* @copyright (c) 2007/8 by Ralf Becker * @version $Id$ */ /** * check if the given user has access * * Create a session or if the user has no account return authenticate header and 401 Unauthorized * * @param array &$account * @return int session-id */ function check_access(&$account) { $account = array( 'login' => $_SERVER['PHP_AUTH_USER'], 'passwd' => $_SERVER['PHP_AUTH_PW'], 'passwd_type' => 'text', ); // no session for clients known to NOT use it (no cookie support) $agent = strtolower($_SERVER['HTTP_USER_AGENT']); foreach(array( 'davkit', // Apple iCal 'bionicmessage.net', 'ZideOne', 'Lightning', ) as $test) { if (($no_session = strpos($agent,$test) !== false)) break; } //error_log("GroupDAV PHP_AUTH_USER={$_SERVER['PHP_AUTH_USER']}, HTTP_USER_AGENT={$_SERVER['HTTP_USER_AGENT']} --> no_session=".(int)$no_session); if (!($sessionid = $GLOBALS['egw']->session->create($account,'','',$no_session))) { header('WWW-Authenticate: Basic realm="'.groupdav::REALM.'"'); header('HTTP/1.1 401 Unauthorized'); header('X-WebDAV-Status: 401 Unauthorized', true); exit; } return $sessionid; } $GLOBALS['egw_info']['flags'] = array( 'noheader' => True, 'currentapp' => 'groupdav', 'autocreate_session_callback' => 'check_access', ); // if you move this file somewhere else, you need to adapt the path to the header! include(dirname(__FILE__).'/header.inc.php'); $groupdav = new groupdav(); $groupdav->ServeRequest();