1 files changed, 95 insertions, 0 deletions

diff --git a/apps/dav/lib/BulkUpload/BulkUploadPlugin.php b/apps/dav/lib/BulkUpload/BulkUploadPlugin.php
new file mode 100644
index 00000000000..d4faf3764e1
--- /dev/null
+++ b/apps/dav/lib/BulkUpload/BulkUploadPlugin.php
@@ -0,0 +1,95 @@
+<?php
+
+/**
+ * SPDX-FileCopyrightText: 2021 Nextcloud GmbH and Nextcloud contributors
+ * SPDX-License-Identifier: AGPL-3.0-only
+ */
+
+namespace OCA\DAV\BulkUpload;
+
+use OCA\DAV\Connector\Sabre\MtimeSanitizer;
+use OCP\AppFramework\Http;
+use OCP\Files\DavUtil;
+use OCP\Files\Folder;
+use Psr\Log\LoggerInterface;
+use Sabre\DAV\Server;
+use Sabre\DAV\ServerPlugin;
+use Sabre\HTTP\RequestInterface;
+use Sabre\HTTP\ResponseInterface;
+
+class BulkUploadPlugin extends ServerPlugin {
+	public function __construct(
+		private Folder $userFolder,
+		private LoggerInterface $logger,
+	) {
+	}
+
+	/**
+	 * Register listener on POST requests with the httpPost method.
+	 */
+	public function initialize(Server $server): void {
+		$server->on('method:POST', [$this, 'httpPost'], 10);
+	}
+
+	/**
+	 * Handle POST requests on /dav/bulk
+	 * - parsing is done with a MultipartContentsParser object
+	 * - writing is done with the userFolder service
+	 *
+	 * Will respond with an object containing an ETag for every written files.
+	 */
+	public function httpPost(RequestInterface $request, ResponseInterface $response): bool {
+		// Limit bulk upload to the /dav/bulk endpoint
+		if ($request->getPath() !== 'bulk') {
+			return true;
+		}
+
+		$multiPartParser = new MultipartRequestParser($request, $this->logger);
+		$writtenFiles = [];
+
+		while (!$multiPartParser->isAtLastBoundary()) {
+			try {
+				[$headers, $content] = $multiPartParser->parseNextPart();
+			} catch (\Exception $e) {
+				// Return early if an error occurs during parsing.
+				$this->logger->error($e->getMessage());
+				$response->setStatus(Http::STATUS_BAD_REQUEST);
+				$response->setBody(json_encode($writtenFiles, JSON_THROW_ON_ERROR));
+				return false;
+			}
+
+			try {
+				// TODO: Remove 'x-file-mtime' when the desktop client no longer use it.
+				if (isset($headers['x-file-mtime'])) {
+					$mtime = MtimeSanitizer::sanitizeMtime($headers['x-file-mtime']);
+				} elseif (isset($headers['x-oc-mtime'])) {
+					$mtime = MtimeSanitizer::sanitizeMtime($headers['x-oc-mtime']);
+				} else {
+					$mtime = null;
+				}
+
+				$node = $this->userFolder->newFile($headers['x-file-path'], $content);
+				$node->touch($mtime);
+				$node = $this->userFolder->getFirstNodeById($node->getId());
+
+				$writtenFiles[$headers['x-file-path']] = [
+					'error' => false,
+					'etag' => $node->getETag(),
+					'fileid' => DavUtil::getDavFileId($node->getId()),
+					'permissions' => DavUtil::getDavPermissions($node),
+				];
+			} catch (\Exception $e) {
+				$this->logger->error($e->getMessage(), ['path' => $headers['x-file-path']]);
+				$writtenFiles[$headers['x-file-path']] = [
+					'error' => true,
+					'message' => $e->getMessage(),
+				];
+			}
+		}
+
+		$response->setStatus(Http::STATUS_OK);
+		$response->setBody(json_encode($writtenFiles, JSON_THROW_ON_ERROR));
+
+		return false;
+	}
+}