_SIGNER,
+				],
+			];
+		}
+
+		$type = new SearchResultType('signer');
+		$searchResult->addResultSet($type, $result['wide'], $result['exact']);
+
+		return $hasMore;
+	}
+
+	private function canValidateMethod(): bool {
+		return in_array(self::$method, ['Email', 'Account'], true);
+	}
+
+	private function rowToSearchResultItem(array $row): array {
+		$item = [
+			'label' => $row['display_name'],
+			'shareWithDisplayNameUnique' => $row['identifier_value'],
+			'key' => $row['identifier_key'],
+			'value' => [
+				'shareWith' => $row['identifier_value'],
+				'shareType' => self::TYPE_SIGNER,
+			]
+		];
+
+		return $item;
+	}
+}
diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index 07aab7a6ca..0592ce5c2d 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -9,6 +9,7 @@
 namespace OCA\Libresign\Controller;
 
 use OCA\Libresign\AppInfo\Application;
+use OCA\Libresign\Collaboration\Collaborators\SignerPlugin;
 use OCA\Libresign\Middleware\Attribute\RequireManager;
 use OCA\Libresign\ResponseDefinitions;
 use OCA\Libresign\Service\IdentifyMethod\Account;
@@ -55,14 +56,17 @@ public function __construct(
 	#[NoAdminRequired]
 	#[RequireManager]
 	#[ApiRoute(verb: 'GET', url: '/api/{apiVersion}/identify-account/search', requirements: ['apiVersion' => '(v1)'])]
-	public function search(string $search = '', int $page = 1, int $limit = 25): DataResponse {
+	public function search(string $search = '', string $method = '', int $page = 1, int $limit = 25): DataResponse {
 		// only search for string larger than a minimum length
 		if (strlen($search) < 1) {
 			return new DataResponse();
 		}
 
+		$shareTypes = $this->getShareTypes();
 		$lookup = false;
+
 		$offset = $limit * ($page - 1);
+		$this->registerPlugin($method);
 		[$result] = $this->collaboratorSearch->search($search, $shareTypes, $lookup, $limit, $offset);
 		$result['exact'] = $this->unifyResult($result['exact']);
 		$result = $this->unifyResult($result);
@@ -75,6 +79,19 @@ public function search(string $search = '', int $page = 1, int $limit = 25): Dat
 		return new DataResponse($return);
 	}
 
+	private function registerPlugin(string $method): void {
+		SignerPlugin::setMethod($method);
+
+		$refObject = new \ReflectionObject($this->collaboratorSearch);
+		$refProperty = $refObject->getProperty('pluginList');
+		$refProperty->setAccessible(true);
+
+		$plugins = $refProperty->getValue($this->collaboratorSearch);
+		$plugins[SignerPlugin::TYPE_SIGNER] = [SignerPlugin::class];
+
+		$refProperty->setValue($this->collaboratorSearch, $plugins);
+	}
+
 	private function getShareTypes(): array {
 		if (count($this->shareTypes) > 0) {
 			return $this->shareTypes;
@@ -87,6 +104,8 @@ private function getShareTypes(): array {
 		if ($settings['enabled']) {
 			$this->shareTypes[] = IShare::TYPE_USER;
 		}
+
+		$this->shareTypes[] = SignerPlugin::TYPE_SIGNER;
 		return $this->shareTypes;
 	}
 
@@ -106,21 +125,33 @@ private function unifyResult(array $list): array {
 	}
 
 	private function formatForNcSelect(array $list): array {
+		$return = [];
 		foreach ($list as $key => $item) {
-			$list[$key] = [
+			$return[$key] = [
 				'id' => $item['value']['shareWith'],
 				'isNoUser' => $item['value']['shareType'] !== IShare::TYPE_USER,
 				'displayName' => $item['label'],
 				'subname' => $item['shareWithDisplayNameUnique'] ?? '',
-				'shareType' => $item['value']['shareType'],
 			];
 			if ($item['value']['shareType'] === IShare::TYPE_EMAIL) {
-				$list[$key]['icon'] = 'icon-mail';
+				$return[$key]['method'] = 'email';
+				$return[$key]['icon'] = 'icon-mail';
 			} elseif ($item['value']['shareType'] === IShare::TYPE_USER) {
-				$list[$key]['icon'] = 'icon-user';
+				$return[$key]['method'] = 'account';
+				$return[$key]['icon'] = 'icon-user';
+			} elseif ($item['value']['shareType'] === SignerPlugin::TYPE_SIGNER) {
+				$return[$key]['method'] = $item['key'];
+				if ($item['key'] === 'email') {
+					$return[$key]['icon'] = 'icon-mail';
+				} elseif ($item['key'] === 'account') {
+					$return[$key]['icon'] = 'icon-user';
+				} else {
+					$return[$key]['iconSvg'] = 'svg' . ucfirst($item['key']);
+					$return[$key]['iconName'] = $item['key'];
+				}
 			}
 		}
-		return $list;
+		return $return;
 	}
 
 	private function addHerselfAccount(array $return, string $search): array {
diff --git a/lib/Db/IdentifyMethodMapper.php b/lib/Db/IdentifyMethodMapper.php
index 10e7cfbce4..68707c4a39 100644
--- a/lib/Db/IdentifyMethodMapper.php
+++ b/lib/Db/IdentifyMethodMapper.php
@@ -73,4 +73,63 @@ public function neutralizeDeletedUser(string $userId, string $displayName): void
 			$update->executeStatement();
 		}
 	}
+
+	public function searchByIdentifierValue(string $search, string $userId, string $method, int $limit = 20, int $offset = 0): array {
+		$qb = $this->db->getQueryBuilder();
+
+		$latestQb = $this->db->getQueryBuilder();
+		$latestQb->select('im2.identifier_key')
+			->addSelect('im2.identifier_value')
+			->addSelect($latestQb->func()->max('sr2.created_at', 'created_at'))
+			->from('libresign_identify_method', 'im2')
+			->join('im2', 'libresign_sign_request', 'sr2',
+				$latestQb->expr()->eq('sr2.id', 'im2.sign_request_id')
+			)
+			->join('im2', 'libresign_file', 'f2',
+				$latestQb->expr()->eq('f2.id', 'sr2.file_id')
+			)
+			->where($latestQb->expr()->eq('f2.user_id', $latestQb->createNamedParameter($userId)));
+		if (!empty($method)) {
+			$latestQb->andWhere($latestQb->expr()->eq('im2.identifier_key', $latestQb->createNamedParameter($method)));
+		}
+		$latestQb->andWhere(
+				$latestQb->expr()->orX(
+					$latestQb->expr()->iLike(
+						'im2.identifier_value',
+						$latestQb->createNamedParameter('%' . $this->db->escapeLikeParameter($search) . '%')
+					),
+					$latestQb->expr()->iLike(
+						'sr2.display_name',
+						$latestQb->createNamedParameter('%' . $this->db->escapeLikeParameter($search) . '%')
+					)
+				)
+			)
+			->groupBy('im2.identifier_key')
+			->addGroupBy('im2.identifier_value');
+
+		foreach ($latestQb->getParameters() as $name => $value) {
+			$qb->setParameter($name, $value);
+		}
+
+		$qb->select('im.identifier_key', 'im.identifier_value', 'sr.display_name')
+			->from('libresign_identify_method', 'im')
+			->join('im', $qb->createFunction('(' . $latestQb->getSQL() . ')'), 'latest',
+				$qb->expr()->andX(
+					$qb->expr()->eq('latest.identifier_key', 'im.identifier_key'),
+					$qb->expr()->eq('latest.identifier_value', 'im.identifier_value')
+				)
+			)
+			->join('im', 'libresign_sign_request', 'sr',
+				$qb->expr()->eq('sr.id', 'im.sign_request_id'),
+			)
+			->setMaxResults($limit)
+			->setFirstResult($offset);
+
+		$cursor = $qb->executeQuery();
+		$return = [];
+		while ($row = $cursor->fetch()) {
+			$return[] = $row;
+		}
+		return $return;
+	}
 }

From 5a5f4d262348cf858164005a128160d92a3f9c22 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:14:26 -0300
Subject: [PATCH 03/51] fix: add pendign param

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/IdentifyAccountController.php | 1 +
 lib/Controller/SignFileController.php        | 4 ++--
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index 0592ce5c2d..071a2b45d0 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -46,6 +46,7 @@ public function __construct(
 	 * Used to identify who can sign the document. The return of this endpoint is related with Administration Settiongs > LibreSign > Identify method.
 	 *
 	 * @param string $search search params
+	 * @param string $method filter by method (email, account, sms, signal, telegram, whatsapp, xmpp)
 	 * @param int $page the number of page to return. Default: 1
 	 * @param int $limit Total of elements to return. Default: 25
 	 * @return DataResponse<Http::STATUS_OK, LibresignIdentifyAccount[], array{}>
diff --git a/lib/Controller/SignFileController.php b/lib/Controller/SignFileController.php
index 8bbff6170e..1579e8f089 100644
--- a/lib/Controller/SignFileController.php
+++ b/lib/Controller/SignFileController.php
@@ -220,7 +220,7 @@ public function signRenew(string $method): DataResponse {
 	 *
 	 * @param string $uuid UUID of LibreSign file
 	 * @param 'account'|'email'|null $identifyMethod Identify signer method
-	 * @param string|null $signMethod Method used to sign the document, i.e. emailToken, account, clickToSign
+	 * @param string|null $signMethod Method used to sign the document, i.e. emailToken, account, clickToSign, sms, signal, telegram, whatsapp, xmpp
 	 * @param string|null $identify Identify value, i.e. the signer email, account or phone number
 	 * @return DataResponse<Http::STATUS_OK, array{message: string}, array{}>|DataResponse<Http::STATUS_UNPROCESSABLE_ENTITY, array{message: string}, array{}>
 	 *
@@ -246,7 +246,7 @@ public function getCodeUsingUuid(string $uuid, ?string $identifyMethod, ?string
 	 *
 	 * @param int $fileId Id of LibreSign file
 	 * @param 'account'|'email'|null $identifyMethod Identify signer method
-	 * @param string|null $signMethod Method used to sign the document, i.e. emailToken, account, clickToSign
+	 * @param string|null $signMethod Method used to sign the document, i.e. emailToken, account, clickToSign, sms, signal, telegram, whatsapp, xmpp
 	 * @param string|null $identify Identify value, i.e. the signer email, account or phone number
 	 * @return DataResponse<Http::STATUS_OK, array{message: string}, array{}>|DataResponse<Http::STATUS_UNPROCESSABLE_ENTITY, array{message: string}, array{}>
 	 *

From 10898291601868ee9cb0ac8aaa07c0ed3aaa53e8 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:15:19 -0300
Subject: [PATCH 04/51] chore: update openapi

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 openapi-full.json                 | 13 +++++++++++--
 openapi.json                      | 13 +++++++++++--
 src/types/openapi/openapi-full.ts |  6 ++++--
 src/types/openapi/openapi.ts      |  6 ++++--
 4 files changed, 30 insertions(+), 8 deletions(-)

diff --git a/openapi-full.json b/openapi-full.json
index 47a493f511..421a6db16e 100644
--- a/openapi-full.json
+++ b/openapi-full.json
@@ -5508,6 +5508,15 @@
                             "default": ""
                         }
                     },
+                    {
+                        "name": "method",
+                        "in": "query",
+                        "description": "filter by method (email, account, sms, signal, telegram, whatsapp, xmpp)",
+                        "schema": {
+                            "type": "string",
+                            "default": ""
+                        }
+                    },
                     {
                         "name": "page",
                         "in": "query",
@@ -7330,7 +7339,7 @@
                                     "signMethod": {
                                         "type": "string",
                                         "nullable": true,
-                                        "description": "Method used to sign the document, i.e. emailToken, account, clickToSign"
+                                        "description": "Method used to sign the document, i.e. emailToken, account, clickToSign, sms, signal, telegram, whatsapp, xmpp"
                                     },
                                     "identify": {
                                         "type": "string",
@@ -7490,7 +7499,7 @@
                                     "signMethod": {
                                         "type": "string",
                                         "nullable": true,
-                                        "description": "Method used to sign the document, i.e. emailToken, account, clickToSign"
+                                        "description": "Method used to sign the document, i.e. emailToken, account, clickToSign, sms, signal, telegram, whatsapp, xmpp"
                                     },
                                     "identify": {
                                         "type": "string",
diff --git a/openapi.json b/openapi.json
index 7d000b01f8..432d8504a3 100644
--- a/openapi.json
+++ b/openapi.json
@@ -5361,6 +5361,15 @@
                             "default": ""
                         }
                     },
+                    {
+                        "name": "method",
+                        "in": "query",
+                        "description": "filter by method (email, account, sms, signal, telegram, whatsapp, xmpp)",
+                        "schema": {
+                            "type": "string",
+                            "default": ""
+                        }
+                    },
                     {
                         "name": "page",
                         "in": "query",
@@ -7183,7 +7192,7 @@
                                     "signMethod": {
                                         "type": "string",
                                         "nullable": true,
-                                        "description": "Method used to sign the document, i.e. emailToken, account, clickToSign"
+                                        "description": "Method used to sign the document, i.e. emailToken, account, clickToSign, sms, signal, telegram, whatsapp, xmpp"
                                     },
                                     "identify": {
                                         "type": "string",
@@ -7343,7 +7352,7 @@
                                     "signMethod": {
                                         "type": "string",
                                         "nullable": true,
-                                        "description": "Method used to sign the document, i.e. emailToken, account, clickToSign"
+                                        "description": "Method used to sign the document, i.e. emailToken, account, clickToSign, sms, signal, telegram, whatsapp, xmpp"
                                     },
                                     "identify": {
                                         "type": "string",
diff --git a/src/types/openapi/openapi-full.ts b/src/types/openapi/openapi-full.ts
index 262d421096..661335d7ed 100644
--- a/src/types/openapi/openapi-full.ts
+++ b/src/types/openapi/openapi-full.ts
@@ -3397,6 +3397,8 @@ export interface operations {
             query?: {
                 /** @description search params */
                 search?: string;
+                /** @description filter by method (email, account, sms, signal, telegram, whatsapp, xmpp) */
+                method?: string;
                 /** @description the number of page to return. Default: 1 */
                 page?: number;
                 /** @description Total of elements to return. Default: 25 */
@@ -4125,7 +4127,7 @@ export interface operations {
                      * @enum {string|null}
                      */
                     identifyMethod?: "account" | "email" | null;
-                    /** @description Method used to sign the document, i.e. emailToken, account, clickToSign */
+                    /** @description Method used to sign the document, i.e. emailToken, account, clickToSign, sms, signal, telegram, whatsapp, xmpp */
                     signMethod?: string | null;
                     /** @description Identify value, i.e. the signer email, account or phone number */
                     identify?: string | null;
@@ -4189,7 +4191,7 @@ export interface operations {
                      * @enum {string|null}
                      */
                     identifyMethod?: "account" | "email" | null;
-                    /** @description Method used to sign the document, i.e. emailToken, account, clickToSign */
+                    /** @description Method used to sign the document, i.e. emailToken, account, clickToSign, sms, signal, telegram, whatsapp, xmpp */
                     signMethod?: string | null;
                     /** @description Identify value, i.e. the signer email, account or phone number */
                     identify?: string | null;
diff --git a/src/types/openapi/openapi.ts b/src/types/openapi/openapi.ts
index 5397b27750..c6e11dce6c 100644
--- a/src/types/openapi/openapi.ts
+++ b/src/types/openapi/openapi.ts
@@ -3073,6 +3073,8 @@ export interface operations {
             query?: {
                 /** @description search params */
                 search?: string;
+                /** @description filter by method (email, account, sms, signal, telegram, whatsapp, xmpp) */
+                method?: string;
                 /** @description the number of page to return. Default: 1 */
                 page?: number;
                 /** @description Total of elements to return. Default: 25 */
@@ -3801,7 +3803,7 @@ export interface operations {
                      * @enum {string|null}
                      */
                     identifyMethod?: "account" | "email" | null;
-                    /** @description Method used to sign the document, i.e. emailToken, account, clickToSign */
+                    /** @description Method used to sign the document, i.e. emailToken, account, clickToSign, sms, signal, telegram, whatsapp, xmpp */
                     signMethod?: string | null;
                     /** @description Identify value, i.e. the signer email, account or phone number */
                     identify?: string | null;
@@ -3865,7 +3867,7 @@ export interface operations {
                      * @enum {string|null}
                      */
                     identifyMethod?: "account" | "email" | null;
-                    /** @description Method used to sign the document, i.e. emailToken, account, clickToSign */
+                    /** @description Method used to sign the document, i.e. emailToken, account, clickToSign, sms, signal, telegram, whatsapp, xmpp */
                     signMethod?: string | null;
                     /** @description Identify value, i.e. the signer email, account or phone number */
                     identify?: string | null;

From a795fbf1a03969e5bbc15fb7edee7bd56b96fc6d Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:17:40 -0300
Subject: [PATCH 05/51] fix: remove todo and fix method to use
 twofactor_gateway

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 .../SignatureMethod/TokenService.php          | 49 ++++++++-----------
 1 file changed, 21 insertions(+), 28 deletions(-)

diff --git a/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php b/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php
index c576ce6c91..6ae0b1f197 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php
@@ -9,49 +9,42 @@
 namespace OCA\Libresign\Service\IdentifyMethod\SignatureMethod;
 
 use OCA\Libresign\Service\MailService;
+use OCP\AppFramework\OCS\OCSForbiddenException;
+use OCP\IL10N;
 use OCP\Security\IHasher;
 use OCP\Security\ISecureRandom;
+use OCP\Server;
 
 class TokenService {
 	public const TOKEN_LENGTH = 6;
-	public const SIGN_PASSWORD = 'password';
-	public const SIGN_SIGNAL = 'signal';
-	public const SIGN_TELEGRAM = 'telegram';
-	public const SIGN_SMS = 'sms';
-	public const SIGN_EMAIL = 'email';
 
 	public function __construct(
 		private ISecureRandom $secureRandom,
 		private IHasher $hasher,
 		private MailService $mail,
+		private IL10N $l10n,
 	) {
 	}
 
-	/**
-	 * @todo check this code and put to work
-	 */
-	public function sendCodeByGateway(string $code, string $gatewayName): void {
-		// 	$user = \OCP\Server::get(IUserSession::class)->getUser();
-		// 	$gateway = $this->getGateway($user, $gatewayName);
+	public function sendCodeByGateway(string $identifier, string $code, string $gatewayName): string {
+		$gateway = $this->getGateway($gatewayName);
 
-		// 	$userAccount = $this->accountManager->getAccount($user);
-		// 	$identifier = $userAccount->getProperty(IAccountManager::PROPERTY_PHONE)->getValue();
-		// 	$gateway->send($user, $identifier, $this->l10n->t('%s is your LibreSign verification code.', $code));
-		// }
+		$code = $this->secureRandom->generate(self::TOKEN_LENGTH, ISecureRandom::CHAR_DIGITS);
+		$gateway->send($identifier, $this->l10n->t('%s is your LibreSign verification code.', $code));
+		return $this->hasher->hash($code);
+	}
 
-		// /**
-		//  * @throws OCSForbiddenException
-		//  */
-		// private function getGateway(IUser $user, string $gatewayName): \OCA\TwoFactorGateway\Service\Gateway\IGateway {
-		// 	if (!$this->appManager->isEnabledForUser('twofactor_gateway', $user)) {
-		// 		throw new OCSForbiddenException($this->l10n->t('Authorize signing using %s token is disabled because Nextcloud Two-Factor Gateway is not enabled.', $gatewayName));
-		// 	}
-		// 	$factory = $this->serverContainer->get('\OCA\TwoFactorGateway\Service\Gateway\Factory');
-		// 	$gateway = $factory->getGateway($gatewayName);
-		// 	if (!$gateway->getConfig()->isComplete()) {
-		// 		throw new OCSForbiddenException($this->l10n->t('Gateway %s not configured on Two-Factor Gateway.', $gatewayName));
-		// 	}
-		// 	return $gateway;
+	/**
+	 * @throws OCSForbiddenException
+	 * @return \OCA\TwoFactorGateway\Provider\Gateway\IGateway
+	 */
+	private function getGateway(string $gatewayName) {
+		$factory = Server::get('\OCA\TwoFactorGateway\Service\Gateway\Factory');
+		$gateway = $factory->getGateway($gatewayName);
+		if (!$gateway->getConfig()->isComplete()) {
+			throw new OCSForbiddenException($this->l10n->t('Gateway %s not configured on Two-Factor Gateway.', $gatewayName));
+		}
+		return $gateway;
 	}
 
 	public function sendCodeByEmail(string $email, string $displayName): string {

From 28875646277a850c5b791911b6302481d2fee697 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:21:31 -0300
Subject: [PATCH 06/51] chore: remove direct access to property and implement
 getter

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 .../IdentifyMethod/AbstractIdentifyMethod.php        | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php b/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
index 1718776ade..77cb40fdac 100644
--- a/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
+++ b/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
@@ -18,6 +18,7 @@
 use OCA\Libresign\Exception\LibresignException;
 use OCA\Libresign\Helper\JSActions;
 use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\AbstractSignatureMethod;
+use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\ISignatureMethod;
 use OCA\Libresign\Service\SessionService;
 use OCA\Libresign\Vendor\Wobeto\EmailBlur\Blur;
 use OCP\IUser;
@@ -34,7 +35,7 @@ abstract class AbstractIdentifyMethod implements IIdentifyMethod {
 	 * @var string[]
 	 */
 	public array $availableSignatureMethods = [];
-	protected string $defaultSignatureMethod = '';
+	protected string $defaultSignatureMethod = ISignatureMethod::SIGNATURE_METHOD_CLICK_TO_SIGN;
 	/**
 	 * @var AbstractSignatureMethod[]
 	 */
@@ -85,8 +86,12 @@ public function signatureMethodsToArray(): array {
 		], $this->signatureMethods);
 	}
 
+	public function getAvailableSignatureMethods(): array {
+		return $this->availableSignatureMethods;
+	}
+
 	public function getEmptyInstanceOfSignatureMethodByName(string $name): AbstractSignatureMethod {
-		if (!in_array($name, $this->availableSignatureMethods)) {
+		if (!in_array($name, $this->getAvailableSignatureMethods())) {
 			throw new InvalidArgumentException(sprintf('%s is not a valid signature method of identify method %s', $name, $this->getName()));
 		}
 		$className = 'OCA\Libresign\Service\IdentifyMethod\\SignatureMethod\\' . ucfirst($name);
@@ -310,7 +315,8 @@ private function loadSavedSettings(): void {
 			return $carry;
 		}, []);
 		$enabled = false;
-		foreach ($this->availableSignatureMethods as $signatureMethodName) {
+		$availableSignatureMethods = $this->getAvailableSignatureMethods();
+		foreach ($availableSignatureMethods as $signatureMethodName) {
 			$this->signatureMethods[$signatureMethodName]
 				= $this->getEmptyInstanceOfSignatureMethodByName($signatureMethodName);
 			if (isset($this->settings['signatureMethods'][$signatureMethodName]['enabled'])

From 02c1d605abc34ce9bfbac360b3e0e5d20776331c Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:22:10 -0300
Subject: [PATCH 07/51] fix: don't return not allowed settings

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/IdentifyMethod/AbstractIdentifyMethod.php | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php b/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
index 77cb40fdac..dcb6f91081 100644
--- a/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
+++ b/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
@@ -326,6 +326,13 @@ private function loadSavedSettings(): void {
 				$enabled = true;
 			}
 		}
+		if (isset($this->settings['signatureMethods'])) {
+			foreach (array_keys($this->settings['signatureMethods']) as $signatureMethodName) {
+				if (!in_array($signatureMethodName, $availableSignatureMethods, true)) {
+					unset($this->settings['signatureMethods'][$signatureMethodName]);
+				}
+			}
+		}
 		if (!$enabled && $this->defaultSignatureMethod) {
 			$this->signatureMethods[$this->defaultSignatureMethod]->enable();
 		}

From d3660d41ee30d4d5890fa365cb59a4c0cb96f1a3 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:23:17 -0300
Subject: [PATCH 08/51] chore: add setter and getter to name

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/IdentifyMethod/AbstractIdentifyMethod.php     | 8 ++++++--
 lib/Service/IdentifyMethod/Account.php                    | 2 +-
 lib/Service/IdentifyMethod/Email.php                      | 2 +-
 lib/Service/IdentifyMethod/IIdentifyMethod.php            | 1 +
 .../IdentifyMethod/SignatureMethod/ClickToSign.php        | 2 +-
 lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php | 2 +-
 6 files changed, 11 insertions(+), 6 deletions(-)

diff --git a/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php b/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
index dcb6f91081..ed97bb50a3 100644
--- a/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
+++ b/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
@@ -61,6 +61,10 @@ public function getFriendlyName(): string {
 		return $this->friendlyName;
 	}
 
+	public function setFriendlyName(string $friendlyName): void {
+		$this->friendlyName = $friendlyName;
+	}
+
 	public function setCodeSentByUser(string $code): void {
 		$this->codeSentByUser = $code;
 	}
@@ -80,7 +84,7 @@ public function getEntity(): IdentifyMethod {
 
 	public function signatureMethodsToArray(): array {
 		return array_map(fn (AbstractSignatureMethod $method) => [
-			'label' => $method->friendlyName,
+			'label' => $method->getFriendlyName(),
 			'name' => $method->getName(),
 			'enabled' => $method->isEnabled(),
 		], $this->signatureMethods);
@@ -289,7 +293,7 @@ protected function getSettingsFromDatabase(array $default = [], array $immutable
 		$default = array_merge(
 			[
 				'name' => $this->name,
-				'friendly_name' => $this->friendlyName,
+				'friendly_name' => $this->getFriendlyName(),
 				'enabled' => true,
 				'mandatory' => true,
 				'signatureMethods' => $this->signatureMethodsToArray(),
diff --git a/lib/Service/IdentifyMethod/Account.php b/lib/Service/IdentifyMethod/Account.php
index 0771b688e3..e9f8dcf577 100644
--- a/lib/Service/IdentifyMethod/Account.php
+++ b/lib/Service/IdentifyMethod/Account.php
@@ -47,7 +47,7 @@ public function __construct(
 		private MailService $mail,
 	) {
 		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by Nextcloud acccount
-		$this->friendlyName = $this->identifyService->getL10n()->t('Account');
+		$this->setFriendlyName($this->identifyService->getL10n()->t('Account'));
 		parent::__construct(
 			$identifyService,
 		);
diff --git a/lib/Service/IdentifyMethod/Email.php b/lib/Service/IdentifyMethod/Email.php
index 78e0cfdfea..30be6c60ed 100644
--- a/lib/Service/IdentifyMethod/Email.php
+++ b/lib/Service/IdentifyMethod/Email.php
@@ -37,7 +37,7 @@ public function __construct(
 		private LoggerInterface $logger,
 	) {
 		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by email
-		$this->friendlyName = $this->identifyService->getL10n()->t('Email');
+		$this->setFriendlyName($this->identifyService->getL10n()->t('Email'));
 		parent::__construct(
 			$identifyService,
 		);
diff --git a/lib/Service/IdentifyMethod/IIdentifyMethod.php b/lib/Service/IdentifyMethod/IIdentifyMethod.php
index a7d09ab297..e18e8d24c5 100644
--- a/lib/Service/IdentifyMethod/IIdentifyMethod.php
+++ b/lib/Service/IdentifyMethod/IIdentifyMethod.php
@@ -15,6 +15,7 @@
 interface IIdentifyMethod {
 	public static function getId(): string;
 	public function getName(): string;
+	public function setFriendlyName(string $friendlyName): void;
 	public function getFriendlyName(): string;
 	public function setCodeSentByUser(string $code): void;
 	public function cleanEntity(): void;
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/ClickToSign.php b/lib/Service/IdentifyMethod/SignatureMethod/ClickToSign.php
index 8a34aecf12..bfcfd17b71 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/ClickToSign.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/ClickToSign.php
@@ -15,7 +15,7 @@ public function __construct(
 		protected IdentifyService $identifyService,
 	) {
 		// TRANSLATORS Name of possible authenticator method. This signalize that the signer only need to click to sign after was identified
-		$this->friendlyName = $this->identifyService->getL10n()->t('Click to sign');
+		$this->setFriendlyName($this->identifyService->getL10n()->t('Click to sign'));
 		parent::__construct(
 			$identifyService,
 		);
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php b/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php
index 2aa91ec597..8a43a667de 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php
@@ -19,7 +19,7 @@ public function __construct(
 		protected TokenService $tokenService,
 	) {
 		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by email
-		$this->friendlyName = $this->identifyService->getL10n()->t('Email token');
+		$this->setFriendlyName($this->identifyService->getL10n()->t('Email token'));
 		parent::__construct(
 			$identifyService,
 		);

From 9858fe5842e165d9f9a814371c50767d1e90eff1 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:24:14 -0300
Subject: [PATCH 09/51] fix: make more generic

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/SignFileService.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/lib/Service/SignFileService.php b/lib/Service/SignFileService.php
index 91a11b5d58..23ab1b0b92 100644
--- a/lib/Service/SignFileService.php
+++ b/lib/Service/SignFileService.php
@@ -37,7 +37,7 @@
 use OCA\Libresign\Helper\JSActions;
 use OCA\Libresign\Helper\ValidateHelper;
 use OCA\Libresign\Service\IdentifyMethod\IIdentifyMethod;
-use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\EmailToken;
+use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\IToken;
 use OCP\AppFramework\Db\DoesNotExistException;
 use OCP\AppFramework\Db\MultipleObjectsReturnedException;
 use OCP\AppFramework\Utility\ITimeFactory;
@@ -611,7 +611,7 @@ public function requestCode(
 			} catch (InvalidArgumentException) {
 				continue;
 			}
-			/** @var EmailToken $signatureMethod */
+			/** @var IToken $signatureMethod */
 			$signatureMethod->requestCode($identify);
 			return;
 		}

From 260c0574c3d0666476432a8b3d2000e373cbee24 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:24:59 -0300
Subject: [PATCH 10/51] feat: change way to add a signer, use a modal to be
 possible split

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 src/Components/Request/IdentifySigner.vue     | 156 +++++-------------
 .../{AccountOrEmail.vue => SignerSelect.vue}  |  57 ++++---
 .../RightSidebar/RequestSignatureTab.vue      |  84 +++++++++-
 3 files changed, 154 insertions(+), 143 deletions(-)
 rename src/Components/Request/{AccountOrEmail.vue => SignerSelect.vue} (76%)

diff --git a/src/Components/Request/IdentifySigner.vue b/src/Components/Request/IdentifySigner.vue
index bc0ac829e3..17e66729f4 100644
--- a/src/Components/Request/IdentifySigner.vue
+++ b/src/Components/Request/IdentifySigner.vue
@@ -4,13 +4,12 @@
 -->
 <template>
 	<div class="identifySigner">
-		<AccountOrEmail v-if="methods.account.enabled || methods.email.enabled"
-			:required="methods.account.required || methods.email.required"
+		<SignerSelect
 			:signer="signer"
 			:placeholder="placeholder"
-			@update:account="updateAccount"
-			@update:email="updateEmail"
-			@update:display-name="updateDisplayName" />
+			:method="method"
+			@update:signer="updateSigner" />
+
 		<label v-if="signerSelected" for="name-input">{{ t('libresign', 'Signer name') }}</label>
 		<NcTextField v-if="signerSelected"
 			v-model="displayName"
@@ -40,8 +39,7 @@ import { loadState } from '@nextcloud/initial-state'
 
 import NcButton from '@nextcloud/vue/components/NcButton'
 import NcTextField from '@nextcloud/vue/components/NcTextField'
-
-import AccountOrEmail from './AccountOrEmail.vue'
+import SignerSelect from './SignerSelect.vue'
 
 import { useFilesStore } from '../../store/files.js'
 
@@ -50,7 +48,7 @@ export default {
 	components: {
 		NcButton,
 		NcTextField,
-		AccountOrEmail,
+		SignerSelect,
 	},
 	props: {
 		signerToEdit: {
@@ -60,7 +58,14 @@ export default {
 				displayName: '',
 				identifyMethods: [],
 			}),
-			required: false,
+		},
+		method: {
+			type: String,
+			default: 'all',
+		},
+		placeholder: {
+			type: String,
+			default: t('libresign', 'Name'),
 		},
 	},
 	setup() {
@@ -74,52 +79,16 @@ export default {
 			nameHaveError: false,
 			displayName: '',
 			identify: '',
-			methods: {
-				account: {
-					enabled: false,
-					required: false,
-					value: '',
-				},
-				email: {
-					enabled: false,
-					required: false,
-					value: '',
-				},
-			},
+			signer: {},
 		}
 	},
 	computed: {
-		signer() {
-			if (this.methods.account.value.length > 0) {
-				return {
-					id: this.methods.account.value,
-					icon: 'icon-user',
-					isNoUser: false,
-					displayName: this.signerToEdit.displayName,
-				}
-			} else if (this.methods.email.value.length > 0) {
-				return {
-					id: this.methods.email.value,
-					icon: 'icon-mail',
-					isNoUser: true,
-					displayName: this.signerToEdit.displayName,
-				}
-			} else {
-				return {}
-			}
-		},
 		signerSelected() {
-			return this.methods.account.value || this.methods.email.value
+			return !!this.signer?.id
 		},
 		isNewSigner() {
 			return this.id === null || this.id === undefined
 		},
-		placeholder() {
-			if (!this.methods.account.enabled && this.methods.email.enabled) {
-				return t('libresign', 'Email')
-			}
-			return t('libresign', 'Name')
-		},
 		saveButtonText() {
 			if (this.isNewSigner) {
 				return t('libresign', 'Save')
@@ -128,83 +97,42 @@ export default {
 		},
 	},
 	beforeMount() {
-		this.displayName = ''
-		this.identify = ''
-		this.methods.account.value = ''
-		this.methods.email.value = ''
-		if (Object.keys(this.signerToEdit).length > 0) {
-			this.identify = this.signerToEdit.identify ?? this.signerToEdit.signRequestId
-			this.updateDisplayName(this.signerToEdit.displayName)
-			this.signerToEdit.identifyMethods.forEach(method => {
-				if (method.method === 'email') {
-					this.methods.email.value = method.value
-				} else if (method.method === 'account') {
-					this.methods.account.value = method.value
-				}
-			})
-		}
-		const methods = loadState('libresign', 'identify_methods')
-		methods.forEach((method) => {
-			if (method.name === 'account') {
-				this.methods.account.enabled = method.enabled
-				this.methods.account.required = method.mandatory
-			} else if (method.name === 'email') {
-				this.methods.email.enabled = method.enabled
-				this.methods.email.required = method.mandatory
+		this.displayName = this.signerToEdit.displayName ?? ''
+		this.identify = this.signerToEdit.identify ?? this.signerToEdit.signRequestId ?? ''
+		if (Object.keys(this.signerToEdit).length > 0 && this.signerToEdit.identifyMethods?.length) {
+			const method = this.signerToEdit.identifyMethods[0]
+			this.signer = {
+				id: method.value,
+				method: method.method,
+				displayName: this.signerToEdit.displayName,
 			}
-		})
+		}
 	},
 	methods: {
+		updateSigner(signer) {
+			this.signer = signer
+			this.displayName = signer.displayName ?? ''
+			this.identify = signer.id ?? ''
+		},
 		saveSigner() {
-			const signer = {
+			if (!this.signer?.method || !this.signer?.id) {
+				return
+			}
+			this.filesStore.signerUpdate({
 				displayName: this.displayName,
 				identify: this.identify,
-				identifyMethods: [],
-			}
-			let canSave = false
-			if (this.methods.account.enabled) {
-				if (Object.keys(this.methods.account.value).length > 0) {
-					canSave = true
-					signer.identifyMethods.push({
-						method: 'account',
-						value: this.methods.account.value,
-					})
-				}
-			}
-			if (this.methods.email.enabled) {
-				if (Object.keys(this.methods.email.value).length > 0) {
-					canSave = true
-					signer.identifyMethods.push({
-						method: 'email',
-						value: this.methods.email.value,
-					})
-				}
-			}
-			if (canSave) {
-				this.filesStore.signerUpdate(signer)
-			}
+				identifyMethods: [
+					{
+						method: this.signer.method,
+						value: this.signer.id,
+					},
+				],
+			})
 			this.displayName = ''
 			this.identify = ''
-			this.identifyMethods = []
+			this.signer = {}
 			this.filesStore.disableIdentifySigner()
 		},
-		updateDisplayName(name) {
-			this.displayName = name ?? ''
-		},
-		updateEmail(email) {
-			if (typeof email !== 'object') {
-				this.methods.email.value = ''
-			} else {
-				this.methods.email.value = email.id
-			}
-		},
-		updateAccount(account) {
-			if (typeof account !== 'object') {
-				this.methods.account.value = ''
-			} else {
-				this.methods.account.value = account.id
-			}
-		},
 		onNameChange() {
 			const name = this.displayName.trim()
 			if (name.length > 2) {
diff --git a/src/Components/Request/AccountOrEmail.vue b/src/Components/Request/SignerSelect.vue
similarity index 76%
rename from src/Components/Request/AccountOrEmail.vue
rename to src/Components/Request/SignerSelect.vue
index 0d2967094f..fdf184a483 100644
--- a/src/Components/Request/AccountOrEmail.vue
+++ b/src/Components/Request/SignerSelect.vue
@@ -33,27 +33,38 @@ import debounce from 'debounce'
 
 import AlertCircle from 'vue-material-design-icons/AlertCircleOutline.vue'
 
+import svgWhatsapp from '@mdi/svg/svg/whatsapp.svg?raw'
+import svgSms from '@mdi/svg/svg/message-processing.svg?raw'
+import svgXmpp from '@mdi/svg/svg/xmpp.svg?raw'
+import svgSignal from '../../../img/logo-signal-app.svg?raw'
+
 import axios from '@nextcloud/axios'
 import { generateOcsUrl } from '@nextcloud/router'
 
 import NcSelect from '@nextcloud/vue/components/NcSelect'
 
+const iconMap = {
+	svgSignal,
+	svgSms,
+	svgTelegram: `<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 28 28"><g transform="rotate(-45, 12, 12)"><path d="M2,21L23,12L2,3V10L17,12L2,14V21Z" /></g></svg>`,
+	svgWhatsapp,
+	svgXmpp,
+}
+
 export default {
-	name: 'AccountOrEmail',
+	name: 'SignerSelect',
 	components: {
 		NcSelect,
 		AlertCircle,
 	},
 	props: {
-		required: {
-			type: Boolean,
-			default: false,
-			required: false,
-		},
 		signer: {
 			type: Object,
 			default: () => {},
-			required: false,
+		},
+		method: {
+			type: String,
+			default: 'all',
 		},
 		placeholder: {
 			type: String,
@@ -65,7 +76,7 @@ export default {
 			loading: false,
 			options: [],
 			selectedSigner: null,
-			haveError: this.required,
+			haveError: false,
 		}
 	},
 	computed: {
@@ -78,20 +89,8 @@ export default {
 	},
 	watch: {
 		selectedSigner(selected) {
-			this.haveError = selected === null && this.required
-			if (selected === null) {
-				this.$emit('update:email', false)
-				this.$emit('update:account', false)
-				this.$emit('update:display-name', '')
-			} else if (selected.isNoUser && selected.icon === 'icon-mail') {
-				this.$emit('update:email', selected)
-				this.$emit('update:account', false)
-				this.$emit('update:display-name', selected.displayName)
-			} else {
-				this.$emit('update:email', false)
-				this.$emit('update:account', selected)
-				this.$emit('update:display-name', selected.displayName)
-			}
+			this.haveError = selected === null
+			this.$emit('update:signer', selected)
 		},
 	},
 	mounted() {
@@ -109,6 +108,7 @@ export default {
 				response = await axios.get(generateOcsUrl('/apps/libresign/api/v1/identify-account/search'), {
 					params: {
 						search,
+						method: this.method,
 					},
 				})
 			} catch (error) {
@@ -116,12 +116,23 @@ export default {
 				return
 			}
 
-			this.options = response.data.ocs.data
+			this.options = this.injectIcons(response.data.ocs.data)
 			this.loading = false
 		},
+
 		asyncFind: debounce(function(search, lookup = false) {
 			this._asyncFind(search, lookup)
 		}, 500),
+
+		injectIcons(items) {
+			return items.map(item => {
+				const icon = item.iconSvg ? iconMap[item.iconSvg] : undefined
+				return {
+					...item,
+					...(icon ? { iconSvg: icon } : {}),
+				}
+			})
+		},
 	},
 }
 </script>
diff --git a/src/Components/RightSidebar/RequestSignatureTab.vue b/src/Components/RightSidebar/RequestSignatureTab.vue
index 21646cb73d..a3b6c470b1 100644
--- a/src/Components/RightSidebar/RequestSignatureTab.vue
+++ b/src/Components/RightSidebar/RequestSignatureTab.vue
@@ -3,12 +3,7 @@
   - SPDX-License-Identifier: AGPL-3.0-or-later
 -->
 <template>
-	<div v-if="filesStore.identifyingSigner"
-		id="request-signature-identify-signer">
-		<IdentifySigner :signer-to-edit="signerToEdit" />
-	</div>
-	<div v-else
-		id="request-signature-tab">
+	<div id="request-signature-tab">
 		<NcButton v-if="filesStore.canAddSigner()"
 			:variant="hasSigners ? 'secondary' : 'primary'"
 			@click="addSigner">
@@ -70,11 +65,40 @@
 			@close="closeModal()">
 			<iframe :src="modalSrc" class="iframe" />
 		</NcModal>
+		<NcDialog v-if="filesStore.identifyingSigner"
+			id="request-signature-identify-signer"
+			:size="size"
+			:name="t('libresign', 'Add new signer')"
+			@closing="filesStore.disableIdentifySigner()">
+			<NcAppSidebar
+				:name="t('libresign', 'Add new signer')">
+				<NcAppSidebarTab v-for="method in enabledMethods()"
+					:key="method.name"
+					:id="`tab-${method.name}`"
+					:name="method.friendly_name">
+					<template #icon>
+						<NcIconSvgWrapper :size="20"
+							:svg="getSvgIcon(method.name)" />
+					</template>
+					<IdentifySigner
+						:signer-to-edit="signerToEdit"
+						:placeholder="method.friendly_name"
+						:method="method.name" />
+				</NcAppSidebarTab>
+			</NcAppSidebar>
+		</NcDialog>
 	</div>
 </template>
 <script>
 import Delete from 'vue-material-design-icons/Delete.vue'
 
+import svgAccount from '@mdi/svg/svg/account.svg?raw'
+import svgEmail from '@mdi/svg/svg/email.svg?raw'
+import svgSignal from '../../../img/logo-signal-app.svg?raw'
+import svgSms from '@mdi/svg/svg/message-processing.svg?raw'
+import svgWhatsapp from '@mdi/svg/svg/whatsapp.svg?raw'
+import svgXmpp from '@mdi/svg/svg/xmpp.svg?raw'
+
 import axios from '@nextcloud/axios'
 import { getCapabilities } from '@nextcloud/capabilities'
 import { showError, showSuccess } from '@nextcloud/dialogs'
@@ -83,9 +107,13 @@ import { loadState } from '@nextcloud/initial-state'
 import { generateOcsUrl } from '@nextcloud/router'
 
 import NcActionButton from '@nextcloud/vue/components/NcActionButton'
+import NcAppSidebar from '@nextcloud/vue/components/NcAppSidebar'
+import NcAppSidebarTab from '@nextcloud/vue/components/NcAppSidebarTab'
 import NcButton from '@nextcloud/vue/components/NcButton'
+import NcIconSvgWrapper from '@nextcloud/vue/components/NcIconSvgWrapper'
 import NcLoadingIcon from '@nextcloud/vue/components/NcLoadingIcon'
 import NcModal from '@nextcloud/vue/components/NcModal'
+import NcDialog from '@nextcloud/vue/components/NcDialog'
 
 import IdentifySigner from '../Request/IdentifySigner.vue'
 import VisibleElements from '../Request/VisibleElements.vue'
@@ -96,13 +124,27 @@ import { useFilesStore } from '../../store/files.js'
 import { useSidebarStore } from '../../store/sidebar.js'
 import { useSignStore } from '../../store/sign.js'
 
+const iconMap = {
+	svgAccount,
+	svgEmail,
+	svgSignal,
+	svgSms,
+	svgTelegram: `<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 28 28"><g transform="rotate(-45, 12, 12)"><path d="M2,21L23,12L2,3V10L17,12L2,14V21Z" /></g></svg>`,
+	svgWhatsapp,
+	svgXmpp,
+}
+
 export default {
 	name: 'RequestSignatureTab',
 	components: {
 		NcActionButton,
+		NcAppSidebar,
+		NcAppSidebarTab,
 		NcButton,
+		NcIconSvgWrapper,
 		NcLoadingIcon,
 		NcModal,
+		NcDialog,
 		Delete,
 		Signers,
 		IdentifySigner,
@@ -127,6 +169,7 @@ export default {
 			modalSrc: '',
 			document: {},
 			hasInfo: false,
+			methods: [],
 		}
 	},
 	computed: {
@@ -146,6 +189,9 @@ export default {
 		fileName() {
 			return this.filesStore.getFile()?.name ?? ''
 		},
+		size() {
+			return window.matchMedia('(max-width: 512px)').matches ? 'full' : 'small'
+		},
 	},
 	watch: {
 		signers(signers) {
@@ -160,9 +206,16 @@ export default {
 		unsubscribe('libresign:edit-signer')
 	},
 	created() {
+		this.$set(this, 'methods', loadState('libresign', 'identify_methods'))
 		this.$set(this, 'document', loadState('libresign', 'file_info', {}))
 	},
 	methods: {
+		getSvgIcon(name) {
+			return iconMap[`svg${name.charAt(0).toUpperCase() + name.slice(1)}`] || iconMap.svgAccount
+		},
+		enabledMethods() {
+			return this.methods.filter(method => method.enabled)
+		},
 		isSignElementsAvailable() {
 			return getCapabilities()?.libresign?.config?.['sign-elements']?.['is-available'] === true
 		},
@@ -238,6 +291,8 @@ export default {
 						user.identify.account = method?.value?.id ?? method?.value ?? signer.uid
 					} else if (method.method === 'email') {
 						user.identify.email = method?.value?.id ?? method?.value ?? signer.email
+					} else {
+						user.identify[method.method] = method.value
 					}
 				})
 				config.data.users.push(user)
@@ -305,4 +360,21 @@ export default {
 	width: 100%;
 	height: 100%;
 }
+
+#request-signature-identify-signer {
+	::v-deep .app-sidebar-header{
+		display: none;
+	}
+	::v-deep aside {
+		border-left: unset;
+	}
+	::v-deep .app-sidebar__close {
+		display: none;
+	}
+	@media (min-width: 513px) {
+		::v-deep #app-sidebar-vue {
+			width: unset;
+		}
+	}
+}
 </style>

From 1add24e397607a1fdbb8fef0af36882d39c88dca Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:25:50 -0300
Subject: [PATCH 11/51] chore: add signal svg

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 img/logo-signal-app.svg | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 img/logo-signal-app.svg

diff --git a/img/logo-signal-app.svg b/img/logo-signal-app.svg
new file mode 100644
index 0000000000..7a4a5f673a
--- /dev/null
+++ b/img/logo-signal-app.svg
@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg"  viewBox="0 0 50 50" width="50px" height="50px"><path d="M 25 2 L 24.78125 2.0019531 L 24.796875 4.0019531 L 25 4 C 26.529 4 28.054203 4.1651875 29.533203 4.4921875 L 29.966797 2.5390625 C 28.345797 2.1810625 26.674 2 25 2 z M 22.695312 2.1132812 C 20.955313 2.2872813 19.241656 2.6606562 17.597656 3.2226562 L 18.242188 5.1152344 C 19.741187 4.6022344 21.307531 4.2625156 22.894531 4.1035156 L 22.695312 2.1132812 z M 31.984375 3.0859375 L 31.376953 4.9902344 C 32.893953 5.4762344 34.349078 6.1370312 35.705078 6.9570312 L 36.740234 5.2460938 C 35.250234 4.3450938 33.649375 3.6189375 31.984375 3.0859375 z M 15.648438 3.9921875 C 14.051438 4.7111875 12.545875 5.6147344 11.171875 6.6777344 L 12.394531 8.2597656 C 13.645531 7.2917656 15.015703 6.4694531 16.470703 5.8144531 L 15.648438 3.9921875 z M 38.476562 6.4121094 L 37.285156 8.0195312 C 38.566156 8.9705312 39.727422 10.068203 40.732422 11.283203 L 42.273438 10.009766 C 41.165437 8.6707656 39.887563 7.4591094 38.476562 6.4121094 z M 25 7 C 15.626 7 8 14.178 8 23 C 8 28.129 10.606 32.9265 15 35.9375 L 15 41 C 15 41.357 15.19 41.686234 15.5 41.865234 C 15.654 41.954234 15.827 42 16 42 C 16.172 42 16.344047 41.955234 16.498047 41.865234 L 21.929688 38.738281 C 22.939688 38.912281 23.972 39 25 39 C 34.374 39 42 31.822 42 23 C 42 14.178 34.374 7 25 7 z M 9.578125 8.0371094 C 8.295125 9.2421094 7.1675156 10.594641 6.2285156 12.056641 L 7.9121094 13.136719 C 8.7631094 11.811719 9.7842656 10.586141 10.947266 9.4941406 L 9.578125 8.0371094 z M 43.529297 11.689453 L 41.869141 12.804688 C 42.757141 14.125688 43.469281 15.54825 43.988281 17.03125 L 45.878906 16.371094 C 45.302906 14.727094 44.511297 13.152453 43.529297 11.689453 z M 5.1855469 13.878906 C 4.3875469 15.450906 3.8005 17.113266 3.4375 18.822266 L 5.3945312 19.238281 C 5.7205312 17.698281 6.24975 16.200203 6.96875 14.783203 L 5.1855469 13.878906 z M 46.466797 18.392578 L 44.519531 18.849609 C 44.838531 20.202609 45 21.6 45 23 C 45 23.184 44.996234 23.366828 44.990234 23.548828 L 46.990234 23.609375 C 46.996234 23.407375 47 23.204 47 23 C 47 21.445 46.819797 19.895578 46.466797 18.392578 z M 3.109375 20.900391 C 3.037375 21.595391 3 22.301 3 23 C 3 24.052 3.0820938 25.109578 3.2460938 26.142578 L 5.2226562 25.830078 C 5.0756563 24.899078 5 23.948 5 23 C 5 22.37 5.0336563 21.733422 5.0976562 21.107422 L 3.109375 20.900391 z M 44.835938 25.4375 C 44.624937 27.0005 44.207703 28.533141 43.595703 29.994141 L 45.441406 30.767578 C 46.120406 29.144578 46.585359 27.441078 46.818359 25.705078 L 44.835938 25.4375 z M 5.6152344 27.683594 L 3.6835938 28.199219 C 4.1335938 29.887219 4.8047344 31.519828 5.6777344 33.048828 L 7.4140625 32.056641 C 6.6270625 30.676641 6.0222344 29.205594 5.6152344 27.683594 z M 42.775391 31.703125 C 42.023391 33.083125 41.092859 34.377828 40.005859 35.548828 L 41.472656 36.908203 C 42.671656 35.615203 43.69925 34.185156 44.53125 32.660156 L 42.775391 31.703125 z M 8.4375 33.65625 L 6.8105469 34.818359 C 7.7425469 36.125359 8.830875 37.330297 10.046875 38.404297 L 10.457031 42.427734 L 12.449219 42.224609 L 11.996094 37.806641 C 11.969094 37.549641 11.844437 37.313484 11.648438 37.146484 C 10.433437 36.113484 9.3535 34.93925 8.4375 33.65625 z M 38.646484 36.876953 C 37.466484 37.924953 36.153094 38.837891 34.746094 39.587891 L 35.6875 41.351562 C 37.2325 40.527563 38.675609 39.524094 39.974609 38.371094 L 38.646484 36.876953 z M 33.023438 40.402344 C 31.562437 41.012344 30.023172 41.454797 28.451172 41.716797 L 28.779297 43.689453 C 30.504297 43.402453 32.191922 42.917047 33.794922 42.248047 L 33.023438 40.402344 z M 22.847656 41.890625 C 22.680656 41.874625 22.499844 41.900703 22.339844 41.970703 L 21.326172 42.419922 L 22.138672 44.248047 L 22.910156 43.904297 C 24.179156 44.019297 25.464078 44.0285 26.705078 43.9375 L 26.558594 41.943359 C 25.341594 42.031359 24.083656 42.015625 22.847656 41.890625 z M 19.5 43.232422 L 14.927734 45.259766 L 15.738281 47.087891 L 20.310547 45.060547 L 19.5 43.232422 z M 12.652344 44.212891 L 10.662109 44.417969 L 11.005859 47.753906 C 11.038859 48.072906 11.222047 48.354625 11.498047 48.515625 C 11.653047 48.605625 11.826 48.650391 12 48.650391 C 12.138 48.650391 12.275297 48.623453 12.404297 48.564453 L 13.910156 47.896484 L 13.099609 46.068359 L 12.853516 46.177734 L 12.652344 44.212891 z"/></svg>
\ No newline at end of file

From d3e123f01692d922244fc74eafe0a32375d91095 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:26:53 -0300
Subject: [PATCH 12/51] fix: cs

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Db/IdentifyMethodMapper.php | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/lib/Db/IdentifyMethodMapper.php b/lib/Db/IdentifyMethodMapper.php
index 68707c4a39..b38b57344e 100644
--- a/lib/Db/IdentifyMethodMapper.php
+++ b/lib/Db/IdentifyMethodMapper.php
@@ -93,17 +93,17 @@ public function searchByIdentifierValue(string $search, string $userId, string $
 			$latestQb->andWhere($latestQb->expr()->eq('im2.identifier_key', $latestQb->createNamedParameter($method)));
 		}
 		$latestQb->andWhere(
-				$latestQb->expr()->orX(
-					$latestQb->expr()->iLike(
-						'im2.identifier_value',
-						$latestQb->createNamedParameter('%' . $this->db->escapeLikeParameter($search) . '%')
-					),
-					$latestQb->expr()->iLike(
-						'sr2.display_name',
-						$latestQb->createNamedParameter('%' . $this->db->escapeLikeParameter($search) . '%')
-					)
+			$latestQb->expr()->orX(
+				$latestQb->expr()->iLike(
+					'im2.identifier_value',
+					$latestQb->createNamedParameter('%' . $this->db->escapeLikeParameter($search) . '%')
+				),
+				$latestQb->expr()->iLike(
+					'sr2.display_name',
+					$latestQb->createNamedParameter('%' . $this->db->escapeLikeParameter($search) . '%')
 				)
 			)
+		)
 			->groupBy('im2.identifier_key')
 			->addGroupBy('im2.identifier_value');
 

From 346ec72a1d9dd89df6ecf2d0fef7617be4aadc60 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:29:08 -0300
Subject: [PATCH 13/51] feat: send twofactor_gateway notification

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/AppInfo/Application.php               |   5 +
 lib/Listener/TwofactorGatewayListener.php | 139 ++++++++++++++++++++++
 2 files changed, 144 insertions(+)
 create mode 100644 lib/Listener/TwofactorGatewayListener.php

diff --git a/lib/AppInfo/Application.php b/lib/AppInfo/Application.php
index 9ca063e68f..8757513f57 100644
--- a/lib/AppInfo/Application.php
+++ b/lib/AppInfo/Application.php
@@ -21,6 +21,7 @@
 use OCA\Libresign\Listener\MailNotifyListener;
 use OCA\Libresign\Listener\NotificationListener;
 use OCA\Libresign\Listener\SignedCallbackListener;
+use OCA\Libresign\Listener\TwofactorGatewayListener;
 use OCA\Libresign\Listener\UserDeletedListener;
 use OCA\Libresign\Middleware\GlobalInjectionMiddleware;
 use OCA\Libresign\Middleware\InjectionMiddleware;
@@ -80,6 +81,10 @@ public function register(IRegistrationContext $context): void {
 		$context->registerEventListener(SendSignNotificationEvent::class, MailNotifyListener::class);
 		$context->registerEventListener(SignedEvent::class, MailNotifyListener::class);
 
+		// TwofactorGateway listener
+		$context->registerEventListener(SendSignNotificationEvent::class, TwofactorGatewayListener::class);
+		$context->registerEventListener(SignedEvent::class, TwofactorGatewayListener::class);
+
 		$context->registerEventListener(UserDeletedEvent::class, UserDeletedListener::class);
 	}
 }
diff --git a/lib/Listener/TwofactorGatewayListener.php b/lib/Listener/TwofactorGatewayListener.php
new file mode 100644
index 0000000000..55364cb793
--- /dev/null
+++ b/lib/Listener/TwofactorGatewayListener.php
@@ -0,0 +1,139 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Listener;
+
+use Exception;
+use OCA\Libresign\Db\File as FileEntity;
+use OCA\Libresign\Db\SignRequest;
+use OCA\Libresign\Db\SignRequestMapper;
+use OCA\Libresign\Events\SendSignNotificationEvent;
+use OCA\Libresign\Events\SignedEvent;
+use OCA\Libresign\Service\IdentifyMethod\IdentifyService;
+use OCA\Libresign\Service\IdentifyMethod\IIdentifyMethod;
+use OCA\TwoFactorGateway\Provider\Gateway\Factory;
+use OCP\App\IAppManager;
+use OCP\EventDispatcher\Event;
+use OCP\EventDispatcher\IEventListener;
+use OCP\IL10N;
+use OCP\IURLGenerator;
+use OCP\IUser;
+use OCP\IUserManager;
+use OCP\IUserSession;
+use OCP\Server;
+use Psr\Log\LoggerInterface;
+
+/** @template-implements IEventListener<Event> */
+class TwofactorGatewayListener implements IEventListener {
+	public function __construct(
+		protected IUserSession $userSession,
+		protected IUserManager $userManager,
+		protected IdentifyService $identifyService,
+		private SignRequestMapper $signRequestMapper,
+		private LoggerInterface $logger,
+		protected IAppManager $appManager,
+		protected IL10N $l10n,
+		protected IURLGenerator $urlGenerator,
+	) {
+	}
+
+	public function handle(Event $event): void {
+		/** @var SendSignNotificationEvent|SignedEvent $event */
+		match ($event::class) {
+			SendSignNotificationEvent::class => $this->sendSignNotification(
+				$event->getSignRequest(),
+				$event->getIdentifyMethod(),
+				$event->getLibreSignFile(),
+			),
+			SignedEvent::class => $this->sendSignedNotification(
+				$event->getSignRequest(),
+				$event->getIdentifyMethod(),
+				$event->getLibreSignFile(),
+				$event->getUser(),
+			),
+		};
+	}
+
+	protected function sendSignNotification(
+		SignRequest $signRequest,
+		IIdentifyMethod $identifyMethod,
+		FileEntity $libreSignFile,
+	): void {
+		try {
+			$entity = $identifyMethod->getEntity();
+			if ($entity->isDeletedAccount()) {
+				return;
+			}
+			if (!in_array($entity->getIdentifierKey(), ['sms', 'signal', 'telegram', 'whatsapp', 'xmpp'], true)) {
+				return;
+			}
+			if (!$this->appManager->isEnabledForAnyone('twofactor_gateway')) {
+				$this->logger->info('Twofactor Gateway app is not enabled');
+				return;
+			}
+			$identifier = $entity->getIdentifierValue();
+			if (empty($identifier)) {
+				return;
+			}
+
+			$isFirstNotification = $this->signRequestMapper->incrementNotificationCounter($signRequest, $entity->getIdentifierKey());
+			if ($isFirstNotification) {
+				$message = $this->l10n->t('There is a document for you to sign. Access the link below:');
+			} else {
+				$message = $this->l10n->t('Changes have been made in a file that you have to sign. Access the link below:');
+			}
+			$message .= "\n";
+			$link = $this->urlGenerator->linkToRouteAbsolute('libresign.page.sign', ['uuid' => $signRequest->getUuid()]);
+			$message .= $libreSignFile->getName() . ': ' . $link;
+
+			/** @var Factory */
+			$gatewayFactory = Server::get(Factory::class);
+			$gateway = $gatewayFactory->get(strtolower($entity->getIdentifierKey()));
+			try {
+				$gateway->send($identifier, $message);
+			} catch (Exception $e) {
+				$this->logger->error('Could not send 2FA message', [
+					'identifier' => $identifier,
+					'exception' => $e,
+				]);
+				return;
+			}
+		} catch (\InvalidArgumentException $e) {
+			$this->logger->error($e->getMessage(), ['exception' => $e]);
+			return;
+		}
+	}
+
+	protected function sendSignedNotification(
+		SignRequest $signRequest,
+		IIdentifyMethod $identifyMethod,
+		FileEntity $libreSignFile,
+		IUser $user,
+	): void {
+		try {
+			if ($identifyMethod->getEntity()->isDeletedAccount()) {
+				return;
+			}
+			if ($this->isNotificationDisabledAtActivity($libreSignFile->getUserId(), SignedEvent::FILE_SIGNED)) {
+				return;
+			}
+
+			$email = $user->getEMailAddress();
+
+			if (empty($email)) {
+				return;
+			}
+
+			$this->mail->notifySignedUser($signRequest, $email, $libreSignFile, $user->getDisplayName());
+
+		} catch (\InvalidArgumentException $e) {
+			$this->logger->error($e->getMessage(), ['exception' => $e]);
+			return;
+		}
+	}
+}

From 67f789f92145f7a93406a04eb1ae5f182f4726a7 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:34:30 -0300
Subject: [PATCH 14/51] feat: implement gateways

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/IdentifyMethod/Signal.php         | 23 +++++
 .../SignatureMethod/ISignatureMethod.php      |  5 ++
 .../IdentifyMethod/SignatureMethod/Signal.php | 25 ++++++
 .../IdentifyMethod/SignatureMethod/Sms.php    | 25 ++++++
 .../SignatureMethod/Telegram.php              | 25 ++++++
 .../SignatureMethod/TwofactorGatewayToken.php | 81 +++++++++++++++++
 .../SignatureMethod/Whatsapp.php              | 25 ++++++
 .../IdentifyMethod/SignatureMethod/Xmpp.php   | 25 ++++++
 lib/Service/IdentifyMethod/Sms.php            | 23 +++++
 lib/Service/IdentifyMethod/Telegram.php       | 23 +++++
 .../IdentifyMethod/TwofactorGateway.php       | 89 +++++++++++++++++++
 lib/Service/IdentifyMethod/Whatsapp.php       | 23 +++++
 lib/Service/IdentifyMethod/Xmpp.php           | 23 +++++
 lib/Service/IdentifyMethodService.php         | 29 ++++++
 14 files changed, 444 insertions(+)
 create mode 100644 lib/Service/IdentifyMethod/Signal.php
 create mode 100644 lib/Service/IdentifyMethod/SignatureMethod/Signal.php
 create mode 100644 lib/Service/IdentifyMethod/SignatureMethod/Sms.php
 create mode 100644 lib/Service/IdentifyMethod/SignatureMethod/Telegram.php
 create mode 100644 lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
 create mode 100644 lib/Service/IdentifyMethod/SignatureMethod/Whatsapp.php
 create mode 100644 lib/Service/IdentifyMethod/SignatureMethod/Xmpp.php
 create mode 100644 lib/Service/IdentifyMethod/Sms.php
 create mode 100644 lib/Service/IdentifyMethod/Telegram.php
 create mode 100644 lib/Service/IdentifyMethod/TwofactorGateway.php
 create mode 100644 lib/Service/IdentifyMethod/Whatsapp.php
 create mode 100644 lib/Service/IdentifyMethod/Xmpp.php

diff --git a/lib/Service/IdentifyMethod/Signal.php b/lib/Service/IdentifyMethod/Signal.php
new file mode 100644
index 0000000000..0e0b8cfd8c
--- /dev/null
+++ b/lib/Service/IdentifyMethod/Signal.php
@@ -0,0 +1,23 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\ISignatureMethod;
+
+class Signal extends TwofactorGateway {
+	public array $availableSignatureMethods = [
+		ISignatureMethod::SIGNATURE_METHOD_CLICK_TO_SIGN,
+		ISignatureMethod::SIGNATURE_METHOD_SIGNAL,
+	];
+
+	public function getFriendlyName(): string {
+		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by Signal
+		return $this->identifyService->getL10n()->t('Signal');
+	}
+}
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/ISignatureMethod.php b/lib/Service/IdentifyMethod/SignatureMethod/ISignatureMethod.php
index 5f6ee8e817..ae3f9af6fc 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/ISignatureMethod.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/ISignatureMethod.php
@@ -12,6 +12,11 @@ interface ISignatureMethod {
 	public const SIGNATURE_METHOD_CLICK_TO_SIGN = 'clickToSign';
 	public const SIGNATURE_METHOD_EMAIL_TOKEN = 'emailToken';
 	public const SIGNATURE_METHOD_PASSWORD = 'password';
+	public const SIGNATURE_METHOD_SIGNAL = 'signal';
+	public const SIGNATURE_METHOD_SMS = 'sms';
+	public const SIGNATURE_METHOD_TELEGRAM = 'telegram';
+	public const SIGNATURE_METHOD_WHATSAPP = 'whatsapp';
+	public const SIGNATURE_METHOD_XMPP = 'xmpp';
 	public function enable(): void;
 	public function isEnabled(): bool;
 	public function toArray(): array;
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/Signal.php b/lib/Service/IdentifyMethod/SignatureMethod/Signal.php
new file mode 100644
index 0000000000..d667d1af7c
--- /dev/null
+++ b/lib/Service/IdentifyMethod/SignatureMethod/Signal.php
@@ -0,0 +1,25 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod\SignatureMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\IdentifyService;
+
+class Signal extends TwofactorGatewayToken {
+	public function __construct(
+		protected IdentifyService $identifyService,
+		protected TokenService $tokenService,
+	) {
+		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by Signal
+		$this->setFriendlyName($this->identifyService->getL10n()->t('Signal'));
+		parent::__construct(
+			$identifyService,
+			$tokenService,
+		);
+	}
+}
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/Sms.php b/lib/Service/IdentifyMethod/SignatureMethod/Sms.php
new file mode 100644
index 0000000000..6991288d2b
--- /dev/null
+++ b/lib/Service/IdentifyMethod/SignatureMethod/Sms.php
@@ -0,0 +1,25 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod\SignatureMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\IdentifyService;
+
+class Sms extends TwofactorGatewayToken {
+	public function __construct(
+		protected IdentifyService $identifyService,
+		protected TokenService $tokenService,
+	) {
+		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by SMS
+		$this->setFriendlyName($this->identifyService->getL10n()->t('SMS'));
+		parent::__construct(
+			$identifyService,
+			$tokenService,
+		);
+	}
+}
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/Telegram.php b/lib/Service/IdentifyMethod/SignatureMethod/Telegram.php
new file mode 100644
index 0000000000..82fe8acf82
--- /dev/null
+++ b/lib/Service/IdentifyMethod/SignatureMethod/Telegram.php
@@ -0,0 +1,25 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod\SignatureMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\IdentifyService;
+
+class Telegram extends TwofactorGatewayToken {
+	public function __construct(
+		protected IdentifyService $identifyService,
+		protected TokenService $tokenService,
+	) {
+		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by Telegram
+		$this->setFriendlyName($this->identifyService->getL10n()->t('Telegram'));
+		parent::__construct(
+			$identifyService,
+			$tokenService,
+		);
+	}
+}
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php b/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
new file mode 100644
index 0000000000..2f49c9974e
--- /dev/null
+++ b/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
@@ -0,0 +1,81 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod\SignatureMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\IdentifyService;
+
+class TwofactorGatewayToken extends AbstractSignatureMethod implements IToken {
+	public function __construct(
+		protected IdentifyService $identifyService,
+		protected TokenService $tokenService,
+	) {
+		parent::__construct(
+			$identifyService,
+		);
+	}
+
+	public function validateToSign(): void {
+		$this->throwIfInvalidToken();
+	}
+
+	public function toArray(): array {
+		$entity = $this->getEntity();
+
+		$identifier = match ($entity->getIdentifierKey()) {
+			'identifier' => $entity->getIdentifierValue(),
+			'account' => $this->identifyService->getUserManager()->get($entity->getIdentifierValue())
+				?->getEMailAddress(),
+			default => null,
+		};
+
+		$code = $entity->getCode();
+		$identifiedAt = $entity->getIdentifiedAtDate();
+		$codeSentByUser = $this->codeSentByUser;
+
+		$hasConfirmCode = !empty($code);
+		$needCode = empty($code)
+			|| empty($identifiedAt)
+			|| empty($codeSentByUser);
+
+		$return = parent::toArray();
+		$return['identifyMethod'] = $entity->getIdentifierKey();
+		$return['needCode'] = $needCode;
+		$return['hasConfirmCode'] = $hasConfirmCode;
+		$return['blurredIdentifier'] = $this->blurIdentifier($identifier);
+		$return['hashOfIdentifier'] = md5($identifier);
+		return $return;
+	}
+
+	private function blurIdentifier(string $identifier, int $visibleStart = 2, int $visibleEnd = 2): string {
+		$length = mb_strlen($identifier);
+
+		if ($length <= $visibleStart + $visibleEnd) {
+			return str_repeat('*', $length);
+		}
+
+		$start = mb_substr($identifier, 0, $visibleStart);
+		$end = mb_substr($identifier, -$visibleEnd);
+
+		$maskedLength = $length - ($visibleStart + $visibleEnd);
+
+		return $start . str_repeat('*', $maskedLength) . $end;
+	}
+
+	public function requestCode(string $identify): void {
+		$signRequestMapper = $this->identifyService->getSignRequestMapper();
+		$signRequest = $signRequestMapper->getById($this->getEntity()->getSignRequestId());
+		$displayName = $signRequest->getDisplayName();
+		if ($identify === $displayName) {
+			$displayName = '';
+		}
+		$code = $this->tokenService->sendCodeByEmail($identify, $displayName);
+		$this->getEntity()->setCode($code);
+		$this->identifyService->save($this->getEntity());
+	}
+}
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/Whatsapp.php b/lib/Service/IdentifyMethod/SignatureMethod/Whatsapp.php
new file mode 100644
index 0000000000..86067bdea8
--- /dev/null
+++ b/lib/Service/IdentifyMethod/SignatureMethod/Whatsapp.php
@@ -0,0 +1,25 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod\SignatureMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\IdentifyService;
+
+class Whatsapp extends TwofactorGatewayToken {
+	public function __construct(
+		protected IdentifyService $identifyService,
+		protected TokenService $tokenService,
+	) {
+		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by WhatsApp
+		$this->setFriendlyName($this->identifyService->getL10n()->t('WhatsApp'));
+		parent::__construct(
+			$identifyService,
+			$tokenService,
+		);
+	}
+}
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/Xmpp.php b/lib/Service/IdentifyMethod/SignatureMethod/Xmpp.php
new file mode 100644
index 0000000000..8acfa67a51
--- /dev/null
+++ b/lib/Service/IdentifyMethod/SignatureMethod/Xmpp.php
@@ -0,0 +1,25 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod\SignatureMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\IdentifyService;
+
+class Xmpp extends TwofactorGatewayToken {
+	public function __construct(
+		protected IdentifyService $identifyService,
+		protected TokenService $tokenService,
+	) {
+		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by XMPP
+		$this->setFriendlyName($this->identifyService->getL10n()->t('XMPP'));
+		parent::__construct(
+			$identifyService,
+			$tokenService,
+		);
+	}
+}
diff --git a/lib/Service/IdentifyMethod/Sms.php b/lib/Service/IdentifyMethod/Sms.php
new file mode 100644
index 0000000000..113262343d
--- /dev/null
+++ b/lib/Service/IdentifyMethod/Sms.php
@@ -0,0 +1,23 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\ISignatureMethod;
+
+class Sms extends TwofactorGateway {
+	public array $availableSignatureMethods = [
+		ISignatureMethod::SIGNATURE_METHOD_CLICK_TO_SIGN,
+		ISignatureMethod::SIGNATURE_METHOD_SMS,
+	];
+
+	public function getFriendlyName(): string {
+		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by SMS
+		return $this->identifyService->getL10n()->t('SMS');
+	}
+}
diff --git a/lib/Service/IdentifyMethod/Telegram.php b/lib/Service/IdentifyMethod/Telegram.php
new file mode 100644
index 0000000000..84e6a38c12
--- /dev/null
+++ b/lib/Service/IdentifyMethod/Telegram.php
@@ -0,0 +1,23 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\ISignatureMethod;
+
+class Telegram extends TwofactorGateway {
+	public array $availableSignatureMethods = [
+		ISignatureMethod::SIGNATURE_METHOD_CLICK_TO_SIGN,
+		ISignatureMethod::SIGNATURE_METHOD_TELEGRAM,
+	];
+
+	public function getFriendlyName(): string {
+		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by Telegram
+		return $this->identifyService->getL10n()->t('Telegram');
+	}
+}
diff --git a/lib/Service/IdentifyMethod/TwofactorGateway.php b/lib/Service/IdentifyMethod/TwofactorGateway.php
new file mode 100644
index 0000000000..1797195d8c
--- /dev/null
+++ b/lib/Service/IdentifyMethod/TwofactorGateway.php
@@ -0,0 +1,89 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod;
+
+use OCA\Libresign\Db\FileElementMapper;
+use OCA\Libresign\Db\IdentifyMethodMapper;
+use OCA\Libresign\Service\SessionService;
+use OCA\TwoFactorGateway\Provider\Gateway\Factory;
+use OCP\App\IAppManager;
+use OCP\AppFramework\Utility\ITimeFactory;
+use OCP\Files\IRootFolder;
+use OCP\IUserSession;
+use OCP\Server;
+use Psr\Log\LoggerInterface;
+
+class TwofactorGateway extends AbstractIdentifyMethod {
+	public function __construct(
+		protected IdentifyService $identifyService,
+		private IdentifyMethodMapper $identifyMethodMapper,
+		private IRootFolder $root,
+		private ITimeFactory $timeFactory,
+		private SessionService $sessionService,
+		private FileElementMapper $fileElementMapper,
+		private IUserSession $userSession,
+		private LoggerInterface $logger,
+		private IAppManager $appManager,
+	) {
+		parent::__construct(
+			$identifyService,
+		);
+	}
+
+	public function validateToIdentify(): void {
+		$this->throwIfMaximumValidityExpired();
+		$this->throwIfRenewalIntervalExpired();
+		$this->throwIfFileNotFound();
+		$this->throwIfAlreadySigned();
+		$this->renewSession();
+		$this->updateIdentifiedAt();
+	}
+
+	public function validateToSign(): void {
+		$this->throwIfInvalidToken();
+		$this->throwIfMaximumValidityExpired();
+		$this->throwIfRenewalIntervalExpired();
+		$this->throwIfFileNotFound();
+		$this->throwIfAlreadySigned();
+		$this->renewSession();
+		$this->updateIdentifiedAt();
+	}
+
+	public function isTwofactorGatewayEnabled(): bool {
+		$isAppEnabled = $this->appManager->isEnabledForAnyone('twofactor_gateway');
+		if (!$isAppEnabled) {
+			$this->logger->info('Twofactor Gateway app is not enabled');
+			return false;
+		}
+		/** @var Factory */
+		$gatewayFactory = Server::get(Factory::class);
+
+		$full = get_class($this);
+		$parts = explode('\\', $full);
+		$gatewayName = end($parts);
+
+		$gateway = $gatewayFactory->get($gatewayName);
+		return $gateway->isComplete();
+	}
+
+	public function getSettings(): array {
+		if (!empty($this->settings)) {
+			return $this->settings;
+		}
+		$this->settings = parent::getSettingsFromDatabase(
+			default: [
+				'enabled' => false,
+			],
+			immutable: [
+				'test_url' => $this->identifyService->getUrlGenerator()->linkToRoute('settings.PersonalSettings.index', ['section' => 'security']),
+			]
+		);
+		return $this->settings;
+	}
+}
diff --git a/lib/Service/IdentifyMethod/Whatsapp.php b/lib/Service/IdentifyMethod/Whatsapp.php
new file mode 100644
index 0000000000..2fa12c2395
--- /dev/null
+++ b/lib/Service/IdentifyMethod/Whatsapp.php
@@ -0,0 +1,23 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\ISignatureMethod;
+
+class Whatsapp extends TwofactorGateway {
+	public array $availableSignatureMethods = [
+		ISignatureMethod::SIGNATURE_METHOD_CLICK_TO_SIGN,
+		ISignatureMethod::SIGNATURE_METHOD_WHATSAPP,
+	];
+
+	public function getFriendlyName(): string {
+		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by WhatsApp
+		return $this->identifyService->getL10n()->t('WhatsApp');
+	}
+}
diff --git a/lib/Service/IdentifyMethod/Xmpp.php b/lib/Service/IdentifyMethod/Xmpp.php
new file mode 100644
index 0000000000..44797f6d36
--- /dev/null
+++ b/lib/Service/IdentifyMethod/Xmpp.php
@@ -0,0 +1,23 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Service\IdentifyMethod;
+
+use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\ISignatureMethod;
+
+class Xmpp extends TwofactorGateway {
+	public array $availableSignatureMethods = [
+		ISignatureMethod::SIGNATURE_METHOD_CLICK_TO_SIGN,
+		ISignatureMethod::SIGNATURE_METHOD_XMPP,
+	];
+
+	public function getFriendlyName(): string {
+		// TRANSLATORS Name of possible authenticator method. This signalize that the signer could be identified by XMPP
+		return $this->identifyService->getL10n()->t('XMPP');
+	}
+}
diff --git a/lib/Service/IdentifyMethodService.php b/lib/Service/IdentifyMethodService.php
index efe2f47e44..8df3a4ba6b 100644
--- a/lib/Service/IdentifyMethodService.php
+++ b/lib/Service/IdentifyMethodService.php
@@ -15,6 +15,11 @@
 use OCA\Libresign\Service\IdentifyMethod\Account;
 use OCA\Libresign\Service\IdentifyMethod\Email;
 use OCA\Libresign\Service\IdentifyMethod\IIdentifyMethod;
+use OCA\Libresign\Service\IdentifyMethod\Signal;
+use OCA\Libresign\Service\IdentifyMethod\Sms;
+use OCA\Libresign\Service\IdentifyMethod\Telegram;
+use OCA\Libresign\Service\IdentifyMethod\Whatsapp;
+use OCA\Libresign\Service\IdentifyMethod\Xmpp;
 use OCP\IConfig;
 use OCP\IL10N;
 
@@ -24,6 +29,8 @@ class IdentifyMethodService {
 	public const IDENTIFY_SIGNAL = 'signal';
 	public const IDENTIFY_TELEGRAM = 'telegram';
 	public const IDENTIFY_SMS = 'sms';
+	public const IDENTIFY_WHATSAPP = 'whatsapp';
+	public const IDENTIFY_XMPP = 'xmpp';
 	public const IDENTIFY_PASSWORD = 'password';
 	public const IDENTIFY_CLICK_TO_SIGN = 'clickToSign';
 	public const IDENTIFY_METHODS = [
@@ -32,6 +39,8 @@ class IdentifyMethodService {
 		self::IDENTIFY_SIGNAL,
 		self::IDENTIFY_TELEGRAM,
 		self::IDENTIFY_SMS,
+		self::IDENTIFY_WHATSAPP,
+		self::IDENTIFY_XMPP,
 		self::IDENTIFY_PASSWORD,
 		self::IDENTIFY_CLICK_TO_SIGN,
 	];
@@ -49,6 +58,11 @@ public function __construct(
 		private IL10N $l10n,
 		private Account $account,
 		private Email $email,
+		private Signal $signal,
+		private Sms $sms,
+		private Telegram $telegram,
+		private Whatsapp $whatsapp,
+		private Xmpp $xmpp,
 	) {
 	}
 
@@ -227,6 +241,21 @@ public function getIdentifyMethodsSettings(): array {
 			$this->account->getSettings(),
 			$this->email->getSettings(),
 		];
+		if ($this->signal->isTwofactorGatewayEnabled()) {
+			$this->identifyMethodsSettings[] = $this->signal->getSettings();
+		}
+		if ($this->sms->isTwofactorGatewayEnabled()) {
+			$this->identifyMethodsSettings[] = $this->sms->getSettings();
+		}
+		if ($this->telegram->isTwofactorGatewayEnabled()) {
+			$this->identifyMethodsSettings[] = $this->telegram->getSettings();
+		}
+		if ($this->whatsapp->isTwofactorGatewayEnabled()) {
+			$this->identifyMethodsSettings[] = $this->whatsapp->getSettings();
+		}
+		if ($this->xmpp->isTwofactorGatewayEnabled()) {
+			$this->identifyMethodsSettings[] = $this->xmpp->getSettings();
+		}
 		return $this->identifyMethodsSettings;
 	}
 }

From b4535c3cc5728ffc3ca86f3de17e22ffc178e816 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:35:13 -0300
Subject: [PATCH 15/51] fix: psalm

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 tests/psalm-baseline.xml | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/tests/psalm-baseline.xml b/tests/psalm-baseline.xml
index df6234a947..bcb0c501c8 100644
--- a/tests/psalm-baseline.xml
+++ b/tests/psalm-baseline.xml
@@ -133,6 +133,21 @@
       <code><![CDATA[private]]></code>
     </UndefinedClass>
   </file>
+  <file src="lib/Service/IdentifyMethod/SignatureMethod/TokenService.php">
+    <UndefinedDocblockClass>
+      <code><![CDATA[$gateway]]></code>
+      <code><![CDATA[\OCA\TwoFactorGateway\Provider\Gateway\IGateway]]></code>
+    </UndefinedDocblockClass>
+  </file>
+  <file src="lib/Service/IdentifyMethod/TwofactorGateway.php">
+    <UndefinedClass>
+      <code><![CDATA[Factory]]></code>
+    </UndefinedClass>
+    <UndefinedDocblockClass>
+      <code><![CDATA[$gatewayFactory]]></code>
+      <code><![CDATA[$gatewayFactory]]></code>
+    </UndefinedDocblockClass>
+  </file>
   <file src="lib/Service/Install/InstallService.php">
     <UndefinedClass>
       <code><![CDATA[Process]]></code>

From 005cf49510491e3f293577a69da0fbf4721171d1 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:51:22 -0300
Subject: [PATCH 16/51] fix: copy paste code, added real code

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Listener/TwofactorGatewayListener.php | 39 +++++++++++++++++------
 1 file changed, 30 insertions(+), 9 deletions(-)

diff --git a/lib/Listener/TwofactorGatewayListener.php b/lib/Listener/TwofactorGatewayListener.php
index 55364cb793..9872c6366f 100644
--- a/lib/Listener/TwofactorGatewayListener.php
+++ b/lib/Listener/TwofactorGatewayListener.php
@@ -54,7 +54,6 @@ public function handle(Event $event): void {
 				$event->getSignRequest(),
 				$event->getIdentifyMethod(),
 				$event->getLibreSignFile(),
-				$event->getUser(),
 			),
 		};
 	}
@@ -113,24 +112,46 @@ protected function sendSignedNotification(
 		SignRequest $signRequest,
 		IIdentifyMethod $identifyMethod,
 		FileEntity $libreSignFile,
-		IUser $user,
 	): void {
 		try {
-			if ($identifyMethod->getEntity()->isDeletedAccount()) {
+			$entity = $identifyMethod->getEntity();
+			if ($entity->isDeletedAccount()) {
 				return;
 			}
-			if ($this->isNotificationDisabledAtActivity($libreSignFile->getUserId(), SignedEvent::FILE_SIGNED)) {
+			if (!in_array($entity->getIdentifierKey(), ['sms', 'signal', 'telegram', 'whatsapp', 'xmpp'], true)) {
 				return;
 			}
-
-			$email = $user->getEMailAddress();
-
-			if (empty($email)) {
+			if (!$this->appManager->isEnabledForAnyone('twofactor_gateway')) {
+				$this->logger->info('Twofactor Gateway app is not enabled');
+				return;
+			}
+			$identifier = $entity->getIdentifierValue();
+			if (empty($identifier)) {
 				return;
 			}
 
-			$this->mail->notifySignedUser($signRequest, $email, $libreSignFile, $user->getDisplayName());
+			$message = $this->l10n->t('LibreSign: A file has been signed');
+			$message .= "\n";
+			// TRANSLATORS The text in the message that is sent after a document has been signed by a user. %s will be replaced with the name of the user who signed the document.
+			$message .= $this->l10n->t('%s signed the document. You can access it using the link below:', [$signRequest->getDisplayName()]);
+			$link = $this->urlGenerator->linkToRouteAbsolute('libresign.page.indexFPath', [
+				'path' => 'validation/' . $libreSignFile->getUuid(),
+			]);
+			$message .= "\n";
+			$message .= $libreSignFile->getName() . ': ' . $link;
 
+			/** @var Factory */
+			$gatewayFactory = Server::get(Factory::class);
+			$gateway = $gatewayFactory->get(strtolower($entity->getIdentifierKey()));
+			try {
+				$gateway->send($identifier, $message);
+			} catch (Exception $e) {
+				$this->logger->error('Could not send 2FA message', [
+					'identifier' => $identifier,
+					'exception' => $e,
+				]);
+				return;
+			}
 		} catch (\InvalidArgumentException $e) {
 			$this->logger->error($e->getMessage(), ['exception' => $e]);
 			return;

From 89ef14129df4ba1f3c8fe5826235d3e3a8f6938a Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 17:52:31 -0300
Subject: [PATCH 17/51] fix: psalm update baseline

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 tests/psalm-baseline.xml | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/tests/psalm-baseline.xml b/tests/psalm-baseline.xml
index bcb0c501c8..40e0456ee2 100644
--- a/tests/psalm-baseline.xml
+++ b/tests/psalm-baseline.xml
@@ -92,6 +92,18 @@
       <code><![CDATA[LoadSidebarListener]]></code>
     </UndefinedDocblockClass>
   </file>
+  <file src="lib/Listener/TwofactorGatewayListener.php">
+    <UndefinedClass>
+      <code><![CDATA[Factory]]></code>
+      <code><![CDATA[Factory]]></code>
+    </UndefinedClass>
+    <UndefinedDocblockClass>
+      <code><![CDATA[$gatewayFactory]]></code>
+      <code><![CDATA[$gatewayFactory]]></code>
+      <code><![CDATA[$gatewayFactory]]></code>
+      <code><![CDATA[$gatewayFactory]]></code>
+    </UndefinedDocblockClass>
+  </file>
   <file src="lib/Middleware/GlobalInjectionMiddleware.php">
     <UndefinedClass>
       <code><![CDATA[ViewController]]></code>

From 56d03a7a8be80be01c3b921774250ba5e438a608 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 18:01:23 -0300
Subject: [PATCH 18/51] fix: send code to sign

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/IdentifyMethod/SignatureMethod/IToken.php     | 2 +-
 .../IdentifyMethod/SignatureMethod/TokenService.php       | 2 +-
 .../SignatureMethod/TwofactorGatewayToken.php             | 8 ++++++--
 lib/Service/SignFileService.php                           | 2 +-
 4 files changed, 9 insertions(+), 5 deletions(-)

diff --git a/lib/Service/IdentifyMethod/SignatureMethod/IToken.php b/lib/Service/IdentifyMethod/SignatureMethod/IToken.php
index 430b70ea68..760782a4a5 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/IToken.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/IToken.php
@@ -9,5 +9,5 @@
 namespace OCA\Libresign\Service\IdentifyMethod\SignatureMethod;
 
 interface IToken {
-	public function requestCode(string $identify): void;
+	public function requestCode(string $identify, string $method): void;
 }
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php b/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php
index 6ae0b1f197..8b301ddd7d 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php
@@ -26,7 +26,7 @@ public function __construct(
 	) {
 	}
 
-	public function sendCodeByGateway(string $identifier, string $code, string $gatewayName): string {
+	public function sendCodeByGateway(string $identifier, string $gatewayName): string {
 		$gateway = $this->getGateway($gatewayName);
 
 		$code = $this->secureRandom->generate(self::TOKEN_LENGTH, ISecureRandom::CHAR_DIGITS);
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php b/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
index 2f49c9974e..17377f1df2 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
@@ -67,14 +67,18 @@ private function blurIdentifier(string $identifier, int $visibleStart = 2, int $
 		return $start . str_repeat('*', $maskedLength) . $end;
 	}
 
-	public function requestCode(string $identify): void {
+	public function requestCode(string $identify, string $method): void {
 		$signRequestMapper = $this->identifyService->getSignRequestMapper();
 		$signRequest = $signRequestMapper->getById($this->getEntity()->getSignRequestId());
 		$displayName = $signRequest->getDisplayName();
 		if ($identify === $displayName) {
 			$displayName = '';
 		}
-		$code = $this->tokenService->sendCodeByEmail($identify, $displayName);
+		if ($method === 'email') {
+			$code = $this->tokenService->sendCodeByEmail($identify, $displayName);
+		} else {
+			$code = $this->tokenService->sendCodeByGateway($identify, $method);
+		}
 		$this->getEntity()->setCode($code);
 		$this->identifyService->save($this->getEntity());
 	}
diff --git a/lib/Service/SignFileService.php b/lib/Service/SignFileService.php
index 23ab1b0b92..fd8095186e 100644
--- a/lib/Service/SignFileService.php
+++ b/lib/Service/SignFileService.php
@@ -612,7 +612,7 @@ public function requestCode(
 				continue;
 			}
 			/** @var IToken $signatureMethod */
-			$signatureMethod->requestCode($identify);
+			$signatureMethod->requestCode($identify, $identifyMethod->getEntity()->getIdentifierKey());
 			return;
 		}
 		throw new LibresignException($this->l10n->t('Sending authorization code not enabled.'));

From e5d08b577d02573a032ef9ea993e78078b9dfac4 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 18:04:31 -0300
Subject: [PATCH 19/51] fix: linter

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 src/Components/Request/IdentifySigner.vue       |  6 ++----
 src/Components/Request/SignerSelect.vue         | 13 +++++++------
 .../RightSidebar/RequestSignatureTab.vue        | 17 ++++++++---------
 3 files changed, 17 insertions(+), 19 deletions(-)

diff --git a/src/Components/Request/IdentifySigner.vue b/src/Components/Request/IdentifySigner.vue
index 17e66729f4..7a4a94305a 100644
--- a/src/Components/Request/IdentifySigner.vue
+++ b/src/Components/Request/IdentifySigner.vue
@@ -4,8 +4,7 @@
 -->
 <template>
 	<div class="identifySigner">
-		<SignerSelect
-			:signer="signer"
+		<SignerSelect :signer="signer"
 			:placeholder="placeholder"
 			:method="method"
 			@update:signer="updateSigner" />
@@ -35,10 +34,9 @@
 	</div>
 </template>
 <script>
-import { loadState } from '@nextcloud/initial-state'
-
 import NcButton from '@nextcloud/vue/components/NcButton'
 import NcTextField from '@nextcloud/vue/components/NcTextField'
+
 import SignerSelect from './SignerSelect.vue'
 
 import { useFilesStore } from '../../store/files.js'
diff --git a/src/Components/Request/SignerSelect.vue b/src/Components/Request/SignerSelect.vue
index fdf184a483..ccb4fd1d20 100644
--- a/src/Components/Request/SignerSelect.vue
+++ b/src/Components/Request/SignerSelect.vue
@@ -29,24 +29,25 @@
 	</div>
 </template>
 <script>
-import debounce from 'debounce'
-
-import AlertCircle from 'vue-material-design-icons/AlertCircleOutline.vue'
 
-import svgWhatsapp from '@mdi/svg/svg/whatsapp.svg?raw'
 import svgSms from '@mdi/svg/svg/message-processing.svg?raw'
+import svgWhatsapp from '@mdi/svg/svg/whatsapp.svg?raw'
 import svgXmpp from '@mdi/svg/svg/xmpp.svg?raw'
-import svgSignal from '../../../img/logo-signal-app.svg?raw'
+import debounce from 'debounce'
+
+import AlertCircle from 'vue-material-design-icons/AlertCircleOutline.vue'
 
 import axios from '@nextcloud/axios'
 import { generateOcsUrl } from '@nextcloud/router'
 
 import NcSelect from '@nextcloud/vue/components/NcSelect'
 
+import svgSignal from '../../../img/logo-signal-app.svg?raw'
+
 const iconMap = {
 	svgSignal,
 	svgSms,
-	svgTelegram: `<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 28 28"><g transform="rotate(-45, 12, 12)"><path d="M2,21L23,12L2,3V10L17,12L2,14V21Z" /></g></svg>`,
+	svgTelegram: '<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 28 28"><g transform="rotate(-45, 12, 12)"><path d="M2,21L23,12L2,3V10L17,12L2,14V21Z" /></g></svg>',
 	svgWhatsapp,
 	svgXmpp,
 }
diff --git a/src/Components/RightSidebar/RequestSignatureTab.vue b/src/Components/RightSidebar/RequestSignatureTab.vue
index a3b6c470b1..58738f56d0 100644
--- a/src/Components/RightSidebar/RequestSignatureTab.vue
+++ b/src/Components/RightSidebar/RequestSignatureTab.vue
@@ -70,18 +70,16 @@
 			:size="size"
 			:name="t('libresign', 'Add new signer')"
 			@closing="filesStore.disableIdentifySigner()">
-			<NcAppSidebar
-				:name="t('libresign', 'Add new signer')">
+			<NcAppSidebar :name="t('libresign', 'Add new signer')">
 				<NcAppSidebarTab v-for="method in enabledMethods()"
-					:key="method.name"
 					:id="`tab-${method.name}`"
+					:key="method.name"
 					:name="method.friendly_name">
 					<template #icon>
 						<NcIconSvgWrapper :size="20"
 							:svg="getSvgIcon(method.name)" />
 					</template>
-					<IdentifySigner
-						:signer-to-edit="signerToEdit"
+					<IdentifySigner :signer-to-edit="signerToEdit"
 						:placeholder="method.friendly_name"
 						:method="method.name" />
 				</NcAppSidebarTab>
@@ -90,15 +88,15 @@
 	</div>
 </template>
 <script>
-import Delete from 'vue-material-design-icons/Delete.vue'
 
 import svgAccount from '@mdi/svg/svg/account.svg?raw'
 import svgEmail from '@mdi/svg/svg/email.svg?raw'
-import svgSignal from '../../../img/logo-signal-app.svg?raw'
 import svgSms from '@mdi/svg/svg/message-processing.svg?raw'
 import svgWhatsapp from '@mdi/svg/svg/whatsapp.svg?raw'
 import svgXmpp from '@mdi/svg/svg/xmpp.svg?raw'
 
+import Delete from 'vue-material-design-icons/Delete.vue'
+
 import axios from '@nextcloud/axios'
 import { getCapabilities } from '@nextcloud/capabilities'
 import { showError, showSuccess } from '@nextcloud/dialogs'
@@ -110,15 +108,16 @@ import NcActionButton from '@nextcloud/vue/components/NcActionButton'
 import NcAppSidebar from '@nextcloud/vue/components/NcAppSidebar'
 import NcAppSidebarTab from '@nextcloud/vue/components/NcAppSidebarTab'
 import NcButton from '@nextcloud/vue/components/NcButton'
+import NcDialog from '@nextcloud/vue/components/NcDialog'
 import NcIconSvgWrapper from '@nextcloud/vue/components/NcIconSvgWrapper'
 import NcLoadingIcon from '@nextcloud/vue/components/NcLoadingIcon'
 import NcModal from '@nextcloud/vue/components/NcModal'
-import NcDialog from '@nextcloud/vue/components/NcDialog'
 
 import IdentifySigner from '../Request/IdentifySigner.vue'
 import VisibleElements from '../Request/VisibleElements.vue'
 import Signers from '../Signers/Signers.vue'
 
+import svgSignal from '../../../img/logo-signal-app.svg?raw'
 import router from '../../router/router.js'
 import { useFilesStore } from '../../store/files.js'
 import { useSidebarStore } from '../../store/sidebar.js'
@@ -129,7 +128,7 @@ const iconMap = {
 	svgEmail,
 	svgSignal,
 	svgSms,
-	svgTelegram: `<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 28 28"><g transform="rotate(-45, 12, 12)"><path d="M2,21L23,12L2,3V10L17,12L2,14V21Z" /></g></svg>`,
+	svgTelegram: '<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 28 28"><g transform="rotate(-45, 12, 12)"><path d="M2,21L23,12L2,3V10L17,12L2,14V21Z" /></g></svg>',
 	svgWhatsapp,
 	svgXmpp,
 }

From d85b0b9248d69b45cb7e1f5e4eabbdde7af3c76d Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 18:05:42 -0300
Subject: [PATCH 20/51] chore: add docblock

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 src/Components/Request/SignerSelect.vue             | 1 +
 src/Components/RightSidebar/RequestSignatureTab.vue | 1 +
 2 files changed, 2 insertions(+)

diff --git a/src/Components/Request/SignerSelect.vue b/src/Components/Request/SignerSelect.vue
index ccb4fd1d20..4ad984fc01 100644
--- a/src/Components/Request/SignerSelect.vue
+++ b/src/Components/Request/SignerSelect.vue
@@ -47,6 +47,7 @@ import svgSignal from '../../../img/logo-signal-app.svg?raw'
 const iconMap = {
 	svgSignal,
 	svgSms,
+	// Workaround to rotate telegram icon. MDI does not provide a telegram icon.
 	svgTelegram: '<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 28 28"><g transform="rotate(-45, 12, 12)"><path d="M2,21L23,12L2,3V10L17,12L2,14V21Z" /></g></svg>',
 	svgWhatsapp,
 	svgXmpp,
diff --git a/src/Components/RightSidebar/RequestSignatureTab.vue b/src/Components/RightSidebar/RequestSignatureTab.vue
index 58738f56d0..9375cce16e 100644
--- a/src/Components/RightSidebar/RequestSignatureTab.vue
+++ b/src/Components/RightSidebar/RequestSignatureTab.vue
@@ -128,6 +128,7 @@ const iconMap = {
 	svgEmail,
 	svgSignal,
 	svgSms,
+	// Workaround to rotate telegram icon. MDI does not provide a telegram icon.
 	svgTelegram: '<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 28 28"><g transform="rotate(-45, 12, 12)"><path d="M2,21L23,12L2,3V10L17,12L2,14V21Z" /></g></svg>',
 	svgWhatsapp,
 	svgXmpp,

From e9d82fca4ee9c46229d24a0acc9eecd5de802afe Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 18:26:30 -0300
Subject: [PATCH 21/51] fix: cs

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Listener/TwofactorGatewayListener.php | 1 -
 1 file changed, 1 deletion(-)

diff --git a/lib/Listener/TwofactorGatewayListener.php b/lib/Listener/TwofactorGatewayListener.php
index 9872c6366f..5581c209f1 100644
--- a/lib/Listener/TwofactorGatewayListener.php
+++ b/lib/Listener/TwofactorGatewayListener.php
@@ -22,7 +22,6 @@
 use OCP\EventDispatcher\IEventListener;
 use OCP\IL10N;
 use OCP\IURLGenerator;
-use OCP\IUser;
 use OCP\IUserManager;
 use OCP\IUserSession;
 use OCP\Server;

From 2b5436aef3fcaf6a9c857bfdb064a6a29199b4f0 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 18:29:33 -0300
Subject: [PATCH 22/51] fix: psalm

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php b/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php
index 8a43a667de..dfe6fbdd6e 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php
@@ -71,7 +71,7 @@ private function blurEmail(string $email): string {
 		return $blur->make();
 	}
 
-	public function requestCode(string $identify): void {
+	public function requestCode(string $identify, string $method): void {
 		$signRequestMapper = $this->identifyService->getSignRequestMapper();
 		$signRequest = $signRequestMapper->getById($this->getEntity()->getSignRequestId());
 		$displayName = $signRequest->getDisplayName();

From aaec06f0670382e8b77116edb787bebcb70d7a2a Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 19:12:15 -0300
Subject: [PATCH 23/51] fix: typo

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/FileController.php | 2 +-
 openapi-full.json                 | 2 +-
 openapi.json                      | 2 +-
 src/types/openapi/openapi-full.ts | 2 +-
 src/types/openapi/openapi.ts      | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/lib/Controller/FileController.php b/lib/Controller/FileController.php
index 15a17ec7af..af0679ae55 100644
--- a/lib/Controller/FileController.php
+++ b/lib/Controller/FileController.php
@@ -378,7 +378,7 @@ private function fetchPreview(
 	/**
 	 * Send a file
 	 *
-	 * Send a new file to Nextcloud and return the fileId to request to sign usign fileId
+	 * Send a new file to Nextcloud and return the fileId to request to sign
 	 *
 	 * @param LibresignNewFile $file File to save
 	 * @param string $name The name of file to sign
diff --git a/openapi-full.json b/openapi-full.json
index 421a6db16e..3b57ea46c8 100644
--- a/openapi-full.json
+++ b/openapi-full.json
@@ -4630,7 +4630,7 @@
             "post": {
                 "operationId": "file-save",
                 "summary": "Send a file",
-                "description": "Send a new file to Nextcloud and return the fileId to request to sign usign fileId",
+                "description": "Send a new file to Nextcloud and return the fileId to request to sign",
                 "tags": [
                     "file"
                 ],
diff --git a/openapi.json b/openapi.json
index 432d8504a3..bada899c35 100644
--- a/openapi.json
+++ b/openapi.json
@@ -4483,7 +4483,7 @@
             "post": {
                 "operationId": "file-save",
                 "summary": "Send a file",
-                "description": "Send a new file to Nextcloud and return the fileId to request to sign usign fileId",
+                "description": "Send a new file to Nextcloud and return the fileId to request to sign",
                 "tags": [
                     "file"
                 ],
diff --git a/src/types/openapi/openapi-full.ts b/src/types/openapi/openapi-full.ts
index 661335d7ed..e3fa0e9b4d 100644
--- a/src/types/openapi/openapi-full.ts
+++ b/src/types/openapi/openapi-full.ts
@@ -617,7 +617,7 @@ export type paths = {
         put?: never;
         /**
          * Send a file
-         * @description Send a new file to Nextcloud and return the fileId to request to sign usign fileId
+         * @description Send a new file to Nextcloud and return the fileId to request to sign
          */
         post: operations["file-save"];
         delete?: never;
diff --git a/src/types/openapi/openapi.ts b/src/types/openapi/openapi.ts
index c6e11dce6c..a66ffac830 100644
--- a/src/types/openapi/openapi.ts
+++ b/src/types/openapi/openapi.ts
@@ -617,7 +617,7 @@ export type paths = {
         put?: never;
         /**
          * Send a file
-         * @description Send a new file to Nextcloud and return the fileId to request to sign usign fileId
+         * @description Send a new file to Nextcloud and return the fileId to request to sign
          */
         post: operations["file-save"];
         delete?: never;

From 5ff83601d1db0b0ace0a501ee380663b54cf63d3 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 19:12:36 -0300
Subject: [PATCH 24/51] fix: typo

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Collaboration/Collaborators/SignerPlugin.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/Collaboration/Collaborators/SignerPlugin.php b/lib/Collaboration/Collaborators/SignerPlugin.php
index d3dacb9eba..8745b8206e 100644
--- a/lib/Collaboration/Collaborators/SignerPlugin.php
+++ b/lib/Collaboration/Collaborators/SignerPlugin.php
@@ -81,7 +81,7 @@ public function search($search, $limit, $offset, ISearchResult $searchResult): b
 	}
 
 	private function canValidateMethod(): bool {
-		return in_array(self::$method, ['Email', 'Account'], true);
+		return in_array(self::$method, ['email', 'account'], true);
 	}
 
 	private function rowToSearchResultItem(array $row): array {

From e74af51419af30dc81f8dbb62724b40696e62ff0 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 19:13:00 -0300
Subject: [PATCH 25/51] fix: error handler

check if app is enabled

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 .../IdentifyMethod/SignatureMethod/TokenService.php      | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php b/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php
index 8b301ddd7d..98bf1f1658 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/TokenService.php
@@ -8,12 +8,14 @@
 
 namespace OCA\Libresign\Service\IdentifyMethod\SignatureMethod;
 
+use OCA\Libresign\Exception\LibresignException;
 use OCA\Libresign\Service\MailService;
 use OCP\AppFramework\OCS\OCSForbiddenException;
 use OCP\IL10N;
 use OCP\Security\IHasher;
 use OCP\Security\ISecureRandom;
 use OCP\Server;
+use Psr\Container\NotFoundExceptionInterface;
 
 class TokenService {
 	public const TOKEN_LENGTH = 6;
@@ -39,7 +41,12 @@ public function sendCodeByGateway(string $identifier, string $gatewayName): stri
 	 * @return \OCA\TwoFactorGateway\Provider\Gateway\IGateway
 	 */
 	private function getGateway(string $gatewayName) {
-		$factory = Server::get('\OCA\TwoFactorGateway\Service\Gateway\Factory');
+		try {
+			$factory = Server::get(\OCA\TwoFactorGateway\Provider\Gateway\Factory::class);
+		} catch (NotFoundExceptionInterface) {
+			throw new LibresignException('App Two-Factor Gateway is not installed.');
+
+		}
 		$gateway = $factory->getGateway($gatewayName);
 		if (!$gateway->getConfig()->isComplete()) {
 			throw new OCSForbiddenException($this->l10n->t('Gateway %s not configured on Two-Factor Gateway.', $gatewayName));

From fbc1f1d54afc2e3a7055fab423896fb37bed2768 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 19:38:14 -0300
Subject: [PATCH 26/51] fix: psalm update baseline

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 tests/psalm-baseline.xml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/tests/psalm-baseline.xml b/tests/psalm-baseline.xml
index 40e0456ee2..600bf55afb 100644
--- a/tests/psalm-baseline.xml
+++ b/tests/psalm-baseline.xml
@@ -146,6 +146,9 @@
     </UndefinedClass>
   </file>
   <file src="lib/Service/IdentifyMethod/SignatureMethod/TokenService.php">
+    <UndefinedClass>
+      <code><![CDATA[\OCA\TwoFactorGateway\Provider\Gateway\Factory]]></code>
+    </UndefinedClass>
     <UndefinedDocblockClass>
       <code><![CDATA[$gateway]]></code>
       <code><![CDATA[\OCA\TwoFactorGateway\Provider\Gateway\IGateway]]></code>

From fd4be101a935eefe862d6ef3adc69b0aed0641a4 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 22:28:27 -0300
Subject: [PATCH 27/51] fix: prevent error when class doesn't exists

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/IdentifyMethodService.php | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/lib/Service/IdentifyMethodService.php b/lib/Service/IdentifyMethodService.php
index 8df3a4ba6b..1daff9a91b 100644
--- a/lib/Service/IdentifyMethodService.php
+++ b/lib/Service/IdentifyMethodService.php
@@ -99,6 +99,13 @@ private function getNewInstanceOfMethod(string $name): IIdentifyMethod {
 		$className = 'OCA\Libresign\Service\IdentifyMethod\\' . ucfirst($name);
 		if (!class_exists($className)) {
 			$className = 'OCA\Libresign\Service\IdentifyMethod\\SignatureMethod\\' . ucfirst($name);
+			if (!class_exists($className)) {
+				// TRANSLATORS When is requested to a person to sign a file, is
+				// necessary identify what is the identification method. The
+				// identification method is used to define how will be the sign
+				// flow.
+				throw new LibresignException($this->l10n->t('Invalid identification method'));
+			}
 		}
 		/** @var IIdentifyMethod */
 		$identifyMethod = clone \OCP\Server::get($className);

From aa15d265d009a5a88bb4f4507b039c6cee3169a3 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 22:28:44 -0300
Subject: [PATCH 28/51] fix: revert default method.

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/IdentifyMethod/AbstractIdentifyMethod.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php b/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
index ed97bb50a3..43b251a736 100644
--- a/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
+++ b/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
@@ -35,7 +35,7 @@ abstract class AbstractIdentifyMethod implements IIdentifyMethod {
 	 * @var string[]
 	 */
 	public array $availableSignatureMethods = [];
-	protected string $defaultSignatureMethod = ISignatureMethod::SIGNATURE_METHOD_CLICK_TO_SIGN;
+	protected string $defaultSignatureMethod = '';
 	/**
 	 * @var AbstractSignatureMethod[]
 	 */

From e36196bafee50bba8fcfa4a1a1cb6b5417df1d4c Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 22:31:15 -0300
Subject: [PATCH 29/51] fix: remove unused interface

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/IdentifyMethod/AbstractIdentifyMethod.php | 1 -
 1 file changed, 1 deletion(-)

diff --git a/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php b/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
index 43b251a736..e5e64a5c4a 100644
--- a/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
+++ b/lib/Service/IdentifyMethod/AbstractIdentifyMethod.php
@@ -18,7 +18,6 @@
 use OCA\Libresign\Exception\LibresignException;
 use OCA\Libresign\Helper\JSActions;
 use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\AbstractSignatureMethod;
-use OCA\Libresign\Service\IdentifyMethod\SignatureMethod\ISignatureMethod;
 use OCA\Libresign\Service\SessionService;
 use OCA\Libresign\Vendor\Wobeto\EmailBlur\Blur;
 use OCP\IUser;

From 568c1d82a60b371562e84cdfc0ef7fc08b0499d0 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Mon, 22 Sep 2025 22:39:32 -0300
Subject: [PATCH 30/51] chore: resolve code review comment

Solve https://github.com/LibreSign/libresign/pull/5459#discussion_r2370788412

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php | 6 +++---
 lib/Service/IdentifyMethod/SignatureMethod/IToken.php     | 2 +-
 .../SignatureMethod/TwofactorGatewayToken.php             | 8 ++++----
 3 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php b/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php
index dfe6fbdd6e..18092fd0b7 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/EmailToken.php
@@ -71,14 +71,14 @@ private function blurEmail(string $email): string {
 		return $blur->make();
 	}
 
-	public function requestCode(string $identify, string $method): void {
+	public function requestCode(string $identifier, string $method): void {
 		$signRequestMapper = $this->identifyService->getSignRequestMapper();
 		$signRequest = $signRequestMapper->getById($this->getEntity()->getSignRequestId());
 		$displayName = $signRequest->getDisplayName();
-		if ($identify === $displayName) {
+		if ($identifier === $displayName) {
 			$displayName = '';
 		}
-		$code = $this->tokenService->sendCodeByEmail($identify, $displayName);
+		$code = $this->tokenService->sendCodeByEmail($identifier, $displayName);
 		$this->getEntity()->setCode($code);
 		$this->identifyService->save($this->getEntity());
 	}
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/IToken.php b/lib/Service/IdentifyMethod/SignatureMethod/IToken.php
index 760782a4a5..553e46326d 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/IToken.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/IToken.php
@@ -9,5 +9,5 @@
 namespace OCA\Libresign\Service\IdentifyMethod\SignatureMethod;
 
 interface IToken {
-	public function requestCode(string $identify, string $method): void;
+	public function requestCode(string $identifier, string $method): void;
 }
diff --git a/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php b/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
index 17377f1df2..0ace91542e 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
@@ -67,17 +67,17 @@ private function blurIdentifier(string $identifier, int $visibleStart = 2, int $
 		return $start . str_repeat('*', $maskedLength) . $end;
 	}
 
-	public function requestCode(string $identify, string $method): void {
+	public function requestCode(string $identifier, string $method): void {
 		$signRequestMapper = $this->identifyService->getSignRequestMapper();
 		$signRequest = $signRequestMapper->getById($this->getEntity()->getSignRequestId());
 		$displayName = $signRequest->getDisplayName();
-		if ($identify === $displayName) {
+		if ($identifier === $displayName) {
 			$displayName = '';
 		}
 		if ($method === 'email') {
-			$code = $this->tokenService->sendCodeByEmail($identify, $displayName);
+			$code = $this->tokenService->sendCodeByEmail($identifier, $displayName);
 		} else {
-			$code = $this->tokenService->sendCodeByGateway($identify, $method);
+			$code = $this->tokenService->sendCodeByGateway($identifier, $method);
 		}
 		$this->getEntity()->setCode($code);
 		$this->identifyService->save($this->getEntity());

From c69224d55c98d7deaf1e28cc59a69cfabe7c28be Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 08:13:59 -0300
Subject: [PATCH 31/51] fix: only consider the search item when have a method

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Collaboration/Collaborators/SignerPlugin.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/Collaboration/Collaborators/SignerPlugin.php b/lib/Collaboration/Collaborators/SignerPlugin.php
index 8745b8206e..cea652f7a0 100644
--- a/lib/Collaboration/Collaborators/SignerPlugin.php
+++ b/lib/Collaboration/Collaborators/SignerPlugin.php
@@ -62,7 +62,7 @@ public function search($search, $limit, $offset, ISearchResult $searchResult): b
 			}
 		}
 
-		if (!count($identifiers) && !$this->canValidateMethod()) {
+		if (!count($identifiers) && self::$method && !$this->canValidateMethod()) {
 			$result['exact'][] = [
 				'label' => $search,
 				'shareWithDisplayNameUnique' => $search,

From 6ce25a5317506755fa20879ac449de6ba109410a Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 08:15:10 -0300
Subject: [PATCH 32/51] fix: validate the email address when is searching by
 account

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/IdentifyAccountController.php | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index 071a2b45d0..a64aa461d9 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -161,7 +161,10 @@ private function addHerselfAccount(array $return, string $search): array {
 			return $return;
 		}
 		$user = $this->userSession->getUser();
-		if (!str_contains($user->getUID(), $search) && !str_contains(strtolower($user->getDisplayName()), $search)) {
+		if (!str_contains($user->getUID(), $search)
+			&& !str_contains(strtolower($user->getDisplayName()), $search)
+			&& !str_contains($user->getEMailAddress(), $search)
+		) {
 			return $return;
 		}
 		$filtered = array_filter($return, fn ($i) => $i['id'] === $user->getUID());

From cb18b48ff704b4404944b0246b87f44bab3f0050 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 08:15:39 -0300
Subject: [PATCH 33/51] chore: indent code

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/IdentifyAccountController.php | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index a64aa461d9..97233cdfe6 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -191,7 +191,9 @@ private function addHerselfEmail(array $return, string $search): array {
 		if (empty($user->getEMailAddress())) {
 			return $return;
 		}
-		if (!str_contains($user->getEMailAddress(), $search) && !str_contains($user->getDisplayName(), $search)) {
+		if (!str_contains($user->getEMailAddress(), $search)
+			&& !str_contains($user->getDisplayName(), $search)
+		) {
 			return $return;
 		}
 		$filtered = array_filter($return, fn ($i) => $i['id'] === $user->getUID());

From 6c18240e187671e72bc7533cb7d5061da465adda Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 08:16:00 -0300
Subject: [PATCH 34/51] fix: typo

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 tests/integration/features/identify-account/search.feature | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tests/integration/features/identify-account/search.feature b/tests/integration/features/identify-account/search.feature
index 9a9a3276c8..a40a132e44 100644
--- a/tests/integration/features/identify-account/search.feature
+++ b/tests/integration/features/identify-account/search.feature
@@ -100,7 +100,7 @@ Feature: search
     Then the response should have a status code 200
     And the response should be a JSON array with the following mandatory values
       | key                        | value |
-      # ShareType equals to email is 4. Zero is the charetype of account.
+      # ShareType equals to email is 4. Zero is the sharetype of account.
       | (jq).ocs.data[0].shareType | 0     |
 
   Scenario: Search account by herself with permission to identify by email

From 5b5d053a9129e1eb9b167bd50a69e65586735be6 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 08:28:22 -0300
Subject: [PATCH 35/51] chore: replace shareType by method

At context of LibreSign search, the field shareType need to be the sign
method.

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 .../Collaborators/SignerPlugin.php            |  4 +--
 lib/Controller/IdentifyAccountController.php  | 32 ++++++++++++++++---
 .../features/identify-account/search.feature  | 17 +++++-----
 tests/psalm-baseline.xml                      |  5 +++
 4 files changed, 43 insertions(+), 15 deletions(-)

diff --git a/lib/Collaboration/Collaborators/SignerPlugin.php b/lib/Collaboration/Collaborators/SignerPlugin.php
index cea652f7a0..8f32aee21e 100644
--- a/lib/Collaboration/Collaborators/SignerPlugin.php
+++ b/lib/Collaboration/Collaborators/SignerPlugin.php
@@ -66,7 +66,7 @@ public function search($search, $limit, $offset, ISearchResult $searchResult): b
 			$result['exact'][] = [
 				'label' => $search,
 				'shareWithDisplayNameUnique' => $search,
-				'key' => self::$method,
+				'method' => self::$method,
 				'value' => [
 					'shareWith' => $search,
 					'shareType' => self::TYPE_SIGNER,
@@ -88,7 +88,7 @@ private function rowToSearchResultItem(array $row): array {
 		$item = [
 			'label' => $row['display_name'],
 			'shareWithDisplayNameUnique' => $row['identifier_value'],
-			'key' => $row['identifier_key'],
+			'method' => $row['identifier_key'],
 			'value' => [
 				'shareWith' => $row['identifier_value'],
 				'shareType' => self::TYPE_SIGNER,
diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index 97233cdfe6..4d66e04c84 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -75,6 +75,7 @@ public function search(string $search = '', string $method = '', int $page = 1,
 		$return = $this->formatForNcSelect($result);
 		$return = $this->addHerselfAccount($return, $search);
 		$return = $this->addHerselfEmail($return, $search);
+		$return = $this->replaceShareTypeByMethod($return);
 		$return = $this->excludeNotAllowed($return);
 
 		return new DataResponse($return);
@@ -130,7 +131,9 @@ private function formatForNcSelect(array $list): array {
 		foreach ($list as $key => $item) {
 			$return[$key] = [
 				'id' => $item['value']['shareWith'],
-				'isNoUser' => $item['value']['shareType'] !== IShare::TYPE_USER,
+				'isNoUser' => $item['value']['shareType'] !== IShare::TYPE_USER
+					&& isset($item['method'])
+					&& $item['method'] !== 'account',
 				'displayName' => $item['label'],
 				'subname' => $item['shareWithDisplayNameUnique'] ?? '',
 			];
@@ -141,7 +144,13 @@ private function formatForNcSelect(array $list): array {
 				$return[$key]['method'] = 'account';
 				$return[$key]['icon'] = 'icon-user';
 			} elseif ($item['value']['shareType'] === SignerPlugin::TYPE_SIGNER) {
-				$return[$key]['method'] = $item['key'];
+				if (
+					!isset($return[$key]['method'])
+					&& empty($return[$key]['method'])
+					&& !empty($item['key'])
+				) {
+					$return[$key]['method'] = $item['key'];
+				}
 				if ($item['key'] === 'email') {
 					$return[$key]['icon'] = 'icon-mail';
 				} elseif ($item['key'] === 'account') {
@@ -177,7 +186,7 @@ private function addHerselfAccount(array $return, string $search): array {
 			'displayName' => $user->getDisplayName(),
 			'subname' => $user->getEMailAddress(),
 			'icon' => 'icon-user',
-			'shareType' => IShare::TYPE_USER,
+			'method' => 'account',
 		];
 		return $return;
 	}
@@ -206,7 +215,7 @@ private function addHerselfEmail(array $return, string $search): array {
 			'displayName' => $user->getDisplayName(),
 			'subname' => $user->getEMailAddress(),
 			'icon' => 'icon-mail',
-			'shareType' => IShare::TYPE_EMAIL,
+			'method' => 'email',
 		];
 		return $return;
 	}
@@ -219,4 +228,19 @@ private function excludeNotAllowed(array $list): array {
 		$shareTypes = $this->getShareTypes();
 		return array_filter($list, fn ($result) => in_array($result['shareType'], $shareTypes));
 	}
+
+	private function replaceShareTypeByMethod(array $list): array {
+		foreach ($list as $key => $item) {
+			if (!empty($item['method'])) {
+				continue;
+			}
+			match ($item['shareType']) {
+				IShare::TYPE_EMAIL => $item['method'] = 'email',
+				IShare::TYPE_USER => $item['method'] = 'account',
+				default => $item['method'] = '',
+			};
+			unset($list[$key]['shareType']);
+		}
+		return $list;
+	}
 }
diff --git a/tests/integration/features/identify-account/search.feature b/tests/integration/features/identify-account/search.feature
index a40a132e44..da454c271e 100644
--- a/tests/integration/features/identify-account/search.feature
+++ b/tests/integration/features/identify-account/search.feature
@@ -13,7 +13,7 @@ Feature: search
       | (jq).ocs.data[0].displayName | search-signer1-displayname |
       | (jq).ocs.data[0].subname     | search-signer1             |
       | (jq).ocs.data[0].icon        | icon-user                  |
-      | (jq).ocs.data[0].shareType   | 0                          |
+      | (jq).ocs.data[0].method      | account                    |
 
   Scenario: Search account by multiple users
     Given as user "admin"
@@ -29,13 +29,13 @@ Feature: search
       | (jq).ocs.data[0].displayName | search-signer1-displayname |
       | (jq).ocs.data[0].subname     | search-signer1             |
       | (jq).ocs.data[0].icon        | icon-user                  |
-      | (jq).ocs.data[0].shareType   | 0                          |
+      | (jq).ocs.data[0].method      | account                    |
       | (jq).ocs.data[1].id          | search-signer2             |
       | (jq).ocs.data[1].isNoUser    | false                      |
       | (jq).ocs.data[1].displayName | search-signer2-displayname |
       | (jq).ocs.data[1].subname     | search-signer2             |
       | (jq).ocs.data[1].icon        | icon-user                  |
-      | (jq).ocs.data[1].shareType   | 0                          |
+      | (jq).ocs.data[1].method      | account                    |
 
 
   Scenario: Search account by herself with partial name search
@@ -55,7 +55,7 @@ Feature: search
       | (jq).ocs.data[0].displayName | can-find-myself-displayname |
       | (jq).ocs.data[0].subname     | my@email.tld                |
       | (jq).ocs.data[0].icon        | icon-user                   |
-      | (jq).ocs.data[0].shareType   | 0                           |
+      | (jq).ocs.data[0].method      | account                     |
 
   Scenario: Search account by herself without permission to identify by account
     Given as user "admin"
@@ -88,7 +88,7 @@ Feature: search
       | (jq).ocs.data[0].displayName | admin           |
       | (jq).ocs.data[0].subname     | admin@email.tld |
       | (jq).ocs.data[0].icon        | icon-user       |
-      | (jq).ocs.data[0].shareType   | 0               |
+      | (jq).ocs.data[0].method      | account         |
 
   Scenario: Search account by herself without permission to identify by email
     Given as user "admin"
@@ -99,9 +99,8 @@ Feature: search
     When sending "get" to ocs "/apps/libresign/api/v1/identify-account/search?search=admin@email.tld"
     Then the response should have a status code 200
     And the response should be a JSON array with the following mandatory values
-      | key                        | value |
-      # ShareType equals to email is 4. Zero is the sharetype of account.
-      | (jq).ocs.data[0].shareType | 0     |
+      | key                     | value   |
+      | (jq).ocs.data[0].method | account |
 
   Scenario: Search account by herself with permission to identify by email
     Given as user "admin"
@@ -118,4 +117,4 @@ Feature: search
       | (jq).ocs.data[0].displayName | admin           |
       | (jq).ocs.data[0].subname     | admin@email.tld |
       | (jq).ocs.data[0].icon        | icon-mail       |
-      | (jq).ocs.data[0].shareType   | 4               |
+      | (jq).ocs.data[0].method      | email           |
diff --git a/tests/psalm-baseline.xml b/tests/psalm-baseline.xml
index 600bf55afb..782635e585 100644
--- a/tests/psalm-baseline.xml
+++ b/tests/psalm-baseline.xml
@@ -47,6 +47,11 @@
       <code><![CDATA[$storage]]></code>
     </UndefinedDocblockClass>
   </file>
+  <file src="lib/Controller/IdentifyAccountController.php">
+    <InvalidArrayOffset>
+      <code><![CDATA[$return[$key]['method']]]></code>
+    </InvalidArrayOffset>
+  </file>
   <file src="lib/Db/PagerFantaQueryAdapter.php">
     <MissingTemplateParam>
       <code><![CDATA[AdapterInterface]]></code>

From 5c921fdb869bbbb1b9b64ef7e0c6699c3aa27c38 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 08:42:28 -0300
Subject: [PATCH 36/51] fix: filter valid condition

only is valid if the result have a method and the method is not empty

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/IdentifyAccountController.php | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index 4d66e04c84..e738e2f23e 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -225,8 +225,7 @@ private function excludeEmptyShareWith(array $list): array {
 	}
 
 	private function excludeNotAllowed(array $list): array {
-		$shareTypes = $this->getShareTypes();
-		return array_filter($list, fn ($result) => in_array($result['shareType'], $shareTypes));
+		return array_filter($list, fn ($result) => isset($result['method']) && !empty($result['method']));
 	}
 
 	private function replaceShareTypeByMethod(array $list): array {

From efd2efef1cd742ee09d281d3d04b272be48671ce Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 09:00:47 -0300
Subject: [PATCH 37/51] fix: code review

fix https://github.com/LibreSign/libresign/pull/5459#discussion_r2372048494

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/FileController.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/Controller/FileController.php b/lib/Controller/FileController.php
index af0679ae55..65cbc79628 100644
--- a/lib/Controller/FileController.php
+++ b/lib/Controller/FileController.php
@@ -378,7 +378,7 @@ private function fetchPreview(
 	/**
 	 * Send a file
 	 *
-	 * Send a new file to Nextcloud and return the fileId to request to sign
+	 * Send a new file to Nextcloud and return the fileId to request to signature
 	 *
 	 * @param LibresignNewFile $file File to save
 	 * @param string $name The name of file to sign

From 42389d11bd543af0688701d653fe9dc2929cf370 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 09:01:02 -0300
Subject: [PATCH 38/51] fix: code review

fix https://github.com/LibreSign/libresign/pull/5459#discussion_r2372048520

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Service/IdentifyMethod/TwofactorGateway.php | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/lib/Service/IdentifyMethod/TwofactorGateway.php b/lib/Service/IdentifyMethod/TwofactorGateway.php
index 1797195d8c..3b863bdd1e 100644
--- a/lib/Service/IdentifyMethod/TwofactorGateway.php
+++ b/lib/Service/IdentifyMethod/TwofactorGateway.php
@@ -64,9 +64,7 @@ public function isTwofactorGatewayEnabled(): bool {
 		/** @var Factory */
 		$gatewayFactory = Server::get(Factory::class);
 
-		$full = get_class($this);
-		$parts = explode('\\', $full);
-		$gatewayName = end($parts);
+		$gatewayName = strtolower($this->getId());
 
 		$gateway = $gatewayFactory->get($gatewayName);
 		return $gateway->isComplete();

From 32fa36ca0391baf2e74499ebdbe6e6d30ebeba2b Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 09:03:42 -0300
Subject: [PATCH 39/51] fix: code review

fix https://github.com/LibreSign/libresign/pull/5459#discussion_r2372048533

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 .../SignatureMethod/TwofactorGatewayToken.php            | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php b/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
index 0ace91542e..c776fa1f96 100644
--- a/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
+++ b/lib/Service/IdentifyMethod/SignatureMethod/TwofactorGatewayToken.php
@@ -11,6 +11,9 @@
 use OCA\Libresign\Service\IdentifyMethod\IdentifyService;
 
 class TwofactorGatewayToken extends AbstractSignatureMethod implements IToken {
+	private const VISIBILITY_START = 2;
+	private const VISIBILITY_END = 2;
+
 	public function __construct(
 		protected IdentifyService $identifyService,
 		protected TokenService $tokenService,
@@ -52,7 +55,11 @@ public function toArray(): array {
 		return $return;
 	}
 
-	private function blurIdentifier(string $identifier, int $visibleStart = 2, int $visibleEnd = 2): string {
+	private function blurIdentifier(
+		string $identifier,
+		int $visibleStart = self::VISIBILITY_START,
+		int $visibleEnd = self::VISIBILITY_END,
+	): string {
 		$length = mb_strlen($identifier);
 
 		if ($length <= $visibleStart + $visibleEnd) {

From 509297d6c2ee05a4a125484b5f05d4bb9bc9f500 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 09:06:37 -0300
Subject: [PATCH 40/51] fix: previous change was wrong

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/IdentifyAccountController.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index e738e2f23e..dbbfc41c4b 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -230,10 +230,10 @@ private function excludeNotAllowed(array $list): array {
 
 	private function replaceShareTypeByMethod(array $list): array {
 		foreach ($list as $key => $item) {
-			if (!empty($item['method'])) {
+			if (isset($item['method']) && !empty($item['method'])) {
 				continue;
 			}
-			match ($item['shareType']) {
+			$list[$key]['method'] = match ($item['shareType']) {
 				IShare::TYPE_EMAIL => $item['method'] = 'email',
 				IShare::TYPE_USER => $item['method'] = 'account',
 				default => $item['method'] = '',

From 6a4ce4686118c7bfcb3725ca0887795cde7a56d1 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 09:10:17 -0300
Subject: [PATCH 41/51] fix: openapi

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 openapi-full.json                 | 2 +-
 openapi.json                      | 2 +-
 src/types/openapi/openapi-full.ts | 2 +-
 src/types/openapi/openapi.ts      | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/openapi-full.json b/openapi-full.json
index 3b57ea46c8..e9e08b76ee 100644
--- a/openapi-full.json
+++ b/openapi-full.json
@@ -4630,7 +4630,7 @@
             "post": {
                 "operationId": "file-save",
                 "summary": "Send a file",
-                "description": "Send a new file to Nextcloud and return the fileId to request to sign",
+                "description": "Send a new file to Nextcloud and return the fileId to request to signature",
                 "tags": [
                     "file"
                 ],
diff --git a/openapi.json b/openapi.json
index bada899c35..a044023045 100644
--- a/openapi.json
+++ b/openapi.json
@@ -4483,7 +4483,7 @@
             "post": {
                 "operationId": "file-save",
                 "summary": "Send a file",
-                "description": "Send a new file to Nextcloud and return the fileId to request to sign",
+                "description": "Send a new file to Nextcloud and return the fileId to request to signature",
                 "tags": [
                     "file"
                 ],
diff --git a/src/types/openapi/openapi-full.ts b/src/types/openapi/openapi-full.ts
index e3fa0e9b4d..6057e032b5 100644
--- a/src/types/openapi/openapi-full.ts
+++ b/src/types/openapi/openapi-full.ts
@@ -617,7 +617,7 @@ export type paths = {
         put?: never;
         /**
          * Send a file
-         * @description Send a new file to Nextcloud and return the fileId to request to sign
+         * @description Send a new file to Nextcloud and return the fileId to request to signature
          */
         post: operations["file-save"];
         delete?: never;
diff --git a/src/types/openapi/openapi.ts b/src/types/openapi/openapi.ts
index a66ffac830..9cb656d088 100644
--- a/src/types/openapi/openapi.ts
+++ b/src/types/openapi/openapi.ts
@@ -617,7 +617,7 @@ export type paths = {
         put?: never;
         /**
          * Send a file
-         * @description Send a new file to Nextcloud and return the fileId to request to sign
+         * @description Send a new file to Nextcloud and return the fileId to request to signature
          */
         post: operations["file-save"];
         delete?: never;

From 6dc5b0b197a4618d013748d1e661b3d1dee537a5 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 09:20:40 -0300
Subject: [PATCH 42/51] fix: prevent warning when haven't an email

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/IdentifyAccountController.php | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index dbbfc41c4b..edcf30cd92 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -170,9 +170,13 @@ private function addHerselfAccount(array $return, string $search): array {
 			return $return;
 		}
 		$user = $this->userSession->getUser();
+		$search = strtolower($search);
 		if (!str_contains($user->getUID(), $search)
 			&& !str_contains(strtolower($user->getDisplayName()), $search)
-			&& !str_contains($user->getEMailAddress(), $search)
+			&& (
+				$user->getEMailAddress() === null
+				|| ($user->getEMailAddress() !== null && !str_contains($user->getEMailAddress(), $search))
+			)
 		) {
 			return $return;
 		}

From 6bce190739fab62a169d4fe6b3eb1521e0f8ebc8 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 11:00:21 -0300
Subject: [PATCH 43/51] fix: the method key was removed and I added back

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/IdentifyAccountController.php | 16 +++++-----------
 1 file changed, 5 insertions(+), 11 deletions(-)

diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index edcf30cd92..f8c328436f 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -144,20 +144,14 @@ private function formatForNcSelect(array $list): array {
 				$return[$key]['method'] = 'account';
 				$return[$key]['icon'] = 'icon-user';
 			} elseif ($item['value']['shareType'] === SignerPlugin::TYPE_SIGNER) {
-				if (
-					!isset($return[$key]['method'])
-					&& empty($return[$key]['method'])
-					&& !empty($item['key'])
-				) {
-					$return[$key]['method'] = $item['key'];
-				}
-				if ($item['key'] === 'email') {
+				$return[$key]['method'] = $item['method'] ?? '';
+				if ($item['method'] === 'email') {
 					$return[$key]['icon'] = 'icon-mail';
-				} elseif ($item['key'] === 'account') {
+				} elseif ($item['method'] === 'account') {
 					$return[$key]['icon'] = 'icon-user';
 				} else {
-					$return[$key]['iconSvg'] = 'svg' . ucfirst($item['key']);
-					$return[$key]['iconName'] = $item['key'];
+					$return[$key]['iconSvg'] = 'svg' . ucfirst($item['method']);
+					$return[$key]['iconName'] = $item['method'];
 				}
 			}
 		}

From ae680d9f2adf6b585c2f9af41f243ed012fe05d5 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 11:00:48 -0300
Subject: [PATCH 44/51] fix: the match syntax was incorrect

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/IdentifyAccountController.php | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index f8c328436f..8ebdcc4acc 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -232,9 +232,9 @@ private function replaceShareTypeByMethod(array $list): array {
 				continue;
 			}
 			$list[$key]['method'] = match ($item['shareType']) {
-				IShare::TYPE_EMAIL => $item['method'] = 'email',
-				IShare::TYPE_USER => $item['method'] = 'account',
-				default => $item['method'] = '',
+				IShare::TYPE_EMAIL => 'email',
+				IShare::TYPE_USER => 'account',
+				default => '',
 			};
 			unset($list[$key]['shareType']);
 		}

From 82d0d3ddb79a3e47d2880b5fbd3551a588998525 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 11:01:09 -0300
Subject: [PATCH 45/51] fix: enlarge the dialog size

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 src/Components/RightSidebar/RequestSignatureTab.vue | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Components/RightSidebar/RequestSignatureTab.vue b/src/Components/RightSidebar/RequestSignatureTab.vue
index 9375cce16e..be0f47cc2c 100644
--- a/src/Components/RightSidebar/RequestSignatureTab.vue
+++ b/src/Components/RightSidebar/RequestSignatureTab.vue
@@ -190,7 +190,7 @@ export default {
 			return this.filesStore.getFile()?.name ?? ''
 		},
 		size() {
-			return window.matchMedia('(max-width: 512px)').matches ? 'full' : 'small'
+			return window.matchMedia('(max-width: 512px)').matches ? 'full' : 'normal'
 		},
 	},
 	watch: {

From 70b4d3d20ead5cbcae5c3ae9272204d6302ae0ad Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 11:16:58 -0300
Subject: [PATCH 46/51] chore: use a more readdable code

fix: https://github.com/LibreSign/libresign/pull/5459#discussion_r2372419888

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Collaboration/Collaborators/SignerPlugin.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/Collaboration/Collaborators/SignerPlugin.php b/lib/Collaboration/Collaborators/SignerPlugin.php
index 8f32aee21e..0acc0c9514 100644
--- a/lib/Collaboration/Collaborators/SignerPlugin.php
+++ b/lib/Collaboration/Collaborators/SignerPlugin.php
@@ -62,7 +62,7 @@ public function search($search, $limit, $offset, ISearchResult $searchResult): b
 			}
 		}
 
-		if (!count($identifiers) && self::$method && !$this->canValidateMethod()) {
+		if (empty($identifiers) && self::$method && !$this->canValidateMethod()) {
 			$result['exact'][] = [
 				'label' => $search,
 				'shareWithDisplayNameUnique' => $search,

From b6d78fa7659c56158ffc7a969796ac07d49ad06d Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 11:17:59 -0300
Subject: [PATCH 47/51] chore: replace string svg by a real file

fix: https://github.com/LibreSign/libresign/pull/5459#discussion_r2372419906

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 img/logo-telegram-app.svg                           | 3 +++
 src/Components/Request/SignerSelect.vue             | 4 ++--
 src/Components/RightSidebar/RequestSignatureTab.vue | 4 ++--
 3 files changed, 7 insertions(+), 4 deletions(-)
 create mode 100644 img/logo-telegram-app.svg

diff --git a/img/logo-telegram-app.svg b/img/logo-telegram-app.svg
new file mode 100644
index 0000000000..62cc81b18a
--- /dev/null
+++ b/img/logo-telegram-app.svg
@@ -0,0 +1,3 @@
+<svg width="800px" height="800px" viewBox="0 0 48 48" fill="none" xmlns="http://www.w3.org/2000/svg">
+<path d="M41.4193 7.30899C41.4193 7.30899 45.3046 5.79399 44.9808 9.47328C44.8729 10.9883 43.9016 16.2908 43.1461 22.0262L40.5559 39.0159C40.5559 39.0159 40.3401 41.5048 38.3974 41.9377C36.4547 42.3705 33.5408 40.4227 33.0011 39.9898C32.5694 39.6652 24.9068 34.7955 22.2086 32.4148C21.4531 31.7655 20.5897 30.4669 22.3165 28.9519L33.6487 18.1305C34.9438 16.8319 36.2389 13.8019 30.8426 17.4812L15.7331 27.7616C15.7331 27.7616 14.0063 28.8437 10.7686 27.8698L3.75342 25.7055C3.75342 25.7055 1.16321 24.0823 5.58815 22.459C16.3807 17.3729 29.6555 12.1786 41.4193 7.30899Z" fill="#000000"/>
+</svg>
\ No newline at end of file
diff --git a/src/Components/Request/SignerSelect.vue b/src/Components/Request/SignerSelect.vue
index 4ad984fc01..e190b19735 100644
--- a/src/Components/Request/SignerSelect.vue
+++ b/src/Components/Request/SignerSelect.vue
@@ -43,12 +43,12 @@ import { generateOcsUrl } from '@nextcloud/router'
 import NcSelect from '@nextcloud/vue/components/NcSelect'
 
 import svgSignal from '../../../img/logo-signal-app.svg?raw'
+import svgTelegram from '../../../img/logo-telegram-app.svg?raw'
 
 const iconMap = {
 	svgSignal,
 	svgSms,
-	// Workaround to rotate telegram icon. MDI does not provide a telegram icon.
-	svgTelegram: '<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 28 28"><g transform="rotate(-45, 12, 12)"><path d="M2,21L23,12L2,3V10L17,12L2,14V21Z" /></g></svg>',
+	svgTelegram,
 	svgWhatsapp,
 	svgXmpp,
 }
diff --git a/src/Components/RightSidebar/RequestSignatureTab.vue b/src/Components/RightSidebar/RequestSignatureTab.vue
index be0f47cc2c..f71195b321 100644
--- a/src/Components/RightSidebar/RequestSignatureTab.vue
+++ b/src/Components/RightSidebar/RequestSignatureTab.vue
@@ -118,6 +118,7 @@ import VisibleElements from '../Request/VisibleElements.vue'
 import Signers from '../Signers/Signers.vue'
 
 import svgSignal from '../../../img/logo-signal-app.svg?raw'
+import svgTelegram from '../../../img/logo-telegram-app.svg?raw'
 import router from '../../router/router.js'
 import { useFilesStore } from '../../store/files.js'
 import { useSidebarStore } from '../../store/sidebar.js'
@@ -128,8 +129,7 @@ const iconMap = {
 	svgEmail,
 	svgSignal,
 	svgSms,
-	// Workaround to rotate telegram icon. MDI does not provide a telegram icon.
-	svgTelegram: '<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 28 28"><g transform="rotate(-45, 12, 12)"><path d="M2,21L23,12L2,3V10L17,12L2,14V21Z" /></g></svg>',
+	svgTelegram,
 	svgWhatsapp,
 	svgXmpp,
 }

From dcf596756bb829e94e5242e82e60cf4db2f3013d Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Tue, 23 Sep 2025 11:29:38 -0300
Subject: [PATCH 48/51] fix: psalm update baseline

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 tests/psalm-baseline.xml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/tests/psalm-baseline.xml b/tests/psalm-baseline.xml
index 782635e585..600bf55afb 100644
--- a/tests/psalm-baseline.xml
+++ b/tests/psalm-baseline.xml
@@ -47,11 +47,6 @@
       <code><![CDATA[$storage]]></code>
     </UndefinedDocblockClass>
   </file>
-  <file src="lib/Controller/IdentifyAccountController.php">
-    <InvalidArrayOffset>
-      <code><![CDATA[$return[$key]['method']]]></code>
-    </InvalidArrayOffset>
-  </file>
   <file src="lib/Db/PagerFantaQueryAdapter.php">
     <MissingTemplateParam>
       <code><![CDATA[AdapterInterface]]></code>

From 06f36992dcb54fb64bb7d6d1e9ef5be4322270ba Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Wed, 1 Oct 2025 20:48:09 -0300
Subject: [PATCH 49/51] fix: change suggested by code review

https://github.com/LibreSign/libresign/pull/5459#discussion_r2373089670

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/FileController.php | 2 +-
 openapi-full.json                 | 2 +-
 openapi.json                      | 2 +-
 src/types/openapi/openapi-full.ts | 2 +-
 src/types/openapi/openapi.ts      | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/lib/Controller/FileController.php b/lib/Controller/FileController.php
index 65cbc79628..655c0a1451 100644
--- a/lib/Controller/FileController.php
+++ b/lib/Controller/FileController.php
@@ -378,7 +378,7 @@ private function fetchPreview(
 	/**
 	 * Send a file
 	 *
-	 * Send a new file to Nextcloud and return the fileId to request to signature
+	 * Send a new file to Nextcloud and return the fileId to request signature
 	 *
 	 * @param LibresignNewFile $file File to save
 	 * @param string $name The name of file to sign
diff --git a/openapi-full.json b/openapi-full.json
index e9e08b76ee..23685795ae 100644
--- a/openapi-full.json
+++ b/openapi-full.json
@@ -4630,7 +4630,7 @@
             "post": {
                 "operationId": "file-save",
                 "summary": "Send a file",
-                "description": "Send a new file to Nextcloud and return the fileId to request to signature",
+                "description": "Send a new file to Nextcloud and return the fileId to request signature",
                 "tags": [
                     "file"
                 ],
diff --git a/openapi.json b/openapi.json
index a044023045..86a6151698 100644
--- a/openapi.json
+++ b/openapi.json
@@ -4483,7 +4483,7 @@
             "post": {
                 "operationId": "file-save",
                 "summary": "Send a file",
-                "description": "Send a new file to Nextcloud and return the fileId to request to signature",
+                "description": "Send a new file to Nextcloud and return the fileId to request signature",
                 "tags": [
                     "file"
                 ],
diff --git a/src/types/openapi/openapi-full.ts b/src/types/openapi/openapi-full.ts
index 6057e032b5..3175ad3618 100644
--- a/src/types/openapi/openapi-full.ts
+++ b/src/types/openapi/openapi-full.ts
@@ -617,7 +617,7 @@ export type paths = {
         put?: never;
         /**
          * Send a file
-         * @description Send a new file to Nextcloud and return the fileId to request to signature
+         * @description Send a new file to Nextcloud and return the fileId to request signature
          */
         post: operations["file-save"];
         delete?: never;
diff --git a/src/types/openapi/openapi.ts b/src/types/openapi/openapi.ts
index 9cb656d088..dc3ba6feab 100644
--- a/src/types/openapi/openapi.ts
+++ b/src/types/openapi/openapi.ts
@@ -617,7 +617,7 @@ export type paths = {
         put?: never;
         /**
          * Send a file
-         * @description Send a new file to Nextcloud and return the fileId to request to signature
+         * @description Send a new file to Nextcloud and return the fileId to request signature
          */
         post: operations["file-save"];
         delete?: never;

From d285ca8306d3b4a64e0418e64d4c8c1d53303328 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Wed, 1 Oct 2025 20:49:42 -0300
Subject: [PATCH 50/51] fix: suggestion from code reviw

https://github.com/LibreSign/libresign/pull/5459#discussion_r2373103060

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 lib/Controller/IdentifyAccountController.php | 24 ++++++++++----------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/lib/Controller/IdentifyAccountController.php b/lib/Controller/IdentifyAccountController.php
index 8ebdcc4acc..a6b0e480ed 100644
--- a/lib/Controller/IdentifyAccountController.php
+++ b/lib/Controller/IdentifyAccountController.php
@@ -127,9 +127,9 @@ private function unifyResult(array $list): array {
 	}
 
 	private function formatForNcSelect(array $list): array {
-		$return = [];
+		$formattedList = [];
 		foreach ($list as $key => $item) {
-			$return[$key] = [
+			$formattedList[$key] = [
 				'id' => $item['value']['shareWith'],
 				'isNoUser' => $item['value']['shareType'] !== IShare::TYPE_USER
 					&& isset($item['method'])
@@ -138,24 +138,24 @@ private function formatForNcSelect(array $list): array {
 				'subname' => $item['shareWithDisplayNameUnique'] ?? '',
 			];
 			if ($item['value']['shareType'] === IShare::TYPE_EMAIL) {
-				$return[$key]['method'] = 'email';
-				$return[$key]['icon'] = 'icon-mail';
+				$formattedList[$key]['method'] = 'email';
+				$formattedList[$key]['icon'] = 'icon-mail';
 			} elseif ($item['value']['shareType'] === IShare::TYPE_USER) {
-				$return[$key]['method'] = 'account';
-				$return[$key]['icon'] = 'icon-user';
+				$formattedList[$key]['method'] = 'account';
+				$formattedList[$key]['icon'] = 'icon-user';
 			} elseif ($item['value']['shareType'] === SignerPlugin::TYPE_SIGNER) {
-				$return[$key]['method'] = $item['method'] ?? '';
+				$formattedList[$key]['method'] = $item['method'] ?? '';
 				if ($item['method'] === 'email') {
-					$return[$key]['icon'] = 'icon-mail';
+					$formattedList[$key]['icon'] = 'icon-mail';
 				} elseif ($item['method'] === 'account') {
-					$return[$key]['icon'] = 'icon-user';
+					$formattedList[$key]['icon'] = 'icon-user';
 				} else {
-					$return[$key]['iconSvg'] = 'svg' . ucfirst($item['method']);
-					$return[$key]['iconName'] = $item['method'];
+					$formattedList[$key]['iconSvg'] = 'svg' . ucfirst($item['method']);
+					$formattedList[$key]['iconName'] = $item['method'];
 				}
 			}
 		}
-		return $return;
+		return $formattedList;
 	}
 
 	private function addHerselfAccount(array $return, string $search): array {

From 31970b781c65e33bbfdf33e186bfca2336f6af85 Mon Sep 17 00:00:00 2001
From: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
Date: Thu, 2 Oct 2025 13:28:12 -0300
Subject: [PATCH 51/51] fix: force reactivity

Signed-off-by: Vitor Mattos <1079143+vitormattos@users.noreply.github.com>
---
 src/Components/RightSidebar/RequestSignatureTab.vue | 3 +--
 src/Components/Signers/Signers.vue                  | 2 +-
 src/store/files.js                                  | 6 +++++-
 3 files changed, 7 insertions(+), 4 deletions(-)

diff --git a/src/Components/RightSidebar/RequestSignatureTab.vue b/src/Components/RightSidebar/RequestSignatureTab.vue
index f71195b321..955bd02001 100644
--- a/src/Components/RightSidebar/RequestSignatureTab.vue
+++ b/src/Components/RightSidebar/RequestSignatureTab.vue
@@ -9,8 +9,7 @@
 			@click="addSigner">
 			{{ t('libresign', 'Add signer') }}
 		</NcButton>
-		<Signers :signers="filesStore.signers"
-			event="libresign:edit-signer">
+		<Signers event="libresign:edit-signer">
 			<template #actions="{signer}">
 				<NcActionButton v-if="filesStore.canSave() && !signer.signed"
 					aria-label="Delete"
diff --git a/src/Components/Signers/Signers.vue b/src/Components/Signers/Signers.vue
index 76193bfdd8..599040659e 100644
--- a/src/Components/Signers/Signers.vue
+++ b/src/Components/Signers/Signers.vue
@@ -35,7 +35,7 @@ export default {
 	},
 	computed: {
 		signers() {
-			return this.filesStore.getFile()?.signers ?? []
+			return this.filesStore.getFile().signers
 		},
 	},
 }
diff --git a/src/store/files.js b/src/store/files.js
index 2c18c7af2b..2334333178 100644
--- a/src/store/files.js
+++ b/src/store/files.js
@@ -31,6 +31,7 @@ const slugfy = (val) =>
 		.replace(/-+$/, '')
 
 export const useFilesStore = function(...args) {
+	const emptyFile = { signers: [] }
 	const store = defineStore('files', {
 		state: () => {
 			return {
@@ -67,7 +68,7 @@ export const useFilesStore = function(...args) {
 				if (typeof file === 'object') {
 					return file
 				}
-				return this.files[this.selectedNodeId] ?? {}
+				return this.files[this.selectedNodeId] || emptyFile
 			},
 			async flushSelectedFile() {
 				const files = await this.getAllFiles({
@@ -214,6 +215,9 @@ export const useFilesStore = function(...args) {
 					}
 				}
 				this.getFile().signers.push(signer)
+				const selected = this.selectedNodeId
+				this.selectFile(-1) // to force reactivity
+				this.selectFile(selected) // to force reactivity
 			},
 			async deleteSigner(signer) {
 				if (!isNaN(signer.signRequestId)) {