X-Git-Url: http://git.bytex64.net/?a=blobdiff_plain;f=cgi%2Fcgi_blerg.c;h=8f502a261057b87394e16d650f85381834053b66;hb=476c970903c4f3d29a8da3fa7c6f6f237745a8b7;hp=7eb875e33d7b6053cc3c6c4fdc37c08fa2cae34c;hpb=0f1372bf57d75305b70835f610f9094092b3628f;p=blerg.git diff --git a/cgi/cgi_blerg.c b/cgi/cgi_blerg.c index 7eb875e..8f502a2 100644 --- a/cgi/cgi_blerg.c +++ b/cgi/cgi_blerg.c @@ -1,3 +1,6 @@ +/* Blerg is (C) 2011 The Dominion of Awesome, and is distributed under a + * BSD-style license. Please see the COPYING file for details. + */ #include #include #include @@ -6,43 +9,42 @@ #include "database.h" #include "tags.h" #include "auth.h" +#include "subscription.h" +#include "json.h" +#include "canned_responses.h" #include "app.h" #include "config.h" yajl_gen_config yajl_c = { 0, 0 }; -void respond_simple_data(unsigned const char *data, int len) { - printf("Content-length: %d\r\n\r\n", len); - write(0, data, len); -} +int check_auth(struct auth_cookie *ac) { + const char *given_cookie = cgi_getcookie("auth"); -void respond_404() { - printf("Status: 404 Not Found\r\n"); - printf("Content-type: text/html\r\n"); - printf("Content-length: %d\r\n\r\n", strlen(CONTENT_404)); + if (parse_auth_cookie(given_cookie, ac) != 1) { + respond_403(); + return 0; + } - printf(CONTENT_404); + if (!auth_check_token(ac->name, ac->token)) { + respond_403(); + return 0; + } + return 1; } -void respond_405() { - printf("Status: 405 Method Not Allowed\r\n"); - printf("Content-type: text/html\r\n"); - printf("Content-length: %d\r\n\r\n", strlen(CONTENT_405)); - - printf(CONTENT_405); -} +void respond_yajl(yajl_gen g) { + const unsigned char *ybuf; + unsigned int content_len; -void respond_JSON_Failure() { - respond_simple_data(JSON_FAILURE, strlen(JSON_FAILURE)); -} + yajl_gen_get_buf(g, &ybuf, &content_len); -void respond_JSON_Success() { - respond_simple_data(JSON_SUCCESS, strlen(JSON_SUCCESS)); + printf("Content-type: application/json\r\n"); + printf("Content-length: %d\r\n\r\n", content_len); + fwrite(ybuf, content_len, 1, stdout); } void respond_for_range(struct blerg *b, uint64_t from, uint64_t to) { const unsigned char *ybuf; - char number[21]; unsigned int len; uint64_t i; yajl_gen g; @@ -59,15 +61,47 @@ void respond_for_range(struct blerg *b, uint64_t from, uint64_t to) { yajl_gen_array_open(g); for (i = to; i != from - 1; i--) { - json_generate_one_record(g, NULL, b, i); + json_generate_one_record(g, NULL, b, i, 0); + yajl_gen_get_buf(g, &ybuf, &len); + fwrite(ybuf, len, 1, stdout); + yajl_gen_clear(g); + } + + yajl_gen_array_close(g); + yajl_gen_get_buf(g, &ybuf, &len); + fwrite(ybuf, len, 1, stdout); + yajl_gen_free(g); +} + +void respond_blergref_list(struct blergref * results, int i) { + const unsigned char *ybuf; + unsigned int len; + struct blerg *b; + yajl_gen g; + + i--; + + printf("Content-type: application/json\r\n\r\n"); + g = yajl_gen_alloc(&yajl_c, NULL); + + yajl_gen_array_open(g); + + while (i >= 0) { + b = blerg_open(results[i].author); + if (b != NULL) { + json_generate_one_record(g, results[i].author, b, results[i].record, 0); + blerg_close(b); + } yajl_gen_get_buf(g, &ybuf, &len); - write(0, ybuf, len); + fwrite(ybuf, len, 1, stdout); yajl_gen_clear(g); + + i--; } yajl_gen_array_close(g); yajl_gen_get_buf(g, &ybuf, &len); - write(0, ybuf, len); + fwrite(ybuf, len, 1, stdout); yajl_gen_free(g); } @@ -76,8 +110,12 @@ int main(int argc, char *argv[]) { char *request_method; int ret, len; struct url_info info; + struct auth_cookie ac; char *data; + if (!blerg_init()) + exit(1); + if (cgi_init() != CGIERR_NONE) exit(0); @@ -87,6 +125,10 @@ int main(int argc, char *argv[]) { exit(0); } request_method = getenv("REQUEST_METHOD"); + if (request_method == NULL) { + fprintf(stderr, "Request method is null!?\n"); + exit(0); + } if (strncmp(path, "/get", 4) == 0 && strlen(path) > 4) { if (strncmp(request_method, "GET", 4) != 0) { @@ -100,17 +142,17 @@ int main(int argc, char *argv[]) { } ret = parse_url_info(path + 5, &info); - if ((ret & URL_INFO_AUTHOR) == 0) { + if ((ret & URL_INFO_NAME) == 0) { respond_404(); exit(0); } - if (!blerg_exists(info.author)) { + if (!blerg_exists(info.name)) { respond_404(); exit(0); } - struct blerg *b = blerg_open(info.author); + struct blerg *b = blerg_open(info.name); if ((ret & URL_INFO_RECORD) && (ret & URL_INFO_RECORD_TO)) { respond_for_range(b, info.record, info.record_to); @@ -135,7 +177,7 @@ int main(int argc, char *argv[]) { } blerg_close(b); - } else if (strncmp(path, "/tag", 4) == 0 && strlen(url) > 4) { + } else if (strncmp(path, "/tag", 4) == 0 && strlen(path) > 4) { if (strcmp(request_method, "GET") != 0) { respond_405(); exit(0); @@ -147,25 +189,59 @@ int main(int argc, char *argv[]) { } ret = parse_url_info(path + 5, &info); - if ((ret & URL_INFO_AUTHOR) == 0) { + if ((ret & URL_INFO_NAME) == 0) { respond_404(); exit(0); } - if (!tag_exists(info.author)) { + if (info.name[0] == 'H') + info.name[0] = '#'; + if (!tag_exists(info.name)) { respond_404(); exit(0); } - uint64_t recs = 50; - struct tag *taglist = tag_list(info.author, 0, &recs, -1); + int recs = 50; + struct blergref *taglist = tag_list(info.name, 0, &recs, -1); if (recs == 0) { respond_simple_data("[]", 2); } else { - respond_taglist(taglist, recs); + respond_blergref_list(taglist, recs); + } + } else if (strncmp(path, "/put", 4) == 0) { + if (strcmp(request_method, "POST") != 0) { + respond_405(); + exit(0); } - } else if (strncmp(url, "/put", 4) == 0) { + + if (!check_auth(&ac)) + exit(0); + + if (path[4] == '/') { + respond_404(); + exit(0); + } + + const char *data = cgi_getentrystr("data"); + if (data == NULL || data[0] == 0) { + respond_JSON_Failure(); + exit(0); + } + + struct blerg *b = blerg_open(ac.name); + if (b == NULL) { + respond_JSON_Failure(); + exit(0); + } + ret = blerg_store(b, data, strlen(data)); + blerg_close(b); + if (ret == -1) { + respond_JSON_Failure(); + exit(0); + } + + respond_JSON_Success(); } else if (strncmp(path, "/info", 5) == 0) { if (strcmp(request_method, "GET") != 0) { respond_405(); @@ -178,41 +254,213 @@ int main(int argc, char *argv[]) { } ret = parse_url_info(path + 6, &info); - if ((ret & URL_INFO_AUTHOR) == 0) { + if ((ret & URL_INFO_NAME) == 0) { respond_404(); exit(0); } - if (!blerg_exists(info.author)) { + if (!blerg_exists(info.name)) { respond_404(); exit(0); } - struct blerg *b = blerg_open(info.author); + struct blerg *b = blerg_open(info.name); uint64_t record_count = blerg_get_record_count(b); blerg_close(b); char number[21]; yajl_gen g = yajl_gen_alloc(&yajl_c, NULL); yajl_gen_map_open(g); - yajl_gen_string(g, "record_count", 12); + yajl_gen_string(g, (unsigned char *)"record_count", 12); snprintf(number, 21, "%llu", record_count); - yajl_gen_string(g, number, strlen(number)); + yajl_gen_string(g, (unsigned char *)number, strlen(number)); yajl_gen_map_close(g); - const unsigned char *ybuf; - yajl_gen_get_buf(g, &ybuf, &len); - - printf("Content-type: application/json\r\n"); - printf("Content-length: %d\r\n\r\n", len); - write(0, ybuf, len); + respond_yajl(g); yajl_gen_free(g); - } else if (strncmp(url, "/create", 8) == 0) { + } else if (strncmp(path, "/create", 8) == 0) { + if (strcmp(request_method, "POST") != 0) { + respond_405(); + exit(0); + } + + const char *username = cgi_getentrystr("username"); + const char *password = cgi_getentrystr("password"); + if (username == NULL || username[0] == 0 || + password == NULL || password[0] == 0) { + respond_JSON_Failure(); + exit(0); + } + + if (blerg_exists(username)) { + respond_JSON_Failure(); + exit(0); + } + + struct blerg *b = blerg_open(username); + if (b != NULL) { + blerg_close(b); + auth_set_password(username, password); + + respond_JSON_Success(); + } else { + respond_JSON_Failure(); + } + } else if (strncmp(path, "/login", 7) == 0) { + if (strcmp(request_method, "POST") != 0) { + respond_405(); + exit(0); + } + + const char *username = cgi_getentrystr("username"); + const char *password = cgi_getentrystr("password"); + if (username == NULL || username[0] == 0 || + password == NULL || password[0] == 0) { + respond_JSON_Failure(); + exit(0); + } + + char *token = auth_login(username, password); + if (token == NULL) { + respond_JSON_Failure(); + exit(0); + } + + printf("Set-Cookie: auth=%s/%s\r\n", username, token); + free(token); + + respond_JSON_Success(); + } else if (strncmp(path, "/logout", 8) == 0) { + if (strcmp(request_method, "POST") != 0) { + respond_405(); + exit(0); + } + + if (!check_auth(&ac)) + exit(0); + + auth_logout(ac.name, ac.token); + printf("Set-Cookie: auth=X; Expires=Thu, 01 Jan 1970 00:00:00 GMT\r\n"); + respond_JSON_Success(); + } else if (strncmp(path, "/subscribe", 10) == 0) { + if (!check_auth(&ac)) + exit(0); + + if (path[10] != '/') { + respond_404(); + exit(0); + } + + ret = parse_url_info(path + 11, &info); + if ((ret & URL_INFO_NAME) == 0) { + respond_404(); + exit(0); + } + + const char *subscribed = cgi_getentrystr("subscribed"); + + if (strncmp(subscribed, "true", 4) == 0) { + subscription_add(ac.name, info.name); + } else if (strncmp(subscribed, "false", 5) == 0) { + subscription_remove(ac.name, info.name); + } else { + respond_JSON_Failure(); + exit(0); + } + respond_JSON_Success(); + } else if (strncmp(path, "/feed", 6) == 0) { + if (!check_auth(&ac)) + exit(0); + + int recs = 50; + struct blergref *feedlist = subscription_list(ac.name, 0, &recs, -1); + + if (recs == 0) { + respond_simple_data("[]", 2); + } else { + respond_blergref_list(feedlist, recs); + } + } else if (strncmp(path, "/status", 7) == 0) { + if (!check_auth(&ac)) + exit(0); + + if (strncmp(request_method, "POST", 4) == 0) { + const char *clear = cgi_getentrystr("clear"); + + if (clear != NULL) { + struct blerg *b = blerg_open(ac.name); + if (strncmp(clear, "feed", 4) == 0) { + blerg_set_subscription_mark(b); + } else if (strncmp(clear, "mentioned", 9) == 0) { + blerg_set_status(b, BLERGSTATUS_MENTIONED, 0); + } + blerg_close(b); + respond_JSON_Success(); + } + } else if (strncmp(request_method, "GET", 3) == 0) { + yajl_gen g; + + if (path[7] == 0) { /* No username */ + g = yajl_gen_alloc(&yajl_c, NULL); + yajl_gen_map_open(g); + + struct blerg *b = blerg_open(ac.name); + uint64_t subscription_mark = blerg_get_subscription_mark(b); + int mentioned = blerg_get_status(b, BLERGSTATUS_MENTIONED); + blerg_close(b); + + yajl_gen_string(g, (unsigned char *)"feed_new", 8); + yajl_gen_integer(g, subscription_count_items(ac.name) - subscription_mark); + + yajl_gen_string(g, (unsigned char *)"mentioned", 9); + yajl_gen_bool(g, mentioned); + + yajl_gen_map_close(g); + respond_yajl(g); + yajl_gen_free(g); + } else { /* with username */ + g = yajl_gen_alloc(&yajl_c, NULL); + yajl_gen_map_open(g); + + yajl_gen_string(g, (unsigned char *)"subscribed", 10); + ret = parse_url_info(path + 8, &info); + if ((ret & URL_INFO_NAME) == 1) { + yajl_gen_bool(g, is_subscribed(ac.name, info.name)); + } else { + yajl_gen_bool(g, 0); + } + + yajl_gen_map_close(g); + respond_yajl(g); + yajl_gen_free(g); + } + } else { + respond_405(); + exit(0); + } + } else if (strncmp(path, "/passwd", 7) == 0) { + if (!check_auth(&ac)) + exit(0); + + const char *password = cgi_getentrystr("password"); + const char *new_password = cgi_getentrystr("new_password"); + if (password == NULL || new_password == NULL) { + respond_JSON_Failure(); + } else { + if (auth_check_password(ac.name, password)) { + auth_set_password(ac.name, new_password); + respond_JSON_Success(); + } else { + respond_JSON_Failure(); + } + } } else { respond_404(); exit(0); } cgi_quit(); + + return 0; }