4 * This module handles self-service subscription/unsubscription to mail lists.
6 * Copyright (C) 2002 by Art Cancro and others.
7 * This code is released under the terms of the GNU General Public License.
20 #include <sys/types.h>
22 #if TIME_WITH_SYS_TIME
23 # include <sys/time.h>
27 # include <sys/time.h>
38 #include "sysdep_decls.h"
39 #include "citserver.h"
42 #include "dynloader.h"
49 #include "internet_addressing.h"
50 #include "serv_network.h"
51 #include "clientsocket.h"
60 * Generate a randomizationalisticized token to use for authentication of
61 * a subscribe or unsubscribe request.
63 void listsub_generate_token(char *buf) {
67 /* Theo, please sit down and shut up. This key doesn't have to be
68 * tinfoil-hat secure, it just needs to be reasonably unguessable
71 sprintf(sourcebuf, "%lx",
72 (long) (++seq + getpid() + time(NULL))
75 /* Convert it to base64 so it looks cool */
76 encode_base64(buf, sourcebuf);
81 * Enter a subscription request
83 void do_subscribe(char *room, char *email, char *subtype, char *webpage) {
84 struct quickroom qrbuf;
88 char confirmation_request[SIZ];
95 if (getroom(&qrbuf, room) != 0) {
96 cprintf("%d There is no list called '%s'\n", ERROR, room);
100 if ((qrbuf.QRflags2 & QR2_SELFLIST) == 0) {
102 "does not accept subscribe/unsubscribe requests.\n",
103 ERROR+HIGHER_ACCESS_REQUIRED, qrbuf.QRname);
107 listsub_generate_token(token);
109 assoc_file_name(filename, sizeof filename, &qrbuf, "netconfigs");
112 * Make sure the requested address isn't already subscribed
114 begin_critical_section(S_NETCONFIGS);
115 ncfp = fopen(filename, "r");
117 while (fgets(buf, sizeof buf, ncfp) != NULL) {
118 buf[strlen(buf)-1] = 0;
119 extract(scancmd, buf, 0);
120 extract(scanemail, buf, 1);
121 if ((!strcasecmp(scancmd, "listrecp"))
122 || (!strcasecmp(scancmd, "digestrecp"))) {
123 if (!strcasecmp(scanemail, email)) {
130 end_critical_section(S_NETCONFIGS);
132 if (found_sub != 0) {
133 cprintf("%d '%s' is already subscribed to '%s'.\n",
135 email, qrbuf.QRname);
140 * Now add it to the file
142 begin_critical_section(S_NETCONFIGS);
143 ncfp = fopen(filename, "a");
145 fprintf(ncfp, "subpending|%s|%s|%s|%ld|%s\n",
154 end_critical_section(S_NETCONFIGS);
156 /* Generate and send the confirmation request */
158 urlesc(urlroom, qrbuf.QRname);
160 snprintf(confirmation_request, sizeof confirmation_request,
161 "Content-type: text/html\n\n"
163 "Someone (probably you) has submitted a request to subscribe\n"
164 "<%s> to the <B>%s</B> mailing list.<BR><BR>\n"
165 "Please click here to confirm this request:<BR>\n"
166 "<A HREF=\"http://%s?room=%s&token=%s&cmd=confirm\">"
167 "http://%s?room=%s&token=%s&cmd=confirm</A><BR><BR>\n"
168 "If this request has been submitted in error and you do not\n"
169 "wish to receive the '%s' mailing list, simply do nothing,\n"
170 "and you will not receive any further mailings.\n"
174 webpage, urlroom, token,
175 webpage, urlroom, token,
179 quickie_message( /* This delivers the message */
183 confirmation_request,
185 "Please confirm your list subscription"
188 cprintf("%d Subscription entered; confirmation request sent\n", CIT_OK);
193 * Enter an unsubscription request
195 void do_unsubscribe(char *room, char *email, char *webpage) {
196 struct quickroom qrbuf;
201 char confirmation_request[SIZ];
207 if (getroom(&qrbuf, room) != 0) {
208 cprintf("%d There is no list called '%s'\n",
209 ERROR+ROOM_NOT_FOUND, room);
213 if ((qrbuf.QRflags2 & QR2_SELFLIST) == 0) {
215 "does not accept subscribe/unsubscribe requests.\n",
216 ERROR+HIGHER_ACCESS_REQUIRED, qrbuf.QRname);
220 listsub_generate_token(token);
222 assoc_file_name(filename, sizeof filename, &qrbuf, "netconfigs");
225 * Make sure there's actually a subscription there to remove
227 begin_critical_section(S_NETCONFIGS);
228 ncfp = fopen(filename, "r");
230 while (fgets(buf, sizeof buf, ncfp) != NULL) {
231 buf[strlen(buf)-1] = 0;
232 extract(scancmd, buf, 0);
233 extract(scanemail, buf, 1);
234 if ((!strcasecmp(scancmd, "listrecp"))
235 || (!strcasecmp(scancmd, "digestrecp"))) {
236 if (!strcasecmp(scanemail, email)) {
243 end_critical_section(S_NETCONFIGS);
245 if (found_sub == 0) {
246 cprintf("%d '%s' is not subscribed to '%s'.\n",
248 email, qrbuf.QRname);
253 * Ok, now enter the unsubscribe-pending entry.
255 begin_critical_section(S_NETCONFIGS);
256 ncfp = fopen(filename, "a");
258 fprintf(ncfp, "unsubpending|%s|%s|%ld|%s\n",
266 end_critical_section(S_NETCONFIGS);
268 /* Generate and send the confirmation request */
270 urlesc(urlroom, qrbuf.QRname);
272 snprintf(confirmation_request, sizeof confirmation_request,
273 "Content-type: text/html\n\n"
275 "Someone (probably you) has submitted a request "
277 "<%s> from the <B>%s</B> mailing list.<BR><BR>\n"
278 "Please click here to confirm this request:<BR>\n"
279 "<A HREF=\"http://%s?room=%s&token=%s&cmd=confirm\">"
280 "http://%s?room=%s&token=%s&cmd=confirm</A><BR><BR>\n"
281 "If this request has been submitted in error and you do\n"
282 "<i>not</i> wish to unsubscribe from the "
283 "'%s' mailing list, simply do nothing,\n"
284 "and you will remain subscribed to the list.\n"
288 webpage, urlroom, token,
289 webpage, urlroom, token,
293 quickie_message( /* This delivers the message */
297 confirmation_request,
299 "Please confirm your unsubscribe request"
302 cprintf("%d Unubscription noted; confirmation request sent\n", CIT_OK);
307 * Confirm a subscribe/unsubscribe request.
309 void do_confirm(char *room, char *token) {
310 struct quickroom qrbuf;
313 char line_token[SIZ];
321 char address_to_unsubscribe[SIZ];
324 char *holdbuf = NULL;
327 char success_message[SIZ];
328 char success_message_to[SIZ];
329 char address_of_list[SIZ];
332 strcpy(address_to_unsubscribe, "");
333 strcpy(success_message_to, "");
335 if (getroom(&qrbuf, room) != 0) {
336 cprintf("%d There is no list called '%s'\n",
337 ERROR+ROOM_NOT_FOUND, room);
341 if ((qrbuf.QRflags2 & QR2_SELFLIST) == 0) {
343 "does not accept subscribe/unsubscribe requests.\n",
344 ERROR+HIGHER_ACCESS_REQUIRED, qrbuf.QRname);
349 * We'll just have this success message ready if we need it
351 sprintf(address_of_list, "room_%s@%s", qrbuf.QRname, config.c_fqdn);
352 for (i=0; i<strlen(address_of_list); ++i) {
353 if (isspace(address_of_list[i])) {
354 address_of_list[i] = '_';
357 snprintf(success_message, sizeof success_message,
358 "Content-type: text/html\n\n"
360 "You have successfully subscribed to the <B>%s</B>\n"
361 "mailing list.<BR><BR>To post to the list, simply send "
362 "an e-mail to <TT>%s</TT>"
369 * Now start scanning this room's netconfig file for the
372 assoc_file_name(filename, sizeof filename, &qrbuf, "netconfigs");
373 begin_critical_section(S_NETCONFIGS);
374 ncfp = fopen(filename, "r+");
376 while (line_offset = ftell(ncfp),
377 (fgets(buf, sizeof buf, ncfp) != NULL) ) {
378 buf[strlen(buf)-1] = 0;
379 line_length = strlen(buf);
380 extract(cmd, buf, 0);
381 if (!strcasecmp(cmd, "subpending")) {
382 extract(email, buf, 1);
383 extract(subtype, buf, 2);
384 extract(line_token, buf, 3);
385 if (!strcasecmp(token, line_token)) {
386 if (!strcasecmp(subtype, "digest")) {
387 strcpy(buf, "digestrecp|");
390 strcpy(buf, "listrecp|");
394 /* SLEAZY HACK: pad the line out so
395 * it's the same length as the line
398 while (strlen(buf) < line_length) {
401 fseek(ncfp, line_offset, SEEK_SET);
402 fprintf(ncfp, "%s\n", buf);
404 strcpy(success_message_to, email);
407 if (!strcasecmp(cmd, "unsubpending")) {
408 extract(line_token, buf, 2);
409 if (!strcasecmp(token, line_token)) {
410 extract(address_to_unsubscribe, buf, 1);
416 end_critical_section(S_NETCONFIGS);
419 * If "address_to_unsubscribe" contains something, then we have to
420 * make another pass at the file, stripping out lines referring to
423 if (strlen(address_to_unsubscribe) > 0) {
424 holdbuf = mallok(SIZ);
425 begin_critical_section(S_NETCONFIGS);
426 ncfp = fopen(filename, "r+");
428 while (line_offset = ftell(ncfp),
429 (fgets(buf, sizeof buf, ncfp) != NULL) ) {
430 buf[strlen(buf)-1]=0;
431 extract(scancmd, buf, 0);
432 extract(scanemail, buf, 1);
433 if ( (!strcasecmp(scancmd, "listrecp"))
434 && (!strcasecmp(scanemail,
435 address_to_unsubscribe)) ) {
438 else if ( (!strcasecmp(scancmd, "digestrecp"))
439 && (!strcasecmp(scanemail,
440 address_to_unsubscribe)) ) {
443 else if ( (!strcasecmp(scancmd, "subpending"))
444 && (!strcasecmp(scanemail,
445 address_to_unsubscribe)) ) {
448 else if ( (!strcasecmp(scancmd, "unsubpending"))
449 && (!strcasecmp(scanemail,
450 address_to_unsubscribe)) ) {
453 else { /* Not relevant, so *keep* it! */
454 linelen = strlen(buf);
455 holdbuf = reallok(holdbuf,
456 (buflen + linelen + 2) );
457 strcpy(&holdbuf[buflen], buf);
459 strcpy(&holdbuf[buflen], "\n");
465 ncfp = fopen(filename, "w");
467 fwrite(holdbuf, buflen+1, 1, ncfp);
470 end_critical_section(S_NETCONFIGS);
474 /* Let 'em know it succeeded, and how to post to the list. */
475 if (strlen(success_message_to) > 0) {
482 "Your subscription is complete"
487 * Did we do anything useful today?
490 cprintf("%d %d operation(s) confirmed.\n", CIT_OK, success);
493 cprintf("%d Invalid token.\n", ERROR);
501 * process subscribe/unsubscribe requests and confirmations
503 void cmd_subs(char *cmdbuf) {
512 extract(opr, cmdbuf, 0);
513 if (!strcasecmp(opr, "subscribe")) {
514 extract(subtype, cmdbuf, 3);
515 if ( (strcasecmp(subtype, "list"))
516 && (strcasecmp(subtype, "digest")) ) {
517 cprintf("%d Invalid subscription type '%s'\n",
518 ERROR+ILLEGAL_VALUE, subtype);
521 extract(room, cmdbuf, 1);
522 extract(email, cmdbuf, 2);
523 extract(webpage, cmdbuf, 4);
524 do_subscribe(room, email, subtype, webpage);
527 else if (!strcasecmp(opr, "unsubscribe")) {
528 extract(room, cmdbuf, 1);
529 extract(email, cmdbuf, 2);
530 extract(webpage, cmdbuf, 3);
531 do_unsubscribe(room, email, webpage);
533 else if (!strcasecmp(opr, "confirm")) {
534 extract(room, cmdbuf, 1);
535 extract(token, cmdbuf, 2);
536 do_confirm(room, token);
539 cprintf("%d Invalid command\n", ERROR);
547 char *Dynamic_Module_Init(void)
549 CtdlRegisterProtoHook(cmd_subs, "SUBS", "List subscribe/unsubscribe");
projects / citadel.git / blob