once: comparison upload.pl

equal deleted inserted replaced

-:aa14588b4232
+:308c7edbfda5
 #! /usr/bin/perl -T
+# FIXME: UPDATE {{
 # Example .htaccess
 # | Options -Indexes
 # | <Files upload.pl>
 # | AuthType Basic
 # | AuthName upload
 #
 # Eventuell in der Apache-Config sowas wie
 #   ScriptAlias /ud	    /home/ud/XXX/upload.pl
 #   Alias	/d	    /home/ud/XXX/d/
 # gesetzt werden.
+#
+# }}
+#
+# STATUS: Proof of Concept!
 use 5.014;
 use strict;
 use warnings;
 use CGI qw(:all *table);
 use CGI::Carp qw(fatalsToBrowser);
 use CGI::Pretty;
 use IO::File;
 use File::Basename;
+use File::Path qw(remove_tree make_path);
+use File::Spec::Functions;
 use File::MimeInfo qw(mimetype);
 use Cwd qw(getcwd realpath);
 use Digest::MD5 qw(md5_hex);
 use OSSP::uuid;
-my $DIR     = "d";
-my $DIR_URI = "/once/$DIR";
+sub human;      # convert numbers to human readable format
+sub deletedir;  # safely delete directories
-sub human($);
+sub confirm;    # ask for user confirmation (HTML)
-sub deletedir(@);
+sub deslash; # cleanup a path name
-sub confirm;
+my $uuid = qr/[[:xdigit:]-]{36}/;
-delete @ENV{ grep /PATH/, keys %ENV };
+my $hash = qr/[[:xdigit:]]{32}/;
-$ENV{PATH} = "/usr/local/bin:/usr/bin:/bin:/usr/local/sbin:/usr/sbin:/sbin";
+umask 077;
-$_ = dirname $DIR;
--d or mkdir $_ => 0750
+# The working (var) directory gets passed to us via ONCE_VAR environment
-or die "Can't mkdir $_: $!\n";
+# FIXME: Should we allow the current directory as an alternative?
+my $ONCE_VAR = do {
+$ENV{ONCE_VAR} =~ /^(\/\S+)/;
+die "Please define (correct) env ONCE_VAR\n"
+if not defined $1;
+$1;
+};
 my @footer = (hr,
 div(
 { -align => "right" },
 a(
 {
 -href =>
 "https://ssl.schlittermann.de/hg/anon-upload/file/once/"
 } => "Scripting"
 ),
-" &copy; 2010,2011 ",
+" &copy; 2010,2011,2015 ",
 a({ -href => "http://www.schlittermann.de/" } => "Heiko Schlittermann"),
 " &copy; 2014 ",
 a({ -href => "http://www.schlittermann.de/" } => "Matthias Förste")
 )
 );
 MAIN: {
-# assuming download request
+# Download?
-if (request_uri =~ m|^\Q$DIR_URI\E/(.+)$|) {
+if ($ENV{PATH_INFO} =~ m{(?<path>(?<store>(?<view>/$hash|$uuid)/$uuid-\d+-.)/(?<base>.*))}) {
+my $view = deslash realpath catfile $ONCE_VAR, $+{view};
-# assuming $DIR relative to cwd
+my $store = deslash realpath catfile $ONCE_VAR, $+{store};
-my $relative = $1;
+my $file = deslash realpath catfile $ONCE_VAR, $+{path};
-my $base     = getcwd;
+my $base = $+{base};
-my $absolute;
-unless ($absolute = realpath "$base/$DIR/$relative") {
+unless (-f $file) {
-die "Can't realpath '$base/$DIR/$relative': $!"
-unless exists $!{ENOENT} and $!{ENOENT};
 print header('text/plain', '404 Not found'), 'Not found';
 exit 0;
 }
-$absolute =~ m|^\Q$base/$DIR\E| or die "invalid path: [$absolute]";
+my $mimetype = mimetype($file);
-(my $dir = $relative) =~ s|/[^/]+$||;
+confirm $base, $mimetype if $store =~ /-d$/ and not defined param('confirmed');
-my $delete = $dir =~ /-d$/;
+open my $f, '<', $file or die "Can't open <`$file`: $!\n";
-confirm if ($delete and not defined param('confirmed'));
+remove_tree $1 if $store =~ m(^(/.*-d)$);
+rmdir $1 if $view =~ m(^(/.*));
-open F, '<', $absolute or die "Can't open '<', '$absolute': $!";
-print header(-type => mimetype($absolute), -charset => 'UTF-8');
+print header(-type => $mimetype, -charset => 'UTF-8');
 if (request_method() ~~ [qw(GET POST)]) {
-my ($buf, $res);
+local $/ = \do{1 * 2**20};  # 1 MB Buffer
-print $buf while $res = read F, $buf, 32 * 2**10;
+print while <$f>;
-defined $res or die "Can't read: $!";
-deletedir $dir if $delete;
 }
 exit 0;
 }
-# per view we have an own directory
+# UPLOAD / VIEW request
+# per view (user) we have an own directory
-$ENV{REMOTE_USER} =~ /(.*)/;
-$_ = md5_hex($1);
+# pre condition checks
-$DIR     .= "/$_";
+-d $ONCE_VAR or mkdir $ONCE_VAR => 0777
-$DIR_URI .= "/$_";
+or die "Can't mkdir $ONCE_VAR: $! (your admin should have created it)\n";
--d $DIR
-or mkdir $DIR => 0750
+-x -w $ONCE_VAR or
-or die "Can't mkdir $DIR: $!\n";
+die "Can't write to $ONCE_VAR: $!\n";
-if (param("delete") =~ /([-a-z\d]+-\d+-.)/i) {
+my ($view, $user_dir) = do {
-deletedir $1;
+my ($v, $d);
+if ($ENV{REMOTE_USER} =~ /^\s*(.+)\s*$/) {
+$v = $1;
+$d = md5_hex($1);
+}
+else {
+tie $d => 'OSSP::uuid::tie', 'v4';
+$v = 'anonymous';
+}
+$v, deslash catfile($ONCE_VAR, $d);
+};
+if (param('delete') =~ m{(?<store>(?<view>$uuid|$hash)/$uuid-\d+-./?)}) {
+# FIXME: sanitization
+my $store = deslash catfile $ONCE_VAR, $+{store};
+my $view = deslash catfile $ONCE_VAR, $+{view};
+remove_tree $1 if $store =~ m(^(/.*));
+rmdir $1 if $view =~ m(^(/.*));
 print redirect(-uri => url(-path_info => 1));
 exit 0;
 }
 print header(-charset => "UTF-8"),
 start_html(-title => "once"),
-h1 "Ansicht: $ENV{REMOTE_USER}";
+h1 "Ansicht: $view";
 # print Dump;
-if (length(my $file = param("upload"))) {
+if (length(my $file = param('upload'))) {
-my $days = param("expires");
+my $days = param('expires');
 my ($delete, $expires);
-tie my $uuid => "OSSP::uuid::tie", "v4";
+tie my $uuid => 'OSSP::uuid::tie', 'v4';
 # sanitize expires
 $days =~ /.*?([+-]?\d+).*/;
 $days = defined $1 ? $1 : 10;
 # sanitizing the filename
 (my $filename = $file) =~ tr /\\/\//;
 $filename =~ /(.*)/;
 $filename = $1;
-my $dir = "$DIR/$uuid-$expires-$delete";
+my $dir = catfile($user_dir, "$uuid-$expires-$delete");
-mkdir $dir, 0750 or die "Can't mkdir $dir: $!\n";
+make_path($dir);
 my $outfh = new IO::File ">$dir/$filename"
 or die "Can't create $dir/$filename: $!\n";
 print {$outfh} <$file>;
 if (not $delete ~~ [qw(d m)]
 }
 }
 print hr;
-if (my @files = glob "$DIR/*-*/*") {
+# List the current content
+if (my @files = map { deslash $_ } glob "$user_dir/*-*/*") {
-#print "<pre>",
-#(map { "$_: $ENV{$_}\n" } sort keys %ENV),
-#"</pre>";
 print p <<__;
-			Der gültige Download-Link ist die Link-Adresse, die sich hinter
+<@files>
-			dem Datei-Namen verbirgt. (Firefox: Rechte Maustaste, Link-Location).
+Der gültige Download-Link ist die Link-Adresse, die sich hinter
-			Nach Ablauf des <a href="http://de.wikipedia.org/wiki/Mindesthaltbarkeitsdatum">MHD</a>
+dem Datei-Namen verbirgt. (Firefox: Rechte Maustaste, Link-Location).
-			wird die Datei automatisch gelöscht.
+Nach Ablauf des <a href="http://de.wikipedia.org/wiki/Mindesthaltbarkeitsdatum">MHD</a>
+wird die Datei automatisch gelöscht.
 __
 print start_table,
 Tr(th { align => "left" }, [qw/Name Größe Hochgeladen Löschung/]);
-foreach (map { /(.*)/ } sort { -M $a <=> -M $b } glob "$DIR/*-*/*") {
+foreach (map { /(.*)/ } sort { -M $a <=> -M $b } @files) {
 my ($file, $dir) = fileparse($_);
-$dir = basename $dir;
+$dir = substr $dir, length $ONCE_VAR;   # make it relative to $ONCE_VAR
-# $dir =~ /(?<hash>\S+)-(?<expires>\d+)$/ or next;
+$dir =~ /(\S+)-(\d+)-(.)\/?$/ or next;
-$dir =~ /(\S+)-(\d+)-(.)$/ or next;
 my ($hash, $expires, $delete) = ($1, $2, $3);
 if (${expires} <= time and $delete eq 'l') {
 /(.*)/;
 unlink $_  or die "Can't unlik $_: $!\n";
 rmdir $dir or die "Can't rmdir $dir: $!\n";
 else {
 $d = 'nur manuell';
 }
 print Tr(
-td(a { href => "$DIR_URI/$dir/$file" }, $file),
+td(a { href => "$ENV{PATH_INFO}/$dir$file" }, $file),
 td({ align => "right" }, human((stat $_)[7])),
 td(scalar localtime +(stat $_)[9]),
 td($d),
-td(a({ href => "?delete=$dir" }, "remove"))
+td(a({ href => "?delete=$dir" }, 'remove'))
 );
 }
 print end_table, hr;
 }
 end_multipart_form,
 @footer,
 end_html;
 }
-sub deletedir(@) {
+sub deletedir {
-for my $dir (@_) {
+remove_tree
-if (-d "$DIR/$dir") {
+map { /^(\/.*)/ }
-unlink map { /(.*)/ && $1 } glob("$DIR/$dir/*")
+grep { /^\Q$ONCE_VAR\E/ } @_;
-or die "Can't unlink $DIR/$dir/*: $!\n";
+}
-rmdir "$DIR/$dir" or die "Can't rmdir $DIR/$dir: $!\n";
-}
+sub human {
-}
-}
-sub human($) {
 my $_     = shift;
 my @units = qw(B K M G T);
 while (length int > 3 and @units) {
 $_ = sprintf "%.1f" => $_ / 1024;
 shift @units;
 croak "filesize is too big (can't convert to human readable number)"
 if !@units;
 return "$_$units[0]";
 }
+sub deslash { $_[0] =~ s{/+}{/}gr }
 sub confirm {
+my ($base, $mimetype) = @_;
 print header(-charset => "UTF-8"),
 start_html(-title => "once"),
 h1 "Download bestätigen";
 print hr, p <<__;
-Die Datei, die Sie herunterladen möchten, wird nach Abschluß des
+Die Datei `$base' ($mimetype), die Sie herunterladen möchten, wird nach Abschluß des
 Downloads gelöscht. Virenscanner oder andere Programme, die den Link
 möglicherweise automatisiert aufrufen, könnten eine versehentliche
 Löschung der Datei auslösen. Bestätigen Sie deshalb bitte den Download
 per Knopfdruck.
 __

changeset 49	308c7edbfda5
parent 46	2130f00e34f7
child 50	8de14266312f