3 use wcf\system\exception\HTTPNotFoundException
;
4 use wcf\system\exception\HTTPServerErrorException
;
5 use wcf\system\exception\HTTPUnauthorizedException
;
6 use wcf\system\exception\SystemException
;
7 use wcf\system\io\RemoteFile
;
12 * Sends HTTP/1.1 requests.
13 * It supports POST, SSL, Basic Auth etc.
15 * @author Tim Duesterhus
16 * @copyright 2001-2016 WoltLab GmbH
17 * @license GNU Lesser General Public License <http://opensource.org/licenses/lgpl-license.php>
18 * @package com.woltlab.wcf
20 * @category Community Framework
22 final class HTTPRequest
{
27 private $options = [];
30 * given post parameters
33 private $postParameters = [];
42 * indicates if request will be made via SSL
45 private $useSSL = false;
48 * indicates if the connection to the proxy target will be made via SSL
51 private $originUseSSL = false;
60 * target host if a proxy is used
72 * target port if a proxy is used
99 private $headers = [];
105 private $legacyHeaders = [];
117 private $replyHeaders = [];
123 private $replyBody = '';
129 private $statusCode = 0;
132 * Constructs a new instance of HTTPRequest.
134 * @param string $url URL to connect to
135 * @param string[] $options
136 * @param mixed $postParameters Parameters to send via POST
137 * @param array $files Files to attach to the request
139 public function __construct($url, array $options = [], $postParameters = [], array $files = []) {
142 $this->postParameters
= $postParameters;
143 $this->files
= $files;
145 $this->setOptions($options);
147 // set default headers
148 $this->addHeader('user-agent', "HTTP.PHP (HTTPRequest.class.php; WoltLab Suite/".WCF_VERSION
."; ".WCF
::getLanguage()->languageCode
.")");
149 $this->addHeader('accept', '*/*');
150 $this->addHeader('accept-language', WCF
::getLanguage()->getFixedLanguageCode());
152 if (isset($this->options
['maxLength'])) {
153 $this->addHeader('Range', 'bytes=0-'.($this->options
['maxLength'] - 1));
156 if ($this->options
['method'] !== 'GET') {
157 if (empty($this->files
)) {
158 if (is_array($postParameters)) {
159 $this->body
= http_build_query($this->postParameters
, '', '&');
161 else if (is_string($postParameters) && !empty($postParameters)) {
162 $this->body
= $postParameters;
165 $this->addHeader('content-type', 'application/x-www-form-urlencoded');
168 $boundary = StringUtil
::getRandomID();
169 $this->addHeader('content-type', 'multipart/form-data; boundary='.$boundary);
171 // source of the iterators: http://stackoverflow.com/a/7623716/782822
172 if (!empty($this->postParameters
)) {
173 $iterator = new \
RecursiveIteratorIterator(new \
RecursiveArrayIterator($this->postParameters
), \RecursiveIteratorIterator
::SELF_FIRST
);
174 foreach ($iterator as $k => $v) {
175 if (!$iterator->hasChildren()) {
177 for ($i = 0, $max = $iterator->getDepth(); $i <= $max; $i++
) {
178 if ($i === 0) $key .= $iterator->getSubIterator($i)->key();
179 else $key .= '['.$iterator->getSubIterator($i)->key().']';
182 $this->body
.= "--".$boundary."\r\n";
183 $this->body
.= 'Content-Disposition: form-data; name="'.$key.'"'."\r\n\r\n";
184 $this->body
.= $v."\r\n";
189 $iterator = new \
RecursiveIteratorIterator(new \
RecursiveArrayIterator($this->files
), \RecursiveIteratorIterator
::SELF_FIRST
);
190 foreach ($iterator as $k => $v) {
191 if (!$iterator->hasChildren()) {
193 for ($i = 0, $max = $iterator->getDepth(); $i <= $max; $i++
) {
194 if ($i === 0) $key .= $iterator->getSubIterator($i)->key();
195 else $key .= '['.$iterator->getSubIterator($i)->key().']';
198 $this->body
.= "--".$boundary."\r\n";
199 $this->body
.= 'Content-Disposition: form-data; name="'.$k.'"; filename="'.basename($v).'"'."\r\n";
200 $this->body
.= 'Content-Type: '.(FileUtil
::getMimeType($v) ?
: 'application/octet-stream.')."\r\n\r\n";
201 $this->body
.= file_get_contents($v)."\r\n";
205 $this->body
.= "--".$boundary."--";
207 $this->addHeader('content-length', strlen($this->body
));
209 if (isset($this->options
['auth'])) {
210 $this->addHeader('authorization', "Basic ".base64_encode($options['auth']['username'].":".$options['auth']['password']));
212 $this->addHeader('connection', 'Close');
216 * Parses the given URL and applies PROXY_SERVER_HTTP.
220 private function setURL($url) {
221 $parsedUrl = $originUrl = parse_url($url);
223 $this->originUseSSL
= $originUrl['scheme'] === 'https';
224 $this->originHost
= $originUrl['host'];
225 $this->originPort
= isset($originUrl['port']) ?
$originUrl['port'] : ($this->originUseSSL ?
443 : 80);
227 if (PROXY_SERVER_HTTP
&& !$this->originUseSSL
) {
232 $this->path
= isset($parsedUrl['path']) ?
$parsedUrl['path'] : '/';
233 $this->query
= isset($parsedUrl['query']) ?
$parsedUrl['query'] : '';
236 if (PROXY_SERVER_HTTP
) {
237 $parsedUrl = parse_url(PROXY_SERVER_HTTP
);
240 $this->useSSL
= $parsedUrl['scheme'] === 'https';
241 $this->host
= $parsedUrl['host'];
242 $this->port
= isset($parsedUrl['port']) ?
$parsedUrl['port'] : ($this->useSSL ?
443 : 80);
244 // update the 'Host:' header if URL has changed
245 if ($this->url
!= $url) {
246 $this->addHeader('host', $this->originHost
.($this->originPort
!= ($this->originUseSSL ?
443 : 80) ?
':'.$this->originPort
: ''));
253 * Executes the HTTP request.
255 public function execute() {
257 $remoteFile = new RemoteFile(($this->useSSL ?
'ssl://' : '').$this->host
, $this->port
, $this->options
['timeout'], [
259 'peer_name' => $this->originHost
263 if ($this->originUseSSL
&& PROXY_SERVER_HTTP
) {
264 if ($this->useSSL
) throw new SystemException("Unable to proxy HTTPS when using TLS for proxy connection");
266 $request = "CONNECT ".$this->originHost
.":".$this->originPort
." HTTP/1.0\r\n";
267 if (isset($this->headers
['user-agent'])) {
268 $request .= 'user-agent: '.reset($this->headers
['user-agent'])."\r\n";
270 $request .= "Host: ".$this->originHost
.":".$this->originPort
."\r\n";
272 $remoteFile->puts($request);
273 $this->replyHeaders
= [];
274 while (!$remoteFile->eof()) {
275 $line = $remoteFile->gets();
276 if (rtrim($line) === '') {
277 $this->parseReplyHeaders();
281 $this->replyHeaders
[] = $line;
283 if ($this->statusCode
!= 200) throw new SystemException("Expected 200 Ok as reply to my CONNECT, got '".$this->statusCode
."'");
284 $remoteFile->setTLS(true);
287 $request = $this->options
['method']." ".$this->path
.($this->query ?
'?'.$this->query
: '')." HTTP/1.1\r\n";
290 foreach ($this->headers
as $name => $values) {
291 foreach ($values as $value) {
292 $request .= $name.": ".$value."\r\n";
297 // add post parameters
298 if ($this->options
['method'] !== 'GET') $request .= $this->body
."\r\n\r\n";
300 $remoteFile->puts($request);
303 $this->replyHeaders
= [];
304 $this->replyBody
= '';
308 $chunkedTransferRegex = new Regex('(^|,)[ \t]*chunked[ \t]*$', Regex
::CASE_INSENSITIVE
);
309 // read http response, until one of is true
311 // b) bodyLength is at least maxLength
312 // c) bodyLength is at least Content-Length
314 $remoteFile->eof() ||
315 (isset($this->options
['maxLength']) && $bodyLength >= $this->options
['maxLength']) ||
316 (isset($this->replyHeaders
['content-length']) && $bodyLength >= end($this->replyHeaders
['content-length']))
320 if (isset($this->options
['maxLength'])) $chunkLength = min($chunkLength, $this->options
['maxLength'] - $bodyLength);
321 $line = $remoteFile->read($chunkLength);
323 else if (!$inHeader && (!isset($this->replyHeaders
['transfer-encoding']) ||
!$chunkedTransferRegex->match(end($this->replyHeaders
['transfer-encoding'])))) {
325 if (isset($this->options
['maxLength'])) $length = min($length, $this->options
['maxLength'] - $bodyLength);
326 if (isset($this->replyHeaders
['content-length'])) $length = min($length, end($this->replyHeaders
['content-length']) - $bodyLength);
328 $line = $remoteFile->read($length);
331 $line = $remoteFile->gets();
335 if (rtrim($line) === '') {
337 $this->parseReplyHeaders();
341 $this->replyHeaders
[] = $line;
344 if (isset($this->replyHeaders
['transfer-encoding']) && $chunkedTransferRegex->match(end($this->replyHeaders
['transfer-encoding']))) {
345 // last chunk finished
346 if ($chunkLength === 0) {
347 // read hex data and trash chunk-extension
348 list($hex) = explode(';', $line, 2);
349 $chunkLength = hexdec($hex);
351 // $chunkLength === 0 -> no more data
352 if ($chunkLength === 0) {
353 // clear remaining response
354 while (!$remoteFile->gets(1024));
356 // remove chunked from transfer-encoding
357 $this->replyHeaders
['transfer-encoding'] = array_filter(array_map(function ($element) use ($chunkedTransferRegex) {
358 return $chunkedTransferRegex->replace($element, '');
359 }, $this->replyHeaders
['transfer-encoding']), 'trim');
360 if (empty($this->replyHeaders
['transfer-encoding'])) unset($this->replyHeaders
['transfer-encoding']);
362 // break out of main reading loop
367 $this->replyBody
.= $line;
368 $chunkLength -= strlen($line);
369 $bodyLength +
= strlen($line);
370 if ($chunkLength === 0) $remoteFile->read(2); // CRLF
374 $this->replyBody
.= $line;
375 $bodyLength +
= strlen($line);
380 if (isset($this->options
['maxLength'])) $this->replyBody
= substr($this->replyBody
, 0, $this->options
['maxLength']);
382 $remoteFile->close();
388 * Parses the reply headers.
390 private function parseReplyHeaders() {
393 foreach ($this->replyHeaders
as $header) {
394 if (strpos($header, ':') === false) {
395 $headers[trim($header)] = [trim($header)];
399 // 4.2 Header fields can be
400 // extended over multiple lines by preceding each extra line with at
401 // least one SP or HT.
402 if (ltrim($header, "\t ") !== $header) {
403 $headers[$lastKey][] = array_pop($headers[$lastKey]).' '.trim($header);
406 list($key, $value) = explode(':', $header, 2);
409 if (!isset($headers[$key])) $headers[$key] = [];
410 $headers[$key][] = trim($value);
413 // 4.2 Field names are case-insensitive.
414 $this->replyHeaders
= array_change_key_case($headers);
415 if (isset($this->replyHeaders
['transfer-encoding'])) $this->replyHeaders
['transfer-encoding'] = [implode(',', $this->replyHeaders
['transfer-encoding'])];
416 $this->legacyHeaders
= array_map('end', $headers);
419 $statusLine = reset($this->replyHeaders
);
420 $regex = new Regex('^HTTP/1.\d+ +(\d{3})');
421 if (!$regex->match($statusLine[0])) throw new SystemException("Unexpected status '".$statusLine."'");
422 $matches = $regex->getMatches();
423 $this->statusCode
= $matches[1];
429 private function parseReply() {
430 // 4.4 Messages MUST NOT include both a Content-Length header field and a
431 // non-identity transfer-coding. If the message does include a non-
432 // identity transfer-coding, the Content-Length MUST be ignored.
433 if (isset($this->replyHeaders
['content-length']) && (!isset($this->replyHeaders
['transfer-encoding']) ||
strtolower(end($this->replyHeaders
['transfer-encoding'])) !== 'identity') && !isset($this->options
['maxLength'])) {
434 if (strlen($this->replyBody
) != end($this->replyHeaders
['content-length'])) {
435 throw new SystemException('Body length does not match length given in header');
439 // validate status code
440 switch ($this->statusCode
) {
446 if ($this->options
['maxDepth'] <= 0) throw new SystemException("Received status code '".$this->statusCode
."' from server, but recursion level is exhausted");
448 $newRequest = clone $this;
449 $newRequest->options
['maxDepth']--;
451 // 10.3.4 The response to the request can be found under a different URI and SHOULD
452 // be retrieved using a GET method on that resource.
453 if ($this->statusCode
== '303') {
454 $newRequest->options
['method'] = 'GET';
455 $newRequest->postParameters
= [];
456 $newRequest->addHeader('content-length', '');
457 $newRequest->addHeader('content-type', '');
461 $newRequest->setURL(end($this->replyHeaders
['location']));
463 catch (SystemException
$e) {
464 throw new SystemException("Received 'Location: ".end($this->replyHeaders
['location'])."' from server, which is invalid.", 0, $e);
468 $newRequest->execute();
470 // update data with data from the inner request
471 $this->url
= $newRequest->url
;
472 $this->statusCode
= $newRequest->statusCode
;
473 $this->replyHeaders
= $newRequest->replyHeaders
;
474 $this->legacyHeaders
= $newRequest->legacyHeaders
;
475 $this->replyBody
= $newRequest->replyBody
;
477 catch (SystemException
$e) {
478 // update data with data from the inner request
479 $this->url
= $newRequest->url
;
480 $this->statusCode
= $newRequest->statusCode
;
481 $this->replyHeaders
= $newRequest->replyHeaders
;
482 $this->legacyHeaders
= $newRequest->legacyHeaders
;
483 $this->replyBody
= $newRequest->replyBody
;
492 // check, if partial content was expected
493 if (!isset($this->headers
['range'])) {
494 throw new HTTPServerErrorException("Received unexpected status code '206' from server");
496 else if (!isset($this->replyHeaders
['content-range'])) {
497 throw new HTTPServerErrorException("Content-Range is missing in reply header");
504 throw new HTTPUnauthorizedException("Received status code '".$this->statusCode
."' from server");
508 throw new HTTPNotFoundException("Received status code '404' from server");
512 // 6.1.1 However, applications MUST
513 // understand the class of any status code, as indicated by the first
514 // digit, and treat any unrecognized response as being equivalent to the
515 // x00 status code of that class, with the exception that an
516 // unrecognized response MUST NOT be cached.
517 switch (substr($this->statusCode
, 0, 1)) {
518 case '2': // 200 and unknown 2XX
519 case '3': // 300 and unknown 3XX
522 case '5': // 500 and unknown 5XX
523 throw new HTTPServerErrorException("Received status code '".$this->statusCode
."' from server");
526 throw new SystemException("Received unhandled status code '".$this->statusCode
."' from server");
534 * Returns an array with the replied data.
535 * Note that the 'headers' element is deprecated and may be removed in the future.
539 public function getReply() {
541 'statusCode' => $this->statusCode
,
542 'headers' => $this->legacyHeaders
,
543 'httpHeaders' => $this->replyHeaders
,
544 'body' => $this->replyBody
,
550 * Sets options and applies default values when an option is omitted.
552 * @param array $options
553 * @throws SystemException
555 private function setOptions(array $options) {
556 if (!isset($options['timeout'])) {
557 $options['timeout'] = 10;
560 if (!isset($options['method'])) {
561 $options['method'] = (!empty($this->postParameters
) ||
!empty($this->files
) ?
'POST' : 'GET');
564 if (!isset($options['maxDepth'])) {
565 $options['maxDepth'] = 2;
568 if (isset($options['auth'])) {
569 if (!isset($options['auth']['username'])) {
570 throw new SystemException('Username is missing in authentification data.');
572 if (!isset($options['auth']['password'])) {
573 throw new SystemException('Password is missing in authentification data.');
577 $this->options
= $options;
581 * Adds a header to this request.
582 * When an empty value is given existing headers of this name will be removed. When append
583 * is set to false existing values will be overwritten.
585 * @param string $name
586 * @param string $value
587 * @param boolean $append
589 public function addHeader($name, $value, $append = false) {
590 // 4.2 Field names are case-insensitive.
591 $name = strtolower($name);
594 unset($this->headers
[$name]);
598 if ($append && isset($this->headers
[$name])) {
599 $this->headers
[$name][] = $value;
602 $this->headers
[$name] = [$value];
607 * Resets reply data when cloning.
609 private function __clone() {
610 $this->replyHeaders
= [];
611 $this->replyBody
= '';
612 $this->statusCode
= 0;