| /* ==================================================================== |
| * Copyright (c) 1995-1999 The Apache Group. All rights reserved. |
| * |
| * Redistribution and use in source and binary forms, with or without |
| * modification, are permitted provided that the following conditions |
| * are met: |
| * |
| * 1. Redistributions of source code must retain the above copyright |
| * notice, this list of conditions and the following disclaimer. |
| * |
| * 2. Redistributions in binary form must reproduce the above copyright |
| * notice, this list of conditions and the following disclaimer in |
| * the documentation and/or other materials provided with the |
| * distribution. |
| * |
| * 3. All advertising materials mentioning features or use of this |
| * software must display the following acknowledgment: |
| * "This product includes software developed by the Apache Group |
| * for use in the Apache HTTP server project (http://www.apache.org/)." |
| * |
| * 4. The names "Apache Server" and "Apache Group" must not be used to |
| * endorse or promote products derived from this software without |
| * prior written permission. For written permission, please contact |
| * apache@apache.org. |
| * |
| * 5. Products derived from this software may not be called "Apache" |
| * nor may "Apache" appear in their names without prior written |
| * permission of the Apache Group. |
| * |
| * 6. Redistributions of any form whatsoever must retain the following |
| * acknowledgment: |
| * "This product includes software developed by the Apache Group |
| * for use in the Apache HTTP server project (http://www.apache.org/)." |
| * |
| * THIS SOFTWARE IS PROVIDED BY THE APACHE GROUP ``AS IS'' AND ANY |
| * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
| * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR |
| * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE APACHE GROUP OR |
| * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, |
| * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT |
| * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; |
| * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) |
| * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, |
| * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) |
| * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED |
| * OF THE POSSIBILITY OF SUCH DAMAGE. |
| * ==================================================================== |
| * |
| * This software consists of voluntary contributions made by many |
| * individuals on behalf of the Apache Group and was originally based |
| * on public domain software written at the National Center for |
| * Supercomputing Applications, University of Illinois, Urbana-Champaign. |
| * For more information on the Apache Group and the Apache HTTP server |
| * project, please see <http://www.apache.org/>. |
| * |
| */ |
| |
| /* |
| * mod_dir.c: handle default index files, and trailing-/ redirects |
| */ |
| |
| #include "ap_config.h" |
| #include "httpd.h" |
| #include "http_config.h" |
| #include "http_core.h" |
| #include "http_request.h" |
| #include "http_protocol.h" |
| #include "http_log.h" |
| #include "http_main.h" |
| #include "util_script.h" |
| |
| module MODULE_VAR_EXPORT dir_module; |
| |
| typedef struct dir_config_struct { |
| ap_array_header_t *index_names; |
| } dir_config_rec; |
| |
| #define DIR_CMD_PERMS OR_INDEXES |
| |
| static const char *add_index(cmd_parms *cmd, void *dummy, char *arg) |
| { |
| dir_config_rec *d = dummy; |
| |
| if (!d->index_names) { |
| d->index_names = ap_make_array(cmd->pool, 2, sizeof(char *)); |
| } |
| *(char **)ap_push_array(d->index_names) = arg; |
| return NULL; |
| } |
| |
| static const command_rec dir_cmds[] = |
| { |
| {"DirectoryIndex", add_index, NULL, |
| DIR_CMD_PERMS, ITERATE, |
| "a list of file names"}, |
| {NULL} |
| }; |
| |
| static void *create_dir_config(ap_context_t *p, char *dummy) |
| { |
| dir_config_rec *new = |
| (dir_config_rec *) ap_pcalloc(p, sizeof(dir_config_rec)); |
| |
| new->index_names = NULL; |
| return (void *) new; |
| } |
| |
| static void *merge_dir_configs(ap_context_t *p, void *basev, void *addv) |
| { |
| dir_config_rec *new = (dir_config_rec *) ap_pcalloc(p, sizeof(dir_config_rec)); |
| dir_config_rec *base = (dir_config_rec *) basev; |
| dir_config_rec *add = (dir_config_rec *) addv; |
| |
| new->index_names = add->index_names ? add->index_names : base->index_names; |
| return new; |
| } |
| |
| static int handle_dir(request_rec *r) |
| { |
| dir_config_rec *d = |
| (dir_config_rec *) ap_get_module_config(r->per_dir_config, |
| &dir_module); |
| char *dummy_ptr[1]; |
| char **names_ptr; |
| int num_names; |
| int error_notfound = 0; |
| |
| if (r->uri[0] == '\0' || r->uri[strlen(r->uri) - 1] != '/') { |
| char *ifile; |
| if (r->args != NULL) |
| ifile = ap_pstrcat(r->pool, ap_escape_uri(r->pool, r->uri), |
| "/", "?", r->args, NULL); |
| else |
| ifile = ap_pstrcat(r->pool, ap_escape_uri(r->pool, r->uri), |
| "/", NULL); |
| |
| ap_table_setn(r->headers_out, "Location", |
| ap_construct_url(r->pool, ifile, r)); |
| return HTTP_MOVED_PERMANENTLY; |
| } |
| |
| /* KLUDGE --- make the sub_req lookups happen in the right directory. |
| * Fixing this in the sub_req_lookup functions themselves is difficult, |
| * and would probably break virtual includes... |
| */ |
| |
| if (r->filename[strlen(r->filename) - 1] != '/') { |
| r->filename = ap_pstrcat(r->pool, r->filename, "/", NULL); |
| } |
| |
| if (d->index_names) { |
| names_ptr = (char **)d->index_names->elts; |
| num_names = d->index_names->nelts; |
| } |
| else { |
| dummy_ptr[0] = AP_DEFAULT_INDEX; |
| names_ptr = dummy_ptr; |
| num_names = 1; |
| } |
| |
| for (; num_names; ++names_ptr, --num_names) { |
| char *name_ptr = *names_ptr; |
| request_rec *rr = ap_sub_req_lookup_uri(name_ptr, r); |
| |
| if (rr->status == HTTP_OK && rr->finfo.filetype == APR_REG) { |
| char *new_uri = ap_escape_uri(r->pool, rr->uri); |
| |
| if (rr->args != NULL) |
| new_uri = ap_pstrcat(r->pool, new_uri, "?", rr->args, NULL); |
| else if (r->args != NULL) |
| new_uri = ap_pstrcat(r->pool, new_uri, "?", r->args, NULL); |
| |
| ap_destroy_sub_req(rr); |
| ap_internal_redirect(new_uri, r); |
| return OK; |
| } |
| |
| /* If the request returned a redirect, propagate it to the client */ |
| |
| if (ap_is_HTTP_REDIRECT(rr->status) || |
| (rr->status == HTTP_NOT_ACCEPTABLE && num_names == 1)) { |
| |
| ap_pool_join(r->pool, rr->pool); |
| error_notfound = rr->status; |
| r->notes = ap_overlay_tables(r->pool, r->notes, rr->notes); |
| r->headers_out = ap_overlay_tables(r->pool, r->headers_out, |
| rr->headers_out); |
| r->err_headers_out = ap_overlay_tables(r->pool, r->err_headers_out, |
| rr->err_headers_out); |
| return error_notfound; |
| } |
| |
| /* If the request returned something other than 404 (or 200), |
| * it means the module encountered some sort of problem. To be |
| * secure, we should return the error, rather than create |
| * along a (possibly unsafe) directory index. |
| * |
| * So we store the error, and if none of the listed files |
| * exist, we return the last error response we got, instead |
| * of a directory listing. |
| */ |
| if (rr->status && rr->status != HTTP_NOT_FOUND && rr->status != HTTP_OK) |
| error_notfound = rr->status; |
| |
| ap_destroy_sub_req(rr); |
| } |
| |
| if (error_notfound) |
| return error_notfound; |
| |
| if (r->method_number != M_GET) |
| return DECLINED; |
| |
| /* nothing for us to do, pass on through */ |
| |
| return DECLINED; |
| } |
| |
| |
| static const handler_rec dir_handlers[] = |
| { |
| {DIR_MAGIC_TYPE, handle_dir}, |
| {NULL} |
| }; |
| |
| module MODULE_VAR_EXPORT dir_module = { |
| STANDARD20_MODULE_STUFF, |
| create_dir_config, /* create per-directory config structure */ |
| merge_dir_configs, /* merge per-directory config structures */ |
| NULL, /* create per-server config structure */ |
| NULL, /* merge per-server config structures */ |
| dir_cmds, /* command ap_table_t */ |
| dir_handlers, /* handlers */ |
| NULL /* register hooks */ |
| }; |
