openrat-cms

Http.class.php (13665B)

---

 <?php
 // OpenRat Content Management System
 // Copyright (C) 2002-2012 Jan Dankert, cms@jandankert.de
 //
 // This program is free software; you can redistribute it and/or
 // modify it under the terms of the GNU General Public License
 // as published by the Free Software Foundation; either version 2
 // of the License, or (at your option) any later version.
 //
 // This program is distributed in the hope that it will be useful,
 // but WITHOUT ANY WARRANTY; without even the implied warranty of
 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 // GNU General Public License for more details.
 //
 // You should have received a copy of the GNU General Public License
 // along with this program; if not, write to the Free Software
 // Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
 
 
 namespace util;
 use cms\base\DB;
 use logger\Logger;
 use withPraefixQuestionMark;
 
 /**
  * Kapselung einer HTTP-Anfrage.<br>
  * Unter Beruecksichtigung von RFC 1945.<br>
  *
  * @author Jan Dankert
  * @package openrat.services
  */
 class Http
 {
 	public $header = array();
 
 	public $url = array();
 	public $responseHeader = array();
 	public $requestParameter = array();
 	public $urlParameter = array();
 
 	/**
 	 * HTTP-Request-Typ.<br>
 	 * Muss entweder "GET" oder "POST" sein.<br>
 	 * Default: "GET".
 	 *
 	 * @var String Request-Typ
 	 */
 	public $method = 'GET';
 	public $error = '';
 	public $status = '';
 	public $body = '';
 
 	public $httpCmd = '';
 
 
 	/**
 	 * Erzeugt eine HTTP-Anfrage.
 	 *
 	 * @param String URL
 	 * @return Http
 	 */
 	public function __construct($url = '')
 	{
 		$this->setURL($url);
 		$this->header['User-Agent'] = 'Mozilla/5.0 (OpenRat CMS)';
 		$this->header['Connection'] = 'close';
 	}
 
 
 	/**
 	 * Setzt die URL.
 	 *
 	 * @param String URL
 	 */
 	function setURL($url)
 	{
 		$this->url = parse_url($url);
 
 		if (empty($this->url['host']) && !empty($this->url['path'])) {
 			$this->url['host'] = basename($this->url['path']);
 			$this->url['path'] = '/';
 		}
 
 		if (empty($this->url['path']))
 			$this->url['path'] = '/';
 
 		if (!isset($this->url['port']))
 			if (!isset($this->url['scheme'])) {
 				$this->url['scheme'] = 'http'; // Standard-Port.
 				$this->url['port'] = 80; // Standard-Port.
 			} elseif ($this->url['scheme'] == 'https')
 				$this->url['port'] = 443; // SSL-Port.
 			else
 				$this->url['port'] = 80; // Standard-Port.
 
 		if (!empty($this->url['query']))
 			parse_str($this->url['query'], $this->urlParameter);
 
 	}
 
 
 	/**
 	 * Setzt Authentisierungsinformationen in den HTTP-Request.<br>
 	 *
 	 * @param String Benutzername
 	 * @param String Kennwort
 	 */
 	public function setBasicAuthentication($user, $password)
 	{
 		$this->header['Authorization'] = 'Basic ' . base64_encode($user . ':' . $password);
 	}
 
 
 	/**
 	 * Erzeugt eine HTTP-Parameterstring mit allen Parametern.
 	 *
 	 * @param withPraefixQuestionMark Praefix mit Fragezeichen (fuer GET-Anfragen)
 	 * @return String URL-Parameter
 	 */
 	public function getParameterString($withPraefixQuestionMark = false)
 	{
 		$parameterString = '';
 		$parameter = $this->urlParameter + $this->requestParameter;
 
 		if (!empty($parameter)) {
 			foreach ($this->requestParameter as $paramName => $paramValue) {
 				if (strlen($parameterString) > 0)
 					$parameterString .= '&';
 				elseif ($withPraefixQuestionMark)
 					$parameterString .= '?';
 
 				$parameterString .= urlencode($paramName) . '=' . urlencode($paramValue);
 			}
 		}
 
 		return $parameterString;
 	}
 
 
 	/**
 	 * Liefert die URL des Requests.
 	 *
 	 * @return String URL
 	 */
 	public function getUrl()
 	{
 		$location = $this->url['scheme'];
 		$location .= '://';
 		$location .= $this->url['host'];
 		if ($this->url['scheme'] == 'http' && $this->url['port'] != 80 ||
 			$this->url['scheme'] == 'https' && $this->url['port'] != 443)
 			$location .= ':' . $this->url['port'];
 		$location .= $this->url['path'];
 
 		$location .= $this->getParameterString(true);
 
 		if (isset($this->url['fragment']))
 			$location .= '#' . $this->url['fragment'];
 
 		return $location;
 	}
 
 
 	/**
 	 * Sendet eine Redirect-Anweisung mit der aktuellen URL an den Browser.
 	 */
 	public function sendRedirect()
 	{
 		$location = $this->getUrl();
 
 		header('Location: ' . $location);
 		exit;
 	}
 
 
 	/**
 	 * Führt einen HTTP-Request durch.
 	 *
 	 * @return boolean Erfolg der Anfrage.
 	 */
 	public function request()
 	{
 		$this->error = '';
 		$this->status = '';
 
 		$errno = 0;
 		$errstr = '';
 
 		if (empty($this->url['host'])) {
 			$this->error = "No hostname specified";
 			return false;
 		}
 
 		foreach ($this->header as $header_key => $header_value) {
 			if (is_numeric($header_key)) {
 				$dp = strpos($header_value, ':');
 				if ($dp !== FALSE)
 					$this->header[substr($header_value, 0, $dp)] = substr($header_value, $dp + 1);
 				unset($this->header[$header_key]);
 			}
 		}
 
 		$parameterString = $this->getParameterString();
 
 		if ($this->method == 'POST') {
 			$this->header['Content-Type'] = 'application/x-www-form-urlencoded';
 			$this->header['Content-Length'] = strlen($parameterString);
 		}
 
 		// Accept-Header setzen, falls noch nicht vorhanden.
 		if (!array_key_exists('Accept', $this->header))
 			$this->header['Accept'] = '*/*';
 
 		$this->responseHeader = array();
 
 		// RFC 1945 (Section 9.3) says:
 		// A user agent should never automatically redirect a request
 		// more than 5 times, since such redirections usually indicate an infinite loop.
 		for ($r = 1; $r <= 5; $r++) {
 			$this->header['Host'] = $this->url['host'];
 
 			// Die Funktion fsockopen() erwartet eine Protokollangabe (bei TCP optional, bei SSL notwendig).
 			if ($this->url['scheme'] == 'https' || $this->url['port'] == '443')
 				$prx_proto = 'ssl://'; // SSL
 			else
 				$prx_proto = 'tcp://'; // Default
 
 			$fp = @fsockopen($prx_proto . $this->url['host'], $this->url['port'], $errno, $errstr, 30);
 
 			if (!$fp || !is_resource($fp)) {
 				// Keine Verbindung zum Host moeglich.
 				$this->error = "Connection refused: '" . $prx_proto . $this->url['host'] . ':' . $this->url['port'] . " - $errstr ($errno)";
 				return false;
 			} else {
 
 				$lb = "\r\n";
 				$http_get = $this->url['path'];
 
 				$request_header = array($this->method . ' ' . $http_get . ' HTTP/1.0');
 
 				foreach ($this->header as $header_key => $header_value)
 					$request_header[] = $header_key . ': ' . $header_value;
 
 				$http_request = implode($lb, $request_header) . $lb . $lb;
 
 				if ($this->method == 'GET')
 					if (!empty($parameterString))
 						$http_get .= '?' . $parameterString;
 
 				if ($this->method == 'POST')
 					$http_request .= $parameterString;
 
 				if (!is_resource($fp)) {
 					$this->error = 'Connection lost after connect: ' . $prx_proto . $this->url['host'] . ':' . $this->url['port'];
 					return false;
 				}
 				fputs($fp, $http_request); // Die HTTP-Anfrage zum Server senden.
 
 				// Jetzt erfolgt das Auslesen der HTTP-Antwort.
 				$isHeader = true;
 
 				// RFC 1945 (Section 6.1) schreibt als Statuszeile folgendes Format vor
 				// "HTTP/" 1*DIGIT "." 1*DIGIT SP 3DIGIT SP
 				if (!is_resource($fp)) {
 					$this->error = 'Connection lost during transfer: ' . $this->url['host'] . ':' . $this->url['port'];
 					return false;
 				} elseif (!feof($fp)) {
 					$line = fgets($fp, 1028);
 					$this->status = substr($line, 9, 3);
 				} else {
 					$this->error = 'Unexpected EOF while reading HTTP-Response';
 					return false;
 				}
 
 				$this->body = '';
 				while (!feof($fp)) {
 					$line = fgets($fp, 1028);
 					if ($isHeader && trim($line) == '') // Leerzeile nach Header.
 					{
 						$isHeader = false;
 					} elseif ($isHeader) {
 						list($headerName, $headerValue) = explode(': ', $line) + array(1 => '');
 						$this->responseHeader[$headerName] = trim($headerValue);
 					} else {
 						$this->body .= $line;
 					}
 				}
 				fclose($fp); // Verbindung brav schlie�en.
 
 
 				// RFC 1945 (Section 6.1.1) schreibt
 				// "[...] However, applications must understand the class of any status code, as
 				// indicated by the first digit"
 				// Daher interessiert uns nur die erste Stelle des 3-stelligen HTTP-Status.
 
 				// 301 Moved Permanently
 				// 302 Moved Temporarily
 				if ($this->status == '301' ||
 					$this->status == '302') {
 					$location = @$this->responseHeader['Location'];
 					if (empty($location)) {
 						$this->error = '301/302 Response without Location-header';
 						return false;
 					}
 
 					//Html::debug($this->url,"alte URL");
 					//Html::debug($location,"NEUES REDIRECT AUF");
 					$this->setURL($location);
 					continue; // Naechster Versuch mit umgeleiteter Adresse.
 				}
 
 				// RFC 1945 (Section 6.1.1) schreibt
 				// "2xx: Success - The action was successfully received, understood, and accepted."
 				elseif (substr($this->status, 0, 1) == '2') {
 					return true;
 				} elseif (substr($this->status, 0, 1) == '4') {
 					$this->error = 'Client Error: ' . $this->status;
 					return false;
 				} elseif (substr($this->status, 0, 1) == '5') {
 					$this->error = 'Server Error: ' . $this->status;
 					return false;
 				} else {
 					$this->error = 'Unexpected HTTP-Status: ' . $this->status . '; this is mostly a client error, sorry.';
 					return false;
 				}
 			}
 
 			$this->error = 'Too much redirects, infinite loop assumed. Exiting. Last URL: ' . $http_get;
 			return false;
 
 		}
 
 	}
 
 
 	/**
 	 * Aus dem HTTP-Header werden die vom Browser angeforderten Sprachen
 	 * gelesen.<br>
 	 * Es wird eine Liste von Sprachen erzeugt.<br>
 	 *
 	 * Beispiel:
 	 * 'de_DE','de','en_GB','en' ... usw.<br>
 	 * Wenn der Browser 'de_DE' anfordert, wird hier zusätzlich
 	 * auch 'de' (als Fallback) ermittelt.
 	 *
 	 * @static
 	 * @return array
 	 */
 	public static function getLanguages()
 	{
 		$languages = array();
 		$http_languages = @$_SERVER['HTTP_ACCEPT_LANGUAGE'];
 		foreach (explode(',', $http_languages) as $l) {
 			list($part) = explode(';', $l); // Priorit�ten ignorieren.
 			$languages[] = trim($part);
 
 			// Aus "de_DE" das "de" extrahieren.
 			$languages[] = current(explode('_', str_replace('-', '_', trim($part))));
 		}
 
 		return array_unique($languages);
 	}
 
 
 	/**
 	 * Ermittelt die aktuelle HTTP-Adresse des Requests (inkl. Pfad, jedoch ohne Datei).
 	 *
 	 * @return String URL
 	 */
 	public static function getServer()
 	{
 		$https = getenv('HTTPS');
 
 		if ($https)
 			$server = 'https://';
 		else
 			$server = 'http://';
 
 		$server .= getenv('SERVER_NAME') . dirname(getenv('REQUEST_URI'));
 
 		return $server;
 	}
 
 
 
 	public static function badRequest() {
 		self::sendStatus('400','Bad Request');
 	}
 
 	public static function methodNotAllowed() {
 		self::sendStatus('405','Bad Request');
 	}
 
 	public static function notAcceptable() {
 		self::sendStatus('406','Not Acceptable');
 	}
 
 	/**
 	 * Server-Fehlermeldung anzeigen.<br>
 	 *
 	 * Erzeugt einen "HTTP 501 Internal Server Error". Zusaetzlich
 	 * wird ein 'rollback' auf der Datenbank ausgefaehrt.
 	 *
 	 * @param String $message Eigener Hinweistext
 	 */
 	public static function serverError($message = '', $reason = '')
 	{
 		/*
 		try {
 
 		if (class_exists('util\Session')) {
 			$db = DB::get();
 			if (is_object($db))
 				$db->rollback();
 		}
 
 		if (class_exists('logger\Logger'))
 			Logger::warn($message . "\n" . $reason);
 		}
 		catch( \Exception $e ) {
 			//error_log( $e->__toString() );
 		}*/
 
 		self::sendStatus(500, 'Internal Server Error');
 	}
 
 
 	/**
 	 * Der Benutzer ist nicht autorisiert, eine Aktion auszufuehren.
 	 *
 	 * Diese Funktion erzeugt einen "HTTP 403 Not Authorized" und das
 	 * Skript wird beendet.
 	 *
 	 * @param String $text Text
 	 * @param String $message Eigener Hinweistext
 	 */
 	public static function forbidden()
 	{
 		Http::sendStatus(403, 'Forbidden');
 	}
 
 
 	/**
 	 * Nichts gefunden.
 	 *
 	 * Diese Funktion erzeugt einen "HTTP 404 Not found" und das
 	 * Skript wird beendet.
 	 *
 	 */
 	public static function notFound()
 	{
 		Http::sendStatus(404, 'Not found');
 	}
 
 
 	/**
 	 * Kein Inhalt.
 	 *
 	 * Die HTTP-Antwort stellt gegenüber dem Client klar, dass es keinen Inhalt gibt.
 	 */
 	public static function noContent()
 	{
 		self::sendStatus(204,'No Content');
 	}
 
 
 	/**
 	 * Schickt einen HTTP-Status zum Client und beendet das Skript.
 	 *
 	 * @param Integer $status HTTP-Status (ganzzahlig) (Default: 501)
 	 * @param String $text HTTP-Meldung (Default: 'Internal Server Error')
 	 */
 	private static function sendStatus($status = 500, $text = 'Internal Server Error')
 	{
 		if (headers_sent()) {
 			echo "$status $text";
 			exit;
 		}
 
 		header('HTTP/1.0 ' . intval($status) . ' ' . $text);
 	}
 
 
 	/**
 	 * Liefert den Mime-Type, den der Browser (oder besser: HTTP-Client) wünscht.
 	 *
 	 * @return array Mime-Typen, welche vom User-Agent akzeptiert werden.
 	 */
 	public static function getAccept()
 	{
 		$httpAccept = getenv('HTTP_ACCEPT');
 		return array_map( function($accept) {
 				return explode(';',$accept)[0];
 			}, explode(',', $httpAccept)
 		);
 	}
 
 
 	/**
 	 * Liefert die IPv4-Adresse des Clients. Falls der Request durch einen Proxy kam, wird
 	 * versucht, die echte IP-Adresse aus dem Anfrageheader zu ermitteln.
 	 *
 	 * @return Client-IPv4-Adresse
 	 */
 	public static function getClientIP()
 	{
 		$ip = '';
 
 		if (isset($_SERVER["HTTP_X_FORWARDED_FOR"])) {
 			$ip = $_SERVER["HTTP_X_FORWARDED_FOR"];
 		} elseif (isset($_SERVER["HTTP_CLIENT_IP"])) {
 			$ip = $_SERVER["HTTP_CLIENT_IP"];
 		} elseif (isset($_SERVER["REMOTE_ADDR"])) {
 			$ip = $_SERVER["REMOTE_ADDR"];
 		}
 
 		return $ip;
 	}
 
 
 	/**
 	 * Ermittelt den TCP/IP-Port des Clients.
 	 * Achtung, bei Proxy-Zugriffen kann dies der Port des Proxys sein.
 	 *
 	 * @return string TCP/IP-Port
 	 */
 	public static function getClientPort()
 	{
 		$ip = '';
 
 		if (isset($_SERVER["REMOTE_PORT"])) {
 			$ip = $_SERVER["REMOTE_PORT"];
 		}
 
 		return $ip;
 	}
 }
 
 ?>