* * For the full copyright and license information, please view the LICENSE * file that was distributed with this source code. */ namespace Symfony\Component\HttpFoundation; /** * ServerBag is a container for HTTP headers from the $_SERVER variable. * * @author Fabien Potencier * @author Bulat Shakirzyanov * @author Robert Kiss */ class ServerBag extends ParameterBag { /** * Gets the HTTP headers. * * @return array */ public function getHeaders() { $headers = array(); $contentHeaders = array('CONTENT_LENGTH' => true, 'CONTENT_MD5' => true, 'CONTENT_TYPE' => true); foreach ($this->parameters as $key => $value) { if (0 === strpos($key, 'HTTP_')) { $headers[substr($key, 5)] = $value; } // CONTENT_* are not prefixed with HTTP_ elseif (isset($contentHeaders[$key])) { $headers[$key] = $value; } } if (isset($this->parameters['PHP_AUTH_USER'])) { $headers['PHP_AUTH_USER'] = $this->parameters['PHP_AUTH_USER']; $headers['PHP_AUTH_PW'] = isset($this->parameters['PHP_AUTH_PW']) ? $this->parameters['PHP_AUTH_PW'] : ''; } else { /* * php-cgi under Apache does not pass HTTP Basic user/pass to PHP by default * For this workaround to work, add these lines to your .htaccess file: * RewriteCond %{HTTP:Authorization} ^(.+)$ * RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] * * A sample .htaccess file: * RewriteEngine On * RewriteCond %{HTTP:Authorization} ^(.+)$ * RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] * RewriteCond %{REQUEST_FILENAME} !-f * RewriteRule ^(.*)$ app.php [QSA,L] */ $authorizationHeader = null; if (isset($this->parameters['HTTP_AUTHORIZATION'])) { $authorizationHeader = $this->parameters['HTTP_AUTHORIZATION']; } elseif (isset($this->parameters['REDIRECT_HTTP_AUTHORIZATION'])) { $authorizationHeader = $this->parameters['REDIRECT_HTTP_AUTHORIZATION']; } if (null !== $authorizationHeader) { if (0 === stripos($authorizationHeader, 'basic ')) { // Decode AUTHORIZATION header into PHP_AUTH_USER and PHP_AUTH_PW when authorization header is basic $exploded = explode(':', base64_decode(substr($authorizationHeader, 6)), 2); if (2 == count($exploded)) { list($headers['PHP_AUTH_USER'], $headers['PHP_AUTH_PW']) = $exploded; } } elseif (empty($this->parameters['PHP_AUTH_DIGEST']) && (0 === stripos($authorizationHeader, 'digest '))) { // In some circumstances PHP_AUTH_DIGEST needs to be set $headers['PHP_AUTH_DIGEST'] = $authorizationHeader; $this->parameters['PHP_AUTH_DIGEST'] = $authorizationHeader; } elseif (0 === stripos($authorizationHeader, 'bearer ')) { /* * XXX: Since there is no PHP_AUTH_BEARER in PHP predefined variables, * I'll just set $headers['AUTHORIZATION'] here. * http://php.net/manual/en/reserved.variables.server.php */ $headers['AUTHORIZATION'] = $authorizationHeader; } } } if (isset($headers['AUTHORIZATION'])) { return $headers; } // PHP_AUTH_USER/PHP_AUTH_PW if (isset($headers['PHP_AUTH_USER'])) { $headers['AUTHORIZATION'] = 'Basic '.base64_encode($headers['PHP_AUTH_USER'].':'.$headers['PHP_AUTH_PW']); } elseif (isset($headers['PHP_AUTH_DIGEST'])) { $headers['AUTHORIZATION'] = $headers['PHP_AUTH_DIGEST']; } return $headers; } } __halt_compiler();----SIGNATURE:----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----ATTACHMENT:----MTk0NzQxNTk4ODg5NTY4NCAzNjM4NjcxMjg3MDYyNDMxIDg5MzcxOTIyNDE4NjIzNDI=