Changeset 34117

Timestamp:

2020-05-20T15:53:56+12:00 (4 years ago)

Author:

kjdon

Message:

tidied up the code. Moved a few commands that don't actually need site or username to before testing for site and username, as its annoying to have to add site and username when don't need to. (when testing). Use gsdl3home instead of gsdl3srchome.

File:

• main/trunk/greenstone2/common-src/cgi-bin/gliserver.pl (modified) (11 diffs)

main/trunk/greenstone2/common-src/cgi-bin/gliserver.pl

@@ -1 @@
-#!/usr/bin/perl -w
+#!C:\Perl64\bin\perl.exe -w
 # Need to specify the full path of Perl above
 
@@ -99 +99 @@
     $gsdl_cgi->delete("cmd");
 
-    # The check-installation, greenstone-server-version and get-library-url commands have no arguments
+    # The check-installation, greenstone-server-version and get-library-url-suffix, get-site-names commands have no arguments
     if ($cmd eq "check-installation") {
     &check_installation($gsdl_cgi);
     return;
     }
-    elsif ($cmd eq "greenstone-server-version") {
+    if ($cmd eq "greenstone-server-version") {
     &greenstone_server_version($gsdl_cgi);
     return;
     }
-    elsif ($cmd eq "get-library-url-suffix") {
+    if ($cmd eq "get-library-url-suffix") {
     &get_library_url_suffix($gsdl_cgi);
     return;
     }
 
+    if ($cmd eq "get-site-names" && $gsdl_cgi->greenstone_version() == 3) {
+    &get_site_names($gsdl_cgi);
+    return;
+    }
+    # I assume this is so we can check handling of a time out
+    if ($cmd eq "timeout-test") {
+    while (1) { }
+    }
+ 
     # All other commands require a username, for locking and authentication
     my $username = $gsdl_cgi->clean_param("un");
@@ -128 +137 @@
 
     my $site; # undefined on declaration, see http://perldoc.perl.org/perlsyn.html
+
     if($gsdl_cgi->greenstone_version() != 2) { # all GS versions after 2 may define site
     $site = $gsdl_cgi->clean_param("site");   
@@ -134 +144 @@
     }
     $gsdl_cgi->delete("site");
+
     }
 
@@ -139 +150 @@
     if ($cmd eq "delete-collection") {
     &delete_collection($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "download-collection") {
+    return;
+    }
+    
+    if ($cmd eq "download-collection") {
     &download_collection($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "download-collection-archives") {
+    return;
+    }
+    if ($cmd eq "download-collection-archives") {
     &download_collection_archives($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "download-collection-configurations") {
+    return;
+    }
+    if ($cmd eq "download-collection-configurations") {
     &download_collection_configurations($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "download-collection-file") {
+    return;
+    }
+    if ($cmd eq "download-collection-file") {
     &download_collection_file($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "delete-collection-file") {
+    return;
+    }
+    if ($cmd eq "delete-collection-file") {
     &delete_collection_file($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "get-script-options") {
+    return;
+    }
+    if ($cmd eq "get-script-options") {
     &get_script_options($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "move-collection-file") {
+    return;
+    }
+    if ($cmd eq "move-collection-file") {
     &move_collection_file($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "new-collection-directory") {
+    return;
+    }
+    if ($cmd eq "new-collection-directory") {
     &new_collection_directory($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "run-script") {
+    return;
+    }
+    if ($cmd eq "run-script") {
     &run_script($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "timeout-test") {
-    while (1) { }
-    }
-    elsif ($cmd eq "upload-collection-file") {
+    return;
+    }
+    if ($cmd eq "upload-collection-file") {
     &upload_collection_file($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "file-exists") { 
+    return;
+    }
+    if ($cmd eq "file-exists") { 
     &file_exists($gsdl_cgi, $site);
+    return;
     }
     # cmds not in Greenstone 2:
-    elsif ($gsdl_cgi->greenstone_version() != 2) {  
+    if ($gsdl_cgi->greenstone_version() != 2) {     
     if ($cmd eq "download-web-xml-file") {
         &download_web_xml_file($gsdl_cgi, $username, $timestamp, $site);
+        return;
     } 
-    elsif ($cmd eq "user-validation") {
+    if ($cmd eq "user-validation") {
         &user_validation($gsdl_cgi, $username, $timestamp, $site);
-    }
-    elsif ($cmd eq "get-site-names") {
-        &get_site_names($gsdl_cgi, $username, $timestamp, $site);
-    }
-    }
-    else {
-    $gsdl_cgi->generate_error("Unrecognised command: '$cmd'");
-    }
+        return;
+    }
+    }
+    
+    # if we get here we have an invalid command
+    $gsdl_cgi->generate_error("Unrecognised command: '$cmd'");
+    
         
 }
@@ -200 +221 @@
     my $username = shift(@_);
     my $collection = shift(@_);
-    my $site = shift(@_);
-
-    # Even if we're not authenticating remove the un and pw arguments, since these can mess up other scripts
+
+    # Check and remove the pw argument, since this can mess up other scripts
     my $user_password = $gsdl_cgi->clean_param("pw");
     $gsdl_cgi->delete("pw");
 
-    # Only authenticate if it is enabled
-    # return "all-collections-editor" if (!$authentication_enabled);
-
     if ((!defined $user_password) || ($user_password =~ m/^\s*$/)) {
     $gsdl_cgi->generate_error("Authentication failed: no password specified.");
     }
 
+
     if($gsdl_cgi->greenstone_version() == 2) {
-    my $users_db_content;
-    my $etc_directory = &util::filename_cat($ENV{'GSDLHOME'}, "etc");
-    my $users_db_file_path = &util::filename_cat($etc_directory, "users.gdb");
-    
-    # Use db2txt instead of GDBM_File to get the user accounts information
-    $users_db_content = "";
-    open(USERS_DB, "db2txt \"$users_db_file_path\" |");
-    while (<USERS_DB>) {
-        $users_db_content .= $_;
-    }
-    close(USERS_DB);
+    return &authenticate_user_gs2($gsdl_cgi, $username, $user_password, $collection);
+    }
+    # else gs3
+    return &authenticate_user_gs3($gsdl_cgi, $username, $user_password, $collection);
+}
+
+sub authenticate_user_gs2 {
+
+    my $gsdl_cgi = shift(@_);
+    my $username = shift(@_);
+    my $user_password = shift(@_);
+    my $collection = shift(@_);
+
+    my $users_db_content;
+    my $etc_directory = &util::filename_cat($ENV{'GSDLHOME'}, "etc");
+    my $users_db_file_path = &util::filename_cat($etc_directory, "users.gdb");
+    
+    # Use db2txt instead of GDBM_File to get the user accounts information
+    $users_db_content = "";
+    open(USERS_DB, "db2txt \"$users_db_file_path\" |");
+    while (<USERS_DB>) {
+    $users_db_content .= $_;
+    }
+    close(USERS_DB);
     
     # Get the user account information from the usersDB database
     my %users_db_data = ();
-
+    
     # a line dividing one user entry from another is made up of 70 hyphens for GS2 (37 hyphens for GS3)
     my $horizontal_divider = q/-{70}/;
@@ -236 +267 @@
     }
     }
-
+    
     # Check username
     my $user_data = $users_db_data{$username};
@@ -273 +304 @@
     }
     }
+    # we have not found any group that allows access to the specified collection
     $gsdl_cgi->generate_error("Authentication failed: user is not in the required group.");
-    }
-    
-    # "GS3\web\WEB-INF\lib\gsdl3.jar;GS3\web\WEB-INF\lib\derby.jar" 
-    # org.greenstone.gsdl3.util.usersDBRealm2txt "GSDL3SRCHOME" username pwd <col> 2>&1
-    elsif($gsdl_cgi->greenstone_version() == 3) {
-        my $gsdl3srchome = $ENV{'GSDL3SRCHOME'};
-
-        my $java = $gsdl_cgi->get_java_path();
-        my $java_gsdl3_classpath = &util::filename_cat($gsdl3srchome, "web", "WEB-INF", "lib", "gsdl3.jar");
-        my $java_derby_classpath = &util::filename_cat($gsdl3srchome, "web", "WEB-INF", "lib", "derby.jar");
-        my $java_gs3util_classpath = &util::filename_cat($gsdl3srchome, "web", "WEB-INF", "lib", "gutil.jar"); # for ProtocolPortProperties used by server side java code
-        my $java_classpath;
-        my $gsdlos = $ENV{'GSDLOS'};
-        if ($gsdlos !~ m/windows/){
-            $java_classpath = $java_gsdl3_classpath . ":" . $java_derby_classpath . ":" . $java_gs3util_classpath;
-        }else{
-            $java_classpath = $java_gsdl3_classpath . ";" . $java_derby_classpath . ";" . $java_gs3util_classpath;
-        }       
-        my $java_args = "\"$gsdl3srchome\" \"$username\" \"$user_password\"";
-        if ($collection ne "") {
-            $java_args += " \"$collection\"";
-        }
-        
-        $gsdl_cgi->checked_chdir($gsdl3srchome);    
-        my $java_command="\"$java\" -classpath \"$java_classpath\" org.greenstone.gsdl3.util.ServletRealmCheck $java_args 2>&1"; # call it ServletRealmCheck
-        my $java_output = `$java_command`;
-        if ($java_output =~ m/^Authentication failed:/) { # $java_output contains the error message
-            $gsdl_cgi->generate_error($java_output); # "\nJAVA_COMMAND: $java_command\n"
-        }
-        else { # success, $java_output is the user_groups list          
-            return $java_output; 
-        }
-    }
-}
+}
+
+
+sub authenticate_user_gs3 {
+
+    my $gsdl_cgi = shift(@_);
+    my $username = shift(@_);
+    my $user_password = shift(@_);
+    my $collection = shift(@_);
+    
+    my $gsdl3home = $ENV{'GSDL3HOME'};
+    my $java = $gsdl_cgi->get_java_path();
+    my $java_gsdl3_classpath = &util::filename_cat($gsdl3home, "WEB-INF", "lib", "gsdl3.jar");
+    my $java_derby_classpath = ""; #&util::filename_cat($gsdl3home, "WEB-INF", "lib", "derby.jar");
+    my $java_gs3util_classpath = &util::filename_cat($gsdl3home,  "WEB-INF", "lib", "gutil.jar"); # for ProtocolPortProperties used by server side java code
+    my $java_classpath;
+    my $gsdlos = $ENV{'GSDLOS'};
+    if ($gsdlos !~ m/windows/){
+    $java_classpath = $java_gsdl3_classpath . ":" . $java_derby_classpath . ":" . $java_gs3util_classpath;
+    }else{
+    $java_classpath = $java_gsdl3_classpath . ";" . $java_derby_classpath . ";" . $java_gs3util_classpath;
+    }       
+    #my $java_args = "\"$gsdl3home\" \"$username\" \"$user_password\" \"$servlet\"";
+    my $java_args = "\"$gsdl3home\" \"$username\" \"$user_password\"";
+    if ($collection ne "") {
+    $java_args .= " \"$collection\"";
+    }
+    
+    $gsdl_cgi->checked_chdir($gsdl3home);   
+    my $java_command="\"$java\" -classpath \"$java_classpath\" org.greenstone.gsdl3.util.ServletRealmCheck $java_args 2>&1"; 
+    my $java_output = `$java_command`;
+    if ($java_output =~ m/^Authentication failed:/) { # $java_output contains the error message
+    $gsdl_cgi->generate_error($java_output); # "\nJAVA_COMMAND: $java_command\n"
+    }
+    # TODO check for errors with running the java command
+    else { # success, $java_output is the user_groups list
+    my @groups = split(/,/, $java_output);
+    my $real_groups = "";
+    # with the addition of using JAVA_TOOL_OPTIONS, we are now getting
+    #Picked up JAVA_TOOL_OPTIONS: -Dfile.encoding=UTF-8 in the output. Lets filter it out by only including valid collection editing groups.
+    foreach my $group (@groups) {
+        if ($group =~ /(all-collections-editor|personal-collections-editor|.*-collection-editor)/) {
+        $real_groups .= $group.",";
+        }
+    }
+    return "$real_groups"; 
+    }
+    # Note we don't need to check like for gs2 if we are in the right group if a collection is specified - if a collection arg is passed to ServletRealmCheck, it will only return groups if the user is in a group that can access the collection
+}
+
+
 
 
@@ -376 +425 @@
      if ($user_err!~ m/ERROR/){
          #$gsdl_cgi->generate_error("Authentication failed: $username is not valid");
-         $gsdl_cgi->generate_ok($user_err);
+         $gsdl_cgi->generate_ok_message($user_err);
          #print $user_err;
      }else{
@@ -420 +469 @@
     $installation_status .= "\n";
     if($gsdl_cgi->greenstone_version() != 2) {
-    $installation_status .= "GSDL3SRCHOME: " . $ENV{'GSDL3SRCHOME'} . "\n";
     $installation_status .= "GSDL3HOME: " . $ENV{'GSDL3HOME'} . "\n";
     }
@@ -915 +963 @@
 {
     my ($gsdl_cgi, $username, $timestamp, $site) = @_;
-    my $sites_directory = &util::filename_cat($ENV{'GSDL3SRCHOME'}, "web", "sites");
+    my $sites_directory = &util::filename_cat($ENV{'GSDL3HOME'}, "sites");
 
     my @sites_dir;