mirror of
https://git.code.sf.net/p/seeddms/code
synced 2025-10-31 13:18:06 +00:00
1012 lines
27 KiB
PHP
1012 lines
27 KiB
PHP
<?php
|
|
|
|
require_once "HTTP/WebDAV/Server.php";
|
|
if(!empty($settings->_coreDir))
|
|
require_once($settings->_coreDir.'/Core.php');
|
|
else
|
|
require_once('LetoDMS/Core.php');
|
|
|
|
/**
|
|
* LetoDMS access using WebDAV
|
|
*
|
|
* @access public
|
|
* @author Uwe Steinmann <steinm@php.net>
|
|
* @version @package-version@
|
|
*/
|
|
class HTTP_WebDAV_Server_LetoDMS extends HTTP_WebDAV_Server
|
|
{
|
|
/**
|
|
* A reference of the DMS itself
|
|
*
|
|
* This is set by ServeRequest
|
|
*
|
|
* @access private
|
|
* @var object
|
|
*/
|
|
var $dms = null;
|
|
|
|
/**
|
|
* A reference to a logger
|
|
*
|
|
* This is set by ServeRequest
|
|
*
|
|
* @access private
|
|
* @var object
|
|
*/
|
|
var $logger = null;
|
|
|
|
/**
|
|
* Currently logged in user
|
|
*
|
|
* @access private
|
|
* @var string
|
|
*/
|
|
var $user = "";
|
|
|
|
/**
|
|
* Serve a webdav request
|
|
*
|
|
* @access public
|
|
* @param object $dms reference to DMS
|
|
*/
|
|
function ServeRequest($dms = null, $logger = null) /* {{{ */
|
|
{
|
|
// special treatment for litmus compliance test
|
|
// reply on its identifier header
|
|
// not needed for the test itself but eases debugging
|
|
foreach (apache_request_headers() as $key => $value) {
|
|
if (stristr($key, "litmus")) {
|
|
error_log("Litmus test $value");
|
|
header("X-Litmus-reply: ".$value);
|
|
}
|
|
}
|
|
|
|
// set root directory, defaults to webserver document root if not set
|
|
if ($dms) {
|
|
$this->dms = $dms;
|
|
} else {
|
|
return false;
|
|
}
|
|
|
|
// set logger
|
|
$this->logger = $logger;
|
|
|
|
// establish connection to property/locking db
|
|
/*
|
|
mysql_connect($this->db_host, $this->db_user, $this->db_passwd) or die(mysql_error());
|
|
mysql_select_db($this->db_name) or die(mysql_error());
|
|
*/
|
|
// TODO throw on connection problems
|
|
|
|
// let the base class do all the work
|
|
parent::ServeRequest();
|
|
} /* }}} */
|
|
|
|
/**
|
|
* Log array of options as passed to most functions
|
|
*
|
|
* @access private
|
|
* @param string webdav methode that was called
|
|
* @param array options
|
|
*/
|
|
function log_options($methode, $options) { /* {{{ */
|
|
if($this->logger) {
|
|
$this->logger->log($methode.': '.$options['path'], PEAR_LOG_INFO);
|
|
foreach($options as $key=>$option) {
|
|
if(is_array($option)) {
|
|
$this->logger->log($methode.': '.$key.'='.var_export($option, true), PEAR_LOG_DEBUG);
|
|
} else {
|
|
$this->logger->log($methode.': '.$key.'='.$option, PEAR_LOG_DEBUG);
|
|
}
|
|
}
|
|
}
|
|
} /* }}} */
|
|
|
|
/**
|
|
* No authentication is needed here
|
|
*
|
|
* @access private
|
|
* @param string HTTP Authentication type (Basic, Digest, ...)
|
|
* @param string Username
|
|
* @param string Password
|
|
* @return bool true on successful authentication
|
|
*/
|
|
function check_auth($type, $user, $pass) /* {{{ */
|
|
{
|
|
if($this->logger)
|
|
$this->logger->log('check_auth: type='.$type.', user='.$user.'', PEAR_LOG_INFO);
|
|
$userobj = $this->dms->getUserByLogin($user);
|
|
if(!$userobj)
|
|
return false;
|
|
if(md5($pass) != $userobj->getPwd())
|
|
return false;
|
|
|
|
$this->user = $userobj;
|
|
|
|
return true;
|
|
} /* }}} */
|
|
|
|
|
|
/**
|
|
* Get the object id from its path
|
|
*
|
|
* @access private
|
|
* @param string path
|
|
* @return bool/object object with given path or false on error
|
|
*/
|
|
function reverseLookup($path) /* {{{ */
|
|
{
|
|
$path = rawurldecode($path);
|
|
if($this->logger)
|
|
$this->logger->log('reverseLookup: path='.$path.'', PEAR_LOG_DEBUG);
|
|
|
|
$root = $this->dms->getRootFolder();
|
|
if($path[0] == '/') {
|
|
$path = substr($path, 1);
|
|
}
|
|
$patharr = explode('/', $path);
|
|
/* The last entry is always the document, though if the path ends
|
|
* in '/', the document name will be empty.
|
|
*/
|
|
$docname = array_pop($patharr);
|
|
$parentfolder = $root;
|
|
|
|
if(!$patharr) {
|
|
if(!$docname) {
|
|
if($this->logger)
|
|
$this->logger->log('reverseLookup: found folder '.$root->getName().' ('.$root->getID().')', PEAR_LOG_DEBUG);
|
|
return $root;
|
|
} else {
|
|
if($document = $this->dms->getDocumentByName($docname, $root)) {
|
|
if($this->logger)
|
|
$this->logger->log('reverseLookup: found document '.$document->getName().' ('.$document->getID().')', PEAR_LOG_DEBUG);
|
|
return $document;
|
|
} else {
|
|
return false;
|
|
}
|
|
}
|
|
}
|
|
|
|
foreach($patharr as $pathseg) {
|
|
if($folder = $this->dms->getFolderByName($pathseg, $parentfolder)) {
|
|
$parentfolder = $folder;
|
|
}
|
|
}
|
|
if($folder) {
|
|
if($docname) {
|
|
if($document = $this->dms->getDocumentByName($docname, $folder)) {
|
|
if($this->logger)
|
|
$this->logger->log('reverseLookup: found document '.$document->getName().' ('.$document->getID().')', PEAR_LOG_DEBUG);
|
|
return $document;
|
|
} else {
|
|
if($this->logger)
|
|
$this->logger->log('reverseLookup: nothing found', PEAR_LOG_DEBUG);
|
|
return false;
|
|
}
|
|
} else {
|
|
if($this->logger)
|
|
$this->logger->log('reverseLookup: found folder '.$folder->getName().' ('.$folder->getID().')', PEAR_LOG_DEBUG);
|
|
return $folder;
|
|
}
|
|
} else {
|
|
if($this->logger)
|
|
$this->logger->log('reverseLookup: nothing found', PEAR_LOG_DEBUG);
|
|
return false;
|
|
}
|
|
if($this->logger)
|
|
$this->logger->log('reverseLookup: nothing found', PEAR_LOG_DEBUG);
|
|
return false;
|
|
} /* }}} */
|
|
|
|
|
|
/**
|
|
* PROPFIND method handler
|
|
*
|
|
* @param array general parameter passing array
|
|
* @param array return array for file properties
|
|
* @return bool true on success
|
|
*/
|
|
function PROPFIND(&$options, &$files) /* {{{ */
|
|
{
|
|
$this->log_options('PROFIND', $options);
|
|
|
|
// get folder or document from path
|
|
$obj = $this->reverseLookup($options["path"]);
|
|
|
|
// sanity check
|
|
if (!$obj) {
|
|
$obj = $this->reverseLookup($options["path"].'/');
|
|
if(!$obj)
|
|
return false;
|
|
}
|
|
|
|
// prepare property array
|
|
$files["files"] = array();
|
|
|
|
// store information for the requested path itself
|
|
$files["files"][] = $this->fileinfo($obj);
|
|
|
|
// information for contained resources requested?
|
|
if (get_class($obj) == 'LetoDMS_Core_Folder' && !empty($options["depth"])) {
|
|
|
|
$subfolders = $obj->getSubFolders();
|
|
$subfolders = LetoDMS_Core_DMS::filterAccess($subfolders, $this->user, M_READ);
|
|
if ($subfolders) {
|
|
// ok, now get all its contents
|
|
foreach($subfolders as $subfolder) {
|
|
$files["files"][] = $this->fileinfo($subfolder);
|
|
}
|
|
// TODO recursion needed if "Depth: infinite"
|
|
}
|
|
$documents = $obj->getDocuments();
|
|
$documents = LetoDMS_Core_DMS::filterAccess($documents, $this->user, M_READ);
|
|
if ($documents) {
|
|
// ok, now get all its contents
|
|
foreach($documents as $document) {
|
|
$files["files"][] = $this->fileinfo($document);
|
|
}
|
|
}
|
|
}
|
|
|
|
// ok, all done
|
|
return true;
|
|
} /* }}} */
|
|
|
|
/**
|
|
* Get properties for a single file/resource
|
|
*
|
|
* @param string resource path
|
|
* @return array resource properties
|
|
*/
|
|
function fileinfo($obj) /* {{{ */
|
|
{
|
|
// create result array
|
|
$info = array();
|
|
$info["props"] = array();
|
|
|
|
// modification time
|
|
$info["props"][] = $this->mkprop("getlastmodified", time());
|
|
|
|
// type and size (caller already made sure that path exists)
|
|
if (get_class($obj) == 'LetoDMS_Core_Folder') {
|
|
/* folders do not have a modification time */
|
|
$info["props"][] = $this->mkprop("creationdate", time());
|
|
|
|
// directory (WebDAV collection)
|
|
$patharr = $obj->getPath();
|
|
array_shift($patharr);
|
|
$path = '';
|
|
foreach($patharr as $pathseg)
|
|
// $path .= '/'.rawurlencode($pathseg->getName());
|
|
$path .= '/'.$pathseg->getName();
|
|
if(!$path) {
|
|
$path = '/';
|
|
$info["props"][] = $this->mkprop("isroot", "true");
|
|
}
|
|
// $info["path"] = htmlspecialchars($path);
|
|
$info["path"] = $path;
|
|
$info["props"][] = $this->mkprop("displayname", $obj->getName());
|
|
$info["props"][] = $this->mkprop("resourcetype", "collection");
|
|
$info["props"][] = $this->mkprop("getcontenttype", "httpd/unix-directory");
|
|
} else {
|
|
$info["props"][] = $this->mkprop("creationdate", $obj->getDate());
|
|
|
|
// plain file (WebDAV resource)
|
|
$content = $obj->getLatestContent();
|
|
$fspath = $content->getPath();
|
|
$patharr = $obj->getFolder()->getPath();
|
|
array_shift($patharr);
|
|
$path = '/';
|
|
foreach($patharr as $pathseg)
|
|
// $path .= rawurlencode($pathseg->getName()).'/';
|
|
$path .= $pathseg->getName().'/';
|
|
// $info["path"] = htmlspecialchars($path.rawurlencode($obj->getName()));
|
|
$info["path"] = $path.$obj->getName();
|
|
$info["props"][] = $this->mkprop("displayname", $obj->getName());
|
|
|
|
$info["props"][] = $this->mkprop("resourcetype", "");
|
|
if (1 /*is_readable($fspath)*/) {
|
|
$info["props"][] = $this->mkprop("getcontenttype", $content->getMimeType());
|
|
} else {
|
|
$info["props"][] = $this->mkprop("getcontenttype", "application/x-non-readable");
|
|
}
|
|
$info["props"][] = $this->mkprop("getcontentlength", filesize($this->dms->contentDir.'/'.$fspath));
|
|
if($keywords = $obj->getKeywords())
|
|
$info["props"][] = $this->mkprop("LetoDMS:", "keywords", $keywords);
|
|
$info["props"][] = $this->mkprop("LetoDMS:", "version", $content->getVersion());
|
|
$status = $content->getStatus();
|
|
$info["props"][] = $this->mkprop("LetoDMS:", "status", $status['status']);
|
|
$info["props"][] = $this->mkprop("LetoDMS:", "status-comment", $status['comment']);
|
|
$info["props"][] = $this->mkprop("LetoDMS:", "status-date", $status['date']);
|
|
if($obj->getExpires())
|
|
$info["props"][] = $this->mkprop("LetoDMS:", "expires", date('c', $obj->getExpires()));
|
|
}
|
|
if($comment = $obj->getComment())
|
|
$info["props"][] = $this->mkprop("LetoDMS:", "comment", $comment);
|
|
$info["props"][] = $this->mkprop("LetoDMS:", "owner", $obj->getOwner()->getLogin());
|
|
|
|
// get additional properties from database
|
|
/*
|
|
$query = "SELECT ns, name, value
|
|
FROM {$this->db_prefix}properties
|
|
WHERE path = '$path'";
|
|
$res = mysql_query($query);
|
|
while ($row = mysql_fetch_assoc($res)) {
|
|
$info["props"][] = $this->mkprop($row["ns"], $row["name"], $row["value"]);
|
|
}
|
|
mysql_free_result($res);
|
|
*/
|
|
return $info;
|
|
} /* }}} */
|
|
|
|
/**
|
|
* GET method handler
|
|
*
|
|
* @param array parameter passing array
|
|
* @return bool true on success
|
|
*/
|
|
function GET(&$options) /* {{{ */
|
|
{
|
|
$this->log_options('GET', $options);
|
|
|
|
// get folder or document from path
|
|
$obj = $this->reverseLookup($options["path"]);
|
|
|
|
// sanity check
|
|
if (!$obj) return false;
|
|
|
|
// is this a collection?
|
|
if (get_class($obj) == 'LetoDMS_Core_Folder') {
|
|
return $this->GetDir($obj, $options);
|
|
}
|
|
|
|
$content = $obj->getLatestContent();
|
|
|
|
// detect resource type
|
|
$options['mimetype'] = $content->getMimeType();
|
|
|
|
// detect modification time
|
|
// see rfc2518, section 13.7
|
|
// some clients seem to treat this as a reverse rule
|
|
// requiering a Last-Modified header if the getlastmodified header was set
|
|
$options['mtime'] = $content->getDate();
|
|
|
|
$fspath = $this->dms->contentDir.'/'.$content->getPath();
|
|
// detect resource size
|
|
$options['size'] = filesize($fspath);
|
|
|
|
// no need to check result here, it is handled by the base class
|
|
$options['stream'] = fopen($fspath, "r");
|
|
|
|
return true;
|
|
} /* }}} */
|
|
|
|
/**
|
|
* GET method handler for directories
|
|
*
|
|
* This is a very simple mod_index lookalike.
|
|
* See RFC 2518, Section 8.4 on GET/HEAD for collections
|
|
*
|
|
* @param object folder object
|
|
* @return void function has to handle HTTP response itself
|
|
*/
|
|
function GetDir($folder, &$options) /* {{{ */
|
|
{
|
|
// fixed width directory column format
|
|
$format = "%15s %-19s %-s\n";
|
|
|
|
$subfolders = $folder->getSubFolders();
|
|
$subfolders = LetoDMS_Core_DMS::filterAccess($subfolders, $this->user, M_READ);
|
|
$documents = $folder->getDocuments();
|
|
$docs = LetoDMS_Core_DMS::filterAccess($documents, $this->user, M_READ);
|
|
if(!$this->user->isAdmin()) {
|
|
$documents = array();
|
|
foreach($docs as $document) {
|
|
$lc = $document->getLatestContent();
|
|
$status = $lc->getStatus();
|
|
if($status['status'] == S_RELEASED) {
|
|
$documents[] = $document;
|
|
}
|
|
}
|
|
} else {
|
|
$documents = $docs;
|
|
}
|
|
|
|
$objs = array_merge($subfolders, $documents);
|
|
|
|
echo "<html><head><meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" /><title>Index of ".htmlspecialchars($options['path'])."</title></head>\n";
|
|
|
|
echo "<h1>Index of ".htmlspecialchars($options['path'])."</h1>\n";
|
|
|
|
echo "<pre>";
|
|
printf($format, "Size", "Last modified", "Filename");
|
|
echo "<hr>";
|
|
|
|
$parents = $folder->getPath();
|
|
$_fullpath = '/';
|
|
if(count($parents) > 1) {
|
|
$p = array_slice($parents, -2, 1);
|
|
$p = $p[0];
|
|
array_shift($parents);
|
|
$last = array_pop($parents);
|
|
foreach($parents as $parent)
|
|
$_fullpath .= $parent->getName().'/';
|
|
printf($format, 0, strftime("%Y-%m-%d %H:%M:%S", $p->getDate()), "<a href=\"".$_SERVER['SCRIPT_NAME'].htmlspecialchars($_fullpath)."\">..</a>");
|
|
$_fullpath .= $last->getName().'/';
|
|
}
|
|
foreach ($objs as $obj) {
|
|
$filename = $obj->getName();
|
|
$fullpath = $_fullpath.$filename;
|
|
if(get_class($obj) == 'LetoDMS_Core_Folder') {
|
|
$fullpath .= '/';
|
|
$filename .= '/';
|
|
$filesize = 0;
|
|
$mtime = $obj->getDate();
|
|
} else {
|
|
$content = $obj->getLatestContent();
|
|
|
|
$mimetype = $content->getMimeType();
|
|
|
|
$mtime = $content->getDate();
|
|
|
|
$fspath = $this->dms->contentDir.'/'.$content->getPath();
|
|
$filesize = filesize($fspath);
|
|
}
|
|
// $name = htmlspecialchars($filename);
|
|
$name = $filename;
|
|
printf($format,
|
|
number_format($filesize),
|
|
strftime("%Y-%m-%d %H:%M:%S", $mtime),
|
|
"<a href=\"".$_SERVER['SCRIPT_NAME'].htmlspecialchars($fullpath)."\">".htmlspecialchars($name, ENT_QUOTES)."</a>");
|
|
}
|
|
|
|
echo "</pre>";
|
|
|
|
echo "</html>\n";
|
|
|
|
exit;
|
|
} /* }}} */
|
|
|
|
/**
|
|
* PUT method handler
|
|
*
|
|
* @param array parameter passing array
|
|
* @return bool true on success
|
|
*/
|
|
function PUT(&$options) /* {{{ */
|
|
{
|
|
$this->log_options('PUT', $options);
|
|
|
|
$path = $options["path"];
|
|
$parent = dirname($path);
|
|
$name = basename($path);
|
|
|
|
// get folder from path
|
|
if($parent == '/')
|
|
$parent = '';
|
|
$folder = $this->reverseLookup($parent.'/');
|
|
|
|
if (!$folder || get_class($folder) != "LetoDMS_Core_Folder") {
|
|
return "409 Conflict";
|
|
}
|
|
|
|
/* Check if user is logged in */
|
|
if(!$this->user) {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
$tmpFile = tempnam('/tmp', 'webdav');
|
|
$fp = fopen($tmpFile, 'w');
|
|
while(!feof($options["stream"])) {
|
|
$data = fread($options["stream"], 1000);
|
|
fwrite($fp, $data);
|
|
}
|
|
fclose($fp);
|
|
|
|
$finfo = new finfo(FILEINFO_MIME);
|
|
$mimetype = $finfo->file($tmpFile);
|
|
|
|
$tmp = explode(';', $mimetype);
|
|
$mimetype = $tmp[0];
|
|
switch($mimetype) {
|
|
case 'application/pdf';
|
|
$fileType = ".pdf";
|
|
break;
|
|
default:
|
|
$lastDotIndex = strrpos($name, ".");
|
|
if($lastDotIndex === false) $fileType = ".";
|
|
else $fileType = substr($name, $lastDotIndex);
|
|
}
|
|
if($document = $this->dms->getDocumentByName($name, $folder)) {
|
|
if ($document->getAccessMode($this->user) < M_READWRITE) {
|
|
unlink($tmpFile);
|
|
return "403 Forbidden";
|
|
} elseif(!$document->addContent('', $this->user, $tmpFile, $name, $fileType, $mimetype, array(), array(), 0)) {
|
|
unlink($tmpFile);
|
|
return "409 Conflict";
|
|
}
|
|
|
|
} else {
|
|
if ($folder->getAccessMode($this->user) < M_READWRITE) {
|
|
unlink($tmpFile);
|
|
return "403 Forbidden";
|
|
} elseif(!$res = $folder->addDocument($name, '', 0, $this->user, '', array(), $tmpFile, $name, $fileType, $mimetype, 0, array(), array(), 0, "")) {
|
|
unlink($tmpFile);
|
|
return "409 Conflict";
|
|
}
|
|
}
|
|
|
|
unlink($tmpFile);
|
|
return "201 Created";
|
|
} /* }}} */
|
|
|
|
|
|
/**
|
|
* MKCOL method handler
|
|
*
|
|
* @param array general parameter passing array
|
|
* @return bool true on success
|
|
*/
|
|
function MKCOL($options) /* {{{ */
|
|
{
|
|
$this->log_options('MKCOL', $options);
|
|
|
|
$path = $options["path"];
|
|
$parent = dirname($path);
|
|
$name = basename($path);
|
|
|
|
// get folder from path
|
|
if($parent == '/')
|
|
$parent = '';
|
|
$folder = $this->reverseLookup($parent.'/');
|
|
|
|
/* Check if parent folder exists at all */
|
|
if (!$folder) {
|
|
return "409 Conflict";
|
|
}
|
|
|
|
/* Check if parent of new folder is a folder */
|
|
if (get_class($folder) != 'LetoDMS_Core_Folder') {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
/* Check if parent folder already has folder with the same name */
|
|
if ($this->dms->getFolderByName($name, $folder) ) {
|
|
return "405 Method not allowed";
|
|
}
|
|
|
|
if (!empty($this->_SERVER["CONTENT_LENGTH"])) { // no body parsing yet
|
|
return "415 Unsupported media type";
|
|
}
|
|
|
|
/* Check if user is logged in */
|
|
if(!$this->user) {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
if ($folder->getAccessMode($this->user) < M_READWRITE) {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
if (!$folder->addSubFolder($name, '', $this->user, 0)) {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
return ("201 Created");
|
|
} /* }}} */
|
|
|
|
|
|
/**
|
|
* DELETE method handler
|
|
*
|
|
* @param array general parameter passing array
|
|
* @return bool true on success
|
|
*/
|
|
function DELETE($options) /* {{{ */
|
|
{
|
|
$this->log_options('DELETE', $options);
|
|
|
|
// get folder or document from path
|
|
$obj = $this->reverseLookup($options["path"]);
|
|
/* Make a second try if it is a directory with the leading '/' */
|
|
if(!$obj)
|
|
$obj = $this->reverseLookup($options["path"].'/');
|
|
|
|
// sanity check
|
|
if (!$obj) return "404 Not found";
|
|
|
|
// check for access rights
|
|
if($obj->getAccessMode($this->user) < M_ALL) {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
if (get_class($obj) == 'LetoDMS_Core_Folder') {
|
|
if($obj->hasDocuments() || $obj->hasSubFolders()) {
|
|
return "409 Conflict";
|
|
}
|
|
if(!$obj->remove()) {
|
|
return "409 Conflict";
|
|
}
|
|
} else {
|
|
// check if user is admin
|
|
// only admins may delete documents
|
|
if(!$this->user->isAdmin()) {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
if(!$obj->remove()) {
|
|
return "409 Conflict";
|
|
}
|
|
}
|
|
|
|
return "204 No Content";
|
|
} /* }}} */
|
|
|
|
|
|
/**
|
|
* MOVE method handler
|
|
*
|
|
* @param array general parameter passing array
|
|
* @return bool true on success
|
|
*/
|
|
function MOVE($options) /* {{{ */
|
|
{
|
|
$this->log_options('MOVE', $options);
|
|
|
|
// no copying to different WebDAV Servers yet
|
|
if (isset($options["dest_url"])) {
|
|
return "502 bad gateway";
|
|
}
|
|
|
|
// get folder or document to move
|
|
$objsource = $this->reverseLookup($options["path"]);
|
|
/* Make a second try if it is directory with the leading '/' */
|
|
if(!$objsource)
|
|
$objsource = $this->reverseLookup($options["path"].'/');
|
|
if (!$objsource)
|
|
return "404 Not found";
|
|
|
|
// get dest folder or document
|
|
$objdest = $this->reverseLookup($options["dest"]);
|
|
|
|
$newdocname = '';
|
|
if(!$objdest) {
|
|
/* check if at least the dest directory exists */
|
|
$dirname = dirname($options['dest']);
|
|
if($dirname != '/')
|
|
$dirname .= '/';
|
|
$newdocname = basename($options['dest']);
|
|
$objdest = $this->reverseLookup($dirname);
|
|
if(!$objdest)
|
|
return "412 precondition failed";
|
|
}
|
|
|
|
/* Moving a document requires write access on the source and
|
|
* destination object
|
|
*/
|
|
if (($objsource->getAccessMode($this->user) < M_READWRITE) || ($objdest->getAccessMode($this->user) < M_READWRITE)) {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
if(get_class($objdest) == 'LetoDMS_Core_Document') {
|
|
/* If destination object is a document it must be overwritten */
|
|
if (!$options["overwrite"]) {
|
|
return "412 precondition failed";
|
|
}
|
|
if(get_class($objsource) == 'LetoDMS_Core_Folder') {
|
|
return "400 Bad request";
|
|
}
|
|
|
|
/* get the latest content of the source object */
|
|
$content = $objsource->getLatestContent();
|
|
$fspath = $this->dms->contentDir.'/'.$content->getPath();
|
|
|
|
/* save the content as a new version in the destination document */
|
|
if(!$objdest->addContent('', $this->user, $fspath, $content->getOriginalFileName(), $content->getFileType(), $content->getMimeType, array(), array(), 0)) {
|
|
unlink($tmpFile);
|
|
return "409 Conflict";
|
|
}
|
|
|
|
/* change the name of the destination object */
|
|
$objdest->setName($objsource->getName());
|
|
|
|
/* delete the source object */
|
|
$objsource->remove();
|
|
|
|
return "204 No Content";
|
|
} elseif(get_class($objdest) == 'LetoDMS_Core_Folder') {
|
|
/* Set the new Folder of the source object */
|
|
if(get_class($objsource) == 'LetoDMS_Core_Document')
|
|
$objsource->setFolder($objdest);
|
|
elseif(get_class($objsource) == 'LetoDMS_Core_Folder')
|
|
$objsource->setParent($objdest);
|
|
else
|
|
return "500 Internal server error";
|
|
if($newdocname)
|
|
$objsource->setName($newdocname);
|
|
return "204 No Content";
|
|
}
|
|
} /* }}} */
|
|
|
|
/**
|
|
* COPY method handler
|
|
*
|
|
* @param array general parameter passing array
|
|
* @return bool true on success
|
|
*/
|
|
function COPY($options, $del=false) /* {{{ */
|
|
{
|
|
if(!$del)
|
|
$this->log_options('COPY', $options);
|
|
|
|
// TODO Property updates still broken (Litmus should detect this?)
|
|
|
|
if (!empty($this->_SERVER["CONTENT_LENGTH"])) { // no body parsing yet
|
|
return "415 Unsupported media type";
|
|
}
|
|
|
|
// no copying to different WebDAV Servers yet
|
|
if (isset($options["dest_url"])) {
|
|
return "502 bad gateway";
|
|
}
|
|
|
|
// get folder or document to move
|
|
$objsource = $this->reverseLookup($options["path"]);
|
|
/* Make a second try if it is directory with the leading '/' */
|
|
if(!$objsource)
|
|
$objsource = $this->reverseLookup($options["path"].'/');
|
|
if (!$objsource)
|
|
return "404 Not found";
|
|
|
|
if (get_class($objsource) == 'LetoDMS_Core_Folder' && ($options["depth"] != "infinity")) {
|
|
// RFC 2518 Section 9.2, last paragraph
|
|
return "400 Bad request";
|
|
}
|
|
|
|
// get dest folder or document
|
|
$objdest = $this->reverseLookup($options["dest"]);
|
|
|
|
$newdocname = '';
|
|
if(!$objdest) {
|
|
/* check if at least the dest directory exists */
|
|
$dirname = dirname($options['dest']);
|
|
if($dirname != '/')
|
|
$dirname .= '/';
|
|
$newdocname = basename($options['dest']);
|
|
$objdest = $this->reverseLookup($dirname);
|
|
if(!$objdest)
|
|
return "412 precondition failed";
|
|
}
|
|
|
|
/* Copying a document requires read access on the source and write
|
|
* access on the destination object
|
|
*/
|
|
if (($objsource->getAccessMode($this->user) < M_READ) || ($objdest->getAccessMode($this->user) < M_READWRITE)) {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
/* If destination object is a document it must be overwritten */
|
|
if(get_class($objdest) == 'LetoDMS_Core_Document') {
|
|
if (!$options["overwrite"]) {
|
|
return "412 precondition failed";
|
|
}
|
|
/* Copying a folder into a document makes no sense */
|
|
if(get_class($objsource) == 'LetoDMS_Core_Folder') {
|
|
return "400 Bad request";
|
|
}
|
|
|
|
/* get the latest content of the source object */
|
|
$content = $objsource->getLatestContent();
|
|
$fspath = $this->dms->contentDir.'/'.$content->getPath();
|
|
|
|
/* save the content as a new version in the destination document */
|
|
if(!$objdest->addContent('', $this->user, $fspath, $content->getOriginalFileName(), $content->getFileType(), $content->getMimeType, array(), array(), 0)) {
|
|
unlink($tmpFile);
|
|
return "409 Conflict";
|
|
}
|
|
|
|
$objdest->setName($objsource->getName());
|
|
|
|
return "204 No Content";
|
|
} elseif(get_class($objdest) == 'LetoDMS_Core_Folder') {
|
|
if($this->logger)
|
|
$this->logger->log('COPY: copy \''.$objdest->getName().'\' to folder '.$objdest->getName().'', PEAR_LOG_INFO);
|
|
|
|
/* Currently no support for copying folders */
|
|
if(get_class($objsource) == 'LetoDMS_Core_Folder') {
|
|
if($this->logger)
|
|
$this->logger->log('COPY: source is a folder '.$objsource->getName().'', PEAR_LOG_INFO);
|
|
|
|
return "400 Bad request";
|
|
}
|
|
|
|
if(!$newdocname)
|
|
$newdocname = $objsource->getName();
|
|
|
|
/* get the latest content of the source object */
|
|
$content = $objsource->getLatestContent();
|
|
$fspath = $this->dms->contentDir.'/'.$content->getPath();
|
|
|
|
if(!$newdoc = $objdest->addDocument($newdocname, '', 0, $this->user, '', array(), $fspath, $content->getOriginalFileName(), $content->getFileType(), $content->getMimeType(), 0, array(), array(), 0, "")) {
|
|
if($this->logger)
|
|
$this->logger->log('COPY: error copying object', PEAR_LOG_INFO);
|
|
return "409 Conflict";
|
|
}
|
|
return "201 Created";
|
|
}
|
|
} /* }}} */
|
|
|
|
/**
|
|
* PROPPATCH method handler
|
|
*
|
|
* @param array general parameter passing array
|
|
* @return bool true on success
|
|
*/
|
|
function PROPPATCH(&$options) /* {{{ */
|
|
{
|
|
$this->log_options('PROPPATCH', $options);
|
|
|
|
// get folder or document from path
|
|
$obj = $this->reverseLookup($options["path"]);
|
|
|
|
// sanity check
|
|
if (!$obj) {
|
|
$obj = $this->reverseLookup($options["path"].'/');
|
|
if(!$obj)
|
|
return false;
|
|
}
|
|
|
|
if ($obj->getAccessMode($this->user) < M_READWRITE) {
|
|
return false;
|
|
}
|
|
|
|
foreach ($options["props"] as $key => $prop) {
|
|
if ($prop["ns"] == "DAV:") {
|
|
$options["props"][$key]['status'] = "403 Forbidden";
|
|
} else {
|
|
$this->logger->log('PROPPATCH: set '.$prop["ns"].''.$prop["val"].' to '.$prop["val"], PEAR_LOG_INFO);
|
|
if($prop["ns"] == "LetoDMS:") {
|
|
if (isset($prop["val"]))
|
|
$val = $prop["val"];
|
|
else
|
|
$val = '';
|
|
switch($prop["name"]) {
|
|
case "comment":
|
|
$obj->setComment($val);
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
return "";
|
|
} /* }}} */
|
|
|
|
|
|
/**
|
|
* LOCK method handler
|
|
*
|
|
* @param array general parameter passing array
|
|
* @return bool true on success
|
|
*/
|
|
function LOCK(&$options) /* {{{ */
|
|
{
|
|
$this->log_options('LOCK', $options);
|
|
|
|
// get object to lock
|
|
$obj = $this->reverseLookup($options["path"]);
|
|
|
|
if(!$obj)
|
|
return "200 OK";
|
|
|
|
// TODO recursive locks on directories not supported yet
|
|
if (get_class($obj) == 'LetoDMS_Core_Folder' && !empty($options["depth"])) {
|
|
return "409 Conflict";
|
|
}
|
|
|
|
if ($obj->getAccessMode($this->user) < M_READWRITE) {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
$options["timeout"] = 0;//time()+300; // 5min. hardcoded
|
|
|
|
if(!$obj->setLocked($this->user)) {
|
|
return "409 Conflict";
|
|
}
|
|
|
|
$options['owner'] = $this->user->getLogin();
|
|
$options['scope'] = "exclusive";
|
|
$options['type'] = "write";
|
|
|
|
return "200 OK";
|
|
} /* }}} */
|
|
|
|
/**
|
|
* UNLOCK method handler
|
|
*
|
|
* @param array general parameter passing array
|
|
* @return bool true on success
|
|
*/
|
|
function UNLOCK(&$options) /* {{{ */
|
|
{
|
|
$this->log_options('UNLOCK', $options);
|
|
|
|
// get object to unlock
|
|
$obj = $this->reverseLookup($options["path"]);
|
|
|
|
if(!$obj)
|
|
return "204 No Content";
|
|
|
|
// TODO recursive locks on directories not supported yet
|
|
if (get_class($obj) == 'LetoDMS_Core_Folder' && !empty($options["depth"])) {
|
|
return "409 Conflict";
|
|
}
|
|
|
|
if ($obj->getAccessMode($this->user) < M_READWRITE) {
|
|
return "403 Forbidden";
|
|
}
|
|
|
|
if(!$obj->setLocked(false)) {
|
|
return "409 Conflict";
|
|
}
|
|
|
|
return "204 No Content";
|
|
} /* }}} */
|
|
|
|
/**
|
|
* checkLock() helper
|
|
*
|
|
* @param string resource path to check for locks
|
|
* @return bool true on success
|
|
*/
|
|
function checkLock($path) /* {{{ */
|
|
{
|
|
if($this->logger)
|
|
$this->logger->log('checkLock: path='.$path.'', PEAR_LOG_INFO);
|
|
|
|
// get object to check for lock
|
|
$obj = $this->reverseLookup($path);
|
|
|
|
// check for folder returns no object
|
|
if(!$obj) {
|
|
if($this->logger)
|
|
$this->logger->log('checkLock: object not found', PEAR_LOG_INFO);
|
|
return false;
|
|
}
|
|
|
|
// Folders cannot be locked
|
|
if(get_class($obj) == 'LetoDMS_Core_Folder') {
|
|
if($this->logger)
|
|
$this->logger->log('checkLock: object is a folder', PEAR_LOG_INFO);
|
|
return false;
|
|
}
|
|
|
|
if($obj->isLocked()) {
|
|
$lockuser = $obj->getLockingUser();
|
|
if($this->logger)
|
|
$this->logger->log('checkLock: object is locked by '.$lockuser->getLogin(), PEAR_LOG_INFO);
|
|
return array(
|
|
"type" => "write",
|
|
"scope" => "exclusive",
|
|
"depth" => 0,
|
|
"owner" => $lockuser->getLogin(),
|
|
"token" => 'kk', // must return something to prevent php warning in Server.php:1865
|
|
"created" => '',
|
|
"modified" => '',
|
|
"expires" => ''
|
|
);
|
|
} else {
|
|
if($this->logger)
|
|
$this->logger->log('checkLock: object is not locked', PEAR_LOG_INFO);
|
|
return false;
|
|
}
|
|
} /* }}} */
|
|
|
|
}
|
|
|
|
|
|
/*
|
|
* vim: ts=2 sw=2 noexpandtab
|
|
*/
|
|
?>
|