1: 2: 3: 4: 5: 6: 7: 8: 9: 10: 11: 12: 13: 14: 15: 16: 17: 18: 19: 20: 21: 22: 23: 24: 25: 26: 27: 28: 29: 30: 31: 32: 33: 34: 35: 36: 37: 38: 39: 40: 41: 42: 43: 44: 45: 46: 47: 48: 49: 50: 51: 52: 53: 54: 55: 56: 57: 58: 59: 60: 61: 62: 63: 64: 65: 66: 67: 68: 69: 70: 71: 72: 73: 74: 75: 76: 77: 78: 79: 80: 81: 82: 83: 84: 85: 86: 87: 88: 89: 90: 91: 92: 93: 94: 95: 96: 97: 98: 99: 100: 101: 102: 103: 104: 105: 106: 107: 108: 109: 110: 111: 112: 113: 114: 115: 116: 117: 118: 119: 120: 121: 122: 123: 124: 125: 126: 127: 128: 129: 130: 131: 132: 133: 134: 135: 136: 137: 138: 139: 140: 141: 142: 143: 144: 145: 146: 147: 148: 149: 150: 151: 152: 153: 154: 155: 156: 157: 158: 159: 160: 161: 162: 163: 164: 165: 166: 167: 168: 169: 170: 171: 172: 173: 174: 175: 176: 177: 178: 179: 180: 181: 182: 183: 184: 185: 186: 187: 188: 189: 190:
<?php
dbg_error_log("MOVE", "method handler");
require_once('DAVResource.php');
$request->NeedPrivilege('DAV::unbind');
if ( ! ini_get('open_basedir') && (isset($c->dbg['ALL']) || (isset($c->dbg['move']) && $c->dbg['move'])) ) {
$fh = fopen('/var/log/davical/MOVE.debug','w');
if ( $fh ) {
fwrite($fh,$request->raw_post);
fclose($fh);
}
}
$lock_opener = $request->FailIfLocked();
$dest = new DAVResource($request->destination);
if ( $dest->dav_name() == '/' || $dest->IsPrincipal() ) {
$dest->NeedPrivilege('DAV::bind');
}
if ( ! $dest->ContainerExists() ) {
$request->DoResponse( 409, translate('Destination collection does not exist') );
}
if ( ! $request->overwrite && $dest->Exists() ) {
$request->DoResponse( 412, translate('Not overwriting existing destination resource') );
}
if ( isset($request->etag_none_match) && $request->etag_none_match != '*' ) {
$request->DoResponse( 412 );
}
$src = new DAVResource($request->path);
if ( ! $src->Exists() ) {
$request->DoResponse( 412, translate('Source resource does not exist.') );
}
if ( $src->IsCollection() ) {
switch( $dest->ContainerType() ) {
case 'calendar':
case 'addressbook':
case 'schedule-inbox':
case 'schedule-outbox':
$request->DoResponse( 412, translate('Special collections may not contain a calendar or other special collection.') );
};
}
else {
if ( (isset($request->etag_if_match) && $request->etag_if_match != '' )
|| ( isset($request->etag_none_match) && $request->etag_none_match != '') ) {
$error = '';
if ( isset($request->etag_if_match) && $request->etag_if_match != $src->unique_tag() ) {
$error = translate( 'Existing resource does not match "If-Match" header - not accepted.');
}
else if ( isset($request->etag_none_match) && $request->etag_none_match != '' && $request->etag_none_match == $src->unique_tag() ) {
$error = translate( 'Existing resource matches "If-None-Match" header - not accepted.');
}
if ( $error != '' ) $request->DoResponse( 412, $error );
}
}
$src->NeedPrivilege('DAV::unbind');
$dest->NeedPrivilege('DAV::write-content');
if ( ! $dest->Exists() ) $dest->NeedPrivilege('DAV::bind');
function rollback( $response_code = 412 ) {
global $request;
$qry = new AwlQuery('ROLLBACK');
$qry->Exec('move');
$request->DoResponse( $response_code );
}
$qry = new AwlQuery('BEGIN');
if ( !$qry->Exec('move') ) rollback(500);
$src_name = $src->dav_name();
$dst_name = ($dest->IsBinding() ? $dest->bound_from() : $dest->dav_name());
$src_collection = $src->GetProperty('collection_id');
$dst_collection = $dest->GetProperty('collection_id');
$src_user_no = $src->GetProperty('user_no');
$dst_user_no = $dest->GetProperty('user_no');
$cache = getCacheInstance();
$cachekeys = array();
if ( $src->IsCollection() ) {
$cachekeys[] = ($src->ContainerType() == 'principal' ? 'principal' : 'collection').'-'.$src->parent_path();
$cachekeys[] = ($src->IsPrincipal() == 'principal' ? 'principal' : 'collection').'-'.$src->dav_name();
$cachekeys[] = ($src->IsPrincipal() ? 'principal' : 'collection').'-'.$dest->dav_name();
if ( $dest->Exists() ) {
$qry = new AwlQuery( 'DELETE FROM collection WHERE dav_name = :dst_name', array( ':dst_name' => $dst_name ) );
if ( !$qry->Exec('move') ) rollback(500);
}
$sql = 'UPDATE collection SET dav_name = :dst_name ';
$params = array(':dst_name' => $dst_name);
if ( $src_user_no != $dst_user_no ) {
$sql .= ', user_no = :dst_user_no ';
$params[':dst_user_no'] = $dst_user_no;
}
if ( $src->parent_path() != $dest->parent_path() ) {
$sql .= ', parent_container=:parent ';
$params[':parent'] = $dest->parent_path();
$cachekeys[] = ($dest->ContainerType() == 'principal' ? 'principal' : 'collection').'-'.$dest->parent_path();
}
$sql .= 'WHERE collection_id = :src_collection';
$params[':src_collection'] = $src_collection;
$qry = new AwlQuery( $sql, $params );
if ( !$qry->Exec('move') ) rollback(500);
}
else {
if ( $dest->Exists() ) {
$qry = new AwlQuery( 'DELETE FROM caldav_data WHERE dav_name = :dst_name', array( ':dst_name' => $dst_name) );
if ( !$qry->Exec('move') ) rollback(500);
}
$cachekeys[] = ($src->ContainerType() == 'principal' ? 'principal' : 'collection').'-'.$src->parent_path();
$sql = 'UPDATE caldav_data SET dav_name = :dst_name';
$params = array( ':dst_name' => $dst_name );
if ( $src_user_no != $dst_user_no ) {
$sql .= ', user_no = :dst_user_no';
$params[':dst_user_no'] = $dst_user_no;
}
if ( $src_collection != $dst_collection ) {
$sql .= ', collection_id = :dst_collection';
$params[':dst_collection'] = $dst_collection;
$cachekeys[] = ($dest->ContainerType() == 'principal' ? 'principal' : 'collection').'-'.$dest->parent_path();
}
$sql .=' WHERE dav_name = :src_name';
$params[':src_name'] = $src_name;
$qry = new AwlQuery( $sql, $params );
if ( !$qry->Exec('move') ) rollback(500);
$qry = new AwlQuery( 'SELECT write_sync_change( :src_collection, 404, :src_name );', array(
':src_name' => $src_name,
':src_collection' => $src_collection
) );
if ( !$qry->Exec('move') ) rollback(500);
if ( function_exists('log_caldav_action') ) {
log_caldav_action( 'DELETE', $src->GetProperty('uid'), $src_user_no, $src_collection, $src_name );
}
$qry = new AwlQuery( 'SELECT write_sync_change( :dst_collection, :sync_type, :dst_name );', array(
':dst_name' => $dst_name,
':dst_collection' => $dst_collection,
':sync_type' => ( $dest->Exists() ? 200 : 201 )
) );
if ( !$qry->Exec('move') ) rollback(500);
if ( function_exists('log_caldav_action') ) {
log_caldav_action( ( $dest->Exists() ? 'UPDATE' : 'INSERT' ), $src->GetProperty('uid'), $dst_user_no, $dst_collection, $dst_name );
}
}
$qry = new AwlQuery('COMMIT');
if ( !$qry->Exec('move') ) rollback(500);
foreach( $cachekeys AS $cache_ns ) $cache->delete( $cache_ns, null );
$request->DoResponse( 200 );