* @author Gina Haeussge * @author Michael Klier * @author Michael Hamann * @author Magnus Wolf */ if(!defined('DOKU_INC')) define('DOKU_INC',dirname(__FILE__).'/../../../'); // fix when 'config = $conf['plugin']['jsonrpc']; if($this->config['allow_all'] == 1) { return true; } $user = $_SERVER['REMOTE_USER']; $allowed_users = explode(';',$this->config['allowed']); $allowed_users = array_map('trim', $allowed_users); $allowed_users = array_unique($allowed_users); if(in_array($user,$allowed_users)) { return true; } return false; } function addCallback($method, $callback, $args, $help, $public=false){ if($public) $this->public_methods[] = $method; return parent::addCallback($method, $callback, $args, $help); } function call($methodname, $args){ if(!in_array($methodname,$this->public_methods) && !$this->checkAuth()){ return new IJR_Error(-32603, 'server error. not authorized to call method "'.$methodname.'".'); } return parent::call($methodname, $args); } function dokuwiki_jsonrpc_server(){ $callbackDef = new IJR_CallbackDefines(); $this->callbackMethods = $callbackDef->getWikiMethods(); $this->IJR_IntrospectionServer(); foreach($this->callbackMethods as $key) { $this->addCallback($key['method'], $key['callback'], $key['args'], $key['help'], $key['public']); } trigger_event('JSONRPC_CALLBACK_REGISTER', $this); $this->serve(); } public function rawPage($id,$rev=''){ if(auth_quickaclcheck($id) < AUTH_READ){ return new IJR_Error(1, 'You are not allowed to read this page'); } $text = rawWiki($id,$rev); if(!$text) { $data = array($id); return trigger_event('HTML_PAGE_FROMTEMPLATE',$data,'pageTemplate',true); } else { return $text; } } public function getTitle() { global $conf; return $conf['title']; } public function appendPage($page, $text, $opt) { $page_cont = $this->rawPage($page); $page_cont = $page_cont."\n".$text; return saveWikiText($page, $tmp, $opt); } public function getAttachment($id){ $id = cleanID($id); if (auth_quickaclcheck(getNS($id).':*') < AUTH_READ) return new IJR_Error(1, 'You are not allowed to read this file'); $file = mediaFN($id); if (!@ file_exists($file)) return new IJR_Error(1, 'The requested file does not exist'); $data = io_readFile($file, false); $base64 = base64_encode($data); return $base64; } public function getAttachmentInfo($id){ $id = cleanID($id); $info = array( 'lastModified' => 0, 'size' => 0, ); $file = mediaFN($id); if ((auth_quickaclcheck(getNS($id).':*') >= AUTH_READ) && file_exists($file)){ $info['lastModified'] = new IJR_Date(filemtime($file)); $info['size'] = filesize($file); } return $info; } public function htmlPage($id,$rev=''){ if(auth_quickaclcheck($id) < AUTH_READ){ return new IJR_Error(1, 'You are not allowed to read this page'); } return p_wiki_xhtml($id,$rev,false); } public function htmlPagePart($id,$rev='',$maxHeader=3,$maxItems=3){ if(auth_quickaclcheck($id) < AUTH_READ){ return new IJR_Error(1, 'You are not allowed to read this page'); } $title = ''; $cfg = array('maxHeader'=>$maxHeader,'maxItems'=>$maxItems); return p_wiki_xhtml_summary_ext($id,$title,$rev,true,$cfg); } public function listPages(){ global $conf; $list = array(); $pages = file($conf['indexdir'] . '/page.idx'); $pages = array_filter($pages, 'isVisiblePage'); foreach(array_keys($pages) as $idx) { if(page_exists($pages[$idx])) { $perm = auth_quickaclcheck($pages[$idx]); if($perm >= AUTH_READ) { $page = array(); $page['id'] = trim($pages[$idx]); $page['perms'] = $perm; $page['size'] = @filesize(wikiFN($pages[$idx])); $page['lastModified'] = new IJR_Date(@filemtime(wikiFN($pages[$idx]))); $list[] = $page; } } } return $list; } public function readNamespace($ns,$opts){ global $conf; if(!is_array($opts)) $opts=array(); $ns = cleanID($ns); $dir = utf8_encodeFN(str_replace(':', '/', $ns)); $data = array(); require_once(DOKU_INC.'inc/search.php'); $opts['skipacl'] = 0; // no ACL skipping for XMLRPC search($data, $conf['datadir'], 'search_allpages', $opts, $dir); return $data; } public function listAttachments($ns, $options = array()) { global $conf; global $lang; $ns = cleanID($ns); if (!is_array($options)) $options = array(); $options['skipacl'] = 0; // no ACL skipping for XMLRPC if(auth_quickaclcheck($ns.':*') >= AUTH_READ) { $dir = utf8_encodeFN(str_replace(':', '/', $ns)); $data = array(); require_once(DOKU_INC.'inc/search.php'); search($data, $conf['mediadir'], 'search_media', $options, $dir); $len = count($data); if(!$len) return array(); for($i=0; $i<$len; $i++) { unset($data[$i]['meta']); $data[$i]['lastModified'] = new IJR_Date($data[$i]['mtime']); } return $data; } else { return new IJR_Error(1, 'You are not allowed to list media files.'); } } public function search($searchString) { require_once(DOKU_INC.'inc/html.php'); require_once(DOKU_INC.'inc/search.php'); require_once(DOKU_INC.'inc/fulltext.php'); require_once(DOKU_INC.'inc/pageutils.php'); $data = array(); $result = array(); $searchStr = cleanID($searchString); $data = ft_pageLookup($searchStr); foreach($data as $id) { $ns = getNS($id); if($ns){ $name = shorten(noNS($id), ' ('.$ns.')',30); }else{ $name = $id; } $result[] = $id; } $data = ft_pageSearch($searchString, $regex); if(count($data)) { foreach($data as $id => $cnt) { $result[] = $id; } } return $result; } public function listBackLinks($id){ require_once(DOKU_INC.'inc/fulltext.php'); return ft_backlinks($id); } public function pageInfo($id,$rev=''){ if(auth_quickaclcheck($id) < AUTH_READ){ return new IJR_Error(1, 'You are not allowed to read this page'); } $file = wikiFN($id,$rev); $time = @filemtime($file); if(!$time){ return new IJR_Error(10, 'The requested page does not exist'); } $info = getRevisionInfo($id, $time, 1024); $data = array( 'name' => $id, 'lastModified' => new IJR_Date($time), 'author' => (($info['user']) ? $info['user'] : $info['ip']), 'version' => $time ); return ($data); } public function putPage($id, $text, $params) { global $TEXT; global $lang; global $conf; $id = cleanID($id); $TEXT = cleanText($text); $sum = $params['sum']; $minor = $params['minor']; if(empty($id)) return new IJR_Error(1, 'Empty page ID'); if(!page_exists($id) && trim($TEXT) == '' ) { return new IJR_ERROR(1, 'Refusing to write an empty new wiki page'); } if(auth_quickaclcheck($id) < AUTH_EDIT) return new IJR_Error(1, 'You are not allowed to edit this page'); if(checklock($id)) return new IJR_Error(1, 'The page is currently locked'); if(checkwordblock()) return new IJR_Error(1, 'Positive wordblock check'); if(!page_exists($id) && empty($sum)) { $sum = $lang['created']; } if(page_exists($id) && empty($TEXT) && empty($sum)) { $sum = $lang['deleted']; } lock($id); saveWikiText($id,$TEXT,$sum,$minor); unlock($id); // run the indexer if page wasn't indexed yet if(!@file_exists(metaFN($id, '.indexed'))) { // try to aquire a lock $lock = $conf['lockdir'].'/_indexer.lock'; while(!@mkdir($lock,$conf['dmode'])){ usleep(50); if(time()-@filemtime($lock) > 60*5){ // looks like a stale lock - remove it @rmdir($lock); }else{ return false; } } if(isset($conf['dperm']) && $conf['dperm']) chmod($lock, $conf['dperm']); require_once(DOKU_INC.'inc/indexer.php'); if(!defined('INDEXER_VERSION')){ define('INDEXER_VERSION', 2); } // do the work idx_addPage($id); io_saveFile(metaFN($id,'.indexed'),INDEXER_VERSION); @rmdir($lock); } return 0; } public function putAttachment($id, $file, $params) { global $conf; global $lang; $auth = auth_quickaclcheck(getNS($id).':*'); if($auth >= AUTH_UPLOAD) { if(!isset($id)) { return new IJR_ERROR(1, 'Filename not given.'); } $ftmp = $conf['tmpdir'] . '/' . $id; // save temporary file @unlink($ftmp); $buff = base64_decode($file); io_saveFile($ftmp, $buff); // get filename list($iext, $imime,$dl) = mimetype($id); $id = cleanID($id); $fn = mediaFN($id); // get filetype regexp $types = array_keys(getMimeTypes()); $types = array_map(create_function('$q','return preg_quote($q,"/");'),$types); $regex = join('|',$types); // because a temp file was created already if(preg_match('/\.('.$regex.')$/i',$fn)) { //check for overwrite $overwrite = @file_exists($fn); if($overwrite && (!$params['ow'] || $auth < AUTH_DELETE)) { return new IJR_ERROR(1, $lang['uploadexist'].'1'); } // check for valid content @require_once(DOKU_INC.'inc/media.php'); $ok = media_contentcheck($ftmp, $imime); if($ok == -1) { return new IJR_ERROR(1, sprintf($lang['uploadexist'].'2', ".$iext")); } elseif($ok == -2) { return new IJR_ERROR(1, $lang['uploadspam']); } elseif($ok == -3) { return new IJR_ERROR(1, $lang['uploadxss']); } // prepare event data $data[0] = $ftmp; $data[1] = $fn; $data[2] = $id; $data[3] = $imime; $data[4] = $overwrite; // trigger event require_once(DOKU_INC.'inc/events.php'); return trigger_event('MEDIA_UPLOAD_FINISH', $data, array($this, '_media_upload_action'), true); } else { return new IJR_ERROR(1, $lang['uploadwrong']); } } else { return new IJR_ERROR(1, "You don't have permissions to upload files."); } } public function deleteAttachment($id){ $auth = auth_quickaclcheck(getNS($id).':*'); if($auth < AUTH_DELETE) return new IJR_ERROR(1, "You don't have permissions to delete files."); global $conf; global $lang; // check for references if needed $mediareferences = array(); if($conf['refcheck']){ require_once(DOKU_INC.'inc/fulltext.php'); $mediareferences = ft_mediause($id,$conf['refshow']); } if(!count($mediareferences)){ $file = mediaFN($id); if(@unlink($file)){ require_once(DOKU_INC.'inc/changelog.php'); addMediaLogEntry(time(), $id, DOKU_CHANGE_TYPE_DELETE); io_sweepNS($id,'mediadir'); return 0; } //something went wrong return new IJR_ERROR(1, 'Could not delete file'); } else { return new IJR_ERROR(1, 'File is still referenced'); } } public function _media_upload_action($data) { global $conf; if(is_array($data) && count($data)===5) { io_createNamespace($data[2], 'media'); if(rename($data[0], $data[1])) { chmod($data[1], $conf['fmode']); media_notify($data[2], $data[1], $data[3]); // add a log entry to the media changelog require_once(DOKU_INC.'inc/changelog.php'); if ($data[4]) { addMediaLogEntry(time(), $data[2], DOKU_CHANGE_TYPE_EDIT); } else { addMediaLogEntry(time(), $data[2], DOKU_CHANGE_TYPE_CREATE); } return $data[2]; } else { return new IJR_ERROR(1, 'Upload failed.'); } } else { return new IJR_ERROR(1, 'Upload failed.'); } } public function aclCheck($id) { return auth_quickaclcheck($id); } public function listLinks($id) { if(auth_quickaclcheck($id) < AUTH_READ){ return new IJR_Error(1, 'You are not allowed to read this page'); } $links = array(); // resolve page instructions $ins = p_cached_instructions(wikiFN(cleanID($id))); // instantiate new Renderer - needed for interwiki links include(DOKU_INC.'inc/parser/xhtml.php'); $Renderer = new Doku_Renderer_xhtml(); $Renderer->interwiki = getInterwiki(); // parse parse instructions foreach($ins as $in) { $link = array(); switch($in[0]) { case 'internallink': $link['type'] = 'local'; $link['page'] = $in[1][0]; $link['href'] = wl($in[1][0]); array_push($links,$link); break; case 'externallink': $link['type'] = 'extern'; $link['page'] = $in[1][0]; $link['href'] = $in[1][0]; array_push($links,$link); break; case 'interwikilink': $url = $Renderer->_resolveInterWiki($in[1][2],$in[1][3]); $link['type'] = 'extern'; $link['page'] = $url; $link['href'] = $url; array_push($links,$link); break; } } return ($links); } public function getRecentChanges($timestamp) { if(strlen($timestamp) != 10) return new IJR_Error(20, 'The provided value is not a valid timestamp'); require_once(DOKU_INC.'inc/changelog.php'); require_once(DOKU_INC.'inc/pageutils.php'); $recents = getRecentsSince($timestamp); $changes = array(); foreach ($recents as $recent) { $change = array(); $change['name'] = $recent['id']; $change['lastModified'] = new IJR_Date($recent['date']); $change['author'] = $recent['user']; $change['version'] = $recent['date']; $change['perms'] = $recent['perms']; $change['size'] = @filesize(wikiFN($recent['id'])); array_push($changes, $change); } if (!empty($changes)) { return $changes; } else { // in case we still have nothing at this point return new IJR_Error(30, 'There are no changes in the specified timeframe'); } } public function getRecentMediaChanges($timestamp) { if(strlen($timestamp) != 10) return new IJR_Error(20, 'The provided value is not a valid timestamp'); require_once(DOKU_INC.'inc/changelog.php'); require_once(DOKU_INC.'inc/pageutils.php'); $recents = getRecentsSince($timestamp, null, '', RECENTS_MEDIA_CHANGES); $changes = array(); foreach ($recents as $recent) { $change = array(); $change['name'] = $recent['id']; $change['lastModified'] = new IJR_Date($recent['date']); $change['author'] = $recent['user']; $change['version'] = $recent['date']; $change['perms'] = $recent['perms']; $change['size'] = @filesize(mediaFN($recent['id'])); array_push($changes, $change); } if (!empty($changes)) { return $changes; } else { // in case we still have nothing at this point return new IJR_Error(30, 'There are no changes in the specified timeframe'); } } public function pageVersions($id, $first,$num=null) { global $conf; $versions = array(); if(empty($id)) return new IJR_Error(1, 'Empty page ID'); require_once(DOKU_INC.'inc/changelog.php'); if(is_null($num)){ $num = $conf['recent']; } $revisions = getRevisions($id, $first, $num+1); if(count($revisions)==0 && $first!=0) { $first=0; $revisions = getRevisions($id, $first, $num+1); } if(count($revisions)>0 && $first==0) { array_unshift($revisions, ''); // include current revision array_pop($revisions); // remove extra log entry } $hasNext = false; if(count($revisions)>$num) { $hasNext = true; array_pop($revisions); // remove extra log entry } if(!empty($revisions)) { foreach($revisions as $rev) { $file = wikiFN($id,$rev); $time = @filemtime($file); // we check if the page actually exists, if this is not the // case this can lead to less pages being returned than // specified via $conf['recent'] if($time){ $info = getRevisionInfo($id, $time, 1024); if(!empty($info)) { $data['user'] = $info['user']; $data['ip'] = $info['ip']; $data['type'] = $info['type']; $data['sum'] = $info['sum']; $data['modified'] = new IJR_Date($info['date']); $data['version'] = $info['date']; array_push($versions, $data); } } } return $versions; } else { return array(); } } public function setLocks($set){ $locked = array(); $lockfail = array(); $unlocked = array(); $unlockfail = array(); foreach($set['lock'] as $id){ if(checklock($id)){ $lockfail[] = $id; }else{ lock($id); $locked[] = $id; } } foreach($set['unlock'] as $id){ if(unlock($id)){ $unlocked[] = $id; }else{ $unlockfail[] = $id; } } return array( 'locked' => $locked, 'lockfail' => $lockfail, 'unlocked' => $unlocked, 'unlockfail' => $unlockfail, ); } public function login($user,$pass){ global $conf; global $auth; if(!$conf['useacl']) { return 0; } if(!$auth) { return 0; } if($auth->canDo('external')) { return $auth->trustExternal($user,$pass,false); } else { return auth_login($user,$pass,false,true); } } } $server = new dokuwiki_jsonrpc_server();