server = $server; $server->xml->elementMap['{DAV:}share-resource'] = 'Sabre\\DAV\\Xml\\Request\\ShareResource'; array_push( $server->protectedProperties, '{DAV:}share-mode' ); $server->on('method:POST', [$this, 'httpPost']); $server->on('propFind', [$this, 'propFind']); $server->on('getSupportedPrivilegeSet', [$this, 'getSupportedPrivilegeSet']); $server->on('onHTMLActionsPanel', [$this, 'htmlActionsPanel']); $server->on('onBrowserPostAction', [$this, 'browserPostAction']); } /** * Updates the list of sharees on a shared resource. * * The sharees array is a list of people that are to be added modified * or removed in the list of shares. * * @param string $path * @param Sharee[] $sharees */ public function shareResource($path, array $sharees) { $node = $this->server->tree->getNodeForPath($path); if (!$node instanceof ISharedNode) { throw new Forbidden('Sharing is not allowed on this node'); } // Getting ACL info $acl = $this->server->getPlugin('acl'); // If there's no ACL support, we allow everything if ($acl) { $acl->checkPrivileges($path, '{DAV:}share'); } foreach ($sharees as $sharee) { // We're going to attempt to get a local principal uri for a share // href by emitting the getPrincipalByUri event. $principal = null; $this->server->emit('getPrincipalByUri', [$sharee->href, &$principal]); $sharee->principal = $principal; } $node->updateInvites($sharees); } /** * This event is triggered when properties are requested for nodes. * * This allows us to inject any sharings-specific properties. */ public function propFind(PropFind $propFind, INode $node) { if ($node instanceof ISharedNode) { $propFind->handle('{DAV:}share-access', function () use ($node) { return new Property\ShareAccess($node->getShareAccess()); }); $propFind->handle('{DAV:}invite', function () use ($node) { return new Property\Invite($node->getInvites()); }); $propFind->handle('{DAV:}share-resource-uri', function () use ($node) { return new Property\Href($node->getShareResourceUri()); }); } } /** * We intercept this to handle POST requests on shared resources. * * @return bool|null */ public function httpPost(RequestInterface $request, ResponseInterface $response) { $path = $request->getPath(); $contentType = $request->getHeader('Content-Type'); if (null === $contentType) { return; } // We're only interested in the davsharing content type. if (false === strpos($contentType, 'application/davsharing+xml')) { return; } $message = $this->server->xml->parse( $request->getBody(), $request->getUrl(), $documentType ); switch ($documentType) { case '{DAV:}share-resource': $this->shareResource($path, $message->sharees); $response->setStatus(200); // Adding this because sending a response body may cause issues, // and I wanted some type of indicator the response was handled. $response->setHeader('X-Sabre-Status', 'everything-went-well'); // Breaking the event chain return false; default: throw new BadRequest('Unexpected document type: '.$documentType.' for this Content-Type'); } } /** * This method is triggered whenever a subsystem reqeuests the privileges * hat are supported on a particular node. * * We need to add a number of privileges for scheduling purposes. */ public function getSupportedPrivilegeSet(INode $node, array &$supportedPrivilegeSet) { if ($node instanceof ISharedNode) { $supportedPrivilegeSet['{DAV:}share'] = [ 'abstract' => false, 'aggregates' => [], ]; } } /** * Returns a bunch of meta-data about the plugin. * * Providing this information is optional, and is mainly displayed by the * Browser plugin. * * The description key in the returned array may contain html and will not * be sanitized. * * @return array */ public function getPluginInfo() { return [ 'name' => $this->getPluginName(), 'description' => 'This plugin implements WebDAV resource sharing', 'link' => 'https://github.com/evert/webdav-sharing', ]; } /** * This method is used to generate HTML output for the * DAV\Browser\Plugin. * * @param string $output * @param string $path * * @return bool|null */ public function htmlActionsPanel(INode $node, &$output, $path) { if (!$node instanceof ISharedNode) { return; } $aclPlugin = $this->server->getPlugin('acl'); if ($aclPlugin) { if (!$aclPlugin->checkPrivileges($path, '{DAV:}share', \Sabre\DAVACL\Plugin::R_PARENT, false)) { // Sharing is not permitted, we will not draw this interface. return; } } $output .= '