<?php
/**
 * Description of IJR_Server
 *
 * @author  Andreas Gohr <andi@splitbrain.org>
 * @author Gina Haeussge <osd@foosel.net>
 * @author Michael Klier <chi@chimeric.de>
 * @author Michael Hamann <michael@content-space.de>
 * @author Magnus Wolf <mwolf2706@googlemail.com>
 */

if(!defined('DOKU_INC')) define('DOKU_INC',dirname(__FILE__).'/../../../');

// fix when '<?xml' isn't on the very first line
if(isset($HTTP_RAW_POST_DATA)) $HTTP_RAW_POST_DATA = trim($HTTP_RAW_POST_DATA);

/**
 * Increased whenever the API is changed
 */
define('DOKU_JSONRPC_API_VERSION',2);

require_once(DOKU_INC.'inc/init.php');
require_once(DOKU_INC.'inc/common.php');
require_once(DOKU_INC.'inc/auth.php');
require_once(DOKU_INC.'inc/pluginutils.php');
session_write_close();  //close session

if(plugin_isdisabled('jsonrpc'))
{
    die('JSON-RPC server not enabled');
}

require_once('./IJR_Message.php');
require_once('./IJR_Date.php');
require_once('./IJR_IntrospectionServer.php');
require_once('./IJR_CallbackDefines.php');


class dokuwiki_jsonrpc_server extends IJR_IntrospectionServer {
    var $methods       = array();
    var $public_methods = array();
    private $callbackMethods;
    private $config;

    function checkAuth(){
        global $conf;
        global $USERINFO;

        $this->config = $conf['plugin']['jsonrpc'];

        if($this->config['allow_all'] == 1)
        {
            return true;
        }

        $user   = $_SERVER['REMOTE_USER'];
        $allowed_users = explode(';',$this->config['allowed']);
        $allowed_users = array_map('trim', $allowed_users);
        $allowed_users = array_unique($allowed_users);

        if(in_array($user,$allowed_users))
        {
            return true;
        }
        return false;
    }

    function addCallback($method, $callback, $args, $help, $public=false){
        if($public) $this->public_methods[] = $method;
        return parent::addCallback($method, $callback, $args, $help);
    }


    function call($methodname, $args){
        if(!in_array($methodname,$this->public_methods) && !$this->checkAuth()){
            return new IJR_Error(-32603, 'server error. not authorized to call method "'.$methodname.'".');
        }
        return parent::call($methodname, $args);
    }


    function dokuwiki_jsonrpc_server(){
        $callbackDef = new IJR_CallbackDefines();
        $this->callbackMethods = $callbackDef->getWikiMethods();

        $this->IJR_IntrospectionServer();

        foreach($this->callbackMethods as $key)
        {
            $this->addCallback($key['method'], $key['callback'], $key['args'], $key['help'], $key['public']);
        }
        trigger_event('JSONRPC_CALLBACK_REGISTER', $this);
        
        $this->serve();
    }

    public function rawPage($id,$rev=''){
        if(auth_quickaclcheck($id) < AUTH_READ){
            return new IJR_Error(1, 'You are not allowed to read this page');
        }
        $text = rawWiki($id,$rev);
        if(!$text) {
            $data = array($id);
            return trigger_event('HTML_PAGE_FROMTEMPLATE',$data,'pageTemplate',true);
        } else {
            return $text;
        }
    }

    public function getTitle()
    {
        global $conf;
        return $conf['title'];
    }

    public function appendPage($page, $text, $opt)
    {
       $page_cont = $this->rawPage($page);
       $page_cont = $page_cont."\n".$text;
       return saveWikiText($page, $tmp, $opt);
    }

    public function getAttachment($id){
        $id = cleanID($id);
        if (auth_quickaclcheck(getNS($id).':*') < AUTH_READ)
            return new IJR_Error(1, 'You are not allowed to read this file');

        $file = mediaFN($id);
        if (!@ file_exists($file))
            return new IJR_Error(1, 'The requested file does not exist');

        $data = io_readFile($file, false);
        $base64 = base64_encode($data);
        return $base64;
    }

    public function getAttachmentInfo($id){
        $id = cleanID($id);
        $info = array(
            'lastModified' => 0,
            'size' => 0,
        );

        $file = mediaFN($id);
        if ((auth_quickaclcheck(getNS($id).':*') >= AUTH_READ) && file_exists($file)){
            $info['lastModified'] = new IJR_Date(filemtime($file));
            $info['size'] = filesize($file);
        }

        return $info;
    }

    public function htmlPage($id,$rev=''){
        if(auth_quickaclcheck($id) < AUTH_READ){
            return new IJR_Error(1, 'You are not allowed to read this page');
        }
        return p_wiki_xhtml($id,$rev,false);
    }

    public function htmlPagePart($id,$rev='',$maxHeader=3,$maxItems=3){
        if(auth_quickaclcheck($id) < AUTH_READ){
            return new IJR_Error(1, 'You are not allowed to read this page');
        }
        $title = '';
        $cfg = array('maxHeader'=>$maxHeader,'maxItems'=>$maxItems);
        return p_wiki_xhtml_summary_ext($id,$title,$rev,true,$cfg);
    }

    public function listPages(){
        global $conf;

        $list  = array();
        $pages = file($conf['indexdir'] . '/page.idx');
        $pages = array_filter($pages, 'isVisiblePage');

        foreach(array_keys($pages) as $idx) {
            if(page_exists($pages[$idx])) {
                $perm = auth_quickaclcheck($pages[$idx]);
                if($perm >= AUTH_READ) {
                    $page = array();
                    $page['id'] = trim($pages[$idx]);
                    $page['perms'] = $perm;
                    $page['size'] = @filesize(wikiFN($pages[$idx]));
                    $page['lastModified'] = new IJR_Date(@filemtime(wikiFN($pages[$idx])));
                    $list[] = $page;
                }
            }
        }

        return $list;
    }

    public function readNamespace($ns,$opts){
        global $conf;

        if(!is_array($opts)) $opts=array();

        $ns = cleanID($ns);
        $dir = utf8_encodeFN(str_replace(':', '/', $ns));
        $data = array();
        require_once(DOKU_INC.'inc/search.php');
        $opts['skipacl'] = 0; // no ACL skipping for XMLRPC
        search($data, $conf['datadir'], 'search_allpages', $opts, $dir);
        return $data;
    }

    public function listAttachments($ns, $options = array()) {
        global $conf;
        global $lang;

        $ns = cleanID($ns);
        if (!is_array($options)) $options = array();
        $options['skipacl'] = 0; // no ACL skipping for XMLRPC

        if(auth_quickaclcheck($ns.':*') >= AUTH_READ) {
            $dir = utf8_encodeFN(str_replace(':', '/', $ns));

            $data = array();
            require_once(DOKU_INC.'inc/search.php');
            search($data, $conf['mediadir'], 'search_media', $options, $dir);
            $len = count($data);

            if(!$len) return array();

            for($i=0; $i<$len; $i++) {
                unset($data[$i]['meta']);
                $data[$i]['lastModified'] = new IJR_Date($data[$i]['mtime']);
            }

            return $data;
        } else {
            return new IJR_Error(1, 'You are not allowed to list media files.');
        }
    }

    public function search($searchString)
    {
        require_once(DOKU_INC.'inc/html.php');
        require_once(DOKU_INC.'inc/search.php');
        require_once(DOKU_INC.'inc/fulltext.php');
        require_once(DOKU_INC.'inc/pageutils.php');

        $data = array();
        $result = array();

        $searchStr = cleanID($searchString);
        $data = ft_pageLookup($searchStr);
        foreach($data as $id)
        {
            $ns = getNS($id);
            if($ns){
                $name = shorten(noNS($id), ' ('.$ns.')',30);
            }else{
                $name = $id;
            }
            $result[] = $id;
        }

        $data = ft_pageSearch($searchString, $regex);
        if(count($data))
        {
            foreach($data as $id => $cnt)
            {
                $result[] = $id;
            }
        }
        return $result;
    }

    public function listBackLinks($id){
        require_once(DOKU_INC.'inc/fulltext.php');
        return ft_backlinks($id);
    }

    public function pageInfo($id,$rev=''){
        if(auth_quickaclcheck($id) < AUTH_READ){
            return new IJR_Error(1, 'You are not allowed to read this page');
        }
        $file = wikiFN($id,$rev);
        $time = @filemtime($file);
        if(!$time){
            return new IJR_Error(10, 'The requested page does not exist');
        }

        $info = getRevisionInfo($id, $time, 1024);

        $data = array(
            'name'         => $id,
            'lastModified' => new IJR_Date($time),
            'author'       => (($info['user']) ? $info['user'] : $info['ip']),
            'version'      => $time
        );

        return ($data);
    }

    public function putPage($id, $text, $params) {
        global $TEXT;
        global $lang;
        global $conf;

        $id    = cleanID($id);
        $TEXT  = cleanText($text);
        $sum   = $params['sum'];
        $minor = $params['minor'];

        if(empty($id))
            return new IJR_Error(1, 'Empty page ID');

        if(!page_exists($id) && trim($TEXT) == '' ) {
            return new IJR_ERROR(1, 'Refusing to write an empty new wiki page');
        }

        if(auth_quickaclcheck($id) < AUTH_EDIT)
            return new IJR_Error(1, 'You are not allowed to edit this page');

        if(checklock($id))
            return new IJR_Error(1, 'The page is currently locked');

        if(checkwordblock())
            return new IJR_Error(1, 'Positive wordblock check');

        if(!page_exists($id) && empty($sum)) {
            $sum = $lang['created'];
        }

        if(page_exists($id) && empty($TEXT) && empty($sum)) {
            $sum = $lang['deleted'];
        }

        lock($id);

        saveWikiText($id,$TEXT,$sum,$minor);

        unlock($id);

        // run the indexer if page wasn't indexed yet
        if(!@file_exists(metaFN($id, '.indexed'))) {
            // try to aquire a lock
            $lock = $conf['lockdir'].'/_indexer.lock';
            while(!@mkdir($lock,$conf['dmode'])){
                usleep(50);
                if(time()-@filemtime($lock) > 60*5){
                    // looks like a stale lock - remove it
                    @rmdir($lock);
                }else{
                    return false;
                }
            }
            if(isset($conf['dperm']) && $conf['dperm']) chmod($lock, $conf['dperm']);

            require_once(DOKU_INC.'inc/indexer.php');

            if(!defined('INDEXER_VERSION')){
                define('INDEXER_VERSION', 2);
            }
            // do the work
            idx_addPage($id);

            io_saveFile(metaFN($id,'.indexed'),INDEXER_VERSION);
            @rmdir($lock);
        }

        return 0;
    }

    public function putAttachment($id, $file, $params) {
        global $conf;
        global $lang;

        $auth = auth_quickaclcheck(getNS($id).':*');
        if($auth >= AUTH_UPLOAD) {
            if(!isset($id)) {
                return new IJR_ERROR(1, 'Filename not given.');
            }

            $ftmp = $conf['tmpdir'] . '/' . $id;

            // save temporary file
            @unlink($ftmp);
            $buff = base64_decode($file);
            io_saveFile($ftmp, $buff);

            // get filename
            list($iext, $imime,$dl) = mimetype($id);
            $id = cleanID($id);
            $fn = mediaFN($id);

            // get filetype regexp
            $types = array_keys(getMimeTypes());
            $types = array_map(create_function('$q','return preg_quote($q,"/");'),$types);
            $regex = join('|',$types);

            // because a temp file was created already
            if(preg_match('/\.('.$regex.')$/i',$fn)) {
                //check for overwrite
                $overwrite = @file_exists($fn);
                if($overwrite && (!$params['ow'] || $auth < AUTH_DELETE)) {
                    return new IJR_ERROR(1, $lang['uploadexist'].'1');
                }
                // check for valid content
                @require_once(DOKU_INC.'inc/media.php');
                $ok = media_contentcheck($ftmp, $imime);
                if($ok == -1) {
                    return new IJR_ERROR(1, sprintf($lang['uploadexist'].'2', ".$iext"));
                } elseif($ok == -2) {
                    return new IJR_ERROR(1, $lang['uploadspam']);
                } elseif($ok == -3) {
                    return new IJR_ERROR(1, $lang['uploadxss']);
                }

                // prepare event data
                $data[0] = $ftmp;
                $data[1] = $fn;
                $data[2] = $id;
                $data[3] = $imime;
                $data[4] = $overwrite;

                // trigger event
                require_once(DOKU_INC.'inc/events.php');
                return trigger_event('MEDIA_UPLOAD_FINISH', $data, array($this, '_media_upload_action'), true);

            } else {
                return new IJR_ERROR(1, $lang['uploadwrong']);
            }
        } else {
            return new IJR_ERROR(1, "You don't have permissions to upload files.");
        }
    }

    public function deleteAttachment($id){
        $auth = auth_quickaclcheck(getNS($id).':*');
        if($auth < AUTH_DELETE) return new IJR_ERROR(1, "You don't have permissions to delete files.");
        global $conf;
        global $lang;

        // check for references if needed
        $mediareferences = array();
        if($conf['refcheck']){
            require_once(DOKU_INC.'inc/fulltext.php');
            $mediareferences = ft_mediause($id,$conf['refshow']);
        }

        if(!count($mediareferences)){
            $file = mediaFN($id);
            if(@unlink($file)){
                require_once(DOKU_INC.'inc/changelog.php');
                addMediaLogEntry(time(), $id, DOKU_CHANGE_TYPE_DELETE);
                io_sweepNS($id,'mediadir');
                return 0;
            }
            //something went wrong
               return new IJR_ERROR(1, 'Could not delete file');
        } else {
            return new IJR_ERROR(1, 'File is still referenced');
        }
    }

    public function _media_upload_action($data) {
        global $conf;

        if(is_array($data) && count($data)===5) {
            io_createNamespace($data[2], 'media');
            if(rename($data[0], $data[1])) {
                chmod($data[1], $conf['fmode']);
                media_notify($data[2], $data[1], $data[3]);
                // add a log entry to the media changelog
                require_once(DOKU_INC.'inc/changelog.php');
                if ($data[4]) {
                    addMediaLogEntry(time(), $data[2], DOKU_CHANGE_TYPE_EDIT);
                } else {
                    addMediaLogEntry(time(), $data[2], DOKU_CHANGE_TYPE_CREATE);
                }
                return $data[2];
            } else {
                return new IJR_ERROR(1, 'Upload failed.');
            }
        } else {
            return new IJR_ERROR(1, 'Upload failed.');
        }
    }

    public function aclCheck($id) {
        return auth_quickaclcheck($id);
    }

    public function listLinks($id) {
        if(auth_quickaclcheck($id) < AUTH_READ){
            return new IJR_Error(1, 'You are not allowed to read this page');
        }
        $links = array();

        // resolve page instructions
        $ins   = p_cached_instructions(wikiFN(cleanID($id)));

        // instantiate new Renderer - needed for interwiki links
        include(DOKU_INC.'inc/parser/xhtml.php');
        $Renderer = new Doku_Renderer_xhtml();
        $Renderer->interwiki = getInterwiki();

        // parse parse instructions
        foreach($ins as $in) {
            $link = array();
            switch($in[0]) {
                case 'internallink':
                    $link['type'] = 'local';
                    $link['page'] = $in[1][0];
                    $link['href'] = wl($in[1][0]);
                    array_push($links,$link);
                    break;
                case 'externallink':
                    $link['type'] = 'extern';
                    $link['page'] = $in[1][0];
                    $link['href'] = $in[1][0];
                    array_push($links,$link);
                    break;
                case 'interwikilink':
                    $url = $Renderer->_resolveInterWiki($in[1][2],$in[1][3]);
                    $link['type'] = 'extern';
                    $link['page'] = $url;
                    $link['href'] = $url;
                    array_push($links,$link);
                    break;
            }
        }

        return ($links);
    }

    public function getRecentChanges($timestamp) {
        if(strlen($timestamp) != 10)
            return new IJR_Error(20, 'The provided value is not a valid timestamp');

        require_once(DOKU_INC.'inc/changelog.php');
        require_once(DOKU_INC.'inc/pageutils.php');

        $recents = getRecentsSince($timestamp);

        $changes = array();

        foreach ($recents as $recent) {
            $change = array();
            $change['name']         = $recent['id'];
            $change['lastModified'] = new IJR_Date($recent['date']);
            $change['author']       = $recent['user'];
            $change['version']      = $recent['date'];
            $change['perms']        = $recent['perms'];
            $change['size']         = @filesize(wikiFN($recent['id']));
            array_push($changes, $change);
        }

        if (!empty($changes)) {
            return $changes;
        } else {
            // in case we still have nothing at this point
            return new IJR_Error(30, 'There are no changes in the specified timeframe');
        }
    }

    public function getRecentMediaChanges($timestamp) {
        if(strlen($timestamp) != 10)
            return new IJR_Error(20, 'The provided value is not a valid timestamp');

        require_once(DOKU_INC.'inc/changelog.php');
        require_once(DOKU_INC.'inc/pageutils.php');

        $recents = getRecentsSince($timestamp, null, '', RECENTS_MEDIA_CHANGES);

        $changes = array();

        foreach ($recents as $recent) {
            $change = array();
            $change['name']         = $recent['id'];
            $change['lastModified'] = new IJR_Date($recent['date']);
            $change['author']       = $recent['user'];
            $change['version']      = $recent['date'];
            $change['perms']        = $recent['perms'];
            $change['size']         = @filesize(mediaFN($recent['id']));
            array_push($changes, $change);
        }

        if (!empty($changes)) {
            return $changes;
        } else {
            // in case we still have nothing at this point
            return new IJR_Error(30, 'There are no changes in the specified timeframe');
        }
    }

    public function pageVersions($id, $first,$num=null) {
        global $conf;

        $versions = array();

        if(empty($id))
            return new IJR_Error(1, 'Empty page ID');

        require_once(DOKU_INC.'inc/changelog.php');

        if(is_null($num)){
            $num = $conf['recent'];
        }

        $revisions = getRevisions($id, $first, $num+1);

        if(count($revisions)==0 && $first!=0) {
            $first=0;
            $revisions = getRevisions($id, $first, $num+1);
        }

        if(count($revisions)>0 && $first==0) {
            array_unshift($revisions, '');  // include current revision
            array_pop($revisions);          // remove extra log entry
        }

        $hasNext = false;
        if(count($revisions)>$num) {
            $hasNext = true;
            array_pop($revisions); // remove extra log entry
        }

        if(!empty($revisions)) {
            foreach($revisions as $rev) {
                $file = wikiFN($id,$rev);
                $time = @filemtime($file);
                // we check if the page actually exists, if this is not the
                // case this can lead to less pages being returned than
                // specified via $conf['recent']
                if($time){
                    $info = getRevisionInfo($id, $time, 1024);
                    if(!empty($info)) {
                        $data['user'] = $info['user'];
                        $data['ip']   = $info['ip'];
                        $data['type'] = $info['type'];
                        $data['sum']  = $info['sum'];
                        $data['modified'] = new IJR_Date($info['date']);
                        $data['version'] = $info['date'];
                        array_push($versions, $data);
                    }
                }
            }
            return $versions;
        } else {
            return array();
        }
    }

    public function setLocks($set){
        $locked     = array();
        $lockfail   = array();
        $unlocked   = array();
        $unlockfail = array();

        foreach($set['lock'] as $id){
            if(checklock($id)){
                $lockfail[] = $id;
            }else{
                lock($id);
                $locked[] = $id;
            }
        }

        foreach($set['unlock'] as $id){
            if(unlock($id)){
                $unlocked[] = $id;
            }else{
                $unlockfail[] = $id;
            }
        }

        return array(
            'locked'     => $locked,
            'lockfail'   => $lockfail,
            'unlocked'   => $unlocked,
            'unlockfail' => $unlockfail,
        );
    }

    public function login($user,$pass){
        global $conf;
        global $auth;
        if(!$conf['useacl'])
        {
            return 0;
        }
        if(!$auth)
        {
            return 0;
        }
        if($auth->canDo('external'))
        {
            return $auth->trustExternal($user,$pass,false);
        }
        else
        {
            return auth_login($user,$pass,false,true);
        }
    }
}

$server = new dokuwiki_jsonrpc_server();