3 use wcf\system\exception\HTTPNotFoundException
;
4 use wcf\system\exception\HTTPServerErrorException
;
5 use wcf\system\exception\HTTPUnauthorizedException
;
6 use wcf\system\exception\SystemException
;
7 use wcf\system\io\RemoteFile
;
12 * Sends HTTP/1.1 requests.
13 * It supports POST, SSL, Basic Auth etc.
15 * @author Tim Duesterhus
16 * @copyright 2001-2015 WoltLab GmbH
17 * @license GNU Lesser General Public License <http://opensource.org/licenses/lgpl-license.php>
18 * @package com.woltlab.wcf
20 * @category Community Framework
22 final class HTTPRequest
{
27 private $options = array();
30 * given post parameters
33 private $postParameters = array();
39 private $files = array();
42 * indicates if request will be made via SSL
45 private $useSSL = false;
48 * indicates if the connection to the proxy target will be made via SSL
51 private $originUseSSL = false;
60 * target host if a proxy is used
72 * target port if a proxy is used
99 private $headers = array();
105 private $legacyHeaders = array();
117 private $replyHeaders = array();
123 private $replyBody = '';
129 private $statusCode = 0;
132 * Constructs a new instance of HTTPRequest.
134 * @param string $url URL to connect to
135 * @param array<string> $options
136 * @param mixed $postParameters Parameters to send via POST
137 * @param array $files Files to attach to the request
139 public function __construct($url, array $options = array(), $postParameters = array(), array $files = array()) {
142 $this->postParameters
= $postParameters;
143 $this->files
= $files;
145 $this->setOptions($options);
147 // set default headers
148 $this->addHeader('user-agent', "HTTP.PHP (HTTPRequest.class.php; WoltLab Community Framework/".WCF_VERSION
."; ".WCF
::getLanguage()->languageCode
.")");
149 $this->addHeader('accept', '*/*');
150 $this->addHeader('accept-language', WCF
::getLanguage()->getFixedLanguageCode());
152 if (isset($this->options
['maxLength'])) {
153 $this->addHeader('Range', 'bytes=0-'.($this->options
['maxLength'] - 1));
156 if ($this->options
['method'] !== 'GET') {
157 if (empty($this->files
)) {
158 if (is_array($postParameters)) {
159 $this->body
= http_build_query($this->postParameters
, '', '&');
161 else if (is_string($postParameters) && !empty($postParameters)) {
162 $this->body
= $postParameters;
165 $this->addHeader('content-type', 'application/x-www-form-urlencoded');
168 $boundary = StringUtil
::getRandomID();
169 $this->addHeader('content-type', 'multipart/form-data; boundary='.$boundary);
171 // source of the iterators: http://stackoverflow.com/a/7623716/782822
172 if (!empty($this->postParameters
)) {
173 $iterator = new \
RecursiveIteratorIterator(new \
RecursiveArrayIterator($this->postParameters
), \RecursiveIteratorIterator
::SELF_FIRST
);
174 foreach ($iterator as $k => $v) {
175 if (!$iterator->hasChildren()) {
177 for ($i = 0, $max = $iterator->getDepth(); $i <= $max; $i++
) {
178 if ($i === 0) $key .= $iterator->getSubIterator($i)->key();
179 else $key .= '['.$iterator->getSubIterator($i)->key().']';
182 $this->body
.= "--".$boundary."\r\n";
183 $this->body
.= 'Content-Disposition: form-data; name="'.$key.'"'."\r\n\r\n";
184 $this->body
.= $v."\r\n";
189 $iterator = new \
RecursiveIteratorIterator(new \
RecursiveArrayIterator($this->files
), \RecursiveIteratorIterator
::SELF_FIRST
);
190 foreach ($iterator as $k => $v) {
191 if (!$iterator->hasChildren()) {
193 for ($i = 0, $max = $iterator->getDepth(); $i <= $max; $i++
) {
194 if ($i === 0) $key .= $iterator->getSubIterator($i)->key();
195 else $key .= '['.$iterator->getSubIterator($i)->key().']';
198 $this->body
.= "--".$boundary."\r\n";
199 $this->body
.= 'Content-Disposition: form-data; name="'.$k.'"; filename="'.basename($v).'"'."\r\n";
200 $this->body
.= 'Content-Type: '.(FileUtil
::getMimeType($v) ?
: 'application/octet-stream.')."\r\n\r\n";
201 $this->body
.= file_get_contents($v)."\r\n";
205 $this->body
.= "--".$boundary."--";
207 $this->addHeader('content-length', strlen($this->body
));
209 if (isset($this->options
['auth'])) {
210 $this->addHeader('authorization', "Basic ".base64_encode($options['auth']['username'].":".$options['auth']['password']));
212 $this->addHeader('connection', 'Close');
216 * Parses the given URL and applies PROXY_SERVER_HTTP.
220 private function setURL($url) {
221 $parsedUrl = $originUrl = parse_url($url);
223 $this->originUseSSL
= $originUrl['scheme'] === 'https';
224 $this->originHost
= $originUrl['host'];
225 $this->originPort
= isset($originUrl['port']) ?
$originUrl['port'] : ($this->originUseSSL ?
443 : 80);
227 if (PROXY_SERVER_HTTP
) {
228 $parsedUrl = parse_url(PROXY_SERVER_HTTP
);
231 if (PROXY_SERVER_HTTP
&& !$this->originUseSSL
) {
235 $this->path
= isset($parsedUrl['path']) ?
$parsedUrl['path'] : '/';
238 $this->useSSL
= $parsedUrl['scheme'] === 'https';
239 $this->host
= $parsedUrl['host'];
240 $this->port
= isset($parsedUrl['port']) ?
$parsedUrl['port'] : ($this->useSSL ?
443 : 80);
241 $this->query
= isset($parsedUrl['query']) ?
$parsedUrl['query'] : '';
243 // update the 'Host:' header if URL has changed
244 if ($this->url
!= $url) {
245 $this->addHeader('host', $this->originHost
.($this->originPort
!= ($this->originUseSSL ?
443 : 80) ?
':'.$this->originPort
: ''));
252 * Executes the HTTP request.
254 public function execute() {
256 $remoteFile = new RemoteFile(($this->useSSL ?
'ssl://' : '').$this->host
, $this->port
, $this->options
['timeout'], array(
258 'peer_name' => $this->originHost
262 if ($this->originUseSSL
&& PROXY_SERVER_HTTP
) {
263 if ($this->useSSL
) throw new SystemException("Unable to proxy HTTPS when using TLS for proxy connection");
265 $request = "CONNECT ".$this->originHost
.":".$this->originPort
." HTTP/1.0\r\n";
266 if (isset($this->headers
['user-agent'])) {
267 $request .= 'user-agent: '.reset($this->headers
['user-agent'])."\r\n";
269 $request .= "Host: ".$this->originHost
.":".$this->originPort
."\r\n";
271 $remoteFile->puts($request);
272 $this->replyHeaders
= array();
273 while (!$remoteFile->eof()) {
274 $line = $remoteFile->gets();
275 if (rtrim($line) === '') {
276 $this->parseReplyHeaders();
280 $this->replyHeaders
[] = $line;
282 if ($this->statusCode
!= 200) throw new SystemException("Expected 200 Ok as reply to my CONNECT, got '".$this->statusCode
."'");
283 $remoteFile->setTLS(true);
286 $request = $this->options
['method']." ".$this->path
.($this->query ?
'?'.$this->query
: '')." HTTP/1.1\r\n";
289 foreach ($this->headers
as $name => $values) {
290 foreach ($values as $value) {
291 $request .= $name.": ".$value."\r\n";
296 // add post parameters
297 if ($this->options
['method'] !== 'GET') $request .= $this->body
."\r\n\r\n";
299 $remoteFile->puts($request);
302 $this->replyHeaders
= array();
303 $this->replyBody
= '';
307 $chunkedTransferRegex = new Regex('(^|,)[ \t]*chunked[ \t]*$', Regex
::CASE_INSENSITIVE
);
308 // read http response, until one of is true
310 // b) bodyLength is at least maxLength
311 // c) bodyLength is at least Content-Length
313 $remoteFile->eof() ||
314 (isset($this->options
['maxLength']) && $bodyLength >= $this->options
['maxLength']) ||
315 (isset($this->replyHeaders
['content-length']) && $bodyLength >= end($this->replyHeaders
['content-length']))
319 if (isset($this->options
['maxLength'])) $chunkLength = min($chunkLength, $this->options
['maxLength'] - $bodyLength);
320 $line = $remoteFile->read($chunkLength);
322 else if (!$inHeader && (!isset($this->replyHeaders
['transfer-encoding']) ||
!$chunkedTransferRegex->match(end($this->replyHeaders
['transfer-encoding'])))) {
324 if (isset($this->options
['maxLength'])) $length = min($length, $this->options
['maxLength'] - $bodyLength);
325 if (isset($this->replyHeaders
['content-length'])) $length = min($length, end($this->replyHeaders
['content-length']) - $bodyLength);
327 $line = $remoteFile->read($length);
330 $line = $remoteFile->gets();
334 if (rtrim($line) === '') {
336 $this->parseReplyHeaders();
340 $this->replyHeaders
[] = $line;
343 if (isset($this->replyHeaders
['transfer-encoding']) && $chunkedTransferRegex->match(end($this->replyHeaders
['transfer-encoding']))) {
344 // last chunk finished
345 if ($chunkLength === 0) {
346 // read hex data and trash chunk-extension
347 list($hex) = explode(';', $line, 2);
348 $chunkLength = hexdec($hex);
350 // $chunkLength === 0 -> no more data
351 if ($chunkLength === 0) {
352 // clear remaining response
353 while (!$remoteFile->gets(1024));
355 // remove chunked from transfer-encoding
356 $this->replyHeaders
['transfer-encoding'] = array_filter(array_map(function ($element) use ($chunkedTransferRegex) {
357 return $chunkedTransferRegex->replace($element, '');
358 }, $this->replyHeaders
['transfer-encoding']), 'trim');
359 if (empty($this->replyHeaders
['transfer-encoding'])) unset($this->replyHeaders
['transfer-encoding']);
361 // break out of main reading loop
366 $this->replyBody
.= $line;
367 $chunkLength -= strlen($line);
368 $bodyLength +
= strlen($line);
369 if ($chunkLength === 0) $remoteFile->read(2); // CRLF
373 $this->replyBody
.= $line;
374 $bodyLength +
= strlen($line);
379 if (isset($this->options
['maxLength'])) $this->replyBody
= substr($this->replyBody
, 0, $this->options
['maxLength']);
381 $remoteFile->close();
387 * Parses the reply headers.
389 private function parseReplyHeaders() {
392 foreach ($this->replyHeaders
as $header) {
393 if (strpos($header, ':') === false) {
394 $headers[trim($header)] = array(trim($header));
398 // 4.2 Header fields can be
399 // extended over multiple lines by preceding each extra line with at
400 // least one SP or HT.
401 if (ltrim($header, "\t ") !== $header) {
402 $headers[$lastKey][] = array_pop($headers[$lastKey]).' '.trim($header);
405 list($key, $value) = explode(':', $header, 2);
408 if (!isset($headers[$key])) $headers[$key] = array();
409 $headers[$key][] = trim($value);
412 // 4.2 Field names are case-insensitive.
413 $this->replyHeaders
= array_change_key_case($headers);
414 if (isset($this->replyHeaders
['transfer-encoding'])) $this->replyHeaders
['transfer-encoding'] = array(implode(',', $this->replyHeaders
['transfer-encoding']));
415 $this->legacyHeaders
= array_map('end', $headers);
418 $statusLine = reset($this->replyHeaders
);
419 $regex = new Regex('^HTTP/1.\d+ +(\d{3})');
420 if (!$regex->match($statusLine[0])) throw new SystemException("Unexpected status '".$statusLine."'");
421 $matches = $regex->getMatches();
422 $this->statusCode
= $matches[1];
428 private function parseReply() {
429 // 4.4 Messages MUST NOT include both a Content-Length header field and a
430 // non-identity transfer-coding. If the message does include a non-
431 // identity transfer-coding, the Content-Length MUST be ignored.
432 if (isset($this->replyHeaders
['content-length']) && (!isset($this->replyHeaders
['transfer-encoding']) ||
strtolower(end($this->replyHeaders
['transfer-encoding'])) !== 'identity') && !isset($this->options
['maxLength'])) {
433 if (strlen($this->replyBody
) != end($this->replyHeaders
['content-length'])) {
434 throw new SystemException('Body length does not match length given in header');
438 // validate status code
439 switch ($this->statusCode
) {
445 if ($this->options
['maxDepth'] <= 0) throw new SystemException("Received status code '".$this->statusCode
."' from server, but recursion level is exhausted");
447 $newRequest = clone $this;
448 $newRequest->options
['maxDepth']--;
450 // 10.3.4 The response to the request can be found under a different URI and SHOULD
451 // be retrieved using a GET method on that resource.
452 if ($this->statusCode
== '303') {
453 $newRequest->options
['method'] = 'GET';
454 $newRequest->postParameters
= array();
455 $newRequest->addHeader('content-length', '');
456 $newRequest->addHeader('content-type', '');
460 $newRequest->setURL(end($this->replyHeaders
['location']));
462 catch (SystemException
$e) {
463 throw new SystemException("Received 'Location: ".end($this->replyHeaders
['location'])."' from server, which is invalid.", 0, $e);
467 $newRequest->execute();
469 // update data with data from the inner request
470 $this->url
= $newRequest->url
;
471 $this->statusCode
= $newRequest->statusCode
;
472 $this->replyHeaders
= $newRequest->replyHeaders
;
473 $this->legacyHeaders
= $newRequest->legacyHeaders
;
474 $this->replyBody
= $newRequest->replyBody
;
476 catch (SystemException
$e) {
477 // update data with data from the inner request
478 $this->url
= $newRequest->url
;
479 $this->statusCode
= $newRequest->statusCode
;
480 $this->replyHeaders
= $newRequest->replyHeaders
;
481 $this->legacyHeaders
= $newRequest->legacyHeaders
;
482 $this->replyBody
= $newRequest->replyBody
;
491 // check, if partial content was expected
492 if (!isset($this->headers
['range'])) {
493 throw new HTTPServerErrorException("Received unexpected status code '206' from server");
495 else if (!isset($this->replyHeaders
['content-range'])) {
496 throw new HTTPServerErrorException("Content-Range is missing in reply header");
503 throw new HTTPUnauthorizedException("Received status code '".$this->statusCode
."' from server");
507 throw new HTTPNotFoundException("Received status code '404' from server");
511 // 6.1.1 However, applications MUST
512 // understand the class of any status code, as indicated by the first
513 // digit, and treat any unrecognized response as being equivalent to the
514 // x00 status code of that class, with the exception that an
515 // unrecognized response MUST NOT be cached.
516 switch (substr($this->statusCode
, 0, 1)) {
517 case '2': // 200 and unknown 2XX
518 case '3': // 300 and unknown 3XX
521 case '5': // 500 and unknown 5XX
522 throw new HTTPServerErrorException("Received status code '".$this->statusCode
."' from server");
525 throw new SystemException("Received unhandled status code '".$this->statusCode
."' from server");
533 * Returns an array with the replied data.
534 * Note that the 'headers' element is deprecated and may be removed in the future.
538 public function getReply() {
540 'statusCode' => $this->statusCode
,
541 'headers' => $this->legacyHeaders
,
542 'httpHeaders' => $this->replyHeaders
,
543 'body' => $this->replyBody
,
549 * Sets options and applies default values when an option is omitted.
551 * @param array $options
553 private function setOptions(array $options) {
554 if (!isset($options['timeout'])) {
555 $options['timeout'] = 10;
558 if (!isset($options['method'])) {
559 $options['method'] = (!empty($this->postParameters
) ||
!empty($this->files
) ?
'POST' : 'GET');
562 if (!isset($options['maxDepth'])) {
563 $options['maxDepth'] = 2;
566 if (isset($options['auth'])) {
567 if (!isset($options['auth']['username'])) {
568 throw new SystemException('Username is missing in authentification data.');
570 if (!isset($options['auth']['password'])) {
571 throw new SystemException('Password is missing in authentification data.');
575 $this->options
= $options;
579 * Adds a header to this request.
580 * When an empty value is given existing headers of this name will be removed. When append
581 * is set to false existing values will be overwritten.
583 * @param string $name
584 * @param string $value
585 * @param boolean $append
587 public function addHeader($name, $value, $append = false) {
588 // 4.2 Field names are case-insensitive.
589 $name = strtolower($name);
592 unset($this->headers
[$name]);
596 if ($append && isset($this->headers
[$name])) {
597 $this->headers
[$name][] = $value;
600 $this->headers
[$name] = array($value);
605 * Resets reply data when cloning.
607 private function __clone() {
608 $this->replyHeaders
= array();
609 $this->replyBody
= '';
610 $this->statusCode
= 0;