egroupware_official/webdav.php

<?php
/**
 * FileManger - WebDAV access
 *
 * Using the PEAR HTTP/WebDAV/Server class (which need to be installed!)
 *
 * @link http://www.egroupware.org
 * @license http://opensource.org/licenses/gpl-license.php GPL - GNU General Public License
 * @package api
 * @subpackage vfs
 * @author Ralf Becker <RalfBecker-AT-outdoor-training.de>
 * @copyright (c) 2006-9 by Ralf Becker <RalfBecker-AT-outdoor-training.de>
 * @version $Id$
 */

$starttime = microtime(true);

/**
 * check if the given user has access
 *
 * Create a session or if the user has no account return authenticate header and 401 Unauthorized
 *
 * @param array &$account
 * @return int session-id
 */
function check_access(&$account)
{
	if (isset($_SERVER['PHP_AUTH_USER']))
	{
		$user = $_SERVER['PHP_AUTH_USER'];
		$pass = $_SERVER['PHP_AUTH_PW'];
	}
	elseif(isset($_GET['auth']))
	{
		list($user,$pass) = explode(':',base64_decode($_GET['auth']),2);
	}
	if (!isset($user) || !($sessionid = $GLOBALS['egw']->session->create($user,$pass,'text')))
	{
		header('WWW-Authenticate: Basic realm="'.vfs_webdav_server::REALM.
			// if the session class gives a reason why the login failed --> append it to the REALM
			($GLOBALS['egw']->session->reason ? ': '.$GLOBALS['egw']->session->reason : '').'"');
		header("HTTP/1.1 401 Unauthorized");
		header("X-WebDAV-Status: 401 Unauthorized", true);
		exit;
	}
	return $sessionid;
}

// if we are called with a /apps/$app path, use that $app as currentapp, to not require filemanager rights for the links
$parts = explode('/',$_SERVER['PATH_INFO']);
//error_log("webdav: explode".print_r($parts,true));
if(count($parts) == 1)
{
	error_log(__METHOD__. "Malformed Url: missing slash:\n".$_SERVER['SERVER_NAME']."\n PATH_INFO:".$_SERVER['PATH_INFO'].
		"\n REQUEST_URI".$_SERVER['REQUEST_URI']."\n ORIG_SCRIPT_NAME:".$_SERVER['ORIG_SCRIPT_NAME'].
		"\n REMOTE_ADDR:".$_SERVER['REMOTE_ADDR']."\n PATH_INFO:".$_SERVER['PATH_INFO']."\n HTTP_USER_AGENT:".$_SERVER['HTTP_USER_AGENT']) ;
	header("HTTP/1.1 501  Not implemented");
	header("X-WebDAV-Status: 501  Not implemented", true);
	exit;
}

$app = count($parts) > 3 && $parts[1] == 'apps' ? $parts[2] : 'filemanager';

$GLOBALS['egw_info'] = array(
	'flags' => array(
		'disable_Template_class' => True,
		'noheader'  => True,
		'currentapp' => $app,
		'autocreate_session_callback' => 'check_access',
		'no_exception_handler' => 'basic_auth',	// we use a basic auth exception handler (sends exception message as basic auth realm)
	)
);
// if you move this file somewhere else, you need to adapt the path to the header!
try
{
	include(dirname(__FILE__).'/header.inc.php');
}
catch (egw_exception_no_permission_app $e)
{
	if (isset($GLOBALS['egw_info']['user']['apps']['filemanager']))
	{
		$GLOBALS['egw_info']['currentapp'] = 'filemanager';
	}
	elseif (isset($GLOBALS['egw_info']['user']['apps']['sitemgr-link']))
	{
		$GLOBALS['egw_info']['currentapp'] = 'sitemgr-link';
	}
	else
	{
		throw $e;
	}
}
//$headertime = microtime(true);

$webdav_server = new vfs_webdav_server();
$webdav_server->ServeRequest();
//error_log(sprintf("WebDAV %s request took %5.3f s (header include took %5.3f s)",$_SERVER['REQUEST_METHOD'],microtime(true)-$starttime,$headertime-$starttime));
moved webdav handler in the root dir, as its now a general service and not only used by filemanager 2008-05-10 23:15:46 +02:00			`<?php`
			`/**`
			`* FileManger - WebDAV access`
			`*`
			`* Using the PEAR HTTP/WebDAV/Server class (which need to be installed!)`
			`*`
			`* @link http://www.egroupware.org`
			`* @license http://opensource.org/licenses/gpl-license.php GPL - GNU General Public License`
			`* @package api`
			`* @subpackage vfs`
			`* @author Ralf Becker <RalfBecker-AT-outdoor-training.de>`
using a session for basic auth (not session aware) clients for WebDAV and GroupDAV. The "sessionid" get's constructed from the basic auth credentials and is not random (as the clients dont store them). --> speeds up the use of DAV --> stops DAV handlers to created numerious sessions 2009-04-04 10:38:56 +02:00			`* @copyright (c) 2006-9 by Ralf Becker <RalfBecker-AT-outdoor-training.de>`
moved webdav handler in the root dir, as its now a general service and not only used by filemanager 2008-05-10 23:15:46 +02:00			`* @version $Id$`
			`*/`

Improved exception handling: - exceptions get now always logged to the error_log - in the webgui it's now configurable, if the message contains a stacktrace (incl. function arguments) - default no (security) - command line interfaces get detected and contain no html anymore - webdav and groupdav send the exceptions as basic auth realms to the client - webdav and groupdav login failures contain the reason as part of the basic auth realm 2008-10-26 13:13:01 +01:00			`$starttime = microtime(true);`

moved webdav handler in the root dir, as its now a general service and not only used by filemanager 2008-05-10 23:15:46 +02:00			`/**`
			`* check if the given user has access`
			`*`
			`* Create a session or if the user has no account return authenticate header and 401 Unauthorized`
			`*`
			`* @param array &$account`
			`* @return int session-id`
			`*/`
			`function check_access(&$account)`
			`{`
"allowing to use GET parameter \"auth\" instead of (basic) Authentication header, as talked on devel list" 2009-08-18 09:55:59 +02:00			`if (isset($_SERVER['PHP_AUTH_USER']))`
			`{`
			`$user = $_SERVER['PHP_AUTH_USER'];`
			`$pass = $_SERVER['PHP_AUTH_PW'];`
			`}`
			`elseif(isset($_GET['auth']))`
			`{`
			`list($user,$pass) = explode(':',base64_decode($_GET['auth']),2);`
			`}`
			`if (!isset($user) \|\| !($sessionid = $GLOBALS['egw']->session->create($user,$pass,'text')))`
moved webdav handler in the root dir, as its now a general service and not only used by filemanager 2008-05-10 23:15:46 +02:00			`{`
Improved exception handling: - exceptions get now always logged to the error_log - in the webgui it's now configurable, if the message contains a stacktrace (incl. function arguments) - default no (security) - command line interfaces get detected and contain no html anymore - webdav and groupdav send the exceptions as basic auth realms to the client - webdav and groupdav login failures contain the reason as part of the basic auth realm 2008-10-26 13:13:01 +01:00			`header('WWW-Authenticate: Basic realm="'.vfs_webdav_server::REALM.`
			`// if the session class gives a reason why the login failed --> append it to the REALM`
			`($GLOBALS['egw']->session->reason ? ': '.$GLOBALS['egw']->session->reason : '').'"');`
			`header("HTTP/1.1 401 Unauthorized");`
			`header("X-WebDAV-Status: 401 Unauthorized", true);`
			`exit;`
moved webdav handler in the root dir, as its now a general service and not only used by filemanager 2008-05-10 23:15:46 +02:00			`}`
			`return $sessionid;`
			`}`

			`// if we are called with a /apps/$app path, use that $app as currentapp, to not require filemanager rights for the links`
			`$parts = explode('/',$_SERVER['PATH_INFO']);`
fixing various webdav problems, regarding pathbuilding 2009-01-29 19:58:52 +01:00			`//error_log("webdav: explode".print_r($parts,true));`
using a session for basic auth (not session aware) clients for WebDAV and GroupDAV. The "sessionid" get's constructed from the basic auth credentials and is not random (as the clients dont store them). --> speeds up the use of DAV --> stops DAV handlers to created numerious sessions 2009-04-04 10:38:56 +02:00			`if(count($parts) == 1)`
			`{`
giving a valid responsehaeder back if we get al malformed or missing url (PATH_INFO) 2009-02-27 11:05:15 +01:00			`error_log(__METHOD__. "Malformed Url: missing slash:\n".$_SERVER['SERVER_NAME']."\n PATH_INFO:".$_SERVER['PATH_INFO'].`
			`"\n REQUEST_URI".$_SERVER['REQUEST_URI']."\n ORIG_SCRIPT_NAME:".$_SERVER['ORIG_SCRIPT_NAME'].`
			`"\n REMOTE_ADDR:".$_SERVER['REMOTE_ADDR']."\n PATH_INFO:".$_SERVER['PATH_INFO']."\n HTTP_USER_AGENT:".$_SERVER['HTTP_USER_AGENT']) ;`
			`header("HTTP/1.1 501 Not implemented");`
			`header("X-WebDAV-Status: 501 Not implemented", true);`
fixing various webdav problems, regarding pathbuilding 2009-01-29 19:58:52 +01:00			`exit;`
			`}`

moved webdav handler in the root dir, as its now a general service and not only used by filemanager 2008-05-10 23:15:46 +02:00			`$app = count($parts) > 3 && $parts[1] == 'apps' ? $parts[2] : 'filemanager';`

			`$GLOBALS['egw_info'] = array(`
			`'flags' => array(`
			`'disable_Template_class' => True,`
			`'noheader' => True,`
			`'currentapp' => $app,`
			`'autocreate_session_callback' => 'check_access',`
Improved exception handling: - exceptions get now always logged to the error_log - in the webgui it's now configurable, if the message contains a stacktrace (incl. function arguments) - default no (security) - command line interfaces get detected and contain no html anymore - webdav and groupdav send the exceptions as basic auth realms to the client - webdav and groupdav login failures contain the reason as part of the basic auth realm 2008-10-26 13:13:01 +01:00			`'no_exception_handler' => 'basic_auth', // we use a basic auth exception handler (sends exception message as basic auth realm)`
moved webdav handler in the root dir, as its now a general service and not only used by filemanager 2008-05-10 23:15:46 +02:00			`)`
			`);`
			`// if you move this file somewhere else, you need to adapt the path to the header!`
new ajax_submit() function with submitts the whole form via ajax to a given callback 2009-04-29 16:15:19 +02:00			`try`
			`{`
			`include(dirname(__FILE__).'/header.inc.php');`
			`}`
			`catch (egw_exception_no_permission_app $e)`
			`{`
			`if (isset($GLOBALS['egw_info']['user']['apps']['filemanager']))`
			`{`
			`$GLOBALS['egw_info']['currentapp'] = 'filemanager';`
			`}`
"fixed not working fallback to \"sitemgr\" rights (was sitemgr-site, but has to be sitemgr-link)" 2009-10-25 18:21:31 +01:00			`elseif (isset($GLOBALS['egw_info']['user']['apps']['sitemgr-link']))`
new ajax_submit() function with submitts the whole form via ajax to a given callback 2009-04-29 16:15:19 +02:00			`{`
"fixed not working fallback to \"sitemgr\" rights (was sitemgr-site, but has to be sitemgr-link)" 2009-10-25 18:21:31 +01:00			`$GLOBALS['egw_info']['currentapp'] = 'sitemgr-link';`
new ajax_submit() function with submitts the whole form via ajax to a given callback 2009-04-29 16:15:19 +02:00			`}`
			`else`
			`{`
			`throw $e;`
			`}`
			`}`
"allowing to use GET parameter \"auth\" instead of (basic) Authentication header, as talked on devel list" 2009-08-18 09:55:59 +02:00			`//$headertime = microtime(true);`
Improved exception handling: - exceptions get now always logged to the error_log - in the webgui it's now configurable, if the message contains a stacktrace (incl. function arguments) - default no (security) - command line interfaces get detected and contain no html anymore - webdav and groupdav send the exceptions as basic auth realms to the client - webdav and groupdav login failures contain the reason as part of the basic auth realm 2008-10-26 13:13:01 +01:00
moved webdav handler in the root dir, as its now a general service and not only used by filemanager 2008-05-10 23:15:46 +02:00			`$webdav_server = new vfs_webdav_server();`
Improved exception handling: - exceptions get now always logged to the error_log - in the webgui it's now configurable, if the message contains a stacktrace (incl. function arguments) - default no (security) - command line interfaces get detected and contain no html anymore - webdav and groupdav send the exceptions as basic auth realms to the client - webdav and groupdav login failures contain the reason as part of the basic auth realm 2008-10-26 13:13:01 +01:00			`$webdav_server->ServeRequest();`
using a session for basic auth (not session aware) clients for WebDAV and GroupDAV. The "sessionid" get's constructed from the basic auth credentials and is not random (as the clients dont store them). --> speeds up the use of DAV --> stops DAV handlers to created numerious sessions 2009-04-04 10:38:56 +02:00			`//error_log(sprintf("WebDAV %s request took %5.3f s (header include took %5.3f s)",$_SERVER['REQUEST_METHOD'],microtime(true)-$starttime,$headertime-$starttime));`