* $server = ezcWebdavServer::getInstance(); * * // Optionally register aditional transport handlers * * // This step is only required, if you want to add custom or third party extensions * // implementations for special clients. * $server->configurations[] = new ezcWebdavServerConfiguration( * // Regular expression to match client name * '(My.*Webdav\s+Cliengt)i', * // Class name of transport handler, extending {@link ezcWebdavTransport} * 'myCustomTransportTransport' * ); * $server->configurations[] = new ezcWebdavServerConfiguration( * // Regular expression to match client name * '(.*Firefox.*)i', * // Class name of transport handler, extending {@link ezcWebdavTransport} * 'customWebdavMozillaTransport', * // A custom implementation of {@link ezcWebdavXmlTool} * 'customWebdavXmlTool', * // A custom implementation of {@link ezcWebdavPropertyHandler} * 'customWebdavPropertyHandler', * // A custom path factory * new customWebdavPathFactory() * ); * * // Serve data using file backend with data in "path/" * $backend = new ezcWebdavBackendFile( '/path' ); * * // Make the server serve WebDAV requests * $server->handle( $backend ); * * * @property ezcWebdavServerConfigurationManager $configurations * Webdav server configuration manager, which holds and dispatches * configurations that fit for a certain client. * @property ezcWebdavAuth $auth * The central authentication mechanism for the WebDAV server. This * instance will be used to perform authentication and authorization * on every incoming request. A valid property value is an object * that at least implements {@link ezcWebdavBasicAuthenticator} or * {@link ezcWebdavDigestAuthenticator} or both. In addition {@link * ezcWebdavAuthorizer} may be implemented. The default is null, * indicating that no authentication/authorization is provided. * * @property-read ezcWebdavBackend $backend * The backend given to {@link ezcWebdavServer->handle()}. Null * before handle() was called. * @property-read ezcWebdavPluginRegistry $pluginRegistry * The internal plugin registry. Can be accessed to register and * remove plugins. * @property-read ezcWebdavPathFactory $pathFactory * The path factory object used to translate between URIs and * local paths. Configured by the {@link * ezcWebdavServerConfigurationManager} when the {@link * ezcWebdavServer::handle()} method is run}. * @property-read ezcWebdavXmlTool $xmlTool * The XML tool object used for XML related operations in the * server and transport level. Configured by the {@link * ezcWebdavServerConfigurationManager} when the {@link * ezcWebdavServer::handle()} method is run}. * @property-read ezcWebdavPropertyHandler $propertyHandler * The property handler object used to parse and serialize * WebDAV properties on the transport level. Configured by the * {@link ezcWebdavServerConfigurationManager} when the {@link * ezcWebdavServer::handle()} method is run}. * @property-read ezcWebdavTransport $transport * The transport layer object used to parse and serialize WebDAV * requests and responses. Configured by the {@link * ezcWebdavServerConfigurationManager} when the {@link * ezcWebdavServer::handle()} method is run}. * * @version 1.1rc1 * @package Webdav * @mainclass */ class ezcWebdavServer { /** * Singleton instance. * * @var ezcWebdavServer */ protected static $instance; /** * Properties. * * @var array(string=>mixed) */ protected $properties = array(); /** * Creates a new instance. * * The constructor is protected due to singleton reasons. Use {@link * getInstance()} and then use the properties of the server to adjust its * configuration. * * @return void */ protected function __construct() { $this->reset(); } /** * Returns singleton instance. * * The instantiation of 2 WebDAV servers at the same time does not make * sense and could possibly cause strange effects, like double sending of a * response. Therefore the server implements a singleton and its only * instance must be retrieved using this method. Configuration changes can * then be performed through the properties of this instance. * * @return ezcWebdavServer */ public static function getInstance() { if ( self::$instance === null ) { self::$instance = new ezcWebdavServer(); } return self::$instance; } /** * Handles the current request. * * This method is the absolute heart of the Webdav component. It is called * to make the server instance handle the current request. This means, a * {@link ezcWebdavTransport} is selected and instantiated through the * {@link ezcWebdavServerConfigurationManager} in {@link $configurations}. * This transport (and all other objects, created from the configuration) * is used to parse the incoming request into an instance of {@link * ezcWebdavRequest}, which is then handed to the submitted $backend for * handling. The resulting {@link ezcWebdavResponse} is serialized by the * {@link ezcWebdavTransport} and send back to the client. * * The method receives at least an instance of {@link ezcWebdavBackend}, * which is used to server the request. Optionally, the request URI can be * submitted in $uri. If this is not the case, the request URI is * determined by the server variables *

*
• $_SERVER['SERVER_NAME']
*
• $_SERVER['REQUEST_URI']
*

* * @param ezcWebdavBackend $backend * @param string $uri * * @return void */ public final function handle( ezcWebdavBackend $backend, $uri = null ) { $uri = ( $uri === null ? 'http://' . $_SERVER['SERVER_NAME'] . $_SERVER['REQUEST_URI'] : $uri ); // Perform final setup $this->properties['backend'] = $backend; if ( !isset( $_SERVER['HTTP_USER_AGENT'] ) ) { throw new ezcWebdavMissingHeaderException( 'User-Agent' ); } // Configure the server according to the requesting client $this->configurations->configure( $this, $_SERVER['HTTP_USER_AGENT'] ); // Initialize all plugins $this->pluginRegistry->initPlugins(); // Parse request into request object $request = $this->transport->parseRequest( $uri ); // Perform authentication / authorization on the given request, // if it is known by the server. if ( $request instanceof ezcWebdavRequest && is_object( $this->properties['auth'] ) ) { $res = $this->authenticate( $request ); if ( $res !== null ) { $request = $res; } } if ( $request instanceof ezcWebdavRequest ) { // Plugin hook receivedRequest $pluginRes = ezcWebdavServer::getInstance()->pluginRegistry->announceHook( __CLASS__, 'receivedRequest', new ezcWebdavPluginParameters( array( 'request' => $request, ) ) ); if ( is_object( $pluginRes ) && $pluginRes instanceof ezcWebdavResponse ) { // Plugin already took care about processing the request $response = $pluginRes; } else { // Let backend process the request $response = $this->backend->performRequest( $request ); } } else { // The transport layer or auth mechanism already issued an error. $response = $request; } // Plugin hook generatedResponse ezcWebdavServer::getInstance()->pluginRegistry->announceHook( __CLASS__, 'generatedResponse', new ezcWebdavPluginParameters( array( 'response' => $response, ) ) ); $this->transport->handleResponse( $response ); } /** * Initializes the server with the given objects. * * This method is marked proteced, because it is intended to be used by by * {@link ezcWebdavServerConfiguration} instances and instances of derived * classes, but not directly. * * @param ezcWebdavPathFactory $pathFactory * @param ezcWebdavXmlTool $xmlTool * @param ezcWebdavPropertyHandler $propertyHandler * @param ezcWebdavHeaderHandler $headerHandler * @param ezcWebdavTransport $transport * @access protected * @return void */ public function init( ezcWebdavPathFactory $pathFactory, ezcWebdavXmlTool $xmlTool, ezcWebdavPropertyHandler $propertyHandler, ezcWebdavHeaderHandler $headerHandler, ezcWebdavTransport $transport ) { $this->properties['pathFactory'] = $pathFactory; $this->properties['xmlTool'] = $xmlTool; $this->properties['propertyHandler'] = $propertyHandler; $this->properties['headerHandler'] = $headerHandler; $this->properties['transport'] = $transport; } /** * Reset the server to its initial state. * * Resets the internal server state as if a new instance has just been * constructed. * * @return void */ public function reset() { unset( $this->properties['configurations'] ); unset( $this->properties['pluginRegistry'] ); $this->properties['configurations'] = new ezcWebdavServerConfigurationManager(); $this->properties['pluginRegistry'] = new ezcWebdavPluginRegistry(); $this->properties['auth'] = null; $this->properties['options'] = new ezcWebdavServerOptions(); $this->properties['transport'] = null; $this->properties['backend'] = null; $this->properties['pathFactory'] = null; $this->properties['xmlTool'] = null; $this->properties['propertyHandler'] = null; $this->properties['headerHandler'] = null; } /** * Performs authentication and authorization. * * @param ezcWebdavRequest $req * @return ezcWebdavErrorResponse|null */ private function authenticate( ezcWebdavRequest $req ) { if ( $this->properties['auth'] === null ) { // No authentication return null; } $creds = $req->getHeader( 'Authorization' ); $res = null; // Authenticate user switch ( get_class( $creds ) ) { case 'ezcWebdavAnonymousAuth': if ( $this->properties['auth'] instanceof ezcWebdavAnonymousAuthenticator ) { $res = $this->properties['auth']->authenticateAnonymous( $creds ); } break; case 'ezcWebdavBasicAuth': if ( $this->properties['auth'] instanceof ezcWebdavBasicAuthenticator ) { $res = $this->properties['auth']->authenticateBasic( $creds ); } break; case 'ezcWebdavDigestAuth': if ( $this->properties['auth'] instanceof ezcWebdavDigestAuthenticator ) { $res = $this->properties['auth']->authenticateDigest( $creds ); } break; } // $res is now null or bool, if not evaluates to true, authentication failed if ( !$res ) { return $this->createUnauthenticatedResponse( $req->requestUri, 'Authentication failed.' ); } return null; } /** * Performs authorization. * * This method does several things: * * - Check if authorization is enabled by ezcWebdavServer->$auth * - If it is, extract username from Authenticate header or choose '' * - Check authorization * * It returns true, if authorization is not enabled or succeeded. False is * returned otherwise. * * @param string $path * @param ezcWebdavAuth $credentials * @param int $access * @return bool * * @todo Mark protected as soon as API is final. * @access private */ public function isAuthorized( $path, ezcWebdavAuth $credentials, $access = ezcWebdavAuthorizer::ACCESS_READ ) { $auth = $this->auth; if ( $auth === null || !( $auth instanceof ezcWebdavAuthorizer ) ) { // No auth mechanism return true; } return $auth->authorize( $credentials->username, $path, $access ); } /** * Creates an ezcWebdavErrorResponse to indicate the need for authentication. * * Creates a {@link ezcWebdavErrorResponse} object with status code {@link * ezcWebdavResponse::STATUS_401} and a corresponding WWW-Authenticate * header using the $realm define in {@link ezcWebdavServerOptions}. The * $uri and $desc parameters are used to create the error response. * * @param string $uri * @param string $desc * * @return ezcWebdavErrorResponse * * @access private */ public function createUnauthenticatedResponse( $uri, $desc ) { $res = new ezcWebdavErrorResponse( ezcWebdavResponse::STATUS_401, $uri, $desc ); $wwwAuthHeader = array( 'basic' => 'Basic realm="' . $this->options->realm . '"', ); if ( $this->properties['auth'] instanceof ezcWebdavDigestAuthenticator ) { $wwwAuthHeader['digest'] = 'Digest realm="' .$this->options->realm . '"' . ', nonce="' . $this->getNonce() . '"' . ', algorithm="MD5"'; // @todo Do we want an opaque value here, too? } $res->setHeader( 'WWW-Authenticate', $wwwAuthHeader ); return $res; } /** * Creates an ezcWebdavErrorResponse to indicate unauthorized access. * * Creates a {@link ezcWebdavErrorResponse} object with status code {@link * ezcWebdavResponse::STATUS_403}. The $uri and $desc parameters are used * to create the error response. * * @param string $uri * @param string $desc * * @return ezcWebdavErrorResponse * * @access private */ public function createUnauthorizedResponse( $uri, $desc ) { return new ezcWebdavErrorResponse( ezcWebdavResponse::STATUS_403, $uri, $desc ); } /** * Creates a unique, hard to guess nounce value. * * @return string */ private function getNonce() { // This should be random enough that it cannot be guessed easily return md5( $this->options->realm . ':' . microtime() . ':' . $_SERVER['SERVER_NAME'] . ':' . uniqid( mt_rand(), true ) ); } /** * Sets a property. * * This method is called when an property is to be set. * * @param string $propertyName The name of the property to set. * @param mixed $propertyValue The property value. * @return void * @ignore * * @throws ezcBasePropertyNotFoundException * if the given property does not exist. * @throws ezcBaseValueException * if the value to be assigned to a property is invalid. * @throws ezcBasePropertyPermissionException * if the property to be set is a read-only property. */ public function __set( $propertyName, $propertyValue ) { switch ( $propertyName ) { case 'configurations': if ( !( $propertyValue instanceof ezcWebdavServerConfigurationManager ) ) { throw new ezcBaseValueException( $propertyName, $propertyValue, 'ezcWebdavServerConfigurationManager' ); } break; case 'auth': if ( $propertyValue !== null && ( !is_object( $propertyValue ) || !( $propertyValue instanceof ezcWebdavBasicAuthenticator ) ) ) { throw new ezcBaseValueException( $propertyName, $propertyValue, 'ezcWebdavBasicAuthenticator and/or ezcWebdavDigestAuthenticator' ); } break; case 'options': if ( !( $propertyValue instanceof ezcWebdavServerOptions ) ) { throw new ezcBaseValueException( $propertyName, $propertyValue, 'ezcWebdavServerOptions' ); } break; case 'backend': case 'pluginRegistry': case 'pathFactory': case 'xmlTool': case 'propertyHandler': case 'headerHandler': case 'transport': throw new ezcBasePropertyPermissionException( $propertyName, ezcBasePropertyPermissionException::READ ); default: throw new ezcBasePropertyNotFoundException( $propertyName ); } $this->properties[$propertyName] = $propertyValue; } /** * Property get access. * * Simply returns a given property. * * @param string $propertyName The name of the property to get. * @return mixed The property value. * * @ignore * * @throws ezcBasePropertyNotFoundException * if the given property does not exist. * @throws ezcBasePropertyPermissionException * if the property to be set is a write-only property. */ public function __get( $propertyName ) { if ( $this->__isset( $propertyName ) ) { return $this->properties[$propertyName]; } throw new ezcBasePropertyNotFoundException( $propertyName ); } /** * Returns if a property exists. * * Returns true if the property exists in the {@link $properties} array * (even if it is null) and false otherwise. * * @param string $propertyName Option name to check for. * @return void * @ignore */ public function __isset( $propertyName ) { return array_key_exists( $propertyName, $this->properties ); } } ?>