mirror of
https://github.com/Dolibarr/dolibarr.git
synced 2025-12-06 01:28:19 +01:00
145 lines
4.5 KiB
PHP
145 lines
4.5 KiB
PHP
<?php
|
|
/* Copyright (C) 2018 Destailleur Laurent <eldy@users.sourceforge.net>
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
/**
|
|
* \file htdocs/dav/fileserver.php
|
|
* \ingroup dav
|
|
* \brief Server DAV
|
|
*/
|
|
|
|
//if (! defined('NOREQUIREUSER')) define('NOREQUIREUSER','1');
|
|
//if (! defined('NOREQUIREDB')) define('NOREQUIREDB','1');
|
|
//if (! defined('NOREQUIRESOC')) define('NOREQUIRESOC','1');
|
|
//if (! defined('NOREQUIRETRAN')) define('NOREQUIRETRAN','1');
|
|
if (! defined('NOTOKENRENEWAL')) define('NOTOKENRENEWAL','1');
|
|
if (! defined('NOREQUIREMENU')) define('NOREQUIREMENU','1'); // If there is no menu to show
|
|
if (! defined('NOREQUIREHTML')) define('NOREQUIREHTML','1'); // If we don't need to load the html.form.class.php
|
|
if (! defined('NOREQUIREAJAX')) define('NOREQUIREAJAX','1');
|
|
define("NOLOGIN",1); // This means this output page does not require to be logged.
|
|
define("NOCSRFCHECK",1); // We accept to go on this page from external web site.
|
|
|
|
require ("../main.inc.php");
|
|
require_once DOL_DOCUMENT_ROOT.'/core/lib/security2.lib.php';
|
|
require_once DOL_DOCUMENT_ROOT.'/core/class/html.formcompany.class.php';
|
|
|
|
// Files we need
|
|
require_once DOL_DOCUMENT_ROOT.'/includes/sabre/autoload.php';
|
|
|
|
$user = new User($db);
|
|
if(isset($_SERVER['PHP_AUTH_USER']) && $_SERVER['PHP_AUTH_USER']!='')
|
|
{
|
|
$user->fetch('',$_SERVER['PHP_AUTH_USER']);
|
|
$user->getrights();
|
|
}
|
|
|
|
$langs->loadLangs(array("main","other"));
|
|
|
|
|
|
if(empty($conf->dav->enabled))
|
|
accessforbidden();
|
|
|
|
|
|
// settings
|
|
$publicDir = $conf->dav->dir_output.'/public';
|
|
$tmpDir = $conf->dav->dir_output.'/tmp';
|
|
|
|
// Authentication callback function
|
|
$authBackend = new \Sabre\DAV\Auth\Backend\BasicCallBack(function ($username, $password)
|
|
{
|
|
global $user;
|
|
global $conf;
|
|
global $dolibarr_main_authentication;
|
|
|
|
if (empty($user->login))
|
|
return false;
|
|
if ($user->socid > 0)
|
|
return false;
|
|
if ($user->login != $username)
|
|
return false;
|
|
|
|
// Authentication mode
|
|
if (empty($dolibarr_main_authentication))
|
|
$dolibarr_main_authentication='http,dolibarr';
|
|
$authmode = explode(',',$dolibarr_main_authentication);
|
|
$entity = (GETPOST('entity','int') ? GETPOST('entity','int') : (!empty($conf->entity) ? $conf->entity : 1));
|
|
|
|
if (checkLoginPassEntity($username,$password,$entity,$authmode) != $username)
|
|
return false;
|
|
|
|
return true;
|
|
});
|
|
|
|
$authBackend->setRealm('Dolibarr');
|
|
|
|
|
|
|
|
|
|
|
|
/*
|
|
* Actions and View
|
|
*/
|
|
|
|
// Create the root node
|
|
// Setting up the directory tree //
|
|
$nodes = array(
|
|
// /principals
|
|
//new \Sabre\DAVACL\PrincipalCollection($principalBackend),
|
|
// /addressbook
|
|
//new \Sabre\CardDAV\AddressBookRoot($principalBackend, $carddavBackend),
|
|
// /calendars
|
|
//new \Sabre\CalDAV\CalendarRoot($principalBackend, $caldavBackend),
|
|
// / Public docs
|
|
new \Sabre\DAV\FS\Directory($dolibarr_main_data_root. '/dav/public')
|
|
);
|
|
|
|
// The rootnode needs in turn to be passed to the server class
|
|
$server = new \Sabre\DAV\Server($nodes);
|
|
|
|
// If you want to run the SabreDAV server in a custom location (using mod_rewrite for instance)
|
|
// You can override the baseUri here.
|
|
$baseUri = DOL_URL_ROOT.'/dav/fileserver.php/';
|
|
if (isset($baseUri)) $server->setBaseUri($baseUri);
|
|
|
|
// Add authentication function
|
|
$server->addPlugin(new \Sabre\DAV\Auth\Plugin($authBackend));
|
|
|
|
// Support for LOCK and UNLOCK
|
|
$lockBackend = new \Sabre\DAV\Locks\Backend\File($tmpDir . '/.locksdb');
|
|
$lockPlugin = new \Sabre\DAV\Locks\Plugin($lockBackend);
|
|
$server->addPlugin($lockPlugin);
|
|
|
|
// Support for html frontend
|
|
$browser = new \Sabre\DAV\Browser\Plugin();
|
|
$server->addPlugin($browser);
|
|
|
|
// Automatically guess (some) contenttypes, based on extension
|
|
//$server->addPlugin(new \Sabre\DAV\Browser\GuessContentType());
|
|
|
|
//$server->addPlugin(new \Sabre\CardDAV\Plugin());
|
|
//$server->addPlugin(new \Sabre\CalDAV\Plugin());
|
|
//$server->addPlugin(new \Sabre\DAVACL\Plugin());
|
|
|
|
// Temporary file filter
|
|
/*$tempFF = new \Sabre\DAV\TemporaryFileFilterPlugin($tmpDir);
|
|
$server->addPlugin($tempFF);
|
|
*/
|
|
|
|
// And off we go!
|
|
$server->exec();
|
|
|
|
if (is_object($db)) $db->close();
|