mirror of
https://github.com/kd2org/picodav.git
synced 2024-11-16 08:38:27 +01:00
Always ask for auth when anonymous read and write is disabled
FossilOrigin-Name: e977a431246b2cbe13d6795c6201f24cfe770113d7a1f223b80400090e4d74e3
This commit is contained in:
bohwaz
parent
971424b0cf
commit
e47b150805
2 changed files with 46 additions and 14 deletions
26
index.php
26
index.php
|
|
@ -1784,14 +1784,30 @@ namespace PicoDAV
|
|||
return $out;
|
||||
}
|
||||
|
||||
function error(WebDAV_Exception $e)
|
||||
public function route(?string $uri = null): bool
|
||||
{
|
||||
if ($e->getCode() == 403 && !$this->storage->auth() && count($this->storage->users)) {
|
||||
$user = $_SERVER['PHP_AUTH_USER'] ?? null;
|
||||
if (!ANONYMOUS_WRITE && !ANONYMOUS_READ) {
|
||||
$this->requireAuth();
|
||||
return true;
|
||||
}
|
||||
|
||||
return parent::route($uri);
|
||||
}
|
||||
|
||||
protected function requireAuth(): void
|
||||
{
|
||||
if ($this->storage->auth()) {
|
||||
return;
|
||||
}
|
||||
|
||||
http_response_code(401);
|
||||
header('WWW-Authenticate: Basic realm="Please login"');
|
||||
echo '<h2>Error 401</h2><h1>You need to login to access this.</h1>';
|
||||
}
|
||||
|
||||
public function error(WebDAV_Exception $e)
|
||||
{
|
||||
if ($e->getCode() == 403 && !$this->storage->auth() && count($this->storage->users)) {
|
||||
return;
|
||||
}
|
||||
|
||||
|
|
@ -1851,11 +1867,11 @@ RewriteRule ^.*$ /index.php [END]
|
|||
$fp = fopen(__FILE__, 'r');
|
||||
|
||||
if ($relative_uri == '.webdav/webdav.js') {
|
||||
fseek($fp, 49803, SEEK_SET);
|
||||
fseek($fp, 50046, SEEK_SET);
|
||||
echo fread($fp, 27769);
|
||||
}
|
||||
else {
|
||||
fseek($fp, 49803 + 27769, SEEK_SET);
|
||||
fseek($fp, 50046 + 27769, SEEK_SET);
|
||||
echo fread($fp, 6988);
|
||||
}
|
||||
|
||||
|
|
|
|||
22
server.php
22
server.php
|
|
@ -508,14 +508,30 @@ namespace PicoDAV
|
|||
return $out;
|
||||
}
|
||||
|
||||
function error(WebDAV_Exception $e)
|
||||
public function route(?string $uri = null): bool
|
||||
{
|
||||
if ($e->getCode() == 403 && !$this->storage->auth() && count($this->storage->users)) {
|
||||
$user = $_SERVER['PHP_AUTH_USER'] ?? null;
|
||||
if (!ANONYMOUS_WRITE && !ANONYMOUS_READ) {
|
||||
$this->requireAuth();
|
||||
return true;
|
||||
}
|
||||
|
||||
return parent::route($uri);
|
||||
}
|
||||
|
||||
protected function requireAuth(): void
|
||||
{
|
||||
if ($this->storage->auth()) {
|
||||
return;
|
||||
}
|
||||
|
||||
http_response_code(401);
|
||||
header('WWW-Authenticate: Basic realm="Please login"');
|
||||
echo '<h2>Error 401</h2><h1>You need to login to access this.</h1>';
|
||||
}
|
||||
|
||||
public function error(WebDAV_Exception $e)
|
||||
{
|
||||
if ($e->getCode() == 403 && !$this->storage->auth() && count($this->storage->users)) {
|
||||
return;
|
||||
}
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue