-
Notifications
You must be signed in to change notification settings - Fork 242
/
webdav.php
executable file
·237 lines (206 loc) · 8.37 KB
/
webdav.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
<?php
//
// This is the index_webdav.php file. Manages WebDAV sessions.
//
// Created on: <15-Aug-2003 15:15:15 bh>
//
// ## BEGIN COPYRIGHT, LICENSE AND WARRANTY NOTICE ##
// SOFTWARE NAME: eZ publish
// SOFTWARE RELEASE: 3.8.x
// COPYRIGHT NOTICE: Copyright (C) 1999-2006 eZ systems AS
// SOFTWARE LICENSE: GNU General Public License v2.0
// NOTICE: >
// This program is free software; you can redistribute it and/or
// modify it under the terms of version 2.0 of the GNU General
// Public License as published by the Free Software Foundation.
//
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU General Public License for more details.
//
// You should have received a copy of version 2.0 of the GNU General
// Public License along with this program; if not, write to the Free
// Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
// MA 02110-1301, USA.
//
//
// ## END COPYRIGHT, LICENSE AND WARRANTY NOTICE ##
//
ignore_user_abort( true );
ob_start();
error_reporting ( E_ALL );
// Turn off session stuff, isn't needed for WebDAV operations.
$GLOBALS['eZSiteBasics']['session-required'] = false;
include_once( "lib/ezutils/classes/ezdebug.php" );
include_once( "lib/ezutils/classes/ezsys.php" );
include_once( "lib/ezutils/classes/ezini.php" );
/*! Reads settings from site.ini and passes them to eZDebug.
*/
function eZUpdateDebugSettings()
{
$ini =& eZINI::instance();
$debugSettings = array();
$debugSettings['debug-enabled'] = $ini->variable( 'DebugSettings', 'DebugOutput' ) == 'enabled';
$debugSettings['debug-by-ip'] = $ini->variable( 'DebugSettings', 'DebugByIP' ) == 'enabled';
$debugSettings['debug-ip-list'] = $ini->variable( 'DebugSettings', 'DebugIPList' );
eZDebug::updateSettings( $debugSettings );
}
/*!
Reads settings from i18n.ini and passes them to eZTextCodec.
*/
function eZUpdateTextCodecSettings()
{
$ini =& eZINI::instance( 'i18n.ini' );
list( $i18nSettings['internal-charset'], $i18nSettings['http-charset'], $i18nSettings['mbstring-extension'] ) =
$ini->variableMulti( 'CharacterSettings', array( 'Charset', 'HTTPCharset', 'MBStringExtension' ), array( false, false, 'enabled' ) );
include_once( 'lib/ezi18n/classes/eztextcodec.php' );
eZTextCodec::updateSettings( $i18nSettings );
}
// Initialize text codec settings
eZUpdateTextCodecSettings();
// Check for extension
include_once( 'lib/ezutils/classes/ezextension.php' );
include_once( 'kernel/common/ezincludefunctions.php' );
eZExtension::activateExtensions( 'default' );
// Extension check end
// Make sure site.ini and template.ini reloads its cache incase
// extensions override it
$ini =& eZINI::instance( 'site.ini' );
$ini->loadCache();
$tplINI =& eZINI::instance( 'template.ini' );
$tplINI->loadCache();
// Grab the main WebDAV setting (enable/disable) from the WebDAV ini file.
$webDavIni =& eZINI::instance( 'webdav.ini' );
$enable = $webDavIni->variable( 'GeneralSettings', 'EnableWebDAV' );
function eZDBCleanup()
{
if ( class_exists( 'ezdb' )
and eZDB::hasInstance() )
{
$db =& eZDB::instance();
$db->setIsSQLOutputEnabled( false );
}
}
function eZFatalError()
{
eZDebug::setHandleType( EZ_HANDLE_NONE );
if ( !class_exists( 'eZWebDAVServer' ) )
{
include_once( "lib/ezwebdav/classes/ezwebdavserver.php" );
}
eZWebDAVServer::appendLogEntry( "****************************************" );
eZWebDAVServer::appendLogEntry( "Fatal error: eZ publish did not finish its request" );
eZWebDAVServer::appendLogEntry( "The execution of eZ publish was abruptly ended, the debug output is present below." );
eZWebDAVServer::appendLogEntry( "****************************************" );
// $templateResult = null;
// eZDisplayResult( $templateResult, eZDisplayDebug() );
}
// Check and proceed only if WebDAV functionality is enabled:
if ( $enable === 'true' )
{
include_once( 'lib/ezutils/classes/ezexecution.php' );
eZExecution::addCleanupHandler( 'eZDBCleanup' );
eZExecution::addFatalErrorHandler( 'eZFatalError' );
eZDebug::setHandleType( EZ_HANDLE_TO_PHP );
if ( !isset( $_SERVER['REQUEST_URI'] ) or
!isset( $_SERVER['REQUEST_METHOD'] ) )
{
// We stop the script if these are missing
// e.g. if run from the shell
eZExecution::cleanExit();
}
include_once( "lib/ezutils/classes/ezmodule.php" );
include_once( 'lib/ezutils/classes/ezexecution.php' );
include_once( "lib/ezutils/classes/ezsession.php" );
include_once( "access.php" );
include_once( "kernel/common/i18n.php" );
include_once( "kernel/classes/webdav/ezwebdavcontentserver.php" );
eZModule::setGlobalPathList( array( "kernel" ) );
eZWebDAVServer::appendLogEntry( "========================================" );
eZWebDAVServer::appendLogEntry( "Requested URI is: " . $_SERVER['REQUEST_URI'], 'webdav.php' );
// Initialize/set the index file.
eZSys::init( 'webdav.php' );
// The top/root folder is publicly available (without auth):
if ( $_SERVER['REQUEST_URI'] == '' or
$_SERVER['REQUEST_URI'] == '/' or
$_SERVER['REQUEST_URI'] == '/webdav.php/' or
$_SERVER['REQUEST_URI'] == '/webdav.php' )
{
$testServer = new eZWebDAVContentServer();
$testServer->processClientRequest();
}
// Else: need to login with username/password:
else
{
// Create & initialize a new instance of the content server.
$server = new eZWebDAVContentServer();
// Get the name of the site that is being browsed.
$currentSite = $server->currentSiteFromPath( $_SERVER['REQUEST_URI'] );
// Proceed only if the current site is valid:
if ( $currentSite )
{
$server->setCurrentSite( $currentSite );
$loginUsername = "";
// Get the username and the password.
if ( isset( $_SERVER['PHP_AUTH_USER'] ) )
$loginUsername = $_SERVER['PHP_AUTH_USER'];
if ( isset( $_SERVER['PHP_AUTH_PW'] ) )
$loginPassword = $_SERVER['PHP_AUTH_PW'];
// Strip away "domainname\" from a possible "domainname\password" string.
if ( preg_match( "#(.*)\\\\(.*)$#", $loginUsername, $matches ) )
{
$loginUsername = $matches[2];
}
$user = false;
if ( isset( $loginUsername ) && isset( $loginPassword ) )
{
include_once( 'kernel/classes/datatypes/ezuser/ezuserloginhandler.php' );
if ( $ini->hasVariable( 'UserSettings', 'LoginHandler' ) )
{
$loginHandlers = $ini->variable( 'UserSettings', 'LoginHandler' );
}
else
{
$loginHandlers = array( 'standard' );
}
foreach ( array_keys ( $loginHandlers ) as $key )
{
$loginHandler = $loginHandlers[$key];
$userClass =& eZUserLoginHandler::instance( $loginHandler );
$user = $userClass->loginUser( $loginUsername, $loginPassword );
if ( get_class( $user ) == 'ezuser' )
break;
}
}
// Check if username & password contain someting, attempt to login.
if ( get_class( $user ) != 'ezuser' )
{
header( 'HTTP/1.0 401 Unauthorized' );
header( 'WWW-Authenticate: Basic realm="' . WEBDAV_AUTH_REALM . '"' );
// Read XML body and discard it
file_get_contents( "php://input" );
}
// Else: non-empty & valid values were supplied: login successful!
else
{
$userName = $user->attribute( 'login' );
eZWebDAVServer::appendLogEntry( "Logged in: '$userName'", 'webdav.php' );
// Process the request.
$server->processClientRequest();
}
}
// Else: site-name is invalid (was not among available sites).
else
{
header( "HTTP/1.1 404 Not Found" );
}
}
eZExecution::cleanExit();
}
// Else: WebDAV functionality is disabled, do nothing...
else
{
print ( WEBDAV_DISABLED );
}
?>