loncom/publisher/loncfile.pm - diff

Return to loncfile.pm CVS log

Up to [LON-CAPA] / loncom / publisher

Diff for /loncom/publisher/loncfile.pm between versions 1.100 and 1.108

version 1.100, 2009/05/26 18:01:39	version 1.108, 2011/10/22 23:09:44
Line 168 sub URLToPath {	Line 168 sub URLToPath {

sub url {	sub url {
my $fn=shift;	my $fn=shift;
$fn=~s/^\/home\/($match_username)\/public\_html/\/priv\/$1/;	$fn=~s/^\/home\/httpd\/html//;
	$fn=~s/\/\.\//\//g;
$fn=&HTML::Entities::encode($fn,'<>"&');	$fn=&HTML::Entities::encode($fn,'<>"&');
return $fn;	return $fn;
}	}

sub display {	sub display {
my $fn=shift;	my $fn=shift;
$fn=~s-^/home/($match_username)/public_html-/priv/$1-;	$fn=~s/^\/home\/httpd\/html//;
	$fn=~s/\/\.\//\//g;
return '<span class="LC_filename">'.$fn.'</span>';	return '<span class="LC_filename">'.$fn.'</span>';
}	}

Line 348 sub cleanDest {	Line 350 sub cleanDest {
my ($request,$dest,$subdir,$fn,$uname)=@_;	my ($request,$dest,$subdir,$fn,$uname)=@_;
#remove bad characters	#remove bad characters
my $foundbad=0;	my $foundbad=0;
	my $error='';
if ($subdir && $dest =~/\./) {	if ($subdir && $dest =~/\./) {
$foundbad=1;	$foundbad=1;
$dest=~s/\.//g;	$dest=~s/\.//g;
Line 359 sub cleanDest {	Line 362 sub cleanDest {
}	}
if ($dest=~m\|/\|) {	if ($dest=~m\|/\|) {
my ($newpath)=($dest=~m\|(.*)/\|);	my ($newpath)=($dest=~m\|(.*)/\|);
$newpath=&relativeDest($fn,$newpath,$uname);	($newpath,$error)=&relativeDest($fn,$newpath,$uname);
if (! -d "$newpath") {	if (! -d "$newpath") {
$request->print('<p><span class="LC_warning">'	$request->print('<p><span class="LC_warning">'
.&mt("You have requested to create file in directory [_1] which doesn't exist. The requested directory path has been removed from the requested file name."	.&mt("You have requested to create file in directory [_1] which doesn't exist. The requested directory path has been removed from the requested file name."
,'<span class="LC_filename">'.&display($newpath).'</span>')	,&display($newpath))
.'</span></p>');	.'</span></p>');
$dest=~s\|.*/\|\|;	$dest=~s\|.*/\|\|;
}	}
}	}
if ($dest =~ /\.(\d+)\.(\w+)$/){	if ($dest =~ /\.(\d+)\.(\w+)$/){
$request->print('<p><span class="LC_warning">'	$request->print('<p><span class="LC_warning">'
.&mt('Bad filename [_1]','<span class="LC_filename">'.&display($dest).'</span>')	.&mt('Bad filename [_1]',&display($dest))
.'<br />'	.'<br />'
.&mt('[_1](name).(number).(extension)[_2] not allowed.','<tt>','</tt>')	.&mt('[_1](name).(number).(extension)[_2] not allowed.','<tt>','</tt>')
.'<br />'	.'<br />'
Line 384 sub cleanDest {	Line 387 sub cleanDest {
.'</span></p>'	.'</span></p>'
);	);
}	}
return $dest;	return ($dest,$error);
}	}

sub relativeDest {	sub relativeDest {
my ($fn,$newfilename,$uname)=@_;	my ($fn,$newfilename,$uname)=@_;
	my $error = '';
if ($newfilename=~/^\//) {	if ($newfilename=~/^\//) {
# absolute, simply add path	# absolute, simply add path
$newfilename='/home/'.$uname.'/public_html/';	$newfilename='/home/'.$uname.'/public_html/';
Line 401 sub relativeDest {	Line 405 sub relativeDest {
while ($newfilename=~m:/\.\./:) {	while ($newfilename=~m:/\.\./:) {
$newfilename=~ s:/[^/]+/\.\./:/:g; #remove dir/..	$newfilename=~ s:/[^/]+/\.\./:/:g; #remove dir/..
}	}
return $newfilename;	if ($newfilename =~ m{^/home/($match_username)/(?:public\_html\|priv)/}) {
	my $otheruname = $1;
	unless ($otheruname eq $uname) {
	my ($authorname,$authordom)=
	&Apache::loncacc::constructaccess($newfilename,$env{'request.role.domain'});
	unless (($authorname eq $otheruname) && ($authordom ne '')) {
	my $otherdir = &display($newfilename);
	$error = &mt('Access denied to [_1]',$otherdir);
	}
	}
	}
	return ($newfilename,$error);
}	}

=pod	=pod
Line 552 sub Rename1 {	Line 567 sub Rename1 {
$request->print('<input type="hidden" name="newfilename" value="'	$request->print('<input type="hidden" name="newfilename" value="'
.$newfilename.'" />'	.$newfilename.'" />'
.'<p>'	.'<p>'
.&mt($action.' [_1] to [_2]?'	.&mt($action.' [_1] to [_2]?',
,&display($fn),&display($newfilename))	&display($fn),
	&display($newfilename))
.'</p>'	.'</p>'
);	);
&CloseForm1($request, $fn);	&CloseForm1($request, $fn);
Line 563 sub Rename1 {	Line 579 sub Rename1 {
}	}
} else {	} else {
$request->print('<p class="LC_error">'	$request->print('<p class="LC_error">'
.&mt('No such file: [_1]'	.&mt('No such file: [_1]',
,'<span class="LC_filename">'.&display($fn).'</span>')	&display($fn))
.'</p></form>'	.'</p></form>'
);	);
return;	return;
Line 625 sub Delete1 {	Line 641 sub Delete1 {
}	}
}	}
$request->print('<p>'	$request->print('<p>'
.&mt('Delete [_1]?'	.&mt('Delete [_1]?',
,'<span class="LC_filename">'.&display($fn).'</span>')	&display($fn))
.'</p>'	.'</p>'
);	);
&CloseForm1($request, $fn);	&CloseForm1($request, $fn);
} else {	} else {
$request->print('<p class="LC_error">'	$request->print('<p class="LC_error">'
.&mt('No such file: [_1]'	.&mt('No such file: [_1]',
,'<span class="LC_filename">'.&display($fn).'</span>')	&display($fn))
.'</p></form>'	.'</p></form>'
);	);
}	}
Line 689 sub Copy1 {	Line 705 sub Copy1 {
$request->print('<br /><a href="'.&url($fn).'">'.&mt('Cancel').'</a>');	$request->print('<br /><a href="'.&url($fn).'">'.&mt('Cancel').'</a>');
return;	return;
}	}
$request->print('<input type="hidden" name="newfilename" value="'	$request->print(
.$newfilename.'" />'	'<input type="hidden" name="newfilename"'
.'<p>'	.' value="'.$newfilename.'" />'
.&mt('Copy [_1] to [_2]?'	.'<p>'
,'<span class="LC_filename">'.&display($fn).'</span>'	.&mt('Copy [_1] to [_2]?',
,'<span class="LC_filename">'.&display($newfilename).'</span>')	&display($fn),
.'</p>'	&display($newfilename))
	.'</p>'
);	);
&CloseForm1($request, $fn);	&CloseForm1($request, $fn);
} else {	} else {
$request->print('<p class="LC_error">'	$request->print('<p class="LC_error">'
.&mt('No such file: [_1]'	.&mt('No such file: [_1]',
,'<span class="LC_filename">'.&display($fn).'</span>')	&display($fn))
.'</p></form>'	.'</p></form>'
);	);
}	}
Line 754 sub NewDir1 {	Line 771 sub NewDir1 {
if ($type eq 'error') {	if ($type eq 'error') {
$request->print('</form>');	$request->print('</form>');
} else {	} else {
if ($mode eq 'testbank') {	if (($mode eq 'testbank') \|\| ($mode eq 'imsimport')) {
$request->print('<input type="hidden" name="callingmode" value="testbank" />');	$request->print('<input type="hidden" name="callingmode" value="'.$mode.'" />'."\n".
} elsif ($mode eq 'imsimport') {	'<input type="hidden" name="inhibitmenu" value="yes" />');
$request->print('<input type="hidden" name="callingmode" value="imsimport" />');
}	}
$request->print('<input type="hidden" name="newfilename" value="'	$request->print('<input type="hidden" name="newfilename" value="'
.$newfilename.'" />'	.$newfilename.'" />'
.'<p>'	.'<p>'
.&mt('Make new directory [_1]?'	.&mt('Make new directory [_1]?',
,'<span class="LC_filename">'.&display($newfilename).'</span>')	&display($newfilename))
.'</p>'	.'</p>'
);	);
&CloseForm1($request, $fn);	&CloseForm1($request, $fn);
Line 776 sub Decompress1 {	Line 792 sub Decompress1 {
if( -e $fn) {	if( -e $fn) {
$request->print('<input type="hidden" name="newfilename" value="'.$fn.'" />');	$request->print('<input type="hidden" name="newfilename" value="'.$fn.'" />');
$request->print('<p>'	$request->print('<p>'
.&mt('Decompress [_1]?'	.&mt('Decompress [_1]?',
,'<span class="LC_filename">'.&display($fn).'</span>')	&display($fn))
.'</p>'	.'</p>'
);	);
&CloseForm1($request, $fn);	&CloseForm1($request, $fn);
} else {	} else {
$request->print('<p class="LC_error">'	$request->print('<p class="LC_error">'
.&mt('No such file: [_1]'	.&mt('No such file: [_1]',
,'<span class="LC_filename">'.&display($fn).'</span>')	&display($fn))
.'</p></form>'	.'</p></form>'
);	);
}	}
Line 855 sub NewFile1 {	Line 871 sub NewFile1 {
$extension = $1;	$extension = $1;
}	}

my @okexts = qw(xml html xhtml htm xhtm problem page sequence rights sty library js css txt);	my @okexts = qw(xml html xhtml htm xhtm problem page sequence rights sty task library js css txt);
if (($extension eq '') \|\| (!grep(/^\Q$extension\E/,@okexts))) {	if (($extension eq '') \|\| (!grep(/^\Q$extension\E/,@okexts))) {
my $validexts = '.'.join(', .',@okexts);	my $validexts = '.'.join(', .',@okexts);
$request->print('<p class="LC_warning">'.	$request->print('<p class="LC_warning">'.
Line 935 sub phaseone {	Line 951 sub phaseone {

my $doingdir=0;	my $doingdir=0;
if ($env{'form.action'} eq 'newdir') { $doingdir=1; }	if ($env{'form.action'} eq 'newdir') { $doingdir=1; }
my $newfilename=&cleanDest($r,$env{'form.newfilename'},$doingdir,$fn,$uname);	my ($newfilename,$error) =
$newfilename=&relativeDest($fn,$newfilename,$uname);	&cleanDest($r,$env{'form.newfilename'},$doingdir,$fn,$uname);
	unless ($error) {
	($newfilename,$error)=&relativeDest($fn,$newfilename,$uname);
	}
	if ($error) {
	my $dirlist;
	if ($fn=~m{^(.*/)[^/]+$}) {
	$dirlist=$1;
	} else {
	$dirlist=$fn;
	}
	$r->print('<div class="LC_error">'.$error.'</div>'.
	'<h3><a href="'.&url($dirlist).'">'.&mt('Return to Directory').
	'</a></h3>');
	return;
	}
$r->print('<form action="/adm/cfile" method="post">'.	$r->print('<form action="/adm/cfile" method="post">'.
'<input type="hidden" name="qualifiedfilename" value="'.$fn.'" />'.	'<input type="hidden" name="qualifiedfilename" value="'.$fn.'" />'.
'<input type="hidden" name="phase" value="two" />'.	'<input type="hidden" name="phase" value="two" />'.
Line 1069 sub Rename2 {	Line 1100 sub Rename2 {
unlink $tmp2;	unlink $tmp2;
}	}
} else {	} else {
$request->print('<p>'	$request->print(
.&mt('No such file: [_1]'	'<p>'
,'<span class="LC_filename">'.&display($oldfile).'</span>')	.&mt('No such file: [_1]',
.'</p></form>'	&display($oldfile))
	.'</p></form>'
);	);
return 0;	return 0;
}	}
Line 1450 function writeDone() {	Line 1482 function writeDone() {
&Apache::lonhtmlcommon::clear_breadcrumbs();	&Apache::lonhtmlcommon::clear_breadcrumbs();
&Apache::lonhtmlcommon::add_breadcrumb({	&Apache::lonhtmlcommon::add_breadcrumb({
'text' => 'Construction Space',	'text' => 'Construction Space',
'href' => '', # FIXME Add link to /priv/[user]	'href' => &Apache::loncommon::authorspace(),
});	});
&Apache::lonhtmlcommon::add_breadcrumb({	&Apache::lonhtmlcommon::add_breadcrumb({
'text' => 'File Operation',	'text' => 'File Operation',
Line 1469 function writeDone() {	Line 1501 function writeDone() {
$r->print('<h3>'.&mt('Location').': '.&display($fn).'</h3>');	$r->print('<h3>'.&mt('Location').': '.&display($fn).'</h3>');

if (($uname ne $env{'user.name'}) \|\| ($udom ne $env{'user.domain'})) {	if (($uname ne $env{'user.name'}) \|\| ($udom ne $env{'user.domain'})) {
$r->print('<p class="LC_warning">'	$r->print('<p class="LC_info">'
.&mt('Co-Author [_1]',$uname.':'.$udom)	.&mt('Co-Author [_1]',$uname.':'.$udom)
.'</p>'	.'</p>'
);	);

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

Removed from v.1.100
changed lines
	Added in v.1.108