PageRenderTime 58ms CodeModel.GetById 18ms RepoModel.GetById 0ms app.codeStats 0ms

/framework/lib/S3.php

https://gitlab.com/x33n/platform
PHP | 1464 lines | 890 code | 160 blank | 414 comment | 184 complexity | 42fd80bf6b24685f62f9e0a11cf76e7b MD5 | raw file
    

  1. <?php
    2. 

  2. /**
    3. 

  3. * $Id$
    4. 

  4. *
    5. 

  5. * Copyright (c) 2011, Donovan Schönknecht.  All rights reserved.
    6. 

  6. *
    7. 

  7. * Redistribution and use in source and binary forms, with or without
    8. 

  8. * modification, are permitted provided that the following conditions are met:
    9. 

  9. *
    10. 

  10. * - Redistributions of source code must retain the above copyright notice,
    11. 

  11. *   this list of conditions and the following disclaimer.
    12. 

  12. * - Redistributions in binary form must reproduce the above copyright
    13. 

  13. *   notice, this list of conditions and the following disclaimer in the
    14. 

  14. *   documentation and/or other materials provided with the distribution.
    15. 

  15. *
    16. 

  16. * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
    17. 

  17. * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
    18. 

  18. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
    19. 

  19. * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
    20. 

  20. * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
    21. 

  21. * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
    22. 

  22. * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
    23. 

  23. * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
    24. 

  24. * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
    25. 

  25. * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
    26. 

  26. * POSSIBILITY OF SUCH DAMAGE.
    27. 

  27. *
    28. 

  28. * Amazon S3 is a trademark of Amazon.com, Inc. or its affiliates.
    29. 

  29. */
    30. 

  30. 

  31. /**
    32. 

  32. * Amazon S3 PHP class
    33. 

  33. *
    34. 

  34. * @link http://undesigned.org.za/2007/10/22/amazon-s3-php-class
    35. 

  35. * @version 0.5.0-dev
    36. 

  36. */
    37. 

  37. class S3
    38. 

  38. {
    39. 

  39. 	// ACL flags
    40. 

  40. 	const ACL_PRIVATE = 'private';
    41. 

  41. 	const ACL_PUBLIC_READ = 'public-read';
    42. 

  42. 	const ACL_PUBLIC_READ_WRITE = 'public-read-write';
    43. 

  43. 	const ACL_AUTHENTICATED_READ = 'authenticated-read';
    44. 

  44. 

  45. 	const STORAGE_CLASS_STANDARD = 'STANDARD';
    46. 

  46. 	const STORAGE_CLASS_RRS = 'REDUCED_REDUNDANCY';
    47. 

  47. 

  48. 	private static $__accessKey = null; // AWS Access key
    49. 

  49. 	private static $__secretKey = null; // AWS Secret key
    50. 

  50. 	private static $__sslKey = null;
    51. 

  51. 

  52. 	public static $endpoint = 's3.amazonaws.com';
    53. 

  53. 	public static $proxy = null;
    54. 

  54. 

  55. 	public static $useSSL = false;
    56. 

  56. 	public static $useSSLValidation = true;
    57. 

  57. 	public static $useExceptions = false;
    58. 

  58. 

  59. 	// SSL CURL SSL options - only needed if you are experiencing problems with your OpenSSL configuration
    60. 

  60. 	public static $sslKey = null;
    61. 

  61. 	public static $sslCert = null;
    62. 

  62. 	public static $sslCACert = null;
    63. 

  63. 

  64. 	private static $__signingKeyPairId = null; // AWS Key Pair ID
    65. 

  65. 	private static $__signingKeyResource = false; // Key resource, freeSigningKey() must be called to clear it from memory
    66. 

  66. 

  67. 

  68. 	/**
    69. 

  69. 	* Constructor - if you're not using the class statically
    70. 

  70. 	*
    71. 

  71. 	* @param string $accessKey Access key
    72. 

  72. 	* @param string $secretKey Secret key
    73. 

  73. 	* @param boolean $useSSL Enable SSL
    74. 

  74. 	* @return void
    75. 

  75. 	*/
    76. 

  76. 	public function __construct($accessKey = null, $secretKey = null, $useSSL = false, $endpoint = 's3.amazonaws.com')
    77. 

  77. 	{
    78. 

  78. 		if ($accessKey !== null && $secretKey !== null)
    79. 

  79. 			self::setAuth($accessKey, $secretKey);
    80. 

  80. 		self::$useSSL = $useSSL;
    81. 

  81. 		self::$endpoint = $endpoint;
    82. 

  82. 	}
    83. 

  83. 

  84. 

  85. 	/**
    86. 

  86. 	* Set the sertvice endpoint
    87. 

  87. 	*
    88. 

  88. 	* @param string $host Hostname
    89. 

  89. 	* @return void
    90. 

  90. 	*/
    91. 

  91. 	public function setEndpoint($host)
    92. 

  92. 	{
    93. 

  93. 		self::$endpoint = $host;
    94. 

  94. 	}
    95. 

  95. 

  96. 	/**
    97. 

  97. 	* Set AWS access key and secret key
    98. 

  98. 	*
    99. 

  99. 	* @param string $accessKey Access key
    100. 

  100. 	* @param string $secretKey Secret key
    101. 

  101. 	* @return void
    102. 

  102. 	*/
    103. 

  103. 	public static function setAuth($accessKey, $secretKey)
    104. 

  104. 	{
    105. 

  105. 		self::$__accessKey = $accessKey;
    106. 

  106. 		self::$__secretKey = $secretKey;
    107. 

  107. 	}
    108. 

  108. 

  109. 

  110. 	/**
    111. 

  111. 	* Check if AWS keys have been set
    112. 

  112. 	*
    113. 

  113. 	* @return boolean
    114. 

  114. 	*/
    115. 

  115. 	public static function hasAuth() {
    116. 

  116. 		return (self::$__accessKey !== null && self::$__secretKey !== null);
    117. 

  117. 	}
    118. 

  118. 

  119. 

  120. 	/**
    121. 

  121. 	* Set SSL on or off
    122. 

  122. 	*
    123. 

  123. 	* @param boolean $enabled SSL enabled
    124. 

  124. 	* @param boolean $validate SSL certificate validation
    125. 

  125. 	* @return void
    126. 

  126. 	*/
    127. 

  127. 	public static function setSSL($enabled, $validate = true)
    128. 

  128. 	{
    129. 

  129. 		self::$useSSL = $enabled;
    130. 

  130. 		self::$useSSLValidation = $validate;
    131. 

  131. 	}
    132. 

  132. 

  133. 

  134. 	/**
    135. 

  135. 	* Set SSL client certificates (experimental)
    136. 

  136. 	*
    137. 

  137. 	* @param string $sslCert SSL client certificate
    138. 

  138. 	* @param string $sslKey SSL client key
    139. 

  139. 	* @param string $sslCACert SSL CA cert (only required if you are having problems with your system CA cert)
    140. 

  140. 	* @return void
    141. 

  141. 	*/
    142. 

  142. 	public static function setSSLAuth($sslCert = null, $sslKey = null, $sslCACert = null)
    143. 

  143. 	{
    144. 

  144. 		self::$sslCert = $sslCert;
    145. 

  145. 		self::$sslKey = $sslKey;
    146. 

  146. 		self::$sslCACert = $sslCACert;
    147. 

  147. 	}
    148. 

  148. 

  149. 

  150. 	/**
    151. 

  151. 	* Set proxy information
    152. 

  152. 	*
    153. 

  153. 	* @param string $host Proxy hostname and port (localhost:1234)
    154. 

  154. 	* @param string $user Proxy username
    155. 

  155. 	* @param string $pass Proxy password
    156. 

  156. 	* @param constant $type CURL proxy type
    157. 

  157. 	* @return void
    158. 

  158. 	*/
    159. 

  159. 	public static function setProxy($host, $user = null, $pass = null, $type = CURLPROXY_SOCKS5)
    160. 

  160. 	{
    161. 

  161. 		self::$proxy = array('host' => $host, 'type' => $type, 'user' => null, 'pass' => 'null');
    162. 

  162. 	}
    163. 

  163. 

  164. 

  165. 	/**
    166. 

  166. 	* Set the error mode to exceptions
    167. 

  167. 	*
    168. 

  168. 	* @param boolean $enabled Enable exceptions
    169. 

  169. 	* @return void
    170. 

  170. 	*/
    171. 

  171. 	public static function setExceptions($enabled = true)
    172. 

  172. 	{
    173. 

  173. 		self::$useExceptions = $enabled;
    174. 

  174. 	}
    175. 

  175. 

  176. 

  177. 	/**
    178. 

  178. 	* Set signing key
    179. 

  179. 	*
    180. 

  180. 	* @param string $keyPairId AWS Key Pair ID
    181. 

  181. 	* @param string $signingKey Private Key
    182. 

  182. 	* @param boolean $isFile Load private key from file, set to false to load string
    183. 

  183. 	* @return boolean
    184. 

  184. 	*/
    185. 

  185. 	public static function setSigningKey($keyPairId, $signingKey, $isFile = true)
    186. 

  186. 	{
    187. 

  187. 		self::$__signingKeyPairId = $keyPairId;
    188. 

  188. 		if ((self::$__signingKeyResource = openssl_pkey_get_private($isFile ?
    189. 

  189. 		file_get_contents($signingKey) : $signingKey)) !== false) return true;
    190. 

  190. 		self::__triggerError('S3::setSigningKey(): Unable to open load private key: '.$signingKey, __FILE__, __LINE__);
    191. 

  191. 		return false;
    192. 

  192. 	}
    193. 

  193. 

  194. 

  195. 	/**
    196. 

  196. 	* Free signing key from memory, MUST be called if you are using setSigningKey()
    197. 

  197. 	*
    198. 

  198. 	* @return void
    199. 

  199. 	*/
    200. 

  200. 	public static function freeSigningKey()
    201. 

  201. 	{
    202. 

  202. 		if (self::$__signingKeyResource !== false)
    203. 

  203. 			openssl_free_key(self::$__signingKeyResource);
    204. 

  204. 	}
    205. 

  205. 

  206. 

  207. 	/**
    208. 

  208. 	* Internal error handler
    209. 

  209. 	*
    210. 

  210. 	* @internal Internal error handler
    211. 

  211. 	* @param string $message Error message
    212. 

  212. 	* @param string $file Filename
    213. 

  213. 	* @param integer $line Line number
    214. 

  214. 	* @param integer $code Error code
    215. 

  215. 	* @return void
    216. 

  216. 	*/
    217. 

  217. 	private static function __triggerError($message, $file, $line, $code = 0)
    218. 

  218. 	{
    219. 

  219. 		if (self::$useExceptions)
    220. 

  220. 			throw new S3Exception($message, $file, $line, $code);
    221. 

  221. 		else
    222. 

  222. 			trigger_error($message, E_USER_WARNING);
    223. 

  223. 	}
    224. 

  224. 

  225. 

  226. 	/**
    227. 

  227. 	* Get a list of buckets
    228. 

  228. 	*
    229. 

  229. 	* @param boolean $detailed Returns detailed bucket list when true
    230. 

  230. 	* @return array | false
    231. 

  231. 	*/
    232. 

  232. 	public static function listBuckets($detailed = false)
    233. 

  233. 	{
    234. 

  234. 		$rest = new S3Request('GET', '', '', self::$endpoint);
    235. 

  235. 		$rest = $rest->getResponse();
    236. 

  236. 		if ($rest->error === false && $rest->code !== 200)
    237. 

  237. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    238. 

  238. 		if ($rest->error !== false)
    239. 

  239. 		{
    240. 

  240. 			self::__triggerError(sprintf("S3::listBuckets(): [%s] %s", $rest->error['code'],
    241. 

  241. 			$rest->error['message']), __FILE__, __LINE__);
    242. 

  242. 			return false;
    243. 

  243. 		}
    244. 

  244. 		$results = array();
    245. 

  245. 		if (!isset($rest->body->Buckets)) return $results;
    246. 

  246. 

  247. 		if ($detailed)
    248. 

  248. 		{
    249. 

  249. 			if (isset($rest->body->Owner, $rest->body->Owner->ID, $rest->body->Owner->DisplayName))
    250. 

  250. 			$results['owner'] = array(
    251. 

  251. 				'id' => (string)$rest->body->Owner->ID, 'name' => (string)$rest->body->Owner->ID
    252. 

  252. 			);
    253. 

  253. 			$results['buckets'] = array();
    254. 

  254. 			foreach ($rest->body->Buckets->Bucket as $b)
    255. 

  255. 				$results['buckets'][] = array(
    256. 

  256. 					'name' => (string)$b->Name, 'time' => strtotime((string)$b->CreationDate)
    257. 

  257. 				);
    258. 

  258. 		} else
    259. 

  259. 			foreach ($rest->body->Buckets->Bucket as $b) $results[] = (string)$b->Name;
    260. 

  260. 

  261. 		return $results;
    262. 

  262. 	}
    263. 

  263. 

  264. 

  265. 	/*
    266. 

  266. 	* Get contents for a bucket
    267. 

  267. 	*
    268. 

  268. 	* If maxKeys is null this method will loop through truncated result sets
    269. 

  269. 	*
    270. 

  270. 	* @param string $bucket Bucket name
    271. 

  271. 	* @param string $prefix Prefix
    272. 

  272. 	* @param string $marker Marker (last file listed)
    273. 

  273. 	* @param string $maxKeys Max keys (maximum number of keys to return)
    274. 

  274. 	* @param string $delimiter Delimiter
    275. 

  275. 	* @param boolean $returnCommonPrefixes Set to true to return CommonPrefixes
    276. 

  276. 	* @return array | false
    277. 

  277. 	*/
    278. 

  278. 	public static function getBucket($bucket, $prefix = null, $marker = null, $maxKeys = null, $delimiter = null, $returnCommonPrefixes = false)
    279. 

  279. 	{
    280. 

  280. 		$rest = new S3Request('GET', $bucket, '', self::$endpoint);
    281. 

  281. 		if ($maxKeys == 0) $maxKeys = null;
    282. 

  282. 		if ($prefix !== null && $prefix !== '') $rest->setParameter('prefix', $prefix);
    283. 

  283. 		if ($marker !== null && $marker !== '') $rest->setParameter('marker', $marker);
    284. 

  284. 		if ($maxKeys !== null && $maxKeys !== '') $rest->setParameter('max-keys', $maxKeys);
    285. 

  285. 		if ($delimiter !== null && $delimiter !== '') $rest->setParameter('delimiter', $delimiter);
    286. 

  286. 		$response = $rest->getResponse();
    287. 

  287. 		if ($response->error === false && $response->code !== 200)
    288. 

  288. 			$response->error = array('code' => $response->code, 'message' => 'Unexpected HTTP status');
    289. 

  289. 		if ($response->error !== false)
    290. 

  290. 		{
    291. 

  291. 			self::__triggerError(sprintf("S3::getBucket(): [%s] %s",
    292. 

  292. 			$response->error['code'], $response->error['message']), __FILE__, __LINE__);
    293. 

  293. 			return false;
    294. 

  294. 		}
    295. 

  295. 

  296. 		$results = array();
    297. 

  297. 

  298. 		$nextMarker = null;
    299. 

  299. 		if (isset($response->body, $response->body->Contents))
    300. 

  300. 		foreach ($response->body->Contents as $c)
    301. 

  301. 		{
    302. 

  302. 			$results[(string)$c->Key] = array(
    303. 

  303. 				'name' => (string)$c->Key,
    304. 

  304. 				'time' => strtotime((string)$c->LastModified),
    305. 

  305. 				'size' => (int)$c->Size,
    306. 

  306. 				'hash' => substr((string)$c->ETag, 1, -1)
    307. 

  307. 			);
    308. 

  308. 			$nextMarker = (string)$c->Key;
    309. 

  309. 		}
    310. 

  310. 

  311. 		if ($returnCommonPrefixes && isset($response->body, $response->body->CommonPrefixes))
    312. 

  312. 			foreach ($response->body->CommonPrefixes as $c)
    313. 

  313. 				$results[(string)$c->Prefix] = array('prefix' => (string)$c->Prefix);
    314. 

  314. 

  315. 		if (isset($response->body, $response->body->IsTruncated) &&
    316. 

  316. 		(string)$response->body->IsTruncated == 'false') return $results;
    317. 

  317. 

  318. 		if (isset($response->body, $response->body->NextMarker))
    319. 

  319. 			$nextMarker = (string)$response->body->NextMarker;
    320. 

  320. 

  321. 		// Loop through truncated results if maxKeys isn't specified
    322. 

  322. 		if ($maxKeys == null && $nextMarker !== null && (string)$response->body->IsTruncated == 'true')
    323. 

  323. 		do
    324. 

  324. 		{
    325. 

  325. 			$rest = new S3Request('GET', $bucket, '', self::$endpoint);
    326. 

  326. 			if ($prefix !== null && $prefix !== '') $rest->setParameter('prefix', $prefix);
    327. 

  327. 			$rest->setParameter('marker', $nextMarker);
    328. 

  328. 			if ($delimiter !== null && $delimiter !== '') $rest->setParameter('delimiter', $delimiter);
    329. 

  329. 

  330. 			if (($response = $rest->getResponse(true)) == false || $response->code !== 200) break;
    331. 

  331. 

  332. 			if (isset($response->body, $response->body->Contents))
    333. 

  333. 			foreach ($response->body->Contents as $c)
    334. 

  334. 			{
    335. 

  335. 				$results[(string)$c->Key] = array(
    336. 

  336. 					'name' => (string)$c->Key,
    337. 

  337. 					'time' => strtotime((string)$c->LastModified),
    338. 

  338. 					'size' => (int)$c->Size,
    339. 

  339. 					'hash' => substr((string)$c->ETag, 1, -1)
    340. 

  340. 				);
    341. 

  341. 				$nextMarker = (string)$c->Key;
    342. 

  342. 			}
    343. 

  343. 

  344. 			if ($returnCommonPrefixes && isset($response->body, $response->body->CommonPrefixes))
    345. 

  345. 				foreach ($response->body->CommonPrefixes as $c)
    346. 

  346. 					$results[(string)$c->Prefix] = array('prefix' => (string)$c->Prefix);
    347. 

  347. 

  348. 			if (isset($response->body, $response->body->NextMarker))
    349. 

  349. 				$nextMarker = (string)$response->body->NextMarker;
    350. 

  350. 

  351. 		} while ($response !== false && (string)$response->body->IsTruncated == 'true');
    352. 

  352. 

  353. 		return $results;
    354. 

  354. 	}
    355. 

  355. 

  356. 

  357. 	/**
    358. 

  358. 	* Put a bucket
    359. 

  359. 	*
    360. 

  360. 	* @param string $bucket Bucket name
    361. 

  361. 	* @param constant $acl ACL flag
    362. 

  362. 	* @param string $location Set as "EU" to create buckets hosted in Europe
    363. 

  363. 	* @return boolean
    364. 

  364. 	*/
    365. 

  365. 	public static function putBucket($bucket, $acl = self::ACL_PRIVATE, $location = false)
    366. 

  366. 	{
    367. 

  367. 		$rest = new S3Request('PUT', $bucket, '', self::$endpoint);
    368. 

  368. 		$rest->setAmzHeader('x-amz-acl', $acl);
    369. 

  369. 

  370. 		if ($location !== false)
    371. 

  371. 		{
    372. 

  372. 			$dom = new DOMDocument;
    373. 

  373. 			$createBucketConfiguration = $dom->createElement('CreateBucketConfiguration');
    374. 

  374. 			$locationConstraint = $dom->createElement('LocationConstraint', $location);
    375. 

  375. 			$createBucketConfiguration->appendChild($locationConstraint);
    376. 

  376. 			$dom->appendChild($createBucketConfiguration);
    377. 

  377. 			$rest->data = $dom->saveXML();
    378. 

  378. 			$rest->size = strlen($rest->data);
    379. 

  379. 			$rest->setHeader('Content-Type', 'application/xml');
    380. 

  380. 		}
    381. 

  381. 		$rest = $rest->getResponse();
    382. 

  382. 

  383. 		if ($rest->error === false && $rest->code !== 200)
    384. 

  384. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    385. 

  385. 		if ($rest->error !== false)
    386. 

  386. 		{
    387. 

  387. 			self::__triggerError(sprintf("S3::putBucket({$bucket}, {$acl}, {$location}): [%s] %s",
    388. 

  388. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    389. 

  389. 			return false;
    390. 

  390. 		}
    391. 

  391. 		return true;
    392. 

  392. 	}
    393. 

  393. 

  394. 

  395. 	/**
    396. 

  396. 	* Delete an empty bucket
    397. 

  397. 	*
    398. 

  398. 	* @param string $bucket Bucket name
    399. 

  399. 	* @return boolean
    400. 

  400. 	*/
    401. 

  401. 	public static function deleteBucket($bucket)
    402. 

  402. 	{
    403. 

  403. 		$rest = new S3Request('DELETE', $bucket, '', self::$endpoint);
    404. 

  404. 		$rest = $rest->getResponse();
    405. 

  405. 		if ($rest->error === false && $rest->code !== 204)
    406. 

  406. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    407. 

  407. 		if ($rest->error !== false)
    408. 

  408. 		{
    409. 

  409. 			self::__triggerError(sprintf("S3::deleteBucket({$bucket}): [%s] %s",
    410. 

  410. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    411. 

  411. 			return false;
    412. 

  412. 		}
    413. 

  413. 		return true;
    414. 

  414. 	}
    415. 

  415. 

  416. 

  417. 	/**
    418. 

  418. 	* Create input info array for putObject()
    419. 

  419. 	*
    420. 

  420. 	* @param string $file Input file
    421. 

  421. 	* @param mixed $md5sum Use MD5 hash (supply a string if you want to use your own)
    422. 

  422. 	* @return array | false
    423. 

  423. 	*/
    424. 

  424. 	public static function inputFile($file, $md5sum = true)
    425. 

  425. 	{
    426. 

  426. 		if (!file_exists($file) || !is_file($file) || !is_readable($file))
    427. 

  427. 		{
    428. 

  428. 			self::__triggerError('S3::inputFile(): Unable to open input file: '.$file, __FILE__, __LINE__);
    429. 

  429. 			return false;
    430. 

  430. 		}
    431. 

  431. 		return array('file' => $file, 'size' => filesize($file), 'md5sum' => $md5sum !== false ?
    432. 

  432. 		(is_string($md5sum) ? $md5sum : base64_encode(md5_file($file, true))) : '');
    433. 

  433. 	}
    434. 

  434. 

  435. 

  436. 	/**
    437. 

  437. 	* Create input array info for putObject() with a resource
    438. 

  438. 	*
    439. 

  439. 	* @param string $resource Input resource to read from
    440. 

  440. 	* @param integer $bufferSize Input byte size
    441. 

  441. 	* @param string $md5sum MD5 hash to send (optional)
    442. 

  442. 	* @return array | false
    443. 

  443. 	*/
    444. 

  444. 	public static function inputResource(&$resource, $bufferSize, $md5sum = '')
    445. 

  445. 	{
    446. 

  446. 		if (!is_resource($resource) || $bufferSize < 0)
    447. 

  447. 		{
    448. 

  448. 			self::__triggerError('S3::inputResource(): Invalid resource or buffer size', __FILE__, __LINE__);
    449. 

  449. 			return false;
    450. 

  450. 		}
    451. 

  451. 		$input = array('size' => $bufferSize, 'md5sum' => $md5sum);
    452. 

  452. 		$input['fp'] =& $resource;
    453. 

  453. 		return $input;
    454. 

  454. 	}
    455. 

  455. 

  456. 

  457. 	/**
    458. 

  458. 	* Put an object
    459. 

  459. 	*
    460. 

  460. 	* @param mixed $input Input data
    461. 

  461. 	* @param string $bucket Bucket name
    462. 

  462. 	* @param string $uri Object URI
    463. 

  463. 	* @param constant $acl ACL constant
    464. 

  464. 	* @param array $metaHeaders Array of x-amz-meta-* headers
    465. 

  465. 	* @param array $requestHeaders Array of request headers or content type as a string
    466. 

  466. 	* @param constant $storageClass Storage class constant
    467. 

  467. 	* @return boolean
    468. 

  468. 	*/
    469. 

  469. 	public static function putObject($input, $bucket, $uri, $acl = self::ACL_PRIVATE, $metaHeaders = array(), $requestHeaders = array(), $storageClass = self::STORAGE_CLASS_STANDARD)
    470. 

  470. 	{
    471. 

  471. 		if ($input === false) return false;
    472. 

  472. 		$rest = new S3Request('PUT', $bucket, $uri, self::$endpoint);
    473. 

  473. 

  474. 		if (is_string($input)) $input = array(
    475. 

  475. 			'data' => $input, 'size' => strlen($input),
    476. 

  476. 			'md5sum' => base64_encode(md5($input, true))
    477. 

  477. 		);
    478. 

  478. 

  479. 		// Data
    480. 

  480. 		if (isset($input['fp']))
    481. 

  481. 			$rest->fp =& $input['fp'];
    482. 

  482. 		elseif (isset($input['file']))
    483. 

  483. 			$rest->fp = @fopen($input['file'], 'rb');
    484. 

  484. 		elseif (isset($input['data']))
    485. 

  485. 			$rest->data = $input['data'];
    486. 

  486. 

  487. 		// Content-Length (required)
    488. 

  488. 		if (isset($input['size']) && $input['size'] >= 0)
    489. 

  489. 			$rest->size = $input['size'];
    490. 

  490. 		else {
    491. 

  491. 			if (isset($input['file']))
    492. 

  492. 				$rest->size = filesize($input['file']);
    493. 

  493. 			elseif (isset($input['data']))
    494. 

  494. 				$rest->size = strlen($input['data']);
    495. 

  495. 		}
    496. 

  496. 

  497. 		// Custom request headers (Content-Type, Content-Disposition, Content-Encoding)
    498. 

  498. 		if (is_array($requestHeaders))
    499. 

  499. 			foreach ($requestHeaders as $h => $v) $rest->setHeader($h, $v);
    500. 

  500. 		elseif (is_string($requestHeaders)) // Support for legacy contentType parameter
    501. 

  501. 			$input['type'] = $requestHeaders;
    502. 

  502. 

  503. 		// Content-Type
    504. 

  504. 		if (!isset($input['type']))
    505. 

  505. 		{
    506. 

  506. 			if (isset($requestHeaders['Content-Type']))
    507. 

  507. 				$input['type'] =& $requestHeaders['Content-Type'];
    508. 

  508. 			elseif (isset($input['file']))
    509. 

  509. 				$input['type'] = self::__getMimeType($input['file']);
    510. 

  510. 			else
    511. 

  511. 				$input['type'] = 'application/octet-stream';
    512. 

  512. 		}
    513. 

  513. 

  514. 		if ($storageClass !== self::STORAGE_CLASS_STANDARD) // Storage class
    515. 

  515. 			$rest->setAmzHeader('x-amz-storage-class', $storageClass);
    516. 

  516. 

  517. 		// We need to post with Content-Length and Content-Type, MD5 is optional
    518. 

  518. 		if ($rest->size >= 0 && ($rest->fp !== false || $rest->data !== false))
    519. 

  519. 		{
    520. 

  520. 			$rest->setHeader('Content-Type', $input['type']);
    521. 

  521. 			if (isset($input['md5sum'])) $rest->setHeader('Content-MD5', $input['md5sum']);
    522. 

  522. 

  523. 			$rest->setAmzHeader('x-amz-acl', $acl);
    524. 

  524. 			foreach ($metaHeaders as $h => $v) $rest->setAmzHeader('x-amz-meta-'.$h, $v);
    525. 

  525. 			$rest->getResponse();
    526. 

  526. 		} else
    527. 

  527. 			$rest->response->error = array('code' => 0, 'message' => 'Missing input parameters');
    528. 

  528. 

  529. 		if ($rest->response->error === false && $rest->response->code !== 200)
    530. 

  530. 			$rest->response->error = array('code' => $rest->response->code, 'message' => 'Unexpected HTTP status');
    531. 

  531. 		if ($rest->response->error !== false)
    532. 

  532. 		{
    533. 

  533. 			self::__triggerError(sprintf("S3::putObject(): [%s] %s",
    534. 

  534. 			$rest->response->error['code'], $rest->response->error['message']), __FILE__, __LINE__);
    535. 

  535. 			return false;
    536. 

  536. 		}
    537. 

  537. 		return true;
    538. 

  538. 	}
    539. 

  539. 

  540. 

  541. 	/**
    542. 

  542. 	* Put an object from a file (legacy function)
    543. 

  543. 	*
    544. 

  544. 	* @param string $file Input file path
    545. 

  545. 	* @param string $bucket Bucket name
    546. 

  546. 	* @param string $uri Object URI
    547. 

  547. 	* @param constant $acl ACL constant
    548. 

  548. 	* @param array $metaHeaders Array of x-amz-meta-* headers
    549. 

  549. 	* @param string $contentType Content type
    550. 

  550. 	* @return boolean
    551. 

  551. 	*/
    552. 

  552. 	public static function putObjectFile($file, $bucket, $uri, $acl = self::ACL_PRIVATE, $metaHeaders = array(), $contentType = null)
    553. 

  553. 	{
    554. 

  554. 		return self::putObject(self::inputFile($file), $bucket, $uri, $acl, $metaHeaders, $contentType);
    555. 

  555. 	}
    556. 

  556. 

  557. 

  558. 	/**
    559. 

  559. 	* Put an object from a string (legacy function)
    560. 

  560. 	*
    561. 

  561. 	* @param string $string Input data
    562. 

  562. 	* @param string $bucket Bucket name
    563. 

  563. 	* @param string $uri Object URI
    564. 

  564. 	* @param constant $acl ACL constant
    565. 

  565. 	* @param array $metaHeaders Array of x-amz-meta-* headers
    566. 

  566. 	* @param string $contentType Content type
    567. 

  567. 	* @return boolean
    568. 

  568. 	*/
    569. 

  569. 	public static function putObjectString($string, $bucket, $uri, $acl = self::ACL_PRIVATE, $metaHeaders = array(), $contentType = 'text/plain')
    570. 

  570. 	{
    571. 

  571. 		return self::putObject($string, $bucket, $uri, $acl, $metaHeaders, $contentType);
    572. 

  572. 	}
    573. 

  573. 

  574. 

  575. 	/**
    576. 

  576. 	* Get an object
    577. 

  577. 	*
    578. 

  578. 	* @param string $bucket Bucket name
    579. 

  579. 	* @param string $uri Object URI
    580. 

  580. 	* @param mixed $saveTo Filename or resource to write to
    581. 

  581. 	* @return mixed
    582. 

  582. 	*/
    583. 

  583. 	public static function getObject($bucket, $uri, $saveTo = false)
    584. 

  584. 	{
    585. 

  585. 		$rest = new S3Request('GET', $bucket, $uri, self::$endpoint);
    586. 

  586. 		if ($saveTo !== false)
    587. 

  587. 		{
    588. 

  588. 			if (is_resource($saveTo))
    589. 

  589. 				$rest->fp =& $saveTo;
    590. 

  590. 			else
    591. 

  591. 				if (($rest->fp = @fopen($saveTo, 'wb')) !== false)
    592. 

  592. 					$rest->file = realpath($saveTo);
    593. 

  593. 				else
    594. 

  594. 					$rest->response->error = array('code' => 0, 'message' => 'Unable to open save file for writing: '.$saveTo);
    595. 

  595. 		}
    596. 

  596. 		if ($rest->response->error === false) $rest->getResponse();
    597. 

  597. 

  598. 		if ($rest->response->error === false && $rest->response->code !== 200)
    599. 

  599. 			$rest->response->error = array('code' => $rest->response->code, 'message' => 'Unexpected HTTP status');
    600. 

  600. 		if ($rest->response->error !== false)
    601. 

  601. 		{
    602. 

  602. 			self::__triggerError(sprintf("S3::getObject({$bucket}, {$uri}): [%s] %s",
    603. 

  603. 			$rest->response->error['code'], $rest->response->error['message']), __FILE__, __LINE__);
    604. 

  604. 			return false;
    605. 

  605. 		}
    606. 

  606. 		return $rest->response;
    607. 

  607. 	}
    608. 

  608. 

  609. 

  610. 	/**
    611. 

  611. 	* Get object information
    612. 

  612. 	*
    613. 

  613. 	* @param string $bucket Bucket name
    614. 

  614. 	* @param string $uri Object URI
    615. 

  615. 	* @param boolean $returnInfo Return response information
    616. 

  616. 	* @return mixed | false
    617. 

  617. 	*/
    618. 

  618. 	public static function getObjectInfo($bucket, $uri, $returnInfo = true)
    619. 

  619. 	{
    620. 

  620. 		$rest = new S3Request('HEAD', $bucket, $uri, self::$endpoint);
    621. 

  621. 		$rest = $rest->getResponse();
    622. 

  622. 		if ($rest->error === false && ($rest->code !== 200 && $rest->code !== 404))
    623. 

  623. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    624. 

  624. 		if ($rest->error !== false)
    625. 

  625. 		{
    626. 

  626. 			self::__triggerError(sprintf("S3::getObjectInfo({$bucket}, {$uri}): [%s] %s",
    627. 

  627. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    628. 

  628. 			return false;
    629. 

  629. 		}
    630. 

  630. 		return $rest->code == 200 ? $returnInfo ? $rest->headers : true : false;
    631. 

  631. 	}
    632. 

  632. 

  633. 

  634. 	/**
    635. 

  635. 	* Copy an object
    636. 

  636. 	*
    637. 

  637. 	* @param string $bucket Source bucket name
    638. 

  638. 	* @param string $uri Source object URI
    639. 

  639. 	* @param string $bucket Destination bucket name
    640. 

  640. 	* @param string $uri Destination object URI
    641. 

  641. 	* @param constant $acl ACL constant
    642. 

  642. 	* @param array $metaHeaders Optional array of x-amz-meta-* headers
    643. 

  643. 	* @param array $requestHeaders Optional array of request headers (content type, disposition, etc.)
    644. 

  644. 	* @param constant $storageClass Storage class constant
    645. 

  645. 	* @return mixed | false
    646. 

  646. 	*/
    647. 

  647. 	public static function copyObject($srcBucket, $srcUri, $bucket, $uri, $acl = self::ACL_PRIVATE, $metaHeaders = array(), $requestHeaders = array(), $storageClass = self::STORAGE_CLASS_STANDARD)
    648. 

  648. 	{
    649. 

  649. 		$rest = new S3Request('PUT', $bucket, $uri, self::$endpoint);
    650. 

  650. 		$rest->setHeader('Content-Length', 0);
    651. 

  651. 		foreach ($requestHeaders as $h => $v) $rest->setHeader($h, $v);
    652. 

  652. 		foreach ($metaHeaders as $h => $v) $rest->setAmzHeader('x-amz-meta-'.$h, $v);
    653. 

  653. 		if ($storageClass !== self::STORAGE_CLASS_STANDARD) // Storage class
    654. 

  654. 			$rest->setAmzHeader('x-amz-storage-class', $storageClass);
    655. 

  655. 		$rest->setAmzHeader('x-amz-acl', $acl); // Added rawurlencode() for $srcUri (thanks a.yamanoi)
    656. 

  656. 		$rest->setAmzHeader('x-amz-copy-source', sprintf('/%s/%s', $srcBucket, rawurlencode($srcUri)));
    657. 

  657. 		if (sizeof($requestHeaders) > 0 || sizeof($metaHeaders) > 0)
    658. 

  658. 			$rest->setAmzHeader('x-amz-metadata-directive', 'REPLACE');
    659. 

  659. 

  660. 		$rest = $rest->getResponse();
    661. 

  661. 		if ($rest->error === false && $rest->code !== 200)
    662. 

  662. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    663. 

  663. 		if ($rest->error !== false)
    664. 

  664. 		{
    665. 

  665. 			self::__triggerError(sprintf("S3::copyObject({$srcBucket}, {$srcUri}, {$bucket}, {$uri}): [%s] %s",
    666. 

  666. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    667. 

  667. 			return false;
    668. 

  668. 		}
    669. 

  669. 		return isset($rest->body->LastModified, $rest->body->ETag) ? array(
    670. 

  670. 			'time' => strtotime((string)$rest->body->LastModified),
    671. 

  671. 			'hash' => substr((string)$rest->body->ETag, 1, -1)
    672. 

  672. 		) : false;
    673. 

  673. 	}
    674. 

  674. 

  675. 

  676. 	/**
    677. 

  677. 	* Set logging for a bucket
    678. 

  678. 	*
    679. 

  679. 	* @param string $bucket Bucket name
    680. 

  680. 	* @param string $targetBucket Target bucket (where logs are stored)
    681. 

  681. 	* @param string $targetPrefix Log prefix (e,g; domain.com-)
    682. 

  682. 	* @return boolean
    683. 

  683. 	*/
    684. 

  684. 	public static function setBucketLogging($bucket, $targetBucket, $targetPrefix = null)
    685. 

  685. 	{
    686. 

  686. 		// The S3 log delivery group has to be added to the target bucket's ACP
    687. 

  687. 		if ($targetBucket !== null && ($acp = self::getAccessControlPolicy($targetBucket, '')) !== false)
    688. 

  688. 		{
    689. 

  689. 			// Only add permissions to the target bucket when they do not exist
    690. 

  690. 			$aclWriteSet = false;
    691. 

  691. 			$aclReadSet = false;
    692. 

  692. 			foreach ($acp['acl'] as $acl)
    693. 

  693. 			if ($acl['type'] == 'Group' && $acl['uri'] == 'http://acs.amazonaws.com/groups/s3/LogDelivery')
    694. 

  694. 			{
    695. 

  695. 				if ($acl['permission'] == 'WRITE') $aclWriteSet = true;
    696. 

  696. 				elseif ($acl['permission'] == 'READ_ACP') $aclReadSet = true;
    697. 

  697. 			}
    698. 

  698. 			if (!$aclWriteSet) $acp['acl'][] = array(
    699. 

  699. 				'type' => 'Group', 'uri' => 'http://acs.amazonaws.com/groups/s3/LogDelivery', 'permission' => 'WRITE'
    700. 

  700. 			);
    701. 

  701. 			if (!$aclReadSet) $acp['acl'][] = array(
    702. 

  702. 				'type' => 'Group', 'uri' => 'http://acs.amazonaws.com/groups/s3/LogDelivery', 'permission' => 'READ_ACP'
    703. 

  703. 			);
    704. 

  704. 			if (!$aclReadSet || !$aclWriteSet) self::setAccessControlPolicy($targetBucket, '', $acp);
    705. 

  705. 		}
    706. 

  706. 

  707. 		$dom = new DOMDocument;
    708. 

  708. 		$bucketLoggingStatus = $dom->createElement('BucketLoggingStatus');
    709. 

  709. 		$bucketLoggingStatus->setAttribute('xmlns', 'http://s3.amazonaws.com/doc/2006-03-01/');
    710. 

  710. 		if ($targetBucket !== null)
    711. 

  711. 		{
    712. 

  712. 			if ($targetPrefix == null) $targetPrefix = $bucket . '-';
    713. 

  713. 			$loggingEnabled = $dom->createElement('LoggingEnabled');
    714. 

  714. 			$loggingEnabled->appendChild($dom->createElement('TargetBucket', $targetBucket));
    715. 

  715. 			$loggingEnabled->appendChild($dom->createElement('TargetPrefix', $targetPrefix));
    716. 

  716. 			// TODO: Add TargetGrants?
    717. 

  717. 			$bucketLoggingStatus->appendChild($loggingEnabled);
    718. 

  718. 		}
    719. 

  719. 		$dom->appendChild($bucketLoggingStatus);
    720. 

  720. 

  721. 		$rest = new S3Request('PUT', $bucket, '', self::$endpoint);
    722. 

  722. 		$rest->setParameter('logging', null);
    723. 

  723. 		$rest->data = $dom->saveXML();
    724. 

  724. 		$rest->size = strlen($rest->data);
    725. 

  725. 		$rest->setHeader('Content-Type', 'application/xml');
    726. 

  726. 		$rest = $rest->getResponse();
    727. 

  727. 		if ($rest->error === false && $rest->code !== 200)
    728. 

  728. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    729. 

  729. 		if ($rest->error !== false)
    730. 

  730. 		{
    731. 

  731. 			self::__triggerError(sprintf("S3::setBucketLogging({$bucket}, ''): [%s] %s",
    732. 

  732. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    733. 

  733. 			return false;
    734. 

  734. 		}
    735. 

  735. 		return true;
    736. 

  736. 	}
    737. 

  737. 

  738. 

  739. 	/**
    740. 

  740. 	* Get logging status for a bucket
    741. 

  741. 	*
    742. 

  742. 	* This will return false if logging is not enabled.
    743. 

  743. 	* Note: To enable logging, you also need to grant write access to the log group
    744. 

  744. 	*
    745. 

  745. 	* @param string $bucket Bucket name
    746. 

  746. 	* @return array | false
    747. 

  747. 	*/
    748. 

  748. 	public static function getBucketLogging($bucket)
    749. 

  749. 	{
    750. 

  750. 		$rest = new S3Request('GET', $bucket, '', self::$endpoint);
    751. 

  751. 		$rest->setParameter('logging', null);
    752. 

  752. 		$rest = $rest->getResponse();
    753. 

  753. 		if ($rest->error === false && $rest->code !== 200)
    754. 

  754. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    755. 

  755. 		if ($rest->error !== false)
    756. 

  756. 		{
    757. 

  757. 			self::__triggerError(sprintf("S3::getBucketLogging({$bucket}): [%s] %s",
    758. 

  758. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    759. 

  759. 			return false;
    760. 

  760. 		}
    761. 

  761. 		if (!isset($rest->body->LoggingEnabled)) return false; // No logging
    762. 

  762. 		return array(
    763. 

  763. 			'targetBucket' => (string)$rest->body->LoggingEnabled->TargetBucket,
    764. 

  764. 			'targetPrefix' => (string)$rest->body->LoggingEnabled->TargetPrefix,
    765. 

  765. 		);
    766. 

  766. 	}
    767. 

  767. 

  768. 

  769. 	/**
    770. 

  770. 	* Disable bucket logging
    771. 

  771. 	*
    772. 

  772. 	* @param string $bucket Bucket name
    773. 

  773. 	* @return boolean
    774. 

  774. 	*/
    775. 

  775. 	public static function disableBucketLogging($bucket)
    776. 

  776. 	{
    777. 

  777. 		return self::setBucketLogging($bucket, null);
    778. 

  778. 	}
    779. 

  779. 

  780. 

  781. 	/**
    782. 

  782. 	* Get a bucket's location
    783. 

  783. 	*
    784. 

  784. 	* @param string $bucket Bucket name
    785. 

  785. 	* @return string | false
    786. 

  786. 	*/
    787. 

  787. 	public static function getBucketLocation($bucket)
    788. 

  788. 	{
    789. 

  789. 		$rest = new S3Request('GET', $bucket, '', self::$endpoint);
    790. 

  790. 		$rest->setParameter('location', null);
    791. 

  791. 		$rest = $rest->getResponse();
    792. 

  792. 		if ($rest->error === false && $rest->code !== 200)
    793. 

  793. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    794. 

  794. 		if ($rest->error !== false)
    795. 

  795. 		{
    796. 

  796. 			self::__triggerError(sprintf("S3::getBucketLocation({$bucket}): [%s] %s",
    797. 

  797. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    798. 

  798. 			return false;
    799. 

  799. 		}
    800. 

  800. 		return (isset($rest->body[0]) && (string)$rest->body[0] !== '') ? (string)$rest->body[0] : 'US';
    801. 

  801. 	}
    802. 

  802. 

  803. 

  804. 	/**
    805. 

  805. 	* Set object or bucket Access Control Policy
    806. 

  806. 	*
    807. 

  807. 	* @param string $bucket Bucket name
    808. 

  808. 	* @param string $uri Object URI
    809. 

  809. 	* @param array $acp Access Control Policy Data (same as the data returned from getAccessControlPolicy)
    810. 

  810. 	* @return boolean
    811. 

  811. 	*/
    812. 

  812. 	public static function setAccessControlPolicy($bucket, $uri = '', $acp = array())
    813. 

  813. 	{
    814. 

  814. 		$dom = new DOMDocument;
    815. 

  815. 		$dom->formatOutput = true;
    816. 

  816. 		$accessControlPolicy = $dom->createElement('AccessControlPolicy');
    817. 

  817. 		$accessControlList = $dom->createElement('AccessControlList');
    818. 

  818. 

  819. 		// It seems the owner has to be passed along too
    820. 

  820. 		$owner = $dom->createElement('Owner');
    821. 

  821. 		$owner->appendChild($dom->createElement('ID', $acp['owner']['id']));
    822. 

  822. 		$owner->appendChild($dom->createElement('DisplayName', $acp['owner']['name']));
    823. 

  823. 		$accessControlPolicy->appendChild($owner);
    824. 

  824. 

  825. 		foreach ($acp['acl'] as $g)
    826. 

  826. 		{
    827. 

  827. 			$grant = $dom->createElement('Grant');
    828. 

  828. 			$grantee = $dom->createElement('Grantee');
    829. 

  829. 			$grantee->setAttribute('xmlns:xsi', 'http://www.w3.org/2001/XMLSchema-instance');
    830. 

  830. 			if (isset($g['id']))
    831. 

  831. 			{ // CanonicalUser (DisplayName is omitted)
    832. 

  832. 				$grantee->setAttribute('xsi:type', 'CanonicalUser');
    833. 

  833. 				$grantee->appendChild($dom->createElement('ID', $g['id']));
    834. 

  834. 			}
    835. 

  835. 			elseif (isset($g['email']))
    836. 

  836. 			{ // AmazonCustomerByEmail
    837. 

  837. 				$grantee->setAttribute('xsi:type', 'AmazonCustomerByEmail');
    838. 

  838. 				$grantee->appendChild($dom->createElement('EmailAddress', $g['email']));
    839. 

  839. 			}
    840. 

  840. 			elseif ($g['type'] == 'Group')
    841. 

  841. 			{ // Group
    842. 

  842. 				$grantee->setAttribute('xsi:type', 'Group');
    843. 

  843. 				$grantee->appendChild($dom->createElement('URI', $g['uri']));
    844. 

  844. 			}
    845. 

  845. 			$grant->appendChild($grantee);
    846. 

  846. 			$grant->appendChild($dom->createElement('Permission', $g['permission']));
    847. 

  847. 			$accessControlList->appendChild($grant);
    848. 

  848. 		}
    849. 

  849. 

  850. 		$accessControlPolicy->appendChild($accessControlList);
    851. 

  851. 		$dom->appendChild($accessControlPolicy);
    852. 

  852. 

  853. 		$rest = new S3Request('PUT', $bucket, $uri, self::$endpoint);
    854. 

  854. 		$rest->setParameter('acl', null);
    855. 

  855. 		$rest->data = $dom->saveXML();
    856. 

  856. 		$rest->size = strlen($rest->data);
    857. 

  857. 		$rest->setHeader('Content-Type', 'application/xml');
    858. 

  858. 		$rest = $rest->getResponse();
    859. 

  859. 		if ($rest->error === false && $rest->code !== 200)
    860. 

  860. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    861. 

  861. 		if ($rest->error !== false)
    862. 

  862. 		{
    863. 

  863. 			self::__triggerError(sprintf("S3::setAccessControlPolicy({$bucket}, {$uri}): [%s] %s",
    864. 

  864. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    865. 

  865. 			return false;
    866. 

  866. 		}
    867. 

  867. 		return true;
    868. 

  868. 	}
    869. 

  869. 

  870. 

  871. 	/**
    872. 

  872. 	* Get object or bucket Access Control Policy
    873. 

  873. 	*
    874. 

  874. 	* @param string $bucket Bucket name
    875. 

  875. 	* @param string $uri Object URI
    876. 

  876. 	* @return mixed | false
    877. 

  877. 	*/
    878. 

  878. 	public static function getAccessControlPolicy($bucket, $uri = '')
    879. 

  879. 	{
    880. 

  880. 		$rest = new S3Request('GET', $bucket, $uri, self::$endpoint);
    881. 

  881. 		$rest->setParameter('acl', null);
    882. 

  882. 		$rest = $rest->getResponse();
    883. 

  883. 		if ($rest->error === false && $rest->code !== 200)
    884. 

  884. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    885. 

  885. 		if ($rest->error !== false)
    886. 

  886. 		{
    887. 

  887. 			self::__triggerError(sprintf("S3::getAccessControlPolicy({$bucket}, {$uri}): [%s] %s",
    888. 

  888. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    889. 

  889. 			return false;
    890. 

  890. 		}
    891. 

  891. 

  892. 		$acp = array();
    893. 

  893. 		if (isset($rest->body->Owner, $rest->body->Owner->ID, $rest->body->Owner->DisplayName))
    894. 

  894. 			$acp['owner'] = array(
    895. 

  895. 				'id' => (string)$rest->body->Owner->ID, 'name' => (string)$rest->body->Owner->DisplayName
    896. 

  896. 			);
    897. 

  897. 

  898. 		if (isset($rest->body->AccessControlList))
    899. 

  899. 		{
    900. 

  900. 			$acp['acl'] = array();
    901. 

  901. 			foreach ($rest->body->AccessControlList->Grant as $grant)
    902. 

  902. 			{
    903. 

  903. 				foreach ($grant->Grantee as $grantee)
    904. 

  904. 				{
    905. 

  905. 					if (isset($grantee->ID, $grantee->DisplayName)) // CanonicalUser
    906. 

  906. 						$acp['acl'][] = array(
    907. 

  907. 							'type' => 'CanonicalUser',
    908. 

  908. 							'id' => (string)$grantee->ID,
    909. 

  909. 							'name' => (string)$grantee->DisplayName,
    910. 

  910. 							'permission' => (string)$grant->Permission
    911. 

  911. 						);
    912. 

  912. 					elseif (isset($grantee->EmailAddress)) // AmazonCustomerByEmail
    913. 

  913. 						$acp['acl'][] = array(
    914. 

  914. 							'type' => 'AmazonCustomerByEmail',
    915. 

  915. 							'email' => (string)$grantee->EmailAddress,
    916. 

  916. 							'permission' => (string)$grant->Permission
    917. 

  917. 						);
    918. 

  918. 					elseif (isset($grantee->URI)) // Group
    919. 

  919. 						$acp['acl'][] = array(
    920. 

  920. 							'type' => 'Group',
    921. 

  921. 							'uri' => (string)$grantee->URI,
    922. 

  922. 							'permission' => (string)$grant->Permission
    923. 

  923. 						);
    924. 

  924. 					else continue;
    925. 

  925. 				}
    926. 

  926. 			}
    927. 

  927. 		}
    928. 

  928. 		return $acp;
    929. 

  929. 	}
    930. 

  930. 

  931. 

  932. 	/**
    933. 

  933. 	* Delete an object
    934. 

  934. 	*
    935. 

  935. 	* @param string $bucket Bucket name
    936. 

  936. 	* @param string $uri Object URI
    937. 

  937. 	* @return boolean
    938. 

  938. 	*/
    939. 

  939. 	public static function deleteObject($bucket, $uri)
    940. 

  940. 	{
    941. 

  941. 		$rest = new S3Request('DELETE', $bucket, $uri, self::$endpoint);
    942. 

  942. 		$rest = $rest->getResponse();
    943. 

  943. 		if ($rest->error === false && $rest->code !== 204)
    944. 

  944. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    945. 

  945. 		if ($rest->error !== false)
    946. 

  946. 		{
    947. 

  947. 			self::__triggerError(sprintf("S3::deleteObject(): [%s] %s",
    948. 

  948. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    949. 

  949. 			return false;
    950. 

  950. 		}
    951. 

  951. 		return true;
    952. 

  952. 	}
    953. 

  953. 

  954. 

  955. 	/**
    956. 

  956. 	* Get the current system time on AWS servers, needed to check for sync issues
    957. 

  957. 	* between local clock and AWS system clock.
    958. 

  958. 	*
    959. 

  959. 	* @return int
    960. 

  960. 	*/
    961. 

  961. 	public static function getAWSSystemTime()
    962. 

  962. 	{
    963. 

  963. 		$rest = new S3Request('HEAD');
    964. 

  964. 		$rest = $rest->getResponse();
    965. 

  965. 		return $rest->headers['server-time'];
    966. 

  966. 	}
    967. 

  967. 

  968. 

  969. 	/**
    970. 

  970. 	* Get a query string authenticated URL
    971. 

  971. 	*
    972. 

  972. 	* @param string $bucket Bucket name
    973. 

  973. 	* @param string $uri Object URI
    974. 

  974. 	* @param integer $lifetime Lifetime in seconds
    975. 

  975. 	* @param boolean $hostBucket Use the bucket name as the hostname
    976. 

  976. 	* @param boolean $https Use HTTPS ($hostBucket should be false for SSL verification)
    977. 

  977. 	* @param array $headers An associative array of headers/values to override in the response see: 
    978. 

  978. 	*                       http://docs.amazonwebservices.com/AmazonS3/latest/API/RESTObjectGET.html
    979. 

  979. 	* @return string
    980. 

  980. 	*/
    981. 

  981. 	public static function getAuthenticatedURL($bucket, $uri, $lifetime, $hostBucket = false, $https = false, $headers = false)
    982. 

  982. 	{
    983. 

  983. 		if ($lifetime < 180) {
    984. 

  984. 			/**
    985. 

  985. 			* Many shared servers are still running cron+rdate for clock sync, and drift can add up to
    986. 

  986. 			* a significant difference between system clock and AWS time. So for requests under 3 minutes
    987. 

  987. 			* total we get the clock time from AWS to prepare an expiration time, rather than system time.
    988. 

  988. 			*/
    989. 

  989. 			$expires = self::getAWSSystemTime() + $lifetime;
    990. 

  990. 		} else {
    991. 

  991. 			$expires = time() + $lifetime;
    992. 

  992. 		}
    993. 

  993. 		$uri = str_replace(array('%2F', '%2B'), array('/', '+'), rawurlencode($uri)); // URI should be encoded (thanks Sean O'Dea)
    994. 

  994. 				
    995. 

  995. 		$finalUrl = sprintf(($https ? 'https' : 'http').'://%s/%s?',
    996. 

  996. 		$hostBucket ? $bucket : $bucket.'.s3.amazonaws.com', $uri);
    997. 

  997. 		$requestToSign = "GET\n\n\n{$expires}\n/{$bucket}/{$uri}";
    998. 

  998. 		if (is_array($headers)) {
    999. 

  999. 			ksort($headers); // AMZ servers reject signatures if headers are not in alphabetical order
    1000. 

  1000. 			$appendString = '?';
    1001. 

  1001. 			foreach ($headers as $header => $value) {
    1002. 

  1002. 				$finalUrl .= $header . '=' . urlencode($value) . '&';
    1003. 

  1003. 				$requestToSign .= $appendString . $header . '=' . $value;
    1004. 

  1004. 				$appendString = '&';
    1005. 

  1005. 			}
    1006. 

  1006. 		}
    1007. 

  1007. 		$finalUrl .= 'AWSAccessKeyId=' . self::$__accessKey . '&Expires=' . $expires . '&Signature=' . urlencode(self::__getHash($requestToSign));
    1008. 

  1008. 		return $finalUrl;
    1009. 

  1009. 	}
    1010. 

  1010. 

  1011. 

  1012. 	/**
    1013. 

  1013. 	* Get a CloudFront signed policy URL
    1014. 

  1014. 	*
    1015. 

  1015. 	* @param array $policy Policy
    1016. 

  1016. 	* @return string
    1017. 

  1017. 	*/
    1018. 

  1018. 	public static function getSignedPolicyURL($policy)
    1019. 

  1019. 	{
    1020. 

  1020. 		$data = json_encode($policy);
    1021. 

  1021. 		$signature = '';
    1022. 

  1022. 		if (!openssl_sign($data, $signature, self::$__signingKeyResource)) return false;
    1023. 

  1023. 

  1024. 		$encoded = str_replace(array('+', '='), array('-', '_', '~'), base64_encode($data));
    1025. 

  1025. 		$signature = str_replace(array('+', '='), array('-', '_', '~'), base64_encode($signature));
    1026. 

  1026. 

  1027. 		$url = $policy['Statement'][0]['Resource'] . '?';
    1028. 

  1028. 		foreach (array('Policy' => $encoded, 'Signature' => $signature, 'Key-Pair-Id' => self::$__signingKeyPairId) as $k => $v)
    1029. 

  1029. 			$url .= $k.'='.str_replace('%2F', '/', rawurlencode($v)).'&';
    1030. 

  1030. 		return substr($url, 0, -1);
    1031. 

  1031. 	}
    1032. 

  1032. 

  1033. 

  1034. 	/**
    1035. 

  1035. 	* Get a CloudFront canned policy URL
    1036. 

  1036. 	*
    1037. 

  1037. 	* @param string $string URL to sign
    1038. 

  1038. 	* @param integer $lifetime URL lifetime
    1039. 

  1039. 	* @return string
    1040. 

  1040. 	*/
    1041. 

  1041. 	public static function getSignedCannedURL($url, $lifetime)
    1042. 

  1042. 	{
    1043. 

  1043. 		return self::getSignedPolicyURL(array(
    1044. 

  1044. 			'Statement' => array(
    1045. 

  1045. 				array('Resource' => $url, 'Condition' => array(
    1046. 

  1046. 					'DateLessThan' => array('AWS:EpochTime' => time() + $lifetime)
    1047. 

  1047. 				))
    1048. 

  1048. 			)
    1049. 

  1049. 		));
    1050. 

  1050. 	}
    1051. 

  1051. 

  1052. 

  1053. 	/**
    1054. 

  1054. 	* Get upload POST parameters for form uploads
    1055. 

  1055. 	*
    1056. 

  1056. 	* @param string $bucket Bucket name
    1057. 

  1057. 	* @param string $uriPrefix Object URI prefix
    1058. 

  1058. 	* @param constant $acl ACL constant
    1059. 

  1059. 	* @param integer $lifetime Lifetime in seconds
    1060. 

  1060. 	* @param integer $maxFileSize Maximum filesize in bytes (default 5MB)
    1061. 

  1061. 	* @param string $successRedirect Redirect URL or 200 / 201 status code
    1062. 

  1062. 	* @param array $amzHeaders Array of x-amz-meta-* headers
    1063. 

  1063. 	* @param array $headers Array of request headers or content type as a string
    1064. 

  1064. 	* @param boolean $flashVars Includes additional "Filename" variable posted by Flash
    1065. 

  1065. 	* @return object
    1066. 

  1066. 	*/
    1067. 

  1067. 	public static function getHttpUploadPostParams($bucket, $uriPrefix = '', $acl = self::ACL_PRIVATE, $lifetime = 3600,
    1068. 

  1068. 	$maxFileSize = 5242880, $successRedirect = "201", $amzHeaders = array(), $headers = array(), $flashVars = false)
    1069. 

  1069. 	{
    1070. 

  1070. 		// Create policy object
    1071. 

  1071. 		$policy = new stdClass;
    1072. 

  1072. 		$policy->expiration = gmdate('Y-m-d\TH:i:s\Z', (time() + $lifetime));
    1073. 

  1073. 		$policy->conditions = array();
    1074. 

  1074. 		$obj = new stdClass; $obj->bucket = $bucket; array_push($policy->conditions, $obj);
    1075. 

  1075. 		$obj = new stdClass; $obj->acl = $acl; array_push($policy->conditions, $obj);
    1076. 

  1076. 

  1077. 		$obj = new stdClass; // 200 for non-redirect uploads
    1078. 

  1078. 		if (is_numeric($successRedirect) && in_array((int)$successRedirect, array(200, 201)))
    1079. 

  1079. 			$obj->success_action_status = (string)$successRedirect;
    1080. 

  1080. 		else // URL
    1081. 

  1081. 			$obj->success_action_redirect = $successRedirect;
    1082. 

  1082. 		array_push($policy->conditions, $obj);
    1083. 

  1083. 

  1084. 		if ($acl !== self::ACL_PUBLIC_READ)
    1085. 

  1085. 			array_push($policy->conditions, array('eq', '$acl', $acl));
    1086. 

  1086. 

  1087. 		array_push($policy->conditions, array('starts-with', '$key', $uriPrefix));
    1088. 

  1088. 		if ($flashVars) array_push($policy->conditions, array('starts-with', '$Filename', ''));
    1089. 

  1089. 		foreach (array_keys($headers) as $headerKey)
    1090. 

  1090. 			array_push($policy->conditions, array('starts-with', '$'.$headerKey, ''));
    1091. 

  1091. 		foreach ($amzHeaders as $headerKey => $headerVal)
    1092. 

  1092. 		{
    1093. 

  1093. 			$obj = new stdClass;
    1094. 

  1094. 			$obj->{$headerKey} = (string)$headerVal;
    1095. 

  1095. 			array_push($policy->conditions, $obj);
    1096. 

  1096. 		}
    1097. 

  1097. 		array_push($policy->conditions, array('content-length-range', 0, $maxFileSize));
    1098. 

  1098. 		$policy = base64_encode(str_replace('\/', '/', json_encode($policy)));
    1099. 

  1099. 

  1100. 		// Create parameters
    1101. 

  1101. 		$params = new stdClass;
    1102. 

  1102. 		$params->AWSAccessKeyId = self::$__accessKey;
    1103. 

  1103. 		$params->key = $uriPrefix.'${filename}';
    1104. 

  1104. 		$params->acl = $acl;
    1105. 

  1105. 		$params->policy = $policy; unset($policy);
    1106. 

  1106. 		$params->signature = self::__getHash($params->policy);
    1107. 

  1107. 		if (is_numeric($successRedirect) && in_array((int)$successRedirect, array(200, 201)))
    1108. 

  1108. 			$params->success_action_status = (string)$successRedirect;
    1109. 

  1109. 		else
    1110. 

  1110. 			$params->success_action_redirect = $successRedirect;
    1111. 

  1111. 		foreach ($headers as $headerKey => $headerVal) $params->{$headerKey} = (string)$headerVal;
    1112. 

  1112. 		foreach ($amzHeaders as $headerKey => $headerVal) $params->{$headerKey} = (string)$headerVal;
    1113. 

  1113. 		return $params;
    1114. 

  1114. 	}
    1115. 

  1115. 

  1116. 

  1117. 	/**
    1118. 

  1118. 	* Create a CloudFront distribution
    1119. 

  1119. 	*
    1120. 

  1120. 	* @param string $bucket Bucket name
    1121. 

  1121. 	* @param boolean $enabled Enabled (true/false)
    1122. 

  1122. 	* @param array $cnames Array containing CNAME aliases
    1123. 

  1123. 	* @param string $comment Use the bucket name as the hostname
    1124. 

  1124. 	* @param string $defaultRootObject Default root object
    1125. 

  1125. 	* @param string $originAccessIdentity Origin access identity
    1126. 

  1126. 	* @param array $trustedSigners Array of trusted signers
    1127. 

  1127. 	* @return array | false
    1128. 

  1128. 	*/
    1129. 

  1129. 	public static function createDistribution($bucket, $enabled = true, $cnames = array(), $comment = null, $defaultRootObject = null, $originAccessIdentity = null, $trustedSigners = array())
    1130. 

  1130. 	{
    1131. 

  1131. 		if (!extension_loaded('openssl'))
    1132. 

  1132. 		{
    1133. 

  1133. 			self::__triggerError(sprintf("S3::createDistribution({$bucket}, ".(int)$enabled.", [], '$comment'): %s",
    1134. 

  1134. 			"CloudFront functionality requires SSL"), __FILE__, __LINE__);
    1135. 

  1135. 			return false;
    1136. 

  1136. 		}
    1137. 

  1137. 		$useSSL = self::$useSSL;
    1138. 

  1138. 

  1139. 		self::$useSSL = true; // CloudFront requires SSL
    1140. 

  1140. 		$rest = new S3Request('POST', '', '2010-11-01/distribution', 'cloudfront.amazonaws.com');
    1141. 

  1141. 		$rest->data = self::__getCloudFrontDistributionConfigXML(
    1142. 

  1142. 			$bucket.'.s3.amazonaws.com',
    1143. 

  1143. 			$enabled,
    1144. 

  1144. 			(string)$comment,
    1145. 

  1145. 			(string)microtime(true),
    1146. 

  1146. 			$cnames,
    1147. 

  1147. 			$defaultRootObject,
    1148. 

  1148. 			$originAccessIdentity,
    1149. 

  1149. 			$trustedSigners
    1150. 

  1150. 		);
    1151. 

  1151. 

  1152. 		$rest->size = strlen($rest->data);
    1153. 

  1153. 		$rest->setHeader('Content-Type', 'application/xml');
    1154. 

  1154. 		$rest = self::__getCloudFrontResponse($rest);
    1155. 

  1155. 

  1156. 		self::$useSSL = $useSSL;
    1157. 

  1157. 

  1158. 		if ($rest->error === false && $rest->code !== 201)
    1159. 

  1159. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    1160. 

  1160. 		if ($rest->error !== false)
    1161. 

  1161. 		{
    1162. 

  1162. 			self::__triggerError(sprintf("S3::createDistribution({$bucket}, ".(int)$enabled.", [], '$comment'): [%s] %s",
    1163. 

  1163. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    1164. 

  1164. 			return false;
    1165. 

  1165. 		} elseif ($rest->body instanceof SimpleXMLElement)
    1166. 

  1166. 			return self::__parseCloudFrontDistributionConfig($rest->body);
    1167. 

  1167. 		return false;
    1168. 

  1168. 	}
    1169. 

  1169. 

  1170. 

  1171. 	/**
    1172. 

  1172. 	* Get CloudFront distribution info
    1173. 

  1173. 	*
    1174. 

  1174. 	* @param string $distributionId Distribution ID from listDistributions()
    1175. 

  1175. 	* @return array | false
    1176. 

  1176. 	*/
    1177. 

  1177. 	public static function getDistribution($distributionId)
    1178. 

  1178. 	{
    1179. 

  1179. 		if (!extension_loaded('openssl'))
    1180. 

  1180. 		{
    1181. 

  1181. 			self::__triggerError(sprintf("S3::getDistribution($distributionId): %s",
    1182. 

  1182. 			"CloudFront functionality requires SSL"), __FILE__, __LINE__);
    1183. 

  1183. 			return false;
    1184. 

  1184. 		}
    1185. 

  1185. 		$useSSL = self::$useSSL;
    1186. 

  1186. 

  1187. 		self::$useSSL = true; // CloudFront requires SSL
    1188. 

  1188. 		$rest = new S3Request('GET', '', '2010-11-01/distribution/'.$distributionId, 'cloudfront.amazonaws.com');
    1189. 

  1189. 		$rest = self::__getCloudFrontResponse($rest);
    1190. 

  1190. 

  1191. 		self::$useSSL = $useSSL;
    1192. 

  1192. 

  1193. 		if ($rest->error === false && $rest->code !== 200)
    1194. 

  1194. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    1195. 

  1195. 		if ($rest->error !== false)
    1196. 

  1196. 		{
    1197. 

  1197. 			self::__triggerError(sprintf("S3::getDistribution($distributionId): [%s] %s",
    1198. 

  1198. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    1199. 

  1199. 			return false;
    1200. 

  1200. 		}
    1201. 

  1201. 		elseif ($rest->body instanceof SimpleXMLElement)
    1202. 

  1202. 		{
    1203. 

  1203. 			$dist = self::__parseCloudFrontDistributionConfig($rest->body);
    1204. 

  1204. 			$dist['hash'] = $rest->headers['hash'];
    1205. 

  1205. 			$dist['id'] = $distributionId;
    1206. 

  1206. 			return $dist;
    1207. 

  1207. 		}
    1208. 

  1208. 		return false;
    1209. 

  1209. 	}
    1210. 

  1210. 

  1211. 

  1212. 	/**
    1213. 

  1213. 	* Update a CloudFront distribution
    1214. 

  1214. 	*
    1215. 

  1215. 	* @param array $dist Distribution array info identical to output of getDistribution()
    1216. 

  1216. 	* @return array | false
    1217. 

  1217. 	*/
    1218. 

  1218. 	public static function updateDistribution($dist)
    1219. 

  1219. 	{
    1220. 

  1220. 		if (!extension_loaded('openssl'))
    1221. 

  1221. 		{
    1222. 

  1222. 			self::__triggerError(sprintf("S3::updateDistribution({$dist['id']}): %s",
    1223. 

  1223. 			"CloudFront functionality requires SSL"), __FILE__, __LINE__);
    1224. 

  1224. 			return false;
    1225. 

  1225. 		}
    1226. 

  1226. 

  1227. 		$useSSL = self::$useSSL;
    1228. 

  1228. 

  1229. 		self::$useSSL = true; // CloudFront requires SSL
    1230. 

  1230. 		$rest = new S3Request('PUT', '', '2010-11-01/distribution/'.$dist['id'].'/config', 'cloudfront.amazonaws.com');
    1231. 

  1231. 		$rest->data = self::__getCloudFrontDistributionConfigXML(
    1232. 

  1232. 			$dist['origin'],
    1233. 

  1233. 			$dist['enabled'],
    1234. 

  1234. 			$dist['comment'],
    1235. 

  1235. 			$dist['callerReference'],
    1236. 

  1236. 			$dist['cnames'],
    1237. 

  1237. 			$dist['defaultRootObject'],
    1238. 

  1238. 			$dist['originAccessIdentity'],
    1239. 

  1239. 			$dist['trustedSigners']
    1240. 

  1240. 		);
    1241. 

  1241. 

  1242. 		$rest->size = strlen($rest->data);
    1243. 

  1243. 		$rest->setHeader('If-Match', $dist['hash']);
    1244. 

  1244. 		$rest = self::__getCloudFrontResponse($rest);
    1245. 

  1245. 

  1246. 		self::$useSSL = $useSSL;
    1247. 

  1247. 

  1248. 		if ($rest->error === false && $rest->code !== 200)
    1249. 

  1249. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    1250. 

  1250. 		if ($rest->error !== false)
    1251. 

  1251. 		{
    1252. 

  1252. 			self::__triggerError(sprintf("S3::updateDistribution({$dist['id']}): [%s] %s",
    1253. 

  1253. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    1254. 

  1254. 			return false;
    1255. 

  1255. 		} else {
    1256. 

  1256. 			$dist = self::__parseCloudFrontDistributionConfig($rest->body);
    1257. 

  1257. 			$dist['hash'] = $rest->headers['hash'];
    1258. 

  1258. 			return $dist;
    1259. 

  1259. 		}
    1260. 

  1260. 		return false;
    1261. 

  1261. 	}
    1262. 

  1262. 

  1263. 

  1264. 	/**
    1265. 

  1265. 	* Delete a CloudFront distribution
    1266. 

  1266. 	*
    1267. 

  1267. 	* @param array $dist Distribution array info identical to output of getDistribution()
    1268. 

  1268. 	* @return boolean
    1269. 

  1269. 	*/
    1270. 

  1270. 	public static function deleteDistribution($dist)
    1271. 

  1271. 	{
    1272. 

  1272. 		if (!extension_loaded('openssl'))
    1273. 

  1273. 		{
    1274. 

  1274. 			self::__triggerError(sprintf("S3::deleteDistribution({$dist['id']}): %s",
    1275. 

  1275. 			"CloudFront functionality requires SSL"), __FILE__, __LINE__);
    1276. 

  1276. 			return false;
    1277. 

  1277. 		}
    1278. 

  1278. 

  1279. 		$useSSL = self::$useSSL;
    1280. 

  1280. 

  1281. 		self::$useSSL = true; // CloudFront requires SSL
    1282. 

  1282. 		$rest = new S3Request('DELETE', '', '2008-06-30/distribution/'.$dist['id'], 'cloudfront.amazonaws.com');
    1283. 

  1283. 		$rest->setHeader('If-Match', $dist['hash']);
    1284. 

  1284. 		$rest = self::__getCloudFrontResponse($rest);
    1285. 

  1285. 

  1286. 		self::$useSSL = $useSSL;
    1287. 

  1287. 

  1288. 		if ($rest->error === false && $rest->code !== 204)
    1289. 

  1289. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    1290. 

  1290. 		if ($rest->error !== false)
    1291. 

  1291. 		{
    1292. 

  1292. 			self::__triggerError(sprintf("S3::deleteDistribution({$dist['id']}): [%s] %s",
    1293. 

  1293. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    1294. 

  1294. 			return false;
    1295. 

  1295. 		}
    1296. 

  1296. 		return true;
    1297. 

  1297. 	}
    1298. 

  1298. 

  1299. 

  1300. 	/**
    1301. 

  1301. 	* Get a list of CloudFront distributions
    1302. 

  1302. 	*
    1303. 

  1303. 	* @return array
    1304. 

  1304. 	*/
    1305. 

  1305. 	public static function listDistributions()
    1306. 

  1306. 	{
    1307. 

  1307. 		if (!extension_loaded('openssl'))
    1308. 

  1308. 		{
    1309. 

  1309. 			self::__triggerError(sprintf("S3::listDistributions(): [%s] %s",
    1310. 

  1310. 			"CloudFront functionality requires SSL"), __FILE__, __LINE__);
    1311. 

  1311. 			return false;
    1312. 

  1312. 		}
    1313. 

  1313. 

  1314. 		$useSSL = self::$useSSL;
    1315. 

  1315. 		self::$useSSL = true; // CloudFront requires SSL
    1316. 

  1316. 		$rest = new S3Request('GET', '', '2010-11-01/distribution', 'cloudfront.amazonaws.com');
    1317. 

  1317. 		$rest = self::__getCloudFrontResponse($rest);
    1318. 

  1318. 		self::$useSSL = $useSSL;
    1319. 

  1319. 

  1320. 		if ($rest->error === false && $rest->code !== 200)
    1321. 

  1321. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    1322. 

  1322. 		if ($rest->error !== false)
    1323. 

  1323. 		{
    1324. 

  1324. 			self::__triggerError(sprintf("S3::listDistributions(): [%s] %s",
    1325. 

  1325. 			$rest->error['code'], $rest->error['message']), __FILE__, __LINE__);
    1326. 

  1326. 			return false;
    1327. 

  1327. 		}
    1328. 

  1328. 		elseif ($rest->body instanceof SimpleXMLElement && isset($rest->body->DistributionSummary))
    1329. 

  1329. 		{
    1330. 

  1330. 			$list = array();
    1331. 

  1331. 			if (isset($rest->body->Marker, $rest->body->MaxItems, $rest->body->IsTruncated))
    1332. 

  1332. 			{
    1333. 

  1333. 				//$info['marker'] = (string)$rest->body->Marker;
    1334. 

  1334. 				//$info['maxItems'] = (int)$rest->body->MaxItems;
    1335. 

  1335. 				//$info['isTruncated'] = (string)$rest->body->IsTruncated == 'true' ? true : false;
    1336. 

  1336. 			}
    1337. 

  1337. 			foreach ($rest->body->DistributionSummary as $summary)
    1338. 

  1338. 				$list[(string)$summary->Id] = self::__parseCloudFrontDistributionConfig($summary);
    1339. 

  1339. 

  1340. 			return $list;
    1341. 

  1341. 		}
    1342. 

  1342. 		return array();
    1343. 

  1343. 	}
    1344. 

  1344. 

  1345. 	/**
    1346. 

  1346. 	* List CloudFront Origin Access Identities
    1347. 

  1347. 	*
    1348. 

  1348. 	* @return array
    1349. 

  1349. 	*/
    1350. 

  1350. 	public static function listOriginAccessIdentities()
    1351. 

  1351. 	{
    1352. 

  1352. 		if (!extension_loaded('openssl'))
    1353. 

  1353. 		{
    1354. 

  1354. 			self::__triggerError(sprintf("S3::listOriginAccessIdentities(): [%s] %s",
    1355. 

  1355. 			"CloudFront functionality requires SSL"), __FILE__, __LINE__);
    1356. 

  1356. 			return false;
    1357. 

  1357. 		}
    1358. 

  1358. 

  1359. 		self::$useSSL = true; // CloudFront requires SSL
    1360. 

  1360. 		$rest = new S3Request('GET', '', '2010-11-01/origin-access-identity/cloudfront', 'cloudfront.amazonaws.com');
    1361. 

  1361. 		$rest = self::__getCloudFrontResponse($rest);
    1362. 

  1362. 		$useSSL = self::$useSSL;
    1363. 

  1363. 

  1364. 		if ($rest->error === false && $rest->code !== 200)
    1365. 

  1365. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    1366. 

  1366. 		if ($rest->error !== false)
    1367. 

  1367. 		{
    1368. 

  1368. 			trigger_error(sprintf("S3::listOriginAccessIdentities(): [%s] %s",
    1369. 

  1369. 			$rest->error['code'], $rest->error['message']), E_USER_WARNING);
    1370. 

  1370. 			return false;
    1371. 

  1371. 		}
    1372. 

  1372. 

  1373. 		if (isset($rest->body->CloudFrontOriginAccessIdentitySummary))
    1374. 

  1374. 		{
    1375. 

  1375. 			$identities = array();
    1376. 

  1376. 			foreach ($rest->body->CloudFrontOriginAccessIdentitySummary as $identity)
    1377. 

  1377. 				if (isset($identity->S3CanonicalUserId))
    1378. 

  1378. 					$identities[(string)$identity->Id] = array('id' => (string)$identity->Id, 's3CanonicalUserId' => (string)$identity->S3CanonicalUserId);
    1379. 

  1379. 			return $identities;
    1380. 

  1380. 		}
    1381. 

  1381. 		return false;
    1382. 

  1382. 	}
    1383. 

  1383. 

  1384. 

  1385. 	/**
    1386. 

  1386. 	* Invalidate objects in a CloudFront distribution
    1387. 

  1387. 	*
    1388. 

  1388. 	* Thanks to Martin Lindkvist for S3::invalidateDistribution()
    1389. 

  1389. 	*
    1390. 

  1390. 	* @param string $distributionId Distribution ID from listDistributions()
    1391. 

  1391. 	* @param array $paths Array of object paths to invalidate
    1392. 

  1392. 	* @return boolean
    1393. 

  1393. 	*/
    1394. 

  1394. 	public static function invalidateDistribution($distributionId, $paths)
    1395. 

  1395. 	{
    1396. 

  1396. 		if (!extension_loaded('openssl'))
    1397. 

  1397. 		{
    1398. 

  1398. 			self::__triggerError(sprintf("S3::invalidateDistribution(): [%s] %s",
    1399. 

  1399. 			"CloudFront functionality requires SSL"), __FILE__, __LINE__);
    1400. 

  1400. 			return false;
    1401. 

  1401. 		}
    1402. 

  1402. 

  1403. 		$useSSL = self::$useSSL;
    1404. 

  1404. 		self::$useSSL = true; // CloudFront requires SSL
    1405. 

  1405. 		$rest = new S3Request('POST', '', '2010-08-01/distribution/'.$distributionId.'/invalidation', 'cloudfront.amazonaws.com');
    1406. 

  1406. 		$rest->data = self::__getCloudFrontInvalidationBatchXML($paths, (string)microtime(true));
    1407. 

  1407. 		$rest->size = strlen($rest->data);
    1408. 

  1408. 		$rest = self::__getCloudFrontResponse($rest);
    1409. 

  1409. 		self::$useSSL = $useSSL;
    1410. 

  1410. 

  1411. 		if ($rest->error === false && $rest->code !== 201)
    1412. 

  1412. 			$rest->error = array('code' => $rest->code, 'message' => 'Unexpected HTTP status');
    1413. 

  1413. 		if ($rest->error !== false)
    1414. 

  1414. 		{
    1415. 

  1415. 			trigger_error(sprintf("S3::invalidate('{$distributionId}',{$paths}): [%s] %s",
    1416. 

  1416. 			$rest->error['code'], $rest->error['message']), E_USER_WARNING);
    1417. 

  1417. 			return false;
    1418. 

  1418. 		}
    1419. 

  1419. 		return true;
    1420. 

  1420. 	}
    1421. 

  1421. 

  1422. 

  1423. 	/**
    1424. 

  1424. 	* Get a InvalidationBatch DOMDocument
    1425. 

  1425. 	*
    1426. 

  1426. 	* @internal Used to create XML in invalidateDistribution()
    1427. 

  1427. 	* @param array $paths Paths to objects to invalidateDistribution
    1428. 

  1428. 	* @return string
    1429. 

  1429. 	*/
    1430. 

  1430. 	private static function __getCloudFrontInvalidationBatchXML($paths, $callerReference = '0') {
    1431. 

  1431. 		$dom = new DOMDocument('1.0', 'UTF-8');
    1432. 

  1432. 		$dom->formatOutput = true;
    1433. 

  1433. 		$invalidationBatch = $dom->createElement('InvalidationBatch');
    1434. 

  1434. 		foreach ($paths as $path)
    1435. 

  1435. 			$invalidationBatch->appendChild($dom->createElement('Path', $path));
    1436. 

  1436. 

  1437. 		$invalidationBatch->appendChild($dom->createElement('CallerReference', $callerReference));
    1438. 

  1438. 		$dom->appendChild($invalidationBatch);
    1439. 

  1439. 		return $dom->saveXML();
    1440. 

  1440. 	}
    1441. 

  1441. 

  1442. 

  1443. 	/**
    1444. 

  1444. 	* Get a DistributionConfig DOMDocument
    1445. 

  1445. 	*
    1446. 

  1446. 	* http://docs.amazonwebservices.com/AmazonCloudFront/latest/APIReference/index.html?PutConfig.html
    1447. 

  1447. 	*
    1448. 

  1448. 	* @internal Used to create XML in createDistribution() and updateDistribution()
    1449. 

  1449. 	* @param string $bucket S3 Origin bucket
    1450. 

  1450. 	* @param boolean $enabled Enabled (true/false)
    1451. 

  1451. 	* @param string $comment Comment to append
    1452. 

  1452. 	* @param string $callerReference Caller reference
    1453. 

  1453. 	* @param array $cnames Array of CNAME aliases
    1454. 

  1454. 	* @param string $defaultRootObject Default root object
    1455. 

  1455. 	* @param string $originAccessIdentity Origin access identity
    1456. 

  1456. 	* @param array $trustedSigners Array of trusted signers
    1457. 

  1457. 	* @return string
    1458. 

  1458. 	*/
    1459. 

  1459. 	private static function __getCloudFrontDistributionConfigXML($bucket, $enabled, $comment, $callerReference = '0', $cnames = array(), $defaultRootObject = null, $originAccessIdentity = null, $trustedSigners = array())
    1460. 

  1460. 	{
    1461. 

  1461. 		$dom = new DOMDocument('1.0', 'UTF-8');
    1462. 

  1462. 		$dom->formatOutput = true;
    1463. 

  1463. 		$distributionConfig = $dom->createElement('DistributionConfig');
    1464. 

  1464. 		$distributionConfig->setAttribute('xmlns', 'http:/
    1465.