2014-10-11 22:33:37 +00:00
|
|
|
<?php
|
|
|
|
|
|
2015-06-12 05:47:45 +00:00
|
|
|
namespace RedMatrix\RedDAV;
|
2014-10-11 22:33:37 +00:00
|
|
|
|
|
|
|
|
use Sabre\DAV;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief RedDirectory class.
|
|
|
|
|
*
|
|
|
|
|
* A class that represents a directory.
|
|
|
|
|
*
|
|
|
|
|
* @extends \Sabre\DAV\Node
|
|
|
|
|
* @implements \Sabre\DAV\ICollection
|
|
|
|
|
* @implements \Sabre\DAV\IQuota
|
|
|
|
|
*
|
|
|
|
|
* @link http://github.com/friendica/red
|
|
|
|
|
* @license http://opensource.org/licenses/mit-license.php The MIT License (MIT)
|
|
|
|
|
*/
|
|
|
|
|
class RedDirectory extends DAV\Node implements DAV\ICollection, DAV\IQuota {
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief The path inside /cloud
|
|
|
|
|
*
|
|
|
|
|
* @var string
|
|
|
|
|
*/
|
|
|
|
|
private $red_path;
|
|
|
|
|
private $folder_hash;
|
|
|
|
|
/**
|
|
|
|
|
* @brief The full path as seen in the browser.
|
|
|
|
|
* /cloud + $red_path
|
|
|
|
|
* @todo I think this is not used anywhere, we always strip '/cloud' and only use it in debug
|
|
|
|
|
* @var string
|
|
|
|
|
*/
|
|
|
|
|
private $ext_path;
|
|
|
|
|
private $root_dir = '';
|
|
|
|
|
private $auth;
|
|
|
|
|
/**
|
|
|
|
|
* @brief The real path on the filesystem.
|
|
|
|
|
* The actual path in store/ with the hashed names.
|
|
|
|
|
*
|
|
|
|
|
* @var string
|
|
|
|
|
*/
|
|
|
|
|
private $os_path = '';
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Sets up the directory node, expects a full path.
|
|
|
|
|
*
|
|
|
|
|
* @param string $ext_path a full path
|
|
|
|
|
* @param RedBasicAuth &$auth_plugin
|
|
|
|
|
*/
|
|
|
|
|
public function __construct($ext_path, &$auth_plugin) {
|
2015-03-29 23:05:08 +00:00
|
|
|
// $ext_path = urldecode($ext_path);
|
2014-10-13 22:08:55 +00:00
|
|
|
//logger('directory ' . $ext_path, LOGGER_DATA);
|
2014-10-11 22:33:37 +00:00
|
|
|
$this->ext_path = $ext_path;
|
|
|
|
|
// remove "/cloud" from the beginning of the path
|
2015-01-19 01:52:09 +00:00
|
|
|
$modulename = get_app()->module;
|
2015-01-19 03:24:59 +00:00
|
|
|
$this->red_path = ((strpos($ext_path, '/' . $modulename) === 0) ? substr($ext_path, strlen($modulename) + 1) : $ext_path);
|
2014-10-11 22:33:37 +00:00
|
|
|
if (! $this->red_path) {
|
|
|
|
|
$this->red_path = '/';
|
|
|
|
|
}
|
|
|
|
|
$this->auth = $auth_plugin;
|
|
|
|
|
$this->folder_hash = '';
|
|
|
|
|
$this->getDir();
|
|
|
|
|
|
|
|
|
|
if ($this->auth->browser) {
|
|
|
|
|
$this->auth->browser->set_writeable();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
private function log() {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('ext_path ' . $this->ext_path, LOGGER_DATA);
|
|
|
|
|
logger('os_path ' . $this->os_path, LOGGER_DATA);
|
|
|
|
|
logger('red_path ' . $this->red_path, LOGGER_DATA);
|
2014-10-11 22:33:37 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Returns an array with all the child nodes.
|
|
|
|
|
*
|
2014-10-13 22:08:55 +00:00
|
|
|
* @throw \Sabre\DAV\Exception\Forbidden
|
|
|
|
|
* @return array \Sabre\DAV\INode[]
|
2014-10-11 22:33:37 +00:00
|
|
|
*/
|
|
|
|
|
public function getChildren() {
|
2014-10-13 22:08:55 +00:00
|
|
|
//logger('children for ' . $this->ext_path, LOGGER_DATA);
|
2014-10-11 22:33:37 +00:00
|
|
|
$this->log();
|
|
|
|
|
|
|
|
|
|
if (get_config('system', 'block_public') && (! $this->auth->channel_id) && (! $this->auth->observer)) {
|
|
|
|
|
throw new DAV\Exception\Forbidden('Permission denied.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (($this->auth->owner_id) && (! perm_is_allowed($this->auth->owner_id, $this->auth->observer, 'view_storage'))) {
|
|
|
|
|
throw new DAV\Exception\Forbidden('Permission denied.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$contents = RedCollectionData($this->red_path, $this->auth);
|
|
|
|
|
return $contents;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Returns a child by name.
|
|
|
|
|
*
|
|
|
|
|
*
|
2014-10-13 22:08:55 +00:00
|
|
|
* @throw \Sabre\DAV\Exception\Forbidden
|
|
|
|
|
* @throw \Sabre\DAV\Exception\NotFound
|
2014-10-11 22:33:37 +00:00
|
|
|
* @param string $name
|
|
|
|
|
*/
|
|
|
|
|
public function getChild($name) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger($name, LOGGER_DATA);
|
2014-10-11 22:33:37 +00:00
|
|
|
|
|
|
|
|
if (get_config('system', 'block_public') && (! $this->auth->channel_id) && (! $this->auth->observer)) {
|
|
|
|
|
throw new DAV\Exception\Forbidden('Permission denied.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (($this->auth->owner_id) && (! perm_is_allowed($this->auth->owner_id, $this->auth->observer, 'view_storage'))) {
|
|
|
|
|
throw new DAV\Exception\Forbidden('Permission denied.');
|
|
|
|
|
}
|
|
|
|
|
|
2015-01-19 01:52:09 +00:00
|
|
|
$modulename = get_app()->module;
|
|
|
|
|
if ($this->red_path === '/' && $name === $modulename) {
|
|
|
|
|
return new RedDirectory('/' . $modulename, $this->auth);
|
2014-10-11 22:33:37 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$x = RedFileData($this->ext_path . '/' . $name, $this->auth);
|
|
|
|
|
if ($x) {
|
|
|
|
|
return $x;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
throw new DAV\Exception\NotFound('The file with name: ' . $name . ' could not be found.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Returns the name of the directory.
|
|
|
|
|
*
|
|
|
|
|
* @return string
|
|
|
|
|
*/
|
|
|
|
|
public function getName() {
|
2014-10-13 22:08:55 +00:00
|
|
|
//logger(basename($this->red_path), LOGGER_DATA);
|
2014-10-11 22:33:37 +00:00
|
|
|
return (basename($this->red_path));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Renames the directory.
|
|
|
|
|
*
|
|
|
|
|
* @todo handle duplicate directory name
|
|
|
|
|
*
|
2014-10-13 22:08:55 +00:00
|
|
|
* @throw \Sabre\DAV\Exception\Forbidden
|
2014-10-11 22:33:37 +00:00
|
|
|
* @param string $name The new name of the directory.
|
|
|
|
|
* @return void
|
|
|
|
|
*/
|
|
|
|
|
public function setName($name) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('old name ' . basename($this->red_path) . ' -> ' . $name, LOGGER_DATA);
|
2014-10-11 22:33:37 +00:00
|
|
|
|
|
|
|
|
if ((! $name) || (! $this->auth->owner_id)) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('permission denied ' . $name);
|
2014-10-11 22:33:37 +00:00
|
|
|
throw new DAV\Exception\Forbidden('Permission denied.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (! perm_is_allowed($this->auth->owner_id, $this->auth->observer, 'write_storage')) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('permission denied '. $name);
|
2014-10-11 22:33:37 +00:00
|
|
|
throw new DAV\Exception\Forbidden('Permission denied.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
list($parent_path, ) = DAV\URLUtil::splitPath($this->red_path);
|
|
|
|
|
$new_path = $parent_path . '/' . $name;
|
|
|
|
|
|
PostgreSQL support initial commit
There were 11 main types of changes:
- UPDATE's and DELETE's sometimes had LIMIT 1 at the end of them. This is not only non-compliant but
it would certainly not do what whoever wrote it thought it would. It is likely this mistake was just
copied from Friendica. All of these instances, the LIMIT 1 was simply removed.
- Bitwise operations (and even some non-zero int checks) erroneously rely on MySQL implicit
integer-boolean conversion in the WHERE clauses. This is non-compliant (and bad programming practice
to boot). Proper explicit boolean conversions were added. New queries should use proper conventions.
- MySQL has a different operator for bitwise XOR than postgres. Rather than add yet another dba_
func, I converted them to "& ~" ("AND NOT") when turning off, and "|" ("OR") when turning on. There
were no true toggles (XOR). New queries should refrain from using XOR when not necessary.
- There are several fields which the schema has marked as NOT NULL, but the inserts don't specify
them. The reason this works is because mysql totally ignores the constraint and adds an empty text
default automatically. Again, non-compliant, obviously. In these cases a default of empty text was
added.
- Several statements rely on a non-standard MySQL feature
(http://dev.mysql.com/doc/refman/5.5/en/group-by-handling.html). These queries can all be rewritten
to be standards compliant. Interestingly enough, the newly rewritten standards compliant queries run
a zillion times faster, even on MySQL.
- A couple of function/operator name translations were needed (RAND/RANDOM, GROUP_CONCAT/STRING_AGG,
UTC_NOW, REGEXP/~, ^/#) -- assist functions added in the dba_
- INTERVALs: postgres requires quotes around the value, mysql requires that there are not quotes
around the value -- assist functions added in the dba_
- NULL_DATE's -- Postgres does not allow the invalid date '0000-00-00 00:00:00' (there is no such
thing as year 0 or month 0 or day 0). We use '0001-01-01 00:00:00' for postgres. Conversions are
handled in Zot/item packets automagically by quoting all dates with dbescdate().
- char(##) specifications in the schema creates fields with blank spaces that aren't trimmed in the
code. MySQL apparently treats char(##) as varchar(##), again, non-compliant. Since postgres works
better with text fields anyway, this ball of bugs was simply side-stepped by using 'text' datatype
for all text fields in the postgres schema. varchar was used in a couple of places where it actually
seemed appropriate (size constraint), but without rigorously vetting that all of the PHP code
actually validates data, new bugs might come out from under the rug.
- postgres doesn't store nul bytes and a few other non-printables in text fields, even when quoted.
bytea fields were used when storing binary data (photo.data, attach.data). A new dbescbin() function
was added to handle this transparently.
- postgres does not support LIMIT #,# syntax. All databases support LIMIT # OFFSET # syntax.
Statements were updated to be standard.
These changes require corresponding changes in the coding standards. Please review those before
adding any code going forward.
Still on my TODO list:
- remove quotes from non-reserved identifiers and make reserved identifiers use dba func for quoting
- Rewrite search queries for better results (both MySQL and Postgres)
2014-11-13 20:21:58 +00:00
|
|
|
$r = q("UPDATE attach SET filename = '%s' WHERE hash = '%s' AND uid = %d",
|
2014-10-11 22:33:37 +00:00
|
|
|
dbesc($name),
|
|
|
|
|
dbesc($this->folder_hash),
|
|
|
|
|
intval($this->auth->owner_id)
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$this->red_path = $new_path;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Creates a new file in the directory.
|
|
|
|
|
*
|
|
|
|
|
* Data will either be supplied as a stream resource, or in certain cases
|
|
|
|
|
* as a string. Keep in mind that you may have to support either.
|
|
|
|
|
*
|
|
|
|
|
* After successful creation of the file, you may choose to return the ETag
|
|
|
|
|
* of the new file here.
|
|
|
|
|
*
|
2014-10-13 22:08:55 +00:00
|
|
|
* @throw \Sabre\DAV\Exception\Forbidden
|
2014-10-11 22:33:37 +00:00
|
|
|
* @param string $name Name of the file
|
|
|
|
|
* @param resource|string $data Initial payload
|
|
|
|
|
* @return null|string ETag
|
|
|
|
|
*/
|
|
|
|
|
public function createFile($name, $data = null) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger($name, LOGGER_DEBUG);
|
2014-10-11 22:33:37 +00:00
|
|
|
|
|
|
|
|
if (! $this->auth->owner_id) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('permission denied ' . $name);
|
2014-10-11 22:33:37 +00:00
|
|
|
throw new DAV\Exception\Forbidden('Permission denied.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (! perm_is_allowed($this->auth->owner_id, $this->auth->observer, 'write_storage')) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('permission denied ' . $name);
|
2014-10-11 22:33:37 +00:00
|
|
|
throw new DAV\Exception\Forbidden('Permission denied.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$mimetype = z_mime_content_type($name);
|
|
|
|
|
|
2015-06-16 00:28:52 +00:00
|
|
|
$c = q("SELECT * FROM channel WHERE channel_id = %d AND channel_removed = 0 LIMIT 1",
|
|
|
|
|
intval($this->auth->owner_id)
|
2014-10-11 22:33:37 +00:00
|
|
|
);
|
|
|
|
|
|
|
|
|
|
if (! $c) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('no channel');
|
2014-10-11 22:33:37 +00:00
|
|
|
throw new DAV\Exception\Forbidden('Permission denied.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$filesize = 0;
|
|
|
|
|
$hash = random_string();
|
|
|
|
|
|
2015-06-15 00:28:51 +00:00
|
|
|
$f = 'store/' . $this->auth->owner_nick . '/' . (($this->os_path) ? $this->os_path . '/' : '') . $hash;
|
|
|
|
|
|
2015-06-13 22:02:51 +00:00
|
|
|
|
2015-06-13 22:57:28 +00:00
|
|
|
$r = q("INSERT INTO attach ( aid, uid, hash, creator, filename, folder, os_storage, filetype, filesize, revision, is_photo, data, created, edited, allow_cid, allow_gid, deny_cid, deny_gid )
|
2015-06-13 22:02:51 +00:00
|
|
|
VALUES ( %d, %d, '%s', '%s', '%s', '%s', '%s', '%s', %d, %d, %d, '%s', '%s', '%s', '%s', '%s', '%s', '%s' ) ",
|
2014-10-11 22:33:37 +00:00
|
|
|
intval($c[0]['channel_account_id']),
|
|
|
|
|
intval($c[0]['channel_id']),
|
|
|
|
|
dbesc($hash),
|
|
|
|
|
dbesc($this->auth->observer),
|
|
|
|
|
dbesc($name),
|
|
|
|
|
dbesc($this->folder_hash),
|
2015-06-13 22:57:28 +00:00
|
|
|
intval(1),
|
2014-10-11 22:33:37 +00:00
|
|
|
dbesc($mimetype),
|
|
|
|
|
intval($filesize),
|
|
|
|
|
intval(0),
|
2015-06-13 22:02:51 +00:00
|
|
|
intval($is_photo),
|
2014-10-11 22:33:37 +00:00
|
|
|
dbesc($this->os_path . '/' . $hash),
|
|
|
|
|
dbesc(datetime_convert()),
|
|
|
|
|
dbesc(datetime_convert()),
|
|
|
|
|
dbesc($c[0]['channel_allow_cid']),
|
|
|
|
|
dbesc($c[0]['channel_allow_gid']),
|
|
|
|
|
dbesc($c[0]['channel_deny_cid']),
|
|
|
|
|
dbesc($c[0]['channel_deny_gid'])
|
|
|
|
|
);
|
|
|
|
|
|
2015-06-15 00:28:51 +00:00
|
|
|
|
2014-10-11 22:33:37 +00:00
|
|
|
|
|
|
|
|
// returns the number of bytes that were written to the file, or FALSE on failure
|
|
|
|
|
$size = file_put_contents($f, $data);
|
|
|
|
|
// delete attach entry if file_put_contents() failed
|
|
|
|
|
if ($size === false) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('file_put_contents() failed to ' . $f);
|
2014-10-11 22:33:37 +00:00
|
|
|
attach_delete($c[0]['channel_id'], $hash);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// returns now
|
|
|
|
|
$edited = datetime_convert();
|
|
|
|
|
|
2015-06-15 00:28:51 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
$is_photo = 0;
|
|
|
|
|
$x = @getimagesize($f);
|
|
|
|
|
logger('getimagesize: ' . print_r($x,true), LOGGER_DATA);
|
|
|
|
|
if(($x) && ($x[2] === IMAGETYPE_GIF || $x[2] === IMAGETYPE_JPEG || $x[2] === IMAGETYPE_PNG)) {
|
|
|
|
|
$is_photo = 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2014-10-11 22:33:37 +00:00
|
|
|
// updates entry with filesize and timestamp
|
2015-06-15 00:28:51 +00:00
|
|
|
$d = q("UPDATE attach SET filesize = '%s', is_photo = %d, edited = '%s' WHERE hash = '%s' AND uid = %d",
|
2014-10-11 22:33:37 +00:00
|
|
|
dbesc($size),
|
2015-06-15 00:28:51 +00:00
|
|
|
intval($is_photo),
|
2014-10-11 22:33:37 +00:00
|
|
|
dbesc($edited),
|
|
|
|
|
dbesc($hash),
|
|
|
|
|
intval($c[0]['channel_id'])
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
// update the folder's lastmodified timestamp
|
PostgreSQL support initial commit
There were 11 main types of changes:
- UPDATE's and DELETE's sometimes had LIMIT 1 at the end of them. This is not only non-compliant but
it would certainly not do what whoever wrote it thought it would. It is likely this mistake was just
copied from Friendica. All of these instances, the LIMIT 1 was simply removed.
- Bitwise operations (and even some non-zero int checks) erroneously rely on MySQL implicit
integer-boolean conversion in the WHERE clauses. This is non-compliant (and bad programming practice
to boot). Proper explicit boolean conversions were added. New queries should use proper conventions.
- MySQL has a different operator for bitwise XOR than postgres. Rather than add yet another dba_
func, I converted them to "& ~" ("AND NOT") when turning off, and "|" ("OR") when turning on. There
were no true toggles (XOR). New queries should refrain from using XOR when not necessary.
- There are several fields which the schema has marked as NOT NULL, but the inserts don't specify
them. The reason this works is because mysql totally ignores the constraint and adds an empty text
default automatically. Again, non-compliant, obviously. In these cases a default of empty text was
added.
- Several statements rely on a non-standard MySQL feature
(http://dev.mysql.com/doc/refman/5.5/en/group-by-handling.html). These queries can all be rewritten
to be standards compliant. Interestingly enough, the newly rewritten standards compliant queries run
a zillion times faster, even on MySQL.
- A couple of function/operator name translations were needed (RAND/RANDOM, GROUP_CONCAT/STRING_AGG,
UTC_NOW, REGEXP/~, ^/#) -- assist functions added in the dba_
- INTERVALs: postgres requires quotes around the value, mysql requires that there are not quotes
around the value -- assist functions added in the dba_
- NULL_DATE's -- Postgres does not allow the invalid date '0000-00-00 00:00:00' (there is no such
thing as year 0 or month 0 or day 0). We use '0001-01-01 00:00:00' for postgres. Conversions are
handled in Zot/item packets automagically by quoting all dates with dbescdate().
- char(##) specifications in the schema creates fields with blank spaces that aren't trimmed in the
code. MySQL apparently treats char(##) as varchar(##), again, non-compliant. Since postgres works
better with text fields anyway, this ball of bugs was simply side-stepped by using 'text' datatype
for all text fields in the postgres schema. varchar was used in a couple of places where it actually
seemed appropriate (size constraint), but without rigorously vetting that all of the PHP code
actually validates data, new bugs might come out from under the rug.
- postgres doesn't store nul bytes and a few other non-printables in text fields, even when quoted.
bytea fields were used when storing binary data (photo.data, attach.data). A new dbescbin() function
was added to handle this transparently.
- postgres does not support LIMIT #,# syntax. All databases support LIMIT # OFFSET # syntax.
Statements were updated to be standard.
These changes require corresponding changes in the coding standards. Please review those before
adding any code going forward.
Still on my TODO list:
- remove quotes from non-reserved identifiers and make reserved identifiers use dba func for quoting
- Rewrite search queries for better results (both MySQL and Postgres)
2014-11-13 20:21:58 +00:00
|
|
|
$e = q("UPDATE attach SET edited = '%s' WHERE hash = '%s' AND uid = %d",
|
2014-10-11 22:33:37 +00:00
|
|
|
dbesc($edited),
|
|
|
|
|
dbesc($this->folder_hash),
|
|
|
|
|
intval($c[0]['channel_id'])
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$maxfilesize = get_config('system', 'maxfilesize');
|
|
|
|
|
if (($maxfilesize) && ($size > $maxfilesize)) {
|
|
|
|
|
attach_delete($c[0]['channel_id'], $hash);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// check against service class quota
|
|
|
|
|
$limit = service_class_fetch($c[0]['channel_id'], 'attach_upload_limit');
|
|
|
|
|
if ($limit !== false) {
|
|
|
|
|
$x = q("SELECT SUM(filesize) AS total FROM attach WHERE aid = %d ",
|
|
|
|
|
intval($c[0]['channel_account_id'])
|
|
|
|
|
);
|
|
|
|
|
if (($x) && ($x[0]['total'] + $size > $limit)) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('service class limit exceeded for ' . $c[0]['channel_name'] . ' total usage is ' . $x[0]['total'] . ' limit is ' . $limit);
|
2014-10-11 22:33:37 +00:00
|
|
|
attach_delete($c[0]['channel_id'], $hash);
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-06-15 00:28:51 +00:00
|
|
|
|
|
|
|
|
if($is_photo) {
|
2015-06-27 23:36:30 +00:00
|
|
|
$album = '';
|
|
|
|
|
if($this->folder_hash) {
|
|
|
|
|
$f1 = q("select filename from attach WHERE hash = '%s' AND uid = %d",
|
|
|
|
|
dbesc($this->folder_hash),
|
|
|
|
|
intval($c[0]['channel_id'])
|
|
|
|
|
);
|
|
|
|
|
if($f1)
|
|
|
|
|
$album = $f1[0]['filename'];
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-15 00:28:51 +00:00
|
|
|
require_once('include/photos.php');
|
2015-06-27 23:36:30 +00:00
|
|
|
$args = array( 'resource_id' => $hash, 'album' => $album, 'os_path' => $f, 'filename' => $name, 'getimagesize' => $x);
|
2015-06-15 00:28:51 +00:00
|
|
|
$p = photo_upload($c[0],get_app()->get_observer(),$args);
|
|
|
|
|
}
|
|
|
|
|
|
2014-10-11 22:33:37 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Creates a new subdirectory.
|
|
|
|
|
*
|
|
|
|
|
* @param string $name the directory to create
|
|
|
|
|
* @return void
|
|
|
|
|
*/
|
|
|
|
|
public function createDirectory($name) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger($name, LOGGER_DEBUG);
|
2014-10-11 22:33:37 +00:00
|
|
|
|
|
|
|
|
if ((! $this->auth->owner_id) || (! perm_is_allowed($this->auth->owner_id, $this->auth->observer, 'write_storage'))) {
|
|
|
|
|
throw new DAV\Exception\Forbidden('Permission denied.');
|
|
|
|
|
}
|
|
|
|
|
|
2015-06-16 00:28:52 +00:00
|
|
|
$r = q("SELECT * FROM channel WHERE channel_id = %d AND channel_removed = 0 LIMIT 1",
|
|
|
|
|
intval($this->auth->owner_id)
|
2014-10-11 22:33:37 +00:00
|
|
|
);
|
|
|
|
|
|
|
|
|
|
if ($r) {
|
|
|
|
|
$result = attach_mkdir($r[0], $this->auth->observer, array('filename' => $name, 'folder' => $this->folder_hash));
|
|
|
|
|
if (! $result['success']) {
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('error ' . print_r($result, true), LOGGER_DEBUG);
|
2014-10-11 22:33:37 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Checks if a child exists.
|
|
|
|
|
*
|
|
|
|
|
* @param string $name
|
2014-10-13 22:08:55 +00:00
|
|
|
* The name to check if it exists.
|
2014-10-11 22:33:37 +00:00
|
|
|
* @return boolean
|
|
|
|
|
*/
|
|
|
|
|
public function childExists($name) {
|
|
|
|
|
// On /cloud we show a list of available channels.
|
|
|
|
|
// @todo what happens if no channels are available?
|
2015-01-19 01:52:09 +00:00
|
|
|
$modulename = get_app()->module;
|
|
|
|
|
if ($this->red_path === '/' && $name === $modulename) {
|
|
|
|
|
//logger('We are at ' $modulename . ' show a channel list', LOGGER_DEBUG);
|
2014-10-11 22:33:37 +00:00
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$x = RedFileData($this->ext_path . '/' . $name, $this->auth, true);
|
2014-10-13 22:08:55 +00:00
|
|
|
//logger('RedFileData returns: ' . print_r($x, true), LOGGER_DATA);
|
2014-10-11 22:33:37 +00:00
|
|
|
if ($x)
|
|
|
|
|
return true;
|
2014-10-13 22:08:55 +00:00
|
|
|
|
2014-10-11 22:33:37 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @todo add description of what this function does.
|
|
|
|
|
*
|
2014-10-13 22:08:55 +00:00
|
|
|
* @throw \Sabre\DAV\Exception\NotFound
|
2014-10-11 22:33:37 +00:00
|
|
|
* @return void
|
|
|
|
|
*/
|
|
|
|
|
function getDir() {
|
2014-10-13 22:08:55 +00:00
|
|
|
//logger($this->ext_path, LOGGER_DEBUG);
|
2014-10-11 22:33:37 +00:00
|
|
|
$this->auth->log();
|
2015-01-19 03:24:59 +00:00
|
|
|
$modulename = get_app()->module;
|
2014-10-11 22:33:37 +00:00
|
|
|
|
|
|
|
|
$file = $this->ext_path;
|
|
|
|
|
|
2015-01-19 01:52:09 +00:00
|
|
|
$x = strpos($file, '/' . $modulename);
|
2014-10-11 22:33:37 +00:00
|
|
|
if ($x === false)
|
|
|
|
|
return;
|
|
|
|
|
if ($x === 0) {
|
2015-01-19 01:52:09 +00:00
|
|
|
$file = substr($file, strlen($modulename) + 1);
|
2014-10-11 22:33:37 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ((! $file) || ($file === '/')) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$file = trim($file, '/');
|
|
|
|
|
$path_arr = explode('/', $file);
|
|
|
|
|
|
|
|
|
|
if (! $path_arr)
|
|
|
|
|
return;
|
|
|
|
|
|
2014-10-13 22:08:55 +00:00
|
|
|
logger('paths: ' . print_r($path_arr, true), LOGGER_DATA);
|
2014-10-11 22:33:37 +00:00
|
|
|
|
|
|
|
|
$channel_name = $path_arr[0];
|
|
|
|
|
|
2015-06-16 00:28:52 +00:00
|
|
|
$r = q("SELECT channel_id FROM channel WHERE channel_address = '%s' AND channel_removed = 0 LIMIT 1",
|
|
|
|
|
dbesc($channel_name)
|
2014-10-11 22:33:37 +00:00
|
|
|
);
|
|
|
|
|
|
|
|
|
|
if (! $r) {
|
|
|
|
|
throw new DAV\Exception\NotFound('The file with name: ' . $channel_name . ' could not be found.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$channel_id = $r[0]['channel_id'];
|
|
|
|
|
$this->auth->owner_id = $channel_id;
|
|
|
|
|
$this->auth->owner_nick = $channel_name;
|
|
|
|
|
|
|
|
|
|
$path = '/' . $channel_name;
|
|
|
|
|
$folder = '';
|
|
|
|
|
$os_path = '';
|
|
|
|
|
|
|
|
|
|
for ($x = 1; $x < count($path_arr); $x++) {
|
2015-07-31 00:11:16 +00:00
|
|
|
$r = q("select id, hash, filename, flags, is_dir from attach where folder = '%s' and filename = '%s' and uid = %d and is_dir != 0",
|
2014-10-11 22:33:37 +00:00
|
|
|
dbesc($folder),
|
|
|
|
|
dbesc($path_arr[$x]),
|
2015-07-31 00:11:16 +00:00
|
|
|
intval($channel_id)
|
2014-10-11 22:33:37 +00:00
|
|
|
);
|
|
|
|
|
|
2015-07-31 00:11:16 +00:00
|
|
|
if ($r && intval($r[0]['is_dir'])) {
|
2014-10-11 22:33:37 +00:00
|
|
|
$folder = $r[0]['hash'];
|
|
|
|
|
if (strlen($os_path))
|
|
|
|
|
$os_path .= '/';
|
|
|
|
|
$os_path .= $folder;
|
|
|
|
|
|
|
|
|
|
$path = $path . '/' . $r[0]['filename'];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
$this->folder_hash = $folder;
|
|
|
|
|
$this->os_path = $os_path;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Returns the last modification time for the directory, as a UNIX
|
2014-10-13 22:08:55 +00:00
|
|
|
* timestamp.
|
2014-10-11 22:33:37 +00:00
|
|
|
*
|
|
|
|
|
* It looks for the last edited file in the folder. If it is an empty folder
|
|
|
|
|
* it returns the lastmodified time of the folder itself, to prevent zero
|
|
|
|
|
* timestamps.
|
|
|
|
|
*
|
|
|
|
|
* @return int last modification time in UNIX timestamp
|
|
|
|
|
*/
|
|
|
|
|
public function getLastModified() {
|
|
|
|
|
$r = q("SELECT edited FROM attach WHERE folder = '%s' AND uid = %d ORDER BY edited DESC LIMIT 1",
|
|
|
|
|
dbesc($this->folder_hash),
|
|
|
|
|
intval($this->auth->owner_id)
|
|
|
|
|
);
|
|
|
|
|
if (! $r) {
|
|
|
|
|
$r = q("SELECT edited FROM attach WHERE hash = '%s' AND uid = %d LIMIT 1",
|
|
|
|
|
dbesc($this->folder_hash),
|
|
|
|
|
intval($this->auth->owner_id)
|
|
|
|
|
);
|
|
|
|
|
if (! $r)
|
|
|
|
|
return '';
|
|
|
|
|
}
|
|
|
|
|
return datetime_convert('UTC', 'UTC', $r[0]['edited'], 'U');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @brief Return quota usage.
|
|
|
|
|
*
|
2014-10-13 22:08:55 +00:00
|
|
|
* @fixme Should guests relly see the used/free values from filesystem of the
|
|
|
|
|
* complete store directory?
|
2014-10-11 22:33:37 +00:00
|
|
|
*
|
|
|
|
|
* @return array with used and free values in bytes.
|
|
|
|
|
*/
|
|
|
|
|
public function getQuotaInfo() {
|
|
|
|
|
// values from the filesystem of the complete <i>store/</i> directory
|
|
|
|
|
$limit = disk_total_space('store');
|
|
|
|
|
$free = disk_free_space('store');
|
|
|
|
|
|
|
|
|
|
if ($this->auth->owner_id) {
|
2015-06-16 00:28:52 +00:00
|
|
|
$c = q("select * from channel where channel_id = %d and channel_removed = 0 limit 1",
|
|
|
|
|
intval($this->auth->owner_id)
|
2014-10-11 22:33:37 +00:00
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$ulimit = service_class_fetch($c[0]['channel_id'], 'attach_upload_limit');
|
|
|
|
|
$limit = (($ulimit) ? $ulimit : $limit);
|
|
|
|
|
|
|
|
|
|
$x = q("select sum(filesize) as total from attach where aid = %d",
|
|
|
|
|
intval($c[0]['channel_account_id'])
|
|
|
|
|
);
|
|
|
|
|
$free = (($x) ? $limit - $x[0]['total'] : 0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return array(
|
|
|
|
|
$limit - $free,
|
|
|
|
|
$free
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
}
|
