Changeset 27295 for main/trunk/greenstone2/perllib/cgiactions/metadataaction.pm

Timestamp:

2013-05-03T18:25:10+12:00 (11 years ago)

Author:

ak19

Message:

This commit contains bugfixes for authentication within metadata-server.pl and related perl code, and is committed separately before changes in gsajaxapi.js start to make use of it. Another important change is that for adding user comments, a user need not be in the collection's group, so checking the group shouldn't be performed. The bugfixes are to get the authentication to work and are in addition to an earlier commit that corrected the name of the authentication_enable variable in baseaction.pm. The bugfixes are: users.gdb instead of users.db, metadata-server.pl needs to call gsdlCGI's encrypt_password otherwise the password check will fail because it won't match with what's in the db. Also, the calls to authenticate_user had to be through the self variable, since its a method not a function and failed to work correctly otherwise.

File:

• main/trunk/greenstone2/perllib/cgiactions/metadataaction.pm (modified) (17 diffs)

main/trunk/greenstone2/perllib/cgiactions/metadataaction.pm

@@ -250 +250 @@
     # Authenticate user if it is enabled
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -309 +309 @@
     # Authenticate user if it is enabled
     if ($baseaction::authentication_enabled) {
-        # Ensure the user is allowed to edit this collection
-        &authenticate_user($gsdl_cgi, $username, $collect);
+        # Ensure the user is allowed to edit this collection
+        $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -444 +444 @@
     # Authenticate user if it is enabled
     if ($baseaction::authentication_enabled) {
-        # Ensure the user is allowed to edit this collection
-        &authenticate_user($gsdl_cgi, $username, $collect);
+        # Ensure the user is allowed to edit this collection        
+        $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -614 +614 @@
   
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -847 +847 @@
 
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -889 +889 @@
     
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    #&authenticate_user($gsdl_cgi, $username, $collect);
-    $self->authenticate_user($username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
     
@@ -963 +962 @@
     if ($baseaction::authentication_enabled) {
     # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -1079 +1078 @@
 
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -1192 +1191 @@
 
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -1685 +1684 @@
 
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -1782 +1781 @@
     if ($baseaction::authentication_enabled) 
     {
-        # Ensure the user is allowed to edit this collection
-        &authenticate_user($gsdl_cgi, $username, $collect);
+        # Ensure the user is allowed to edit this collection        
+        $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect); 
     }
 
@@ -2220 +2219 @@
     
     if ($baseaction::authentication_enabled) {
-        # Ensure the user is allowed to edit this collection
-        $self->authenticate_user($username, $collect);
+    # Ensure the user is allowed to edit this collection
+    $self->authenticate_user($username, $collect);
     }
 
@@ -2244 +2243 @@
 
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -2527 +2526 @@
     
     if ($baseaction::authentication_enabled) {
-        # Ensure the user is allowed to edit this collection
-        &authenticate_user($gsdl_cgi, $username, $collect);
+        # Ensure the user is allowed to edit this collection        
+        $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -2695 +2694 @@
     
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -2722 +2721 @@
 
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }
 
@@ -2842 +2841 @@
     
     if ($baseaction::authentication_enabled) {
-    # Ensure the user is allowed to edit this collection
-    &authenticate_user($gsdl_cgi, $username, $collect);
+    # Ensure the user is allowed to edit this collection    
+    $self->authenticate_user($username, $collect); #&authenticate_user($gsdl_cgi, $username, $collect);
     }