nextcloud/apps/user_webfinger/webfinger.php

<?php
header("Access-Control-Allow-Origin: *");
header("Content-Type: application/xrd+json");

/**
 * To include your app in the webfinger XML, add a new script with file name
 * 'webfinger.php' to /apps/yourapp/appinfo/, which prints out the XML parts
 * to be included. That script can make use of the constants WF_USER (e. g.
 * "user"), WF_ID (user@host) and WF_BASEURL (e. g. https://host/owncloud).
 * An example could look like this:
 * 
 * <Link
 * 	rel="myProfile"
 * 	type="text/html"
 * 	href="<?php echo WF_BASEURL; ?>/apps/myApp/profile.php?user=<?php echo WF_USER; ?>">
 * </Link>
 *
 '* but can also use complex database queries to generate the webfinger result
 **/

$userName = '';
$hostName = '';
$request = strip_tags(urldecode($_GET['q']));
if($_GET['q']) {
	$reqParts = explode('@', $request);
	if(count($reqParts)==2) {
		$userName = $reqParts[0];
		$hostName = $reqParts[1];
	}
}
if(substr($userName, 0, 5) == 'acct:') {
	$userName = substr($userName, 5);
}
if($userName == "") {
	$id = "";
} else {
	$id = $userName . '@' . $hostName;
}
if(isset($_SERVER['HTTPS'])) {
	$baseAddress = 'https://';
} else {
	$baseAddress = 'http://';
}
$baseAddress .= $_SERVER['SERVER_NAME'].OC::$WEBROOT;
if(empty($id)) {
	header("HTTP/1.0 400 Bad Request");
}
define('WF_USER', $userName);
define('WF_ID', $id);
define('WF_BASEURL', $baseAddress);
echo "{\"links\":[";
$apps = OC_Appconfig::getApps();
foreach($apps as $app) {
	if(OCP\App::isEnabled($app)) {
		if(is_file(OC_App::getAppPath($app). '/appinfo/webfinger.php')) {
			require($app . '/appinfo/webfinger.php');
		}
	}
}
echo "]}";
adding webfinger app 2011-09-12 02:12:34 +04:00			`<?php`
webfinger reimplementation started 2012-03-31 04:42:41 +04:00			`header("Access-Control-Allow-Origin: *");`
move lrdd to jrd 2012-05-11 17:26:45 +04:00			`header("Content-Type: application/xrd+json");`
make webfinger work properly if owncloud is installed in a subdirectory 2011-11-03 16:09:44 +04:00
webfinger reimplementation started 2012-03-31 04:42:41 +04:00			`/**`
			`* To include your app in the webfinger XML, add a new script with file name`
			`* 'webfinger.php' to /apps/yourapp/appinfo/, which prints out the XML parts`
			`* to be included. That script can make use of the constants WF_USER (e. g.`
webfinger protocol compatible + minor changes 2012-04-02 19:12:52 +04:00			`* "user"), WF_ID (user@host) and WF_BASEURL (e. g. https://host/owncloud).`
webfinger reimplementation started 2012-03-31 04:42:41 +04:00			`* An example could look like this:`
			`*`
			`* <Link`
			`* rel="myProfile"`
			`* type="text/html"`
webfinger protocol compatible + minor changes 2012-04-02 19:12:52 +04:00			`* href="<?php echo WF_BASEURL; ?>/apps/myApp/profile.php?user=<?php echo WF_USER; ?>">`
webfinger reimplementation started 2012-03-31 04:42:41 +04:00			`* </Link>`
			`*`
			`'* but can also use complex database queries to generate the webfinger result`
			`**/`
adding webfinger app 2011-09-12 02:12:34 +04:00
require base lib and deal with malformed user addresses in webfinger.php 2012-05-07 11:46:15 +04:00			`$userName = '';`
			`$hostName = '';`
prevent xss in webfinger 2012-05-07 11:26:54 +04:00			`$request = strip_tags(urldecode($_GET['q']));`
adding webfinger app 2011-09-12 02:12:34 +04:00			`if($_GET['q']) {`
webfinger protocol compatible + minor changes 2012-04-02 19:12:52 +04:00			`$reqParts = explode('@', $request);`
require base lib and deal with malformed user addresses in webfinger.php 2012-05-07 11:46:15 +04:00			`if(count($reqParts)==2) {`
whitespace correction in webfinger.php 2012-05-07 11:51:37 +04:00			`$userName = $reqParts[0];`
			`$hostName = $reqParts[1];`
			`}`
adding webfinger app 2011-09-12 02:12:34 +04:00			`}`
			`if(substr($userName, 0, 5) == 'acct:') {`
			`$userName = substr($userName, 5);`
			`}`
webfinger protocol compatible + minor changes 2012-04-02 19:12:52 +04:00			`if($userName == "") {`
			`$id = "";`
			`} else {`
			`$id = $userName . '@' . $hostName;`
			`}`
avoid notice in error log from user_webfinger app 2012-02-22 22:04:21 +04:00			`if(isset($_SERVER['HTTPS'])) {`
webfinger reimplementation started 2012-03-31 04:42:41 +04:00			`$baseAddress = 'https://';`
compliance with http://www.w3.org/community/unhosted/wiki/remoteStorage 2011-12-07 18:51:47 +04:00			`} else {`
webfinger reimplementation started 2012-03-31 04:42:41 +04:00			`$baseAddress = 'http://';`
compliance with http://www.w3.org/community/unhosted/wiki/remoteStorage 2011-12-07 18:51:47 +04:00			`}`
webfinger reimplementation started 2012-03-31 04:42:41 +04:00			`$baseAddress .= $_SERVER['SERVER_NAME'].OC::$WEBROOT;`
better invalid webfinger URI handling 2012-05-07 13:15:24 +04:00			`if(empty($id)) {`
			`header("HTTP/1.0 400 Bad Request");`
			`}`
webfinger reimplementation started 2012-03-31 04:42:41 +04:00			`define('WF_USER', $userName);`
webfinger protocol compatible + minor changes 2012-04-02 19:12:52 +04:00			`define('WF_ID', $id);`
			`define('WF_BASEURL', $baseAddress);`
move lrdd to jrd 2012-05-11 17:26:45 +04:00			`echo "{\"links\":[";`
webfinger reimplementation started 2012-03-31 04:42:41 +04:00			`$apps = OC_Appconfig::getApps();`
			`foreach($apps as $app) {`
ported the oc_app calls 2012-05-02 02:50:26 +04:00			`if(OCP\App::isEnabled($app)) {`
Correct remote and public, and last occurence of OC:: 2012-06-05 00:37:00 +04:00			`if(is_file(OC_App::getAppPath($app). '/appinfo/webfinger.php')) {`
webfinger reimplementation started 2012-03-31 04:42:41 +04:00			`require($app . '/appinfo/webfinger.php');`
			`}`
			`}`
			`}`
move lrdd to jrd 2012-05-11 17:26:45 +04:00			`echo "]}";`