require 'net/https' require 'uri' require 'nokogiri' require 'net/dav/item' require 'base64' require 'digest/md5' begin require 'curb' rescue LoadError end module Net #:nodoc: # Implement a WebDAV client class DAV MAX_REDIRECTS = 10 class NetHttpHandler attr_writer :user, :pass attr_accessor :disable_basic_auth def verify_callback=(callback) @http.verify_callback = callback end def verify_server=(value) @http.verify_mode = value ? OpenSSL::SSL::VERIFY_PEER : OpenSSL::SSL::VERIFY_NONE end def initialize(uri) @disable_basic_auth = false @uri = uri case @uri.scheme when "http" @http = Net::HTTP.new(@uri.host, @uri.port) when "https" @http = Net::HTTP.new(@uri.host, @uri.port) @http.use_ssl = true self.verify_server = true else raise "unknown uri scheme" end end def start(&block) @http.start(&block) end def read_timeout @http.read_timeout end def read_timeout=(sec) @http.read_timeout = sec end def open_timeout @http.read_timeout end def open_timeout=(sec) @http.read_timeout = sec end def request_sending_stream(verb, path, stream, length, headers) req = case verb when :put Net::HTTP::Put.new(path) else raise "unkown sending_stream verb #{verb}" end req.body_stream = stream req.content_length = length headers.each_pair { |key, value| req[key] = value } if headers req.content_type = 'text/xml; charset="utf-8"' res = handle_request(req, headers) res end def request_sending_body(verb, path, body, headers) req = case verb when :put Net::HTTP::Put.new(path) else raise "unkown sending_body verb #{verb}" end req.body = body headers.each_pair { |key, value| req[key] = value } if headers req.content_type = 'text/xml; charset="utf-8"' res = handle_request(req, headers) res end def request_returning_body(verb, path, headers, &block) req = case verb when :get Net::HTTP::Get.new(path) else raise "unkown returning_body verb #{verb}" end headers.each_pair { |key, value| req[key] = value } if headers res = handle_request(req, headers, MAX_REDIRECTS, &block) res.body end def request(verb, path, body, headers) req = case verb when :propfind Net::HTTP::Propfind.new(path) when :mkcol Net::HTTP::Mkcol.new(path) else raise "unkown verb #{verb}" end req.body = body headers.each_pair { |key, value| req[key] = value } if headers req.content_type = 'text/xml; charset="utf-8"' res = handle_request(req, headers) res end def handle_request(req, headers, limit = MAX_REDIRECTS, &block) # You should choose better exception. raise ArgumentError, 'HTTP redirect too deep' if limit == 0 response = nil if block @http.request(req) {|res| # Only start returning a body if we will not retry res.read_body nil, &block if !res.is_a?(Net::HTTPUnauthorized) && !res.is_a?(Net::HTTPRedirection) response = res } else response = @http.request(req) end case response when Net::HTTPSuccess then return response when Net::HTTPUnauthorized then response.error! unless @user response.error! if req['authorization'] new_req = clone_req(req.path, req, headers) if response['www-authenticate'] =~ /^Basic/ if disable_basic_auth raise "server requested basic auth, but that is disabled" end new_req.basic_auth @user, @pass else digest_auth(new_req, @user, @pass, response) end return handle_request(new_req, headers, limit - 1, &block) when Net::HTTPRedirection then location = URI.parse(response['location']) if (@uri.scheme != location.scheme || @uri.host != location.host || @uri.port != location.port) raise ArgumentError, "cannot redirect to a different host #{@uri} => #{location}" end new_req = clone_req(location.path, req, headers) return handle_request(new_req, headers, limit - 1, &block) else response.error! end end def clone_req(path, req, headers) new_req = req.class.new(path) new_req.body = req.body new_req.body_stream = req.body_stream headers.each_pair { |key, value| new_req[key] = value } if headers return new_req end CNONCE = Digest::MD5.hexdigest("%x" % (Time.now.to_i + rand(65535))).slice(0, 8) def digest_auth(request, user, password, response) # based on http://segment7.net/projects/ruby/snippets/digest_auth.rb @nonce_count = 0 if @nonce_count.nil? @nonce_count += 1 raise "bad www-authenticate header" unless (response['www-authenticate'] =~ /^(\w+) (.*)/) params = {} $2.gsub(/(\w+)="(.*?)"/) { params[$1] = $2 } a_1 = "#{user}:#{params['realm']}:#{password}" a_2 = "#{request.method}:#{request.path}" request_digest = '' request_digest << Digest::MD5.hexdigest(a_1) request_digest << ':' << params['nonce'] request_digest << ':' << ('%08x' % @nonce_count) request_digest << ':' << CNONCE request_digest << ':' << params['qop'] request_digest << ':' << Digest::MD5.hexdigest(a_2) header = [] header << "Digest username=\"#{user}\"" header << "realm=\"#{params['realm']}\"" header << "nonce=\"#{params['nonce']}\"" header << "uri=\"#{request.path}\"" header << "cnonce=\"#{CNONCE}\"" header << "nc=#{'%08x' % @nonce_count}" header << "qop=#{params['qop']}" header << "response=\"#{Digest::MD5.hexdigest(request_digest)}\"" header << "algorithm=\"MD5\"" header = header.join(', ') request['Authorization'] = header end end class CurlHandler < NetHttpHandler def verify_callback=(callback) super curl = make_curl $stderr.puts "verify_callback not implemented in Curl::Easy" end def verify_server=(value) super curl = make_curl curl.ssl_verify_peer = value curl.ssl_verify_host = value end def make_curl unless @curl @curl = Curl::Easy.new @curl.timeout = @http.read_timeout @curl.follow_location = true @curl.max_redirects = MAX_REDIRECTS if disable_basic_auth @curl.http_auth_types = Curl::CURLAUTH_DIGEST end end @curl end def request_returning_body(verb, path, headers) raise "unkown returning_body verb #{verb}" unless verb == :get url = @uri.merge(path) curl = make_curl curl.url = url.to_s headers.each_pair { |key, value| curl.headers[key] = value } if headers if (@user) curl.userpwd = "#{@user}:#{@pass}" else curl.userpwd = nil end res = nil if block_given? curl.on_body do |frag| yield frag frag.length end end curl.perform unless curl.response_code >= 200 && curl.response_code < 300 headers = curl.header_str.split(/\r?\n/) raise Exception.new("Curl response #{headers[0]}") end curl.body_str end end # Disable basic auth - to protect passwords from going in the clear # through a man-in-the-middle attack. def disable_basic_auth? @handler.disable_basic_auth end def disable_basic_auth=(value) @handler.disable_basic_auth = value end # Seconds to wait until reading one block (by one system call). # If the DAV object cannot read a block in this many seconds, # it raises a TimeoutError exception. # def read_timeout @handler.read_timeout end def read_timeout=(sec) @handler.read_timeout = sec end # Seconds to wait until connection is opened. # If the DAV object cannot open a connection in this many seconds, # it raises a TimeoutError exception. # def open_timeout @handler.read_timeout end def open_timeout=(sec) @handler.read_timeout = sec end # Creates a new Net::DAV object and opens the connection # to the host. Yields the object to the block. # # Example: # # res = Net::DAV.start(url) do |dav| # dav.find(url.path) do |item| # puts "#{item.uri} is size #{item.size}" # end # end def self.start(uri, options = nil, &block) # :yield: dav new(uri, options).start(&block) end # Creates a new Net::DAV object for the specified host # The path part of the URI is used to handle relative URLs # in subsequent requests. # You can pass :curl => false if you want to disable use # of the curb (libcurl) gem if present for acceleration def initialize(uri, options = nil) @have_curl = Curl rescue nil if options && options.has_key?(:curl) && !options[:curl] @have_curl = false end @uri = uri @uri = URI.parse(@uri) if @uri.is_a? String @handler = @have_curl ? CurlHandler.new(@uri) : NetHttpHandler.new(@uri) end # Opens the connection to the host. Yields self to the block. # # Example: # # res = Net::DAV.new(url).start do |dav| # dav.find(url.path) do |item| # puts item.inspect # end # end def start(&block) # :yield: dav @handler.start do return yield(self) end end # Set credentials for basic authentication def credentials(user, pass) @handler.user = user @handler.pass = pass end def propfind(path) #:nodoc: headers = {'Depth' => '1'} body = '' res = @handler.request(:propfind, path, body, headers) Nokogiri::XML.parse(res.body) end # Find files and directories, yields Net::DAV::Item # # Examples: # # res = Net::DAV.start(url) do |dav| # dav.find(url.path, :recursive => true) do |item| # puts "#{item.type} #{item.uri}" # puts item.content # end # end def find(path, options = {}) namespaces = {'x' => "DAV:"} doc = propfind(path) path.sub!(/\/$/, '') doc./('.//x:response', namespaces).each do |item| uri = @uri.merge(item.xpath("x:href", namespaces).inner_text) size = item.%(".//x:getcontentlength", namespaces).inner_text rescue nil type = item.%(".//x:collection", namespaces) ? :directory : :file res = Item.new(self, uri, type, size) if type == :file yield res elsif uri.path == path || uri.path == path + "/" # This is the top-level dir, skip it elsif options[:recursive] && type == :directory yield res # This is a subdir, recurse find(uri.path, options) do |sub_res| yield sub_res end else yield res end end end # Change the base URL for use in handling relative paths def cd(url) new_uri = @uri.merge(url) if new_uri.host != @uri.host || new_uri.port != @uri.port || new_uri.scheme != @uri.scheme raise Exception , "uri must have same scheme, host and port" end @uri = new_uri end # Get the content of a resource as a string # # If called with a block, yields each fragment of the # entity body in turn as a string as it is read from # the socket. Note that in this case, the returned response # object will *not* contain a (meaningful) body. def get(path, &block) body = @handler.request_returning_body(:get, path, nil, &block) body end # Stores the content of a stream to a URL # # Example: # File.open(file, "r") do |stream| # dav.put(url.path, stream, File.size(file)) # end def put(path, stream, length) res = @handler.request_sending_stream(:put, path, stream, length, nil) res.body end # Stores the content of a string to a URL # # Example: # dav.put(url.path, "hello world") # def put_string(path, str) res = @handler.request_sending_body(:put, path, str, nil) res.body end # Makes a new directory (collection) def mkdir(path) res = @handler.request(:mkcol, path, nil, nil) res.body end def verify_callback=(callback) @handler.verify_callback = callback end def verify_server=(value) @handler.verify_server = value end end end