tazbug: web/bugs.cgi annotate

tazbug annotate web/bugs.cgi @ rev 74

We dont nee to set IDLOCK at page login, just use input hidden

author	Christophe Lincoln <pankso@slitaz.org>
date	Mon Jan 20 00:22:58 2014 +0100 (2014-01-20)
parents	c7cc9e91b4f4
children	7a7e798ecd1c

rev	line source
pankso@9	1 #!/bin/sh
pankso@9	2 #
pankso@9	3 # TazBug Web interface
pankso@9	4 #
pankso@48	5 # Copyright (C) 2012-2014 SliTaz GNU/Linux - BSD License
pankso@9	6 #
pankso@9	7 . /usr/lib/slitaz/httphelper
pankso@52	8
pankso@52	9 # Source config file
pankso@52	10 [ -f "/etc/slitaz/tazbug.conf" ] && . /etc/slitaz/tazbug.conf
pankso@52	11 # Web interface can have different setting than cmdline tools
xfred222@32	12 [ -f "/etc/slitaz/bugs.conf" ] && . /etc/slitaz/bugs.conf
xfred222@32	13
pankso@9	14 # Internal variable
pankso@52	15 bugdir="$PWD/bug"
pankso@29	16 plugins="plugins"
xfred222@34	17 sessions="/tmp/bugs/sessions"
pankso@48	18 script="$SCRIPT_NAME"
xfred222@32	19
pankso@9	20 # Content negotiation for Gettext
pankso@9	21 IFS=","
pankso@9	22 for lang in $HTTP_ACCEPT_LANGUAGE
pankso@9	23 do
pankso@9	24 lang=${lang%;} lang=${lang# } lang=${lang%-}
pankso@9	25 case "$lang" in
pankso@30	26 en) LANG="C" ;;
pankso@30	27 de) LANG="de_DE" ;;
pankso@30	28 es) LANG="es_ES" ;;
pankso@30	29 fr) LANG="fr_FR" ;;
pankso@30	30 it) LANG="it_IT" ;;
pankso@30	31 pt) LANG="pt_BR" ;;
pankso@30	32 ru) LANG="ru_RU" ;;
pankso@30	33 zh) LANG="zh_TW" ;;
pankso@9	34 esac
pankso@30	35 if echo "$po" \| fgrep -q "$lang"; then
pankso@30	36 break
pankso@30	37 fi
pankso@9	38 done
pankso@9	39 unset IFS
pankso@30	40 export LANG LC_ALL=$LANG
pankso@9	41
pankso@9	42 # Internationalization: $(gettext "")
pankso@9	43 . /usr/bin/gettext.sh
pankso@9	44 TEXTDOMAIN='tazbug'
pankso@9	45 export TEXTDOMAIN
pankso@9	46
pankso@9	47 #
pankso@9	48 # Functions
pankso@9	49 #
pankso@9	50
pankso@9	51 # HTML 5 header.
pankso@9	52 html_header() {
pankso@9	53 cat lib/header.html
pankso@9	54 }
pankso@9	55
pankso@9	56 # HTML 5 footer.
pankso@9	57 html_footer() {
pankso@9	58 cat << EOT
pankso@9	59 </div>
pankso@9	60
pankso@9	61 <div id="footer">
pankso@53	62 <a href="$script">SliTaz Bugs</a> -
pankso@53	63 <a href="$script?README">README</a>
pankso@9	64 </div>
pankso@9	65
pankso@9	66 </body>
pankso@9	67 </html>
pankso@9	68 EOT
pankso@9	69 }
pankso@9	70
pankso@52	71 GETfiltered() {
pankso@52	72 GET $1 \| sed -e "s/'/\'/g; s\|\n\|<br/>\|g; s/\t/\ /g;s/\%22/\"/g"
pascal@39	73 }
xfred222@32	74
pankso@52	75 js_redirection_to() {
xfred222@34	76 js_log "Redirecting to $1"
xfred222@34	77 echo "<script type=\"text/javascript\"> document.location = \"$1\"; </script>"
xfred222@34	78 }
xfred222@34	79
pankso@52	80 js_log() {
xfred222@34	81 echo "<script type=\"text/javascript\">console.log('$1')</script>";
xfred222@34	82 }
xfred222@34	83
pankso@52	84 js_set_cookie() {
xfred222@34	85 name=$1
xfred222@34	86 value=$2
xfred222@34	87 js_log 'Setting cookie.'
pankso@73	88 cat << EOT
pankso@73	89 <script type="text/javascript">
pankso@73	90 document.cookie = '$name=$value; expires=0; path=/';
pankso@73	91 </script>
pankso@73	92 EOT
xfred222@34	93 }
xfred222@34	94
pankso@52	95 js_unset_cookie() {
xfred222@34	96 name=$1
xfred222@34	97 js_log 'Unsetting cookie.'
pankso@73	98 cat << EOT
pankso@73	99 <script type="text/javascript">
pankso@73	100 document.cookie = '$1=""; expires=-1; path=/;'
pankso@73	101 </script>
pankso@73	102 EOT
xfred222@34	103 }
xfred222@34	104
pankso@9	105 # Check if user is auth
pankso@9	106 check_auth() {
pankso@9	107 auth="$(COOKIE auth)"
pankso@9	108 user="$(echo $auth \| cut -d ":" -f 1)"
pankso@9	109 md5cookie="$(echo $auth \| cut -d ":" -f 2)"
pankso@9	110 [ -f "$sessions/$user" ] && md5session="$(cat $sessions/$user)"
pankso@9	111 if [ "$md5cookie" == "$md5session" ] && [ "$auth" ]; then
pankso@9	112 return 0
pankso@9	113 else
pankso@9	114 return 1
pankso@9	115 fi
pankso@9	116 }
pankso@9	117
pankso@49	118 # Check if user is admin
pankso@49	119 admin_user() {
pankso@49	120 fgrep -q 'ADMIN_USER="yes"' ${PEOPLE}/${user}/account.conf
pankso@49	121 }
xfred222@34	122
pankso@9	123 # Authentified or not
pankso@9	124 user_box() {
pankso@49	125
pankso@49	126 IDLOC=""
pankso@49	127 if [[ "$(GET id)" ]] ;then
pankso@49	128 IDLOC="&id=$(GET id)"
pankso@49	129 fi
xfred222@33	130
pankso@9	131 if check_auth; then
pankso@26	132 . $PEOPLE/$user/account.conf
pankso@9	133 cat << EOT
pankso@9	134 <div id="user">
pankso@24	135 <a href="?user=$user">$(get_gravatar $MAIL 20)</a>
pankso@48	136 <a href="?logout">$(gettext 'Logout')</a>
pankso@9	137 </div>
pankso@9	138 EOT
pankso@9	139 else
pankso@9	140 cat << EOT
xfred222@33	141 <div id="user">
xfred222@33	142 <a href="?login$IDLOC"><img src="images/avatar.png" alt="[ User ]" /></a>
pankso@69	143 <a href="?login$IDLOC">$(gettext 'Login')</a>
xfred222@33	144 </div>
pankso@9	145 EOT
pankso@9	146 fi
pankso@9	147 cat << EOT
pankso@9	148
pankso@24	149 <div id="search">
pankso@53	150 <form method="get" action="$script">
al@31	151 <input type="text" name="search" placeholder="$(gettext 'Search')" />
al@31	152 <!-- <input type="submit" value="$(gettext 'Search')" /> -->
pankso@24	153 </form>
pankso@24	154 </div>
pankso@24	155
pankso@9	156 <!-- Content -->
pankso@9	157 <div id="content">
pankso@9	158
pankso@9	159 EOT
pankso@9	160 }
pankso@9	161
pankso@48	162 # Signup page
pankso@48	163 signup_page() {
pankso@48	164 cat << EOT
pankso@48	165
pankso@48	166 <div id="signup">
pankso@48	167 <form method="post" name="signup" action="$SCRIPT_NAME" onsubmit="return checkSignup();">
pankso@48	168 <input type="hidden" name="signup" value="new" />
pankso@48	169 <input type="text" name="name" placeholder="$(gettext "Real name")" />
pankso@48	170 <input type="text" name="user" placeholder="$(gettext "User name")" />
pankso@48	171 <input type="text" name="mail" placeholder="$(gettext "Email")" />
pankso@48	172 <input type="password" name="pass" placeholder="$(gettext "Password")" />
pankso@48	173 <div>
pankso@48	174 <input type="submit" value="$(gettext "Create new account")" />
pankso@48	175 </div>
pankso@48	176 </form>
pankso@48	177 </div>
pankso@48	178
pankso@48	179 EOT
pankso@48	180 }
pankso@48	181
pankso@48	182 # Link for online signup if enabled.
pankso@48	183 online_signup() {
pankso@48	184 if [ "$ONLINE_SIGNUP" == "yes" ]; then
pankso@48	185 echo -n "<p>" && gettext "Or:"; echo -n " "
pankso@48	186 echo -n "<a href='$script?signup&online'>"
pankso@48	187 gettext "Sign Up Online"
pankso@48	188 echo '</a></p>'
pankso@48	189 fi
pankso@48	190 }
xfred222@34	191
pankso@9	192 # Login page
pankso@9	193 login_page() {
pankso@9	194 cat << EOT
al@31	195 <h2>$(gettext 'Login')</h2>
pankso@9	196
pankso@9	197 <div id="account-info">
pankso@48	198 <p>$(gettext "No account yet? You can signup using the SliTaz Bugs reporter \
al@31	199 on your SliTaz system.")</p>
pankso@48	200 $(online_signup)
al@31	201 <p>$(gettext "Tip: to attach big files or images, you can use SliTaz Paste \
al@31	202 services:") <a href="http://paste.slitaz.org/">paste.slitaz.org</a></p>
pankso@9	203 </div>
pankso@9	204
pankso@9	205 <div id="login">
pankso@49	206 <form method="post" action="$script">
al@31	207 <input type="text" name="auth" placeholder="$(gettext 'User name')" />
al@31	208 <input type="password" name="pass" placeholder="$(gettext 'Password')" />
pankso@21	209 <div>
pankso@73	210 <input type="hidden" name="id" value="$(GET id)" />
al@31	211 <input type="submit" value="$(gettext 'Log in')" />
pankso@21	212 $error
pankso@21	213 </div>
pankso@9	214 </form>
pankso@9	215 </div>
pankso@9	216
pankso@9	217 <div style="clear: both;"></div>
pankso@9	218 EOT
pankso@9	219 }
pankso@9	220
pankso@9	221 # Display user public profile.
pankso@9	222 public_people() {
pankso@9	223 cat << EOT
pankso@9	224 </pre>
pankso@9	225 EOT
pankso@9	226 }
pankso@9	227
pankso@9	228 # Display authentified user profile. TODO: change password
pankso@9	229 auth_people() {
pankso@9	230 cat << EOT
pankso@63	231 Email : $MAIL
pankso@63	232 Secure key : $KEY
pankso@9	233 </pre>
pankso@9	234 EOT
pankso@9	235 }
pankso@9	236
pankso@55	237 # Usage: list_bug ID
pankso@55	238 list_bug() {
pankso@55	239 id="$1"
pankso@55	240 . ${bugdir}/${id}/bug.conf
pankso@55	241 [ -f "${PEOPLE}/${CREATOR}/account.conf" ] && \
pankso@55	242 . ${PEOPLE}/${CREATOR}/account.conf
pankso@55	243 cat << EOT
pankso@55	244 <a href="?user=$USER">$(get_gravatar "$MAIL" 24)</a> \
pankso@68	245 ID: $id <a href="?id=$id">$BUG</a> <span class="date">$DATE</span>
pankso@55	246 EOT
pankso@55	247 unset CREATOR USER MAIL
pankso@55	248
pankso@55	249 }
pankso@55	250
pankso@9	251 # Usage: list_bugs STATUS
pankso@9	252 list_bugs() {
pankso@55	253 status="$1"
pankso@55	254 echo "<h3>$(eval_gettext '$status Bugs')</h3>"
pankso@51	255 echo "<pre>"
pankso@9	256 for pr in critical standard
pankso@9	257 do
pankso@9	258 for bug in $(fgrep -H "$1" $bugdir/*/bug.conf \| cut -d ":" -f 1)
pankso@9	259 do
pankso@9	260 . $bug
xfred222@34	261 id=$(basename $(dirname $bug))
pankso@9	262 if [ "$PRIORITY" == "$pr" ]; then
pankso@51	263 [ -f "${PEOPLE}/${CREATOR}/account.conf" ] && \
pankso@51	264 . ${PEOPLE}/${CREATOR}/account.conf
pankso@9	265 cat << EOT
pankso@51	266 <a href="?user=$USER">$(get_gravatar "$MAIL" 24)</a> \
pankso@68	267 ID: $id <a href="?id=$id">$BUG</a> <span class="date">$DATE</span>
pankso@9	268 EOT
pankso@9	269 fi
pankso@51	270 unset CREATOR USER MAIL
pankso@9	271 done
pankso@9	272 done
pankso@9	273 }
pankso@9	274
paul@17	275 # Stripped down Wiki parser for bug desc and messages which are simply
paul@17	276 # displayed in <pre>
pankso@9	277 wiki_parser() {
pankso@9	278 sed \
pankso@9	279 -e s"#http://$[^']*$.png#<img src='\0' alt='[ Image ]' />#"g \
pascal@44	280 -e s"#http://$[^']$.# <a href='\0'>\1</a>#"g \
pascal@45	281 -e 's#\\\\n#\n#g;s#%22#"#g;s#%21#!#g'
pankso@9	282 }
pankso@9	283
pankso@9	284 # Bug page
pankso@9	285 bug_page() {
pankso@26	286 if [ -f "$PEOPLE/$CREATOR/account.conf" ]; then
pankso@26	287 . $PEOPLE/$CREATOR/account.conf
pankso@9	288 else
pankso@15	289 MAIL="default"
pankso@9	290 fi
pankso@9	291 cat << EOT
pankso@51	292 <h2>$(eval_gettext 'Bug $id: $STATUS')</h2>
pankso@53	293 <form method="get" action="$script">
pankso@9	294
pankso@9	295 <p>
pankso@51	296 $(get_gravatar $MAIL 32) <strong>$BUG</strong>
pankso@51	297 </p>
pankso@51	298 <p>
pankso@51	299 $(gettext "Date:") $DATE -
al@31	300 $(eval_gettext 'Priority $PRIORITY') -
al@31	301 $(eval_ngettext '$msgs message' '$msgs messages' $msgs)
pankso@9	302 </p>
pankso@9	303
pankso@9	304 <pre>
pankso@9	305 $(echo "$DESC" \| wiki_parser)
pankso@9	306 </pre>
pankso@9	307
pankso@9	308 <div id="tools">
pankso@9	309 EOT
pankso@9	310 if check_auth; then
pankso@9	311 if [ "$STATUS" == "OPEN" ]; then
pankso@30	312 cat << EOT
pankso@9	313 <a href="?id=$id&close">$(gettext "Close bug")</a>
pankso@9	314 <a href="?edit=$id">$(gettext "Edit bug")</a>
pankso@9	315 EOT
pankso@9	316 else
pankso@9	317 cat << EOT
pankso@9	318 <a href="?id=$id&open">$(gettext "Re open bug")</a>
pankso@9	319 EOT
pankso@9	320 fi
pankso@9	321 fi
pankso@9	322 cat << EOT
pankso@9	323 </div>
pankso@9	324
pankso@9	325 <h3>$(gettext "Messages")</h3>
pankso@9	326 EOT
pankso@9	327 [ "$msgs" == "0" ] && gettext "No messages"
pankso@9	328 for msg in $(ls -1tr $bugdir/$id/msg.*)
pankso@9	329 do
pankso@9	330 . $msg
pankso@9	331 if [ "$MSG" ]; then
pankso@9	332 msgid=$(echo $msg \| cut -d "." -f 2)
pankso@9	333 del=""
pankso@9	334 # User can delete his post.
pankso@9	335 [ "$user" == "$USER" ] && \
pankso@9	336 del="<a href=\"?id=$id&delmsg=$msgid\">delete</a>"
pankso@9	337 cat << EOT
pankso@9	338 <p><strong>$USER</strong> $DATE $del</p>
pankso@9	339 <pre>
pankso@9	340 $(echo "$MSG" \| wiki_parser)
pankso@9	341 </pre>
pankso@9	342 EOT
pankso@9	343 fi
pankso@9	344 unset NAME DATE MSG
pankso@9	345 done
pankso@9	346 if check_auth; then
pankso@9	347 cat << EOT
pankso@9	348 <div>
pankso@9	349 <h3>$(gettext "New message")</h3>
pankso@30	350
pankso@9	351 <input type="hidden" name="id" value="$id" />
pankso@9	352 <textarea name="msg" rows="8"></textarea>
al@31	353 <p><input type="submit" value="$(gettext 'Send message')" /></p>
pankso@9	354 </form>
pankso@9	355 </div>
pankso@9	356 EOT
pankso@9	357 fi
pankso@9	358 }
pankso@9	359
pankso@9	360 # Write a new message
pankso@9	361 new_msg() {
pankso@9	362 date=$(date "+%Y-%m-%d %H:%M")
pankso@9	363 msgs=$(ls -1 $bugdir/$id/msg.* \| wc -l)
pankso@9	364 count=$(($msgs + 1))
pankso@9	365 if check_auth; then
pankso@9	366 USER="$user"
pankso@9	367 fi
xfred222@34	368 js_log "Will write message in $bugdir/$id/msg.$count "
pankso@9	369 sed "s/$(echo -en '\r') /\n/g" > $bugdir/$id/msg.$count << EOT
pascal@39	370 USER="$USER"
pankso@9	371 DATE="$date"
pascal@39	372 MSG="$(GETfiltered msg)"
pankso@9	373 EOT
pankso@9	374 }
pankso@9	375
pankso@9	376 # Create a new Bug
pankso@9	377 new_bug() {
pankso@9	378 count=$(ls -1 $bugdir \| wc -l)
pankso@9	379 date=$(date "+%Y-%m-%d %H:%M")
pankso@9	380 # Sanity check, JS may be disabled.
pankso@9	381 [ ! "$(GET bug)" ] && echo "Missing bug title" && exit 1
pankso@9	382 [ ! "$(GET desc)" ] && echo "Missing bug description" && exit 1
pankso@9	383 if check_auth; then
pankso@9	384 USER="$user"
pankso@9	385 fi
pankso@9	386 mkdir -p $bugdir/$count
pankso@9	387 sed "s/$(echo -en '\r') /\n/g" > $bugdir/$count/bug.conf << EOT
pankso@9	388 # SliTaz Bug configuration
pankso@9	389
pascal@39	390 BUG="$(GETfiltered bug)"
pankso@9	391 STATUS="OPEN"
pankso@9	392 PRIORITY="$(GET priority)"
pankso@9	393 CREATOR="$USER"
pankso@9	394 DATE="$date"
pascal@39	395 PKGS="$(GETfiltered pkgs)"
pankso@9	396
pascal@39	397 DESC="$(GETfiltered desc)"
pankso@9	398 EOT
pankso@9	399 }
pankso@9	400
pankso@9	401 # New bug page for the web interface
pankso@9	402 new_bug_page() {
pankso@9	403 cat << EOT
pankso@9	404 <h2>$(gettext "New Bug")</h2>
pankso@9	405 <div id="newbug">
pankso@9	406
pankso@53	407 <form method="get" action="$script" onsubmit="return checkNewBug();">
pankso@9	408 <input type="hidden" name="addbug" />
pankso@9	409 <table>
pankso@9	410 <tbody>
pankso@9	411 <tr>
pankso@9	412 <td>$(gettext "Bug title")*</td>
pankso@9	413 <td><input type="text" name="bug" /></td>
pankso@9	414 </tr>
pankso@9	415 <tr>
pankso@9	416 <td>$(gettext "Description")*</td>
pankso@9	417 <td><textarea name="desc"></textarea></td>
pankso@9	418 </tr>
pankso@9	419 <tr>
pankso@9	420 <td>$(gettext "Packages")</td>
pankso@9	421 <td><input type="text" name="pkgs" /></td>
pankso@9	422 </tr>
pankso@9	423 <tr>
pankso@9	424 <td>$(gettext "Priority")</td>
pankso@9	425 <td>
pankso@9	426 <select name="priority">
pankso@9	427 <option value="standard">$(gettext "Standard")</option>
pankso@9	428 <option value="critical">$(gettext "Critical")</option>
pankso@9	429 </select>
pankso@9	430 <input type="submit" value="$(gettext "Create Bug")" />
pankso@9	431 </td>
pankso@9	432 </tr>
pankso@9	433 </tbody>
pankso@9	434 </table>
pankso@9	435 </form>
pankso@9	436
pankso@9	437 <p>
al@19	438 $(gettext "* field is obligatory. You can also specify affected packages.")
pankso@9	439 </p>
pankso@9	440
pankso@9	441 </div>
pankso@9	442 EOT
pankso@9	443 }
pankso@9	444
xfred222@34	445
pankso@9	446 # Edit/Save a bug configuration file
pankso@9	447 edit_bug() {
pankso@9	448 cat << EOT
al@31	449 <h2>$(eval_gettext 'Edit Bug $bug')</h2>
pankso@9	450 <div id="edit">
pankso@9	451
pankso@53	452 <form method="get" action="$script">
pankso@9	453 <textarea name="bugconf">$(cat $bugdir/$bug/bug.conf)</textarea>
pankso@9	454 <input type="hidden" name="bug" value="$bug" />
al@31	455 <input type="submit" value="$(gettext 'Save configuration')" />
pankso@9	456 </form>
pankso@9	457
pankso@9	458 </div>
pankso@9	459 EOT
pankso@9	460 }
pankso@9	461
pankso@9	462 save_bug() {
pankso@9	463 bug="$(GET bug)"
pankso@9	464 content="$(GET bugconf)"
al@31	465 sed "s\|\"\|'\|" \| sed "s/$(echo -en '\r') /\n/g" > $bugdir/$bug/bug.conf << EOT
pankso@9	466 $content
pankso@9	467 EOT
pankso@9	468 }
pankso@9	469
pankso@9	470 # Close a fixed bug
pankso@9	471 close_bug() {
pankso@9	472 sed -i s'/OPEN/CLOSED/' $bugdir/$id/bug.conf
pankso@9	473 }
pankso@9	474
pankso@9	475 # Re open an old bug
pankso@9	476 open_bug() {
pankso@9	477 sed -i s'/CLOSED/OPEN/' $bugdir/$id/bug.conf
pankso@9	478 }
pankso@9	479
pankso@9	480 # Get and display Gravatar image: get_gravatar email size
pankso@9	481 # Link to profile: <a href="http://www.gravatar.com/$md5">...</a>
pankso@9	482 get_gravatar() {
pankso@9	483 email=$1
pankso@9	484 size=$2
pankso@9	485 [ "$size" ] \|\| size=48
pankso@9	486 url="http://www.gravatar.com/avatar"
pankso@29	487 md5=$(md5crypt $email)
al@31	488 echo "<img src=\"$url/$md5?d=identicon&s=$size\" alt=\"\" />"
pankso@9	489 }
pankso@9	490
pankso@21	491 # Create a new user in AUTH_FILE and PEOPLE
pankso@9	492 new_user_config() {
pankso@48	493 if [ ! "$online" ]; then
pankso@48	494 name="$(GET name)"
pankso@48	495 mail="$(GET mail)"
pankso@48	496 pass="$(GET pass)"
pankso@48	497 echo "Creating Server Key..."
pankso@48	498 fi
pankso@9	499 key=$(echo -n "$user:$mail:$pass" \| md5sum \| awk '{print $1}')
pankso@9	500 echo "$user:$pass" >> $AUTH_FILE
xfred222@34	501 mkdir -pm0700 $PEOPLE/$user/
pankso@26	502 cat > $PEOPLE/$user/account.conf << EOT
pankso@9	503 # SliTaz user configuration
pankso@9	504 #
pankso@9	505
pankso@48	506 NAME="$name"
pankso@9	507 USER="$user"
pankso@9	508 MAIL="$mail"
pankso@9	509 KEY="$key"
pankso@9	510
pankso@9	511 LOCATION="$(GET location)"
pankso@9	512 RELEASES="$(GET releases)"
pankso@9	513 PACKAGES="$(GET packages)"
pankso@9	514 EOT
pankso@26	515 chmod 0600 $PEOPLE/$user/account.conf
xfred222@34	516 if [ ! -f $PEOPLE/$user/account.conf ]; then
xfred222@34	517 echo "ERROR: User creation failed!"
pankso@48	518 fi
pankso@48	519 }
pankso@9	520
pankso@48	521 ########################################################################
pankso@48	522 # POST actions #
pankso@48	523 ########################################################################
pankso@9	524
pankso@9	525 case " $(POST) " in
pankso@9	526 \ auth\ )
xfred222@34	527 header
xfred222@34	528 html_header
pankso@9	529 # Authenticate user. Create a session file in $sessions to be used
pankso@9	530 # by check_auth. We have the user login name and a peer session
pankso@9	531 # md5 string in the COOKIE.
pankso@9	532 user="$(POST auth)"
xfred222@34	533 pass="$(echo -n "$(POST pass)" \| md5sum \| awk '{print $1}')"
xfred222@34	534
xfred222@34	535 IDLOC=""
pankso@73	536 if [[ "$(POST id)" ]] ;then
pankso@73	537 IDLOC="&id=$(POST id)"
pankso@48	538 fi
xfred222@34	539
xfred222@34	540 if [ ! -f $AUTH_FILE ] ; then
paul@50	541 js_log "$AUTH_FILE (defined in \$AUTH_FILE) has not been found."
pankso@53	542 js_redirection_to "$script?login$IDLOC"
xfred222@34	543 fi;
xfred222@34	544
pankso@9	545 valid=$(fgrep "${user}:" $AUTH_FILE \| cut -d ":" -f 2)
pankso@9	546 if [ "$pass" == "$valid" ] && [ "$pass" != "" ]; then
pankso@73	547 if [[ "$(POST id)" ]] ;then
pankso@73	548 IDLOC="?id=$(POST id)"
xfred222@34	549 fi
pankso@9	550 md5session=$(echo -n "$$:$user:$pass:$$" \| md5sum \| awk '{print $1}')
pankso@9	551 mkdir -p $sessions
pankso@63	552 # Log last login
pankso@63	553 date '+%Y-%m-%d' > ${PEOPLE}/${user}/last
pankso@9	554 echo "$md5session" > $sessions/$user
xfred222@34	555 js_set_cookie 'auth' "$user:$md5session"
paul@70	556 js_log "Login authentication has been executed & accepted :)"
pankso@53	557 js_redirection_to "$script$IDLOC"
pankso@9	558 else
paul@70	559 js_log "Login authentication has been executed & refused"
pankso@53	560 js_redirection_to "$script?login&error$IDLOC"
xfred222@34	561 fi
pankso@48	562 html_footer ;;
pankso@48	563 \ signup\ )
pankso@48	564 # POST action for online signup
pankso@48	565 name="$(POST name)"
pankso@48	566 user="$(POST user)"
pankso@48	567 mail="$(POST mail)"
pankso@48	568 pass="$(md5crypt "$(POST pass)")"
pankso@48	569 if ! grep "^${user}:" $AUTH_FILE; then
pankso@48	570 online="yes"
pankso@48	571 new_user_config
pankso@48	572 header "Location: $SCRIPT_NAME?login"
pankso@48	573 else
pankso@48	574 header
pankso@48	575 html_header
pankso@48	576 user_box
pankso@49	577 echo "<h2>$(gettext "User already exists:") $user</h2>"
pankso@48	578 html_footer && exit 0
pankso@48	579 fi ;;
pankso@9	580 esac
pankso@9	581
pankso@49	582 #
pankso@49	583 # Plugins Now!
pankso@49	584 #
pankso@73	585
pankso@49	586 for p in $(ls -1 $plugins)
pankso@49	587 do
pankso@49	588 [ -f "$plugins/$p/$p.conf" ] && . $plugins/$p/$p.conf
pankso@49	589 [ -x "$plugins/$p/$p.cgi" ] && . $plugins/$p/$p.cgi
pankso@49	590 done
xfred222@34	591
pankso@48	592 ########################################################################
pankso@48	593 # GET actions #
pankso@48	594 ########################################################################
pankso@9	595
pankso@9	596 case " $(GET) " in
pankso@9	597 \ README\ )
pankso@9	598 header
pankso@9	599 html_header
pankso@9	600 user_box
pankso@9	601 echo '<h2>README</h2>'
pankso@9	602 echo '<pre>'
pankso@55	603 if [ -f "README" ]; then
pankso@55	604 cat README
pankso@55	605 else
pankso@55	606 cat /usr/share/doc/tazbug/README
pankso@55	607 fi
pankso@30	608 echo '</pre>'
pankso@9	609 html_footer ;;
pankso@9	610 \ closed\ )
pankso@9	611 # Show all closed bugs.
pankso@9	612 header
pankso@9	613 html_header
pankso@9	614 user_box
pankso@9	615 list_bugs CLOSED
pankso@51	616 echo "</pre>"
pankso@9	617 html_footer ;;
pankso@9	618 \ login\ )
pankso@9	619 # The login page
pankso@9	620 [ "$(GET error)" ] && \
al@31	621 error="<span class='error'>$(gettext 'Bad login or pass')</span>"
pankso@30	622 header
pankso@9	623 html_header
pankso@21	624 user_box
xfred222@33	625 login_page
pankso@9	626 html_footer ;;
pankso@9	627 \ logout\ )
xfred222@34	628 header
xfred222@34	629 html_header
pankso@9	630 if check_auth; then
pankso@9	631 rm -f "$sessions/$user"
xfred222@34	632 js_unset_cookie 'auth'
pankso@53	633 js_redirection_to "$script"
pankso@9	634 fi ;;
pankso@9	635 \ user\ )
pankso@9	636 # User profile
pankso@63	637 last="$(cat $PEOPLE/"$(GET user)"/last)"
pankso@9	638 header
pankso@9	639 html_header
pankso@9	640 user_box
pankso@26	641 . $PEOPLE/"$(GET user)"/account.conf
pankso@63	642 cat << EOT
pankso@63	643 <h2>$(get_gravatar $MAIL) $NAME</h2>
pankso@63	644
pankso@63	645 <pre>
pankso@63	646 $(gettext "User name :") $USER
pankso@63	647 $(gettext "Last login :") $last
pankso@63	648 EOT
pankso@9	649 if check_auth && [ "$(GET user)" == "$user" ]; then
pankso@9	650 auth_people
pankso@9	651 else
pankso@63	652 # check_auth will set VARS to current logged user: re-source
pankso@63	653 . $PEOPLE/"$(GET user)"/account.conf
pankso@9	654 public_people
pankso@9	655 fi
pankso@9	656 html_footer ;;
pankso@9	657 \ newbug\ )
pankso@9	658 # Add a bug from web interface.
pankso@9	659 header
pankso@9	660 html_header
pankso@9	661 user_box
pankso@9	662 if check_auth; then
pankso@9	663 new_bug_page
pankso@9	664 else
al@31	665 echo "<p>$(gettext 'You must be logged in to post a new bug')</p>"
pankso@9	666 fi
pankso@9	667 html_footer ;;
pankso@9	668 \ addbug\ )
pankso@9	669 # Add a bug from web interface.
xfred222@34	670 header
xfred222@34	671 html_header
pankso@9	672 if check_auth; then
pankso@9	673 new_bug
pankso@53	674 js_redirection_to "$script?id=$count"
pankso@9	675 fi ;;
pankso@9	676 \ edit\ )
pankso@9	677 bug="$(GET edit)"
pankso@9	678 header
pankso@9	679 html_header
pankso@9	680 user_box
pankso@9	681 edit_bug
pankso@9	682 html_footer ;;
pankso@9	683 \ bugconf\ )
xfred222@34	684 header
xfred222@34	685 html_header
pankso@9	686 if check_auth; then
pankso@9	687 save_bug
pankso@53	688 js_redirection_to "$script?id=$bug"
pankso@9	689 fi ;;
pankso@9	690 \ id\ )
pankso@9	691 # Empty deleted messages to keep msg count working.
xfred222@34	692 header
xfred222@34	693 html_header
pankso@9	694 id="$(GET id)"
pankso@9	695 [ "$(GET close)" ] && close_bug
pankso@9	696 [ "$(GET open)" ] && open_bug
pankso@9	697 [ "$(GET msg)" ] && new_msg
pankso@9	698 [ "$(GET delmsg)" ] && rm -f $bugdir/$id/msg.$(GET delmsg) && \
pankso@9	699 touch $bugdir/$id/msg.$(GET delmsg)
pankso@9	700 msgs=$(fgrep MSG= $bugdir/$id/msg.* \| wc -l)
pankso@30	701 user_box
pankso@9	702 . $bugdir/$id/bug.conf
pankso@9	703 bug_page
pankso@9	704 html_footer ;;
pankso@9	705 \ signup\ )
pankso@9	706 # Signup
pankso@48	707 if [ "$(GET online)" ];then
pankso@48	708 header
pankso@48	709 html_header
pankso@48	710 user_box
pankso@48	711 echo "<h2>$(gettext "Sign Up")</h2>"
pankso@48	712 if [ "$ONLINE_SIGNUP" == "yes" ]; then
pankso@48	713 signup_page
pankso@48	714 else
pankso@48	715 gettext "Online registration is disabled"
pankso@48	716 fi
pankso@48	717 html_footer && exit 0
pankso@9	718 else
pankso@48	719 header "Content-type: text/plain;"
pankso@48	720 user="$(GET signup)"
pankso@48	721 echo "Requested user login : $user"
pankso@48	722 if fgrep -q "$user:" $AUTH_FILE; then
pankso@48	723 echo "ERROR: User already exists" && exit 1
pankso@48	724 else
pankso@48	725 echo "Creating account for : $(GET name)"
pankso@48	726 new_user_config
pankso@48	727 fi
pankso@9	728 fi ;;
pankso@9	729 \ key\ )
pankso@9	730 # Let user post new bug or message with crypted key (no gettext)
pankso@9	731 #
pankso@9	732 # Testing only and is security acceptable ?
pankso@9	733 #
pankso@9	734 key="$(GET key)"
pankso@9	735 id="$(GET bug)"
pankso@9	736 header "Content-type: text/plain;"
pankso@30	737 echo "Checking secure key..."
pankso@26	738 if fgrep -qH $key $PEOPLE/*/account.conf; then
pankso@26	739 conf=$(fgrep -H $key $PEOPLE/*/account.conf \| cut -d ":" -f 1)
pankso@9	740 . $conf
pankso@9	741 echo "Authentified: $NAME ($USER)"
pankso@9	742 case " $(GET) " in
pankso@9	743 \ msg\ )
pankso@9	744 [ ! "$id" ] && echo "Missing bug ID" && exit 0
pankso@9	745 echo "Posting new message to bug: $id"
pankso@9	746 echo "Message: $(GET msg)"
pankso@9	747 new_msg ;;
pankso@9	748 \ bug\ )
pankso@30	749 echo "Adding new bug: $(GET bug)"
pankso@30	750 echo "Description: $(GET desc)"
pankso@9	751 new_bug ;;
pankso@30	752 esac
pankso@9	753 else
pankso@9	754 echo "Not a valid SliTaz user key"
pankso@9	755 exit 0
pankso@9	756 fi ;;
pankso@9	757 \ search\ )
pankso@59	758 found=0
pankso@9	759 header
pankso@9	760 html_header
pankso@9	761 user_box
pankso@9	762 cat << EOT
pankso@9	763 <h2>$(gettext "Search")</h2>
pankso@53	764 <form method="get" action="$script">
pankso@9	765 <input type="text" name="search" />
al@31	766 <input type="submit" value="$(gettext 'Search')" />
pankso@9	767 </form>
pankso@21	768 <div>
pankso@9	769 EOT
pankso@59	770 cd $bugdir
pankso@59	771 for bug in *
pankso@9	772 do
pankso@61	773 result=$(fgrep -i -h "$(GET search)" $bug/*)
pankso@21	774 if [ "$result" ]; then
pankso@59	775 found=$(($found + 1))
pankso@59	776 id=${bug}
al@31	777 echo "<p><strong>Bug $id</strong> <a href=\"?id=$id\">"$(gettext 'Show')"</a></p>"
pankso@21	778 echo '<pre>'
pankso@62	779 fgrep -i -h "$(GET search)" $bugdir/$id/* \| \
pankso@21	780 sed s"/$(GET search)/<span class='ok'>$(GET search)<\/span>/"g
pankso@21	781 echo '</pre>'
pankso@21	782 fi
pankso@9	783 done
pankso@59	784 if [ "$found" == "0" ]; then
pankso@59	785 echo "<p>$(gettext 'No result found for') : $(GET search)</p>"
pankso@59	786 else
pankso@59	787 echo "<p> $found $(gettext 'results found')</p>"
pankso@59	788 fi
pankso@21	789 echo '</div>'
pankso@9	790 html_footer ;;
pankso@9	791 *)
pankso@9	792 # Default page.
pankso@9	793 bugs=$(ls -1 $bugdir \| wc -l)
pankso@9	794 close=$(fgrep "CLOSED" $bugdir/*/bug.conf \| wc -l)
pankso@9	795 fixme=$(fgrep "OPEN" $bugdir/*/bug.conf \| wc -l)
pankso@9	796 msgs=$(find $bugdir -name msg.* ! -size 0 \| wc -l)
pankso@9	797 pct=0
pankso@9	798 [ $bugs -gt 0 ] && pct=$(( ($close * 100) / $bugs ))
pankso@9	799 header
pankso@9	800 html_header
pankso@9	801 user_box
pankso@73	802
pankso@9	803 cat << EOT
pankso@9	804
pankso@9	805 <h2>$(gettext "Summary")</h2>
pankso@9	806
pankso@9	807 <p>
al@31	808 $(eval_ngettext 'Bug: $bugs in total -' 'Bugs: $bugs in total -' $bugs)
al@31	809 $(eval_ngettext '$close fixed -' '$close fixed -' $close)
al@31	810 $(eval_ngettext '$fixme to fix -' '$fixme to fix -' $fixme)
al@31	811 $(eval_ngettext '$msgs message' '$msgs messages' $msgs)
pankso@9	812 </p>
pankso@9	813
pankso@9	814 <div class="pctbar">
pankso@9	815 <div class="pct" style="width: ${pct}%;">${pct}%</div>
pankso@9	816 </div>
pankso@9	817
pankso@49	818 <p>$(gettext "Please read the <a href=\"?README\">README</a> for help and \
pankso@49	819 more information. You may also be interested by the SliTaz \
al@31	820 <a href=\"http://roadmap.slitaz.org/\">Roadmap</a> and the packages \
al@31	821 <a href=\"http://cook.slitaz.org/\">Cooker</a>. To perform a search \
al@31	822 enter your term and press ENTER.")
pankso@9	823 </p>
pankso@9	824
pankso@9	825 <div id="tools">
al@31	826 <a href="?closed">$(gettext 'View closed bugs')</a>
pankso@9	827 EOT
pankso@9	828 if check_auth; then
al@31	829 echo "<a href='?newbug'>$(gettext 'Create a new bug')</a>"
pankso@49	830 echo "$PLUGINS_TOOLS"
pankso@9	831 fi
pankso@9	832 cat << EOT
pankso@9	833 </div>
pankso@55	834
pankso@55	835 <h3>$(gettext "Latest Bugs")</h3>
pankso@9	836 EOT
pankso@55	837 # List last 3 bugs
pankso@55	838 echo "<pre>"
pankso@57	839 for lb in $(ls ${bugdir} \| sort -r -n \| head -n 3)
pankso@55	840 do
pankso@55	841 list_bug ${lb}
pankso@55	842 done
pankso@55	843 echo "</pre>"
pankso@9	844 list_bugs OPEN
pankso@51	845 echo "</pre>"
pankso@9	846 html_footer ;;
pankso@9	847 esac
pankso@9	848
pankso@9	849 exit 0

SliTaz Repositories

tazbug annotate web/bugs.cgi @ rev 74