* @copyright (c) 2007-9 by Ralf Becker * @version $Id$ */ /** * EGroupware: GroupDAV access: addressbook handler * * Propfind now uses a groupdav_propfind_iterator with a callback to query huge addressbooks in chunk, * without getting into problems with memory_limit. */ class addressbook_groupdav extends groupdav_handler { /** * bo class of the application * * @var addressbook_bo */ var $bo; var $filter_prop2cal = array( 'UID' => 'uid', //'NICKNAME', 'EMAIL' => 'email', 'FN' => 'n_fn', ); var $supportedFields = array( 'ADR;WORK' => array('','adr_one_street2','adr_one_street','adr_one_locality','adr_one_region', 'adr_one_postalcode','adr_one_countryname'), 'ADR;HOME' => array('','adr_two_street2','adr_two_street','adr_two_locality','adr_two_region', 'adr_two_postalcode','adr_two_countryname'), 'BDAY' => array('bday'), //'CLASS' => array('private'), //'CATEGORIES' => array('cat_id'), 'EMAIL;WORK' => array('email'), 'EMAIL;HOME' => array('email_home'), 'N' => array('n_family','n_given','n_middle', 'n_prefix','n_suffix'), 'FN' => array('n_fn'), 'NOTE' => array('note'), 'ORG' => array('org_name','org_unit','room'), 'TEL;CELL;WORK' => array('tel_cell'), 'TEL;CELL;HOME' => array('tel_cell_private'), 'TEL;CAR' => array('tel_car'), 'TEL;OTHER' => array('tel_other'), 'TEL;VOICE;WORK' => array('tel_work'), 'TEL;FAX;WORK' => array('tel_fax'), 'TEL;HOME;VOICE' => array('tel_home'), 'TEL;FAX;HOME' => array('tel_fax_home'), 'TEL;PAGER' => array('tel_pager'), 'TITLE' => array('title'), 'URL;WORK' => array('url'), 'URL;HOME' => array('url_home'), 'ROLE' => array('role'), 'NICKNAME' => array('label'), 'FBURL' => array('freebusy_uri'), 'PHOTO' => array('jpegphoto'), 'X-ASSISTANT' => array('assistent'), 'X-ASSISTANT-TEL' => array('tel_assistent'), 'UID' => array('uid'), ); /** * Charset for exporting data, as some clients ignore the headers specifying the charset * * @var string */ var $charset = 'utf-8'; /** * What attribute is used to construct the path, default id, can be uid too */ const PATH_ATTRIBUTE = 'id'; /** * Constructor * * @param string $app 'calendar', 'addressbook' or 'infolog' * @param int $debug=null debug-level to set * @param string $base_uri=null base url of handler * @param string $principalURL=null pricipal url of handler */ function __construct($app,$debug=null,$base_uri=null,$principalURL=null) { parent::__construct($app,$debug,$base_uri,$principalURL); $this->bo = new addressbook_bo(); } /** * Create the path for a contact * * @param array $contact * @return string */ static function get_path($contact) { return $contact[self::PATH_ATTRIBUTE].'.vcf'; } /** * Handle propfind in the addressbook folder * * @param string $path * @param array $options * @param array &$files * @param int $user account_id * @param string $id='' * @return mixed boolean true on success, false on failure or string with http status (eg. '404 Not Found') */ function propfind($path,$options,&$files,$user,$id='') { $filter = array(); // show addressbook of a single user? if ($user && $path != '/addressbook/') $filter['contact_owner'] = $user; // should we hide the accounts addressbook if ($GLOBALS['egw_info']['user']['preferences']['addressbook']['hide_accounts']) $filter['account_id'] = null; // process REPORT filters or multiget href's if (($id || $options['root']['name'] != 'propfind') && !$this->_report_filters($options,$filter,$id)) { return false; } if ($this->debug) error_log(__METHOD__."($path,".array2string($options).",,$user,$id) filter=".array2string($filter)); // check if we have to return the full contact data or just the etag's if (!($filter['address_data'] = $options['props'] == 'all' && $options['root']['ns'] == groupdav::CARDDAV) && is_array($options['props'])) { foreach($options['props'] as $prop) { if ($prop['name'] == 'address-data') { $filter['address_data'] = true; break; } } } // return iterator, calling ourself to return result in chunks $files['files'] = new groupdav_propfind_iterator($this,$path,$filter,$files['files']); return true; } /** * Callback for profind interator * * @param string $path * @param array $filter * @param array|boolean $start=false false=return all or array(start,num) * @return array with "files" array with values for keys path and props */ function &propfind_callback($path,array $filter,$start=false) { $starttime = microtime(true); if (($address_data = $filter['address_data'])) { $handler = self::_get_handler(); } unset($filter['address_data']); $files = array(); // we query etag and modified, as LDAP does not have the strong sql etag if (($contacts =& $this->bo->search(array(),array('id','uid','etag','modified'),'contact_id','','',False,'AND',$start,$filter))) { foreach($contacts as &$contact) { $props = array( HTTP_WebDAV_Server::mkprop('getetag',$this->get_etag($contact)), HTTP_WebDAV_Server::mkprop('getcontenttype', 'text/vcard'), // getlastmodified and getcontentlength are required by WebDAV and Cadaver eg. reports 404 Not found if not set HTTP_WebDAV_Server::mkprop('getlastmodified', $contact['modified']), ); if ($address_data) { $content = $handler->getVCard($contact['id'],$this->charset,false); $props[] = HTTP_WebDAV_Server::mkprop('getcontentlength',bytes($content)); $props[] = HTTP_WebDAV_Server::mkprop(groupdav::CARDDAV,'address-data',$content,true); } else { $props[] = HTTP_WebDAV_Server::mkprop('getcontentlength', ''); // expensive to calculate and no CalDAV client uses it } $files[] = array( 'path' => $path.self::get_path($contact), 'props' => $props, ); } } if ($this->debug) error_log(__METHOD__."($path,".array2string($filter).','.array2string($start).") took ".(microtime(true) - $starttime).' to return '.count($files).' items'); return $files; } /** * Process the filters from the CalDAV REPORT request * * @param array $options * @param array &$cal_filters * @param string $id * @return boolean true if filter could be processed, false for requesting not here supported VTODO items */ function _report_filters($options,&$filters,$id) { if ($options['filters']) { foreach($options['filters'] as $filter) { switch($filter['name']) { case 'prop-filter': if ($this->debug > 1) error_log(__METHOD__."($path,...) prop-filter='{$filter['attrs']['name']}'"); $prop_filter = $filter['attrs']['name']; break; case 'text-match': if ($this->debug > 1) error_log(__METHOD__."($path,...) text-match: $prop_filter='{$filter['data']}'"); if (!isset($this->filter_prop2cal[strtoupper($prop_filter)])) { if ($this->debug) error_log(__METHOD__."($path,".str_replace(array("\n",' '),'',print_r($options,true)).",,$user) unknown property '$prop_filter' --> ignored"); } else { switch($filter['attrs']['match-type']) { default: case 'equals': $filters[$this->filter_prop2cal[strtoupper($prop_filter)]] = $filter['data']; break; case 'substr': // ToDo: check RFC4790 $filters[] = $this->filter_prop2cal[strtoupper($prop_filter)].' LIKE '.$GLOBALS['egw']->db->quote($filter['data']); break; } } unset($prop_filter); break; case 'param-filter': if ($this->debug) error_log(__METHOD__."($path,...) param-filter='{$filter['attrs']['name']}' not (yet) implemented!"); break; default: if ($this->debug) error_log(__METHOD__."($path,".array2string($options).",,$user) unknown filter --> ignored"); break; } } } // multiget --> fetch the url's if ($options['root']['name'] == 'addressbook-multiget') { $ids = array(); foreach($options['other'] as $option) { if ($option['name'] == 'href') { $parts = explode('/',$option['data']); if (($id = array_pop($parts))) $ids[] = basename($id,'.vcf'); } } if ($ids) $filters[self::PATH_ATTRIBUTE] = $ids; if ($this->debug) error_log(__METHOD__."($path,,,$user) addressbook-multiget: ids=".implode(',',$ids)); } elseif ($id) { $filters[self::PATH_ATTRIBUTE] = basename($id,'.vcf'); } return true; } /** * Handle get request for an event * * @param array &$options * @param int $id * @return mixed boolean true on success, false on failure or string with http status (eg. '404 Not Found') */ function get(&$options,$id) { if (!is_array($contact = $this->_common_get_put_delete('GET',$options,$id))) { return $contact; } $handler = self::_get_handler(); $options['data'] = $handler->getVCard($contact['id'],$this->charset,false); // e.g. Evolution does not understand 'text/vcard' $options['mimetype'] = 'text/x-vcard; charset='.$this->charset; header('Content-Encoding: identity'); header('ETag: '.$this->get_etag($contact)); return true; } /** * Handle put request for an event * * @param array &$options * @param int $id * @param int $user=null account_id of owner, default null * @param string $prefix=null user prefix from path (eg. /ralf from /ralf/addressbook) * @return mixed boolean true on success, false on failure or string with http status (eg. '404 Not Found') */ function put(&$options,$id,$user=null,$prefix=null) { if ($this->debug) error_log(__METHOD__.'('.array2string($options).",$id,$user)"); $oldContact = $this->_common_get_put_delete('PUT',$options,$id); if (!is_null($oldContact) && !is_array($oldContact)) { return $oldContact; } $handler = self::_get_handler(); $vCard = htmlspecialchars_decode($options['content']); // Fix for Apple Addressbook $vCard = preg_replace('/item\d\.(ADR|TEL|EMAIL|URL)/', '\1', $vCard); $charset = null; if (!empty($options['content_type'])) { $content_type = explode(';', $options['content_type']); if (count($content_type) > 1) { array_shift($content_type); foreach ($content_type as $attribute) { trim($attribute); list($key, $value) = explode('=', $attribute); switch (strtolower($key)) { case 'charset': $charset = strtoupper(substr($value,1,-1)); } } } } if (is_array($oldContact)) { $contactId = $oldContact['id']; $retval = true; } else { // new entry? if (($foundContacts = $handler->search($vCard, null, false, $charset))) { if (($contactId = array_shift($foundContacts)) && ($oldContact = $this->bo->read($contactId))) { $retval = '301 Moved Permanently'; } else { // to be safe $contactId = -1; $retval = '201 Created'; } } else { // new entry $contactId = -1; $retval = '201 Created'; } } $contact = $handler->vcardtoegw($vCard, $charset); if (is_array($contact['cat_id'])) { $contact['cat_id'] = implode(',',$this->bo->find_or_add_categories($contact['cat_id'], $contactId)); } elseif ($contactId > 0) { $contact['cat_id'] = $oldContact['cat_id']; } if (is_array($oldContact)) { $contact['id'] = $oldContact['id']; // dont allow the client to overwrite certain values $contact['uid'] = $oldContact['uid']; $contact['owner'] = $oldContact['owner']; $contact['private'] = $oldContact['private']; } // only set owner, if user is explicitly specified in URL (check via prefix, NOT for /addressbook/ !) if ($prefix) { // check for modified owners, if user has an add right for the new addressbook and // delete rights for the old addressbook (_common_get_put_delete checks for PUT only EGW_ACL_EDIT) if ($oldContact && $user != $oldContact['owner'] && !($this->bo->grants[$user] & EGW_ACL_ADD) && (!$this->bo->grants[$oldContact['owner']] & EGW_ACL_DELETE)) { return '403 Forbidden'; } $contact['owner'] = $user; } if ($this->http_if_match) $contact['etag'] = self::etag2value($this->http_if_match); if (!($save_ok = $this->bo->save($contact))) { if ($this->debug) error_log(__METHOD__."(,$id) save(".array2string($contact).") failed, Ok=$save_ok"); if ($save_ok === 0) { return '412 Precondition Failed'; } return '403 Forbidden'; // happens when writing new entries in AB's without ADD rights } if (!isset($contact['etag'])) { $contact = $this->read($save_ok); } header('ETag: '.$this->get_etag($contact)); if ($retval !== true) { $path = preg_replace('|(.*)/[^/]*|', '\1/', $options['path']); header($h='Location: '.$this->base_uri.$path.self::get_path($contact)); if ($this->debug) error_log(__METHOD__."($method,,$id) header('$h'): $retval"); return $retval; } return true; } /** * Query ctag for addressbook * * @return string */ public function getctag($path,$user) { $filter = array(); // show addressbook of a single user? if ($user && $path != '/addressbook/') $filter['contact_owner'] = $user; // should we hide the accounts addressbook if ($GLOBALS['egw_info']['user']['preferences']['addressbook']['hide_accounts']) $filter['account_id'] = null; $result = $this->bo->search(array(),'MAX(contact_modified) AS contact_modified','','','',false,'AND',false,$filter); if (empty($result)) { $ctag = 0; } else { $ctag = $result[0]['modified']; } return 'EGw-'.$ctag.'-wGE'; } /** * Add the privileges of the current user * * @param array $props=array() regular props by the groupdav handler * @return array */ static function current_user_privilege_set(array $props=array()) { $props[] = HTTP_WebDAV_Server::mkprop(groupdav::DAV,'current-user-privilege-set', array(HTTP_WebDAV_Server::mkprop(groupdav::DAV,'privilege', array( HTTP_WebDAV_Server::mkprop(groupdav::DAV,'read',''), HTTP_WebDAV_Server::mkprop(groupdav::CALDAV,'read-free-busy',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'read-current-user-privilege-set',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'bind',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'unbind',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'schedule-post',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'schedule-post-vevent',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'schedule-respond',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'schedule-respond-vevent',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'schedule-deliver',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'schedule-deliver-vevent',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'write',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'write-properties',''), HTTP_WebDAV_Server::mkprop(groupdav::DAV,'write-content',''), )))); return $props; } /** * Add extra properties for addressbook collections * * Example for supported-report-set syntax from Apples Calendarserver: * * * * * * * * * * * * * @link http://www.mail-archive.com/calendarserver-users@lists.macosforge.org/msg01156.html * * @param array $props=array() regular props by the groupdav handler * @param string $displayname * @param string $base_uri=null base url of handler * @return array */ static function extra_properties(array $props=array(), $displayname, $base_uri=null) { // addressbook description $displayname = translation::convert(lang('Addressbook of') . ' ' . $displayname,translation::charset(),'utf-8'); $props[] = HTTP_WebDAV_Server::mkprop(groupdav::CARDDAV,'addressbook-description',$displayname); // supported reports (required property for CardDAV) $props[] = HTTP_WebDAV_Server::mkprop('supported-report-set',array( HTTP_WebDAV_Server::mkprop('supported-report',array( HTTP_WebDAV_Server::mkprop('report',array( HTTP_WebDAV_Server::mkprop(groupdav::CARDDAV,'addressbook-query',''))))), HTTP_WebDAV_Server::mkprop('supported-report',array( HTTP_WebDAV_Server::mkprop('report',array( HTTP_WebDAV_Server::mkprop(groupdav::CARDDAV,'addressbook-multiget',''))))), )); //$props = self::current_user_privilege_set($props); return $props; } /** * Get the handler and set the supported fields * * @return addressbook_vcal */ private function _get_handler() { if ($this->agent != 'cfnetwork' && $this->agent != 'dataaccess') { // Apple Addressbook don't support CLASS $this->supportedFields['CLASS'] = array('private'); $this->supportedFields['CATEGORIES'] = array('cat_id'); } $handler = new addressbook_vcal('addressbook','text/vcard'); $handler->setSupportedFields('GroupDAV',$this->agent, $this->supportedFields); return $handler; } /** * Handle delete request for an event * * @param array &$options * @param int $id * @return mixed boolean true on success, false on failure or string with http status (eg. '404 Not Found') */ function delete(&$options,$id) { if (!is_array($contact = $this->_common_get_put_delete('DELETE',$options,$id))) { return $contact; } if (($Ok = $this->bo->delete($contact['id'],self::etag2value($this->http_if_match))) === 0) { return '412 Precondition Failed'; } //return $ok; } /** * Read a contact * * @param string/id $id * @return array/boolean array with entry, false if no read rights, null if $id does not exist */ function read($id) { return $this->bo->read(self::PATH_ATTRIBUTE == 'id' ? $id : array(self::PATH_ATTRIBUTE => $id)); } /** * Check if user has the neccessary rights on a contact * * @param int $acl EGW_ACL_READ, EGW_ACL_EDIT or EGW_ACL_DELETE * @param array/int $contact contact-array or id * @return boolean null if entry does not exist, false if no access, true if access permitted */ function check_access($acl,$contact) { return $this->bo->check_perms($acl,$contact); } }