mirror of
https://github.com/nextcloud/server.git
synced 2026-06-11 09:42:09 -04:00
c1fa6401a3
* Exclude DAV CORS handling when no Origin specified
This will exclude non-browser clients from CORS handling.
Fixes some clients like davfs which break when CORS is enabled.
* fix: CORS on WebDAV is not working
WebDAV is not working at all when used by on browser Javascript because the CORS headers
are only present in the OPTION request, but not in the subsequent WebDAV methods.
* This behavior is caused by a erroneous json_decode call while retriving the user's domains whitelist.
It return an object, so the is_array always fails and no header are sent.
* Add Access-Control-Expose-Headers - to allow clients to access certain headers
* Adding many headers as allowed headers + add capability to read additional allowed headers from config.php
682 lines
21 KiB
PHP
682 lines
21 KiB
PHP
<?php
|
|
/**
|
|
* @copyright Copyright (c) 2016, ownCloud, Inc.
|
|
*
|
|
* @author Arthur Schiwon <blizzz@arthur-schiwon.de>
|
|
* @author Bart Visscher <bartv@thisnet.nl>
|
|
* @author Björn Schießle <bjoern@schiessle.org>
|
|
* @author Christoph Wurst <christoph@winzerhof-wurst.at>
|
|
* @author Frank Karlitschek <frank@karlitschek.de>
|
|
* @author Georg Ehrke <oc.list@georgehrke.com>
|
|
* @author Individual IT Services <info@individual-it.net>
|
|
* @author J0WI <J0WI@users.noreply.github.com>
|
|
* @author Jens-Christian Fischer <jens-christian.fischer@switch.ch>
|
|
* @author Joas Schilling <coding@schilljs.com>
|
|
* @author Jonas Meurer <jonas@freesources.org>
|
|
* @author Julius Härtl <jus@bitgrid.net>
|
|
* @author Lukas Reschke <lukas@statuscode.ch>
|
|
* @author Michael Gapczynski <GapczynskiM@gmail.com>
|
|
* @author Morris Jobke <hey@morrisjobke.de>
|
|
* @author Pellaeon Lin <nfsmwlin@gmail.com>
|
|
* @author Randolph Carter <RandolphCarter@fantasymail.de>
|
|
* @author Robin Appelman <robin@icewind.nl>
|
|
* @author Robin McCorkell <robin@mccorkell.me.uk>
|
|
* @author Roeland Jago Douma <roeland@famdouma.nl>
|
|
* @author Thomas Müller <thomas.mueller@tmit.eu>
|
|
* @author Victor Dubiniuk <dubiniuk@owncloud.com>
|
|
* @author Vincent Petry <vincent@nextcloud.com>
|
|
*
|
|
* @license AGPL-3.0
|
|
*
|
|
* This code is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License, version 3,
|
|
* as published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License, version 3,
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>
|
|
*
|
|
*/
|
|
// use OCP namespace for all classes that are considered public.
|
|
// This means that they should be used by apps instead of the internal ownCloud classes
|
|
|
|
namespace OCP;
|
|
|
|
use OC\AppScriptDependency;
|
|
use OC\AppScriptSort;
|
|
use bantu\IniGetWrapper\IniGetWrapper;
|
|
use OCP\Share\IManager;
|
|
use Psr\Container\ContainerExceptionInterface;
|
|
|
|
/**
|
|
* This class provides different helper functions to make the life of a developer easier
|
|
*
|
|
* @since 4.0.0
|
|
*/
|
|
class Util {
|
|
private static ?IManager $shareManager = null;
|
|
|
|
private static array $scriptsInit = [];
|
|
private static array $scripts = [];
|
|
private static array $scriptDeps = [];
|
|
|
|
/**
|
|
* get the current installed version of Nextcloud
|
|
* @return array
|
|
* @since 4.0.0
|
|
*/
|
|
public static function getVersion() {
|
|
return \OC_Util::getVersion();
|
|
}
|
|
|
|
/**
|
|
* @since 17.0.0
|
|
*/
|
|
public static function hasExtendedSupport(): bool {
|
|
try {
|
|
/** @var \OCP\Support\Subscription\IRegistry */
|
|
$subscriptionRegistry = \OCP\Server::get(\OCP\Support\Subscription\IRegistry::class);
|
|
return $subscriptionRegistry->delegateHasExtendedSupport();
|
|
} catch (ContainerExceptionInterface $e) {
|
|
}
|
|
return \OC::$server->getConfig()->getSystemValueBool('extendedSupport', false);
|
|
}
|
|
|
|
/**
|
|
* Set current update channel
|
|
* @param string $channel
|
|
* @since 8.1.0
|
|
*/
|
|
public static function setChannel($channel) {
|
|
\OC::$server->getConfig()->setSystemValue('updater.release.channel', $channel);
|
|
}
|
|
|
|
/**
|
|
* Get current update channel
|
|
* @return string
|
|
* @since 8.1.0
|
|
*/
|
|
public static function getChannel() {
|
|
return \OC_Util::getChannel();
|
|
}
|
|
|
|
/**
|
|
* write a message in the log
|
|
* @param string $app
|
|
* @param string $message
|
|
* @param int $level
|
|
* @since 4.0.0
|
|
* @deprecated 13.0.0 use log of \OCP\ILogger
|
|
*/
|
|
public static function writeLog($app, $message, $level) {
|
|
$context = ['app' => $app];
|
|
\OC::$server->getLogger()->log($level, $message, $context);
|
|
}
|
|
|
|
/**
|
|
* check if sharing is disabled for the current user
|
|
*
|
|
* @return boolean
|
|
* @since 7.0.0
|
|
* @deprecated 9.1.0 Use \OC::$server->getShareManager()->sharingDisabledForUser
|
|
*/
|
|
public static function isSharingDisabledForUser() {
|
|
if (self::$shareManager === null) {
|
|
self::$shareManager = \OC::$server->getShareManager();
|
|
}
|
|
|
|
$user = \OC::$server->getUserSession()->getUser();
|
|
if ($user !== null) {
|
|
$user = $user->getUID();
|
|
}
|
|
|
|
return self::$shareManager->sharingDisabledForUser($user);
|
|
}
|
|
|
|
/**
|
|
* get l10n object
|
|
* @param string $application
|
|
* @param string|null $language
|
|
* @return \OCP\IL10N
|
|
* @since 6.0.0 - parameter $language was added in 8.0.0
|
|
*/
|
|
public static function getL10N($application, $language = null) {
|
|
return \OC::$server->getL10N($application, $language);
|
|
}
|
|
|
|
/**
|
|
* add a css file
|
|
* @param string $application
|
|
* @param string $file
|
|
* @since 4.0.0
|
|
*/
|
|
public static function addStyle($application, $file = null) {
|
|
\OC_Util::addStyle($application, $file);
|
|
}
|
|
|
|
/**
|
|
* Add a standalone init js file that is loaded for initialization
|
|
*
|
|
* Be careful loading scripts using this method as they are loaded early
|
|
* and block the initial page rendering. They should not have dependencies
|
|
* on any other scripts than core-common and core-main.
|
|
*
|
|
* @since 28.0.0
|
|
*/
|
|
public static function addInitScript(string $application, string $file): void {
|
|
if (!empty($application)) {
|
|
$path = "$application/js/$file";
|
|
} else {
|
|
$path = "js/$file";
|
|
}
|
|
|
|
self::$scriptsInit[] = $path;
|
|
}
|
|
|
|
/**
|
|
* add a javascript file
|
|
*
|
|
* @param string $application
|
|
* @param string|null $file
|
|
* @param string $afterAppId
|
|
* @param bool $prepend
|
|
* @since 4.0.0
|
|
*/
|
|
public static function addScript(string $application, string $file = null, string $afterAppId = 'core', bool $prepend = false): void {
|
|
if (!empty($application)) {
|
|
$path = "$application/js/$file";
|
|
} else {
|
|
$path = "js/$file";
|
|
}
|
|
|
|
// Inject js translations if we load a script for
|
|
// a specific app that is not core, as those js files
|
|
// need separate handling
|
|
if ($application !== 'core'
|
|
&& $file !== null
|
|
&& !str_contains($file, 'l10n')) {
|
|
self::addTranslations($application);
|
|
}
|
|
|
|
// store app in dependency list
|
|
if (!array_key_exists($application, self::$scriptDeps)) {
|
|
self::$scriptDeps[$application] = new AppScriptDependency($application, [$afterAppId]);
|
|
} else {
|
|
self::$scriptDeps[$application]->addDep($afterAppId);
|
|
}
|
|
|
|
if ($prepend) {
|
|
array_unshift(self::$scripts[$application], $path);
|
|
} else {
|
|
self::$scripts[$application][] = $path;
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Return the list of scripts injected to the page
|
|
*
|
|
* @return array
|
|
* @since 24.0.0
|
|
*/
|
|
public static function getScripts(): array {
|
|
// Sort scriptDeps into sortedScriptDeps
|
|
$scriptSort = \OC::$server->get(AppScriptSort::class);
|
|
$sortedScripts = $scriptSort->sort(self::$scripts, self::$scriptDeps);
|
|
|
|
// Flatten array and remove duplicates
|
|
$sortedScripts = array_merge([self::$scriptsInit], $sortedScripts);
|
|
$sortedScripts = array_merge(...array_values($sortedScripts));
|
|
|
|
// Override core-common and core-main order
|
|
if (in_array('core/js/main', $sortedScripts)) {
|
|
array_unshift($sortedScripts, 'core/js/main');
|
|
}
|
|
if (in_array('core/js/common', $sortedScripts)) {
|
|
array_unshift($sortedScripts, 'core/js/common');
|
|
}
|
|
|
|
return array_unique($sortedScripts);
|
|
}
|
|
|
|
/**
|
|
* Add a translation JS file
|
|
* @param string $application application id
|
|
* @param string $languageCode language code, defaults to the current locale
|
|
* @since 8.0.0
|
|
*/
|
|
public static function addTranslations($application, $languageCode = null) {
|
|
if (is_null($languageCode)) {
|
|
$languageCode = \OC::$server->getL10NFactory()->findLanguage($application);
|
|
}
|
|
if (!empty($application)) {
|
|
$path = "$application/l10n/$languageCode";
|
|
} else {
|
|
$path = "l10n/$languageCode";
|
|
}
|
|
self::$scripts[$application][] = $path;
|
|
}
|
|
|
|
/**
|
|
* Add a custom element to the header
|
|
* If $text is null then the element will be written as empty element.
|
|
* So use "" to get a closing tag.
|
|
* @param string $tag tag name of the element
|
|
* @param array $attributes array of attributes for the element
|
|
* @param string $text the text content for the element
|
|
* @since 4.0.0
|
|
*/
|
|
public static function addHeader($tag, $attributes, $text = null) {
|
|
\OC_Util::addHeader($tag, $attributes, $text);
|
|
}
|
|
|
|
/**
|
|
* Creates an absolute url to the given app and file.
|
|
* @param string $app app
|
|
* @param string $file file
|
|
* @param array $args array with param=>value, will be appended to the returned url
|
|
* The value of $args will be urlencoded
|
|
* @return string the url
|
|
* @since 4.0.0 - parameter $args was added in 4.5.0
|
|
*/
|
|
public static function linkToAbsolute($app, $file, $args = []) {
|
|
$urlGenerator = \OC::$server->getURLGenerator();
|
|
return $urlGenerator->getAbsoluteURL(
|
|
$urlGenerator->linkTo($app, $file, $args)
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Creates an absolute url for remote use.
|
|
* @param string $service id
|
|
* @return string the url
|
|
* @since 4.0.0
|
|
*/
|
|
public static function linkToRemote($service) {
|
|
$urlGenerator = \OC::$server->getURLGenerator();
|
|
$remoteBase = $urlGenerator->linkTo('', 'remote.php') . '/' . $service;
|
|
return $urlGenerator->getAbsoluteURL(
|
|
$remoteBase . (($service[strlen($service) - 1] != '/') ? '/' : '')
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Returns the server host name without an eventual port number
|
|
* @return string the server hostname
|
|
* @since 5.0.0
|
|
*/
|
|
public static function getServerHostName() {
|
|
$host_name = \OC::$server->getRequest()->getServerHost();
|
|
// strip away port number (if existing)
|
|
$colon_pos = strpos($host_name, ':');
|
|
if ($colon_pos != false) {
|
|
$host_name = substr($host_name, 0, $colon_pos);
|
|
}
|
|
return $host_name;
|
|
}
|
|
|
|
/**
|
|
* Returns the default email address
|
|
* @param string $user_part the user part of the address
|
|
* @return string the default email address
|
|
*
|
|
* Assembles a default email address (using the server hostname
|
|
* and the given user part, and returns it
|
|
* Example: when given lostpassword-noreply as $user_part param,
|
|
* and is currently accessed via http(s)://example.com/,
|
|
* it would return 'lostpassword-noreply@example.com'
|
|
*
|
|
* If the configuration value 'mail_from_address' is set in
|
|
* config.php, this value will override the $user_part that
|
|
* is passed to this function
|
|
* @since 5.0.0
|
|
*/
|
|
public static function getDefaultEmailAddress(string $user_part): string {
|
|
$config = \OC::$server->getConfig();
|
|
$user_part = $config->getSystemValueString('mail_from_address', $user_part);
|
|
$host_name = self::getServerHostName();
|
|
$host_name = $config->getSystemValueString('mail_domain', $host_name);
|
|
$defaultEmailAddress = $user_part.'@'.$host_name;
|
|
|
|
$mailer = \OC::$server->getMailer();
|
|
if ($mailer->validateMailAddress($defaultEmailAddress)) {
|
|
return $defaultEmailAddress;
|
|
}
|
|
|
|
// in case we cannot build a valid email address from the hostname let's fallback to 'localhost.localdomain'
|
|
return $user_part.'@localhost.localdomain';
|
|
}
|
|
|
|
/**
|
|
* Converts string to int of float depending if it fits an int
|
|
* @param numeric-string|float|int $number numeric string
|
|
* @return int|float int if it fits, float if it is too big
|
|
* @since 26.0.0
|
|
*/
|
|
public static function numericToNumber(string|float|int $number): int|float {
|
|
/* This is a hack to cast to (int|float) */
|
|
return 0 + (string)$number;
|
|
}
|
|
|
|
/**
|
|
* Make a human file size (2048 to 2 kB)
|
|
* @param int|float $bytes file size in bytes
|
|
* @return string a human readable file size
|
|
* @since 4.0.0
|
|
*/
|
|
public static function humanFileSize(int|float $bytes): string {
|
|
return \OC_Helper::humanFileSize($bytes);
|
|
}
|
|
|
|
/**
|
|
* Make a computer file size (2 kB to 2048)
|
|
* @param string $str file size in a fancy format
|
|
* @return false|int|float a file size in bytes
|
|
*
|
|
* Inspired by: https://www.php.net/manual/en/function.filesize.php#92418
|
|
* @since 4.0.0
|
|
*/
|
|
public static function computerFileSize(string $str): false|int|float {
|
|
return \OC_Helper::computerFileSize($str);
|
|
}
|
|
|
|
/**
|
|
* connects a function to a hook
|
|
*
|
|
* @param string $signalClass class name of emitter
|
|
* @param string $signalName name of signal
|
|
* @param string|object $slotClass class name of slot
|
|
* @param string $slotName name of slot
|
|
* @return bool
|
|
*
|
|
* This function makes it very easy to connect to use hooks.
|
|
*
|
|
* TODO: write example
|
|
* @since 4.0.0
|
|
* @deprecated 21.0.0 use \OCP\EventDispatcher\IEventDispatcher::addListener
|
|
*/
|
|
public static function connectHook($signalClass, $signalName, $slotClass, $slotName) {
|
|
return \OC_Hook::connect($signalClass, $signalName, $slotClass, $slotName);
|
|
}
|
|
|
|
/**
|
|
* Emits a signal. To get data from the slot use references!
|
|
* @param string $signalclass class name of emitter
|
|
* @param string $signalname name of signal
|
|
* @param array $params default: array() array with additional data
|
|
* @return bool true if slots exists or false if not
|
|
*
|
|
* TODO: write example
|
|
* @since 4.0.0
|
|
* @deprecated 21.0.0 use \OCP\EventDispatcher\IEventDispatcher::dispatchTypedEvent
|
|
*/
|
|
public static function emitHook($signalclass, $signalname, $params = []) {
|
|
return \OC_Hook::emit($signalclass, $signalname, $params);
|
|
}
|
|
|
|
/**
|
|
* Cached encrypted CSRF token. Some static unit-tests of ownCloud compare
|
|
* multiple OC_Template elements which invoke `callRegister`. If the value
|
|
* would not be cached these unit-tests would fail.
|
|
* @var string
|
|
*/
|
|
private static $token = '';
|
|
|
|
/**
|
|
* Register an get/post call. This is important to prevent CSRF attacks
|
|
* @since 4.5.0
|
|
*/
|
|
public static function callRegister() {
|
|
if (self::$token === '') {
|
|
self::$token = \OC::$server->getCsrfTokenManager()->getToken()->getEncryptedValue();
|
|
}
|
|
return self::$token;
|
|
}
|
|
|
|
/**
|
|
* Used to sanitize HTML
|
|
*
|
|
* This function is used to sanitize HTML and should be applied on any
|
|
* string or array of strings before displaying it on a web page.
|
|
*
|
|
* @param string|string[] $value
|
|
* @return string|string[] an array of sanitized strings or a single sanitized string, depends on the input parameter.
|
|
* @since 4.5.0
|
|
*/
|
|
public static function sanitizeHTML($value) {
|
|
return \OC_Util::sanitizeHTML($value);
|
|
}
|
|
|
|
/**
|
|
* Public function to encode url parameters
|
|
*
|
|
* This function is used to encode path to file before output.
|
|
* Encoding is done according to RFC 3986 with one exception:
|
|
* Character '/' is preserved as is.
|
|
*
|
|
* @param string $component part of URI to encode
|
|
* @return string
|
|
* @since 6.0.0
|
|
*/
|
|
public static function encodePath($component) {
|
|
return \OC_Util::encodePath($component);
|
|
}
|
|
|
|
/**
|
|
* Returns an array with all keys from input lowercased or uppercased. Numbered indices are left as is.
|
|
*
|
|
* @param array $input The array to work on
|
|
* @param int $case Either MB_CASE_UPPER or MB_CASE_LOWER (default)
|
|
* @param string $encoding The encoding parameter is the character encoding. Defaults to UTF-8
|
|
* @return array
|
|
* @since 4.5.0
|
|
*/
|
|
public static function mb_array_change_key_case($input, $case = MB_CASE_LOWER, $encoding = 'UTF-8') {
|
|
return \OC_Helper::mb_array_change_key_case($input, $case, $encoding);
|
|
}
|
|
|
|
/**
|
|
* performs a search in a nested array
|
|
*
|
|
* @param array $haystack the array to be searched
|
|
* @param string $needle the search string
|
|
* @param mixed $index optional, only search this key name
|
|
* @return mixed the key of the matching field, otherwise false
|
|
* @since 4.5.0
|
|
* @deprecated 15.0.0
|
|
*/
|
|
public static function recursiveArraySearch($haystack, $needle, $index = null) {
|
|
return \OC_Helper::recursiveArraySearch($haystack, $needle, $index);
|
|
}
|
|
|
|
/**
|
|
* calculates the maximum upload size respecting system settings, free space and user quota
|
|
*
|
|
* @param string $dir the current folder where the user currently operates
|
|
* @param int|float|null $free the number of bytes free on the storage holding $dir, if not set this will be received from the storage directly
|
|
* @return int|float number of bytes representing
|
|
* @since 5.0.0
|
|
*/
|
|
public static function maxUploadFilesize(string $dir, int|float|null $free = null): int|float {
|
|
return \OC_Helper::maxUploadFilesize($dir, $free);
|
|
}
|
|
|
|
/**
|
|
* Calculate free space left within user quota
|
|
* @param string $dir the current folder where the user currently operates
|
|
* @return int|float number of bytes representing
|
|
* @since 7.0.0
|
|
*/
|
|
public static function freeSpace(string $dir): int|float {
|
|
return \OC_Helper::freeSpace($dir);
|
|
}
|
|
|
|
/**
|
|
* Calculate PHP upload limit
|
|
*
|
|
* @return int|float number of bytes representing
|
|
* @since 7.0.0
|
|
*/
|
|
public static function uploadLimit(): int|float {
|
|
return \OC_Helper::uploadLimit();
|
|
}
|
|
|
|
/**
|
|
* Returns whether the given file name is valid
|
|
* @param string $file file name to check
|
|
* @return bool true if the file name is valid, false otherwise
|
|
* @deprecated 8.1.0 use \OC\Files\View::verifyPath()
|
|
* @since 7.0.0
|
|
* @suppress PhanDeprecatedFunction
|
|
*/
|
|
public static function isValidFileName($file) {
|
|
return \OC_Util::isValidFileName($file);
|
|
}
|
|
|
|
/**
|
|
* Compare two strings to provide a natural sort
|
|
* @param string $a first string to compare
|
|
* @param string $b second string to compare
|
|
* @return int -1 if $b comes before $a, 1 if $a comes before $b
|
|
* or 0 if the strings are identical
|
|
* @since 7.0.0
|
|
*/
|
|
public static function naturalSortCompare($a, $b) {
|
|
return \OC\NaturalSort::getInstance()->compare($a, $b);
|
|
}
|
|
|
|
/**
|
|
* Check if a password is required for each public link
|
|
*
|
|
* @param bool $checkGroupMembership Check group membership exclusion
|
|
* @return boolean
|
|
* @since 7.0.0
|
|
*/
|
|
public static function isPublicLinkPasswordRequired(bool $checkGroupMembership = true) {
|
|
return \OC_Util::isPublicLinkPasswordRequired($checkGroupMembership);
|
|
}
|
|
|
|
/**
|
|
* check if share API enforces a default expire date
|
|
* @return boolean
|
|
* @since 8.0.0
|
|
*/
|
|
public static function isDefaultExpireDateEnforced() {
|
|
return \OC_Util::isDefaultExpireDateEnforced();
|
|
}
|
|
|
|
protected static $needUpgradeCache = null;
|
|
|
|
/**
|
|
* Checks whether the current version needs upgrade.
|
|
*
|
|
* @return bool true if upgrade is needed, false otherwise
|
|
* @since 7.0.0
|
|
*/
|
|
public static function needUpgrade() {
|
|
if (!isset(self::$needUpgradeCache)) {
|
|
self::$needUpgradeCache = \OC_Util::needUpgrade(\OC::$server->getSystemConfig());
|
|
}
|
|
return self::$needUpgradeCache;
|
|
}
|
|
|
|
/**
|
|
* Sometimes a string has to be shortened to fit within a certain maximum
|
|
* data length in bytes. substr() you may break multibyte characters,
|
|
* because it operates on single byte level. mb_substr() operates on
|
|
* characters, so does not ensure that the shortened string satisfies the
|
|
* max length in bytes.
|
|
*
|
|
* For example, json_encode is messing with multibyte characters a lot,
|
|
* replacing them with something along "\u1234".
|
|
*
|
|
* This function shortens the string with by $accuracy (-5) from
|
|
* $dataLength characters, until it fits within $dataLength bytes.
|
|
*
|
|
* @since 23.0.0
|
|
*/
|
|
public static function shortenMultibyteString(string $subject, int $dataLength, int $accuracy = 5): string {
|
|
$temp = mb_substr($subject, 0, $dataLength);
|
|
// json encodes encapsulates the string in double quotes, they need to be substracted
|
|
while ((strlen(json_encode($temp)) - 2) > $dataLength) {
|
|
$temp = mb_substr($temp, 0, -$accuracy);
|
|
}
|
|
return $temp;
|
|
}
|
|
|
|
/**
|
|
* Check if a function is enabled in the php configuration
|
|
*
|
|
* @since 25.0.0
|
|
*/
|
|
public static function isFunctionEnabled(string $functionName): bool {
|
|
if (!function_exists($functionName)) {
|
|
return false;
|
|
}
|
|
$ini = \OCP\Server::get(IniGetWrapper::class);
|
|
$disabled = explode(',', $ini->get('disable_functions') ?: '');
|
|
$disabled = array_map('trim', $disabled);
|
|
if (in_array($functionName, $disabled)) {
|
|
return false;
|
|
}
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* Returns the protocol, domain and port as string in a normalized
|
|
* format for easier comparison.
|
|
* Example: "HTTPS://HOST.tld:8080" is returned as "https://host.tld:8080"
|
|
*
|
|
* If no port was specified, it will add the default port
|
|
* of the specified protocol (80 for http or 443 for https)
|
|
*
|
|
* @param string $url full url
|
|
* @return string protocol, domain and port as string
|
|
* @since 28.0.0
|
|
*/
|
|
public static function getFullDomain(string $url): string {
|
|
$parts = \parse_url($url);
|
|
if ($parts === false) {
|
|
throw new \InvalidArgumentException('Invalid url "' . $url . '"');
|
|
}
|
|
if (!isset($parts['scheme']) || !isset($parts['host'])) {
|
|
throw new \InvalidArgumentException('Invalid url "' . $url . '"');
|
|
}
|
|
$protocol = \strtolower($parts['scheme']);
|
|
$host = \strtolower($parts['host']);
|
|
$port = null;
|
|
if ($protocol === 'http') {
|
|
$port = 80;
|
|
} elseif ($protocol === 'https') {
|
|
$port = 443;
|
|
} else {
|
|
throw new \InvalidArgumentException('Only http based URLs supported');
|
|
}
|
|
|
|
if (isset($parts['port']) && $port !== '') {
|
|
$port = $parts['port'];
|
|
}
|
|
|
|
return $protocol . '://' . \strtolower($host) . ':' . $port;
|
|
}
|
|
|
|
/**
|
|
* Check whether the given URLs have the same protocol, domain and port.
|
|
* This is useful to check a browser's cross-domain situation.
|
|
* If this method returns false, a browser would consider both URLs to be
|
|
* a cross-domain situation and would require a CORS setup.
|
|
*
|
|
* @param string $url1
|
|
* @param string $url2
|
|
*
|
|
* @return bool true if both URLs have the same protocol, domain and port
|
|
*
|
|
* @since 28.0.0
|
|
*/
|
|
public static function isSameDomain(string $url1, string $url2): bool {
|
|
return self::getFullDomain($url1) === self::getFullDomain($url2);
|
|
}
|
|
}
|