// PostFindHandle implements the handle for the find document (POST). func PostFindHandle(newConn net.Conn, roomName, httpPayload string, rooms *config.CherryRooms, preprocessor *html.Preprocessor) { var userData map[string]string userData = rawhttp.GetFieldsFromPost(httpPayload) var replyBuffer []byte if _, posted := userData["user"]; !posted { replyBuffer = rawhttp.MakeReplyBuffer(html.GetBadAssErrorData(), 404, true) } else { var result string result = preprocessor.ExpandData(roomName, rooms.GetFindResultsHeadTemplate(roomName)) listing := rooms.GetFindResultsBodyTemplate(roomName) availRooms := rooms.GetRooms() user := strings.ToUpper(userData["user"]) if len(user) > 0 { for _, r := range availRooms { users := rooms.GetRoomUsers(r) preprocessor.SetDataValue("{{.find-result-users-total}}", rooms.GetUsersTotal(r)) preprocessor.SetDataValue("{{.find-result-room-name}}", r) for _, u := range users { if strings.HasPrefix(strings.ToUpper(u), user) { preprocessor.SetDataValue("{{.find-result-user}}", u) result += preprocessor.ExpandData(roomName, listing) } } } } result += preprocessor.ExpandData(roomName, rooms.GetFindResultsTailTemplate(roomName)) replyBuffer = rawhttp.MakeReplyBuffer(result, 200, true) } newConn.Write(replyBuffer) newConn.Close() }
// PostJoinHandle implements the handle for the join document (POST). func PostJoinHandle(newConn net.Conn, roomName, httpPayload string, rooms *config.CherryRooms, preprocessor *html.Preprocessor) { // INFO(Santiago): Here, we need firstly parse the posted fields, check for "nickclash", if this is the case // flush the page informing it. Otherwise we add the user basic info and flush the room skeleton // [TOP/BODY/BANNER]. Then we finally close the connection. var userData map[string]string var replyBuffer []byte userData = rawhttp.GetFieldsFromPost(httpPayload) if _, posted := userData["user"]; !posted { newConn.Close() return } if _, posted := userData["color"]; !posted { newConn.Close() return } preprocessor.SetDataValue("{{.nickname}}", userData["user"]) preprocessor.SetDataValue("{{.session-id}}", "0") if rooms.HasUser(roomName, userData["user"]) || userData["user"] == rooms.GetAllUsersAlias(roomName) || strings.Contains(userData["user"], "<") || strings.Contains(userData["user"], ">") || strings.Contains(userData["user"], "<") || strings.Contains(userData["user"], ">") { replyBuffer = rawhttp.MakeReplyBuffer(preprocessor.ExpandData(roomName, rooms.GetNickclashTemplate(roomName)), 200, true) } else { rooms.AddUser(roomName, userData["user"], userData["color"], true) preprocessor.SetDataValue("{{.session-id}}", rooms.GetSessionID(userData["user"], roomName)) replyBuffer = rawhttp.MakeReplyBuffer(preprocessor.ExpandData(roomName, rooms.GetSkeletonTemplate(roomName)), 200, true) rooms.EnqueueMessage(roomName, userData["user"], "", "", "", rooms.GetJoinMessage(roomName), "") } newConn.Write(replyBuffer) newConn.Close() }
// PostBannerHandle implements the handle for the banner document (POST). func PostBannerHandle(newConn net.Conn, roomName, httpPayload string, rooms *config.CherryRooms, preprocessor *html.Preprocessor) { var userData map[string]string var replyBuffer []byte var invalidRequest = false userData = rawhttp.GetFieldsFromPost(httpPayload) if _, has := userData["user"]; !has { invalidRequest = true } else if _, has := userData["id"]; !has { invalidRequest = true } else if _, has := userData["action"]; !has { invalidRequest = true } else if _, has := userData["whoto"]; !has { invalidRequest = true } else if _, has := userData["image"]; !has { invalidRequest = true } else if _, has := userData["says"]; !has { invalidRequest = true } var restoreBanner = true if invalidRequest || !rooms.IsValidUserRequest(roomName, userData["user"], userData["id"], newConn) { replyBuffer = rawhttp.MakeReplyBuffer(html.GetBadAssErrorData(), 404, true) } else if userData["action"] == rooms.GetIgnoreAction(roomName) { if userData["user"] != userData["whoto"] && !rooms.IsIgnored(userData["user"], userData["whoto"], roomName) { rooms.AddToIgnoreList(userData["user"], userData["whoto"], roomName) rooms.EnqueueMessage(roomName, userData["user"], "", "", "", rooms.GetOnIgnoreMessage(roomName)+userData["whoto"], "1") restoreBanner = false } } else if userData["action"] == rooms.GetDeIgnoreAction(roomName) { if rooms.IsIgnored(userData["user"], userData["whoto"], roomName) { rooms.DelFromIgnoreList(userData["user"], userData["whoto"], roomName) rooms.EnqueueMessage(roomName, userData["user"], "", "", "", rooms.GetOnDeIgnoreMessage(roomName)+userData["whoto"], "1") restoreBanner = false } } else { var somethingToSay = (len(userData["says"]) > 0 || len(userData["image"]) > 0 || len(userData["sound"]) > 0) if somethingToSay { // INFO(Santiago): Any further antiflood control would go from here. rooms.EnqueueMessage(roomName, userData["user"], userData["whoto"], userData["action"], userData["image"], userData["says"], userData["priv"]) } } preprocessor.SetDataValue("{{.nickname}}", userData["user"]) preprocessor.SetDataValue("{{.session-id}}", userData["id"]) if userData["priv"] == "1" { preprocessor.SetDataValue("{{.priv}}", "checked") } tempBanner := preprocessor.ExpandData(roomName, rooms.GetBannerTemplate(roomName)) if restoreBanner { tempBanner = strings.Replace(tempBanner, "<option value = \""+userData["whoto"]+"\">", "<option value = \""+userData["whoto"]+"\" selected>", -1) tempBanner = strings.Replace(tempBanner, "<option value = \""+userData["action"]+"\">", "<option value = \""+userData["action"]+"\" selected>", -1) } replyBuffer = rawhttp.MakeReplyBuffer(tempBanner, 200, true) newConn.Write(replyBuffer) newConn.Close() }
func TestGetFieldsFromPost(t *testing.T) { fields := rawhttp.GetFieldsFromPost("POST /path/script.cgi HTTP/1.0\r\n\r\nfoo=bar&bar=foo") if len(fields) != 2 { t.Fail() } if fields["foo"] != "bar" { t.Fail() } if fields["bar"] != "foo" { t.Fail() } }