fix: validate requested userId with SsoService user

    <description><![CDATA[in /e/OS cloud, nextcloud accounts are linked to mail accounts. This app ensures both are coordinated: it sets the e-mail address, quota and storage of the user upon creation.

    It also completes the account deletion by cleaning other parts of the /e/OS cloud setup to ensure no more data is retained when a user requests an account deletion.

    This app uses the UserDeletedEvent to invoke scripts in the docker-welcome container of /e/OS cloud setup]]></description>

    <version>10.0.0</version>

    <version>10.0.1</version>

    <licence>agpl</licence>

    <author mail="dev@murena.com" homepage="https://murena.com/">Murena SAS</author>

    <namespace>EcloudAccounts</namespace>

    <category>tools</category>

    <bugs>https://gitlab.e.foundation/e/management/issues</bugs>

    <dependencies>

        <nextcloud min-version="29" max-version="29"/>

        <nextcloud min-version="28" max-version="29"/>

    </dependencies>

	<settings>

		<personal>OCA\EcloudAccounts\Settings\DeleteShopAccountSetting</personal>

	private array $ssoConfig = [];

	private string $adminAccessToken;

	private string $currentUserId;

	private string $currentUserName;

	private ICrypto $crypto;

	private IFactory $l10nFactory;

	private IUserManager $userManager;

	private string $mainDomain;

	private string $legacyDomain;

	private const ADMIN_TOKEN_ENDPOINT = '/auth/realms/master/protocol/openid-connect/token';

	private const USERS_ENDPOINT = '/users';

	private const CREDENTIALS_ENDPOINT = '/users/{USER_ID}/credentials';

		$this->logger = $logger;

		$this->l10nFactory = $l10nFactory;

		$this->userManager = $userManager;

		$this->mainDomain = $this->config->getSystemValue("main_domain");

		$this->legacyDomain = $this->config->getSystemValue("legacy_domain");

	}

	public function shouldSync2FA() : bool {

	}

	public function migrateCredential(string $username, string $secret) : void {

		if(empty($this->currentUserId)) {

		if($this->isNotCurrentUser($username)) {

			$this->getUserId($username);

		}

		$this->deleteCredentials($username);

		$decryptedSecret = $this->crypto->decrypt($secret);

	}

	public function deleteCredentials(string $username) : void {

		if(empty($this->currentUserId)) {

		if($this->isNotCurrentUser($username)) {

			$this->getUserId($username);

		}

		$credentialIds = $this->getCredentialIds();

		foreach ($credentialIds as $credentialId) {

	}

	public function logout(string $username) : void {

		if(empty($this->currentUserId)) {

		if($this->isNotCurrentUser($username)) {

			$this->getUserId($username);

		}

			throw new SSOAdminAPIException('Error: no user found for search with url: ' . $url);

		}

		$this->currentUserId = $users[0]['id'];

		$this->currentUserName = $this->sanitizeUserName($users[0]['username']);

		$username = $this->sanitizeUserName($username);

		if ($username !== $this->currentUserName) {

			throw new SSOAdminAPIException('Error: retrieved wrong user info (' . $this->currentUserName . ') from SSO service for ' . $username);

		}

	}

	private function getAdminAccessToken() : void {

		$answer = json_decode($answer, true);

		return $answer;

	}

	private function sanitizeUserName(string $username): string {

		$username = strtolower($username);

		if (str_contains($username, "@" . $this->mainDomain) || str_contains($username, "@" . $this->legacyDomain)) {

			list($name, $domain) = explode("@", $username);

			$username = $name;

		}

		return $username;

	}

	private function isNotCurrentUser(string $username): bool {

		$username = $this->sanitizeUserName($username);

		return !(!empty($this->currentUserId) && !empty($this->currentUserName) && $username === $this->currentUserName);

	}

}