Remove old and insecure versions of publish

2 files changed, 0 insertions, 330 deletions

diff --git a/calendars/publish.ical.php b/calendars/publish.ical.php
deleted file mode 100644
index 249a757..0000000
--- a/calendars/publish.ical.php
+++ /dev/null
@@ -1,147 +0,0 @@
-<?php
-
-/*
-Extension to PHP iCalendar for supporting publishing from Apple iCal
-Date: 11.12.2003
-Author: Dietrich Ayala
-Copyright 2003 Dietrich Ayala
-
-Description:
-This allows iCal to publish to your PHP iCalendar site *without* WebDAV support.
-This helps with commercial hosts where WebDAV is not available.
-
-Features:
-- supports publishing and deleting calendars
-- does not require WebDAV
-
-Installation:
-1. place this file in your PHP iCalendar calendars directory (or anywhere else)
-2. configure path to PHP iCalendar config file (below)
-3. make sure that PHP has write access to the calendars directory (or whatever you set $calendar_path to)
-4. set up directory security on your calendars directory
-5. turn on publishing in your PHP iCalendar config file by setting $phpicalendar_publishing to 1.
-
-Usage (Apple iCal):
-1. Open iCal, select a calendar for publishing
-2. Select "Publish" from the "Calendar" menu
-3. Configure to your liking, and set the URL to (eg): http://localhost/~dietricha/calendar/calendars/publish.php
-4. Click the "Publish" button
-5. Some PHP versions require a '?' at the end of the URL (eg): http://localhost/~dietricha/calendar/calendars/publish.php?
-
-Hints:
-1. PHP 4.3.0 or greater is required
-2. safe_mode = Off needs to be in php.ini
-
-Security:
-The calendars directory should be configured to require authentication. This can be done via any methods
-supported by your webserver. There is much documentation available on the web for doing per-directory
-authentication for Apache. This protects any private calendar data, and prevents unauthorized users
-from updating or deleting your calendar data.
-There's also code below that forwards any GET requests to the PHP iCalendar front page.
-
-Troubleshooting:
-You can turn on logging by setting the PHPICALENDAR_LOG_PUBLISHING constant to 1 below.
-This will write out a log file to the same directory as this script.
-Don't forget to turn off logging when done!!
-
-*/
-
-// include PHP iCalendar configuration variables
-include('../config.inc.php');
-
-// set calendar path, or just use current directory...make sure there's a trailing slash
-if(isset($calendar_path) && $calendar_path != ''){
-	if (substr($calendar_path, -1, 1) !='/') $calendar_path = $calendar_path.'/';
-}else{
-	$calendar_path = '';
-}
-// allow/disallow publishing
-
-$phpicalendar_publishing = isset($phpicalendar_publishing) ? $phpicalendar_publishing : 0;
-define( 'PHPICALENDAR_PUBLISHING', $phpicalendar_publishing );
-
-// toggle logging
-define( 'PHPICALENDAR_LOG_PUBLISHING', 1 );
-
-/* force GET requests to main calendar view
-if($_SERVER['REQUEST_METHOD'] == 'GET')
-{
-	header('Location: '.$default_path);
-	return;
-}
-*/
-// only allow publishing if explicitly enabled
-if(PHPICALENDAR_PUBLISHING == 1)
-{
-	// unpublishing
-	if($_SERVER['REQUEST_METHOD'] == 'DELETE')
-	{
-		// get calendar filename
-		$calendar_file = $calendar_path.substr($_SERVER['REQUEST_URI'] , ( strrpos($_SERVER['REQUEST_URI'], '/') + 1) ) ;
-		
-		logmsg('received request to delete '.$calendar_file);
-		
-		// remove calendar file
-		if(!unlink($calendar_file))
-		{
-			logmsg('unable to delete the calendar file');
-		}
-		else
-		{
-			logmsg('deleted');
-		}
-		return;
-	}
-	
-	// publishing
-	if($_SERVER['REQUEST_METHOD'] == 'PUT'){
-		// get calendar data
-		if($fp = fopen('php://input','r')){
-			while(!@feof($fp)){
-				$data .= fgets($fp,4096);
-			}
-			
-			@fclose($fp);
-		}else{
-			logmsg('unable to read input data');
-		}
-		
-		if(isset($data)){
-			
-			// get calendar name
-			$cal_arr = explode("\n",$data);
-			
-			foreach($cal_arr as $k => $v){
-				if(strstr($v,'X-WR-CALNAME:')){
-					$arr = explode(':',$v);
-					$calendar_name = trim($arr[1]);
-					break;
-				}
-			}
-			
-			$calendar_name = isset($calendar_name) ? $calendar_name : 'default';
-			
-			// write to file
-			if($fp = fopen($calendar_path.$calendar_name.'.ics','w+')){
-				fputs($fp, $data, strlen($data) );
-				@fclose($fp);
-			}else{
-				logmsg( 'couldnt open file '.$calendar_path.$calendar_name.'.ics' );
-			}
-		}
-	}
-}
-
-// for logging
-function logmsg($str){
-	if(defined('PHPICALENDAR_LOG_PUBLISHING') && PHPICALENDAR_LOG_PUBLISHING == 1)
-	{
-		if($fp = fopen('publish_log.txt','a+'))
-		{
-			$str .= "\n";
-			fputs($fp, $str, strlen($str) );
-			fclose($fp);
-		}
-	}
-}
-?>
diff --git a/calendars/publish.mozilla.php b/calendars/publish.mozilla.php
deleted file mode 100644
index 7d4e9ed..0000000
--- a/calendars/publish.mozilla.php
+++ /dev/null
@@ -1,183 +0,0 @@
-<?php
-
-/*
-Extension to PHP iCalendar for supporting publishing from Apple iCal
-Date: 11.12.2003
-Author: Dietrich Ayala
-Copyright 2003 Dietrich Ayala
-
-Description:
-This allows iCal to publish to your PHP iCalendar site *without* WebDAV support.
-This helps with commercial hosts where WebDAV is not available.
-
-Features:
-- supports publishing and deleting calendars
-- does not require WebDAV
-
-Installation:
-1. place this file in your PHP iCalendar calendars directory (or anywhere else)
-2. configure path to PHP iCalendar config file (below)
-3. make sure that PHP has write access to the calendars directory (or whatever you set $calendar_path to)
-4. set up directory security on your calendars directory
-5. turn on publishing in your PHP iCalendar config file by setting $phpicalendar_publishing to 1.
-
-Usage (Apple iCal):
-1. Open iCal, select a calendar for publishing
-2. Select "Publish" from the "Calendar" menu
-3. Configure to your liking, and set the URL to (eg): http://localhost/~dietricha/calendar/calendars/publish.php
-4. Click the "Publish" button
-
-Usage (Mozilla Calendar):
-1. Your version of php and apache MUST support $_SERVER['PATH_INFO']
-2. You must have supplied a username and password in your config.php
-2. Create your calendar in Mozilla
-3. Add something to it (it must not be empty)
-4. Manually upload it to your calendars directory.
-5. Make sure that the webserver can write to the calendar file.
-(Mozilla will not save to the remote location without first downloading a copy
-from the remote location)
-6. Edit your calendar setup in mozilla
-   Location http://example.com/path/to/publish.php/calendarname.ics
-   calendarname.ics should be a unique filename and must end with .ics
-7. Username (username from config.php)
-8. Password (password from config.php)
-9. Check "publish changes automatically"
-
-Security:
-The calendars directory should be configured to require authentication. This can be done via any methods
-supported by your webserver. There is much documentation available on the web for doing per-directory
-authentication for Apache. This protects any private calendar data, and prevents unauthorized users
-from updating or deleting your calendar data.
-There's also code below that forwards any GET requests to the PHP iCalendar front page.
-
-Troubleshooting:
-You can turn on logging by setting the PHPICALENDAR_LOG_PUBLISHING constant to 1 below.
-This will write out a log file to the same directory as this script.
-Don't forget to turn off logging when done!!
-
-*/
-
-// include PHP iCalendar configuration variables
-include('../config.inc.php');
-
-// set calendar path, or just use current directory...make sure there's a trailing slash
-if(isset($calendar_path) && $calendar_path != ''){
-	if (substr($calendar_path, -1, 1) !='/') $calendar_path = $calendar_path.'/';
-}else{
-	$calendar_path = '';
-}
-// allow/disallow publishing
-
-$phpicalendar_publishing = isset($phpicalendar_publishing) ? $phpicalendar_publishing : 0;
-define( 'PHPICALENDAR_PUBLISHING', $phpicalendar_publishing );
-
-// toggle logging
-define( 'PHPICALENDAR_LOG_PUBLISHING', 1 );
-
-/* force GET requests to main calendar view
-if($_SERVER['REQUEST_METHOD'] == 'GET')
-{
-	header('Location: '.$default_path);
-	return;
-}
-*/
-if (!isset($_SERVER['PHP_AUTH_USER'])) {
-    header('WWW-Authenticate: Basic realm="My Realm"');
-    header('HTTP/1.0 401 Unauthorized');
-    echo 'You must be authorized!';
-    exit;
-} else {
-    //    logmsg($_SERVER['PHP_AUTH_PW'] . '|' . $_SERVER['PHP_AUTH_USER']);
-    if ($_SERVER['PHP_AUTH_USER'] != $auth_internal_username || $_SERVER['PHP_AUTH_PW'] != $auth_internal_password) {
-	header('WWW-Authenticate: Basic realm="My Realm"');
-	header('HTTP/1.0 401 Unauthorized');
-	echo 'You must be authorized!';
-	exit;
-    }
-    // only allow publishing if explicitly enabled
-    if(PHPICALENDAR_PUBLISHING == 1) {
-	// unpublishing
-	if($_SERVER['REQUEST_METHOD'] == 'DELETE') {
-	    // get calendar filename
-	    $calendar_file = $calendar_path.substr($_SERVER['REQUEST_URI'] , ( strrpos($_SERVER['REQUEST_URI'], '/') + 1) ) ;
-	    logmsg('received request to delete '.$calendar_file);
-	    // remove calendar file
-	    if(!unlink($calendar_file)) {
-		logmsg('unable to delete the calendar file');
-	    } else {
-		logmsg('deleted');
-	    }
-	    return;
-	}
-	
-	// publishing
-	if($_SERVER['REQUEST_METHOD'] == 'PUT') {
-	    // get calendar data
-	    if($fp = fopen('php://input','r')) {
-		while(!@feof($fp)) {
-		    $data .= fgets($fp,4096);
-		}
-		
-		@fclose($fp);
-	    } else {
-		logmsg('unable to read input data');
-	    }
-	    if(isset($data)) {
-		// get calendar name
-		$cal_arr = explode("\n",$data);
-		
-		foreach($cal_arr as $k => $v) {
-		    if(strstr($v,'X-WR-CALNAME:')) {
-			$arr = explode(':',$v);
-			$calendar_name = trim($arr[1]);
-			break;
-		    }
-		}
-		
-		$calendar_name = isset($calendar_name) ? $calendar_name : 'default';
-		
-		if (isset($_SERVER['PATH_INFO'])) {
-		    preg_match("/\/([ A-Za-z0-9.]*).ics/i",$_SERVER['PATH_INFO'],$matches);
-		    $calendar_name = $matches[1];
-		}
-		
-		// write to file
-		if($fp = fopen($calendar_path.$calendar_name.'.ics','w+')) {
-		    
-		    fputs($fp, $data, strlen($data) );
-		    @fclose($fp);
-		}
-		else {
-		    logmsg( 'couldnt open file '.$calendar_path.$calendar_name.'.ics' );
-		}
-	    }
-	}
-	if ($_SERVER['REQUEST_METHOD'] == 'GET') {
-	    if (isset($_SERVER['PATH_INFO'])) {
-		preg_match("/\/([ A-Za-z0-9._]*).ics/i",$_SERVER['PATH_INFO'],$matches);
-		$icsfile = $matches[1];
-		// get calendar data
-		if (file_exists($calendar_path . $icsfile . '.ics') &&
-		    is_readable($calendar_path . $icsfile . '.ics') &&
-		    is_file($calendar_path . $icsfile . '.ics')
-		    ) {
-		    echo file_get_contents($calendar_path . $icsfile . '.ics');
-		} else {
-
-		}
-	    }
-	}
-    }
-}
-// for logging
-function logmsg($str){
-    if(defined('PHPICALENDAR_LOG_PUBLISHING') &&
-       PHPICALENDAR_LOG_PUBLISHING == 1) {
-	if($fp = fopen('publish_log.txt','a+')) {
-	    $str .= "\n";
-	    fputs($fp, $str, strlen($str) );
-	    fclose($fp);
-	}
-    }
-}
-?>
\ No newline at end of file