Fix requestpath, export authuser

[project/luci.git] / libs / web / luasrc / dispatcher.lua
diff --git a/libs/web/luasrc/dispatcher.lua b/libs/web/luasrc/dispatcher.lua

index 71d2a5c740e4b075aaf3784800e1db39304684ed..ad4f24dc777205ddc15743efa55bd0a100023f24 100644 (file)
--- a/libs/web/luasrc/dispatcher.lua
+++ b/libs/web/luasrc/dispatcher.lua
@@ -25,11 +25,12 @@ limitations under the License.
  ]]--
  
  --- LuCI web dispatcher.
-local fs = require "luci.fs"
+local fs = require "nixio.fs"
  local sys = require "luci.sys"
  local init = require "luci.init"
  local util = require "luci.util"
  local http = require "luci.http"
+local nixio = require "nixio", require "nixio.util"
  
  module("luci.dispatcher", package.seeall)
  context = util.threadlocal()
@@ -107,13 +108,21 @@ end
  
  --- Dispatch an HTTP request.
  -- @param request      LuCI HTTP Request object
-function httpdispatch(request)
+function httpdispatch(request, prefix)
         luci.http.context.request = request
-       context.request = {}
+
+       local r = {}
+       context.request = r
         local pathinfo = http.urldecode(request:getenv("PATH_INFO") or "", true)
  
+       if prefix then
+               for _, node in ipairs(prefix) do
+                       r[#r+1] = node
+               end
+       end
+
         for node in pathinfo:gmatch("[^/]+") do
-               table.insert(context.request, node)
+               r[#r+1] = node
         end
  
         local stat, err = util.coxpcall(function()
@@ -128,7 +137,7 @@ end
  --- Dispatches a LuCI virtual path.
  -- @param request      Virtual path
  function dispatch(request)
-       --context._disable_memtrace = require "luci.debug".trap_memtrace()
+       --context._disable_memtrace = require "luci.debug".trap_memtrace("l")
         local ctx = context
         ctx.path = request
         ctx.urltoken   = ctx.urltoken or {}
@@ -199,7 +208,7 @@ function dispatch(request)
                 end
         end
  
-       ctx.requestpath = freq
+       ctx.requestpath = ctx.requestpath or freq
         ctx.path = preq
  
         if track.i18n then
@@ -221,7 +230,15 @@ function dispatch(request)
                         assert(media, "No valid theme found")
                 end
  
-               local viewns = setmetatable({}, {__index=function(table, key)
+               tpl.context.viewns = setmetatable({
+                  write       = luci.http.write;
+                  include     = function(name) tpl.Template(name):render(getfenv(2)) end;
+                  translate   = function(...) return require("luci.i18n").translate(...) end;
+                  striptags   = util.striptags;
+                  media       = media;
+                  theme       = fs.basename(media);
+                  resource    = luci.config.main.resourcebase
+               }, {__index=function(table, key)
                         if key == "controller" then
                                 return build_url()
                         elseif key == "REQUEST_URI" then
@@ -230,14 +247,6 @@ function dispatch(request)
                                 return rawget(table, key) or _G[key]
                         end
                 end})
-               tpl.context.viewns = viewns
-               viewns.write       = luci.http.write
-               viewns.include     = function(name) tpl.Template(name):render(getfenv(2)) end
-               viewns.translate   = function(...) return require("luci.i18n").translate(...) end
-               viewns.striptags   = util.striptags
-               viewns.media       = media
-               viewns.theme       = fs.basename(media)
-               viewns.resource    = luci.config.main.resourcebase
         end
  
         track.dependent = (track.dependent ~= false)
@@ -256,7 +265,7 @@ function dispatch(request)
                 local verifytoken = false
                 if not sess then
                         sess = luci.http.getcookie("sysauth")
-                       sess = sess and sess:match("^[A-F0-9]+$")
+                       sess = sess and sess:match("^[a-f0-9]*$")
                         verifytoken = true
                 end
  
@@ -270,6 +279,12 @@ function dispatch(request)
                         if not verifytoken or ctx.urltoken.stok == sdat.token then
                                 user = sdat.user
                         end
+               else
+                       local eu = http.getenv("HTTP_AUTH_USER")
+                       local ep = http.getenv("HTTP_AUTH_PASS")
+                       if eu and ep and luci.sys.user.checkpasswd(eu, ep) then
+                               authen = function() return eu end
+                       end
                 end
  
                 if not util.contains(accs, user) then
@@ -291,6 +306,7 @@ function dispatch(request)
                                         end
                                         luci.http.header("Set-Cookie", "sysauth=" .. sid.."; path="..build_url())
                                         ctx.authsession = sid
+                                       ctx.authuser = user
                                 end
                         else
                                 luci.http.status(403, "Forbidden")
@@ -298,6 +314,7 @@ function dispatch(request)
                         end
                 else
                         ctx.authsession = sess
+                       ctx.authuser = user
                 end
         end
  
@@ -392,26 +409,23 @@ end
  function createindex_plain(path, suffixes)
         local controllers = { }
         for _, suffix in ipairs(suffixes) do
-               controllers = util.combine(
-                       controllers,
-                       luci.fs.glob(path .. "*" .. suffix) or {},
-                       luci.fs.glob(path .. "*/*" .. suffix) or {}
-               )
+               nixio.util.consume((fs.glob(path .. "*" .. suffix)), controllers)
+               nixio.util.consume((fs.glob(path .. "*/*" .. suffix)), controllers)
         end
  
         if indexcache then
-               local cachedate = fs.mtime(indexcache)
+               local cachedate = fs.stat(indexcache, "mtime")
                 if cachedate then
                         local realdate = 0
                         for _, obj in ipairs(controllers) do
-                               local omtime = fs.mtime(path .. "/" .. obj)
+                               local omtime = fs.stat(path .. "/" .. obj, "mtime")
                                 realdate = (omtime and omtime > realdate) and omtime or realdate
                         end
  
                         if cachedate > realdate then
                                 assert(
                                         sys.process.info("uid") == fs.stat(indexcache, "uid")
-                                       and fs.stat(indexcache, "mode") == "rw-------",
+                                       and fs.stat(indexcache, "modestr") == "rw-------",
                                         "Fatal: Indexcache is not sane!"
                                 )
  
@@ -438,8 +452,9 @@ function createindex_plain(path, suffixes)
         end
  
         if indexcache then
-               fs.writefile(indexcache, util.get_bytecode(index))
-               fs.chmod(indexcache, "a-rwx,u+rw")
+               local f = nixio.open(indexcache, "w", 600)
+               f:writeall(util.get_bytecode(index))
+               f:close()
         end
  end