Open Monograph Press  3.3.0
vendor/symfony/http-foundation/ServerBag.php
1 <?php
2 
3 /*
4  * This file is part of the Symfony package.
5  *
6  * (c) Fabien Potencier <fabien@symfony.com>
7  *
8  * For the full copyright and license information, please view the LICENSE
9  * file that was distributed with this source code.
10  */
11 
12 namespace Symfony\Component\HttpFoundation;
13 
21 class ServerBag extends ParameterBag
22 {
28  public function getHeaders()
29  {
30  $headers = [];
31  foreach ($this->parameters as $key => $value) {
32  if (0 === strpos($key, 'HTTP_')) {
33  $headers[substr($key, 5)] = $value;
34  } elseif (\in_array($key, ['CONTENT_TYPE', 'CONTENT_LENGTH', 'CONTENT_MD5'], true)) {
35  $headers[$key] = $value;
36  }
37  }
38 
39  if (isset($this->parameters['PHP_AUTH_USER'])) {
40  $headers['PHP_AUTH_USER'] = $this->parameters['PHP_AUTH_USER'];
41  $headers['PHP_AUTH_PW'] = isset($this->parameters['PHP_AUTH_PW']) ? $this->parameters['PHP_AUTH_PW'] : '';
42  } else {
43  /*
44  * php-cgi under Apache does not pass HTTP Basic user/pass to PHP by default
45  * For this workaround to work, add these lines to your .htaccess file:
46  * RewriteCond %{HTTP:Authorization} .+
47  * RewriteRule ^ - [E=HTTP_AUTHORIZATION:%0]
48  *
49  * A sample .htaccess file:
50  * RewriteEngine On
51  * RewriteCond %{HTTP:Authorization} .+
52  * RewriteRule ^ - [E=HTTP_AUTHORIZATION:%0]
53  * RewriteCond %{REQUEST_FILENAME} !-f
54  * RewriteRule ^(.*)$ app.php [QSA,L]
55  */
56 
57  $authorizationHeader = null;
58  if (isset($this->parameters['HTTP_AUTHORIZATION'])) {
59  $authorizationHeader = $this->parameters['HTTP_AUTHORIZATION'];
60  } elseif (isset($this->parameters['REDIRECT_HTTP_AUTHORIZATION'])) {
61  $authorizationHeader = $this->parameters['REDIRECT_HTTP_AUTHORIZATION'];
62  }
63 
64  if (null !== $authorizationHeader) {
65  if (0 === stripos($authorizationHeader, 'basic ')) {
66  // Decode AUTHORIZATION header into PHP_AUTH_USER and PHP_AUTH_PW when authorization header is basic
67  $exploded = explode(':', base64_decode(substr($authorizationHeader, 6)), 2);
68  if (2 == \count($exploded)) {
69  list($headers['PHP_AUTH_USER'], $headers['PHP_AUTH_PW']) = $exploded;
70  }
71  } elseif (empty($this->parameters['PHP_AUTH_DIGEST']) && (0 === stripos($authorizationHeader, 'digest '))) {
72  // In some circumstances PHP_AUTH_DIGEST needs to be set
73  $headers['PHP_AUTH_DIGEST'] = $authorizationHeader;
74  $this->parameters['PHP_AUTH_DIGEST'] = $authorizationHeader;
75  } elseif (0 === stripos($authorizationHeader, 'bearer ')) {
76  /*
77  * XXX: Since there is no PHP_AUTH_BEARER in PHP predefined variables,
78  * I'll just set $headers['AUTHORIZATION'] here.
79  * https://php.net/reserved.variables.server
80  */
81  $headers['AUTHORIZATION'] = $authorizationHeader;
82  }
83  }
84  }
85 
86  if (isset($headers['AUTHORIZATION'])) {
87  return $headers;
88  }
89 
90  // PHP_AUTH_USER/PHP_AUTH_PW
91  if (isset($headers['PHP_AUTH_USER'])) {
92  $headers['AUTHORIZATION'] = 'Basic '.base64_encode($headers['PHP_AUTH_USER'].':'.$headers['PHP_AUTH_PW']);
93  } elseif (isset($headers['PHP_AUTH_DIGEST'])) {
94  $headers['AUTHORIZATION'] = $headers['PHP_AUTH_DIGEST'];
95  }
96 
97  return $headers;
98  }
99 }
Symfony\Component\HttpFoundation\ServerBag\getHeaders
getHeaders()
Definition: vendor/symfony/http-foundation/ServerBag.php:28
Symfony\Component\HttpFoundation\ParameterBag\count
count()
Definition: lib/vendor/symfony/http-foundation/ParameterBag.php:237
Symfony\Component\HttpFoundation
Definition: lib/vendor/symfony/http-foundation/AcceptHeader.php:12