tinycm: index.cgi annotate

tinycm annotate index.cgi @ rev 31

Small fixes to activity and security

author	Christophe Lincoln <pankso@slitaz.org>
date	Mon Jan 06 18:47:03 2014 +0000 (2014-01-06)
parents	09f5185ff6e0
children	c4b94b7a7dd6

rev	line source
pankso@5	1 #!/bin/sh
pankso@5	2 #
pankso@5	3 # TinyCM - Small, fast and elegent CGI/SHell Content Manager
pankso@5	4 #
pankso@15	5 # Copyright (C) 2012-2014 SliTaz GNU/Linux - BSD License
pankso@5	6 #
pankso@5	7 . /usr/lib/slitaz/httphelper
pankso@5	8
paul@8	9 # Let's have a peer site config file with a .cgi extension so content
pankso@5	10 # is secure even if left in a web server directory.
pankso@5	11 . config.cgi
pankso@5	12
pankso@5	13 tiny="$PWD"
pankso@5	14 po="en fr"
pankso@5	15 content="content"
pankso@5	16 wiki="$content/wiki"
pankso@5	17 index="index"
pankso@5	18 cache="cache"
pankso@5	19 plugins="plugins"
pankso@5	20 tmp="/tmp/tinycm"
pankso@5	21 sessions="$tmp/sessions"
pankso@15	22 script="$SCRIPT_NAME"
pankso@28	23 activity="$cache/log/activity.log"
pankso@5	24
pankso@5	25 # Content negotiation for Gettext
pankso@5	26 IFS=","
pankso@5	27 for lang in $HTTP_ACCEPT_LANGUAGE
pankso@5	28 do
pankso@5	29 lang=${lang%;} lang=${lang# } lang=${lang%-}
pankso@5	30 if echo "$po" \| fgrep -q "$lang"; then
pankso@5	31 break
pankso@5	32 fi
pankso@5	33 case "$lang" in
pankso@5	34 en) lang="C" ;;
pankso@5	35 fr) lang="fr_FR" ;;
pankso@5	36 pt) lang="pt_BR" ;;
pankso@5	37 ru) lang="ru_RU" ;;
pankso@5	38 esac
pankso@5	39 done
pankso@5	40 unset IFS
pankso@5	41 export LANG=$lang LC_ALL=$lang
pankso@5	42
pankso@5	43 #
pankso@5	44 # Functions
pankso@5	45 #
pankso@5	46
paul@8	47 # Used by edit to display language name and the language box. This is
pankso@5	48 # for CM content not gettext support.
pankso@5	49 get_lang() {
pankso@5	50 lang=$(echo $d \| cut -d "/" -f 1)
pankso@5	51 doc=${d#$lang/}
pankso@5	52 echo '<div id="lang">'
pankso@5	53 for l in $LANGUAGES
pankso@5	54 do
pankso@5	55 case $lang in
pankso@5	56 en) i18n="English" ;;
pankso@5	57 fr) i18n="Français" ;;
pankso@5	58 pt) i18n="Português" ;;
pankso@5	59 ru) i18n="Русский" ;;
pankso@5	60 ) i18n="" ;;
pankso@5	61 esac
pankso@5	62 echo "<a href='?d=$l/$doc'>$l</a>"
pankso@5	63 done
pankso@5	64 echo '</div>'
pankso@5	65 }
pankso@5	66
pankso@5	67 # HTML 5 header.
pankso@5	68 html_header() {
pankso@5	69 if [ -f "$tiny/lib/header.html" ]; then
pankso@5	70 cat $tiny/lib/header.html \| sed -e s!'%TITLE%'!"$TITLE - $d"!g
pankso@5	71 else
pankso@5	72 cat << EOT
pankso@5	73 <!DOCTYPE html>
pankso@5	74 <html xmlns="http://www.w3.org/1999/xhtml">
pankso@5	75 <head>
pankso@5	76 <title>$TITLE</title>
pankso@5	77 <meta charset="utf-8" />
pankso@5	78 <style type="text/css">body { margin: 40px 120px; }</style>
pankso@5	79 </head>
pankso@5	80 <body>
pankso@5	81 <!-- Content -->
pankso@5	82 <div id="content">
pankso@5	83 EOT
pankso@5	84 fi
pankso@5	85 }
pankso@5	86
pankso@5	87 # HTML 5 footer.
pankso@5	88 html_footer() {
pankso@5	89 if [ -f "$tiny/lib/footer.html" ]; then
pankso@5	90 cat $tiny/lib/footer.html
pankso@5	91 else
pankso@5	92 cat << EOT
pankso@5	93
pankso@5	94 <!-- End content -->
pankso@5	95 </div>
pankso@5	96
pankso@5	97 <div id="footer">&hearts;</div>
pankso@5	98
pankso@5	99 </body>
pankso@5	100 </html>
pankso@5	101 EOT
pankso@5	102 fi
pankso@5	103 }
pankso@5	104
pankso@5	105 # Default index if missing
pankso@5	106 default_index() {
pankso@11	107 mkdir -p "$wiki"
pankso@5	108 cat > $wiki/$index.txt << EOT
pankso@5	109 ==== Welcome ====
pankso@5	110
pankso@11	111 This is the default index page of your CM, you can start to edit and adding
pankso@5	112 some content to your TinyCM.
pankso@5	113
pankso@5	114 EOT
pankso@5	115 }
pankso@5	116
pankso@28	117 # Log main activity.
pankso@28	118 log_activity() {
pankso@28	119 [ -d "$cache/log" ] \|\| mkdir -p ${cache}/log
pankso@28	120 #gravatar="$(get_gravatar $MAIL 24)"
pankso@28	121 grep ^[A-Z] \| \
pankso@28	122 sed s"#^[A-Z]$[^']*$#$user\|$(date '+%Y-%m-%d')\|\0#" \
pankso@28	123 >> $cache/log/activity.log
pankso@28	124 }
pankso@28	125
pankso@5	126 # Log documents activity.
pankso@5	127 log() {
pankso@5	128 grep ^[A-Z] \| \
pankso@5	129 sed s"#^[A-Z]$[^']*$#$(date '+%Y-%m-%d %H:%M') : \0#" \
pankso@5	130 >> $cache/$d/activity.log
pankso@5	131 }
pankso@5	132
pankso@5	133 # Check if user is auth
pankso@5	134 check_auth() {
pankso@5	135 auth="$(COOKIE auth)"
pankso@5	136 user="$(echo $auth \| cut -d ":" -f 1)"
pankso@5	137 md5cookie="$(echo $auth \| cut -d ":" -f 2)"
pankso@5	138 [ -f "$sessions/$user" ] && md5session="$(cat $sessions/$user)"
pankso@5	139 if [ "$md5cookie" == "$md5session" ] && [ "$auth" ]; then
pankso@5	140 . $PEOPLE/$user/account.conf
pankso@5	141 return 0
pankso@5	142 else
pankso@5	143 return 1
pankso@5	144 fi
pankso@5	145 }
pankso@5	146
pankso@28	147 # Check if user is admin
pankso@28	148 admin_user() {
pankso@28	149 fgrep -q 'ADMIN_USER="yes"' ${PEOPLE}/${user}/account.conf
pankso@28	150 }
pankso@28	151
pankso@5	152 # Authentified or not
pankso@5	153 user_box() {
pankso@5	154 if check_auth; then
pankso@5	155 cat << EOT
pankso@5	156
pankso@5	157 <div id="user">
pankso@5	158 <a href="$script?user=$user">$(get_gravatar $MAIL 20)</a>
pankso@5	159 <a href="$script?logout">Logout</a>
pankso@5	160 </div>
pankso@5	161
pankso@5	162 EOT
pankso@5	163 else
pankso@5	164 cat << EOT
pankso@5	165
pankso@5	166 <div id="user">
pankso@5	167 <a href="$script?login"><img src="images/avatar.png" alt="[ User ]" /></a>
pankso@5	168 <a href="$script?login">Login</a>
pankso@5	169 </div>
pankso@5	170
pankso@5	171 EOT
pankso@5	172 fi
pankso@5	173 cat << EOT
pankso@5	174 <!--
pankso@5	175 <div id="search">
pankso@5	176 <form method="get" action="$script">
pankso@5	177 <input type="text" name="search" placeholder="$(gettext "Search")" />
pankso@5	178 </form>
pankso@5	179 </div>
pankso@5	180 -->
pankso@5	181 EOT
pankso@5	182 }
pankso@5	183
pankso@5	184 # Link for online signup if enabled.
pankso@5	185 online_signup() {
pankso@5	186 if [ "$ONLINE_SIGNUP" == "yes" ]; then
pankso@5	187 echo -n "<p><a href='$script?signup'>"
pankso@5	188 gettext "Create a new account"
pankso@5	189 echo '</a></p>'
pankso@5	190 fi
pankso@5	191 }
pankso@5	192
pankso@5	193 # Login page
pankso@5	194 login_page() {
pankso@5	195 cat << EOT
pankso@5	196 <h2>$(gettext "Login")</h2>
pankso@5	197
pankso@5	198 <div id="account-info">
paul@8	199 $(gettext "No account yet or trouble with you account? Please send
pankso@5	200 a request to $ADMIN_MAIL with your real name, user name, mail and password.")
pankso@5	201 $(online_signup)
pankso@5	202 </div>
pankso@5	203
pankso@5	204 <div id="login">
pankso@5	205 <form method="post" action="$script">
pankso@5	206 <input type="text" name="auth" placeholder="$(gettext "User name")" />
pankso@5	207 <input type="password" name="pass" placeholder="$(gettext "Password")" />
pankso@5	208 <div>
pankso@5	209 <input type="submit" value="Login" /> $error
pankso@5	210 </div>
pankso@5	211 </form>
pankso@5	212 </div>
pankso@5	213
pankso@5	214 <div style="clear: both;"></div>
pankso@5	215 EOT
pankso@5	216 }
pankso@5	217
pankso@5	218 # Signup page
pankso@5	219 signup_page() {
pankso@5	220 cat << EOT
pankso@5	221
pankso@5	222 <div id="signup">
pankso@5	223 <form method="post" name="signup" action="$script" onsubmit="return checkSignup();">
pankso@5	224 <input type="hidden" name="signup" value="new" />
pankso@5	225 <input type="text" name="name" placeholder="$(gettext "Real name")" />
pankso@5	226 <input type="text" name="user" placeholder="$(gettext "User name")" />
pankso@5	227 <input type="text" name="mail" placeholder="$(gettext "Email")" />
pankso@5	228 <input type="password" name="pass" placeholder="$(gettext "Password")" />
pankso@5	229 <div>
pankso@5	230 <input type="submit" value="$(gettext "Create new account")" />
pankso@5	231 </div>
pankso@5	232 </form>
pankso@5	233 </div>
pankso@5	234
pankso@5	235 EOT
pankso@5	236 }
pankso@5	237
pankso@5	238 # Create a new user in AUTH_FILE and PEOPLE
pankso@5	239 new_user_config() {
pankso@20	240 if [ ! -f "$AUTH_FILE" ];then
pankso@20	241 touch $(DESTDIR)$(LOGIN)/auth/people
pankso@20	242 chmod 0600 $(DESTDIR)$(LOGIN)/auth/people
pankso@20	243 fi
pankso@5	244 key=$(echo -n "$user:$mail:$pass" \| md5sum \| awk '{print $1}')
pankso@5	245 echo "$user:$pass" >> $AUTH_FILE
pankso@5	246 mkdir -p $PEOPLE/$user/
pankso@5	247 cat > $PEOPLE/$user/account.conf << EOT
pankso@5	248 # SliTaz user configuration
pankso@5	249 #
pankso@5	250
pankso@5	251 NAME="$name"
pankso@5	252 USER="$user"
pankso@5	253 MAIL="$mail"
pankso@5	254 KEY="$key"
pankso@5	255
pankso@5	256 EOT
pankso@5	257 chmod 0600 $PEOPLE/$user/account.conf
pankso@28	258 # First created user is admin
pankso@28	259 if [ $(ls ${PEOPLE} \| wc -l) == "1" ]; then
pankso@28	260 echo 'ADMIN_USER="yes"' >> $PEOPLE/$user/account.conf
pankso@28	261 fi
pankso@5	262 }
pankso@5	263
pankso@5	264 # Display user public profile.
pankso@5	265 public_people() {
pankso@5	266 cat << EOT
pankso@5	267 <pre>
pankso@5	268 Real name : $NAME
pankso@5	269 </pre>
pankso@5	270 EOT
pankso@23	271 # Display personnal user profile
pankso@23	272 if [ -f "$PEOPLE/$USER/profile.txt" ]; then
pankso@23	273 cat $PEOPLE/$USER/profile.txt \| wiki_parser
pankso@23	274 fi
pankso@5	275 }
pankso@5	276
pankso@5	277 # Display authentified user profile. TODO: change password
pankso@5	278 auth_people() {
pankso@5	279 cat << EOT
pankso@5	280 <pre>
pankso@5	281 Real name : $NAME
pankso@5	282 Email : $MAIL
pankso@5	283 Secure key : $KEY
pankso@5	284 </pre>
pankso@5	285 EOT
pankso@23	286 # Each user can have personal profile page
pankso@23	287 if [ -f "$PEOPLE/$USER/profile.txt" ]; then
pankso@23	288 cat $PEOPLE/$USER/profile.txt \| wiki_parser
pankso@23	289 cat << EOT
pankso@23	290 <div id="tools">
pankso@23	291 <a href="$script?edit=profile">$(gettext "Edit profile")</a>
pankso@23	292 </div>
pankso@23	293 EOT
pankso@23	294 else
pankso@23	295 cat << EOT
pankso@23	296 <div id="tools">
pankso@23	297 <a href="$script?edit=profile">$(gettext "Create a profile page")</a>
pankso@23	298 </div>
pankso@23	299 EOT
pankso@23	300 fi
pankso@5	301 }
pankso@5	302
paul@8	303 # The CM style parser. Just a title, simple text formating and internal
paul@8	304 # links, as well as images and use HTML for other stuff. Keep it fast!
pankso@5	305 # To make TinyCM as easy as possible we have a small HTML editor/helper
pankso@5	306 # written in Javascript
pankso@5	307 wiki_parser() {
pankso@5	308 doc="[0-9a-zA-Z\.\#/~\_%=\?\&,\+\:@;!\\$'\-]"
pankso@5	309 sed \
pankso@5	310 -e s"#====$[^']*$====#<h2>\1</h2>#"g \
pankso@5	311 -e s"#===$[^']*$===#<h3>\1</h3>#"g \
pankso@5	312 -e s"#==$[^']*$==#<h4>\1</h4>#"g \
pankso@13	313 -e s"#\\$[^']$\\*#<b>\1</b>#"g \
pankso@5	314 -e s"#''$[^']*$''#<em>\1</em>#"g \
pankso@5	315 -e s"#__$[^']*$__#<u>\1</u>#"g \
pankso@5	316 -e s"#\[$[^]]*$\|$$doc$\]#<a href='$script?d=\2'>\1</a>#"g \
pankso@17	317 -e s"#\[$[^]]*$!$$doc$\]#<a href='\2'>\1</a>#"g \
pankso@17	318 -e s"#\[$http://[^]].png$\]#<img src='\1' />#"g \
pankso@17	319 -e s"#\[$[^]]*.png$\]#<img src='content/cloud/\1' />#"g
pankso@5	320 }
pankso@5	321
pankso@5	322 link_user() {
pankso@15	323 echo "<a href='$(basename $script)?user=$user'>$user</a>"
pankso@5	324 }
pankso@5	325
pankso@5	326 # Save a document. Do we need more than 1 backup and diff ?
pankso@5	327 save_document() {
pankso@5	328 mkdir -p $cache/$d $(dirname $wiki/$d)
pankso@5	329 # May be a new page.
pankso@5	330 if [ ! -f "$wiki/$d.txt" ]; then
pankso@5	331 new=0
pankso@5	332 touch $wiki/$d.txt
pankso@5	333 fi
pankso@5	334 cp $wiki/$d.txt $cache/$d/last.bak
pankso@5	335 sed "s/$(echo -en '\r') /\n/g" > $wiki/$d.txt << EOT
pankso@5	336 $(GET content)
pankso@5	337 EOT
pankso@5	338 diff $cache/$d/last.bak $wiki/$d.txt > $cache/$d/last.diff
pankso@5	339 # Log
pankso@5	340 if [ "$new" ]; then
pankso@5	341 echo "Page created by: $(link_user)" \| log
pankso@31	342 echo "New document: <a href='$script?d=$d'>$d</a>" \| log_activity
pankso@5	343 if [ "$HG" == "yes" ]; then
pankso@5	344 cd $content && hg -q add
pankso@5	345 hg commit -q -u "$NAME <$MAIL>" -m "Created new document: $d"
pankso@5	346 cd $tiny
pankso@5	347 fi
pankso@5	348 else
pankso@28	349 # Here we may clean log: cat && tail -n 40
pankso@5	350 echo "Page edited by: $(link_user)" \| log
pankso@5	351 if [ "$HG" == "yes" ]; then
pankso@5	352 cd $content && hg commit -q -u "$NAME <$MAIL>" \
pankso@5	353 -m "Edited document: $d"
pankso@5	354 cd $tiny
pankso@5	355 fi
pankso@5	356 fi
pankso@5	357 }
pankso@5	358
pankso@23	359 # Save a user profile.
pankso@23	360 save_profile() {
pankso@23	361 path="$PEOPLE/$user"
pankso@23	362 cp -f ${path}/${d}.txt ${path}/${d}.bak
pankso@23	363 sed "s/$(echo -en '\r') /\n/g" > ${path}/${d}.txt << EOT
pankso@23	364 $(GET content)
pankso@23	365 EOT
pankso@23	366 }
pankso@23	367
pankso@5	368 # CM tools (edit, diff, etc).
pankso@5	369 wiki_tools() {
pankso@5	370 cat << EOT
pankso@5	371 <div id="tools">
pankso@5	372 <a href="$script?edit=$d">$(gettext "Edit document")</a>
pankso@5	373 <a href="$script?diff=$d">$(gettext "Last diff")</a>
pankso@31	374 <a href="$script?log=$d">$(gettext "File log")</a>
pankso@31	375 <a href="$script?dashboard">$(gettext "Dashboard")</a>
pankso@5	376 $([ "$HG" == "yes" ] && echo "<a href='$script?hg'>Hg Log</a>")
pankso@5	377 </div>
pankso@5	378 EOT
pankso@5	379 }
pankso@5	380
pankso@5	381 # Get and display Gravatar image: get_gravatar email size
pankso@5	382 # Link to profile: <a href="http://www.gravatar.com/$md5">...</a>
pankso@5	383 get_gravatar() {
pankso@5	384 email=$1
pankso@5	385 size=$2
pankso@5	386 [ "$size" ] \|\| size=48
pankso@5	387 url="http://www.gravatar.com/avatar"
pankso@5	388 md5=$(md5crypt $email)
pankso@5	389 echo "<img src='$url/$md5?d=identicon&s=$size' alt='&lowast;' />"
pankso@5	390 }
pankso@5	391
pankso@5	392 # List hg logs
pankso@5	393 hg_log() {
pankso@5	394 cd $content
pankso@5	395 cat << EOT
pankso@5	396 <table>
pankso@5	397 <thead>
pankso@5	398 <td>$(gettext "User")</td>
pankso@5	399 <td>$(gettext "Description")</td>
pankso@5	400 <td>$(gettext "Revision")</td>
pankso@5	401 </thead>
pankso@5	402 EOT
pankso@5	403 hg log --template "<tr><td>{author}</td><td>{desc}</td><td>{rev}</td></tr>\n"
pankso@5	404 echo '</table>'
pankso@5	405 }
pankso@5	406
pankso@5	407 #
pankso@5	408 # POST actions
pankso@5	409 #
pankso@5	410
pankso@5	411 case " $(POST) " in
pankso@5	412 \ auth\ )
pankso@5	413 # Authenticate user. Create a session file in $sessions to be used
pankso@5	414 # by check_auth. We have the user login name and a peer session
pankso@5	415 # md5 string in the COOKIE.
pankso@5	416 user="$(POST auth)"
pankso@5	417 pass="$(md5crypt "$(POST pass)")"
pankso@5	418 valid=$(fgrep "${user}:" $AUTH_FILE \| cut -d ":" -f 2)
pankso@5	419 if [ "$pass" == "$valid" ] && [ "$pass" != "" ]; then
pankso@5	420 md5session=$(echo -n "$$:$user:$pass:$$" \| md5sum \| awk '{print $1}')
pankso@5	421 [ -d $sessions ] \|\| mkdir -p $sessions
pankso@5	422 echo "$md5session" > $sessions/$user
pankso@5	423 header "Location: $script" \
pankso@5	424 "Set-Cookie: auth=$user:$md5session; HttpOnly"
pankso@5	425 else
pankso@5	426 header "Location: $script?login&error"
pankso@5	427 fi ;;
pankso@5	428 \ signup\ )
pankso@5	429 # POST action for signup
pankso@5	430 name="$(POST name)"
pankso@5	431 user="$(POST user)"
pankso@5	432 mail="$(POST mail)"
pankso@5	433 pass="$(md5crypt "$(POST pass)")"
pankso@5	434 if ! grep "^${user}:" $AUTH_FILE; then
pankso@5	435 new_user_config
pankso@5	436 header "Location: $script?login"
pankso@5	437 else
pankso@5	438 header
pankso@5	439 html_header
pankso@5	440 user_box
paul@8	441 echo "<h2>gettext "User already exists: $user"</h2>"
pankso@5	442 html_footer
pankso@5	443 fi ;;
pankso@5	444 esac
pankso@5	445
pankso@5	446 #
pankso@5	447 # Plugins
pankso@5	448 #
pankso@5	449 for p in $(ls -1 $plugins)
pankso@5	450 do
pankso@5	451 [ -f "$plugins/$p/$p.conf" ] && . $plugins/$p/$p.conf
pankso@5	452 [ -x "$plugins/$p/$p.cgi" ] && . $plugins/$p/$p.cgi
pankso@5	453 done
pankso@5	454
pankso@5	455 #
pankso@5	456 # GET actions
pankso@5	457 #
pankso@5	458
pankso@5	459 case " $(GET) " in
pankso@5	460 \ edit\ )
pankso@5	461 d="$(GET edit)"
pankso@5	462 header
pankso@5	463 html_header
pankso@5	464 user_box
pankso@5	465 get_lang
pankso@5	466 if check_auth; then
pankso@23	467 if [ "$doc" == "profile" ]; then
pankso@23	468 wiki="$PEOPLE/$user"
pankso@23	469 fi
pankso@5	470 cat << EOT
pankso@5	471 <h2>$(gettext "Edit $doc [ $i18n ]")</h2>
pankso@5	472
pankso@5	473 <div id="edit">
pankso@5	474
pankso@5	475 <form method="get" action="$script" name="editor">
pankso@5	476 <input type="hidden" name="save" value="$d" />
pankso@5	477 <textarea name="content">$(cat "$wiki/$d.txt")</textarea>
pankso@5	478 <input type="submit" value="$(gettext "Save document")" />
pankso@5	479 $(gettext "Code Helper:")
pankso@5	480 $(cat lib/jseditor.html)
pankso@5	481 </form>
pankso@5	482
pankso@5	483 </div>
pankso@5	484 EOT
pankso@5	485 else
paul@8	486 gettext "You must be logged in to edit pages"
pankso@5	487 fi
pankso@5	488 html_footer ;;
pankso@15	489
pankso@5	490 \ save\ )
pankso@5	491 d="$(GET save)"
pankso@5	492 if check_auth; then
pankso@23	493 # User profile
pankso@23	494 if [ "$d" == "profile" ]; then
pankso@23	495 save_profile
pankso@23	496 header "Location: $script?user=$user"
pankso@23	497 else
pankso@23	498 save_document
pankso@23	499 fi
pankso@5	500 fi
pankso@5	501 header "Location: $script?d=$d" ;;
pankso@15	502
pankso@5	503 \ log\ )
pankso@5	504 d="$(GET log)"
pankso@5	505 header
pankso@5	506 html_header
pankso@5	507 user_box
pankso@28	508 # Main activity
pankso@28	509 if [ "$d" == "log" ]; then
pankso@28	510 echo "<h2>$(gettext "Activity")</h2>"
pankso@28	511 if check_auth; then
pankso@28	512 echo "<div id='tools'>"
pankso@28	513 echo "<a href='$script?dashboard'>Dashboard</a>"
pankso@28	514 echo "</div>"
pankso@28	515 fi
pankso@28	516 echo '<pre>'
pankso@28	517 if [ -f "$cache/log/activity.log" ]; then
pankso@28	518 IFS="\|"
pankso@28	519 tac $cache/log/activity.log \| while read USER DATE LOG
pankso@28	520 do
pankso@28	521 . ${PEOPLE}/${USER}/account.conf
pankso@28	522 cat << EOT
pankso@28	523 <a href='$script?user=$USER'>$(get_gravatar $MAIL 24)</a>\
pankso@28	524 <span class='date'>$DATE -</span> $LOG
pankso@28	525 EOT
pankso@28	526 done
pankso@28	527 unset IFS
pankso@28	528 else
pankso@28	529 gettext "No activity log yet"; echo
pankso@28	530 fi
pankso@28	531 echo '</pre>'
pankso@28	532 html_footer && exit 0
pankso@28	533 fi
pankso@5	534 get_lang
pankso@5	535 echo "<h2>$(gettext "Activity for:") <a href='$script?d=$d'>$d</a></h2>"
pankso@5	536 echo '<pre>'
pankso@5	537 if [ -f "$cache/$d/activity.log" ]; then
pankso@5	538 tac $cache/$d/activity.log
pankso@5	539 else
pankso@5	540 gettext "No log for: $d"; echo
pankso@5	541 fi
pankso@5	542 echo '</pre>'
pankso@5	543 if check_auth; then
pankso@5	544 wiki_tools
pankso@5	545 fi
pankso@5	546 html_footer ;;
pankso@28	547
pankso@28	548 \ ls\ )
pankso@28	549 d="Document list"
pankso@28	550 header
pankso@28	551 html_header
pankso@28	552 user_box
pankso@28	553 echo "<h2>$(gettext "Document list")</h2>"
pankso@28	554 if check_auth; then
pankso@28	555 echo "<div id='tools'>"
pankso@28	556 echo "<a href='$script?dashboard'>Dashboard</a>"
pankso@28	557 echo "</div>"
pankso@28	558 fi
pankso@28	559 echo '<pre>'
pankso@28	560 cd ${wiki}
pankso@28	561 for d in $(find . -type f \| sed s'/.\///')
pankso@28	562 do
pankso@28	563 echo "<a href='$script?d=${d%.txt}'>${d%.txt}</a>"
pankso@28	564 done
pankso@28	565 echo '</pre>'
pankso@28	566 html_footer ;;
pankso@15	567
pankso@5	568 \ diff\ )
pankso@5	569 d="$(GET diff)"
pankso@5	570 date="last"
pankso@5	571 header
pankso@5	572 html_header
pankso@5	573 user_box
pankso@5	574 get_lang
pankso@5	575 echo "<h2>$(gettext "Diff for:") <a href='$script?d=$d'>$d</a></h2>"
pankso@5	576 echo '<pre>'
pankso@5	577 if [ -f "$cache/$d/$date.diff" ]; then
pankso@5	578 cat $cache/$d/$date.diff \| sed \
pankso@5	579 -e 's\|&\|\&\|g' -e 's\|<\|\<\|g' -e 's\|>\|\>\|g' \
pankso@5	580 -e s"#^-$[^']*$.#<span style='color: red;'>\0</span>#"g \
pankso@5	581 -e s"#^+$[^']*$.#<span style='color: green;'>\0</span>#"g \
pankso@5	582 -e s"#@@$[^']*$@@#<span style='color: blue;'>@@\1@@</span>#"g
pankso@5	583 else
pankso@5	584 gettext "No diff for: $d"; echo
pankso@5	585 fi
pankso@5	586 echo '</pre>'
pankso@5	587 if check_auth; then
pankso@5	588 wiki_tools
pankso@5	589 fi
pankso@5	590 html_footer ;;
pankso@15	591
pankso@5	592 \ login\ )
pankso@5	593 # The login page
pankso@5	594 d="Login"
pankso@5	595 [ "$(GET error)" ] && \
pankso@5	596 error="<p class="error">$(gettext "Bad login or pass")</p>"
pankso@5	597 header
pankso@5	598 html_header
pankso@5	599 user_box
pankso@5	600 login_page
pankso@5	601 html_footer ;;
pankso@15	602
pankso@5	603 \ signup\ )
pankso@5	604 # The login page
pankso@5	605 d="$(gettext "Sign Up")"
pankso@5	606 header
pankso@5	607 html_header
pankso@5	608 user_box
pankso@5	609 echo "<h2>$d</h2>"
pankso@5	610 if [ "$ONLINE_SIGNUP" == "yes" ]; then
pankso@5	611 signup_page
pankso@5	612 else
paul@8	613 gettext "Online registration is disabled"
pankso@5	614 fi
pankso@5	615 html_footer ;;
pankso@15	616
pankso@5	617 \ logout\ )
pankso@5	618 # Set a Cookie in the past to logout.
pankso@5	619 expires="Expires=Wed, 01-Jan-1980 00:00:00 GMT"
pankso@5	620 if check_auth; then
pankso@5	621 rm -f "$sessions/$user"
pankso@5	622 header "Location: $script" "Set-Cookie: auth=none; $expires; HttpOnly"
pankso@5	623 fi ;;
pankso@15	624
pankso@5	625 \ user\ )
pankso@5	626 # User profile
pankso@15	627 d="$(GET user)"
pankso@5	628 header
pankso@5	629 html_header
pankso@5	630 user_box
pankso@5	631 . $PEOPLE/"$(GET user)"/account.conf
pankso@5	632 echo "<h2>$(get_gravatar $MAIL) $(GET user)</h2>"
pankso@21	633 loglines=$(fgrep $(GET user) $(find $cache -name *.log) \| wc -l)
pankso@5	634 gettext "Activities:"; echo " $loglines"
pankso@5	635 if check_auth && [ "$(GET user)" == "$user" ]; then
pankso@5	636 auth_people
pankso@5	637 else
pankso@28	638 # check_auth will set VARS to current logged user: re-source
pankso@28	639 . $PEOPLE/"$(GET user)"/account.conf
pankso@5	640 public_people
pankso@5	641 fi
pankso@5	642 html_footer ;;
pankso@15	643
pankso@5	644 \ dashboard\ )
pankso@5	645 # For now simply list plugins and users info. We could have a
pankso@5	646 # dashbord only for ADMINS found in the config file. The dashboard
pankso@5	647 # should also be a plugin.
pankso@5	648 d="Dashboard"
pankso@5	649 header
pankso@5	650 html_header
pankso@5	651 user_box
pankso@5	652 users=$(ls -1 $PEOPLE \| wc -l)
pankso@5	653 docs=$(find $wiki -type f \| wc -l)
pankso@17	654 wikisize="$(du -sh $wiki \| awk '{print $1}')"
pankso@17	655 cachesize="$(du -sh $cache \| awk '{print $1}')"
pankso@17	656 [ "$HG" != "yes" ] && hg=$(gettext "disabled")
pankso@17	657 [ "$HG" == "yes" ] && hg=$(gettext "enabled")
pankso@5	658 echo "<h2>$d</h2>"
pankso@5	659 if check_auth; then
pankso@17	660 cat << EOT
pankso@28	661 <div id="tools">
pankso@28	662 <a href='$script?log'>Activity log</a>
pankso@28	663 <a href='$script?ls'>List files</a>
pankso@28	664 </div>
pankso@28	665
pankso@17	666 <pre>
pankso@17	667 Users : $users
pankso@17	668 Wiki : $docs ($wikisize)
pankso@17	669 Cache : $cachesize
pankso@17	670 Mercurial : $hg
pankso@17	671 </pre>
pankso@28	672 <h3>Admin users</h3>
pankso@28	673 EOT
pankso@28	674 # Get the list of administrators
pankso@28	675 for u in $(ls $PEOPLE)
pankso@28	676 do
pankso@28	677 user=${u}
pankso@28	678 if admin_user; then
pankso@28	679 echo "<a href='?user=$u'>$u</a>"
pankso@28	680 fi
pankso@28	681 done
pankso@28	682 cat << EOT
pankso@17	683 <h3>$(gettext "Plugins")</h3>
pankso@17	684 <pre>
pankso@17	685 EOT
pankso@5	686 for p in $(ls -1 $plugins)
pankso@5	687 do
pankso@5	688 . $plugins/$p/$p.conf
pankso@5	689 echo "<a href='?$p'>$PLUGIN</a> - $SHORT_DESC"
pankso@5	690 done
pankso@5	691 echo '</pre>'
pankso@5	692 else
paul@8	693 gettext "You must be logged in to view the dashboard."
pankso@5	694 fi
pankso@5	695 html_footer ;;
pankso@15	696
pankso@5	697 \ hg\ )
pankso@5	698 header
pankso@5	699 [ "$HG" != "yes" ] && gettext "Hg is disabled" && exit 0
pankso@5	700 [ ! -x /usr/bin/hg ] && gettext "Hg is not installed" && exit 0
pankso@5	701 d="Hg Log"
pankso@5	702 html_header
pankso@5	703 user_box
pankso@5	704 echo "<h2>$d</h2>"
pankso@5	705 case " $(GET hg) " in
pankso@5	706 \ init\ )
pankso@5	707 if check_auth; then
pankso@5	708 [ -d "$content/.hg" ] && exit 0
pankso@5	709 echo '<pre>'
pankso@5	710 gettext "Executing: hg init"; echo
pankso@5	711 cd $content/ && hg init
pankso@5	712 echo '[hooks]' > .hg/hgrc
pankso@5	713 echo 'incoming = hg update' >> .hg/hgrc
paul@8	714 gettext "Adding current content and committing"; echo
pankso@5	715 [ ! -f "$wiki/index.txt" ] && touch $wiki/$index.txt
pankso@5	716 hg add && hg commit -u "$NAME <$MAIL>" \
paul@22	717 -m "Initial commit with current content"
pankso@5	718 echo '</pre>' && cd ..
pankso@5	719 fi ;;
pankso@5	720 esac
pankso@5	721 hg_log
pankso@5	722 html_footer ;;
pankso@15	723
pankso@5	724 *)
pankso@5	725 # Display requested page
pankso@5	726 d="$(GET d)"
pankso@5	727 [ "$d" ] \|\| d=$index
pankso@5	728 header
pankso@5	729 html_header
pankso@5	730 user_box
pankso@5	731 get_lang
pankso@15	732 # Generate a default index on first run.
pankso@11	733 if [ ! -f "$wiki/$index.txt" ]; then
pankso@11	734 default_index
pankso@11	735 fi
pankso@5	736 if [ ! -f "$wiki/$d.txt" ]; then
pankso@5	737 echo "<h2>$d</h2>"
pankso@5	738 gettext "The document does not exist. You can create it or read the"
pankso@13	739 echo " <a href='?d=en/help'>help</a>"
pankso@5	740 else
pankso@26	741 if fgrep -q [NOWIKI] $wiki/$d.txt; then
pankso@26	742 cat $wiki/$d.txt \| sed '/[NOWIKI]/'d
pankso@5	743 else
pankso@5	744 cat $wiki/$d.txt \| wiki_parser
pankso@5	745 fi
pankso@5	746 fi
pankso@5	747 if check_auth; then
pankso@5	748 wiki_tools
pankso@5	749 if [ "$HG" == "yes" ] && [ ! -d "$content/.hg" ]; then
pankso@5	750 echo '<p class="error box">'
pankso@5	751 gettext "Mercurial is enabled but no repository found"
pankso@5	752 echo ": <a href='?hg=init'>Hg init</a>"
pankso@5	753 echo '</p>'
pankso@5	754 fi
pankso@5	755 fi
pankso@5	756 html_footer ;;
pankso@5	757 esac
pankso@5	758
pankso@5	759 exit 0

SliTaz Repositories

tinycm annotate index.cgi @ rev 31