2002-03-11 13:49:50 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* scheduler function, runs global.appStat every minute
|
|
|
|
|
*/
|
2002-05-31 14:14:37 +00:00
|
|
|
function scheduler() {
|
2002-03-11 13:49:50 +00:00
|
|
|
appStat();
|
|
|
|
|
return 60000;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
2002-05-31 14:14:37 +00:00
|
|
|
* initializes app.data.requestStat storage on startup,
|
|
|
|
|
* creates app.data.addressFilter
|
2002-03-11 13:49:50 +00:00
|
|
|
*/
|
2002-05-31 14:14:37 +00:00
|
|
|
function onStart() {
|
|
|
|
|
app.data.requestStat = new HopObject();
|
|
|
|
|
app.data.addressFilter = createAddressFilter();
|
2002-03-25 17:56:26 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* initializes addressFilter from app.properties,
|
|
|
|
|
* hostnames are converted, wildcards are only allowed in ip-addresses
|
|
|
|
|
* (so, no network-names, sorry)
|
|
|
|
|
*/
|
|
|
|
|
function createAddressFilter() {
|
|
|
|
|
var filter = new Packages.helma.util.InetAddressFilter();
|
2002-03-11 13:49:50 +00:00
|
|
|
var str = root.getProperty("allowadmin");
|
|
|
|
|
if ( str!=null && str!="" ) {
|
|
|
|
|
var arr = str.split(",");
|
|
|
|
|
for ( var i in arr ) {
|
|
|
|
|
var str = new java.lang.String(arr[i]);
|
2002-03-25 17:56:26 +00:00
|
|
|
var result = tryEval("filter.addAddress(str.trim());");
|
|
|
|
|
if ( result.error!=null ) {
|
|
|
|
|
var str = java.net.InetAddress.getByName(str.trim()).getHostAddress();
|
|
|
|
|
var result = tryEval("filter.addAddress(str);");
|
|
|
|
|
}
|
|
|
|
|
if ( result.error==null ) {
|
2002-05-31 14:14:37 +00:00
|
|
|
app.log( "allowed address for app manage: " + str );
|
2002-03-25 17:56:26 +00:00
|
|
|
}
|
2002-03-11 13:49:50 +00:00
|
|
|
}
|
2002-03-25 17:56:26 +00:00
|
|
|
} else {
|
2002-05-31 14:14:37 +00:00
|
|
|
app.log("no addresses allowed for app manage, all access will be denied");
|
2002-03-11 13:49:50 +00:00
|
|
|
}
|
2002-03-25 17:56:26 +00:00
|
|
|
return filter;
|
2002-03-11 13:49:50 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
2002-05-31 14:14:37 +00:00
|
|
|
* updates the request stats in app.data.requestStat every 5 minutes
|
2002-03-11 13:49:50 +00:00
|
|
|
*/
|
|
|
|
|
function appStat() {
|
2002-05-31 14:14:37 +00:00
|
|
|
if ( app.data.requestStat==null ) {
|
|
|
|
|
app.data.requestStat = new HopObject();
|
2002-03-11 13:49:50 +00:00
|
|
|
}
|
2002-05-31 14:14:37 +00:00
|
|
|
if( (new Date()-300000) < app.data.requestStat.lastRun ) {
|
2002-03-11 13:49:50 +00:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
var arr = root.getApplications();
|
|
|
|
|
for ( var i=0; i<arr.length; i++ ) {
|
2002-05-31 14:14:37 +00:00
|
|
|
var tmp = app.data.requestStat.get(arr[i].getName());
|
2002-03-11 13:49:50 +00:00
|
|
|
if ( tmp==null ) {
|
|
|
|
|
tmp = new HopObject();
|
|
|
|
|
tmp.lastTotal = 0;
|
|
|
|
|
tmp.last5Min = 0;
|
|
|
|
|
}
|
|
|
|
|
var ct = arr[i].getRequestCount();
|
|
|
|
|
tmp.last5Min = ct - tmp.lastTotal;
|
|
|
|
|
tmp.lastTotal = ct;
|
2002-05-31 14:14:37 +00:00
|
|
|
app.data.requestStat.set(arr[i].getName(), tmp);
|
2002-03-11 13:49:50 +00:00
|
|
|
}
|
2002-05-31 14:14:37 +00:00
|
|
|
app.data.requestStat.lastRun = new Date();
|
2002-03-11 13:49:50 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* utility function to sort object-arrays by name
|
|
|
|
|
*/
|
|
|
|
|
function sortByName(a,b) {
|
|
|
|
|
if ( a.name>b.name )
|
|
|
|
|
return 1;
|
|
|
|
|
else if ( a.name==b.name )
|
|
|
|
|
return 0;
|
|
|
|
|
else
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* utility function to sort property-arrays by key
|
|
|
|
|
*/
|
|
|
|
|
function sortProps(a,b) {
|
|
|
|
|
if ( a>b )
|
|
|
|
|
return 1;
|
|
|
|
|
else if ( a==b )
|
|
|
|
|
return 0;
|
|
|
|
|
else
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* check access to an application or the whole server, authenticate against md5-encrypted
|
|
|
|
|
* properties of base-app or the particular application. if username or password aren't set
|
|
|
|
|
* go into stealth-mode and return a 404. if username|password are wrong, prepare response-
|
|
|
|
|
* object for http-auth and return false.
|
2002-03-26 16:10:28 +00:00
|
|
|
* @arg appObj application object to check against (if adminUsername etc are set in app.properties)
|
2002-03-11 13:49:50 +00:00
|
|
|
*/
|
|
|
|
|
function checkAuth(appObj) {
|
|
|
|
|
var ok = false;
|
|
|
|
|
|
|
|
|
|
// check against root
|
|
|
|
|
var rootUsername = root.getProperty("adminusername");
|
|
|
|
|
var rootPassword = root.getProperty("adminpassword");
|
|
|
|
|
|
2002-03-25 17:56:26 +00:00
|
|
|
if ( rootUsername==null || rootUsername=="" || rootPassword==null || rootPassword=="" ) {
|
2002-03-26 16:10:28 +00:00
|
|
|
return createAuth();
|
2002-03-25 17:56:26 +00:00
|
|
|
}
|
2002-03-11 13:49:50 +00:00
|
|
|
|
2002-05-31 14:14:37 +00:00
|
|
|
var uname = req.username;
|
|
|
|
|
var pwd = req.password;
|
2002-03-11 13:49:50 +00:00
|
|
|
|
|
|
|
|
if ( uname==null || uname=="" || pwd==null || pwd=="" )
|
|
|
|
|
return forceAuth();
|
|
|
|
|
|
2002-03-25 17:56:26 +00:00
|
|
|
var md5username = Packages.helma.util.MD5Encoder.encode(uname);
|
|
|
|
|
var md5password = Packages.helma.util.MD5Encoder.encode(pwd);
|
2002-03-11 13:49:50 +00:00
|
|
|
|
|
|
|
|
if ( md5username==rootUsername && md5password==rootPassword )
|
|
|
|
|
return true;
|
|
|
|
|
|
|
|
|
|
if ( appObj!=null && appObj.isActive() ) {
|
|
|
|
|
// check against application
|
|
|
|
|
var appUsername = appObj.getProperty("adminusername");
|
|
|
|
|
var appPassword = appObj.getProperty("adminpassword");
|
|
|
|
|
if ( appUsername==null || appUsername=="" || appPassword==null || appPassword=="" )
|
|
|
|
|
return forceStealth();
|
|
|
|
|
if ( md5username==appUsername && md5password==appPassword )
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
return forceAuth();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* check access to the base-app by ip-addresses
|
|
|
|
|
*/
|
|
|
|
|
function checkAddress() {
|
2002-05-31 14:14:37 +00:00
|
|
|
if ( !app.data.addressFilter.matches(java.net.InetAddress.getByName(req.data.http_remotehost)) ) {
|
|
|
|
|
app.log("denied request from " + req.data.http_remotehost );
|
2002-03-11 13:49:50 +00:00
|
|
|
return forceStealth();
|
2002-03-25 17:56:26 +00:00
|
|
|
} else {
|
2002-03-11 13:49:50 +00:00
|
|
|
return true;
|
2002-03-25 17:56:26 +00:00
|
|
|
}
|
2002-03-11 13:49:50 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* response is reset to 401 / authorization required
|
2002-03-26 16:10:28 +00:00
|
|
|
* @arg realm realm for http-auth
|
2002-03-11 13:49:50 +00:00
|
|
|
*/
|
2002-03-26 16:10:28 +00:00
|
|
|
function forceAuth(realm) {
|
2002-03-11 13:49:50 +00:00
|
|
|
res.reset();
|
2002-03-26 16:10:28 +00:00
|
|
|
res.status = 401;
|
|
|
|
|
res.realm = (realm!=null) ? realm : "helma";
|
2002-03-11 13:49:50 +00:00
|
|
|
res.write ("Authorization Required. The server could not verify that you are authorized to access the requested page.");
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* response is reset to 404 / notfound
|
|
|
|
|
*/
|
|
|
|
|
function forceStealth() {
|
|
|
|
|
res.reset();
|
|
|
|
|
res.status = 404;
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2002-03-26 16:10:28 +00:00
|
|
|
/**
|
|
|
|
|
* response is either a html form to enter auth data or input from
|
|
|
|
|
* html form is saved to server.properties
|
|
|
|
|
* access is only allowed if remote host is in the list of friendly
|
|
|
|
|
* ip-adresses in server.properties
|
|
|
|
|
*/
|
|
|
|
|
function createAuth() {
|
|
|
|
|
if ( checkAddress()!=true ) {
|
|
|
|
|
// double check
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
var obj = new Object();
|
|
|
|
|
obj.msg = "";
|
|
|
|
|
|
|
|
|
|
if ( req.data.username!=null && req.data.password!=null && req.data.password2!=null ) {
|
|
|
|
|
// we have input from webform
|
|
|
|
|
if ( req.data.username=="" )
|
|
|
|
|
obj.msg += "username can't be left empty!<br>";
|
|
|
|
|
if ( req.data.password=="" )
|
|
|
|
|
obj.msg += "password can't be left empty!<br>";
|
|
|
|
|
else if ( req.data.password!=req.data.password2 )
|
|
|
|
|
obj.msg += "password and re-typed password don't match!<br>";
|
|
|
|
|
if ( obj.msg!="" ) {
|
|
|
|
|
obj.username = req.data.username;
|
|
|
|
|
res.reset();
|
|
|
|
|
renderSkin("pwdform",obj);
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2002-03-26 19:00:03 +00:00
|
|
|
var f = new File(root.getHopHome().toString, "server.properties");
|
|
|
|
|
var str = f.readAll();
|
|
|
|
|
var sep = java.lang.System.getProperty("line.separator");
|
|
|
|
|
str += sep + "adminUsername=" + Packages.helma.util.MD5Encoder.encode(req.data.username) + sep;
|
|
|
|
|
str += "adminPassword=" + Packages.helma.util.MD5Encoder.encode(req.data.password) + sep;
|
|
|
|
|
f.remove();
|
|
|
|
|
f.open();
|
|
|
|
|
f.write(str);
|
|
|
|
|
f.close();
|
2002-05-31 14:14:37 +00:00
|
|
|
app.log( req.data.http_remotehost + " saved new adminUsername/adminPassword to server.properties");
|
2002-03-26 16:10:28 +00:00
|
|
|
res.redirect ( root.href("main") );
|
|
|
|
|
|
|
|
|
|
} else {
|
|
|
|
|
// no input from webform, so print it
|
|
|
|
|
res.reset();
|
2002-06-20 17:21:21 +00:00
|
|
|
res.data.title = "username & password on " + root.hostname_macro();
|
|
|
|
|
res.data.head = renderSkinAsString("head");
|
|
|
|
|
res.data.body = renderSkinAsString("pwdform",obj);
|
|
|
|
|
renderSkin("basic");
|
2002-03-26 16:10:28 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
2002-03-11 13:49:50 +00:00
|
|
|
|
2002-05-31 14:14:37 +00:00
|
|
|
|
2002-06-25 14:04:29 +00:00
|
|
|
/**
|
|
|
|
|
* macro-utility: formatting property lists
|
|
|
|
|
*/
|
|
|
|
|
function formatProperties(props,par) {
|
|
|
|
|
var prefix = (par && par.prefix) ? par.prefix : "";
|
|
|
|
|
var suffix = (par && par.suffix) ? par.suffix : "";
|
|
|
|
|
var separator = (par && par.separator) ? par.separator : "";
|
|
|
|
|
if ( props.size()==0 )
|
|
|
|
|
return "";
|
|
|
|
|
var e = props.keys();
|
|
|
|
|
var arr = new Array();
|
|
|
|
|
while ( e.hasMoreElements() ) {
|
|
|
|
|
arr[arr.length] = e.nextElement();
|
|
|
|
|
}
|
|
|
|
|
arr.sort(sortProps);
|
|
|
|
|
for ( var i in arr ) {
|
|
|
|
|
// don't print the admin-password
|
|
|
|
|
if ( arr[i].toLowerCase()=="adminusername" || arr[i].toLowerCase()=="adminpassword" ) continue;
|
|
|
|
|
res.write ( prefix + arr[i] + separator + props.getProperty(arr[i]) + suffix );
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* macro-utility: formatting an integer value as human readable bytes
|
|
|
|
|
*/
|
|
|
|
|
function formatBytes(bytes) {
|
|
|
|
|
if ( bytes > Math.pow(2,30) ) {
|
|
|
|
|
res.write( Math.round( 100*bytes/Math.pow(2,30) ) / 100 + "gb" );
|
|
|
|
|
} else if ( bytes > Math.pow(2,20) ) {
|
|
|
|
|
res.write( Math.round( 100*bytes/Math.pow(2,20) ) / 100 + "mb" );
|
|
|
|
|
} else {
|
|
|
|
|
res.write( Math.round( 100*bytes/Math.pow(2,10) ) / 100 + "kb" );
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* macro-utility: formatting time in millis as human readable age
|
|
|
|
|
*/
|
|
|
|
|
function formatAge(age) {
|
|
|
|
|
var str = "";
|
|
|
|
|
var days = Math.floor(age/86400);
|
|
|
|
|
var age = age - days * 86400;
|
|
|
|
|
var hours = Math.floor(age / 3600);
|
|
|
|
|
var age = age - hours * 3600;
|
|
|
|
|
var minutes = Math.floor(age / 60);
|
|
|
|
|
var seconds = Math.floor(age - minutes * 60);
|
|
|
|
|
if (days > 0)
|
|
|
|
|
str += (days + " days, ");
|
|
|
|
|
if (hours>0)
|
|
|
|
|
str += (hours + "h, ");
|
|
|
|
|
str += (minutes + "min");
|
|
|
|
|
if (days == 0) str += (", " + seconds + "sec");
|
|
|
|
|
return(str);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* macro-utility: formatting a number-suffix by choosing between singular and plural
|
|
|
|
|
* @arg value number to be formatted
|
|
|
|
|
* @arg param-object object to get fields
|
|
|
|
|
* @param singular string used for value==1
|
|
|
|
|
* @param plural string used for value!=1
|
|
|
|
|
*/
|
|
|
|
|
function formatCount(ct, par) {
|
|
|
|
|
if ( !par || !par.singular || !par.plural ) {
|
|
|
|
|
return "";
|
|
|
|
|
}
|
|
|
|
|
if ( ct==1 )
|
|
|
|
|
return par.singular;
|
|
|
|
|
else
|
|
|
|
|
return par.plural;
|
|
|
|
|
}
|
