Malin/WPS3Media
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
dec5ad7f2db4dfba1503e8b8a58a07b2d08c68f8
WPS3Media/vendor/Aws3/Aws/EndpointV2/Ruleset/RulesetStandardLibrary.php
Malin 3248cbb029 feat: add S3-compatible storage provider (MinIO, Ceph, R2, etc.) 
Adds a new 'S3-Compatible Storage' provider that works with any
S3-API-compatible object storage service, including MinIO, Ceph,
Cloudflare R2, Backblaze B2, and others.

Changes:
- New provider class: classes/providers/storage/s3-compatible-provider.php
  - Provider key: s3compatible
  - Reads user-configured endpoint URL from settings
  - Uses path-style URL access (required by most S3-compatible services)
  - Supports credentials via AS3CF_S3COMPAT_ACCESS_KEY_ID /
    AS3CF_S3COMPAT_SECRET_ACCESS_KEY wp-config.php constants
  - Disables AWS-specific features (Block Public Access, Object Ownership)
- New provider SVG icons (s3compatible.svg, -link.svg, -round.svg)
- Registered provider in main plugin class with endpoint setting support
- Updated StorageProviderSubPage to show endpoint URL input for S3-compatible
- Built pro settings bundle with rollup (Svelte 4.2.19)
- Added package.json and updated rollup.config.mjs for pro-only builds
2026-03-03 12:30:18 +01:00

337 lines
12 KiB
PHP
Raw Blame History

<?php
namespace DeliciousBrains\WP_Offload_Media\Aws3\Aws\EndpointV2\Ruleset;
use DeliciousBrains\WP_Offload_Media\Aws3\Aws\Exception\UnresolvedEndpointException;
/**
* Provides functions and actions to be performed for endpoint evaluation.
* This is an internal only class and is not subject to backwards-compatibility guarantees.
*
* @internal
*/
class RulesetStandardLibrary
{
const IPV4_RE = '/^(?:[0-9]{1,3}\\.){3}[0-9]{1,3}$/';
const IPV6_RE = '/([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|
. ([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]
. {1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:)
. {1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|
. [0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:
. (:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|
. 1{0,1}[0-9]){0,1}[0-9])\\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]
. {1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\\.){3,3}(25[0-5]|(2[0-4]
. |1{0,1}[0-9]){0,1}[0-9])/';
const TEMPLATE_ESCAPE_RE = '/{\\{\\s*(.*?)\\s*\\}\\}/';
const TEMPLATE_SEARCH_RE = '/\\{[a-zA-Z#]+\\}/';
const TEMPLATE_PARSE_RE = '#\\{((?>[^\\{\\}]+)|(?R))*\\}#x';
const HOST_LABEL_RE = '/^(?!-)[a-zA-Z\\d-]{1,63}(?<!-)$/';
private $partitions;
public function __construct($partitions)
{
$this->partitions = $partitions;
}
/**
* Determines if a value is set.
*
* @return boolean
*/
public function is_set($value)
{
return isset($value);
}
/**
* Function implementation of logical operator `not`
*
* @return boolean
*/
public function not($value)
{
return !$value;
}
/**
* Find an attribute within a value given a path string.
*
* @return mixed
*/
public function getAttr($from, $path)
{
$parts = \explode('.', $path);
foreach ($parts as $part) {
$sliceIdx = \strpos($part, '[');
if ($sliceIdx !== \false) {
if (\substr($part, -1) !== ']') {
return null;
}
$slice = \intval(\substr($part, $sliceIdx + 1, \strlen($part) - 1));
$from = isset($from[\substr($part, 0, $sliceIdx)][$slice]) ? $from[\substr($part, 0, $sliceIdx)][$slice] : null;
} else {
$from = $from[$part];
}
}
return $from;
}
/**
* Computes a substring given the start index and end index. If `reverse` is
* true, slice the string from the end instead.
*
* @return mixed
*/
public function substring($input, $start, $stop, $reverse)
{
if (!\is_string($input)) {
throw new UnresolvedEndpointException('Input passed to `substring` must be `string`.');
}
if (\preg_match('/[^\\x00-\\x7F]/', $input)) {
return null;
}
if ($start >= $stop or \strlen($input) < $stop) {
return null;
}
if (!$reverse) {
return \substr($input, $start, $stop - $start);
} else {
$offset = \strlen($input) - $stop;
$length = $stop - $start;
return \substr($input, $offset, $length);
}
}
/**
* Evaluates two strings for equality.
*
* @return boolean
*/
public function stringEquals($string1, $string2)
{
if (!\is_string($string1) || !\is_string($string2)) {
throw new UnresolvedEndpointException('Values passed to StringEquals must be `string`.');
}
return $string1 === $string2;
}
/**
* Evaluates two booleans for equality.
*
* @return boolean
*/
public function booleanEquals($boolean1, $boolean2)
{
return \filter_var($boolean1, \FILTER_VALIDATE_BOOLEAN) === \filter_var($boolean2, \FILTER_VALIDATE_BOOLEAN);
}
/**
* Percent-encodes an input string.
*
* @return mixed
*/
public function uriEncode($input)
{
if (\is_null($input)) {
return null;
}
return \str_replace('%7E', '~', \rawurlencode($input));
}
/**
* Parses URL string into components.
*
* @return mixed
*/
public function parseUrl($url)
{
if (\is_null($url)) {
return null;
}
$parsed = \parse_url($url);
if ($parsed === \false || !empty($parsed['query'])) {
return null;
} elseif (!isset($parsed['scheme'])) {
return null;
}
if ($parsed['scheme'] !== 'http' && $parsed['scheme'] !== 'https') {
return null;
}
$urlInfo = [];
$urlInfo['scheme'] = $parsed['scheme'];
$urlInfo['authority'] = isset($parsed['host']) ? $parsed['host'] : '';
if (isset($parsed['port'])) {
$urlInfo['authority'] = $urlInfo['authority'] . ":" . $parsed['port'];
}
$urlInfo['path'] = isset($parsed['path']) ? $parsed['path'] : '';
$urlInfo['normalizedPath'] = !empty($parsed['path']) ? \rtrim($urlInfo['path'] ?: '', '/' . "/") . '/' : '/';
$urlInfo['isIp'] = !isset($parsed['host']) ? 'false' : $this->isValidIp($parsed['host']);
return $urlInfo;
}
/**
* Evaluates whether a value is a valid host label per
* RFC 1123. If allow_subdomains is true, split on `.` and validate
* each subdomain separately.
*
* @return boolean
*/
public function isValidHostLabel($hostLabel, $allowSubDomains)
{
if (!isset($hostLabel) || !$allowSubDomains && \strpos($hostLabel, '.') != \false) {
return \false;
}
if ($allowSubDomains) {
foreach (\explode('.', $hostLabel) as $subdomain) {
if (!$this->validateHostLabel($subdomain)) {
return \false;
}
}
return \true;
} else {
return $this->validateHostLabel($hostLabel);
}
}
/**
* Parse and validate string for ARN components.
*
* @return array|null
*/
public function parseArn($arnString)
{
if (\is_null($arnString) || \substr($arnString, 0, 3) !== "arn") {
return null;
}
$arn = [];
$parts = \explode(':', $arnString, 6);
if (\sizeof($parts) < 6) {
return null;
}
$arn['partition'] = isset($parts[1]) ? $parts[1] : null;
$arn['service'] = isset($parts[2]) ? $parts[2] : null;
$arn['region'] = isset($parts[3]) ? $parts[3] : null;
$arn['accountId'] = isset($parts[4]) ? $parts[4] : null;
$arn['resourceId'] = isset($parts[5]) ? $parts[5] : null;
if (empty($arn['partition']) || empty($arn['service']) || empty($arn['resourceId'])) {
return null;
}
$resource = $arn['resourceId'];
$arn['resourceId'] = \preg_split("/[:\\/]/", $resource);
return $arn;
}
/**
* Matches a region string to an AWS partition.
*
* @return mixed
*/
public function partition($region)
{
if (!\is_string($region)) {
throw new UnresolvedEndpointException('Value passed to `partition` must be `string`.');
}
$partitions = $this->partitions;
foreach ($partitions['partitions'] as $partition) {
if (\array_key_exists($region, $partition['regions']) || \preg_match("/{$partition['regionRegex']}/", $region)) {
return $partition['outputs'];
}
}
//return `aws` partition if no match is found.
return $partitions['partitions'][0]['outputs'];
}
/**
* Evaluates whether a value is a valid bucket name for virtual host
* style bucket URLs.
*
* @return boolean
*/
public function isVirtualHostableS3Bucket($bucketName, $allowSubdomains)
{
if (\is_null($bucketName) || (\strlen($bucketName) < 3 || \strlen($bucketName) > 63) || \preg_match(self::IPV4_RE, $bucketName) || \strtolower($bucketName) !== $bucketName) {
return \false;
}
if ($allowSubdomains) {
$labels = \explode('.', $bucketName);
$results = [];
foreach ($labels as $label) {
$results[] = $this->isVirtualHostableS3Bucket($label, \false);
}
return !\in_array(\false, $results);
}
return $this->isValidHostLabel($bucketName, \false);
}
public function callFunction($funcCondition, &$inputParameters)
{
$funcArgs = [];
foreach ($funcCondition['argv'] as $arg) {
$funcArgs[] = $this->resolveValue($arg, $inputParameters);
}
$funcName = \str_replace('aws.', '', $funcCondition['fn']);
if ($funcName === 'isSet') {
$funcName = 'is_set';
}
$result = \call_user_func_array([RulesetStandardLibrary::class, $funcName], $funcArgs);
if (isset($funcCondition['assign'])) {
$assign = $funcCondition['assign'];
if (isset($inputParameters[$assign])) {
throw new UnresolvedEndpointException("Assignment `{$assign}` already exists in input parameters" . " or has already been assigned by an endpoint rule and cannot be overwritten.");
}
$inputParameters[$assign] = $result;
}
return $result;
}
public function resolveValue($value, $inputParameters)
{
//Given a value, check if it's a function, reference or template.
//returns resolved value
if ($this->isFunc($value)) {
return $this->callFunction($value, $inputParameters);
} elseif ($this->isRef($value)) {
return isset($inputParameters[$value['ref']]) ? $inputParameters[$value['ref']] : null;
} elseif ($this->isTemplate($value)) {
return $this->resolveTemplateString($value, $inputParameters);
}
return $value;
}
public function isFunc($arg)
{
return \is_array($arg) && isset($arg['fn']);
}
public function isRef($arg)
{
return \is_array($arg) && isset($arg['ref']);
}
public function isTemplate($arg)
{
return \is_string($arg) && !empty(\preg_match(self::TEMPLATE_SEARCH_RE, $arg));
}
public function resolveTemplateString($value, $inputParameters)
{
return \preg_replace_callback(self::TEMPLATE_PARSE_RE, function ($match) use($inputParameters) {
if (\preg_match(self::TEMPLATE_ESCAPE_RE, $match[0])) {
return $match[1];
}
$notFoundMessage = 'Resolved value was null. Please check rules and ' . 'input parameters and try again.';
$parts = \explode("#", $match[1]);
if (\count($parts) > 1) {
$resolvedValue = $inputParameters;
foreach ($parts as $part) {
if (!isset($resolvedValue[$part])) {
throw new UnresolvedEndpointException($notFoundMessage);
}
$resolvedValue = $resolvedValue[$part];
}
return $resolvedValue;
} else {
if (!isset($inputParameters[$parts[0]])) {
throw new UnresolvedEndpointException($notFoundMessage);
}
return $inputParameters[$parts[0]];
}
}, $value);
}
private function validateHostLabel($hostLabel)
{
if (empty($hostLabel) || \strlen($hostLabel) > 63) {
return \false;
}
if (\preg_match(self::HOST_LABEL_RE, $hostLabel)) {
return \true;
}
return \false;
}
private function isValidIp($hostName)
{
$isWrapped = \strpos($hostName, '[') === 0 && \strrpos($hostName, ']') === \strlen($hostName) - 1;
return \preg_match(self::IPV4_RE, $hostName) || $isWrapped && \preg_match(self::IPV6_RE, $hostName) ? 'true' : 'false';
}
}
Reference in New Issue View Git Blame Copy Permalink