X-Git-Url: http://git.bytex64.net/?a=blobdiff_plain;f=cgi%2Fcgi_blerg.c;h=8f502a261057b87394e16d650f85381834053b66;hb=476c970903c4f3d29a8da3fa7c6f6f237745a8b7;hp=c004a7d05a87ac9fca2ed9fe5e2ce9f89c7eabdb;hpb=ec8746b44dc85fd3e3b42835f779890684a9e90a;p=blerg.git

diff --git a/cgi/cgi_blerg.c b/cgi/cgi_blerg.c
index c004a7d..8f502a2 100644
--- a/cgi/cgi_blerg.c
+++ b/cgi/cgi_blerg.c
@@ -9,12 +9,40 @@
 #include "database.h"
 #include "tags.h"
 #include "auth.h"
+#include "subscription.h"
+#include "json.h"
 #include "canned_responses.h"
 #include "app.h"
 #include "config.h"
 
 yajl_gen_config yajl_c = { 0, 0 };
 
+int check_auth(struct auth_cookie *ac) {
+	const char *given_cookie = cgi_getcookie("auth");
+
+	if (parse_auth_cookie(given_cookie, ac) != 1) {
+		respond_403();
+		return 0;
+	}
+
+	if (!auth_check_token(ac->name, ac->token)) {
+		respond_403();
+		return 0;
+	}
+	return 1;
+}
+
+void respond_yajl(yajl_gen g) {
+	const unsigned char *ybuf;
+	unsigned int content_len;
+
+	yajl_gen_get_buf(g, &ybuf, &content_len);
+
+	printf("Content-type: application/json\r\n");
+	printf("Content-length: %d\r\n\r\n", content_len);
+	fwrite(ybuf, content_len, 1, stdout);
+}
+
 void respond_for_range(struct blerg *b, uint64_t from, uint64_t to) {
 	const unsigned char *ybuf;
 	unsigned int len;
@@ -82,8 +110,12 @@ int main(int argc, char *argv[]) {
 	char *request_method;
 	int ret, len;
 	struct url_info info;
+	struct auth_cookie ac;
 	char *data;
 
+	if (!blerg_init())
+		exit(1);
+
 	if (cgi_init() != CGIERR_NONE)
 		exit(0);
 
@@ -183,26 +215,21 @@ int main(int argc, char *argv[]) {
 			exit(0);
 		}
 
+		if (!check_auth(&ac))
+			exit(0);
+
 		if (path[4] == '/') {
 			respond_404();
 			exit(0);
 		}
 
-		const char *username = cgi_getentrystr("username");
 		const char *data = cgi_getentrystr("data");
-		if (username == NULL || username[0] == 0 ||
-		    data == NULL || data[0] == 0) {
-			respond_JSON_Failure();
-			exit(0);
-		}
-
-		const char *given_token = cgi_getcookie("auth");
-		if (!auth_check_token(username, given_token)) {
+		if (data == NULL || data[0] == 0) {
 			respond_JSON_Failure();
 			exit(0);
 		}
 
-		struct blerg *b = blerg_open(username);
+		struct blerg *b = blerg_open(ac.name);
 		if (b == NULL) {
 			respond_JSON_Failure();
 			exit(0);
@@ -244,17 +271,12 @@ int main(int argc, char *argv[]) {
 		char number[21];
 		yajl_gen g = yajl_gen_alloc(&yajl_c, NULL);
 		yajl_gen_map_open(g);
-		yajl_gen_string(g, "record_count", 12);
+		yajl_gen_string(g, (unsigned char *)"record_count", 12);
 		snprintf(number, 21, "%llu", record_count);
-		yajl_gen_string(g, number, strlen(number));
+		yajl_gen_string(g, (unsigned char *)number, strlen(number));
 		yajl_gen_map_close(g);
 
-		const unsigned char *ybuf;
-		yajl_gen_get_buf(g, &ybuf, &len);
-
-		printf("Content-type: application/json\r\n");
-		printf("Content-length: %d\r\n\r\n", len);
-		fwrite(ybuf, len, 1, stdout);
+		respond_yajl(g);
 
 		yajl_gen_free(g);
 	} else if (strncmp(path, "/create", 8) == 0) {
@@ -277,10 +299,14 @@ int main(int argc, char *argv[]) {
 		}
 
 		struct blerg *b = blerg_open(username);
-		blerg_close(b);
-		auth_set_password(username, password);
-		
-		respond_JSON_Success();
+		if (b != NULL) {
+			blerg_close(b);
+			auth_set_password(username, password);
+			
+			respond_JSON_Success();
+		} else {
+			respond_JSON_Failure();
+		}
 	} else if (strncmp(path, "/login", 7) == 0) {
 		if (strcmp(request_method, "POST") != 0) {
 			respond_405();
@@ -295,13 +321,13 @@ int main(int argc, char *argv[]) {
 			exit(0);
 		}
 
-		if (!auth_login(username, password)) {
+		char *token = auth_login(username, password);
+		if (token == NULL) {
 			respond_JSON_Failure();
 			exit(0);
 		}
 
-		char *token = auth_get_token(username);
-		printf("Set-Cookie: auth=%s\r\n", token);
+		printf("Set-Cookie: auth=%s/%s\r\n", username, token);
 		free(token);
 
 		respond_JSON_Success();
@@ -311,19 +337,123 @@ int main(int argc, char *argv[]) {
 			exit(0);
 		}
 
-		const char *username = cgi_getentrystr("username");
-		if (username == NULL || username[0] == 0) {
+		if (!check_auth(&ac))
+			exit(0);
+
+		auth_logout(ac.name, ac.token);
+		printf("Set-Cookie: auth=X; Expires=Thu, 01 Jan 1970 00:00:00 GMT\r\n");
+		respond_JSON_Success();
+	} else if (strncmp(path, "/subscribe", 10) == 0) {
+		if (!check_auth(&ac))
+			exit(0);
+
+		if (path[10] != '/') {
+			respond_404();
+			exit(0);
+		}
+
+		ret = parse_url_info(path + 11, &info);
+		if ((ret & URL_INFO_NAME) == 0) {
+			respond_404();
+			exit(0);
+		}
+
+		const char *subscribed = cgi_getentrystr("subscribed");
+
+		if (strncmp(subscribed, "true", 4) == 0) {
+			subscription_add(ac.name, info.name);
+		} else if (strncmp(subscribed, "false", 5) == 0) {
+			subscription_remove(ac.name, info.name);
+		} else {
 			respond_JSON_Failure();
 			exit(0);
 		}
+		respond_JSON_Success();
+	} else if (strncmp(path, "/feed", 6) == 0) {
+		if (!check_auth(&ac))
+			exit(0);
 
+		int recs = 50;
+		struct blergref *feedlist = subscription_list(ac.name, 0, &recs, -1);
 
-		const char *given_token = cgi_getcookie("auth");
-		if (auth_check_token(username, given_token)) {
-			auth_logout(username);
-			respond_JSON_Success();
+		if (recs == 0) {
+			respond_simple_data("[]", 2);
 		} else {
+			respond_blergref_list(feedlist, recs);
+		}
+	} else if (strncmp(path, "/status", 7) == 0) {
+		if (!check_auth(&ac))
+			exit(0);
+
+		if (strncmp(request_method, "POST", 4) == 0) {
+			const char *clear = cgi_getentrystr("clear");
+
+			if (clear != NULL) {
+				struct blerg *b = blerg_open(ac.name);
+				if (strncmp(clear, "feed", 4) == 0) {
+					blerg_set_subscription_mark(b);
+				} else if (strncmp(clear, "mentioned", 9) == 0) {
+					blerg_set_status(b, BLERGSTATUS_MENTIONED, 0);
+				}
+				blerg_close(b);
+				respond_JSON_Success();
+			}
+		} else if (strncmp(request_method, "GET", 3) == 0) {
+			yajl_gen g;
+
+			if (path[7] == 0) {  /* No username */
+				g = yajl_gen_alloc(&yajl_c, NULL);
+				yajl_gen_map_open(g);
+
+				struct blerg *b = blerg_open(ac.name);
+				uint64_t subscription_mark = blerg_get_subscription_mark(b);
+				int mentioned = blerg_get_status(b, BLERGSTATUS_MENTIONED);
+				blerg_close(b);
+
+				yajl_gen_string(g, (unsigned char *)"feed_new", 8);
+				yajl_gen_integer(g, subscription_count_items(ac.name) - subscription_mark);
+
+				yajl_gen_string(g, (unsigned char *)"mentioned", 9);
+				yajl_gen_bool(g, mentioned);
+
+				yajl_gen_map_close(g);
+				respond_yajl(g);
+				yajl_gen_free(g);
+			} else {  /* with username */
+				g = yajl_gen_alloc(&yajl_c, NULL);
+				yajl_gen_map_open(g);
+
+				yajl_gen_string(g, (unsigned char *)"subscribed", 10);
+				ret = parse_url_info(path + 8, &info);
+				if ((ret & URL_INFO_NAME) == 1) {
+					yajl_gen_bool(g, is_subscribed(ac.name, info.name));
+				} else {
+					yajl_gen_bool(g, 0);
+				}
+
+				yajl_gen_map_close(g);
+				respond_yajl(g);
+				yajl_gen_free(g);
+			}
+		} else {
+			respond_405();
+			exit(0);
+		}
+	} else if (strncmp(path, "/passwd", 7) == 0) {
+		if (!check_auth(&ac))
+			exit(0);
+
+		const char *password = cgi_getentrystr("password");
+		const char *new_password = cgi_getentrystr("new_password");
+		if (password == NULL || new_password == NULL) {
 			respond_JSON_Failure();
+		} else {
+			if (auth_check_password(ac.name, password)) {
+				auth_set_password(ac.name, new_password);
+				respond_JSON_Success();
+			} else {
+				respond_JSON_Failure();
+			}
 		}
 	} else {
 		respond_404();
@@ -331,4 +461,6 @@ int main(int argc, char *argv[]) {
 	}
 
 	cgi_quit();
+
+	return 0;
 }