OS/2 Spezial

home *** CD-ROM | disk | FTP | other *** search

/ OS/2 Spezial / SPEZIAL2_97.zip / SPEZIAL2_97.iso / ANWEND / ONLINE / SREFPRC1 / DOCGI.SRF < prev next >

Wrap

Text File | 1997-07-13 | 15KB | 379 lines

/* This is don meyers cgi handler, modified for SRE-FILTER */ /* ----------------------------------------------------------------------- */ /* DoCGI: Handle branching of CGI scripts / subroutines. */ /* ----------------------------------------------------------------------- */ sref_DoCGI: parse arg cgi_bin_dir, sel, verb, clientname0, filter_name, port ,, servername, protocol, dir, who,tempfile,cmdfile,httpd_inc, , VERBOSE,morestuff,do_htaccess,htaccess_file,privset,empty_path_ok,basedir parse var morestuff enmadd transaction homedir host_nickname ','fix_expire if datatype(fix_expire)<>'NUM' then fix_expire=0 /* 1) cgi_bin_dir is of form d:\goserv\progs (dir where progs located -- strip final \). Should be set by configurator. Note: cgi-bin\mapimage request strings are captured by SRE-FILTER, and not processed here 2) Sel is parsed, with scriptname, pathparms and list removed: i.e.; if sel = cgi-bin/turkey/joe/proj1?arg1=wow scriptname= turkey This will run cgi_bin_dir\turkey (a cmd or exe file). If you want to run programs NOT in the cgi_bin_dir directory, pathparms= joe/proj list= arg1=wow 3) Other variables are generic variables set in sre-filter */ parse var sel t1 '?' list foo1=translate(sel,'/','\') parse var t1 foocgi '/' scriptname '/' pathparms scriptname=strip(scriptname); cgi_bin_dir=strip(cgi_bin_dir) scriptname=strip(scriptname,,'"') scriptname=strip(scriptname,,"'") /* see if we should use a different interpeter (i.e.; perl) */ /* check "call" type, using extention of scriptname */ parse upper var scriptname foo '.' aext ; aext=strip(aext) calltype='CALL ' if aext<>' ' & aext<>'.CMD' & aext<>'.80' then do /* not a rexx extension -- check others */ checktypes=upper(value(enmadd||'INTERPRET_TYPES',,'os2environment')) foo=strip(pos(aext||'=',checktypes)) if foo>0 then do foo2=pos(' ',checktypes,foo) if foo2=0 then foo2=length(checktypes)+1 wow=substr(checktypes,foo,foo2-foo) parse var wow . '=' calltype calltype=strip(calltype)||' ' end end IF VERBOSE>1 THEN call pmprintf_sref(calltype " CGI-Bin call for " scriptname " , SEL = " SEL) /* begin meyer stuff */ scriptalias=strip(cgi_bin_dir,'t','\') env='OS2ENVIRONMENT' tempfile=translate(tempfile,'\','/') if (verb == 'POST') then do 'read body var postedlist' /* get the incoming data */ if rc=-4 then /* body too large */ return response_dc('badreq', 'sent too much data') if rc<>0 then /* e.g., invalid HTTP header */ return response_dc('badreq', 'sent data that could not be read') end ScriptName = translate(ScriptName) /* we could check by extenstion (com, cmd, exe), but this might cause incorrect errors So, we'll risk ugly errors below */ if do_htaccess=1 then do /* first check htaccess ? */ foo1=scriptalias'\'scriptname tmp1=sref_htaccess(sel,foo1,htaccess_file,who,clientname0,,port,dir, , SERVERNAME,TEMPFILE,0) if tmp1=-1 then return '401 0' end aa=sysfiletree(scriptalias'\'scriptname,'yow1','F') if yow1.1 =0 then return response_dc( 'notfound', 'cannot be honored. This server does not currently support any CGI service called "'ScriptName'".') /* else, do the script */ parse var ScriptAlias Drive':'Rest if (Drive == ScriptAlias) then Drive = '' /* means no drive info to parse off... */ i = 1 _acc = REQFIELD("accept") acc = '%' ClientAccepts = '' do while (acc \= _acc) acc = REQFIELD("accept", i) if (ClientAccepts \= '') then ClientAccepts = ClientAccepts','acc else ClientAccepts = acc i = i+1 end rc = 0 rc = stream(tempfile, 'c', 'close') /* Close the file to avoid preventing process from access. */ /* This is pretty touchy stuff below, be very careful if you edit any of this... */ InputFile = translate( tempfile, '#', '$') ReturnCode = '200' /* default return code */ call lineout CmdFile, "/**/" call lineout CmdFile, "'@ECHO OFF'" if (Drive \= '') then call lineout CmdFile, "'"Drive":'" call lineout CmdFile, "'CD "ScriptAlias"'" call lineout CmdFile, "env = '"env"'" SrvVersionText = server('H')||' '||filter_name rc = value('SERVER_SOFTWARE', SrvVersionText, env) rc = value('GATEWAY_INTERFACE','CGI/1.1',env) rc = value('SERVER_NAME',ServerName,env) rc = value('SERVER_PORT',port,env) i =1 l =1 ClientAccepts = '' HeaderFile = translate( tempfile, '~', '$') 'READ HEADER FILE NAME 'HeaderFile /* get the incoming header data */ hd = linein( HeaderFile, 1) do while (hd \= '') hd = linein( HeaderFile) parse var hd Hkey': 'content Hkey = translate(Hkey, '_', '-') Hkey = translate(Hkey) select when (Hkey == 'ACCEPT') then do parse var content content'; 'q if (i > 1) then ClientAccepts = ClientAccepts', 'content else ClientAccepts = content if (l == 5) then do call lineout CmdFile, "'SET HTTP_ACCEPT=%HTTP_ACCEPT%"ClientAccepts"'" ClientAccepts = '' l = 1 end l = l+1 i = i+1 end /* accept */ /* Handle other, unrecognized headers to conform to CGI/1.1 spec. */ otherwise do if (Hkey \= '') then rc = lineout(CmdFile, "rc = value('HTTP_"Hkey"','"content"',env)") end end /*select */ end rc = lineout( HeaderFile) if (ClientAccepts \= '') then call lineout CmdFile, "'SET HTTP_ACCEPT=%HTTP_ACCEPT%"ClientAccepts"'" crlf = '0d0a'x if empty_path_ok=1 & strip(pathparms)='' then do pathparms='' ; tt1='' end else do if pathparms<>" " then tt1=sref_do_virtual(dir,pathparms,enmadd,0,transaction,homedir,host_nickname) else tt1=dir tt1=translate(tt1,'/','\') pathparms='/'||strip(translate(pathparms,'/','\'),'l','/') end pathparms=upper(pathparms) ; tt1=upper(tt1) if empty_path_ok=1 then scn='/CGI-BIN/'||scriptname else scn=scriptname remuser=' ' authtype=' ' goo=reqfield('AUTHORIZATION:') if goo<>" " then do parse var goo authtype m64 . /* get the encoded cookie */ dec=pack64(m64) /* and decode it */ parse upper var dec remuser ':' . /* split to userid and password */ end /* fixed auth_Type and remote_user, 1/97) added sref_privest, 2/97 */ mytid=dostid();mypid=dospid() /* note that script_dir and caller_thread are sre-filter addons */ output_text = "rc = value('SCRIPT_NAME','"ScN"',env)"crlf, "rc = value('REQUEST_METHOD','"verb"',env)"crlf, "rc = value('SREF_PRIVSET','"privset"',env)"crlf, "rc = value('REMOTE_ADDR','"who"',env)"crlf, "rc = value('SERVER_ROOT','"basedir"',env)"crlf, "rc = value('SERVER_PROTOCOL','"protocol"',env)"crlf, "rc = value('PATH_INFO','"PathParms"',env)"crlf, "rc = value('PATH_TRANSLATED','"tt1"',env)"crlf, "rc = value('REMOTE_USER','"||remuser||"',env)"crlf, "rc = value('AUTH_TYPE','"||authtype||"',env)"crlf, "rc = value('CONTENT_TYPE','"REQFIELD("Content-type")"',env)"crlf, "rc = value('CONTENT_LENGTH','"REQFIELD("Content-length")"',env)"crlf, "rc = value('REMOTE_HOST','"clientname0"',env)"crlf, "rc = value('QUERY_STRING','"list"',env)"crlf, "rc = value('CALLER_THREAD','"mytid"',env)"crlf, "rc = value('SERVER_PID','"mypid"',env)"crlf, "rc = value('SCRIPT_DIR','"upper(scriptalias)"',env)" call lineout CmdFile, output_text /* Change suggested by someone (lost the email) to allow 4OS2 to be used as shell. */ ScriptAlias = translate( ScriptAlias, '\', '/') plist=packur(list) /* pack escape sequences in list */ if (plist \= '') then DO if (pos('&', plist) > 0) | (pos('=', plist) > 0) | (pos("'", plist) > 0) then plist = '' /* simply omit the parameter list in this case. */ else do /* Process the parameter list back to original ascii format */ plist = translate( plist, ' ', '+') end END if (verb == 'POST') then do rc = charout( InputFile, postedlist, 1) rc = stream( InputFile, 'C', 'close') /* Close file */ call lineout CmdFile, "'" calltype ScriptAlias"\"ScriptName" "plist" <"InputFile" >>"tempfile"'" end else do call lineout CmdFile, "'" CALLtype ScriptAlias"\"ScriptName" "plist" >>"tempfile"'" end /* dmh addition: if called from a #exec=xxx?yyy HTTPD style server side include, then just return contents of tempfile as is */ if httpd_inc=1 then do call lineout tempfile ; call lineout cmdfile ab=rxqueue('s','SESSION') RCODE=-1 address cmd CmdFile rcode=RC address YIKEs=' ' if (rcode == 0) then do yikes=charin(tempfile,1,chars(tempfile)) end A=STREAM(TEMPFILE,'C','CLOSE') rc = SysFileDelete( tempfile) rc = SysFileDelete( CmdFile) rc = SysFileDelete( HeaderFile) RETURN YIKES end call lineout CmdFile /* Close file */ do address cmd CmdFile rcode=RC address bunko=stream(tempfile,'c','query size') if bunko=' ' | bunko=0 then rcode='Problem with script: 'scriptname if (rcode == 0) then do Hder = '%' ContentType = 'text/html' ContentLength = 0 do while (Hder \= '') Hder = linein( tempfile) if hder="" then iterate parse var Hder Hkey': 'content _Hkey = Hkey _Hkey = translate( _Hkey) /* This should handle the special header case of nph-* scripts... */ if (word(_Hkey,1) == 'HTTP/1.0') then do parse var Hder Hkey content _Hkey = 'STATUS' 'HEADER NOAUTO' end select when (_Hkey == 'CONTENT-LENGTH') then ContentLength = content when (_Hkey == 'CONTENT-TYPE') then ContentType = content when (_Hkey == 'LOCATION') | (_Hkey == 'URI') then do /* It is not 'spec' to assume a redirect if URI is included, but 'LOCATION' isn't really even 'spec'... */ if (_Hkey == 'LOCATION') then do ReturnCode = '302' 'RESPONSE HTTP/1.0 'ReturnCode' Found' /* Set HTTP response line */ end 'HEADER ADD 'Hkey': 'content end when (_Hkey == 'STATUS') then do parse var content ReturnCode rest 'RESPONSE HTTP/1.0 'content /* Set HTTP response line */ end otherwise 'HEADER ADD 'Hkey': 'content /* oo */ end end _ContentLength = Chars(tempfile) if ( _ContentLength < ContentLength) | (ContentLength == 0) then ContentLength = _ContentLength 'HEADER ADD Content-length: ' ContentLength Content = charin( tempfile,, ContentLength) Call Lineout tempfile /* Close file before delete */ end /* rcode=0 */ rc = SysFileDelete( tempfile) /* delete tempfile because we're shortening it. */ rc = SysFileDelete( CmdFile) /* delete CmdFile, we're done with it. */ if (verb == 'POST') then rc = SysFileDelete( InputFile) /* delete InputFile, we're done with it. */ rc = SysFileDelete( HeaderFile) /* delete HeaderFile, we're done with it. */ if (rcode \= 0) then return response_dc('badreq', 'could not be completed.<pre> Form Error: 'rcode'</pre>') /* rc = charout( tempfile, Content, 1) */ /* Write contents back to tempfile */ /* rc = stream( tempfile, 'c', 'close') */ if fix_expire>0 then foo=sref_expire_response(fix_expire,contentlength,contentTYPE) 'VAR TYPE 'ContentType' AS ' scriptname ' NAME CONTENT ' return returncode||' '||contentlength end /* rcode=0 */ /* end*/ return response_dc('badreq', 'problem with CGI script "'scriptname'".') /* ----------------------------------------------------------------------- */ /* RESPONSE_dc: Standard [mostly error] responses. */ /* ----------------------------------------------------------------------- */ /* This routine should stay in the main filter program. */ /* Arguments are: response type and extended message information. */ /* It returns the GoServe command to handle the result file. */ response_dc: procedure expose tempfile seloriginal request0 source0 servername parse arg request, message select when request='badreq' then use='400 Bad request syntax' when request='notfound' then use='404 Not found' when request='forbid' then use='403 Forbidden' when request='unauth' then use='401 Unauthorized' otherwise do use='404 Not found' say 'weird response ' request message end end /* Add others to this list as needed */ /* Now set the response and build the response file */ 'RESPONSE HTTP/1.0' use /* Set HTTP response line */ parse var use code text call lineout tempfile, '<!doctype html public "-//IETF//DTD HTML 2.0//EN">' call lineout tempfile, "<html><head><title>"text"</title></head>" call lineout tempfile, "<body><h2>Sorry...</h2>" call lineout tempfile, "The request from your Web client" message"." call lineout tempfile, "<hr>HTTP response code:" code '['text']' call lineout tempfile, " From server at:" servername call lineout tempfile, " Running:" server() call lineout tempfile, "</body></html>" call lineout tempfile /* close */ a2=dosdir(tempfile,'s') 'FILE ERASE TYPE text/html NAME' tempfile a1=word(use,1) return a1||' '||a2