3 import javax.servlet.*;
4 import javax.servlet.http.*;
7 import java.sql.SQLException;
8 import java.sql.ResultSet;
9 import java.sql.ResultSetMetaData;
10 import java.text.SimpleDateFormat;
11 import java.util.Date;
12 import java.util.ResourceBundle;
14 public class MoiraServlet extends HttpServlet {
15 static final String MOIRA_SERVER = "moira.mit.edu";
16 Object LOCK = new Object(); // Used to synchronize Moira authentication
17 // with the ticket fetching thread
18 Kticket kt = new Kticket("jis5", "foobar", "ATHENA.MIT.EDU", LOCK);
19 boolean ktinit = false;
20 private static final int MAXDISPLAY = 10;
21 Hashtable FileParts = new Hashtable();
22 Hashtable FileTimes = new Hashtable();
23 static final SimpleDateFormat df = new SimpleDateFormat("dd-MMM-yyyy HH:mm:ss");
24 static final int KE_RD_AP_BADD = 39525414; // This is a kludge
27 public synchronized void service(HttpServletRequest request, HttpServletResponse response) {
28 System.err.println("MoiraSerlvet: Service");
29 System.err.println("---------------------");
31 if (!ktinit) { // Once only initialization
33 Thread t = new Thread(kt);
39 Hashtable qv = new Hashtable();
43 try { // Get Parameters
44 Enumeration e = request.getParameterNames();
45 while (e.hasMoreElements()) {
46 String pname = (String)e.nextElement();
47 String [] pvaluearray = request.getParameterValues(pname);
49 if (pvaluearray.length > 1) {
50 for (int i = 0; i < pvaluearray.length; i++)
51 pvalue += pvaluearray[i];
52 } else pvalue = pvaluearray[0];
54 System.err.println(pname + " = " + pvalue);
55 qv.put(pname, pvalue);
58 modifier = (String)qv.get("modifier");
59 if (modifier == null) modifier = "";
61 if (modifier.equals("showform")) {
62 do_showform(qv, request, response);
64 } else if (modifier.equals("showurl")) {
65 do_showurl(qv, request, response);
67 } else if (modifier.equals("makesession")) {
68 request.getSession(true);
72 String operation = (String) qv.get("operation");
73 if (operation == null) {
75 DataOutputStream out = new DataOutputStream(response.getOutputStream());
76 response.setContentType("text/html");
77 if (modifier.equals("getfile"))
78 out.writeBytes("You need to select an operation from the list on the left!");
79 else if (modifier.equals("displayonly"))
80 out.writeBytes("error");
81 else if (modifier.equals("getlistname")) {
82 out.writeBytes(do_getlistinput(qv, request, response));
85 } catch (Exception ee) {
90 if (operation.charAt(operation.length()-2) == '\r') // Trim newline stuff
91 operation = operation.substring(0, operation.length() - 2);
92 if (modifier.equals("getlistname")) {
93 msg = do_getlistinput(qv, request, response);
94 if (msg.equals("")) return;
95 } else if (modifier.equals("getfile")) {
96 msg = getfile(operation);
97 } else if (operation.equals("getmembers")) {
98 if (modifier.equals("displayonly")) {
101 msg = do_getmembers(qv, request, response);
102 if (msg.equals("")) return;
103 } else if (operation.equals("addfinal")) {
104 if (modifier.equals("displayonly")) {
105 msg = "added members";
107 msg = do_addfinal(qv, request, response);
108 if (msg.equals("")) return;
109 } else if (operation.equals("editme")) {
110 if (modifier.equals("displayonly")) {
111 msg = "add or remove yourself from a list";
113 msg = do_editme(qv, request, response);
114 if (msg.equals("")) return;
115 } else if (operation.equals("removemembers")) {
116 if (modifier.equals("displayonly")) {
117 msg = "edit/remove members";
119 msg = do_removemembers(qv, request, response);
120 if (msg.equals("")) return;
121 } else if (operation.equals("delmembers")) {
122 if (modifier.equals("displayonly")) {
123 msg = "edit/remove members";
125 msg = do_delmember(qv, request, response);
126 if (msg.equals("")) return;
127 } else if (operation.equals("delconfirm")) {
128 if (modifier.equals("displayonly")) {
129 msg = "member deleted";
131 msg = do_delconfirm(qv, request, response);
132 if (msg.equals("")) return;
133 } else if (operation.equals("addmember")) {
134 if (modifier.equals("displayonly")) {
135 msg = "add member(s)";
137 msg = do_addmember(qv, request, response);
138 if (msg.equals("")) return;
139 } else if (operation.equals("addme")) {
140 if (modifier.equals("displayonly")) {
141 msg = "added to list";
143 msg = do_addremme(qv, request, response, true);
144 } else if (operation.equals("delme")) {
145 if (modifier.equals("displayonly")) {
146 msg = "removed from list";
148 msg = do_addremme(qv, request, response, false);
149 } else if (operation.equals("displaylistinfo")) {
150 if (modifier.equals("displayonly")) {
151 msg = "display list characteristics";
153 msg = do_showlistinfo(qv, request, response);
154 } else if (operation.equals("updatelistinfo")) {
155 if (modifier.equals("displayonly")) {
156 msg = "update list characteristics";
158 msg = do_updatelistinfo(qv, request, response);
159 } else if (operation.equals("updatelistinfoconf")) {
160 if (modifier.equals("displayonly")) {
161 msg = "update list characteristics";
163 msg = do_updatelistinfoconf(qv, request, response);
165 sendError("Unimplemented Operation: " + (String)qv.get("operation"), response, true);
169 } catch (AuthenticationError e) {
170 msg = "<b>" + e.getMessage() + "</b><p>\r\n";
171 } catch (Exception e) {
172 msg += "<h1>Error during Processing</h1>\r\n";
173 msg += "Please try again later</HTML>\r\n";
178 DataOutputStream out = new DataOutputStream(response.getOutputStream());
179 response.setContentType("text/html");
180 if (!MOIRA_SERVER.equals("moira.mit.edu") && modifier.equals(""))
181 out.writeBytes("<font color=red>Moira Server: " + MOIRA_SERVER + "<br></font>\r\n");
184 } catch (Exception e) {
189 void sendError(String message, HttpServletResponse response, boolean showheader) {
192 msg = "<HTML><TITLE>Error</TITLE></HEAD><BODY BGCOLOR=#FFFFFF>\r\n";
193 msg += "<H1>Error</H1>\r\n";
195 msg += "<p></body></html>\r\n";
196 } else msg = "<b>" + message + "</b>";
198 DataOutputStream out = new DataOutputStream(response.getOutputStream());
199 response.setContentType("text/html");
202 } catch (Exception e) {
208 * Authenticate the user.
210 * @param request The HttpServlet request object
211 * @return String value of the Kerberos username who owns this request
212 * @exception AuthenticationError if authentication cannot be performed
214 String do_authentication(HttpServletRequest request) throws AuthenticationError {
216 // Attempt to obtain authenticated username from the session
218 HttpSession session = request.getSession(true);
219 String kname = (String) session.getValue("kname");
220 if (kname != null) return (kname);
222 String client_email = (String)request.getAttribute("org.apache.jserv.SSL_CLIENT_EMAIL");
223 if (client_email == null)
224 throw new AuthenticationError("You must use a Certificate to access this service.");
226 // Need to remove the @MIT.EDU portion
227 int i = client_email.indexOf('@');
229 throw new AuthenticationError("Malformed or non-MIT Certificate, shouldn't happen!");
230 if (!client_email.substring(i+1).equals("MIT.EDU"))
231 throw new AuthenticationError("Certificate Email Address must end in MIT.EDU");
232 kname = client_email.substring(0, i);
233 session.putValue("kname", kname);
237 String do_getmembers(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError {
238 String kname = do_authentication(request);
241 String arg = (String) qv.get("list");
242 if (arg == null || arg.equals("")) {
243 msg = "<p>Argument is required</p>";
247 // Obtain the list of members stashed in the session object
248 // If this is the first call to do_getmembers for this list,
249 // we won't have one in which case we will obtain it from Moira
253 Member [] members = null;
254 HttpSession session = request.getSession(true);
255 if (session != null) {
256 list = (String)session.getValue("list");
257 if (list == null) list = "";
258 members = (Member []) session.getValue("members");
260 if (!list.equals(arg)) // Different list from argument, new session
261 members = null; // Force obtaining members from Moira
263 // Determine offset of list to view
265 String tmp = (String)qv.get("offset");
267 offset = Integer.parseInt(tmp);
269 boolean showall = false;
270 if (offset < 0) showall = true;
272 if (members == null) {
273 MoiraConnect mc = null;
277 members = mc.get_members_of_list(arg);
281 session.putValue("members", members);
282 session.putValue("list", arg);
283 } catch (MoiraException m) {
286 msg += m.getMessage();
287 msg += "</b></P>\r\n";
289 CharArrayWriter err = new CharArrayWriter();
290 PrintWriter perr = new PrintWriter(err);
291 m.printStackTrace(perr);
293 msg += err.toString();
296 } catch (Exception e) {
300 if (mc != null) mc.disconnect();
304 // Do the actual display of the members
306 return("<b>No members for list " + arg + "</b>");
308 msg = "<table border=0>\r\n";
309 msg += "<tr><td> </td><td><table border=1 cellpadding=2>\r\n";
310 msg += "<tr><td colspan=2><b>Members of list: " + arg + "</b></td></tr>\r\n";
311 int len = offset + MAXDISPLAY;
312 if (len > members.length) len = members.length;
315 len = members.length;
317 for (int i = offset; i < len; i++) {
318 msg += "<tr><td>" + members[i].getMemberType() + "</td>";
319 msg += "<td>" + members[i].getMemberId() + "</td></tr>\r\n";
321 msg += "</table></td><td> </td></tr><tr>\r\n";
322 if ((offset > 0) && !showall) {
323 msg += "<td width=50><form method=POST action=\"" +
324 response.encodeUrl("showresult.jhtml") + "\">\r\n";
325 msg += "<input type=hidden name=operation value=getmembers>";
326 msg += "<input type=hidden name=offset value=\"" + (offset - MAXDISPLAY) + "\">\r\n";
327 msg += "<input type=hidden name=list value=\"" + arg + "\">";
328 msg += "<input type=submit value=\"Previous\"></form></td>\r\n";
330 msg += "<td width=50> </td>";
331 if (!showall && ((offset > 0) || (members.length > len))) {
332 msg += "<td width=50><form method=POST action=\"" +
333 response.encodeUrl("showresult.jhtml") + "\">\r\n";
334 msg += "<input type=hidden name=operation value=getmembers>";
335 msg += "<input type=hidden name=offset value=\"-1\">";
336 msg += "<input type=hidden name=list value=\"" + arg + "\">";
337 msg += "<input type=submit value=\"Show All\"></form></td>\r\n";
339 msg += "<td width=50> </td>";
340 if (members.length > len && !showall) {
341 msg += "<td width=50><form method=POST action=\"" +
342 response.encodeUrl("showresult.jhtml") + "\">\r\n";
343 msg += "<input type=hidden name=operation value=getmembers>";
344 msg += "<input type=hidden name=offset value=\"" + (offset + MAXDISPLAY) + "\">\r\n";
345 msg += "<input type=hidden name=list value=\"" + arg + "\">";
346 msg += "<input type=submit value=\"Next\"></form></td>\r\n";
348 msg += "<td width=50> </td>";
350 msg += "</table>\r\n";
354 void do_showform(Hashtable qv, HttpServletRequest request, HttpServletResponse response) {
355 String server = request.getServerName();
356 if (server.indexOf(".") == -1)
357 server += ".mit.edu"; // MIT Specific kludge!!! XXX
358 String msg = "<form method=post action=\"" + response.encodeUrl("https://" + server + ":445/moira/showresult.jhtml") + "\">";
360 DataOutputStream out = new DataOutputStream(response.getOutputStream());
361 response.setContentType("text/html");
364 } catch (Exception e) {
365 e.printStackTrace(); // Nothing else I can do here
369 void do_showurl(Hashtable qv, HttpServletRequest request, HttpServletResponse response) {
370 HttpSession session = request.getSession(true); // Sigh, have to create the session here if it doesn't already exist.
371 String msg = "<a href=\"" + response.encodeUrl((String)qv.get("url"))
374 DataOutputStream out = new DataOutputStream(response.getOutputStream());
375 response.setContentType("text/html");
378 } catch (Exception e) {
379 e.printStackTrace(); // Nothing else I can do here
383 String do_getlistinput(Hashtable qv, HttpServletRequest request, HttpServletResponse response) {
384 HttpSession session = request.getSession(false);
386 list = (String) qv.get("list");
387 if ((list == null) && (session != null)) list = (String) session.getValue("list");
388 if (list == null) list = "";
389 return("<input name=list value=\"" + list + "\" length=15 size=12 maxlength=40>\r\n");
392 String do_addmember(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError {
394 String list = (String) qv.get("list");
395 if (list == null || list.equals("")) {
396 msg = "<p>Argument is required</p>";
400 String kname = do_authentication(request);
402 HttpSession session = request.getSession(true);
404 MoiraConnect mc = null;
409 li = mc.get_list_info(list);
410 } catch (MoiraException m) {
411 msg += "Error getting list info: " + m.getMessage();
413 CharArrayWriter err = new CharArrayWriter();
414 PrintWriter perr = new PrintWriter(err);
415 m.printStackTrace(perr);
417 msg += err.toString();
422 if (mc != null) mc.disconnect();
424 } catch (Exception e) {
428 String list_description = "";
429 if (li != null) list_description = descript(li.description);
431 msg += "<form method=post action=\"" +
432 response.encodeUrl("showresult.jhtml") + "\">\r\n";
433 msg += " <table border=1 cellpadding=2>\r\n <tr> \r\n <td colspan=2> \r\n <p><b>Add member(s) to list " + list + "<br>\r\n</b>Description: " + list_description + "<br>\r\n (you may enter more than one member of the same type by listing \r\n each member on its own line)</p>\r\n </td>\r\n </tr>\r\n <tr> \r\n <td> \r\n <select name=type>\r\n <option value=\"USER\" selected>user</option>\r\n <option value=\"STRING\">string</option>\r\n <option value=\"LIST\">list</option>\r\n </select>\r\n </td>\r\n <td> \r\n <textarea name=\"member\" cols=\"20\" rows=\"4\"></textarea>\r\n </td>\r\n </tr>\r\n </table>\r\n";
434 msg += "<input type=hidden name=list value=\"" + list + "\">\r\n";
435 msg += "<input type=hidden name=operation value=addfinal>\r\n";
436 msg += "<input type=submit name=submit value=\"Add Member(s)\">\r\n";
437 session.putValue("list", list);
438 session.removeValue("members"); // In case we had them from old list
442 String do_editme(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError {
444 String arg = (String) qv.get("list");
445 if (arg == null || arg.equals("")) {
446 msg = "<p>Argument is required</p>";
450 String kname = do_authentication(request);
452 HttpSession session = request.getSession(true);
454 MoiraConnect mc = null;
455 boolean found = false;
456 boolean sublists = false;
457 Member [] members = null;
461 members = mc.get_members_of_list(arg);
462 if (members != null) {
463 for (int i = 0; i < members.length; i++) {
464 if (members[i].getMemberId().equals(kname)) {
468 if (members[i].getMemberType().equals("LIST")) {
476 } catch (MoiraException m) {
479 msg += m.getMessage();
480 msg += "</b></P>\r\n";
482 CharArrayWriter err = new CharArrayWriter();
483 PrintWriter perr = new PrintWriter(err);
484 m.printStackTrace(perr);
486 msg += err.toString();
489 } catch (Exception e) {
493 if (mc != null) mc.disconnect();
495 msg = "You are " + (found ? "" : "not ") + "a member of the list <b>" + arg + "</b>.<br>\r\n";
496 if (!found && sublists)
497 msg += "Note: You may be a member of a sublist of <b>" + arg + "</b>. You may wish to check the sublists by using the <b>show list members</b> function.<br>\r\n";
498 msg += "<form method=POST action=\"" + response.encodeUrl("showresult.jhtml") + "\">\r\n";
499 msg += "<input type=hidden name=list value=\"" + arg + "\">\r\n";
501 msg += "<input type=hidden name=operation value=delme>\r\n";
503 msg += "<input type=hidden name=operation value=addme>\r\n";
504 msg += "<input name=submit type=submit value=\"" + (found ? "Remove Me" : "Add Me") + "\">\r\n";
506 if (members != null) {
507 session.putValue("list", arg);
508 session.putValue("members", members);
513 String do_addremme(Hashtable qv, HttpServletRequest request, HttpServletResponse response, boolean add) throws AuthenticationError {
514 HttpSession session = request.getSession(false); // Better be one
515 if (session == null) {
516 return("<p>Could not proceed, has it been 30 minutes since you last interaction. If so, back up and try again.</p>");
519 String kname = do_authentication(request);
522 String listname = (String) session.getValue("list");
523 if (listname == null) {
524 return("<p>Could not find list name (shouldn't happen).</p>");
526 MoiraConnect mc = null;
531 mc.delete_member_from_list(listname, "USER", kname);
533 mc.add_member_to_list(listname, "USER", kname);
534 } catch (MoiraException m) {
535 msg = "<p><b>Unable to " + (add? "add" : "remove") + " you " + (add? "to" : "from") + " the " + listname + " list.<br>\r\n";
536 msg += "The error from Moira was: " + m.getMessage() + "</b></p>";
538 CharArrayWriter err = new CharArrayWriter();
539 PrintWriter perr = new PrintWriter(err);
540 m.printStackTrace(perr);
542 msg += err.toString();
547 if (mc != null) mc.disconnect();
548 } catch (Exception e) {
551 if (add) msg = "You have been added to the <b>" + listname + "</b> list.";
552 else msg = "You have been removed from the <b>" + listname + "</b> list.";
556 String do_removemembers(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError {
557 Delmember [] del = null;
559 String arg = (String) qv.get("list");
560 if (arg == null || arg.equals("")) {
561 msg = "<p>Argument is required</p>";
565 String kname = do_authentication(request);
567 HttpSession session = request.getSession(true);
569 MoiraConnect mc = null;
573 Member [] members = mc.get_members_of_list(arg);
574 if (members == null) {
575 return("<P><b>No such list or empty list</b></p>.");
577 del = new Delmember[members.length];
578 for (int i = 0; i < members.length; i++) {
579 del[i] = new Delmember(members[i]);
583 session.putValue("list", arg);
584 session.removeValue("members"); // In case left over from previous call
585 session.putValue("delmembers", del);
586 } catch (MoiraException m) {
589 msg += m.getMessage();
590 msg += "</b></P>\r\n";
592 CharArrayWriter err = new CharArrayWriter();
593 PrintWriter perr = new PrintWriter(err);
594 m.printStackTrace(perr);
596 msg += err.toString();
598 } catch (Exception e) {
602 if (mc != null) mc.disconnect();
604 return (do_remdisplay(qv, request, response, del, 0));
607 String do_remdisplay(Hashtable qv, HttpServletRequest request, HttpServletResponse response, Delmember [] del, int offset) {
608 // Offset = -1 means show everybody
609 boolean showall = false;
614 String msg = "<h2>Select Members to Delete</h2>\r\n";
615 if (((offset > 0) || del.length > MAXDISPLAY) && !showall)
616 msg += "<p><font color=red>Note: Selections are remembered when you select the \"Previous\" and \"Next Buttons\".</font></p>\r\n";
617 msg += "<form method=POST action=\"" +
618 response.encodeUrl("showresult.jhtml") + "\">\r\n";
619 msg += "<table border=0><tr><td></td><td>\r\n";
620 msg += "<table border=1 cellpadding=2>\r\n";
622 if (showall) len = del.length;
623 else len = offset + MAXDISPLAY;
624 if (del.length < len)
626 for (int i = offset; i < len; i++) {
627 msg += "<tr><td><input type=checkbox name=selected value=\" " + i + "\"";
628 if (del[i].marked) msg += " checked";
629 msg += "></td><td>" + del[i].member.getMemberType() + "</td>";
630 msg += "<td>" + del[i].member.getMemberId() + "</td></tr>\r\n";
632 msg += "</table></td>\r\n";
633 msg += "<td><input type=hidden name=operation value=delmembers></td></tr>\r\n";
635 msg += "<td><input type=submit name=dodel value=\"Previous\"></td>";
637 msg += "<td width=50> </td>";
638 if (!showall && (del.length > MAXDISPLAY))
639 msg += "<td><input type=submit name=dodel value=\"Show All\"></td>";
640 else msg += "<td width=50> </td>";
641 if (((offset + MAXDISPLAY) < del.length) && !showall)
642 msg += "<td><input type=submit name=dodel value=\"Next\"></td></tr>\r\n";
643 else msg += "<td width=50> </td></tr>\r\n";
644 msg += "<tr><td></td><td><input type=submit name=dodel value=\"Delete Selected\"></td><td></td></tr></table></form>\r\n";
645 HttpSession session = request.getSession(false);
646 session.putValue("offset", new Integer(offset));
651 String do_delmember(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError {
652 String kname = do_authentication(request);
654 HttpSession session = request.getSession(false); // Better be one
655 if (session == null) {
656 return("<p>Could not proceed, has it been 30 minutes since you last interaction. If so, back up and try again.</p>");
659 Delmember [] del = (Delmember []) session.getValue("delmembers");
661 return("<p>Could not proceed, membership list doesn't exist, this should not happen!</p>");
662 Integer OffsetO = (Integer) session.getValue("offset");
663 if (OffsetO == null) { // Hmmm....
664 OffsetO = new Integer(0);
667 int offset = OffsetO.intValue();
669 String dodel = (String)qv.get("dodel"); // This is the submit button
671 return("<p>Could not proceed, submit button incorrect, shouldn't happen.</p>");
673 // Process the selections on this form
675 int last = offset + MAXDISPLAY;
676 if (last > del.length) last = del.length;
677 for (int i = offset; i < last; i++) // Clear marked bits for displayed
678 del[i].marked = false; // entries
680 String selected = (String)qv.get("selected");
681 if (selected == null) selected = ""; // None selected
683 StreamTokenizer tk = new StreamTokenizer(new StringReader(selected));
686 while (tk.nextToken() != StreamTokenizer.TT_EOF) {
687 if (tk.ttype != StreamTokenizer.TT_NUMBER) continue;
688 int v = (int) tk.nval;
689 del[v].marked = true;
691 } catch (IOException e) {
693 return("<p>Exception while processing...</p>");
696 if (dodel.equals("Next"))
697 return(do_remdisplay(qv, request, response, del, offset + MAXDISPLAY));
698 if (dodel.equals("Previous"))
699 return(do_remdisplay(qv, request, response, del, offset - MAXDISPLAY));
700 if (dodel.equals("Show All"))
701 return(do_remdisplay(qv, request, response, del, -1));
702 if (!dodel.equals("Delete Selected"))
703 return("<p>Cannot proceed, bad submit value, should not happen</p>");
704 // At this point we are going to display a list of who will be
705 // deleted and offer a confirmation.
707 String listname = (String) session.getValue("list");
708 if (listname == null) {
709 return("<p>Could not find list name (shouldn't happen).</p>");
712 // Check to see if anyone will be removed
714 boolean havesome = false;
715 for (int i = 0; i < del.length; i++) {
722 return("No members selected to be removed");
724 // Some will be, so throw up confirmation dialog
726 String msg = "<h2>Please Confirm Deletion of:</h2>\r\n";
727 msg += "<table border=1 cellpadding=2>\r\n";
728 for (int i = 0; i < del.length; i++) {
730 msg += "<tr><td>" + del[i].member.getMemberType() + "</td>";
731 msg += "<td>" + del[i].member.getMemberId() + "</td></tr>\r\n";
734 msg += "</table>\r\n";
735 msg += "<form method=POST action=\"" +
736 response.encodeUrl("showresult.jhtml") + "\">\r\n";
737 msg += "<input type=hidden name=operation value=delconfirm>\r\n";
738 msg += "<input type=submit value=\"Confirm Deletion\">\r\n";
739 msg += "</form>\r\n";
743 String do_delconfirm(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError {
745 String kname = do_authentication(request);
749 HttpSession session = request.getSession(false); // Better be one
750 if (session == null) {
751 return("<p>Could not proceed, has it been 30 minutes since you last interaction. If so, back up and try again.</p>");
754 String listname = (String)session.getValue("list");
756 Delmember [] del = (Delmember []) session.getValue("delmembers");
758 return("<p>Cannot proceed, nothing to delete, shouldn't happen!</p>");
760 Vector problems = new Vector();
761 Vector success = new Vector();
763 MoiraConnect mc = null;
767 for (int i = 0; i < del.length; i++) {
770 mc.delete_member_from_list(listname, del[i].member.getMemberType(), del[i].member.getMemberId());
771 success.addElement(del[i].member);
773 } catch (MoiraException m) {
774 problems.addElement("<tr><td>" + del[i].member.getMemberId() + "</td><td>" + m.getMessage() + "</td></tr>\r\n");
777 } catch (MoiraException m) {
778 msg = "<p><b>" + m.getMessage() + "</b></p>";
780 CharArrayWriter err = new CharArrayWriter();
781 PrintWriter perr = new PrintWriter(err);
782 m.printStackTrace(perr);
784 msg += err.toString();
789 if (mc != null) mc.disconnect();
790 } catch (Exception e) {
795 if (success.size() > 0) {
796 msg += "<h2>Deleted the following:</h2>\r\n";
797 msg += "<table border=1 cellpadding=2>\r\n";
798 for (int i = 0; i < success.size(); i++) {
799 msg += "<tr><td>" + ((Member)success.elementAt(i)).getMemberId() + "</td></tr>\r\n";
801 msg += "</table>\r\n";
803 if (problems.size() > 0) {
804 msg += "<p><h2>There were difficulties removing:</h2>\r\n";
805 msg += "<table border=1 cellpadding=2>\r\n";
806 for (int i = 0; i < problems.size(); i++) {
807 msg += (String)problems.elementAt(i);
809 msg += "</table>\r\n";
815 String do_showlistinfo(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError {
817 String kname = do_authentication(request);
819 String list = (String)qv.get("list");
821 if (list == null || list.equals("")) {
822 return("Hmmm, no list specified");
825 HttpSession session = request.getSession(true);
828 MoiraConnect mc = null;
833 li = mc.get_list_info(list);
834 } catch (MoiraException m) {
835 msg += "Error getting list info: " + m.getMessage();
837 CharArrayWriter err = new CharArrayWriter();
838 PrintWriter perr = new PrintWriter(err);
839 m.printStackTrace(perr);
841 msg += err.toString();
846 if (mc != null) mc.disconnect();
847 } catch (Exception e) {
851 return("Did not find list info.");
853 msg += "<b>List: " + list + "</b><br>\r\n";
854 msg += "Description: " + descript(li.description) + "<br>\r\n";
856 msg += "This list is a mailing list.<br>\r\n";
858 msg += "This list is a Group and its ID number is " + li.gid + ".<br>\r\n";
859 msg += "The Administrator of this list is the " + li.ace_type + ": " + li.ace_name + ".<br>\r\n";
860 msg += "This list is: " + mkflags(li) + ".<br>\r\n";
861 msg += "Last modification by " + li.moduser + " at " + df.format(li.modtime) + " with " + li.modwith + ".<br>\r\n";
865 String do_updatelistinfo(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError {
867 String kname = do_authentication(request);
869 String list = (String)qv.get("list");
871 if (list == null || list.equals("")) {
872 return("Hmmm, no list specified");
875 HttpSession session = request.getSession(true);
878 MoiraConnect mc = null;
883 li = mc.get_list_info(list);
884 } catch (MoiraException m) {
885 msg += "Error getting list info: " + m.getMessage();
887 CharArrayWriter err = new CharArrayWriter();
888 PrintWriter perr = new PrintWriter(err);
889 m.printStackTrace(perr);
891 msg += err.toString();
896 if (mc != null) mc.disconnect();
897 } catch (Exception e) {
901 return("Did not find list info.");
904 session.putValue("listinfo", li); // Save for the confirmation call
905 session.putValue("list", list); // Save for side bar update
906 session.removeValue("members"); // In case left over...
908 msg += "<form method=POST action=\"" +
909 response.encodeUrl("showresult.jhtml") + "\">\r\n";
910 msg += "<input type=hidden name=operation value=updatelistinfoconf>\r\n";
911 msg += "<b>Update characteristics of list " + list + "</b><p>\r\n";
912 msg += "Is this list a maillist? <input type=radio name=maillist value=1 "
913 + (li.maillist ? "checked" : "") + ">Yes <input type=radio name=maillist value=0 " + (li.maillist ? "" : "checked") + "> No<br>\r\n";
914 // Note: We don't update group information here
916 msg += "Is this list a public list? <input type=radio name=public value=1 "
917 + (li.bpublic ? "checked" : "") + ">Yes <input type=radio name=public value=0 " + (li.bpublic ? "" : "checked") + "> No<br>\r\n";
918 msg += "Is this list a hidden list? <input type=radio name=hidden value=1 "
919 + (li.hidden ? "checked" : "") + ">Yes <input type=radio name=hidden value=0 " + (li.hidden ? "" : "checked") + "> No<p>\r\n";
921 msg += "The Administrator for this list is<br>\r\n";
922 msg += "<select name=ace_type><option value=\"USER\"" +
923 (li.ace_type.equals("USER") ? " selected" : "") + ">user</option>" +
924 "<option value=\"LIST\"" + (li.ace_type.equals("LIST") ? " selected" : "") + ">list</option>" +
925 "<option value=\"KERBEROS\"" + (li.ace_type.equals("KERBEROS") ? " selected" : "") + ">kerberos</option></select>";
926 msg += " <input name=ace_name value=\"" + li.ace_name + "\"><br>\r\n";
927 msg += "Description:<br>\r\n";
928 msg += "<textarea name=description cols=60 rows=3>" + li.description + "</textarea><br>\r\n";
929 msg += "<input type=submit value=\"Make Update\"></form>\r\n";
933 String do_updatelistinfoconf(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError {
935 String kname = do_authentication(request);
936 HttpSession session = request.getSession(false); // Better be one
937 if (session == null) {
938 return("<p>Could not proceed, has it been 30 minutes since you last interaction. If so, back up and try again.</p>");
941 ListInfo li = (ListInfo)session.getValue("listinfo");
943 return("<p>Could not proceed, could not find orignial list info, should not happen!</p>");
946 String tmp = (String)qv.get("description");
947 if (tmp != null) li.description = tmp;
948 tmp = (String)qv.get("maillist");
950 if (tmp.equals("1")) li.maillist = true;
951 else li.maillist = false;
953 tmp = (String)qv.get("public");
955 if (tmp.equals("1")) li.bpublic = true;
956 else li.bpublic = false;
958 tmp = (String)qv.get("hidden");
960 if (tmp.equals("1")) li.hidden = true;
961 else li.hidden = false;
963 tmp = (String)qv.get("ace_type");
967 tmp = (String)qv.get("ace_name");
971 MoiraConnect mc = null;
975 mc.update_list_info(li.name, li);
978 } catch (MoiraException e) {
980 if (e.getMessage().startsWith("No such list")) {
981 msg = "<p><b>Error updating " + li.name + ".<br>\r\n";
982 msg += "The list you specified as administrator does not exist.</p>\r\n";
983 } else if(e.getMessage().startsWith("No such user")) {
984 msg = "<p><b>Error updating " + li.name + ".<br>\r\n";
985 msg += "The user you specified as administrator is not known to Moira.</p>\r\n";
987 msg = "<p><b>Error during update of " + li.name + ": " + e.getMessage() + "</b></p>";
989 CharArrayWriter err = new CharArrayWriter();
990 PrintWriter perr = new PrintWriter(err);
991 e.printStackTrace(perr);
993 msg += err.toString();
998 if (mc != null) mc.disconnect();
999 } catch (Exception e) {
1002 String msg = "<b>Update of " + li.name + " succeeded</b><p>\r\n";
1003 qv.put("list", li.name);
1004 msg += do_showlistinfo(qv, request, response);
1008 String do_addfinal(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError {
1009 HttpSession session = request.getSession(false); // Better be one
1010 if (session == null) {
1011 return("<p>Could not proceed, has it been 30 minutes since you last interaction. If so, back up and try again.</p>");
1014 String kname = do_authentication(request);
1016 String listname = (String) session.getValue("list");
1017 if (listname == null) {
1018 return("<p>Unable to find list name! (shouldn't happen).</p>");
1021 String member = (String)qv.get("member");
1022 String type = (String)qv.get("type");
1023 if (member == null || type == null || member.equals("")) {
1024 return("<p>No names selected to be added!</p>");
1026 MoiraConnect mc = null;
1027 StreamTokenizer tk = null;
1028 msg += "<table border=1 cellpadding=2>\r\n";
1029 boolean addheader = false;
1030 Vector warnings = new Vector();
1031 Vector problems = new Vector();
1035 tk = new StreamTokenizer(new StringReader(member));
1036 tk.wordChars('@', '@');
1037 tk.wordChars('0', '9');
1038 tk.wordChars('_', '_');
1039 while (tk.nextToken() != StreamTokenizer.TT_EOF) {
1040 if (tk.ttype != StreamTokenizer.TT_WORD) continue;
1043 // Pre-process user input
1044 String [] user = canonicalize(tk.sval, type);
1046 mc.add_member_to_list(listname, user[1], user[0]);
1048 msg += "<tr><td>Added to list</td></tr>\r\n";
1051 msg += "<tr><td>" + user[1] + "</td><td>" + user[0] + "</td></tr>\r\n";
1052 if (user.length > 2)
1053 warnings.addElement(user[2]);
1054 } catch (MoiraException e) {
1055 String err = "<tr><td>" + tk.sval + "</td><td>" + e.getMessage() + "</td></tr>\r\n";
1056 problems.addElement(err);
1059 if (!addheader) // We didn't seem to be able to add anyone
1060 msg += "<tr><td>No one added!</td></tr>\r\n";
1061 msg += "</table>\r\n";
1064 } catch (MoiraException e) {
1066 msg = "<p><b>Error adding " + tk.sval + ": " + e.getMessage() + "</b></p>";
1068 msg = "<p><b>Error during add: " + e.getMessage() + "</b></p>";
1070 CharArrayWriter err = new CharArrayWriter();
1071 PrintWriter perr = new PrintWriter(err);
1072 e.printStackTrace(perr);
1074 msg += err.toString();
1077 } catch (IOException e) {
1078 e.printStackTrace(); // Shouldn't happen
1081 if (mc != null) mc.disconnect();
1082 } catch (Exception e) {
1085 if (problems.size() != 0) {
1086 msg += "<p>There were difficulties adding the following users:<br>\r\n";
1087 msg += "<table border=1 cellpadding=2>\r\n";
1088 for (int i = 0; i < problems.size(); i++)
1089 msg += problems.elementAt(i);
1090 msg += "</table>\r\n";
1092 if (warnings.size() != 0) {
1093 msg += "<p>The following warnings were generated:<br>\r\n";
1094 msg += "<table border=1 cellpadding=2>\r\n";
1095 for (int i = 0; i < warnings.size(); i++)
1096 msg += "<tr><td>" + warnings.elementAt(i) + "</td></tr>\r\n";
1097 msg += "</table>\r\n";
1102 String getfile(String operation) {
1103 ResourceBundle bd = null;
1105 bd = ResourceBundle.getBundle("mit.moira.FileParts");
1106 } catch (java.util.MissingResourceException e) {
1107 return("Cannot find FileParts.properties");
1109 if (bd == null) return("Cannot find FileParts.properties!");
1110 String filename = null;
1112 filename = bd.getString(operation);
1113 } catch (java.util.MissingResourceException e) {
1114 return("Cannot find file for operation: " + operation);
1116 if (filename == null) {
1117 return("Cannot find file for operation: " + operation);
1119 File file = new File(filename);
1120 if (!file.isFile()) return("Cannot file file: " + filename);
1121 long filemodtime = file.lastModified();
1122 Long cachemodtime = (Long) FileTimes.get(filename);
1123 if (cachemodtime == null || filemodtime > cachemodtime.longValue()) {
1124 // Need to fetch the file into the cache
1125 byte [] buffer = null;
1127 BufferedInputStream input = new BufferedInputStream(new FileInputStream(filename));
1128 buffer = new byte[input.available()];
1131 } catch (FileNotFoundException f) {
1132 // Should never happen given check above
1133 } catch (IOException e) {
1134 return("IO Error Reading: " + filename);
1136 String data = new String(buffer);
1137 data += "\r\n<!-- FileName: " + filename + "-->\r\n";
1138 FileTimes.put(filename, new Long(filemodtime));
1139 FileParts.put(filename, data);
1142 return ((String)FileParts.get(filename));
1146 String mkflags(ListInfo li) {
1160 retval = "private and " + retval;
1164 retval = "private, " + retval;
1174 retval = "active and " + retval;
1178 retval = "active, " + retval;
1185 * pre-process user input. Mostly this catches cases where the
1186 * incorrect type is used to add someone to a list.
1188 * @param user String or Userid being proposed for an add
1189 * @param type Either LIST,STRING or USER
1190 * @return an array of elements. The first is the user portion followed by the type and an optional warning message.
1193 private String [] canonicalize(String user, String type) throws MoiraException {
1195 String [] retval = null;
1196 if (type.equals("STRING")) {
1197 i = user.indexOf('@');
1199 String host = user.substring(i + 1);
1200 if (host.equalsIgnoreCase("mit.edu")) {
1201 retval = new String[3];
1202 retval[0] = user.substring(0, i);
1204 retval[2] = "Converted " + user + " to userid " + retval[0];
1208 retval = new String[2];
1210 retval[1] = "STRING";
1212 } else { // No @ sign
1213 throw new MoiraException("STRING (mailing list entries) must have an \'@\' in them!");
1215 } else if (type.equals("USER")) {
1216 i = user.indexOf('@');
1218 String host = user.substring(i + 1);
1219 if (host.equalsIgnoreCase("mit.edu")) {
1220 retval = new String[3];
1221 retval[0] = user.substring(0, i);
1223 retval[2] = "Converted " + user + " to userid " + retval[0];
1226 throw new MoiraException("USER types must not have \'@\'s in them!");
1228 retval = new String[2];
1232 } else if (type.equals("LIST")) {
1233 i = user.indexOf('@');
1234 if (i == -1) { // No '@' sign, just process normally
1235 retval = new String[2];
1240 String host = user.substring(i + 1);
1241 if (host.equalsIgnoreCase("mit.edu")) { // trim mit.edu
1242 retval = new String[3];
1243 retval[0] = user.substring(0, i);
1245 retval[2] = "Converted " + user + " to list named " + retval[0];
1248 throw new MoiraException("LIST types may not contain \'@\'s in them!");
1250 } else { // Just pass through everything else for now
1251 retval = new String[2];
1259 * Remove <SCRIPT> tags from input String
1261 * @param input String to check out
1262 * @return String with <SCRIPT> tag removed
1264 private String descript(String input) {
1265 String lc = input.toLowerCase();
1266 int i = lc.indexOf("<scri");
1267 int j = lc.lastIndexOf("</scri");
1268 int len = input.length();
1269 if (i == -1) return (input); // Nothing to do.
1270 else if (j == -1) { // No closing script tag
1271 return (input.substring(0, i));
1273 return (input.substring(0, i) + input.substring(j));
1278 * Shutdown the servlet
1281 public void destroy() {
1288 * Connect to the Moira Server. Special case the error KE_RD_AP_BADD.
1289 * This error occurs if the tickets we have contain the wrong IP address.
1290 * This can happen if we are on a multi-homed system. If this happens,
1291 * get new tickets and try again. If we exceed the loop count, throw
1292 * an exception (sigh).
1294 * @return A Moira Connection Object
1295 * @exception MoiraException on any error
1297 protected MoiraConnect connect() throws MoiraException {
1298 MoiraConnect retval = null;
1300 while (count++ < 10) { // Got to stop at some point!
1301 retval = new MoiraConnect(MOIRA_SERVER, LOCK);
1305 return (retval); // No exception, return. yeah!
1306 } catch (MoiraException m) {
1307 if ((m.getCode() != KE_RD_AP_BADD) || (count > 8)) {
1308 if (retval != null) {
1310 retval.disconnect();
1311 } catch (Exception e) {
1314 throw m; // Re-throw if not the error we expect or we are looping
1317 if (retval != null) {
1319 retval.disconnect();
1320 } catch (Exception e) {
1324 System.err.println("MoiraServlet: Forced Renewal...");
1325 kt.renew(); // Renew tickets
1333 boolean marked = false;
1334 Member member = null;
1336 Delmember(Member m) {
andersk / moira.git / blob