Mirrors
/
nextcloud-server
mirror of https://github.com/nextcloud/server
3
0
Fork 0
Code Releases Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
35086 Commits
590 Branches
1154 Tags
4.0 GiB
Tree: 2b76d14330
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '2b76d14330'
${ noResults }
nextcloud-server/apps/dav/lib/Server.php

230 lines
7.4 KiB
Raw Normal View History

Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Happy new year!
10 years ago
Fix apps/
9 years ago
Update license headers
10 years ago
Fix apps/
9 years ago
Update license headers
10 years ago
Update with robin
9 years ago
Fix apps/
9 years ago
Happy new year!
10 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Adding IMip scheduling which uses ownClouds mail delivery
10 years ago
Contacts API: replace raw image data with url (#25081) * add uri to AddressBookImpl array * Introduce ImageExportPlugin for CardDav * add plugin to v1 routes * replace binary contact photo with link * update tests * Adding unit tests
10 years ago
Return ETag and OC-ETag in case of a move (#25683) Downstreaming of https://github.com/owncloud/core/pull/25683 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Return ETag and OC-ETag in case of a move (#25683) Downstreaming of https://github.com/owncloud/core/pull/25683 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
Hides nodes from listing that the user has no access to
10 years ago
In debugging mode we enable Sabre's browser plugin since it helps a lot when debugging
10 years ago
Return ETag and OC-ETag in case of a move (#25683) Downstreaming of https://github.com/owncloud/core/pull/25683 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
Add FilesPlugin - fixes #22507
10 years ago
Allow not-authenticated access to specific urls
9 years ago
Return ETag and OC-ETag in case of a move (#25683) Downstreaming of https://github.com/owncloud/core/pull/25683 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
In case of exception we return an html page in case the client is a browser
10 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Return ETag and OC-ETag in case of a move (#25683) Downstreaming of https://github.com/owncloud/core/pull/25683 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Use EventDispatcher to allow additional setup of auth backends - move federation auth to federation app
10 years ago
Adding VCFExportPlugin
10 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
New dav endpoint register tags plugin This makes it possible to retrieve and PROPPATCH the favorite info Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Fix undefined properties
9 years ago
Fix test using private propertries
9 years ago
Fix undefined properties
9 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Add internal locking plugin - fixes #20502
10 years ago
Adding IMip scheduling which uses ownClouds mail delivery
10 years ago
Add missing dispatcher
10 years ago
Add internal locking plugin - fixes #20502
10 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Adding required parameters of ctor of class Auth
10 years ago
Require CSRF token for non WebDAV authenticated requests
10 years ago
block DAV if 2FA challenge needs to be solved first
10 years ago
Implement brute force protection Class Throttler implements the bruteforce protection for security actions in Nextcloud. It is working by logging invalid login attempts to the database and slowing down all login attempts from the same subnet. The max delay is 30 seconds and the starting delay are 200 milliseconds. (after the first failed login)
9 years ago
Adding required parameters of ctor of class Auth
10 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Change load order of auth backends so that we can throw an exception in OCA\DAV\Connector\Sabre\Auth - fixes #25362 (#25476)
9 years ago
Allow not-authenticated access to specific urls
9 years ago
Allow trusted servers to authenticate
10 years ago
Use EventDispatcher to allow additional setup of auth backends - move federation auth to federation app
10 years ago
Change load order of auth backends so that we can throw an exception in OCA\DAV\Connector\Sabre\Auth - fixes #25362 (#25476)
9 years ago
In debugging mode we enable Sabre's browser plugin since it helps a lot when debugging
10 years ago
Add internal locking plugin - fixes #20502
10 years ago
Adding sync support - including dav tests
10 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Users are available under it's own principal resource named 'principals/users' this will allow us to introduce e.g. groups as principals (one day) and system specific principals (needed for federation)
10 years ago
Hides nodes from listing that the user has no access to
10 years ago
Fixing local event delivery for calendar events based on the email address
10 years ago
Users are available under it's own principal resource named 'principals/users' this will allow us to introduce e.g. groups as principals (one day) and system specific principals (needed for federation)
10 years ago
Introducing CalDAV into core
10 years ago
Adding IMip scheduling which uses ownClouds mail delivery
10 years ago
Introducing CalDAV into core
10 years ago
Fix server ctor including unit test - this shall never happen again
10 years ago
Use urlgenerator to generate an absolute url And pass Config the correct way too
9 years ago
Register DAVACL plugin to provide current-user-principal
10 years ago
Introducing CalDAV into core
10 years ago
user and system addressbooks are now living in sub folders
10 years ago
Adding VCFExportPlugin
10 years ago
Contacts API: replace raw image data with url (#25081) * add uri to AddressBookImpl array * Introduce ImageExportPlugin for CardDav * add plugin to v1 routes * replace binary contact photo with link * update tests * Adding unit tests
10 years ago
Adding CardDAV plugin to provide addressbook-home-set property
10 years ago
Added dav endpoints for system tags
10 years ago
Return ETag and OC-ETag in case of a move (#25683) Downstreaming of https://github.com/owncloud/core/pull/25683 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
Check if user has permission to create such a tag Fixes https://github.com/owncloud/core/issues/22512
10 years ago
Added dav endpoints for system tags
10 years ago
Comments DAV implementation
10 years ago
Return ETag and OC-ETag in case of a move (#25683) Downstreaming of https://github.com/owncloud/core/pull/25683 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
Comments DAV implementation
10 years ago
Return ETag and OC-ETag in case of a move (#25683) Downstreaming of https://github.com/owncloud/core/pull/25683 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
Add fake locking support for OneNote 2013 Fixes https://github.com/owncloud/core/issues/21925
10 years ago
Return ETag and OC-ETag in case of a move (#25683) Downstreaming of https://github.com/owncloud/core/pull/25683 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
Add fake locker plugin for WebDAVFS WebDAVFS as used by Finder requires a Class 2 compatible WebDAV server. This change introduces a fake locking provider which will simply advertise Locking support when a request originates from WebDAVFS. It will also return successful LOCK and UNLOCK responses.
10 years ago
In case of exception we return an html page in case the client is a browser
10 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Add more files plugins to new DAV endpoint (#26186) * Add more files plugins to new DAV endpoint Also fix report plugin to properly retrieve the path from the prolongated URL * In case the report is not for this plugin -> simply return to allow other plugins to get executed * Adjust onReport tests to match new behavior
9 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Add FilesPlugin - fixes #22507
10 years ago
Add data-fingerprint property to webdav
10 years ago
DAV now returns file name with Content-Disposition header Fixes issue where Chrome would append ".txt" to XML files when downloaded in the web UI
10 years ago
add dav property to check if a file has a preview available
9 years ago
Add data-fingerprint property to webdav
10 years ago
Add FilesPlugin - fixes #22507
10 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Adding quota plugin to new dav endpoint (#25615) * Adding quota plugin to new dav endpoint * Added integrated test failing in old endpoint * Added 0B quota test
9 years ago
Return ETag and OC-ETag in case of a move (#25683) Downstreaming of https://github.com/owncloud/core/pull/25683 Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
New dav endpoint register tags plugin This makes it possible to retrieve and PROPPATCH the favorite info Signed-off-by: Lukas Reschke <lukas@statuscode.ch>
9 years ago
Add more files plugins to new DAV endpoint (#26186) * Add more files plugins to new DAV endpoint Also fix report plugin to properly retrieve the path from the prolongated URL * In case the report is not for this plugin -> simply return to allow other plugins to get executed * Adjust onReport tests to match new behavior
9 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
Add more files plugins to new DAV endpoint (#26186) * Add more files plugins to new DAV endpoint Also fix report plugin to properly retrieve the path from the prolongated URL * In case the report is not for this plugin -> simply return to allow other plugins to get executed * Adjust onReport tests to match new behavior
9 years ago
Introduced the new webdav endpoint remote.php/dav holding the principals and the files collection
10 years ago
  1. <?php
  2. /**
  3. * @copyright Copyright (c) 2016, ownCloud, Inc.
  4. *
  5. * @author Arthur Schiwon <blizzz@arthur-schiwon.de>
  6. * @author Christoph Wurst <christoph@owncloud.com>
  7. * @author Georg Ehrke <georg@owncloud.com>
  8. * @author Lukas Reschke <lukas@statuscode.ch>
  9. * @author Robin Appelman <robin@icewind.nl>
  10. * @author Roeland Jago Douma <roeland@famdouma.nl>
  11. * @author Thomas Müller <thomas.mueller@tmit.eu>
  12. * @author Vincent Petry <pvince81@owncloud.com>
  13. *
  14. * @license AGPL-3.0
  15. *
  16. * This code is free software: you can redistribute it and/or modify
  17. * it under the terms of the GNU Affero General Public License, version 3,
  18. * as published by the Free Software Foundation.
  19. *
  20. * This program is distributed in the hope that it will be useful,
  21. * but WITHOUT ANY WARRANTY; without even the implied warranty of
  22. * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  23. * GNU Affero General Public License for more details.
  24. *
  25. * You should have received a copy of the GNU Affero General Public License, version 3,
  26. * along with this program. If not, see <http://www.gnu.org/licenses/>
  27. *
  28. */
  29. namespace OCA\DAV;
  31. use OCA\DAV\CalDAV\Schedule\IMipPlugin;
  32. use OCA\DAV\CardDAV\ImageExportPlugin;
  33. use OCA\DAV\Comments\CommentsPlugin;
  34. use OCA\DAV\Connector\Sabre\Auth;
  35. use OCA\DAV\Connector\Sabre\BlockLegacyClientPlugin;
  36. use OCA\DAV\Connector\Sabre\CopyEtagHeaderPlugin;
  37. use OCA\DAV\Connector\Sabre\DavAclPlugin;
  38. use OCA\DAV\Connector\Sabre\DummyGetResponsePlugin;
  39. use OCA\DAV\Connector\Sabre\FakeLockerPlugin;
  40. use OCA\DAV\Connector\Sabre\FilesPlugin;
  41. use OCA\DAV\DAV\PublicAuth;
  42. use OCA\DAV\Connector\Sabre\QuotaPlugin;
  43. use OCA\DAV\Files\BrowserErrorPagePlugin;
  44. use OCA\DAV\Files\CustomPropertiesBackend;
  45. use OCA\DAV\SystemTag\SystemTagPlugin;
  46. use OCP\IRequest;
  47. use OCP\SabrePluginEvent;
  48. use Sabre\CardDAV\VCFExportPlugin;
  49. use Sabre\DAV\Auth\Plugin;
  50. use OCA\DAV\Connector\Sabre\TagsPlugin;
  52. class Server {
  54. /** @var IRequest */
  55. private $request;
  57. /** @var string */
  58. private $baseUri;
  60. /** @var Connector\Sabre\Server */
  61. private $server;
  63. public function __construct(IRequest $request, $baseUri) {
  64. $this->request = $request;
  65. $this->baseUri = $baseUri;
  66. $logger = \OC::$server->getLogger();
  67. $mailer = \OC::$server->getMailer();
  68. $dispatcher = \OC::$server->getEventDispatcher();
  70. $root = new RootCollection();
  71. $this->server = new \OCA\DAV\Connector\Sabre\Server($root);
  73. // Backends
  74. $authBackend = new Auth(
  75. \OC::$server->getSession(),
  76. \OC::$server->getUserSession(),
  77. \OC::$server->getRequest(),
  78. \OC::$server->getTwoFactorAuthManager(),
  79. \OC::$server->getBruteForceThrottler()
  80. );
  82. // Set URL explicitly due to reverse-proxy situations
  83. $this->server->httpRequest->setUrl($this->request->getRequestUri());
  84. $this->server->setBaseUri($this->baseUri);
  86. $this->server->addPlugin(new BlockLegacyClientPlugin(\OC::$server->getConfig()));
  87. $authPlugin = new Plugin();
  88. $authPlugin->addBackend($authBackend);
  89. $authPlugin->addBackend(new PublicAuth());
  90. $this->server->addPlugin($authPlugin);
  92. // allow setup of additional auth backends
  93. $event = new SabrePluginEvent($this->server);
  94. $dispatcher->dispatch('OCA\DAV\Connector\Sabre::authInit', $event);
  96. // because we are throwing exceptions this plugin has to be the last one
  97. $authPlugin->addBackend($authBackend);
  99. // debugging
  100. if(\OC::$server->getConfig()->getSystemValue('debug', false)) {
  101. $this->server->addPlugin(new \Sabre\DAV\Browser\Plugin());
  102. } else {
  103. $this->server->addPlugin(new DummyGetResponsePlugin());
  104. }
  106. $this->server->addPlugin(new \OCA\DAV\Connector\Sabre\ExceptionLoggerPlugin('webdav', $logger));
  107. $this->server->addPlugin(new \OCA\DAV\Connector\Sabre\LockPlugin());
  108. $this->server->addPlugin(new \Sabre\DAV\Sync\Plugin());
  110. // acl
  111. $acl = new DavAclPlugin();
  112. $acl->principalCollectionSet = [
  113. 'principals/users', 'principals/groups'
  114. ];
  115. $acl->defaultUsernamePath = 'principals/users';
  116. $this->server->addPlugin($acl);
  118. // calendar plugins
  119. $this->server->addPlugin(new \Sabre\CalDAV\Plugin());
  120. $this->server->addPlugin(new \Sabre\CalDAV\ICSExportPlugin());
  121. $this->server->addPlugin(new \Sabre\CalDAV\Schedule\Plugin());
  122. $this->server->addPlugin(new IMipPlugin($mailer, $logger));
  123. $this->server->addPlugin(new \Sabre\CalDAV\Subscriptions\Plugin());
  124. $this->server->addPlugin(new \Sabre\CalDAV\Notifications\Plugin());
  125. $this->server->addPlugin(new DAV\Sharing\Plugin($authBackend, \OC::$server->getRequest()));
  126. $this->server->addPlugin(new \OCA\DAV\CalDAV\Publishing\PublishPlugin(
  127. \OC::$server->getConfig(),
  128. \OC::$server->getUrlGenerator()
  129. ));
  131. // addressbook plugins
  132. $this->server->addPlugin(new \OCA\DAV\CardDAV\Plugin());
  133. $this->server->addPlugin(new VCFExportPlugin());
  134. $this->server->addPlugin(new ImageExportPlugin(\OC::$server->getLogger()));
  136. // system tags plugins
  137. $this->server->addPlugin(new SystemTagPlugin(
  138. \OC::$server->getSystemTagManager(),
  139. \OC::$server->getGroupManager(),
  140. \OC::$server->getUserSession()
  141. ));
  143. // comments plugin
  144. $this->server->addPlugin(new CommentsPlugin(
  145. \OC::$server->getCommentsManager(),
  146. \OC::$server->getUserSession()
  147. ));
  149. $this->server->addPlugin(new CopyEtagHeaderPlugin());
  151. // Some WebDAV clients do require Class 2 WebDAV support (locking), since
  152. // we do not provide locking we emulate it using a fake locking plugin.
  153. if($request->isUserAgent([
  154. '/WebDAVFS/',
  155. '/Microsoft Office OneNote 2013/',
  156. ])) {
  157. $this->server->addPlugin(new FakeLockerPlugin());
  158. }
  160. if (BrowserErrorPagePlugin::isBrowserRequest($request)) {
  161. $this->server->addPlugin(new BrowserErrorPagePlugin());
  162. }
  164. // wait with registering these until auth is handled and the filesystem is setup
  165. $this->server->on('beforeMethod', function () {
  166. // custom properties plugin must be the last one
  167. $userSession = \OC::$server->getUserSession();
  168. $user = $userSession->getUser();
  169. if (!is_null($user)) {
  170. $view = \OC\Files\Filesystem::getView();
  171. $this->server->addPlugin(
  172. new FilesPlugin(
  173. $this->server->tree,
  174. $view,
  175. \OC::$server->getConfig(),
  176. $this->request,
  177. \OC::$server->getPreviewManager(),
  178. false,
  179. !\OC::$server->getConfig()->getSystemValue('debug', false)
  180. )
  181. );
  183. $this->server->addPlugin(
  184. new \Sabre\DAV\PropertyStorage\Plugin(
  185. new CustomPropertiesBackend(
  186. $this->server->tree,
  187. \OC::$server->getDatabaseConnection(),
  188. \OC::$server->getUserSession()->getUser()
  189. )
  190. )
  191. );
  192. $this->server->addPlugin(
  193. new QuotaPlugin($view)
  194. );
  195. $this->server->addPlugin(
  196. new TagsPlugin(
  197. $this->server->tree, \OC::$server->getTagManager()
  198. )
  199. );
  200. // TODO: switch to LazyUserFolder
  201. $userFolder = \OC::$server->getUserFolder();
  202. $this->server->addPlugin(new \OCA\DAV\Connector\Sabre\SharesPlugin(
  203. $this->server->tree,
  204. $userSession,
  205. $userFolder,
  206. \OC::$server->getShareManager()
  207. ));
  208. $this->server->addPlugin(new \OCA\DAV\Connector\Sabre\CommentPropertiesPlugin(
  209. \OC::$server->getCommentsManager(),
  210. $userSession
  211. ));
  212. $this->server->addPlugin(new \OCA\DAV\Connector\Sabre\FilesReportPlugin(
  213. $this->server->tree,
  214. $view,
  215. \OC::$server->getSystemTagManager(),
  216. \OC::$server->getSystemTagObjectMapper(),
  217. \OC::$server->getTagManager(),
  218. $userSession,
  219. \OC::$server->getGroupManager(),
  220. $userFolder
  221. ));
  222. }
  223. $this->server->addPlugin(new \OCA\DAV\Connector\Sabre\CopyEtagHeaderPlugin());
  224. });
  225. }
  227. public function exec() {
  228. $this->server->exec();
  229. }
  230. }