expand(output, action, ds);
}
-/* actions ********************************************************************/
-
-static void act_prefs_errors(const char *msg,
- void attribute((unused)) *u) {
- fatal(0, "error splitting parts list: %s", msg);
-}
-
-static const char *numbered_arg(const char *argname, int numfile) {
- char *fullname;
-
- byte_xasprintf(&fullname, "%d_%s", numfile, argname);
- return cgi_get(fullname);
-}
-
-static void process_prefs(dcgi_state *ds, int numfile) {
- const char *file, *name, *value, *part, *parts, *current, *context;
- char **partslist;
-
- if(!(file = numbered_arg("file", numfile)))
- /* The first file doesn't need numbering. */
- if(numfile > 0 || !(file = cgi_get("file")))
- return;
- if((parts = numbered_arg("parts", numfile))
- || (parts = cgi_get("parts"))) {
- /* Default context is display. Other contexts not actually tested. */
- if(!(context = numbered_arg("context", numfile))) context = "display";
- partslist = split(parts, 0, 0, act_prefs_errors, 0);
- while((part = *partslist++)) {
- if(!(value = numbered_arg(part, numfile)))
- continue;
- /* If it's already right (whether regexps or db) don't change anything,
- * so we don't fill the database up with rubbish. */
- if(disorder_part(ds->g->client, (char **)¤t,
- file, context, part))
- fatal(0, "disorder_part() failed");
- if(!strcmp(current, value))
- continue;
- byte_xasprintf((char **)&name, "trackname_%s_%s", context, part);
- disorder_set(ds->g->client, file, name, value);
- }
- if((value = numbered_arg("random", numfile)))
- disorder_unset(ds->g->client, file, "pick_at_random");
- else
- disorder_set(ds->g->client, file, "pick_at_random", "0");
- if((value = numbered_arg("tags", numfile))) {
- if(!*value)
- disorder_unset(ds->g->client, file, "tags");
- else
- disorder_set(ds->g->client, file, "tags", value);
- }
- if((value = numbered_arg("weight", numfile))) {
- if(!*value || !strcmp(value, "90000"))
- disorder_unset(ds->g->client, file, "weight");
- else
- disorder_set(ds->g->client, file, "weight", value);
- }
- } else if((name = cgi_get("name"))) {
- /* Raw preferences. Not well supported in the templates at the moment. */
- value = cgi_get("value");
- if(value)
- disorder_set(ds->g->client, file, name, value);
- else
- disorder_unset(ds->g->client, file, name);
- }
-}
-
-static void act_prefs(cgi_sink *output, dcgi_state *ds) {
- const char *files;
- int nfiles, numfile;
-
- if((files = cgi_get("files"))) nfiles = atoi(files);
- else nfiles = 1;
- for(numfile = 0; numfile < nfiles; ++numfile)
- process_prefs(ds, numfile);
- cgi_header(output->sink, "Content-Type", "text/html");
- header_cookie(output->sink);
- cgi_body(output->sink);
- expand(output, "prefs", ds);
-}
-
-static void act_login(cgi_sink *output,
- dcgi_state *ds) {
- const char *username, *password, *back;
- disorder_client *c;
-
- username = cgi_get("username");
- password = cgi_get("password");
- if(!username || !password
- || !strcmp(username, "guest")/*bodge to avoid guest cookies*/) {
- /* We're just visiting the login page */
- expand_template(ds, output, "login");
- return;
- }
- /* We'll need a new connection as we are going to stop being guest */
- c = disorder_new(0);
- if(disorder_connect_user(c, username, password)) {
- cgi_set_option("error", "loginfailed");
- expand_template(ds, output, "login");
- return;
- }
- if(disorder_make_cookie(c, &login_cookie)) {
- cgi_set_option("error", "cookiefailed");
- expand_template(ds, output, "login");
- return;
- }
- /* Use the new connection henceforth */
- ds->g->client = c;
- ds->g->flags = 0;
- /* We have a new cookie */
- header_cookie(output->sink);
- cgi_set_option("status", "loginok");
- if((back = cgi_get("back")) && *back)
- /* Redirect back to somewhere or other */
- redirect(output->sink);
- else
- /* Stick to the login page */
- expand_template(ds, output, "login");
-}
-
-static void act_logout(cgi_sink *output,
- dcgi_state *ds) {
- disorder_revoke(ds->g->client);
- login_cookie = 0;
- /* Reconnect as guest */
- disorder_cgi_login(ds, output);
- /* Back to the login page */
- cgi_set_option("status", "logoutok");
- expand_template(ds, output, "login");
-}
-
-static void act_register(cgi_sink *output,
- dcgi_state *ds) {
- const char *username, *password, *password2, *email;
- char *confirm, *content_type;
- const char *text, *encoding, *charset;
-
- username = cgi_get("username");
- password = cgi_get("password1");
- password2 = cgi_get("password2");
- email = cgi_get("email");
-
- if(!username || !*username) {
- cgi_set_option("error", "nousername");
- expand_template(ds, output, "login");
- return;
- }
- if(!password || !*password) {
- cgi_set_option("error", "nopassword");
- expand_template(ds, output, "login");
- return;
- }
- if(!password2 || !*password2 || strcmp(password, password2)) {
- cgi_set_option("error", "passwordmismatch");
- expand_template(ds, output, "login");
- return;
- }
- if(!email || !*email) {
- cgi_set_option("error", "noemail");
- expand_template(ds, output, "login");
- return;
- }
- /* We could well do better address validation but for now we'll just do the
- * minimum */
- if(!strchr(email, '@')) {
- cgi_set_option("error", "bademail");
- expand_template(ds, output, "login");
- return;
- }
- if(disorder_register(ds->g->client, username, password, email, &confirm)) {
- cgi_set_option("error", "cannotregister");
- expand_template(ds, output, "login");
- return;
- }
- /* Send the user a mail */
- /* TODO templatize this */
- byte_xasprintf((char **)&text,
- "Welcome to DisOrder. To active your login, please visit this URL:\n"
- "\n"
- "%s?c=%s\n", config->url, urlencodestring(confirm));
- if(!(text = mime_encode_text(text, &charset, &encoding)))
- fatal(0, "cannot encode email");
- byte_xasprintf(&content_type, "text/plain;charset=%s",
- quote822(charset, 0));
- sendmail("", config->mail_sender, email, "Welcome to DisOrder",
- encoding, content_type, text); /* TODO error checking */
- /* We'll go back to the login page with a suitable message */
- cgi_set_option("status", "registered");
- expand_template(ds, output, "login");
-}
-
-static void act_confirm(cgi_sink *output,
- dcgi_state *ds) {
- const char *confirmation;
-
- if(!(confirmation = cgi_get("c"))) {
- cgi_set_option("error", "noconfirm");
- expand_template(ds, output, "login");
- }
- /* Confirm our registration */
- if(disorder_confirm(ds->g->client, confirmation)) {
- cgi_set_option("error", "badconfirm");
- expand_template(ds, output, "login");
- }
- /* Get a cookie */
- if(disorder_make_cookie(ds->g->client, &login_cookie)) {
- cgi_set_option("error", "cookiefailed");
- expand_template(ds, output, "login");
- return;
- }
- /* Discard any cached data JIC */
- ds->g->flags = 0;
- /* We have a new cookie */
- header_cookie(output->sink);
- cgi_set_option("status", "confirmed");
- expand_template(ds, output, "login");
-}
-
-static void act_edituser(cgi_sink *output,
- dcgi_state *ds) {
- const char *email = cgi_get("email"), *password = cgi_get("changepassword1");
- const char *password2 = cgi_get("changepassword2");
- int newpassword = 0;
- disorder_client *c;
-
- if((password && *password) || (password && *password2)) {
- if(!password || !password2 || strcmp(password, password2)) {
- cgi_set_option("error", "passwordmismatch");
- expand_template(ds, output, "login");
- return;
- }
- } else
- password = password2 = 0;
-
- if(email) {
- if(disorder_edituser(ds->g->client, disorder_user(ds->g->client),
- "email", email)) {
- cgi_set_option("error", "badedit");
- expand_template(ds, output, "login");
- return;
- }
- }
- if(password) {
- if(disorder_edituser(ds->g->client, disorder_user(ds->g->client),
- "password", password)) {
- cgi_set_option("error", "badedit");
- expand_template(ds, output, "login");
- return;
- }
- newpassword = 1;
- }
- if(newpassword) {
- login_cookie = 0; /* it'll be invalid now */
- /* This is a bit duplicative of act_login() */
- c = disorder_new(0);
- if(disorder_connect_user(c, disorder_user(ds->g->client), password)) {
- cgi_set_option("error", "loginfailed");
- expand_template(ds, output, "login");
- return;
- }
- if(disorder_make_cookie(c, &login_cookie)) {
- cgi_set_option("error", "cookiefailed");
- expand_template(ds, output, "login");
- return;
- }
- /* Use the new connection henceforth */
- ds->g->client = c;
- ds->g->flags = 0;
- /* We have a new cookie */
- header_cookie(output->sink);
- }
- cgi_set_option("status", "edited");
- expand_template(ds, output, "login");
-}
-
-static void act_reminder(cgi_sink *output,
- dcgi_state *ds) {
- const char *const username = cgi_get("username");
-
- if(!username || !*username) {
- cgi_set_option("error", "nousername");
- expand_template(ds, output, "login");
- return;
- }
- if(disorder_reminder(ds->g->client, username)) {
- cgi_set_option("error", "reminderfailed");
- expand_template(ds, output, "login");
- return;
- }
- cgi_set_option("status", "reminded");
- expand_template(ds, output, "login");
-}
-
/* expansions *****************************************************************/
-static void exp_label(int attribute((unused)) nargs,
- char **args,
- cgi_sink *output,
- void attribute((unused)) *u) {
- cgi_output(output, "%s", cgi_label(args[0]));
-}
-
struct trackinfo_state {
dcgi_state *ds;
const struct queue_entry *q;
~mdw / disorder / blobdiff