[TASK] Release of 1.0.1 1.0.1
authorMarkus Hoelzle <typo3@markus-hoelzle.de>
Tue, 7 Oct 2014 14:08:20 +0000 (16:08 +0200)
committerMarkus Hoelzle <typo3@markus-hoelzle.de>
Tue, 7 Oct 2014 14:08:20 +0000 (16:08 +0200)
64 files changed:
Classes/Driver/DropboxDriver.php [new file with mode: 0644]
Classes/Utility/AutoLoader.php [new file with mode: 0644]
Classes/Utility/DropboxAdapter.php [new file with mode: 0644]
Classes/Utility/FlexFormUtility.php [new file with mode: 0644]
Configuration/FlexForm/DropboxDriverFlexForm.xml [new file with mode: 0644]
Documentation/AdministratorManual/Index.rst [new file with mode: 0644]
Documentation/Images/aus_driver_dropbox-storage_config_blank.png [new file with mode: 0644]
Documentation/Images/aus_driver_dropbox-storage_config_success.png [new file with mode: 0644]
Documentation/Images/aus_driver_dropbox-storagelist.png [new file with mode: 0644]
Documentation/Includes.txt [new file with mode: 0644]
Documentation/Index.rst [new file with mode: 0644]
Documentation/Introduction/Index.rst [new file with mode: 0644]
Documentation/Settings.yml [new file with mode: 0644]
Resources/PHP/Dropbox/AppInfo.php [new file with mode: 0644]
Resources/PHP/Dropbox/AppInfoLoadException.php [new file with mode: 0644]
Resources/PHP/Dropbox/ArrayEntryStore.php [new file with mode: 0644]
Resources/PHP/Dropbox/AuthBase.php [new file with mode: 0644]
Resources/PHP/Dropbox/AuthInfo.php [new file with mode: 0644]
Resources/PHP/Dropbox/AuthInfoLoadException.php [new file with mode: 0644]
Resources/PHP/Dropbox/Checker.php [new file with mode: 0644]
Resources/PHP/Dropbox/Client.php [new file with mode: 0644]
Resources/PHP/Dropbox/Curl.php [new file with mode: 0644]
Resources/PHP/Dropbox/CurlStreamRelay.php [new file with mode: 0644]
Resources/PHP/Dropbox/DeserializeException.php [new file with mode: 0644]
Resources/PHP/Dropbox/DropboxMetadataHeaderCatcher.php [new file with mode: 0644]
Resources/PHP/Dropbox/Exception.php [new file with mode: 0644]
Resources/PHP/Dropbox/Exception/BadRequest.php [new file with mode: 0644]
Resources/PHP/Dropbox/Exception/BadResponse.php [new file with mode: 0644]
Resources/PHP/Dropbox/Exception/BadResponseCode.php [new file with mode: 0644]
Resources/PHP/Dropbox/Exception/InvalidAccessToken.php [new file with mode: 0644]
Resources/PHP/Dropbox/Exception/NetworkIO.php [new file with mode: 0644]
Resources/PHP/Dropbox/Exception/ProtocolError.php [new file with mode: 0644]
Resources/PHP/Dropbox/Exception/RetryLater.php [new file with mode: 0644]
Resources/PHP/Dropbox/Exception/ServerError.php [new file with mode: 0644]
Resources/PHP/Dropbox/Host.php [new file with mode: 0644]
Resources/PHP/Dropbox/HttpResponse.php [new file with mode: 0644]
Resources/PHP/Dropbox/OAuth1AccessToken.php [new file with mode: 0644]
Resources/PHP/Dropbox/OAuth1Upgrader.php [new file with mode: 0644]
Resources/PHP/Dropbox/Path.php [new file with mode: 0644]
Resources/PHP/Dropbox/RequestUtil.php [new file with mode: 0644]
Resources/PHP/Dropbox/SSLTester.php [new file with mode: 0644]
Resources/PHP/Dropbox/Security.php [new file with mode: 0644]
Resources/PHP/Dropbox/StreamReadException.php [new file with mode: 0644]
Resources/PHP/Dropbox/ValueStore.php [new file with mode: 0644]
Resources/PHP/Dropbox/WebAuth.php [new file with mode: 0644]
Resources/PHP/Dropbox/WebAuthBase.php [new file with mode: 0644]
Resources/PHP/Dropbox/WebAuthException/BadRequest.php [new file with mode: 0644]
Resources/PHP/Dropbox/WebAuthException/BadState.php [new file with mode: 0644]
Resources/PHP/Dropbox/WebAuthException/Csrf.php [new file with mode: 0644]
Resources/PHP/Dropbox/WebAuthException/NotApproved.php [new file with mode: 0644]
Resources/PHP/Dropbox/WebAuthException/Provider.php [new file with mode: 0644]
Resources/PHP/Dropbox/WebAuthNoRedirect.php [new file with mode: 0644]
Resources/PHP/Dropbox/WriteMode.php [new file with mode: 0644]
Resources/PHP/Dropbox/autoload.php [new file with mode: 0644]
Resources/PHP/Dropbox/certs/trusted-certs.crt [new file with mode: 0644]
Resources/PHP/Dropbox/strict.php [new file with mode: 0644]
Resources/Private/.htaccess [new file with mode: 0644]
Resources/Private/Language/de.locallang_be.xlf [new file with mode: 0644]
Resources/Private/Language/locallang_be.xlf [new file with mode: 0644]
ext_emconf.php [new file with mode: 0644]
ext_icon.png [new file with mode: 0644]
ext_localconf.php [new file with mode: 0644]
ext_tables.sql [new file with mode: 0644]
readme.rst [new file with mode: 0644]

diff --git a/Classes/Driver/DropboxDriver.php b/Classes/Driver/DropboxDriver.php
new file mode 100644 (file)
index 0000000..597abe8
--- /dev/null
@@ -0,0 +1,818 @@
+<?php
+namespace AUS\AusDriverDropbox\Driver;
+
+use \TYPO3\CMS\Core\Utility\File\BasicFileUtility;
+use \TYPO3\CMS\Core\Utility\PathUtility;
+use \TYPO3\CMS\Core\Utility\GeneralUtility;
+use \TYPO3\CMS\Core\Resource\ResourceStorage;
+
+/***************************************************************
+ *  Copyright notice
+ *
+ *  (c) 2014 Markus Hölzle <m.hoelzle@andersundsehr.com>, anders und sehr GmbH
+ *  All rights reserved
+ ***************************************************************/
+
+/**
+ * Driver for Dropbox
+ *
+ * @author Markus Hölzle <m.hoelzle@andersundsehr.com>
+ */
+class DropboxDriver extends \TYPO3\CMS\Core\Resource\Driver\AbstractHierarchicalFilesystemDriver {
+
+
+       const DEBUG_MODE = FALSE;
+
+       const DRIVER_TYPE = 'AusDriverDropbox';
+
+       const EXTENSION_KEY = 'aus_driver_dropbox';
+
+
+       /**
+        * @var \AUS\AusDriverDropbox\Utility\DropboxAdapter
+        */
+       protected $adapter;
+
+       /**
+        * @var string
+        */
+       protected $basePath;
+
+       /**
+        * @var array
+        */
+       protected $objectMetaWithChildrenCache = array();
+
+       /**
+        * @var array
+        */
+       protected $publicUrlCache = array();
+
+       /**
+        * The identifier map used for renaming
+        *
+        * @var array
+        */
+       protected $identifierMap;
+
+       /**
+        * Processing folder
+        *
+        * @var string
+        */
+       protected $processingFolder;
+
+       /**
+        * Default processing folder
+        *
+        * @var string
+        */
+       protected $processingFolderDefault = '_processed_';
+
+       /**
+        * @var \TYPO3\CMS\Core\Resource\ResourceStorage
+        */
+       protected $storage;
+
+
+
+       /**
+        * @return void
+        */
+       public function processConfiguration() {}
+
+
+       /**
+        * @return void
+        */
+       public function initialize() {
+               \AUS\AusDriverDropbox\Utility\AutoLoader::registerAutoLoader();
+               $this->initializeAdapter();
+               $this->capabilities = \TYPO3\CMS\Core\Resource\ResourceStorage::CAPABILITY_BROWSABLE | \TYPO3\CMS\Core\Resource\ResourceStorage::CAPABILITY_PUBLIC | \TYPO3\CMS\Core\Resource\ResourceStorage::CAPABILITY_WRITABLE;
+       }
+
+
+       /**
+        * @param string $identifier
+        * @return string
+        */
+       public function getPublicUrl($identifier) {
+               $this->normalizeIdentifier($identifier);
+               return $this->adapter->getPublicUrl($identifier);
+       }
+
+
+       /**
+        * Creates a (cryptographic) hash for a file.
+        *
+        * @param string $fileIdentifier
+        * @param string $hashAlgorithm
+        * @return string
+        */
+       public function hash($fileIdentifier, $hashAlgorithm) {
+               return $this->hashIdentifier($fileIdentifier);
+       }
+
+
+       /**
+        * Returns the identifier of the default folder new files should be put into.
+        *
+        * @return string
+        */
+       public function getDefaultFolder() {
+               return $this->getRootLevelFolder();
+       }
+
+
+       /**
+        * Returns the identifier of the root level folder of the storage.
+        *
+        * @return string
+        */
+       public function getRootLevelFolder() {
+               return '';
+       }
+
+
+       /**
+        * Returns information about a file.
+        *
+        * @param string $fileIdentifier
+        * @param array  $propertiesToExtract Array of properties which are be extracted
+        *                                    If empty all will be extracted
+        * @return array
+        */
+       public function getFileInfoByIdentifier($fileIdentifier, array $propertiesToExtract = array()) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $this->normalizeIdentifier($fileIdentifier);
+               $metadata = $this->getMetaWithChildren($fileIdentifier);
+               $time = $this->getDate($metadata['modified']);
+
+               return array(
+                       'name' => basename($fileIdentifier),
+                       'identifier' => $fileIdentifier,
+                       'mtime' => $time,
+                       'ctime' => $time,
+                       'mimetype' => $metadata['mime_type'],
+                       'size' => $metadata['bytes'],
+                       'identifier_hash' => $this->hashIdentifier($fileIdentifier),
+                       'folder_hash' => $this->hashIdentifier(\TYPO3\CMS\Core\Utility\PathUtility::dirname($fileIdentifier)),
+                       'storage' => $this->storageUid
+               );
+       }
+
+
+       /**
+        * Checks if a file exists
+        *
+        * @param \string $identifier
+        * @return \bool
+        */
+       public function fileExists($identifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               if (substr($identifier, -1) === '/') {
+                       return FALSE;
+               }
+               return $this->objectExists($identifier);
+       }
+
+
+       /**
+        * Checks if a folder exists
+        *
+        * @param \string $identifier
+        * @return \boolean
+        */
+       public function folderExists($identifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               return $this->objectExists($identifier);
+       }
+
+
+       /**
+        * @param string $fileName
+        * @param string $folderIdentifier
+        * @return boolean
+        */
+       public function fileExistsInFolder($fileName, $folderIdentifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               return $this->objectExists($folderIdentifier . $fileName);
+       }
+
+
+       /**
+        * Checks if a folder exists inside a storage folder
+        *
+        * @param string $folderName
+        * @param string $folderIdentifier
+        * @return boolean
+        */
+       public function folderExistsInFolder($folderName, $folderIdentifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               return $this->objectExists($folderIdentifier . $folderName . '/');
+       }
+
+
+       /**
+        * @param string  $localFilePath  (within PATH_site)
+        * @param string  $targetFolderIdentifier
+        * @param string  $newFileName    optional, if not given original name is used
+        * @param boolean $removeOriginal if set the original file will be removed
+        *                                after successful operation
+        * @return string the identifier of the new file
+        * @throws \RuntimeException
+        */
+       public function addFile($localFilePath, $targetFolderIdentifier, $newFileName = '', $removeOriginal = TRUE) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $targetIdentifier = $targetFolderIdentifier . $newFileName;
+               $this->normalizeIdentifier($targetIdentifier);
+
+               $metaData = $this->adapter->uploadFile($localFilePath, $targetIdentifier);
+
+               if ($removeOriginal) {
+                       unlink($localFilePath);
+               }
+
+               if (!$metaData) {
+                       throw new \RuntimeException('Adding file ' . $localFilePath . ' at ' . $targetIdentifier . ' failed.');
+               }
+
+               return $targetIdentifier;
+       }
+
+
+       /**
+        * Moves a file *within* the current storage.
+        * Note that this is only about an inner-storage move action,
+        * where a file is just moved to another folder in the same storage.
+        *
+        * @param string $fileIdentifier
+        * @param string $targetFolderIdentifier
+        * @param string $newFileName
+        *
+        * @return string
+        */
+       public function moveFileWithinStorage($fileIdentifier, $targetFolderIdentifier, $newFileName) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $targetIdentifier = $targetFolderIdentifier . $newFileName;
+               $this->normalizeIdentifier($fileIdentifier);
+               $this->normalizeIdentifier($targetIdentifier);
+               $this->adapter->move($fileIdentifier, $targetIdentifier);
+               return $targetIdentifier;
+       }
+
+
+       /**
+        * Copies a file *within* the current storage.
+        * Note that this is only about an inner storage copy action,
+        * where a file is just copied to another folder in the same storage.
+        *
+        * @param string $fileIdentifier
+        * @param string $targetFolderIdentifier
+        * @param string $fileName
+        * @return string the Identifier of the new file
+        */
+       public function copyFileWithinStorage($fileIdentifier, $targetFolderIdentifier, $fileName) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $targetIdentifier = $targetFolderIdentifier . $fileName;
+               $this->normalizeIdentifier($targetIdentifier);
+               $this->normalizeIdentifier($fileIdentifier);
+               return $this->adapter->copy($fileIdentifier, $targetIdentifier) ? TRUE : FALSE;
+       }
+
+
+       /**
+        * Replaces a file with file in local file system.
+        *
+        * @param string $fileIdentifier
+        * @param string $localFilePath
+        * @return boolean TRUE if the operation succeeded
+        * @throws \RuntimeException
+        */
+       public function replaceFile($fileIdentifier, $localFilePath) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+
+               $this->normalizeIdentifier($fileIdentifier);
+               $metaData = $this->adapter->uploadFile($localFilePath, $fileIdentifier);
+               unlink($localFilePath);
+
+               if (!$metaData) {
+                       throw new \RuntimeException('Replacing file ' . $fileIdentifier . ' with ' . $localFilePath . ' failed.');
+               }
+               return TRUE;
+       }
+
+
+       /**
+        * Removes a file from the filesystem. This does not check if the file is
+        * still used or if it is a bad idea to delete it for some other reason
+        * this has to be taken care of in the upper layers (e.g. the Storage)!
+        *
+        * @param string $fileIdentifier
+        * @return boolean TRUE if deleting the file succeeded
+        */
+       public function deleteFile($fileIdentifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $this->normalizeIdentifier($identifier);
+               return $this->adapter->delete($identifier) ? TRUE : FALSE;
+       }
+
+
+       /**
+        * Removes a folder in filesystem.
+        *
+        * @param string  $folderIdentifier
+        * @param boolean $deleteRecursively
+        * @return boolean
+        */
+       public function deleteFolder($folderIdentifier, $deleteRecursively = FALSE) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $this->normalizeIdentifier($folderIdentifier);
+               return $this->adapter->delete($folderIdentifier) ? TRUE : FALSE;
+       }
+
+
+       /**
+        * Returns a path to a local copy of a file for processing it. When changing the
+        * file, you have to take care of replacing the current version yourself!
+        *
+        * @param string $fileIdentifier
+        * @param bool   $writable Set this to FALSE if you only need the file for read
+        *                         operations. This might speed up things, e.g. by using
+        *                         a cached local version. Never modify the file if you
+        *                         have set this flag!
+        * @return string The path to the file on the local disk
+        * @throws \RuntimeException
+        */
+       public function getFileForLocalProcessing($fileIdentifier, $writable = TRUE) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+
+               $this->normalizeIdentifier($fileIdentifier);
+               $temporaryPath = $this->getTemporaryPathForFile($fileIdentifier);
+
+               $metadata = $this->adapter->downloadFile($fileIdentifier, $temporaryPath);
+               if(!$metadata) {
+                       throw new \RuntimeException('Copying file ' . $fileIdentifier . ' to temporary path failed.', 1320577649);
+               }
+               return $temporaryPath;
+       }
+
+
+       /**
+        * Creates a new (empty) file and returns the identifier.
+        *
+        * @param string $fileName
+        * @param string $parentFolderIdentifier
+        * @return string
+        */
+       public function createFile($fileName, $parentFolderIdentifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $identifier = $parentFolderIdentifier . $fileName;
+               $this->createObject($identifier);
+               return $identifier;
+       }
+
+
+       /**
+        * Creates a folder, within a parent folder.
+        * If no parent folder is given, a root level folder will be created
+        *
+        * @param string  $newFolderName
+        * @param string  $parentFolderIdentifier
+        * @param boolean $recursive
+        * @return string the Identifier of the new folder
+        */
+       public function createFolder($newFolderName, $parentFolderIdentifier = '', $recursive = FALSE) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $newFolderName = trim($newFolderName, '/');
+               $identifier = $parentFolderIdentifier . $newFolderName;
+               $this->normalizeIdentifier($identifier);
+               $this->adapter->createFolder($identifier);
+               return $identifier;
+       }
+
+
+       /**
+        * Returns the contents of a file. Beware that this requires to load the
+        * complete file into memory and also may require fetching the file from an
+        * external location. So this might be an expensive operation (both in terms
+        * of processing resources and money) for large files.
+        *
+        * @param string $fileIdentifier
+        * @return string The file contents
+        */
+       public function getFileContents($fileIdentifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $localPath = $this->getFileForLocalProcessing($fileIdentifier);
+               return file_get_contents($localPath);
+       }
+
+
+       /**
+        * Sets the contents of a file to the specified value.
+        *
+        * @param string $fileIdentifier
+        * @param string $contents
+        * @return integer The number of bytes written to the file
+        */
+       public function setFileContents($fileIdentifier, $contents) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $this->normalizeIdentifier($fileIdentifier);
+               $metaData = $this->adapter->uploadFileFromString($fileIdentifier, $contents);
+               return $metaData['bytes'];
+       }
+
+
+       /**
+        * Renames a file in this storage.
+        *
+        * @param string $fileIdentifier
+        * @param string $newName The target path (including the file name!)
+        * @return string The identifier of the file after renaming
+        */
+       public function renameFile($fileIdentifier, $newName) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $newIdentifier = rtrim(GeneralUtility::fixWindowsFilePath(PathUtility::dirname($fileIdentifier)), '/') . '/' . $newName;
+               $this->normalizeIdentifier($newIdentifier);
+               $this->normalizeIdentifier($fileIdentifier);
+
+               $this->adapter->move($fileIdentifier, $newIdentifier);
+               return $newIdentifier;
+       }
+
+
+       /**
+        * Renames a folder in this storage.
+        *
+        * @param string $folderIdentifier
+        * @param string $newName
+        * @return array A map of old to new file identifiers of all affected resources
+        */
+       public function renameFolder($folderIdentifier, $newName) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $this->resetIdentifierMap();
+
+               $newIdentifier = PathUtility::dirname($folderIdentifier) . '/' . $newName;
+               $this->normalizeIdentifier($newIdentifier);
+               $this->normalizeIdentifier($folderIdentifier);
+
+               $this->adapter->move($folderIdentifier, $newIdentifier);
+               $this->createIdentifierMap($folderIdentifier, $newIdentifier);
+               return $this->identifierMap;
+       }
+
+
+       /**
+        * Folder equivalent to moveFileWithinStorage().
+        *
+        * @param string $sourceFolderIdentifier
+        * @param string $targetFolderIdentifier
+        * @param string $newFolderName
+        *
+        * @return array All files which are affected, map of old => new file identifiers
+        */
+       public function moveFolderWithinStorage($sourceFolderIdentifier, $targetFolderIdentifier, $newFolderName) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+
+               return $this->renameFolder($sourceFolderIdentifier, $newFolderName);
+       }
+
+
+       /**
+        * Folder equivalent to copyFileWithinStorage().
+        *
+        * @param string $sourceFolderIdentifier
+        * @param string $targetFolderIdentifier
+        * @param string $newFolderName
+        *
+        * @return boolean
+        */
+       public function copyFolderWithinStorage($sourceFolderIdentifier, $targetFolderIdentifier, $newFolderName) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+
+               $newIdentifier = $targetFolderIdentifier . $newFolderName . '/';
+               $this->normalizeIdentifier($newIdentifier);
+               $this->normalizeIdentifier($sourceFolderIdentifier);
+               return $this->adapter->copy($sourceFolderIdentifier, $newIdentifier) ? TRUE : FALSE;
+       }
+
+
+       /**
+        * Checks if a folder contains files and (if supported) other folders.
+        *
+        * @param string $folderIdentifier
+        * @return boolean TRUE if there are no files and folders within $folder
+        */
+       public function isFolderEmpty($folderIdentifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+
+               $isFolderEmpty = TRUE;
+               $response = $this->getMetaWithChildren($folderIdentifier);
+               if(is_array($response['contents']) && count($response['contents']) > 0) {
+                       $isFolderEmpty = FALSE;
+               }
+
+               return $isFolderEmpty;
+       }
+
+
+       /**
+        * Checks if a given identifier is within a container, e.g. if
+        * a file or folder is within another folder.
+        * This can e.g. be used to check for web-mounts.
+        *
+        * Hint: this also needs to return TRUE if the given identifier
+        * matches the container identifier to allow access to the root
+        * folder of a filemount.
+        *
+        * @param string $folderIdentifier
+        * @param string $identifier identifier to be checked against $folderIdentifier
+        * @return boolean TRUE if $content is within or matches $folderIdentifier
+        */
+       public function isWithin($folderIdentifier, $identifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+
+               $this->normalizeIdentifier($folderIdentifier);
+               $this->normalizeIdentifier($identifier);
+               if ($folderIdentifier === $identifier) {
+                       return TRUE;
+               }
+
+               return GeneralUtility::isFirstPartOfStr($identifier, $folderIdentifier);
+       }
+
+
+       /**
+        * Returns information about a file.
+        *
+        * @param string $folderIdentifier
+        * @return array
+        */
+       public function getFolderInfoByIdentifier($folderIdentifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               $this->normalizeIdentifier($folderIdentifier);
+
+               return array(
+                       'identifier' => $folderIdentifier,
+                       'name' => basename(rtrim($folderIdentifier, '/')),
+                       'storage' => $this->storageUid
+               );
+       }
+
+
+       /**
+        * Returns a list of files inside the specified path
+        *
+        * @param string  $folderIdentifier
+        * @param integer $start
+        * @param integer $numberOfItems
+        * @param boolean $recursive
+        * @param array   $filenameFilterCallbacks callbacks for filtering the items
+        *
+        * @return array of FileIdentifiers
+        * @toDo: Implement params
+        */
+       public function getFilesInFolder($folderIdentifier, $start = 0, $numberOfItems = 0, $recursive = FALSE, array $filenameFilterCallbacks = array()) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+
+               $files = array();
+
+               $response = $this->getMetaWithChildren($folderIdentifier);
+               if(is_array($response['contents'])) {
+                       foreach($response['contents'] as $file) {
+                               if(!$file['is_dir']) {
+                                       $relativePath = $this->getRelativePath($file['path']);
+                                       $files[$relativePath] = $relativePath;
+                               }
+                       }
+               }
+
+               return $files;
+       }
+
+
+       /**
+        * Returns a list of folders inside the specified path
+        *
+        * @param string  $folderIdentifier
+        * @param integer $start
+        * @param integer $numberOfItems
+        * @param boolean $recursive
+        * @param array   $folderNameFilterCallbacks callbacks for filtering the items
+        *
+        * @return array of Folder Identifier
+        * @toDo: Implement params
+        */
+       public function getFoldersInFolder($folderIdentifier, $start = 0, $numberOfItems = 0, $recursive = FALSE, array $folderNameFilterCallbacks = array()) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+
+               $folders = array();
+               $response = $this->getMetaWithChildren($folderIdentifier);
+               if(is_array($response['contents'])) {
+                       foreach($response['contents'] as $file) {
+                               if($file['is_dir'] && basename($file['path']) != $this->getProcessingFolder()) {
+                                       $relativePath = $this->getRelativePath($file['path']);
+                                       $folders[$relativePath] = $relativePath;
+                               }
+                       }
+               }
+
+               return $folders;
+       }
+
+
+       /**
+        * Directly output the contents of the file to the output
+        * buffer. Should not take care of header files or flushing
+        * buffer before. Will be taken care of by the Storage.
+        *
+        * @param string $identifier
+        * @return void
+        */
+       public function dumpFileContents($identifier) {
+               $this->normalizeIdentifier($identifier);
+               $localFile = $this->getFileForLocalProcessing($identifier);
+               readfile($localFile, 0);
+       }
+
+
+       /**
+        * Returns the permissions of a file/folder as an array
+        * (keys r, w) of boolean flags
+        *
+        * @param string $identifier
+        * @return array
+        */
+       public function getPermissions($identifier) {
+               if (self::DEBUG_MODE) { \TYPO3\CMS\Extbase\Utility\DebuggerUtility::var_dump(func_get_args(), 'Hello from ' . __METHOD__); }
+               return $this->getObjectPermissions($identifier);
+       }
+
+
+       /**
+        * Merges the capabilites merged by the user at the storage
+        * configuration into the actual capabilities of the driver
+        * and returns the result.
+        *
+        * @param integer $capabilities
+        *
+        * @return integer
+        */
+       public function mergeConfigurationCapabilities($capabilities) {
+               $this->capabilities &= $capabilities;
+               return $this->capabilities;
+       }
+
+
+
+
+
+
+       /*************************************************************/
+       /****************** Protected Helpers ************************/
+       /*************************************************************/
+
+
+       /**
+        * @return $this
+        */
+       protected function initializeAdapter() {
+               $this->basePath = '/' . trim($this->configuration['basePath'], '/');
+               $this->adapter = new \AUS\AusDriverDropbox\Utility\DropboxAdapter($this->configuration['authCode'], $this->basePath);
+       }
+
+
+       /**
+        * Checks if an object exists
+        *
+        * @param \string $identifier
+        * @return \boolean
+        */
+       protected function objectExists($identifier) {
+               return ($this->getMetaWithChildren($identifier) ? TRUE : FALSE);
+       }
+
+
+       /**
+        * getMetaWithChildren
+        *
+        * @param $identifier
+        * @return mixed
+        */
+       protected function getMetaWithChildren($identifier) {
+               $this->normalizeIdentifier($identifier);
+               if (!is_array($this->objectMetaWithChildrenCache[$identifier])) {
+                       $this->objectMetaWithChildrenCache[$identifier] = $this->adapter->getMetadataWithChildren($identifier);
+               }
+               return $this->objectMetaWithChildrenCache[$identifier];
+       }
+
+
+       /**
+        * Call after rename
+        *
+        * @param $oldIdentifierFolder
+        * @param $newIdentifierFolder
+        * @return void
+        */
+       protected function createIdentifierMap($oldIdentifierFolder, $newIdentifierFolder) {
+               $meta = $this->getMetaWithChildren($newIdentifierFolder);
+
+               $relativePathOld = $this->getRelativePath($oldIdentifierFolder);
+               $relativePathNew = $this->getRelativePath($newIdentifierFolder);
+               $this->normalizeIdentifier($relativePathOld);
+               $this->normalizeIdentifier($relativePathNew);
+               $this->identifierMap[$relativePathOld] = $relativePathNew;
+
+               if(is_array($meta['contents'])) {
+                       foreach($meta['contents'] as $file) {
+                               $fileName = '/' . basename($file['path']);
+                               if($file['is_dir']) {
+                                       $this->createIdentifierMap($relativePathOld . $fileName, $relativePathNew . $fileName);
+                               }else{
+                                       $this->identifierMap[$relativePathOld . $fileName] = $relativePathNew . $fileName;
+                               }
+                       }
+               }
+       }
+
+
+       /**
+        * @param string $identifier
+        * @return mixed
+        */
+       protected function getObjectPermissions($identifier) {
+               return $permissions = array('r' => TRUE, 'w' => TRUE);
+       }
+
+
+       /**
+        * @return void
+        */
+       protected function resetIdentifierMap(){
+               $this->identifierMap = array();
+       }
+
+
+       /**
+        * @param \string &$identifier
+        */
+       protected function normalizeIdentifier(&$identifier) {
+               $identifier = trim($identifier, '/');
+               if($identifier != ''){
+                       $identifier = '/' . $identifier;
+               }
+       }
+
+
+       /**
+        * @param $identifier
+        * @return string
+        */
+       protected function getRelativePath($identifier){
+               if(GeneralUtility::isFirstPartOfStr($identifier, $this->basePath)){
+                       $identifier = substr($identifier, strlen($this->basePath));
+               }
+               return $identifier;
+       }
+
+
+       /**
+        * @return ResourceStorage
+        */
+       protected function getStorage(){
+               if(!$this->storage){
+                       /** @var $storageRepository \TYPO3\CMS\Core\Resource\StorageRepository */
+                       $storageRepository = GeneralUtility::makeInstance('TYPO3\CMS\Core\Resource\StorageRepository');
+                       $this->storage = $storageRepository->findByUid($this->storageUid);
+               }
+               return $this->storage;
+       }
+
+
+       /**
+        * getProcessingFolder
+        *
+        * @return string
+        */
+       protected function getProcessingFolder(){
+               if(!$this->processingFolder){
+                       $confProcessingFolder = $this->getStorage()->getProcessingFolder()->getName();
+                       $this->processingFolder = $confProcessingFolder ? $confProcessingFolder : $this->processingFolderDefault;
+               }
+               return $this->processingFolder;
+       }
+
+
+       /**
+        * Parse date to unix from dropbox string format
+        *
+        * @param $dateString
+        * @return int
+        */
+       protected function getDate($dateString) {
+               $dateArr = strptime($dateString, '%a, %d %b %Y %H:%M:%S %z');
+               return mktime($dateArr['tm_hour'], $dateArr['tm_min'], $dateArr['tm_sec'], $dateArr['tm_mon']+1, $dateArr['tm_mday'], $dateArr['tm_year']+1900);
+       }
+
+}
diff --git a/Classes/Utility/AutoLoader.php b/Classes/Utility/AutoLoader.php
new file mode 100644 (file)
index 0000000..b1e2ee9
--- /dev/null
@@ -0,0 +1,51 @@
+<?php
+namespace AUS\AusDriverDropbox\Utility;
+
+use AUS\AusDriverDropbox\Driver\DropboxDriver;
+
+/***************************************************************
+ *  Copyright notice
+ *
+ *  (c) 2014 Markus Hölzle <m.hoelzle@andersundsehr.com>, anders und sehr GmbH
+ *  All rights reserved
+ ***************************************************************/
+
+/**
+ * Class AutoLoader
+ *
+ * @package AUS\AusDriverDropbox\Utility
+ */
+class AutoLoader implements \TYPO3\CMS\Core\SingletonInterface {
+
+
+       /**
+        * register the dropbox autoLoader
+        */
+       public static function registerAutoLoader(){
+               spl_autoload_register(array('\AUS\AusDriverDropbox\Utility\AutoLoader', 'autoload'));
+       }
+
+
+       /**
+        * autoLoader for spl_autoload_register().
+        *
+        * @param $className
+        */
+       public static function autoload($className)
+       {
+               // If the name doesn't start with "Dropbox\", then its not once of our classes.
+               if (\substr_compare($className, 'Dropbox\\', 0, 8) !== 0) return;
+
+               // Take the "Dropbox\" prefix off.
+               $stem = \substr($className, 8);
+
+               // Convert "\" and "_" to path separators.
+               $pathifiedStem = \str_replace(array("\\", "_"), '/', $stem);
+
+               $path = \TYPO3\CMS\Core\Utility\ExtensionManagementUtility::extPath(DropboxDriver::EXTENSION_KEY) . 'Resources/PHP/Dropbox/' . $pathifiedStem . ".php";
+               if (\is_file($path)) {
+                       require_once $path;
+               }
+       }
+
+}
diff --git a/Classes/Utility/DropboxAdapter.php b/Classes/Utility/DropboxAdapter.php
new file mode 100644 (file)
index 0000000..7aa3c31
--- /dev/null
@@ -0,0 +1,228 @@
+<?php
+namespace AUS\AusDriverDropbox\Utility;
+
+use AUS\AusDriverDropbox\Driver\DropboxDriver;
+use TYPO3\CMS\Core\Utility\GeneralUtility;
+
+/***************************************************************
+ *  Copyright notice
+ *
+ *  (c) 2014 Markus Hölzle <m.hoelzle@andersundsehr.com>, anders und sehr GmbH
+ *  All rights reserved
+ ***************************************************************/
+
+/**
+ * Class DropboxAdapter
+ *
+ * @package AUS\AusDriverDropbox\Utility
+ */
+class DropboxAdapter implements \TYPO3\CMS\Core\SingletonInterface {
+
+
+       const DROPBOX_APP_KEY = 'vuzko45113jezpg';
+       const DROPBOX_APP_SECRET = '90gk6p7j52i8izx';
+
+
+       /**
+        * @var string
+        */
+       protected $basePath;
+
+       /**
+        * @var array
+        */
+       protected $publicUrlCache;
+
+       /**
+        * @var \Dropbox\Client
+        */
+       protected $dbxClient;
+
+
+
+       /**
+        * @param string $authCode
+        * @param string $basePath
+        */
+       public function __construct($authCode, $basePath) {
+               $this->basePath = $basePath;
+               $this->initCache();
+               $this->initDropboxClient($authCode);
+       }
+
+
+       /**
+        * __destruct
+        */
+       public function __destruct(){
+               $this->persistCache();
+       }
+
+
+       /**
+        * @return string
+        */
+       public static function getClientIdentifier(){
+               return 'TYPO3-FAL-aus_driver_dropbox/' . \TYPO3\CMS\Core\Utility\ExtensionManagementUtility::getExtensionVersion(DropboxDriver::EXTENSION_KEY);
+       }
+
+
+       /**
+        * @param string $identifier
+        * @param string $targetIdentifier
+        * @return array|null The metadata
+        */
+       public function downloadFile($identifier, $targetIdentifier) {
+               $fd = fopen($targetIdentifier, 'wb');
+               $metadata = $this->dbxClient->getFile($this->getAbsolutePath($identifier), $fd);
+               fclose($fd);
+               return $metadata;
+       }
+
+
+       /**
+        * @param string $localIdentifier
+        * @param string $targetIdentifier
+        * @return array|null The metadata object for the file/folder.
+        */
+       public function uploadFile($localIdentifier, $targetIdentifier) {
+               $fd = fopen($localIdentifier, 'rb');
+               $metaData = $this->dbxClient->uploadFile($this->getAbsolutePath($targetIdentifier), \Dropbox\WriteMode::force(), $fd);
+               fclose($fd);
+               return $metaData;
+       }
+
+
+       /**
+        * @param string $identifier
+        * @param string $string
+        * @return array|null The metadata object for the file/folder.
+        */
+       public function uploadFileFromString($identifier, $string) {
+               return $this->dbxClient->uploadFileFromString($this->getAbsolutePath($identifier), \Dropbox\WriteMode::force(), $string);
+       }
+
+
+       /**
+        * @param string $identifier
+        * @return array|null The metadata object for the file/folder.
+        */
+       public function createFolder($identifier) {
+               return $this->dbxClient->createFolder($this->getAbsolutePath($identifier));
+       }
+
+
+       /**
+        * @param string $oldIdentifier
+        * @param string $newIdentifier
+        * @return array|null The metadata object for the file/folder.
+        */
+       public function move($oldIdentifier, $newIdentifier) {
+               return $this->dbxClient->move($this->getAbsolutePath($oldIdentifier), $this->getAbsolutePath($newIdentifier));
+       }
+
+
+       /**
+        * @param string $oldIdentifier
+        * @param string $newIdentifier
+        * @return array|null The metadata object for the file/folder.
+        */
+       public function copy($oldIdentifier, $newIdentifier) {
+               return $this->dbxClient->copy($this->getAbsolutePath($oldIdentifier), $this->getAbsolutePath($newIdentifier));
+       }
+
+
+       /**
+        * @param string $identifier
+        * @return array|null The metadata object for the file/folder.
+        */
+       public function delete($identifier) {
+               return $this->dbxClient->delete($this->getAbsolutePath($identifier));
+       }
+
+
+       /**
+        * @param string $identifier
+        * @return array|null The metadata object for the file/folder.
+        */
+       public function getMetadataWithChildren($identifier) {
+               return $this->dbxClient->getMetadataWithChildren($this->getAbsolutePath($identifier));
+       }
+
+
+       /**
+        * @param string $identifier
+        * @return string The public URL
+        */
+       public function getPublicUrl($identifier) {
+               $identifier = $this->getAbsolutePath($identifier);
+               if(!isset($this->publicUrlCache[$identifier])
+                       || !is_array($this->publicUrlCache[$identifier])
+                       || $this->publicUrlCache[$identifier][1] <= (new \DateTime()) ){
+                       $this->publicUrlCache[$identifier] = $this->dbxClient->createTemporaryDirectLink($identifier);
+               }
+               return $this->publicUrlCache[$identifier][0];
+       }
+
+
+
+
+
+
+
+
+
+       /*************************************************************/
+       /****************** Protected Helpers ************************/
+       /*************************************************************/
+
+
+       /**
+        * @param $authCode
+        */
+       protected function initDropboxClient($authCode) {
+               if($authCode){
+                       list($accessToken, $dropboxUserId) = unserialize(base64_decode($authCode));
+                       if($accessToken && $dropboxUserId){
+                               $this->dbxClient = new \Dropbox\Client($accessToken, self::getClientIdentifier());
+                       }
+               }
+       }
+
+
+       /**
+        * @param $identifier
+        * @return string
+        */
+       protected function getAbsolutePath($identifier){
+               if(!GeneralUtility::isFirstPartOfStr($identifier, $this->basePath)){
+                       $identifier = $this->basePath . $identifier;
+               }
+               return $identifier;
+       }
+
+
+       /**
+        * @return $this
+        */
+       protected function initCache() {
+               $cache = GeneralUtility::makeInstance('TYPO3\\CMS\\Core\\Cache\\CacheManager')->getCache('ausdriverdropbox_cache');
+               $cachedObjects = $cache->get('ausdriverdropbox_driver_caches');
+               if($cachedObjects){
+                       $this->publicUrlCache = $cachedObjects['publicUrlCache'];
+               }
+               return $this;
+       }
+
+
+       /**
+        * @return void
+        */
+       protected function persistCache(){
+               $cache = GeneralUtility::makeInstance('TYPO3\\CMS\\Core\\Cache\\CacheManager')->getCache('ausdriverdropbox_cache');
+               $cache->set('ausdriverdropbox_driver_caches', array(
+                       'publicUrlCache' => $this->publicUrlCache,
+               ), array('ausdriverdropbox_driver_caches'));
+       }
+
+}
diff --git a/Classes/Utility/FlexFormUtility.php b/Classes/Utility/FlexFormUtility.php
new file mode 100644 (file)
index 0000000..75c9e3c
--- /dev/null
@@ -0,0 +1,57 @@
+<?php
+namespace AUS\AusDriverDropbox\Utility;
+
+use \AUS\AusDriverDropbox\Driver\DropboxDriver;
+use \TYPO3\CMS\Core\Utility\GeneralUtility;
+use \TYPO3\CMS\Extbase\Utility\LocalizationUtility;
+
+/***************************************************************
+ *  Copyright notice
+ *
+ *  (c) 2014 Markus Hölzle <m.hoelzle@andersundsehr.com>, anders und sehr GmbH
+ *  All rights reserved
+ ***************************************************************/
+
+/**
+ * Class FlexFormUtility
+ *
+ * @package AUS\AusDriverDropbox\Utility
+ */
+class FlexFormUtility implements \TYPO3\CMS\Core\SingletonInterface {
+
+
+       /**
+        * @return FlexFormUtility
+        */
+       public function __construct() {
+               \AUS\AusDriverDropbox\Utility\AutoLoader::registerAutoLoader();
+       }
+
+
+       /**
+        * @param $PA
+        * @param $fObj
+        */
+       public function authorize($PA, $fObj) {
+               $config = GeneralUtility::xml2array($PA['row']['configuration']);
+               $authCode = $config['data']['sDEF']['lDEF']['authCode']['vDEF'];
+               $localLangPath = 'LLL:EXT:' . DropboxDriver::EXTENSION_KEY . '/Resources/Private/Language/locallang_be.xlf:';
+
+               $appInfo = new \Dropbox\AppInfo(DropboxAdapter::DROPBOX_APP_KEY, DropboxAdapter::DROPBOX_APP_SECRET);
+               $webAuth = new \Dropbox\WebAuthNoRedirect($appInfo, DropboxAdapter::getClientIdentifier());
+
+               try{
+                       $res = $webAuth->finish($authCode);
+                       $config['data']['sDEF']['lDEF']['authCode']['vDEF'] = base64_encode(serialize($res));
+                       $GLOBALS['TYPO3_DB']->exec_UPDATEquery('sys_file_storage', 'uid = ' . $PA['row']['uid'], array('configuration' => GeneralUtility::array2xml_cs($config, 'T3FlexForms')));
+                       $PA['item'] = '<div style="font-weight: bold; color: green; padding: 10px;">' . LocalizationUtility::translate($localLangPath . 'driverConfiguration.authCode.success', '') . '</div>';
+               }catch (\Exception $e){}
+
+               $PA['item'] = '<ol>
+                       <li>' . LocalizationUtility::translate($localLangPath . 'driverConfiguration.authCode.tutorial1', '') . ' <a target="_blank" href="' . $webAuth->start() . '">' . LocalizationUtility::translate($localLangPath . 'driverConfiguration.authCode.tutorial1_linkText', '') . '</a></li>
+                       <li>' . LocalizationUtility::translate($localLangPath . 'driverConfiguration.authCode.tutorial2', '') . '</li>
+                       <li>' . LocalizationUtility::translate($localLangPath . 'driverConfiguration.authCode.tutorial3', '') . '</li>
+               </ol>' . $PA['item'];
+       }
+
+}
diff --git a/Configuration/FlexForm/DropboxDriverFlexForm.xml b/Configuration/FlexForm/DropboxDriverFlexForm.xml
new file mode 100644 (file)
index 0000000..abeffaf
--- /dev/null
@@ -0,0 +1,36 @@
+<?xml version="1.0" encoding="utf-8"?>
+<T3DataStructure>
+       <meta>
+               <langDisable>1</langDisable>
+       </meta>
+       <ROOT>
+               <type>array</type>
+               <el>
+                       <authCode>
+                               <TCEforms>
+                                       <label>LLL:EXT:aus_driver_dropbox/Resources/Private/Language/locallang_be.xlf:driverConfiguration.authCode</label>
+                                       <config>
+                                               <type>input</type>
+                                               <size>30</size>
+                                               <eval>password</eval>
+                                               <wizards>
+                                                       <specialWizard>
+                                                               <type>userFunc</type>
+                                                               <userFunc>AUS\AusDriverDropbox\Utility\FlexFormUtility->authorize</userFunc>
+                                                       </specialWizard>
+                                               </wizards>
+                                       </config>
+                               </TCEforms>
+                       </authCode>
+                       <basePath>
+                               <TCEforms>
+                                       <label>LLL:EXT:aus_driver_dropbox/Resources/Private/Language/locallang_be.xlf:driverConfiguration.basePath</label>
+                                       <config>
+                                               <type>input</type>
+                                               <size>30</size>
+                                       </config>
+                               </TCEforms>
+                       </basePath>
+               </el>
+       </ROOT>
+</T3DataStructure>
\ No newline at end of file
diff --git a/Documentation/AdministratorManual/Index.rst b/Documentation/AdministratorManual/Index.rst
new file mode 100644 (file)
index 0000000..4421505
--- /dev/null
@@ -0,0 +1,48 @@
+.. ==================================================
+.. FOR YOUR INFORMATION
+.. --------------------------------------------------
+.. -*- coding: utf-8 -*- with BOM.
+
+.. include:: ../Includes.txt
+
+
+.. _admin-manual:
+
+Administrator Manual
+====================
+
+Installation
+------------
+
+Add a new file storage with the "Dropbox" driver to root page (pid = 0).
+
+Target group: **Administrators**
+
+.. figure:: ../Images/aus_driver_dropbox-storage_config_blank.png
+       :alt: Dropbox storage config
+
+
+Dropbox authentication
+----------------------
+
+Follow the instructions (see above) to connect your Dropbox account with TYPO3 CMS:
+
+1. Click on the link
+2. Click "Allow" (you might have to log in first)
+3. Copy the authorization code and paste to the field
+
+After saving the storage settings, you should see the following success message:
+
+.. figure:: ../Images/aus_driver_dropbox-storage_config_success.png
+       :alt: Dropbox storage config
+
+       If you do not see this message, something went wrong.
+
+
+
+
+
+Base path:
+^^^^^^^^^^
+
+The base path is the directory in your Dropbox, which will be used by this driver.
diff --git a/Documentation/Images/aus_driver_dropbox-storage_config_blank.png b/Documentation/Images/aus_driver_dropbox-storage_config_blank.png
new file mode 100644 (file)
index 0000000..d88d7c8
Binary files /dev/null and b/Documentation/Images/aus_driver_dropbox-storage_config_blank.png differ
diff --git a/Documentation/Images/aus_driver_dropbox-storage_config_success.png b/Documentation/Images/aus_driver_dropbox-storage_config_success.png
new file mode 100644 (file)
index 0000000..4dac86a
Binary files /dev/null and b/Documentation/Images/aus_driver_dropbox-storage_config_success.png differ
diff --git a/Documentation/Images/aus_driver_dropbox-storagelist.png b/Documentation/Images/aus_driver_dropbox-storagelist.png
new file mode 100644 (file)
index 0000000..186ff50
Binary files /dev/null and b/Documentation/Images/aus_driver_dropbox-storagelist.png differ
diff --git a/Documentation/Includes.txt b/Documentation/Includes.txt
new file mode 100644 (file)
index 0000000..8ef89a7
--- /dev/null
@@ -0,0 +1,21 @@
+.. ==================================================
+.. FOR YOUR INFORMATION
+.. --------------------------------------------------
+.. -*- coding: utf-8 -*- with BOM.
+
+.. This is 'Includes.txt'. It is included at the very top of each and
+   every ReST source file in this documentation project (= manual).
+
+
+.. ==================================================
+.. DEFINE SOME TEXT ROLES
+.. --------------------------------------------------
+
+.. role::   typoscript(code)
+
+.. role::   ts(typoscript)
+   :class:  typoscript
+
+.. role::   php(code)
+
+.. highlight:: php
diff --git a/Documentation/Index.rst b/Documentation/Index.rst
new file mode 100644 (file)
index 0000000..4cef52f
--- /dev/null
@@ -0,0 +1,60 @@
+.. ==================================================
+.. FOR YOUR INFORMATION
+.. --------------------------------------------------
+.. -*- coding: utf-8 -*- with BOM.
+
+.. include:: Includes.txt
+
+
+.. _start:
+
+=============================================================
+anders und sehr: Dropbox FAL driver (CDN)
+=============================================================
+
+.. only:: html
+
+       :Classification:
+               aus_driver_dropbox
+
+       :Version:
+               |release|
+
+       :Language:
+               en
+
+       :Description:
+               Provides a FAL driver for Dropbox.
+
+       :Keywords:
+               dropbox, fal, driver, cdn, downloads
+
+       :Copyright:
+               2014
+
+       :Author:
+               Markus Hölzle
+
+       :Email:
+               typo3@markus-hoelzle.de
+
+       :License:
+               This document is published under the Open Content License
+               available from http://www.opencontent.org/opl.shtml
+
+       :Rendered:
+               |today|
+
+       The content of this document is related to TYPO3,
+       a GNU/GPL CMS/Framework available from `www.typo3.org <http://www.typo3.org/>`_.
+
+
+       **Table of Contents**
+
+.. toctree::
+       :maxdepth: 5
+       :titlesonly:
+       :glob:
+
+       Introduction/Index
+       AdministratorManual/Index
diff --git a/Documentation/Introduction/Index.rst b/Documentation/Introduction/Index.rst
new file mode 100644 (file)
index 0000000..e63d056
--- /dev/null
@@ -0,0 +1,25 @@
+.. ==================================================
+.. FOR YOUR INFORMATION
+.. --------------------------------------------------
+.. -*- coding: utf-8 -*- with BOM.
+
+.. include:: ../Includes.txt
+
+
+What does it do?
+================
+
+This is a driver for the file abstraction layer (FAL) to support Dropbox.
+
+You can create a file storage which allows you to upload/download and link the files to Dropbox. So you can upload your files in the TYPO3 CMS backend to Dropbox and link them in the frontend. Website visitor download the files from paths like \https://dl.dropboxusercontent.com/1/view/iwojriojfiajsdfj/fileadmin/big-file.iso
+
+It also supports the TYPO3 CMS image rendering but it is not recommended because the Dropbox API isn't very fast with processing the files.
+
+Requires TYPO3 CMS 6.2
+
+
+.. figure:: ../Images/aus_driver_dropbox-storagelist.png
+       :alt: Filelist
+
+       Two storages are installed here
+
diff --git a/Documentation/Settings.yml b/Documentation/Settings.yml
new file mode 100644 (file)
index 0000000..50cac8b
--- /dev/null
@@ -0,0 +1,31 @@
+# This is the project specific Settings.yml file.
+# Place Sphinx specific build information here.
+# Settings given here will replace the settings of 'conf.py'.
+
+---
+conf.py:
+  copyright: 2014
+  project: Dropbox FAL driver
+  version: 1.0
+  release: 1.0.0
+  latex_documents:
+  - - Index
+    - aus_driver_dropbox.tex
+    - Dropbox FAL driver
+    - Markus Hölzle
+    - manual
+  latex_elements:
+    papersize: a4paper
+    pointsize: 10pt
+    preamble: \usepackage{typo3}
+  intersphinx_mapping:
+    t3tsref:
+    - http://docs.typo3.org/typo3cms/TyposcriptReference/
+    - null
+    t3start:
+    - http://docs.typo3.org/typo3cms/GettingStartedTutorial/
+    - null
+    t3editors:
+    - http://docs.typo3.org/typo3cms/EditorsTutorial/
+    - null
+...
diff --git a/Resources/PHP/Dropbox/AppInfo.php b/Resources/PHP/Dropbox/AppInfo.php
new file mode 100644 (file)
index 0000000..8281066
--- /dev/null
@@ -0,0 +1,238 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Your app's API key and secret.
+ */
+final class AppInfo
+{
+    /**
+     * Your Dropbox <em>app key</em> (OAuth calls this the <em>consumer key</em>).  You can
+     * create an app key and secret on the <a href="http://dropbox.com/developers/apps">Dropbox developer website</a>.
+     *
+     * @return string
+     */
+    function getKey() { return $this->key; }
+
+    /** @var string */
+    private $key;
+
+    /**
+     * Your Dropbox <em>app secret</em> (OAuth calls this the <em>consumer secret</em>).  You can
+     * create an app key and secret on the <a href="http://dropbox.com/developers/apps">Dropbox developer website</a>.
+     *
+     * Make sure that this is kept a secret.  Someone with your app secret can impesonate your
+     * application.  People sometimes ask for help on the Dropbox API forums and
+     * copy/paste code that includes their app secret.  Do not do that.
+     *
+     * @return string
+     */
+    function getSecret() { return $this->secret; }
+
+    /** @var string */
+    private $secret;
+
+    /**
+     * The set of servers your app will use.  This defaults to the standard Dropbox servers
+     * {@link Host::getDefault}.
+     *
+     * @return Host
+     *
+     * @internal
+     */
+    function getHost() { return $this->host; }
+
+    /** @var Host */
+    private $host;
+
+    /**
+     * Constructor.
+     *
+     * @param string $key
+     *    See {@link getKey()}
+     * @param string $secret
+     *    See {@link getSecret()}
+     */
+    function __construct($key, $secret)
+    {
+        self::checkKeyArg($key);
+        self::checkSecretArg($secret);
+
+        $this->key = $key;
+        $this->secret = $secret;
+
+        // The $host parameter is sort of internal.  We don't include it in the param list because
+        // we don't want it to be included in the documentation.  Use PHP arg list hacks to get at
+        // it.
+        $host = null;
+        if (\func_num_args() == 3) {
+            $host = \func_get_arg(2);
+            Host::checkArgOrNull("host", $host);
+        }
+        if ($host === null) {
+            $host = Host::getDefault();
+        }
+        $this->host = $host;
+    }
+
+    /**
+     * Loads a JSON file containing information about your app. At a minimum, the file must include
+     * the "key" and "secret" fields.  Run 'php authorize.php' in the examples directory
+     * for details about what this file should look like.
+     *
+     * @param string $path
+     *    Path to a JSON file
+     *
+     * @return AppInfo
+     *
+     * @throws AppInfoLoadException
+     */
+    static function loadFromJsonFile($path)
+    {
+        list($rawJson, $appInfo) = self::loadFromJsonFileWithRaw($path);
+        return $appInfo;
+    }
+
+    /**
+     * Loads a JSON file containing information about your app. At a minimum, the file must include
+     * the "key" and "secret" fields.  Run 'php authorize.php' in the examples directory
+     * for details about what this file should look like.
+     *
+     * @param string $path
+     *    Path to a JSON file
+     *
+     * @return array
+     *    A list of two items.  The first is a PHP array representation of the raw JSON, the second
+     *    is an AppInfo object that is the parsed version of the JSON.
+     *
+     * @throws AppInfoLoadException
+     *
+     * @internal
+     */
+    static function loadFromJsonFileWithRaw($path)
+    {
+        if (!file_exists($path)) {
+            throw new AppInfoLoadException("File doesn't exist: \"$path\"");
+        }
+
+        $str = file_get_contents($path);
+        $jsonArr = json_decode($str, TRUE);
+
+        if (is_null($jsonArr)) {
+            throw new AppInfoLoadException("JSON parse error: \"$path\"");
+        }
+
+        $appInfo = self::loadFromJson($jsonArr);
+
+        return array($jsonArr, $appInfo);
+    }
+
+    /**
+     * Parses a JSON object to build an AppInfo object.  If you would like to load this from a file,
+     * use the loadFromJsonFile() method.
+     *
+     * @param array $jsonArr Output from json_decode($str, TRUE)
+     *
+     * @return AppInfo
+     *
+     * @throws AppInfoLoadException
+     */
+    static function loadFromJson($jsonArr)
+    {
+        if (!is_array($jsonArr)) {
+            throw new AppInfoLoadException("Expecting JSON object, got something else");
+        }
+
+        $requiredKeys = array("key", "secret");
+        foreach ($requiredKeys as $key) {
+            if (!array_key_exists($key, $jsonArr)) {
+                throw new AppInfoLoadException("Missing field \"$key\"");
+            }
+
+            if (!is_string($jsonArr[$key])) {
+                throw new AppInfoLoadException("Expecting field \"$key\" to be a string");
+            }
+        }
+
+        // Check app_key and app_secret
+        $appKey = $jsonArr["key"];
+        $appSecret = $jsonArr["secret"];
+
+        $tokenErr = self::getTokenPartError($appKey);
+        if (!is_null($tokenErr)) {
+            throw new AppInfoLoadException("Field \"key\" doesn't look like a valid app key: $tokenErr");
+        }
+
+        $tokenErr = self::getTokenPartError($appSecret);
+        if (!is_null($tokenErr)) {
+            throw new AppInfoLoadException("Field \"secret\" doesn't look like a valid app secret: $tokenErr");
+        }
+
+        // Check for the optional 'host' field
+        if (!array_key_exists('host', $jsonArr)) {
+            $host = null;
+        }
+        else {
+            $baseHost = $jsonArr["host"];
+            if (!is_string($baseHost)) {
+                throw new AppInfoLoadException("Optional field \"host\" must be a string");
+            }
+
+            $api = "api-$baseHost";
+            $content = "api-content-$baseHost";
+            $web = "meta-$baseHost";
+
+            $host = new Host($api, $content, $web);
+        }
+
+        return new AppInfo($appKey, $appSecret, $host);
+    }
+
+    /**
+     * Use this to check that a function argument is of type <code>AppInfo</code>
+     *
+     * @internal
+     */
+    static function checkArg($argName, $argValue)
+    {
+        if (!($argValue instanceof self)) Checker::throwError($argName, $argValue, __CLASS__);
+    }
+
+    /**
+     * Use this to check that a function argument is either <code>null</code> or of type
+     * <code>AppInfo</code>.
+     *
+     * @internal
+     */
+    static function checkArgOrNull($argName, $argValue)
+    {
+        if ($argValue === null) return;
+        if (!($argValue instanceof self)) Checker::throwError($argName, $argValue, __CLASS__);
+    }
+
+    /** @internal */
+    static function getTokenPartError($s)
+    {
+        if ($s === null) return "can't be null";
+        if (strlen($s) === 0) return "can't be empty";
+        if (strstr($s, ' ')) return "can't contain a space";
+        return null;  // 'null' means "no error"
+    }
+
+    /** @internal */
+    static function checkKeyArg($key)
+    {
+        $error = self::getTokenPartError($key);
+        if ($error === null) return;
+        throw new \InvalidArgumentException("Bad 'key': \"$key\": $error.");
+    }
+
+    /** @internal */
+    static function checkSecretArg($secret)
+    {
+        $error = self::getTokenPartError($secret);
+        if ($error === null) return;
+        throw new \InvalidArgumentException("Bad 'secret': \"$secret\": $error.");
+    }
+
+}
diff --git a/Resources/PHP/Dropbox/AppInfoLoadException.php b/Resources/PHP/Dropbox/AppInfoLoadException.php
new file mode 100644 (file)
index 0000000..1c019be
--- /dev/null
@@ -0,0 +1,18 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Thrown by the <code>AppInfo::loadXXX</code> methods if something goes wrong.
+ */
+final class AppInfoLoadException extends \Exception
+{
+    /**
+     * @param string $message
+     *
+     * @internal
+     */
+    function __construct($message)
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/ArrayEntryStore.php b/Resources/PHP/Dropbox/ArrayEntryStore.php
new file mode 100644 (file)
index 0000000..18bdf55
--- /dev/null
@@ -0,0 +1,61 @@
+<?php
+namespace Dropbox;
+
+/**
+ * A class that gives get/put/clear access to a single entry in an array.
+ */
+class ArrayEntryStore implements ValueStore
+{
+    /** @var array */
+    private $array;
+
+    /** @var mixed */
+    private $key;
+
+    /**
+     * Constructor.
+     *
+     * @param array $array
+     *    The array that we'll be accessing.
+     *
+     * @param mixed $key
+     *    The key for the array element we'll be accessing.
+     */
+    function __construct(&$array, $key)
+    {
+        $this->array = &$array;
+        $this->key = $key;
+    }
+
+    /**
+     * Returns the entry's current value or <code>null</code> if nothing is set.
+     *
+     * @return object
+     */
+    function get()
+    {
+        if (isset($this->array[$this->key])) {
+            return $this->array[$this->key];
+        } else {
+            return null;
+        }
+    }
+
+    /**
+     * Set the array entry to the given value.
+     *
+     * @param object $value
+     */
+    function set($value)
+    {
+        $this->array[$this->key] = $value;
+    }
+
+    /**
+     * Clear the entry.
+     */
+    function clear()
+    {
+        unset($this->array[$this->key]);
+    }
+}
diff --git a/Resources/PHP/Dropbox/AuthBase.php b/Resources/PHP/Dropbox/AuthBase.php
new file mode 100644 (file)
index 0000000..15f2d3b
--- /dev/null
@@ -0,0 +1,75 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Base class for API authorization-related classes.
+ */
+class AuthBase
+{
+    /**
+     * Whatever AppInfo was passed into the constructor.
+     *
+     * @return AppInfo
+     */
+    function getAppInfo() { return $this->appInfo; }
+
+    /** @var AppInfo */
+    protected $appInfo;
+
+    /**
+     * An identifier for the API client, typically of the form "Name/Version".
+     * This is used to set the HTTP <code>User-Agent</code> header when making API requests.
+     * Example: <code>"PhotoEditServer/1.3"</code>
+     *
+     * If you're the author a higher-level library on top of the basic SDK, and the
+     * "Photo Edit" app's server code is using your library to access Dropbox, you should append
+     * your library's name and version to form the full identifier.  For example,
+     * if your library is called "File Picker", you might set this field to:
+     * <code>"PhotoEditServer/1.3 FilePicker/0.1-beta"</code>
+     *
+     * The exact format of the <code>User-Agent</code> header is described in
+     * <a href="http://tools.ietf.org/html/rfc2616#section-3.8">section 3.8 of the HTTP specification</a>.
+     *
+     * Note that underlying HTTP client may append other things to the <code>User-Agent</code>, such as
+     * the name of the library being used to actually make the HTTP request (such as cURL).
+     *
+     * @return string
+     */
+    function getClientIdentifier() { return $this->clientIdentifier; }
+
+    /** @var string */
+    protected $clientIdentifier;
+
+    /**
+     * The locale of the user of your application.  Some API calls return localized
+     * data and error messages; this "user locale" setting determines which locale
+     * the server should use to localize those strings.
+     *
+     * @return null|string
+     */
+    function getUserLocale() { return $this->userLocale; }
+
+    /** @var string */
+    protected $userLocale;
+
+    /**
+     * Constructor.
+     *
+     * @param AppInfo $appInfo
+     *     See {@link getAppInfo()}
+     * @param string $clientIdentifier
+     *     See {@link getClientIdentifier()}
+     * @param null|string $userLocale
+     *     See {@link getUserLocale()}
+     */
+    function __construct($appInfo, $clientIdentifier, $userLocale = null)
+    {
+        AppInfo::checkArg("appInfo", $appInfo);
+        Client::checkClientIdentifierArg("clientIdentifier", $clientIdentifier);
+        Checker::argStringNonEmptyOrNull("userLocale", $userLocale);
+
+        $this->appInfo = $appInfo;
+        $this->clientIdentifier = $clientIdentifier;
+        $this->userLocale = $userLocale;
+    }
+}
diff --git a/Resources/PHP/Dropbox/AuthInfo.php b/Resources/PHP/Dropbox/AuthInfo.php
new file mode 100644 (file)
index 0000000..a4dc264
--- /dev/null
@@ -0,0 +1,85 @@
+<?php
+namespace Dropbox;
+
+/**
+ * This class contains methods to load an AppInfo and AccessToken from a JSON file.
+ * This can help simplify simple scripts (such as the example programs that come with the
+ * SDK) but is probably not useful in typical Dropbox API apps.
+ *
+ */
+final class AuthInfo
+{
+    /**
+     * Loads a JSON file containing authorization information for your app. 'php authorize.php'
+     * in the examples directory for details about what this file should look like.
+     *
+     * @param string $path
+     *    Path to a JSON file
+     * @return array
+     *    A <code>list(string $accessToken, Host $host)</code>.
+     *
+     * @throws AuthInfoLoadException
+     */
+    static function loadFromJsonFile($path)
+    {
+        if (!file_exists($path)) {
+            throw new AuthInfoLoadException("File doesn't exist: \"$path\"");
+        }
+
+        $str = file_get_contents($path);
+        $jsonArr = json_decode($str, TRUE);
+
+        if (is_null($jsonArr)) {
+            throw new AuthInfoLoadException("JSON parse error: \"$path\"");
+        }
+
+        return self::loadFromJson($jsonArr);
+    }
+
+    /**
+     * Parses a JSON object to build an AuthInfo object.  If you would like to load this from a file,
+     * please use the @see loadFromJsonFile method.
+     *
+     * @param array $jsonArr
+     *    A parsed JSON object, typcally the result of json_decode(..., TRUE).
+     * @return array
+     *    A <code>list(string $accessToken, Host $host)</code>.
+     *
+     * @throws AuthInfoLoadException
+     */
+    private static function loadFromJson($jsonArr)
+    {
+        if (!is_array($jsonArr)) {
+            throw new AuthInfoLoadException("Expecting JSON object, found something else");
+        }
+
+        // Check access_token
+        if (!array_key_exists('access_token', $jsonArr)) {
+            throw new AuthInfoLoadException("Missing field \"access_token\"");
+        }
+
+        $accessToken = $jsonArr['access_token'];
+        if (!is_string($accessToken)) {
+            throw new AuthInfoLoadException("Expecting field \"access_token\" to be a string");
+        }
+
+        // Check for the optional 'host' field
+        if (!array_key_exists('host', $jsonArr)) {
+            $host = null;
+        }
+        else {
+            $baseHost = $jsonArr["host"];
+            if (!is_string($baseHost)) {
+                throw new AuthInfoLoadException("Optional field \"host\" must be a string");
+            }
+
+            $api = "api-$baseHost";
+            $content = "api-content-$baseHost";
+            $web = "meta-$baseHost";
+
+            $host = new Host($api, $content, $web);
+        }
+
+        return array($accessToken, $host);
+    }
+}
diff --git a/Resources/PHP/Dropbox/AuthInfoLoadException.php b/Resources/PHP/Dropbox/AuthInfoLoadException.php
new file mode 100644 (file)
index 0000000..3e1fe06
--- /dev/null
@@ -0,0 +1,18 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Thrown by the <code>AuthInfo::loadXXX</code> methods if something goes wrong.
+ */
+final class AuthInfoLoadException extends \Exception
+{
+    /**
+     * @param string $message
+     *
+     * @internal
+     */
+    function __construct($message)
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/Checker.php b/Resources/PHP/Dropbox/Checker.php
new file mode 100644 (file)
index 0000000..5cc7d41
--- /dev/null
@@ -0,0 +1,94 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Helper functions to validate arguments.
+ *
+ * @internal
+ */
+class Checker
+{
+    static function throwError($argName, $argValue, $expectedTypeName)
+    {
+        if ($argValue === null) throw new \InvalidArgumentException("'$argName' must not be null");
+
+        if (is_object($argValue)) {
+            // Class type.
+            $argTypeName = get_class($argValue);
+        } else {
+            // Built-in type.
+            $argTypeName = gettype($argValue);
+        }
+        throw new \InvalidArgumentException("'$argName' has bad type; expecting $expectedTypeName, got $argTypeName");
+    }
+
+    static function argResource($argName, $argValue)
+    {
+        if (!is_resource($argValue)) self::throwError($argName, $argValue, "resource");
+    }
+
+    static function argCallable($argName, $argValue)
+    {
+        if (!is_callable($argValue)) self::throwError($argName, $argValue, "callable");
+    }
+
+    static function argBool($argName, $argValue)
+    {
+        if (!is_bool($argValue)) self::throwError($argName, $argValue, "boolean");
+    }
+
+    static function argArray($argName, $argValue)
+    {
+        if (!is_array($argValue)) self::throwError($argName, $argValue, "array");
+    }
+
+    static function argString($argName, $argValue)
+    {
+        if (!is_string($argValue)) self::throwError($argName, $argValue, "string");
+    }
+
+    static function argStringOrNull($argName, $argValue)
+    {
+        if ($argValue === null) return;
+        if (!is_string($argValue)) self::throwError($argName, $argValue, "string");
+    }
+
+    static function argStringNonEmpty($argName, $argValue)
+    {
+        if (!is_string($argValue)) self::throwError($argName, $argValue, "string");
+        if (strlen($argValue) === 0) throw new \InvalidArgumentException("'$argName' must be non-empty");
+    }
+
+    static function argStringNonEmptyOrNull($argName, $argValue)
+    {
+        if ($argValue === null) return;
+        if (!is_string($argValue)) self::throwError($argName, $argValue, "string");
+        if (strlen($argValue) === 0) throw new \InvalidArgumentException("'$argName' must be non-empty");
+    }
+
+    static function argNat($argName, $argValue)
+    {
+        if (!is_int($argValue)) self::throwError($argName, $argValue, "int");
+        if ($argValue < 0) throw new \InvalidArgumentException("'$argName' must be non-negative (you passed in $argValue)");
+    }
+
+    static function argNatOrNull($argName, $argValue)
+    {
+        if ($argValue === null) return;
+        if (!is_int($argValue)) self::throwError($argName, $argValue, "int");
+        if ($argValue < 0) throw new \InvalidArgumentException("'$argName' must be non-negative (you passed in $argValue)");
+    }
+
+    static function argIntPositive($argName, $argValue)
+    {
+        if (!is_int($argValue)) self::throwError($argName, $argValue, "int");
+        if ($argValue < 1) throw new \InvalidArgumentException("'$argName' must be positive (you passed in $argValue)");
+    }
+
+    static function argIntPositiveOrNull($argName, $argValue)
+    {
+        if ($argValue === null) return;
+        if (!is_int($argValue)) self::throwError($argName, $argValue, "int");
+        if ($argValue < 1) throw new \InvalidArgumentException("'$argName' must be positive (you passed in $argValue)");
+    }
+}
diff --git a/Resources/PHP/Dropbox/Client.php b/Resources/PHP/Dropbox/Client.php
new file mode 100644 (file)
index 0000000..6a13407
--- /dev/null
@@ -0,0 +1,1500 @@
+<?php
+namespace Dropbox;
+
+/**
+ * The class used to make most Dropbox API calls.  You can use this once you've gotten an
+ * {@link AccessToken} via {@link WebAuth}.
+ *
+ * This class is stateless so it can be shared/reused.
+ */
+class Client
+{
+    /**
+     * The access token used by this client to make authenticated API calls.  You can get an
+     * access token via {@link WebAuth}.
+     *
+     * @return AccessToken
+     */
+    function getAccessToken() { return $this->accessToken; }
+
+    /** @var AccessToken */
+    private $accessToken;
+
+    /**
+     * An identifier for the API client, typically of the form "Name/Version".
+     * This is used to set the HTTP <code>User-Agent</code> header when making API requests.
+     * Example: <code>"PhotoEditServer/1.3"</code>
+     *
+     * If you're the author a higher-level library on top of the basic SDK, and the
+     * "Photo Edit" app's server code is using your library to access Dropbox, you should append
+     * your library's name and version to form the full identifier.  For example,
+     * if your library is called "File Picker", you might set this field to:
+     * <code>"PhotoEditServer/1.3 FilePicker/0.1-beta"</code>
+     *
+     * The exact format of the <code>User-Agent</code> header is described in
+     * <a href="http://tools.ietf.org/html/rfc2616#section-3.8">section 3.8 of the HTTP specification</a>.
+     *
+     * Note that underlying HTTP client may append other things to the <code>User-Agent</code>, such as
+     * the name of the library being used to actually make the HTTP request (such as cURL).
+     *
+     * @return string
+     */
+    function getClientIdentifier() { return $this->clientIdentifier; }
+
+    /** @var string */
+    private $clientIdentifier;
+
+    /**
+     * The locale of the user of your application.  Some API calls return localized
+     * data and error messages; this "user locale" setting determines which locale
+     * the server should use to localize those strings.
+     *
+     * @return null|string
+     */
+    function getUserLocale() { return $this->userLocale; }
+
+    /** @var null|string */
+    private $userLocale;
+
+    /**
+     * The {@link Host} object that determines the hostnames we make requests to.
+     *
+     * @return Host
+     */
+    function getHost() { return $this->host; }
+
+    /**
+     * Constructor.
+     *
+     * @param string $accessToken
+     *     See {@link getAccessToken()}
+     * @param string $clientIdentifier
+     *     See {@link getClientIdentifier()}
+     * @param null|string $userLocale
+     *     See {@link getUserLocale()}
+     */
+    function __construct($accessToken, $clientIdentifier, $userLocale = null)
+    {
+        self::checkAccessTokenArg("accessToken", $accessToken);
+        self::checkClientIdentifierArg("clientIdentifier", $clientIdentifier);
+        Checker::argStringNonEmptyOrNull("userLocale", $userLocale);
+
+        $this->accessToken = $accessToken;
+        $this->clientIdentifier = $clientIdentifier;
+        $this->userLocale = $userLocale;
+
+        // The $host parameter is sort of internal.  We don't include it in the param list because
+        // we don't want it to be included in the documentation.  Use PHP arg list hacks to get at
+        // it.
+        $host = null;
+        if (\func_num_args() == 4) {
+            $host = \func_get_arg(3);
+            Host::checkArgOrNull("host", $host);
+        }
+        if ($host === null) {
+            $host = Host::getDefault();
+        }
+        $this->host = $host;
+
+        // These fields are redundant, but it makes these values a little more convenient
+        // to access.
+        $this->apiHost = $host->getApi();
+        $this->contentHost = $host->getContent();
+    }
+
+    /** @var string */
+    private $apiHost;
+    /** @var string */
+    private $contentHost;
+
+    /**
+     * Given a <code>$base</code> path for an API endpoint (for example, "/files"), append
+     * a Dropbox API file path to the end of that URL.  Special characters in the file will
+     * be encoded properly.
+     *
+     * This is for endpoints like "/files" takes the path on the URL and not as a separate
+     * query or POST parameter.
+     *
+     * @param string $base
+     * @param string $path
+     * @return string
+     */
+    function appendFilePath($base, $path)
+    {
+        return $base . "/auto/" . rawurlencode(substr($path, 1));
+    }
+
+    /**
+     * Make an API call to disable the access token that you constructed this <code>Client</code>
+     * with.  After calling this, API calls made with this <code>Client</code> will fail.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#disable-token">/disable_access_token</a>.
+     *
+     * @throws Exception
+     */
+    function disableAccessToken()
+    {
+        $response = $this->doPost($this->apiHost, "1/disable_access_token");
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+    }
+
+    /**
+     * Make an API call to get basic account and quota information.
+     *
+     * <code>
+     * $client = ...
+     * $accountInfo = $client->getAccountInfo();
+     * print_r($accountInfo);
+     * </code>
+     *
+     * @return array
+     *    See <a href="https://www.dropbox.com/developers/core/docs#account-info">/account/info</a>.
+     *
+     * @throws Exception
+     */
+    function getAccountInfo()
+    {
+        $response = $this->doGet($this->apiHost, "1/account/info");
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Downloads a file from Dropbox.  The file's contents are written to the
+     * given <code>$outStream</code> and the file's metadata is returned.
+     *
+     * <code>
+     * $client = ...;
+     * $fd = fopen("./Frog.jpeg", "wb");
+     * $metadata = $client->getFile("/Photos/Frog.jpeg", $fd);
+     * fclose($fd);
+     * print_r($metadata);
+     * </code>
+     *
+     * @param string $path
+     *   The path to the file on Dropbox (UTF-8).
+     *
+     * @param resource $outStream
+     *   If the file exists, the file contents will be written to this stream.
+     *
+     * @param string|null $rev
+     *   If you want the latest revision of the file at the given path, pass in <code>null</code>.
+     *   If you want a specific version of a file, pass in value of the file metadata's "rev" field.
+     *
+     * @return null|array
+     *   The <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata
+     *   object</a> for the file at the given $path and $rev, or <code>null</code> if the file
+     *   doesn't exist,
+     *
+     * @throws Exception
+     */
+    function getFile($path, $outStream, $rev = null)
+    {
+        Path::checkArgNonRoot("path", $path);
+        Checker::argResource("outStream", $outStream);
+        Checker::argStringNonEmptyOrNull("rev", $rev);
+
+        $url = $this->buildUrlForGetOrPut(
+            $this->contentHost,
+            $this->appendFilePath("1/files", $path),
+            array("rev" => $rev));
+
+        $curl = $this->mkCurl($url);
+        $metadataCatcher = new DropboxMetadataHeaderCatcher($curl->handle);
+        $streamRelay = new CurlStreamRelay($curl->handle, $outStream);
+
+        $response = $curl->exec();
+
+        if ($response->statusCode === 404) return null;
+
+        if ($response->statusCode !== 200) {
+            $response->body = $streamRelay->getErrorBody();
+            throw RequestUtil::unexpectedStatus($response);
+        }
+
+        return $metadataCatcher->getMetadata();
+    }
+
+    /**
+     * Calling 'uploadFile' with <code>$numBytes</code> less than this value, will cause this SDK
+     * to use the standard /files_put endpoint.  When <code>$numBytes</code> is greater than this
+     * value, we'll use the /chunked_upload endpoint.
+     *
+     * @var int
+     */
+    private static $AUTO_CHUNKED_UPLOAD_THRESHOLD = 9863168;  // 8 MB
+
+    /**
+     * @var int
+     */
+    private static $DEFAULT_CHUNK_SIZE = 4194304;  // 4 MB
+
+    /**
+     * Creates a file on Dropbox, using the data from <code>$inStream</code> for the file contents.
+     *
+     * <code>
+     * use \Dropbox as dbx;
+     * $client = ...;
+     * $fd = fopen("./frog.jpeg", "rb");
+     * $md1 = $client->uploadFile("/Photos/Frog.jpeg",
+     *                            dbx\WriteMode::add(), $fd);
+     * fclose($fd);
+     * print_r($md1);
+     * $rev = $md1["rev"];
+     *
+     * // Re-upload with WriteMode::update(...), which will overwrite the
+     * // file if it hasn't been modified from our original upload.
+     * $fd = fopen("./frog-new.jpeg", "rb");
+     * $md2 = $client->uploadFile("/Photos/Frog.jpeg",
+     *                            dbx\WriteMode::update($rev), $fd);
+     * fclose($fd);
+     * print_r($md2);
+     * </code>
+     *
+     * @param string $path
+     *    The Dropbox path to save the file to (UTF-8).
+     *
+     * @param WriteMode $writeMode
+     *    What to do if there's already a file at the given path.
+     *
+     * @param resource $inStream
+     *    The data to use for the file contents.
+     *
+     * @param int|null $numBytes
+     *    You can pass in <code>null</code> if you don't know.  If you do provide the size, we can
+     *    perform a slightly more efficient upload (fewer network round-trips) for files smaller
+     *    than 8 MB.
+     *
+     * @return mixed
+     *    The <a href="https://www.dropbox.com/developers/core/docs#metadata-details>metadata
+     *    object</a> for the newly-added file.
+     *
+     * @throws Exception
+     */
+    function uploadFile($path, $writeMode, $inStream, $numBytes = null)
+    {
+        Path::checkArgNonRoot("path", $path);
+        WriteMode::checkArg("writeMode", $writeMode);
+        Checker::argResource("inStream", $inStream);
+        Checker::argNatOrNull("numBytes", $numBytes);
+
+        // If we don't know how many bytes are coming, we have to use chunked upload.
+        // If $numBytes is large, we elect to use chunked upload.
+        // In all other cases, use regular upload.
+        if ($numBytes === null || $numBytes > self::$AUTO_CHUNKED_UPLOAD_THRESHOLD) {
+            $metadata = $this->_uploadFileChunked($path, $writeMode, $inStream, $numBytes,
+                                                  self::$DEFAULT_CHUNK_SIZE);
+        } else {
+            $metadata = $this->_uploadFile($path, $writeMode,
+                function(Curl $curl) use ($inStream, $numBytes) {
+                    $curl->set(CURLOPT_PUT, true);
+                    $curl->set(CURLOPT_INFILE, $inStream);
+                    $curl->set(CURLOPT_INFILESIZE, $numBytes);
+                });
+        }
+
+        return $metadata;
+    }
+
+    /**
+     * Creates a file on Dropbox, using the given $data string as the file contents.
+     *
+     * <code>
+     * use \Dropbox as dbx;
+     * $client = ...;
+     * $md = $client->uploadFileFromString("/Grocery List.txt",
+     *                                     dbx\WriteMode::add(),
+     *                                     "1. Coke\n2. Popcorn\n3. Toothpaste\n");
+     * print_r($md);
+     * </code>
+     *
+     * @param string $path
+     *    The Dropbox path to save the file to (UTF-8).
+     *
+     * @param WriteMode $writeMode
+     *    What to do if there's already a file at the given path.
+     *
+     * @param string $data
+     *    The data to use for the contents of the file.
+     *
+     * @return mixed
+     *    The <a href="https://www.dropbox.com/developers/core/docs#metadata-details>metadata
+     *    object</a> for the newly-added file.
+     *
+     * @throws Exception
+     */
+    function uploadFileFromString($path, $writeMode, $data)
+    {
+        Path::checkArgNonRoot("path", $path);
+        WriteMode::checkArg("writeMode", $writeMode);
+        Checker::argString("data", $data);
+
+        return $this->_uploadFile($path, $writeMode, function(Curl $curl) use ($data) {
+            $curl->set(CURLOPT_CUSTOMREQUEST, "PUT");
+            $curl->set(CURLOPT_POSTFIELDS, $data);
+            $curl->addHeader("Content-Type: application/octet-stream");
+        });
+    }
+
+    /**
+     * Creates a file on Dropbox, using the data from $inStream as the file contents.
+     *
+     * This version of <code>uploadFile</code> splits uploads the file ~4MB chunks at a time and
+     * will retry a few times if one chunk fails to upload.  Uses {@link chunkedUploadStart()},
+     * {@link chunkedUploadContinue()}, and {@link chunkedUploadFinish()}.
+     *
+     * @param string $path
+     *    The Dropbox path to save the file to (UTF-8).
+     *
+     * @param WriteMode $writeMode
+     *    What to do if there's already a file at the given path.
+     *
+     * @param resource $inStream
+     *    The data to use for the file contents.
+     *
+     * @param int|null $numBytes
+     *    The number of bytes available from $inStream.
+     *    You can pass in <code>null</code> if you don't know.
+     *
+     * @param int|null $chunkSize
+     *    The number of bytes to upload in each chunk.  You can omit this (or pass in
+     *    <code>null</code> and the library will use a reasonable default.
+     *
+     * @return mixed
+     *    The <a href="https://www.dropbox.com/developers/core/docs#metadata-details>metadata
+     *    object</a> for the newly-added file.
+     *
+     * @throws Exception
+     */
+    function uploadFileChunked($path, $writeMode, $inStream, $numBytes = null, $chunkSize = null)
+    {
+        if ($chunkSize === null) {
+            $chunkSize = self::$DEFAULT_CHUNK_SIZE;
+        }
+
+        Path::checkArgNonRoot("path", $path);
+        WriteMode::checkArg("writeMode", $writeMode);
+        Checker::argResource("inStream", $inStream);
+        Checker::argNatOrNull("numBytes", $numBytes);
+        Checker::argIntPositive("chunkSize", $chunkSize);
+
+        return $this->_uploadFileChunked($path, $writeMode, $inStream, $numBytes, $chunkSize);
+    }
+
+    /**
+     * @param string $path
+     *
+     * @param WriteMode $writeMode
+     *    What to do if there's already a file at the given path (UTF-8).
+     *
+     * @param resource $inStream
+     *    The source of data to upload.
+     *
+     * @param int|null $numBytes
+     *    You can pass in <code>null</code>.  But if you know how many bytes you expect, pass in
+     *    that value and this function will do a sanity check at the end to make sure the number of
+     *    bytes read from $inStream matches up.
+     *
+     * @param int $chunkSize
+     *
+     * @return array
+     *    The <a href="https://www.dropbox.com/developers/core/docs#metadata-details>metadata
+     *    object</a> for the newly-added file.
+     */
+    private function _uploadFileChunked($path, $writeMode, $inStream, $numBytes, $chunkSize)
+    {
+        Path::checkArg("path", $path);
+        WriteMode::checkArg("writeMode", $writeMode);
+        Checker::argResource("inStream", $inStream);
+        Checker::argNatOrNull("numBytes", $numBytes);
+        Checker::argNat("chunkSize", $chunkSize);
+
+        // NOTE: This function performs 3 retries on every call.  This is maybe not the right
+        // layer to make retry decisions.  It's also awkward because none of the other calls
+        // perform retries.
+
+        assert($chunkSize > 0);
+
+        $data = self::readFully($inStream, $chunkSize);
+        $len = strlen($data);
+
+        $client = $this;
+        $uploadId = RequestUtil::runWithRetry(3, function() use ($data, $client) {
+            return $client->chunkedUploadStart($data);
+        });
+
+        $byteOffset = $len;
+
+        while (!feof($inStream)) {
+            $data = self::readFully($inStream, $chunkSize);
+            $len = strlen($data);
+
+            while (true) {
+                $r = RequestUtil::runWithRetry(3,
+                    function() use ($client, $uploadId, $byteOffset, $data) {
+                        return $client->chunkedUploadContinue($uploadId, $byteOffset, $data);
+                    });
+
+                if ($r === true) {  // Chunk got uploaded!
+                    $byteOffset += $len;
+                    break;
+                }
+                if ($r === false) {  // Server didn't recognize our upload ID
+                    // This is very unlikely since we're uploading all the chunks in sequence.
+                    throw new Exception_BadResponse("Server forgot our uploadId");
+                }
+
+                // Otherwise, the server is at a different byte offset from us.
+                $serverByteOffset = $r;
+                assert($serverByteOffset !== $byteOffset);  // chunkedUploadContinue ensures this.
+                // An earlier byte offset means the server has lost data we sent earlier.
+                if ($serverByteOffset < $byteOffset) throw new Exception_BadResponse(
+                    "Server is at an ealier byte offset: us=$byteOffset, server=$serverByteOffset");
+                $diff = $serverByteOffset - $byteOffset;
+                // If the server is past where we think it could possibly be, something went wrong.
+                if ($diff > $len) throw new Exception_BadResponse(
+                    "Server is more than a chunk ahead: us=$byteOffset, server=$serverByteOffset");
+                // The normal case is that the server is a bit further along than us because of a
+                // partially-uploaded chunk.  Finish it off.
+                $byteOffset += $diff;
+                if ($diff === $len) break;  // If the server is at the end, we're done.
+                $data = substr($data, $diff);
+            }
+        }
+
+        if ($numBytes !== null && $byteOffset !== $numBytes) throw new \InvalidArgumentException(
+            "You passed numBytes=$numBytes but the stream had $byteOffset bytes.");
+
+        $metadata = RequestUtil::runWithRetry(3,
+            function() use ($client, $uploadId, $path, $writeMode) {
+                return $client->chunkedUploadFinish($uploadId, $path, $writeMode);
+            });
+
+        return $metadata;
+    }
+
+    /**
+     * Sometimes fread() returns less than the request number of bytes (for example, when reading
+     * from network streams).  This function repeatedly calls fread until the requested number of
+     * bytes have been read or we've reached EOF.
+     *
+     * @param resource $inStream
+     * @param int $numBytes
+     * @throws StreamReadException
+     * @return string
+     */
+    private static function readFully($inStream, $numBytes)
+    {
+        Checker::argNat("numBytes", $numBytes);
+
+        $full = '';
+        $bytesRemaining = $numBytes;
+        while (!feof($inStream) && $bytesRemaining > 0) {
+            $part = fread($inStream, $bytesRemaining);
+            if ($part === false) throw new StreamReadException("Error reading from \$inStream.");
+            $full .= $part;
+            $bytesRemaining -= strlen($part);
+        }
+        return $full;
+    }
+
+    /**
+     * @param string $path
+     * @param WriteMode $writeMode
+     * @param callable $curlConfigClosure
+     * @return array
+     */
+    private function _uploadFile($path, $writeMode, $curlConfigClosure)
+    {
+        Path::checkArg("path", $path);
+        WriteMode::checkArg("writeMode", $writeMode);
+        Checker::argCallable("curlConfigClosure", $curlConfigClosure);
+
+        $url = $this->buildUrlForGetOrPut(
+            $this->contentHost,
+            $this->appendFilePath("1/files_put", $path),
+            $writeMode->getExtraParams());
+
+        $curl = $this->mkCurl($url);
+
+        $curlConfigClosure($curl);
+
+        $curl->set(CURLOPT_RETURNTRANSFER, true);
+        $response = $curl->exec();
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Start a new chunked upload session and upload the first chunk of data.
+     *
+     * @param string $data
+     *     The data to start off the chunked upload session.
+     *
+     * @return array
+     *     A pair of <code>(string $uploadId, int $byteOffset)</code>.  <code>$uploadId</code>
+     *     is a unique identifier for this chunked upload session.  You pass this in to
+     *     {@link chunkedUploadContinue} and {@link chuunkedUploadFinish}.  <code>$byteOffset</code>
+     *     is the number of bytes that were successfully uploaded.
+     *
+     * @throws Exception
+     */
+    function chunkedUploadStart($data)
+    {
+        Checker::argString("data", $data);
+
+        $response = $this->_chunkedUpload(array(), $data);
+
+        if ($response->statusCode === 404) {
+            throw new Exception_BadResponse("Got a 404, but we didn't send up an 'upload_id'");
+        }
+
+        $correction = self::_chunkedUploadCheckForOffsetCorrection($response);
+        if ($correction !== null) throw new Exception_BadResponse(
+            "Got an offset-correcting 400 response, but we didn't send an offset");
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        list($uploadId, $byteOffset) = self::_chunkedUploadParse200Response($response->body);
+        $len = strlen($data);
+        if ($byteOffset !== $len) throw new Exception_BadResponse(
+            "We sent $len bytes, but server returned an offset of $byteOffset");
+
+        return $uploadId;
+    }
+
+    /**
+     * Append another chunk data to a previously-started chunked upload session.
+     *
+     * @param string $uploadId
+     *     The unique identifier for the chunked upload session.  This is obtained via
+     *     {@link chunkedUploadStart}.
+     *
+     * @param int $byteOffset
+     *     The number of bytes you think you've already uploaded to the given chunked upload
+     *     session.  The server will append the new chunk of data after that point.
+     *
+     * @param string $data
+     *     The data to append to the existing chunked upload session.
+     *
+     * @return int|bool
+     *     If <code>false</code>, it means the server didn't know about the given
+     *     <code>$uploadId</code>.  This may be because the chunked upload session has expired
+     *     (they last around 24 hours).
+     *     If <code>true</code>, the chunk was successfully uploaded.  If an integer, it means
+     *     you and the server don't agree on the current <code>$byteOffset</code>.  The returned
+     *     integer is the server's internal byte offset for the chunked upload session.  You need
+     *     to adjust your input to match.
+     *
+     * @throws Exception
+     */
+    function chunkedUploadContinue($uploadId, $byteOffset, $data)
+    {
+        Checker::argStringNonEmpty("uploadId", $uploadId);
+        Checker::argNat("byteOffset", $byteOffset);
+        Checker::argString("data", $data);
+
+        $response = $this->_chunkedUpload(
+            array("upload_id" => $uploadId, "offset" => $byteOffset), $data);
+
+        if ($response->statusCode === 404) {
+            // The server doesn't know our upload ID.  Maybe it expired?
+            return false;
+        }
+
+        $correction = self::_chunkedUploadCheckForOffsetCorrection($response);
+        if ($correction !== null) {
+            list($correctedUploadId, $correctedByteOffset) = $correction;
+            if ($correctedUploadId !== $uploadId) throw new Exception_BadResponse(
+                "Corrective 400 upload_id mismatch: us=".
+                self::q($uploadId)." server=".self::q($correctedUploadId));
+            if ($correctedByteOffset === $byteOffset) throw new Exception_BadResponse(
+                "Corrective 400 offset is the same as ours: $byteOffset");
+            return $correctedByteOffset;
+        }
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+        list($retUploadId, $retByteOffset) = self::_chunkedUploadParse200Response($response->body);
+
+        $nextByteOffset = $byteOffset + strlen($data);
+        if ($uploadId !== $retUploadId) throw new Exception_BadResponse(
+                "upload_id mismatch: us=".self::q($uploadId).", server=".self::q($uploadId));
+        if ($nextByteOffset !== $retByteOffset) throw new Exception_BadResponse(
+                "next-offset mismatch: us=$nextByteOffset, server=$retByteOffset");
+
+        return true;
+    }
+
+    /**
+     * @param string $body
+     * @return array
+     */
+    private static function _chunkedUploadParse200Response($body)
+    {
+        $j = RequestUtil::parseResponseJson($body);
+        $uploadId = self::getField($j, "upload_id");
+        $byteOffset = self::getField($j, "offset");
+        return array($uploadId, $byteOffset);
+    }
+
+    /**
+     * @param HttpResponse $response
+     * @return array|null
+     */
+    private static function _chunkedUploadCheckForOffsetCorrection($response)
+    {
+        if ($response->statusCode !== 400) return null;
+        $j = json_decode($response->body, true);
+        if ($j === null) return null;
+        if (!array_key_exists("upload_id", $j) || !array_key_exists("offset", $j)) return null;
+        $uploadId = $j["upload_id"];
+        $byteOffset = $j["offset"];
+        return array($uploadId, $byteOffset);
+    }
+
+    /**
+     * Creates a file on Dropbox using the accumulated contents of the given chunked upload session.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#commit-chunked-upload">/commit_chunked_upload</a>.
+     *
+     * @param string $uploadId
+     *     The unique identifier for the chunked upload session.  This is obtained via
+     *     {@link chunkedUploadStart}.
+     *
+     * @param string $path
+     *    The Dropbox path to save the file to ($path).
+     *
+     * @param WriteMode $writeMode
+     *    What to do if there's already a file at the given path.
+     *
+     * @return array|null
+     *    If <code>null</code>, it means the Dropbox server wasn't aware of the
+     *    <code>$uploadId</code> you gave it.
+     *    Otherwise, you get back the
+     *    <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata object</a>
+     *    for the newly-created file.
+     *
+     * @throws Exception
+     */
+    function chunkedUploadFinish($uploadId, $path, $writeMode)
+    {
+        Checker::argStringNonEmpty("uploadId", $uploadId);
+        Path::checkArgNonRoot("path", $path);
+        WriteMode::checkArg("writeMode", $writeMode);
+
+        $params = array_merge(array("upload_id" => $uploadId), $writeMode->getExtraParams());
+
+        $response = $this->doPost(
+            $this->contentHost,
+            $this->appendFilePath("1/commit_chunked_upload", $path),
+            $params);
+
+        if ($response->statusCode === 404) return null;
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * @param array $params
+     * @param string $data
+     * @return HttpResponse
+     */
+    protected function _chunkedUpload($params, $data)
+        // Marked 'protected' so I can override it in testing.
+    {
+        $url = $this->buildUrlForGetOrPut(
+            $this->contentHost, "1/chunked_upload", $params);
+
+        $curl = $this->mkCurl($url);
+
+        // We can't use CURLOPT_PUT because it wants a stream, but we already have $data in memory.
+        $curl->set(CURLOPT_CUSTOMREQUEST, "PUT");
+        $curl->set(CURLOPT_POSTFIELDS, $data);
+        $curl->addHeader("Content-Type: application/octet-stream");
+
+        $curl->set(CURLOPT_RETURNTRANSFER, true);
+        return $curl->exec();
+    }
+
+    /**
+     * Returns the metadata for whatever file or folder is at the given path.
+     *
+     * <code>
+     * $client = ...;
+     * $md = $client->getMetadata("/Photos/Frog.jpeg");
+     * print_r($md);
+     * </code>
+     *
+     * @param string $path
+     *    The Dropbox path to a file or folder (UTF-8).
+     *
+     * @return array|null
+     *    If there is a file or folder at the given path, you'll get back the
+     *    <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata object</a>
+     *    for that file or folder.  If not, you'll get back <code>null</code>.
+     *
+     * @throws Exception
+     */
+    function getMetadata($path)
+    {
+        Path::checkArg("path", $path);
+
+        return $this->_getMetadata($path, array("list" => "false"));
+    }
+
+    /**
+     * Returns the metadata for whatever file or folder is at the given path and, if it's a folder,
+     * also include the metadata for all the immediate children of that folder.
+     *
+     * <code>
+     * $client = ...;
+     * $md = $client->getMetadataWithChildren("/Photos");
+     * print_r($md);
+     * </code>
+     *
+     * @param string $path
+     *    The Dropbox path to a file or folder (UTF-8).
+     *
+     * @return array|null
+     *    If there is a file or folder at the given path, you'll get back the
+     *    <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata object</a>
+     *    for that file or folder, along with all immediate children if it's a folder.  If not,
+     *    you'll get back <code>null</code>.
+     *
+     * @throws Exception
+     */
+    function getMetadataWithChildren($path)
+    {
+        Path::checkArg("path", $path);
+
+        return $this->_getMetadata($path, array("list" => "true", "file_limit" => "25000"));
+    }
+
+    /**
+     * @param string $path
+     * @param array $params
+     * @return array
+     */
+    private function _getMetadata($path, $params)
+    {
+        $response = $this->doGet(
+            $this->apiHost,
+            $this->appendFilePath("1/metadata", $path),
+            $params);
+
+        if ($response->statusCode === 404) return null;
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        $metadata = RequestUtil::parseResponseJson($response->body);
+        if (array_key_exists("is_deleted", $metadata) && $metadata["is_deleted"]) return null;
+        return $metadata;
+    }
+
+    /**
+     * If you've previously retrieved the metadata for a folder and its children, this method will
+     * retrieve updated metadata only if something has changed.  This is more efficient than
+     * calling {@link getMetadataWithChildren} if you have a cache of previous results.
+     *
+     * <code>
+     * $client = ...;
+     * $md = $client->getMetadataWithChildren("/Photos");
+     * print_r($md);
+     * assert($md["is_dir"], "expecting \"/Photos\" to be a folder");
+     *
+     * sleep(10);
+     *
+     * // Now see if anything changed...
+     * list($changed, $new_md) = $client->getMetadataWithChildrenIfChanged(
+     *                                    "/Photos", $md["hash"]);
+     * if ($changed) {
+     *     echo "Folder changed.\n";
+     *     print_r($new_md);
+     * } else {
+     *     echo "Folder didn't change.\n";
+     * }
+     * </code>
+     *
+     * @param string $path
+     *    The Dropbox path to a folder (UTF-8).
+     *
+     * @param string $previousFolderHash
+     *    The "hash" field from the previously retrieved folder metadata.
+     *
+     * @return array
+     *    A <code>list(boolean $changed, array $metadata)</code>.  If the metadata hasn't changed,
+     *    you'll get <code>list(false, null)</code>.  If the metadata of the folder or any of its
+     *    children has changed, you'll get <code>list(true, $newMetadata)</code>.  $metadata is a
+     *    <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata object</a>.
+     *
+     * @throws Exception
+     */
+    function getMetadataWithChildrenIfChanged($path, $previousFolderHash)
+    {
+        Path::checkArg("path", $path);
+        Checker::argStringNonEmpty("previousFolderHash", $previousFolderHash);
+
+        $params = array("list" => "true", "file_limit" => "25000", "hash" => $previousFolderHash);
+
+        $response = $this->doGet(
+            $this->apiHost,
+            $this->appendFilePath("1/metadata", $path),
+            $params);
+
+        if ($response->statusCode === 304) return array(false, null);
+        if ($response->statusCode === 404) return array(true, null);
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        $metadata = RequestUtil::parseResponseJson($response->body);
+        if (array_key_exists("is_deleted", $metadata) && $metadata["is_deleted"]) {
+            return array(true, null);
+        }
+        return array(true, $metadata);
+    }
+
+    /**
+     * A way of letting you keep up with changes to files and folders in a user's Dropbox.
+     *
+     * @param string|null $cursor
+     *    If this is the first time you're calling this, pass in <code>null</code>.  Otherwise,
+     *    pass in whatever cursor was returned by the previous call.
+     *
+     * @param string|null $pathPrefix
+     *    If <code>null</code>, you'll get results for the entire folder (either the user's
+     *    entire Dropbox or your App Folder).  If you set <code>$path_prefix</code> to
+     *    "/Photos/Vacation", you'll only get results for that path and any files and folders
+     *    under it.
+     *
+     * @return array
+     *    A <a href="https://www.dropbox.com/developers/core/docs#delta">delta page</a>, which
+     *    contains a list of changes to apply along with a new "cursor" that should be passed into
+     *    future <code>getDelta</code> calls.  If the "reset" field is <code>true</code>, you
+     *    should clear your local state before applying the changes.  If the "has_more" field is
+     *    <code>true</code>, call <code>getDelta</code> immediately to get more results, otherwise
+     *    wait a while (at least 5 minutes) before calling <code>getDelta</code> again.
+     *
+     * @throws Exception
+     */
+    function getDelta($cursor = null, $pathPrefix = null)
+    {
+        Checker::argStringNonEmptyOrNull("cursor", $cursor);
+        Path::checkArgOrNull("pathPrefix", $pathPrefix);
+
+        $response = $this->doPost($this->apiHost, "1/delta", array(
+            "cursor" => $cursor,
+            "path_prefix" => $pathPrefix));
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Gets the metadata for all the file revisions (up to a limit) for a given path.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#revisions">/revisions</a>.
+     *
+     * @param string path
+     *    The Dropbox path that you want file revision metadata for (UTF-8).
+     *
+     * @param int|null limit
+     *    The maximum number of revisions to return.
+     *
+     * @return array|null
+     *    A list of <a href="https://www.dropbox.com/developers/core/docs#metadata-details>metadata
+     *    objects</a>, one for each file revision.  The later revisions appear first in the list.
+     *    If <code>null</code>, then there were too many revisions at that path.
+     *
+     * @throws Exception
+     */
+    function getRevisions($path, $limit = null)
+    {
+        Path::checkArgNonRoot("path", $path);
+        Checker::argIntPositiveOrNull("limit", $limit);
+
+        $response = $this->doGet(
+            $this->apiHost,
+            $this->appendFilePath("1/revisions", $path),
+            array("rev_limit" => $limit));
+
+        if ($response->statusCode === 406) return null;
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Takes a copy of the file at the given revision and saves it over the current copy.  This
+     * will create a new revision, but the file contents will match the revision you specified.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#restore">/restore</a>.
+     *
+     * @param string $path
+     *    The Dropbox path of the file to restore (UTF-8).
+     *
+     * @param string $rev
+     *    The revision to restore the contents to.
+     *
+     * @return mixed
+     *    The <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata
+     *    object</a>
+     *
+     * @throws Exception
+     */
+    function restoreFile($path, $rev)
+    {
+        Path::checkArgNonRoot("path", $path);
+        Checker::argStringNonEmpty("rev", $rev);
+
+        $response = $this->doPost(
+            $this->apiHost,
+            $this->appendFilePath("1/restore", $path),
+            array("rev" => $rev));
+
+        if ($response->statusCode === 404) return null;
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Returns metadata for all files and folders whose filename matches the query string.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#search">/search</a>.
+     *
+     * @param string $basePath
+     *    The path to limit the search to (UTF-8).  Pass in "/" to search everything.
+     *
+     * @param string $query
+     *    A space-separated list of substrings to search for.  A file matches only if it contains
+     *    all the substrings.
+     *
+     * @param int|null $limit
+     *    The maximum number of results to return.
+     *
+     * @param bool $includeDeleted
+     *    Whether to include deleted files in the results.
+     *
+     * @return mixed
+     *    A list of <a href="https://www.dropbox.com/developers/core/docs#metadata-details>metadata
+     *    objects</a> of files that match the search query.
+     *
+     * @throws Exception
+     */
+    function searchFileNames($basePath, $query, $limit = null, $includeDeleted = false)
+    {
+        Path::checkArg("basePath", $basePath);
+        Checker::argStringNonEmpty("query", $query);
+        Checker::argNatOrNull("limit", $limit);
+        Checker::argBool("includeDeleted", $includeDeleted);
+
+        $response = $this->doPost(
+            $this->apiHost,
+            $this->appendFilePath("1/search", $basePath),
+            array(
+                "query" => $query,
+                "file_limit" => $limit,
+                "include_deleted" => $includeDeleted,
+            ));
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Creates and returns a public link to a file or folder's "preview page".  This link can be
+     * used without authentication.  The preview page may contain a thumbnail or some other
+     * preview of the file, along with a download link to download the actual file.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#shares">/shares</a>.
+     *
+     * @param string $path
+     *    The Dropbox path to the file or folder you want to create a shareable link to (UTF-8).
+     *
+     * @return string
+     *    The URL of the preview page.
+     *
+     * @throws Exception
+     */
+    function createShareableLink($path)
+    {
+        Path::checkArg("path", $path);
+
+        $response = $this->doPost(
+            $this->apiHost,
+            $this->appendFilePath("1/shares", $path),
+            array(
+                "short_url" => "false",
+            ));
+
+        if ($response->statusCode === 404) return null;
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        $j = RequestUtil::parseResponseJson($response->body);
+        return self::getField($j, "url");
+    }
+
+    /**
+     * Creates and returns a direct link to a file.  This link can be used without authentication.
+     * This link will expire in a few hours.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#media">/media</a>.
+     *
+     * @param string $path
+     *    The Dropbox path to a file or folder (UTF-8).
+     *
+     * @return array
+     *    A <code>list(string $url, \DateTime $expires)</code> where <code>$url</code> is a direct
+     *    link to the requested file and <code>$expires</code> is a standard PHP
+     *    <code>\DateTime</code> representing when <code>$url</code> will stop working.
+     *
+     * @throws Exception
+     */
+    function createTemporaryDirectLink($path)
+    {
+        Path::checkArgNonRoot("path", $path);
+
+        $response = $this->doPost(
+            $this->apiHost,
+            $this->appendFilePath("1/media", $path));
+
+        if ($response->statusCode === 404) return null;
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        $j = RequestUtil::parseResponseJson($response->body);
+        $url = self::getField($j, "url");
+        $expires = self::parseDateTime(self::getField($j, "expires"));
+        return array($url, $expires);
+    }
+
+    /**
+     * Creates and returns a "copy ref" to a file.  A copy ref can be used to copy a file across
+     * different Dropbox accounts without downloading and re-uploading.
+     *
+     * For example: Create a <code>Client</code> using the access token from one account and call
+     * <code>createCopyRef</code>.  Then, create a <code>Client</code> using the access token for
+     * another account and call <code>copyFromCopyRef</code> using the copy ref.  (You need to use
+     * the same app key both times.)
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#copy_ref">/copy_ref</a>.
+     *
+     * @param string path
+     *    The Dropbox path of the file or folder you want to create a copy ref for (UTF-8).
+     *
+     * @return string
+     *    The copy ref (just a string that you keep track of).
+     *
+     * @throws Exception
+     */
+    function createCopyRef($path)
+    {
+        Path::checkArg("path", $path);
+
+        $response = $this->doGet(
+            $this->apiHost,
+            $this->appendFilePath("1/copy_ref", $path));
+
+        if ($response->statusCode === 404) return null;
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        $j = RequestUtil::parseResponseJson($response->body);
+        return self::getField($j, "copy_ref");
+    }
+
+    /**
+     * Gets a thumbnail image representation of the file at the given path.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#thumbnails">/thumbnails</a>.
+     *
+     * @param string $path
+     *    The path to the file you want a thumbnail for (UTF-8).
+     *
+     * @param string $format
+     *    One of the two image formats: "jpeg" or "png".
+     *
+     * @param string $size
+     *    One of the predefined image size names, as a string:
+     *    <ul>
+     *    <li>"xs" - 32x32</li>
+     *    <li>"s" - 64x64</li>
+     *    <li>"m" - 128x128</li>
+     *    <li>"l" - 640x480</li>
+     *    <li>"xl" - 1024x768</li>
+     *    </ul>
+     *
+     * @return array|null
+     *    If the file exists, you'll get <code>list(array $metadata, string $data)</code> where
+     *    <code>$metadata</code> is the file's
+     *    <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata object</a>
+     *    and $data is the raw data for the thumbnail image.  If the file doesn't exist, you'll
+     *    get <code>null</code>.
+     *
+     * @throws Exception
+     */
+    function getThumbnail($path, $format, $size)
+    {
+        Path::checkArgNonRoot("path", $path);
+        Checker::argString("format", $format);
+        Checker::argString("size", $size);
+        if (!in_array($format, array("jpeg", "png"))) {
+            throw new \InvalidArgumentException("Invalid 'format': ".self::q($format));
+        }
+        if (!in_array($size, array("xs", "s", "m", "l", "xl"))) {
+            throw new \InvalidArgumentException("Invalid 'size': ".self::q($format));
+        }
+
+        $url = $this->buildUrlForGetOrPut(
+            $this->contentHost,
+            $this->appendFilePath("1/thumbnails", $path),
+            array("size" => $size, "format" => $format));
+
+        $curl = $this->mkCurl($url);
+        $metadataCatcher = new DropboxMetadataHeaderCatcher($curl->handle);
+
+        $curl->set(CURLOPT_RETURNTRANSFER, true);
+        $response = $curl->exec();
+
+        if ($response->statusCode === 404) return null;
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        $metadata = $metadataCatcher->getMetadata();
+        return array($metadata, $response->body);
+    }
+
+    /**
+     * Copies a file or folder to a new location
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#fileops-copy">/fileops/copy</a>.
+     *
+     * @param string $fromPath
+     *    The Dropbox path of the file or folder you want to copy (UTF-8).
+     *
+     * @param string $toPath
+     *    The destination Dropbox path (UTF-8).
+     *
+     * @return mixed
+     *    The <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata
+     *    object</a> for the new file or folder.
+     *
+     * @throws Exception
+     */
+    function copy($fromPath, $toPath)
+    {
+        Path::checkArg("fromPath", $fromPath);
+        Path::checkArgNonRoot("toPath", $toPath);
+
+        $response = $this->doPost(
+            $this->apiHost,
+            "1/fileops/copy",
+            array(
+                "root" => "auto",
+                "from_path" => $fromPath,
+                "to_path" => $toPath,
+            ));
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Creates a file or folder based on an existing copy ref (possibly from a different Dropbox
+     * account).
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#fileops-copy">/fileops/copy</a>.
+     *
+     * @param string $copyRef
+     *    A copy ref obtained via the {@link createCopyRef()} call.
+     *
+     * @param string $toPath
+     *    The Dropbox path you want to copy the file or folder to (UTF-8).
+     *
+     * @return mixed
+     *    The <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata
+     *    object</a> for the new file or folder.
+     *
+     * @throws Exception
+     */
+    function copyFromCopyRef($copyRef, $toPath)
+    {
+        Checker::argStringNonEmpty("copyRef", $copyRef);
+        Path::checkArgNonRoot("toPath", $toPath);
+
+        $response = $this->doPost(
+            $this->apiHost,
+            "1/fileops/copy",
+            array(
+                "root" => "auto",
+                "from_copy_ref" => $copyRef,
+                "to_path" => $toPath,
+            )
+        );
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Creates a folder.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#fileops-create-folder">/fileops/create_folder</a>.
+     *
+     * @param string $path
+     *    The Dropbox path at which to create the folder (UTF-8).
+     *
+     * @return array|null
+     *    If successful, you'll get back the
+     *    <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata object</a>
+     *    for the newly-created folder.  If not successful, you'll get <code>null</code>.
+     *
+     * @throws Exception
+     */
+    function createFolder($path)
+    {
+        Path::checkArgNonRoot("path", $path);
+
+        $response = $this->doPost(
+            $this->apiHost,
+            "1/fileops/create_folder",
+            array(
+                "root" => "auto",
+                "path" => $path,
+            ));
+
+        if ($response->statusCode === 403) return null;
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Deletes a file or folder
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#fileops-delete">/fileops/delete</a>.
+     *
+     * @param string $path
+     *    The Dropbox path of the file or folder to delete (UTF-8).
+     *
+     * @return mixed
+     *    The <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata
+     *    object</a> for the deleted file or folder.
+     *
+     * @throws Exception
+     */
+    function delete($path)
+    {
+        Path::checkArgNonRoot("path", $path);
+
+        $response = $this->doPost(
+            $this->apiHost,
+            "1/fileops/delete",
+            array(
+                "root" => "auto",
+                "path" => $path,
+            ));
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Moves a file or folder to a new location.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#fileops-move">/fileops/move</a>.
+     *
+     * @param string $fromPath
+     *    The source Dropbox path (UTF-8).
+     *
+     * @param string $toPath
+     *    The destination Dropbox path (UTF-8).
+     *
+     * @return mixed
+     *    The <a href="https://www.dropbox.com/developers/core/docs#metadata-details">metadata
+     *    object</a> for the destination file or folder.
+     *
+     * @throws Exception
+     */
+    function move($fromPath, $toPath)
+    {
+        Path::checkArgNonRoot("fromPath", $fromPath);
+        Path::checkArgNonRoot("toPath", $toPath);
+
+        $response = $this->doPost(
+            $this->apiHost,
+            "1/fileops/move",
+            array(
+                "root" => "auto",
+                "from_path" => $fromPath,
+                "to_path" => $toPath,
+            ));
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        return RequestUtil::parseResponseJson($response->body);
+    }
+
+    /**
+     * Build a URL for making a GET or PUT request.  Will add the "locale"
+     * parameter.
+     *
+     * @param string $host
+     *    Either the "API" or "API content" hostname from {@link getHost()}.
+     * @param string $path
+     *    The "path" part of the URL.  For example, "/account/info".
+     * @param array|null $params
+     *    URL parameters.  For POST requests, do not put the parameters here.
+     *    Include them in the request body instead.
+     *
+     * @return string
+     */
+    function buildUrlForGetOrPut($host, $path, $params = null)
+    {
+        return RequestUtil::buildUrlForGetOrPut($this->userLocale, $host, $path, $params);
+    }
+
+    /**
+     * Perform an OAuth-2-authorized GET request to the Dropbox API.  Will automatically
+     * fill in "User-Agent" and "locale" as well.
+     *
+     * @param string $host
+     *    Either the "API" or "API content" hostname from {@link getHost()}.
+     * @param string $path
+     *    The "path" part of the URL.  For example, "/account/info".
+     * @param array|null $params
+     *    GET parameters.
+     * @return HttpResponse
+     *
+     * @throws Exception
+     */
+    function doGet($host, $path, $params = null)
+    {
+        Checker::argString("host", $host);
+        Checker::argString("path", $path);
+        return RequestUtil::doGet($this->clientIdentifier, $this->accessToken, $this->userLocale,
+                                  $host, $path, $params);
+    }
+
+    /**
+     * Perform an OAuth-2-authorized POST request to the Dropbox API.  Will automatically
+     * fill in "User-Agent" and "locale" as well.
+     *
+     * @param string $host
+     *    Either the "API" or "API content" hostname from {@link getHost()}.
+     * @param string $path
+     *    The "path" part of the URL.  For example, "/commit_chunked_upload".
+     * @param array|null $params
+     *    POST parameters.
+     * @return HttpResponse
+     *
+     * @throws Exception
+     */
+    function doPost($host, $path, $params = null)
+    {
+        Checker::argString("host", $host);
+        Checker::argString("path", $path);
+        return RequestUtil::doPost($this->clientIdentifier, $this->accessToken, $this->userLocale,
+                                   $host, $path, $params);
+    }
+
+    /**
+     * Create a {@link Curl} object that is pre-configured with {@link getClientIdentifier()},
+     * and the proper OAuth 2 "Authorization" header.
+     *
+     * @param string $url
+     *    Generate this URL using {@link buildUrl()}.
+     *
+     * @return Curl
+     */
+    function mkCurl($url)
+    {
+        return RequestUtil::mkCurlWithOAuth($this->clientIdentifier, $url, $this->accessToken);
+    }
+
+    /**
+     * Parses date/time strings returned by the Dropbox API.  The Dropbox API returns date/times
+     * formatted like: <code>"Sat, 21 Aug 2010 22:31:20 +0000"</code>.
+     *
+     * @param string $apiDateTimeString
+     *    A date/time string returned by the API.
+     *
+     * @return \DateTime
+     *    A standard PHP <code>\DateTime</code> instance.
+     *
+     * @throws Exception_BadResponse
+     *    Thrown if <code>$apiDateTimeString</code> isn't correctly formatted.
+     */
+    static function parseDateTime($apiDateTimeString)
+    {
+        $dt = \DateTime::createFromFormat(self::$dateTimeFormat, $apiDateTimeString);
+        if ($dt === false) throw new Exception_BadResponse(
+            "Bad date/time from server: ".self::q($apiDateTimeString));
+        return $dt;
+    }
+
+    private static $dateTimeFormat = "D, d M Y H:i:s T";
+
+    /**
+     * @internal
+     */
+    static function q($object) { return var_export($object, true); }
+
+    /**
+     * @internal
+     */
+    static function getField($j, $fieldName)
+    {
+        if (!array_key_exists($fieldName, $j)) throw new Exception_BadResponse(
+            "missing field \"$fieldName\" in ".self::q($j));
+        return $j[$fieldName];
+    }
+
+    /**
+     * Given an OAuth 2 access token, returns <code>null</code> if it is well-formed (though
+     * not necessarily valid).  Otherwise, returns a string describing what's wrong with it.
+     *
+     * @param string $s
+     *
+     * @return string
+     */
+    static function getAccessTokenError($s)
+    {
+        if ($s === null) return "can't be null";
+        if (strlen($s) === 0) return "can't be empty";
+        if (preg_match('@[^-=_~/A-Za-z0-9\.\+]@', $s) === 1) return "contains invalid character";
+        return null;
+    }
+
+    /**
+     * @internal
+     */
+    static function checkAccessTokenArg($argName, $accessToken)
+    {
+        $error = self::getAccessTokenError($accessToken);
+        if ($error !== null) throw new \InvalidArgumentException("'$argName' invalid: $error");
+    }
+
+    /**
+     * @internal
+     */
+    static function getClientIdentifierError($s)
+    {
+        if ($s === null) return "can't be null";
+        if (strlen($s) === 0) return "can't be empty";
+        if (preg_match('@[\x00-\x1f\x7f]@', $s) === 1) return "contains control character";
+        return null;
+    }
+
+    /**
+     * @internal
+     */
+    static function checkClientIdentifierArg($argName, $accessToken)
+    {
+        $error = self::getClientIdentifierError($accessToken);
+        if ($error !== null) throw new \InvalidArgumentException("'$argName' invalid: $error");
+    }
+}
diff --git a/Resources/PHP/Dropbox/Curl.php b/Resources/PHP/Dropbox/Curl.php
new file mode 100644 (file)
index 0000000..ed8a855
--- /dev/null
@@ -0,0 +1,122 @@
+<?php
+namespace Dropbox;
+
+/**
+ * A minimal wrapper around a cURL handle.
+ *
+ * @internal
+ */
+final class Curl
+{
+    /** @var resource */
+    public $handle;
+
+    /** @var string[] */
+    private $headers = array();
+
+    /**
+     * @param string $url
+     */
+    function __construct($url)
+    {
+        // Make sure there aren't any spaces in the URL (i.e. the caller forgot to URL-encode).
+        if (strpos($url, ' ') !== false) {
+            throw new \InvalidArgumentException("Found space in \$url; it should be encoded");
+        }
+
+        $this->handle = curl_init($url);
+
+        // NOTE: Though we turn on all the correct SSL settings, many PHP installations
+        // don't respect these settings.  Run "examples/test-ssl.php" to run some basic
+        // SSL tests to see how well your PHP implementation behaves.
+
+        // Force SSL and use our own certificate list.
+        $this->set(CURLOPT_SSL_VERIFYPEER, true);   // Enforce certificate validation
+        $this->set(CURLOPT_SSL_VERIFYHOST, 2);      // Enforce hostname validation
+        $this->set(CURLOPT_SSLVERSION, 3);          // Enforce SSL v3.
+
+        // Limit the set of ciphersuites used.
+        global $sslCiphersuiteList;
+        if ($sslCiphersuiteList !== null) {
+            $this->set(CURLOPT_SSL_CIPHER_LIST, $sslCiphersuiteList);
+        }
+
+        // Certificate file.
+        $this->set(CURLOPT_CAINFO, __DIR__.'/certs/trusted-certs.crt');
+        // Certificate folder.  If not specified, some PHP installations will use
+        // the system default, even when CURLOPT_CAINFO is specified.
+        $this->set(CURLOPT_CAPATH, __DIR__.'/certs/');
+
+        // Limit vulnerability surface area.  Supported in cURL 7.19.4+
+        if (defined('CURLOPT_PROTOCOLS')) $this->set(CURLOPT_PROTOCOLS, CURLPROTO_HTTPS);
+        if (defined('CURLOPT_REDIR_PROTOCOLS')) $this->set(CURLOPT_REDIR_PROTOCOLS, CURLPROTO_HTTPS);
+    }
+
+    /**
+     * @param string $header
+     */
+    function addHeader($header)
+    {
+        $this->headers[] = $header;
+    }
+
+    function exec()
+    {
+        $this->set(CURLOPT_HTTPHEADER, $this->headers);
+
+        $body = curl_exec($this->handle);
+        if ($body === false) {
+            throw new Exception_NetworkIO("Error executing HTTP request: " . curl_error($this->handle));
+        }
+
+        $statusCode = curl_getinfo($this->handle, CURLINFO_HTTP_CODE);
+
+        return new HttpResponse($statusCode, $body);
+    }
+
+    /**
+     * @param int $option
+     * @param mixed $value
+     */
+    function set($option, $value)
+    {
+        curl_setopt($this->handle, $option, $value);
+    }
+
+    function __destruct()
+    {
+        curl_close($this->handle);
+    }
+}
+
+// Different cURL SSL backends use different names for ciphersuites.
+$curlVersion = \curl_version();
+$curlSslBackend = $curlVersion['ssl_version'];
+if (\substr_compare($curlSslBackend, "NSS/", 0, strlen("NSS/")) === 0) {
+    // Can't figure out how to reliably set ciphersuites for NSS.
+    $sslCiphersuiteList = null;
+}
+else {
+    // Use the OpenSSL names for all other backends.  We may have to
+    // refine this if users report errors.
+    $sslCiphersuiteList =
+        'ECDHE-RSA-AES256-GCM-SHA384:'.
+        'ECDHE-RSA-AES128-GCM-SHA256:'.
+        'ECDHE-RSA-AES256-SHA384:'.
+        'ECDHE-RSA-AES128-SHA256:'.
+        'ECDHE-RSA-AES256-SHA:'.
+        'ECDHE-RSA-AES128-SHA:'.
+        'ECDHE-RSA-RC4-SHA:'.
+        'DHE-RSA-AES256-GCM-SHA384:'.
+        'DHE-RSA-AES128-GCM-SHA256:'.
+        'DHE-RSA-AES256-SHA256:'.
+        'DHE-RSA-AES128-SHA256:'.
+        'DHE-RSA-AES256-SHA:'.
+        'DHE-RSA-AES128-SHA:'.
+        'AES256-GCM-SHA384:'.
+        'AES128-GCM-SHA256:'.
+        'AES256-SHA256:'.
+        'AES128-SHA256:'.
+        'AES256-SHA:'.
+        'AES128-SHA';
+}
diff --git a/Resources/PHP/Dropbox/CurlStreamRelay.php b/Resources/PHP/Dropbox/CurlStreamRelay.php
new file mode 100644 (file)
index 0000000..6b3e351
--- /dev/null
@@ -0,0 +1,46 @@
+<?php
+namespace Dropbox;
+
+/**
+ * A CURLOPT_WRITEFUNCTION that will write HTTP response data to $outStream if
+ * it's an HTTP 200 response.  For all other HTTP status codes, it'll save the
+ * output in a string, which you can retrieve it via {@link getErrorBody}.
+ *
+ * @internal
+ */
+class CurlStreamRelay
+{
+    var $outStream;
+    var $errorData;
+    var $isError;
+
+    function __construct($ch, $outStream)
+    {
+        $this->outStream = $outStream;
+        $this->errorData = array();
+        $isError = null;
+        curl_setopt($ch, CURLOPT_WRITEFUNCTION, array($this, 'writeData'));
+    }
+
+    function writeData($ch, $data)
+    {
+        if ($this->isError === null) {
+            $statusCode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
+            $this->isError = ($statusCode !== 200);
+        }
+
+        if ($this->isError) {
+            $this->errorData[] = $data;
+        } else {
+            fwrite($this->outStream, $data);
+        }
+
+        return strlen($data);
+    }
+
+    function getErrorBody()
+    {
+        return implode($this->errorData);
+    }
+}
+
diff --git a/Resources/PHP/Dropbox/DeserializeException.php b/Resources/PHP/Dropbox/DeserializeException.php
new file mode 100644 (file)
index 0000000..bb2fa23
--- /dev/null
@@ -0,0 +1,19 @@
+<?php
+namespace Dropbox;
+
+/**
+ * If, when loading a serialized {@link RequestToken} or {@link AccessToken}, the input string is
+ * malformed, this exception will be thrown.
+ */
+final class DeserializeException extends \Exception
+{
+    /**
+     * @param string $message
+     *
+     * @internal
+     */
+    function __construct($message)
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/DropboxMetadataHeaderCatcher.php b/Resources/PHP/Dropbox/DropboxMetadataHeaderCatcher.php
new file mode 100644 (file)
index 0000000..722ac79
--- /dev/null
@@ -0,0 +1,83 @@
+<?php
+namespace Dropbox;
+
+/**
+ * @internal
+ */
+final class DropboxMetadataHeaderCatcher
+{
+    /**
+     * @var mixed
+     */
+    var $metadata = null;
+
+    /**
+     * @var string
+     */
+    var $error = null;
+
+    /**
+     * @var bool
+     */
+    var $skippedFirstLine = false;
+
+    /**
+     * @param resource $ch
+     */
+    function __construct($ch)
+    {
+        curl_setopt($ch, CURLOPT_HEADERFUNCTION, array($this, 'headerFunction'));
+    }
+
+    /**
+     * @param resource $ch
+     * @param string $header
+     * @return int
+     * @throws Exception_BadResponse
+     */
+    function headerFunction($ch, $header)
+    {
+        // The first line is the HTTP status line (Ex: "HTTP/1.1 200 OK").
+        if (!$this->skippedFirstLine) {
+            $this->skippedFirstLine = true;
+            return strlen($header);
+        }
+
+        // If we've encountered an error on a previous callback, then there's nothing left to do.
+        if ($this->error !== null) {
+            return strlen($header);
+        }
+
+        // case-insensitive starts-with check.
+        if (\substr_compare($header, "x-dropbox-metadata:", 0, 19, true) !== 0) {
+            return strlen($header);
+        }
+
+        if ($this->metadata !== null) {
+            $this->error = "Duplicate X-Dropbox-Metadata header";
+            return strlen($header);
+        }
+
+        $headerValue = substr($header, 19);
+        $parsed = json_decode($headerValue, true, 10);
+
+        if ($parsed === null) {
+            $this->error = "Bad JSON in X-Dropbox-Metadata header";
+            return strlen($header);
+        }
+
+        $this->metadata = $parsed;
+        return strlen($header);
+    }
+
+    function getMetadata()
+    {
+        if ($this->error !== null) {
+            throw new Exception_BadResponse($this->error);
+        }
+        if ($this->metadata === null) {
+            throw new Exception_BadResponse("Missing X-Dropbox-Metadata header");
+        }
+        return $this->metadata;
+    }
+}
diff --git a/Resources/PHP/Dropbox/Exception.php b/Resources/PHP/Dropbox/Exception.php
new file mode 100644 (file)
index 0000000..fcd0b61
--- /dev/null
@@ -0,0 +1,16 @@
+<?php
+namespace Dropbox;
+
+/**
+ * The base class for all API call exceptions.
+ */
+class Exception extends \Exception
+{
+    /**
+     * @internal
+     */
+    function __construct($message, $cause = null)
+    {
+        parent::__construct($message, 0, $cause);
+    }
+}
diff --git a/Resources/PHP/Dropbox/Exception/BadRequest.php b/Resources/PHP/Dropbox/Exception/BadRequest.php
new file mode 100644 (file)
index 0000000..3539d4a
--- /dev/null
@@ -0,0 +1,17 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Thrown when the server tells us that our request was invalid.  This is typically due to an
+ * HTTP 400 response from the server.
+ */
+final class Exception_BadRequest extends Exception_ProtocolError
+{
+    /**
+     * @internal
+     */
+    function __construct($message = "")
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/Exception/BadResponse.php b/Resources/PHP/Dropbox/Exception/BadResponse.php
new file mode 100644 (file)
index 0000000..406abba
--- /dev/null
@@ -0,0 +1,17 @@
+<?php
+namespace Dropbox;
+
+/**
+ * When this SDK can't understand the response from the server.  This could be due to a bug in this
+ * SDK or a buggy response from the Dropbox server.
+ */
+class Exception_BadResponse extends Exception_ProtocolError
+{
+    /**
+     * @internal
+     */
+    function __construct($message)
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/Exception/BadResponseCode.php b/Resources/PHP/Dropbox/Exception/BadResponseCode.php
new file mode 100644 (file)
index 0000000..62f507b
--- /dev/null
@@ -0,0 +1,33 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Thrown when the the Dropbox server responds with an HTTP status code we didn't expect.
+ */
+final class Exception_BadResponseCode extends Exception_BadResponse
+{
+    /** @var int */
+    private $statusCode;
+
+    /**
+     * @param string $message
+     * @param int $statusCode
+     *
+     * @internal
+     */
+    function __construct($message, $statusCode)
+    {
+        parent::__construct($message);
+        $this->statusCode = $statusCode;
+    }
+
+    /**
+     * The HTTP status code returned by the Dropbox server.
+     *
+     * @return int
+     */
+    public function getStatusCode()
+    {
+        return $this->statusCode;
+    }
+}
diff --git a/Resources/PHP/Dropbox/Exception/InvalidAccessToken.php b/Resources/PHP/Dropbox/Exception/InvalidAccessToken.php
new file mode 100644 (file)
index 0000000..bd9ac9b
--- /dev/null
@@ -0,0 +1,18 @@
+<?php
+namespace Dropbox;
+
+/**
+ * The Dropbox server said that the access token you used is invalid or expired.  You should
+ * probably ask the user to go through the OAuth authorization flow again to get a new access
+ * token.
+ */
+final class Exception_InvalidAccessToken extends Exception
+{
+    /**
+     * @internal
+     */
+    function __construct($message = "")
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/Exception/NetworkIO.php b/Resources/PHP/Dropbox/Exception/NetworkIO.php
new file mode 100644 (file)
index 0000000..f3670ba
--- /dev/null
@@ -0,0 +1,16 @@
+<?php
+namespace Dropbox;
+
+/**
+ * There was a network I/O error when making the request.
+ */
+final class Exception_NetworkIO extends Exception
+{
+    /**
+     * @internal
+     */
+    function __construct($message, $cause = null)
+    {
+        parent::__construct($message, $cause);
+    }
+}
diff --git a/Resources/PHP/Dropbox/Exception/ProtocolError.php b/Resources/PHP/Dropbox/Exception/ProtocolError.php
new file mode 100644 (file)
index 0000000..21072fb
--- /dev/null
@@ -0,0 +1,17 @@
+<?php
+namespace Dropbox;
+
+/**
+ * There was an protocol misunderstanding between this SDK and the server.  One of us didn't
+ * understand what the other one was saying.
+ */
+class Exception_ProtocolError extends Exception
+{
+    /**
+     * @internal
+     */
+    function __construct($message)
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/Exception/RetryLater.php b/Resources/PHP/Dropbox/Exception/RetryLater.php
new file mode 100644 (file)
index 0000000..3c7f5fc
--- /dev/null
@@ -0,0 +1,17 @@
+<?php
+namespace Dropbox;
+
+/**
+ * The Dropbox server said it couldn't fulfil our request right now, but that we should try
+ * again later.
+ */
+final class Exception_RetryLater extends Exception
+{
+    /**
+     * @internal
+     */
+    function __construct($message)
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/Exception/ServerError.php b/Resources/PHP/Dropbox/Exception/ServerError.php
new file mode 100644 (file)
index 0000000..1dbfe4f
--- /dev/null
@@ -0,0 +1,15 @@
+<?php
+namespace Dropbox;
+
+/**
+ * The Dropbox server said that there was an internal error when trying to fulfil our request.
+ * This usually corresponds to an HTTP 500 response.
+ */
+final class Exception_ServerError extends Exception
+{
+    /** @internal */
+    function __construct($message = "")
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/Host.php b/Resources/PHP/Dropbox/Host.php
new file mode 100644 (file)
index 0000000..980ffb6
--- /dev/null
@@ -0,0 +1,99 @@
+<?php
+namespace Dropbox;
+
+/**
+ * The Dropbox web API accesses three hosts; this structure holds the
+ * names of those three hosts.  This is primarily for mocking things out
+ * during testing.  Most of the time you won't have to deal with this class
+ * directly, and even when you do, you'll just use the default
+ * value: {@link Host::getDefault()}.
+ *
+ * @internal
+ */
+final class Host
+{
+    /**
+     * Returns a Host object configured with the three standard Dropbox host: "api.dropbox.com",
+     * "api-content.dropbox.com", and "www.dropbox.com"
+     *
+     * @return Host
+     */
+    static function getDefault()
+    {
+        if (!self::$defaultValue) {
+            self::$defaultValue = new Host("api.dropbox.com", "api-content.dropbox.com", "www.dropbox.com");
+        }
+        return self::$defaultValue;
+    }
+    private static $defaultValue;
+
+    /** @var string */
+    private $api;
+    /** @var string */
+    private $content;
+    /** @var string */
+    private $web;
+
+    /**
+     * Constructor.
+     *
+     * @param string $api
+     *     See {@link getApi()}
+     * @param string $content
+     *     See {@link getContent()}
+     * @param string $web
+     *     See {@link getWeb()}
+     */
+    function __construct($api, $content, $web)
+    {
+        $this->api = $api;
+        $this->content = $content;
+        $this->web = $web;
+    }
+
+    /**
+     * Returns the host name of the main Dropbox API server.
+     * The default is "api.dropbox.com".
+     *
+     * @return string
+     */
+    function getApi() { return $this->api; }
+
+    /**
+     * Returns the host name of the Dropbox API content server.
+     * The default is "api-content.dropbox.com".
+     *
+     * @return string
+     */
+    function getContent() { return $this->content; }
+
+    /**
+     * Returns the host name of the Dropbox web server.  Used during user authorization.
+     * The default is "www.dropbox.com".
+     *
+     * @return string
+     */
+    function getWeb() { return $this->web; }
+
+    /**
+     * Check that a function argument is of type <code>Host</code>.
+     *
+     * @internal
+     */
+    static function checkArg($argName, $argValue)
+    {
+        if (!($argValue instanceof self)) Checker::throwError($argName, $argValue, __CLASS__);
+    }
+
+    /**
+     * Check that a function argument is either <code>null</code> or of type
+     * <code>Host</code>.
+     *
+     * @internal
+     */
+    static function checkArgOrNull($argName, $argValue)
+    {
+        if ($argValue === null) return;
+        if (!($argValue instanceof self)) Checker::throwError($argName, $argValue, __CLASS__);
+    }
+}
diff --git a/Resources/PHP/Dropbox/HttpResponse.php b/Resources/PHP/Dropbox/HttpResponse.php
new file mode 100644 (file)
index 0000000..88bd3b3
--- /dev/null
@@ -0,0 +1,17 @@
+<?php
+namespace Dropbox;
+
+/**
+ * @internal
+ */
+final class HttpResponse
+{
+    public $statusCode;
+    public $body;
+
+    function __construct($statusCode, $body)
+    {
+        $this->statusCode = $statusCode;
+        $this->body = $body;
+    }
+}
diff --git a/Resources/PHP/Dropbox/OAuth1AccessToken.php b/Resources/PHP/Dropbox/OAuth1AccessToken.php
new file mode 100644 (file)
index 0000000..ac726c9
--- /dev/null
@@ -0,0 +1,61 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Use with {@link OAuth1Upgrader} to convert old OAuth 1 access tokens
+ * to OAuth 2 access tokens.  This SDK doesn't support using OAuth 1
+ * access tokens for regular API calls.
+ */
+class OAuth1AccessToken
+{
+    /**
+     * The OAuth 1 access token key.
+     *
+     * @return string
+     */
+    function getKey() { return $this->key; }
+
+    /** @var string */
+    private $key;
+
+    /**
+     * The OAuth 1 access token secret.
+     *
+     * Make sure that this is kept a secret.  Someone with your app secret can impesonate your
+     * application.  People sometimes ask for help on the Dropbox API forums and
+     * copy/paste code that includes their app secret.  Do not do that.
+     *
+     * @return string
+     */
+    function getSecret() { return $this->secret; }
+
+    /** @var secret */
+    private $secret;
+
+    /**
+     * Constructor.
+     *
+     * @param string $key
+     *     {@link getKey()}
+     * @param string $secret
+     *     {@link getSecret()}
+     */
+    function __construct($key, $secret)
+    {
+        AppInfo::checkKeyArg($key);
+        AppInfo::checkSecretArg($secret);
+
+        $this->key = $key;
+        $this->secret = $secret;
+    }
+
+    /**
+     * Use this to check that a function argument is of type <code>AppInfo</code>
+     *
+     * @internal
+     */
+    static function checkArg($argName, $argValue)
+    {
+        if (!($argValue instanceof self)) Checker::throwError($argName, $argValue, __CLASS__);
+    }
+}
diff --git a/Resources/PHP/Dropbox/OAuth1Upgrader.php b/Resources/PHP/Dropbox/OAuth1Upgrader.php
new file mode 100644 (file)
index 0000000..9dbbd16
--- /dev/null
@@ -0,0 +1,103 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Lets you convert OAuth 1 access tokens to OAuth 2 access tokens.  First call {@link
+ * OAuth1AccessTokenUpgrader::createOAuth2AccessToken()} to get an OAuth 2 access token.
+ * If that succeeds, call {@link OAuth1AccessTokenUpgrader::disableOAuth1AccessToken()}
+ * to disable the OAuth 1 access token.
+ *
+ * <code>
+ * use \Dropbox as dbx;
+ * $appInfo = dbx\AppInfo::loadFromJsonFile(...);
+ * $clientIdentifier = "my-app/1.0";
+ * $oauth1AccessToken = dbx\OAuth1AccessToken(...);
+ *
+ * $upgrader = new dbx\OAuth1AccessTokenUpgrader($appInfo, $clientIdentifier, ...);
+ * $oauth2AccessToken = $upgrader->getOAuth2AccessToken($oauth1AccessToken);
+ * $upgrader->disableOAuth1AccessToken($oauth1AccessToken);
+ * </code>
+ */
+class OAuth1Upgrader extends AuthBase
+{
+    /**
+     * Given an existing active OAuth 1 access token, make a Dropbox API call to get a new OAuth 2
+     * access token that represents the same user and app.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#oa1-from-oa1">/oauth2/token_from_oauth1</a>.
+     *
+     * @param OAuth1AccessToken $oauth1AccessToken
+     *
+     * @return string
+     *    The OAuth 2 access token.
+     *
+     * @throws Exception
+     */
+    function createOAuth2AccessToken($oauth1AccessToken)
+    {
+        OAuth1AccessToken::checkArg("oauth1AccessToken", $oauth1AccessToken);
+
+        $response = self::doPost($oauth1AccessToken, "1/oauth2/token_from_oauth1");
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        $parts = RequestUtil::parseResponseJson($response->body);
+
+        if (!array_key_exists('token_type', $parts) or !is_string($parts['token_type'])) {
+            throw new Exception_BadResponse("Missing \"token_type\" field.");
+        }
+        $tokenType = $parts['token_type'];
+        if (!array_key_exists('access_token', $parts) or !is_string($parts['access_token'])) {
+            throw new Exception_BadResponse("Missing \"access_token\" field.");
+        }
+        $accessToken = $parts['access_token'];
+
+        if ($tokenType !== "Bearer" && $tokenType !== "bearer") {
+            throw new Exception_BadResponse("Unknown \"token_type\"; expecting \"Bearer\", got  "
+                .Client::q($tokenType));
+        }
+
+        return $accessToken;
+    }
+
+    /**
+     * Make a Dropbox API call to disable the given OAuth 1 access token.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#disable-token">/disable_access_token</a>.
+     *
+     * @param OAuth1AccessToken $oauth1AccessToken
+     *
+     * @throws Exception
+     */
+    function disableOAuth1AccessToken($oauth1AccessToken)
+    {
+        OAuth1AccessToken::checkArg("oauth1AccessToken", $oauth1AccessToken);
+
+        $response = self::doPost($oauth1AccessToken, "1/disable_access_token");
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+    }
+
+    /**
+     * @param OAuth1AccessToken $oauth1AccessToken
+     * @param string $path
+     *
+     * @return HttpResponse
+     *
+     * @throws Exception
+     */
+    private function doPost($oauth1AccessToken, $path)
+    {
+        // Construct the OAuth 1 header.
+        $authHeaderValue = "OAuth oauth_signature_method=\"PLAINTEXT\""
+             . ", oauth_consumer_key=\"" . rawurlencode($this->appInfo->getKey()) . "\""
+             . ", oauth_token=\"" . rawurlencode($oauth1AccessToken->getKey()) . "\""
+             . ", oauth_signature=\"" . rawurlencode($this->appInfo->getSecret()) . "&" . rawurlencode($oauth1AccessToken->getSecret()) . "\"";
+
+        return RequestUtil::doPostWithSpecificAuth(
+            $this->clientIdentifier, $authHeaderValue, $this->userLocale,
+            $this->appInfo->getHost()->getApi(),
+            $path,
+            null);
+    }
+}
diff --git a/Resources/PHP/Dropbox/Path.php b/Resources/PHP/Dropbox/Path.php
new file mode 100644 (file)
index 0000000..b7797f6
--- /dev/null
@@ -0,0 +1,171 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Path validation functions.
+ */
+final class Path
+{
+    /**
+     * Return whether the given path is a valid Dropbox path.
+     *
+     * @param string $path
+     *    The path you want to check for validity.
+     *
+     * @return bool
+     *    Whether the path was valid or not.
+     */
+    static function isValid($path)
+    {
+        $error = self::findError($path);
+        return ($error === null);
+    }
+
+    /**
+     * Return whether the given path is a valid non-root Dropbox path.
+     * This is the same as {@link isValid} except <code>"/"</code> is not allowed.
+     *
+     * @param string $path
+     *    The path you want to check for validity.
+     *
+     * @return bool
+     *    Whether the path was valid or not.
+     */
+    static function isValidNonRoot($path)
+    {
+        $error = self::findErrorNonRoot($path);
+        return ($error === null);
+    }
+
+    /**
+     * If the given path is a valid Dropbox path, return <code>null</code>,
+     * otherwise return an English string error message describing what is wrong with the path.
+     *
+     * @param string $path
+     *    The path you want to check for validity.
+     *
+     * @return string|null
+     *    If the path was valid, return <code>null</code>.  Otherwise, returns
+     *    an English string describing the problem.
+     */
+    static function findError($path)
+    {
+        Checker::argString("path", $path);
+
+        $matchResult = preg_match('%^(?:
+                  [\x09\x0A\x0D\x20-\x7E]            # ASCII
+                | [\xC2-\xDF][\x80-\xBF]             # non-overlong 2-byte
+                | \xE0[\xA0-\xBF][\x80-\xBD]         # excluding overlongs, FFFE, and FFFF
+                | [\xE1-\xEC\xEE\xEF][\x80-\xBF]{2}  # straight 3-byte
+                | \xED[\x80-\x9F][\x80-\xBF]         # excluding surrogates
+                )*$%xs', $path);
+
+        if ($matchResult !== 1) {
+            return "must be valid UTF-8; BMP only, no surrogates, no U+FFFE or U+FFFF";
+        }
+
+        if (\substr_compare($path, "/", 0, 1) !== 0) return "must start with \"/\"";
+        $l = strlen($path);
+        if ($l === 1) return null;  // Special case for "/"
+
+        if ($path[$l-1] === "/") return "must not end with \"/\"";
+
+        // TODO: More checks.
+
+        return null;
+    }
+
+    /**
+     * If the given path is a valid non-root Dropbox path, return <code>null</code>,
+     * otherwise return an English string error message describing what is wrong with the path.
+     * This is the same as {@link findError} except <code>"/"</code> will yield an error message.
+     *
+     * @param string $path
+     *    The path you want to check for validity.
+     *
+     * @return string|null
+     *    If the path was valid, return <code>null</code>.  Otherwise, returns
+     *    an English string describing the problem.
+     */
+    static function findErrorNonRoot($path)
+    {
+        if ($path == "/") return "root path not allowed";
+        return self::findError($path);
+    }
+
+    /**
+     * Return the last component of a path (the file or folder name).
+     *
+     * <code>
+     * Path::getName("/Misc/Notes.txt") // "Notes.txt"
+     * Path::getName("/Misc")           // "Misc"
+     * Path::getName("/")               // null
+     * </code>
+     *
+     * @param string $path
+     *    The full path you want to get the last component of.
+     *
+     * @return null|string
+     *    The last component of <code>$path</code> or <code>null</code> if the given
+     *    <code>$path</code> was <code>"/"<code>.
+     */
+    static function getName($path)
+    {
+        Checker::argString("path", $path);
+
+        if (\substr_compare($path, "/", 0, 1) !== 0) {
+            throw new \InvalidArgumentException("'path' must start with \"/\"");
+        }
+        $l = strlen($path);
+        if ($l === 1) return null;
+        if ($path[$l-1] === "/") {
+            throw new \InvalidArgumentException("'path' must not end with \"/\"");
+        }
+
+        $lastSlash = strrpos($path, "/");
+        return substr($path, $lastSlash+1);
+    }
+
+    /**
+     * @internal
+     *
+     * @param string $argName
+     * @param mixed $value
+     * @throws \InvalidArgumentException
+     */
+    static function checkArg($argName, $value)
+    {
+        if ($value === null) throw new \InvalidArgumentException("'$argName' must not be null");
+        if (!is_string($value)) throw new \InvalidArgumentException("'$argName' must be a string");
+        $error = self::findError($value);
+        if ($error !== null) throw new \InvalidArgumentException("'$argName'': bad path: $error: ".var_export($value, true));
+    }
+
+    /**
+     * @internal
+     *
+     * @param string $argName
+     * @param mixed $value
+     * @throws \InvalidArgumentException
+     */
+    static function checkArgOrNull($argName, $value)
+    {
+        if ($value === null) return;
+        self::checkArg($argName, $value);
+    }
+
+    /**
+     * @internal
+     *
+     * @param string $argName
+     * @param mixed $value
+     * @throws \InvalidArgumentException
+     */
+    static function checkArgNonRoot($argName, $value)
+    {
+        if ($value === null) throw new \InvalidArgumentException("'$argName' must not be null");
+        if (!is_string($value)) throw new \InvalidArgumentException("'$argName' must be a string");
+        $error = self::findErrorNonRoot($value);
+        if ($error !== null) throw new \InvalidArgumentException("'$argName'': bad path: $error: ".var_export($value, true));
+    }
+}
diff --git a/Resources/PHP/Dropbox/RequestUtil.php b/Resources/PHP/Dropbox/RequestUtil.php
new file mode 100644 (file)
index 0000000..67d1bda
--- /dev/null
@@ -0,0 +1,301 @@
+<?php
+namespace Dropbox;
+
+if (!function_exists('curl_init')) {
+    throw new \Exception("The Dropbox SDK requires the cURL PHP extension, but it looks like you don't have it (couldn't find function \"curl_init\").  Library: \"" . __FILE__ . "\".");
+}
+
+if (!function_exists('json_decode')) {
+    throw new \Exception("The Dropbox SDK requires the JSON PHP extension, but it looks like you don't have it (couldn't find function \"json_decode\").  Library: \"" . __FILE__ . "\".");
+}
+
+// If mbstring.func_overload is set, it changes the behavior of the standard string functions in
+// ways that makes this library break.
+$mbstring_func_overload = ini_get("mbstring.func_overload");
+if ($mbstring_func_overload & 2 == 2) {
+    throw new \Exception("The Dropbox SDK doesn't work when mbstring.func_overload is set to overload the standard string functions (value = ".var_export($mbstring_func_overload, true).").  Library: \"" . __FILE__ . "\".");
+}
+
+if (strlen((string) PHP_INT_MAX) < 19) {
+    // Looks like we're running on a 32-bit build of PHP.  This could cause problems because some of the numbers
+    // we use (file sizes, quota, etc) can be larger than 32-bit ints can handle.
+    throw new \Exception("The Dropbox SDK uses 64-bit integers, but it looks like we're running on a version of PHP that doesn't support 64-bit integers (PHP_INT_MAX=" . ((string) PHP_INT_MAX) . ").  Library: \"" . __FILE__ . "\"");
+}
+
+/**
+ * @internal
+ */
+final class RequestUtil
+{
+    /**
+     * @param string $userLocale
+     * @param string $host
+     * @param string $path
+     * @param array $params
+     * @return string
+     */
+    static function buildUrlForGetOrPut($userLocale, $host, $path, $params = null)
+    {
+        $url = self::buildUri($host, $path);
+        $url .= "?locale=" . rawurlencode($userLocale);
+
+        if ($params !== null) {
+            foreach ($params as $key => $value) {
+                Checker::argStringNonEmpty("key in 'params'", $key);
+                if ($value !== null) {
+                    if (is_bool($value)) {
+                        $value = $value ? "true" : "false";
+                    }
+                    else if (is_int($value)) {
+                        $value = (string) $value;
+                    }
+                    else if (!is_string($value)) {
+                        throw new \InvalidArgumentException("params['$key'] is not a string, int, or bool");
+                    }
+                    $url .= "&" . rawurlencode($key) . "=" . rawurlencode($value);
+                }
+            }
+        }
+        return $url;
+    }
+
+    /**
+     * @param string $host
+     * @param string $path
+     * @return string
+     */
+    static function buildUri($host, $path)
+    {
+        Checker::argStringNonEmpty("host", $host);
+        Checker::argStringNonEmpty("path", $path);
+        return "https://" . $host . "/" . $path;
+    }
+
+    /**
+     * @param string $clientIdentifier
+     * @param string $url
+     * @return Curl
+     */
+    static function mkCurl($clientIdentifier, $url)
+    {
+        $curl = new Curl($url);
+
+        $curl->set(CURLOPT_CONNECTTIMEOUT, 10);
+
+        // If the transfer speed is below 1kB/sec for 10 sec, abort.
+        $curl->set(CURLOPT_LOW_SPEED_LIMIT, 1024);
+        $curl->set(CURLOPT_LOW_SPEED_TIME, 10);
+
+        //$curl->set(CURLOPT_VERBOSE, true);  // For debugging.
+        // TODO: Figure out how to encode clientIdentifier (urlencode?)
+        $curl->addHeader("User-Agent: ".$clientIdentifier." Dropbox-PHP-SDK");
+
+        return $curl;
+    }
+
+    /**
+     * @param string $clientIdentifier
+     * @param string $url
+     * @param string $authHeaderValue
+     * @return Curl
+     */
+    static function mkCurlWithAuth($clientIdentifier, $url, $authHeaderValue)
+    {
+        $curl = self::mkCurl($clientIdentifier, $url);
+        $curl->addHeader("Authorization: $authHeaderValue");
+        return $curl;
+    }
+
+    /**
+     * @param string $clientIdentifier
+     * @param string $url
+     * @param string $accessToken
+     * @return Curl
+     */
+    static function mkCurlWithOAuth($clientIdentifier, $url, $accessToken)
+    {
+        return self::mkCurlWithAuth($clientIdentifier, $url, "Bearer $accessToken");
+    }
+
+    static function buildPostBody($params)
+    {
+        if ($params === null) return "";
+
+        $pairs = array();
+        foreach ($params as $key => $value) {
+            Checker::argStringNonEmpty("key in 'params'", $key);
+            if ($value !== null) {
+                if (is_bool($value)) {
+                    $value = $value ? "true" : "false";
+                }
+                else if (is_int($value)) {
+                    $value = (string) $value;
+                }
+                else if (!is_string($value)) {
+                    throw new \InvalidArgumentException("params['$key'] is not a string, int, or bool");
+                }
+                $pairs[] = rawurlencode($key) . "=" . rawurlencode((string) $value);
+            }
+        }
+        return implode("&", $pairs);
+    }
+
+    /**
+     * @param string $clientIdentifier
+     * @param string $accessToken
+     * @param string $userLocale
+     * @param string $host
+     * @param string $path
+     * @param array|null $params
+     *
+     * @return HttpResponse
+     *
+     * @throws Exception
+     */
+    static function doPost($clientIdentifier, $accessToken, $userLocale, $host, $path, $params = null)
+    {
+        Checker::argStringNonEmpty("accessToken", $accessToken);
+
+        $url = self::buildUri($host, $path);
+
+        if ($params === null) $params = array();
+        $params['locale'] = $userLocale;
+
+        $curl = self::mkCurlWithOAuth($clientIdentifier, $url, $accessToken);
+        $curl->set(CURLOPT_POST, true);
+        $curl->set(CURLOPT_POSTFIELDS, self::buildPostBody($params));
+
+        $curl->set(CURLOPT_RETURNTRANSFER, true);
+        return $curl->exec();
+    }
+
+    /**
+     * @param string $clientIdentifier
+     * @param string $authHeaderValue
+     * @param string $userLocale
+     * @param string $host
+     * @param string $path
+     * @param array|null $params
+     *
+     * @return HttpResponse
+     *
+     * @throws Exception
+     */
+    static function doPostWithSpecificAuth($clientIdentifier, $authHeaderValue, $userLocale, $host, $path, $params = null)
+    {
+        Checker::argStringNonEmpty("authHeaderValue", $authHeaderValue);
+
+        $url = self::buildUri($host, $path);
+
+        if ($params === null) $params = array();
+        $params['locale'] = $userLocale;
+
+        $curl = self::mkCurlWithAuth($clientIdentifier, $url, $authHeaderValue);
+        $curl->set(CURLOPT_POST, true);
+        $curl->set(CURLOPT_POSTFIELDS, self::buildPostBody($params));
+
+        $curl->set(CURLOPT_RETURNTRANSFER, true);
+        return $curl->exec();
+    }
+
+    /**
+     * @param string $clientIdentifier
+     * @param string $accessToken
+     * @param string $userLocale
+     * @param string $host
+     * @param string $path
+     * @param array|null $params
+     *
+     * @return HttpResponse
+     *
+     * @throws Exception
+     */
+    static function doGet($clientIdentifier, $accessToken, $userLocale, $host, $path, $params = null)
+    {
+        Checker::argStringNonEmpty("accessToken", $accessToken);
+
+        $url = self::buildUrlForGetOrPut($userLocale, $host, $path, $params);
+
+        $curl = self::mkCurlWithOAuth($clientIdentifier, $url, $accessToken);
+        $curl->set(CURLOPT_HTTPGET, true);
+        $curl->set(CURLOPT_RETURNTRANSFER, true);
+
+        return $curl->exec();
+    }
+
+    /**
+     * @param string $responseBody
+     * @return mixed
+     * @throws Exception_BadResponse
+     */
+    static function parseResponseJson($responseBody)
+    {
+        $obj = json_decode($responseBody, TRUE, 10);
+        if ($obj === null) {
+            throw new Exception_BadResponse("Got bad JSON from server: $responseBody");
+        }
+        return $obj;
+    }
+
+    static function unexpectedStatus($httpResponse)
+    {
+        $sc = $httpResponse->statusCode;
+
+        $message = "HTTP status $sc";
+        if (is_string($httpResponse->body)) {
+            // TODO: Maybe only include the first ~200 chars of the body?
+            $message .= "\n".$httpResponse->body;
+        }
+
+        if ($sc === 400) return new Exception_BadRequest($message);
+        if ($sc === 401) return new Exception_InvalidAccessToken($message);
+        if ($sc === 500 || $sc === 502) return new Exception_ServerError($message);
+        if ($sc === 503) return new Exception_RetryLater($message);
+
+        return new Exception_BadResponseCode("Unexpected $message", $sc);
+    }
+
+    /**
+     * @param int $maxRetries
+     *    The number of times to retry it the action if it fails with one of the transient
+     *    API errors.  A value of 1 means we'll try the action once and if it fails, we
+     *    will retry once.
+     *
+     * @param callable $action
+     *    The the action you want to retry.
+     *
+     * @return mixed
+     *    Whatever is returned by the $action callable.
+     */
+    static function runWithRetry($maxRetries, $action)
+    {
+        Checker::argNat("maxRetries", $maxRetries);
+
+        $retryDelay = 1;
+        $numRetries = 0;
+        while (true) {
+            try {
+                return $action();
+            }
+            // These exception types are the ones we think are possibly transient errors.
+            catch (Exception_NetworkIO $ex) {
+                $savedEx = $ex;
+            }
+            catch (Exception_ServerError $ex) {
+                $savedEx = $ex;
+            }
+            catch (Exception_RetryLater $ex) {
+                $savedEx = $ex;
+            }
+
+            // We maxed out our retries.  Propagate the last exception we got.
+            if ($numRetries >= $maxRetries) throw $savedEx;
+
+            $numRetries++;
+            sleep($retryDelay);
+            $retryDelay *= 2;  // Exponential back-off.
+        }
+        throw new \RuntimeException("unreachable");
+    }
+
+}
diff --git a/Resources/PHP/Dropbox/SSLTester.php b/Resources/PHP/Dropbox/SSLTester.php
new file mode 100644 (file)
index 0000000..1312d7b
--- /dev/null
@@ -0,0 +1,130 @@
+<?php
+
+namespace Dropbox;
+
+/**
+ * Call the <code>test()</code> method.
+ */
+class SSLTester
+{
+    /**
+     * Peforms a few basic tests of your PHP installation's SSL implementation to see
+     * if it insecure in an obvious way.  Results are written with "echo" and the output
+     * is HTML-safe.
+     *
+     * @return bool
+     *    Returns <code>true</code> if all the tests passed.
+     */
+    static function test()
+    {
+        $hostOs = php_uname('s').' '.php_uname('r');
+        $phpVersion = phpversion();
+        $curlVersionInfo = \curl_version();
+        $curlVersion = $curlVersionInfo['version'];
+        $curlSslBackend = $curlVersionInfo['ssl_version'];
+
+        echo "-----------------------------------------------------------------------------\n";
+        echo "Testing your PHP installation's SSL implementation for a few obvious problems...\n";
+        echo "-----------------------------------------------------------------------------\n";
+        echo "- Host OS: $hostOs\n";
+        echo "- PHP version: $phpVersion\n";
+        echo "- cURL version: $curlVersion\n";
+        echo "- cURL SSL backend: $curlSslBackend\n";
+
+        echo "Basic SSL tests\n";
+        $basicFailures = self::testMulti(array(
+            array("www.dropbox.com", 'testAllowed'),
+            array("www.digicert.com", 'testAllowed'),
+            array("www.v.dropbox.com", 'testHostnameMismatch'),
+            array("testssl-expire.disig.sk", 'testUntrustedCert'),
+        ));
+
+        echo "Pinned certificate tests\n";
+        $pinnedCertFailures = self::testMulti(array(
+            array("www.verisign.com", 'testUntrustedCert'),
+            array("www.globalsign.fr", 'testUntrustedCert'),
+        ));
+
+        if ($basicFailures) {
+            echo "-----------------------------------------------------------------------------\n";
+            echo "WARNING: Your PHP installation's SSL support is COMPLETELY INSECURE.\n";
+            echo "Your app's communication with the Dropbox API servers can be viewed and\n";
+            echo "manipulated by others.  Try upgrading your version of PHP.\n";
+            echo "-----------------------------------------------------------------------------\n";
+            return false;
+        }
+        else if ($pinnedCertFailures) {
+            echo "-----------------------------------------------------------------------------\n";
+            echo "WARNING: Your PHP installation's SSL implementation doesn't support\n";
+            echo "certificate pinning, which is an important security feature of the Dropbox\n";
+            echo "SDK.  The root certificates embedded in the SDK are being silently ignored,\n";
+            echo "which reduces the security of the communication with the Dropbox API servers.\n";
+            echo "\n";
+            echo "More information:\n";
+            echo "https://www.owasp.org/index.php/Certificate_and_Public_Key_Pinning#What_Is_Pinning.3F\n";
+            echo "-----------------------------------------------------------------------------\n";
+            return false;
+        }
+        else {
+            return true;
+        }
+    }
+
+    private static function testMulti($tests)
+    {
+        $anyFailed = false;
+        foreach ($tests as $test) {
+            list($host, $testType) = $test;
+
+            echo " - ".str_pad("$testType ($host) ", 50, ".");
+            $url = "https://$host/";
+            $passed = self::$testType($url);
+            if ($passed) {
+                echo " ok\n";
+            } else {
+                echo " FAILED\n";
+                $anyFailed = true;
+            }
+        }
+        return $anyFailed;
+    }
+
+    private static function testPinnedCert()
+    {
+    }
+
+    private static function testAllowed($url)
+    {
+        $curl = RequestUtil::mkCurl("test-ssl", $url);
+        $curl->set(CURLOPT_RETURNTRANSFER, true);
+        $curl->exec();
+        return true;
+    }
+
+    private static function testUntrustedCert($url)
+    {
+        return self::testDisallowed($url, 'Error executing HTTP request: SSL certificate problem, verify that the CA cert is OK');
+    }
+
+    private static function testHostnameMismatch($url)
+    {
+        return self::testDisallowed($url, 'Error executing HTTP request: SSL certificate problem: Invalid certificate chain');
+    }
+
+    private static function testDisallowed($url, $expectedExceptionMessage)
+    {
+        $curl = RequestUtil::mkCurl("test-ssl", $url);
+        $curl->set(CURLOPT_RETURNTRANSFER, true);
+        try {
+            $curl->exec();
+        }
+        catch (Exception_NetworkIO $ex) {
+            if (strpos($ex->getMessage(), $expectedExceptionMessage) == 0) {
+                return true;
+            } else {
+                throw $ex;
+            }
+        }
+        return false;
+    }
+}
diff --git a/Resources/PHP/Dropbox/Security.php b/Resources/PHP/Dropbox/Security.php
new file mode 100644 (file)
index 0000000..390ccc8
--- /dev/null
@@ -0,0 +1,65 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Helper functions for security-related things.
+ */
+class Security
+{
+    /**
+     * A string equality function that compares strings in a way that isn't suceptible to timing
+     * attacks.  An attacker can figure out the length of the string, but not the string's value.
+     *
+     * Use this when comparing two strings where:
+     * - one string could be influenced by an attacker
+     * - the other string contains data an attacker shouldn't know
+     *
+     * @param string $a
+     * @param string $b
+     * @return bool
+     */
+    static function stringEquals($a, $b)
+    {
+        // Be strict with arguments.  PHP's liberal types could get us pwned.
+        if (func_num_args() !== 2) {
+            throw new \InvalidArgumentException("Expecting 2 args, got ".func_num_args().".");
+        }
+        Checker::argString("a", $a);
+        Checker::argString("b", $b);
+
+        if (strlen($a) !== strlen($b)) return false;
+        $result = 0;
+        for ($i = 0; $i < strlen($a); $i++) {
+            $result |= ord($a[$i]) ^ ord($b[$i]);
+        }
+        return $result === 0;
+    }
+
+    /**
+     * Returns cryptographically strong secure random bytes (as a PHP string).
+     *
+     * @param int $numBytes
+     *    The number of bytes of random data to return.
+     *
+     * @return string
+     */
+    static function getRandomBytes($numBytes)
+    {
+        Checker::argIntPositive("numBytes", $numBytes);
+
+        // openssl_random_pseudo_bytes had some issues prior to PHP 5.3.4
+        if (function_exists('openssl_random_pseudo_bytes')
+                && version_compare(PHP_VERSION, '5.3.4') >= 0) {
+            $s = openssl_random_pseudo_bytes($numBytes, $isCryptoStrong);
+            if ($isCryptoStrong) return $s;
+        }
+
+        if (function_exists('mcrypt_create_iv')) {
+            return mcrypt_create_iv($numBytes);
+        }
+
+        // Hopefully the above two options cover all our users.  But if not, there are
+        // other platform-specific options we could add.
+        throw new \Exception("no suitable random number source available");
+    }
+}
diff --git a/Resources/PHP/Dropbox/StreamReadException.php b/Resources/PHP/Dropbox/StreamReadException.php
new file mode 100644 (file)
index 0000000..fdc3cb7
--- /dev/null
@@ -0,0 +1,16 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Thrown when there's an error reading from a stream that was passed in by the caller.
+ */
+class StreamReadException extends \Exception
+{
+    /**
+     * @internal
+     */
+    function __construct($message, $cause = null)
+    {
+        parent::__construct($message, 0, $cause);
+    }
+}
diff --git a/Resources/PHP/Dropbox/ValueStore.php b/Resources/PHP/Dropbox/ValueStore.php
new file mode 100644 (file)
index 0000000..56bf1e0
--- /dev/null
@@ -0,0 +1,61 @@
+<?php
+namespace Dropbox;
+
+/**
+ * A contract for a class which provides simple get/set/clear access to a single string
+ * value.  {@link ArrayEntryStore} provides an implementation of this for storing a value
+ * in a single array element.
+ *
+ * Example implementation for a Memcache-based backing store:
+ *
+ * <code>
+ * class MemcacheValueStore implements ValueStore
+ * {
+ *     private $key;
+ *     private $memcache;
+ *
+ *     function __construct($memcache, $key)
+ *     {
+ *         $this->memcache = $memcache;
+ *         $this->key = $key;
+ *     }
+ *
+ *     function get()
+ *     {
+ *         $value = $this->memcache->get($this->getKey());
+ *         return $value === false ? null : base64_decode($value);
+ *     }
+ *
+ *     function set($value)
+ *     {
+ *         $this->memcache->set($this->key, base64_encode($value));
+ *     }
+ *
+ *     function clear()
+ *     {
+ *         $this->memcache->delete($this->key);
+ *     }
+ * }
+ * </code>
+ */
+interface ValueStore
+{
+    /**
+     * Returns the entry's current value or <code>null</code> if nothing is set.
+     *
+     * @return string
+     */
+    function get();
+
+    /**
+     * Set the entry to the given value.
+     *
+     * @param string $value
+     */
+    function set($value);
+
+    /**
+     * Remove the value.
+     */
+    function clear();
+}
diff --git a/Resources/PHP/Dropbox/WebAuth.php b/Resources/PHP/Dropbox/WebAuth.php
new file mode 100644 (file)
index 0000000..faaec58
--- /dev/null
@@ -0,0 +1,273 @@
+<?php
+namespace Dropbox;
+
+/**
+ * OAuth 2 "authorization code" flow.  (This SDK does not support the "token" flow.)
+ *
+ * Use {@link WebAuth::start()} and {@link WebAuth::finish()} to guide your
+ * user through the process of giving your app access to their Dropbox account.
+ * At the end, you will have an access token, which you can pass to {@link Client}
+ * and start making API calls.
+ *
+ * Example:
+ *
+ * <code>
+ * use \Dropbox as dbx;
+ *
+ * function getWebAuth()
+ * {
+ *    $appInfo = dbx\AppInfo::loadFromJsonFile(...);
+ *    $clientIdentifier = "my-app/1.0";
+ *    $redirectUri = "https://example.org/dropbox-auth-finish";
+ *    $csrfTokenStore = new dbx\ArrayEntryStore($_SESSION, 'dropbox-auth-csrf-token');
+ *    return new dbx\WebAuth($appInfo, $clientIdentifier, $redirectUri, $csrfTokenStore, ...);
+ * }
+ *
+ * // ----------------------------------------------------------
+ * // In the URL handler for "/dropbox-auth-start"
+ *
+ * $authorizeUrl = getWebAuth()->start();
+ * header("Location: $authorizeUrl");
+ *
+ * // ----------------------------------------------------------
+ * // In the URL handler for "/dropbox-auth-finish"
+ *
+ * try {
+ *    list($accessToken, $userId, $urlState) = getWebAuth()->finish($_GET);
+ *    assert($urlState === null);  // Since we didn't pass anything in start()
+ * }
+ * catch (dbx\WebAuthException_BadRequest $ex) {
+ *    error_log("/dropbox-auth-finish: bad request: " . $ex->getMessage());
+ *    // Respond with an HTTP 400 and display error page...
+ * }
+ * catch (dbx\WebAuthException_BadState $ex) {
+ *    // Auth session expired.  Restart the auth process.
+ *    header('Location: /dropbox-auth-start');
+ * }
+ * catch (dbx\WebAuthException_Csrf $ex) {
+ *    error_log("/dropbox-auth-finish: CSRF mismatch: " . $ex->getMessage());
+ *    // Respond with HTTP 403 and display error page...
+ * }
+ * catch (dbx\WebAuthException_NotApproved $ex) {
+ *    error_log("/dropbox-auth-finish: not approved: " . $ex->getMessage());
+ * }
+ * catch (dbx\WebAuthException_Provider $ex) {
+ *    error_log("/dropbox-auth-finish: error redirect from Dropbox: " . $ex->getMessage());
+ * }
+ * catch (dbx\Exception $ex) {
+ *    error_log("/dropbox-auth-finish: error communicating with Dropbox API: " . $ex->getMessage());
+ * }
+ *
+ * // We can now use $accessToken to make API requests.
+ * $client = dbx\Client($accessToken, ...);
+ * </code>
+ *
+ */
+class WebAuth extends WebAuthBase
+{
+    /**
+     * The URI that the Dropbox server will redirect the user to after the user finishes
+     * authorizing your app.  This URI must be HTTPS-based and
+     * <a href="https://www.dropbox.com/developers/apps">pre-registered with Dropbox</a>,
+     * though "localhost"-based and "127.0.0.1"-based URIs are allowed without pre-registration
+     * and can be either HTTP or HTTPS.
+     *
+     * @return string
+     */
+    function getRedirectUri() { return $this->redirectUri; }
+
+    /** @var string */
+    private $redirectUri;
+
+    /**
+     * A object that lets us save CSRF token string to the user's session.  If you're using the
+     * standard PHP <code>$_SESSION</code>, you can pass in something like
+     * <code>new ArrayEntryStore($_SESSION, 'dropbox-auth-csrf-token')</code>.
+     *
+     * If you're not using $_SESSION, you might have to create your own class that provides
+     * the same <code>get()</code>/<code>set()</code>/<code>clear()</code> methods as
+     * {@link ArrayEntryStore}.
+     *
+     * @return ValueStore
+     */
+    function getCsrfTokenStore() { return $this->csrfTokenStore; }
+
+    /** @var object */
+    private $csrfTokenStore;
+
+    /**
+     * Constructor.
+     *
+     * @param AppInfo $appInfo
+     *     See {@link getAppInfo()}
+     * @param string $clientIdentifier
+     *     See {@link getClientIdentifier()}
+     * @param null|string $redirectUri
+     *     See {@link getRedirectUri()}
+     * @param null|ValueStore $csrfTokenStore
+     *     See {@link getCsrfTokenStore()}
+     * @param null|string $userLocale
+     *     See {@link getUserLocale()}
+     */
+    function __construct($appInfo, $clientIdentifier, $redirectUri, $csrfTokenStore, $userLocale = null)
+    {
+        parent::__construct($appInfo, $clientIdentifier, $userLocale);
+
+        Checker::argStringNonEmpty("redirectUri", $redirectUri);
+
+        $this->csrfTokenStore = $csrfTokenStore;
+        $this->redirectUri = $redirectUri;
+    }
+
+    /**
+     * Starts the OAuth 2 authorization process, which involves redirecting the user to the
+     * returned authorization URL (a URL on the Dropbox website).  When the user then
+     * either approves or denies your app access, Dropbox will redirect them to the
+     * <code>$redirectUri</code> given to constructor, at which point you should
+     * call {@link finish()} to complete the authorization process.
+     *
+     * This function will also save a CSRF token using the <code>$csrfTokenStore</code> given to
+     * the constructor.  This CSRF token will be checked on {@link finish()} to prevent
+     * request forgery.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#oa2-authorize">/oauth2/authorize</a>.
+     *
+     * @param string|null $urlState
+     *    Any data you would like to keep in the URL through the authorization process.
+     *    This exact state will be returned to you by {@link finish()}.
+     *
+     * @return array
+     *    The URL to redirect the user to.
+     *
+     * @throws Exception
+     */
+    function start($urlState = null)
+    {
+        Checker::argStringOrNull("urlState", $urlState);
+
+        $csrfToken = self::encodeCsrfToken(Security::getRandomBytes(16));
+        $state = $csrfToken;
+        if ($urlState !== null) {
+            $state .= "|";
+            $state .= $urlState;
+        }
+        $this->csrfTokenStore->set($csrfToken);
+
+        return $this->_getAuthorizeUrl($this->redirectUri, $state);
+    }
+
+    private static function encodeCsrfToken($string)
+    {
+        return strtr(base64_encode($string), '+/', '-_');
+    }
+
+    /**
+     * Call this after the user has visited the authorize URL ({@link start()}), approved your app,
+     * and was redirected to your redirect URI.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#oa2-token">/oauth2/token</a>.
+     *
+     * @param array $queryParams
+     *    The query parameters on the GET request to your redirect URI.
+     *
+     * @return array
+     *    A <code>list(string $accessToken, string $userId, string $urlState)</code>, where
+     *    <code>$accessToken</code> can be used to construct a {@link Client}, <code>$userId</code>
+     *    is the user ID of the user's Dropbox account, and <code>$urlState</code> is the
+     *    value you originally passed in to {@link start()}.
+     *
+     * @throws Exception
+     *    Thrown if there's an error getting the access token from Dropbox.
+     * @throws WebAuthException_BadRequest
+     * @throws WebAuthException_BadState
+     * @throws WebAuthException_Csrf
+     * @throws WebAuthException_NotApproved
+     * @throws WebAuthException_Provider
+     */
+    function finish($queryParams)
+    {
+        Checker::argArray("queryParams", $queryParams);
+
+        $csrfTokenFromSession = $this->csrfTokenStore->get();
+        Checker::argStringOrNull("this->csrfTokenStore->get()", $csrfTokenFromSession);
+
+        // Check well-formedness of request.
+
+        if (!isset($queryParams['state'])) {
+            throw new WebAuthException_BadRequest("Missing query parameter 'state'.");
+        }
+        $state = $queryParams['state'];
+        Checker::argString("queryParams['state']", $state);
+
+        $error = null;
+        $errorDescription = null;
+        if (isset($queryParams['error'])) {
+            $error = $queryParams['error'];
+            Checker::argString("queryParams['error']", $error);
+            if (isset($queryParams['error_description'])) {
+                $errorDescription = $queryParams['error_description'];
+                Checker::argString("queryParams['error_description']", $errorDescription);
+            }
+        }
+
+        $code = null;
+        if (isset($queryParams['code'])) {
+            $code = $queryParams['code'];
+            Checker::argString("queryParams['code']", $code);
+        }
+
+        if ($code !== null && $error !== null) {
+            throw new WebAuthException_BadRequest("Query parameters 'code' and 'error' are both set;".
+                                                 " only one must be set.");
+        }
+        if ($code === null && $error === null) {
+            throw new WebAuthException_BadRequest("Neither query parameter 'code' or 'error' is set.");
+        }
+
+        // Check CSRF token
+
+        if ($csrfTokenFromSession === null) {
+            throw new WebAuthException_BadState();
+        }
+
+        $splitPos = strpos($state, "|");
+        if ($splitPos === false) {
+            $givenCsrfToken = $state;
+            $urlState = null;
+        } else {
+            $givenCsrfToken = substr($state, 0, $splitPos);
+            $urlState = substr($state, $splitPos + 1);
+        }
+        if (!Security::stringEquals($csrfTokenFromSession, $givenCsrfToken)) {
+            throw new WebAuthException_Csrf("Expected ".Client::q($csrfTokenFromSession).
+                                           ", got ".Client::q($givenCsrfToken).".");
+        }
+        $this->csrfTokenStore->clear();
+
+        // Check for error identifier
+
+        if ($error !== null) {
+            if ($error === 'access_denied') {
+                // When the user clicks "Deny".
+                if ($errorDescription === null) {
+                    throw new WebAuthException_NotApproved("No additional description from Dropbox.");
+                } else {
+                    throw new WebAuthException_NotApproved("Additional description from Dropbox: $errorDescription");
+                }
+            } else {
+                // All other errors.
+                $fullMessage = $error;
+                if ($errorDescription !== null) {
+                    $fullMessage .= ": ";
+                    $fullMessage .= $errorDescription;
+                }
+                throw new WebAuthException_Provider($fullMessage);
+            }
+        }
+
+        // If everything went ok, make the network call to get an access token.
+
+        list($accessToken, $userId) = $this->_finish($code, $this->redirectUri);
+        return array($accessToken, $userId, $urlState);
+    }
+}
diff --git a/Resources/PHP/Dropbox/WebAuthBase.php b/Resources/PHP/Dropbox/WebAuthBase.php
new file mode 100644 (file)
index 0000000..4c702ca
--- /dev/null
@@ -0,0 +1,63 @@
+<?php
+namespace Dropbox;
+
+/**
+ * The base class for the two auth options.
+ */
+class WebAuthBase extends AuthBase
+{
+    protected function _getAuthorizeUrl($redirectUri, $state)
+    {
+        return RequestUtil::buildUrlForGetOrPut(
+            $this->userLocale,
+            $this->appInfo->getHost()->getWeb(),
+            "1/oauth2/authorize",
+            array(
+                "client_id" => $this->appInfo->getKey(),
+                "response_type" => "code",
+                "redirect_uri" => $redirectUri,
+                "state" => $state,
+            ));
+    }
+
+    protected function _finish($code, $originalRedirectUri)
+    {
+        // This endpoint requires "Basic" auth.
+        $clientCredentials = $this->appInfo->getKey().":".$this->appInfo->getSecret();
+        $authHeaderValue = "Basic ".base64_encode($clientCredentials);
+
+        $response = RequestUtil::doPostWithSpecificAuth(
+            $this->clientIdentifier, $authHeaderValue, $this->userLocale,
+            $this->appInfo->getHost()->getApi(),
+            "1/oauth2/token",
+            array(
+                "grant_type" => "authorization_code",
+                "code" => $code,
+                "redirect_uri" => $originalRedirectUri,
+            ));
+
+        if ($response->statusCode !== 200) throw RequestUtil::unexpectedStatus($response);
+
+        $parts = RequestUtil::parseResponseJson($response->body);
+
+        if (!array_key_exists('token_type', $parts) or !is_string($parts['token_type'])) {
+            throw new Exception_BadResponse("Missing \"token_type\" field.");
+        }
+        $tokenType = $parts['token_type'];
+        if (!array_key_exists('access_token', $parts) or !is_string($parts['access_token'])) {
+            throw new Exception_BadResponse("Missing \"access_token\" field.");
+        }
+        $accessToken = $parts['access_token'];
+        if (!array_key_exists('uid', $parts) or !is_string($parts['uid'])) {
+            throw new Exception_BadResponse("Missing \"uid\" string field.");
+        }
+        $userId = $parts['uid'];
+
+        if ($tokenType !== "Bearer" && $tokenType !== "bearer") {
+            throw new Exception_BadResponse("Unknown \"token_type\"; expecting \"Bearer\", got  "
+                                            .Client::q($tokenType));
+        }
+
+        return array($accessToken, $userId);
+    }
+}
diff --git a/Resources/PHP/Dropbox/WebAuthException/BadRequest.php b/Resources/PHP/Dropbox/WebAuthException/BadRequest.php
new file mode 100644 (file)
index 0000000..d77986f
--- /dev/null
@@ -0,0 +1,20 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Thrown if the redirect URL was missing parameters or if the given parameters were not valid.
+ *
+ * The recommended action is to show an HTTP 400 error page.
+ */
+class WebAuthException_BadRequest extends \Exception
+{
+    /**
+     * @param string $message
+     *
+     * @internal
+     */
+    function __construct($message)
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/WebAuthException/BadState.php b/Resources/PHP/Dropbox/WebAuthException/BadState.php
new file mode 100644 (file)
index 0000000..cdb0ff9
--- /dev/null
@@ -0,0 +1,19 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Thrown if all the parameters are correct, but there's no CSRF token in the session.  This
+ * probably means that the session expired.
+ *
+ * The recommended action is to redirect the user's browser to try the approval process again.
+ */
+class WebAuthException_BadState extends \Exception
+{
+    /**
+     * @internal
+     */
+    function __construct()
+    {
+        parent::__construct("Missing CSRF token in session.");
+    }
+}
diff --git a/Resources/PHP/Dropbox/WebAuthException/Csrf.php b/Resources/PHP/Dropbox/WebAuthException/Csrf.php
new file mode 100644 (file)
index 0000000..fa778b3
--- /dev/null
@@ -0,0 +1,21 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Thrown if the given 'state' parameter doesn't contain the CSRF token from the user's session.
+ * This is blocked to prevent CSRF attacks.
+ *
+ * The recommended action is to respond with an HTTP 403 error page.
+ */
+class WebAuthException_Csrf extends \Exception
+{
+    /**
+     * @param string $message
+     *
+     * @internal
+     */
+    function __construct($message)
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/WebAuthException/NotApproved.php b/Resources/PHP/Dropbox/WebAuthException/NotApproved.php
new file mode 100644 (file)
index 0000000..4d0ae9d
--- /dev/null
@@ -0,0 +1,18 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Thrown if the user chose not to grant your app access to their Dropbox account.
+ */
+class WebAuthException_NotApproved extends \Exception
+{
+    /**
+     * @param string $message
+     *
+     * @internal
+     */
+    function __construct($message)
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/WebAuthException/Provider.php b/Resources/PHP/Dropbox/WebAuthException/Provider.php
new file mode 100644 (file)
index 0000000..67049c5
--- /dev/null
@@ -0,0 +1,18 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Thrown if Dropbox returns some other error about the authorization request.
+ */
+class WebAuthException_Provider extends \Exception
+{
+    /**
+     * @param string $message
+     *
+     * @internal
+     */
+    function __construct($message)
+    {
+        parent::__construct($message);
+    }
+}
diff --git a/Resources/PHP/Dropbox/WebAuthNoRedirect.php b/Resources/PHP/Dropbox/WebAuthNoRedirect.php
new file mode 100644 (file)
index 0000000..db7efce
--- /dev/null
@@ -0,0 +1,83 @@
+<?php
+namespace Dropbox;
+
+/**
+ * OAuth 2 code-based authorization for apps that can't provide a redirect URI, typically
+ * command-line example apps.
+ *
+ * Use {@link WebAuth::start()} and {@link WebAuth::getToken()} to guide your
+ * user through the process of giving your app access to their Dropbox account.  At the end, you
+ * will have an {@link AccessToken}, which you can pass to {@link Client} and start making
+ * API calls.
+ *
+ * Example:
+ *
+ * <code>
+ * use \Dropbox as dbx;
+ * $appInfo = dbx\AppInfo::loadFromJsonFile(...);
+ * $clientIdentifier = "my-app/1.0";
+ * $webAuth = new dbx\WebAuthNoRedirect($appInfo, $clientIdentifier, ...);
+ *
+ * $authorizeUrl = $webAuth->start();
+ *
+ * print("1. Go to: $authorizeUrl\n");
+ * print("2. Click "Allow" (you might have to log in first).\n");
+ * print("3. Copy the authorization code.\n");
+ * print("Enter the authorization code here: ");
+ * $code = \trim(\fgets(STDIN));
+ *
+ * try {
+ *    list($accessToken, $userId) = $webAuth->finish($code);
+ * }
+ * catch (dbx\Exception $ex) {
+ *    print("Error communicating with Dropbox API: " . $ex->getMessage() . "\n");
+ * }
+ *
+ * $client = dbx\Client($accessToken, $clientIdentifier, ...);
+ * </code>
+ */
+class WebAuthNoRedirect extends WebAuthBase
+{
+    /**
+     * Returns the URL of the authorization page the user must visit.  If the user approves
+     * your app, they will be shown the authorization code on the web page.  They will need to
+     * copy/paste that code into your application so your app can pass it to
+     * {@link finish}.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#oa2-authorize">/oauth2/authorize</a>.
+     *
+     * @return string
+     *    An authorization URL.  Direct the user's browser to this URL.  After the user decides
+     *    whether to authorize your app or not, Dropbox will show the user an authorization code,
+     *    which the user will need to give to your application (e.g. via copy/paste).
+     */
+    function start()
+    {
+        return $this->_getAuthorizeUrl(null, null);
+    }
+
+    /**
+     * Call this after the user has visited the authorize URL returned by {@link start()},
+     * approved your app, was presented with an authorization code by Dropbox, and has copy/paste'd
+     * that authorization code into your app.
+     *
+     * See <a href="https://www.dropbox.com/developers/core/docs#oa2-token">/oauth2/token</a>.
+     *
+     * @param string $code
+     *    The authorization code provided to the user by Dropbox.
+     *
+     * @return array
+     *    A <code>list(string $accessToken, string $userId)</code>, where
+     *    <code>$accessToken</code> can be used to construct a {@link Client} and
+     *    <code>$userId</code> is the user ID of the user's Dropbox account.
+     *
+     * @throws Exception
+     *    Thrown if there's an error getting the access token from Dropbox.
+     */
+    function finish($code)
+    {
+        Checker::argStringNonEmpty("code", $code);
+        return $this->_finish($code, null);
+    }
+}
+
diff --git a/Resources/PHP/Dropbox/WriteMode.php b/Resources/PHP/Dropbox/WriteMode.php
new file mode 100644 (file)
index 0000000..9ea645b
--- /dev/null
@@ -0,0 +1,116 @@
+<?php
+namespace Dropbox;
+
+/**
+ * Describes how a file should be saved when it is written to Dropbox.
+ */
+final class WriteMode
+{
+    /**
+     * The URL parameters to pass to the file uploading endpoint to achieve the
+     * desired write mode.
+     *
+     * @var array
+     */
+    private $extraParams;
+
+    /**
+     * @internal
+     */
+    private function __construct($extraParams)
+    {
+        $this->extraParams = $extraParams;
+    }
+
+    /**
+     * @internal
+     */
+    function getExtraParams()
+    {
+        return $this->extraParams;
+    }
+
+    /**
+     * Returns a {@link WriteMode} for adding a new file.  If a file at the specified path already
+     * exists, the new file will be renamed automatically.
+     *
+     * For example, if you're trying to upload a file to "/Notes/Groceries.txt", but there's
+     * already a file there, your file will be written to "/Notes/Groceries (1).txt".
+     *
+     * You can determine whether your file was renamed by checking the "path" field of the
+     * metadata object returned by the API call.
+     *
+     * @return WriteMode
+     */
+    static function add()
+    {
+        if (self::$addInstance === null) {
+            self::$addInstance = new WriteMode(array("overwrite" => "false"));
+        }
+        return self::$addInstance;
+    }
+    private static $addInstance = null;
+
+    /**
+     * Returns a {@link WriteMode} for forcing a file to be at a certain path.  If there's already
+     * a file at that path, the existing file will be overwritten.  If there's a folder at that
+     * path, however, it will not be overwritten and the API call will fail.
+     *
+     * @return WriteMode
+     */
+    static function force()
+    {
+        if (self::$forceInstance === null) {
+            self::$forceInstance = new WriteMode(array("overwrite" => "true"));
+        }
+        return self::$forceInstance;
+    }
+    private static $forceInstance = null;
+
+    /**
+     * Returns a {@link WriteMode} for updating an existing file.  This is useful for when you
+     * have downloaded a file, made modifications, and want to save your modifications back to
+     * Dropbox.  You need to specify the revision of the copy of the file you downloaded (it's
+     * the "rev" parameter of the file's metadata object).
+     *
+     * If, when you attempt to save, the revision of the file currently on Dropbox matches
+     * $revToReplace, the file on Dropbox will be overwritten with the new contents you provide.
+     *
+     * If the revision of the file currently on Dropbox doesn't match $revToReplace, Dropbox will
+     * create a new file and save your contents to that file.  For example, if the original file
+     * path is "/Notes/Groceries.txt", the new file's path might be
+     * "/Notes/Groceries (conflicted copy).txt".
+     *
+     * You can determine whether your file was renamed by checking the "path" field of the
+     * metadata object returned by the API call.
+     *
+     * @param string $revToReplace
+     * @return WriteMode
+     */
+    static function update($revToReplace)
+    {
+        return new WriteMode(array("parent_rev" => $revToReplace));
+    }
+
+    /**
+     * Check that a function argument is of type <code>WriteMode</code>.
+     *
+     * @internal
+     */
+    static function checkArg($argName, $argValue)
+    {
+        if (!($argValue instanceof self)) Checker::throwError($argName, $argValue, __CLASS__);
+    }
+
+    /**
+     * Check that a function argument is either <code>null</code> or of type
+     * <code>WriteMode</code>.
+     *
+     * @internal
+     */
+    static function checkArgOrNull($argName, $argValue)
+    {
+        if ($argValue === null) return;
+        if (!($argValue instanceof self)) Checker::throwError($argName, $argValue, __CLASS__);
+    }
+}
diff --git a/Resources/PHP/Dropbox/autoload.php b/Resources/PHP/Dropbox/autoload.php
new file mode 100644 (file)
index 0000000..abb3cd8
--- /dev/null
@@ -0,0 +1,31 @@
+<?php
+namespace Dropbox;
+
+// The Dropbox SDK autoloader.  You probably shouldn't be using this.  Instead,
+// use a global autoloader, like the Composer autoloader.
+//
+// But if you really don't want to use a global autoloader, do this:
+//
+//     require_once "<path-to-here>/Dropbox/autoload.php"
+
+/**
+ * @internal
+ */
+function autoload($name)
+{
+    // If the name doesn't start with "Dropbox\", then its not once of our classes.
+    if (\substr_compare($name, "Dropbox\\", 0, 8) !== 0) return;
+
+    // Take the "Dropbox\" prefix off.
+    $stem = \substr($name, 8);
+
+    // Convert "\" and "_" to path separators.
+    $pathified_stem = \str_replace(array("\\", "_"), '/', $stem);
+
+    $path = __DIR__ . "/" . $pathified_stem . ".php";
+    if (\is_file($path)) {
+        require_once $path;
+    }
+}
+
+\spl_autoload_register('Dropbox\autoload');
diff --git a/Resources/PHP/Dropbox/certs/trusted-certs.crt b/Resources/PHP/Dropbox/certs/trusted-certs.crt
new file mode 100644 (file)
index 0000000..d0b8ebe
--- /dev/null
@@ -0,0 +1,1396 @@
+# DigiCert Assured ID Root CA.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number:
+#             0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39
+#     Signature Algorithm: sha1WithRSAEncryption
+#         Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Assured ID Root CA
+#         Validity
+#             Not Before: Nov 10 00:00:00 2006 GMT
+#             Not After : Nov 10 00:00:00 2031 GMT
+#         Subject: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Assured ID Root CA
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:ad:0e:15:ce:e4:43:80:5c:b1:87:f3:b7:60:f9:
+#                     71:12:a5:ae:dc:26:94:88:aa:f4:ce:f5:20:39:28:
+#                     58:60:0c:f8:80:da:a9:15:95:32:61:3c:b5:b1:28:
+#                     84:8a:8a:dc:9f:0a:0c:83:17:7a:8f:90:ac:8a:e7:
+#                     79:53:5c:31:84:2a:f6:0f:98:32:36:76:cc:de:dd:
+#                     3c:a8:a2:ef:6a:fb:21:f2:52:61:df:9f:20:d7:1f:
+#                     e2:b1:d9:fe:18:64:d2:12:5b:5f:f9:58:18:35:bc:
+#                     47:cd:a1:36:f9:6b:7f:d4:b0:38:3e:c1:1b:c3:8c:
+#                     33:d9:d8:2f:18:fe:28:0f:b3:a7:83:d6:c3:6e:44:
+#                     c0:61:35:96:16:fe:59:9c:8b:76:6d:d7:f1:a2:4b:
+#                     0d:2b:ff:0b:72:da:9e:60:d0:8e:90:35:c6:78:55:
+#                     87:20:a1:cf:e5:6d:0a:c8:49:7c:31:98:33:6c:22:
+#                     e9:87:d0:32:5a:a2:ba:13:82:11:ed:39:17:9d:99:
+#                     3a:72:a1:e6:fa:a4:d9:d5:17:31:75:ae:85:7d:22:
+#                     ae:3f:01:46:86:f6:28:79:c8:b1:da:e4:57:17:c4:
+#                     7e:1c:0e:b0:b4:92:a6:56:b3:bd:b2:97:ed:aa:a7:
+#                     f0:b7:c5:a8:3f:95:16:d0:ff:a1:96:eb:08:5f:18:
+#                     77:4f
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Key Usage: critical
+#                 Digital Signature, Certificate Sign, CRL Sign
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Subject Key Identifier:
+#                 45:EB:A2:AF:F4:92:CB:82:31:2D:51:8B:A7:A7:21:9D:F3:6D:C8:0F
+#             X509v3 Authority Key Identifier:
+#                 keyid:45:EB:A2:AF:F4:92:CB:82:31:2D:51:8B:A7:A7:21:9D:F3:6D:C8:0F
+#
+#     Signature Algorithm: sha1WithRSAEncryption
+#          a2:0e:bc:df:e2:ed:f0:e3:72:73:7a:64:94:bf:f7:72:66:d8:
+#          32:e4:42:75:62:ae:87:eb:f2:d5:d9:de:56:b3:9f:cc:ce:14:
+#          28:b9:0d:97:60:5c:12:4c:58:e4:d3:3d:83:49:45:58:97:35:
+#          69:1a:a8:47:ea:56:c6:79:ab:12:d8:67:81:84:df:7f:09:3c:
+#          94:e6:b8:26:2c:20:bd:3d:b3:28:89:f7:5f:ff:22:e2:97:84:
+#          1f:e9:65:ef:87:e0:df:c1:67:49:b3:5d:eb:b2:09:2a:eb:26:
+#          ed:78:be:7d:3f:2b:f3:b7:26:35:6d:5f:89:01:b6:49:5b:9f:
+#          01:05:9b:ab:3d:25:c1:cc:b6:7f:c2:f1:6f:86:c6:fa:64:68:
+#          eb:81:2d:94:eb:42:b7:fa:8c:1e:dd:62:f1:be:50:67:b7:6c:
+#          bd:f3:f1:1f:6b:0c:36:07:16:7f:37:7c:a9:5b:6d:7a:f1:12:
+#          46:60:83:d7:27:04:be:4b:ce:97:be:c3:67:2a:68:11:df:80:
+#          e7:0c:33:66:bf:13:0d:14:6e:f3:7f:1f:63:10:1e:fa:8d:1b:
+#          25:6d:6c:8f:a5:b7:61:01:b1:d2:a3:26:a1:10:71:9d:ad:e2:
+#          c3:f9:c3:99:51:b7:2b:07:08:ce:2e:e6:50:b2:a7:fa:0a:45:
+#          2f:a2:f0:f2
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# DigiCert Global Root CA.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number:
+#             08:3b:e0:56:90:42:46:b1:a1:75:6a:c9:59:91:c7:4a
+#     Signature Algorithm: sha1WithRSAEncryption
+#         Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root CA
+#         Validity
+#             Not Before: Nov 10 00:00:00 2006 GMT
+#             Not After : Nov 10 00:00:00 2031 GMT
+#         Subject: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert Global Root CA
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:e2:3b:e1:11:72:de:a8:a4:d3:a3:57:aa:50:a2:
+#                     8f:0b:77:90:c9:a2:a5:ee:12:ce:96:5b:01:09:20:
+#                     cc:01:93:a7:4e:30:b7:53:f7:43:c4:69:00:57:9d:
+#                     e2:8d:22:dd:87:06:40:00:81:09:ce:ce:1b:83:bf:
+#                     df:cd:3b:71:46:e2:d6:66:c7:05:b3:76:27:16:8f:
+#                     7b:9e:1e:95:7d:ee:b7:48:a3:08:da:d6:af:7a:0c:
+#                     39:06:65:7f:4a:5d:1f:bc:17:f8:ab:be:ee:28:d7:
+#                     74:7f:7a:78:99:59:85:68:6e:5c:23:32:4b:bf:4e:
+#                     c0:e8:5a:6d:e3:70:bf:77:10:bf:fc:01:f6:85:d9:
+#                     a8:44:10:58:32:a9:75:18:d5:d1:a2:be:47:e2:27:
+#                     6a:f4:9a:33:f8:49:08:60:8b:d4:5f:b4:3a:84:bf:
+#                     a1:aa:4a:4c:7d:3e:cf:4f:5f:6c:76:5e:a0:4b:37:
+#                     91:9e:dc:22:e6:6d:ce:14:1a:8e:6a:cb:fe:cd:b3:
+#                     14:64:17:c7:5b:29:9e:32:bf:f2:ee:fa:d3:0b:42:
+#                     d4:ab:b7:41:32:da:0c:d4:ef:f8:81:d5:bb:8d:58:
+#                     3f:b5:1b:e8:49:28:a2:70:da:31:04:dd:f7:b2:16:
+#                     f2:4c:0a:4e:07:a8:ed:4a:3d:5e:b5:7f:a3:90:c3:
+#                     af:27
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Key Usage: critical
+#                 Digital Signature, Certificate Sign, CRL Sign
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Subject Key Identifier:
+#                 03:DE:50:35:56:D1:4C:BB:66:F0:A3:E2:1B:1B:C3:97:B2:3D:D1:55
+#             X509v3 Authority Key Identifier:
+#                 keyid:03:DE:50:35:56:D1:4C:BB:66:F0:A3:E2:1B:1B:C3:97:B2:3D:D1:55
+#
+#     Signature Algorithm: sha1WithRSAEncryption
+#          cb:9c:37:aa:48:13:12:0a:fa:dd:44:9c:4f:52:b0:f4:df:ae:
+#          04:f5:79:79:08:a3:24:18:fc:4b:2b:84:c0:2d:b9:d5:c7:fe:
+#          f4:c1:1f:58:cb:b8:6d:9c:7a:74:e7:98:29:ab:11:b5:e3:70:
+#          a0:a1:cd:4c:88:99:93:8c:91:70:e2:ab:0f:1c:be:93:a9:ff:
+#          63:d5:e4:07:60:d3:a3:bf:9d:5b:09:f1:d5:8e:e3:53:f4:8e:
+#          63:fa:3f:a7:db:b4:66:df:62:66:d6:d1:6e:41:8d:f2:2d:b5:
+#          ea:77:4a:9f:9d:58:e2:2b:59:c0:40:23:ed:2d:28:82:45:3e:
+#          79:54:92:26:98:e0:80:48:a8:37:ef:f0:d6:79:60:16:de:ac:
+#          e8:0e:cd:6e:ac:44:17:38:2f:49:da:e1:45:3e:2a:b9:36:53:
+#          cf:3a:50:06:f7:2e:e8:c4:57:49:6c:61:21:18:d5:04:ad:78:
+#          3c:2c:3a:80:6b:a7:eb:af:15:14:e9:d8:89:c1:b9:38:6c:e2:
+#          91:6c:8a:ff:64:b9:77:25:57:30:c0:1b:24:a3:e1:dc:e9:df:
+#          47:7c:b5:b4:24:08:05:30:ec:2d:bd:0b:bf:45:bf:50:b9:a9:
+#          f3:eb:98:01:12:ad:c8:88:c6:98:34:5f:8d:0a:3c:c6:e9:d5:
+#          95:95:6d:de
+-----BEGIN CERTIFICATE-----
+MIIDrzCCApegAwIBAgIQCDvgVpBCRrGhdWrJWZHHSjANBgkqhkiG9w0BAQUFADBh
+MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3
+d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBD
+QTAeFw0wNjExMTAwMDAwMDBaFw0zMTExMTAwMDAwMDBaMGExCzAJBgNVBAYTAlVT
+MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j
+b20xIDAeBgNVBAMTF0RpZ2lDZXJ0IEdsb2JhbCBSb290IENBMIIBIjANBgkqhkiG
+9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jvhEXLeqKTTo1eqUKKPC3eQyaKl7hLOllsB
+CSDMAZOnTjC3U/dDxGkAV53ijSLdhwZAAIEJzs4bg7/fzTtxRuLWZscFs3YnFo97
+nh6Vfe63SKMI2tavegw5BmV/Sl0fvBf4q77uKNd0f3p4mVmFaG5cIzJLv07A6Fpt
+43C/dxC//AH2hdmoRBBYMql1GNXRor5H4idq9Joz+EkIYIvUX7Q6hL+hqkpMfT7P
+T19sdl6gSzeRntwi5m3OFBqOasv+zbMUZBfHWymeMr/y7vrTC0LUq7dBMtoM1O/4
+gdW7jVg/tRvoSSiicNoxBN33shbyTApOB6jtSj1etX+jkMOvJwIDAQABo2MwYTAO
+BgNVHQ8BAf8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUA95QNVbR
+TLtm8KPiGxvDl7I90VUwHwYDVR0jBBgwFoAUA95QNVbRTLtm8KPiGxvDl7I90VUw
+DQYJKoZIhvcNAQEFBQADggEBAMucN6pIExIK+t1EnE9SsPTfrgT1eXkIoyQY/Esr
+hMAtudXH/vTBH1jLuG2cenTnmCmrEbXjcKChzUyImZOMkXDiqw8cvpOp/2PV5Adg
+06O/nVsJ8dWO41P0jmP6P6fbtGbfYmbW0W5BjfIttep3Sp+dWOIrWcBAI+0tKIJF
+PnlUkiaY4IBIqDfv8NZ5YBberOgOzW6sRBc4L0na4UU+Krk2U886UAb3LujEV0ls
+YSEY1QSteDwsOoBrp+uvFRTp2InBuThs4pFsiv9kuXclVzDAGySj4dzp30d8tbQk
+CAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4=
+-----END CERTIFICATE-----
+# DigiCert High Assurance EV Root CA.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number:
+#             02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
+#     Signature Algorithm: sha1WithRSAEncryption
+#         Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA
+#         Validity
+#             Not Before: Nov 10 00:00:00 2006 GMT
+#             Not After : Nov 10 00:00:00 2031 GMT
+#         Subject: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert High Assurance EV Root CA
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:
+#                     e5:81:3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:
+#                     a2:0a:1c:b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:
+#                     a4:a9:41:59:3a:d3:dc:94:d6:3c:db:74:38:a4:4a:
+#                     cc:4d:25:82:f7:4a:a5:53:12:38:ee:f3:49:6d:71:
+#                     91:7e:63:b6:ab:a6:5f:c3:a4:84:f8:4f:62:51:be:
+#                     f8:c5:ec:db:38:92:e3:06:e5:08:91:0c:c4:28:41:
+#                     55:fb:cb:5a:89:15:7e:71:e8:35:bf:4d:72:09:3d:
+#                     be:3a:38:50:5b:77:31:1b:8d:b3:c7:24:45:9a:a7:
+#                     ac:6d:00:14:5a:04:b7:ba:13:eb:51:0a:98:41:41:
+#                     22:4e:65:61:87:81:41:50:a6:79:5c:89:de:19:4a:
+#                     57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:06:16:a4:
+#                     68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:db:5e:
+#                     64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:79:
+#                     39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
+#                     a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:
+#                     87:5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:
+#                     4b:cb
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Key Usage: critical
+#                 Digital Signature, Certificate Sign, CRL Sign
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Subject Key Identifier:
+#                 B1:3E:C3:69:03:F8:BF:47:01:D4:98:26:1A:08:02:EF:63:64:2B:C3
+#             X509v3 Authority Key Identifier:
+#                 keyid:B1:3E:C3:69:03:F8:BF:47:01:D4:98:26:1A:08:02:EF:63:64:2B:C3
+#
+#     Signature Algorithm: sha1WithRSAEncryption
+#          1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:21:47:
+#          f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:7a:d9:11:65:
+#          8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:b8:91:e8:43:2c:8e:
+#          b3:78:ce:db:e3:53:79:71:d6:e5:21:94:01:da:55:87:9a:24:
+#          64:f6:8a:66:cc:de:9c:37:cd:a8:34:b1:69:9b:23:c8:9e:78:
+#          22:2b:70:43:e3:55:47:31:61:19:ef:58:c5:85:2f:4e:30:f6:
+#          a0:31:16:23:c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:
+#          5e:8b:31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
+#          15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:0a:c4:
+#          97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:55:f2:48:69:
+#          d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:ba:70:26:5d:90:60:
+#          9e:bc:4b:17:09:2f:b4:cb:1e:43:68:c9:07:27:c1:d2:5c:f7:
+#          ea:21:b9:68:12:9c:3c:9c:bf:9e:fc:80:5c:9b:63:cd:ec:47:
+#          aa:25:27:67:a0:37:f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:
+#          77:e8:1f:4a
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# Entrust Root Certification Authority - EC1.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number:
+#             a6:8b:79:29:00:00:00:00:50:d0:91:f9
+#     Signature Algorithm: ecdsa-with-SHA384
+#         Issuer: C=US, O=Entrust, Inc., OU=See www.entrust.net/legal-terms, OU=(c) 2012 Entrust, Inc. - for authorized use only, CN=Entrust Root Certification Authority - EC1
+#         Validity
+#             Not Before: Dec 18 15:25:36 2012 GMT
+#             Not After : Dec 18 15:55:36 2037 GMT
+#         Subject: C=US, O=Entrust, Inc., OU=See www.entrust.net/legal-terms, OU=(c) 2012 Entrust, Inc. - for authorized use only, CN=Entrust Root Certification Authority - EC1
+#         Subject Public Key Info:
+#             Public Key Algorithm: id-ecPublicKey
+#                 Public-Key: (384 bit)
+#                 pub:
+#                     04:84:13:c9:d0:ba:6d:41:7b:e2:6c:d0:eb:55:5f:
+#                     66:02:1a:24:f4:5b:89:69:47:e3:b8:c2:7d:f1:f2:
+#                     02:c5:9f:a0:f6:5b:d5:8b:06:19:86:4f:53:10:6d:
+#                     07:24:27:a1:a0:f8:d5:47:19:61:4c:7d:ca:93:27:
+#                     ea:74:0c:ef:6f:96:09:fe:63:ec:70:5d:36:ad:67:
+#                     77:ae:c9:9d:7c:55:44:3a:a2:63:51:1f:f5:e3:62:
+#                     d4:a9:47:07:3e:cc:20
+#                 ASN1 OID: secp384r1
+#         X509v3 extensions:
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Subject Key Identifier:
+#                 B7:63:E7:1A:DD:8D:E9:08:A6:55:83:A4:E0:6A:50:41:65:11:42:49
+#     Signature Algorithm: ecdsa-with-SHA384
+#          30:64:02:30:61:79:d8:e5:42:47:df:1c:ae:53:99:17:b6:6f:
+#          1c:7d:e1:bf:11:94:d1:03:88:75:e4:8d:89:a4:8a:77:46:de:
+#          6d:61:ef:02:f5:fb:b5:df:cc:fe:4e:ff:fe:a9:e6:a7:02:30:
+#          5b:99:d7:85:37:06:b5:7b:08:fd:eb:27:8b:4a:94:f9:e1:fa:
+#          a7:8e:26:08:e8:7c:92:68:6d:73:d8:6f:26:ac:21:02:b8:99:
+#          b7:26:41:5b:25:60:ae:d0:48:1a:ee:06
+-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
+# Entrust Root Certification Authority - G2.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number: 1246989352 (0x4a538c28)
+#     Signature Algorithm: sha256WithRSAEncryption
+#         Issuer: C=US, O=Entrust, Inc., OU=See www.entrust.net/legal-terms, OU=(c) 2009 Entrust, Inc. - for authorized use only, CN=Entrust Root Certification Authority - G2
+#         Validity
+#             Not Before: Jul  7 17:25:54 2009 GMT
+#             Not After : Dec  7 17:55:54 2030 GMT
+#         Subject: C=US, O=Entrust, Inc., OU=See www.entrust.net/legal-terms, OU=(c) 2009 Entrust, Inc. - for authorized use only, CN=Entrust Root Certification Authority - G2
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:ba:84:b6:72:db:9e:0c:6b:e2:99:e9:30:01:a7:
+#                     76:ea:32:b8:95:41:1a:c9:da:61:4e:58:72:cf:fe:
+#                     f6:82:79:bf:73:61:06:0a:a5:27:d8:b3:5f:d3:45:
+#                     4e:1c:72:d6:4e:32:f2:72:8a:0f:f7:83:19:d0:6a:
+#                     80:80:00:45:1e:b0:c7:e7:9a:bf:12:57:27:1c:a3:
+#                     68:2f:0a:87:bd:6a:6b:0e:5e:65:f3:1c:77:d5:d4:
+#                     85:8d:70:21:b4:b3:32:e7:8b:a2:d5:86:39:02:b1:
+#                     b8:d2:47:ce:e4:c9:49:c4:3b:a7:de:fb:54:7d:57:
+#                     be:f0:e8:6e:c2:79:b2:3a:0b:55:e2:50:98:16:32:
+#                     13:5c:2f:78:56:c1:c2:94:b3:f2:5a:e4:27:9a:9f:
+#                     24:d7:c6:ec:d0:9b:25:82:e3:cc:c2:c4:45:c5:8c:
+#                     97:7a:06:6b:2a:11:9f:a9:0a:6e:48:3b:6f:db:d4:
+#                     11:19:42:f7:8f:07:bf:f5:53:5f:9c:3e:f4:17:2c:
+#                     e6:69:ac:4e:32:4c:62:77:ea:b7:e8:e5:bb:34:bc:
+#                     19:8b:ae:9c:51:e7:b7:7e:b5:53:b1:33:22:e5:6d:
+#                     cf:70:3c:1a:fa:e2:9b:67:b6:83:f4:8d:a5:af:62:
+#                     4c:4d:e0:58:ac:64:34:12:03:f8:b6:8d:94:63:24:
+#                     a4:71
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Subject Key Identifier:
+#                 6A:72:26:7A:D0:1E:EF:7D:E7:3B:69:51:D4:6C:8D:9F:90:12:66:AB
+#     Signature Algorithm: sha256WithRSAEncryption
+#          79:9f:1d:96:c6:b6:79:3f:22:8d:87:d3:87:03:04:60:6a:6b:
+#          9a:2e:59:89:73:11:ac:43:d1:f5:13:ff:8d:39:2b:c0:f2:bd:
+#          4f:70:8c:a9:2f:ea:17:c4:0b:54:9e:d4:1b:96:98:33:3c:a8:
+#          ad:62:a2:00:76:ab:59:69:6e:06:1d:7e:c4:b9:44:8d:98:af:
+#          12:d4:61:db:0a:19:46:47:f3:eb:f7:63:c1:40:05:40:a5:d2:
+#          b7:f4:b5:9a:36:bf:a9:88:76:88:04:55:04:2b:9c:87:7f:1a:
+#          37:3c:7e:2d:a5:1a:d8:d4:89:5e:ca:bd:ac:3d:6c:d8:6d:af:
+#          d5:f3:76:0f:cd:3b:88:38:22:9d:6c:93:9a:c4:3d:bf:82:1b:
+#          65:3f:a6:0f:5d:aa:fc:e5:b2:15:ca:b5:ad:c6:bc:3d:d0:84:
+#          e8:ea:06:72:b0:4d:39:32:78:bf:3e:11:9c:0b:a4:9d:9a:21:
+#          f3:f0:9b:0b:30:78:db:c1:dc:87:43:fe:bc:63:9a:ca:c5:c2:
+#          1c:c9:c7:8d:ff:3b:12:58:08:e6:b6:3d:ec:7a:2c:4e:fb:83:
+#          96:ce:0c:3c:69:87:54:73:a4:73:c2:93:ff:51:10:ac:15:54:
+#          01:d8:fc:05:b1:89:a1:7f:74:83:9a:49:d7:dc:4e:7b:8a:48:
+#          6f:8b:45:f6
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# Entrust Root Certification Authority.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number: 1164660820 (0x456b5054)
+#     Signature Algorithm: sha1WithRSAEncryption
+#         Issuer: C=US, O=Entrust, Inc., OU=www.entrust.net/CPS is incorporated by reference, OU=(c) 2006 Entrust, Inc., CN=Entrust Root Certification Authority
+#         Validity
+#             Not Before: Nov 27 20:23:42 2006 GMT
+#             Not After : Nov 27 20:53:42 2026 GMT
+#         Subject: C=US, O=Entrust, Inc., OU=www.entrust.net/CPS is incorporated by reference, OU=(c) 2006 Entrust, Inc., CN=Entrust Root Certification Authority
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:b6:95:b6:43:42:fa:c6:6d:2a:6f:48:df:94:4c:
+#                     39:57:05:ee:c3:79:11:41:68:36:ed:ec:fe:9a:01:
+#                     8f:a1:38:28:fc:f7:10:46:66:2e:4d:1e:1a:b1:1a:
+#                     4e:c6:d1:c0:95:88:b0:c9:ff:31:8b:33:03:db:b7:
+#                     83:7b:3e:20:84:5e:ed:b2:56:28:a7:f8:e0:b9:40:
+#                     71:37:c5:cb:47:0e:97:2a:68:c0:22:95:62:15:db:
+#                     47:d9:f5:d0:2b:ff:82:4b:c9:ad:3e:de:4c:db:90:
+#                     80:50:3f:09:8a:84:00:ec:30:0a:3d:18:cd:fb:fd:
+#                     2a:59:9a:23:95:17:2c:45:9e:1f:6e:43:79:6d:0c:
+#                     5c:98:fe:48:a7:c5:23:47:5c:5e:fd:6e:e7:1e:b4:
+#                     f6:68:45:d1:86:83:5b:a2:8a:8d:b1:e3:29:80:fe:
+#                     25:71:88:ad:be:bc:8f:ac:52:96:4b:aa:51:8d:e4:
+#                     13:31:19:e8:4e:4d:9f:db:ac:b3:6a:d5:bc:39:54:
+#                     71:ca:7a:7a:7f:90:dd:7d:1d:80:d9:81:bb:59:26:
+#                     c2:11:fe:e6:93:e2:f7:80:e4:65:fb:34:37:0e:29:
+#                     80:70:4d:af:38:86:2e:9e:7f:57:af:9e:17:ae:eb:
+#                     1c:cb:28:21:5f:b6:1c:d8:e7:a2:04:22:f9:d3:da:
+#                     d8:cb
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Private Key Usage Period:
+#                 Not Before: Nov 27 20:23:42 2006 GMT, Not After: Nov 27 20:53:42 2026 GMT
+#             X509v3 Authority Key Identifier:
+#                 keyid:68:90:E4:67:A4:A6:53:80:C7:86:66:A4:F1:F7:4B:43:FB:84:BD:6D
+#
+#             X509v3 Subject Key Identifier:
+#                 68:90:E4:67:A4:A6:53:80:C7:86:66:A4:F1:F7:4B:43:FB:84:BD:6D
+#             1.2.840.113533.7.65.0:
+#                 0...V7.1:4.0....
+#     Signature Algorithm: sha1WithRSAEncryption
+#          93:d4:30:b0:d7:03:20:2a:d0:f9:63:e8:91:0c:05:20:a9:5f:
+#          19:ca:7b:72:4e:d4:b1:db:d0:96:fb:54:5a:19:2c:0c:08:f7:
+#          b2:bc:85:a8:9d:7f:6d:3b:52:b3:2a:db:e7:d4:84:8c:63:f6:
+#          0f:cb:26:01:91:50:6c:f4:5f:14:e2:93:74:c0:13:9e:30:3a:
+#          50:e3:b4:60:c5:1c:f0:22:44:8d:71:47:ac:c8:1a:c9:e9:9b:
+#          9a:00:60:13:ff:70:7e:5f:11:4d:49:1b:b3:15:52:7b:c9:54:
+#          da:bf:9d:95:af:6b:9a:d8:9e:e9:f1:e4:43:8d:e2:11:44:3a:
+#          bf:af:bd:83:42:73:52:8b:aa:bb:a7:29:cf:f5:64:1c:0a:4d:
+#          d1:bc:aa:ac:9f:2a:d0:ff:7f:7f:da:7d:ea:b1:ed:30:25:c1:
+#          84:da:34:d2:5b:78:83:56:ec:9c:36:c3:26:e2:11:f6:67:49:
+#          1d:92:ab:8c:fb:eb:ff:7a:ee:85:4a:a7:50:80:f0:a7:5c:4a:
+#          94:2e:5f:05:99:3c:52:41:e0:cd:b4:63:cf:01:43:ba:9c:83:
+#          dc:8f:60:3b:f3:5a:b4:b4:7b:ae:da:0b:90:38:75:ef:81:1d:
+#          66:d2:f7:57:70:36:b3:bf:fc:28:af:71:25:85:5b:13:fe:1e:
+#          7f:5a:b4:3c
+-----BEGIN CERTIFICATE-----
+MIIEkTCCA3mgAwIBAgIERWtQVDANBgkqhkiG9w0BAQUFADCBsDELMAkGA1UEBhMC
+VVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRydXN0
+Lm5ldC9DUFMgaXMgaW5jb3Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMW
+KGMpIDIwMDYgRW50cnVzdCwgSW5jLjEtMCsGA1UEAxMkRW50cnVzdCBSb290IENl
+cnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTA2MTEyNzIwMjM0MloXDTI2MTEyNzIw
+NTM0MlowgbAxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMuMTkw
+NwYDVQQLEzB3d3cuZW50cnVzdC5uZXQvQ1BTIGlzIGluY29ycG9yYXRlZCBieSBy
+ZWZlcmVuY2UxHzAdBgNVBAsTFihjKSAyMDA2IEVudHJ1c3QsIEluYy4xLTArBgNV
+BAMTJEVudHJ1c3QgUm9vdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTCCASIwDQYJ
+KoZIhvcNAQEBBQADggEPADCCAQoCggEBALaVtkNC+sZtKm9I35RMOVcF7sN5EUFo
+Nu3s/poBj6E4KPz3EEZmLk0eGrEaTsbRwJWIsMn/MYszA9u3g3s+IIRe7bJWKKf4
+4LlAcTfFy0cOlypowCKVYhXbR9n10Cv/gkvJrT7eTNuQgFA/CYqEAOwwCj0Yzfv9
+KlmaI5UXLEWeH25DeW0MXJj+SKfFI0dcXv1u5x609mhF0YaDW6KKjbHjKYD+JXGI
+rb68j6xSlkuqUY3kEzEZ6E5Nn9uss2rVvDlUccp6en+Q3X0dgNmBu1kmwhH+5pPi
+94DkZfs0Nw4pgHBNrziGLp5/V6+eF67rHMsoIV+2HNjnogQi+dPa2MsCAwEAAaOB
+sDCBrTAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zArBgNVHRAEJDAi
+gA8yMDA2MTEyNzIwMjM0MlqBDzIwMjYxMTI3MjA1MzQyWjAfBgNVHSMEGDAWgBRo
+kORnpKZTgMeGZqTx90tD+4S9bTAdBgNVHQ4EFgQUaJDkZ6SmU4DHhmak8fdLQ/uE
+vW0wHQYJKoZIhvZ9B0EABBAwDhsIVjcuMTo0LjADAgSQMA0GCSqGSIb3DQEBBQUA
+A4IBAQCT1DCw1wMgKtD5Y+iRDAUgqV8ZyntyTtSx29CW+1RaGSwMCPeyvIWonX9t
+O1KzKtvn1ISMY/YPyyYBkVBs9F8U4pN0wBOeMDpQ47RgxRzwIkSNcUesyBrJ6Zua
+AGAT/3B+XxFNSRuzFVJ7yVTav52Vr2ua2J7p8eRDjeIRRDq/r72DQnNSi6q7pynP
+9WQcCk3RvKqsnyrQ/39/2n3qse0wJcGE2jTSW3iDVuycNsMm4hH2Z0kdkquM++v/
+eu6FSqdQgPCnXEqULl8FmTxSQeDNtGPPAUO6nIPcj2A781q0tHuu2guQOHXvgR1m
+0vdXcDazv/wor3ElhVsT/h5/WrQ8
+-----END CERTIFICATE-----
+# Entrust.net Certification Authority (2048).pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number: 946069240 (0x3863def8)
+#     Signature Algorithm: sha1WithRSAEncryption
+#         Issuer: O=Entrust.net, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Certification Authority (2048)
+#         Validity
+#             Not Before: Dec 24 17:50:51 1999 GMT
+#             Not After : Jul 24 14:15:12 2029 GMT
+#         Subject: O=Entrust.net, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Certification Authority (2048)
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:ad:4d:4b:a9:12:86:b2:ea:a3:20:07:15:16:64:
+#                     2a:2b:4b:d1:bf:0b:4a:4d:8e:ed:80:76:a5:67:b7:
+#                     78:40:c0:73:42:c8:68:c0:db:53:2b:dd:5e:b8:76:
+#                     98:35:93:8b:1a:9d:7c:13:3a:0e:1f:5b:b7:1e:cf:
+#                     e5:24:14:1e:b1:81:a9:8d:7d:b8:cc:6b:4b:03:f1:
+#                     02:0c:dc:ab:a5:40:24:00:7f:74:94:a1:9d:08:29:
+#                     b3:88:0b:f5:87:77:9d:55:cd:e4:c3:7e:d7:6a:64:
+#                     ab:85:14:86:95:5b:97:32:50:6f:3d:c8:ba:66:0c:
+#                     e3:fc:bd:b8:49:c1:76:89:49:19:fd:c0:a8:bd:89:
+#                     a3:67:2f:c6:9f:bc:71:19:60:b8:2d:e9:2c:c9:90:
+#                     76:66:7b:94:e2:af:78:d6:65:53:5d:3c:d6:9c:b2:
+#                     cf:29:03:f9:2f:a4:50:b2:d4:48:ce:05:32:55:8a:
+#                     fd:b2:64:4c:0e:e4:98:07:75:db:7f:df:b9:08:55:
+#                     60:85:30:29:f9:7b:48:a4:69:86:e3:35:3f:1e:86:
+#                     5d:7a:7a:15:bd:ef:00:8e:15:22:54:17:00:90:26:
+#                     93:bc:0e:49:68:91:bf:f8:47:d3:9d:95:42:c1:0e:
+#                     4d:df:6f:26:cf:c3:18:21:62:66:43:70:d6:d5:c0:
+#                     07:e1
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Subject Key Identifier:
+#                 55:E4:81:D1:11:80:BE:D8:89:B9:08:A3:31:F9:A1:24:09:16:B9:70
+#     Signature Algorithm: sha1WithRSAEncryption
+#          3b:9b:8f:56:9b:30:e7:53:99:7c:7a:79:a7:4d:97:d7:19:95:
+#          90:fb:06:1f:ca:33:7c:46:63:8f:96:66:24:fa:40:1b:21:27:
+#          ca:e6:72:73:f2:4f:fe:31:99:fd:c8:0c:4c:68:53:c6:80:82:
+#          13:98:fa:b6:ad:da:5d:3d:f1:ce:6e:f6:15:11:94:82:0c:ee:
+#          3f:95:af:11:ab:0f:d7:2f:de:1f:03:8f:57:2c:1e:c9:bb:9a:
+#          1a:44:95:eb:18:4f:a6:1f:cd:7d:57:10:2f:9b:04:09:5a:84:
+#          b5:6e:d8:1d:3a:e1:d6:9e:d1:6c:79:5e:79:1c:14:c5:e3:d0:
+#          4c:93:3b:65:3c:ed:df:3d:be:a6:e5:95:1a:c3:b5:19:c3:bd:
+#          5e:5b:bb:ff:23:ef:68:19:cb:12:93:27:5c:03:2d:6f:30:d0:
+#          1e:b6:1a:ac:de:5a:f7:d1:aa:a8:27:a6:fe:79:81:c4:79:99:
+#          33:57:ba:12:b0:a9:e0:42:6c:93:ca:56:de:fe:6d:84:0b:08:
+#          8b:7e:8d:ea:d7:98:21:c6:f3:e7:3c:79:2f:5e:9c:d1:4c:15:
+#          8d:e1:ec:22:37:cc:9a:43:0b:97:dc:80:90:8d:b3:67:9b:6f:
+#          48:08:15:56:cf:bf:f1:2b:7c:5e:9a:76:e9:59:90:c5:7c:83:
+#          35:11:65:51
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# GeoTrust Global CA.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number: 144470 (0x23456)
+#     Signature Algorithm: sha1WithRSAEncryption
+#         Issuer: C=US, O=GeoTrust Inc., CN=GeoTrust Global CA
+#         Validity
+#             Not Before: May 21 04:00:00 2002 GMT
+#             Not After : May 21 04:00:00 2022 GMT
+#         Subject: C=US, O=GeoTrust Inc., CN=GeoTrust Global CA
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:da:cc:18:63:30:fd:f4:17:23:1a:56:7e:5b:df:
+#                     3c:6c:38:e4:71:b7:78:91:d4:bc:a1:d8:4c:f8:a8:
+#                     43:b6:03:e9:4d:21:07:08:88:da:58:2f:66:39:29:
+#                     bd:05:78:8b:9d:38:e8:05:b7:6a:7e:71:a4:e6:c4:
+#                     60:a6:b0:ef:80:e4:89:28:0f:9e:25:d6:ed:83:f3:
+#                     ad:a6:91:c7:98:c9:42:18:35:14:9d:ad:98:46:92:
+#                     2e:4f:ca:f1:87:43:c1:16:95:57:2d:50:ef:89:2d:
+#                     80:7a:57:ad:f2:ee:5f:6b:d2:00:8d:b9:14:f8:14:
+#                     15:35:d9:c0:46:a3:7b:72:c8:91:bf:c9:55:2b:cd:
+#                     d0:97:3e:9c:26:64:cc:df:ce:83:19:71:ca:4e:e6:
+#                     d4:d5:7b:a9:19:cd:55:de:c8:ec:d2:5e:38:53:e5:
+#                     5c:4f:8c:2d:fe:50:23:36:fc:66:e6:cb:8e:a4:39:
+#                     19:00:b7:95:02:39:91:0b:0e:fe:38:2e:d1:1d:05:
+#                     9a:f6:4d:3e:6f:0f:07:1d:af:2c:1e:8f:60:39:e2:
+#                     fa:36:53:13:39:d4:5e:26:2b:db:3d:a8:14:bd:32:
+#                     eb:18:03:28:52:04:71:e5:ab:33:3d:e1:38:bb:07:
+#                     36:84:62:9c:79:ea:16:30:f4:5f:c0:2b:e8:71:6b:
+#                     e4:f9
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Subject Key Identifier:
+#                 C0:7A:98:68:8D:89:FB:AB:05:64:0C:11:7D:AA:7D:65:B8:CA:CC:4E
+#             X509v3 Authority Key Identifier:
+#                 keyid:C0:7A:98:68:8D:89:FB:AB:05:64:0C:11:7D:AA:7D:65:B8:CA:CC:4E
+#
+#     Signature Algorithm: sha1WithRSAEncryption
+#          35:e3:29:6a:e5:2f:5d:54:8e:29:50:94:9f:99:1a:14:e4:8f:
+#          78:2a:62:94:a2:27:67:9e:d0:cf:1a:5e:47:e9:c1:b2:a4:cf:
+#          dd:41:1a:05:4e:9b:4b:ee:4a:6f:55:52:b3:24:a1:37:0a:eb:
+#          64:76:2a:2e:2c:f3:fd:3b:75:90:bf:fa:71:d8:c7:3d:37:d2:
+#          b5:05:95:62:b9:a6:de:89:3d:36:7b:38:77:48:97:ac:a6:20:
+#          8f:2e:a6:c9:0c:c2:b2:99:45:00:c7:ce:11:51:22:22:e0:a5:
+#          ea:b6:15:48:09:64:ea:5e:4f:74:f7:05:3e:c7:8a:52:0c:db:
+#          15:b4:bd:6d:9b:e5:c6:b1:54:68:a9:e3:69:90:b6:9a:a5:0f:
+#          b8:b9:3f:20:7d:ae:4a:b5:b8:9c:e4:1d:b6:ab:e6:94:a5:c1:
+#          c7:83:ad:db:f5:27:87:0e:04:6c:d5:ff:dd:a0:5d:ed:87:52:
+#          b7:2b:15:02:ae:39:a6:6a:74:e9:da:c4:e7:bc:4d:34:1e:a9:
+#          5c:4d:33:5f:92:09:2f:88:66:5d:77:97:c7:1d:76:13:a9:d5:
+#          e5:f1:16:09:11:35:d5:ac:db:24:71:70:2c:98:56:0b:d9:17:
+#          b4:d1:e3:51:2b:5e:75:e8:d5:d0:dc:4f:34:ed:c2:05:66:80:
+#          a1:cb:e6:33
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# GeoTrust Primary Certification Authority - G2.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number:
+#             3c:b2:f4:48:0a:00:e2:fe:eb:24:3b:5e:60:3e:c3:6b
+#     Signature Algorithm: ecdsa-with-SHA384
+#         Issuer: C=US, O=GeoTrust Inc., OU=(c) 2007 GeoTrust Inc. - For authorized use only, CN=GeoTrust Primary Certification Authority - G2
+#         Validity
+#             Not Before: Nov  5 00:00:00 2007 GMT
+#             Not After : Jan 18 23:59:59 2038 GMT
+#         Subject: C=US, O=GeoTrust Inc., OU=(c) 2007 GeoTrust Inc. - For authorized use only, CN=GeoTrust Primary Certification Authority - G2
+#         Subject Public Key Info:
+#             Public Key Algorithm: id-ecPublicKey
+#                 Public-Key: (384 bit)
+#                 pub:
+#                     04:15:b1:e8:fd:03:15:43:e5:ac:eb:87:37:11:62:
+#                     ef:d2:83:36:52:7d:45:57:0b:4a:8d:7b:54:3b:3a:
+#                     6e:5f:15:02:c0:50:a6:cf:25:2f:7d:ca:48:b8:c7:
+#                     50:63:1c:2a:21:08:7c:9a:36:d8:0b:fe:d1:26:c5:
+#                     58:31:30:28:25:f3:5d:5d:a3:b8:b6:a5:b4:92:ed:
+#                     6c:2c:9f:eb:dd:43:89:a2:3c:4b:48:91:1d:50:ec:
+#                     26:df:d6:60:2e:bd:21
+#                 ASN1 OID: secp384r1
+#         X509v3 extensions:
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Subject Key Identifier:
+#                 15:5F:35:57:51:55:FB:25:B2:AD:03:69:FC:01:A3:FA:BE:11:55:D5
+#     Signature Algorithm: ecdsa-with-SHA384
+#          30:64:02:30:64:96:59:a6:e8:09:de:8b:ba:fa:5a:88:88:f0:
+#          1f:91:d3:46:a8:f2:4a:4c:02:63:fb:6c:5f:38:db:2e:41:93:
+#          a9:0e:e6:9d:dc:31:1c:b2:a0:a7:18:1c:79:e1:c7:36:02:30:
+#          3a:56:af:9a:74:6c:f6:fb:83:e0:33:d3:08:5f:a1:9c:c2:5b:
+#          9f:46:d6:b6:cb:91:06:63:a2:06:e7:33:ac:3e:a8:81:12:d0:
+#          cb:ba:d0:92:0b:b6:9e:96:aa:04:0f:8a
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# GeoTrust Primary Certification Authority - G3.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number:
+#             15:ac:6e:94:19:b2:79:4b:41:f6:27:a9:c3:18:0f:1f
+#     Signature Algorithm: sha256WithRSAEncryption
+#         Issuer: C=US, O=GeoTrust Inc., OU=(c) 2008 GeoTrust Inc. - For authorized use only, CN=GeoTrust Primary Certification Authority - G3
+#         Validity
+#             Not Before: Apr  2 00:00:00 2008 GMT
+#             Not After : Dec  1 23:59:59 2037 GMT
+#         Subject: C=US, O=GeoTrust Inc., OU=(c) 2008 GeoTrust Inc. - For authorized use only, CN=GeoTrust Primary Certification Authority - G3
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:dc:e2:5e:62:58:1d:33:57:39:32:33:fa:eb:cb:
+#                     87:8c:a7:d4:4a:dd:06:88:ea:64:8e:31:98:a5:38:
+#                     90:1e:98:cf:2e:63:2b:f0:46:bc:44:b2:89:a1:c0:
+#                     28:0c:49:70:21:95:9f:64:c0:a6:93:12:02:65:26:
+#                     86:c6:a5:89:f0:fa:d7:84:a0:70:af:4f:1a:97:3f:
+#                     06:44:d5:c9:eb:72:10:7d:e4:31:28:fb:1c:61:e6:
+#                     28:07:44:73:92:22:69:a7:03:88:6c:9d:63:c8:52:
+#                     da:98:27:e7:08:4c:70:3e:b4:c9:12:c1:c5:67:83:
+#                     5d:33:f3:03:11:ec:6a:d0:53:e2:d1:ba:36:60:94:
+#                     80:bb:61:63:6c:5b:17:7e:df:40:94:1e:ab:0d:c2:
+#                     21:28:70:88:ff:d6:26:6c:6c:60:04:25:4e:55:7e:
+#                     7d:ef:bf:94:48:de:b7:1d:dd:70:8d:05:5f:88:a5:
+#                     9b:f2:c2:ee:ea:d1:40:41:6d:62:38:1d:56:06:c5:
+#                     03:47:51:20:19:fc:7b:10:0b:0e:62:ae:76:55:bf:
+#                     5f:77:be:3e:49:01:53:3d:98:25:03:76:24:5a:1d:
+#                     b4:db:89:ea:79:e5:b6:b3:3b:3f:ba:4c:28:41:7f:
+#                     06:ac:6a:8e:c1:d0:f6:05:1d:7d:e6:42:86:e3:a5:
+#                     d5:47
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Subject Key Identifier:
+#                 C4:79:CA:8E:A1:4E:03:1D:1C:DC:6B:DB:31:5B:94:3E:3F:30:7F:2D
+#     Signature Algorithm: sha256WithRSAEncryption
+#          2d:c5:13:cf:56:80:7b:7a:78:bd:9f:ae:2c:99:e7:ef:da:df:
+#          94:5e:09:69:a7:e7:6e:68:8c:bd:72:be:47:a9:0e:97:12:b8:
+#          4a:f1:64:d3:39:df:25:34:d4:c1:cd:4e:81:f0:0f:04:c4:24:
+#          b3:34:96:c6:a6:aa:30:df:68:61:73:d7:f9:8e:85:89:ef:0e:
+#          5e:95:28:4a:2a:27:8f:10:8e:2e:7c:86:c4:02:9e:da:0c:77:
+#          65:0e:44:0d:92:fd:fd:b3:16:36:fa:11:0d:1d:8c:0e:07:89:
+#          6a:29:56:f7:72:f4:dd:15:9c:77:35:66:57:ab:13:53:d8:8e:
+#          c1:40:c5:d7:13:16:5a:72:c7:b7:69:01:c4:7a:b1:83:01:68:
+#          7d:8d:41:a1:94:18:c1:25:5c:fc:f0:fe:83:02:87:7c:0d:0d:
+#          cf:2e:08:5c:4a:40:0d:3e:ec:81:61:e6:24:db:ca:e0:0e:2d:
+#          07:b2:3e:56:dc:8d:f5:41:85:07:48:9b:0c:0b:cb:49:3f:7d:
+#          ec:b7:fd:cb:8d:67:89:1a:ab:ed:bb:1e:a3:00:08:08:17:2a:
+#          82:5c:31:5d:46:8a:2d:0f:86:9b:74:d9:45:fb:d4:40:b1:7a:
+#          aa:68:2d:86:b2:99:22:e1:c1:2b:c7:9c:f8:f3:5f:a8:82:12:
+#          eb:19:11:2d
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# GeoTrust Primary Certification Authority.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number:
+#             18:ac:b5:6a:fd:69:b6:15:3a:63:6c:af:da:fa:c4:a1
+#     Signature Algorithm: sha1WithRSAEncryption
+#         Issuer: C=US, O=GeoTrust Inc., CN=GeoTrust Primary Certification Authority
+#         Validity
+#             Not Before: Nov 27 00:00:00 2006 GMT
+#             Not After : Jul 16 23:59:59 2036 GMT
+#         Subject: C=US, O=GeoTrust Inc., CN=GeoTrust Primary Certification Authority
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:be:b8:15:7b:ff:d4:7c:7d:67:ad:83:64:7b:c8:
+#                     42:53:2d:df:f6:84:08:20:61:d6:01:59:6a:9c:44:
+#                     11:af:ef:76:fd:95:7e:ce:61:30:bb:7a:83:5f:02:
+#                     bd:01:66:ca:ee:15:8d:6f:a1:30:9c:bd:a1:85:9e:
+#                     94:3a:f3:56:88:00:31:cf:d8:ee:6a:96:02:d9:ed:
+#                     03:8c:fb:75:6d:e7:ea:b8:55:16:05:16:9a:f4:e0:
+#                     5e:b1:88:c0:64:85:5c:15:4d:88:c7:b7:ba:e0:75:
+#                     e9:ad:05:3d:9d:c7:89:48:e0:bb:28:c8:03:e1:30:
+#                     93:64:5e:52:c0:59:70:22:35:57:88:8a:f1:95:0a:
+#                     83:d7:bc:31:73:01:34:ed:ef:46:71:e0:6b:02:a8:
+#                     35:72:6b:97:9b:66:e0:cb:1c:79:5f:d8:1a:04:68:
+#                     1e:47:02:e6:9d:60:e2:36:97:01:df:ce:35:92:df:
+#                     be:67:c7:6d:77:59:3b:8f:9d:d6:90:15:94:bc:42:
+#                     34:10:c1:39:f9:b1:27:3e:7e:d6:8a:75:c5:b2:af:
+#                     96:d3:a2:de:9b:e4:98:be:7d:e1:e9:81:ad:b6:6f:
+#                     fc:d7:0e:da:e0:34:b0:0d:1a:77:e7:e3:08:98:ef:
+#                     58:fa:9c:84:b7:36:af:c2:df:ac:d2:f4:10:06:70:
+#                     71:35
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Subject Key Identifier:
+#                 2C:D5:50:41:97:15:8B:F0:8F:36:61:5B:4A:FB:6B:D9:99:C9:33:92
+#     Signature Algorithm: sha1WithRSAEncryption
+#          5a:70:7f:2c:dd:b7:34:4f:f5:86:51:a9:26:be:4b:b8:aa:f1:
+#          71:0d:dc:61:c7:a0:ea:34:1e:7a:77:0f:04:35:e8:27:8f:6c:
+#          90:bf:91:16:24:46:3e:4a:4e:ce:2b:16:d5:0b:52:1d:fc:1f:
+#          67:a2:02:45:31:4f:ce:f3:fa:03:a7:79:9d:53:6a:d9:da:63:
+#          3a:f8:80:d7:d3:99:e1:a5:e1:be:d4:55:71:98:35:3a:be:93:
+#          ea:ae:ad:42:b2:90:6f:e0:fc:21:4d:35:63:33:89:49:d6:9b:
+#          4e:ca:c7:e7:4e:09:00:f7:da:c7:ef:99:62:99:77:b6:95:22:
+#          5e:8a:a0:ab:f4:b8:78:98:ca:38:19:99:c9:72:9e:78:cd:4b:
+#          ac:af:19:a0:73:12:2d:fc:c2:41:ba:81:91:da:16:5a:31:b7:
+#          f9:b4:71:80:12:48:99:72:73:5a:59:53:c1:63:52:33:ed:a7:
+#          c9:d2:39:02:70:fa:e0:b1:42:66:29:aa:9b:51:ed:30:54:22:
+#          14:5f:d9:ab:1d:c1:e4:94:f0:f8:f5:2b:f7:ea:ca:78:46:d6:
+#          b8:91:fd:a6:0d:2b:1a:14:01:3e:80:f0:42:a0:95:07:5e:6d:
+#          cd:cc:4b:a4:45:8d:ab:12:e8:b3:de:5a:e5:a0:7c:e8:0f:22:
+#          1d:5a:e9:59
+-----BEGIN CERTIFICATE-----
+MIIDfDCCAmSgAwIBAgIQGKy1av1pthU6Y2yv2vrEoTANBgkqhkiG9w0BAQUFADBY
+MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjExMC8GA1UEAxMo
+R2VvVHJ1c3QgUHJpbWFyeSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0wNjEx
+MjcwMDAwMDBaFw0zNjA3MTYyMzU5NTlaMFgxCzAJBgNVBAYTAlVTMRYwFAYDVQQK
+Ew1HZW9UcnVzdCBJbmMuMTEwLwYDVQQDEyhHZW9UcnVzdCBQcmltYXJ5IENlcnRp
+ZmljYXRpb24gQXV0aG9yaXR5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
+AQEAvrgVe//UfH1nrYNke8hCUy3f9oQIIGHWAVlqnEQRr+92/ZV+zmEwu3qDXwK9
+AWbK7hWNb6EwnL2hhZ6UOvNWiAAxz9juapYC2e0DjPt1befquFUWBRaa9OBesYjA
+ZIVcFU2Ix7e64HXprQU9nceJSOC7KMgD4TCTZF5SwFlwIjVXiIrxlQqD17wxcwE0
+7e9GceBrAqg1cmuXm2bgyxx5X9gaBGgeRwLmnWDiNpcB3841kt++Z8dtd1k7j53W
+kBWUvEI0EME5+bEnPn7WinXFsq+W06Lem+SYvn3h6YGttm/81w7a4DSwDRp35+MI
+mO9Y+pyEtzavwt+s0vQQBnBxNQIDAQABo0IwQDAPBgNVHRMBAf8EBTADAQH/MA4G
+A1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQULNVQQZcVi/CPNmFbSvtr2ZnJM5IwDQYJ
+KoZIhvcNAQEFBQADggEBAFpwfyzdtzRP9YZRqSa+S7iq8XEN3GHHoOo0Hnp3DwQ1
+6CePbJC/kRYkRj5KTs4rFtULUh38H2eiAkUxT87z+gOneZ1TatnaYzr4gNfTmeGl
+4b7UVXGYNTq+k+qurUKykG/g/CFNNWMziUnWm07Kx+dOCQD32sfvmWKZd7aVIl6K
+oKv0uHiYyjgZmclynnjNS6yvGaBzEi38wkG6gZHaFloxt/m0cYASSJlyc1pZU8Fj
+UjPtp8nSOQJw+uCxQmYpqptR7TBUIhRf2asdweSU8Pj1K/fqynhG1riR/aYNKxoU
+AT6A8EKglQdebc3MS6RFjasS6LPeWuWgfOgPIh1a6Vk=
+-----END CERTIFICATE-----
+# Go Daddy Class 2 Certification Authority.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number: 0 (0x0)
+#     Signature Algorithm: sha1WithRSAEncryption
+#         Issuer: C=US, O=The Go Daddy Group, Inc., OU=Go Daddy Class 2 Certification Authority
+#         Validity
+#             Not Before: Jun 29 17:06:20 2004 GMT
+#             Not After : Jun 29 17:06:20 2034 GMT
+#         Subject: C=US, O=The Go Daddy Group, Inc., OU=Go Daddy Class 2 Certification Authority
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:de:9d:d7:ea:57:18:49:a1:5b:eb:d7:5f:48:86:
+#                     ea:be:dd:ff:e4:ef:67:1c:f4:65:68:b3:57:71:a0:
+#                     5e:77:bb:ed:9b:49:e9:70:80:3d:56:18:63:08:6f:
+#                     da:f2:cc:d0:3f:7f:02:54:22:54:10:d8:b2:81:d4:
+#                     c0:75:3d:4b:7f:c7:77:c3:3e:78:ab:1a:03:b5:20:
+#                     6b:2f:6a:2b:b1:c5:88:7e:c4:bb:1e:b0:c1:d8:45:
+#                     27:6f:aa:37:58:f7:87:26:d7:d8:2d:f6:a9:17:b7:
+#                     1f:72:36:4e:a6:17:3f:65:98:92:db:2a:6e:5d:a2:
+#                     fe:88:e0:0b:de:7f:e5:8d:15:e1:eb:cb:3a:d5:e2:
+#                     12:a2:13:2d:d8:8e:af:5f:12:3d:a0:08:05:08:b6:
+#                     5c:a5:65:38:04:45:99:1e:a3:60:60:74:c5:41:a5:
+#                     72:62:1b:62:c5:1f:6f:5f:1a:42:be:02:51:65:a8:
+#                     ae:23:18:6a:fc:78:03:a9:4d:7f:80:c3:fa:ab:5a:
+#                     fc:a1:40:a4:ca:19:16:fe:b2:c8:ef:5e:73:0d:ee:
+#                     77:bd:9a:f6:79:98:bc:b1:07:67:a2:15:0d:dd:a0:
+#                     58:c6:44:7b:0a:3e:62:28:5f:ba:41:07:53:58:cf:
+#                     11:7e:38:74:c5:f8:ff:b5:69:90:8f:84:74:ea:97:
+#                     1b:af
+#                 Exponent: 3 (0x3)
+#         X509v3 extensions:
+#             X509v3 Subject Key Identifier:
+#                 D2:C4:B0:D2:91:D4:4C:11:71:B3:61:CB:3D:A1:FE:DD:A8:6A:D4:E3
+#             X509v3 Authority Key Identifier:
+#                 keyid:D2:C4:B0:D2:91:D4:4C:11:71:B3:61:CB:3D:A1:FE:DD:A8:6A:D4:E3
+#                 DirName:/C=US/O=The Go Daddy Group, Inc./OU=Go Daddy Class 2 Certification Authority
+#                 serial:00
+#
+#             X509v3 Basic Constraints:
+#                 CA:TRUE
+#     Signature Algorithm: sha1WithRSAEncryption
+#          32:4b:f3:b2:ca:3e:91:fc:12:c6:a1:07:8c:8e:77:a0:33:06:
+#          14:5c:90:1e:18:f7:08:a6:3d:0a:19:f9:87:80:11:6e:69:e4:
+#          96:17:30:ff:34:91:63:72:38:ee:cc:1c:01:a3:1d:94:28:a4:
+#          31:f6:7a:c4:54:d7:f6:e5:31:58:03:a2:cc:ce:62:db:94:45:
+#          73:b5:bf:45:c9:24:b5:d5:82:02:ad:23:79:69:8d:b8:b6:4d:
+#          ce:cf:4c:ca:33:23:e8:1c:88:aa:9d:8b:41:6e:16:c9:20:e5:
+#          89:9e:cd:3b:da:70:f7:7e:99:26:20:14:54:25:ab:6e:73:85:
+#          e6:9b:21:9d:0a:6c:82:0e:a8:f8:c2:0c:fa:10:1e:6c:96:ef:
+#          87:0d:c4:0f:61:8b:ad:ee:83:2b:95:f8:8e:92:84:72:39:eb:
+#          20:ea:83:ed:83:cd:97:6e:08:bc:eb:4e:26:b6:73:2b:e4:d3:
+#          f6:4c:fe:26:71:e2:61:11:74:4a:ff:57:1a:87:0f:75:48:2e:
+#          cf:51:69:17:a0:02:12:61:95:d5:d1:40:b2:10:4c:ee:c4:ac:
+#          10:43:a6:a5:9e:0a:d5:95:62:9a:0d:cf:88:82:c5:32:0c:e4:
+#          2b:9f:45:e6:0d:9f:28:9c:b1:b9:2a:5a:57:ad:37:0f:af:1d:
+#          7f:db:bd:9f
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# Go Daddy Root Certificate Authority - G2.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number: 0 (0x0)
+#     Signature Algorithm: sha256WithRSAEncryption
+#         Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., CN=Go Daddy Root Certificate Authority - G2
+#         Validity
+#             Not Before: Sep  1 00:00:00 2009 GMT
+#             Not After : Dec 31 23:59:59 2037 GMT
+#         Subject: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., CN=Go Daddy Root Certificate Authority - G2
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:bf:71:62:08:f1:fa:59:34:f7:1b:c9:18:a3:f7:
+#                     80:49:58:e9:22:83:13:a6:c5:20:43:01:3b:84:f1:
+#                     e6:85:49:9f:27:ea:f6:84:1b:4e:a0:b4:db:70:98:
+#                     c7:32:01:b1:05:3e:07:4e:ee:f4:fa:4f:2f:59:30:
+#                     22:e7:ab:19:56:6b:e2:80:07:fc:f3:16:75:80:39:
+#                     51:7b:e5:f9:35:b6:74:4e:a9:8d:82:13:e4:b6:3f:
+#                     a9:03:83:fa:a2:be:8a:15:6a:7f:de:0b:c3:b6:19:
+#                     14:05:ca:ea:c3:a8:04:94:3b:46:7c:32:0d:f3:00:
+#                     66:22:c8:8d:69:6d:36:8c:11:18:b7:d3:b2:1c:60:
+#                     b4:38:fa:02:8c:ce:d3:dd:46:07:de:0a:3e:eb:5d:
+#                     7c:c8:7c:fb:b0:2b:53:a4:92:62:69:51:25:05:61:
+#                     1a:44:81:8c:2c:a9:43:96:23:df:ac:3a:81:9a:0e:
+#                     29:c5:1c:a9:e9:5d:1e:b6:9e:9e:30:0a:39:ce:f1:
+#                     88:80:fb:4b:5d:cc:32:ec:85:62:43:25:34:02:56:
+#                     27:01:91:b4:3b:70:2a:3f:6e:b1:e8:9c:88:01:7d:
+#                     9f:d4:f9:db:53:6d:60:9d:bf:2c:e7:58:ab:b8:5f:
+#                     46:fc:ce:c4:1b:03:3c:09:eb:49:31:5c:69:46:b3:
+#                     e0:47
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Subject Key Identifier:
+#                 3A:9A:85:07:10:67:28:B6:EF:F6:BD:05:41:6E:20:C1:94:DA:0F:DE
+#     Signature Algorithm: sha256WithRSAEncryption
+#          99:db:5d:79:d5:f9:97:59:67:03:61:f1:7e:3b:06:31:75:2d:
+#          a1:20:8e:4f:65:87:b4:f7:a6:9c:bc:d8:e9:2f:d0:db:5a:ee:
+#          cf:74:8c:73:b4:38:42:da:05:7b:f8:02:75:b8:fd:a5:b1:d7:
+#          ae:f6:d7:de:13:cb:53:10:7e:8a:46:d1:97:fa:b7:2e:2b:11:
+#          ab:90:b0:27:80:f9:e8:9f:5a:e9:37:9f:ab:e4:df:6c:b3:85:
+#          17:9d:3d:d9:24:4f:79:91:35:d6:5f:04:eb:80:83:ab:9a:02:
+#          2d:b5:10:f4:d8:90:c7:04:73:40:ed:72:25:a0:a9:9f:ec:9e:
+#          ab:68:12:99:57:c6:8f:12:3a:09:a4:bd:44:fd:06:15:37:c1:
+#          9b:e4:32:a3:ed:38:e8:d8:64:f3:2c:7e:14:fc:02:ea:9f:cd:
+#          ff:07:68:17:db:22:90:38:2d:7a:8d:d1:54:f1:69:e3:5f:33:
+#          ca:7a:3d:7b:0a:e3:ca:7f:5f:39:e5:e2:75:ba:c5:76:18:33:
+#          ce:2c:f0:2f:4c:ad:f7:b1:e7:ce:4f:a8:c4:9b:4a:54:06:c5:
+#          7f:7d:d5:08:0f:e2:1c:fe:7e:17:b8:ac:5e:f6:d4:16:b2:43:
+#          09:0c:4d:f6:a7:6b:b4:99:84:65:ca:7a:88:e2:e2:44:be:5c:
+#          f7:ea:1c:f5
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# Go Daddy Secure Certification Authority serialNumber=07969287.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number: 769 (0x301)
+#     Signature Algorithm: sha1WithRSAEncryption
+#         Issuer: C=US, O=The Go Daddy Group, Inc., OU=Go Daddy Class 2 Certification Authority
+#         Validity
+#             Not Before: Nov 16 01:54:37 2006 GMT
+#             Not After : Nov 16 01:54:37 2026 GMT
+#         Subject: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http://certificates.godaddy.com/repository, CN=Go Daddy Secure Certification Authority/serialNumber=07969287
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:c4:2d:d5:15:8c:9c:26:4c:ec:32:35:eb:5f:b8:
+#                     59:01:5a:a6:61:81:59:3b:70:63:ab:e3:dc:3d:c7:
+#                     2a:b8:c9:33:d3:79:e4:3a:ed:3c:30:23:84:8e:b3:
+#                     30:14:b6:b2:87:c3:3d:95:54:04:9e:df:99:dd:0b:
+#                     25:1e:21:de:65:29:7e:35:a8:a9:54:eb:f6:f7:32:
+#                     39:d4:26:55:95:ad:ef:fb:fe:58:86:d7:9e:f4:00:
+#                     8d:8c:2a:0c:bd:42:04:ce:a7:3f:04:f6:ee:80:f2:
+#                     aa:ef:52:a1:69:66:da:be:1a:ad:5d:da:2c:66:ea:
+#                     1a:6b:bb:e5:1a:51:4a:00:2f:48:c7:98:75:d8:b9:
+#                     29:c8:ee:f8:66:6d:0a:9c:b3:f3:fc:78:7c:a2:f8:
+#                     a3:f2:b5:c3:f3:b9:7a:91:c1:a7:e6:25:2e:9c:a8:
+#                     ed:12:65:6e:6a:f6:12:44:53:70:30:95:c3:9c:2b:
+#                     58:2b:3d:08:74:4a:f2:be:51:b0:bf:87:d0:4c:27:
+#                     58:6b:b5:35:c5:9d:af:17:31:f8:0b:8f:ee:ad:81:
+#                     36:05:89:08:98:cf:3a:af:25:87:c0:49:ea:a7:fd:
+#                     67:f7:45:8e:97:cc:14:39:e2:36:85:b5:7e:1a:37:
+#                     fd:16:f6:71:11:9a:74:30:16:fe:13:94:a3:3f:84:
+#                     0d:4f
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Subject Key Identifier:
+#                 FD:AC:61:32:93:6C:45:D6:E2:EE:85:5F:9A:BA:E7:76:99:68:CC:E7
+#             X509v3 Authority Key Identifier:
+#                 keyid:D2:C4:B0:D2:91:D4:4C:11:71:B3:61:CB:3D:A1:FE:DD:A8:6A:D4:E3
+#
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE, pathlen:0
+#             Authority Information Access:
+#                 OCSP - URI:http://ocsp.godaddy.com
+#
+#             X509v3 CRL Distribution Points:
+#
+#                 Full Name:
+#                   URI:http://certificates.godaddy.com/repository/gdroot.crl
+#
+#             X509v3 Certificate Policies:
+#                 Policy: X509v3 Any Policy
+#                   CPS: http://certificates.godaddy.com/repository
+#
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#     Signature Algorithm: sha1WithRSAEncryption
+#          d2:86:c0:ec:bd:f9:a1:b6:67:ee:66:0b:a2:06:3a:04:50:8e:
+#          15:72:ac:4a:74:95:53:cb:37:cb:44:49:ef:07:90:6b:33:d9:
+#          96:f0:94:56:a5:13:30:05:3c:85:32:21:7b:c9:c7:0a:a8:24:
+#          a4:90:de:46:d3:25:23:14:03:67:c2:10:d6:6f:0f:5d:7b:7a:
+#          cc:9f:c5:58:2a:c1:c4:9e:21:a8:5a:f3:ac:a4:46:f3:9e:e4:
+#          63:cb:2f:90:a4:29:29:01:d9:72:2c:29:df:37:01:27:bc:4f:
+#          ee:68:d3:21:8f:c0:b3:e4:f5:09:ed:d2:10:aa:53:b4:be:f0:
+#          cc:59:0b:d6:3b:96:1c:95:24:49:df:ce:ec:fd:a7:48:91:14:
+#          45:0e:3a:36:6f:da:45:b3:45:a2:41:c9:d4:d7:44:4e:3e:b9:
+#          74:76:d5:a2:13:55:2c:c6:87:a3:b5:99:ac:06:84:87:7f:75:
+#          06:fc:bf:14:4c:0e:cc:6e:c4:df:3d:b7:12:71:f4:e8:f1:51:
+#          40:22:28:49:e0:1d:4b:87:a8:34:cc:06:a2:dd:12:5a:d1:86:
+#          36:64:03:35:6f:6f:77:6e:eb:f2:85:50:98:5e:ab:03:53:ad:
+#          91:23:63:1f:16:9c:cd:b9:b2:05:63:3a:e1:f4:68:1b:17:05:
+#          35:95:53:ee
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# Thawte Premium Server CA.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number: 1 (0x1)
+#     Signature Algorithm: md5WithRSAEncryption
+#         Issuer: C=ZA, ST=Western Cape, L=Cape Town, O=Thawte Consulting cc, OU=Certification Services Division, CN=Thawte Premium Server CA/emailAddress=premium-server@thawte.com
+#         Validity
+#             Not Before: Aug  1 00:00:00 1996 GMT
+#             Not After : Dec 31 23:59:59 2020 GMT
+#         Subject: C=ZA, ST=Western Cape, L=Cape Town, O=Thawte Consulting cc, OU=Certification Services Division, CN=Thawte Premium Server CA/emailAddress=premium-server@thawte.com
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (1024 bit)
+#                 Modulus:
+#                     00:d2:36:36:6a:8b:d7:c2:5b:9e:da:81:41:62:8f:
+#                     38:ee:49:04:55:d6:d0:ef:1c:1b:95:16:47:ef:18:
+#                     48:35:3a:52:f4:2b:6a:06:8f:3b:2f:ea:56:e3:af:
+#                     86:8d:9e:17:f7:9e:b4:65:75:02:4d:ef:cb:09:a2:
+#                     21:51:d8:9b:d0:67:d0:ba:0d:92:06:14:73:d4:93:
+#                     cb:97:2a:00:9c:5c:4e:0c:bc:fa:15:52:fc:f2:44:
+#                     6e:da:11:4a:6e:08:9f:2f:2d:e3:f9:aa:3a:86:73:
+#                     b6:46:53:58:c8:89:05:bd:83:11:b8:73:3f:aa:07:
+#                     8d:f4:42:4d:e7:40:9d:1c:37
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#     Signature Algorithm: md5WithRSAEncryption
+#          26:48:2c:16:c2:58:fa:e8:16:74:0c:aa:aa:5f:54:3f:f2:d7:
+#          c9:78:60:5e:5e:6e:37:63:22:77:36:7e:b2:17:c4:34:b9:f5:
+#          08:85:fc:c9:01:38:ff:4d:be:f2:16:42:43:e7:bb:5a:46:fb:
+#          c1:c6:11:1f:f1:4a:b0:28:46:c9:c3:c4:42:7d:bc:fa:ab:59:
+#          6e:d5:b7:51:88:11:e3:a4:85:19:6b:82:4c:a4:0c:12:ad:e9:
+#          a4:ae:3f:f1:c3:49:65:9a:8c:c5:c8:3e:25:b7:94:99:bb:92:
+#          32:71:07:f0:86:5e:ed:50:27:a6:0d:a6:23:f9:bb:cb:a6:07:
+#          14:42
+-----BEGIN CERTIFICATE-----
+MIIDJzCCApCgAwIBAgIBATANBgkqhkiG9w0BAQQFADCBzjELMAkGA1UEBhMCWkEx
+FTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMR0wGwYD
+VQQKExRUaGF3dGUgQ29uc3VsdGluZyBjYzEoMCYGA1UECxMfQ2VydGlmaWNhdGlv
+biBTZXJ2aWNlcyBEaXZpc2lvbjEhMB8GA1UEAxMYVGhhd3RlIFByZW1pdW0gU2Vy
+dmVyIENBMSgwJgYJKoZIhvcNAQkBFhlwcmVtaXVtLXNlcnZlckB0aGF3dGUuY29t
+MB4XDTk2MDgwMTAwMDAwMFoXDTIwMTIzMTIzNTk1OVowgc4xCzAJBgNVBAYTAlpB
+MRUwEwYDVQQIEwxXZXN0ZXJuIENhcGUxEjAQBgNVBAcTCUNhcGUgVG93bjEdMBsG
+A1UEChMUVGhhd3RlIENvbnN1bHRpbmcgY2MxKDAmBgNVBAsTH0NlcnRpZmljYXRp
+b24gU2VydmljZXMgRGl2aXNpb24xITAfBgNVBAMTGFRoYXd0ZSBQcmVtaXVtIFNl
+cnZlciBDQTEoMCYGCSqGSIb3DQEJARYZcHJlbWl1bS1zZXJ2ZXJAdGhhd3RlLmNv
+bTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA0jY2aovXwlue2oFBYo847kkE
+VdbQ7xwblRZH7xhINTpS9CtqBo87L+pW46+GjZ4X9560ZXUCTe/LCaIhUdib0GfQ
+ug2SBhRz1JPLlyoAnFxODLz6FVL88kRu2hFKbgifLy3j+ao6hnO2RlNYyIkFvYMR
+uHM/qgeN9EJN50CdHDcCAwEAAaMTMBEwDwYDVR0TAQH/BAUwAwEB/zANBgkqhkiG
+9w0BAQQFAAOBgQAmSCwWwlj66BZ0DKqqX1Q/8tfJeGBeXm43YyJ3Nn6yF8Q0ufUI
+hfzJATj/Tb7yFkJD57taRvvBxhEf8UqwKEbJw8RCfbz6q1lu1bdRiBHjpIUZa4JM
+pAwSremkrj/xw0llmozFyD4lt5SZu5IycQfwhl7tUCemDaYj+bvLpgcUQg==
+-----END CERTIFICATE-----
+# Thawte Primary Root CA - G2.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number:
+#             35:fc:26:5c:d9:84:4f:c9:3d:26:3d:57:9b:ae:d7:56
+#     Signature Algorithm: ecdsa-with-SHA384
+#         Issuer: C=US, O=thawte, Inc., OU=(c) 2007 thawte, Inc. - For authorized use only, CN=thawte Primary Root CA - G2
+#         Validity
+#             Not Before: Nov  5 00:00:00 2007 GMT
+#             Not After : Jan 18 23:59:59 2038 GMT
+#         Subject: C=US, O=thawte, Inc., OU=(c) 2007 thawte, Inc. - For authorized use only, CN=thawte Primary Root CA - G2
+#         Subject Public Key Info:
+#             Public Key Algorithm: id-ecPublicKey
+#                 Public-Key: (384 bit)
+#                 pub:
+#                     04:a2:d5:9c:82:7b:95:9d:f1:52:78:87:fe:8a:16:
+#                     bf:05:e6:df:a3:02:4f:0d:07:c6:00:51:ba:0c:02:
+#                     52:2d:22:a4:42:39:c4:fe:8f:ea:c9:c1:be:d4:4d:
+#                     ff:9f:7a:9e:e2:b1:7c:9a:ad:a7:86:09:73:87:d1:
+#                     e7:9a:e3:7a:a5:aa:6e:fb:ba:b3:70:c0:67:88:a2:
+#                     35:d4:a3:9a:b1:fd:ad:c2:ef:31:fa:a8:b9:f3:fb:
+#                     08:c6:91:d1:fb:29:95
+#                 ASN1 OID: secp384r1
+#         X509v3 extensions:
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Subject Key Identifier:
+#                 9A:D8:00:30:00:E7:6B:7F:85:18:EE:8B:B6:CE:8A:0C:F8:11:E1:BB
+#     Signature Algorithm: ecdsa-with-SHA384
+#          30:66:02:31:00:dd:f8:e0:57:47:5b:a7:e6:0a:c3:bd:f5:80:
+#          8a:97:35:0d:1b:89:3c:54:86:77:28:ca:a1:f4:79:de:b5:e6:
+#          38:b0:f0:65:70:8c:7f:02:54:c2:bf:ff:d8:a1:3e:d9:cf:02:
+#          31:00:c4:8d:94:fc:dc:53:d2:dc:9d:78:16:1f:15:33:23:53:
+#          52:e3:5a:31:5d:9d:ca:ae:bd:13:29:44:0d:27:5b:a8:e7:68:
+#          9c:12:f7:58:3f:2e:72:02:57:a3:8f:a1:14:2e
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# Thawte Primary Root CA - G3.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number:
+#             60:01:97:b7:46:a7:ea:b4:b4:9a:d6:4b:2f:f7:90:fb
+#     Signature Algorithm: sha256WithRSAEncryption
+#         Issuer: C=US, O=thawte, Inc., OU=Certification Services Division, OU=(c) 2008 thawte, Inc. - For authorized use only, CN=thawte Primary Root CA - G3
+#         Validity
+#             Not Before: Apr  2 00:00:00 2008 GMT
+#             Not After : Dec  1 23:59:59 2037 GMT
+#         Subject: C=US, O=thawte, Inc., OU=Certification Services Division, OU=(c) 2008 thawte, Inc. - For authorized use only, CN=thawte Primary Root CA - G3
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:b2:bf:27:2c:fb:db:d8:5b:dd:78:7b:1b:9e:77:
+#                     66:81:cb:3e:bc:7c:ae:f3:a6:27:9a:34:a3:68:31:
+#                     71:38:33:62:e4:f3:71:66:79:b1:a9:65:a3:a5:8b:
+#                     d5:8f:60:2d:3f:42:cc:aa:6b:32:c0:23:cb:2c:41:
+#                     dd:e4:df:fc:61:9c:e2:73:b2:22:95:11:43:18:5f:
+#                     c4:b6:1f:57:6c:0a:05:58:22:c8:36:4c:3a:7c:a5:
+#                     d1:cf:86:af:88:a7:44:02:13:74:71:73:0a:42:59:
+#                     02:f8:1b:14:6b:42:df:6f:5f:ba:6b:82:a2:9d:5b:
+#                     e7:4a:bd:1e:01:72:db:4b:74:e8:3b:7f:7f:7d:1f:
+#                     04:b4:26:9b:e0:b4:5a:ac:47:3d:55:b8:d7:b0:26:
+#                     52:28:01:31:40:66:d8:d9:24:bd:f6:2a:d8:ec:21:
+#                     49:5c:9b:f6:7a:e9:7f:55:35:7e:96:6b:8d:93:93:
+#                     27:cb:92:bb:ea:ac:40:c0:9f:c2:f8:80:cf:5d:f4:
+#                     5a:dc:ce:74:86:a6:3e:6c:0b:53:ca:bd:92:ce:19:
+#                     06:72:e6:0c:5c:38:69:c7:04:d6:bc:6c:ce:5b:f6:
+#                     f7:68:9c:dc:25:15:48:88:a1:e9:a9:f8:98:9c:e0:
+#                     f3:d5:31:28:61:11:6c:67:96:8d:39:99:cb:c2:45:
+#                     24:39
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Subject Key Identifier:
+#                 AD:6C:AA:94:60:9C:ED:E4:FF:FA:3E:0A:74:2B:63:03:F7:B6:59:BF
+#     Signature Algorithm: sha256WithRSAEncryption
+#          1a:40:d8:95:65:ac:09:92:89:c6:39:f4:10:e5:a9:0e:66:53:
+#          5d:78:de:fa:24:91:bb:e7:44:51:df:c6:16:34:0a:ef:6a:44:
+#          51:ea:2b:07:8a:03:7a:c3:eb:3f:0a:2c:52:16:a0:2b:43:b9:
+#          25:90:3f:70:a9:33:25:6d:45:1a:28:3b:27:cf:aa:c3:29:42:
+#          1b:df:3b:4c:c0:33:34:5b:41:88:bf:6b:2b:65:af:28:ef:b2:
+#          f5:c3:aa:66:ce:7b:56:ee:b7:c8:cb:67:c1:c9:9c:1a:18:b8:
+#          c4:c3:49:03:f1:60:0e:50:cd:46:c5:f3:77:79:f7:b6:15:e0:
+#          38:db:c7:2f:28:a0:0c:3f:77:26:74:d9:25:12:da:31:da:1a:
+#          1e:dc:29:41:91:22:3c:69:a7:bb:02:f2:b6:5c:27:03:89:f4:
+#          06:ea:9b:e4:72:82:e3:a1:09:c1:e9:00:19:d3:3e:d4:70:6b:
+#          ba:71:a6:aa:58:ae:f4:bb:e9:6c:b6:ef:87:cc:9b:bb:ff:39:
+#          e6:56:61:d3:0a:a7:c4:5c:4c:60:7b:05:77:26:7a:bf:d8:07:
+#          52:2c:62:f7:70:63:d9:39:bc:6f:1c:c2:79:dc:76:29:af:ce:
+#          c5:2c:64:04:5e:88:36:6e:31:d4:40:1a:62:34:36:3f:35:01:
+#          ae:ac:63:a0
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+# Thawte Primary Root CA.pem
+# Certificate:
+#     Data:
+#         Version: 3 (0x2)
+#         Serial Number:
+#             34:4e:d5:57:20:d5:ed:ec:49:f4:2f:ce:37:db:2b:6d
+#     Signature Algorithm: sha1WithRSAEncryption
+#         Issuer: C=US, O=thawte, Inc., OU=Certification Services Division, OU=(c) 2006 thawte, Inc. - For authorized use only, CN=thawte Primary Root CA
+#         Validity
+#             Not Before: Nov 17 00:00:00 2006 GMT
+#             Not After : Jul 16 23:59:59 2036 GMT
+#         Subject: C=US, O=thawte, Inc., OU=Certification Services Division, OU=(c) 2006 thawte, Inc. - For authorized use only, CN=thawte Primary Root CA
+#         Subject Public Key Info:
+#             Public Key Algorithm: rsaEncryption
+#                 Public-Key: (2048 bit)
+#                 Modulus:
+#                     00:ac:a0:f0:fb:80:59:d4:9c:c7:a4:cf:9d:a1:59:
+#                     73:09:10:45:0c:0d:2c:6e:68:f1:6c:5b:48:68:49:
+#                     59:37:fc:0b:33:19:c2:77:7f:cc:10:2d:95:34:1c:
+#                     e6:eb:4d:09:a7:1c:d2:b8:c9:97:36:02:b7:89:d4:
+#                     24:5f:06:c0:cc:44:94:94:8d:02:62:6f:eb:5a:dd:
+#                     11:8d:28:9a:5c:84:90:10:7a:0d:bd:74:66:2f:6a:
+#                     38:a0:e2:d5:54:44:eb:1d:07:9f:07:ba:6f:ee:e9:
+#                     fd:4e:0b:29:f5:3e:84:a0:01:f1:9c:ab:f8:1c:7e:
+#                     89:a4:e8:a1:d8:71:65:0d:a3:51:7b:ee:bc:d2:22:
+#                     60:0d:b9:5b:9d:df:ba:fc:51:5b:0b:af:98:b2:e9:
+#                     2e:e9:04:e8:62:87:de:2b:c8:d7:4e:c1:4c:64:1e:
+#                     dd:cf:87:58:ba:4a:4f:ca:68:07:1d:1c:9d:4a:c6:
+#                     d5:2f:91:cc:7c:71:72:1c:c5:c0:67:eb:32:fd:c9:
+#                     92:5c:94:da:85:c0:9b:bf:53:7d:2b:09:f4:8c:9d:
+#                     91:1f:97:6a:52:cb:de:09:36:a4:77:d8:7b:87:50:
+#                     44:d5:3e:6e:29:69:fb:39:49:26:1e:09:a5:80:7b:
+#                     40:2d:eb:e8:27:85:c9:fe:61:fd:7e:e6:7c:97:1d:
+#                     d5:9d
+#                 Exponent: 65537 (0x10001)
+#         X509v3 extensions:
+#             X509v3 Basic Constraints: critical
+#                 CA:TRUE
+#             X509v3 Key Usage: critical
+#                 Certificate Sign, CRL Sign
+#             X509v3 Subject Key Identifier:
+#                 7B:5B:45:CF:AF:CE:CB:7A:FD:31:92:1A:6A:B6:F3:46:EB:57:48:50
+#     Signature Algorithm: sha1WithRSAEncryption
+#          79:11:c0:4b:b3:91:b6:fc:f0:e9:67:d4:0d:6e:45:be:55:e8:
+#          93:d2:ce:03:3f:ed:da:25:b0:1d:57:cb:1e:3a:76:a0:4c:ec:
+#          50:76:e8:64:72:0c:a4:a9:f1:b8:8b:d6:d6:87:84:bb:32:e5:
+#          41:11:c0:77:d9:b3:60:9d:eb:1b:d5:d1:6e:44:44:a9:a6:01:
+#          ec:55:62:1d:77:b8:5c:8e:48:49:7c:9c:3b:57:11:ac:ad:73:
+#          37:8e:2f:78:5c:90:68:47:d9:60:60:e6:fc:07:3d:22:20:17:
+#          c4:f7:16:e9:c4:d8:72:f9:c8:73:7c:df:16:2f:15:a9:3e:fd:
+#          6a:27:b6:a1:eb:5a:ba:98:1f:d5:e3:4d:64:0a:9d:13:c8:61:
+#          ba:f5:39:1c:87:ba:b8:bd:7b:22:7f:f6:fe:ac:40:79:e5:ac:
+#          10:6f:3d:8f:1b:79:76:8b:c4:37:b3:21:18:84:e5:36:00:eb:
+#          63:20:99:b9:e9:fe:33:04:bb:41:c8:c1:02:f9:44:63:20:9e:
+#          81:ce:42:d3:d6:3f:2c:76:d3:63:9c:59:dd:8f:a6:e1:0e:a0:
+#          2e:41:f7:2e:95:47:cf:bc:fd:33:f3:f6:0b:61:7e:7e:91:2b:
+#          81:47:c2:27:30:ee:a7:10:5d:37:8f:5c:39:2b:e4:04:f0:7b:
+#          8d:56:8c:68
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
\ No newline at end of file
diff --git a/Resources/PHP/Dropbox/strict.php b/Resources/PHP/Dropbox/strict.php
new file mode 100644 (file)
index 0000000..392e8b5
--- /dev/null
@@ -0,0 +1,14 @@
+<?php
+// Throw exceptions on all PHP errors/warnings/notices.
+// We'd like to do this in all situations (and not just when running tests), but
+// this is a global setting and other code might not be ready for it.
+/** @internal */
+function error_to_exception($errno, $errstr, $errfile, $errline, $context)
+{
+    // If the error is being suppressed with '@', don't throw an exception.
+    if (error_reporting() === 0) return;
+
+    throw new ErrorException($errstr, 0, $errno, $errfile, $errline);
+}
+set_error_handler('error_to_exception');
+
diff --git a/Resources/Private/.htaccess b/Resources/Private/.htaccess
new file mode 100644 (file)
index 0000000..dfc0272
--- /dev/null
@@ -0,0 +1 @@
+deny  from all
\ No newline at end of file
diff --git a/Resources/Private/Language/de.locallang_be.xlf b/Resources/Private/Language/de.locallang_be.xlf
new file mode 100644 (file)
index 0000000..58fe764
--- /dev/null
@@ -0,0 +1,31 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes" ?>
+<xliff version="1.0">
+       <file source-language="de" datatype="plaintext" original="messages" date="2013-05-27T14:06:47Z" product-name="aus_driver_dropbox">
+               <header/>
+               <body>
+
+                       <trans-unit id="driverConfiguration.authCode">
+                               <target>Dropbox Verbindung:</target>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.authCode.tutorial1">
+                               <target>Klicken Sie:</target>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.authCode.tutorial1_linkText">
+                               <target>hier</target>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.authCode.tutorial2">
+                               <target>Klicken Sie auf "Zulassen" (evtl. müssen Sie sich zuerst einloggen)</target>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.authCode.tutorial3">
+                               <target>Kopieren Sie den Code und fügen Sie diesen hier ein:</target>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.authCode.success">
+                               <target>Verbindung zu Dropbox erfolgreich</target>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.basePath">
+                               <target>Pfad zur Basis:</target>
+                       </trans-unit>
+
+               </body>
+       </file>
+</xliff>
\ No newline at end of file
diff --git a/Resources/Private/Language/locallang_be.xlf b/Resources/Private/Language/locallang_be.xlf
new file mode 100644 (file)
index 0000000..924b4cf
--- /dev/null
@@ -0,0 +1,31 @@
+<?xml version="1.0" encoding="utf-8" standalone="yes" ?>
+<xliff version="1.0">
+       <file source-language="en" datatype="plaintext" original="messages" date="2013-05-27T14:06:47Z" product-name="aus_driver_dropbox">
+               <header/>
+               <body>
+
+                       <trans-unit id="driverConfiguration.authCode">
+                               <source>Dropbox authorization:</source>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.authCode.tutorial1">
+                               <source>Click:</source>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.authCode.tutorial1_linkText">
+                               <source>here</source>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.authCode.tutorial2">
+                               <source>Click "Allow" (you might have to log in first)</source>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.authCode.tutorial3">
+                               <source>Copy the authorization code and paste here:</source>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.authCode.success">
+                               <source>Authentication successful</source>
+                       </trans-unit>
+                       <trans-unit id="driverConfiguration.basePath">
+                               <source>Base path:</source>
+                       </trans-unit>
+
+               </body>
+       </file>
+</xliff>
\ No newline at end of file
diff --git a/ext_emconf.php b/ext_emconf.php
new file mode 100644 (file)
index 0000000..84253f4
--- /dev/null
@@ -0,0 +1,28 @@
+<?php
+
+$EM_CONF[$_EXTKEY] = array (
+       'title' => 'anders und sehr: Dropbox FAL driver (CDN)',
+       'description' => 'Provides a FAL driver for Dropbox. See documentation for more details.',
+       'category' => 'be',
+       'version' => '1.0.1',
+       'state' => 'stable',
+       'uploadfolder' => false,
+       'createDirs' => '',
+       'clearcacheonload' => false,
+       'author' => 'Markus Hoelzle',
+       'author_email' => 'm.hoelzle@andersundsehr.com',
+       'author_company' => 'anders und sehr GmbH',
+       'constraints' => 
+       array (
+               'depends' => 
+               array (
+                       'typo3' => '6.2.0-6.2.99',
+               ),
+               'conflicts' => 
+               array (
+               ),
+               'suggests' => 
+               array (
+               ),
+       ),
+);
diff --git a/ext_icon.png b/ext_icon.png
new file mode 100644 (file)
index 0000000..4faabbb
Binary files /dev/null and b/ext_icon.png differ
diff --git a/ext_localconf.php b/ext_localconf.php
new file mode 100644 (file)
index 0000000..3fecdca
--- /dev/null
@@ -0,0 +1,21 @@
+<?php
+if (!defined('TYPO3_MODE')) {
+       die('Access denied.');
+}
+
+// register additional driver
+$TYPO3_CONF_VARS['SYS']['fal']['registeredDrivers'][\AUS\AusDriverDropbox\Driver\DropboxDriver::DRIVER_TYPE] = array(
+       'class' => 'AUS\AusDriverDropbox\Driver\DropboxDriver',
+       'label' => 'Dropbox',
+       'flexFormDS' => 'FILE:EXT:aus_driver_dropbox/Configuration/FlexForm/DropboxDriverFlexForm.xml'
+);
+
+/**
+ * register cache for extension
+ */
+if (!is_array($TYPO3_CONF_VARS['SYS']['caching']['cacheConfigurations']['ausdriverdropbox_cache'])) {
+       $TYPO3_CONF_VARS['SYS']['caching']['cacheConfigurations']['ausdriverdropbox_cache'] = array();
+       $TYPO3_CONF_VARS['SYS']['caching']['cacheConfigurations']['ausdriverdropbox_cache']['frontend'] = 'TYPO3\\CMS\\Core\\Cache\\Frontend\\VariableFrontend';
+       $TYPO3_CONF_VARS['SYS']['caching']['cacheConfigurations']['ausdriverdropbox_cache']['backend'] = 'TYPO3\\CMS\\Core\\Cache\\Backend\\Typo3DatabaseBackend';
+       $TYPO3_CONF_VARS['SYS']['caching']['cacheConfigurations']['ausdriverdropbox_cache']['options']['compression'] = 1;
+}
diff --git a/ext_tables.sql b/ext_tables.sql
new file mode 100644 (file)
index 0000000..b9f6dec
--- /dev/null
@@ -0,0 +1,24 @@
+#
+# TABLE STRUCTURE FOR TABLE 'cf_ausdriverdropbox_cache'
+#
+CREATE TABLE cf_ausdriverdropbox_cache (
+    id INT(11) UNSIGNED NOT NULL AUTO_INCREMENT,
+    identifier VARCHAR(250) DEFAULT '' NOT NULL,
+    crdate INT(11) UNSIGNED DEFAULT '0' NOT NULL,
+    content mediumblob,
+    expires INT(11) UNSIGNED DEFAULT '0' NOT NULL,
+    PRIMARY KEY (id),
+    KEY cache_id (identifier)
+) ENGINE=InnoDB;
+
+#
+# TABLE STRUCTURE FOR TABLE 'cf_ausdriverdropbox_cache_tags'
+#
+CREATE TABLE cf_ausdriverdropbox_cache_tags (
+    id INT(11) UNSIGNED NOT NULL AUTO_INCREMENT,
+    identifier VARCHAR(250) DEFAULT '' NOT NULL,
+    tag VARCHAR(250) DEFAULT '' NOT NULL,
+    PRIMARY KEY (id),
+    KEY cache_id (identifier),
+    KEY cache_tag (tag)
+) ENGINE=InnoDB;
diff --git a/readme.rst b/readme.rst
new file mode 100644 (file)
index 0000000..bd05832
--- /dev/null
@@ -0,0 +1,46 @@
+What does it do?
+================
+
+This is a driver for the file abstraction layer (FAL) to support Dropbox.
+
+You can create a file storage which allows you to upload/download and link the files to Dropbox. So you can upload your files in the TYPO3 CMS backend to Dropbox and link them in the frontend. Website visitor download the files from paths like \https://dl.dropboxusercontent.com/1/view/iwojriojfiajsdfj/fileadmin/big-file.iso
+
+It also supports the TYPO3 CMS image rendering but it is not recommended because the Dropbox API isn't very fast with processing the files.
+
+Requires TYPO3 CMS 6.2
+
+
+
+
+
+Installation
+------------
+
+Add a new file storage with the "Dropbox" driver to root page (pid = 0).
+
+Target group: **Administrators**
+
+
+Dropbox authentication
+----------------------
+
+Follow the instructions (see above) to connect your Dropbox account with TYPO3 CMS:
+
+1. Click on the link
+2. Click "Allow" (you might have to log in first)
+3. Copy the authorization code and paste to the field
+
+After saving the storage settings, you should see the success message:
+
+**Authentication successful**
+
+If you do not see this message, something went wrong.
+
+
+
+
+
+Base path:
+^^^^^^^^^^
+
+The base path is the directory in your Dropbox, which will be used by this driver.