mirror of
https://gitlab.com/davical-project/davical.git
synced 2026-01-27 00:33:34 +00:00
133 lines
3.6 KiB
PHP
133 lines
3.6 KiB
PHP
<?php
|
|
/**
|
|
* An object representing a DAV 'ticket'
|
|
*
|
|
* @package davical
|
|
* @subpackage DAVTicket
|
|
* @author Andrew McMillan <andrew@mcmillan.net.nz>
|
|
* @copyright Morphoss Ltd
|
|
* @license http://gnu.org/copyleft/gpl.html GNU GPL v3 or later
|
|
*/
|
|
|
|
require_once('AwlQuery.php');
|
|
|
|
|
|
/**
|
|
* A class for things to do with a DAV Ticket
|
|
*
|
|
* @package davical
|
|
*/
|
|
class DAVTicket
|
|
{
|
|
/**
|
|
* @var The ID of the ticket
|
|
*/
|
|
private $ticket_id;
|
|
|
|
/**
|
|
* @var dav_name
|
|
*/
|
|
private $dav_name;
|
|
|
|
/**
|
|
* @var The collection_id of/containing the ticketed resource
|
|
*/
|
|
private $target_collection_id;
|
|
|
|
/**
|
|
* @var The resource_id of the ticketed resource, if it is not a collection
|
|
*/
|
|
private $target_resource_id;
|
|
|
|
/**
|
|
* @var The expiry of the ticket
|
|
*/
|
|
private $expiry;
|
|
|
|
/**
|
|
* @var The ID of the principal who owns this ticket
|
|
*/
|
|
private $dav_owner_id;
|
|
|
|
/**
|
|
* @var A bit mask representing the privileges provided by this ticket
|
|
*/
|
|
private $privileges;
|
|
|
|
/**
|
|
* @var A bit mask representing the privileges granted to the ticket owner to the collection (or container of this) resource.
|
|
*/
|
|
private $grantor_collection_privileges;
|
|
|
|
/**
|
|
* Constructor
|
|
* @param string $ticket_id
|
|
*/
|
|
function __construct( $ticket_id ) {
|
|
global $c;
|
|
|
|
$this->dav_name = null;
|
|
$this->target_collection_id = null;
|
|
$this->target_resource_id = null;
|
|
$this->expiry = null;
|
|
$this->expired = true;
|
|
$this->dav_owner_id = null;
|
|
$this->ticket_id = $ticket_id;
|
|
$this->privileges = 0;
|
|
$this->grantor_collection_privileges = 0;
|
|
|
|
$qry = new AwlQuery(
|
|
'SELECT access_ticket.*, collection.dav_name, (access_ticket.expires < current_timestamp) AS expired,
|
|
path_privs(access_ticket.dav_owner_id,collection.dav_name,:scan_depth) AS grantor_collection_privileges
|
|
FROM access_ticket JOIN collection ON (target_collection_id = collection_id)
|
|
WHERE ticket_id = :ticket_id::text',
|
|
array(':ticket_id' => $ticket_id, ':scan_depth' => $c->permission_scan_depth)
|
|
);
|
|
if ( $qry->Exec('DAVTicket',__LINE__,__FILE__) && $qry->rows() == 1 && $t = $qry->Fetch() ) {
|
|
if ( ! $t->expired ) {
|
|
foreach( $t AS $k => $v ) {
|
|
$this->{$k} = $v;
|
|
}
|
|
$this->expired = false;
|
|
$this->privileges = bindec($this->privileges);
|
|
$this->grantor_collection_privileges = bindec($this->grantor_collection_privileges);
|
|
dbg_error_log( 'DAVTicket', 'Found a current ticket for "%s"', implode(', ',bits_to_privilege($this->privileges())) );
|
|
}
|
|
else {
|
|
dbg_error_log( 'DAVTicket', 'Found an expired ticket: %s - %s', $ticket_id, $t->expires );
|
|
}
|
|
}
|
|
if ( isset($this->target_resource_id) ) {
|
|
$qry = new AwlQuery( 'SELECT dav_name FROM caldav_data WHERE dav_id = :dav_id', array(':dav_id' => $this->target_resource_id ) );
|
|
if ( $qry->Exec('DAVTicket',__LINE__,__FILE__) && $qry->rows() == 1 && $r = $qry->Fetch() ) {
|
|
$this->dav_name = $r->dav_name;
|
|
}
|
|
}
|
|
}
|
|
|
|
|
|
function dav_name() {
|
|
return $this->dav_name;
|
|
}
|
|
|
|
|
|
function id() {
|
|
return $this->ticket_id;
|
|
}
|
|
|
|
|
|
function privileges() {
|
|
return ($this->privileges & $this->grantor_collection_privileges);
|
|
}
|
|
|
|
|
|
function MatchesPath( $test_path ) {
|
|
$length = strlen($this->dav_name);
|
|
return (substr($test_path, 0, $length) == $this->dav_name);
|
|
}
|
|
|
|
function MatchesResource( $test_resource_id ) {
|
|
return ($test_resource_id == $this->target_collection_id || $test_resource_id == $this->target_resource_id);
|
|
}
|
|
}
|