X-Git-Url: https://git.sesse.net/?p=pr0n;a=blobdiff_plain;f=perl%2FSesse%2Fpr0n%2FWebDAV.pm;h=3f896453db054d764a526166f483f36abfaf7f4b;hp=a06e4ca24694b734b0b9fcc2291a587b48116d54;hb=b6bd6e25455bb5748b1516df9c4487f85ed65bad;hpb=d0c5bf570026f38da0b86586ea46f39a747ceaae

diff --git a/perl/Sesse/pr0n/WebDAV.pm b/perl/Sesse/pr0n/WebDAV.pm
index a06e4ca..3f89645 100644
--- a/perl/Sesse/pr0n/WebDAV.pm
+++ b/perl/Sesse/pr0n/WebDAV.pm
@@ -3,7 +3,7 @@ use strict;
 use warnings;
 
 use Sesse::pr0n::Common qw(error dberror);
-use Digest::SHA1;
+use Digest::SHA;
 use MIME::Base64;
 use Apache2::Request;
 use Apache2::Upload;
@@ -368,7 +368,7 @@ EOF
 		} else {
 			# check if we have a "shadow file" for this
 			if (defined($autorename) && $autorename eq "autorename/") {
-				my $ref = $dbh->selectrow_hashref('SELECT id FROM shadow_files WHERE host=? AND event=? AND filename=? AND expires_at > now()',
+				my $ref = $dbh->selectrow_hashref('SELECT id FROM shadow_files WHERE vhost=? AND event=? AND filename=? AND expires_at > now()',
 					undef, $r->get_server_name, $event, $filename);
 				if (defined($ref)) {
 				 	($fname, $size, $mtime) = Sesse::pr0n::Common::stat_image_from_id($r, $ref->{'id'});
@@ -448,13 +448,18 @@ EOF
 		}
 		
 		# Autorename if we need to
-		if (defined($autorename) && $autorename eq "autorename/") {
-			my $ref = $dbh->selectrow_hashref("SELECT COUNT(*) AS numfiles FROM images WHERE vhost=? AND event=? AND filename=?",
-				undef, $r->get_server_name, $event, $filename)
-				or dberror($r, "Couldn't check for existing files");
-			if ($ref->{'numfiles'} > 0) {
+		$ref = $dbh->selectrow_hashref("SELECT COUNT(*) AS numfiles FROM images WHERE vhost=? AND event=? AND filename=?",
+		                               undef, $r->get_server_name, $event, $filename)
+			or dberror($r, "Couldn't check for existing files");
+		if ($ref->{'numfiles'} > 0) {
+			if (defined($autorename) && $autorename eq "autorename/") {
 				$r->log->info("Renaming $filename to $newid.jpeg");
 				$filename = "$newid.jpeg";
+			} else {
+				$r->status(403);
+				$r->content_type('text/plain; charset=utf-8');
+				$r->print("File $filename already exists in event $event, cannot overwrite");
+				return Apache2::Const::OK;
 			}
 		}
 		
@@ -474,6 +479,7 @@ EOF
 				Sesse::pr0n::Common::purge_cache($r, "/$event/");
 
 				# Now save the file to disk
+				Sesse::pr0n::Common::ensure_disk_location_exists($r, $newid);	
 				$fname = Sesse::pr0n::Common::get_disk_location($r, $newid);
 				open NEWFILE, ">$fname"
 					or die "$fname: $!";
@@ -494,7 +500,7 @@ EOF
 				if ($filename !~ /^\.(_|DS_Store)/) {
 					# FIXME: Ideally we'd want to ensure cache of -1x-1 here as well (for NEFs), but that would
 					# preclude mipmapping in its current form.
-					Sesse::pr0n::Common::ensure_cached($r, $filename, $newid, undef, undef, "nobox", 80, 64, 320, 256);
+					Sesse::pr0n::Common::ensure_cached($r, $filename, $newid, undef, undef, "nobox", 1, 80, 64, 320, 256);
 				}
 				
 				# OK, we got this far, commit
@@ -528,127 +534,6 @@ EOF
 		return Apache2::Const::OK;
 	}
 	
-	# Used by the XP publishing wizard -- largely the same as the code above
-	# but vastly simplified. Should we refactor?
-	if ($r->method eq "POST") {
-		my $apr = Apache2::Request->new($r);
-		my $client_size = $apr->param('size');
-		my $event = $apr->param('event');
-				
-		my $file = $apr->upload('image');
-		my $filename = $file->filename();
-		if ($client_size != $file->size()) {
-			$r->content_type('text/plain; charset="utf-8"');
-			$r->status(403);
-			$r->print("Client-size resizing detected; refusing automatically");
-
-			$r->log->info("Client-size resized upload of $event/$filename detected");
-			return Apache2::Const::OK;
-		}
-		
-		# Ugh, Windows XP seems to be sending this in... something that's not UTF-8, at least
-		my $takenby_given = Sesse::pr0n::Common::guess_charset($apr->param('takenby'));
-
-		if (defined($takenby_given) && $takenby_given !~ /^\s*$/ && $takenby_given !~ /[<>&]/ && length($takenby_given) <= 100) {
-			$takenby = $takenby_given;
-		}
-		
-		my $ne_id = Sesse::pr0n::Common::guess_charset($apr->param('neweventid'));
-		my $ne_date = Sesse::pr0n::Common::guess_charset($apr->param('neweventdate'));
-		my $ne_desc = Sesse::pr0n::Common::guess_charset($apr->param('neweventdesc'));
-		if (defined($ne_id)) {
-			# Trying to add a new event, let's see if it already exists
-			my $q = $dbh->prepare('SELECT COUNT(*) AS cnt FROM events WHERE event=? AND vhost=?')
-				or dberror($r, "Couldn't prepare event count");
-			$q->execute($ne_id, $r->get_server_name)
-				or dberror($r, "Couldn't execute event count");
-			my $ref = $q->fetchrow_hashref;
-
-			if ($ref->{'cnt'} == 0) {
-				my @errors = Sesse::pr0n::Common::add_new_event($r, $dbh, $ne_id, $ne_date, $ne_desc);
-				if (scalar @errors > 0) {
-					die "Couldn't add new event $ne_id: " . join(', ', @errors);
-				}
-			}
-
-			$event = $ne_id;
-		}
-
-		# Remove evil characters
-		if ($filename =~ /[^a-zA-Z0-9._-]/) {
-			$filename =~ tr/a-zA-Z0-9.-/_/c;
-		}
-		
-		# Get the new ID
-		my $ref = $dbh->selectrow_hashref("SELECT NEXTVAL('imageid_seq') AS id;");
-		my $newid = $ref->{'id'};
-		if (!defined($newid)) {
-			dberror($r, "Couldn't get new ID");
-		}
-		
-		# Autorename if we need to
-		{
-			my $ref = $dbh->selectrow_hashref("SELECT COUNT(*) AS numfiles FROM images WHERE vhost=? AND event=? AND filename=?",
-				undef, $r->get_server_name, $event, $filename)
-				or dberror($r, "Couldn't check for existing files");
-			if ($ref->{'numfiles'} > 0) {
-				$r->log->info("Renaming $filename to $newid.jpeg");
-				$filename = "$newid.jpeg";
-			}
-		}
-		
-		{
-			# Enable transactions and error raising temporarily
-			local $dbh->{AutoCommit} = 0;
-			local $dbh->{RaiseError} = 1;
-			my $fname;
-
-			# Try to insert this new file
-			eval {
-				$dbh->do('INSERT INTO images (id,vhost,event,uploadedby,takenby,filename) VALUES (?,?,?,?,?,?)',
-					undef, $newid, $r->get_server_name, $event, $user, $takenby, $filename);
-
-				# Now save the file to disk
-				$fname = Sesse::pr0n::Common::get_disk_location($r, $newid);
-				open NEWFILE, ">$fname"
-					or die "$fname: $!";
-
-				my $buf;
-				$file->slurp($buf);
-				print NEWFILE $buf or die "write($fname): $!";
-				close NEWFILE or die "close($fname): $!";
-				
-				# Orient stuff correctly
-				system("/usr/bin/exifautotran", $fname) == 0
-					or die "/usr/bin/exifautotran: $!";
-
-				# Make cache while we're at it.
-				Sesse::pr0n::Common::ensure_cached($r, $filename, $newid, undef, undef, 1, 80, 64, 320, 256, -1, -1);
-				
-				# OK, we got this far, commit
-				$dbh->commit;
-
-				$r->log->notice("Successfully wrote $event/$filename to $fname");
-			};
-			if ($@) {
-				# Some error occurred, rollback and bomb out
-				$dbh->rollback;
-				error($r, "Transaction aborted because $@");
-				unlink($fname);
-		
-				$r->content_type('text/plain; charset="utf-8"');
-				$r->status(500);
-				$r->print("Error: $@");
-			}
-		}
-
-		$r->content_type('text/plain; charset="utf-8"');
-		$r->status(201);
-		$r->print("OK");
-
-		return Apache2::Const::OK;
-	}
-	
 	# Yes, we fake locks. :-)
 	if ($r->method eq "LOCK") {
 		if ($r->uri !~ m#^/webdav/upload/([a-zA-Z0-9-]+)/(autorename/)?([a-zA-Z0-9._-]+)$#) {
@@ -660,7 +545,7 @@ EOF
 
 		my ($event, $autorename, $filename) = ($1, $2, $3);
 		$autorename = '' if (!defined($autorename));
-		my $sha1 = Digest::SHA1::sha1_base64("/$event/$autorename$filename");
+		my $sha1 = Digest::SHA::sha1_base64("/$event/$autorename$filename");
 
 		$r->status(200);
 		$r->content_type('text/xml; charset=utf-8');