1 // webcit.h - "header of headers"
3 // Copyright (c) 1996-2023 by the citadel.org team
5 // This program is open source software. You can redistribute it and/or
6 // modify it under the terms of the GNU General Public License, version 3.
8 #define SHOW_ME_VAPPEND_PRINTF
18 #include <sys/types.h>
19 #include <sys/socket.h>
20 #include <netinet/in.h>
21 #include <arpa/inet.h>
37 #include <libcitadel.h>
38 #define OPENSSL_NO_KRB5 // Work around RedHat's b0rken OpenSSL includes
39 #include <openssl/ssl.h>
40 #include <openssl/err.h>
41 #include <openssl/rand.h>
43 #define _(x) x // temporary hack until we add i18n back in
44 //#define DEBUG_HTTP // uncomment to debug HTTP headers
46 // XML_StopParser is present in expat 2.x
47 #if XML_MAJOR_VERSION > 1
48 #define HAVE_XML_STOPPARSER
51 struct client_handle { // this gets passed up the stack from the webserver to the application code
56 struct keyval { // key/value pair (for array)
61 struct http_transaction { // The lifetime of an HTTP request goes through this data structure.
62 char *method; // The top half is built up by the web server and sent up to the
63 char *url; // application stack. The second half is built up by the application
64 char *http_version; // stack and sent back down to the web server, which transmits it to
65 char *site_prefix; // the client.
66 Array *request_headers;
67 char *request_body_with_synth_headers; // This is the request body with some synthetic headers prepended into it.
68 char *request_body; // this is just going to be a pointer into request_body_with_synth_headers
69 long request_body_length;
70 Array *request_parms; // anything after the "?" in the URL
72 char *response_string;
73 Array *response_headers;
75 long response_body_length;
78 #define AUTH_MAX 256 // Maximum length of an HTTP AUTH header or equivalent cookie data
80 struct ctdlsession *next;
81 int is_bound; // Nonzero if this record is currently bound to a running thread
82 int sock; // Socket connection to Citadel server
83 char auth[AUTH_MAX]; // Auth string (empty if not logged in)
84 char whoami[64]; // Display name of currently logged in user (empty if not logged in)
85 char room[128]; // What room we are currently in
86 int room_current_view;
87 int room_default_view;
88 int is_trash_folder; // nonzero if this room is the user's Trash folder
89 int is_room_aide; // nonzero if the user has aide rights to THIS room
90 int can_delete_messages; // nonzero if the user is permitted to delete messages in THIS room
94 time_t last_access; // Timestamp of last request that used this session
95 time_t num_requests_handled;
96 time_t room_mtime; // Timestampt of the most recent write activity in this room
99 struct uploaded_file { // things that have been uploaded to the server (such as email attachments)
102 char content_type[256];
107 extern char *ssl_cipher_list;
108 extern int is_https; // nonzero if we are an HTTPS server today
109 extern char *ctdl_dir; // directory where Citadel Server is running
111 void starttls(struct client_handle *);
112 void endtls(struct client_handle *);
113 int client_write_ssl(struct client_handle *ch, char *buf, int nbytes);
114 int client_read_ssl(struct client_handle *ch, char *buf, int nbytes);
122 #define TRACE syslog(LOG_DEBUG, "\033[3%dmCHECKPOINT: %s:%d\033[0m", ((__LINE__%6)+1), __FILE__, __LINE__)
123 #define SLEEPING 180 // TCP connection timeout
124 #define MAX_WORKER_THREADS 32 // Maximum number of worker threads permitted to exist
125 #define DEFAULT_SSL_CIPHER_LIST "DEFAULT" // See http://openssl.org/docs/apps/ciphers.html
126 #define WEBSERVER_PORT 80
127 #define WEBSERVER_INTERFACE "*"
128 #define CTDL_DIR "/usr/local/citadel"
129 #define DEVELOPER_ID 0
131 #define TARGET "webcit02" // Window target for inline URL's
132 #define ROOMNAMELEN 128 // The size of a roomname string
133 #define DAV_MOVE 0 // MOVE=0 COPY=1 don't change these!
134 #define DAV_COPY 1 // they are the values used in the Citadel Server MOVE command
136 void try_login(struct http_transaction *h, struct ctdlsession *c);
137 void logout(struct http_transaction *h, struct ctdlsession *c);
138 void whoami(struct http_transaction *h, struct ctdlsession *c);
139 void biff(struct http_transaction *h, struct ctdlsession *c);
140 void ctdl_a(struct http_transaction *h, struct ctdlsession *c);
141 void caldav_xml_start(void *data, const char *el, const char **attr);
142 void caldav_xml_end(void *data, const char *el);
143 void caldav_xml_chardata(void *data, const XML_Char *s, int len);
144 StrBuf *fetch_ical(struct ctdlsession *c, long msgnum);
145 void caldav_response(struct http_transaction *h, struct ctdlsession *c, StrBuf *ReportOut, StrBuf *ThisHref);
146 void caldav_report(struct http_transaction *h, struct ctdlsession *c);
147 void calendar_msglist(struct http_transaction *h, struct ctdlsession *c, char *range);
148 int ctdl_read_binary(struct ctdlsession *ctdl, char *buf, int bytes_requested);
149 int ctdl_readline(struct ctdlsession *ctdl, char *buf, int maxbytes);
150 StrBuf *ctdl_readtextmsg(struct ctdlsession *ctdl);
151 ssize_t ctdl_write(struct ctdlsession *ctdl, const void *buf, size_t count);
152 void ctdl_printf(struct ctdlsession *ctdl, const char *format, ...);
153 int uds_connectsock(char *sockpath);
154 void extract_auth(struct http_transaction *h, char *authbuf, int authbuflen);
155 int login_to_citadel(struct ctdlsession *c, char *auth, char *resultbuf);
156 struct ctdlsession *connect_to_citadel(struct http_transaction *h);
157 void disconnect_from_citadel(struct ctdlsession *ctdl);
158 void serv_info(struct http_transaction *h, struct ctdlsession *c);
159 void ctdl_c(struct http_transaction *h, struct ctdlsession *c);
160 void ctdl_delete_msgs(struct ctdlsession *c, long *msgnums, int num_msgs);
161 void floor_list(struct http_transaction *h, struct ctdlsession *c);
162 void ctdl_f(struct http_transaction *h, struct ctdlsession *c);
163 void setup_for_forum_view(struct ctdlsession *c);
164 JsonValue *json_tokenize_recipients(const char *Key, long keylen, char *recp);
165 void json_render_one_message(struct http_transaction *h, struct ctdlsession *c, long msgnum);
166 void stripquotes(char *s);
167 void extract_charset_from_meta(char *charset, char *meta_http_equiv, char *meta_content);
168 StrBuf *html2html(const char *supplied_charset, int treat_as_wiki, char *roomname, long msgnum, StrBuf *Source);
169 void UrlizeText(StrBuf *Target, StrBuf *Source, StrBuf *WrkBuf);
170 void url(char *buf, size_t bufsize);
171 int client_write(struct client_handle *ch, char *buf, int nbytes);
172 int client_read(struct client_handle *ch, char *buf, int nbytes);
173 int client_readline(struct client_handle *ch, char *buf, int maxbytes);
174 void client_printf(struct client_handle *ch, const char *format, ...);
175 void add_response_header(struct http_transaction *h, char *key, char *val);
176 void perform_one_http_transaction(struct client_handle *ch);
177 char *header_val(struct http_transaction *h, char *requested_header);
178 char *get_url_param(struct http_transaction *h, char *requested_param);
179 int main(int argc, char **argv);
180 long locate_message_by_uid(struct ctdlsession *c, char *uid);
181 void dav_delete_message(struct http_transaction *h, struct ctdlsession *c, long msgnum);
182 void dav_move_or_copy_message(struct http_transaction *h, struct ctdlsession *c, long msgnum, int move_or_copy);
183 void dav_get_message(struct http_transaction *h, struct ctdlsession *c, long msgnum);
184 void dav_put_message(struct http_transaction *h, struct ctdlsession *c, char *euid, long old_msgnum);
185 void download_mime_component(struct http_transaction *h, struct ctdlsession *c, long msgnum, char *partnum);
186 void do_404(struct http_transaction *h);
187 void do_405(struct http_transaction *h);
188 void do_412(struct http_transaction *h);
189 void do_204(struct http_transaction *h);
190 void do_502(struct http_transaction *h);
191 void request_http_authenticate(struct http_transaction *h);
192 void http_redirect(struct http_transaction *h, char *to_where);
193 void perform_request(struct http_transaction *h);
194 int match_etags(char *taglist, long msgnum);
195 void json_stat(struct http_transaction *h, struct ctdlsession *c);
196 void json_mailbox(struct http_transaction *h, struct ctdlsession *c);
197 void json_msglist(struct http_transaction *h, struct ctdlsession *c, char *which);
198 void read_room_info_banner(struct http_transaction *h, struct ctdlsession *c);
199 void set_last_read_pointer(struct http_transaction *h, struct ctdlsession *c);
200 void object_in_room(struct http_transaction *h, struct ctdlsession *c);
201 void report_the_room_itself(struct http_transaction *h, struct ctdlsession *c);
202 void options_the_room_itself(struct http_transaction *h, struct ctdlsession *c);
203 void propfind_the_room_itself(struct http_transaction *h, struct ctdlsession *c);
204 void get_the_room_itself(struct http_transaction *h, struct ctdlsession *c);
205 void the_room_itself(struct http_transaction *h, struct ctdlsession *c);
206 void room_list(struct http_transaction *h, struct ctdlsession *c);
207 void ctdl_r(struct http_transaction *h, struct ctdlsession *c);
208 void output_static(struct http_transaction *h);
209 int lingering_close(int fd);
210 int webcit_tcp_server(const char *ip_addr, int port_number, int queue_len);
211 int webcit_uds_server(char *sockpath, int queue_len);
212 StrBuf *text2html(const char *supplied_charset, int treat_as_wiki, char *roomname, long msgnum, StrBuf *Source);
213 StrBuf *variformat2html(StrBuf *Source);
214 void bind_to_key_and_certificate(void);
216 void update_key_and_cert_if_needed(void);
217 void starttls(struct client_handle *ch);
218 void endtls(struct client_handle *ch);
219 int client_write_ssl(struct client_handle *ch, char *buf, int nbytes);
220 int client_read_ssl(struct client_handle *ch, char *buf, int nbytes);
221 void upload_handler(char *name, char *filename, char *partnum, char *disp, void *content, char *cbtype, char *cbcharset, size_t length, char *encoding, char *cbid, void *userdata);
222 void upload_files(struct http_transaction *h, struct ctdlsession *c);
223 void ctdl_p_base(struct http_transaction *h, struct ctdlsession *c);
224 void delete_upload(struct uploaded_file this_one);
225 void dav_delete_upload(struct http_transaction *h, struct ctdlsession *c, struct uploaded_file this_one);
226 struct uploaded_file pop_upload(char *id);
227 void attachment_filter(char *name, char *filename, char *partnum, char *disp, void *content, char *cbtype, char *cbcharset, size_t length, char *encoding, char *cbid, void *userdata);
228 void load_attachments_from_message(struct http_transaction *h, struct ctdlsession *c, char *name);
229 void specific_upload(struct http_transaction *h, struct ctdlsession *c, char *name);
230 void ctdl_p(struct http_transaction *h, struct ctdlsession *c);
231 void fetch_user_photo(struct http_transaction *h, struct ctdlsession *c, char *username);
232 void fetch_user_bio(struct http_transaction *h, struct ctdlsession *c, char *username);
233 void object_in_user(struct http_transaction *h, struct ctdlsession *c, char *requested_username);
234 void the_user_itself(struct http_transaction *h, struct ctdlsession *c, char *username);
235 void user_list(struct http_transaction *h, struct ctdlsession *c);
236 void ctdl_u(struct http_transaction *h, struct ctdlsession *c);
237 int unescape_input(char *buf);
238 char *http_datestring(time_t xtime);
239 void spawn_another_worker_thread(int *pointer_to_master_socket);
240 void worker_entry(int *pointer_to_master_socket);
241 int webserver(char *webserver_interface, int webserver_port, int webserver_protocol);
242 Array *get_msglist(struct ctdlsession *c, char *which_msgs);