/**************************************************************************** * This file is part of the project AqHome. * AqHome (c) by 2025 Martin Preuss, all rights reserved. * * The license for this file can be found in the file COPYING which you * should have received along with this file. ****************************************************************************/ #ifdef HAVE_CONFIG_H # include #endif #include "./mservice_p.h" #include "aqhome-cgi/service/module.h" #include #include #include #include #include #include #include /* ------------------------------------------------------------------------------------------------ * defs and enums * ------------------------------------------------------------------------------------------------ */ #define AQH_MOD_SERVICE_HEADERFILE "header.html" #define AQH_MOD_SERVICE_FOOTERFILE "footer.html" #define GBAS GWEN_Buffer_AppendString #define GBAA GWEN_Buffer_AppendArgs /* ------------------------------------------------------------------------------------------------ * global vars * ------------------------------------------------------------------------------------------------ */ GWEN_INHERIT(AQH_MODULE, AQH_MOD_SERVICE) /* ------------------------------------------------------------------------------------------------ * forward declarations * ------------------------------------------------------------------------------------------------ */ static void GWENHYWFAR_CB _freeData(void *bp, void *p); static void _calcUserModPerms(AQH_MODULE *m, const AQH_USER *user); static uint32_t _calcRolePerms(const AQH_MODULE *m, const AQH_MODULE_PERMS *modPerms); /* ------------------------------------------------------------------------------------------------ * code * ------------------------------------------------------------------------------------------------ */ void AQH_ModService_Extend(AQH_MODULE *m, AQH_SERVICE *sv, const char *baseFolder) { AQH_MOD_SERVICE *xm; GWEN_NEW_OBJECT(AQH_MOD_SERVICE, xm); GWEN_INHERIT_SETDATA(AQH_MODULE, AQH_MOD_SERVICE, m, xm, _freeData); xm->service=sv; xm->baseFolder=(baseFolder && *baseFolder)?strdup(baseFolder):NULL; } void _freeData(GWEN_UNUSED void *bp, void *p) { AQH_MOD_SERVICE *xm; xm=(AQH_MOD_SERVICE*) p; free(xm->baseFolder); GWEN_FREE_OBJECT(xm); } AQH_SERVICE *AQH_ModService_GetService(const AQH_MODULE *m) { if (m) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { return xm->service; } } return NULL; } const char *AQH_ModService_GetBaseFolder(const AQH_MODULE *m) { if (m) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { return xm->baseFolder; } } return NULL; } uint32_t AQH_ModService_GetUserPerms(const AQH_MODULE *m) { if (m) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { return xm->userPerms; } } return 0; } void AQH_ModService_SetHandleRequestFn(AQH_MODULE *m, AQH_MODSERVICE_HANDLEREQUEST_FN fn) { if (m) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { xm->handleRequestFn=fn; } } } void AQH_ModService_SetLoadSubModuleFn(AQH_MODULE *m, AQH_MODSERVICE_LOADSUBMODULE_FN fn) { if (m) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { xm->loadSubModuleFn=fn; } } } void AQH_ModService_SetAddHeaderFn(AQH_MODULE *m, AQH_MODSERVICE_ADDHEADER_FN fn) { if (m) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { xm->addHeaderFn=fn; } } } void AQH_ModService_SetAddFooterFn(AQH_MODULE *m, AQH_MODSERVICE_ADDFOOTER_FN fn) { if (m) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { xm->addFooterFn=fn; } } } void AQH_ModService_AddHeader(AQH_MODULE *m, const char *lang, GWEN_BUFFER *dbuf) { if (m && dbuf) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { if (xm->addHeaderFn) xm->addHeaderFn(m, lang, dbuf); else { AQH_MODULE *mParent; mParent=AQH_Module_Tree2_GetParent(m); if (mParent) AQH_ModService_AddHeader(mParent, lang, dbuf); AQH_ModService_ReadStaticFile(m, lang, AQH_MOD_SERVICE_HEADERFILE, dbuf); } } } } void AQH_ModService_AddFooter(AQH_MODULE *m, const char *lang, GWEN_BUFFER *dbuf) { if (m && dbuf) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { if (xm->addFooterFn) xm->addFooterFn(m, lang, dbuf); else { AQH_MODULE *mParent; AQH_ModService_ReadStaticFile(m, lang, AQH_MOD_SERVICE_FOOTERFILE, dbuf); mParent=AQH_Module_Tree2_GetParent(m); if (mParent) AQH_ModService_AddFooter(mParent, lang, dbuf); } } } } int AQH_ModService_RespondWithFile(AQH_MODULE *m, AQCGI_REQUEST *rq, const char *lang, const char *sFilename, GWEN_BUFFER *dbuf) { int rv; rv=AQH_ModService_ReadStaticFile(m, lang, sFilename, dbuf); if (rv<0) { AQCGI_Request_SetResponseCode(rq, 500); AQCGI_Request_SetResponseText(rq, "Internal Error"); return GWEN_ERROR_INTERNAL; } AQCGI_Request_SetResponseCode(rq, 200); AQCGI_Request_SetResponseText(rq, "Ok"); return 0; } int AQH_ModService_HandleRequest(AQH_MODULE *m, AQCGI_REQUEST *rq, AQH_SESSION *session, const char *sLastPathElem) { if (m) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm && xm->handleRequestFn) return xm->handleRequestFn(m, rq, session, sLastPathElem); } return GWEN_ERROR_NOT_IMPLEMENTED; } AQH_MODULE *AQH_ModService_LoadSubModule(AQH_MODULE *m, AQCGI_REQUEST *rq, AQH_SESSION *session, const char *sModuleName) { if (m) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm && xm->loadSubModuleFn) { AQH_MODULE *mReturn; mReturn=xm->loadSubModuleFn(m, rq, session, sModuleName); if (mReturn) AQH_ModService_CalcSessionModPerms(mReturn, session); return mReturn; } } return NULL; } int AQH_ModService_ReadStaticFile(AQH_MODULE *m, const char *lang, const char *filename, GWEN_BUFFER *dbuf) { if (m && filename && dbuf) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { GWEN_BUFFER *fbuf; int rv; fbuf=GWEN_Buffer_new(0, 256, 0, 1); GWEN_Buffer_AppendString(fbuf, xm->baseFolder); GWEN_Buffer_AppendString(fbuf, GWEN_DIR_SEPARATOR_S); GWEN_Buffer_AppendString(fbuf, (lang && *lang)?lang:"en"); GWEN_Buffer_AppendString(fbuf, GWEN_DIR_SEPARATOR_S); GWEN_Buffer_AppendString(fbuf, filename); DBG_ERROR(NULL, "Reading file \"%s\"", GWEN_Buffer_GetStart(fbuf)); rv=GWEN_SyncIo_Helper_ReadFile(GWEN_Buffer_GetStart(fbuf), dbuf); if (rv<0) { DBG_ERROR(NULL, "Read(%s): %d", GWEN_Buffer_GetStart(fbuf), rv); GWEN_Buffer_free(fbuf); return rv; } GWEN_Buffer_free(fbuf); return 0; } } DBG_ERROR(NULL, "Any arg is missing (or is not a AQH_MOD_SERVICE object)"); return GWEN_ERROR_INTERNAL; } AQH_SESSION *AQH_ModService_ReadSession(AQH_MODULE *m, AQCGI_REQUEST *rq) { AQH_SERVICE *sv; GWEN_DB_NODE *db; const char *s; sv=AQH_ModService_GetService(m); db=AQCGI_Request_GetDbRequestHeader(rq); s=GWEN_DB_GetCharValue(db, "cookies/session", 0, NULL); if (s && *s) { AQH_SESSION *session; session=AQH_Service_LoadSession(sv, s); if (session==NULL) { DBG_ERROR(NULL, "Session \"%s\" not found", s); return NULL; } else { const char *sUserName; GWEN_BUFFER *tbuf; sUserName=AQH_Session_GetUserAlias(session); if (sUserName && *sUserName) { AQH_USER *user; user=AQH_Service_LoadUser(sv, sUserName); if (user==NULL) { DBG_ERROR(NULL, "User \"%s\" not found", sUserName); AQH_Session_free(session); return NULL; } else { DBG_ERROR(NULL, "User is \"%s\"", sUserName); } AQH_Session_SetUser(session, user); } /* renew session cookie */ tbuf=GWEN_Buffer_new(0, 256, 0, 1); GWEN_Buffer_AppendArgs(tbuf, "Set-Cookie: session=%s; max-age=86400", AQH_Session_GetUid(session)); AQCGI_Request_AddResponseHeaderData(rq, GWEN_Buffer_GetStart(tbuf)); DBG_ERROR(NULL, "Renew session cookie"); GWEN_Buffer_free(tbuf); return session; } } else { DBG_ERROR(NULL, "No session cookie"); } return NULL; } void AQH_ModService_CalcSessionModPerms(AQH_MODULE *m, const AQH_SESSION *session) { const AQH_USER *user; user=session?AQH_Session_GetUser(session):NULL; _calcUserModPerms(m, user); } void _calcUserModPerms(AQH_MODULE *m, const AQH_USER *user) { if (m) { AQH_MOD_SERVICE *xm; xm=GWEN_INHERIT_GETDATA(AQH_MODULE, AQH_MOD_SERVICE, m); if (xm) { uint32_t perms=0; if (user) { if (AQH_User_GetFlags(user) & AQH_USER_FLAGS_ADMIN) perms=0xffffffff; else { const char *sModName; const AQH_MODULE_PERMS_LIST *modPermsList; AQH_MODULE_PERMS *modPerms; sModName=AQH_Module_GetName(m); modPermsList=AQH_User_GetModulePermList(user); modPerms=(sModName && modPermsList)?AQH_ModulePerms_List_GetByModuleId(modPermsList, sModName):NULL; if (modPerms) perms=_calcRolePerms(m, modPerms); else perms=AQH_Module_GetGuestPerms(m); } } /* if (user) */ else perms=AQH_Module_GetGuestPerms(m); xm->userPerms=perms; } } /* if (m) */ } uint32_t _calcRolePerms(const AQH_MODULE *m, const AQH_MODULE_PERMS *modPerms) { uint32_t perms=0; const AQH_ROLE_LIST *roleList; roleList=AQH_Module_GetRoleList(m); if (roleList) { int roleArraySize; int i; uint32_t explAddPerms=0; uint32_t explDelPerms=0; roleArraySize=AQH_ModulePerms_GetRoleArrayArraySize(); for (i=0; iError

No permissions for this request.

"); AQCGI_Request_SetResponseCode(rq, 403); AQCGI_Request_SetResponseText(rq, "Forbidden"); } break; } } if (!(AQCGI_Request_GetFlags(rq) & AQH_MODSERVICE_RQFLAGS_RAWFILE)) { DBG_ERROR(NULL, "Not adding footer"); AQH_ModService_AddFooter(m, "en", dbuf); } AQCGI_Request_SetBufferResponseBody(rq, dbuf); if (AQCGI_Request_GetFlags(rq) & AQCGI_FLAGS_HAS_CONTENT_HEADER) AQCGI_Request_AddResponseHeaderData(rq, "Content-type: text/html"); } void AQH_ModService_WritePermsToForm(uint32_t perms, const AQH_PERMDEF_LIST *permDefList, const char *sPrefix, GWEN_BUFFER *dbuf) { if (permDefList) { const AQH_PERMDEF *permDef; GWEN_BUFFER *tbuf; uint32_t pos; tbuf=GWEN_Buffer_new(0, 256, 0, 1); if (sPrefix && *sPrefix) GBAA(tbuf, "%s:", sPrefix); pos=GWEN_Buffer_GetPos(tbuf); permDef=AQH_PermDef_List_First(permDefList); while(permDef) { const char *s; s=AQH_PermDef_GetId(permDef); if (s && *s) { uint32_t mask; GBAS(tbuf, s); mask=AQH_PermDef_GetMask(permDef); if (perms & mask) GBAA(dbuf, "", GWEN_Buffer_GetStart(tbuf)); else GBAA(dbuf, "", s?s:""); GBAA(dbuf, "", GWEN_Buffer_GetStart(tbuf), s?s:""); GWEN_Buffer_Crop(tbuf, 0, pos); } permDef=AQH_PermDef_List_Next(permDef); } GWEN_Buffer_free(tbuf); } } uint32_t AQH_ModService_ReadPermsFromForm(GWEN_DB_NODE *dbPost, const AQH_PERMDEF_LIST *permDefList, const char *sPrefix) { uint32_t result=0; if (permDefList) { const AQH_PERMDEF *permDef; GWEN_BUFFER *tbuf; uint32_t pos; tbuf=GWEN_Buffer_new(0, 256, 0, 1); if (sPrefix && *sPrefix) GBAA(tbuf, "%s:", sPrefix); pos=GWEN_Buffer_GetPos(tbuf); permDef=AQH_PermDef_List_First(permDefList); while(permDef) { const char *id; id=AQH_PermDef_GetId(permDef); if (id && *id) { uint32_t mask; const char *s; GBAS(tbuf, id); mask=AQH_PermDef_GetMask(permDef); s=GWEN_DB_GetCharValue(dbPost, GWEN_Buffer_GetStart(tbuf), 0, NULL); if (s && *s) result|=mask; GWEN_Buffer_Crop(tbuf, 0, pos); } permDef=AQH_PermDef_List_Next(permDef); } GWEN_Buffer_free(tbuf); } return result; } AQH_MODULE_LIST *AQH_ModService_LoadRawModules(AQH_MODULE *m) { AQH_SERVICE *sv; GWEN_STRINGLIST *slModuleNames; sv=AQH_ModService_GetService(m); slModuleNames=AQH_Service_ListModules(sv); if (slModuleNames) { AQH_MODULE_LIST *modList; GWEN_STRINGLISTENTRY *se; modList=AQH_Module_List_new(); se=GWEN_StringList_FirstEntry(slModuleNames); while(se) { const char *sModName; sModName=GWEN_StringListEntry_Data(se); if (sModName && *sModName) { AQH_MODULE *currentMod; currentMod=AQH_Service_LoadModule(sv, sModName); if (currentMod) AQH_Module_List_Add(currentMod, modList); } se=GWEN_StringListEntry_Next(se); } GWEN_StringList_free(slModuleNames); if (AQH_Module_List_GetCount(modList)) return modList; AQH_Module_List_free(modList); } return NULL; } AQH_USER_LIST *AQH_ModService_LoadRawUsers(AQH_MODULE *m) { AQH_SERVICE *sv; GWEN_STRINGLIST *slUserNames; sv=AQH_ModService_GetService(m); slUserNames=AQH_Service_ListUsers(sv); if (slUserNames) { AQH_USER_LIST *userList; GWEN_STRINGLISTENTRY *se; userList=AQH_User_List_new(); se=GWEN_StringList_FirstEntry(slUserNames); while(se) { const char *sModName; sModName=GWEN_StringListEntry_Data(se); if (sModName && *sModName) { AQH_USER *u; u=AQH_Service_LoadUser(sv, sModName); if (u) AQH_User_List_Add(u, userList); } se=GWEN_StringListEntry_Next(se); } GWEN_StringList_free(slUserNames); if (AQH_User_List_GetCount(userList)) return userList; AQH_User_List_free(userList); } return NULL; } void AQH_ModService_EscapeToBuffer(const char *src, GWEN_BUFFER *buf) { while (*src) { unsigned char x; x=(unsigned char)*src; if (!( (x>='A' && x<='Z') || (x>='a' && x<='z') || (x>='0' && x<='9') || NULL!=strchr("-_", x) )) { unsigned char c; GWEN_Buffer_AppendByte(buf, '%'); c=(((unsigned char)(*src))>>4)&0xf; if (c>9) c+=7; c+='0'; GWEN_Buffer_AppendByte(buf, c); c=((unsigned char)(*src))&0xf; if (c>9) c+=7; c+='0'; GWEN_Buffer_AppendByte(buf, c); } else GWEN_Buffer_AppendByte(buf, *src); src++; } /* while */ } void AQH_ModService_UnescapeToBuffer(const char *src, GWEN_BUFFER *buf) { while (*src) { int charHandled=0; if (*src=='%') { if (strlen(src)>2) { unsigned char d1, d2; unsigned char c; if (isxdigit((int)src[1]) && isxdigit((int)src[2])) { /* skip '%' */ src++; /* read first digit */ d1=(unsigned char)(toupper(*src)); /* get second digit */ src++; d2=(unsigned char)(toupper(*src)); /* compute character */ d1-='0'; if (d1>9) d1-=7; c=(d1<<4)&0xf0; d2-='0'; if (d2>9) d2-=7; c+=(d2&0xf); /* store character */ GWEN_Buffer_AppendByte(buf, (char)c); charHandled=1; } } } if (!charHandled) GWEN_Buffer_AppendByte(buf, *src); src++; } /* while */ } int AQH_ModService_FileIsCurrent(const char *sPath, int seconds) { struct stat sb; time_t t1; if (lstat(sPath, &sb)==-1) { DBG_ERROR(NULL, "Error on lstat(%s): %s (%d)", sPath, strerror(errno), errno); return 0; } t1=time(0); if ((t1-sb.st_mtime)<(time_t) seconds) { DBG_DEBUG(NULL, "File %s is current", sPath); return 1; } return 0; } int AQH_ModService_RespondWithMimeFile(AQCGI_REQUEST *rq, const char *sFilename, const char *sMimeType, GWEN_BUFFER *dbuf) { GWEN_BUFFER *ibuf; int rv; ibuf=GWEN_Buffer_new(0, 1024, 0, 1); /* read file */ rv=GWEN_SyncIo_Helper_ReadFile(sFilename, ibuf); if (rv<0) { DBG_ERROR(NULL, "Error reading \"%s\" (%d)", sFilename, rv); return rv; } else { GWEN_Buffer_Reset(dbuf); GWEN_Buffer_AppendBytes(dbuf, GWEN_Buffer_GetStart(ibuf), GWEN_Buffer_GetUsedBytes(ibuf)); if (sMimeType && *sMimeType) { GWEN_BUFFER *tbuf; tbuf=GWEN_Buffer_new(0, 256, 0, 1); GBAA(tbuf, "Content-type: %s", sMimeType); AQCGI_Request_AddResponseHeaderData(rq, GWEN_Buffer_GetStart(tbuf)); GWEN_Buffer_free(tbuf); } AQCGI_Request_AddFlags(rq, AQH_MODSERVICE_RQFLAGS_RAWFILE); } GWEN_Buffer_free(ibuf); return 0; }