bool kumo_db::startSession(SESSION_INFO info)
{
if (!checkSession(info.session))
{
sessions.push_back(info);
return true;
}
return 0;
}
void HttpProtocolData::checkTasks()
{
LOG(0, "check tasks\n");
// check task status.
CURLMsg *msg = NULL;
int msgsInQueue;
while ( (msg = curl_multi_info_read(handle, &msgsInQueue)) != NULL)
{
HttpSession *ses = NULL;
CURLcode rete = curl_easy_getinfo(msg->easy_handle, CURLINFO_PRIVATE, &ses);
CHECK_CURLE(rete);
long respCode = 0;
rete = curl_easy_getinfo(msg->easy_handle, CURLINFO_RESPONSE_CODE, &respCode);
CHECK_CURLE(rete);
int topRespCode = respCode / 100;
LOG(0, "top response code = %d\n", topRespCode);
switch (msg->msg)
{
case CURLMSG_DONE:
switch (topRespCode)
{
case 2: // succeed download
if (ses->t->state == HT_PREPARE)
{
initTask(ses->t);
}
ses->length = 0; // make sure session will be removed.
checkSession(ses);
break;
default:
break;
}
break;
// TODO: handle other return code.
default:
break;
}
}
}
void HttpServer::handleTorrentPost(HttpClientHandler* hdlr,const QHttpRequestHeader & hdr,const QByteArray & data)
{
const char* ptr = data.data();
Uint32 len = data.size();
int pos = QString(data).find("\r\n\r\n");
if (!session.logged_in || !checkSession(hdr))
{
// You can't post torrents if you are not logged in
// or the session is not OK
redirectToLoginPage(hdlr);
return;
}
if (pos == -1 || pos + 4 >= len || ptr[pos + 4] != 'd')
{
HttpResponseHeader rhdr(500);
setDefaultResponseHeaders(rhdr,"text/html",false);
hdlr->send500(rhdr);
return;
}
// save torrent to a temporary file
KTempFile tmp_file(locateLocal("tmp", "ktwebgui-"), ".torrent");
QDataStream* out = tmp_file.dataStream();
if (!out)
{
HttpResponseHeader rhdr(500);
setDefaultResponseHeaders(rhdr,"text/html",false);
hdlr->send500(rhdr);
return;
}
out->writeRawBytes(ptr + (pos + 4),len - (pos + 4));
tmp_file.sync();
tmp_file.setAutoDelete(true);
Out(SYS_WEB|LOG_NOTICE) << "Loading file " << tmp_file.name() << endl;
core->loadSilently(KURL::fromPathOrURL(tmp_file.name()));
handleGet(hdlr,hdr);
}
void HttpServer::handleGet(HttpClientHandler* hdlr,const QHttpRequestHeader & hdr,bool do_not_check_session)
{
QString file = hdr.path();
if (file == "/")
file = "/login.html";
//Out(SYS_WEB|LOG_DEBUG) << "GET " << hdr.path() << endl;
KURL url;
url.setEncodedPathAndQuery(file);
QString path = rootDir + bt::DirSeparator() + WebInterfacePluginSettings::skin() + url.path();
// first check if the file exists (if not send 404)
if (!bt::Exists(path))
{
HttpResponseHeader rhdr(404);
setDefaultResponseHeaders(rhdr,"text/html",false);
hdlr->send404(rhdr,path);
return;
}
QFileInfo fi(path);
QString ext = fi.extension();
// if it is the login page send that
if (file == "/login.html" || file == "/")
{
session.logged_in = false;
ext = "html";
path = rootDir + bt::DirSeparator() + WebInterfacePluginSettings::skin() + "/login.html";
}
else if (!session.logged_in && (ext == "html" || ext == "php"))
{
// for any html or php page, a login is necessary
redirectToLoginPage(hdlr);
return;
}
else if (session.logged_in && !do_not_check_session && (ext == "html" || ext == "php"))
{
// if we are logged in and it's a html or php page, check the session id
if (!checkSession(hdr))
{
session.logged_in = false;
// redirect to login page
redirectToLoginPage(hdlr);
return;
}
}
if (ext == "html")
{
HttpResponseHeader rhdr(200);
setDefaultResponseHeaders(rhdr,"text/html",true);
if (path.endsWith("login.html"))
{
// clear cookie in case of login page
QDateTime dt = QDateTime::currentDateTime().addDays(-1);
QString cookie = QString("KT_SESSID=666; expires=%1 +0000").arg(DateTimeToString(dt,true));
rhdr.setValue("Set-Cookie",cookie);
}
if (!hdlr->sendFile(rhdr,path))
{
HttpResponseHeader nhdr(404);
setDefaultResponseHeaders(nhdr,"text/html",false);
hdlr->send404(nhdr,path);
}
}
else if (ext == "css" || ext == "js" || ext == "png" || ext == "ico" || ext == "gif" || ext == "jpg")
{
if (hdr.hasKey("If-Modified-Since"))
{
QDateTime dt = parseDate(hdr.value("If-Modified-Since"));
if (dt.isValid() && dt < fi.lastModified())
{
HttpResponseHeader rhdr(304);
setDefaultResponseHeaders(rhdr,"text/html",true);
rhdr.setValue("Cache-Control","max-age=0");
rhdr.setValue("Last-Modified",DateTimeToString(fi.lastModified(),false));
rhdr.setValue("Expires",DateTimeToString(QDateTime::currentDateTime(Qt::UTC).addSecs(3600),false));
hdlr->sendResponse(rhdr);
return;
}
}
HttpResponseHeader rhdr(200);
setDefaultResponseHeaders(rhdr,ExtensionToContentType(ext),true);
rhdr.setValue("Last-Modified",DateTimeToString(fi.lastModified(),false));
rhdr.setValue("Expires",DateTimeToString(QDateTime::currentDateTime(Qt::UTC).addSecs(3600),false));
rhdr.setValue("Cache-Control","private");
if (!hdlr->sendFile(rhdr,path))
{
HttpResponseHeader nhdr(404);
setDefaultResponseHeaders(nhdr,"text/html",false);
hdlr->send404(nhdr,path);
}
}
else if (ext == "php")
{
bool redirect = false;
bool shutdown = false;
if (url.queryItems().count() > 0 && session.logged_in)
redirect = php_i->exec(url,shutdown);
if (shutdown)
{
// first send back login page
redirectToLoginPage(hdlr);
QTimer::singleShot(1000,kapp,SLOT(quit()));
}
else if (redirect)
{
HttpResponseHeader rhdr(301);
setDefaultResponseHeaders(rhdr,"text/html",true);
rhdr.setValue("Location",url.encodedPathAndQuery());
hdlr->executePHPScript(php_i,rhdr,WebInterfacePluginSettings::phpExecutablePath(),
path,url.queryItems());
}
else
{
HttpResponseHeader rhdr(200);
setDefaultResponseHeaders(rhdr,"text/html",true);
hdlr->executePHPScript(php_i,rhdr,WebInterfacePluginSettings::phpExecutablePath(),
path,url.queryItems());
}
}
else
{
HttpResponseHeader rhdr(404);
setDefaultResponseHeaders(rhdr,"text/html",false);
hdlr->send404(rhdr,path);
}
}
