commit 61ccbbb638008ca9a8562b6bffa58e1899589bb8
parent b49c6af13f3e1ab781f2e0d6998d9ec658f6da8b
Author: Jan Dankert <devnull@localhost>
Date: Sat, 23 Mar 2019 00:30:10 +0100
Konfigurationsmechanismus überarbeitet: Die ini-Datei kann auch überlagert werden.
Diffstat:
4 files changed, 1163 insertions(+), 1153 deletions(-)
diff --git a/dav/WebDAV.class.php b/dav/WebDAV.class.php
@@ -0,0 +1,1129 @@
+<?php
+
+
+class WebDAV
+{
+ /**
+ * CMS-Client
+ * @var CMS
+ */
+ private $client;
+
+ // Zahlreiche Instanzvariablen, die im Konstruktor
+ // beim Zerlegen der Anfrag gef�llt werden.
+ var $defaultSubAction = 'show';
+ var $database;
+ var $depth;
+ var $projectid;
+ var $objectid;
+ var $filename;
+ var $pathnames = array();
+ var $uri;
+ var $headers;
+ var $requestType;
+ var $request;
+ var $destination = null;
+ var $fullSkriptName;
+ var $create;
+ var $readonly;
+ var $maxFileSize;
+ var $webdav_conf;
+ var $overwrite = false;
+
+
+ /**
+ * Im Kontruktor wird der Request analysiert und ggf. eine Authentifzierung
+ * durchgefuehrt. Anschließend wird eine interne Methode mit dem Namen davXXX() aufgerufen.
+ */
+ function __construct()
+ {
+ global $config;
+
+ Logger::trace( 'WEBDAV request' );
+
+ if ( $config['dav.compliant_to_redmond'] )
+ header('MS-Author-Via: DAV' ); // Extrawurst fuer MS-Clients.
+
+ if ( $config['dav.expose_openrat'] )
+ header('X-Dav-powered-by: OpenRat CMS'); // Bandbreite verschwenden :)
+
+// Logger::trace( 'WEBDAV: URI='.$_SERVER['REQUEST_URI']);
+
+ if ( !$config['dav.enable'])
+ {
+ Logger::warn( 'WEBDAV is disabled by configuration' );
+
+ $this->httpStatus('403 Forbidden');
+ exit;
+ }
+
+ $this->create = $config['dav.create'];
+ $this->readonly = $config['dav.readonly'];
+ $this->maxFileSize = $config['cms.max_file_size'];
+
+ $this->headers = getallheaders();
+ /* DAV compliant servers MUST support the "0", "1" and
+ * "infinity" behaviors. By default, the PROPFIND method without a Depth
+ * header MUST act as if a "Depth: infinity" header was included. */
+ if ( !isset($this->headers['Depth']) )
+ $this->depth = 1;
+ elseif ( strtolower($this->headers['Depth'])=='infinity')
+ $this->depth = 1;
+ else
+ $this->depth = intval($this->headers['Depth']);
+
+ if ( isset($this->headers['Destination']) )
+ $this->destination = $this->headers['Destination'];
+
+ if ( isset($this->headers['Overwrite']) )
+ $this->overwrite = $this->headers['Overwrite'] == 'T';
+
+
+ session_start();
+ if ( !empty($_SESSION['DAV_CLIENT']) )
+ $this->client = $_SESSION['DAV_CLIENT'];
+ else
+ {
+ $this->client = new CMS();
+ $_SESSION['DAV_CLIENT'] = $this->client;
+ }
+
+ if ( $this->client->login )
+ {
+ // Benutzer ist bereits im CMS eingeloggt.
+ }
+ else
+ {
+ // Login
+ global $httpMethod;
+ if ( $httpMethod != 'OPTIONS' ) // Bei OPTIONS kein Login anfordern
+ {
+ if ( isset($_SERVER['PHP_AUTH_USER']) )
+ {
+
+ $username = $_SERVER['PHP_AUTH_USER'];
+ $pass = $_SERVER['PHP_AUTH_PW' ];
+
+ try {
+ $this->client->login($username, $pass, $config['cms.database']);
+ }
+ catch( Exception $e )
+ {
+ $this->httpStatus('401 Unauthorized');
+ header('WWW-Authenticate: Basic realm="'.$config['dav.realm'].'"');
+ echo 'Failed login for user '.$username;
+ exit;
+ }
+ }
+ elseif ( $config['dav.anonymous'])
+ {
+ $username = $config['cms.user'];
+ $pass = $config['cms.password'];
+
+ $loginOk = $this->client->login($username, $pass, $config['cms.database']);
+ if ( !$loginOk ) {
+ $this->httpStatus('500 Internal Server Error');
+ echo 'Could not authenticate user '.$username;
+ exit;
+ }
+ }
+ else
+ {
+ // Client ist nicht angemeldet, daher wird nun die
+ // Authentisierung angefordert.
+ header('WWW-Authenticate: Basic realm="'.$config['dav.realm'].'"');
+ $this->httpStatus('401 Unauthorized');
+ echo 'Authentification required for '.$config['dav.realm'];
+ exit;
+
+ }
+ }
+ else
+ {
+ return; //
+ }
+ }
+
+
+ $scriptName = $_SERVER['SCRIPT_NAME'];
+
+// if ( substr($scriptName,-10) == '/index.php' )
+// $scriptName = substr($scriptName,0,-10);
+
+ $this->fullSkriptName = 'http://'.$_SERVER['HTTP_HOST'].$scriptName.'/';
+
+ // URL parsen.
+ $uri = substr($_SERVER['REQUEST_URI'],strlen($scriptName));
+
+ $uri = $this->parseURI( $uri );
+ $this->requestType = $uri['type' ];
+ $this->objectid = $uri['objectid' ];
+ $this->projectid = $uri['projectid'];
+
+// $this->fullSkriptName .= implode('/',$uri['path']);
+
+ if ( $this->requestType == 'folder' )
+ $this->fullSkriptName .= '/';
+
+ /*
+ * Verzeichnisse muessen mit einem '/' enden. Falls nicht, Redirect aussfuehren.
+ *
+ * RFC 2518, 5.2 Collection Resources, Page 11:
+ * "For example, if a client invokes a
+ * method on http://foo.bar/blah (no trailing slash), the resource
+ * http://foo.bar/blah/ (trailing slash) may respond as if the operation
+ * were invoked on it, and should return a content-location header with
+ * http://foo.bar/blah/ in it. In general clients SHOULD use the "/"
+ * form of collection names."
+ */
+ if ( $this->request == 'folder' &&
+ $_GET['subaction'] == 'get' &&
+ substr($_SERVER['REQUEST_URI'],strlen($_SERVER['REQUEST_URI'])-1 ) != '/' )
+ {
+ Logger::debug( 'WebDAV: Redirecting lame client to slashyfied URL' );
+
+ header('HTTP/1.1 302 Moved Temporarily');
+ header('Location: '.$_SERVER['REQUEST_URI'].'/');
+ exit;
+ }
+
+ // Falls vorhanden, den "Destination"-Header parsen.
+ if ( isset($_SERVER['HTTP_DESTINATION']) )
+ {
+ $destUri = parse_url( $_SERVER['HTTP_DESTINATION'] );
+
+ $uri = substr($destUri['path'],strlen($_SERVER['SCRIPT_NAME'])+$sos);
+
+ // URL parsen.
+ $this->destination = $this->parseURI( $uri );
+ }
+
+ // Den Request-BODY aus der Standardeingabe lesen.
+ $this->request = implode('',file('php://input'));
+ }
+
+ /**
+ * HTTP-Methode OPTIONS.<br>
+ * <br>
+ * Es werden die verfuegbaren Methoden ermittelt und ausgegeben.
+ */
+ public function davOPTIONS()
+ {
+ header('DAV: 1'); // Wir haben DAV-Level 1.
+ header('Allow: '.implode(', ',$this->allowed_methods()) );
+
+ Logger::trace('OPTIONS: '.'Allow: '.implode(', ',$this->allowed_methods()));
+
+ $this->httpStatus( '200 OK' );
+ }
+
+
+
+
+
+ /**
+ * WebDav-HEAD-Methode.
+ */
+ public function davHEAD()
+ {
+ if ( $this->objectid == null )
+ {
+ $this->httpStatus( '404 Not Found' );
+ }
+ elseif ( $this->requestType == 'folder' )
+ {
+ $this->httpStatus( '200 OK' );
+ }
+ elseif( $this->obj->isPage )
+ {
+ $this->httpStatus( '200 OK' );
+ }
+ elseif( $this->obj->isLink )
+ {
+ $this->httpStatus( '200 OK' );
+ }
+ elseif( $this->obj->isFile )
+ {
+ $this->httpStatus( '200 OK' );
+ }
+ }
+
+
+
+ /**
+ * WebDav-GET-Methode.
+ * Die gew�nschte Datei wird geladen und im HTTP-Body mitgeliefert.
+ */
+ public function davGET()
+ {
+ switch( $this->requestType )
+ {
+ case 'root':
+ case 'folder':
+ $this->getDirectoryIndex();
+ break;
+
+ case 'page':
+ $this->httpStatus( '200 OK' );
+ header('Content-Type: text/html');
+
+ echo '<html><head><title>OpenRat WEBDAV Access</title></head>';
+ echo '<body>';
+ echo '<h1>'.$this->requestType.'</h1>';
+ echo '<pre>';
+ echo 'No Content available';
+ echo '</pre>';
+ echo '</body>';
+ echo '</html>';
+ break;
+
+ case 'link':
+ $this->httpStatus( '200 OK' );
+
+ header('Content-Type: text/plain');
+
+ $link = $this->client->link( $this->objectid );
+ echo 'url: ' .$link['url'] ."\n";
+ echo 'target-id: '.$link['linkedObjectId']."\n";
+
+ break;
+
+ case 'file':
+ $this->httpStatus( '200 OK' );
+
+ $file = $this->client->file ( $this->objectid );
+ $filevalue = $this->client->filevalue( $this->objectid );
+
+ header('Content-Type: '.$file['mimetype']);
+ header('X-File-Id: ' .$this->objectid );
+
+ // Angabe Content-Disposition
+ // - Bild soll "inline" gezeigt werden
+ // - Dateiname wird benutzt, wenn der Browser das Bild speichern moechte
+ header('Content-Disposition: inline; filename='.$file['filename'].'.'.$file['extension'] );
+ header('Content-Transfer-Encoding: binary' );
+ header('Content-Description: '.$file['filename'].'.'.$file['extension'] );
+
+ // Groesse des Bildes in Bytes
+ // Der Browser hat so die Moeglichkeit, einen Fortschrittsbalken zu zeigen
+ header('Content-Length: '.$file['size'] );
+
+ echo base64_decode( $filevalue['value'] );
+
+ break;
+ }
+ }
+
+
+
+ /**
+ * Erzeugt ein Unix-�hnliche Ausgabe des Verzeichnisses als HTML.
+ */
+ private function getDirectoryIndex()
+ {
+ $this->httpStatus( '200 OK' );
+
+ // Verzeichnis ausgeben
+ header('Content-Type: text/html');
+ $nl = "\n";
+
+
+
+
+ $titel = 'Index of '.htmlspecialchars($this->fullSkriptName);
+ $format = "%15s %-19s %-s\n";
+
+ echo '<html><head><title>'.$titel.'</title></head>';
+ echo '<body>';
+ echo '<h1>'.$titel.'</h1>'.$nl;
+ echo '<pre>';
+
+ printf($format, "Size", "Last modified", "Filename");
+
+
+ switch( $this->requestType )
+ {
+ case 'root': // Projektliste
+
+ $result = $this->client->projectlist();
+ $projects = $result['projects'];
+ foreach( $projects as $projectid=>$p )
+ {
+ echo '<a href="'.$p['name'].'">'.$p['name'].'</a>'.$nl;
+ }
+ break;
+
+ case 'folder': // Verzeichnisinhalt
+
+ $folder = $this->client->folder( $this->objectid );
+
+ foreach( $folder['object'] as $object )
+ {
+
+ printf($format,
+ number_format(1),
+ strftime("%Y-%m-%d %H:%M:%S",$object['date'] ),
+ '<a href="'.$object['filename'].'">'.$object['filename'].'</a>');
+ echo $nl;
+
+ }
+ }
+
+ echo '</pre>';
+ echo '</body>';
+ echo '</html>';
+ }
+
+
+
+ /**
+ * Die Methode LOCK sollte garnicht aufgerufen werden, da wir nur
+ * Dav-Level 1 implementieren und dies dem Client auch mitteilen.<br>
+ * <br>
+ * Ausgabe von HTTP-Status 412 (Precondition failed)
+ */
+ function davLOCK()
+ {
+ $this->httpStatus('412 Precondition failed');
+ $this->davOPTIONS();
+ }
+
+
+
+ /**
+ * Die Methode UNLOCK sollte garnicht aufgerufen werden, da wir nur
+ * Dav-Level 1 implementieren und dies dem Client auch mitteilen.<br>
+ * <br>
+ * Ausgabe von HTTP-Status 412 (Precondition failed)
+ */
+ public function davUNLOCK()
+ {
+ $this->httpStatus('412 Precondition failed');
+ $this->davOPTIONS();
+ }
+
+
+
+ /**
+ * Die Methode POST ist bei WebDav nicht sinnvoll.<br>
+ * <br>
+ * Ausgabe von HTTP-Status 405 (Method Not Allowed)
+ */
+ public function davPOST()
+ {
+ // Die Methode POST ist bei Webdav nicht sinnvoll.
+ $this->httpStatus('405 Method Not Allowed' );
+ }
+
+
+
+ /**
+ * Verzeichnis anlegen.
+ */
+ public function davMKCOL()
+ {
+
+ if ( !empty($this->request) )
+ {
+ $this->httpStatus('415 Unsupported Media Type' ); // Kein Body erlaubt
+ }
+ elseif ( $this->readonly )
+ {
+ $this->httpStatus('403 Forbidden' ); // Kein Schreibzugriff erlaubt
+ }
+ elseif ( !$this->folder->hasRight( ACL_CREATE_FOLDER ) )
+ {
+ $this->httpStatus('403 Forbidden' ); // Benutzer darf das nicht
+ }
+ elseif ( $this->obj == null )
+ {
+ // Die URI ist noch nicht vorhanden
+ $f = new Folder();
+ $f->filename = basename($this->fullSkriptName);
+ $f->parentid = $this->folder->objectid;
+ $f->projectid = $this->project->projectid;
+ $f->add();
+ $this->httpStatus('201 Created');
+ }
+ else
+ {
+ // MKCOL ist nicht moeglich, wenn die URI schon existiert.
+ Logger::warn('MKCOL-Request to an existing resource');
+ $this->httpStatus('405 Method Not Allowed' );
+ }
+ }
+
+
+
+ /**
+ * Objekt l�schen.
+ */
+ public function davDELETE()
+ {
+ if ( $this->readonly )
+ {
+ $this->httpStatus('403 Forbidden' ); // Kein Schreibzugriff erlaubt
+ }
+ else
+ {
+ if ( $this->obj == null )
+ {
+ // Nicht existente URIs kann man auch nicht loeschen.
+ $this->httpStatus('404 Not Found' );
+ }
+ elseif ( ! $this->obj->hasRight( ACL_DELETE ) )
+ {
+ $this->httpStatus('403 Forbidden' ); // Benutzer darf die Resource nicht loeschen
+ }
+ elseif ( $this->obj->isFolder )
+ {
+ $f = new Folder( $this->obj->objectid );
+ $f->deleteAll();
+ $this->httpStatus( true ); // OK
+ Logger::debug('Deleted folder with id '.$this->obj->objectid );
+ }
+ elseif ( $this->obj->isFile )
+ {
+ $f = new File( $this->obj->objectid );
+ $f->delete();
+ $this->httpStatus( true ); // OK
+ }
+ elseif ( $this->obj->isPage )
+ {
+ $p = new Page( $this->obj->objectid );
+ $p->delete();
+ $this->httpStatus( true ); // OK
+ }
+ elseif ( $this->obj->isLink )
+ {
+ $l = new Link( $this->obj->objectid );
+ $l->delete();
+ $this->httpStatus( true ); // OK
+ }
+
+ }
+ }
+
+
+
+ /**
+ * Kopieren eines Objektes.<br>
+ * Momentan ist nur das Kopieren einer Datei implementiert.<br>
+ * Das Kopieren von Ordnern, Verkn�pfungen und Seiten ist nicht moeglich.
+ */
+ public function davCOPY()
+ {
+ if ( $this->readonly || !$this->create )
+ {
+ error_log('WEBDAV: COPY request, but readonly or no creating');
+ $this->httpStatus('405 Not Allowed' );
+ }
+ elseif( $this->obj == null )
+ {
+ // Was nicht da ist, laesst sich auch nicht verschieben.
+ error_log('WEBDAV: COPY request, but Source not found');
+ $this->httpStatus('405 Not Allowed' );
+ }
+ elseif ( $this->destination == null )
+ {
+ error_log('WEBDAV: COPY request, but no "Destination:"-Header');
+ // $this->httpStatus('405 Not Allowed' );
+ $this->httpStatus('412 Precondition failed');
+ }
+ else
+ {
+ // URL parsen.
+ $dest = $this->destination;
+ $destinationProject = $dest['project'];
+ $destinationFolder = $dest['folder' ];
+ $destinationObject = $dest['object' ];
+
+ if ( $dest['type'] != 'object' )
+ {
+ Logger::debug('WEBDAV: COPY request, but "Destination:"-Header mismatch');
+ $this->httpStatus('405 Not Allowed');
+ }
+ elseif ( $this->project->projectid != $destinationProject->projectid )
+ {
+ // Kopieren in anderes Projekt nicht moeglich.
+ Logger::debug('WEBDAV: COPY request denied, project does not match');
+ $this->httpStatus('403 Forbidden');
+ }
+ elseif ( $destinationObject != null )
+ {
+ Logger::debug('WEBDAV: COPY request denied, Destination exists. Overwriting is not supported');
+ $this->httpStatus('403 Forbidden');
+ }
+ elseif ( is_object($destinationFolder) && ! $destinationFolder->hasRight( ACL_CREATE_FILE ) )
+ {
+ $this->httpStatus('403 Forbidden' ); // Benutzer darf das nicht
+ }
+ elseif ( is_object($destinationObject) && $destinationObject->isFolder)
+ {
+ Logger::debug('WEBDAV: COPY request denied, Folder-Copy not implemented');
+ $this->httpStatus('405 Not Allowed');
+ }
+ elseif ( is_object($destinationObject) && $destinationObject->isLink)
+ {
+ Logger::debug('WEBDAV: COPY request denied, Link copy not implemented');
+ $this->httpStatus('405 Not Allowed');
+ }
+ elseif ( is_object($destinationObject) && $destinationObject->isPage)
+ {
+ Logger::debug('WEBDAV: COPY request denied, Page copy not implemented');
+ $this->httpStatus('405 Not Allowed');
+ }
+ else
+ {
+ $f = new File();
+ $f->filename = basename($_SERVER['HTTP_DESTINATION']);
+ $f->name = '';
+ $f->parentid = $destinationFolder->objectid;
+ $f->projectid = $this->project->projectid;
+ $f->add();
+ $f->copyValueFromFile( $this->obj->objectid );
+
+ Logger::debug('WEBDAV: COPY request accepted' );
+ // Objekt wird in anderen Ordner kopiert.
+ $this->httpStatus('201 Created' );
+ }
+ }
+
+ }
+
+
+
+ /**
+ * Verschieben eines Objektes.<br>
+ * <br>
+ * Folgende Operationen sind m�glich:<br>
+ * - Unbenennen eines Objektes (alle Typen)<br>
+ * - Verschieben eines Objektes (alle Typen) in einen anderen Ordner.<br>
+ */
+ public function davMOVE()
+ {
+ if ( $this->readonly )
+ {
+ $this->httpStatus('403 Forbidden - Readonly Mode' ); // Schreibgeschuetzt
+ }
+ elseif ( !$this->create )
+ {
+ $this->httpStatus('403 Forbidden - No creation' ); // Schreibgeschuetzt
+ }
+ elseif( $this->obj == null )
+ {
+ // Was nicht da ist, laesst sich auch nicht verschieben.
+ $this->httpStatus('404 Not Found' );
+ }
+ elseif( is_object($this->obj) && ! $this->obj->hasRight( ACL_WRITE ) )
+ {
+ // Was nicht da ist, laesst sich auch nicht verschieben.
+ Logger::error('Source '.$this->obj->objectid.' is not writable: Forbidden');
+ $this->httpStatus('403 Forbidden' );
+ }
+ elseif ( $this->destination == null )
+ {
+ Logger::error('WEBDAV: MOVE request, but no "Destination:"-Header');
+ // $this->httpStatus('405 Not Allowed' );
+ $this->httpStatus('412 Precondition failed');
+ }
+ else
+ {
+ $dest = $this->destination;
+ $destinationProject = $dest['project'];
+ $destinationFolder = $dest['folder' ];
+ $destinationObject = $dest['object' ];
+
+ if ( $dest['type'] != 'object' )
+ {
+ Logger::debug('WEBDAV: MOVE request, but "Destination:"-Header mismatch');
+ $this->httpStatus('405 Not Allowed');
+ return;
+ }
+
+ if ( is_object($destinationFolder) && ! $destinationFolder->hasRight( ACL_CREATE_FILE ) )
+ {
+ Logger::error('Source '.$this->obj->objectid.' is not writable: Forbidden');
+ $this->httpStatus('403 Forbidden' );
+ }
+
+ if ( $destinationObject != null )
+ {
+ Logger::debug('WEBDAV: MOVE request denied, destination exists');
+ $this->httpStatus('412 Precondition Failed');
+ return;
+ }
+
+ if ( $this->project->projectid != $destinationProject->projectid )
+ {
+ // Verschieben in anderes Projekt nicht moeglich.
+ Logger::debug('WEBDAV: MOVE request denied, project does not match');
+ $this->httpStatus('405 Not Allowed');
+ return;
+ }
+
+ if ( $this->folder->objectid == $destinationFolder->objectid )
+ {
+ Logger::debug('WEBDAV: MOVE request accepted, object renamed');
+ // Resource bleibt in gleichem Ordner.
+ $this->obj->filename = basename($_SERVER['HTTP_DESTINATION']);
+ $this->obj->objectSave(false);
+ $this->httpStatus('201 Created' );
+ return;
+ }
+
+ if ( $destinationFolder->isFolder )
+ {
+ Logger::debug('WEBDAV: MOVE request accepted, Destination: '.$destinationFolder->filename );
+ // Objekt wird in anderen Ordner verschoben.
+ $this->obj->setParentId( $destinationFolder->objectid );
+ $this->httpStatus('201 Created' );
+ return;
+ }
+
+ Logger::warn('WEBDAV: MOVE request failed' );
+ $this->httpStatus('500 Internal Server Error' );
+ }
+ }
+
+
+
+ /**
+ * Anlegen oder �berschreiben Dateien �ber PUT.<br>
+ * Dateien k�nnen neu angelegt und �berschrieben werden.<br>
+ * <br>
+ * Seiten k�nnen nicht �berschrieben werden. Wird versucht,
+ * eine Seite mit PUT zu �berschreiben, wird der Status "405 Not Allowed" gemeldet.<br>
+ */
+ public function davPUT()
+ {
+ // TODO: 409 (Conflict) wenn �bergeordneter Ordner nicht da.
+
+ if ( $config['readonly'] )
+ {
+ $this->httpStatus('405 Not Allowed' );
+ }
+ elseif ( strlen($this->request) > $this->maxFileSize*1000 )
+ {
+ // Maximale Dateigroesse ueberschritten.
+ // Der Status 207 "Zuwenig Speicherplatz" passt nicht ganz, aber fast :)
+ $this->httpStatus('507 Insufficient Storage' );
+ }
+ elseif ( $this->obj == null )
+ {
+ // Neue Datei anlegen
+ if ( !$config['create'] )
+ {
+ Logger::warn('WEBDAV: Creation of files not allowed by configuration' );
+ $this->httpStatus('405 Not Allowed' );
+ }
+
+ if ( ! $this->folder->hasRight( ACL_CREATE_FILE ) )
+ {
+ $this->httpStatus('403 Forbidden');
+ return;
+ }
+
+ $file = new File();
+ $file->filename = basename($this->fullSkriptName);
+ $file->extension = '';
+ $file->size = strlen($this->request);
+ $file->parentid = $this->folder->objectid;
+ $file->projectid = $this->project->projectid;
+ $file->value = $this->request;
+ $file->add();
+ $this->httpStatus('201 Created');
+ return;
+ }
+ elseif ( $this->obj->isFile )
+ {
+ if ( ! $this->obj->hasRight( ACL_WRITE ) )
+ {
+ Logger::debug('PUT failed, parent folder not writable by user' );
+ $this->httpStatus('403 Forbidden');
+ return;
+ }
+
+ // Bestehende Datei ueberschreiben.
+ $file = new File( $this->obj->objectid );
+ $file->saveValue( $this->request );
+ $file->setTimestamp();
+ $this->httpStatus('204 No Content');
+ Logger::debug('PUT ok, file is created' );
+ return;
+ }
+ elseif ( $this->obj->isFolder )
+ {
+ Logger::error('PUT on folder is not supported, use PROPFIND. Lame client?' );
+ $this->httpStatus('405 Not Allowed' );
+ }
+ else
+ {
+ // Fuer andere Objekttypen (Links, Seiten) ist kein PUT moeglich.
+ Logger::warn('PUT only available for files. Pages and links are ignored' );
+ $this->httpStatus('405 Not Allowed' );
+ }
+ }
+
+
+
+ /**
+ * WebDav-Methode PROPFIND.
+ *
+ * Diese Methode wird
+ * - beim Ermitteln von Verzeichnisinhalten und
+ * - beim Ermitteln von Metainformationen zu einer Datei
+ * verwendet.
+ *
+ * Das Ergebnis wird in einer XML-Zeichenkette geliefert.
+ */
+ public function davPROPFIND()
+ {
+ switch( $this->requestType )
+ {
+ case 'root': // Projektliste
+
+ $inhalte = array();
+
+ $objektinhalt = array();
+ $z = 30*365.25*24*60*60;
+ $objektinhalt['createdate' ] = $z;
+ $objektinhalt['lastchangedate'] = $z;
+ $objektinhalt['size' ] = 1;
+ $objektinhalt['name' ] = $this->fullSkriptName;
+ $objektinhalt['displayname' ] = '';
+ $objektinhalt['type'] = 'folder';
+
+ $inhalte[] = $objektinhalt;
+
+ $result = $this->client->projectlist();
+ $projects = $result['projects'];
+ foreach( $projects as $projectid=>$p )
+ {
+ $objektinhalt = array();
+ $objektinhalt['createdate' ] = TIME_20000101;
+ $objektinhalt['lastchangedate'] = TIME_20000101;
+ $objektinhalt['size' ] = 1;
+ $objektinhalt['name' ] = $this->fullSkriptName.$p['name'].'/';
+ $objektinhalt['displayname' ] = $p['name'];
+ $objektinhalt['type'] = 'folder';
+ $inhalte[] = $objektinhalt;
+ }
+
+ $this->multiStatus( $inhalte );
+ break;
+
+ case 'folder': // Verzeichnisinhalt
+
+ $folder = $this->client->folder( $this->objectid );
+
+ $inhalte = array();
+
+ $objektinhalt = array();
+ $objektinhalt['createdate' ] = $folder['properties']['create_date'];
+ $objektinhalt['lastchangedate'] = $folder['properties']['lastchange_date'];
+ $objektinhalt['name' ] = $this->fullSkriptName;
+ $objektinhalt['displayname' ] = $folder['properties']['filename'];
+ $objektinhalt['type' ] = 'folder';
+ $objektinhalt['size' ] = 0;
+
+ $inhalte[] = $objektinhalt;
+
+ if ( $this->depth > 0 )
+ {
+
+ foreach( $folder['object'] as $object )
+ {
+ $objektinhalt = array();
+ $objektinhalt['createdate' ] = $object['date'];
+ $objektinhalt['lastchangedate'] = $object['date'];
+ $objektinhalt['displayname' ] = $object['filename'];
+
+ switch( $object['type'] )
+ {
+ case 'folder':
+ $objektinhalt['name'] = $this->fullSkriptName.$object['filename'].'/';
+ $objektinhalt['type'] = 'folder';
+ $objektinhalt['size'] = 0;
+ $inhalte[] = $objektinhalt;
+ break;
+ case 'file':
+ $objektinhalt['name'] = $this->fullSkriptName.$object['filename'];
+ $objektinhalt['type'] = 'file';
+ $objektinhalt['size'] = $object['size'];
+ $objektinhalt['mime'] = 'application/x-non-readable';
+ $inhalte[] = $objektinhalt;
+ break;
+ case 'link':
+ $objektinhalt['name'] = $this->fullSkriptName.$object['filename'];
+ $objektinhalt['type'] = 'file';
+ $objektinhalt['size'] = 0;
+ $objektinhalt['mime'] = 'application/x-non-readable';
+ $inhalte[] = $objektinhalt;
+ break;
+ case 'page':
+ $objektinhalt['name'] = $this->fullSkriptName.$object['filename'];
+ $objektinhalt['type'] = 'file';
+ $objektinhalt['size'] = 0;
+ $inhalte[] = $objektinhalt;
+ break;
+ default:
+ }
+ }
+ }
+ $this->multiStatus( $inhalte );
+ break;
+
+ case 'page':
+ $page = $this->client->page( $objectid );
+ $prop = $page['properties'];
+ $objektinhalt = array();
+ $objektinhalt['name'] = $this->fullSkriptName.'/'.$prop['filename'].'/';
+ $objektinhalt['displayname'] = $prop['filename'];
+ $objektinhalt['createdate' ] = $prop['date'];
+ $objektinhalt['lastchangedate'] = $prop['date'];
+
+ $objektinhalt['size' ] = 0;
+ $objektinhalt['type' ] = 'file';
+ break;
+
+ case 'file':
+ $file = $this->client->file( $objectid );
+ $objektinhalt = array();
+ $objektinhalt['name'] = $this->fullSkriptName.'/'.$file['filename'].'/';
+ $objektinhalt['displayname'] = $file['filename'];
+ $objektinhalt['createdate' ] = $file['date'];
+ $objektinhalt['lastchangedate'] = $file['date'];
+
+ $objektinhalt['size' ] = $file['size'];
+ $objektinhalt['type' ] = 'file';
+
+ break;
+
+ case 'link':
+
+ $link = $this->client->link( $objectid );
+
+ $objektinhalt = array();
+ $objektinhalt['name'] = $this->fullSkriptName.'/'.$link['filename'].'/';
+ $objektinhalt['displayname'] = $link['filename'];
+ $objektinhalt['createdate' ] = $link['date'];
+ $objektinhalt['lastchangedate'] = $link['date'];
+
+ $objektinhalt['size' ] = 0;
+ $objektinhalt['type' ] = 'file';
+
+
+ $this->multiStatus( array($objektinhalt) );
+
+ break;
+
+ default:
+ Logger::warn('Internal Error, unknown request type: '. $this->requestType);
+ $this->httpStatus('500 Internal Server Error');
+ }
+ }
+
+
+ /**
+ * Webdav-Methode PROPPATCH ist nicht implementiert.
+ */
+ public function davPROPPATCH()
+ {
+ // TODO: Multistatus erzeugen.
+ // Evtl. ist '409 Conflict' besser?
+ $this->httpStatus('405 Not Allowed');
+ }
+
+
+ /**
+ * Erzeugt einen Multi-Status.
+ * @access private
+ */
+ private function multiStatus( $files )
+ {
+ $this->httpStatus('207 Multi-Status');
+ header('Content-Type: text/xml; charset=utf-8');
+
+ $response = '';
+ $response .= '<?xml version="1.0" encoding="utf-8" ?>';
+ $response .= '<d:multistatus xmlns:d="DAV:">';
+
+ foreach( $files as $file )
+ $response .= $this->getResponse( $file['name'],$file );
+
+ $response .= '</d:multistatus>';
+
+ $response = utf8_encode($response);
+
+ header('Content-Length: '.strlen($response));
+ Logger::debug('Multistatus: '.$response);
+ echo $response;
+ }
+
+
+ /**
+ * Erzeugt ein "response"-Element, welches in ein "multistatus"-element verwendet werden kann.
+ */
+ private function getResponse( $file,$options )
+ {
+ // TODO: Nur angeforderte Elemente erzeugen.
+ $response = '';
+ $response .= '<d:response>';
+ $response .= '<d:href>'.$file.'</d:href>';
+ $response .= '<d:propstat>';
+ $response .= '<d:prop>';
+ // $response .= '<d:source></d:source>';
+ $response .= '<d:creationdate>'.date('r',$options['createdate']).'</d:creationdate>';
+ $response .= '<d:displayname>'.$options['displayname'].'</d:displayname>';
+ $response .= '<d:getcontentlength>'.$options['size'].'</d:getcontentlength>';
+ $response .= '<d:getlastmodified xmlns:b="urn:uuid:c2f41010-65b3-11d1-a29f-00aa00c14882/" b:dt="dateTime.rfc1123">'.date('r',$options['lastchangedate']).'</d:getlastmodified>';
+
+ if ( $options['type'] == 'folder')
+ $response .= '<d:resourcetype><d:collection/></d:resourcetype>';
+ else
+ $response .= '<d:resourcetype />';
+
+ $response .= '<d:categories />';
+ $response .= '<d:fields></d:fields>';
+
+
+
+// $response .= '<d:getcontenttype>text/html</d:getcontenttype>';
+// $response .= '<d:getcontentlength />';
+// $response .= '<d:getcontentlanguage />';
+// $response .= '<d:executable />';
+// $response .= '<d:resourcetype>';
+// $response .= '<d:collection />';
+// $response .= '</d:resourcetype>';
+// $response .= '<d:getetag />';
+
+ $response .= '</d:prop>';
+ $response .= '<d:status>HTTP/1.1 200 OK</d:status>';
+ $response .= '</d:propstat>';
+ $response .= '</d:response>';
+
+ return $response;
+ }
+
+
+
+ /**
+ * URI parsen.
+ */
+ private function parseURI( $uri )
+ {
+ // Ergebnis initialisieren (damit alle Schl�ssel vorhanden sind)
+ $ergebnis = array('type' => null,
+ 'projectid' => null,
+ 'objectid' => null );
+
+
+// Logger::trace( 'WEBDAV: Parsen der URI '.$uri);
+ $uriParts = explode('/',$uri);
+
+ $projectName = array_shift($uriParts);
+
+ if ( empty($projectName) )
+ {
+ $ergebnis['type'] = 'root';
+ return $ergebnis; // Root-Verzeichnis
+ }
+
+ $result = $this->client->projectlist();
+ $projects = $result['projects'];
+
+ $projectid = array_search($projectName,$projects);
+
+ if ( $projectid === FALSE )
+ {
+ httpStatus("404 Not found");
+ }
+
+ $project = $this->client->project($projectid);
+
+ $ergebnis['projectid'] = $projectid;
+
+ $objectid = $project['rootobjectid'];
+ $type = 'folder';
+
+ while( length($uriParts) > 0 )
+ {
+ $name = array_shift($uriParts);
+
+ $folder = $this->client->folder($objectid);
+
+ $found = false;
+ foreach( $folder['object'] as $oid => $object)
+ {
+ if ( $object['filename'] == $name )
+ {
+ $found = true;
+
+ $type = $object['type'];
+ $objectid = $object['objectid'];
+
+ break;
+ }
+
+ }
+
+ if ( ! $found )
+ {
+ httpStatus('404 Not Found');
+ exit;
+ }
+ }
+
+ $ergebnis['type' ] = $type;
+ $ergebnis['objectid'] = $objectid;
+
+
+ return $ergebnis;
+ }
+
+
+
+ /**
+ * Setzt einen HTTP-Status.<br>
+ * <br>
+ * Es wird ein HTTP-Status gesetzt, zus�tzlich wird der Status in den Header "X-WebDAV-Status" geschrieben.<br>
+ * Ist der Status nicht 200 oder 207 (hier folgt ein BODY), wird das Skript beendet.
+ */
+ protected function httpStatus( $status = true )
+ {
+ if ( $status === true )
+ $status = '200 OK';
+
+ // Logger::debug('WEBDAV: HTTP-Status: '.$status);
+
+ header('HTTP/1.1 '.$status);
+ header('X-WebDAV-Status: '.$status,true);
+
+ // RFC 2616 (HTTP/1.1), Section 10.4.6 "405 Method Not Allowed" says:
+ // "[...] The response MUST include an
+ // Allow header containing a list of valid methods for the requested
+ // resource."
+ //
+ // RFC 2616 (HTTP/1.1), Section 14.7 "Allow" says:
+ // "[...] An Allow header field MUST be
+ // present in a 405 (Method Not Allowed) response."
+ if ( substr($status,0,3) == '405' )
+ header('Allow: '.implode(', ',$this->allowed_methods()) );
+ }
+
+
+
+
+ private function allowed_methods()
+ {
+
+ if ($this->readonly)
+ return array('OPTIONS','HEAD','GET','PROPFIND'); // Readonly-Modus
+ else
+ // PROPPATCH unterstuetzen wir garnicht, aber lt. Spec sollten wir das.
+ return array('OPTIONS','HEAD','GET','PROPFIND','DELETE','PUT','COPY','MOVE','MKCOL','PROPPATCH');
+ }
+
+
+}
diff --git a/dav/dav.ini b/dav/dav.ini
@@ -1,12 +1,14 @@
dav.enable=true
dav.create=true
dav.readonly = true
+
log.file=dav.log
log.level=trace
dav.anonymous = false
-cms.username=dankert
-cms.password=dankert
-cms.database=pdo_pg_prod
+
+cms.username=dav
+cms.password=davdav
+cms.database=pdo_my_prod
cms.host=duese
cms.path="/~dankert/cms/cms09/"
diff --git a/dav/dav.php b/dav/dav.php
@@ -32,7 +32,7 @@ if (!defined('E_STRICT'))
define('TIME_20000101',946681200);
-$defConfig = array('dav.enable' => false,
+$config = array('dav.enable' => false,
'dav.create' => true,
'dav.readonly' => false,
'dav.expose_openrat' => true,
@@ -46,1139 +46,39 @@ $defConfig = array('dav.enable' => false,
'cms.database' => 'db1',
'cms.path' => '/',
'cms.max_file_size' => 1000,
- 'log.level' => 'TemplateEngineInfo',
+ 'log.level' => 'info',
'log.file' => null
);
-$config = parse_ini_file('dav.ini') + $defConfig;
+foreach( array( 'dav-'.$_SERVER['HTTP_HOST'].'.ini',
+ 'dav-custom.ini',
+ 'dav.ini') as $iniFile )
+ if ( is_file($iniFile))
+ $config = array_merge($config,parse_ini_file( $iniFile) );
-
-// PHP-Fehler ins Log schreiben, damit die Ausgabe nicht zerstoert wird.
-if (version_compare(PHP_VERSION, '5.0.0', '>'))
- set_error_handler('webdavErrorHandler',E_ERROR | E_WARNING);
-else
- set_error_handler('webdavErrorHandler');
-
require('Logger.class.php');
require('Client.class.php');
require('CMS.class.php');
+require('WebDAV.class.php');
-$httpMethod = strtoupper($_SERVER['REQUEST_METHOD']);
-$davMethodName = 'dav'.$httpMethod;
-
-
-$dav = new WebDAV();
-
-$dav->$davMethodName();
-
-class WebDAV
-{
- /**
- * CMS-Client
- * @var CMS
- */
- private $client;
-
- // Zahlreiche Instanzvariablen, die im Konstruktor
- // beim Zerlegen der Anfrag gef�llt werden.
- var $defaultSubAction = 'show';
- var $database;
- var $depth;
- var $projectid;
- var $objectid;
- var $filename;
- var $pathnames = array();
- var $uri;
- var $headers;
- var $requestType;
- var $request;
- var $destination = null;
- var $fullSkriptName;
- var $create;
- var $readonly;
- var $maxFileSize;
- var $webdav_conf;
- var $overwrite = false;
-
-
- /**
- * Im Kontruktor wird der Request analysiert und ggf. eine Authentifzierung
- * durchgefuehrt. Anschließend wird eine interne Methode mit dem Namen davXXX() aufgerufen.
- */
- function WebDAV()
- {
- global $config;
-
- Logger::trace( 'WEBDAV request' );
-
- if ( $config['dav.compliant_to_redmond'] )
- header('MS-Author-Via: DAV' ); // Extrawurst fuer MS-Clients.
-
- if ( $config['dav.expose_openrat'] )
- header('X-Dav-powered-by: OpenRat CMS'); // Bandbreite verschwenden :)
-
-// Logger::trace( 'WEBDAV: URI='.$_SERVER['REQUEST_URI']);
-
- if ( !$config['dav.enable'])
- {
- Logger::warn( 'WEBDAV is disabled by configuration' );
-
- $this->httpStatus('403 Forbidden');
- exit;
- }
-
- $this->create = $config['dav.create'];
- $this->readonly = $config['dav.readonly'];
- $this->maxFileSize = $config['cms.max_file_size'];
-
- $this->headers = getallheaders();
- /* DAV compliant servers MUST support the "0", "1" and
- * "infinity" behaviors. By default, the PROPFIND method without a Depth
- * header MUST act as if a "Depth: infinity" header was included. */
- if ( !isset($this->headers['Depth']) )
- $this->depth = 1;
- elseif ( strtolower($this->headers['Depth'])=='infinity')
- $this->depth = 1;
- else
- $this->depth = intval($this->headers['Depth']);
-
- if ( isset($this->headers['Destination']) )
- $this->destination = $this->headers['Destination'];
-
- if ( isset($this->headers['Overwrite']) )
- $this->overwrite = $this->headers['Overwrite'] == 'T';
-
-
- session_start();
- if ( !empty($_SESSION['DAV_CLIENT']) )
- $this->client = $_SESSION['DAV_CLIENT'];
- else
- {
- $this->client = new CMS();
- $_SESSION['DAV_CLIENT'] = $this->client;
- }
-
- if ( $this->client->login )
- {
- // Benutzer ist bereits im CMS eingeloggt.
- }
- else
- {
- // Login
- global $httpMethod;
- if ( $httpMethod != 'OPTIONS' ) // Bei OPTIONS kein Login anfordern
- {
- if ( isset($_SERVER['PHP_AUTH_USER']) )
- {
-
- $username = $_SERVER['PHP_AUTH_USER'];
- $pass = $_SERVER['PHP_AUTH_PW' ];
-
- try {
- $this->client->login($username, $pass, $config['cms.database']);
- }
- catch( Exception $e )
- {
- $this->httpStatus('401 Unauthorized');
- header('WWW-Authenticate: Basic realm="'.$config['dav.realm'].'"');
- echo 'Failed login for user '.$username;
- exit;
- }
- }
- elseif ( $config['dav.anonymous'])
- {
- $username = $config['cms.user'];
- $pass = $config['cms.password'];
-
- $loginOk = $this->client->login($username, $pass, $config['cms.database']);
- if ( !$loginOk ) {
- $this->httpStatus('500 Internal Server Error');
- echo 'Could not authenticate user '.$username;
- exit;
- }
- }
- else
- {
- // Client ist nicht angemeldet, daher wird nun die
- // Authentisierung angefordert.
- header('WWW-Authenticate: Basic realm="'.$config['dav.realm'].'"');
- $this->httpStatus('401 Unauthorized');
- echo 'Authentification required for '.$config['dav.realm'];
- exit;
-
- }
- }
- else
- {
- return; //
- }
- }
-
-
- $scriptName = $_SERVER['SCRIPT_NAME'];
-
-// if ( substr($scriptName,-10) == '/index.php' )
-// $scriptName = substr($scriptName,0,-10);
-
- $this->fullSkriptName = 'http://'.$_SERVER['HTTP_HOST'].$scriptName.'/';
-
- // URL parsen.
- $uri = substr($_SERVER['REQUEST_URI'],strlen($scriptName));
-
- $uri = $this->parseURI( $uri );
- $this->requestType = $uri['type' ];
- $this->objectid = $uri['objectid' ];
- $this->projectid = $uri['projectid'];
-
-// $this->fullSkriptName .= implode('/',$uri['path']);
-
- if ( $this->requestType == 'folder' )
- $this->fullSkriptName .= '/';
-
- /*
- * Verzeichnisse muessen mit einem '/' enden. Falls nicht, Redirect aussfuehren.
- *
- * RFC 2518, 5.2 Collection Resources, Page 11:
- * "For example, if a client invokes a
- * method on http://foo.bar/blah (no trailing slash), the resource
- * http://foo.bar/blah/ (trailing slash) may respond as if the operation
- * were invoked on it, and should return a content-location header with
- * http://foo.bar/blah/ in it. In general clients SHOULD use the "/"
- * form of collection names."
- */
- if ( $this->request == 'folder' &&
- $_GET['subaction'] == 'get' &&
- substr($_SERVER['REQUEST_URI'],strlen($_SERVER['REQUEST_URI'])-1 ) != '/' )
- {
- Logger::debug( 'WebDAV: Redirecting lame client to slashyfied URL' );
-
- header('HTTP/1.1 302 Moved Temporarily');
- header('Location: '.$_SERVER['REQUEST_URI'].'/');
- exit;
- }
-
- // Falls vorhanden, den "Destination"-Header parsen.
- if ( isset($_SERVER['HTTP_DESTINATION']) )
- {
- $destUri = parse_url( $_SERVER['HTTP_DESTINATION'] );
-
- $uri = substr($destUri['path'],strlen($_SERVER['SCRIPT_NAME'])+$sos);
-
- // URL parsen.
- $this->destination = $this->parseURI( $uri );
- }
-
- // Den Request-BODY aus der Standardeingabe lesen.
- $this->request = implode('',file('php://input'));
- }
-
-
-
- private function allowed_methods()
- {
-
- if ($this->readonly)
- return array('OPTIONS','HEAD','GET','PROPFIND'); // Readonly-Modus
- else
- // PROPPATCH unterstuetzen wir garnicht, aber lt. Spec sollten wir das.
- return array('OPTIONS','HEAD','GET','PROPFIND','DELETE','PUT','COPY','MOVE','MKCOL','PROPPATCH');
- }
-
-
-
- /**
- * HTTP-Methode OPTIONS.<br>
- * <br>
- * Es werden die verfuegbaren Methoden ermittelt und ausgegeben.
- */
- public function davOPTIONS()
- {
- header('DAV: 1'); // Wir haben DAV-Level 1.
- header('Allow: '.implode(', ',$this->allowed_methods()) );
-
- Logger::trace('OPTIONS: '.'Allow: '.implode(', ',$this->allowed_methods()));
-
- $this->httpStatus( '200 OK' );
- }
-
-
-
- /**
- * Setzt einen HTTP-Status.<br>
- * <br>
- * Es wird ein HTTP-Status gesetzt, zus�tzlich wird der Status in den Header "X-WebDAV-Status" geschrieben.<br>
- * Ist der Status nicht 200 oder 207 (hier folgt ein BODY), wird das Skript beendet.
- */
- public function httpStatus( $status = true )
- {
- httpStatus($status);
- }
-
-
-
- /**
- * WebDav-HEAD-Methode.
- */
- public function davHEAD()
- {
- if ( $this->objectid == null )
- {
- $this->httpStatus( '404 Not Found' );
- }
- elseif ( $this->requestType == 'folder' )
- {
- $this->httpStatus( '200 OK' );
- }
- elseif( $this->obj->isPage )
- {
- $this->httpStatus( '200 OK' );
- }
- elseif( $this->obj->isLink )
- {
- $this->httpStatus( '200 OK' );
- }
- elseif( $this->obj->isFile )
- {
- $this->httpStatus( '200 OK' );
- }
- }
-
-
-
- /**
- * WebDav-GET-Methode.
- * Die gew�nschte Datei wird geladen und im HTTP-Body mitgeliefert.
- */
- public function davGET()
- {
- switch( $this->requestType )
- {
- case 'root':
- case 'folder':
- $this->getDirectoryIndex();
- break;
-
- case 'page':
- $this->httpStatus( '200 OK' );
- header('Content-Type: text/html');
-
- echo '<html><head><title>OpenRat WEBDAV Access</title></head>';
- echo '<body>';
- echo '<h1>'.$this->requestType.'</h1>';
- echo '<pre>';
- echo 'No Content available';
- echo '</pre>';
- echo '</body>';
- echo '</html>';
- break;
-
- case 'link':
- $this->httpStatus( '200 OK' );
-
- header('Content-Type: text/plain');
-
- $link = $this->client->link( $this->objectid );
- echo 'url: ' .$link['url'] ."\n";
- echo 'target-id: '.$link['linkedObjectId']."\n";
-
- break;
-
- case 'file':
- $this->httpStatus( '200 OK' );
-
- $file = $this->client->file ( $this->objectid );
- $filevalue = $this->client->filevalue( $this->objectid );
-
- header('Content-Type: '.$file['mimetype']);
- header('X-File-Id: ' .$this->objectid );
-
- // Angabe Content-Disposition
- // - Bild soll "inline" gezeigt werden
- // - Dateiname wird benutzt, wenn der Browser das Bild speichern moechte
- header('Content-Disposition: inline; filename='.$file['filename'].'.'.$file['extension'] );
- header('Content-Transfer-Encoding: binary' );
- header('Content-Description: '.$file['filename'].'.'.$file['extension'] );
-
- // Groesse des Bildes in Bytes
- // Der Browser hat so die Moeglichkeit, einen Fortschrittsbalken zu zeigen
- header('Content-Length: '.$file['size'] );
-
- echo base64_decode( $filevalue['value'] );
-
- break;
- }
- }
-
-
-
- /**
- * Erzeugt ein Unix-�hnliche Ausgabe des Verzeichnisses als HTML.
- */
- private function getDirectoryIndex()
- {
- $this->httpStatus( '200 OK' );
-
- // Verzeichnis ausgeben
- header('Content-Type: text/html');
- $nl = "\n";
-
-
-
-
- $titel = 'Index of '.htmlspecialchars($this->fullSkriptName);
- $format = "%15s %-19s %-s\n";
-
- echo '<html><head><title>'.$titel.'</title></head>';
- echo '<body>';
- echo '<h1>'.$titel.'</h1>'.$nl;
- echo '<pre>';
-
- printf($format, "Size", "Last modified", "Filename");
-
-
- switch( $this->requestType )
- {
- case 'root': // Projektliste
-
- $result = $this->client->projectlist();
- $projects = $result['projects'];
- foreach( $projects as $projectid=>$p )
- {
- echo '<a href="'.$p['name'].'"> </a>';
- }
- break;
-
- case 'folder': // Verzeichnisinhalt
-
- $folder = $this->client->folder( $this->objectid );
-
- foreach( $folder['object'] as $object )
- {
-
- printf($format,
- number_format(1),
- strftime("%Y-%m-%d %H:%M:%S",$object['date'] ),
- '<a href="'.$object['filename'].'">'.$object['filename'].'</a>');
- echo $nl;
-
- }
- }
-
- echo '</pre>';
- echo '</body>';
- echo '</html>';
- }
-
-
-
- /**
- * Die Methode LOCK sollte garnicht aufgerufen werden, da wir nur
- * Dav-Level 1 implementieren und dies dem Client auch mitteilen.<br>
- * <br>
- * Ausgabe von HTTP-Status 412 (Precondition failed)
- */
- function davLOCK()
- {
- $this->httpStatus('412 Precondition failed');
- $this->davOPTIONS();
- }
-
-
-
- /**
- * Die Methode UNLOCK sollte garnicht aufgerufen werden, da wir nur
- * Dav-Level 1 implementieren und dies dem Client auch mitteilen.<br>
- * <br>
- * Ausgabe von HTTP-Status 412 (Precondition failed)
- */
- public function davUNLOCK()
- {
- $this->httpStatus('412 Precondition failed');
- $this->davOPTIONS();
- }
-
-
-
- /**
- * Die Methode POST ist bei WebDav nicht sinnvoll.<br>
- * <br>
- * Ausgabe von HTTP-Status 405 (Method Not Allowed)
- */
- public function davPOST()
- {
- // Die Methode POST ist bei Webdav nicht sinnvoll.
- $this->httpStatus('405 Method Not Allowed' );
- }
-
-
-
- /**
- * Verzeichnis anlegen.
- */
- public function davMKCOL()
- {
-
- if ( !empty($this->request) )
- {
- $this->httpStatus('415 Unsupported Media Type' ); // Kein Body erlaubt
- }
- elseif ( $this->readonly )
- {
- $this->httpStatus('403 Forbidden' ); // Kein Schreibzugriff erlaubt
- }
- elseif ( !$this->folder->hasRight( ACL_CREATE_FOLDER ) )
- {
- $this->httpStatus('403 Forbidden' ); // Benutzer darf das nicht
- }
- elseif ( $this->obj == null )
- {
- // Die URI ist noch nicht vorhanden
- $f = new Folder();
- $f->filename = basename($this->fullSkriptName);
- $f->parentid = $this->folder->objectid;
- $f->projectid = $this->project->projectid;
- $f->add();
- $this->httpStatus('201 Created');
- }
- else
- {
- // MKCOL ist nicht moeglich, wenn die URI schon existiert.
- Logger::warn('MKCOL-Request to an existing resource');
- $this->httpStatus('405 Method Not Allowed' );
- }
- }
-
-
-
- /**
- * Objekt l�schen.
- */
- public function davDELETE()
- {
- if ( $this->readonly )
- {
- $this->httpStatus('403 Forbidden' ); // Kein Schreibzugriff erlaubt
- }
- else
- {
- if ( $this->obj == null )
- {
- // Nicht existente URIs kann man auch nicht loeschen.
- $this->httpStatus('404 Not Found' );
- }
- elseif ( ! $this->obj->hasRight( ACL_DELETE ) )
- {
- $this->httpStatus('403 Forbidden' ); // Benutzer darf die Resource nicht loeschen
- }
- elseif ( $this->obj->isFolder )
- {
- $f = new Folder( $this->obj->objectid );
- $f->deleteAll();
- $this->httpStatus( true ); // OK
- Logger::debug('Deleted folder with id '.$this->obj->objectid );
- }
- elseif ( $this->obj->isFile )
- {
- $f = new File( $this->obj->objectid );
- $f->delete();
- $this->httpStatus( true ); // OK
- }
- elseif ( $this->obj->isPage )
- {
- $p = new Page( $this->obj->objectid );
- $p->delete();
- $this->httpStatus( true ); // OK
- }
- elseif ( $this->obj->isLink )
- {
- $l = new Link( $this->obj->objectid );
- $l->delete();
- $this->httpStatus( true ); // OK
- }
-
- }
- }
+//Logger::info( print_r($config,true));
-
- /**
- * Kopieren eines Objektes.<br>
- * Momentan ist nur das Kopieren einer Datei implementiert.<br>
- * Das Kopieren von Ordnern, Verkn�pfungen und Seiten ist nicht moeglich.
- */
- public function davCOPY()
- {
- if ( $this->readonly || !$this->create )
- {
- error_log('WEBDAV: COPY request, but readonly or no creating');
- $this->httpStatus('405 Not Allowed' );
- }
- elseif( $this->obj == null )
- {
- // Was nicht da ist, laesst sich auch nicht verschieben.
- error_log('WEBDAV: COPY request, but Source not found');
- $this->httpStatus('405 Not Allowed' );
- }
- elseif ( $this->destination == null )
- {
- error_log('WEBDAV: COPY request, but no "Destination:"-Header');
- // $this->httpStatus('405 Not Allowed' );
- $this->httpStatus('412 Precondition failed');
- }
- else
- {
- // URL parsen.
- $dest = $this->destination;
- $destinationProject = $dest['project'];
- $destinationFolder = $dest['folder' ];
- $destinationObject = $dest['object' ];
-
- if ( $dest['type'] != 'object' )
- {
- Logger::debug('WEBDAV: COPY request, but "Destination:"-Header mismatch');
- $this->httpStatus('405 Not Allowed');
- }
- elseif ( $this->project->projectid != $destinationProject->projectid )
- {
- // Kopieren in anderes Projekt nicht moeglich.
- Logger::debug('WEBDAV: COPY request denied, project does not match');
- $this->httpStatus('403 Forbidden');
- }
- elseif ( $destinationObject != null )
- {
- Logger::debug('WEBDAV: COPY request denied, Destination exists. Overwriting is not supported');
- $this->httpStatus('403 Forbidden');
- }
- elseif ( is_object($destinationFolder) && ! $destinationFolder->hasRight( ACL_CREATE_FILE ) )
- {
- $this->httpStatus('403 Forbidden' ); // Benutzer darf das nicht
- }
- elseif ( is_object($destinationObject) && $destinationObject->isFolder)
- {
- Logger::debug('WEBDAV: COPY request denied, Folder-Copy not implemented');
- $this->httpStatus('405 Not Allowed');
- }
- elseif ( is_object($destinationObject) && $destinationObject->isLink)
- {
- Logger::debug('WEBDAV: COPY request denied, Link copy not implemented');
- $this->httpStatus('405 Not Allowed');
- }
- elseif ( is_object($destinationObject) && $destinationObject->isPage)
- {
- Logger::debug('WEBDAV: COPY request denied, Page copy not implemented');
- $this->httpStatus('405 Not Allowed');
- }
- else
- {
- $f = new File();
- $f->filename = basename($_SERVER['HTTP_DESTINATION']);
- $f->name = '';
- $f->parentid = $destinationFolder->objectid;
- $f->projectid = $this->project->projectid;
- $f->add();
- $f->copyValueFromFile( $this->obj->objectid );
-
- Logger::debug('WEBDAV: COPY request accepted' );
- // Objekt wird in anderen Ordner kopiert.
- $this->httpStatus('201 Created' );
- }
- }
- }
-
-
-
- /**
- * Verschieben eines Objektes.<br>
- * <br>
- * Folgende Operationen sind m�glich:<br>
- * - Unbenennen eines Objektes (alle Typen)<br>
- * - Verschieben eines Objektes (alle Typen) in einen anderen Ordner.<br>
- */
- public function davMOVE()
- {
- if ( $this->readonly )
- {
- $this->httpStatus('403 Forbidden - Readonly Mode' ); // Schreibgeschuetzt
- }
- elseif ( !$this->create )
- {
- $this->httpStatus('403 Forbidden - No creation' ); // Schreibgeschuetzt
- }
- elseif( $this->obj == null )
- {
- // Was nicht da ist, laesst sich auch nicht verschieben.
- $this->httpStatus('404 Not Found' );
- }
- elseif( is_object($this->obj) && ! $this->obj->hasRight( ACL_WRITE ) )
- {
- // Was nicht da ist, laesst sich auch nicht verschieben.
- Logger::error('Source '.$this->obj->objectid.' is not writable: Forbidden');
- $this->httpStatus('403 Forbidden' );
- }
- elseif ( $this->destination == null )
- {
- Logger::error('WEBDAV: MOVE request, but no "Destination:"-Header');
- // $this->httpStatus('405 Not Allowed' );
- $this->httpStatus('412 Precondition failed');
- }
- else
- {
- $dest = $this->destination;
- $destinationProject = $dest['project'];
- $destinationFolder = $dest['folder' ];
- $destinationObject = $dest['object' ];
-
- if ( $dest['type'] != 'object' )
- {
- Logger::debug('WEBDAV: MOVE request, but "Destination:"-Header mismatch');
- $this->httpStatus('405 Not Allowed');
- return;
- }
-
- if ( is_object($destinationFolder) && ! $destinationFolder->hasRight( ACL_CREATE_FILE ) )
- {
- Logger::error('Source '.$this->obj->objectid.' is not writable: Forbidden');
- $this->httpStatus('403 Forbidden' );
- }
-
- if ( $destinationObject != null )
- {
- Logger::debug('WEBDAV: MOVE request denied, destination exists');
- $this->httpStatus('412 Precondition Failed');
- return;
- }
-
- if ( $this->project->projectid != $destinationProject->projectid )
- {
- // Verschieben in anderes Projekt nicht moeglich.
- Logger::debug('WEBDAV: MOVE request denied, project does not match');
- $this->httpStatus('405 Not Allowed');
- return;
- }
-
- if ( $this->folder->objectid == $destinationFolder->objectid )
- {
- Logger::debug('WEBDAV: MOVE request accepted, object renamed');
- // Resource bleibt in gleichem Ordner.
- $this->obj->filename = basename($_SERVER['HTTP_DESTINATION']);
- $this->obj->objectSave(false);
- $this->httpStatus('201 Created' );
- return;
- }
-
- if ( $destinationFolder->isFolder )
- {
- Logger::debug('WEBDAV: MOVE request accepted, Destination: '.$destinationFolder->filename );
- // Objekt wird in anderen Ordner verschoben.
- $this->obj->setParentId( $destinationFolder->objectid );
- $this->httpStatus('201 Created' );
- return;
- }
-
- Logger::warn('WEBDAV: MOVE request failed' );
- $this->httpStatus('500 Internal Server Error' );
- }
- }
-
-
-
- /**
- * Anlegen oder �berschreiben Dateien �ber PUT.<br>
- * Dateien k�nnen neu angelegt und �berschrieben werden.<br>
- * <br>
- * Seiten k�nnen nicht �berschrieben werden. Wird versucht,
- * eine Seite mit PUT zu �berschreiben, wird der Status "405 Not Allowed" gemeldet.<br>
- */
- public function davPUT()
- {
- // TODO: 409 (Conflict) wenn �bergeordneter Ordner nicht da.
-
- if ( $config['readonly'] )
- {
- $this->httpStatus('405 Not Allowed' );
- }
- elseif ( strlen($this->request) > $this->maxFileSize*1000 )
- {
- // Maximale Dateigroesse ueberschritten.
- // Der Status 207 "Zuwenig Speicherplatz" passt nicht ganz, aber fast :)
- $this->httpStatus('507 Insufficient Storage' );
- }
- elseif ( $this->obj == null )
- {
- // Neue Datei anlegen
- if ( !$config['create'] )
- {
- Logger::warn('WEBDAV: Creation of files not allowed by configuration' );
- $this->httpStatus('405 Not Allowed' );
- }
-
- if ( ! $this->folder->hasRight( ACL_CREATE_FILE ) )
- {
- $this->httpStatus('403 Forbidden');
- return;
- }
-
- $file = new File();
- $file->filename = basename($this->fullSkriptName);
- $file->extension = '';
- $file->size = strlen($this->request);
- $file->parentid = $this->folder->objectid;
- $file->projectid = $this->project->projectid;
- $file->value = $this->request;
- $file->add();
- $this->httpStatus('201 Created');
- return;
- }
- elseif ( $this->obj->isFile )
- {
- if ( ! $this->obj->hasRight( ACL_WRITE ) )
- {
- Logger::debug('PUT failed, parent folder not writable by user' );
- $this->httpStatus('403 Forbidden');
- return;
- }
-
- // Bestehende Datei ueberschreiben.
- $file = new File( $this->obj->objectid );
- $file->saveValue( $this->request );
- $file->setTimestamp();
- $this->httpStatus('204 No Content');
- Logger::debug('PUT ok, file is created' );
- return;
- }
- elseif ( $this->obj->isFolder )
- {
- Logger::error('PUT on folder is not supported, use PROPFIND. Lame client?' );
- $this->httpStatus('405 Not Allowed' );
- }
- else
- {
- // Fuer andere Objekttypen (Links, Seiten) ist kein PUT moeglich.
- Logger::warn('PUT only available for files. Pages and links are ignored' );
- $this->httpStatus('405 Not Allowed' );
- }
- }
-
-
-
- /**
- * WebDav-Methode PROPFIND.
- *
- * Diese Methode wird
- * - beim Ermitteln von Verzeichnisinhalten und
- * - beim Ermitteln von Metainformationen zu einer Datei
- * verwendet.
- *
- * Das Ergebnis wird in einer XML-Zeichenkette geliefert.
- */
- public function davPROPFIND()
- {
- switch( $this->requestType )
- {
- case 'root': // Projektliste
-
- $inhalte = array();
-
- $objektinhalt = array();
- $z = 30*365.25*24*60*60;
- $objektinhalt['createdate' ] = $z;
- $objektinhalt['lastchangedate'] = $z;
- $objektinhalt['size' ] = 1;
- $objektinhalt['name' ] = $this->fullSkriptName;
- $objektinhalt['displayname' ] = '';
- $objektinhalt['type'] = 'folder';
-
- $inhalte[] = $objektinhalt;
-
- $result = $this->client->projectlist();
- $projects = $result['projects'];
- foreach( $projects as $projectid=>$p )
- {
- $objektinhalt = array();
- $objektinhalt['createdate' ] = TIME_20000101;
- $objektinhalt['lastchangedate'] = TIME_20000101;
- $objektinhalt['size' ] = 1;
- $objektinhalt['name' ] = $this->fullSkriptName.$p['name'].'/';
- $objektinhalt['displayname' ] = $p['name'];
- $objektinhalt['type'] = 'folder';
- $inhalte[] = $objektinhalt;
- }
-
- $this->multiStatus( $inhalte );
- break;
-
- case 'folder': // Verzeichnisinhalt
-
- $folder = $this->client->folder( $this->objectid );
-
- $inhalte = array();
-
- $objektinhalt = array();
- $objektinhalt['createdate' ] = $folder['properties']['create_date'];
- $objektinhalt['lastchangedate'] = $folder['properties']['lastchange_date'];
- $objektinhalt['name' ] = $this->fullSkriptName;
- $objektinhalt['displayname' ] = $folder['properties']['filename'];
- $objektinhalt['type' ] = 'folder';
- $objektinhalt['size' ] = 0;
-
- $inhalte[] = $objektinhalt;
-
- if ( $this->depth > 0 )
- {
-
- foreach( $folder['object'] as $object )
- {
- $objektinhalt = array();
- $objektinhalt['createdate' ] = $object['date'];
- $objektinhalt['lastchangedate'] = $object['date'];
- $objektinhalt['displayname' ] = $object['filename'];
-
- switch( $object['type'] )
- {
- case 'folder':
- $objektinhalt['name'] = $this->fullSkriptName.$object['filename'].'/';
- $objektinhalt['type'] = 'folder';
- $objektinhalt['size'] = 0;
- $inhalte[] = $objektinhalt;
- break;
- case 'file':
- $objektinhalt['name'] = $this->fullSkriptName.$object['filename'];
- $objektinhalt['type'] = 'file';
- $objektinhalt['size'] = $object['size'];
- $objektinhalt['mime'] = 'application/x-non-readable';
- $inhalte[] = $objektinhalt;
- break;
- case 'link':
- $objektinhalt['name'] = $this->fullSkriptName.$object['filename'];
- $objektinhalt['type'] = 'file';
- $objektinhalt['size'] = 0;
- $objektinhalt['mime'] = 'application/x-non-readable';
- $inhalte[] = $objektinhalt;
- break;
- case 'page':
- $objektinhalt['name'] = $this->fullSkriptName.$object['filename'];
- $objektinhalt['type'] = 'file';
- $objektinhalt['size'] = 0;
- $inhalte[] = $objektinhalt;
- break;
- default:
- }
- }
- }
- $this->multiStatus( $inhalte );
- break;
-
- case 'page':
- $page = $this->client->page( $objectid );
- $prop = $page['properties'];
- $objektinhalt = array();
- $objektinhalt['name'] = $this->fullSkriptName.'/'.$prop['filename'].'/';
- $objektinhalt['displayname'] = $prop['filename'];
- $objektinhalt['createdate' ] = $prop['date'];
- $objektinhalt['lastchangedate'] = $prop['date'];
-
- $objektinhalt['size' ] = 0;
- $objektinhalt['type' ] = 'file';
- break;
-
- case 'file':
- $file = $this->client->file( $objectid );
- $objektinhalt = array();
- $objektinhalt['name'] = $this->fullSkriptName.'/'.$file['filename'].'/';
- $objektinhalt['displayname'] = $file['filename'];
- $objektinhalt['createdate' ] = $file['date'];
- $objektinhalt['lastchangedate'] = $file['date'];
-
- $objektinhalt['size' ] = $file['size'];
- $objektinhalt['type' ] = 'file';
-
- break;
-
- case 'link':
-
- $link = $this->client->link( $objectid );
-
- $objektinhalt = array();
- $objektinhalt['name'] = $this->fullSkriptName.'/'.$link['filename'].'/';
- $objektinhalt['displayname'] = $link['filename'];
- $objektinhalt['createdate' ] = $link['date'];
- $objektinhalt['lastchangedate'] = $link['date'];
-
- $objektinhalt['size' ] = 0;
- $objektinhalt['type' ] = 'file';
-
-
- $this->multiStatus( array($objektinhalt) );
-
- break;
-
- default:
- Logger::warn('Internal Error, unknown request type: '. $this->requestType);
- $this->httpStatus('500 Internal Server Error');
- }
- }
-
-
- /**
- * Webdav-Methode PROPPATCH ist nicht implementiert.
- */
- public function davPROPPATCH()
- {
- // TODO: Multistatus erzeugen.
- // Evtl. ist '409 Conflict' besser?
- $this->httpStatus('405 Not Allowed');
- }
-
-
- /**
- * Erzeugt einen Multi-Status.
- * @access private
- */
- private function multiStatus( $files )
- {
- $this->httpStatus('207 Multi-Status');
- header('Content-Type: text/xml; charset=utf-8');
-
- $response = '';
- $response .= '<?xml version="1.0" encoding="utf-8" ?>';
- $response .= '<d:multistatus xmlns:d="DAV:">';
-
- foreach( $files as $file )
- $response .= $this->getResponse( $file['name'],$file );
-
- $response .= '</d:multistatus>';
-
- $response = utf8_encode($response);
-
- header('Content-Length: '.strlen($response));
- Logger::debug('Multistatus: '.$response);
- echo $response;
- }
-
-
- /**
- * Erzeugt ein "response"-Element, welches in ein "multistatus"-element verwendet werden kann.
- */
- private function getResponse( $file,$options )
- {
- // TODO: Nur angeforderte Elemente erzeugen.
- $response = '';
- $response .= '<d:response>';
- $response .= '<d:href>'.$file.'</d:href>';
- $response .= '<d:propstat>';
- $response .= '<d:prop>';
- // $response .= '<d:source></d:source>';
- $response .= '<d:creationdate>'.date('r',$options['createdate']).'</d:creationdate>';
- $response .= '<d:displayname>'.$options['displayname'].'</d:displayname>';
- $response .= '<d:getcontentlength>'.$options['size'].'</d:getcontentlength>';
- $response .= '<d:getlastmodified xmlns:b="urn:uuid:c2f41010-65b3-11d1-a29f-00aa00c14882/" b:dt="dateTime.rfc1123">'.date('r',$options['lastchangedate']).'</d:getlastmodified>';
-
- if ( $options['type'] == 'folder')
- $response .= '<d:resourcetype><d:collection/></d:resourcetype>';
- else
- $response .= '<d:resourcetype />';
-
- $response .= '<d:categories />';
- $response .= '<d:fields></d:fields>';
-
-
-
-// $response .= '<d:getcontenttype>text/html</d:getcontenttype>';
-// $response .= '<d:getcontentlength />';
-// $response .= '<d:getcontentlanguage />';
-// $response .= '<d:executable />';
-// $response .= '<d:resourcetype>';
-// $response .= '<d:collection />';
-// $response .= '</d:resourcetype>';
-// $response .= '<d:getetag />';
-
- $response .= '</d:prop>';
- $response .= '<d:status>HTTP/1.1 200 OK</d:status>';
- $response .= '</d:propstat>';
- $response .= '</d:response>';
-
- return $response;
- }
-
-
-
- /**
- * URI parsen.
- */
- private function parseURI( $uri )
- {
- // Ergebnis initialisieren (damit alle Schl�ssel vorhanden sind)
- $ergebnis = array('type' => null,
- 'projectid' => null,
- 'objectid' => null );
-
-
-// Logger::trace( 'WEBDAV: Parsen der URI '.$uri);
- $uriParts = explode('/',$uri);
-
- $projectName = array_shift($uriParts);
-
- if ( empty($projectName) )
- {
- $ergebnis['type'] = 'root';
- return $ergebnis; // Root-Verzeichnis
- }
-
- $result = $this->client->projectlist();
- $projects = $result['projects'];
-
- $projectid = array_search($projectName,$projects);
-
- if ( $projectid === FALSE )
- {
- httpStatus("404 Not found");
- }
+// PHP-Fehler ins Log schreiben, damit die Ausgabe nicht zerstoert wird.
+if (version_compare(PHP_VERSION, '5.0.0', '>'))
+ set_error_handler('webdavErrorHandler',E_ERROR | E_WARNING);
+else
+ set_error_handler('webdavErrorHandler');
- $project = $this->client->project($projectid);
-
- $ergebnis['projectid'] = $projectid;
-
- $objectid = $project['rootobjectid'];
- $type = 'folder';
-
- while( length($uriParts) > 0 )
- {
- $name = array_shift($uriParts);
-
- $folder = $this->client->folder($objectid);
-
- $found = false;
- foreach( $folder['object'] as $oid => $object)
- {
- if ( $object['filename'] == $name )
- {
- $found = true;
-
- $type = $object['type'];
- $objectid = $object['objectid'];
-
- break;
- }
-
- }
-
- if ( ! $found )
- {
- httpStatus('404 Not Found');
- exit;
- }
- }
- $ergebnis['type' ] = $type;
- $ergebnis['objectid'] = $objectid;
-
+$dav = new WebDAV();
- return $ergebnis;
- }
-}
+$httpMethod = strtoupper($_SERVER['REQUEST_METHOD']);
+$davMethodName = 'dav'.$httpMethod;
+$dav->$davMethodName();
/**
@@ -1192,39 +92,14 @@ function webdavErrorHandler($errno, $errstr, $errfile, $errline)
{
error_log('WEBDAV ERROR: '.$errno.'/'.$errstr.'/file:'.$errfile.'/line:'.$errline);
- // Wir teilen dem Client mit, dass auf dem Server was schief gelaufen ist.
- WebDAV::httpStatus('500 Internal Server Error, WebDAV-Request failed with "'.$errstr.'"');
- exit;
-}
-
+ header('HTTP/1.1 503 Internal WebDAV Server Error');
-/**
- * Setzt einen HTTP-Status.<br>
- * <br>
- * Es wird ein HTTP-Status gesetzt, zus�tzlich wird der Status in den Header "X-WebDAV-Status" geschrieben.<br>
- * Ist der Status nicht 200 oder 207 (hier folgt ein BODY), wird das Skript beendet.
- */
-function httpStatus( $status = true )
-{
- if ( $status === true )
- $status = '200 OK';
-
- // Logger::debug('WEBDAV: HTTP-Status: '.$status);
+ // Wir teilen dem Client mit, dass auf dem Server was schief gelaufen ist.
+ echo 'WebDAV-Request failed with "'.$errstr.'"';
+ exit;
+}
- header('HTTP/1.1 '.$status);
- header('X-WebDAV-Status: '.$status,true);
- // RFC 2616 (HTTP/1.1), Section 10.4.6 "405 Method Not Allowed" says:
- // "[...] The response MUST include an
- // Allow header containing a list of valid methods for the requested
- // resource."
- //
- // RFC 2616 (HTTP/1.1), Section 14.7 "Allow" says:
- // "[...] An Allow header field MUST be
- // present in a 405 (Method Not Allowed) response."
- if ( substr($status,0,3) == '405' )
- header('Allow: '.implode(', ',$this->allowed_methods()) );
-}
?>
\ No newline at end of file
diff --git a/dav/index.php b/dav/index.php
@@ -1 +1,6 @@
-<?php require('dav.php') ?>-
\ No newline at end of file
+<html>
+<body>
+<a href="./dav.php/">DAV</a>
+</body>
+</html>
+