Inicio Explorar Ayuda
Iniciar sesión
computer_glamour
/
computer.glamour.ovh
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: bcbaba66a3
Ramas Etiquetas
computer.glamou...
/
vendor
/
sabre
/
dav
/
lib
/
CardDAV
/
Plugin.php

Plugin.php 29 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886 
  1. <?php
    2. 

  2. 

  3. declare(strict_types=1);
    4. 

  4. 

  5. namespace Sabre\CardDAV;
    6. 

  6. 

  7. use Sabre\DAV;
    8. 

  8. use Sabre\DAV\Exception\ReportNotSupported;
    9. 

  9. use Sabre\DAV\Xml\Property\LocalHref;
    10. 

  10. use Sabre\DAVACL;
    11. 

  11. use Sabre\HTTP;
    12. 

  12. use Sabre\HTTP\RequestInterface;
    13. 

  13. use Sabre\HTTP\ResponseInterface;
    14. 

  14. use Sabre\Uri;
    15. 

  15. use Sabre\VObject;
    16. 

  16. 

  17. /**
    18. 

  18.  * CardDAV plugin.
    19. 

  19.  *
    20. 

  20.  * The CardDAV plugin adds CardDAV functionality to the WebDAV server
    21. 

  21.  *
    22. 

  22.  * @copyright Copyright (C) fruux GmbH (https://fruux.com/)
    23. 

  23.  * @author Evert Pot (http://evertpot.com/)
    24. 

  24.  * @license http://sabre.io/license/ Modified BSD License
    25. 

  25.  */
    26. 

  26. class Plugin extends DAV\ServerPlugin
    27. 

  27. {
    28. 

  28.     /**
    29. 

  29.      * Url to the addressbooks.
    30. 

  30.      */
    31. 

  31.     const ADDRESSBOOK_ROOT = 'addressbooks';
    32. 

  32. 

  33.     /**
    34. 

  34.      * xml namespace for CardDAV elements.
    35. 

  35.      */
    36. 

  36.     const NS_CARDDAV = 'urn:ietf:params:xml:ns:carddav';
    37. 

  37. 

  38.     /**
    39. 

  39.      * Add urls to this property to have them automatically exposed as
    40. 

  40.      * 'directories' to the user.
    41. 

  41.      *
    42. 

  42.      * @var array
    43. 

  43.      */
    44. 

  44.     public $directories = [];
    45. 

  45. 

  46.     /**
    47. 

  47.      * Server class.
    48. 

  48.      *
    49. 

  49.      * @var DAV\Server
    50. 

  50.      */
    51. 

  51.     protected $server;
    52. 

  52. 

  53.     /**
    54. 

  54.      * The default PDO storage uses a MySQL MEDIUMBLOB for iCalendar data,
    55. 

  55.      * which can hold up to 2^24 = 16777216 bytes. This is plenty. We're
    56. 

  56.      * capping it to 10M here.
    57. 

  57.      */
    58. 

  58.     protected $maxResourceSize = 10000000;
    59. 

  59. 

  60.     /**
    61. 

  61.      * Initializes the plugin.
    62. 

  62.      */
    63. 

  63.     public function initialize(DAV\Server $server)
    64. 

  64.     {
    65. 

  65.         /* Events */
    66. 

  66.         $server->on('propFind', [$this, 'propFindEarly']);
    67. 

  67.         $server->on('propFind', [$this, 'propFindLate'], 150);
    68. 

  68.         $server->on('report', [$this, 'report']);
    69. 

  69.         $server->on('onHTMLActionsPanel', [$this, 'htmlActionsPanel']);
    70. 

  70.         $server->on('beforeWriteContent', [$this, 'beforeWriteContent']);
    71. 

  71.         $server->on('beforeCreateFile', [$this, 'beforeCreateFile']);
    72. 

  72.         $server->on('afterMethod:GET', [$this, 'httpAfterGet']);
    73. 

  73. 

  74.         $server->xml->namespaceMap[self::NS_CARDDAV] = 'card';
    75. 

  75. 

  76.         $server->xml->elementMap['{'.self::NS_CARDDAV.'}addressbook-query'] = 'Sabre\\CardDAV\\Xml\\Request\\AddressBookQueryReport';
    77. 

  77.         $server->xml->elementMap['{'.self::NS_CARDDAV.'}addressbook-multiget'] = 'Sabre\\CardDAV\\Xml\\Request\\AddressBookMultiGetReport';
    78. 

  78. 

  79.         /* Mapping Interfaces to {DAV:}resourcetype values */
    80. 

  80.         $server->resourceTypeMapping['Sabre\\CardDAV\\IAddressBook'] = '{'.self::NS_CARDDAV.'}addressbook';
    81. 

  81.         $server->resourceTypeMapping['Sabre\\CardDAV\\IDirectory'] = '{'.self::NS_CARDDAV.'}directory';
    82. 

  82. 

  83.         /* Adding properties that may never be changed */
    84. 

  84.         $server->protectedProperties[] = '{'.self::NS_CARDDAV.'}supported-address-data';
    85. 

  85.         $server->protectedProperties[] = '{'.self::NS_CARDDAV.'}max-resource-size';
    86. 

  86.         $server->protectedProperties[] = '{'.self::NS_CARDDAV.'}addressbook-home-set';
    87. 

  87.         $server->protectedProperties[] = '{'.self::NS_CARDDAV.'}supported-collation-set';
    88. 

  88. 

  89.         $server->xml->elementMap['{http://calendarserver.org/ns/}me-card'] = 'Sabre\\DAV\\Xml\\Property\\Href';
    90. 

  90. 

  91.         $this->server = $server;
    92. 

  92.     }
    93. 

  93. 

  94.     /**
    95. 

  95.      * Returns a list of supported features.
    96. 

  96.      *
    97. 

  97.      * This is used in the DAV: header in the OPTIONS and PROPFIND requests.
    98. 

  98.      *
    99. 

  99.      * @return array
    100. 

  100.      */
    101. 

  101.     public function getFeatures()
    102. 

  102.     {
    103. 

  103.         return ['addressbook'];
    104. 

  104.     }
    105. 

  105. 

  106.     /**
    107. 

  107.      * Returns a list of reports this plugin supports.
    108. 

  108.      *
    109. 

  109.      * This will be used in the {DAV:}supported-report-set property.
    110. 

  110.      * Note that you still need to subscribe to the 'report' event to actually
    111. 

  111.      * implement them
    112. 

  112.      *
    113. 

  113.      * @param string $uri
    114. 

  114.      *
    115. 

  115.      * @return array
    116. 

  116.      */
    117. 

  117.     public function getSupportedReportSet($uri)
    118. 

  118.     {
    119. 

  119.         $node = $this->server->tree->getNodeForPath($uri);
    120. 

  120.         if ($node instanceof IAddressBook || $node instanceof ICard) {
    121. 

  121.             return [
    122. 

  122.                  '{'.self::NS_CARDDAV.'}addressbook-multiget',
    123. 

  123.                  '{'.self::NS_CARDDAV.'}addressbook-query',
    124. 

  124.             ];
    125. 

  125.         }
    126. 

  126. 

  127.         return [];
    128. 

  128.     }
    129. 

  129. 

  130.     /**
    131. 

  131.      * Adds all CardDAV-specific properties.
    132. 

  132.      */
    133. 

  133.     public function propFindEarly(DAV\PropFind $propFind, DAV\INode $node)
    134. 

  134.     {
    135. 

  135.         $ns = '{'.self::NS_CARDDAV.'}';
    136. 

  136. 

  137.         if ($node instanceof IAddressBook) {
    138. 

  138.             $propFind->handle($ns.'max-resource-size', $this->maxResourceSize);
    139. 

  139.             $propFind->handle($ns.'supported-address-data', function () {
    140. 

  140.                 return new Xml\Property\SupportedAddressData();
    141. 

  141.             });
    142. 

  142.             $propFind->handle($ns.'supported-collation-set', function () {
    143. 

  143.                 return new Xml\Property\SupportedCollationSet();
    144. 

  144.             });
    145. 

  145.         }
    146. 

  146.         if ($node instanceof DAVACL\IPrincipal) {
    147. 

  147.             $path = $propFind->getPath();
    148. 

  148. 

  149.             $propFind->handle('{'.self::NS_CARDDAV.'}addressbook-home-set', function () use ($path) {
    150. 

  150.                 return new LocalHref($this->getAddressBookHomeForPrincipal($path).'/');
    151. 

  151.             });
    152. 

  152. 

  153.             if ($this->directories) {
    154. 

  154.                 $propFind->handle('{'.self::NS_CARDDAV.'}directory-gateway', function () {
    155. 

  155.                     return new LocalHref($this->directories);
    156. 

  156.                 });
    157. 

  157.             }
    158. 

  158.         }
    159. 

  159. 

  160.         if ($node instanceof ICard) {
    161. 

  161.             // The address-data property is not supposed to be a 'real'
    162. 

  162.             // property, but in large chunks of the spec it does act as such.
    163. 

  163.             // Therefore we simply expose it as a property.
    164. 

  164.             $propFind->handle('{'.self::NS_CARDDAV.'}address-data', function () use ($node) {
    165. 

  165.                 $val = $node->get();
    166. 

  166.                 if (is_resource($val)) {
    167. 

  167.                     $val = stream_get_contents($val);
    168. 

  168.                 }
    169. 

  169. 

  170.                 return $val;
    171. 

  171.             });
    172. 

  172.         }
    173. 

  173.     }
    174. 

  174. 

  175.     /**
    176. 

  176.      * This functions handles REPORT requests specific to CardDAV.
    177. 

  177.      *
    178. 

  178.      * @param string   $reportName
    179. 

  179.      * @param \DOMNode $dom
    180. 

  180.      * @param mixed    $path
    181. 

  181.      *
    182. 

  182.      * @return bool
    183. 

  183.      */
    184. 

  184.     public function report($reportName, $dom, $path)
    185. 

  185.     {
    186. 

  186.         switch ($reportName) {
    187. 

  187.             case '{'.self::NS_CARDDAV.'}addressbook-multiget':
    188. 

  188.                 $this->server->transactionType = 'report-addressbook-multiget';
    189. 

  189.                 $this->addressbookMultiGetReport($dom);
    190. 

  190. 

  191.                 return false;
    192. 

  192.             case '{'.self::NS_CARDDAV.'}addressbook-query':
    193. 

  193.                 $this->server->transactionType = 'report-addressbook-query';
    194. 

  194.                 $this->addressBookQueryReport($dom);
    195. 

  195. 

  196.                 return false;
    197. 

  197.             default:
    198. 

  198.                 return;
    199. 

  199.         }
    200. 

  200.     }
    201. 

  201. 

  202.     /**
    203. 

  203.      * Returns the addressbook home for a given principal.
    204. 

  204.      *
    205. 

  205.      * @param string $principal
    206. 

  206.      *
    207. 

  207.      * @return string
    208. 

  208.      */
    209. 

  209.     protected function getAddressbookHomeForPrincipal($principal)
    210. 

  210.     {
    211. 

  211.         list(, $principalId) = Uri\split($principal);
    212. 

  212. 

  213.         return self::ADDRESSBOOK_ROOT.'/'.$principalId;
    214. 

  214.     }
    215. 

  215. 

  216.     /**
    217. 

  217.      * This function handles the addressbook-multiget REPORT.
    218. 

  218.      *
    219. 

  219.      * This report is used by the client to fetch the content of a series
    220. 

  220.      * of urls. Effectively avoiding a lot of redundant requests.
    221. 

  221.      *
    222. 

  222.      * @param Xml\Request\AddressBookMultiGetReport $report
    223. 

  223.      */
    224. 

  224.     public function addressbookMultiGetReport($report)
    225. 

  225.     {
    226. 

  226.         $contentType = $report->contentType;
    227. 

  227.         $version = $report->version;
    228. 

  228.         if ($version) {
    229. 

  229.             $contentType .= '; version='.$version;
    230. 

  230.         }
    231. 

  231. 

  232.         $vcardType = $this->negotiateVCard(
    233. 

  233.             $contentType
    234. 

  234.         );
    235. 

  235. 

  236.         $propertyList = [];
    237. 

  237.         $paths = array_map(
    238. 

  238.             [$this->server, 'calculateUri'],
    239. 

  239.             $report->hrefs
    240. 

  240.         );
    241. 

  241.         foreach ($this->server->getPropertiesForMultiplePaths($paths, $report->properties) as $props) {
    242. 

  242.             if (isset($props['200']['{'.self::NS_CARDDAV.'}address-data'])) {
    243. 

  243.                 $props['200']['{'.self::NS_CARDDAV.'}address-data'] = $this->convertVCard(
    244. 

  244.                     $props[200]['{'.self::NS_CARDDAV.'}address-data'],
    245. 

  245.                     $vcardType
    246. 

  246.                 );
    247. 

  247.             }
    248. 

  248.             $propertyList[] = $props;
    249. 

  249.         }
    250. 

  250. 

  251.         $prefer = $this->server->getHTTPPrefer();
    252. 

  252. 

  253.         $this->server->httpResponse->setStatus(207);
    254. 

  254.         $this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
    255. 

  255.         $this->server->httpResponse->setHeader('Vary', 'Brief,Prefer');
    256. 

  256.         $this->server->httpResponse->setBody($this->server->generateMultiStatus($propertyList, 'minimal' === $prefer['return']));
    257. 

  257.     }
    258. 

  258. 

  259.     /**
    260. 

  260.      * This method is triggered before a file gets updated with new content.
    261. 

  261.      *
    262. 

  262.      * This plugin uses this method to ensure that Card nodes receive valid
    263. 

  263.      * vcard data.
    264. 

  264.      *
    265. 

  265.      * @param string   $path
    266. 

  266.      * @param resource $data
    267. 

  267.      * @param bool     $modified should be set to true, if this event handler
    268. 

  268.      *                           changed &$data
    269. 

  269.      */
    270. 

  270.     public function beforeWriteContent($path, DAV\IFile $node, &$data, &$modified)
    271. 

  271.     {
    272. 

  272.         if (!$node instanceof ICard) {
    273. 

  273.             return;
    274. 

  274.         }
    275. 

  275. 

  276.         $this->validateVCard($data, $modified);
    277. 

  277.     }
    278. 

  278. 

  279.     /**
    280. 

  280.      * This method is triggered before a new file is created.
    281. 

  281.      *
    282. 

  282.      * This plugin uses this method to ensure that Card nodes receive valid
    283. 

  283.      * vcard data.
    284. 

  284.      *
    285. 

  285.      * @param string   $path
    286. 

  286.      * @param resource $data
    287. 

  287.      * @param bool     $modified should be set to true, if this event handler
    288. 

  288.      *                           changed &$data
    289. 

  289.      */
    290. 

  290.     public function beforeCreateFile($path, &$data, DAV\ICollection $parentNode, &$modified)
    291. 

  291.     {
    292. 

  292.         if (!$parentNode instanceof IAddressBook) {
    293. 

  293.             return;
    294. 

  294.         }
    295. 

  295. 

  296.         $this->validateVCard($data, $modified);
    297. 

  297.     }
    298. 

  298. 

  299.     /**
    300. 

  300.      * Checks if the submitted iCalendar data is in fact, valid.
    301. 

  301.      *
    302. 

  302.      * An exception is thrown if it's not.
    303. 

  303.      *
    304. 

  304.      * @param resource|string $data
    305. 

  305.      * @param bool            $modified should be set to true, if this event handler
    306. 

  306.      *                                  changed &$data
    307. 

  307.      */
    308. 

  308.     protected function validateVCard(&$data, &$modified)
    309. 

  309.     {
    310. 

  310.         // If it's a stream, we convert it to a string first.
    311. 

  311.         if (is_resource($data)) {
    312. 

  312.             $data = stream_get_contents($data);
    313. 

  313.         }
    314. 

  314. 

  315.         $before = $data;
    316. 

  316. 

  317.         try {
    318. 

  318.             // If the data starts with a [, we can reasonably assume we're dealing
    319. 

  319.             // with a jCal object.
    320. 

  320.             if ('[' === substr($data, 0, 1)) {
    321. 

  321.                 $vobj = VObject\Reader::readJson($data);
    322. 

  322. 

  323.                 // Converting $data back to iCalendar, as that's what we
    324. 

  324.                 // technically support everywhere.
    325. 

  325.                 $data = $vobj->serialize();
    326. 

  326.                 $modified = true;
    327. 

  327.             } else {
    328. 

  328.                 $vobj = VObject\Reader::read($data);
    329. 

  329.             }
    330. 

  330.         } catch (VObject\ParseException $e) {
    331. 

  331.             throw new DAV\Exception\UnsupportedMediaType('This resource only supports valid vCard or jCard data. Parse error: '.$e->getMessage());
    332. 

  332.         }
    333. 

  333. 

  334.         if ('VCARD' !== $vobj->name) {
    335. 

  335.             throw new DAV\Exception\UnsupportedMediaType('This collection can only support vcard objects.');
    336. 

  336.         }
    337. 

  337. 

  338.         $options = VObject\Node::PROFILE_CARDDAV;
    339. 

  339.         $prefer = $this->server->getHTTPPrefer();
    340. 

  340. 

  341.         if ('strict' !== $prefer['handling']) {
    342. 

  342.             $options |= VObject\Node::REPAIR;
    343. 

  343.         }
    344. 

  344. 

  345.         $messages = $vobj->validate($options);
    346. 

  346. 

  347.         $highestLevel = 0;
    348. 

  348.         $warningMessage = null;
    349. 

  349. 

  350.         // $messages contains a list of problems with the vcard, along with
    351. 

  351.         // their severity.
    352. 

  352.         foreach ($messages as $message) {
    353. 

  353.             if ($message['level'] > $highestLevel) {
    354. 

  354.                 // Recording the highest reported error level.
    355. 

  355.                 $highestLevel = $message['level'];
    356. 

  356.                 $warningMessage = $message['message'];
    357. 

  357.             }
    358. 

  358. 

  359.             switch ($message['level']) {
    360. 

  360.                 case 1:
    361. 

  361.                     // Level 1 means that there was a problem, but it was repaired.
    362. 

  362.                     $modified = true;
    363. 

  363.                     break;
    364. 

  364.                 case 2:
    365. 

  365.                     // Level 2 means a warning, but not critical
    366. 

  366.                     break;
    367. 

  367.                 case 3:
    368. 

  368.                     // Level 3 means a critical error
    369. 

  369.                     throw new DAV\Exception\UnsupportedMediaType('Validation error in vCard: '.$message['message']);
    370. 

  370.             }
    371. 

  371.         }
    372. 

  372.         if ($warningMessage) {
    373. 

  373.             $this->server->httpResponse->setHeader(
    374. 

  374.                 'X-Sabre-Ew-Gross',
    375. 

  375.                 'vCard validation warning: '.$warningMessage
    376. 

  376.             );
    377. 

  377. 

  378.             // Re-serializing object.
    379. 

  379.             $data = $vobj->serialize();
    380. 

  380.             if (!$modified && 0 !== strcmp($data, $before)) {
    381. 

  381.                 // This ensures that the system does not send an ETag back.
    382. 

  382.                 $modified = true;
    383. 

  383.             }
    384. 

  384.         }
    385. 

  385. 

  386.         // Destroy circular references to PHP will GC the object.
    387. 

  387.         $vobj->destroy();
    388. 

  388.     }
    389. 

  389. 

  390.     /**
    391. 

  391.      * This function handles the addressbook-query REPORT.
    392. 

  392.      *
    393. 

  393.      * This report is used by the client to filter an addressbook based on a
    394. 

  394.      * complex query.
    395. 

  395.      *
    396. 

  396.      * @param Xml\Request\AddressBookQueryReport $report
    397. 

  397.      */
    398. 

  398.     protected function addressbookQueryReport($report)
    399. 

  399.     {
    400. 

  400.         $depth = $this->server->getHTTPDepth(0);
    401. 

  401. 

  402.         if (0 == $depth) {
    403. 

  403.             $candidateNodes = [
    404. 

  404.                 $this->server->tree->getNodeForPath($this->server->getRequestUri()),
    405. 

  405.             ];
    406. 

  406.             if (!$candidateNodes[0] instanceof ICard) {
    407. 

  407.                 throw new ReportNotSupported('The addressbook-query report is not supported on this url with Depth: 0');
    408. 

  408.             }
    409. 

  409.         } else {
    410. 

  410.             $candidateNodes = $this->server->tree->getChildren($this->server->getRequestUri());
    411. 

  411.         }
    412. 

  412. 

  413.         $contentType = $report->contentType;
    414. 

  414.         if ($report->version) {
    415. 

  415.             $contentType .= '; version='.$report->version;
    416. 

  416.         }
    417. 

  417. 

  418.         $vcardType = $this->negotiateVCard(
    419. 

  419.             $contentType
    420. 

  420.         );
    421. 

  421. 

  422.         $validNodes = [];
    423. 

  423.         foreach ($candidateNodes as $node) {
    424. 

  424.             if (!$node instanceof ICard) {
    425. 

  425.                 continue;
    426. 

  426.             }
    427. 

  427. 

  428.             $blob = $node->get();
    429. 

  429.             if (is_resource($blob)) {
    430. 

  430.                 $blob = stream_get_contents($blob);
    431. 

  431.             }
    432. 

  432. 

  433.             if (!$this->validateFilters($blob, $report->filters, $report->test)) {
    434. 

  434.                 continue;
    435. 

  435.             }
    436. 

  436. 

  437.             $validNodes[] = $node;
    438. 

  438. 

  439.             if ($report->limit && $report->limit <= count($validNodes)) {
    440. 

  440.                 // We hit the maximum number of items, we can stop now.
    441. 

  441.                 break;
    442. 

  442.             }
    443. 

  443.         }
    444. 

  444. 

  445.         $result = [];
    446. 

  446.         foreach ($validNodes as $validNode) {
    447. 

  447.             if (0 == $depth) {
    448. 

  448.                 $href = $this->server->getRequestUri();
    449. 

  449.             } else {
    450. 

  450.                 $href = $this->server->getRequestUri().'/'.$validNode->getName();
    451. 

  451.             }
    452. 

  452. 

  453.             list($props) = $this->server->getPropertiesForPath($href, $report->properties, 0);
    454. 

  454. 

  455.             if (isset($props[200]['{'.self::NS_CARDDAV.'}address-data'])) {
    456. 

  456.                 $props[200]['{'.self::NS_CARDDAV.'}address-data'] = $this->convertVCard(
    457. 

  457.                     $props[200]['{'.self::NS_CARDDAV.'}address-data'],
    458. 

  458.                     $vcardType,
    459. 

  459.                     $report->addressDataProperties
    460. 

  460.                 );
    461. 

  461.             }
    462. 

  462.             $result[] = $props;
    463. 

  463.         }
    464. 

  464. 

  465.         $prefer = $this->server->getHTTPPrefer();
    466. 

  466. 

  467.         $this->server->httpResponse->setStatus(207);
    468. 

  468.         $this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
    469. 

  469.         $this->server->httpResponse->setHeader('Vary', 'Brief,Prefer');
    470. 

  470.         $this->server->httpResponse->setBody($this->server->generateMultiStatus($result, 'minimal' === $prefer['return']));
    471. 

  471.     }
    472. 

  472. 

  473.     /**
    474. 

  474.      * Validates if a vcard makes it throught a list of filters.
    475. 

  475.      *
    476. 

  476.      * @param string $vcardData
    477. 

  477.      * @param string $test      anyof or allof (which means OR or AND)
    478. 

  478.      *
    479. 

  479.      * @return bool
    480. 

  480.      */
    481. 

  481.     public function validateFilters($vcardData, array $filters, $test)
    482. 

  482.     {
    483. 

  483.         if (!$filters) {
    484. 

  484.             return true;
    485. 

  485.         }
    486. 

  486.         $vcard = VObject\Reader::read($vcardData);
    487. 

  487. 

  488.         foreach ($filters as $filter) {
    489. 

  489.             $isDefined = isset($vcard->{$filter['name']});
    490. 

  490.             if ($filter['is-not-defined']) {
    491. 

  491.                 if ($isDefined) {
    492. 

  492.                     $success = false;
    493. 

  493.                 } else {
    494. 

  494.                     $success = true;
    495. 

  495.                 }
    496. 

  496.             } elseif ((!$filter['param-filters'] && !$filter['text-matches']) || !$isDefined) {
    497. 

  497.                 // We only need to check for existence
    498. 

  498.                 $success = $isDefined;
    499. 

  499.             } else {
    500. 

  500.                 $vProperties = $vcard->select($filter['name']);
    501. 

  501. 

  502.                 $results = [];
    503. 

  503.                 if ($filter['param-filters']) {
    504. 

  504.                     $results[] = $this->validateParamFilters($vProperties, $filter['param-filters'], $filter['test']);
    505. 

  505.                 }
    506. 

  506.                 if ($filter['text-matches']) {
    507. 

  507.                     $texts = [];
    508. 

  508.                     foreach ($vProperties as $vProperty) {
    509. 

  509.                         $texts[] = $vProperty->getValue();
    510. 

  510.                     }
    511. 

  511. 

  512.                     $results[] = $this->validateTextMatches($texts, $filter['text-matches'], $filter['test']);
    513. 

  513.                 }
    514. 

  514. 

  515.                 if (1 === count($results)) {
    516. 

  516.                     $success = $results[0];
    517. 

  517.                 } else {
    518. 

  518.                     if ('anyof' === $filter['test']) {
    519. 

  519.                         $success = $results[0] || $results[1];
    520. 

  520.                     } else {
    521. 

  521.                         $success = $results[0] && $results[1];
    522. 

  522.                     }
    523. 

  523.                 }
    524. 

  524.             } // else
    525. 

  525. 

  526.             // There are two conditions where we can already determine whether
    527. 

  527.             // or not this filter succeeds.
    528. 

  528.             if ('anyof' === $test && $success) {
    529. 

  529.                 // Destroy circular references to PHP will GC the object.
    530. 

  530.                 $vcard->destroy();
    531. 

  531. 

  532.                 return true;
    533. 

  533.             }
    534. 

  534.             if ('allof' === $test && !$success) {
    535. 

  535.                 // Destroy circular references to PHP will GC the object.
    536. 

  536.                 $vcard->destroy();
    537. 

  537. 

  538.                 return false;
    539. 

  539.             }
    540. 

  540.         } // foreach
    541. 

  541. 

  542.         // Destroy circular references to PHP will GC the object.
    543. 

  543.         $vcard->destroy();
    544. 

  544. 

  545.         // If we got all the way here, it means we haven't been able to
    546. 

  546.         // determine early if the test failed or not.
    547. 

  547.         //
    548. 

  548.         // This implies for 'anyof' that the test failed, and for 'allof' that
    549. 

  549.         // we succeeded. Sounds weird, but makes sense.
    550. 

  550.         return 'allof' === $test;
    551. 

  551.     }
    552. 

  552. 

  553.     /**
    554. 

  554.      * Validates if a param-filter can be applied to a specific property.
    555. 

  555.      *
    556. 

  556.      * @todo currently we're only validating the first parameter of the passed
    557. 

  557.      *       property. Any subsequence parameters with the same name are
    558. 

  558.      *       ignored.
    559. 

  559.      *
    560. 

  560.      * @param string $test
    561. 

  561.      *
    562. 

  562.      * @return bool
    563. 

  563.      */
    564. 

  564.     protected function validateParamFilters(array $vProperties, array $filters, $test)
    565. 

  565.     {
    566. 

  566.         foreach ($filters as $filter) {
    567. 

  567.             $isDefined = false;
    568. 

  568.             foreach ($vProperties as $vProperty) {
    569. 

  569.                 $isDefined = isset($vProperty[$filter['name']]);
    570. 

  570.                 if ($isDefined) {
    571. 

  571.                     break;
    572. 

  572.                 }
    573. 

  573.             }
    574. 

  574. 

  575.             if ($filter['is-not-defined']) {
    576. 

  576.                 if ($isDefined) {
    577. 

  577.                     $success = false;
    578. 

  578.                 } else {
    579. 

  579.                     $success = true;
    580. 

  580.                 }
    581. 

  581. 

  582.                 // If there's no text-match, we can just check for existence
    583. 

  583.             } elseif (!$filter['text-match'] || !$isDefined) {
    584. 

  584.                 $success = $isDefined;
    585. 

  585.             } else {
    586. 

  586.                 $success = false;
    587. 

  587.                 foreach ($vProperties as $vProperty) {
    588. 

  588.                     // If we got all the way here, we'll need to validate the
    589. 

  589.                     // text-match filter.
    590. 

  590.                     if (isset($vProperty[$filter['name']])) {
    591. 

  591.                         $success = DAV\StringUtil::textMatch(
    592. 

  592.                             $vProperty[$filter['name']]->getValue(),
    593. 

  593.                             $filter['text-match']['value'],
    594. 

  594.                             $filter['text-match']['collation'],
    595. 

  595.                             $filter['text-match']['match-type']
    596. 

  596.                         );
    597. 

  597.                         if ($filter['text-match']['negate-condition']) {
    598. 

  598.                             $success = !$success;
    599. 

  599.                         }
    600. 

  600.                     }
    601. 

  601.                     if ($success) {
    602. 

  602.                         break;
    603. 

  603.                     }
    604. 

  604.                 }
    605. 

  605.             } // else
    606. 

  606. 

  607.             // There are two conditions where we can already determine whether
    608. 

  608.             // or not this filter succeeds.
    609. 

  609.             if ('anyof' === $test && $success) {
    610. 

  610.                 return true;
    611. 

  611.             }
    612. 

  612.             if ('allof' === $test && !$success) {
    613. 

  613.                 return false;
    614. 

  614.             }
    615. 

  615.         }
    616. 

  616. 

  617.         // If we got all the way here, it means we haven't been able to
    618. 

  618.         // determine early if the test failed or not.
    619. 

  619.         //
    620. 

  620.         // This implies for 'anyof' that the test failed, and for 'allof' that
    621. 

  621.         // we succeeded. Sounds weird, but makes sense.
    622. 

  622.         return 'allof' === $test;
    623. 

  623.     }
    624. 

  624. 

  625.     /**
    626. 

  626.      * Validates if a text-filter can be applied to a specific property.
    627. 

  627.      *
    628. 

  628.      * @param string $test
    629. 

  629.      *
    630. 

  630.      * @return bool
    631. 

  631.      */
    632. 

  632.     protected function validateTextMatches(array $texts, array $filters, $test)
    633. 

  633.     {
    634. 

  634.         foreach ($filters as $filter) {
    635. 

  635.             $success = false;
    636. 

  636.             foreach ($texts as $haystack) {
    637. 

  637.                 $success = DAV\StringUtil::textMatch($haystack, $filter['value'], $filter['collation'], $filter['match-type']);
    638. 

  638.                 if ($filter['negate-condition']) {
    639. 

  639.                     $success = !$success;
    640. 

  640.                 }
    641. 

  641. 

  642.                 // Breaking on the first match
    643. 

  643.                 if ($success) {
    644. 

  644.                     break;
    645. 

  645.                 }
    646. 

  646.             }
    647. 

  647. 

  648.             if ($success && 'anyof' === $test) {
    649. 

  649.                 return true;
    650. 

  650.             }
    651. 

  651. 

  652.             if (!$success && 'allof' == $test) {
    653. 

  653.                 return false;
    654. 

  654.             }
    655. 

  655.         }
    656. 

  656. 

  657.         // If we got all the way here, it means we haven't been able to
    658. 

  658.         // determine early if the test failed or not.
    659. 

  659.         //
    660. 

  660.         // This implies for 'anyof' that the test failed, and for 'allof' that
    661. 

  661.         // we succeeded. Sounds weird, but makes sense.
    662. 

  662.         return 'allof' === $test;
    663. 

  663.     }
    664. 

  664. 

  665.     /**
    666. 

  666.      * This event is triggered when fetching properties.
    667. 

  667.      *
    668. 

  668.      * This event is scheduled late in the process, after most work for
    669. 

  669.      * propfind has been done.
    670. 

  670.      */
    671. 

  671.     public function propFindLate(DAV\PropFind $propFind, DAV\INode $node)
    672. 

  672.     {
    673. 

  673.         // If the request was made using the SOGO connector, we must rewrite
    674. 

  674.         // the content-type property. By default SabreDAV will send back
    675. 

  675.         // text/x-vcard; charset=utf-8, but for SOGO we must strip that last
    676. 

  676.         // part.
    677. 

  677.         if (false === strpos((string) $this->server->httpRequest->getHeader('User-Agent'), 'Thunderbird')) {
    678. 

  678.             return;
    679. 

  679.         }
    680. 

  680.         $contentType = $propFind->get('{DAV:}getcontenttype');
    681. 

  681.         if (null !== $contentType) {
    682. 

  682.             list($part) = explode(';', $contentType);
    683. 

  683.             if ('text/x-vcard' === $part || 'text/vcard' === $part) {
    684. 

  684.                 $propFind->set('{DAV:}getcontenttype', 'text/x-vcard');
    685. 

  685.             }
    686. 

  686.         }
    687. 

  687.     }
    688. 

  688. 

  689.     /**
    690. 

  690.      * This method is used to generate HTML output for the
    691. 

  691.      * Sabre\DAV\Browser\Plugin. This allows us to generate an interface users
    692. 

  692.      * can use to create new addressbooks.
    693. 

  693.      *
    694. 

  694.      * @param string $output
    695. 

  695.      *
    696. 

  696.      * @return bool
    697. 

  697.      */
    698. 

  698.     public function htmlActionsPanel(DAV\INode $node, &$output)
    699. 

  699.     {
    700. 

  700.         if (!$node instanceof AddressBookHome) {
    701. 

  701.             return;
    702. 

  702.         }
    703. 

  703. 

  704.         $output .= '<tr><td colspan="2"><form method="post" action="">
    705. 

  705.             <h3>Create new address book</h3>
    706. 

  706.             <input type="hidden" name="sabreAction" value="mkcol" />
    707. 

  707.             <input type="hidden" name="resourceType" value="{DAV:}collection,{'.self::NS_CARDDAV.'}addressbook" />
    708. 

  708.             <label>Name (uri):</label> <input type="text" name="name" /><br />
    709. 

  709.             <label>Display name:</label> <input type="text" name="{DAV:}displayname" /><br />
    710. 

  710.             <input type="submit" value="create" />
    711. 

  711.             </form>
    712. 

  712.             </td></tr>';
    713. 

  713. 

  714.         return false;
    715. 

  715.     }
    716. 

  716. 

  717.     /**
    718. 

  718.      * This event is triggered after GET requests.
    719. 

  719.      *
    720. 

  720.      * This is used to transform data into jCal, if this was requested.
    721. 

  721.      */
    722. 

  722.     public function httpAfterGet(RequestInterface $request, ResponseInterface $response)
    723. 

  723.     {
    724. 

  724.         $contentType = $response->getHeader('Content-Type');
    725. 

  725.         if (null === $contentType || false === strpos($contentType, 'text/vcard')) {
    726. 

  726.             return;
    727. 

  727.         }
    728. 

  728. 

  729.         $target = $this->negotiateVCard($request->getHeader('Accept'), $mimeType);
    730. 

  730. 

  731.         $newBody = $this->convertVCard(
    732. 

  732.             $response->getBody(),
    733. 

  733.             $target
    734. 

  734.         );
    735. 

  735. 

  736.         $response->setBody($newBody);
    737. 

  737.         $response->setHeader('Content-Type', $mimeType.'; charset=utf-8');
    738. 

  738.         $response->setHeader('Content-Length', strlen($newBody));
    739. 

  739.     }
    740. 

  740. 

  741.     /**
    742. 

  742.      * This helper function performs the content-type negotiation for vcards.
    743. 

  743.      *
    744. 

  744.      * It will return one of the following strings:
    745. 

  745.      * 1. vcard3
    746. 

  746.      * 2. vcard4
    747. 

  747.      * 3. jcard
    748. 

  748.      *
    749. 

  749.      * It defaults to vcard3.
    750. 

  750.      *
    751. 

  751.      * @param string $input
    752. 

  752.      * @param string $mimeType
    753. 

  753.      *
    754. 

  754.      * @return string
    755. 

  755.      */
    756. 

  756.     protected function negotiateVCard($input, &$mimeType = null)
    757. 

  757.     {
    758. 

  758.         $result = HTTP\negotiateContentType(
    759. 

  759.             $input,
    760. 

  760.             [
    761. 

  761.                 // Most often used mime-type. Version 3
    762. 

  762.                 'text/x-vcard',
    763. 

  763.                 // The correct standard mime-type. Defaults to version 3 as
    764. 

  764.                 // well.
    765. 

  765.                 'text/vcard',
    766. 

  766.                 // vCard 4
    767. 

  767.                 'text/vcard; version=4.0',
    768. 

  768.                 // vCard 3
    769. 

  769.                 'text/vcard; version=3.0',
    770. 

  770.                 // jCard
    771. 

  771.                 'application/vcard+json',
    772. 

  772.             ]
    773. 

  773.         );
    774. 

  774. 

  775.         $mimeType = $result;
    776. 

  776.         switch ($result) {
    777. 

  777.             default:
    778. 

  778.             case 'text/x-vcard':
    779. 

  779.             case 'text/vcard':
    780. 

  780.             case 'text/vcard; version=3.0':
    781. 

  781.                 $mimeType = 'text/vcard';
    782. 

  782. 

  783.                 return 'vcard3';
    784. 

  784.             case 'text/vcard; version=4.0':
    785. 

  785.                 return 'vcard4';
    786. 

  786.             case 'application/vcard+json':
    787. 

  787.                 return 'jcard';
    788. 

  788. 

  789.         // @codeCoverageIgnoreStart
    790. 

  790.         }
    791. 

  791.         // @codeCoverageIgnoreEnd
    792. 

  792.     }
    793. 

  793. 

  794.     /**
    795. 

  795.      * Converts a vcard blob to a different version, or jcard.
    796. 

  796.      *
    797. 

  797.      * @param string|resource $data
    798. 

  798.      * @param string          $target
    799. 

  799.      * @param array           $propertiesFilter
    800. 

  800.      *
    801. 

  801.      * @return string
    802. 

  802.      */
    803. 

  803.     protected function convertVCard($data, $target, array $propertiesFilter = null)
    804. 

  804.     {
    805. 

  805.         if (is_resource($data)) {
    806. 

  806.             $data = stream_get_contents($data);
    807. 

  807.         }
    808. 

  808.         $input = VObject\Reader::read($data);
    809. 

  809.         if (!empty($propertiesFilter)) {
    810. 

  810.             $propertiesFilter = array_merge(['UID', 'VERSION', 'FN'], $propertiesFilter);
    811. 

  811.             $keys = array_unique(array_map(function ($child) {
    812. 

  812.                 return $child->name;
    813. 

  813.             }, $input->children()));
    814. 

  814.             $keys = array_diff($keys, $propertiesFilter);
    815. 

  815.             foreach ($keys as $key) {
    816. 

  816.                 unset($input->$key);
    817. 

  817.             }
    818. 

  818.             $data = $input->serialize();
    819. 

  819.         }
    820. 

  820.         $output = null;
    821. 

  821.         try {
    822. 

  822.             switch ($target) {
    823. 

  823.                 default:
    824. 

  824.                 case 'vcard3':
    825. 

  825.                     if (VObject\Document::VCARD30 === $input->getDocumentType()) {
    826. 

  826.                         // Do nothing
    827. 

  827.                         return $data;
    828. 

  828.                     }
    829. 

  829.                     $output = $input->convert(VObject\Document::VCARD30);
    830. 

  830. 

  831.                     return $output->serialize();
    832. 

  832.                 case 'vcard4':
    833. 

  833.                     if (VObject\Document::VCARD40 === $input->getDocumentType()) {
    834. 

  834.                         // Do nothing
    835. 

  835.                         return $data;
    836. 

  836.                     }
    837. 

  837.                     $output = $input->convert(VObject\Document::VCARD40);
    838. 

  838. 

  839.                     return $output->serialize();
    840. 

  840.                 case 'jcard':
    841. 

  841.                     $output = $input->convert(VObject\Document::VCARD40);
    842. 

  842. 

  843.                     return json_encode($output);
    844. 

  844.             }
    845. 

  845.         } finally {
    846. 

  846.             // Destroy circular references to PHP will GC the object.
    847. 

  847.             $input->destroy();
    848. 

  848.             if (!is_null($output)) {
    849. 

  849.                 $output->destroy();
    850. 

  850.             }
    851. 

  851.         }
    852. 

  852.     }
    853. 

  853. 

  854.     /**
    855. 

  855.      * Returns a plugin name.
    856. 

  856.      *
    857. 

  857.      * Using this name other plugins will be able to access other plugins
    858. 

  858.      * using DAV\Server::getPlugin
    859. 

  859.      *
    860. 

  860.      * @return string
    861. 

  861.      */
    862. 

  862.     public function getPluginName()
    863. 

  863.     {
    864. 

  864.         return 'carddav';
    865. 

  865.     }
    866. 

  866. 

  867.     /**
    868. 

  868.      * Returns a bunch of meta-data about the plugin.
    869. 

  869.      *
    870. 

  870.      * Providing this information is optional, and is mainly displayed by the
    871. 

  871.      * Browser plugin.
    872. 

  872.      *
    873. 

  873.      * The description key in the returned array may contain html and will not
    874. 

  874.      * be sanitized.
    875. 

  875.      *
    876. 

  876.      * @return array
    877. 

  877.      */
    878. 

  878.     public function getPluginInfo()
    879. 

  879.     {
    880. 

  880.         return [
    881. 

  881.             'name' => $this->getPluginName(),
    882. 

  882.             'description' => 'Adds support for CardDAV (rfc6352)',
    883. 

  883.             'link' => 'http://sabre.io/dav/carddav/',
    884. 

  884.         ];
    885. 

  885.     }
    886. 

  886. }
    887.