mirrors
/
nextcloud
镜像来自 https://github.com/nextcloud/server.git
關註 1
收藏 0
複製 0
程式碼 問題管理 0 版本發佈 993 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
55472 Commit
415 分支
目錄樹: d9015a8c94
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from 'd9015a8c94'
${ noResults }
nextcloud/apps/dav/lib/DAV/PublicAuth.php

PublicAuth.php 2.6KB
原始文件 Blame 文件歷史

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. <?php

  2. /**

  3.  * @copyright Copyright (c) 2016, ownCloud, Inc.

  4.  *

  5.  * @author Christoph Wurst <christoph@winzerhof-wurst.at>

  6.  * @author Roeland Jago Douma <roeland@famdouma.nl>

  7.  * @author Thomas Müller <thomas.mueller@tmit.eu>

  8.  *

  9.  * @license AGPL-3.0

  10.  *

  11.  * This code is free software: you can redistribute it and/or modify

  12.  * it under the terms of the GNU Affero General Public License, version 3,

  13.  * as published by the Free Software Foundation.

  14.  *

  15.  * This program is distributed in the hope that it will be useful,

  16.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  17.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

  18.  * GNU Affero General Public License for more details.

  19.  *

  20.  * You should have received a copy of the GNU Affero General Public License, version 3,

  21.  * along with this program. If not, see <http://www.gnu.org/licenses/>

  22.  *

  23.  */

  24. 

  25. namespace OCA\DAV\DAV;

  26. 

  27. use Sabre\DAV\Auth\Backend\BackendInterface;

  28. use Sabre\HTTP\RequestInterface;

  29. use Sabre\HTTP\ResponseInterface;

  30. 

  31. class PublicAuth implements BackendInterface {

  32. 

  33. 	/** @var string[] */

  34. 	private $publicURLs;

  35. 

  36. 	public function __construct() {

  37. 		$this->publicURLs = [

  38. 			'public-calendars',

  39. 			'principals/system/public'

  40. 		];

  41. 	}

  42. 

  43. 	/**

  44. 	 * When this method is called, the backend must check if authentication was

  45. 	 * successful.

  46. 	 *

  47. 	 * The returned value must be one of the following

  48. 	 *

  49. 	 * [true, "principals/username"]

  50. 	 * [false, "reason for failure"]

  51. 	 *

  52. 	 * If authentication was successful, it's expected that the authentication

  53. 	 * backend returns a so-called principal url.

  54. 	 *

  55. 	 * Examples of a principal url:

  56. 	 *

  57. 	 * principals/admin

  58. 	 * principals/user1

  59. 	 * principals/users/joe

  60. 	 * principals/uid/123457

  61. 	 *

  62. 	 * If you don't use WebDAV ACL (RFC3744) we recommend that you simply

  63. 	 * return a string such as:

  64. 	 *

  65. 	 * principals/users/[username]

  66. 	 *

  67. 	 * @param RequestInterface $request

  68. 	 * @param ResponseInterface $response

  69. 	 * @return array

  70. 	 */

  71. 	public function check(RequestInterface $request, ResponseInterface $response) {

  72. 		if ($this->isRequestPublic($request)) {

  73. 			return [true, "principals/system/public"];

  74. 		}

  75. 		return [false, "No public access to this resource."];

  76. 	}

  77. 

  78. 	/**

  79. 	 * @inheritdoc

  80. 	 */

  81. 	public function challenge(RequestInterface $request, ResponseInterface $response) {

  82. 	}

  83. 

  84. 	/**

  85. 	 * @param RequestInterface $request

  86. 	 * @return bool

  87. 	 */

  88. 	private function isRequestPublic(RequestInterface $request) {

  89. 		$url = $request->getPath();

  90. 		$matchingUrls = array_filter($this->publicURLs, function ($publicUrl) use ($url) {

  91. 			return strpos($url, $publicUrl, 0) === 0;

  92. 		});

  93. 		return !empty($matchingUrls);

  94. 	}

  95. }