1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
|
#define _XOPEN_SOURCE 700
#include <ctype.h>
#include <fcntl.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <sys/stat.h>
#include <time.h>
#include <unistd.h>
#include "blog.h"
#include <errno.h>
#define DOCTYPE "<!DOCTYPE html>\n"
#define HTML "<html lang=\"en\">\n"
#define META "<meta charset=\"utf-8\">\n"
#define TITLE "<title>%s</title>\n"
#define ICON "<link type=\"shortcut icon\" href=\"/icon.png\">\n"
#define STYLE "<link rel=\"stylesheet\" type=\"text/css\" href=\"/style.css\">\n"
#define BODY "</html>\n<body>\n"
#define HTML_HEAD DOCTYPE HTML META TITLE ICON STYLE BODY
#define ADDRESS "<address>Copyright © %d <a href=\"/\">Jakob Kaivo</a> <<a href=\"mailto:jakob@kaivo.net\">jakob@kaivo.net</a>>\n"
#define HTML_TAIL "\n" ADDRESS "</body>\n</html>\n"
int handle_post(void)
{
/*
printf("Status: 200 OK\r\n");
printf("Content-Type: text/plain\r\n\r\n");
*/
read_post_data();
if (!authenticate(find_post_data("username"), find_post_data("password"))) {
printf("Status 403 Forbidden\r\n");
printf("Content-Type: text/plain\r\n\r\n");
puts("Incorrect username or password. Go back and try again.");
return 0;
}
int blogdir = open(DATA_DIRECTORY, O_DIRECTORY);
if (blogdir == -1) {
printf("open(%s): %s\n", DATA_DIRECTORY, strerror(errno));
return 1;
}
time_t now = time(NULL);
struct tm *tm = localtime(&now);
char ymd[16] = { 0 };
strftime(ymd, sizeof(ymd), "%Y", tm);
mkdirat(blogdir, ymd, 0755);
strftime(ymd, sizeof(ymd), "%Y/%m", tm);
mkdirat(blogdir, ymd, 0755);
strftime(ymd, sizeof(ymd), "%Y/%m/%d", tm);
mkdirat(blogdir, ymd, 0755);
char *title = find_post_data("title");
char uri[FILENAME_MAX] = { 0 };
char *end = stpcpy(uri, ymd);
*end++ = '/';
for (char *f = title; *f != '\0'; f++) {
*end++ = isalnum(*f) ? *f : '-';
}
int newpost = openat(blogdir, uri, O_WRONLY | O_CREAT, 0644);
if (newpost == -1) {
printf("open(%s): %s\n", uri, strerror(errno));
return 0;
}
char *body = find_post_data("body");
if (body == NULL) {
return 1;
}
dprintf(newpost, HTML_HEAD, title);
dprintf(newpost, "<h1>%s</h1>\n", title);
if (write(newpost, body, strlen(body)) != strlen(body)) {
printf("write: %s\n", strerror(errno));
return 0;
}
dprintf(newpost, HTML_TAIL, tm->tm_year + 1900);
close(newpost);
close(blogdir);
printf("Status: 302 Found\r\n");
printf("Location: http%s://%s/%s\r\n\r\n", getenv("HTTPS") ? "s" : "", getenv("HTTP_HOST"), uri);
return 0;
}
int main(void)
{
char *method = getenv("REQUEST_METHOD");
if (!strcmp(method, "POST")) {
return handle_post();
}
printf("Status: 200 OK\r\n");
printf("Content-Type: text/html\r\n\r\n");
printf(HTML_HEAD, "new blog entry");
printf("<form method=\"POST\" action=\"%s\">\n", getenv("DOCUMENT_URI"));
puts("<input type=\"text\" name=\"username\" placeholder=\"username\" size=\"80\"><br>");
puts("<input type=\"password\" name=\"password\" placeholder=\"password\" size=\"80\"><br>");
puts("<input type=\"text\" name=\"title\" placeholder=\"title\" size=\"80\"><br>");
puts("<textarea name=\"body\" cols=\"80\" rows=\"24\"></textarea><br>");
puts("<input type=\"submit\">");
puts("</form>");
time_t t = time(NULL);
struct tm *tm = localtime(&t);
printf(HTML_TAIL, tm->tm_year + 1900);
return 0;
}
|