mirror of
https://gitlab.com/davical-project/davical.git
synced 2026-02-26 05:33:40 +00:00
15d01c8bed
We want to store the calculated dtstart and dtend in the database so we can use SQL to fetch records. However, we also need what the user sent us so we can allow prop-filters to be used as well. So we store what the user sends us in dtstart_orig and dtend_orig and only use for relevant prop-filter reports.
1740 lines
77 KiB
PHP
1740 lines
77 KiB
PHP
<?php
|
|
/**
|
|
* CalDAV Server - handle PUT method
|
|
*
|
|
* @package davical
|
|
* @subpackage caldav
|
|
* @author Andrew McMillan <andrew@morphoss.com>
|
|
* @copyright Morphoss Ltd - http://www.morphoss.com/
|
|
* @license http://gnu.org/copyleft/gpl.html GNU GPL v2 or later version
|
|
*/
|
|
|
|
/**
|
|
* Check if the user wants to put just one VEVENT/VTODO or a whole calendar
|
|
* if the collection = calendar = $request_container doesn't exist then create it
|
|
* return true if it's a whole calendar
|
|
*/
|
|
|
|
require_once('AwlCache.php');
|
|
require_once('vComponent.php');
|
|
require_once('vCalendar.php');
|
|
require_once('WritableCollection.php');
|
|
require_once('schedule-functions.php');
|
|
include_once('iSchedule.php');
|
|
include_once('RRule.php');
|
|
|
|
$bad_events = null;
|
|
|
|
/**
|
|
* A regex which will match most reasonable timezones acceptable to PostgreSQL.
|
|
*/
|
|
$GLOBALS['tz_regex'] = ':^(Africa|America|Antarctica|Arctic|Asia|Atlantic|Australia|Brazil|Canada|Chile|Etc|Europe|Indian|Mexico|Mideast|Pacific|US)/[a-z_]+$:i';
|
|
|
|
/**
|
|
* This function launches an error
|
|
* @param boolean $caldav_context Whether we are responding via CalDAV or interactively
|
|
* @param int $user_no the user who will receive this ics file
|
|
* @param string $path the $path where the PUT failed to store such as /user_foo/home/
|
|
* @param string $message An optional error message to return to the client
|
|
* @param int $error_no An optional value for the HTTP error code
|
|
*/
|
|
function rollback_on_error( $caldav_context, $user_no, $path, $message='', $error_no=500 ) {
|
|
global $c, $bad_events;
|
|
if ( !$message ) $message = translate('Database error');
|
|
$qry = new AwlQuery();
|
|
if ( $qry->TransactionState() != 0 ) $qry->Rollback();
|
|
if ( $caldav_context ) {
|
|
if ( isset($bad_events) && isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) {
|
|
$bad_events[] = $message;
|
|
}
|
|
else {
|
|
global $request;
|
|
$request->DoResponse( $error_no, $message );
|
|
}
|
|
// and we don't return from that, ever...
|
|
}
|
|
|
|
$c->messages[] = sprintf(translate('Status: %d, Message: %s, User: %d, Path: %s'), $error_no, $message, $user_no, $path);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
* Work out the location we are doing the PUT to, and check that we have the rights to
|
|
* do the needful.
|
|
* @param string $username The name of the destination user
|
|
* @param int $user_no The user making the change
|
|
* @param string $path The DAV path the resource is bing PUT to
|
|
* @param boolean $caldav_context Whether we are responding via CalDAV or interactively
|
|
* @param boolean $public Whether the collection will be public, should we need to create it
|
|
*/
|
|
function controlRequestContainer( $username, $user_no, $path, $caldav_context, $public = null ) {
|
|
global $c, $request, $bad_events;
|
|
|
|
// Check to see if the path is like /foo /foo/bar or /foo/bar/baz etc. (not ending with a '/', but contains at least one)
|
|
if ( preg_match( '#^(.*/)([^/]+)$#', $path, $matches ) ) {//(
|
|
$request_container = $matches[1]; // get everything up to the last '/'
|
|
}
|
|
else {
|
|
// In this case we must have a URL with a trailing '/', so it must be a collection.
|
|
$request_container = $path;
|
|
}
|
|
|
|
if ( isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) {
|
|
$bad_events = array();
|
|
}
|
|
|
|
/**
|
|
* Before we write the event, we check the container exists, creating it if it doesn't
|
|
*/
|
|
if ( $request_container == "/$username/" ) {
|
|
/**
|
|
* Well, it exists, and we support it, but it is against the CalDAV spec
|
|
*/
|
|
dbg_error_log( 'WARN', ' Storing events directly in user\'s base folders is not recommended!');
|
|
}
|
|
else {
|
|
$sql = 'SELECT * FROM collection WHERE dav_name = :dav_name';
|
|
$qry = new AwlQuery( $sql, array( ':dav_name' => $request_container) );
|
|
if ( ! $qry->Exec('PUT',__LINE__,__FILE__) ) {
|
|
rollback_on_error( $caldav_context, $user_no, $path, 'Database error in: '.$sql );
|
|
}
|
|
if ( !isset($c->readonly_webdav_collections) || $c->readonly_webdav_collections == true ) {
|
|
if ( $qry->rows() == 0 ) {
|
|
$request->DoResponse( 405 ); // Method not allowed
|
|
}
|
|
return;
|
|
}
|
|
if ( $qry->rows() == 0 ) {
|
|
if ( $public == true ) $public = 't'; else $public = 'f';
|
|
if ( preg_match( '{^(.*/)([^/]+)/$}', $request_container, $matches ) ) {
|
|
$parent_container = $matches[1];
|
|
$displayname = $matches[2];
|
|
}
|
|
$sql = 'INSERT INTO collection ( user_no, parent_container, dav_name, dav_etag, dav_displayname, is_calendar, created, modified, publicly_readable, resourcetypes )
|
|
VALUES( :user_no, :parent_container, :dav_name, :dav_etag, :dav_displayname, TRUE, current_timestamp, current_timestamp, :is_public::boolean, :resourcetypes )';
|
|
$params = array(
|
|
':user_no' => $user_no,
|
|
':parent_container' => $parent_container,
|
|
':dav_name' => $request_container,
|
|
':dav_etag' => md5($user_no. $request_container),
|
|
':dav_displayname' => $displayname,
|
|
':is_public' => $public,
|
|
':resourcetypes' => '<DAV::collection/><urn:ietf:params:xml:ns:caldav:calendar/>'
|
|
);
|
|
$qry->QDo( $sql, $params );
|
|
}
|
|
else if ( isset($public) ) {
|
|
$collection = $qry->Fetch();
|
|
if ( empty($collection->is_public) ) $collection->is_public = 'f';
|
|
if ( $collection->is_public == ($public?'t':'f') ) {
|
|
$sql = 'UPDATE collection SET publicly_readable = :is_public::boolean WHERE collection_id = :collection_id';
|
|
$params = array( ':is_public' => ($public?'t':'f'), ':collection_id' => $collection->collection_id );
|
|
if ( ! $qry->QDo($sql,$params) ) {
|
|
rollback_on_error( $caldav_context, $user_no, $path, 'Database error in: '.$sql );
|
|
}
|
|
}
|
|
}
|
|
|
|
}
|
|
}
|
|
|
|
|
|
/**
|
|
* Check if this collection should force all events to be PUBLIC.
|
|
* @param string $user_no the user that owns the collection
|
|
* @param string $dav_name the collection to check
|
|
* @return boolean Return true if public events only are allowed.
|
|
*/
|
|
function public_events_only( $user_no, $dav_name ) {
|
|
global $c;
|
|
|
|
$sql = 'SELECT public_events_only FROM collection WHERE dav_name = :dav_name';
|
|
|
|
$qry = new AwlQuery($sql, array(':dav_name' => $dav_name) );
|
|
|
|
if( $qry->Exec('PUT',__LINE__,__FILE__) && $qry->rows() == 1 ) {
|
|
$collection = $qry->Fetch();
|
|
|
|
if ($collection->public_events_only == 't') {
|
|
return true;
|
|
}
|
|
}
|
|
|
|
// Something went wrong, must be false.
|
|
return false;
|
|
}
|
|
|
|
|
|
/**
|
|
* Get a TZID string from this VEVENT/VTODO/... component if we can
|
|
* @param vComponent $comp
|
|
* @return The TZID value we found, or null
|
|
*/
|
|
function GetTZID( vComponent $comp ) {
|
|
$p = $comp->GetProperty('DTSTART');
|
|
if ( !isset($p) && $comp->GetType() == 'VTODO' ) {
|
|
$p = $comp->GetProperty('DUE');
|
|
}
|
|
if ( !isset($p) ) return null;
|
|
return $p->GetParameterValue('TZID');
|
|
}
|
|
|
|
|
|
/**
|
|
* Deliver scheduling requests to attendees
|
|
* @param vComponent $ical the VCALENDAR to deliver
|
|
*/
|
|
function handle_schedule_request( $ical ) {
|
|
global $c, $session, $request;
|
|
$resources = $ical->GetComponents('VTIMEZONE',false);
|
|
$ic = $resources[0];
|
|
$etag = md5 ( $request->raw_post );
|
|
$reply = new XMLDocument( array("DAV:" => "", "urn:ietf:params:xml:ns:caldav" => "C" ) );
|
|
$responses = array();
|
|
|
|
$attendees = $ic->GetProperties('ATTENDEE');
|
|
$wr_attendees = $ic->GetProperties('X-WR-ATTENDEE');
|
|
if ( count ( $wr_attendees ) > 0 ) {
|
|
dbg_error_log( "PUT", "Non-compliant iCal request. Using X-WR-ATTENDEE property" );
|
|
foreach( $wr_attendees AS $k => $v ) {
|
|
$attendees[] = $v;
|
|
}
|
|
}
|
|
dbg_error_log( "PUT", "Attempting to deliver scheduling request for %d attendees", count($attendees) );
|
|
|
|
foreach( $attendees AS $k => $attendee ) {
|
|
$attendee_email = preg_replace( '/^mailto:/', '', $attendee->Value() );
|
|
if ( $attendee_email == $request->principal->email() ) {
|
|
dbg_error_log( "PUT", "not delivering to owner" );
|
|
continue;
|
|
}
|
|
$schedule_status = $attendee->GetParameterValue ( 'SCHEDULE-STATUS' );
|
|
if ( $attendee->GetParameterValue ( 'PARTSTAT' ) != 'NEEDS-ACTION' || (isset($schedule_status) && preg_match ( '/^[35]\.[3-9]/', $schedule_status ) ) ) {
|
|
dbg_error_log( "PUT", "attendee %s does not need action", $attendee_email );
|
|
continue;
|
|
}
|
|
|
|
if ( isset($c->enable_auto_schedule) && !$c->enable_auto_schedule ) {
|
|
// In this case we're being asked not to do auto-scheduling, so we build
|
|
// a response back for the client saying we can't...
|
|
$attendee->SetParameterValue ('SCHEDULE-STATUS','5.3;No scheduling support for user');
|
|
continue;
|
|
}
|
|
|
|
dbg_error_log( "PUT", "Delivering to %s", $attendee_email );
|
|
|
|
$attendee_principal = new DAVPrincipal ( array ('email'=>$attendee_email, 'options'=> array ( 'allow_by_email' => true ) ) );
|
|
if ( ! $attendee_principal->Exists() ){
|
|
$attendee->SetParameterValue ('SCHEDULE-STATUS','5.3;No scheduling support for user');
|
|
continue;
|
|
}
|
|
$deliver_path = $attendee_principal->internal_url('schedule-inbox');
|
|
|
|
$ar = new DAVResource($deliver_path);
|
|
$priv = $ar->HavePrivilegeTo('schedule-deliver-invite' );
|
|
if ( ! $ar->HavePrivilegeTo('schedule-deliver-invite' ) ){
|
|
$reply = new XMLDocument( array('DAV:' => '') );
|
|
$privnodes = array( $reply->href($attendee_principal->url('schedule-inbox')), new XMLElement( 'privilege' ) );
|
|
// RFC3744 specifies that we can only respond with one needed privilege, so we pick the first.
|
|
$reply->NSElement( $privnodes[1], 'schedule-deliver-invite' );
|
|
$xml = new XMLElement( 'need-privileges', new XMLElement( 'resource', $privnodes) );
|
|
$xmldoc = $reply->Render('error',$xml);
|
|
$request->DoResponse( 403, $xmldoc, 'text/xml; charset="utf-8"');
|
|
}
|
|
|
|
|
|
$attendee->SetParameterValue ('SCHEDULE-STATUS','1.2;Scheduling message has been delivered');
|
|
$ncal = new vCalendar( array('METHOD' => 'REQUEST') );
|
|
$ncal->AddComponent( array_merge( $ical->GetComponents('VEVENT',false), array($ic) ));
|
|
$content = $ncal->Render();
|
|
$cid = $ar->GetProperty('collection_id');
|
|
dbg_error_log('DELIVER', 'to user: %s, to path: %s, collection: %s, from user: %s, caldata %s', $attendee_principal->user_no(), $deliver_path, $cid, $request->user_no, $content );
|
|
$item_etag = md5($content);
|
|
write_resource( new DAVResource($deliver_path . $etag . '.ics'), $content, $ar, $request->user_no, $item_etag,
|
|
$put_action_type='INSERT', $caldav_context=true, $log_action=true, $etag );
|
|
$attendee->SetParameterValue ('SCHEDULE-STATUS','1.2;Scheduling message has been delivered');
|
|
}
|
|
// don't write an entry in the out box, ical doesn't delete it or ever read it again
|
|
$ncal = new vCalendar(array('METHOD' => 'REQUEST'));
|
|
$ncal->AddComponent ( array_merge ( $ical->GetComponents('VEVENT',false) , array ($ic) ));
|
|
$content = $ncal->Render();
|
|
$deliver_path = $request->principal->internal_url('schedule-inbox');
|
|
$ar = new DAVResource($deliver_path);
|
|
$item_etag = md5($content);
|
|
write_resource( new DAVResource($deliver_path . $etag . '.ics'), $content, $ar, $request->user_no, $item_etag,
|
|
$put_action_type='INSERT', $caldav_context=true, $log_action=true, $etag );
|
|
//$etag = md5($content);
|
|
header('ETag: "'. $etag . '"' );
|
|
header('Schedule-Tag: "'.$etag . '"' );
|
|
$request->DoResponse( 201, 'Created' );
|
|
}
|
|
|
|
|
|
/**
|
|
* Deliver scheduling replies to organizer and other attendees
|
|
* @param vComponent $ical the VCALENDAR to deliver
|
|
* @return false on error
|
|
*/
|
|
function handle_schedule_reply ( vCalendar $ical ) {
|
|
global $c, $session, $request;
|
|
$resources = $ical->GetComponents('VTIMEZONE',false);
|
|
$ic = $resources[0];
|
|
$etag = md5 ( $request->raw_post );
|
|
$organizer = $ical->GetOrganizer();
|
|
$arrayOrganizer = array($organizer);
|
|
// for now we treat events with out organizers as an error
|
|
if ( empty( $arrayOrganizer ) ) return false;
|
|
|
|
$attendees = array_merge($arrayOrganizer,$ical->GetAttendees());
|
|
dbg_error_log( "PUT", "Attempting to deliver scheduling request for %d attendees", count($attendees) );
|
|
|
|
foreach( $attendees AS $k => $attendee ) {
|
|
$attendee_email = preg_replace( '/^mailto:/i', '', $attendee->Value() );
|
|
dbg_error_log( "PUT", "Delivering to %s", $attendee_email );
|
|
$attendee_principal = new DAVPrincipal ( array ('email'=>$attendee_email, 'options'=> array ( 'allow_by_email' => true ) ) );
|
|
$deliver_path = $attendee_principal->internal_url('schedule-inbox');
|
|
$attendee_email = preg_replace( '/^mailto:/i', '', $attendee->Value() );
|
|
if ( $attendee_email == $request->principal->email ) {
|
|
dbg_error_log( "PUT", "not delivering to owner" );
|
|
continue;
|
|
}
|
|
$ar = new DAVResource($deliver_path);
|
|
if ( ! $ar->HavePrivilegeTo('schedule-deliver-reply' ) ){
|
|
$reply = new XMLDocument( array('DAV:' => '') );
|
|
$privnodes = array( $reply->href($attendee_principal->url('schedule-inbox')), new XMLElement( 'privilege' ) );
|
|
// RFC3744 specifies that we can only respond with one needed privilege, so we pick the first.
|
|
$reply->NSElement( $privnodes[1], 'schedule-deliver-reply' );
|
|
$xml = new XMLElement( 'need-privileges', new XMLElement( 'resource', $privnodes) );
|
|
$xmldoc = $reply->Render('error',$xml);
|
|
$request->DoResponse( 403, $xmldoc, 'text/xml; charset="utf-8"' );
|
|
continue;
|
|
}
|
|
|
|
$ncal = new vCalendar( array('METHOD' => 'REPLY') );
|
|
$ncal->AddComponent ( array_merge ( $ical->GetComponents('VEVENT',false) , array ($ic) ));
|
|
$content = $ncal->Render();
|
|
write_resource( new DAVResource($deliver_path . $etag . '.ics'), $content, $ar, $request->user_no, md5($content),
|
|
$put_action_type='INSERT', $caldav_context=true, $log_action=true, $etag );
|
|
}
|
|
$request->DoResponse( 201, 'Created' );
|
|
}
|
|
|
|
|
|
/**
|
|
* Do the scheduling adjustments for a REPLY when an ATTENDEE updates their status.
|
|
* @param vCalendar $resource The resource that the ATTENDEE is writing to their calendar
|
|
* @param string $organizer The property which is the event ORGANIZER.
|
|
*/
|
|
function do_scheduling_reply( vCalendar $resource, vProperty $organizer ) {
|
|
global $request;
|
|
$organizer_email = preg_replace( '/^mailto:/i', '', $organizer->Value() );
|
|
$organizer_principal = new Principal('email',$organizer_email );
|
|
if ( !$organizer_principal->Exists() ) {
|
|
dbg_error_log( 'PUT', 'Organizer "%s" not found - cannot perform scheduling reply.', $organizer );
|
|
return false;
|
|
}
|
|
$sql = 'SELECT caldav_data.dav_name, caldav_data.caldav_data FROM caldav_data JOIN calendar_item USING(dav_id) ';
|
|
$sql .= 'WHERE caldav_data.collection_id IN (SELECT collection_id FROM collection WHERE is_calendar AND user_no =?) ';
|
|
$sql .= 'AND uid=? LIMIT 1';
|
|
$uids = $resource->GetPropertiesByPath('/VCALENDAR/*/UID');
|
|
if ( count($uids) == 0 ) {
|
|
dbg_error_log( 'PUT', 'No UID in VCALENDAR - giving up on REPLY.' );
|
|
return false;
|
|
}
|
|
$uid = $uids[0]->Value();
|
|
$qry = new AwlQuery($sql,$organizer_principal->user_no(), $uid);
|
|
if ( !$qry->Exec('PUT',__LINE__,__FILE__) || $qry->rows() < 1 ) {
|
|
dbg_error_log( 'PUT', 'Could not find original event from organizer - giving up on REPLY.' );
|
|
return false;
|
|
}
|
|
$row = $qry->Fetch();
|
|
$attendees = $resource->GetAttendees();
|
|
foreach( $attendees AS $v ) {
|
|
$email = preg_replace( '/^mailto:/i', '', $v->Value() );
|
|
if ( $email == $request->principal->email() ) {
|
|
$attendee = $v;
|
|
}
|
|
}
|
|
if ( empty($attendee) ) {
|
|
dbg_error_log( 'PUT', 'Could not find ATTENDEE in VEVENT - giving up on REPLY.' );
|
|
return false;
|
|
}
|
|
$schedule_original = new vCalendar($row->caldav_data);
|
|
$attendee->SetParameterValue('SCHEDULE-STATUS', '2.0');
|
|
$schedule_original->UpdateAttendeeStatus($request->principal->email(), clone($attendee) );
|
|
|
|
$collection_path = preg_replace('{/[^/]+$}', '/', $row->dav_name );
|
|
$segment_name = str_replace($collection_path, '', $row->dav_name );
|
|
$organizer_calendar = new WritableCollection(array('path' => $collection_path));
|
|
$organizer_inbox = new WritableCollection(array('path' => $organizer_principal->internal_url('schedule-inbox')));
|
|
|
|
$schedule_reply = GetItip(new vCalendar($schedule_original->Render(null, true)), 'REPLY', $attendee->Value(), array('CUTYPE'=>true, 'SCHEDULE-STATUS'=>true));
|
|
|
|
dbg_error_log( 'PUT', 'Writing scheduling REPLY from %s to %s', $request->principal->email(), $organizer_principal->email() );
|
|
|
|
$response = '3.7'; // Organizer was not found on server.
|
|
if ( !$organizer_calendar->Exists() ) {
|
|
dbg_error_log('ERROR','Default calendar at "%s" does not exist for user "%s"',
|
|
$organizer_calendar->dav_name(), $organizer_principal->username());
|
|
$response = '5.2'; // No scheduling support for user
|
|
}
|
|
else {
|
|
if ( ! $organizer_inbox->HavePrivilegeTo('schedule-deliver-reply') ) {
|
|
$response = '3.8'; // No authority to deliver replies to organizer.
|
|
}
|
|
else if ( $organizer_inbox->WriteCalendarMember($schedule_reply, false, false, $request->principal->username().$segment_name) !== false ) {
|
|
$response = '1.2'; // Scheduling reply delivered successfully
|
|
if ( $organizer_calendar->WriteCalendarMember($schedule_original, false, false, $segment_name) === false ) {
|
|
dbg_error_log('ERROR','Could not write updated calendar member to %s',
|
|
$organizer_calendar->dav_name());
|
|
trace_bug('Failed to write scheduling resource.');
|
|
}
|
|
}
|
|
}
|
|
|
|
$schedule_request = clone($schedule_original);
|
|
$schedule_request->AddProperty('METHOD', 'REQUEST');
|
|
|
|
dbg_error_log( 'PUT', 'Status for organizer <%s> set to "%s"', $organizer->Value(), $response );
|
|
$organizer->SetParameterValue( 'SCHEDULE-STATUS', $response );
|
|
$resource->UpdateOrganizerStatus($organizer);
|
|
$scheduling_actions = true;
|
|
|
|
$calling_attendee = clone($attendee);
|
|
$attendees = $schedule_original->GetAttendees();
|
|
foreach( $attendees AS $attendee ) {
|
|
$email = preg_replace( '/^mailto:/i', '', $attendee->Value() );
|
|
if ( $email == $request->principal->email() || $email == $organizer_principal->email() ) continue;
|
|
|
|
$agent = $attendee->GetParameterValue('SCHEDULE-AGENT');
|
|
if ( $agent && $agent != 'SERVER' ) {
|
|
dbg_error_log( "PUT", "not delivering to %s, schedule agent set to value other than server", $email );
|
|
continue;
|
|
}
|
|
|
|
// an attendee's reply should modify only the PARTSTAT on other attendees' objects
|
|
// other properties (that might have been adjusted individually by those other
|
|
// attendees) should remain unmodified. Therefore, we have to make $schedule_original
|
|
// and $schedule_request be initialized by each attendee's object here.
|
|
$attendee_principal = new DAVPrincipal ( array ('email'=>$email, 'options'=> array ( 'allow_by_email' => true ) ) );
|
|
if ( ! $attendee_principal->Exists() ){
|
|
dbg_error_log( 'PUT', 'Could not find attendee %s', $email);
|
|
continue;
|
|
}
|
|
$sql = 'SELECT caldav_data.dav_name, caldav_data.caldav_data, caldav_data.collection_id FROM caldav_data JOIN calendar_item USING(dav_id) ';
|
|
$sql .= 'WHERE caldav_data.collection_id IN (SELECT collection_id FROM collection WHERE is_calendar AND user_no =?) ';
|
|
$sql .= 'AND uid=? LIMIT 1';
|
|
$qry = new AwlQuery($sql,$attendee_principal->user_no(), $uid);
|
|
if ( !$qry->Exec('PUT',__LINE__,__FILE__) || $qry->rows() < 1 ) {
|
|
dbg_error_log( 'PUT', "Could not find attendee's event %s", $uid );
|
|
}
|
|
$row = $qry->Fetch();
|
|
$schedule_original = new vCalendar($row->caldav_data);
|
|
$schedule_original->UpdateAttendeeStatus($request->principal->email(), clone($calling_attendee) );
|
|
$schedule_request = clone($schedule_original);
|
|
$schedule_request->AddProperty('METHOD', 'REQUEST');
|
|
|
|
$schedule_target = new Principal('email',$email);
|
|
$response = '3.7'; // Attendee was not found on server.
|
|
if ( $schedule_target->Exists() ) {
|
|
// Instead of always writing to schedule-default-calendar, we first try to
|
|
// find a calendar with an existing instance of the event in any calendar of this attendee.
|
|
$r = new DAVResource($row);
|
|
$attendee_calendar = new WritableCollection(array('path' => $r->parent_path()));
|
|
if ($attendee_calendar->IsCalendar()) {
|
|
dbg_error_log( 'PUT', "found the event in attendee's calendar %s", $attendee_calendar->dav_name() );
|
|
} else {
|
|
dbg_error_log( 'PUT', 'could not find the event in any calendar, using schedule-default-calendar');
|
|
$attendee_calendar = new WritableCollection(array('path' => $schedule_target->internal_url('schedule-default-calendar')));
|
|
}
|
|
if ( !$attendee_calendar->Exists() ) {
|
|
dbg_error_log('ERROR','Default calendar at "%s" does not exist for user "%s"',
|
|
$attendee_calendar->dav_name(), $schedule_target->username());
|
|
$response = '5.2'; // No scheduling support for user
|
|
}
|
|
else {
|
|
$attendee_inbox = new WritableCollection(array('path' => $schedule_target->internal_url('schedule-inbox')));
|
|
if ( ! $attendee_inbox->HavePrivilegeTo('schedule-deliver-invite') ) {
|
|
$response = '3.8'; // No authority to deliver invitations to user.
|
|
}
|
|
else if ( $attendee_inbox->WriteCalendarMember($schedule_request, false) !== false ) {
|
|
$response = '1.2'; // Scheduling invitation delivered successfully
|
|
if ( $attendee_calendar->WriteCalendarMember($schedule_original, false) === false ) {
|
|
dbg_error_log('ERROR','Could not write updated calendar member to %s',
|
|
$attendee_calendar->dav_name(), $attendee_calendar->dav_name(), $schedule_target->username());
|
|
trace_bug('Failed to write scheduling resource.');
|
|
}
|
|
}
|
|
}
|
|
}
|
|
dbg_error_log( 'PUT', 'Status for attendee <%s> set to "%s"', $attendee->Value(), $response );
|
|
$attendee->SetParameterValue( 'SCHEDULE-STATUS', $response );
|
|
$scheduling_actions = true;
|
|
|
|
$resource->UpdateAttendeeStatus($email, clone($attendee));
|
|
|
|
}
|
|
|
|
return $scheduling_actions;
|
|
}
|
|
|
|
|
|
/**
|
|
* Create/Update the scheduling requests for this resource. This includes updating
|
|
* the scheduled user's default calendar.
|
|
* @param vComponent $resource The VEVENT/VTODO/... resource we are scheduling
|
|
* @param boolean $create true if the scheduling requests are being created.
|
|
* @return true If there was any scheduling action
|
|
*/
|
|
function do_scheduling_requests( vCalendar $resource, $create, $old_data = null ) {
|
|
global $request, $c;
|
|
if ( !isset($request) || (isset($c->enable_auto_schedule) && !$c->enable_auto_schedule) ) return false;
|
|
|
|
if ( ! is_object($resource) ) {
|
|
trace_bug( 'do_scheduling_requests called with non-object parameter (%s)', gettype($resource) );
|
|
return false;
|
|
}
|
|
|
|
$organizer = $resource->GetOrganizer();
|
|
if ( $organizer === false || empty($organizer) ) {
|
|
dbg_error_log( 'PUT', 'Event has no organizer - no scheduling required.' );
|
|
return false;
|
|
}
|
|
$organizer_email = preg_replace( '/^mailto:/i', '', $organizer->Value() );
|
|
|
|
// force re-render the object (to get the same representation for all attendiees)
|
|
$resource->Render(null, true);
|
|
|
|
if ( $request->principal->email() != $organizer_email ) {
|
|
return do_scheduling_reply($resource,$organizer);
|
|
}
|
|
|
|
if (isset($c->enable_attendee_group_resolution) && $c->enable_attendee_group_resolution) {
|
|
$mail_domain = preg_replace( '/^.*@/i', '', $c->admin_email );
|
|
$attendees = $resource->GetAttendees();
|
|
$new_attendees = array();
|
|
foreach( $attendees AS $attendee ) {
|
|
$v = $attendee->Value();
|
|
unset($localname);
|
|
if ($v == "invalid:nomail") {
|
|
$localname = $attendee->GetParameterValue("CN");
|
|
} else if ((preg_match('/^@/', $v) == 1) || (preg_match('/mailto:@/',$v) == 1)) {
|
|
$localname = preg_replace('/^.*@/', '', $v);
|
|
} else if (preg_match('/@/', $v) != 1) {
|
|
$localname = $v;
|
|
} else if (preg_match('/@'.$mail_domain.'/', $v) == 1) {
|
|
$localname = preg_replace('/@.*$/', '', $v);
|
|
$localname = preg_replace('/^mailto:/', '', $localname);
|
|
}
|
|
if ($localname) {
|
|
dbg_error_log( 'PUT', 'try to resolve local attendee %s', $localname);
|
|
$qry = new AwlQuery('SELECT fullname, email FROM usr WHERE user_no = (SELECT user_no FROM principal WHERE type_id = 1 AND user_no = (SELECT user_no FROM usr WHERE lower(username) = (text(:username)))) UNION SELECT fullname, email FROM usr WHERE user_no IN (SELECT user_no FROM principal WHERE principal_id IN (SELECT member_id FROM group_member WHERE group_id = (SELECT principal_id FROM principal WHERE type_id = 3 AND user_no = (SELECT user_no FROM usr WHERE lower(username) = (text(:username))))))', array(':username' => strtolower($localname)));
|
|
if ( $qry->Exec('PUT',__LINE__,__FILE__) && $qry->rows() >= 1 ) {
|
|
dbg_error_log( 'PUT', 'resolved local name %s to %d individual attendees', $localname, $qry->rows());
|
|
while ($row = $qry->Fetch()) {
|
|
if ($row->email == $request->principal->email()) continue;
|
|
dbg_error_log( 'PUT', 'adding individual attendee %s <%s>', $row->fullname, $row->email);
|
|
$a = clone($attendee);
|
|
$a->SetParameterValue("CN", $row->fullname);
|
|
$a->SetParameterValue("PARTSTAT", "NEEDS-ACTION");
|
|
$a->Value("mailto:" . $row->email);
|
|
$new_attendees[] = $a;
|
|
}
|
|
} else {
|
|
$new_attendees[] = clone($attendee);
|
|
}
|
|
} else {
|
|
$new_attendees[] = clone($attendee);
|
|
}
|
|
}
|
|
$events = $resource->GetComponents("VEVENT");
|
|
$event = $events[0];
|
|
$event->SetProperties($new_attendees,'ATTENDEE');
|
|
// this is just to reset the private attribute "attendees" in the $resource object
|
|
$resource->UpdateAttendeeStatus("this-is-nonsense", new vProperty("ATTENDEE:dummy"));
|
|
$attendees = $resource->GetAttendees();
|
|
}
|
|
|
|
// required because we set the schedule status on the original object (why clone() not works here?)
|
|
$orig_resource = new vCalendar($resource->Render(null, true));
|
|
|
|
$schedule_request = new vCalendar($resource->Render(null, true));
|
|
$schedule_request->AddProperty('METHOD', 'REQUEST');
|
|
|
|
$old_attendees = array();
|
|
if ( !empty($old_data) ) {
|
|
$old_resource = new vCalendar($old_data);
|
|
$old_attendees = $old_resource->GetAttendees();
|
|
}
|
|
$attendees = $resource->GetAttendees();
|
|
if ( count($attendees) == 0 && count($old_attendees) == 0 ) {
|
|
dbg_error_log( 'PUT', 'Event has no attendees - no scheduling required.', count($attendees) );
|
|
return false;
|
|
}
|
|
$removed_attendees = array();
|
|
foreach( $old_attendees AS $attendee ) {
|
|
$email = preg_replace( '/^mailto:/i', '', $attendee->Value() );
|
|
if ( $email == $request->principal->email() ) continue;
|
|
$removed_attendees[$email] = $attendee;
|
|
}
|
|
|
|
$uids = $resource->GetPropertiesByPath('/VCALENDAR/*/UID');
|
|
if ( count($uids) == 0 ) {
|
|
dbg_error_log( 'PUT', 'No UID in VCALENDAR - giving up on REPLY.' );
|
|
return false;
|
|
}
|
|
$uid = $uids[0]->Value();
|
|
|
|
dbg_error_log( 'PUT', 'Writing scheduling resources for %d attendees', count($attendees) );
|
|
$scheduling_actions = false;
|
|
foreach( $attendees AS $attendee ) {
|
|
$email = preg_replace( '/^mailto:/i', '', $attendee->Value() );
|
|
if ( $email == $request->principal->email() ) {
|
|
dbg_error_log( "PUT", "not delivering to owner '%s'", $request->principal->email() );
|
|
continue;
|
|
}
|
|
|
|
if ( $create ) {
|
|
$attendee_is_new = true;
|
|
}
|
|
else {
|
|
$attendee_is_new = !isset($removed_attendees[$email]);
|
|
if ( !$attendee_is_new ) unset($removed_attendees[$email]);
|
|
}
|
|
|
|
$agent = $attendee->GetParameterValue('SCHEDULE-AGENT');
|
|
if ( $agent && $agent != 'SERVER' ) {
|
|
dbg_error_log( "PUT", "not delivering to %s, schedule agent set to value other than server", $email );
|
|
continue;
|
|
}
|
|
$schedule_target = new Principal('email',$email);
|
|
$response = '3.7'; // Attendee was not found on server.
|
|
dbg_error_log( 'PUT', 'Handling scheduling resources for %s on %s which is %s', $email,
|
|
($create?'create':'update'), ($attendee_is_new? 'new' : 'an update') );
|
|
if ( $schedule_target->Exists() ) {
|
|
// Instead of always writing to schedule-default-calendar, we first try to
|
|
// find a calendar with an existing instance of the event.
|
|
$sql = 'SELECT caldav_data.dav_name, caldav_data.caldav_data, caldav_data.collection_id FROM caldav_data JOIN calendar_item USING(dav_id) ';
|
|
$sql .= 'WHERE caldav_data.collection_id IN (SELECT collection_id FROM collection WHERE is_calendar AND user_no =?) ';
|
|
$sql .= 'AND uid=? LIMIT 1';
|
|
$qry = new AwlQuery($sql,$schedule_target->user_no(), $uid);
|
|
if ( !$qry->Exec('PUT',__LINE__,__FILE__) || $qry->rows() < 1 ) {
|
|
dbg_error_log( 'PUT', "Could not find event in attendee's calendars" );
|
|
$attendee_calendar = new WritableCollection(array('path' => $schedule_target->internal_url('schedule-default-calendar')));
|
|
unset($row); // signal "not found" below
|
|
} else {
|
|
$row = $qry->Fetch();
|
|
$r = new DAVResource($row);
|
|
$attendee_calendar = new WritableCollection(array('path' => $r->parent_path()));
|
|
if ($attendee_calendar->IsCalendar()) {
|
|
dbg_error_log( 'PUT', "found the event in attendee's calendar %s", $attendee_calendar->dav_name() );
|
|
} else {
|
|
dbg_error_log( 'PUT', 'could not find the event in any calendar, using schedule-default-calendar');
|
|
$attendee_calendar = new WritableCollection(array('path' => $schedule_target->internal_url('schedule-default-calendar')));
|
|
}
|
|
}
|
|
if ( !$attendee_calendar->Exists() ) {
|
|
dbg_error_log('ERROR','Default calendar at "%s" does not exist for user "%s"',
|
|
$attendee_calendar->dav_name(), $schedule_target->username());
|
|
$response = '5.2'; // No scheduling support for user
|
|
}
|
|
else {
|
|
if ($attendee_is_new || !isset($row)) {
|
|
$this_schedule_request = clone($schedule_request);
|
|
$this_resource = clone($resource);
|
|
} else {
|
|
dbg_error_log('PUT',"adjusting only some major properties in %s's instance of the event", $schedule_target->username());
|
|
$this_resource = new vCalendar($row->caldav_data);
|
|
$these_events = $this_resource->GetComponents("VEVENT");
|
|
$this_event = $these_events[0];
|
|
$events = $resource->GetComponents("VEVENT");
|
|
$event = $events[0];
|
|
// ??? CLASS, CREATED, LAST-MODIFIED, ATTENDEE, ORGANIZER, others???
|
|
$this_event->SetProperties( $event->GetProperties('DTSTAMP'), 'DTSTAMP' );
|
|
$this_event->SetProperties( $event->GetProperties('SEQUENCE'), 'SEQUENCE' );
|
|
$this_event->SetProperties( $event->GetProperties('DTSTART'), 'DTSTART' );
|
|
$this_event->SetProperties( $event->GetProperties('DTEND'), 'DTEND' );
|
|
$this_event->SetProperties( $event->GetProperties('DURATION'), 'DURATION' );
|
|
$this_event->SetProperties( $event->GetProperties('SUMMARY'), 'SUMMARY' );
|
|
$this_event->SetProperties( $event->GetProperties('LOCATION'), 'LOCATION' );
|
|
$this_event->SetProperties( $event->GetProperties('DESCRIPTION'), 'DESCRIPTION' );
|
|
$this_event->SetProperties( $event->GetProperties('GEO'), 'GEO' );
|
|
$this_event->SetProperties( $event->GetProperties('RESOURCES'), 'RESOURCES' );
|
|
$this_event->SetProperties( $event->GetProperties('STATUS'), 'STATUS' );
|
|
$this_event->SetProperties( $event->GetProperties('ATTENDEE'), 'ATTENDEE' );
|
|
$this_resource->SetComponents($these_events, "VEVENT");
|
|
$this_schedule_request = clone($this_resource);
|
|
$this_schedule_request->AddProperty('METHOD', 'REQUEST');
|
|
}
|
|
$attendee_inbox = new WritableCollection(array('path' => $schedule_target->internal_url('schedule-inbox')));
|
|
if ( ! $attendee_inbox->HavePrivilegeTo('schedule-deliver-invite') ) {
|
|
$response = '3.8'; // No authority to deliver invitations to user.
|
|
}
|
|
else if ( $attendee_inbox->WriteCalendarMember($this_schedule_request, $attendee_is_new) !== false ) {
|
|
$response = '1.2'; // Scheduling invitation delivered successfully
|
|
if ( $attendee_calendar->WriteCalendarMember($this_resource, $attendee_is_new) === false ) {
|
|
dbg_error_log('ERROR','Could not write %s calendar member to %s', ($attendee_is_new?'new':'updated'),
|
|
$attendee_calendar->dav_name(), $attendee_calendar->dav_name(), $schedule_target->username());
|
|
trace_bug('Failed to write scheduling resource.');
|
|
}
|
|
}
|
|
}
|
|
}
|
|
else {
|
|
$remote = new iSchedule ();
|
|
$answer = $remote->sendRequest ( $email, 'VEVENT/REQUEST', $schedule_request->Render() );
|
|
if ( $answer === false ) {
|
|
$response = '3.7'; // Invalid Calendar User: iSchedule request failed or DKIM not configured
|
|
}
|
|
else {
|
|
foreach ( $answer as $a ) // should only be one element in array
|
|
{
|
|
if ( $a === false ) {
|
|
$response = '3.7'; // Invalid Calendar User: weird reply from remote server
|
|
}
|
|
elseif ( substr( $a, 0, 1 ) >= 1 ) {
|
|
$response = $a; // NOTE: this may need to be limited to the reponse code
|
|
}
|
|
else {
|
|
$response = '2.0'; // Success
|
|
}
|
|
}
|
|
}
|
|
}
|
|
dbg_error_log( 'PUT', 'Status for attendee <%s> set to "%s"', $attendee->Value(), $response );
|
|
$attendee->SetParameterValue( 'SCHEDULE-STATUS', $response );
|
|
$scheduling_actions = true;
|
|
}
|
|
|
|
if ( !$create ) {
|
|
foreach( $removed_attendees AS $attendee ) {
|
|
$email = preg_replace( '/^mailto:/i', '', $attendee->Value() );
|
|
$schedule_target = new Principal('email',$email);
|
|
if ( $schedule_target->Exists() ) {
|
|
// Instead of always writing to schedule-default-calendar, we first try to
|
|
// find a calendar with an existing instance of the event.
|
|
$sql = 'SELECT caldav_data.dav_name, caldav_data.caldav_data, caldav_data.collection_id FROM caldav_data JOIN calendar_item USING(dav_id) ';
|
|
$sql .= 'WHERE caldav_data.collection_id IN (SELECT collection_id FROM collection WHERE is_calendar AND user_no =?) ';
|
|
$sql .= 'AND uid=? LIMIT 1';
|
|
$qry = new AwlQuery($sql,$schedule_target->user_no(), $uid);
|
|
if ( !$qry->Exec('PUT',__LINE__,__FILE__) || $qry->rows() < 1 ) {
|
|
dbg_error_log( 'PUT', "Could not find event in attendee's calendars" );
|
|
$attendee_calendar = new WritableCollection(array('path' => $schedule_target->internal_url('schedule-default-calendar')));
|
|
} else {
|
|
$row = $qry->Fetch();
|
|
$r = new DAVResource($row);
|
|
$attendee_calendar = new WritableCollection(array('path' => $r->parent_path()));
|
|
if ($attendee_calendar->IsCalendar()) {
|
|
dbg_error_log( 'PUT', "found the event in attendee's calendar %s", $attendee_calendar->dav_name() );
|
|
} else {
|
|
dbg_error_log( 'PUT', 'could not find the event in any calendar, using schedule-default-calendar');
|
|
$attendee_calendar = new WritableCollection(array('path' => $schedule_target->internal_url('schedule-default-calendar')));
|
|
}
|
|
dbg_error_log('PUT',"marking %s's instance of the event to show that the user's invitation has been revoked", $schedule_target->username());
|
|
$this_resource = new vCalendar($row->caldav_data);
|
|
$these_events = $this_resource->GetComponents("VEVENT");
|
|
$this_event = $these_events[0];
|
|
$properties[] = new vProperty( "DESCRIPTION:Your invitation to this event has been revoked." );
|
|
$this_event->SetProperties( $properties, 'DESCRIPTION' );
|
|
$properties[] = new vProperty( "STATUS:CANCELLED" );
|
|
$this_event->SetProperties( $properties, 'STATUS' );
|
|
$this_event->SetProperties( null, 'ATTENDEE' );
|
|
$this_resource->SetComponents($these_events, "VEVENT");
|
|
$this_schedule_request = clone($this_resource);
|
|
$this_schedule_request->AddProperty('METHOD', 'REQUEST');
|
|
$attendee_inbox = new WritableCollection(array('path' => $schedule_target->internal_url('schedule-inbox')));
|
|
if ( ! $attendee_inbox->HavePrivilegeTo('schedule-deliver-invite') ) {
|
|
$response = '3.8'; // No authority to deliver invitations to user.
|
|
}
|
|
else if ( $attendee_inbox->WriteCalendarMember($this_schedule_request, false) !== false ) {
|
|
$response = '1.2'; // Scheduling invitation delivered successfully
|
|
if ( $attendee_calendar->WriteCalendarMember($this_resource, false) === false ) {
|
|
dbg_error_log('ERROR','Could not write updated calendar member');
|
|
trace_bug('Failed to write scheduling resource.');
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
return $scheduling_actions;
|
|
}
|
|
|
|
|
|
/**
|
|
* This function will import a whole collection
|
|
* @param string $ics_content the ics file to import
|
|
* @param int $user_no the user which will receive this ics file
|
|
* @param string $path the $path where it will be stored such as /user_foo/home/
|
|
* @param boolean $caldav_context Whether we are responding via CalDAV or interactively
|
|
*
|
|
* The work is either done by import_addressbook_collection() or import_calendar_collection()
|
|
*/
|
|
function import_collection( $import_content, $user_no, $path, $caldav_context, $appending = false ) {
|
|
global $c;
|
|
|
|
if ( ! ini_get('open_basedir') && (isset($c->dbg['ALL']) || isset($c->dbg['put'])) ) {
|
|
$fh = fopen('/var/log/davical/PUT-2.debug','w');
|
|
if ( $fh ) {
|
|
fwrite($fh,$import_content);
|
|
fclose($fh);
|
|
}
|
|
}
|
|
|
|
if ( preg_match( '{^begin:(vcard|vcalendar)}i', $import_content, $matches) ) {
|
|
if ( strtoupper($matches[1]) == 'VCARD' )
|
|
import_addressbook_collection( $import_content, $user_no, $path, $caldav_context, $appending );
|
|
elseif ( strtoupper($matches[1]) == 'VCALENDAR' )
|
|
import_calendar_collection( $import_content, $user_no, $path, $caldav_context, $appending );
|
|
|
|
// Uncache anything to do with the collection
|
|
$cache = getCacheInstance();
|
|
$cache_ns = 'collection-'.preg_replace( '{/[^/]*$}', '/', $path);
|
|
$cache->delete( $cache_ns, null );
|
|
}
|
|
else {
|
|
dbg_error_log('PUT', 'Can only import files which are VCARD or VCALENDAR');
|
|
}
|
|
}
|
|
|
|
|
|
/**
|
|
* This function will import a whole addressbook
|
|
* @param string $vcard_content the vcf file to import
|
|
* @param int $user_no the user wich will receive this vcf file
|
|
* @param string $path the $path where it will be stored such as /user_foo/addresses/
|
|
* @param boolean $caldav_context Whether we are responding via CalDAV or interactively
|
|
*/
|
|
function import_addressbook_collection( $vcard_content, $user_no, $path, $caldav_context, $appending = false ) {
|
|
global $c, $session;
|
|
// We hack this into an enclosing component because vComponent only expects a single root component
|
|
$addressbook = new vComponent("BEGIN:ADDRESSES\r\n".$vcard_content."\r\nEND:ADDRESSES\r\n");
|
|
|
|
require_once('vcard.php');
|
|
|
|
$sql = 'SELECT * FROM collection WHERE dav_name = :dav_name';
|
|
$qry = new AwlQuery( $sql, array( ':dav_name' => $path) );
|
|
if ( ! $qry->Exec('PUT',__LINE__,__FILE__) ) rollback_on_error( $caldav_context, $user_no, $path, 'Database error in: '.$sql );
|
|
if ( ! $qry->rows() == 1 ) {
|
|
dbg_error_log( 'ERROR', ' PUT: Collection does not exist at "%s" for user %d', $path, $user_no );
|
|
rollback_on_error( $caldav_context, $user_no, $path, sprintf('Error: Collection does not exist at "%s" for user %d', $path, $user_no ));
|
|
}
|
|
$collection = $qry->Fetch();
|
|
$collection_id = $collection->collection_id;
|
|
|
|
// Fetch the current collection data
|
|
$qry->QDo('SELECT dav_name, caldav_data FROM caldav_data WHERE collection_id=:collection_id', array(
|
|
':collection_id' => $collection_id
|
|
));
|
|
$current_data = array();
|
|
while( $row = $qry->Fetch() )
|
|
$current_data[$row->dav_name] = $row->caldav_data;
|
|
|
|
if ( !(isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import) ) $qry->Begin();
|
|
$base_params = array(
|
|
':collection_id' => $collection_id,
|
|
':session_user' => $session->user_no,
|
|
':caldav_type' => 'VCARD'
|
|
);
|
|
|
|
$dav_data_insert = <<<EOSQL
|
|
INSERT INTO caldav_data ( user_no, dav_name, dav_etag, caldav_data, caldav_type, logged_user, created, modified, collection_id )
|
|
VALUES( :user_no, :dav_name, :etag, :dav_data, :caldav_type, :session_user, :created, :modified, :collection_id )
|
|
EOSQL;
|
|
|
|
$dav_data_update = <<<EOSQL
|
|
UPDATE caldav_data SET user_no=:user_no, caldav_data=:dav_data, dav_etag=:etag, caldav_type=:caldav_type, logged_user=:session_user,
|
|
modified=current_timestamp WHERE collection_id=:collection_id AND dav_name=:dav_name
|
|
EOSQL;
|
|
|
|
|
|
$resources = $addressbook->GetComponents();
|
|
if ( count($resources) > 0 )
|
|
$qry->QDo('SELECT new_sync_token(0,'.$collection_id.')');
|
|
|
|
foreach( $resources AS $k => $resource ) {
|
|
if ( isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) $qry->Begin();
|
|
|
|
$vcard = new vCard( $resource->Render() );
|
|
|
|
$uid = $vcard->GetPValue('UID');
|
|
if ( empty($uid) ) {
|
|
$uid = uuid();
|
|
$vcard->AddProperty('UID',$uid);
|
|
}
|
|
|
|
$last_modified = $vcard->GetPValue('REV');
|
|
if ( empty($last_modified) ) {
|
|
$last_modified = gmdate( 'Ymd\THis\Z' );
|
|
$vcard->AddProperty('REV',$last_modified);
|
|
}
|
|
|
|
$created = $vcard->GetPValue('X-CREATED');
|
|
if ( empty($last_modified) ) {
|
|
$created = gmdate( 'Ymd\THis\Z' );
|
|
$vcard->AddProperty('X-CREATED',$created);
|
|
}
|
|
|
|
$rendered_card = $vcard->Render();
|
|
|
|
// We don't allow any of &?\/@%+: in the UID to appear in the path, but anything else is fair game.
|
|
$dav_name = sprintf( '%s%s.vcf', $path, preg_replace('{[&?\\/@%+:]}','',$uid) );
|
|
|
|
$dav_data_params = $base_params;
|
|
$dav_data_params[':user_no'] = $user_no;
|
|
$dav_data_params[':dav_name'] = $dav_name;
|
|
$dav_data_params[':etag'] = md5($rendered_card);
|
|
$dav_data_params[':dav_data'] = $rendered_card;
|
|
$dav_data_params[':modified'] = $last_modified;
|
|
$dav_data_params[':created'] = $created;
|
|
|
|
// Do we actually need to do anything?
|
|
$inserting = true;
|
|
if ( isset($current_data[$dav_name]) ) {
|
|
if ( $rendered_card == $current_data[$dav_name] ) {
|
|
unset($current_data[$dav_name]);
|
|
continue;
|
|
}
|
|
$sync_change = 200;
|
|
unset($current_data[$dav_name]);
|
|
$inserting = false;
|
|
}
|
|
else
|
|
$sync_change = 201;
|
|
|
|
if ( isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) $qry->Begin();
|
|
|
|
// Write to the caldav_data table
|
|
if ( !$qry->QDo( ($inserting ? $dav_data_insert : $dav_data_update), $dav_data_params) )
|
|
rollback_on_error( $caldav_context, $user_no, $path, 'Database error on:'. ($inserting ? $dav_data_insert : $dav_data_update));
|
|
|
|
// Get the dav_id for this row
|
|
$qry->QDo('SELECT dav_id FROM caldav_data WHERE dav_name = :dav_name ', array(':dav_name' => $dav_name));
|
|
if ( $qry->rows() == 1 && $row = $qry->Fetch() ) {
|
|
$dav_id = $row->dav_id;
|
|
}
|
|
|
|
$vcard->Write( $row->dav_id, !$inserting );
|
|
|
|
$qry->QDo("SELECT write_sync_change( $collection_id, $sync_change, :dav_name)", array(':dav_name' => $dav_name ) );
|
|
|
|
if ( isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) $qry->Commit();
|
|
}
|
|
|
|
if ( !$appending && count($current_data) > 0 ) {
|
|
$params = array( ':collection_id' => $collection_id );
|
|
if ( isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) $qry->Begin();
|
|
foreach( $current_data AS $dav_name => $data ) {
|
|
$params[':dav_name'] = $dav_name;
|
|
$qry->QDo('DELETE FROM caldav_data WHERE collection_id = :collection_id AND dav_name = :dav_name', $params);
|
|
$qry->QDo('SELECT write_sync_change(:collection_id, 404, :dav_name)', $params);
|
|
}
|
|
if ( isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) $qry->Commit();
|
|
}
|
|
|
|
if ( !(isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import) ) {
|
|
if ( ! $qry->Commit() ) rollback_on_error( $caldav_context, $user_no, $path, 'Database error on COMMIT');
|
|
}
|
|
|
|
}
|
|
|
|
|
|
/**
|
|
* This function will import a whole calendar
|
|
* @param string $ics_content the ics file to import
|
|
* @param int $user_no the user wich will receive this ics file
|
|
* @param string $path the $path where it will be stored such as /user_foo/home/
|
|
* @param boolean $caldav_context Whether we are responding via CalDAV or interactively
|
|
*
|
|
* Any VEVENTs with the same UID will be concatenated together
|
|
*/
|
|
function import_calendar_collection( $ics_content, $user_no, $path, $caldav_context, $appending = false ) {
|
|
global $c, $session, $tz_regex;
|
|
$calendar = new vComponent($ics_content);
|
|
$timezones = $calendar->GetComponents('VTIMEZONE',true);
|
|
$components = $calendar->GetComponents('VTIMEZONE',false);
|
|
|
|
// Add a parameter to calendars on import so it will only load events 'after' @author karora
|
|
// date, or an RFC5545 duration format offset from the current date.
|
|
$after = null;
|
|
if ( isset($_GET['after']) ) {
|
|
$after = $_GET['after'];
|
|
if ( strtoupper(substr($after, 0, 1)) == 'P' || strtoupper(substr($after, 0, 1)) == '-P' ) {
|
|
$duration = new Rfc5545Duration($after);
|
|
$duration = $duration->asSeconds();
|
|
$after = time() - (abs($duration));
|
|
}
|
|
else {
|
|
$after = new RepeatRuleDateTime($after);
|
|
$after = $after->epoch();
|
|
}
|
|
}
|
|
|
|
$displayname = $calendar->GetPValue('X-WR-CALNAME');
|
|
if ( !$appending && isset($displayname) ) {
|
|
$sql = 'UPDATE collection SET dav_displayname = :displayname WHERE dav_name = :dav_name';
|
|
$qry = new AwlQuery( $sql, array( ':displayname' => $displayname, ':dav_name' => $path) );
|
|
if ( ! $qry->Exec('PUT',__LINE__,__FILE__) ) rollback_on_error( $caldav_context, $user_no, $path, 'Database error on: '.$sql );
|
|
}
|
|
|
|
|
|
$tz_ids = array();
|
|
foreach( $timezones AS $k => $tz ) {
|
|
$tz_ids[$tz->GetPValue('TZID')] = $k;
|
|
}
|
|
|
|
/** Build an array of resources. Each resource is an array of vComponent */
|
|
$resources = array();
|
|
foreach( $components AS $k => $comp ) {
|
|
$uid = $comp->GetPValue('UID');
|
|
if ( $uid == null || $uid == '' ) {
|
|
$uid = uuid();
|
|
$comp->AddProperty('UID',$uid);
|
|
dbg_error_log( 'LOG WARN', ' PUT: New collection resource does not have a UID - we assign one!' );
|
|
}
|
|
if ( !isset($resources[$uid]) ) $resources[$uid] = array();
|
|
$resources[$uid][] = $comp;
|
|
|
|
/** Ensure we have the timezone component for this in our array as well */
|
|
$tzid = GetTZID($comp);
|
|
if ( !empty($tzid) && !isset($resources[$uid][$tzid]) && isset($tz_ids[$tzid]) ) {
|
|
$resources[$uid][$tzid] = $timezones[$tz_ids[$tzid]];
|
|
}
|
|
}
|
|
|
|
|
|
$sql = 'SELECT * FROM collection WHERE dav_name = :dav_name';
|
|
$qry = new AwlQuery( $sql, array( ':dav_name' => $path) );
|
|
if ( ! $qry->Exec('PUT',__LINE__,__FILE__) ) rollback_on_error( $caldav_context, $user_no, $path, 'Database error on: '.$sql );
|
|
if ( ! $qry->rows() == 1 ) {
|
|
dbg_error_log( 'ERROR', ' PUT: Collection does not exist at "%s" for user %d', $path, $user_no );
|
|
rollback_on_error( $caldav_context, $user_no, $path, sprintf( 'Error: Collection does not exist at "%s" for user %d', $path, $user_no ));
|
|
}
|
|
$collection = $qry->Fetch();
|
|
$collection_id = $collection->collection_id;
|
|
|
|
// Fetch the current collection data
|
|
$qry->QDo('SELECT dav_name, caldav_data FROM caldav_data WHERE collection_id=:collection_id', array(
|
|
':collection_id' => $collection_id
|
|
));
|
|
$current_data = array();
|
|
while( $row = $qry->Fetch() )
|
|
$current_data[$row->dav_name] = $row->caldav_data;
|
|
|
|
if ( !(isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import) ) $qry->Begin();
|
|
$base_params = array( ':collection_id' => $collection_id );
|
|
|
|
$dav_data_insert = <<<EOSQL
|
|
INSERT INTO caldav_data ( user_no, dav_name, dav_etag, caldav_data, caldav_type, logged_user, created, modified, collection_id )
|
|
VALUES( :user_no, :dav_name, :etag, :dav_data, :caldav_type, :session_user, current_timestamp, current_timestamp, :collection_id )
|
|
EOSQL;
|
|
|
|
$dav_data_update = <<<EOSQL
|
|
UPDATE caldav_data SET user_no=:user_no, caldav_data=:dav_data, dav_etag=:etag, caldav_type=:caldav_type, logged_user=:session_user,
|
|
modified=current_timestamp WHERE collection_id=:collection_id AND dav_name=:dav_name
|
|
EOSQL;
|
|
|
|
$calitem_insert = <<<EOSQL
|
|
INSERT INTO calendar_item (user_no, dav_name, dav_id, dav_etag, uid, dtstamp,
|
|
dtstart, dtstart_orig, dtend, dtend_orig, summary, location, class, transp,
|
|
description, rrule, tz_id, last_modified, url, priority, created, due,
|
|
percent_complete, status, collection_id )
|
|
VALUES ( :user_no, :dav_name, currval('dav_id_seq'), :etag, :uid, :dtstamp,
|
|
:dtstart, :dtstart_orig, ##dtend##, :dtend_orig, :summary, :location,
|
|
:class, :transp, :description, :rrule, :tzid, :modified, :url, :priority,
|
|
:created, :due, :percent_complete, :status, :collection_id)
|
|
EOSQL;
|
|
|
|
$calitem_update = <<<EOSQL
|
|
UPDATE calendar_item
|
|
SET user_no=:user_no, dav_etag=:etag, uid=:uid, dtstamp=:dtstamp, dtstart=:dtstart,
|
|
dtstart_orig=:dtstart_orig, dtend=##dtend##, summary=:summary,
|
|
location=:location, class=:class, transp=:transp, description=:description,
|
|
rrule=:rrule, tz_id=:tzid, last_modified=:modified, url=:url,
|
|
priority=:priority, due=:due, percent_complete=:percent_complete,
|
|
status=:status
|
|
WHERE collection_id=:collection_id AND dav_name=:dav_name
|
|
EOSQL;
|
|
|
|
$last_olson = '';
|
|
if ( count($resources) > 0 )
|
|
$qry->QDo('SELECT new_sync_token(0,'.$collection_id.')');
|
|
|
|
foreach( $resources AS $uid => $resource ) {
|
|
|
|
/** Construct the VCALENDAR data */
|
|
$vcal = new vCalendar();
|
|
$vcal->SetComponents($resource);
|
|
$icalendar = $vcal->Render();
|
|
$dav_name = sprintf( '%s%s.ics', $path, preg_replace('{[&?\\/@%+:]}','',$uid) );
|
|
|
|
if ( isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) $qry->Begin();
|
|
|
|
/** As ever, we mostly deal with the first resource component */
|
|
$first = $resource[0];
|
|
|
|
$dav_data_params = $base_params;
|
|
$dav_data_params[':user_no'] = $user_no;
|
|
// We don't allow any of &?\/@%+: in the UID to appear in the path, but anything else is fair game.
|
|
$dav_data_params[':dav_name'] = $dav_name;
|
|
$dav_data_params[':etag'] = md5($icalendar);
|
|
$calitem_params = $dav_data_params;
|
|
$dav_data_params[':dav_data'] = $icalendar;
|
|
$dav_data_params[':caldav_type'] = $first->GetType();
|
|
$dav_data_params[':session_user'] = $session->user_no;
|
|
|
|
$dtstart = $first->GetPValue('DTSTART');
|
|
$calitem_params[':dtstart_orig'] = $dtstart;
|
|
$calitem_params[':dtstart'] = $dtstart;
|
|
|
|
if ( (!isset($dtstart) || $dtstart == '') && $first->GetPValue('DUE') != '' ) {
|
|
$dtstart = $first->GetPValue('DUE');
|
|
if ( isset($after) ) $dtstart_date = new RepeatRuleDateTime($first->GetProperty('DUE'));
|
|
}
|
|
else if ( isset($after) ) {
|
|
$dtstart_date = new RepeatRuleDateTime($first->GetProperty('DTSTART'));
|
|
}
|
|
|
|
$calitem_params[':rrule'] = $first->GetPValue('RRULE');
|
|
|
|
// Skip it if it's after our start date for this import.
|
|
if ( isset($after) && empty($calitem_params[':rrule']) && $dtstart_date->epoch() < $after ) continue;
|
|
|
|
// Do we actually need to do anything?
|
|
$inserting = true;
|
|
if ( isset($current_data[$dav_name]) ) {
|
|
if ( $icalendar == $current_data[$dav_name] ) {
|
|
if ( $after == null ) {
|
|
unset($current_data[$dav_name]);
|
|
continue;
|
|
}
|
|
}
|
|
$sync_change = 200;
|
|
unset($current_data[$dav_name]);
|
|
$inserting = false;
|
|
}
|
|
else
|
|
$sync_change = 201;
|
|
|
|
// Write to the caldav_data table
|
|
if ( !$qry->QDo( ($inserting ? $dav_data_insert : $dav_data_update), $dav_data_params) )
|
|
rollback_on_error( $caldav_context, $user_no, $path, 'Database error on:'. ($inserting ? $dav_data_insert : $dav_data_update));
|
|
|
|
// Get the dav_id for this row
|
|
$qry->QDo('SELECT dav_id FROM caldav_data WHERE dav_name = :dav_name ', array(':dav_name' => $dav_data_params[':dav_name']));
|
|
if ( $qry->rows() == 1 && $row = $qry->Fetch() ) {
|
|
$dav_id = $row->dav_id;
|
|
}
|
|
|
|
$dtend = $first->GetPValue('DTEND');
|
|
$calitem_params[':dtend_orig'] = $dtend;
|
|
|
|
if ( isset($dtend) && $dtend != '' ) {
|
|
dbg_error_log( 'PUT', ' DTEND: "%s", DTSTART: "%s", DURATION: "%s"', $dtend, $dtstart, $first->GetPValue('DURATION') );
|
|
$calitem_params[':dtend'] = $dtend;
|
|
$dtend = ':dtend';
|
|
}
|
|
else {
|
|
$dtend = 'NULL';
|
|
if ( $first->GetPValue('DURATION') != '' AND $dtstart != '' ) {
|
|
$duration = trim(preg_replace( '#[PT]#', ' ', $first->GetPValue('DURATION') ));
|
|
if ( $duration == '' ) $duration = '0 seconds';
|
|
$dtend = '(:dtstart::timestamp with time zone + :duration::interval)';
|
|
$calitem_params[':duration'] = $duration;
|
|
}
|
|
elseif ( $first->GetType() == 'VEVENT' ) {
|
|
/**
|
|
* From RFC2445 4.6.1:
|
|
* For cases where a "VEVENT" calendar component specifies a "DTSTART"
|
|
* property with a DATE data type but no "DTEND" property, the events
|
|
* non-inclusive end is the end of the calendar date specified by the
|
|
* "DTSTART" property. For cases where a "VEVENT" calendar component specifies
|
|
* a "DTSTART" property with a DATE-TIME data type but no "DTEND" property,
|
|
* the event ends on the same calendar date and time of day specified by the
|
|
* "DTSTART" property.
|
|
*
|
|
* So we're looking for 'VALUE=DATE', to identify the duration, effectively.
|
|
*
|
|
*/
|
|
$dtstart_prop = $first->GetProperty('DTSTART');
|
|
if ( empty($dtstart_prop) ) {
|
|
dbg_error_log('PUT','Invalid VEVENT without DTSTART, UID="%s" in collection %d', $uid, $collection_id);
|
|
continue;
|
|
}
|
|
$value_type = $dtstart_prop->GetParameterValue('VALUE');
|
|
dbg_error_log('PUT','DTSTART without DTEND. DTSTART value type is %s', $value_type );
|
|
if ( isset($value_type) && $value_type == 'DATE' )
|
|
$dtend = '(:dtstart::timestamp with time zone::date + \'1 day\'::interval)';
|
|
else
|
|
$dtend = ':dtstart';
|
|
}
|
|
}
|
|
|
|
$last_modified = $first->GetPValue('LAST-MODIFIED');
|
|
if ( !isset($last_modified) || $last_modified == '' ) $last_modified = gmdate( 'Ymd\THis\Z' );
|
|
$calitem_params[':modified'] = $last_modified;
|
|
|
|
$dtstamp = $first->GetPValue('DTSTAMP');
|
|
if ( empty($dtstamp) ) $dtstamp = $last_modified;
|
|
$calitem_params[':dtstamp'] = $dtstamp;
|
|
|
|
/** Allow overridding class by the collection settings */
|
|
$class = ($collection->public_events_only == 't' && isset($class) ? 'PUBLIC' : $first->GetPValue('CLASS') );
|
|
$calitem_params[':class'] = $class;
|
|
|
|
|
|
/** Calculate what timezone to set, first, if possible */
|
|
$tzid = GetTZID($first);
|
|
if ( !empty($tzid) && !empty($resource[$tzid]) ) {
|
|
$tz = $resource[$tzid];
|
|
$olson = $vcal->GetOlsonName($tz);
|
|
dbg_error_log( 'PUT', ' Using TZID[%s] and location of [%s]', $tzid, (isset($olson) ? $olson : '') );
|
|
if ( !empty($olson) && ($olson != $last_olson) && preg_match( $tz_regex, $olson ) ) {
|
|
dbg_error_log( 'PUT', ' Setting timezone to %s', $olson );
|
|
$qry->QDo('SET TIMEZONE TO \''.$olson."'" );
|
|
$last_olson = $olson;
|
|
}
|
|
$params = array( ':tzid' => $tzid);
|
|
$qry = new AwlQuery('SELECT 1 FROM timezones WHERE tzid = :tzid', $params );
|
|
if ( $qry->Exec('PUT',__LINE__,__FILE__) && $qry->rows() == 0 ) {
|
|
$params[':olson_name'] = $olson;
|
|
$params[':vtimezone'] = (isset($tz) ? $tz->Render() : null );
|
|
$params[':last_modified'] = (isset($tz) ? $tz->GetPValue('LAST-MODIFIED') : null );
|
|
if ( empty($params[':last_modified']) ) {
|
|
$params[':last_modified'] = gmdate('Ymd\THis\Z');
|
|
}
|
|
$qry->QDo('INSERT INTO timezones (tzid, olson_name, active, vtimezone, last_modified) VALUES(:tzid,:olson_name,false,:vtimezone,:last_modified)', $params );
|
|
}
|
|
}
|
|
else {
|
|
$tz = $olson = $tzid = null;
|
|
}
|
|
|
|
$sql = str_replace( '##dtend##', $dtend, ($inserting ? $calitem_insert : $calitem_update) );
|
|
$calitem_params[':uid'] = $first->GetPValue('UID');
|
|
$calitem_params[':url'] = $first->GetPValue('URL');
|
|
$calitem_params[':due'] = $first->GetPValue('DUE');
|
|
$calitem_params[':tzid'] = $tzid;
|
|
$calitem_params[':transp'] = $first->GetPValue('TRANSP');
|
|
$calitem_params[':status'] = $first->GetPValue('STATUS');
|
|
$calitem_params[':summary'] = $first->GetPValue('SUMMARY');
|
|
$calitem_params[':location'] = $first->GetPValue('LOCATION');
|
|
$calitem_params[':priority'] = $first->GetPValue('PRIORITY');
|
|
$calitem_params[':description'] = $first->GetPValue('DESCRIPTION');
|
|
$calitem_params[':percent_complete'] = $first->GetPValue('PERCENT-COMPLETE');
|
|
|
|
// Intentionally not populating first_instance_start and last_instance_end
|
|
// here, As they may depend on the default tzid of the collection, which as
|
|
// I understand it hasn't yet been set
|
|
|
|
if ( $inserting ) {
|
|
$created = $first->GetPValue('CREATED');
|
|
if ( $created == '00001231T000000Z' ) $created = '20001231T000000Z';
|
|
$calitem_params[':created'] = $created;
|
|
}
|
|
|
|
// Write the calendar_item row for this entry
|
|
if ( !$qry->QDo($sql,$calitem_params) ) rollback_on_error( $caldav_context, $user_no, $path);
|
|
|
|
write_alarms($dav_id, $first);
|
|
write_attendees($dav_id, $vcal);
|
|
|
|
$qry->QDo("SELECT write_sync_change( $collection_id, $sync_change, :dav_name)", array(':dav_name' => $dav_name ) );
|
|
|
|
do_scheduling_requests( $vcal, true );
|
|
if ( isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) $qry->Commit();
|
|
}
|
|
|
|
if ( !$appending && count($current_data) > 0 ) {
|
|
$params = array( ':collection_id' => $collection_id );
|
|
if ( isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) $qry->Begin();
|
|
foreach( $current_data AS $dav_name => $data ) {
|
|
$params[':dav_name'] = $dav_name;
|
|
$qry->QDo('DELETE FROM caldav_data WHERE collection_id = :collection_id AND dav_name = :dav_name', $params);
|
|
$qry->QDo('SELECT write_sync_change(:collection_id, 404, :dav_name)', $params);
|
|
}
|
|
if ( isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import ) $qry->Commit();
|
|
}
|
|
|
|
if ( !(isset($c->skip_bad_event_on_import) && $c->skip_bad_event_on_import) ) {
|
|
if ( ! $qry->Commit() ) rollback_on_error( $caldav_context, $user_no, $path);
|
|
}
|
|
}
|
|
|
|
|
|
/**
|
|
* Given a dav_id and an original vCalendar, pull out each of the VALARMs
|
|
* and write the values into the calendar_alarm table.
|
|
*
|
|
* @param int $dav_id The dav_id of the caldav_data we're processing
|
|
* @param vComponent The VEVENT or VTODO containing the VALARM
|
|
* @return null
|
|
*/
|
|
function write_alarms( $dav_id, vComponent $ical ) {
|
|
$qry = new AwlQuery('DELETE FROM calendar_alarm WHERE dav_id = '.$dav_id );
|
|
$qry->Exec('PUT',__LINE__,__FILE__);
|
|
|
|
$alarms = $ical->GetComponents('VALARM');
|
|
if ( count($alarms) < 1 ) return;
|
|
|
|
$qry->SetSql('INSERT INTO calendar_alarm ( dav_id, count, action, trigger, summary, description, component, next_trigger )
|
|
VALUES( '.$dav_id.', :count, :action, :trigger, :summary, :description, :component,
|
|
:related::timestamp with time zone + :related_trigger::interval )' );
|
|
$qry->Prepare();
|
|
$count = 0;
|
|
foreach( $alarms AS $v ) {
|
|
$trigger = array_merge($v->GetProperties('TRIGGER'));
|
|
if ( $trigger == null ) continue; // Bogus data.
|
|
$trigger = $trigger[0];
|
|
$related = null;
|
|
$related_trigger = '0M';
|
|
$trigger_type = $trigger->GetParameterValue('VALUE');
|
|
if ( !isset($trigger_type) || $trigger_type == 'DURATION' ) {
|
|
switch ( $trigger->GetParameterValue('RELATED') ) {
|
|
case 'DTEND': $related = $ical->GetProperty('DTEND'); break;
|
|
case 'DUE': $related = $ical->GetProperty('DUE'); break;
|
|
default: $related = $ical->GetProperty('DTSTART');
|
|
}
|
|
$duration = $trigger->Value();
|
|
if ( !preg_match('{^-?P(:?\d+W)?(:?\d+D)?(:?T(:?\d+H)?(:?\d+M)?(:?\d+S)?)?$}', $duration ) ) continue;
|
|
$minus = (substr($duration,0,1) == '-');
|
|
$related_trigger = trim(preg_replace( '#[PT-]#', ' ', $duration ));
|
|
if ($related_trigger == '') $related_trigger = '0 seconds';
|
|
if ( $minus ) {
|
|
$related_trigger = preg_replace( '{(\d+[WDHMS])}', '-$1 ', $related_trigger );
|
|
}
|
|
else {
|
|
$related_trigger = preg_replace( '{(\d+[WDHMS])}', '$1 ', $related_trigger );
|
|
}
|
|
}
|
|
else if ( $trigger_type == 'DATE-TIME' ) {
|
|
$related = $trigger;
|
|
}
|
|
else {
|
|
if ( false === strtotime($trigger->Value()) ) continue; // Invalid date.
|
|
$related = $trigger;
|
|
}
|
|
$related_date = new RepeatRuleDateTime($related);
|
|
$qry->Bind(':action', $v->GetPValue('ACTION'));
|
|
$qry->Bind(':trigger', $trigger->Render());
|
|
$qry->Bind(':summary', $v->GetPValue('SUMMARY'));
|
|
$qry->Bind(':description', $v->GetPValue('DESCRIPTION'));
|
|
$qry->Bind(':component', $v->Render());
|
|
$qry->Bind(':related', $related_date->UTC() );
|
|
$qry->Bind(':related_trigger', $related_trigger );
|
|
$qry->Bind(':count', $count++ );
|
|
$qry->Exec('PUT',__LINE__,__FILE__);
|
|
}
|
|
}
|
|
|
|
|
|
/**
|
|
* Parse out the attendee property and write a row to the
|
|
* calendar_attendee table for each one.
|
|
* @param int $dav_id The dav_id of the caldav_data we're processing
|
|
* @param vComponent The VEVENT or VTODO containing the ATTENDEEs
|
|
* @return null
|
|
*/
|
|
function write_attendees( $dav_id, vCalendar $ical ) {
|
|
$qry = new AwlQuery('DELETE FROM calendar_attendee WHERE dav_id = '.$dav_id );
|
|
$qry->Exec('PUT',__LINE__,__FILE__);
|
|
|
|
$attendees = $ical->GetAttendees();
|
|
if ( count($attendees) < 1 ) return;
|
|
|
|
$qry->SetSql('INSERT INTO calendar_attendee ( dav_id, status, partstat, cn, attendee, role, rsvp, property )
|
|
VALUES( '.$dav_id.', :status, :partstat, :cn, :attendee, :role, :rsvp, :property )' );
|
|
$qry->Prepare();
|
|
$processed = array();
|
|
foreach( $attendees AS $v ) {
|
|
$attendee = $v->Value();
|
|
if ( isset($processed[$attendee]) ) {
|
|
dbg_error_log( 'LOG', 'Duplicate attendee "%s" in resource "%d"', $attendee, $dav_id );
|
|
dbg_error_log( 'LOG', 'Original: "%s"', $processed[$attendee] );
|
|
dbg_error_log( 'LOG', 'Duplicate: "%s"', $v->Render() );
|
|
continue; /** @todo work out why we get duplicate ATTENDEE on one VEVENT */
|
|
}
|
|
$qry->Bind(':attendee', $attendee );
|
|
$qry->Bind(':status', $v->GetParameterValue('STATUS') );
|
|
$qry->Bind(':partstat', $v->GetParameterValue('PARTSTAT') );
|
|
$qry->Bind(':cn', $v->GetParameterValue('CN') );
|
|
$qry->Bind(':role', $v->GetParameterValue('ROLE') );
|
|
$qry->Bind(':rsvp', $v->GetParameterValue('RSVP') );
|
|
$qry->Bind(':property', $v->Render() );
|
|
$qry->Exec('PUT',__LINE__,__FILE__);
|
|
$processed[$attendee] = $v->Render();
|
|
}
|
|
}
|
|
|
|
|
|
/**
|
|
* Actually write the resource to the database. All checking of whether this is reasonable
|
|
* should be done before this is called.
|
|
*
|
|
* @param DAVResource $resource The resource being written
|
|
* @param string $caldav_data The actual data to be written
|
|
* @param DAVResource $collection The collection containing the resource being written
|
|
* @param int $author The user_no who wants to put this resource on the server
|
|
* @param string $etag An etag unique for this event
|
|
* @param string $put_action_type INSERT or UPDATE depending on what we are to do
|
|
* @param boolean $caldav_context True, if we are responding via CalDAV, false for other ways of calling this
|
|
* @param boolean $log_action Whether to log the fact that we are writing this into an action log (if configured)
|
|
* @param string $weak_etag An etag that is NOT modified on ATTENDEE changes for this event
|
|
*
|
|
* @return boolean True for success, false for failure.
|
|
*/
|
|
function write_resource( DAVResource $resource, $caldav_data, DAVResource $collection, $author, &$etag, $put_action_type, $caldav_context, $log_action=true, $weak_etag=null ) {
|
|
global $tz_regex, $session;
|
|
|
|
$path = $resource->bound_from();
|
|
$user_no = $collection->user_no();
|
|
$vcal = new vCalendar( $caldav_data );
|
|
$resources = $vcal->GetComponents('VTIMEZONE',false); // Not matching VTIMEZONE
|
|
if ( !isset($resources[0]) ) {
|
|
$resource_type = 'Unknown';
|
|
/** @todo Handle writing non-calendar resources, like address book entries or random file data */
|
|
rollback_on_error( $caldav_context, $user_no, $path, translate('No calendar content'), 412 );
|
|
return false;
|
|
}
|
|
else {
|
|
$first = $resources[0];
|
|
if ( !($first instanceof vComponent) ) {
|
|
print $vcal->Render();
|
|
fatal('This is not a vComponent!');
|
|
}
|
|
$resource_type = $first->GetType();
|
|
}
|
|
|
|
$collection_id = $collection->collection_id();
|
|
|
|
$qry = new AwlQuery();
|
|
$qry->Begin();
|
|
|
|
$calitem_params = array(
|
|
':etag' => $etag
|
|
);
|
|
|
|
if ( $put_action_type == 'INSERT' ) {
|
|
$qry->QDo('SELECT nextval(\'dav_id_seq\') AS dav_id, null AS caldav_data');
|
|
}
|
|
else {
|
|
$qry->QDo('SELECT dav_id, caldav_data FROM caldav_data WHERE dav_name = :dav_name ', array(':dav_name' => $path));
|
|
}
|
|
if ( $qry->rows() != 1 || !($row = $qry->Fetch()) ) {
|
|
// No dav_id? => We're toast!
|
|
trace_bug( 'No dav_id for "%s" on %s!!!', $path, ($put_action_type == 'INSERT' ? 'create': 'update'));
|
|
rollback_on_error( $caldav_context, $user_no, $path);
|
|
return false;
|
|
}
|
|
$dav_id = $row->dav_id;
|
|
$old_dav_data = $row->caldav_data;
|
|
|
|
// reset all attendees' partstat to needs-action in vcal and caldav_date here, if time of event has been modified.
|
|
if ($old_dav_data) {
|
|
$modified = false;
|
|
$oldvcal = new vCalendar( $old_dav_data );
|
|
$oldr = $oldvcal->GetComponents('VTIMEZONE',false);
|
|
$oldfirst = $oldr[0];
|
|
$dtstart = $first->GetPValue('DTSTART');
|
|
$olddtstart = $oldfirst->GetPValue('DTSTART');
|
|
if (strcmp($dtstart, $olddtstart)) $modified = true;
|
|
$dtend = $first->GetPValue('DTEND');
|
|
$olddtend = $oldfirst->GetPValue('DTEND');
|
|
if (isset($dtend) && isset($olddtend) && strcmp($dtend, $olddtend)) $modified = true;
|
|
$duration = $first->GetPValue('DURATION');
|
|
$oldduration = $oldfirst->GetPValue('DURATION');
|
|
$organizer = $vcal->GetOrganizer();
|
|
if (isset($duration) && isset($oldduration) && strcmp($duration, $oldduration)) $modified = true;
|
|
if (($modified == true) && !($organizer === false || empty($organizer))) {
|
|
dbg_error_log( 'PUT', "event time attributes have been modified, reset all attendees' PARTSTAT to NEEDS-ACTION.");
|
|
$organizer_email = preg_replace( '/^mailto:/i', '', $organizer->Value() );
|
|
$attendees = $first->GetProperties('ATTENDEE');
|
|
foreach( $attendees AS $attendee ) {
|
|
$attendee_email = preg_replace( '/^mailto:/', '', $attendee->Value() );
|
|
if ( $attendee_email != $organizer_email ) {
|
|
$attendee->SetParameterValue("PARTSTAT", "NEEDS-ACTION");
|
|
$attendee->SetParameterValue("SCHEDULE-STATUS", "1.0");
|
|
}
|
|
}
|
|
$first->SetProperties($attendees,'ATTENDEE');
|
|
$caldav_data = $vcal->Render(null, true);
|
|
dbg_error_log( 'PUT', "event time attributes have been modified, reset all attendees' PARTSTAT completed.");
|
|
}
|
|
}
|
|
|
|
$dav_params = array(
|
|
':etag' => $etag,
|
|
':dav_data' => $caldav_data,
|
|
':caldav_type' => $resource_type,
|
|
':session_user' => $author,
|
|
':weak_etag' => $weak_etag
|
|
);
|
|
|
|
$dav_params[':dav_id'] = $dav_id;
|
|
$calitem_params[':dav_id'] = $dav_id;
|
|
|
|
$due = null;
|
|
if ( $first->GetType() == 'VTODO' ) $due = $first->GetPValue('DUE');
|
|
$calitem_params[':due'] = $due;
|
|
$dtstart = $first->GetPValue('DTSTART');
|
|
$calitem_params[':dtstart_orig'] = $dtstart;
|
|
|
|
if ( empty($dtstart) ) $dtstart = $due;
|
|
if (isset($dtstart) && preg_match("/^1[0-8][0-9][0-9][01][0-9][0-3][0-9]$/", $dtstart))
|
|
$dtstart = $dtstart . "T000000Z";
|
|
$calitem_params[':dtstart'] = $dtstart;
|
|
|
|
$dtend = $first->GetPValue('DTEND');
|
|
$calitem_params[':dtend_orig'] = $dtend;
|
|
|
|
if ( isset($dtend) && $dtend != '' ) {
|
|
dbg_error_log( 'PUT', ' DTEND: "%s", DTSTART: "%s", DURATION: "%s"', $dtend, $dtstart, $first->GetPValue('DURATION') );
|
|
if (preg_match("/^1[0-8][0-9][0-9][01][0-9][0-3][0-9]$/", $dtend))
|
|
$dtend = $dtend . "T000000Z";
|
|
$calitem_params[':dtend'] = $dtend;
|
|
$dtend = ':dtend';
|
|
}
|
|
else {
|
|
// In this case we'll construct the SQL directly as a calculation relative to :dtstart
|
|
$dtend = 'NULL';
|
|
if ( $first->GetPValue('DURATION') != '' AND $dtstart != '' ) {
|
|
$duration = trim(preg_replace( '#[PT]#', ' ', $first->GetPValue('DURATION') ));
|
|
if ( $duration == '' ) $duration = '0 seconds';
|
|
$dtend = '(:dtstart::timestamp with time zone + :duration::interval)';
|
|
$calitem_params[':duration'] = $duration;
|
|
}
|
|
elseif ( $first->GetType() == 'VEVENT' ) {
|
|
/**
|
|
* From RFC2445 4.6.1:
|
|
* For cases where a "VEVENT" calendar component specifies a "DTSTART"
|
|
* property with a DATE data type but no "DTEND" property, the events
|
|
* non-inclusive end is the end of the calendar date specified by the
|
|
* "DTSTART" property. For cases where a "VEVENT" calendar component specifies
|
|
* a "DTSTART" property with a DATE-TIME data type but no "DTEND" property,
|
|
* the event ends on the same calendar date and time of day specified by the
|
|
* "DTSTART" property.
|
|
*
|
|
* So we're looking for 'VALUE=DATE', to identify the duration, effectively.
|
|
*
|
|
*/
|
|
$dtstart_prop = $first->GetProperty('DTSTART');
|
|
$value_type = $dtstart_prop->GetParameterValue('VALUE');
|
|
dbg_error_log('PUT','DTSTART without DTEND. DTSTART value type is %s', $value_type );
|
|
if ( isset($value_type) && $value_type == 'DATE' )
|
|
$dtend = '(:dtstart::timestamp with time zone::date + \'1 day\'::interval)';
|
|
else
|
|
$dtend = ':dtstart';
|
|
}
|
|
}
|
|
|
|
$dtstamp = $first->GetPValue('DTSTAMP');
|
|
if ( !isset($dtstamp) || $dtstamp == '' ) {
|
|
// Strictly, we're dealing with an out of spec component here, but we'll try and survive
|
|
$dtstamp = gmdate( 'Ymd\THis\Z' );
|
|
}
|
|
$calitem_params[':dtstamp'] = $dtstamp;
|
|
|
|
$last_modified = $first->GetPValue('LAST-MODIFIED');
|
|
if ( !isset($last_modified) || $last_modified == '' ) $last_modified = $dtstamp;
|
|
$dav_params[':modified'] = $last_modified;
|
|
$calitem_params[':modified'] = $last_modified;
|
|
|
|
$created = $first->GetPValue('CREATED');
|
|
if ( $created == '00001231T000000Z' ) $created = '20001231T000000Z';
|
|
|
|
$class = $first->GetPValue('CLASS');
|
|
/* Check and see if we should over ride the class. */
|
|
/** @todo is there some way we can move this out of this function? Or at least get rid of the need for the SQL query here. */
|
|
if ( public_events_only($user_no, $path) && isset($class) ) {
|
|
$class = 'PUBLIC';
|
|
}
|
|
|
|
$calitem_params[':class'] = $class;
|
|
|
|
/** Calculate what timezone to set, first, if possible */
|
|
$last_olson = 'Turkmenikikamukau'; // I really hope this location doesn't exist!
|
|
$tzid = GetTZID($first);
|
|
if ( !empty($tzid) ) {
|
|
$timezones = $vcal->GetComponents('VTIMEZONE');
|
|
foreach( $timezones AS $k => $tz ) {
|
|
if ( $tz->GetPValue('TZID') != $tzid ) {
|
|
/**
|
|
* We'll skip any tz definitions that are for a TZID other than the DTSTART/DUE on the first VEVENT/VTODO
|
|
*/
|
|
dbg_error_log( 'ERROR', ' Event uses TZID[%s], skipping included TZID[%s]!', $tz->GetPValue('TZID'), $tzid );
|
|
continue;
|
|
}
|
|
$olson = olson_from_tzstring($tzid);
|
|
if ( empty($olson) ) {
|
|
$olson = $tz->GetPValue('X-LIC-LOCATION');
|
|
if ( !empty($olson) ) {
|
|
$olson = olson_from_tzstring($olson);
|
|
}
|
|
}
|
|
}
|
|
|
|
dbg_error_log( 'PUT', ' Using TZID[%s] and location of [%s]', $tzid, (isset($olson) ? $olson : '') );
|
|
if ( !empty($olson) && ($olson != $last_olson) && preg_match( $tz_regex, $olson ) ) {
|
|
dbg_error_log( 'PUT', ' Setting timezone to %s', $olson );
|
|
if ( $olson != '' ) {
|
|
$qry->QDo('SET TIMEZONE TO \''.$olson."'" );
|
|
}
|
|
$last_olson = $olson;
|
|
}
|
|
$params = array( ':tzid' => $tzid);
|
|
$qry = new AwlQuery('SELECT 1 FROM timezones WHERE tzid = :tzid', $params );
|
|
if ( $qry->Exec('PUT',__LINE__,__FILE__) && $qry->rows() == 0 ) {
|
|
$params[':olson_name'] = $olson;
|
|
$params[':vtimezone'] = (isset($tz) ? $tz->Render() : null );
|
|
$qry->QDo('INSERT INTO timezones (tzid, olson_name, active, vtimezone) VALUES(:tzid,:olson_name,false,:vtimezone)', $params );
|
|
}
|
|
if ( !isset($olson) || $olson == '' ) $olson = $tzid;
|
|
|
|
}
|
|
|
|
$qry->QDo('SELECT new_sync_token(0,'.$collection_id.')');
|
|
|
|
$calitem_params[':tzid'] = $tzid;
|
|
$calitem_params[':uid'] = $first->GetPValue('UID');
|
|
$calitem_params[':summary'] = $first->GetPValue('SUMMARY');
|
|
$calitem_params[':location'] = $first->GetPValue('LOCATION');
|
|
$calitem_params[':transp'] = $first->GetPValue('TRANSP');
|
|
$calitem_params[':description'] = $first->GetPValue('DESCRIPTION');
|
|
$calitem_params[':rrule'] = $first->GetPValue('RRULE');
|
|
$calitem_params[':url'] = $first->GetPValue('URL');
|
|
$calitem_params[':priority'] = $first->GetPValue('PRIORITY');
|
|
$calitem_params[':percent_complete'] = $first->GetPValue('PERCENT-COMPLETE');
|
|
$calitem_params[':status'] = $first->GetPValue('STATUS');
|
|
|
|
$range = getVCalendarRange($vcal, $resource->timezone_name());
|
|
$calitem_params[':first_instance_start'] = isset($range->from) ? $range->from->UTC() : null;
|
|
$calitem_params[':last_instance_end'] = isset($range->until) ? $range->until->UTC() : null;
|
|
|
|
// force re-render the object (to get the same representation for all attendees)
|
|
$vcal->Render(null, true);
|
|
|
|
if ( !$collection->IsSchedulingCollection() ) {
|
|
if ( do_scheduling_requests($vcal, ($put_action_type == 'INSERT'), $old_dav_data ) ) {
|
|
$dav_params[':dav_data'] = $vcal->Render(null, true);
|
|
$etag = null;
|
|
}
|
|
}
|
|
|
|
if ( !isset($dav_params[':modified']) ) $dav_params[':modified'] = 'now';
|
|
if ( $put_action_type == 'INSERT' ) {
|
|
$sql = 'INSERT INTO caldav_data ( dav_id, user_no, dav_name, dav_etag, caldav_data, caldav_type, logged_user, created, modified, collection_id, weak_etag )
|
|
VALUES( :dav_id, :user_no, :dav_name, :etag, :dav_data, :caldav_type, :session_user, :created, :modified, :collection_id, :weak_etag )';
|
|
$dav_params[':collection_id'] = $collection_id;
|
|
$dav_params[':user_no'] = $user_no;
|
|
$dav_params[':dav_name'] = $path;
|
|
$dav_params[':created'] = (isset($created) && $created != '' ? $created : $dtstamp);
|
|
}
|
|
else {
|
|
$sql = 'UPDATE caldav_data SET caldav_data=:dav_data, dav_etag=:etag, caldav_type=:caldav_type, logged_user=:session_user,
|
|
modified=:modified, weak_etag=:weak_etag WHERE dav_id=:dav_id';
|
|
}
|
|
$qry = new AwlQuery($sql,$dav_params);
|
|
if ( !$qry->Exec('PUT',__LINE__,__FILE__) ) {
|
|
fatal('Insert into calendar_item failed...');
|
|
rollback_on_error( $caldav_context, $user_no, $path);
|
|
return false;
|
|
}
|
|
|
|
|
|
if ( $put_action_type == 'INSERT' ) {
|
|
$sql = <<<EOSQL
|
|
INSERT INTO calendar_item (user_no, dav_name, dav_id, dav_etag, uid, dtstamp,
|
|
dtstart, dtstart_orig, dtend, dtend_orig, summary, location, class, transp,
|
|
description, rrule, tz_id, last_modified, url, priority, created, due,
|
|
percent_complete, status, collection_id, first_instance_start,
|
|
last_instance_end )
|
|
VALUES ( :user_no, :dav_name, :dav_id, :etag, :uid, :dtstamp, :dtstart,
|
|
:dtstart_orig, $dtend, :dtend_orig, :summary, :location, :class, :transp,
|
|
:description, :rrule, :tzid, :modified, :url, :priority, :created, :due,
|
|
:percent_complete, :status, :collection_id, :first_instance_start,
|
|
:last_instance_end)
|
|
EOSQL;
|
|
$sync_change = 201;
|
|
$calitem_params[':collection_id'] = $collection_id;
|
|
$calitem_params[':user_no'] = $user_no;
|
|
$calitem_params[':dav_name'] = $path;
|
|
$calitem_params[':created'] = $dav_params[':created'];
|
|
}
|
|
else {
|
|
$sql = <<<EOSQL
|
|
UPDATE calendar_item SET dav_etag=:etag, uid=:uid, dtstamp=:dtstamp,
|
|
dtstart=:dtstart, dtstart_orig=:dtstart_orig, dtend=$dtend,
|
|
dtend_orig=:dtend_orig, summary=:summary, location=:location, class=:class,
|
|
transp=:transp, description=:description, rrule=:rrule, tz_id=:tzid,
|
|
last_modified=:modified, url=:url, priority=:priority, due=:due,
|
|
percent_complete=:percent_complete, status=:status,
|
|
first_instance_start=:first_instance_start,
|
|
last_instance_end=:last_instance_end
|
|
WHERE dav_id=:dav_id
|
|
EOSQL;
|
|
$sync_change = 200;
|
|
}
|
|
|
|
write_alarms($dav_id, $first);
|
|
write_attendees($dav_id, $vcal);
|
|
|
|
if ( $log_action && function_exists('log_caldav_action') ) {
|
|
log_caldav_action( $put_action_type, $first->GetPValue('UID'), $user_no, $collection_id, $path );
|
|
}
|
|
else if ( $log_action ) {
|
|
dbg_error_log( 'PUT', 'No log_caldav_action( %s, %s, %s, %s, %s) can be called.',
|
|
$put_action_type, $first->GetPValue('UID'), $user_no, $collection_id, $path );
|
|
}
|
|
|
|
$qry = new AwlQuery( $sql, $calitem_params );
|
|
if ( !$qry->Exec('PUT',__LINE__,__FILE__) ) {
|
|
rollback_on_error( $caldav_context, $user_no, $path);
|
|
return false;
|
|
}
|
|
$qry->QDo("SELECT write_sync_change( :collection_id, $sync_change, :dav_name)",
|
|
array(':collection_id' => $collection_id, ':dav_name' => $path ) );
|
|
$qry->Commit();
|
|
|
|
if ( function_exists('post_commit_action') ) {
|
|
post_commit_action( $put_action_type, $first->GetPValue('UID'), $user_no, $collection_id, $path );
|
|
}
|
|
|
|
// Uncache anything to do with the collection
|
|
$cache = getCacheInstance();
|
|
$cache_ns = 'collection-'.preg_replace( '{/[^/]*$}', '/', $path);
|
|
$cache->delete( $cache_ns, null );
|
|
|
|
dbg_error_log( 'PUT', 'User: %d, ETag: %s, Path: %s', $author, $etag, $path);
|
|
|
|
return true; // Success!
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
* A slightly simpler version of write_resource which will make more sense for calling from
|
|
* an external program. This makes assumptions that the collection and user do exist
|
|
* and bypasses all checks for whether it is reasonable to write this here.
|
|
* @param string $path The path to the resource being written
|
|
* @param string $caldav_data The actual resource to be written
|
|
* @param string $put_action_type INSERT or UPDATE depending on what we are to do
|
|
* @return boolean True for success, false for failure.
|
|
*/
|
|
function simple_write_resource( $path, $caldav_data, $put_action_type, $write_action_log = false ) {
|
|
global $session;
|
|
|
|
/**
|
|
* We pull the user_no & collection_id out of the collection table, based on the resource path
|
|
*/
|
|
$dav_resource = new DAVResource($path);
|
|
$etag = md5($caldav_data);
|
|
$collection_path = preg_replace( '#/[^/]*$#', '/', $path );
|
|
$collection = new DAVResource($collection_path);
|
|
if ( $collection->IsCollection() || $collection->IsSchedulingCollection() ) {
|
|
return write_resource( $dav_resource, $caldav_data, $collection, $session->user_no, $etag, $put_action_type, false, $write_action_log );
|
|
}
|
|
return false;
|
|
}
|