ListenerAccess.pm: editor defined audio shares
editors can share broadcast records for 7 days.
This commit is contained in:
Milan
@@ -14,26 +14,28 @@ use Apache2::Const -compile => qw(FORBIDDEN OK);
|
|||||||
sub handler {
|
sub handler {
|
||||||
my $r = shift;
|
my $r = shift;
|
||||||
|
|
||||||
|
my $DAYS = 24 * 60 * 60;
|
||||||
|
my $OK = Apache2::Const::OK;
|
||||||
|
my $FORBIDDEN = Apache2::Const::FORBIDDEN;
|
||||||
|
|
||||||
my $path = $ENV{LISTENER_DIR} . File::Basename::basename( $r->uri() );
|
my $path = $ENV{LISTENER_DIR} . File::Basename::basename( $r->uri() );
|
||||||
my $file = readlink $path;
|
my $file = readlink $path;
|
||||||
unless ($file) {
|
|
||||||
print STDERR "cannot read link for $path\n";
|
# granted access by temporary symlinks only
|
||||||
return Apache2::Const::FORBIDDEN;
|
return $FORBIDDEN unless ($file);
|
||||||
|
|
||||||
|
# use link age for authorized downloads
|
||||||
|
if (File::Basename::basename($path) =~ /^shared\-/) {
|
||||||
|
my $age = time() - (lstat($path))[9];
|
||||||
|
return ( $age > 7 * $DAYS ) ? $FORBIDDEN : $OK;
|
||||||
}
|
}
|
||||||
|
|
||||||
$file = File::Basename::basename($file);
|
# use age from file name for public access
|
||||||
unless ( $file =~ /(\d\d\d\d)\-(\d\d)\-(\d\d) (\d\d)_(\d\d)/ ) {
|
return $FORBIDDEN unless
|
||||||
printf STDERR "access: cannot find datetime pattern in file:'%s'\n", $file;
|
File::Basename::basename($file) =~ /(\d\d\d\d)\-(\d\d)\-(\d\d) (\d\d)_(\d\d)/;
|
||||||
return Apache2::Const::FORBIDDEN;
|
|
||||||
}
|
my $age = time() - Time::Local::timelocal( 0, $5, $4, $3, $2 - 1, $1 );
|
||||||
|
return ( $age > 7 * $DAYS ) ? $FORBIDDEN : $OK;
|
||||||
my $start_since = time() - Time::Local::timelocal( 0, $5, $4, $3, $2 - 1, $1 );
|
|
||||||
$start_since /= 24 * 60 * 60;
|
|
||||||
if ( $start_since > 7 ) {
|
|
||||||
printf STDERR "access: file is not availabe anymore:'%s'\n", $file;
|
|
||||||
return Apache2::Const::FORBIDDEN;
|
|
||||||
}
|
|
||||||
return Apache2::Const::OK;
|
|
||||||
}
|
}
|
||||||
1;
|
1;
|
||||||
|
|
||||||
@@ -41,10 +43,12 @@ __END__
|
|||||||
|
|
||||||
# limit access up to 7 days after datetime given by filename.
|
# limit access up to 7 days after datetime given by filename.
|
||||||
# The filename links to a file starting with "yyyy-mm-dd hh_mm" in file name.
|
# The filename links to a file starting with "yyyy-mm-dd hh_mm" in file name.
|
||||||
|
#
|
||||||
|
# Access to links starting with "shared-" are allowed up to 7 days after creation.
|
||||||
#
|
#
|
||||||
# <Directory ${archive_dir}/${domain}>
|
# <Directory ${archive_dir}/${domain}>
|
||||||
# PerlSetEnv PERL5LIB ${perl_lib}/calcms
|
# PerlSetEnv PERL5LIB ${perl_lib}/calcms
|
||||||
# PerlSetEnv LISTENER_DIR ${archive_dir}/${domain}/
|
# PerlSetEnv LISTENER_DIR ${archive_dir}/${domain}/
|
||||||
# PerlAccessHandler ListenerAccess
|
# PerlAccessHandler ListenerAccess
|
||||||
# </Directory>
|
# </Directory>
|
||||||
#
|
#
|
||||||
|
|||||||
@@ -9,6 +9,7 @@ use Data::Dumper;
|
|||||||
$Data::Dumper::Sortkeys = 1;
|
$Data::Dumper::Sortkeys = 1;
|
||||||
use MIME::Base64();
|
use MIME::Base64();
|
||||||
use Encode::Locale();
|
use Encode::Locale();
|
||||||
|
use File::Basename qw(basename);
|
||||||
|
|
||||||
use params();
|
use params();
|
||||||
use config();
|
use config();
|
||||||
@@ -67,8 +68,9 @@ $request = uac::prepare_request( $request, $user_presets );
|
|||||||
|
|
||||||
$params = $request->{params}->{checked};
|
$params = $request->{params}->{checked};
|
||||||
|
|
||||||
#show header
|
my $show_header = ! (params::isJson() or $params->{action} eq 'download_audio');
|
||||||
unless ( params::isJson() ) {
|
|
||||||
|
if ( $show_header ) {
|
||||||
my $headerParams = uac::set_template_permissions( $request->{permissions}, $params );
|
my $headerParams = uac::set_template_permissions( $request->{permissions}, $params );
|
||||||
$headerParams->{loc} = localization::get( $config, { user => $user, file => 'menu' } );
|
$headerParams->{loc} = localization::get( $config, { user => $user, file => 'menu' } );
|
||||||
template::process( $config, 'print', template::check( $config, 'default.html' ),
|
template::process( $config, 'print', template::check( $config, 'default.html' ),
|
||||||
@@ -80,7 +82,7 @@ print q{
|
|||||||
<script src="js/datetime.js" type="text/javascript"></script>
|
<script src="js/datetime.js" type="text/javascript"></script>
|
||||||
<script src="js/event.js" type="text/javascript"></script>
|
<script src="js/event.js" type="text/javascript"></script>
|
||||||
<link rel="stylesheet" href="css/event.css" type="text/css" />
|
<link rel="stylesheet" href="css/event.css" type="text/css" />
|
||||||
} unless (params::isJson);
|
} if $show_header;
|
||||||
|
|
||||||
if ( defined $params->{action} ) {
|
if ( defined $params->{action} ) {
|
||||||
if ( ( $params->{action} eq 'show_new_event' )
|
if ( ( $params->{action} eq 'show_new_event' )
|
||||||
@@ -106,6 +108,10 @@ if ( defined $params->{action} ) {
|
|||||||
if ( $params->{action} eq 'delete' ) { delete_event( $config, $request ) }
|
if ( $params->{action} eq 'delete' ) { delete_event( $config, $request ) }
|
||||||
if ( $params->{action} eq 'save' ) { save_event( $config, $request ) }
|
if ( $params->{action} eq 'save' ) { save_event( $config, $request ) }
|
||||||
if ( $params->{action} eq 'download' ) { download( $config, $request ) }
|
if ( $params->{action} eq 'download' ) { download( $config, $request ) }
|
||||||
|
if ( $params->{action} eq 'download_audio' ) {
|
||||||
|
download_audio( $config, $request );
|
||||||
|
return;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
$config->{access}->{write} = 0;
|
$config->{access}->{write} = 0;
|
||||||
show_event( $config, $request );
|
show_event( $config, $request );
|
||||||
@@ -710,11 +716,9 @@ sub create_event {
|
|||||||
my $event = $request->{params}->{checked};
|
my $event = $request->{params}->{checked};
|
||||||
my $action = $params->{action};
|
my $action = $params->{action};
|
||||||
return eventOps::createEvent( $request, $event, $action );
|
return eventOps::createEvent( $request, $event, $action );
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
#TODO: replace permission check with download
|
sub get_download_event{
|
||||||
sub download {
|
|
||||||
my $config = shift;
|
my $config = shift;
|
||||||
my $request = shift;
|
my $request = shift;
|
||||||
|
|
||||||
@@ -758,6 +762,15 @@ sub download {
|
|||||||
$request2->{params}->{checked}->{published} = 'all';
|
$request2->{params}->{checked}->{published} = 'all';
|
||||||
my $events = events::get( $config, $request2 );
|
my $events = events::get( $config, $request2 );
|
||||||
my $event = $events->[0];
|
my $event = $events->[0];
|
||||||
|
return $event;
|
||||||
|
}
|
||||||
|
|
||||||
|
#TODO: replace permission check with download
|
||||||
|
sub download {
|
||||||
|
my $config = shift;
|
||||||
|
my $request = shift;
|
||||||
|
|
||||||
|
my $event = get_download_event($config, $request);
|
||||||
my $datetime = $event->{start_datetime};
|
my $datetime = $event->{start_datetime};
|
||||||
if ( $datetime =~ /(\d\d\d\d\-\d\d\-\d\d)[ T](\d\d)\:(\d\d)/ ) {
|
if ( $datetime =~ /(\d\d\d\d\-\d\d\-\d\d)[ T](\d\d)\:(\d\d)/ ) {
|
||||||
$datetime = $1 . '\ ' . $2 . '_' . $3;
|
$datetime = $1 . '\ ' . $2 . '_' . $3;
|
||||||
@@ -777,6 +790,7 @@ sub download {
|
|||||||
my $key = int( rand(99999999999999999) );
|
my $key = int( rand(99999999999999999) );
|
||||||
$key = MIME::Base64::encode_base64($key);
|
$key = MIME::Base64::encode_base64($key);
|
||||||
$key =~ s/[^a-zA-Z0-9]//g;
|
$key =~ s/[^a-zA-Z0-9]//g;
|
||||||
|
$key = 'shared-'.$key;
|
||||||
|
|
||||||
#decode filename
|
#decode filename
|
||||||
$file = Encode::decode( "UTF-8", $file );
|
$file = Encode::decode( "UTF-8", $file );
|
||||||
@@ -799,6 +813,36 @@ sub download {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
sub download_audio {
|
||||||
|
my $config = shift;
|
||||||
|
my $request = shift;
|
||||||
|
|
||||||
|
my $event = get_download_event($config, $request);
|
||||||
|
my $datetime = $event->{start_datetime};
|
||||||
|
if ( $datetime =~ /(\d\d\d\d\-\d\d\-\d\d)[ T](\d\d)\:(\d\d)/ ) {
|
||||||
|
$datetime = $1 . '\ ' . $2 . '_' . $3;
|
||||||
|
} else {
|
||||||
|
print STDERR "event.cgi::download no valid datetime found $datetime\n";
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
my $archive_dir = $config->{locations}->{local_archive_dir};
|
||||||
|
print STDERR "archive_dir: " . $archive_dir . "\n";
|
||||||
|
print STDERR "event.cgi::download look for : $archive_dir/$datetime*.mp3\n";
|
||||||
|
my @files = glob( $archive_dir . '/' . $datetime . '*.mp3' );
|
||||||
|
if ( @files > 0 ) {
|
||||||
|
my $file = $files[0];
|
||||||
|
$file = Encode::decode( "UTF-8", $file );
|
||||||
|
print qq{Content-Disposition: attachment; filename="}.basename($file).qq{"\n};
|
||||||
|
print qq{Content-Type: audio/mpeg\n\n};
|
||||||
|
binmode STDOUT;
|
||||||
|
open my $fh, '<:raw', $file;
|
||||||
|
while (<$fh>){
|
||||||
|
print $_;
|
||||||
|
}
|
||||||
|
close $fh;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
sub check_params {
|
sub check_params {
|
||||||
my $config = shift;
|
my $config = shift;
|
||||||
my $params = shift;
|
my $params = shift;
|
||||||
@@ -849,7 +893,8 @@ sub check_params {
|
|||||||
}
|
}
|
||||||
|
|
||||||
$checked->{action} = entry::element_of( $params->{action},
|
$checked->{action} = entry::element_of( $params->{action},
|
||||||
[ 'save', 'delete', 'download', 'show_new_event', 'show_new_event_from_schedule',
|
[ 'save', 'delete', 'download', 'download_audio', 'show_new_event',
|
||||||
|
'show_new_event_from_schedule',
|
||||||
'create_event', 'create_event_from_schedule', 'get_json'
|
'create_event', 'create_event_from_schedule', 'get_json'
|
||||||
]
|
]
|
||||||
)//'';
|
)//'';
|
||||||
|
|||||||
Reference in New Issue
Block a user