package mit.moira; import javax.servlet.*; import javax.servlet.http.*; import java.io.*; import java.util.*; import java.sql.SQLException; import java.sql.ResultSet; import java.sql.ResultSetMetaData; import java.text.SimpleDateFormat; import java.util.Date; import java.util.ResourceBundle; public class MoiraServlet extends HttpServlet { static final String MOIRA_SERVER = "moira.mit.edu"; Kticket kt = new Kticket("jis5", "foobar", "ATHENA.MIT.EDU"); boolean ktinit = false; private static final int MAXDISPLAY = 10; Hashtable FileParts = new Hashtable(); Hashtable FileTimes = new Hashtable(); static final SimpleDateFormat df = new SimpleDateFormat("dd-MMM-yyyy HH:mm:ss"); static final int KE_RD_AP_BADD = 39525414; // This is a kludge public synchronized void service(HttpServletRequest request, HttpServletResponse response) { System.err.println("MoiraSerlvet: Service"); System.err.println("---------------------"); if (!ktinit) { // Once only initialization ktinit = true; Thread t = new Thread(kt); t.start(); } String msg = null; Hashtable qv = new Hashtable(); String modifier = ""; try { // Get Parameters Enumeration e = request.getParameterNames(); while (e.hasMoreElements()) { String pname = (String)e.nextElement(); String [] pvaluearray = request.getParameterValues(pname); String pvalue = ""; if (pvaluearray.length > 1) { for (int i = 0; i < pvaluearray.length; i++) pvalue += pvaluearray[i]; } else pvalue = pvaluearray[0]; System.err.println(pname + " = " + pvalue); qv.put(pname, pvalue); } modifier = (String)qv.get("modifier"); if (modifier == null) modifier = ""; if (modifier.equals("showform")) { do_showform(qv, request, response); return; } else if (modifier.equals("showurl")) { do_showurl(qv, request, response); return; } else if (modifier.equals("makesession")) { request.getSession(true); return; } String operation = (String) qv.get("operation"); if (operation == null) { try { DataOutputStream out = new DataOutputStream(response.getOutputStream()); response.setContentType("text/html"); if (modifier.equals("getfile")) out.writeBytes("You need to select an operation from the list on the left!"); else if (modifier.equals("displayonly")) out.writeBytes("error"); else if (modifier.equals("getlistname")) { out.writeBytes(do_getlistinput(qv, request, response)); } out.flush(); } catch (Exception ee) { ee.printStackTrace(); } return; } if (operation.charAt(operation.length()-2) == '\r') // Trim newline stuff operation = operation.substring(0, operation.length() - 2); if (modifier.equals("getlistname")) { msg = do_getlistinput(qv, request, response); if (msg.equals("")) return; } else if (modifier.equals("getfile")) { msg = getfile(operation); } else if (operation.equals("getmembers")) { if (modifier.equals("displayonly")) { msg = "show members"; } else msg = do_getmembers(qv, request, response); if (msg.equals("")) return; } else if (operation.equals("addfinal")) { if (modifier.equals("displayonly")) { msg = "added members"; } else msg = do_addfinal(qv, request, response); if (msg.equals("")) return; } else if (operation.equals("editme")) { if (modifier.equals("displayonly")) { msg = "add or remove yourself from a list"; } else msg = do_editme(qv, request, response); if (msg.equals("")) return; } else if (operation.equals("removemembers")) { if (modifier.equals("displayonly")) { msg = "edit/remove members"; } else msg = do_removemembers(qv, request, response); if (msg.equals("")) return; } else if (operation.equals("delmembers")) { if (modifier.equals("displayonly")) { msg = "edit/remove members"; } else msg = do_delmember(qv, request, response); if (msg.equals("")) return; } else if (operation.equals("delconfirm")) { if (modifier.equals("displayonly")) { msg = "member deleted"; } else msg = do_delconfirm(qv, request, response); if (msg.equals("")) return; } else if (operation.equals("addmember")) { if (modifier.equals("displayonly")) { msg = "add member(s)"; } else msg = do_addmember(qv, request, response); if (msg.equals("")) return; } else if (operation.equals("addme")) { if (modifier.equals("displayonly")) { msg = "added to list"; } else msg = do_addremme(qv, request, response, true); } else if (operation.equals("delme")) { if (modifier.equals("displayonly")) { msg = "removed from list"; } else msg = do_addremme(qv, request, response, false); } else if (operation.equals("displaylistinfo")) { if (modifier.equals("displayonly")) { msg = "display list characteristics"; } else msg = do_showlistinfo(qv, request, response); } else if (operation.equals("updatelistinfo")) { if (modifier.equals("displayonly")) { msg = "update list characteristics"; } else msg = do_updatelistinfo(qv, request, response); } else if (operation.equals("updatelistinfoconf")) { if (modifier.equals("displayonly")) { msg = "update list characteristics"; } else msg = do_updatelistinfoconf(qv, request, response); } else { sendError("Unimplemented Operation: " + (String)qv.get("operation"), response, true); return; } } catch (AuthenticationError e) { msg = "" + e.getMessage() + "

\r\n"; } catch (Exception e) { msg += "

Error during Processing

\r\n"; msg += "Please try again later\r\n"; e.printStackTrace(); } try { DataOutputStream out = new DataOutputStream(response.getOutputStream()); response.setContentType("text/html"); if (!MOIRA_SERVER.equals("moira.mit.edu") && modifier.equals("")) out.writeBytes("Moira Server: " + MOIRA_SERVER + "
\r\n"); out.writeBytes(msg); out.flush(); } catch (Exception e) { e.printStackTrace(); } } void sendError(String message, HttpServletResponse response, boolean showheader) { String msg; if (showheader) { msg = "Error\r\n"; msg += "

Error

\r\n"; msg += message; msg += "

\r\n"; } else msg = "" + message + ""; try { DataOutputStream out = new DataOutputStream(response.getOutputStream()); response.setContentType("text/html"); out.writeBytes(msg); out.flush(); } catch (Exception e) { e.printStackTrace(); } } /** * Authenticate the user. * * @param request The HttpServlet request object * @return String value of the Kerberos username who owns this request * @exception AuthenticationError if authentication cannot be performed */ String do_authentication(HttpServletRequest request) throws AuthenticationError { // Attempt to obtain authenticated username from the session HttpSession session = request.getSession(true); String kname = (String) session.getValue("kname"); if (kname != null) return (kname); String client_email = (String)request.getAttribute("org.apache.jserv.SSL_CLIENT_EMAIL"); if (client_email == null) throw new AuthenticationError("You must use a Certificate to access this service."); // Need to remove the @MIT.EDU portion int i = client_email.indexOf('@'); if (i == -1) throw new AuthenticationError("Malformed or non-MIT Certificate, shouldn't happen!"); if (!client_email.substring(i+1).equals("MIT.EDU")) throw new AuthenticationError("Certificate Email Address must end in MIT.EDU"); kname = client_email.substring(0, i); session.putValue("kname", kname); return (kname); } String do_getmembers(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError { String kname = do_authentication(request); String msg = null; String arg = (String) qv.get("list"); if (arg == null || arg.equals("")) { msg = "

Argument is required

"; return (msg); } // Obtain the list of members stashed in the session object // If this is the first call to do_getmembers for this list, // we won't have one in which case we will obtain it from Moira // below String list = ""; Member [] members = null; HttpSession session = request.getSession(true); if (session != null) { list = (String)session.getValue("list"); if (list == null) list = ""; members = (Member []) session.getValue("members"); } if (!list.equals(arg)) // Different list from argument, new session members = null; // Force obtaining members from Moira // Determine offset of list to view int offset = 0; String tmp = (String)qv.get("offset"); if (tmp != null) offset = Integer.parseInt(tmp); boolean showall = false; if (offset < 0) showall = true; if (members == null) { Moira mc = null; try { mc = connect(); mc.proxy(kname); members = mc.get_members_of_list(arg); mc.done(); // Done will disconnect mc = null; if (members != null) session.putValue("members", members); session.putValue("list", arg); } catch (MoiraException m) { try { msg = "

\r\n"; msg += m.getMessage(); msg += "

\r\n"; msg += "\r\n"; return (msg); } catch (Exception e) { e.printStackTrace(); } } finally { if (mc != null) mc.done(); } } // Do the actual display of the members if (members == null) return("No members for list " + arg + ""); msg = "\r\n"; msg += "\r\n"; if ((offset > 0) && !showall) { msg += "\r\n"; } else msg += ""; if (!showall && ((offset > 0) || (members.length > len))) { msg += "\r\n"; } else msg += ""; if (members.length > len && !showall) { msg += "\r\n"; } else msg += ""; msg += "\r\n"; msg += "
 \r\n"; msg += "\r\n"; int len = offset + MAXDISPLAY; if (len > members.length) len = members.length; if (showall) { offset = 0; len = members.length; } for (int i = offset; i < len; i++) { msg += ""; msg += "\r\n"; } msg += "
Members of list: " + arg + "
" + members[i].getMemberType() + "" + quote(members[i].getMemberId()) + "
 
\r\n"; msg += ""; msg += "\r\n"; msg += ""; msg += "
     
\r\n"; msg += ""; msg += ""; msg += ""; msg += "
 
\r\n"; msg += ""; msg += "\r\n"; msg += ""; msg += "
     
\r\n"; return (msg); } void do_showform(Hashtable qv, HttpServletRequest request, HttpServletResponse response) { String server = request.getServerName(); if (server.indexOf(".") == -1) server += ".mit.edu"; // MIT Specific kludge!!! XXX String msg = "
"; try { DataOutputStream out = new DataOutputStream(response.getOutputStream()); response.setContentType("text/html"); out.writeBytes(msg); out.flush(); } catch (Exception e) { e.printStackTrace(); // Nothing else I can do here } } void do_showurl(Hashtable qv, HttpServletRequest request, HttpServletResponse response) { HttpSession session = request.getSession(true); // Sigh, have to create the session here if it doesn't already exist. String msg = ""; try { DataOutputStream out = new DataOutputStream(response.getOutputStream()); response.setContentType("text/html"); out.writeBytes(msg); out.flush(); } catch (Exception e) { e.printStackTrace(); // Nothing else I can do here } } String do_getlistinput(Hashtable qv, HttpServletRequest request, HttpServletResponse response) { HttpSession session = request.getSession(false); String list = null; list = (String) qv.get("list"); if ((list == null) && (session != null)) list = (String) session.getValue("list"); if (list == null) list = ""; return("\r\n"); } String do_addmember(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError { String msg = ""; String list = (String) qv.get("list"); if (list == null || list.equals("")) { msg = "

Argument is required

"; return (msg); } String kname = do_authentication(request); HttpSession session = request.getSession(true); Moira mc = null; ListInfo li = null; try { mc = connect(); mc.proxy(kname); li = mc.get_list_info(list); } catch (MoiraException m) { msg += "Error getting list info: " + m.getMessage(); msg += "\r\n"; return (msg); } finally { if (mc != null) mc.done(); } String list_description = ""; if (li != null) list_description = descript(li.description); msg += "\r\n"; msg += " \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n
\r\n

Add member(s) to list " + list + "
\r\nDescription: " + list_description + "
\r\n (you may enter more than one member of the same type by listing \r\n each member on its own line)

\r\n
\r\n \r\n \r\n \r\n
\r\n"; msg += "\r\n"; msg += "\r\n"; msg += "\r\n"; session.putValue("list", list); session.removeValue("members"); // In case we had them from old list return (msg); } String do_editme(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError { String msg = null; String arg = (String) qv.get("list"); if (arg == null || arg.equals("")) { msg = "

Argument is required

"; return (msg); } String kname = do_authentication(request); HttpSession session = request.getSession(true); Moira mc = null; boolean found = false; boolean sublists = false; Member [] members = null; try { mc = connect(); mc.proxy(kname); members = mc.get_members_of_list(arg); if (members != null) { for (int i = 0; i < members.length; i++) { if (members[i].getMemberId().equals(kname)) { found = true; if (sublists) break; } if (members[i].getMemberType().equals("LIST")) { sublists = true; if (found) break; } } } } catch (MoiraException m) { try { msg = "

\r\n"; msg += m.getMessage(); msg += "

\r\n"; msg += "\r\n"; return (msg); } catch (Exception e) { e.printStackTrace(); } } finally { if (mc != null) mc.done(); } msg = "You are " + (found ? "" : "not ") + "a member of the list " + arg + ".
\r\n"; if (!found && sublists) msg += "Note: You may be a member of a sublist of " + arg + ". You may wish to check the sublists by using the show list members function.
\r\n"; msg += "\r\n"; msg += "\r\n"; if (found) msg += "\r\n"; else msg += "\r\n"; msg += "\r\n"; msg += ""; if (members != null) { session.putValue("list", arg); session.putValue("members", members); } return (msg); } String do_addremme(Hashtable qv, HttpServletRequest request, HttpServletResponse response, boolean add) throws AuthenticationError { HttpSession session = request.getSession(false); // Better be one if (session == null) { return("

Could not proceed, has it been 30 minutes since you last interaction. If so, back up and try again.

"); } String kname = do_authentication(request); String msg = null; String listname = (String) session.getValue("list"); if (listname == null) { return("

Could not find list name (shouldn't happen).

"); } Moira mc = null; try { mc = connect(); mc.proxy(kname); if (!add) mc.delete_member_from_list(listname, "USER", kname); else mc.add_member_to_list(listname, "USER", kname); } catch (MoiraException m) { msg = "

Unable to " + (add? "add" : "remove") + " you " + (add? "to" : "from") + " the " + listname + " list.
\r\n"; msg += "The error from Moira was: " + m.getMessage() + "

"; msg += "\r\n"; return (msg); } finally { if (mc != null) mc.done(); } if (add) msg = "You have been added to the " + listname + " list."; else msg = "You have been removed from the " + listname + " list."; return (msg); } String do_removemembers(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError { Delmember [] del = null; String msg = null; String arg = (String) qv.get("list"); if (arg == null || arg.equals("")) { msg = "

Argument is required

"; return (msg); } String kname = do_authentication(request); HttpSession session = request.getSession(true); Moira mc = null; try { mc = connect(); mc.proxy(kname); Member [] members = mc.get_members_of_list(arg); if (members == null) { return("

No such list or empty list

."); } del = new Delmember[members.length]; for (int i = 0; i < members.length; i++) { del[i] = new Delmember(members[i]); } mc.done(); mc = null; session.putValue("list", arg); session.removeValue("members"); // In case left over from previous call session.putValue("delmembers", del); } catch (MoiraException m) { try { msg = "

\r\n"; msg += m.getMessage(); msg += "

\r\n"; msg += "\r\n"; } catch (Exception e) { e.printStackTrace(); } return(msg); } finally { if (mc != null) mc.done(); } return (do_remdisplay(qv, request, response, del, 0)); } String do_remdisplay(Hashtable qv, HttpServletRequest request, HttpServletResponse response, Delmember [] del, int offset) { // Offset = -1 means show everybody boolean showall = false; if (offset < 0) { showall = true; offset = 0; } String msg = "

Select Members to Delete

\r\n"; if (((offset > 0) || del.length > MAXDISPLAY) && !showall) msg += "

Note: Selections are remembered when you select the \"Previous\" and \"Next Buttons\".

\r\n"; msg += "
\r\n"; msg += "\r\n"; msg += "\r\n"; if (offset > 0) msg += ""; else msg += ""; if (!showall && (del.length > MAXDISPLAY)) msg += ""; else msg += ""; if (((offset + MAXDISPLAY) < del.length) && !showall) msg += "\r\n"; else msg += "\r\n"; msg += "
\r\n"; msg += "\r\n"; int len; if (showall) len = del.length; else len = offset + MAXDISPLAY; if (del.length < len) len = del.length; for (int i = offset; i < len; i++) { msg += "\r\n"; } msg += "
"; msg += "" + quote(del[i].member.getMemberId()) + "
          
     
\r\n"; HttpSession session = request.getSession(false); session.putValue("offset", new Integer(offset)); return (msg); } String do_delmember(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError { String kname = do_authentication(request); HttpSession session = request.getSession(false); // Better be one if (session == null) { return("

Could not proceed, has it been 30 minutes since you last interaction. If so, back up and try again.

"); } Delmember [] del = (Delmember []) session.getValue("delmembers"); if (del == null) return("

Could not proceed, membership list doesn't exist, this should not happen!

"); Integer OffsetO = (Integer) session.getValue("offset"); if (OffsetO == null) { // Hmmm.... OffsetO = new Integer(0); } int offset = OffsetO.intValue(); String dodel = (String)qv.get("dodel"); // This is the submit button if (dodel == null) return("

Could not proceed, submit button incorrect, shouldn't happen.

"); // Process the selections on this form int last = offset + MAXDISPLAY; if (last > del.length) last = del.length; for (int i = offset; i < last; i++) // Clear marked bits for displayed del[i].marked = false; // entries String selected = (String)qv.get("selected"); if (selected == null) selected = ""; // None selected StreamTokenizer tk = new StreamTokenizer(new StringReader(selected)); try { tk.parseNumbers(); while (tk.nextToken() != StreamTokenizer.TT_EOF) { if (tk.ttype != StreamTokenizer.TT_NUMBER) continue; int v = (int) tk.nval; del[v].marked = true; } } catch (IOException e) { e.printStackTrace(); return("

Exception while processing...

"); } if (dodel.equals("Next")) return(do_remdisplay(qv, request, response, del, offset + MAXDISPLAY)); if (dodel.equals("Previous")) return(do_remdisplay(qv, request, response, del, offset - MAXDISPLAY)); if (dodel.equals("Show All")) return(do_remdisplay(qv, request, response, del, -1)); if (!dodel.equals("Delete Selected")) return("

Cannot proceed, bad submit value, should not happen

"); // At this point we are going to display a list of who will be // deleted and offer a confirmation. String listname = (String) session.getValue("list"); if (listname == null) { return("

Could not find list name (shouldn't happen).

"); } // Check to see if anyone will be removed boolean havesome = false; for (int i = 0; i < del.length; i++) { if (del[i].marked) { havesome = true; break; } } if (!havesome) return("No members selected to be removed"); // Some will be, so throw up confirmation dialog String msg = "

Please Confirm Deletion of:

\r\n"; msg += "\r\n"; for (int i = 0; i < del.length; i++) { if (del[i].marked) { msg += ""; msg += "\r\n"; } } msg += "
" + del[i].member.getMemberType() + "" + quote(del[i].member.getMemberId()) + "
\r\n"; msg += "
\r\n"; msg += "\r\n"; msg += "\r\n"; msg += "
\r\n"; return (msg); } String do_delconfirm(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError { String kname = do_authentication(request); String msg = ""; HttpSession session = request.getSession(false); // Better be one if (session == null) { return("

Could not proceed, has it been 30 minutes since you last interaction. If so, back up and try again.

"); } String listname = (String)session.getValue("list"); Delmember [] del = (Delmember []) session.getValue("delmembers"); if (del == null) return("

Cannot proceed, nothing to delete, shouldn't happen!

"); Vector problems = new Vector(); Vector success = new Vector(); Moira mc = null; try { mc = connect(); mc.proxy(kname); for (int i = 0; i < del.length; i++) { try { if (del[i].marked) { mc.delete_member_from_list(listname, del[i].member.getMemberType(), del[i].member.getMemberId()); success.addElement(del[i].member); } } catch (MoiraException m) { problems.addElement("" + quote(del[i].member.getMemberId()) + "" + m.getMessage() + "\r\n"); } } } catch (MoiraException m) { msg = "

" + m.getMessage() + "

"; msg += "\r\n"; return (msg); } finally { if (mc != null) mc.done(); } msg = ""; if (success.size() > 0) { msg += "

Deleted the following:

\r\n"; msg += "\r\n"; for (int i = 0; i < success.size(); i++) { msg += "\r\n"; } msg += "
" + quote(((Member)success.elementAt(i)).getMemberId()) + "
\r\n"; } if (problems.size() > 0) { msg += "

There were difficulties removing:

\r\n"; msg += "\r\n"; for (int i = 0; i < problems.size(); i++) { msg += (String)problems.elementAt(i); } msg += "
\r\n"; } return (msg); } String do_showlistinfo(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError { String kname = do_authentication(request); String list = (String)qv.get("list"); if (list == null || list.equals("")) { return("Hmmm, no list specified"); } HttpSession session = request.getSession(true); String msg = ""; Moira mc = null; ListInfo li = null; try { mc = connect(); mc.proxy(kname); li = mc.get_list_info(list); } catch (MoiraException m) { msg += "Error getting list info: " + m.getMessage(); msg += "\r\n"; return (msg); } finally { if (mc != null) mc.done(); } if (li == null) { return("Did not find list info."); } msg += "List: " + list + "
\r\n"; msg += "Description: " + descript(li.description) + "
\r\n"; if (li.maillist) msg += "This list is a mailing list.
\r\n"; if (li.grouplist) msg += "This list is a Group and its ID number is " + li.gid + ".
\r\n"; msg += "The Administrator of this list is the " + li.ace_type + ": " + li.ace_name + ".
\r\n"; msg += "This list is: " + mkflags(li) + ".
\r\n"; msg += "Last modification by " + li.moduser + " at " + df.format(li.modtime) + " with " + li.modwith + ".
\r\n"; return (msg); } String do_updatelistinfo(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError { String kname = do_authentication(request); String list = (String)qv.get("list"); if (list == null || list.equals("")) { return("Hmmm, no list specified"); } HttpSession session = request.getSession(true); String msg = ""; Moira mc = null; ListInfo li = null; try { mc = connect(); mc.proxy(kname); li = mc.get_list_info(list); } catch (MoiraException m) { msg += "Error getting list info: " + m.getMessage(); msg += "\r\n"; return (msg); } finally { if (mc != null) mc.done(); } if (li == null) { return("Did not find list info."); } session.putValue("listinfo", li); // Save for the confirmation call session.putValue("list", list); // Save for side bar update session.removeValue("members"); // In case left over... msg += "
\r\n"; msg += "\r\n"; msg += "Update characteristics of list " + list + "

\r\n"; msg += "Is this list a maillist? Yes No
\r\n"; // Note: We don't update group information here msg += "Is this list a public list? Yes No
\r\n"; msg += "Is this list a hidden list? Yes No

\r\n"; msg += "The Administrator for this list is
\r\n"; msg += ""; msg += "
\r\n"; msg += "Description:
\r\n"; msg += "
\r\n"; msg += "

\r\n"; return (msg); } String do_updatelistinfoconf(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError { String kname = do_authentication(request); HttpSession session = request.getSession(false); // Better be one if (session == null) { return("

Could not proceed, has it been 30 minutes since you last interaction. If so, back up and try again.

"); } ListInfo li = (ListInfo)session.getValue("listinfo"); if (li == null) { return("

Could not proceed, could not find orignial list info, should not happen!

"); } String tmp = (String)qv.get("description"); if (tmp != null) li.description = tmp; tmp = (String)qv.get("maillist"); if (tmp != null) { if (tmp.equals("1")) li.maillist = true; else li.maillist = false; } tmp = (String)qv.get("public"); if (tmp != null) { if (tmp.equals("1")) li.bpublic = true; else li.bpublic = false; } tmp = (String)qv.get("hidden"); if (tmp != null) { if (tmp.equals("1")) li.hidden = true; else li.hidden = false; } tmp = (String)qv.get("ace_type"); if (tmp != null) li.ace_type = tmp; tmp = (String)qv.get("ace_name"); if (tmp != null) li.ace_name = tmp; Moira mc = null; try { mc = connect(); mc.proxy(kname); mc.update_list_info(li.name, li); } catch (MoiraException e) { String msg; if (e.getMessage().startsWith("No such list")) { msg = "

Error updating " + li.name + ".
\r\n"; msg += "The list you specified as administrator does not exist.

\r\n"; } else if(e.getMessage().startsWith("No such user")) { msg = "

Error updating " + li.name + ".
\r\n"; msg += "The user you specified as administrator is not known to Moira.

\r\n"; } else msg = "

Error during update of " + li.name + ": " + e.getMessage() + "

"; msg += "\r\n"; return (msg); } finally { if (mc != null) mc.done(); } String msg = "Update of " + li.name + " succeeded

\r\n"; qv.put("list", li.name); msg += do_showlistinfo(qv, request, response); return (msg); } String do_addfinal(Hashtable qv, HttpServletRequest request, HttpServletResponse response) throws AuthenticationError { HttpSession session = request.getSession(false); // Better be one if (session == null) { return("

Could not proceed, has it been 30 minutes since you last interaction. If so, back up and try again.

"); } String kname = do_authentication(request); String listname = (String) session.getValue("list"); if (listname == null) { return("

Unable to find list name! (shouldn't happen).

"); } String msg = ""; String member = (String)qv.get("member"); String type = (String)qv.get("type"); if (member == null || type == null || member.equals("")) { return("

No names selected to be added!

"); } Moira mc = null; StreamTokenizer tk = null; msg += "\r\n"; boolean addheader = false; Vector warnings = new Vector(); Vector problems = new Vector(); try { mc = connect(); mc.proxy(kname); tk = new StreamTokenizer(new StringReader(member)); tk.wordChars('@', '@'); tk.wordChars('0', '9'); tk.wordChars('_', '_'); while (tk.nextToken() != StreamTokenizer.TT_EOF) { if (tk.ttype != StreamTokenizer.TT_WORD) continue; try { // Pre-process user input String [] user = canonicalize(tk.sval, type); mc.add_member_to_list(listname, user[1], user[0]); if (!addheader) { msg += "\r\n"; addheader = true; } msg += "\r\n"; if (user.length > 2) warnings.addElement(user[2]); } catch (MoiraException e) { String err = "\r\n"; problems.addElement(err); } } if (!addheader) // We didn't seem to be able to add anyone msg += "\r\n"; msg += "
Added to list
" + user[1] + "" + user[0] + "
" + tk.sval + "" + e.getMessage() + "
No one added!
\r\n"; mc.done(); mc = null; } catch (MoiraException e) { if (tk != null) msg = "

Error adding " + tk.sval + ": " + e.getMessage() + "

"; else msg = "

Error during add: " + e.getMessage() + "

"; msg += "\r\n"; return (msg); } catch (IOException e) { e.printStackTrace(); // Shouldn't happen } finally { if (mc != null) mc.done(); } if (problems.size() != 0) { msg += "

There were difficulties adding the following users:
\r\n"; msg += "\r\n"; for (int i = 0; i < problems.size(); i++) msg += problems.elementAt(i); msg += "
\r\n"; } if (warnings.size() != 0) { msg += "

The following warnings were generated:
\r\n"; msg += "\r\n"; for (int i = 0; i < warnings.size(); i++) msg += "\r\n"; msg += "
" + warnings.elementAt(i) + "
\r\n"; } return (msg); } String getfile(String operation) { ResourceBundle bd = null; try { bd = ResourceBundle.getBundle("mit.moira.FileParts"); } catch (java.util.MissingResourceException e) { return("Cannot find FileParts.properties"); } if (bd == null) return("Cannot find FileParts.properties!"); String filename = null; try { filename = bd.getString(operation); } catch (java.util.MissingResourceException e) { return("Cannot find file for operation: " + operation); } if (filename == null) { return("Cannot find file for operation: " + operation); } File file = new File(filename); if (!file.isFile()) return("Cannot file file: " + filename); long filemodtime = file.lastModified(); Long cachemodtime = (Long) FileTimes.get(filename); if (cachemodtime == null || filemodtime > cachemodtime.longValue()) { // Need to fetch the file into the cache byte [] buffer = null; try { BufferedInputStream input = new BufferedInputStream(new FileInputStream(filename)); buffer = new byte[input.available()]; input.read(buffer); input.close(); } catch (FileNotFoundException f) { // Should never happen given check above } catch (IOException e) { return("IO Error Reading: " + filename); } String data = new String(buffer); data += "\r\n\r\n"; FileTimes.put(filename, new Long(filemodtime)); FileParts.put(filename, data); return (data); } else { return ((String)FileParts.get(filename)); } } String mkflags(ListInfo li) { String retval = ""; int state = 0; if (!li.hidden) { retval = "visible"; state = 1; } if (!li.bpublic) { switch (state) { case 0: retval = "private"; state = 1; break; case 1: retval = "private and " + retval; state = 2; break; case 2: retval = "private, " + retval; } } if (li.active) { switch (state) { case 0: retval = "active"; state = 1; break; case 1: retval = "active and " + retval; state = 2; break; case 2: retval = "active, " + retval; } } return (retval); } /** * pre-process user input. Mostly this catches cases where the * incorrect type is used to add someone to a list. * * @param user String or Userid being proposed for an add * @param type Either LIST,STRING or USER * @return an array of elements. The first is the user portion followed by the type and an optional warning message. */ private String [] canonicalize(String user, String type) throws MoiraException { int i; String [] retval = null; if (type.equals("STRING")) { i = user.indexOf('@'); if (i != -1) { String host = user.substring(i + 1); if (host.equalsIgnoreCase("mit.edu")) { retval = new String[3]; retval[0] = user.substring(0, i); retval[1] = "USER"; retval[2] = "Converted " + user + " to userid " + retval[0]; return (retval); } // Don't convert retval = new String[2]; retval[0] = user; retval[1] = "STRING"; return (retval); } else { // No @ sign throw new MoiraException("STRING (mailing list entries) must have an \'@\' in them!"); } } else if (type.equals("USER")) { i = user.indexOf('@'); if (i != -1) { String host = user.substring(i + 1); if (host.equalsIgnoreCase("mit.edu")) { retval = new String[3]; retval[0] = user.substring(0, i); retval[1] = "USER"; retval[2] = "Converted " + user + " to userid " + retval[0]; return (retval); } throw new MoiraException("USER types must not have \'@\'s in them!"); } retval = new String[2]; retval[0] = user; retval[1] = type; return (retval); } else if (type.equals("LIST")) { i = user.indexOf('@'); if (i == -1) { // No '@' sign, just process normally retval = new String[2]; retval[0] = user; retval[1] = type; return (retval); } else { String host = user.substring(i + 1); if (host.equalsIgnoreCase("mit.edu")) { // trim mit.edu retval = new String[3]; retval[0] = user.substring(0, i); retval[1] = "LIST"; retval[2] = "Converted " + user + " to list named " + retval[0]; return (retval); } else throw new MoiraException("LIST types may not contain \'@\'s in them!"); } } else { // Just pass through everything else for now retval = new String[2]; retval[0] = user; retval[1] = type; return (retval); } } /** * Remove <SCRIPT> tags from input String * * @param input String to check out * @return String with <SCRIPT> tag removed */ private String descript(String input) { String lc = input.toLowerCase(); int i = lc.indexOf(" 8)) { throw m; // Re-throw if not the error we expect or we are looping } } if (retval != null) { retval.done(); retval = null; } System.err.println("MoiraServlet: Forced Renewal..."); kt.renew(); // Renew tickets } // Fell through, count exceeded throw new MoiraException("Cannot authenticate successfully to Moira"); } finally { if (error && (retval != null)) retval.done(); } } public static String quote(String value) { if (value.indexOf('<') == -1 && value.indexOf('>') == -1) return (value); // Nothing to quote StringBuffer buf = new StringBuffer(value.length() + 10); for (int i = 0; i < value.length(); i++) { char c = value.charAt(i); if (c != '<' && c != '>') buf.append(c); else { if (c == '<') buf.append("<"); if (c == '>') buf.append(">"); } } return (new String(buf)); } } class Delmember { boolean marked = false; Member member = null; Delmember(Member m) { member = m; } }