{"id":32998198,"url":"https://github.com/a-langer/webdav-vfs-gate","last_synced_at":"2026-01-12T08:29:09.882Z","repository":{"id":50100481,"uuid":"271187290","full_name":"a-langer/webdav-vfs-gate","owner":"a-langer","description":"WebDAV gateway for accessing to different file systems","archived":false,"fork":false,"pushed_at":"2024-09-24T18:36:19.000Z","size":113,"stargazers_count":3,"open_issues_count":1,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-11-18T07:02:37.363Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/a-langer.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2020-06-10T05:29:50.000Z","updated_at":"2023-05-29T15:56:58.000Z","dependencies_parsed_at":"2024-02-23T19:43:07.346Z","dependency_job_id":null,"html_url":"https://github.com/a-langer/webdav-vfs-gate","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/a-langer/webdav-vfs-gate","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/a-langer%2Fwebdav-vfs-gate","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/a-langer%2Fwebdav-vfs-gate/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/a-langer%2Fwebdav-vfs-gate/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/a-langer%2Fwebdav-vfs-gate/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/a-langer","download_url":"https://codeload.github.com/a-langer/webdav-vfs-gate/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/a-langer%2Fwebdav-vfs-gate/sbom","scorecard":{"id":157736,"data":{"date":"2025-08-11","repo":{"name":"github.com/a-langer/webdav-vfs-gate","commit":"c220265a4f9e932e7987b0f344ac9f7ccc73cef3"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.7,"checks":[{"name":"Dangerous-Workflow","score":-1,"reason":"no workflows found","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Code-Review","score":0,"reason":"Found 0/12 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Pinned-Dependencies","score":-1,"reason":"no dependencies found","details":null,"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Token-Permissions","score":-1,"reason":"No tokens found","details":null,"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact 1.0.0 not signed: https://api.github.com/repos/a-langer/webdav-vfs-gate/releases/27981451","Warn: release artifact 1.0.0 does not have provenance: https://api.github.com/repos/a-langer/webdav-vfs-gate/releases/27981451"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 12 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-16T12:19:50.479Z","repository_id":50100481,"created_at":"2025-08-16T12:19:50.479Z","updated_at":"2025-08-16T12:19:50.479Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28337595,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-12T06:09:07.588Z","status":"ssl_error","status_checked_at":"2026-01-12T06:05:18.301Z","response_time":98,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-11-13T13:00:23.110Z","updated_at":"2026-01-12T08:29:09.877Z","avatar_url":"https://github.com/a-langer.png","language":"Java","funding_links":[],"categories":["Servers"],"sub_categories":["Standalone"],"readme":"# WebDAV VFS gate\n\n[![Build Status](https://travis-ci.org/a-langer/webdav-vfs-gate.svg?branch=master)](https://travis-ci.org/a-langer/webdav-vfs-gate)\n[![license](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://github.com/a-langer/webdav-vfs-gate/blob/master/LICENSE)\n[![Maven JitPack](https://img.shields.io/github/tag/a-langer/webdav-vfs-gate.svg?label=maven)](https://jitpack.io/#a-langer/webdav-vfs-gate)\n[![Maven Central](https://maven-badges.herokuapp.com/maven-central/com.github.a-langer/webdav-vfs-gate/badge.svg)](https://maven-badges.herokuapp.com/maven-central/com.github.a-langer/webdav-vfs-gate)\n\nThis project implement WebDAV gateway for accessing to different file systems. The file systems access level is based on the [Apache Commons VFS][1] library. WebDAV protocol layer is based on [Apache Jackrabbit][2] library.\n\n## Supported features\n\n* Available [file systems][3] of Apache Commons VFS  (smb,ftp,sftp,http,webdav,zip,jar and other).\n* WebDAV compatible with [Windows Explorer][4], [GVFS][5] and [davfs2][6].\n* Server implemented as library (jar) and web application (war).\n* Application ready for use in web containers, such as [Tomcat][7], [Jetty][8], [JBoss][9] and similar.\n* Configuring file system from servlet initialization parameters and java properties.\n* Audit log of file operations.\n\n## Initialization parameters\n\n* `rootpath` - connection string for file system ([see more example][3]). Parameter must be specified.\n* `login` - connection login for file system, optional parameter.\n* `password` - connection password for file system, optional parameter.\n* `domain` - connection domain for file system, optional parameter.\n* `listings-directory` - boolean parameter, enables showing directory content as html page, by default is `true`.\n* `include-context-path` - boolean parameter, enables containing context path in resource path, by default is `true`.\n* `files-cache` - class full name of [Apache VFS][10] cache implementation, by default is `org.apache.commons.vfs2.cache.SoftRefFilesCache`.\n* `cache-strategy` - name of [Apache VFS][11] cache strategy, may take values: `manual`, `onresolve` or `oncall`. By default is `oncall`.\n* `builder` - class full name of [Apache VFS][1] file system config builder, specific to each file system, ex.: for FTP is `org.apache.commons.vfs2.provider.ftps.FtpsFileSystemConfigBuilder`.\n* `builder.\u003cmethod_name\u003e` - string parameter determine method name for invoke in instance of file system config builder. To call  setters needs convert method name to property name, ex.: method `setControlEncoding` must be converted to `controlEncoding`. Value of parameter may be string, integer or boolean (see example in [web.xml](./web.xml#L79-L98)).\n* `logger-name` - name for servlet logger, by default is `com.github.alanger.webdav.VfsWebDavServlet`.\n* `audit-methods` - a comma-separated list of http methods for file operations audit logs, optional parameter.\n* `createAbsoluteURI` - boolean parameter, enables using an absolute URI instead of a relative, by default is `false`.\n* `csrf-protection` - configuration of the CSRF protection, may contain a comma-separated list of allowed referrer hosts. By default is `disabled`.\n\n## Usage\n\nDeploy [webdav-vfs-gate-\u003cversion\u003e.war][13] to servlets container ([Tomcat][7], [Jetty][8], [JBoss][9] or similar).\nAdd servlet declarations to `web.xml` (see documentation of servlet container).  \n\nExample for local file system:\n\n```xml\n\u003cservlet\u003e\n    \u003cservlet-name\u003eroot\u003c/servlet-name\u003e\n    \u003cservlet-class\u003ecom.github.alanger.webdav.VfsWebDavServlet\u003c/servlet-class\u003e\n\u003cinit-param\u003e\n    \u003cparam-name\u003erootpath\u003c/param-name\u003e\n    \u003cparam-value\u003e/path/to/filesystem/folder\u003c/param-value\u003e\n\u003c/init-param\u003e\n\u003c/servlet\u003e\n\u003cservlet-mapping\u003e\n    \u003cservlet-name\u003eroot\u003c/servlet-name\u003e\n    \u003curl-pattern\u003e/root/*\u003c/url-pattern\u003e\n\u003c/servlet-mapping\u003e\n```\n\nExample for SMB file system with login and password in connection string:\n\n```xml\n\u003cservlet\u003e\n    \u003cservlet-name\u003esmb\u003c/servlet-name\u003e\n    \u003cservlet-class\u003ecom.github.alanger.webdav.VfsWebDavServlet\u003c/servlet-class\u003e\n    \u003cinit-param\u003e\n        \u003cparam-name\u003erootpath\u003c/param-name\u003e\n        \u003cparam-value\u003esmb://DOMAIN\\mylogin:mypassword@hostname:445/path\u003c/param-value\u003e\n    \u003c/init-param\u003e\n\u003c/servlet\u003e\n\u003cservlet-mapping\u003e\n    \u003cservlet-name\u003esmb\u003c/servlet-name\u003e\n    \u003curl-pattern\u003e/smb/*\u003c/url-pattern\u003e\n\u003c/servlet-mapping\u003e\n```\n\nExample for SMB file system with login and password in initialize parameters:\n\n```xml\n\u003cservlet\u003e\n    \u003cservlet-name\u003esmb\u003c/servlet-name\u003e\n    \u003cservlet-class\u003ecom.github.alanger.webdav.VfsWebDavServlet\u003c/servlet-class\u003e\n    \u003cinit-param\u003e\n        \u003cparam-name\u003erootpath\u003c/param-name\u003e\n        \u003cparam-value\u003esmb://hostname:445/path\u003c/param-value\u003e\n    \u003c/init-param\u003e\n    \u003cinit-param\u003e\n        \u003cparam-name\u003edomain\u003c/param-name\u003e\n        \u003cparam-value\u003eDOMAIN\u003c/param-value\u003e\n    \u003c/init-param\u003e\n    \u003cinit-param\u003e\n        \u003cparam-name\u003elogin\u003c/param-name\u003e\n        \u003cparam-value\u003emylogin\u003c/param-value\u003e\n    \u003c/init-param\u003e\n    \u003cinit-param\u003e\n        \u003cparam-name\u003epassword\u003c/param-name\u003e\n        \u003cparam-value\u003emypassword\u003c/param-value\u003e\n    \u003c/init-param\u003e\n\u003c/servlet\u003e\n\u003cservlet-mapping\u003e\n    \u003cservlet-name\u003esmb\u003c/servlet-name\u003e\n    \u003curl-pattern\u003e/smb/*\u003c/url-pattern\u003e\n\u003c/servlet-mapping\u003e\n```\n\nExample for SMB file system with connection string from system properties:\n\n```bash\n-Dsmb.connection.string=\"smb://DOMAIN\\mylogin:mypassword@hostname:445/path\"\n```\n\n```xml\n\u003cservlet\u003e\n    \u003cservlet-name\u003esmb\u003c/servlet-name\u003e\n    \u003cservlet-class\u003ecom.github.alanger.webdav.VfsWebDavServlet\u003c/servlet-class\u003e\n    \u003cinit-param\u003e\n        \u003cparam-name\u003erootpath\u003c/param-name\u003e\n        \u003cparam-value\u003e${smb.connection.string}\u003c/param-value\u003e\n    \u003c/init-param\u003e\n\u003c/servlet\u003e\n\u003cservlet-mapping\u003e\n    \u003cservlet-name\u003esmb\u003c/servlet-name\u003e\n    \u003curl-pattern\u003e/smb/*\u003c/url-pattern\u003e\n\u003c/servlet-mapping\u003e\n```\n\nExample for file system with audit log of file operations:\n\n```bash\n-Dlogback.configurationFile=/path/to/config/logback.xml\n```\n\n```xml\n\u003c!-- In logback.xml --\u003e\n\u003clogger name=\"com.github.alanger.webdav.my_audit_logger\" level=\"INFO\" additivity=\"false\"\u003e\n    \u003cappender-ref ref=\"STDOUT\" /\u003e\n\u003c/logger\u003e\n```\n\n```xml\n\u003cservlet\u003e\n    \u003cservlet-name\u003eaudit\u003c/servlet-name\u003e\n    \u003cservlet-class\u003ecom.github.alanger.webdav.VfsWebDavServlet\u003c/servlet-class\u003e\n    \u003cinit-param\u003e\n        \u003cparam-name\u003erootpath\u003c/param-name\u003e\n        \u003cparam-value\u003e/path/to/filesystem/folder\u003c/param-value\u003e\n    \u003c/init-param\u003e\n    \u003cinit-param\u003e\n        \u003cparam-name\u003elogger-name\u003c/param-name\u003e\n        \u003cparam-value\u003ecom.github.alanger.webdav.my_audit_logger\u003c/param-value\u003e\n    \u003c/init-param\u003e\n    \u003cinit-param\u003e\n        \u003cparam-name\u003eaudit-methods\u003c/param-name\u003e\n        \u003cparam-value\u003eGET,MKCOL,DELETE,COPY,MOVE,PUT,PROPPATH\u003c/param-value\u003e\n    \u003c/init-param\u003e\n\u003c/servlet\u003e\n\u003cservlet-mapping\u003e\n    \u003cservlet-name\u003eaudit\u003c/servlet-name\u003e\n    \u003curl-pattern\u003e/audit/*\u003c/url-pattern\u003e\n\u003c/servlet-mapping\u003e\n```\n\nExample for MIME types configuration (see [content-types.properties](./content-types.properties) file):\n\n```bash\n-Dcontent.types.user.table=/path/to/config/content-types.properties\n```\n\n## More examples\nServlet configurations see in [web.xml](./web.xml) file.  \nFile systems see in [Apache Commons VFS][3] documentation.  \nLogger configuration see in [Logback][12] documentation.  \n\n## Getting the library using Maven\n\nAdd this dependency to your `pom.xml` to reference the library:\n\n```xml\n\u003cdependency\u003e\n    \u003cgroupId\u003ecom.github.a-langer\u003c/groupId\u003e\n    \u003cartifactId\u003ewebdav-vfs-gate\u003c/artifactId\u003e\n    \u003cversion\u003e1.0.0\u003c/version\u003e\n    \u003cclassifier\u003eclasses\u003c/classifier\u003e\n\u003c/dependency\u003e\n```\n\n## Related repositories\n\n* [shiro-ext](https://github.com/a-langer/shiro-ext) - Extension for security framework [Apache Shiro](https://shiro.apache.org/introduction.html).\n* [buji-pac4j](https://github.com/bujiio/buji-pac4j) - Security library for Shiro web applications which supports OAuth, SAML, CAS, OpenID, Google App Engine, Kerberos, JWT and more.\n* [UrlRewriteFilter](https://github.com/paultuckey/urlrewritefilter) - Java Web Filter for any J2EE compliant web application server.\n\n[1]: https://commons.apache.org/proper/commons-vfs/index.html\n[2]: https://jackrabbit.apache.org/jcr/components/jackrabbit-webdav-library.html\n[3]: https://commons.apache.org/proper/commons-vfs/filesystems.html\n[4]: https://docs.microsoft.com/en-us/windows/win32/webdav/webdav-portal\n[5]: https://wiki.gnome.org/Projects/gvfs\n[6]: https://savannah.nongnu.org/projects/davfs2\n[7]: http://tomcat.apache.org/\n[8]: https://www.eclipse.org/jetty/\n[9]: https://www.jboss.org/\n[10]: https://commons.apache.org/proper/commons-vfs/api.html#Cache\n[11]: https://cwiki.apache.org/confluence/display/COMMONS/VfsCacheStrategy\n[12]: http://logback.qos.ch/manual/configuration.html\n[13]: https://github.com/a-langer/webdav-vfs-gate/releases\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fa-langer%2Fwebdav-vfs-gate","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fa-langer%2Fwebdav-vfs-gate","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fa-langer%2Fwebdav-vfs-gate/lists"}