Inspection of "Daily Inspection: Look and feel v21" - Dolibarr/dolibarr - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Branch — develop (cf6315)

unknown

created 2024-07-24 16:32 UTC

Status

Indentation +47 added lines, -47 removed lines patch added patch discarded remove patch

@@ -24,54 +24,54 @@
 block discarded – undo
  */
 class SupportedAddressData implements XmlSerializable
 {
-    /**
-     * supported versions.
-     *
-     * @var array
-     */
-    protected $supportedData = [];
+	/**
+	 * supported versions.
+	 *
+	 * @var array
+	 */
+	protected $supportedData = [];
 
-    /**
-     * Creates the property.
-     */
-    public function __construct(array $supportedData = null)
-    {
-        if (is_null($supportedData)) {
-            $supportedData = [
-                ['contentType' => 'text/vcard', 'version' => '3.0'],
-                ['contentType' => 'text/vcard', 'version' => '4.0'],
-                ['contentType' => 'application/vcard+json', 'version' => '4.0'],
-            ];
-        }
+	/**
+	 * Creates the property.
+	 */
+	public function __construct(array $supportedData = null)
+	{
+		if (is_null($supportedData)) {
+			$supportedData = [
+				['contentType' => 'text/vcard', 'version' => '3.0'],
+				['contentType' => 'text/vcard', 'version' => '4.0'],
+				['contentType' => 'application/vcard+json', 'version' => '4.0'],
+			];
+		}
 
-        $this->supportedData = $supportedData;
-    }
+		$this->supportedData = $supportedData;
+	}
 
-    /**
-     * The xmlSerialize method is called during xml writing.
-     *
-     * Use the $writer argument to write its own xml serialization.
-     *
-     * An important note: do _not_ create a parent element. Any element
-     * implementing XmlSerializable should only ever write what's considered
-     * its 'inner xml'.
-     *
-     * The parent of the current element is responsible for writing a
-     * containing element.
-     *
-     * This allows serializers to be re-used for different element names.
-     *
-     * If you are opening new elements, you must also close them again.
-     */
-    public function xmlSerialize(Writer $writer)
-    {
-        foreach ($this->supportedData as $supported) {
-            $writer->startElement('{'.Plugin::NS_CARDDAV.'}address-data-type');
-            $writer->writeAttributes([
-                'content-type' => $supported['contentType'],
-                'version' => $supported['version'],
-                ]);
-            $writer->endElement(); // address-data-type
-        }
-    }
+	/**
+	 * The xmlSerialize method is called during xml writing.
+	 *
+	 * Use the $writer argument to write its own xml serialization.
+	 *
+	 * An important note: do _not_ create a parent element. Any element
+	 * implementing XmlSerializable should only ever write what's considered
+	 * its 'inner xml'.
+	 *
+	 * The parent of the current element is responsible for writing a
+	 * containing element.
+	 *
+	 * This allows serializers to be re-used for different element names.
+	 *
+	 * If you are opening new elements, you must also close them again.
+	 */
+	public function xmlSerialize(Writer $writer)
+	{
+		foreach ($this->supportedData as $supported) {
+			$writer->startElement('{'.Plugin::NS_CARDDAV.'}address-data-type');
+			$writer->writeAttributes([
+				'content-type' => $supported['contentType'],
+				'version' => $supported['version'],
+				]);
+			$writer->endElement(); // address-data-type
+		}
+	}
 }

Please login to merge, or discard this patch.

includes/sabre/sabre/dav/lib/CardDAV/Xml/Property/SupportedCollationSet.php 1 patch

Indentation +22 added lines, -22 removed lines patch added patch discarded remove patch

@@ -19,26 +19,26 @@
 block discarded – undo
  */
 class SupportedCollationSet implements XmlSerializable
 {
-    /**
-     * The xmlSerialize method is called during xml writing.
-     *
-     * Use the $writer argument to write its own xml serialization.
-     *
-     * An important note: do _not_ create a parent element. Any element
-     * implementing XmlSerializable should only ever write what's considered
-     * its 'inner xml'.
-     *
-     * The parent of the current element is responsible for writing a
-     * containing element.
-     *
-     * This allows serializers to be re-used for different element names.
-     *
-     * If you are opening new elements, you must also close them again.
-     */
-    public function xmlSerialize(Writer $writer)
-    {
-        foreach (['i;ascii-casemap', 'i;octet', 'i;unicode-casemap'] as $coll) {
-            $writer->writeElement('{urn:ietf:params:xml:ns:carddav}supported-collation', $coll);
-        }
-    }
+	/**
+	 * The xmlSerialize method is called during xml writing.
+	 *
+	 * Use the $writer argument to write its own xml serialization.
+	 *
+	 * An important note: do _not_ create a parent element. Any element
+	 * implementing XmlSerializable should only ever write what's considered
+	 * its 'inner xml'.
+	 *
+	 * The parent of the current element is responsible for writing a
+	 * containing element.
+	 *
+	 * This allows serializers to be re-used for different element names.
+	 *
+	 * If you are opening new elements, you must also close them again.
+	 */
+	public function xmlSerialize(Writer $writer)
+	{
+		foreach (['i;ascii-casemap', 'i;octet', 'i;unicode-casemap'] as $coll) {
+			$writer->writeElement('{urn:ietf:params:xml:ns:carddav}supported-collation', $coll);
+		}
+	}
 }

Please login to merge, or discard this patch.

htdocs/includes/sabre/sabre/dav/lib/CardDAV/Card.php 1 patch

Indentation +183 added lines, -183 removed lines patch added patch discarded remove patch

@@ -16,187 +16,187 @@
 block discarded – undo
  */
 class Card extends DAV\File implements ICard, DAVACL\IACL
 {
-    use DAVACL\ACLTrait;
-
-    /**
-     * CardDAV backend.
-     *
-     * @var Backend\BackendInterface
-     */
-    protected $carddavBackend;
-
-    /**
-     * Array with information about this Card.
-     *
-     * @var array
-     */
-    protected $cardData;
-
-    /**
-     * Array with information about the containing addressbook.
-     *
-     * @var array
-     */
-    protected $addressBookInfo;
-
-    /**
-     * Constructor.
-     */
-    public function __construct(Backend\BackendInterface $carddavBackend, array $addressBookInfo, array $cardData)
-    {
-        $this->carddavBackend = $carddavBackend;
-        $this->addressBookInfo = $addressBookInfo;
-        $this->cardData = $cardData;
-    }
-
-    /**
-     * Returns the uri for this object.
-     *
-     * @return string
-     */
-    public function getName()
-    {
-        return $this->cardData['uri'];
-    }
-
-    /**
-     * Returns the VCard-formatted object.
-     *
-     * @return string
-     */
-    public function get()
-    {
-        // Pre-populating 'carddata' is optional. If we don't yet have it
-        // already, we fetch it from the backend.
-        if (!isset($this->cardData['carddata'])) {
-            $this->cardData = $this->carddavBackend->getCard($this->addressBookInfo['id'], $this->cardData['uri']);
-        }
-
-        return $this->cardData['carddata'];
-    }
-
-    /**
-     * Updates the VCard-formatted object.
-     *
-     * @param string $cardData
-     *
-     * @return string|null
-     */
-    public function put($cardData)
-    {
-        if (is_resource($cardData)) {
-            $cardData = stream_get_contents($cardData);
-        }
-
-        // Converting to UTF-8, if needed
-        $cardData = DAV\StringUtil::ensureUTF8($cardData);
-
-        $etag = $this->carddavBackend->updateCard($this->addressBookInfo['id'], $this->cardData['uri'], $cardData);
-        $this->cardData['carddata'] = $cardData;
-        $this->cardData['etag'] = $etag;
-
-        return $etag;
-    }
-
-    /**
-     * Deletes the card.
-     */
-    public function delete()
-    {
-        $this->carddavBackend->deleteCard($this->addressBookInfo['id'], $this->cardData['uri']);
-    }
-
-    /**
-     * Returns the mime content-type.
-     *
-     * @return string
-     */
-    public function getContentType()
-    {
-        return 'text/vcard; charset=utf-8';
-    }
-
-    /**
-     * Returns an ETag for this object.
-     *
-     * @return string
-     */
-    public function getETag()
-    {
-        if (isset($this->cardData['etag'])) {
-            return $this->cardData['etag'];
-        } else {
-            $data = $this->get();
-            if (is_string($data)) {
-                return '"'.md5($data).'"';
-            } else {
-                // We refuse to calculate the md5 if it's a stream.
-                return null;
-            }
-        }
-    }
-
-    /**
-     * Returns the last modification date as a unix timestamp.
-     *
-     * @return int
-     */
-    public function getLastModified()
-    {
-        return isset($this->cardData['lastmodified']) ? $this->cardData['lastmodified'] : null;
-    }
-
-    /**
-     * Returns the size of this object in bytes.
-     *
-     * @return int
-     */
-    public function getSize()
-    {
-        if (array_key_exists('size', $this->cardData)) {
-            return $this->cardData['size'];
-        } else {
-            return strlen($this->get());
-        }
-    }
-
-    /**
-     * Returns the owner principal.
-     *
-     * This must be a url to a principal, or null if there's no owner
-     *
-     * @return string|null
-     */
-    public function getOwner()
-    {
-        return $this->addressBookInfo['principaluri'];
-    }
-
-    /**
-     * Returns a list of ACE's for this node.
-     *
-     * Each ACE has the following properties:
-     *   * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
-     *     currently the only supported privileges
-     *   * 'principal', a url to the principal who owns the node
-     *   * 'protected' (optional), indicating that this ACE is not allowed to
-     *      be updated.
-     *
-     * @return array
-     */
-    public function getACL()
-    {
-        // An alternative acl may be specified through the cardData array.
-        if (isset($this->cardData['acl'])) {
-            return $this->cardData['acl'];
-        }
-
-        return [
-            [
-                'privilege' => '{DAV:}all',
-                'principal' => $this->addressBookInfo['principaluri'],
-                'protected' => true,
-            ],
-        ];
-    }
+	use DAVACL\ACLTrait;
+
+	/**
+	 * CardDAV backend.
+	 *
+	 * @var Backend\BackendInterface
+	 */
+	protected $carddavBackend;
+
+	/**
+	 * Array with information about this Card.
+	 *
+	 * @var array
+	 */
+	protected $cardData;
+
+	/**
+	 * Array with information about the containing addressbook.
+	 *
+	 * @var array
+	 */
+	protected $addressBookInfo;
+
+	/**
+	 * Constructor.
+	 */
+	public function __construct(Backend\BackendInterface $carddavBackend, array $addressBookInfo, array $cardData)
+	{
+		$this->carddavBackend = $carddavBackend;
+		$this->addressBookInfo = $addressBookInfo;
+		$this->cardData = $cardData;
+	}
+
+	/**
+	 * Returns the uri for this object.
+	 *
+	 * @return string
+	 */
+	public function getName()
+	{
+		return $this->cardData['uri'];
+	}
+
+	/**
+	 * Returns the VCard-formatted object.
+	 *
+	 * @return string
+	 */
+	public function get()
+	{
+		// Pre-populating 'carddata' is optional. If we don't yet have it
+		// already, we fetch it from the backend.
+		if (!isset($this->cardData['carddata'])) {
+			$this->cardData = $this->carddavBackend->getCard($this->addressBookInfo['id'], $this->cardData['uri']);
+		}
+
+		return $this->cardData['carddata'];
+	}
+
+	/**
+	 * Updates the VCard-formatted object.
+	 *
+	 * @param string $cardData
+	 *
+	 * @return string|null
+	 */
+	public function put($cardData)
+	{
+		if (is_resource($cardData)) {
+			$cardData = stream_get_contents($cardData);
+		}
+
+		// Converting to UTF-8, if needed
+		$cardData = DAV\StringUtil::ensureUTF8($cardData);
+
+		$etag = $this->carddavBackend->updateCard($this->addressBookInfo['id'], $this->cardData['uri'], $cardData);
+		$this->cardData['carddata'] = $cardData;
+		$this->cardData['etag'] = $etag;
+
+		return $etag;
+	}
+
+	/**
+	 * Deletes the card.
+	 */
+	public function delete()
+	{
+		$this->carddavBackend->deleteCard($this->addressBookInfo['id'], $this->cardData['uri']);
+	}
+
+	/**
+	 * Returns the mime content-type.
+	 *
+	 * @return string
+	 */
+	public function getContentType()
+	{
+		return 'text/vcard; charset=utf-8';
+	}
+
+	/**
+	 * Returns an ETag for this object.
+	 *
+	 * @return string
+	 */
+	public function getETag()
+	{
+		if (isset($this->cardData['etag'])) {
+			return $this->cardData['etag'];
+		} else {
+			$data = $this->get();
+			if (is_string($data)) {
+				return '"'.md5($data).'"';
+			} else {
+				// We refuse to calculate the md5 if it's a stream.
+				return null;
+			}
+		}
+	}
+
+	/**
+	 * Returns the last modification date as a unix timestamp.
+	 *
+	 * @return int
+	 */
+	public function getLastModified()
+	{
+		return isset($this->cardData['lastmodified']) ? $this->cardData['lastmodified'] : null;
+	}
+
+	/**
+	 * Returns the size of this object in bytes.
+	 *
+	 * @return int
+	 */
+	public function getSize()
+	{
+		if (array_key_exists('size', $this->cardData)) {
+			return $this->cardData['size'];
+		} else {
+			return strlen($this->get());
+		}
+	}
+
+	/**
+	 * Returns the owner principal.
+	 *
+	 * This must be a url to a principal, or null if there's no owner
+	 *
+	 * @return string|null
+	 */
+	public function getOwner()
+	{
+		return $this->addressBookInfo['principaluri'];
+	}
+
+	/**
+	 * Returns a list of ACE's for this node.
+	 *
+	 * Each ACE has the following properties:
+	 *   * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
+	 *     currently the only supported privileges
+	 *   * 'principal', a url to the principal who owns the node
+	 *   * 'protected' (optional), indicating that this ACE is not allowed to
+	 *      be updated.
+	 *
+	 * @return array
+	 */
+	public function getACL()
+	{
+		// An alternative acl may be specified through the cardData array.
+		if (isset($this->cardData['acl'])) {
+			return $this->cardData['acl'];
+		}
+
+		return [
+			[
+				'privilege' => '{DAV:}all',
+				'principal' => $this->addressBookInfo['principaluri'],
+				'protected' => true,
+			],
+		];
+	}
 }

Please login to merge, or discard this patch.

htdocs/includes/sabre/sabre/dav/lib/DAVACL/IACL.php 1 patch

Indentation +48 added lines, -48 removed lines patch added patch discarded remove patch

@@ -17,56 +17,56 @@
 block discarded – undo
  */
 interface IACL extends DAV\INode
 {
-    /**
-     * Returns the owner principal.
-     *
-     * This must be a url to a principal, or null if there's no owner
-     *
-     * @return string|null
-     */
-    public function getOwner();
+	/**
+	 * Returns the owner principal.
+	 *
+	 * This must be a url to a principal, or null if there's no owner
+	 *
+	 * @return string|null
+	 */
+	public function getOwner();
 
-    /**
-     * Returns a group principal.
-     *
-     * This must be a url to a principal, or null if there's no owner
-     *
-     * @return string|null
-     */
-    public function getGroup();
+	/**
+	 * Returns a group principal.
+	 *
+	 * This must be a url to a principal, or null if there's no owner
+	 *
+	 * @return string|null
+	 */
+	public function getGroup();
 
-    /**
-     * Returns a list of ACE's for this node.
-     *
-     * Each ACE has the following properties:
-     *   * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
-     *     currently the only supported privileges
-     *   * 'principal', a url to the principal who owns the node
-     *   * 'protected' (optional), indicating that this ACE is not allowed to
-     *      be updated.
-     *
-     * @return array
-     */
-    public function getACL();
+	/**
+	 * Returns a list of ACE's for this node.
+	 *
+	 * Each ACE has the following properties:
+	 *   * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
+	 *     currently the only supported privileges
+	 *   * 'principal', a url to the principal who owns the node
+	 *   * 'protected' (optional), indicating that this ACE is not allowed to
+	 *      be updated.
+	 *
+	 * @return array
+	 */
+	public function getACL();
 
-    /**
-     * Updates the ACL.
-     *
-     * This method will receive a list of new ACE's as an array argument.
-     */
-    public function setACL(array $acl);
+	/**
+	 * Updates the ACL.
+	 *
+	 * This method will receive a list of new ACE's as an array argument.
+	 */
+	public function setACL(array $acl);
 
-    /**
-     * Returns the list of supported privileges for this node.
-     *
-     * The returned data structure is a list of nested privileges.
-     * See Sabre\DAVACL\Plugin::getDefaultSupportedPrivilegeSet for a simple
-     * standard structure.
-     *
-     * If null is returned from this method, the default privilege set is used,
-     * which is fine for most common usecases.
-     *
-     * @return array|null
-     */
-    public function getSupportedPrivilegeSet();
+	/**
+	 * Returns the list of supported privileges for this node.
+	 *
+	 * The returned data structure is a list of nested privileges.
+	 * See Sabre\DAVACL\Plugin::getDefaultSupportedPrivilegeSet for a simple
+	 * standard structure.
+	 *
+	 * If null is returned from this method, the default privilege set is used,
+	 * which is fine for most common usecases.
+	 *
+	 * @return array|null
+	 */
+	public function getSupportedPrivilegeSet();
 }

Please login to merge, or discard this patch.

htdocs/includes/sabre/sabre/dav/lib/DAVACL/Principal.php 1 patch

Indentation +172 added lines, -172 removed lines patch added patch discarded remove patch

@@ -24,176 +24,176 @@
 block discarded – undo
  */
 class Principal extends DAV\Node implements IPrincipal, DAV\IProperties, IACL
 {
-    use ACLTrait;
-
-    /**
-     * Struct with principal information.
-     *
-     * @var array
-     */
-    protected $principalProperties;
-
-    /**
-     * Principal backend.
-     *
-     * @var PrincipalBackend\BackendInterface
-     */
-    protected $principalBackend;
-
-    /**
-     * Creates the principal object.
-     */
-    public function __construct(PrincipalBackend\BackendInterface $principalBackend, array $principalProperties = [])
-    {
-        if (!isset($principalProperties['uri'])) {
-            throw new DAV\Exception('The principal properties must at least contain the \'uri\' key');
-        }
-        $this->principalBackend = $principalBackend;
-        $this->principalProperties = $principalProperties;
-    }
-
-    /**
-     * Returns the full principal url.
-     *
-     * @return string
-     */
-    public function getPrincipalUrl()
-    {
-        return $this->principalProperties['uri'];
-    }
-
-    /**
-     * Returns a list of alternative urls for a principal.
-     *
-     * This can for example be an email address, or ldap url.
-     *
-     * @return array
-     */
-    public function getAlternateUriSet()
-    {
-        $uris = [];
-        if (isset($this->principalProperties['{DAV:}alternate-URI-set'])) {
-            $uris = $this->principalProperties['{DAV:}alternate-URI-set'];
-        }
-
-        if (isset($this->principalProperties['{http://sabredav.org/ns}email-address'])) {
-            $uris[] = 'mailto:'.$this->principalProperties['{http://sabredav.org/ns}email-address'];
-        }
-
-        return array_unique($uris);
-    }
-
-    /**
-     * Returns the list of group members.
-     *
-     * If this principal is a group, this function should return
-     * all member principal uri's for the group.
-     *
-     * @return array
-     */
-    public function getGroupMemberSet()
-    {
-        return $this->principalBackend->getGroupMemberSet($this->principalProperties['uri']);
-    }
-
-    /**
-     * Returns the list of groups this principal is member of.
-     *
-     * If this principal is a member of a (list of) groups, this function
-     * should return a list of principal uri's for it's members.
-     *
-     * @return array
-     */
-    public function getGroupMembership()
-    {
-        return $this->principalBackend->getGroupMemberShip($this->principalProperties['uri']);
-    }
-
-    /**
-     * Sets a list of group members.
-     *
-     * If this principal is a group, this method sets all the group members.
-     * The list of members is always overwritten, never appended to.
-     *
-     * This method should throw an exception if the members could not be set.
-     */
-    public function setGroupMemberSet(array $groupMembers)
-    {
-        $this->principalBackend->setGroupMemberSet($this->principalProperties['uri'], $groupMembers);
-    }
-
-    /**
-     * Returns this principals name.
-     *
-     * @return string
-     */
-    public function getName()
-    {
-        $uri = $this->principalProperties['uri'];
-        list(, $name) = Uri\split($uri);
-
-        return $name;
-    }
-
-    /**
-     * Returns the name of the user.
-     *
-     * @return string
-     */
-    public function getDisplayName()
-    {
-        if (isset($this->principalProperties['{DAV:}displayname'])) {
-            return $this->principalProperties['{DAV:}displayname'];
-        } else {
-            return $this->getName();
-        }
-    }
-
-    /**
-     * Returns a list of properties.
-     *
-     * @param array $requestedProperties
-     *
-     * @return array
-     */
-    public function getProperties($requestedProperties)
-    {
-        $newProperties = [];
-        foreach ($requestedProperties as $propName) {
-            if (isset($this->principalProperties[$propName])) {
-                $newProperties[$propName] = $this->principalProperties[$propName];
-            }
-        }
-
-        return $newProperties;
-    }
-
-    /**
-     * Updates properties on this node.
-     *
-     * This method received a PropPatch object, which contains all the
-     * information about the update.
-     *
-     * To update specific properties, call the 'handle' method on this object.
-     * Read the PropPatch documentation for more information.
-     */
-    public function propPatch(DAV\PropPatch $propPatch)
-    {
-        return $this->principalBackend->updatePrincipal(
-            $this->principalProperties['uri'],
-            $propPatch
-        );
-    }
-
-    /**
-     * Returns the owner principal.
-     *
-     * This must be a url to a principal, or null if there's no owner
-     *
-     * @return string|null
-     */
-    public function getOwner()
-    {
-        return $this->principalProperties['uri'];
-    }
+	use ACLTrait;
+
+	/**
+	 * Struct with principal information.
+	 *
+	 * @var array
+	 */
+	protected $principalProperties;
+
+	/**
+	 * Principal backend.
+	 *
+	 * @var PrincipalBackend\BackendInterface
+	 */
+	protected $principalBackend;
+
+	/**
+	 * Creates the principal object.
+	 */
+	public function __construct(PrincipalBackend\BackendInterface $principalBackend, array $principalProperties = [])
+	{
+		if (!isset($principalProperties['uri'])) {
+			throw new DAV\Exception('The principal properties must at least contain the \'uri\' key');
+		}
+		$this->principalBackend = $principalBackend;
+		$this->principalProperties = $principalProperties;
+	}
+
+	/**
+	 * Returns the full principal url.
+	 *
+	 * @return string
+	 */
+	public function getPrincipalUrl()
+	{
+		return $this->principalProperties['uri'];
+	}
+
+	/**
+	 * Returns a list of alternative urls for a principal.
+	 *
+	 * This can for example be an email address, or ldap url.
+	 *
+	 * @return array
+	 */
+	public function getAlternateUriSet()
+	{
+		$uris = [];
+		if (isset($this->principalProperties['{DAV:}alternate-URI-set'])) {
+			$uris = $this->principalProperties['{DAV:}alternate-URI-set'];
+		}
+
+		if (isset($this->principalProperties['{http://sabredav.org/ns}email-address'])) {
+			$uris[] = 'mailto:'.$this->principalProperties['{http://sabredav.org/ns}email-address'];
+		}
+
+		return array_unique($uris);
+	}
+
+	/**
+	 * Returns the list of group members.
+	 *
+	 * If this principal is a group, this function should return
+	 * all member principal uri's for the group.
+	 *
+	 * @return array
+	 */
+	public function getGroupMemberSet()
+	{
+		return $this->principalBackend->getGroupMemberSet($this->principalProperties['uri']);
+	}
+
+	/**
+	 * Returns the list of groups this principal is member of.
+	 *
+	 * If this principal is a member of a (list of) groups, this function
+	 * should return a list of principal uri's for it's members.
+	 *
+	 * @return array
+	 */
+	public function getGroupMembership()
+	{
+		return $this->principalBackend->getGroupMemberShip($this->principalProperties['uri']);
+	}
+
+	/**
+	 * Sets a list of group members.
+	 *
+	 * If this principal is a group, this method sets all the group members.
+	 * The list of members is always overwritten, never appended to.
+	 *
+	 * This method should throw an exception if the members could not be set.
+	 */
+	public function setGroupMemberSet(array $groupMembers)
+	{
+		$this->principalBackend->setGroupMemberSet($this->principalProperties['uri'], $groupMembers);
+	}
+
+	/**
+	 * Returns this principals name.
+	 *
+	 * @return string
+	 */
+	public function getName()
+	{
+		$uri = $this->principalProperties['uri'];
+		list(, $name) = Uri\split($uri);
+
+		return $name;
+	}
+
+	/**
+	 * Returns the name of the user.
+	 *
+	 * @return string
+	 */
+	public function getDisplayName()
+	{
+		if (isset($this->principalProperties['{DAV:}displayname'])) {
+			return $this->principalProperties['{DAV:}displayname'];
+		} else {
+			return $this->getName();
+		}
+	}
+
+	/**
+	 * Returns a list of properties.
+	 *
+	 * @param array $requestedProperties
+	 *
+	 * @return array
+	 */
+	public function getProperties($requestedProperties)
+	{
+		$newProperties = [];
+		foreach ($requestedProperties as $propName) {
+			if (isset($this->principalProperties[$propName])) {
+				$newProperties[$propName] = $this->principalProperties[$propName];
+			}
+		}
+
+		return $newProperties;
+	}
+
+	/**
+	 * Updates properties on this node.
+	 *
+	 * This method received a PropPatch object, which contains all the
+	 * information about the update.
+	 *
+	 * To update specific properties, call the 'handle' method on this object.
+	 * Read the PropPatch documentation for more information.
+	 */
+	public function propPatch(DAV\PropPatch $propPatch)
+	{
+		return $this->principalBackend->updatePrincipal(
+			$this->principalProperties['uri'],
+			$propPatch
+		);
+	}
+
+	/**
+	 * Returns the owner principal.
+	 *
+	 * This must be a url to a principal, or null if there's no owner
+	 *
+	 * @return string|null
+	 */
+	public function getOwner()
+	{
+		return $this->principalProperties['uri'];
+	}
 }

Please login to merge, or discard this patch.

htdocs/includes/sabre/sabre/dav/lib/DAVACL/IPrincipal.php 1 patch

Indentation +50 added lines, -50 removed lines patch added patch discarded remove patch

@@ -17,59 +17,59 @@
 block discarded – undo
  */
 interface IPrincipal extends DAV\INode
 {
-    /**
-     * Returns a list of alternative urls for a principal.
-     *
-     * This can for example be an email address, or ldap url.
-     *
-     * @return array
-     */
-    public function getAlternateUriSet();
+	/**
+	 * Returns a list of alternative urls for a principal.
+	 *
+	 * This can for example be an email address, or ldap url.
+	 *
+	 * @return array
+	 */
+	public function getAlternateUriSet();
 
-    /**
-     * Returns the full principal url.
-     *
-     * @return string
-     */
-    public function getPrincipalUrl();
+	/**
+	 * Returns the full principal url.
+	 *
+	 * @return string
+	 */
+	public function getPrincipalUrl();
 
-    /**
-     * Returns the list of group members.
-     *
-     * If this principal is a group, this function should return
-     * all member principal uri's for the group.
-     *
-     * @return array
-     */
-    public function getGroupMemberSet();
+	/**
+	 * Returns the list of group members.
+	 *
+	 * If this principal is a group, this function should return
+	 * all member principal uri's for the group.
+	 *
+	 * @return array
+	 */
+	public function getGroupMemberSet();
 
-    /**
-     * Returns the list of groups this principal is member of.
-     *
-     * If this principal is a member of a (list of) groups, this function
-     * should return a list of principal uri's for it's members.
-     *
-     * @return array
-     */
-    public function getGroupMembership();
+	/**
+	 * Returns the list of groups this principal is member of.
+	 *
+	 * If this principal is a member of a (list of) groups, this function
+	 * should return a list of principal uri's for it's members.
+	 *
+	 * @return array
+	 */
+	public function getGroupMembership();
 
-    /**
-     * Sets a list of group members.
-     *
-     * If this principal is a group, this method sets all the group members.
-     * The list of members is always overwritten, never appended to.
-     *
-     * This method should throw an exception if the members could not be set.
-     */
-    public function setGroupMemberSet(array $principals);
+	/**
+	 * Sets a list of group members.
+	 *
+	 * If this principal is a group, this method sets all the group members.
+	 * The list of members is always overwritten, never appended to.
+	 *
+	 * This method should throw an exception if the members could not be set.
+	 */
+	public function setGroupMemberSet(array $principals);
 
-    /**
-     * Returns the displayname.
-     *
-     * This should be a human readable name for the principal.
-     * If none is available, return the nodename.
-     *
-     * @return string
-     */
-    public function getDisplayName();
+	/**
+	 * Returns the displayname.
+	 *
+	 * This should be a human readable name for the principal.
+	 * If none is available, return the nodename.
+	 *
+	 * @return string
+	 */
+	public function getDisplayName();
 }

Please login to merge, or discard this patch.

htdocs/includes/sabre/sabre/dav/lib/DAVACL/Plugin.php 2 patches

Indentation +1499 added lines, -1499 removed lines patch added patch discarded remove patch

@@ -32,1484 +32,1484 @@  discard block
 block discarded – undo
  */
 class Plugin extends DAV\ServerPlugin
 {
-    /**
-     * Recursion constants.
-     *
-     * This only checks the base node
-     */
-    const R_PARENT = 1;
-
-    /**
-     * Recursion constants.
-     *
-     * This checks every node in the tree
-     */
-    const R_RECURSIVE = 2;
-
-    /**
-     * Recursion constants.
-     *
-     * This checks every parentnode in the tree, but not leaf-nodes.
-     */
-    const R_RECURSIVEPARENTS = 3;
-
-    /**
-     * Reference to server object.
-     *
-     * @var DAV\Server
-     */
-    protected $server;
-
-    /**
-     * List of urls containing principal collections.
-     * Modify this if your principals are located elsewhere.
-     *
-     * @var array
-     */
-    public $principalCollectionSet = [
-        'principals',
-    ];
-
-    /**
-     * By default nodes that are inaccessible by the user, can still be seen
-     * in directory listings (PROPFIND on parent with Depth: 1).
-     *
-     * In certain cases it's desirable to hide inaccessible nodes. Setting this
-     * to true will cause these nodes to be hidden from directory listings.
-     *
-     * @var bool
-     */
-    public $hideNodesFromListings = false;
-
-    /**
-     * This list of properties are the properties a client can search on using
-     * the {DAV:}principal-property-search report.
-     *
-     * The keys are the property names, values are descriptions.
-     *
-     * @var array
-     */
-    public $principalSearchPropertySet = [
-        '{DAV:}displayname' => 'Display name',
-        '{http://sabredav.org/ns}email-address' => 'Email address',
-    ];
-
-    /**
-     * Any principal uri's added here, will automatically be added to the list
-     * of ACL's. They will effectively receive {DAV:}all privileges, as a
-     * protected privilege.
-     *
-     * @var array
-     */
-    public $adminPrincipals = [];
-
-    /**
-     * The ACL plugin allows privileges to be assigned to users that are not
-     * logged in. To facilitate that, it modifies the auth plugin's behavior
-     * to only require login when a privileged operation was denied.
-     *
-     * Unauthenticated access can be considered a security concern, so it's
-     * possible to turn this feature off to harden the server's security.
-     *
-     * @var bool
-     */
-    public $allowUnauthenticatedAccess = true;
-
-    /**
-     * Returns a list of features added by this plugin.
-     *
-     * This list is used in the response of a HTTP OPTIONS request.
-     *
-     * @return array
-     */
-    public function getFeatures()
-    {
-        return ['access-control', 'calendarserver-principal-property-search'];
-    }
-
-    /**
-     * Returns a list of available methods for a given url.
-     *
-     * @param string $uri
-     *
-     * @return array
-     */
-    public function getMethods($uri)
-    {
-        return ['ACL'];
-    }
-
-    /**
-     * Returns a plugin name.
-     *
-     * Using this name other plugins will be able to access other plugins
-     * using Sabre\DAV\Server::getPlugin
-     *
-     * @return string
-     */
-    public function getPluginName()
-    {
-        return 'acl';
-    }
-
-    /**
-     * Returns a list of reports this plugin supports.
-     *
-     * This will be used in the {DAV:}supported-report-set property.
-     * Note that you still need to subscribe to the 'report' event to actually
-     * implement them
-     *
-     * @param string $uri
-     *
-     * @return array
-     */
-    public function getSupportedReportSet($uri)
-    {
-        return [
-            '{DAV:}expand-property',
-            '{DAV:}principal-match',
-            '{DAV:}principal-property-search',
-            '{DAV:}principal-search-property-set',
-        ];
-    }
-
-    /**
-     * Checks if the current user has the specified privilege(s).
-     *
-     * You can specify a single privilege, or a list of privileges.
-     * This method will throw an exception if the privilege is not available
-     * and return true otherwise.
-     *
-     * @param string       $uri
-     * @param array|string $privileges
-     * @param int          $recursion
-     * @param bool         $throwExceptions if set to false, this method won't throw exceptions
-     *
-     * @throws NeedPrivileges
-     * @throws NotAuthenticated
-     *
-     * @return bool
-     */
-    public function checkPrivileges($uri, $privileges, $recursion = self::R_PARENT, $throwExceptions = true)
-    {
-        if (!is_array($privileges)) {
-            $privileges = [$privileges];
-        }
-
-        $acl = $this->getCurrentUserPrivilegeSet($uri);
-
-        $failed = [];
-        foreach ($privileges as $priv) {
-            if (!in_array($priv, $acl)) {
-                $failed[] = $priv;
-            }
-        }
-
-        if ($failed) {
-            if ($this->allowUnauthenticatedAccess && is_null($this->getCurrentUserPrincipal())) {
-                // We are not authenticated. Kicking in the Auth plugin.
-                $authPlugin = $this->server->getPlugin('auth');
-                $reasons = $authPlugin->getLoginFailedReasons();
-                $authPlugin->challenge(
-                    $this->server->httpRequest,
-                    $this->server->httpResponse
-                );
-                throw new NotAuthenticated(implode(', ', $reasons).'. Login was needed for privilege: '.implode(', ', $failed).' on '.$uri);
-            }
-            if ($throwExceptions) {
-                throw new NeedPrivileges($uri, $failed);
-            } else {
-                return false;
-            }
-        }
-
-        return true;
-    }
-
-    /**
-     * Returns the standard users' principal.
-     *
-     * This is one authoritative principal url for the current user.
-     * This method will return null if the user wasn't logged in.
-     *
-     * @return string|null
-     */
-    public function getCurrentUserPrincipal()
-    {
-        /** @var $authPlugin \Sabre\DAV\Auth\Plugin */
-        $authPlugin = $this->server->getPlugin('auth');
-        if (!$authPlugin) {
-            return null;
-        }
-
-        return $authPlugin->getCurrentPrincipal();
-    }
-
-    /**
-     * Returns a list of principals that's associated to the current
-     * user, either directly or through group membership.
-     *
-     * @return array
-     */
-    public function getCurrentUserPrincipals()
-    {
-        $currentUser = $this->getCurrentUserPrincipal();
-
-        if (is_null($currentUser)) {
-            return [];
-        }
-
-        return array_merge(
-            [$currentUser],
-            $this->getPrincipalMembership($currentUser)
-        );
-    }
-
-    /**
-     * Sets the default ACL rules.
-     *
-     * These rules are used for all nodes that don't implement the IACL interface.
-     */
-    public function setDefaultAcl(array $acl)
-    {
-        $this->defaultAcl = $acl;
-    }
-
-    /**
-     * Returns the default ACL rules.
-     *
-     * These rules are used for all nodes that don't implement the IACL interface.
-     *
-     * @return array
-     */
-    public function getDefaultAcl()
-    {
-        return $this->defaultAcl;
-    }
-
-    /**
-     * The default ACL rules.
-     *
-     * These rules are used for nodes that don't implement IACL. These default
-     * set of rules allow anyone to do anything, as long as they are
-     * authenticated.
-     *
-     * @var array
-     */
-    protected $defaultAcl = [
-        [
-            'principal' => '{DAV:}authenticated',
-            'protected' => true,
-            'privilege' => '{DAV:}all',
-        ],
-    ];
-
-    /**
-     * This array holds a cache for all the principals that are associated with
-     * a single principal.
-     *
-     * @var array
-     */
-    protected $principalMembershipCache = [];
-
-    /**
-     * Returns all the principal groups the specified principal is a member of.
-     *
-     * @param string $mainPrincipal
-     *
-     * @return array
-     */
-    public function getPrincipalMembership($mainPrincipal)
-    {
-        // First check our cache
-        if (isset($this->principalMembershipCache[$mainPrincipal])) {
-            return $this->principalMembershipCache[$mainPrincipal];
-        }
-
-        $check = [$mainPrincipal];
-        $principals = [];
-
-        while (count($check)) {
-            $principal = array_shift($check);
-
-            $node = $this->server->tree->getNodeForPath($principal);
-            if ($node instanceof IPrincipal) {
-                foreach ($node->getGroupMembership() as $groupMember) {
-                    if (!in_array($groupMember, $principals)) {
-                        $check[] = $groupMember;
-                        $principals[] = $groupMember;
-                    }
-                }
-            }
-        }
-
-        // Store the result in the cache
-        $this->principalMembershipCache[$mainPrincipal] = $principals;
-
-        return $principals;
-    }
-
-    /**
-     * Find out of a principal equals another principal.
-     *
-     * This is a quick way to find out whether a principal URI is part of a
-     * group, or any subgroups.
-     *
-     * The first argument is the principal URI you want to check against. For
-     * example the principal group, and the second argument is the principal of
-     * which you want to find out of it is the same as the first principal, or
-     * in a member of the first principal's group or subgroups.
-     *
-     * So the arguments are not interchangeable. If principal A is in group B,
-     * passing 'B', 'A' will yield true, but 'A', 'B' is false.
-     *
-     * If the second argument is not passed, we will use the current user
-     * principal.
-     *
-     * @param string $checkPrincipal
-     * @param string $currentPrincipal
-     *
-     * @return bool
-     */
-    public function principalMatchesPrincipal($checkPrincipal, $currentPrincipal = null)
-    {
-        if (is_null($currentPrincipal)) {
-            $currentPrincipal = $this->getCurrentUserPrincipal();
-        }
-        if ($currentPrincipal === $checkPrincipal) {
-            return true;
-        }
-        if (is_null($currentPrincipal)) {
-            return false;
-        }
-
-        return in_array(
-            $checkPrincipal,
-            $this->getPrincipalMembership($currentPrincipal)
-        );
-    }
-
-    /**
-     * Returns a tree of supported privileges for a resource.
-     *
-     * The returned array structure should be in this form:
-     *
-     * [
-     *    [
-     *       'privilege' => '{DAV:}read',
-     *       'abstract'  => false,
-     *       'aggregates' => []
-     *    ]
-     * ]
-     *
-     * Privileges can be nested using "aggregates". Doing so means that
-     * if you assign someone the aggregating privilege, all the
-     * sub-privileges will automatically be granted.
-     *
-     * Marking a privilege as abstract means that the privilege cannot be
-     * directly assigned, but must be assigned via the parent privilege.
-     *
-     * So a more complex version might look like this:
-     *
-     * [
-     *    [
-     *       'privilege' => '{DAV:}read',
-     *       'abstract'  => false,
-     *       'aggregates' => [
-     *          [
-     *              'privilege'  => '{DAV:}read-acl',
-     *              'abstract'   => false,
-     *              'aggregates' => [],
-     *          ]
-     *       ]
-     *    ]
-     * ]
-     *
-     * @param string|INode $node
-     *
-     * @return array
-     */
-    public function getSupportedPrivilegeSet($node)
-    {
-        if (is_string($node)) {
-            $node = $this->server->tree->getNodeForPath($node);
-        }
-
-        $supportedPrivileges = null;
-        if ($node instanceof IACL) {
-            $supportedPrivileges = $node->getSupportedPrivilegeSet();
-        }
-
-        if (is_null($supportedPrivileges)) {
-            // Default
-            $supportedPrivileges = [
-                '{DAV:}read' => [
-                    'abstract' => false,
-                    'aggregates' => [
-                        '{DAV:}read-acl' => [
-                            'abstract' => false,
-                            'aggregates' => [],
-                        ],
-                        '{DAV:}read-current-user-privilege-set' => [
-                            'abstract' => false,
-                            'aggregates' => [],
-                        ],
-                    ],
-                ],
-                '{DAV:}write' => [
-                    'abstract' => false,
-                    'aggregates' => [
-                        '{DAV:}write-properties' => [
-                            'abstract' => false,
-                            'aggregates' => [],
-                        ],
-                        '{DAV:}write-content' => [
-                            'abstract' => false,
-                            'aggregates' => [],
-                        ],
-                        '{DAV:}unlock' => [
-                            'abstract' => false,
-                            'aggregates' => [],
-                        ],
-                    ],
-                ],
-            ];
-            if ($node instanceof DAV\ICollection) {
-                $supportedPrivileges['{DAV:}write']['aggregates']['{DAV:}bind'] = [
-                    'abstract' => false,
-                    'aggregates' => [],
-                ];
-                $supportedPrivileges['{DAV:}write']['aggregates']['{DAV:}unbind'] = [
-                    'abstract' => false,
-                    'aggregates' => [],
-                ];
-            }
-            if ($node instanceof IACL) {
-                $supportedPrivileges['{DAV:}write']['aggregates']['{DAV:}write-acl'] = [
-                    'abstract' => false,
-                    'aggregates' => [],
-                ];
-            }
-        }
-
-        $this->server->emit(
-            'getSupportedPrivilegeSet',
-            [$node, &$supportedPrivileges]
-        );
-
-        return $supportedPrivileges;
-    }
-
-    /**
-     * Returns the supported privilege set as a flat list.
-     *
-     * This is much easier to parse.
-     *
-     * The returned list will be index by privilege name.
-     * The value is a struct containing the following properties:
-     *   - aggregates
-     *   - abstract
-     *   - concrete
-     *
-     * @param string|INode $node
-     *
-     * @return array
-     */
-    final public function getFlatPrivilegeSet($node)
-    {
-        $privs = [
-            'abstract' => false,
-            'aggregates' => $this->getSupportedPrivilegeSet($node),
-        ];
-
-        $fpsTraverse = null;
-        $fpsTraverse = function ($privName, $privInfo, $concrete, &$flat) use (&$fpsTraverse) {
-            $myPriv = [
-                'privilege' => $privName,
-                'abstract' => isset($privInfo['abstract']) && $privInfo['abstract'],
-                'aggregates' => [],
-                'concrete' => isset($privInfo['abstract']) && $privInfo['abstract'] ? $concrete : $privName,
-            ];
-
-            if (isset($privInfo['aggregates'])) {
-                foreach ($privInfo['aggregates'] as $subPrivName => $subPrivInfo) {
-                    $myPriv['aggregates'][] = $subPrivName;
-                }
-            }
-
-            $flat[$privName] = $myPriv;
-
-            if (isset($privInfo['aggregates'])) {
-                foreach ($privInfo['aggregates'] as $subPrivName => $subPrivInfo) {
-                    $fpsTraverse($subPrivName, $subPrivInfo, $myPriv['concrete'], $flat);
-                }
-            }
-        };
-
-        $flat = [];
-        $fpsTraverse('{DAV:}all', $privs, null, $flat);
-
-        return $flat;
-    }
-
-    /**
-     * Returns the full ACL list.
-     *
-     * Either a uri or a INode may be passed.
-     *
-     * null will be returned if the node doesn't support ACLs.
-     *
-     * @param string|DAV\INode $node
-     *
-     * @return array
-     */
-    public function getAcl($node)
-    {
-        if (is_string($node)) {
-            $node = $this->server->tree->getNodeForPath($node);
-        }
-        if (!$node instanceof IACL) {
-            return $this->getDefaultAcl();
-        }
-        $acl = $node->getACL();
-        foreach ($this->adminPrincipals as $adminPrincipal) {
-            $acl[] = [
-                'principal' => $adminPrincipal,
-                'privilege' => '{DAV:}all',
-                'protected' => true,
-            ];
-        }
-
-        return $acl;
-    }
-
-    /**
-     * Returns a list of privileges the current user has
-     * on a particular node.
-     *
-     * Either a uri or a DAV\INode may be passed.
-     *
-     * null will be returned if the node doesn't support ACLs.
-     *
-     * @param string|DAV\INode $node
-     *
-     * @return array
-     */
-    public function getCurrentUserPrivilegeSet($node)
-    {
-        if (is_string($node)) {
-            $node = $this->server->tree->getNodeForPath($node);
-        }
-
-        $acl = $this->getACL($node);
-
-        $collected = [];
-
-        $isAuthenticated = null !== $this->getCurrentUserPrincipal();
-
-        foreach ($acl as $ace) {
-            $principal = $ace['principal'];
-
-            switch ($principal) {
-                case '{DAV:}owner':
-                    $owner = $node->getOwner();
-                    if ($owner && $this->principalMatchesPrincipal($owner)) {
-                        $collected[] = $ace;
-                    }
-                    break;
-
-                // 'all' matches for every user
-                case '{DAV:}all':
-                    $collected[] = $ace;
-                    break;
-
-                case '{DAV:}authenticated':
-                    // Authenticated users only
-                    if ($isAuthenticated) {
-                        $collected[] = $ace;
-                    }
-                    break;
-
-                case '{DAV:}unauthenticated':
-                    // Unauthenticated users only
-                    if (!$isAuthenticated) {
-                        $collected[] = $ace;
-                    }
-                    break;
-
-                default:
-                    if ($this->principalMatchesPrincipal($ace['principal'])) {
-                        $collected[] = $ace;
-                    }
-                    break;
-            }
-        }
-
-        // Now we deduct all aggregated privileges.
-        $flat = $this->getFlatPrivilegeSet($node);
-
-        $collected2 = [];
-        while (count($collected)) {
-            $current = array_pop($collected);
-            $collected2[] = $current['privilege'];
-
-            if (!isset($flat[$current['privilege']])) {
-                // Ignoring privileges that are not in the supported-privileges list.
-                $this->server->getLogger()->debug('A node has the "'.$current['privilege'].'" in its ACL list, but this privilege was not reported in the supportedPrivilegeSet list. This will be ignored.');
-                continue;
-            }
-            foreach ($flat[$current['privilege']]['aggregates'] as $subPriv) {
-                $collected2[] = $subPriv;
-                $collected[] = $flat[$subPriv];
-            }
-        }
-
-        return array_values(array_unique($collected2));
-    }
-
-    /**
-     * Returns a principal based on its uri.
-     *
-     * Returns null if the principal could not be found.
-     *
-     * @param string $uri
-     *
-     * @return string|null
-     */
-    public function getPrincipalByUri($uri)
-    {
-        $result = null;
-        $collections = $this->principalCollectionSet;
-        foreach ($collections as $collection) {
-            try {
-                $principalCollection = $this->server->tree->getNodeForPath($collection);
-            } catch (NotFound $e) {
-                // Ignore and move on
-                continue;
-            }
-
-            if (!$principalCollection instanceof IPrincipalCollection) {
-                // Not a principal collection, we're simply going to ignore
-                // this.
-                continue;
-            }
-
-            $result = $principalCollection->findByUri($uri);
-            if ($result) {
-                return $result;
-            }
-        }
-    }
-
-    /**
-     * Principal property search.
-     *
-     * This method can search for principals matching certain values in
-     * properties.
-     *
-     * This method will return a list of properties for the matched properties.
-     *
-     * @param array  $searchProperties    The properties to search on. This is a
-     *                                    key-value list. The keys are property
-     *                                    names, and the values the strings to
-     *                                    match them on.
-     * @param array  $requestedProperties this is the list of properties to
-     *                                    return for every match
-     * @param string $collectionUri       the principal collection to search on.
-     *                                    If this is ommitted, the standard
-     *                                    principal collection-set will be used
-     * @param string $test                "allof" to use AND to search the
-     *                                    properties. 'anyof' for OR.
-     *
-     * @return array This method returns an array structure similar to
-     *               Sabre\DAV\Server::getPropertiesForPath. Returned
-     *               properties are index by a HTTP status code.
-     */
-    public function principalSearch(array $searchProperties, array $requestedProperties, $collectionUri = null, $test = 'allof')
-    {
-        if (!is_null($collectionUri)) {
-            $uris = [$collectionUri];
-        } else {
-            $uris = $this->principalCollectionSet;
-        }
-
-        $lookupResults = [];
-        foreach ($uris as $uri) {
-            $principalCollection = $this->server->tree->getNodeForPath($uri);
-            if (!$principalCollection instanceof IPrincipalCollection) {
-                // Not a principal collection, we're simply going to ignore
-                // this.
-                continue;
-            }
-
-            $results = $principalCollection->searchPrincipals($searchProperties, $test);
-            foreach ($results as $result) {
-                $lookupResults[] = rtrim($uri, '/').'/'.$result;
-            }
-        }
-
-        $matches = [];
-
-        foreach ($lookupResults as $lookupResult) {
-            list($matches[]) = $this->server->getPropertiesForPath($lookupResult, $requestedProperties, 0);
-        }
-
-        return $matches;
-    }
-
-    /**
-     * Sets up the plugin.
-     *
-     * This method is automatically called by the server class.
-     */
-    public function initialize(DAV\Server $server)
-    {
-        if ($this->allowUnauthenticatedAccess) {
-            $authPlugin = $server->getPlugin('auth');
-            if (!$authPlugin) {
-                throw new \Exception('The Auth plugin must be loaded before the ACL plugin if you want to allow unauthenticated access.');
-            }
-            $authPlugin->autoRequireLogin = false;
-        }
-
-        $this->server = $server;
-        $server->on('propFind', [$this, 'propFind'], 20);
-        $server->on('beforeMethod:*', [$this, 'beforeMethod'], 20);
-        $server->on('beforeBind', [$this, 'beforeBind'], 20);
-        $server->on('beforeUnbind', [$this, 'beforeUnbind'], 20);
-        $server->on('propPatch', [$this, 'propPatch']);
-        $server->on('beforeUnlock', [$this, 'beforeUnlock'], 20);
-        $server->on('report', [$this, 'report']);
-        $server->on('method:ACL', [$this, 'httpAcl']);
-        $server->on('onHTMLActionsPanel', [$this, 'htmlActionsPanel']);
-        $server->on('getPrincipalByUri', function ($principal, &$uri) {
-            $uri = $this->getPrincipalByUri($principal);
-
-            // Break event chain
-            if ($uri) {
-                return false;
-            }
-        });
-
-        array_push($server->protectedProperties,
-            '{DAV:}alternate-URI-set',
-            '{DAV:}principal-URL',
-            '{DAV:}group-membership',
-            '{DAV:}principal-collection-set',
-            '{DAV:}current-user-principal',
-            '{DAV:}supported-privilege-set',
-            '{DAV:}current-user-privilege-set',
-            '{DAV:}acl',
-            '{DAV:}acl-restrictions',
-            '{DAV:}inherited-acl-set',
-            '{DAV:}owner',
-            '{DAV:}group'
-        );
-
-        // Automatically mapping nodes implementing IPrincipal to the
-        // {DAV:}principal resourcetype.
-        $server->resourceTypeMapping['Sabre\\DAVACL\\IPrincipal'] = '{DAV:}principal';
-
-        // Mapping the group-member-set property to the HrefList property
-        // class.
-        $server->xml->elementMap['{DAV:}group-member-set'] = 'Sabre\\DAV\\Xml\\Property\\Href';
-        $server->xml->elementMap['{DAV:}acl'] = 'Sabre\\DAVACL\\Xml\\Property\\Acl';
-        $server->xml->elementMap['{DAV:}acl-principal-prop-set'] = 'Sabre\\DAVACL\\Xml\\Request\\AclPrincipalPropSetReport';
-        $server->xml->elementMap['{DAV:}expand-property'] = 'Sabre\\DAVACL\\Xml\\Request\\ExpandPropertyReport';
-        $server->xml->elementMap['{DAV:}principal-property-search'] = 'Sabre\\DAVACL\\Xml\\Request\\PrincipalPropertySearchReport';
-        $server->xml->elementMap['{DAV:}principal-search-property-set'] = 'Sabre\\DAVACL\\Xml\\Request\\PrincipalSearchPropertySetReport';
-        $server->xml->elementMap['{DAV:}principal-match'] = 'Sabre\\DAVACL\\Xml\\Request\\PrincipalMatchReport';
-    }
-
-    /* {{{ Event handlers */
-
-    /**
-     * Triggered before any method is handled.
-     */
-    public function beforeMethod(RequestInterface $request, ResponseInterface $response)
-    {
-        $method = $request->getMethod();
-        $path = $request->getPath();
-
-        $exists = $this->server->tree->nodeExists($path);
-
-        // If the node doesn't exists, none of these checks apply
-        if (!$exists) {
-            return;
-        }
-
-        switch ($method) {
-            case 'GET':
-            case 'HEAD':
-            case 'OPTIONS':
-                // For these 3 we only need to know if the node is readable.
-                $this->checkPrivileges($path, '{DAV:}read');
-                break;
-
-            case 'PUT':
-            case 'LOCK':
-                // This method requires the write-content priv if the node
-                // already exists, and bind on the parent if the node is being
-                // created.
-                // The bind privilege is handled in the beforeBind event.
-                $this->checkPrivileges($path, '{DAV:}write-content');
-                break;
-
-            case 'UNLOCK':
-                // Unlock is always allowed at the moment.
-                break;
-
-            case 'PROPPATCH':
-                $this->checkPrivileges($path, '{DAV:}write-properties');
-                break;
-
-            case 'ACL':
-                $this->checkPrivileges($path, '{DAV:}write-acl');
-                break;
-
-            case 'COPY':
-            case 'MOVE':
-                // Copy requires read privileges on the entire source tree.
-                // If the target exists write-content normally needs to be
-                // checked, however, we're deleting the node beforehand and
-                // creating a new one after, so this is handled by the
-                // beforeUnbind event.
-                //
-                // The creation of the new node is handled by the beforeBind
-                // event.
-                //
-                // If MOVE is used beforeUnbind will also be used to check if
-                // the sourcenode can be deleted.
-                $this->checkPrivileges($path, '{DAV:}read', self::R_RECURSIVE);
-                break;
-        }
-    }
-
-    /**
-     * Triggered before a new node is created.
-     *
-     * This allows us to check permissions for any operation that creates a
-     * new node, such as PUT, MKCOL, MKCALENDAR, LOCK, COPY and MOVE.
-     *
-     * @param string $uri
-     */
-    public function beforeBind($uri)
-    {
-        list($parentUri) = Uri\split($uri);
-        $this->checkPrivileges($parentUri, '{DAV:}bind');
-    }
-
-    /**
-     * Triggered before a node is deleted.
-     *
-     * This allows us to check permissions for any operation that will delete
-     * an existing node.
-     *
-     * @param string $uri
-     */
-    public function beforeUnbind($uri)
-    {
-        list($parentUri) = Uri\split($uri);
-        $this->checkPrivileges($parentUri, '{DAV:}unbind', self::R_RECURSIVEPARENTS);
-    }
-
-    /**
-     * Triggered before a node is unlocked.
-     *
-     * @param string $uri
-     * @TODO: not yet implemented
-     */
-    public function beforeUnlock($uri, DAV\Locks\LockInfo $lock)
-    {
-    }
-
-    /**
-     * Triggered before properties are looked up in specific nodes.
-     *
-     * @TODO really should be broken into multiple methods, or even a class.
-     */
-    public function propFind(DAV\PropFind $propFind, DAV\INode $node)
-    {
-        $path = $propFind->getPath();
-
-        // Checking the read permission
-        if (!$this->checkPrivileges($path, '{DAV:}read', self::R_PARENT, false)) {
-            // User is not allowed to read properties
-
-            // Returning false causes the property-fetching system to pretend
-            // that the node does not exist, and will cause it to be hidden
-            // from listings such as PROPFIND or the browser plugin.
-            if ($this->hideNodesFromListings) {
-                return false;
-            }
-
-            // Otherwise we simply mark every property as 403.
-            foreach ($propFind->getRequestedProperties() as $requestedProperty) {
-                $propFind->set($requestedProperty, null, 403);
-            }
-
-            return;
-        }
-
-        /* Adding principal properties */
-        if ($node instanceof IPrincipal) {
-            $propFind->handle('{DAV:}alternate-URI-set', function () use ($node) {
-                return new Href($node->getAlternateUriSet());
-            });
-            $propFind->handle('{DAV:}principal-URL', function () use ($node) {
-                return new Href($node->getPrincipalUrl().'/');
-            });
-            $propFind->handle('{DAV:}group-member-set', function () use ($node) {
-                $members = $node->getGroupMemberSet();
-                foreach ($members as $k => $member) {
-                    $members[$k] = rtrim($member, '/').'/';
-                }
-
-                return new Href($members);
-            });
-            $propFind->handle('{DAV:}group-membership', function () use ($node) {
-                $members = $node->getGroupMembership();
-                foreach ($members as $k => $member) {
-                    $members[$k] = rtrim($member, '/').'/';
-                }
-
-                return new Href($members);
-            });
-            $propFind->handle('{DAV:}displayname', [$node, 'getDisplayName']);
-        }
-
-        $propFind->handle('{DAV:}principal-collection-set', function () {
-            $val = $this->principalCollectionSet;
-            // Ensuring all collections end with a slash
-            foreach ($val as $k => $v) {
-                $val[$k] = $v.'/';
-            }
-
-            return new Href($val);
-        });
-        $propFind->handle('{DAV:}current-user-principal', function () {
-            if ($url = $this->getCurrentUserPrincipal()) {
-                return new Xml\Property\Principal(Xml\Property\Principal::HREF, $url.'/');
-            } else {
-                return new Xml\Property\Principal(Xml\Property\Principal::UNAUTHENTICATED);
-            }
-        });
-        $propFind->handle('{DAV:}supported-privilege-set', function () use ($node) {
-            return new Xml\Property\SupportedPrivilegeSet($this->getSupportedPrivilegeSet($node));
-        });
-        $propFind->handle('{DAV:}current-user-privilege-set', function () use ($node, $propFind, $path) {
-            if (!$this->checkPrivileges($path, '{DAV:}read-current-user-privilege-set', self::R_PARENT, false)) {
-                $propFind->set('{DAV:}current-user-privilege-set', null, 403);
-            } else {
-                $val = $this->getCurrentUserPrivilegeSet($node);
-
-                return new Xml\Property\CurrentUserPrivilegeSet($val);
-            }
-        });
-        $propFind->handle('{DAV:}acl', function () use ($node, $propFind, $path) {
-            /* The ACL property contains all the permissions */
-            if (!$this->checkPrivileges($path, '{DAV:}read-acl', self::R_PARENT, false)) {
-                $propFind->set('{DAV:}acl', null, 403);
-            } else {
-                $acl = $this->getACL($node);
-
-                return new Xml\Property\Acl($this->getACL($node));
-            }
-        });
-        $propFind->handle('{DAV:}acl-restrictions', function () {
-            return new Xml\Property\AclRestrictions();
-        });
-
-        /* Adding ACL properties */
-        if ($node instanceof IACL) {
-            $propFind->handle('{DAV:}owner', function () use ($node) {
-                return new Href($node->getOwner().'/');
-            });
-        }
-    }
-
-    /**
-     * This method intercepts PROPPATCH methods and make sure the
-     * group-member-set is updated correctly.
-     *
-     * @param string $path
-     */
-    public function propPatch($path, DAV\PropPatch $propPatch)
-    {
-        $propPatch->handle('{DAV:}group-member-set', function ($value) use ($path) {
-            if (is_null($value)) {
-                $memberSet = [];
-            } elseif ($value instanceof Href) {
-                $memberSet = array_map(
-                    [$this->server, 'calculateUri'],
-                    $value->getHrefs()
-                );
-            } else {
-                throw new DAV\Exception('The group-member-set property MUST be an instance of Sabre\DAV\Property\HrefList or null');
-            }
-            $node = $this->server->tree->getNodeForPath($path);
-            if (!($node instanceof IPrincipal)) {
-                // Fail
-                return false;
-            }
-
-            $node->setGroupMemberSet($memberSet);
-            // We must also clear our cache, just in case
-
-            $this->principalMembershipCache = [];
-
-            return true;
-        });
-    }
-
-    /**
-     * This method handles HTTP REPORT requests.
-     *
-     * @param string $reportName
-     * @param mixed  $report
-     * @param mixed  $path
-     */
-    public function report($reportName, $report, $path)
-    {
-        switch ($reportName) {
-            case '{DAV:}principal-property-search':
-                $this->server->transactionType = 'report-principal-property-search';
-                $this->principalPropertySearchReport($path, $report);
-
-                return false;
-            case '{DAV:}principal-search-property-set':
-                $this->server->transactionType = 'report-principal-search-property-set';
-                $this->principalSearchPropertySetReport($path, $report);
-
-                return false;
-            case '{DAV:}expand-property':
-                $this->server->transactionType = 'report-expand-property';
-                $this->expandPropertyReport($path, $report);
-
-                return false;
-            case '{DAV:}principal-match':
-                $this->server->transactionType = 'report-principal-match';
-                $this->principalMatchReport($path, $report);
-
-                return false;
-            case '{DAV:}acl-principal-prop-set':
-                $this->server->transactionType = 'acl-principal-prop-set';
-                $this->aclPrincipalPropSetReport($path, $report);
-
-                return false;
-        }
-    }
-
-    /**
-     * This method is responsible for handling the 'ACL' event.
-     *
-     * @return bool
-     */
-    public function httpAcl(RequestInterface $request, ResponseInterface $response)
-    {
-        $path = $request->getPath();
-        $body = $request->getBodyAsString();
-
-        if (!$body) {
-            throw new DAV\Exception\BadRequest('XML body expected in ACL request');
-        }
-
-        $acl = $this->server->xml->expect('{DAV:}acl', $body);
-        $newAcl = $acl->getPrivileges();
-
-        // Normalizing urls
-        foreach ($newAcl as $k => $newAce) {
-            $newAcl[$k]['principal'] = $this->server->calculateUri($newAce['principal']);
-        }
-        $node = $this->server->tree->getNodeForPath($path);
-
-        if (!$node instanceof IACL) {
-            throw new DAV\Exception\MethodNotAllowed('This node does not support the ACL method');
-        }
-
-        $oldAcl = $this->getACL($node);
-
-        $supportedPrivileges = $this->getFlatPrivilegeSet($node);
-
-        /* Checking if protected principals from the existing principal set are
+	/**
+	 * Recursion constants.
+	 *
+	 * This only checks the base node
+	 */
+	const R_PARENT = 1;
+
+	/**
+	 * Recursion constants.
+	 *
+	 * This checks every node in the tree
+	 */
+	const R_RECURSIVE = 2;
+
+	/**
+	 * Recursion constants.
+	 *
+	 * This checks every parentnode in the tree, but not leaf-nodes.
+	 */
+	const R_RECURSIVEPARENTS = 3;
+
+	/**
+	 * Reference to server object.
+	 *
+	 * @var DAV\Server
+	 */
+	protected $server;
+
+	/**
+	 * List of urls containing principal collections.
+	 * Modify this if your principals are located elsewhere.
+	 *
+	 * @var array
+	 */
+	public $principalCollectionSet = [
+		'principals',
+	];
+
+	/**
+	 * By default nodes that are inaccessible by the user, can still be seen
+	 * in directory listings (PROPFIND on parent with Depth: 1).
+	 *
+	 * In certain cases it's desirable to hide inaccessible nodes. Setting this
+	 * to true will cause these nodes to be hidden from directory listings.
+	 *
+	 * @var bool
+	 */
+	public $hideNodesFromListings = false;
+
+	/**
+	 * This list of properties are the properties a client can search on using
+	 * the {DAV:}principal-property-search report.
+	 *
+	 * The keys are the property names, values are descriptions.
+	 *
+	 * @var array
+	 */
+	public $principalSearchPropertySet = [
+		'{DAV:}displayname' => 'Display name',
+		'{http://sabredav.org/ns}email-address' => 'Email address',
+	];
+
+	/**
+	 * Any principal uri's added here, will automatically be added to the list
+	 * of ACL's. They will effectively receive {DAV:}all privileges, as a
+	 * protected privilege.
+	 *
+	 * @var array
+	 */
+	public $adminPrincipals = [];
+
+	/**
+	 * The ACL plugin allows privileges to be assigned to users that are not
+	 * logged in. To facilitate that, it modifies the auth plugin's behavior
+	 * to only require login when a privileged operation was denied.
+	 *
+	 * Unauthenticated access can be considered a security concern, so it's
+	 * possible to turn this feature off to harden the server's security.
+	 *
+	 * @var bool
+	 */
+	public $allowUnauthenticatedAccess = true;
+
+	/**
+	 * Returns a list of features added by this plugin.
+	 *
+	 * This list is used in the response of a HTTP OPTIONS request.
+	 *
+	 * @return array
+	 */
+	public function getFeatures()
+	{
+		return ['access-control', 'calendarserver-principal-property-search'];
+	}
+
+	/**
+	 * Returns a list of available methods for a given url.
+	 *
+	 * @param string $uri
+	 *
+	 * @return array
+	 */
+	public function getMethods($uri)
+	{
+		return ['ACL'];
+	}
+
+	/**
+	 * Returns a plugin name.
+	 *
+	 * Using this name other plugins will be able to access other plugins
+	 * using Sabre\DAV\Server::getPlugin
+	 *
+	 * @return string
+	 */
+	public function getPluginName()
+	{
+		return 'acl';
+	}
+
+	/**
+	 * Returns a list of reports this plugin supports.
+	 *
+	 * This will be used in the {DAV:}supported-report-set property.
+	 * Note that you still need to subscribe to the 'report' event to actually
+	 * implement them
+	 *
+	 * @param string $uri
+	 *
+	 * @return array
+	 */
+	public function getSupportedReportSet($uri)
+	{
+		return [
+			'{DAV:}expand-property',
+			'{DAV:}principal-match',
+			'{DAV:}principal-property-search',
+			'{DAV:}principal-search-property-set',
+		];
+	}
+
+	/**
+	 * Checks if the current user has the specified privilege(s).
+	 *
+	 * You can specify a single privilege, or a list of privileges.
+	 * This method will throw an exception if the privilege is not available
+	 * and return true otherwise.
+	 *
+	 * @param string       $uri
+	 * @param array|string $privileges
+	 * @param int          $recursion
+	 * @param bool         $throwExceptions if set to false, this method won't throw exceptions
+	 *
+	 * @throws NeedPrivileges
+	 * @throws NotAuthenticated
+	 *
+	 * @return bool
+	 */
+	public function checkPrivileges($uri, $privileges, $recursion = self::R_PARENT, $throwExceptions = true)
+	{
+		if (!is_array($privileges)) {
+			$privileges = [$privileges];
+		}
+
+		$acl = $this->getCurrentUserPrivilegeSet($uri);
+
+		$failed = [];
+		foreach ($privileges as $priv) {
+			if (!in_array($priv, $acl)) {
+				$failed[] = $priv;
+			}
+		}
+
+		if ($failed) {
+			if ($this->allowUnauthenticatedAccess && is_null($this->getCurrentUserPrincipal())) {
+				// We are not authenticated. Kicking in the Auth plugin.
+				$authPlugin = $this->server->getPlugin('auth');
+				$reasons = $authPlugin->getLoginFailedReasons();
+				$authPlugin->challenge(
+					$this->server->httpRequest,
+					$this->server->httpResponse
+				);
+				throw new NotAuthenticated(implode(', ', $reasons).'. Login was needed for privilege: '.implode(', ', $failed).' on '.$uri);
+			}
+			if ($throwExceptions) {
+				throw new NeedPrivileges($uri, $failed);
+			} else {
+				return false;
+			}
+		}
+
+		return true;
+	}
+
+	/**
+	 * Returns the standard users' principal.
+	 *
+	 * This is one authoritative principal url for the current user.
+	 * This method will return null if the user wasn't logged in.
+	 *
+	 * @return string|null
+	 */
+	public function getCurrentUserPrincipal()
+	{
+		/** @var $authPlugin \Sabre\DAV\Auth\Plugin */
+		$authPlugin = $this->server->getPlugin('auth');
+		if (!$authPlugin) {
+			return null;
+		}
+
+		return $authPlugin->getCurrentPrincipal();
+	}
+
+	/**
+	 * Returns a list of principals that's associated to the current
+	 * user, either directly or through group membership.
+	 *
+	 * @return array
+	 */
+	public function getCurrentUserPrincipals()
+	{
+		$currentUser = $this->getCurrentUserPrincipal();
+
+		if (is_null($currentUser)) {
+			return [];
+		}
+
+		return array_merge(
+			[$currentUser],
+			$this->getPrincipalMembership($currentUser)
+		);
+	}
+
+	/**
+	 * Sets the default ACL rules.
+	 *
+	 * These rules are used for all nodes that don't implement the IACL interface.
+	 */
+	public function setDefaultAcl(array $acl)
+	{
+		$this->defaultAcl = $acl;
+	}
+
+	/**
+	 * Returns the default ACL rules.
+	 *
+	 * These rules are used for all nodes that don't implement the IACL interface.
+	 *
+	 * @return array
+	 */
+	public function getDefaultAcl()
+	{
+		return $this->defaultAcl;
+	}
+
+	/**
+	 * The default ACL rules.
+	 *
+	 * These rules are used for nodes that don't implement IACL. These default
+	 * set of rules allow anyone to do anything, as long as they are
+	 * authenticated.
+	 *
+	 * @var array
+	 */
+	protected $defaultAcl = [
+		[
+			'principal' => '{DAV:}authenticated',
+			'protected' => true,
+			'privilege' => '{DAV:}all',
+		],
+	];
+
+	/**
+	 * This array holds a cache for all the principals that are associated with
+	 * a single principal.
+	 *
+	 * @var array
+	 */
+	protected $principalMembershipCache = [];
+
+	/**
+	 * Returns all the principal groups the specified principal is a member of.
+	 *
+	 * @param string $mainPrincipal
+	 *
+	 * @return array
+	 */
+	public function getPrincipalMembership($mainPrincipal)
+	{
+		// First check our cache
+		if (isset($this->principalMembershipCache[$mainPrincipal])) {
+			return $this->principalMembershipCache[$mainPrincipal];
+		}
+
+		$check = [$mainPrincipal];
+		$principals = [];
+
+		while (count($check)) {
+			$principal = array_shift($check);
+
+			$node = $this->server->tree->getNodeForPath($principal);
+			if ($node instanceof IPrincipal) {
+				foreach ($node->getGroupMembership() as $groupMember) {
+					if (!in_array($groupMember, $principals)) {
+						$check[] = $groupMember;
+						$principals[] = $groupMember;
+					}
+				}
+			}
+		}
+
+		// Store the result in the cache
+		$this->principalMembershipCache[$mainPrincipal] = $principals;
+
+		return $principals;
+	}
+
+	/**
+	 * Find out of a principal equals another principal.
+	 *
+	 * This is a quick way to find out whether a principal URI is part of a
+	 * group, or any subgroups.
+	 *
+	 * The first argument is the principal URI you want to check against. For
+	 * example the principal group, and the second argument is the principal of
+	 * which you want to find out of it is the same as the first principal, or
+	 * in a member of the first principal's group or subgroups.
+	 *
+	 * So the arguments are not interchangeable. If principal A is in group B,
+	 * passing 'B', 'A' will yield true, but 'A', 'B' is false.
+	 *
+	 * If the second argument is not passed, we will use the current user
+	 * principal.
+	 *
+	 * @param string $checkPrincipal
+	 * @param string $currentPrincipal
+	 *
+	 * @return bool
+	 */
+	public function principalMatchesPrincipal($checkPrincipal, $currentPrincipal = null)
+	{
+		if (is_null($currentPrincipal)) {
+			$currentPrincipal = $this->getCurrentUserPrincipal();
+		}
+		if ($currentPrincipal === $checkPrincipal) {
+			return true;
+		}
+		if (is_null($currentPrincipal)) {
+			return false;
+		}
+
+		return in_array(
+			$checkPrincipal,
+			$this->getPrincipalMembership($currentPrincipal)
+		);
+	}
+
+	/**
+	 * Returns a tree of supported privileges for a resource.
+	 *
+	 * The returned array structure should be in this form:
+	 *
+	 * [
+	 *    [
+	 *       'privilege' => '{DAV:}read',
+	 *       'abstract'  => false,
+	 *       'aggregates' => []
+	 *    ]
+	 * ]
+	 *
+	 * Privileges can be nested using "aggregates". Doing so means that
+	 * if you assign someone the aggregating privilege, all the
+	 * sub-privileges will automatically be granted.
+	 *
+	 * Marking a privilege as abstract means that the privilege cannot be
+	 * directly assigned, but must be assigned via the parent privilege.
+	 *
+	 * So a more complex version might look like this:
+	 *
+	 * [
+	 *    [
+	 *       'privilege' => '{DAV:}read',
+	 *       'abstract'  => false,
+	 *       'aggregates' => [
+	 *          [
+	 *              'privilege'  => '{DAV:}read-acl',
+	 *              'abstract'   => false,
+	 *              'aggregates' => [],
+	 *          ]
+	 *       ]
+	 *    ]
+	 * ]
+	 *
+	 * @param string|INode $node
+	 *
+	 * @return array
+	 */
+	public function getSupportedPrivilegeSet($node)
+	{
+		if (is_string($node)) {
+			$node = $this->server->tree->getNodeForPath($node);
+		}
+
+		$supportedPrivileges = null;
+		if ($node instanceof IACL) {
+			$supportedPrivileges = $node->getSupportedPrivilegeSet();
+		}
+
+		if (is_null($supportedPrivileges)) {
+			// Default
+			$supportedPrivileges = [
+				'{DAV:}read' => [
+					'abstract' => false,
+					'aggregates' => [
+						'{DAV:}read-acl' => [
+							'abstract' => false,
+							'aggregates' => [],
+						],
+						'{DAV:}read-current-user-privilege-set' => [
+							'abstract' => false,
+							'aggregates' => [],
+						],
+					],
+				],
+				'{DAV:}write' => [
+					'abstract' => false,
+					'aggregates' => [
+						'{DAV:}write-properties' => [
+							'abstract' => false,
+							'aggregates' => [],
+						],
+						'{DAV:}write-content' => [
+							'abstract' => false,
+							'aggregates' => [],
+						],
+						'{DAV:}unlock' => [
+							'abstract' => false,
+							'aggregates' => [],
+						],
+					],
+				],
+			];
+			if ($node instanceof DAV\ICollection) {
+				$supportedPrivileges['{DAV:}write']['aggregates']['{DAV:}bind'] = [
+					'abstract' => false,
+					'aggregates' => [],
+				];
+				$supportedPrivileges['{DAV:}write']['aggregates']['{DAV:}unbind'] = [
+					'abstract' => false,
+					'aggregates' => [],
+				];
+			}
+			if ($node instanceof IACL) {
+				$supportedPrivileges['{DAV:}write']['aggregates']['{DAV:}write-acl'] = [
+					'abstract' => false,
+					'aggregates' => [],
+				];
+			}
+		}
+
+		$this->server->emit(
+			'getSupportedPrivilegeSet',
+			[$node, &$supportedPrivileges]
+		);
+
+		return $supportedPrivileges;
+	}
+
+	/**
+	 * Returns the supported privilege set as a flat list.
+	 *
+	 * This is much easier to parse.
+	 *
+	 * The returned list will be index by privilege name.
+	 * The value is a struct containing the following properties:
+	 *   - aggregates
+	 *   - abstract
+	 *   - concrete
+	 *
+	 * @param string|INode $node
+	 *
+	 * @return array
+	 */
+	final public function getFlatPrivilegeSet($node)
+	{
+		$privs = [
+			'abstract' => false,
+			'aggregates' => $this->getSupportedPrivilegeSet($node),
+		];
+
+		$fpsTraverse = null;
+		$fpsTraverse = function ($privName, $privInfo, $concrete, &$flat) use (&$fpsTraverse) {
+			$myPriv = [
+				'privilege' => $privName,
+				'abstract' => isset($privInfo['abstract']) && $privInfo['abstract'],
+				'aggregates' => [],
+				'concrete' => isset($privInfo['abstract']) && $privInfo['abstract'] ? $concrete : $privName,
+			];
+
+			if (isset($privInfo['aggregates'])) {
+				foreach ($privInfo['aggregates'] as $subPrivName => $subPrivInfo) {
+					$myPriv['aggregates'][] = $subPrivName;
+				}
+			}
+
+			$flat[$privName] = $myPriv;
+
+			if (isset($privInfo['aggregates'])) {
+				foreach ($privInfo['aggregates'] as $subPrivName => $subPrivInfo) {
+					$fpsTraverse($subPrivName, $subPrivInfo, $myPriv['concrete'], $flat);
+				}
+			}
+		};
+
+		$flat = [];
+		$fpsTraverse('{DAV:}all', $privs, null, $flat);
+
+		return $flat;
+	}
+
+	/**
+	 * Returns the full ACL list.
+	 *
+	 * Either a uri or a INode may be passed.
+	 *
+	 * null will be returned if the node doesn't support ACLs.
+	 *
+	 * @param string|DAV\INode $node
+	 *
+	 * @return array
+	 */
+	public function getAcl($node)
+	{
+		if (is_string($node)) {
+			$node = $this->server->tree->getNodeForPath($node);
+		}
+		if (!$node instanceof IACL) {
+			return $this->getDefaultAcl();
+		}
+		$acl = $node->getACL();
+		foreach ($this->adminPrincipals as $adminPrincipal) {
+			$acl[] = [
+				'principal' => $adminPrincipal,
+				'privilege' => '{DAV:}all',
+				'protected' => true,
+			];
+		}
+
+		return $acl;
+	}
+
+	/**
+	 * Returns a list of privileges the current user has
+	 * on a particular node.
+	 *
+	 * Either a uri or a DAV\INode may be passed.
+	 *
+	 * null will be returned if the node doesn't support ACLs.
+	 *
+	 * @param string|DAV\INode $node
+	 *
+	 * @return array
+	 */
+	public function getCurrentUserPrivilegeSet($node)
+	{
+		if (is_string($node)) {
+			$node = $this->server->tree->getNodeForPath($node);
+		}
+
+		$acl = $this->getACL($node);
+
+		$collected = [];
+
+		$isAuthenticated = null !== $this->getCurrentUserPrincipal();
+
+		foreach ($acl as $ace) {
+			$principal = $ace['principal'];
+
+			switch ($principal) {
+				case '{DAV:}owner':
+					$owner = $node->getOwner();
+					if ($owner && $this->principalMatchesPrincipal($owner)) {
+						$collected[] = $ace;
+					}
+					break;
+
+				// 'all' matches for every user
+				case '{DAV:}all':
+					$collected[] = $ace;
+					break;
+
+				case '{DAV:}authenticated':
+					// Authenticated users only
+					if ($isAuthenticated) {
+						$collected[] = $ace;
+					}
+					break;
+
+				case '{DAV:}unauthenticated':
+					// Unauthenticated users only
+					if (!$isAuthenticated) {
+						$collected[] = $ace;
+					}
+					break;
+
+				default:
+					if ($this->principalMatchesPrincipal($ace['principal'])) {
+						$collected[] = $ace;
+					}
+					break;
+			}
+		}
+
+		// Now we deduct all aggregated privileges.
+		$flat = $this->getFlatPrivilegeSet($node);
+
+		$collected2 = [];
+		while (count($collected)) {
+			$current = array_pop($collected);
+			$collected2[] = $current['privilege'];
+
+			if (!isset($flat[$current['privilege']])) {
+				// Ignoring privileges that are not in the supported-privileges list.
+				$this->server->getLogger()->debug('A node has the "'.$current['privilege'].'" in its ACL list, but this privilege was not reported in the supportedPrivilegeSet list. This will be ignored.');
+				continue;
+			}
+			foreach ($flat[$current['privilege']]['aggregates'] as $subPriv) {
+				$collected2[] = $subPriv;
+				$collected[] = $flat[$subPriv];
+			}
+		}
+
+		return array_values(array_unique($collected2));
+	}
+
+	/**
+	 * Returns a principal based on its uri.
+	 *
+	 * Returns null if the principal could not be found.
+	 *
+	 * @param string $uri
+	 *
+	 * @return string|null
+	 */
+	public function getPrincipalByUri($uri)
+	{
+		$result = null;
+		$collections = $this->principalCollectionSet;
+		foreach ($collections as $collection) {
+			try {
+				$principalCollection = $this->server->tree->getNodeForPath($collection);
+			} catch (NotFound $e) {
+				// Ignore and move on
+				continue;
+			}
+
+			if (!$principalCollection instanceof IPrincipalCollection) {
+				// Not a principal collection, we're simply going to ignore
+				// this.
+				continue;
+			}
+
+			$result = $principalCollection->findByUri($uri);
+			if ($result) {
+				return $result;
+			}
+		}
+	}
+
+	/**
+	 * Principal property search.
+	 *
+	 * This method can search for principals matching certain values in
+	 * properties.
+	 *
+	 * This method will return a list of properties for the matched properties.
+	 *
+	 * @param array  $searchProperties    The properties to search on. This is a
+	 *                                    key-value list. The keys are property
+	 *                                    names, and the values the strings to
+	 *                                    match them on.
+	 * @param array  $requestedProperties this is the list of properties to
+	 *                                    return for every match
+	 * @param string $collectionUri       the principal collection to search on.
+	 *                                    If this is ommitted, the standard
+	 *                                    principal collection-set will be used
+	 * @param string $test                "allof" to use AND to search the
+	 *                                    properties. 'anyof' for OR.
+	 *
+	 * @return array This method returns an array structure similar to
+	 *               Sabre\DAV\Server::getPropertiesForPath. Returned
+	 *               properties are index by a HTTP status code.
+	 */
+	public function principalSearch(array $searchProperties, array $requestedProperties, $collectionUri = null, $test = 'allof')
+	{
+		if (!is_null($collectionUri)) {
+			$uris = [$collectionUri];
+		} else {
+			$uris = $this->principalCollectionSet;
+		}
+
+		$lookupResults = [];
+		foreach ($uris as $uri) {
+			$principalCollection = $this->server->tree->getNodeForPath($uri);
+			if (!$principalCollection instanceof IPrincipalCollection) {
+				// Not a principal collection, we're simply going to ignore
+				// this.
+				continue;
+			}
+
+			$results = $principalCollection->searchPrincipals($searchProperties, $test);
+			foreach ($results as $result) {
+				$lookupResults[] = rtrim($uri, '/').'/'.$result;
+			}
+		}
+
+		$matches = [];
+
+		foreach ($lookupResults as $lookupResult) {
+			list($matches[]) = $this->server->getPropertiesForPath($lookupResult, $requestedProperties, 0);
+		}
+
+		return $matches;
+	}
+
+	/**
+	 * Sets up the plugin.
+	 *
+	 * This method is automatically called by the server class.
+	 */
+	public function initialize(DAV\Server $server)
+	{
+		if ($this->allowUnauthenticatedAccess) {
+			$authPlugin = $server->getPlugin('auth');
+			if (!$authPlugin) {
+				throw new \Exception('The Auth plugin must be loaded before the ACL plugin if you want to allow unauthenticated access.');
+			}
+			$authPlugin->autoRequireLogin = false;
+		}
+
+		$this->server = $server;
+		$server->on('propFind', [$this, 'propFind'], 20);
+		$server->on('beforeMethod:*', [$this, 'beforeMethod'], 20);
+		$server->on('beforeBind', [$this, 'beforeBind'], 20);
+		$server->on('beforeUnbind', [$this, 'beforeUnbind'], 20);
+		$server->on('propPatch', [$this, 'propPatch']);
+		$server->on('beforeUnlock', [$this, 'beforeUnlock'], 20);
+		$server->on('report', [$this, 'report']);
+		$server->on('method:ACL', [$this, 'httpAcl']);
+		$server->on('onHTMLActionsPanel', [$this, 'htmlActionsPanel']);
+		$server->on('getPrincipalByUri', function ($principal, &$uri) {
+			$uri = $this->getPrincipalByUri($principal);
+
+			// Break event chain
+			if ($uri) {
+				return false;
+			}
+		});
+
+		array_push($server->protectedProperties,
+			'{DAV:}alternate-URI-set',
+			'{DAV:}principal-URL',
+			'{DAV:}group-membership',
+			'{DAV:}principal-collection-set',
+			'{DAV:}current-user-principal',
+			'{DAV:}supported-privilege-set',
+			'{DAV:}current-user-privilege-set',
+			'{DAV:}acl',
+			'{DAV:}acl-restrictions',
+			'{DAV:}inherited-acl-set',
+			'{DAV:}owner',
+			'{DAV:}group'
+		);
+
+		// Automatically mapping nodes implementing IPrincipal to the
+		// {DAV:}principal resourcetype.
+		$server->resourceTypeMapping['Sabre\\DAVACL\\IPrincipal'] = '{DAV:}principal';
+
+		// Mapping the group-member-set property to the HrefList property
+		// class.
+		$server->xml->elementMap['{DAV:}group-member-set'] = 'Sabre\\DAV\\Xml\\Property\\Href';
+		$server->xml->elementMap['{DAV:}acl'] = 'Sabre\\DAVACL\\Xml\\Property\\Acl';
+		$server->xml->elementMap['{DAV:}acl-principal-prop-set'] = 'Sabre\\DAVACL\\Xml\\Request\\AclPrincipalPropSetReport';
+		$server->xml->elementMap['{DAV:}expand-property'] = 'Sabre\\DAVACL\\Xml\\Request\\ExpandPropertyReport';
+		$server->xml->elementMap['{DAV:}principal-property-search'] = 'Sabre\\DAVACL\\Xml\\Request\\PrincipalPropertySearchReport';
+		$server->xml->elementMap['{DAV:}principal-search-property-set'] = 'Sabre\\DAVACL\\Xml\\Request\\PrincipalSearchPropertySetReport';
+		$server->xml->elementMap['{DAV:}principal-match'] = 'Sabre\\DAVACL\\Xml\\Request\\PrincipalMatchReport';
+	}
+
+	/* {{{ Event handlers */
+
+	/**
+	 * Triggered before any method is handled.
+	 */
+	public function beforeMethod(RequestInterface $request, ResponseInterface $response)
+	{
+		$method = $request->getMethod();
+		$path = $request->getPath();
+
+		$exists = $this->server->tree->nodeExists($path);
+
+		// If the node doesn't exists, none of these checks apply
+		if (!$exists) {
+			return;
+		}
+
+		switch ($method) {
+			case 'GET':
+			case 'HEAD':
+			case 'OPTIONS':
+				// For these 3 we only need to know if the node is readable.
+				$this->checkPrivileges($path, '{DAV:}read');
+				break;
+
+			case 'PUT':
+			case 'LOCK':
+				// This method requires the write-content priv if the node
+				// already exists, and bind on the parent if the node is being
+				// created.
+				// The bind privilege is handled in the beforeBind event.
+				$this->checkPrivileges($path, '{DAV:}write-content');
+				break;
+
+			case 'UNLOCK':
+				// Unlock is always allowed at the moment.
+				break;
+
+			case 'PROPPATCH':
+				$this->checkPrivileges($path, '{DAV:}write-properties');
+				break;
+
+			case 'ACL':
+				$this->checkPrivileges($path, '{DAV:}write-acl');
+				break;
+
+			case 'COPY':
+			case 'MOVE':
+				// Copy requires read privileges on the entire source tree.
+				// If the target exists write-content normally needs to be
+				// checked, however, we're deleting the node beforehand and
+				// creating a new one after, so this is handled by the
+				// beforeUnbind event.
+				//
+				// The creation of the new node is handled by the beforeBind
+				// event.
+				//
+				// If MOVE is used beforeUnbind will also be used to check if
+				// the sourcenode can be deleted.
+				$this->checkPrivileges($path, '{DAV:}read', self::R_RECURSIVE);
+				break;
+		}
+	}
+
+	/**
+	 * Triggered before a new node is created.
+	 *
+	 * This allows us to check permissions for any operation that creates a
+	 * new node, such as PUT, MKCOL, MKCALENDAR, LOCK, COPY and MOVE.
+	 *
+	 * @param string $uri
+	 */
+	public function beforeBind($uri)
+	{
+		list($parentUri) = Uri\split($uri);
+		$this->checkPrivileges($parentUri, '{DAV:}bind');
+	}
+
+	/**
+	 * Triggered before a node is deleted.
+	 *
+	 * This allows us to check permissions for any operation that will delete
+	 * an existing node.
+	 *
+	 * @param string $uri
+	 */
+	public function beforeUnbind($uri)
+	{
+		list($parentUri) = Uri\split($uri);
+		$this->checkPrivileges($parentUri, '{DAV:}unbind', self::R_RECURSIVEPARENTS);
+	}
+
+	/**
+	 * Triggered before a node is unlocked.
+	 *
+	 * @param string $uri
+	 * @TODO: not yet implemented
+	 */
+	public function beforeUnlock($uri, DAV\Locks\LockInfo $lock)
+	{
+	}
+
+	/**
+	 * Triggered before properties are looked up in specific nodes.
+	 *
+	 * @TODO really should be broken into multiple methods, or even a class.
+	 */
+	public function propFind(DAV\PropFind $propFind, DAV\INode $node)
+	{
+		$path = $propFind->getPath();
+
+		// Checking the read permission
+		if (!$this->checkPrivileges($path, '{DAV:}read', self::R_PARENT, false)) {
+			// User is not allowed to read properties
+
+			// Returning false causes the property-fetching system to pretend
+			// that the node does not exist, and will cause it to be hidden
+			// from listings such as PROPFIND or the browser plugin.
+			if ($this->hideNodesFromListings) {
+				return false;
+			}
+
+			// Otherwise we simply mark every property as 403.
+			foreach ($propFind->getRequestedProperties() as $requestedProperty) {
+				$propFind->set($requestedProperty, null, 403);
+			}
+
+			return;
+		}
+
+		/* Adding principal properties */
+		if ($node instanceof IPrincipal) {
+			$propFind->handle('{DAV:}alternate-URI-set', function () use ($node) {
+				return new Href($node->getAlternateUriSet());
+			});
+			$propFind->handle('{DAV:}principal-URL', function () use ($node) {
+				return new Href($node->getPrincipalUrl().'/');
+			});
+			$propFind->handle('{DAV:}group-member-set', function () use ($node) {
+				$members = $node->getGroupMemberSet();
+				foreach ($members as $k => $member) {
+					$members[$k] = rtrim($member, '/').'/';
+				}
+
+				return new Href($members);
+			});
+			$propFind->handle('{DAV:}group-membership', function () use ($node) {
+				$members = $node->getGroupMembership();
+				foreach ($members as $k => $member) {
+					$members[$k] = rtrim($member, '/').'/';
+				}
+
+				return new Href($members);
+			});
+			$propFind->handle('{DAV:}displayname', [$node, 'getDisplayName']);
+		}
+
+		$propFind->handle('{DAV:}principal-collection-set', function () {
+			$val = $this->principalCollectionSet;
+			// Ensuring all collections end with a slash
+			foreach ($val as $k => $v) {
+				$val[$k] = $v.'/';
+			}
+
+			return new Href($val);
+		});
+		$propFind->handle('{DAV:}current-user-principal', function () {
+			if ($url = $this->getCurrentUserPrincipal()) {
+				return new Xml\Property\Principal(Xml\Property\Principal::HREF, $url.'/');
+			} else {
+				return new Xml\Property\Principal(Xml\Property\Principal::UNAUTHENTICATED);
+			}
+		});
+		$propFind->handle('{DAV:}supported-privilege-set', function () use ($node) {
+			return new Xml\Property\SupportedPrivilegeSet($this->getSupportedPrivilegeSet($node));
+		});
+		$propFind->handle('{DAV:}current-user-privilege-set', function () use ($node, $propFind, $path) {
+			if (!$this->checkPrivileges($path, '{DAV:}read-current-user-privilege-set', self::R_PARENT, false)) {
+				$propFind->set('{DAV:}current-user-privilege-set', null, 403);
+			} else {
+				$val = $this->getCurrentUserPrivilegeSet($node);
+
+				return new Xml\Property\CurrentUserPrivilegeSet($val);
+			}
+		});
+		$propFind->handle('{DAV:}acl', function () use ($node, $propFind, $path) {
+			/* The ACL property contains all the permissions */
+			if (!$this->checkPrivileges($path, '{DAV:}read-acl', self::R_PARENT, false)) {
+				$propFind->set('{DAV:}acl', null, 403);
+			} else {
+				$acl = $this->getACL($node);
+
+				return new Xml\Property\Acl($this->getACL($node));
+			}
+		});
+		$propFind->handle('{DAV:}acl-restrictions', function () {
+			return new Xml\Property\AclRestrictions();
+		});
+
+		/* Adding ACL properties */
+		if ($node instanceof IACL) {
+			$propFind->handle('{DAV:}owner', function () use ($node) {
+				return new Href($node->getOwner().'/');
+			});
+		}
+	}
+
+	/**
+	 * This method intercepts PROPPATCH methods and make sure the
+	 * group-member-set is updated correctly.
+	 *
+	 * @param string $path
+	 */
+	public function propPatch($path, DAV\PropPatch $propPatch)
+	{
+		$propPatch->handle('{DAV:}group-member-set', function ($value) use ($path) {
+			if (is_null($value)) {
+				$memberSet = [];
+			} elseif ($value instanceof Href) {
+				$memberSet = array_map(
+					[$this->server, 'calculateUri'],
+					$value->getHrefs()
+				);
+			} else {
+				throw new DAV\Exception('The group-member-set property MUST be an instance of Sabre\DAV\Property\HrefList or null');
+			}
+			$node = $this->server->tree->getNodeForPath($path);
+			if (!($node instanceof IPrincipal)) {
+				// Fail
+				return false;
+			}
+
+			$node->setGroupMemberSet($memberSet);
+			// We must also clear our cache, just in case
+
+			$this->principalMembershipCache = [];
+
+			return true;
+		});
+	}
+
+	/**
+	 * This method handles HTTP REPORT requests.
+	 *
+	 * @param string $reportName
+	 * @param mixed  $report
+	 * @param mixed  $path
+	 */
+	public function report($reportName, $report, $path)
+	{
+		switch ($reportName) {
+			case '{DAV:}principal-property-search':
+				$this->server->transactionType = 'report-principal-property-search';
+				$this->principalPropertySearchReport($path, $report);
+
+				return false;
+			case '{DAV:}principal-search-property-set':
+				$this->server->transactionType = 'report-principal-search-property-set';
+				$this->principalSearchPropertySetReport($path, $report);
+
+				return false;
+			case '{DAV:}expand-property':
+				$this->server->transactionType = 'report-expand-property';
+				$this->expandPropertyReport($path, $report);
+
+				return false;
+			case '{DAV:}principal-match':
+				$this->server->transactionType = 'report-principal-match';
+				$this->principalMatchReport($path, $report);
+
+				return false;
+			case '{DAV:}acl-principal-prop-set':
+				$this->server->transactionType = 'acl-principal-prop-set';
+				$this->aclPrincipalPropSetReport($path, $report);
+
+				return false;
+		}
+	}
+
+	/**
+	 * This method is responsible for handling the 'ACL' event.
+	 *
+	 * @return bool
+	 */
+	public function httpAcl(RequestInterface $request, ResponseInterface $response)
+	{
+		$path = $request->getPath();
+		$body = $request->getBodyAsString();
+
+		if (!$body) {
+			throw new DAV\Exception\BadRequest('XML body expected in ACL request');
+		}
+
+		$acl = $this->server->xml->expect('{DAV:}acl', $body);
+		$newAcl = $acl->getPrivileges();
+
+		// Normalizing urls
+		foreach ($newAcl as $k => $newAce) {
+			$newAcl[$k]['principal'] = $this->server->calculateUri($newAce['principal']);
+		}
+		$node = $this->server->tree->getNodeForPath($path);
+
+		if (!$node instanceof IACL) {
+			throw new DAV\Exception\MethodNotAllowed('This node does not support the ACL method');
+		}
+
+		$oldAcl = $this->getACL($node);
+
+		$supportedPrivileges = $this->getFlatPrivilegeSet($node);
+
+		/* Checking if protected principals from the existing principal set are
            not overwritten. */
-        foreach ($oldAcl as $oldAce) {
-            if (!isset($oldAce['protected']) || !$oldAce['protected']) {
-                continue;
-            }
-
-            $found = false;
-            foreach ($newAcl as $newAce) {
-                if (
-                    $newAce['privilege'] === $oldAce['privilege'] &&
-                    $newAce['principal'] === $oldAce['principal'] &&
-                    $newAce['protected']
-                ) {
-                    $found = true;
-                }
-            }
-
-            if (!$found) {
-                throw new Exception\AceConflict('This resource contained a protected {DAV:}ace, but this privilege did not occur in the ACL request');
-            }
-        }
-
-        foreach ($newAcl as $newAce) {
-            // Do we recognize the privilege
-            if (!isset($supportedPrivileges[$newAce['privilege']])) {
-                throw new Exception\NotSupportedPrivilege('The privilege you specified ('.$newAce['privilege'].') is not recognized by this server');
-            }
-
-            if ($supportedPrivileges[$newAce['privilege']]['abstract']) {
-                throw new Exception\NoAbstract('The privilege you specified ('.$newAce['privilege'].') is an abstract privilege');
-            }
-
-            // Looking up the principal
-            try {
-                $principal = $this->server->tree->getNodeForPath($newAce['principal']);
-            } catch (NotFound $e) {
-                throw new Exception\NotRecognizedPrincipal('The specified principal ('.$newAce['principal'].') does not exist');
-            }
-            if (!($principal instanceof IPrincipal)) {
-                throw new Exception\NotRecognizedPrincipal('The specified uri ('.$newAce['principal'].') is not a principal');
-            }
-        }
-        $node->setACL($newAcl);
-
-        $response->setStatus(200);
-
-        // Breaking the event chain, because we handled this method.
-        return false;
-    }
-
-    /* }}} */
-
-    /* Reports {{{ */
-
-    /**
-     * The principal-match report is defined in RFC3744, section 9.3.
-     *
-     * This report allows a client to figure out based on the current user,
-     * or a principal URL, the principal URL and principal URLs of groups that
-     * principal belongs to.
-     *
-     * @param string $path
-     */
-    protected function principalMatchReport($path, Xml\Request\PrincipalMatchReport $report)
-    {
-        $depth = $this->server->getHTTPDepth(0);
-        if (0 !== $depth) {
-            throw new BadRequest('The principal-match report is only defined on Depth: 0');
-        }
-
-        $currentPrincipals = $this->getCurrentUserPrincipals();
-
-        $result = [];
-
-        if (Xml\Request\PrincipalMatchReport::SELF === $report->type) {
-            // Finding all principals under the request uri that match the
-            // current principal.
-            foreach ($currentPrincipals as $currentPrincipal) {
-                if ($currentPrincipal === $path || 0 === strpos($currentPrincipal, $path.'/')) {
-                    $result[] = $currentPrincipal;
-                }
-            }
-        } else {
-            // We need to find all resources that have a property that matches
-            // one of the current principals.
-            $candidates = $this->server->getPropertiesForPath(
-                $path,
-                [$report->principalProperty],
-                1
-            );
-
-            foreach ($candidates as $candidate) {
-                if (!isset($candidate[200][$report->principalProperty])) {
-                    continue;
-                }
-
-                $hrefs = $candidate[200][$report->principalProperty];
-
-                if (!$hrefs instanceof Href) {
-                    continue;
-                }
-
-                foreach ($hrefs->getHrefs() as $href) {
-                    if (in_array(trim($href, '/'), $currentPrincipals)) {
-                        $result[] = $candidate['href'];
-                        continue 2;
-                    }
-                }
-            }
-        }
-
-        $responses = [];
-
-        foreach ($result as $item) {
-            $properties = [];
-
-            if ($report->properties) {
-                $foo = $this->server->getPropertiesForPath($item, $report->properties);
-                $foo = $foo[0];
-                $item = $foo['href'];
-                unset($foo['href']);
-                $properties = $foo;
-            }
-
-            $responses[] = new DAV\Xml\Element\Response(
-                $item,
-                $properties,
-                '200'
-            );
-        }
-
-        $this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
-        $this->server->httpResponse->setStatus(207);
-        $this->server->httpResponse->setBody(
-            $this->server->xml->write(
-                '{DAV:}multistatus',
-                $responses,
-                $this->server->getBaseUri()
-            )
-        );
-    }
-
-    /**
-     * The expand-property report is defined in RFC3253 section 3.8.
-     *
-     * This report is very similar to a standard PROPFIND. The difference is
-     * that it has the additional ability to look at properties containing a
-     * {DAV:}href element, follow that property and grab additional elements
-     * there.
-     *
-     * Other rfc's, such as ACL rely on this report, so it made sense to put
-     * it in this plugin.
-     *
-     * @param string                           $path
-     * @param Xml\Request\ExpandPropertyReport $report
-     */
-    protected function expandPropertyReport($path, $report)
-    {
-        $depth = $this->server->getHTTPDepth(0);
-
-        $result = $this->expandProperties($path, $report->properties, $depth);
-
-        $xml = $this->server->xml->write(
-            '{DAV:}multistatus',
-            new DAV\Xml\Response\MultiStatus($result),
-            $this->server->getBaseUri()
-        );
-        $this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
-        $this->server->httpResponse->setStatus(207);
-        $this->server->httpResponse->setBody($xml);
-    }
-
-    /**
-     * This method expands all the properties and returns
-     * a list with property values.
-     *
-     * @param array $path
-     * @param array $requestedProperties the list of required properties
-     * @param int   $depth
-     *
-     * @return array
-     */
-    protected function expandProperties($path, array $requestedProperties, $depth)
-    {
-        $foundProperties = $this->server->getPropertiesForPath($path, array_keys($requestedProperties), $depth);
-
-        $result = [];
-
-        foreach ($foundProperties as $node) {
-            foreach ($requestedProperties as $propertyName => $childRequestedProperties) {
-                // We're only traversing if sub-properties were requested
-                if (!is_array($childRequestedProperties) || 0 === count($childRequestedProperties)) {
-                    continue;
-                }
-
-                // We only have to do the expansion if the property was found
-                // and it contains an href element.
-                if (!array_key_exists($propertyName, $node[200])) {
-                    continue;
-                }
-
-                if (!$node[200][$propertyName] instanceof DAV\Xml\Property\Href) {
-                    continue;
-                }
-
-                $childHrefs = $node[200][$propertyName]->getHrefs();
-                $childProps = [];
-
-                foreach ($childHrefs as $href) {
-                    // Gathering the result of the children
-                    $childProps[] = [
-                        'name' => '{DAV:}response',
-                        'value' => $this->expandProperties($href, $childRequestedProperties, 0)[0],
-                    ];
-                }
-
-                // Replacing the property with its expanded form.
-                $node[200][$propertyName] = $childProps;
-            }
-            $result[] = new DAV\Xml\Element\Response($node['href'], $node);
-        }
-
-        return $result;
-    }
-
-    /**
-     * principalSearchPropertySetReport.
-     *
-     * This method responsible for handing the
-     * {DAV:}principal-search-property-set report. This report returns a list
-     * of properties the client may search on, using the
-     * {DAV:}principal-property-search report.
-     *
-     * @param string                                       $path
-     * @param Xml\Request\PrincipalSearchPropertySetReport $report
-     */
-    protected function principalSearchPropertySetReport($path, $report)
-    {
-        $httpDepth = $this->server->getHTTPDepth(0);
-        if (0 !== $httpDepth) {
-            throw new DAV\Exception\BadRequest('This report is only defined when Depth: 0');
-        }
-
-        $writer = $this->server->xml->getWriter();
-        $writer->openMemory();
-        $writer->startDocument();
-
-        $writer->startElement('{DAV:}principal-search-property-set');
-
-        foreach ($this->principalSearchPropertySet as $propertyName => $description) {
-            $writer->startElement('{DAV:}principal-search-property');
-            $writer->startElement('{DAV:}prop');
-
-            $writer->writeElement($propertyName);
-
-            $writer->endElement(); // prop
-
-            if ($description) {
-                $writer->write([[
-                    'name' => '{DAV:}description',
-                    'value' => $description,
-                    'attributes' => ['xml:lang' => 'en'],
-                ]]);
-            }
-
-            $writer->endElement(); // principal-search-property
-        }
-
-        $writer->endElement(); // principal-search-property-set
-
-        $this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
-        $this->server->httpResponse->setStatus(200);
-        $this->server->httpResponse->setBody($writer->outputMemory());
-    }
-
-    /**
-     * principalPropertySearchReport.
-     *
-     * This method is responsible for handing the
-     * {DAV:}principal-property-search report. This report can be used for
-     * clients to search for groups of principals, based on the value of one
-     * or more properties.
-     *
-     * @param string $path
-     */
-    protected function principalPropertySearchReport($path, Xml\Request\PrincipalPropertySearchReport $report)
-    {
-        if ($report->applyToPrincipalCollectionSet) {
-            $path = null;
-        }
-        if (0 !== $this->server->getHttpDepth('0')) {
-            throw new BadRequest('Depth must be 0');
-        }
-        $result = $this->principalSearch(
-            $report->searchProperties,
-            $report->properties,
-            $path,
-            $report->test
-        );
-
-        $prefer = $this->server->getHTTPPrefer();
-
-        $this->server->httpResponse->setStatus(207);
-        $this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
-        $this->server->httpResponse->setHeader('Vary', 'Brief,Prefer');
-        $this->server->httpResponse->setBody($this->server->generateMultiStatus($result, 'minimal' === $prefer['return']));
-    }
-
-    /**
-     * aclPrincipalPropSet REPORT.
-     *
-     * This method is responsible for handling the {DAV:}acl-principal-prop-set
-     * REPORT, as defined in:
-     *
-     * https://tools.ietf.org/html/rfc3744#section-9.2
-     *
-     * This REPORT allows a user to quickly fetch information about all
-     * principals specified in the access control list. Most commonly this
-     * is used to for example generate a UI with ACL rules, allowing you
-     * to show names for principals for every entry.
-     *
-     * @param string $path
-     */
-    protected function aclPrincipalPropSetReport($path, Xml\Request\AclPrincipalPropSetReport $report)
-    {
-        if (0 !== $this->server->getHTTPDepth(0)) {
-            throw new BadRequest('The {DAV:}acl-principal-prop-set REPORT only supports Depth 0');
-        }
-
-        // Fetching ACL rules for the given path. We're using the property
-        // API and not the local getACL, because it will ensure that all
-        // business rules and restrictions are applied.
-        $acl = $this->server->getProperties($path, '{DAV:}acl');
-
-        if (!$acl || !isset($acl['{DAV:}acl'])) {
-            throw new Forbidden('Could not fetch ACL rules for this path');
-        }
-
-        $principals = [];
-        foreach ($acl['{DAV:}acl']->getPrivileges() as $ace) {
-            if ('{' === $ace['principal'][0]) {
-                // It's not a principal, it's one of the special rules such as {DAV:}authenticated
-                continue;
-            }
-
-            $principals[] = $ace['principal'];
-        }
-
-        $properties = $this->server->getPropertiesForMultiplePaths(
-            $principals,
-            $report->properties
-        );
-
-        $this->server->httpResponse->setStatus(207);
-        $this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
-        $this->server->httpResponse->setBody(
-            $this->server->generateMultiStatus($properties)
-        );
-    }
-
-    /* }}} */
-
-    /**
-     * This method is used to generate HTML output for the
-     * DAV\Browser\Plugin. This allows us to generate an interface users
-     * can use to create new calendars.
-     *
-     * @param string $output
-     *
-     * @return bool
-     */
-    public function htmlActionsPanel(DAV\INode $node, &$output)
-    {
-        if (!$node instanceof PrincipalCollection) {
-            return;
-        }
-
-        $output .= '<tr><td colspan="2"><form method="post" action="">
+		foreach ($oldAcl as $oldAce) {
+			if (!isset($oldAce['protected']) || !$oldAce['protected']) {
+				continue;
+			}
+
+			$found = false;
+			foreach ($newAcl as $newAce) {
+				if (
+					$newAce['privilege'] === $oldAce['privilege'] &&
+					$newAce['principal'] === $oldAce['principal'] &&
+					$newAce['protected']
+				) {
+					$found = true;
+				}
+			}
+
+			if (!$found) {
+				throw new Exception\AceConflict('This resource contained a protected {DAV:}ace, but this privilege did not occur in the ACL request');
+			}
+		}
+
+		foreach ($newAcl as $newAce) {
+			// Do we recognize the privilege
+			if (!isset($supportedPrivileges[$newAce['privilege']])) {
+				throw new Exception\NotSupportedPrivilege('The privilege you specified ('.$newAce['privilege'].') is not recognized by this server');
+			}
+
+			if ($supportedPrivileges[$newAce['privilege']]['abstract']) {
+				throw new Exception\NoAbstract('The privilege you specified ('.$newAce['privilege'].') is an abstract privilege');
+			}
+
+			// Looking up the principal
+			try {
+				$principal = $this->server->tree->getNodeForPath($newAce['principal']);
+			} catch (NotFound $e) {
+				throw new Exception\NotRecognizedPrincipal('The specified principal ('.$newAce['principal'].') does not exist');
+			}
+			if (!($principal instanceof IPrincipal)) {
+				throw new Exception\NotRecognizedPrincipal('The specified uri ('.$newAce['principal'].') is not a principal');
+			}
+		}
+		$node->setACL($newAcl);
+
+		$response->setStatus(200);
+
+		// Breaking the event chain, because we handled this method.
+		return false;
+	}
+
+	/* }}} */
+
+	/* Reports {{{ */
+
+	/**
+	 * The principal-match report is defined in RFC3744, section 9.3.
+	 *
+	 * This report allows a client to figure out based on the current user,
+	 * or a principal URL, the principal URL and principal URLs of groups that
+	 * principal belongs to.
+	 *
+	 * @param string $path
+	 */
+	protected function principalMatchReport($path, Xml\Request\PrincipalMatchReport $report)
+	{
+		$depth = $this->server->getHTTPDepth(0);
+		if (0 !== $depth) {
+			throw new BadRequest('The principal-match report is only defined on Depth: 0');
+		}
+
+		$currentPrincipals = $this->getCurrentUserPrincipals();
+
+		$result = [];
+
+		if (Xml\Request\PrincipalMatchReport::SELF === $report->type) {
+			// Finding all principals under the request uri that match the
+			// current principal.
+			foreach ($currentPrincipals as $currentPrincipal) {
+				if ($currentPrincipal === $path || 0 === strpos($currentPrincipal, $path.'/')) {
+					$result[] = $currentPrincipal;
+				}
+			}
+		} else {
+			// We need to find all resources that have a property that matches
+			// one of the current principals.
+			$candidates = $this->server->getPropertiesForPath(
+				$path,
+				[$report->principalProperty],
+				1
+			);
+
+			foreach ($candidates as $candidate) {
+				if (!isset($candidate[200][$report->principalProperty])) {
+					continue;
+				}
+
+				$hrefs = $candidate[200][$report->principalProperty];
+
+				if (!$hrefs instanceof Href) {
+					continue;
+				}
+
+				foreach ($hrefs->getHrefs() as $href) {
+					if (in_array(trim($href, '/'), $currentPrincipals)) {
+						$result[] = $candidate['href'];
+						continue 2;
+					}
+				}
+			}
+		}
+
+		$responses = [];
+
+		foreach ($result as $item) {
+			$properties = [];
+
+			if ($report->properties) {
+				$foo = $this->server->getPropertiesForPath($item, $report->properties);
+				$foo = $foo[0];
+				$item = $foo['href'];
+				unset($foo['href']);
+				$properties = $foo;
+			}
+
+			$responses[] = new DAV\Xml\Element\Response(
+				$item,
+				$properties,
+				'200'
+			);
+		}
+
+		$this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
+		$this->server->httpResponse->setStatus(207);
+		$this->server->httpResponse->setBody(
+			$this->server->xml->write(
+				'{DAV:}multistatus',
+				$responses,
+				$this->server->getBaseUri()
+			)
+		);
+	}
+
+	/**
+	 * The expand-property report is defined in RFC3253 section 3.8.
+	 *
+	 * This report is very similar to a standard PROPFIND. The difference is
+	 * that it has the additional ability to look at properties containing a
+	 * {DAV:}href element, follow that property and grab additional elements
+	 * there.
+	 *
+	 * Other rfc's, such as ACL rely on this report, so it made sense to put
+	 * it in this plugin.
+	 *
+	 * @param string                           $path
+	 * @param Xml\Request\ExpandPropertyReport $report
+	 */
+	protected function expandPropertyReport($path, $report)
+	{
+		$depth = $this->server->getHTTPDepth(0);
+
+		$result = $this->expandProperties($path, $report->properties, $depth);
+
+		$xml = $this->server->xml->write(
+			'{DAV:}multistatus',
+			new DAV\Xml\Response\MultiStatus($result),
+			$this->server->getBaseUri()
+		);
+		$this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
+		$this->server->httpResponse->setStatus(207);
+		$this->server->httpResponse->setBody($xml);
+	}
+
+	/**
+	 * This method expands all the properties and returns
+	 * a list with property values.
+	 *
+	 * @param array $path
+	 * @param array $requestedProperties the list of required properties
+	 * @param int   $depth
+	 *
+	 * @return array
+	 */
+	protected function expandProperties($path, array $requestedProperties, $depth)
+	{
+		$foundProperties = $this->server->getPropertiesForPath($path, array_keys($requestedProperties), $depth);
+
+		$result = [];
+
+		foreach ($foundProperties as $node) {
+			foreach ($requestedProperties as $propertyName => $childRequestedProperties) {
+				// We're only traversing if sub-properties were requested
+				if (!is_array($childRequestedProperties) || 0 === count($childRequestedProperties)) {
+					continue;
+				}
+
+				// We only have to do the expansion if the property was found
+				// and it contains an href element.
+				if (!array_key_exists($propertyName, $node[200])) {
+					continue;
+				}
+
+				if (!$node[200][$propertyName] instanceof DAV\Xml\Property\Href) {
+					continue;
+				}
+
+				$childHrefs = $node[200][$propertyName]->getHrefs();
+				$childProps = [];
+
+				foreach ($childHrefs as $href) {
+					// Gathering the result of the children
+					$childProps[] = [
+						'name' => '{DAV:}response',
+						'value' => $this->expandProperties($href, $childRequestedProperties, 0)[0],
+					];
+				}
+
+				// Replacing the property with its expanded form.
+				$node[200][$propertyName] = $childProps;
+			}
+			$result[] = new DAV\Xml\Element\Response($node['href'], $node);
+		}
+
+		return $result;
+	}
+
+	/**
+	 * principalSearchPropertySetReport.
+	 *
+	 * This method responsible for handing the
+	 * {DAV:}principal-search-property-set report. This report returns a list
+	 * of properties the client may search on, using the
+	 * {DAV:}principal-property-search report.
+	 *
+	 * @param string                                       $path
+	 * @param Xml\Request\PrincipalSearchPropertySetReport $report
+	 */
+	protected function principalSearchPropertySetReport($path, $report)
+	{
+		$httpDepth = $this->server->getHTTPDepth(0);
+		if (0 !== $httpDepth) {
+			throw new DAV\Exception\BadRequest('This report is only defined when Depth: 0');
+		}
+
+		$writer = $this->server->xml->getWriter();
+		$writer->openMemory();
+		$writer->startDocument();
+
+		$writer->startElement('{DAV:}principal-search-property-set');
+
+		foreach ($this->principalSearchPropertySet as $propertyName => $description) {
+			$writer->startElement('{DAV:}principal-search-property');
+			$writer->startElement('{DAV:}prop');
+
+			$writer->writeElement($propertyName);
+
+			$writer->endElement(); // prop
+
+			if ($description) {
+				$writer->write([[
+					'name' => '{DAV:}description',
+					'value' => $description,
+					'attributes' => ['xml:lang' => 'en'],
+				]]);
+			}
+
+			$writer->endElement(); // principal-search-property
+		}
+
+		$writer->endElement(); // principal-search-property-set
+
+		$this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
+		$this->server->httpResponse->setStatus(200);
+		$this->server->httpResponse->setBody($writer->outputMemory());
+	}
+
+	/**
+	 * principalPropertySearchReport.
+	 *
+	 * This method is responsible for handing the
+	 * {DAV:}principal-property-search report. This report can be used for
+	 * clients to search for groups of principals, based on the value of one
+	 * or more properties.
+	 *
+	 * @param string $path
+	 */
+	protected function principalPropertySearchReport($path, Xml\Request\PrincipalPropertySearchReport $report)
+	{
+		if ($report->applyToPrincipalCollectionSet) {
+			$path = null;
+		}
+		if (0 !== $this->server->getHttpDepth('0')) {
+			throw new BadRequest('Depth must be 0');
+		}
+		$result = $this->principalSearch(
+			$report->searchProperties,
+			$report->properties,
+			$path,
+			$report->test
+		);
+
+		$prefer = $this->server->getHTTPPrefer();
+
+		$this->server->httpResponse->setStatus(207);
+		$this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
+		$this->server->httpResponse->setHeader('Vary', 'Brief,Prefer');
+		$this->server->httpResponse->setBody($this->server->generateMultiStatus($result, 'minimal' === $prefer['return']));
+	}
+
+	/**
+	 * aclPrincipalPropSet REPORT.
+	 *
+	 * This method is responsible for handling the {DAV:}acl-principal-prop-set
+	 * REPORT, as defined in:
+	 *
+	 * https://tools.ietf.org/html/rfc3744#section-9.2
+	 *
+	 * This REPORT allows a user to quickly fetch information about all
+	 * principals specified in the access control list. Most commonly this
+	 * is used to for example generate a UI with ACL rules, allowing you
+	 * to show names for principals for every entry.
+	 *
+	 * @param string $path
+	 */
+	protected function aclPrincipalPropSetReport($path, Xml\Request\AclPrincipalPropSetReport $report)
+	{
+		if (0 !== $this->server->getHTTPDepth(0)) {
+			throw new BadRequest('The {DAV:}acl-principal-prop-set REPORT only supports Depth 0');
+		}
+
+		// Fetching ACL rules for the given path. We're using the property
+		// API and not the local getACL, because it will ensure that all
+		// business rules and restrictions are applied.
+		$acl = $this->server->getProperties($path, '{DAV:}acl');
+
+		if (!$acl || !isset($acl['{DAV:}acl'])) {
+			throw new Forbidden('Could not fetch ACL rules for this path');
+		}
+
+		$principals = [];
+		foreach ($acl['{DAV:}acl']->getPrivileges() as $ace) {
+			if ('{' === $ace['principal'][0]) {
+				// It's not a principal, it's one of the special rules such as {DAV:}authenticated
+				continue;
+			}
+
+			$principals[] = $ace['principal'];
+		}
+
+		$properties = $this->server->getPropertiesForMultiplePaths(
+			$principals,
+			$report->properties
+		);
+
+		$this->server->httpResponse->setStatus(207);
+		$this->server->httpResponse->setHeader('Content-Type', 'application/xml; charset=utf-8');
+		$this->server->httpResponse->setBody(
+			$this->server->generateMultiStatus($properties)
+		);
+	}
+
+	/* }}} */
+
+	/**
+	 * This method is used to generate HTML output for the
+	 * DAV\Browser\Plugin. This allows us to generate an interface users
+	 * can use to create new calendars.
+	 *
+	 * @param string $output
+	 *
+	 * @return bool
+	 */
+	public function htmlActionsPanel(DAV\INode $node, &$output)
+	{
+		if (!$node instanceof PrincipalCollection) {
+			return;
+		}
+
+		$output .= '<tr><td colspan="2"><form method="post" action="">
             <h3>Create new principal</h3>
             <input type="hidden" name="sabreAction" value="mkcol" />
             <input type="hidden" name="resourceType" value="{DAV:}principal" />
@@ -1520,26 +1520,26 @@  discard block
 block discarded – undo
             </form>
             </td></tr>';
 
-        return false;
-    }
-
-    /**
-     * Returns a bunch of meta-data about the plugin.
-     *
-     * Providing this information is optional, and is mainly displayed by the
-     * Browser plugin.
-     *
-     * The description key in the returned array may contain html and will not
-     * be sanitized.
-     *
-     * @return array
-     */
-    public function getPluginInfo()
-    {
-        return [
-            'name' => $this->getPluginName(),
-            'description' => 'Adds support for WebDAV ACL (rfc3744)',
-            'link' => 'http://sabre.io/dav/acl/',
-        ];
-    }
+		return false;
+	}
+
+	/**
+	 * Returns a bunch of meta-data about the plugin.
+	 *
+	 * Providing this information is optional, and is mainly displayed by the
+	 * Browser plugin.
+	 *
+	 * The description key in the returned array may contain html and will not
+	 * be sanitized.
+	 *
+	 * @return array
+	 */
+	public function getPluginInfo()
+	{
+		return [
+			'name' => $this->getPluginName(),
+			'description' => 'Adds support for WebDAV ACL (rfc3744)',
+			'link' => 'http://sabre.io/dav/acl/',
+		];
+	}
 }

Please login to merge, or discard this patch.

Spacing +14 added lines, -14 removed lines patch added patch discarded remove patch

@@ -523,7 +523,7 @@  discard block
 block discarded – undo
         ];
 
         $fpsTraverse = null;
-        $fpsTraverse = function ($privName, $privInfo, $concrete, &$flat) use (&$fpsTraverse) {
+        $fpsTraverse = function($privName, $privInfo, $concrete, &$flat) use (&$fpsTraverse) {
             $myPriv = [
                 'privilege' => $privName,
                 'abstract' => isset($privInfo['abstract']) && $privInfo['abstract'],
@@ -782,7 +782,7 @@  discard block
 block discarded – undo
         $server->on('report', [$this, 'report']);
         $server->on('method:ACL', [$this, 'httpAcl']);
         $server->on('onHTMLActionsPanel', [$this, 'htmlActionsPanel']);
-        $server->on('getPrincipalByUri', function ($principal, &$uri) {
+        $server->on('getPrincipalByUri', function($principal, &$uri) {
             $uri = $this->getPrincipalByUri($principal);
 
             // Break event chain
@@ -953,13 +953,13 @@  discard block
 block discarded – undo
 
         /* Adding principal properties */
         if ($node instanceof IPrincipal) {
-            $propFind->handle('{DAV:}alternate-URI-set', function () use ($node) {
+            $propFind->handle('{DAV:}alternate-URI-set', function() use ($node) {
                 return new Href($node->getAlternateUriSet());
             });
-            $propFind->handle('{DAV:}principal-URL', function () use ($node) {
+            $propFind->handle('{DAV:}principal-URL', function() use ($node) {
                 return new Href($node->getPrincipalUrl().'/');
             });
-            $propFind->handle('{DAV:}group-member-set', function () use ($node) {
+            $propFind->handle('{DAV:}group-member-set', function() use ($node) {
                 $members = $node->getGroupMemberSet();
                 foreach ($members as $k => $member) {
                     $members[$k] = rtrim($member, '/').'/';
@@ -967,7 +967,7 @@  discard block
 block discarded – undo
 
                 return new Href($members);
             });
-            $propFind->handle('{DAV:}group-membership', function () use ($node) {
+            $propFind->handle('{DAV:}group-membership', function() use ($node) {
                 $members = $node->getGroupMembership();
                 foreach ($members as $k => $member) {
                     $members[$k] = rtrim($member, '/').'/';
@@ -978,7 +978,7 @@  discard block
 block discarded – undo
             $propFind->handle('{DAV:}displayname', [$node, 'getDisplayName']);
         }
 
-        $propFind->handle('{DAV:}principal-collection-set', function () {
+        $propFind->handle('{DAV:}principal-collection-set', function() {
             $val = $this->principalCollectionSet;
             // Ensuring all collections end with a slash
             foreach ($val as $k => $v) {
@@ -987,17 +987,17 @@  discard block
 block discarded – undo
 
             return new Href($val);
         });
-        $propFind->handle('{DAV:}current-user-principal', function () {
+        $propFind->handle('{DAV:}current-user-principal', function() {
             if ($url = $this->getCurrentUserPrincipal()) {
                 return new Xml\Property\Principal(Xml\Property\Principal::HREF, $url.'/');
             } else {
                 return new Xml\Property\Principal(Xml\Property\Principal::UNAUTHENTICATED);
             }
         });
-        $propFind->handle('{DAV:}supported-privilege-set', function () use ($node) {
+        $propFind->handle('{DAV:}supported-privilege-set', function() use ($node) {
             return new Xml\Property\SupportedPrivilegeSet($this->getSupportedPrivilegeSet($node));
         });
-        $propFind->handle('{DAV:}current-user-privilege-set', function () use ($node, $propFind, $path) {
+        $propFind->handle('{DAV:}current-user-privilege-set', function() use ($node, $propFind, $path) {
             if (!$this->checkPrivileges($path, '{DAV:}read-current-user-privilege-set', self::R_PARENT, false)) {
                 $propFind->set('{DAV:}current-user-privilege-set', null, 403);
             } else {
@@ -1006,7 +1006,7 @@  discard block
 block discarded – undo
                 return new Xml\Property\CurrentUserPrivilegeSet($val);
             }
         });
-        $propFind->handle('{DAV:}acl', function () use ($node, $propFind, $path) {
+        $propFind->handle('{DAV:}acl', function() use ($node, $propFind, $path) {
             /* The ACL property contains all the permissions */
             if (!$this->checkPrivileges($path, '{DAV:}read-acl', self::R_PARENT, false)) {
                 $propFind->set('{DAV:}acl', null, 403);
@@ -1016,13 +1016,13 @@  discard block
 block discarded – undo
                 return new Xml\Property\Acl($this->getACL($node));
             }
         });
-        $propFind->handle('{DAV:}acl-restrictions', function () {
+        $propFind->handle('{DAV:}acl-restrictions', function() {
             return new Xml\Property\AclRestrictions();
         });
 
         /* Adding ACL properties */
         if ($node instanceof IACL) {
-            $propFind->handle('{DAV:}owner', function () use ($node) {
+            $propFind->handle('{DAV:}owner', function() use ($node) {
                 return new Href($node->getOwner().'/');
             });
         }
@@ -1036,7 +1036,7 @@  discard block
 block discarded – undo
      */
     public function propPatch($path, DAV\PropPatch $propPatch)
     {
-        $propPatch->handle('{DAV:}group-member-set', function ($value) use ($path) {
+        $propPatch->handle('{DAV:}group-member-set', function($value) use ($path) {
             if (is_null($value)) {
                 $memberSet = [];
             } elseif ($value instanceof Href) {

Please login to merge, or discard this patch.

htdocs/includes/sabre/sabre/dav/lib/DAVACL/FS/File.php 1 patch

Indentation +53 added lines, -53 removed lines patch added patch discarded remove patch

@@ -17,62 +17,62 @@
 block discarded – undo
  */
 class File extends BaseFile implements IACL
 {
-    use ACLTrait;
+	use ACLTrait;
 
-    /**
-     * A list of ACL rules.
-     *
-     * @var array
-     */
-    protected $acl;
+	/**
+	 * A list of ACL rules.
+	 *
+	 * @var array
+	 */
+	protected $acl;
 
-    /**
-     * Owner uri, or null for no owner.
-     *
-     * @var string|null
-     */
-    protected $owner;
+	/**
+	 * Owner uri, or null for no owner.
+	 *
+	 * @var string|null
+	 */
+	protected $owner;
 
-    /**
-     * Constructor.
-     *
-     * @param string      $path  on-disk path
-     * @param array       $acl   ACL rules
-     * @param string|null $owner principal owner string
-     */
-    public function __construct($path, array $acl, $owner = null)
-    {
-        parent::__construct($path);
-        $this->acl = $acl;
-        $this->owner = $owner;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param string      $path  on-disk path
+	 * @param array       $acl   ACL rules
+	 * @param string|null $owner principal owner string
+	 */
+	public function __construct($path, array $acl, $owner = null)
+	{
+		parent::__construct($path);
+		$this->acl = $acl;
+		$this->owner = $owner;
+	}
 
-    /**
-     * Returns the owner principal.
-     *
-     * This must be a url to a principal, or null if there's no owner
-     *
-     * @return string|null
-     */
-    public function getOwner()
-    {
-        return $this->owner;
-    }
+	/**
+	 * Returns the owner principal.
+	 *
+	 * This must be a url to a principal, or null if there's no owner
+	 *
+	 * @return string|null
+	 */
+	public function getOwner()
+	{
+		return $this->owner;
+	}
 
-    /**
-     * Returns a list of ACE's for this node.
-     *
-     * Each ACE has the following properties:
-     *   * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
-     *     currently the only supported privileges
-     *   * 'principal', a url to the principal who owns the node
-     *   * 'protected' (optional), indicating that this ACE is not allowed to
-     *      be updated.
-     *
-     * @return array
-     */
-    public function getACL()
-    {
-        return $this->acl;
-    }
+	/**
+	 * Returns a list of ACE's for this node.
+	 *
+	 * Each ACE has the following properties:
+	 *   * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
+	 *     currently the only supported privileges
+	 *   * 'principal', a url to the principal who owns the node
+	 *   * 'protected' (optional), indicating that this ACE is not allowed to
+	 *      be updated.
+	 *
+	 * @return array
+	 */
+	public function getACL()
+	{
+		return $this->acl;
+	}
 }

Please login to merge, or discard this patch.

htdocs/includes/sabre/sabre/dav/lib/DAVACL/FS/Collection.php 1 patch

Indentation +80 added lines, -80 removed lines patch added patch discarded remove patch

@@ -19,91 +19,91 @@
 block discarded – undo
  */
 class Collection extends BaseCollection implements IACL
 {
-    use ACLTrait;
+	use ACLTrait;
 
-    /**
-     * A list of ACL rules.
-     *
-     * @var array
-     */
-    protected $acl;
+	/**
+	 * A list of ACL rules.
+	 *
+	 * @var array
+	 */
+	protected $acl;
 
-    /**
-     * Owner uri, or null for no owner.
-     *
-     * @var string|null
-     */
-    protected $owner;
+	/**
+	 * Owner uri, or null for no owner.
+	 *
+	 * @var string|null
+	 */
+	protected $owner;
 
-    /**
-     * Constructor.
-     *
-     * @param string      $path  on-disk path
-     * @param array       $acl   ACL rules
-     * @param string|null $owner principal owner string
-     */
-    public function __construct($path, array $acl, $owner = null)
-    {
-        parent::__construct($path);
-        $this->acl = $acl;
-        $this->owner = $owner;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param string      $path  on-disk path
+	 * @param array       $acl   ACL rules
+	 * @param string|null $owner principal owner string
+	 */
+	public function __construct($path, array $acl, $owner = null)
+	{
+		parent::__construct($path);
+		$this->acl = $acl;
+		$this->owner = $owner;
+	}
 
-    /**
-     * Returns a specific child node, referenced by its name.
-     *
-     * This method must throw Sabre\DAV\Exception\NotFound if the node does not
-     * exist.
-     *
-     * @param string $name
-     *
-     * @throws NotFound
-     *
-     * @return \Sabre\DAV\INode
-     */
-    public function getChild($name)
-    {
-        $path = $this->path.'/'.$name;
+	/**
+	 * Returns a specific child node, referenced by its name.
+	 *
+	 * This method must throw Sabre\DAV\Exception\NotFound if the node does not
+	 * exist.
+	 *
+	 * @param string $name
+	 *
+	 * @throws NotFound
+	 *
+	 * @return \Sabre\DAV\INode
+	 */
+	public function getChild($name)
+	{
+		$path = $this->path.'/'.$name;
 
-        if (!file_exists($path)) {
-            throw new NotFound('File could not be located');
-        }
-        if ('.' == $name || '..' == $name) {
-            throw new Forbidden('Permission denied to . and ..');
-        }
-        if (is_dir($path)) {
-            return new self($path, $this->acl, $this->owner);
-        } else {
-            return new File($path, $this->acl, $this->owner);
-        }
-    }
+		if (!file_exists($path)) {
+			throw new NotFound('File could not be located');
+		}
+		if ('.' == $name || '..' == $name) {
+			throw new Forbidden('Permission denied to . and ..');
+		}
+		if (is_dir($path)) {
+			return new self($path, $this->acl, $this->owner);
+		} else {
+			return new File($path, $this->acl, $this->owner);
+		}
+	}
 
-    /**
-     * Returns the owner principal.
-     *
-     * This must be a url to a principal, or null if there's no owner
-     *
-     * @return string|null
-     */
-    public function getOwner()
-    {
-        return $this->owner;
-    }
+	/**
+	 * Returns the owner principal.
+	 *
+	 * This must be a url to a principal, or null if there's no owner
+	 *
+	 * @return string|null
+	 */
+	public function getOwner()
+	{
+		return $this->owner;
+	}
 
-    /**
-     * Returns a list of ACE's for this node.
-     *
-     * Each ACE has the following properties:
-     *   * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
-     *     currently the only supported privileges
-     *   * 'principal', a url to the principal who owns the node
-     *   * 'protected' (optional), indicating that this ACE is not allowed to
-     *      be updated.
-     *
-     * @return array
-     */
-    public function getACL()
-    {
-        return $this->acl;
-    }
+	/**
+	 * Returns a list of ACE's for this node.
+	 *
+	 * Each ACE has the following properties:
+	 *   * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
+	 *     currently the only supported privileges
+	 *   * 'principal', a url to the principal who owns the node
+	 *   * 'protected' (optional), indicating that this ACE is not allowed to
+	 *      be updated.
+	 *
+	 * @return array
+	 */
+	public function getACL()
+	{
+		return $this->acl;
+	}
 }

Please login to merge, or discard this patch.

		@@ -523,7 +523,7 @@ discard block
		block discarded – undo
523	523	];
524	524
525	525	$fpsTraverse = null;
526		- $fpsTraverse = function ($privName, $privInfo, $concrete, &$flat) use (&$fpsTraverse) {
	526	+ $fpsTraverse = function($privName, $privInfo, $concrete, &$flat) use (&$fpsTraverse) {
527	527	$myPriv = [
528	528	'privilege' => $privName,
529	529	'abstract' => isset($privInfo['abstract']) && $privInfo['abstract'],
		@@ -782,7 +782,7 @@ discard block
		block discarded – undo
782	782	$server->on('report', [$this, 'report']);
783	783	$server->on('method:ACL', [$this, 'httpAcl']);
784	784	$server->on('onHTMLActionsPanel', [$this, 'htmlActionsPanel']);
785		- $server->on('getPrincipalByUri', function ($principal, &$uri) {
	785	+ $server->on('getPrincipalByUri', function($principal, &$uri) {
786	786	$uri = $this->getPrincipalByUri($principal);
787	787
788	788	// Break event chain
		@@ -953,13 +953,13 @@ discard block
		block discarded – undo
953	953
954	954	/* Adding principal properties */
955	955	if ($node instanceof IPrincipal) {
956		- $propFind->handle('{DAV:}alternate-URI-set', function () use ($node) {
	956	+ $propFind->handle('{DAV:}alternate-URI-set', function() use ($node) {
957	957	return new Href($node->getAlternateUriSet());
958	958	});
959		- $propFind->handle('{DAV:}principal-URL', function () use ($node) {
	959	+ $propFind->handle('{DAV:}principal-URL', function() use ($node) {
960	960	return new Href($node->getPrincipalUrl().'/');
961	961	});
962		- $propFind->handle('{DAV:}group-member-set', function () use ($node) {
	962	+ $propFind->handle('{DAV:}group-member-set', function() use ($node) {
963	963	$members = $node->getGroupMemberSet();
964	964	foreach ($members as $k => $member) {
965	965	$members[$k] = rtrim($member, '/').'/';
		@@ -967,7 +967,7 @@ discard block
		block discarded – undo
967	967
968	968	return new Href($members);
969	969	});
970		- $propFind->handle('{DAV:}group-membership', function () use ($node) {
	970	+ $propFind->handle('{DAV:}group-membership', function() use ($node) {
971	971	$members = $node->getGroupMembership();
972	972	foreach ($members as $k => $member) {
973	973	$members[$k] = rtrim($member, '/').'/';
		@@ -978,7 +978,7 @@ discard block
		block discarded – undo
978	978	$propFind->handle('{DAV:}displayname', [$node, 'getDisplayName']);
979	979	}
980	980
981		- $propFind->handle('{DAV:}principal-collection-set', function () {
	981	+ $propFind->handle('{DAV:}principal-collection-set', function() {
982	982	$val = $this->principalCollectionSet;
983	983	// Ensuring all collections end with a slash
984	984	foreach ($val as $k => $v) {
		@@ -987,17 +987,17 @@ discard block
		block discarded – undo
987	987
988	988	return new Href($val);
989	989	});
990		- $propFind->handle('{DAV:}current-user-principal', function () {
	990	+ $propFind->handle('{DAV:}current-user-principal', function() {
991	991	if ($url = $this->getCurrentUserPrincipal()) {
992	992	return new Xml\Property\Principal(Xml\Property\Principal::HREF, $url.'/');
993	993	} else {
994	994	return new Xml\Property\Principal(Xml\Property\Principal::UNAUTHENTICATED);
995	995	}
996	996	});
997		- $propFind->handle('{DAV:}supported-privilege-set', function () use ($node) {
	997	+ $propFind->handle('{DAV:}supported-privilege-set', function() use ($node) {
998	998	return new Xml\Property\SupportedPrivilegeSet($this->getSupportedPrivilegeSet($node));
999	999	});
1000		- $propFind->handle('{DAV:}current-user-privilege-set', function () use ($node, $propFind, $path) {
	1000	+ $propFind->handle('{DAV:}current-user-privilege-set', function() use ($node, $propFind, $path) {
1001	1001	if (!$this->checkPrivileges($path, '{DAV:}read-current-user-privilege-set', self::R_PARENT, false)) {
1002	1002	$propFind->set('{DAV:}current-user-privilege-set', null, 403);
1003	1003	} else {
		@@ -1006,7 +1006,7 @@ discard block
		block discarded – undo
1006	1006	return new Xml\Property\CurrentUserPrivilegeSet($val);
1007	1007	}
1008	1008	});
1009		- $propFind->handle('{DAV:}acl', function () use ($node, $propFind, $path) {
	1009	+ $propFind->handle('{DAV:}acl', function() use ($node, $propFind, $path) {
1010	1010	/* The ACL property contains all the permissions */
1011	1011	if (!$this->checkPrivileges($path, '{DAV:}read-acl', self::R_PARENT, false)) {
1012	1012	$propFind->set('{DAV:}acl', null, 403);
		@@ -1016,13 +1016,13 @@ discard block
		block discarded – undo
1016	1016	return new Xml\Property\Acl($this->getACL($node));
1017	1017	}
1018	1018	});
1019		- $propFind->handle('{DAV:}acl-restrictions', function () {
	1019	+ $propFind->handle('{DAV:}acl-restrictions', function() {
1020	1020	return new Xml\Property\AclRestrictions();
1021	1021	});
1022	1022
1023	1023	/* Adding ACL properties */
1024	1024	if ($node instanceof IACL) {
1025		- $propFind->handle('{DAV:}owner', function () use ($node) {
	1025	+ $propFind->handle('{DAV:}owner', function() use ($node) {
1026	1026	return new Href($node->getOwner().'/');
1027	1027	});
1028	1028	}
		@@ -1036,7 +1036,7 @@ discard block
		block discarded – undo
1036	1036	*/
1037	1037	public function propPatch($path, DAV\PropPatch $propPatch)
1038	1038	{
1039		- $propPatch->handle('{DAV:}group-member-set', function ($value) use ($path) {
	1039	+ $propPatch->handle('{DAV:}group-member-set', function($value) use ($path) {
1040	1040	if (is_null($value)) {
1041	1041	$memberSet = [];
1042	1042	} elseif ($value instanceof Href) {

		@@ -24,54 +24,54 @@
		block discarded – undo
24	24	*/
25	25	class SupportedAddressData implements XmlSerializable
26	26	{
27		- /**
28		- * supported versions.
29		- *
30		- * @var array
31		- */
32		- protected $supportedData = [];
	27	+ /**
	28	+ * supported versions.
	29	+ *
	30	+ * @var array
	31	+ */
	32	+ protected $supportedData = [];
33	33
34		- /**
35		- * Creates the property.
36		- */
37		- public function __construct(array $supportedData = null)
38		- {
39		- if (is_null($supportedData)) {
40		- $supportedData = [
41		- ['contentType' => 'text/vcard', 'version' => '3.0'],
42		- ['contentType' => 'text/vcard', 'version' => '4.0'],
43		- ['contentType' => 'application/vcard+json', 'version' => '4.0'],
44		- ];
45		- }
	34	+ /**
	35	+ * Creates the property.
	36	+ */
	37	+ public function __construct(array $supportedData = null)
	38	+ {
	39	+ if (is_null($supportedData)) {
	40	+ $supportedData = [
	41	+ ['contentType' => 'text/vcard', 'version' => '3.0'],
	42	+ ['contentType' => 'text/vcard', 'version' => '4.0'],
	43	+ ['contentType' => 'application/vcard+json', 'version' => '4.0'],
	44	+ ];
	45	+ }
46	46
47		- $this->supportedData = $supportedData;
48		- }
	47	+ $this->supportedData = $supportedData;
	48	+ }
49	49
50		- /**
51		- * The xmlSerialize method is called during xml writing.
52		- *
53		- * Use the $writer argument to write its own xml serialization.
54		- *
55		- * An important note: do _not_ create a parent element. Any element
56		- * implementing XmlSerializable should only ever write what's considered
57		- * its 'inner xml'.
58		- *
59		- * The parent of the current element is responsible for writing a
60		- * containing element.
61		- *
62		- * This allows serializers to be re-used for different element names.
63		- *
64		- * If you are opening new elements, you must also close them again.
65		- */
66		- public function xmlSerialize(Writer $writer)
67		- {
68		- foreach ($this->supportedData as $supported) {
69		- $writer->startElement('{'.Plugin::NS_CARDDAV.'}address-data-type');
70		- $writer->writeAttributes([
71		- 'content-type' => $supported['contentType'],
72		- 'version' => $supported['version'],
73		- ]);
74		- $writer->endElement(); // address-data-type
75		- }
76		- }
	50	+ /**
	51	+ * The xmlSerialize method is called during xml writing.
	52	+ *
	53	+ * Use the $writer argument to write its own xml serialization.
	54	+ *
	55	+ * An important note: do _not_ create a parent element. Any element
	56	+ * implementing XmlSerializable should only ever write what's considered
	57	+ * its 'inner xml'.
	58	+ *
	59	+ * The parent of the current element is responsible for writing a
	60	+ * containing element.
	61	+ *
	62	+ * This allows serializers to be re-used for different element names.
	63	+ *
	64	+ * If you are opening new elements, you must also close them again.
	65	+ */
	66	+ public function xmlSerialize(Writer $writer)
	67	+ {
	68	+ foreach ($this->supportedData as $supported) {
	69	+ $writer->startElement('{'.Plugin::NS_CARDDAV.'}address-data-type');
	70	+ $writer->writeAttributes([
	71	+ 'content-type' => $supported['contentType'],
	72	+ 'version' => $supported['version'],
	73	+ ]);
	74	+ $writer->endElement(); // address-data-type
	75	+ }
	76	+ }
77	77	}

		@@ -19,26 +19,26 @@
		block discarded – undo
19	19	*/
20	20	class SupportedCollationSet implements XmlSerializable
21	21	{
22		- /**
23		- * The xmlSerialize method is called during xml writing.
24		- *
25		- * Use the $writer argument to write its own xml serialization.
26		- *
27		- * An important note: do _not_ create a parent element. Any element
28		- * implementing XmlSerializable should only ever write what's considered
29		- * its 'inner xml'.
30		- *
31		- * The parent of the current element is responsible for writing a
32		- * containing element.
33		- *
34		- * This allows serializers to be re-used for different element names.
35		- *
36		- * If you are opening new elements, you must also close them again.
37		- */
38		- public function xmlSerialize(Writer $writer)
39		- {
40		- foreach (['i;ascii-casemap', 'i;octet', 'i;unicode-casemap'] as $coll) {
41		- $writer->writeElement('{urn:ietf:params:xml:ns:carddav}supported-collation', $coll);
42		- }
43		- }
	22	+ /**
	23	+ * The xmlSerialize method is called during xml writing.
	24	+ *
	25	+ * Use the $writer argument to write its own xml serialization.
	26	+ *
	27	+ * An important note: do _not_ create a parent element. Any element
	28	+ * implementing XmlSerializable should only ever write what's considered
	29	+ * its 'inner xml'.
	30	+ *
	31	+ * The parent of the current element is responsible for writing a
	32	+ * containing element.
	33	+ *
	34	+ * This allows serializers to be re-used for different element names.
	35	+ *
	36	+ * If you are opening new elements, you must also close them again.
	37	+ */
	38	+ public function xmlSerialize(Writer $writer)
	39	+ {
	40	+ foreach (['i;ascii-casemap', 'i;octet', 'i;unicode-casemap'] as $coll) {
	41	+ $writer->writeElement('{urn:ietf:params:xml:ns:carddav}supported-collation', $coll);
	42	+ }
	43	+ }
44	44	}

		@@ -16,187 +16,187 @@
		block discarded – undo
16	16	*/
17	17	class Card extends DAV\File implements ICard, DAVACL\IACL
18	18	{
19		- use DAVACL\ACLTrait;
20		-
21		- /**
22		- * CardDAV backend.
23		- *
24		- * @var Backend\BackendInterface
25		- */
26		- protected $carddavBackend;
27		-
28		- /**
29		- * Array with information about this Card.
30		- *
31		- * @var array
32		- */
33		- protected $cardData;
34		-
35		- /**
36		- * Array with information about the containing addressbook.
37		- *
38		- * @var array
39		- */
40		- protected $addressBookInfo;
41		-
42		- /**
43		- * Constructor.
44		- */
45		- public function __construct(Backend\BackendInterface $carddavBackend, array $addressBookInfo, array $cardData)
46		- {
47		- $this->carddavBackend = $carddavBackend;
48		- $this->addressBookInfo = $addressBookInfo;
49		- $this->cardData = $cardData;
50		- }
51		-
52		- /**
53		- * Returns the uri for this object.
54		- *
55		- * @return string
56		- */
57		- public function getName()
58		- {
59		- return $this->cardData['uri'];
60		- }
61		-
62		- /**
63		- * Returns the VCard-formatted object.
64		- *
65		- * @return string
66		- */
67		- public function get()
68		- {
69		- // Pre-populating 'carddata' is optional. If we don't yet have it
70		- // already, we fetch it from the backend.
71		- if (!isset($this->cardData['carddata'])) {
72		- $this->cardData = $this->carddavBackend->getCard($this->addressBookInfo['id'], $this->cardData['uri']);
73		- }
74		-
75		- return $this->cardData['carddata'];
76		- }
77		-
78		- /**
79		- * Updates the VCard-formatted object.
80		- *
81		- * @param string $cardData
82		- *
83		- * @return string\|null
84		- */
85		- public function put($cardData)
86		- {
87		- if (is_resource($cardData)) {
88		- $cardData = stream_get_contents($cardData);
89		- }
90		-
91		- // Converting to UTF-8, if needed
92		- $cardData = DAV\StringUtil::ensureUTF8($cardData);
93		-
94		- $etag = $this->carddavBackend->updateCard($this->addressBookInfo['id'], $this->cardData['uri'], $cardData);
95		- $this->cardData['carddata'] = $cardData;
96		- $this->cardData['etag'] = $etag;
97		-
98		- return $etag;
99		- }
100		-
101		- /**
102		- * Deletes the card.
103		- */
104		- public function delete()
105		- {
106		- $this->carddavBackend->deleteCard($this->addressBookInfo['id'], $this->cardData['uri']);
107		- }
108		-
109		- /**
110		- * Returns the mime content-type.
111		- *
112		- * @return string
113		- */
114		- public function getContentType()
115		- {
116		- return 'text/vcard; charset=utf-8';
117		- }
118		-
119		- /**
120		- * Returns an ETag for this object.
121		- *
122		- * @return string
123		- */
124		- public function getETag()
125		- {
126		- if (isset($this->cardData['etag'])) {
127		- return $this->cardData['etag'];
128		- } else {
129		- $data = $this->get();
130		- if (is_string($data)) {
131		- return '"'.md5($data).'"';
132		- } else {
133		- // We refuse to calculate the md5 if it's a stream.
134		- return null;
135		- }
136		- }
137		- }
138		-
139		- /**
140		- * Returns the last modification date as a unix timestamp.
141		- *
142		- * @return int
143		- */
144		- public function getLastModified()
145		- {
146		- return isset($this->cardData['lastmodified']) ? $this->cardData['lastmodified'] : null;
147		- }
148		-
149		- /**
150		- * Returns the size of this object in bytes.
151		- *
152		- * @return int
153		- */
154		- public function getSize()
155		- {
156		- if (array_key_exists('size', $this->cardData)) {
157		- return $this->cardData['size'];
158		- } else {
159		- return strlen($this->get());
160		- }
161		- }
162		-
163		- /**
164		- * Returns the owner principal.
165		- *
166		- * This must be a url to a principal, or null if there's no owner
167		- *
168		- * @return string\|null
169		- */
170		- public function getOwner()
171		- {
172		- return $this->addressBookInfo['principaluri'];
173		- }
174		-
175		- /**
176		- * Returns a list of ACE's for this node.
177		- *
178		- * Each ACE has the following properties:
179		- * * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
180		- * currently the only supported privileges
181		- * * 'principal', a url to the principal who owns the node
182		- * * 'protected' (optional), indicating that this ACE is not allowed to
183		- * be updated.
184		- *
185		- * @return array
186		- */
187		- public function getACL()
188		- {
189		- // An alternative acl may be specified through the cardData array.
190		- if (isset($this->cardData['acl'])) {
191		- return $this->cardData['acl'];
192		- }
193		-
194		- return [
195		- [
196		- 'privilege' => '{DAV:}all',
197		- 'principal' => $this->addressBookInfo['principaluri'],
198		- 'protected' => true,
199		- ],
200		- ];
201		- }
	19	+ use DAVACL\ACLTrait;
	20	+
	21	+ /**
	22	+ * CardDAV backend.
	23	+ *
	24	+ * @var Backend\BackendInterface
	25	+ */
	26	+ protected $carddavBackend;
	27	+
	28	+ /**
	29	+ * Array with information about this Card.
	30	+ *
	31	+ * @var array
	32	+ */
	33	+ protected $cardData;
	34	+
	35	+ /**
	36	+ * Array with information about the containing addressbook.
	37	+ *
	38	+ * @var array
	39	+ */
	40	+ protected $addressBookInfo;
	41	+
	42	+ /**
	43	+ * Constructor.
	44	+ */
	45	+ public function __construct(Backend\BackendInterface $carddavBackend, array $addressBookInfo, array $cardData)
	46	+ {
	47	+ $this->carddavBackend = $carddavBackend;
	48	+ $this->addressBookInfo = $addressBookInfo;
	49	+ $this->cardData = $cardData;
	50	+ }
	51	+
	52	+ /**
	53	+ * Returns the uri for this object.
	54	+ *
	55	+ * @return string
	56	+ */
	57	+ public function getName()
	58	+ {
	59	+ return $this->cardData['uri'];
	60	+ }
	61	+
	62	+ /**
	63	+ * Returns the VCard-formatted object.
	64	+ *
	65	+ * @return string
	66	+ */
	67	+ public function get()
	68	+ {
	69	+ // Pre-populating 'carddata' is optional. If we don't yet have it
	70	+ // already, we fetch it from the backend.
	71	+ if (!isset($this->cardData['carddata'])) {
	72	+ $this->cardData = $this->carddavBackend->getCard($this->addressBookInfo['id'], $this->cardData['uri']);
	73	+ }
	74	+
	75	+ return $this->cardData['carddata'];
	76	+ }
	77	+
	78	+ /**
	79	+ * Updates the VCard-formatted object.
	80	+ *
	81	+ * @param string $cardData
	82	+ *
	83	+ * @return string\|null
	84	+ */
	85	+ public function put($cardData)
	86	+ {
	87	+ if (is_resource($cardData)) {
	88	+ $cardData = stream_get_contents($cardData);
	89	+ }
	90	+
	91	+ // Converting to UTF-8, if needed
	92	+ $cardData = DAV\StringUtil::ensureUTF8($cardData);
	93	+
	94	+ $etag = $this->carddavBackend->updateCard($this->addressBookInfo['id'], $this->cardData['uri'], $cardData);
	95	+ $this->cardData['carddata'] = $cardData;
	96	+ $this->cardData['etag'] = $etag;
	97	+
	98	+ return $etag;
	99	+ }
	100	+
	101	+ /**
	102	+ * Deletes the card.
	103	+ */
	104	+ public function delete()
	105	+ {
	106	+ $this->carddavBackend->deleteCard($this->addressBookInfo['id'], $this->cardData['uri']);
	107	+ }
	108	+
	109	+ /**
	110	+ * Returns the mime content-type.
	111	+ *
	112	+ * @return string
	113	+ */
	114	+ public function getContentType()
	115	+ {
	116	+ return 'text/vcard; charset=utf-8';
	117	+ }
	118	+
	119	+ /**
	120	+ * Returns an ETag for this object.
	121	+ *
	122	+ * @return string
	123	+ */
	124	+ public function getETag()
	125	+ {
	126	+ if (isset($this->cardData['etag'])) {
	127	+ return $this->cardData['etag'];
	128	+ } else {
	129	+ $data = $this->get();
	130	+ if (is_string($data)) {
	131	+ return '"'.md5($data).'"';
	132	+ } else {
	133	+ // We refuse to calculate the md5 if it's a stream.
	134	+ return null;
	135	+ }
	136	+ }
	137	+ }
	138	+
	139	+ /**
	140	+ * Returns the last modification date as a unix timestamp.
	141	+ *
	142	+ * @return int
	143	+ */
	144	+ public function getLastModified()
	145	+ {
	146	+ return isset($this->cardData['lastmodified']) ? $this->cardData['lastmodified'] : null;
	147	+ }
	148	+
	149	+ /**
	150	+ * Returns the size of this object in bytes.
	151	+ *
	152	+ * @return int
	153	+ */
	154	+ public function getSize()
	155	+ {
	156	+ if (array_key_exists('size', $this->cardData)) {
	157	+ return $this->cardData['size'];
	158	+ } else {
	159	+ return strlen($this->get());
	160	+ }
	161	+ }
	162	+
	163	+ /**
	164	+ * Returns the owner principal.
	165	+ *
	166	+ * This must be a url to a principal, or null if there's no owner
	167	+ *
	168	+ * @return string\|null
	169	+ */
	170	+ public function getOwner()
	171	+ {
	172	+ return $this->addressBookInfo['principaluri'];
	173	+ }
	174	+
	175	+ /**
	176	+ * Returns a list of ACE's for this node.
	177	+ *
	178	+ * Each ACE has the following properties:
	179	+ * * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
	180	+ * currently the only supported privileges
	181	+ * * 'principal', a url to the principal who owns the node
	182	+ * * 'protected' (optional), indicating that this ACE is not allowed to
	183	+ * be updated.
	184	+ *
	185	+ * @return array
	186	+ */
	187	+ public function getACL()
	188	+ {
	189	+ // An alternative acl may be specified through the cardData array.
	190	+ if (isset($this->cardData['acl'])) {
	191	+ return $this->cardData['acl'];
	192	+ }
	193	+
	194	+ return [
	195	+ [
	196	+ 'privilege' => '{DAV:}all',
	197	+ 'principal' => $this->addressBookInfo['principaluri'],
	198	+ 'protected' => true,
	199	+ ],
	200	+ ];
	201	+ }
202	202	}

		@@ -17,56 +17,56 @@
		block discarded – undo
17	17	*/
18	18	interface IACL extends DAV\INode
19	19	{
20		- /**
21		- * Returns the owner principal.
22		- *
23		- * This must be a url to a principal, or null if there's no owner
24		- *
25		- * @return string\|null
26		- */
27		- public function getOwner();
	20	+ /**
	21	+ * Returns the owner principal.
	22	+ *
	23	+ * This must be a url to a principal, or null if there's no owner
	24	+ *
	25	+ * @return string\|null
	26	+ */
	27	+ public function getOwner();
28	28
29		- /**
30		- * Returns a group principal.
31		- *
32		- * This must be a url to a principal, or null if there's no owner
33		- *
34		- * @return string\|null
35		- */
36		- public function getGroup();
	29	+ /**
	30	+ * Returns a group principal.
	31	+ *
	32	+ * This must be a url to a principal, or null if there's no owner
	33	+ *
	34	+ * @return string\|null
	35	+ */
	36	+ public function getGroup();
37	37
38		- /**
39		- * Returns a list of ACE's for this node.
40		- *
41		- * Each ACE has the following properties:
42		- * * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
43		- * currently the only supported privileges
44		- * * 'principal', a url to the principal who owns the node
45		- * * 'protected' (optional), indicating that this ACE is not allowed to
46		- * be updated.
47		- *
48		- * @return array
49		- */
50		- public function getACL();
	38	+ /**
	39	+ * Returns a list of ACE's for this node.
	40	+ *
	41	+ * Each ACE has the following properties:
	42	+ * * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
	43	+ * currently the only supported privileges
	44	+ * * 'principal', a url to the principal who owns the node
	45	+ * * 'protected' (optional), indicating that this ACE is not allowed to
	46	+ * be updated.
	47	+ *
	48	+ * @return array
	49	+ */
	50	+ public function getACL();
51	51
52		- /**
53		- * Updates the ACL.
54		- *
55		- * This method will receive a list of new ACE's as an array argument.
56		- */
57		- public function setACL(array $acl);
	52	+ /**
	53	+ * Updates the ACL.
	54	+ *
	55	+ * This method will receive a list of new ACE's as an array argument.
	56	+ */
	57	+ public function setACL(array $acl);
58	58
59		- /**
60		- * Returns the list of supported privileges for this node.
61		- *
62		- * The returned data structure is a list of nested privileges.
63		- * See Sabre\DAVACL\Plugin::getDefaultSupportedPrivilegeSet for a simple
64		- * standard structure.
65		- *
66		- * If null is returned from this method, the default privilege set is used,
67		- * which is fine for most common usecases.
68		- *
69		- * @return array\|null
70		- */
71		- public function getSupportedPrivilegeSet();
	59	+ /**
	60	+ * Returns the list of supported privileges for this node.
	61	+ *
	62	+ * The returned data structure is a list of nested privileges.
	63	+ * See Sabre\DAVACL\Plugin::getDefaultSupportedPrivilegeSet for a simple
	64	+ * standard structure.
	65	+ *
	66	+ * If null is returned from this method, the default privilege set is used,
	67	+ * which is fine for most common usecases.
	68	+ *
	69	+ * @return array\|null
	70	+ */
	71	+ public function getSupportedPrivilegeSet();
72	72	}

		@@ -24,176 +24,176 @@
		block discarded – undo
24	24	*/
25	25	class Principal extends DAV\Node implements IPrincipal, DAV\IProperties, IACL
26	26	{
27		- use ACLTrait;
28		-
29		- /**
30		- * Struct with principal information.
31		- *
32		- * @var array
33		- */
34		- protected $principalProperties;
35		-
36		- /**
37		- * Principal backend.
38		- *
39		- * @var PrincipalBackend\BackendInterface
40		- */
41		- protected $principalBackend;
42		-
43		- /**
44		- * Creates the principal object.
45		- */
46		- public function __construct(PrincipalBackend\BackendInterface $principalBackend, array $principalProperties = [])
47		- {
48		- if (!isset($principalProperties['uri'])) {
49		- throw new DAV\Exception('The principal properties must at least contain the \'uri\' key');
50		- }
51		- $this->principalBackend = $principalBackend;
52		- $this->principalProperties = $principalProperties;
53		- }
54		-
55		- /**
56		- * Returns the full principal url.
57		- *
58		- * @return string
59		- */
60		- public function getPrincipalUrl()
61		- {
62		- return $this->principalProperties['uri'];
63		- }
64		-
65		- /**
66		- * Returns a list of alternative urls for a principal.
67		- *
68		- * This can for example be an email address, or ldap url.
69		- *
70		- * @return array
71		- */
72		- public function getAlternateUriSet()
73		- {
74		- $uris = [];
75		- if (isset($this->principalProperties['{DAV:}alternate-URI-set'])) {
76		- $uris = $this->principalProperties['{DAV:}alternate-URI-set'];
77		- }
78		-
79		- if (isset($this->principalProperties['{http://sabredav.org/ns}email-address'])) {
80		- $uris[] = 'mailto:'.$this->principalProperties['{http://sabredav.org/ns}email-address'];
81		- }
82		-
83		- return array_unique($uris);
84		- }
85		-
86		- /**
87		- * Returns the list of group members.
88		- *
89		- * If this principal is a group, this function should return
90		- * all member principal uri's for the group.
91		- *
92		- * @return array
93		- */
94		- public function getGroupMemberSet()
95		- {
96		- return $this->principalBackend->getGroupMemberSet($this->principalProperties['uri']);
97		- }
98		-
99		- /**
100		- * Returns the list of groups this principal is member of.
101		- *
102		- * If this principal is a member of a (list of) groups, this function
103		- * should return a list of principal uri's for it's members.
104		- *
105		- * @return array
106		- */
107		- public function getGroupMembership()
108		- {
109		- return $this->principalBackend->getGroupMemberShip($this->principalProperties['uri']);
110		- }
111		-
112		- /**
113		- * Sets a list of group members.
114		- *
115		- * If this principal is a group, this method sets all the group members.
116		- * The list of members is always overwritten, never appended to.
117		- *
118		- * This method should throw an exception if the members could not be set.
119		- */
120		- public function setGroupMemberSet(array $groupMembers)
121		- {
122		- $this->principalBackend->setGroupMemberSet($this->principalProperties['uri'], $groupMembers);
123		- }
124		-
125		- /**
126		- * Returns this principals name.
127		- *
128		- * @return string
129		- */
130		- public function getName()
131		- {
132		- $uri = $this->principalProperties['uri'];
133		- list(, $name) = Uri\split($uri);
134		-
135		- return $name;
136		- }
137		-
138		- /**
139		- * Returns the name of the user.
140		- *
141		- * @return string
142		- */
143		- public function getDisplayName()
144		- {
145		- if (isset($this->principalProperties['{DAV:}displayname'])) {
146		- return $this->principalProperties['{DAV:}displayname'];
147		- } else {
148		- return $this->getName();
149		- }
150		- }
151		-
152		- /**
153		- * Returns a list of properties.
154		- *
155		- * @param array $requestedProperties
156		- *
157		- * @return array
158		- */
159		- public function getProperties($requestedProperties)
160		- {
161		- $newProperties = [];
162		- foreach ($requestedProperties as $propName) {
163		- if (isset($this->principalProperties[$propName])) {
164		- $newProperties[$propName] = $this->principalProperties[$propName];
165		- }
166		- }
167		-
168		- return $newProperties;
169		- }
170		-
171		- /**
172		- * Updates properties on this node.
173		- *
174		- * This method received a PropPatch object, which contains all the
175		- * information about the update.
176		- *
177		- * To update specific properties, call the 'handle' method on this object.
178		- * Read the PropPatch documentation for more information.
179		- */
180		- public function propPatch(DAV\PropPatch $propPatch)
181		- {
182		- return $this->principalBackend->updatePrincipal(
183		- $this->principalProperties['uri'],
184		- $propPatch
185		- );
186		- }
187		-
188		- /**
189		- * Returns the owner principal.
190		- *
191		- * This must be a url to a principal, or null if there's no owner
192		- *
193		- * @return string\|null
194		- */
195		- public function getOwner()
196		- {
197		- return $this->principalProperties['uri'];
198		- }
	27	+ use ACLTrait;
	28	+
	29	+ /**
	30	+ * Struct with principal information.
	31	+ *
	32	+ * @var array
	33	+ */
	34	+ protected $principalProperties;
	35	+
	36	+ /**
	37	+ * Principal backend.
	38	+ *
	39	+ * @var PrincipalBackend\BackendInterface
	40	+ */
	41	+ protected $principalBackend;
	42	+
	43	+ /**
	44	+ * Creates the principal object.
	45	+ */
	46	+ public function __construct(PrincipalBackend\BackendInterface $principalBackend, array $principalProperties = [])
	47	+ {
	48	+ if (!isset($principalProperties['uri'])) {
	49	+ throw new DAV\Exception('The principal properties must at least contain the \'uri\' key');
	50	+ }
	51	+ $this->principalBackend = $principalBackend;
	52	+ $this->principalProperties = $principalProperties;
	53	+ }
	54	+
	55	+ /**
	56	+ * Returns the full principal url.
	57	+ *
	58	+ * @return string
	59	+ */
	60	+ public function getPrincipalUrl()
	61	+ {
	62	+ return $this->principalProperties['uri'];
	63	+ }
	64	+
	65	+ /**
	66	+ * Returns a list of alternative urls for a principal.
	67	+ *
	68	+ * This can for example be an email address, or ldap url.
	69	+ *
	70	+ * @return array
	71	+ */
	72	+ public function getAlternateUriSet()
	73	+ {
	74	+ $uris = [];
	75	+ if (isset($this->principalProperties['{DAV:}alternate-URI-set'])) {
	76	+ $uris = $this->principalProperties['{DAV:}alternate-URI-set'];
	77	+ }
	78	+
	79	+ if (isset($this->principalProperties['{http://sabredav.org/ns}email-address'])) {
	80	+ $uris[] = 'mailto:'.$this->principalProperties['{http://sabredav.org/ns}email-address'];
	81	+ }
	82	+
	83	+ return array_unique($uris);
	84	+ }
	85	+
	86	+ /**
	87	+ * Returns the list of group members.
	88	+ *
	89	+ * If this principal is a group, this function should return
	90	+ * all member principal uri's for the group.
	91	+ *
	92	+ * @return array
	93	+ */
	94	+ public function getGroupMemberSet()
	95	+ {
	96	+ return $this->principalBackend->getGroupMemberSet($this->principalProperties['uri']);
	97	+ }
	98	+
	99	+ /**
	100	+ * Returns the list of groups this principal is member of.
	101	+ *
	102	+ * If this principal is a member of a (list of) groups, this function
	103	+ * should return a list of principal uri's for it's members.
	104	+ *
	105	+ * @return array
	106	+ */
	107	+ public function getGroupMembership()
	108	+ {
	109	+ return $this->principalBackend->getGroupMemberShip($this->principalProperties['uri']);
	110	+ }
	111	+
	112	+ /**
	113	+ * Sets a list of group members.
	114	+ *
	115	+ * If this principal is a group, this method sets all the group members.
	116	+ * The list of members is always overwritten, never appended to.
	117	+ *
	118	+ * This method should throw an exception if the members could not be set.
	119	+ */
	120	+ public function setGroupMemberSet(array $groupMembers)
	121	+ {
	122	+ $this->principalBackend->setGroupMemberSet($this->principalProperties['uri'], $groupMembers);
	123	+ }
	124	+
	125	+ /**
	126	+ * Returns this principals name.
	127	+ *
	128	+ * @return string
	129	+ */
	130	+ public function getName()
	131	+ {
	132	+ $uri = $this->principalProperties['uri'];
	133	+ list(, $name) = Uri\split($uri);
	134	+
	135	+ return $name;
	136	+ }
	137	+
	138	+ /**
	139	+ * Returns the name of the user.
	140	+ *
	141	+ * @return string
	142	+ */
	143	+ public function getDisplayName()
	144	+ {
	145	+ if (isset($this->principalProperties['{DAV:}displayname'])) {
	146	+ return $this->principalProperties['{DAV:}displayname'];
	147	+ } else {
	148	+ return $this->getName();
	149	+ }
	150	+ }
	151	+
	152	+ /**
	153	+ * Returns a list of properties.
	154	+ *
	155	+ * @param array $requestedProperties
	156	+ *
	157	+ * @return array
	158	+ */
	159	+ public function getProperties($requestedProperties)
	160	+ {
	161	+ $newProperties = [];
	162	+ foreach ($requestedProperties as $propName) {
	163	+ if (isset($this->principalProperties[$propName])) {
	164	+ $newProperties[$propName] = $this->principalProperties[$propName];
	165	+ }
	166	+ }
	167	+
	168	+ return $newProperties;
	169	+ }
	170	+
	171	+ /**
	172	+ * Updates properties on this node.
	173	+ *
	174	+ * This method received a PropPatch object, which contains all the
	175	+ * information about the update.
	176	+ *
	177	+ * To update specific properties, call the 'handle' method on this object.
	178	+ * Read the PropPatch documentation for more information.
	179	+ */
	180	+ public function propPatch(DAV\PropPatch $propPatch)
	181	+ {
	182	+ return $this->principalBackend->updatePrincipal(
	183	+ $this->principalProperties['uri'],
	184	+ $propPatch
	185	+ );
	186	+ }
	187	+
	188	+ /**
	189	+ * Returns the owner principal.
	190	+ *
	191	+ * This must be a url to a principal, or null if there's no owner
	192	+ *
	193	+ * @return string\|null
	194	+ */
	195	+ public function getOwner()
	196	+ {
	197	+ return $this->principalProperties['uri'];
	198	+ }
199	199	}

		@@ -17,59 +17,59 @@
		block discarded – undo
17	17	*/
18	18	interface IPrincipal extends DAV\INode
19	19	{
20		- /**
21		- * Returns a list of alternative urls for a principal.
22		- *
23		- * This can for example be an email address, or ldap url.
24		- *
25		- * @return array
26		- */
27		- public function getAlternateUriSet();
	20	+ /**
	21	+ * Returns a list of alternative urls for a principal.
	22	+ *
	23	+ * This can for example be an email address, or ldap url.
	24	+ *
	25	+ * @return array
	26	+ */
	27	+ public function getAlternateUriSet();
28	28
29		- /**
30		- * Returns the full principal url.
31		- *
32		- * @return string
33		- */
34		- public function getPrincipalUrl();
	29	+ /**
	30	+ * Returns the full principal url.
	31	+ *
	32	+ * @return string
	33	+ */
	34	+ public function getPrincipalUrl();
35	35
36		- /**
37		- * Returns the list of group members.
38		- *
39		- * If this principal is a group, this function should return
40		- * all member principal uri's for the group.
41		- *
42		- * @return array
43		- */
44		- public function getGroupMemberSet();
	36	+ /**
	37	+ * Returns the list of group members.
	38	+ *
	39	+ * If this principal is a group, this function should return
	40	+ * all member principal uri's for the group.
	41	+ *
	42	+ * @return array
	43	+ */
	44	+ public function getGroupMemberSet();
45	45
46		- /**
47		- * Returns the list of groups this principal is member of.
48		- *
49		- * If this principal is a member of a (list of) groups, this function
50		- * should return a list of principal uri's for it's members.
51		- *
52		- * @return array
53		- */
54		- public function getGroupMembership();
	46	+ /**
	47	+ * Returns the list of groups this principal is member of.
	48	+ *
	49	+ * If this principal is a member of a (list of) groups, this function
	50	+ * should return a list of principal uri's for it's members.
	51	+ *
	52	+ * @return array
	53	+ */
	54	+ public function getGroupMembership();
55	55
56		- /**
57		- * Sets a list of group members.
58		- *
59		- * If this principal is a group, this method sets all the group members.
60		- * The list of members is always overwritten, never appended to.
61		- *
62		- * This method should throw an exception if the members could not be set.
63		- */
64		- public function setGroupMemberSet(array $principals);
	56	+ /**
	57	+ * Sets a list of group members.
	58	+ *
	59	+ * If this principal is a group, this method sets all the group members.
	60	+ * The list of members is always overwritten, never appended to.
	61	+ *
	62	+ * This method should throw an exception if the members could not be set.
	63	+ */
	64	+ public function setGroupMemberSet(array $principals);
65	65
66		- /**
67		- * Returns the displayname.
68		- *
69		- * This should be a human readable name for the principal.
70		- * If none is available, return the nodename.
71		- *
72		- * @return string
73		- */
74		- public function getDisplayName();
	66	+ /**
	67	+ * Returns the displayname.
	68	+ *
	69	+ * This should be a human readable name for the principal.
	70	+ * If none is available, return the nodename.
	71	+ *
	72	+ * @return string
	73	+ */
	74	+ public function getDisplayName();
75	75	}

		@@ -17,62 +17,62 @@
		block discarded – undo
17	17	*/
18	18	class File extends BaseFile implements IACL
19	19	{
20		- use ACLTrait;
	20	+ use ACLTrait;
21	21
22		- /**
23		- * A list of ACL rules.
24		- *
25		- * @var array
26		- */
27		- protected $acl;
	22	+ /**
	23	+ * A list of ACL rules.
	24	+ *
	25	+ * @var array
	26	+ */
	27	+ protected $acl;
28	28
29		- /**
30		- * Owner uri, or null for no owner.
31		- *
32		- * @var string\|null
33		- */
34		- protected $owner;
	29	+ /**
	30	+ * Owner uri, or null for no owner.
	31	+ *
	32	+ * @var string\|null
	33	+ */
	34	+ protected $owner;
35	35
36		- /**
37		- * Constructor.
38		- *
39		- * @param string $path on-disk path
40		- * @param array $acl ACL rules
41		- * @param string\|null $owner principal owner string
42		- */
43		- public function __construct($path, array $acl, $owner = null)
44		- {
45		- parent::__construct($path);
46		- $this->acl = $acl;
47		- $this->owner = $owner;
48		- }
	36	+ /**
	37	+ * Constructor.
	38	+ *
	39	+ * @param string $path on-disk path
	40	+ * @param array $acl ACL rules
	41	+ * @param string\|null $owner principal owner string
	42	+ */
	43	+ public function __construct($path, array $acl, $owner = null)
	44	+ {
	45	+ parent::__construct($path);
	46	+ $this->acl = $acl;
	47	+ $this->owner = $owner;
	48	+ }
49	49
50		- /**
51		- * Returns the owner principal.
52		- *
53		- * This must be a url to a principal, or null if there's no owner
54		- *
55		- * @return string\|null
56		- */
57		- public function getOwner()
58		- {
59		- return $this->owner;
60		- }
	50	+ /**
	51	+ * Returns the owner principal.
	52	+ *
	53	+ * This must be a url to a principal, or null if there's no owner
	54	+ *
	55	+ * @return string\|null
	56	+ */
	57	+ public function getOwner()
	58	+ {
	59	+ return $this->owner;
	60	+ }
61	61
62		- /**
63		- * Returns a list of ACE's for this node.
64		- *
65		- * Each ACE has the following properties:
66		- * * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
67		- * currently the only supported privileges
68		- * * 'principal', a url to the principal who owns the node
69		- * * 'protected' (optional), indicating that this ACE is not allowed to
70		- * be updated.
71		- *
72		- * @return array
73		- */
74		- public function getACL()
75		- {
76		- return $this->acl;
77		- }
	62	+ /**
	63	+ * Returns a list of ACE's for this node.
	64	+ *
	65	+ * Each ACE has the following properties:
	66	+ * * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
	67	+ * currently the only supported privileges
	68	+ * * 'principal', a url to the principal who owns the node
	69	+ * * 'protected' (optional), indicating that this ACE is not allowed to
	70	+ * be updated.
	71	+ *
	72	+ * @return array
	73	+ */
	74	+ public function getACL()
	75	+ {
	76	+ return $this->acl;
	77	+ }
78	78	}

		@@ -19,91 +19,91 @@
		block discarded – undo
19	19	*/
20	20	class Collection extends BaseCollection implements IACL
21	21	{
22		- use ACLTrait;
	22	+ use ACLTrait;
23	23
24		- /**
25		- * A list of ACL rules.
26		- *
27		- * @var array
28		- */
29		- protected $acl;
	24	+ /**
	25	+ * A list of ACL rules.
	26	+ *
	27	+ * @var array
	28	+ */
	29	+ protected $acl;
30	30
31		- /**
32		- * Owner uri, or null for no owner.
33		- *
34		- * @var string\|null
35		- */
36		- protected $owner;
	31	+ /**
	32	+ * Owner uri, or null for no owner.
	33	+ *
	34	+ * @var string\|null
	35	+ */
	36	+ protected $owner;
37	37
38		- /**
39		- * Constructor.
40		- *
41		- * @param string $path on-disk path
42		- * @param array $acl ACL rules
43		- * @param string\|null $owner principal owner string
44		- */
45		- public function __construct($path, array $acl, $owner = null)
46		- {
47		- parent::__construct($path);
48		- $this->acl = $acl;
49		- $this->owner = $owner;
50		- }
	38	+ /**
	39	+ * Constructor.
	40	+ *
	41	+ * @param string $path on-disk path
	42	+ * @param array $acl ACL rules
	43	+ * @param string\|null $owner principal owner string
	44	+ */
	45	+ public function __construct($path, array $acl, $owner = null)
	46	+ {
	47	+ parent::__construct($path);
	48	+ $this->acl = $acl;
	49	+ $this->owner = $owner;
	50	+ }
51	51
52		- /**
53		- * Returns a specific child node, referenced by its name.
54		- *
55		- * This method must throw Sabre\DAV\Exception\NotFound if the node does not
56		- * exist.
57		- *
58		- * @param string $name
59		- *
60		- * @throws NotFound
61		- *
62		- * @return \Sabre\DAV\INode
63		- */
64		- public function getChild($name)
65		- {
66		- $path = $this->path.'/'.$name;
	52	+ /**
	53	+ * Returns a specific child node, referenced by its name.
	54	+ *
	55	+ * This method must throw Sabre\DAV\Exception\NotFound if the node does not
	56	+ * exist.
	57	+ *
	58	+ * @param string $name
	59	+ *
	60	+ * @throws NotFound
	61	+ *
	62	+ * @return \Sabre\DAV\INode
	63	+ */
	64	+ public function getChild($name)
	65	+ {
	66	+ $path = $this->path.'/'.$name;
67	67
68		- if (!file_exists($path)) {
69		- throw new NotFound('File could not be located');
70		- }
71		- if ('.' == $name \|\| '..' == $name) {
72		- throw new Forbidden('Permission denied to . and ..');
73		- }
74		- if (is_dir($path)) {
75		- return new self($path, $this->acl, $this->owner);
76		- } else {
77		- return new File($path, $this->acl, $this->owner);
78		- }
79		- }
	68	+ if (!file_exists($path)) {
	69	+ throw new NotFound('File could not be located');
	70	+ }
	71	+ if ('.' == $name \|\| '..' == $name) {
	72	+ throw new Forbidden('Permission denied to . and ..');
	73	+ }
	74	+ if (is_dir($path)) {
	75	+ return new self($path, $this->acl, $this->owner);
	76	+ } else {
	77	+ return new File($path, $this->acl, $this->owner);
	78	+ }
	79	+ }
80	80
81		- /**
82		- * Returns the owner principal.
83		- *
84		- * This must be a url to a principal, or null if there's no owner
85		- *
86		- * @return string\|null
87		- */
88		- public function getOwner()
89		- {
90		- return $this->owner;
91		- }
	81	+ /**
	82	+ * Returns the owner principal.
	83	+ *
	84	+ * This must be a url to a principal, or null if there's no owner
	85	+ *
	86	+ * @return string\|null
	87	+ */
	88	+ public function getOwner()
	89	+ {
	90	+ return $this->owner;
	91	+ }
92	92
93		- /**
94		- * Returns a list of ACE's for this node.
95		- *
96		- * Each ACE has the following properties:
97		- * * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
98		- * currently the only supported privileges
99		- * * 'principal', a url to the principal who owns the node
100		- * * 'protected' (optional), indicating that this ACE is not allowed to
101		- * be updated.
102		- *
103		- * @return array
104		- */
105		- public function getACL()
106		- {
107		- return $this->acl;
108		- }
	93	+ /**
	94	+ * Returns a list of ACE's for this node.
	95	+ *
	96	+ * Each ACE has the following properties:
	97	+ * * 'privilege', a string such as {DAV:}read or {DAV:}write. These are
	98	+ * currently the only supported privileges
	99	+ * * 'principal', a url to the principal who owns the node
	100	+ * * 'protected' (optional), indicating that this ACE is not allowed to
	101	+ * be updated.
	102	+ *
	103	+ * @return array
	104	+ */
	105	+ public function getACL()
	106	+ {
	107	+ return $this->acl;
	108	+ }
109	109	}

Dolibarr / dolibarr

Branch — develop (cf6315)

Status

Category

Indentation +47 added lines, -47 removed lines patch added patch discarded remove patch

Indentation +22 added lines, -22 removed lines patch added patch discarded remove patch

Indentation +183 added lines, -183 removed lines patch added patch discarded remove patch

Indentation +48 added lines, -48 removed lines patch added patch discarded remove patch

Indentation +172 added lines, -172 removed lines patch added patch discarded remove patch

Indentation +50 added lines, -50 removed lines patch added patch discarded remove patch

Indentation +1499 added lines, -1499 removed lines patch added patch discarded remove patch

Spacing +14 added lines, -14 removed lines patch added patch discarded remove patch

Indentation +53 added lines, -53 removed lines patch added patch discarded remove patch

Indentation +80 added lines, -80 removed lines patch added patch discarded remove patch