#lang racket/base (require racket/list racket/path racket/file racket/date net/uri-codec web-server/servlet web-server/compat/0/coerce web-server/compat/0/http/response-structs handin-server/private/md5 handin-server/private/logger handin-server/private/config handin-server/private/hooker "run-servlet.rkt") (define (aget alist key) (cond [(assq key alist) => cdr] [else #f])) (define (clean-str s) (regexp-replace #rx" +$" (regexp-replace #rx"^ +" s "") "")) (define (make-page title . body) `(html (head (title ,title)) (body ([bgcolor "white"]) (h1 ((align "center")) ,title) ,@body))) (define get-user-data (let ([users-file (build-path server-dir "users.rktd")]) (unless (file-exists? users-file) (log-line "WARNING: users file missing on startup: ~a" users-file)) (lambda (user) (and user (get-preference (string->symbol user) (lambda () #f) 'timestamp users-file))))) (define (relativize-path p) (path->string (find-relative-path (normalize-path server-dir) p))) (define (make-k k tag #:mode [mode "download"]) (let ([sep (if (regexp-match? #rx"^[^#]*[?]" k) "&" "?")]) (format "~a~atag=~a~amode=~a" k sep (uri-encode tag) ";" (uri-encode mode)))) ;; `look-for' can be a username as a string (will find "bar+foo" for "foo"), or ;; a regexp that should match the whole directory name (used with "^solution" ;; below) (define (find-handin-entry hi look-for) (let ([dir (assignment<->dir hi)]) (and (directory-exists? dir) (ormap (lambda (d) (let ([d (path->string d)]) (and (cond [(string? look-for) (member look-for (regexp-split #rx" *[+] *" d))] [(regexp? look-for) (regexp-match? look-for d)] [else (error 'find-handin-entry "internal error: ~e" look-for)]) (build-path dir d)))) (directory-list dir))))) (define (handin-link k user hi upload-suffixes) (let* ([dir (find-handin-entry hi user)] [l (and dir (with-handlers ([exn:fail? (lambda (x) null)]) (parameterize ([current-directory dir]) (sort (filter (lambda (f) (and (not (equal? f "grade")) (file-exists? f))) (map path->string (directory-list))) stringstring (seconds->date (file-or-directory-modify-seconds hi)) #t) ")"))) l)) (list (format "No handins accepted so far for user ~s, assignment ~s" user hi))) (if upload-suffixes (let ([dir (or dir (build-path (assignment<->dir hi) user))]) (list '(br) `(a ([href ,(make-k k (relativize-path dir) #:mode "upload")]) "Upload..."))) null)))) (define (solution-link k hi) (let ([soln (and (member (assignment<->dir hi) (get-conf 'inactive-dirs)) (find-handin-entry hi #rx"^solution"))] [none `((i "---"))]) (cond [(not soln) none] [(file-exists? soln) `((a ((href ,(make-k k (relativize-path soln)))) "Solution"))] [(directory-exists? soln) (parameterize ([current-directory soln]) (let ([files (sort (map path->string (filter file-exists? (directory-list))) stringdir dir)]) `(tr ([valign "top"]) ,(apply header hi (if active? `((br) (small (small "[active]"))) '())) ,(apply cell (handin-link k user hi upload-suffixes)) ,(rcell (handin-grade user hi)) ,(apply cell (solution-link k hi))))) (define upload-suffixes (get-conf 'allow-web-upload)) (let* ([next (send/suspend (lambda (k) (make-page (format "All Handins for ~a" user) `(table ([bgcolor "#ddddff"] [cellpadding "6"] [align "center"]) (tr () ,@(map header '(nbsp "Files" "Grade" "Solution"))) ,@(append (map (row k #t upload-suffixes) (get-conf 'active-dirs)) (map (row k #f #f) (get-conf 'inactive-dirs)))))))]) (handle-status-request user next upload-suffixes))) (define (handle-status-request user next upload-suffixes) (let* ([mode (aget (request-bindings next) 'mode)] [tag (aget (request-bindings next) 'tag)]) (cond [(string=? mode "download") (download user tag)] [(string=? mode "upload") (upload user tag upload-suffixes)] [else (error 'status "unknown mode: ~s" mode)]))) (define (check path elts allow-active? allow-inactive?) (let loop ([path path] [elts (reverse elts)]) (let*-values ([(base name dir?) (split-path path)] [(name) (path->string name)] [(check) (and (pair? elts) (car elts))]) (if (null? elts) ;; must be rooted in a submission directory (why build-path instead ;; of using `path'? -- because path will have a trailing slash) (member (build-path base name) (cond [(and allow-active? allow-inactive?) (get-conf 'all-dirs)] [allow-inactive? (get-conf 'inactive-dirs)] [allow-active? (get-conf 'active-dirs)] [else null])) (and (cond [(eq? '* check) #t] [(regexp? check) (regexp-match? check name)] [(string? check) (or (equal? name check) (member check (regexp-split #rx" *[+] *" name)))] [else #f]) (loop base (cdr elts))))))) (define (download who tag) (define file (build-path server-dir tag)) (with-handlers ([exn:fail? (lambda (exn) (log-line "Status exception: ~a" (exn-message exn)) (make-page "Error" "Illegal file access"))]) ;; Make sure the user is allowed to read the requested file: (or (check file `(,who *) #t #t) (check file `(#rx"^solution") #f #t) (check file `(#rx"^solution" *) #f #t) (error 'download "bad file access for ~s: ~a" who file)) (log-line "Status file-get: ~s ~a" who file) (hook 'status-file-get `([username ,(string->symbol who)] [file ,file])) ;; Return the downloaded file (let* ([data (file->bytes file)] [html? (regexp-match? #rx"[.]html?$" (string-foldcase tag))] [wxme? (regexp-match? #rx#"^(?:#reader[(]lib\"read.(?:ss|rkt)\"\"wxme\"[)])?WXME" data)]) (make-response/full 200 #"Okay" (current-seconds) (cond [html? #"text/html"] [wxme? #"application/data"] [else #"text/plain"]) (list (make-header #"Content-Length" (string->bytes/latin-1 (number->string (bytes-length data)))) (make-header #"Content-Disposition" (string->bytes/utf-8 (format "~a; filename=~s" (if wxme? "attachment" "inline") (let-values ([(base name dir?) (split-path file)]) (path->string name)))))) (list data))))) (define (upload who tag suffixes) (define next (send/suspend (lambda (k) (make-page "Handin Upload" `(form ([action ,k] [method "post"] [enctype "multipart/form-data"]) (table ([align "center"]) (tr (td "File:") (td (input ([type "file"] [name "file"])))) (tr (td ([colspan "2"] [align "center"]) (input ([type "submit"] [name "post"] [value "Upload"])))))) `(p "The uploaded file will replace any existing file with the same name.") `(p "Allowed file extensions:" ,@(for/list ([s (in-list suffixes)] [n (in-naturals)]) `(span " " (tt ,(bytes->string/utf-8 s)))) ". " "If the uploaded file has no extension or a different extension, " (tt ,(bytes->string/utf-8 (first suffixes))) " is added automatically."))))) (let ([fb (for/first ([b (in-list (request-bindings/raw next))] #:when (binding:file? b)) b)]) (if (and fb (not (equal? #"" (binding:file-filename fb)))) (let* ([fn (binding:file-filename fb)] [base-fn (if (for/or ([suffix (in-list suffixes)]) (regexp-match? (bytes-append (regexp-quote suffix) #"$") fn)) (bytes->path fn) (path-add-suffix (bytes->path fn) (if (null? suffixes) #".txt" (car suffixes))))] [hw-dir (build-path server-dir tag)] [fn (build-path hw-dir (file-name-from-path base-fn))]) (unless (check fn `(,who *) #t #f) (error 'download "bad upload access for ~s: ~a" who fn)) (make-directory* hw-dir) (with-output-to-file fn #:exists 'truncate/replace (lambda () (display (binding:file-content fb)))) (all-status-page who)) (error "no file provided")))) (define (status-page user for-handin) (log-line "Status access: ~s" user) (hook 'status-login `([username ,(string->symbol user)])) (if for-handin (one-status-page user for-handin) (all-status-page user))) (define (login-page for-handin errmsg) (let* ([request (send/suspend (lambda (k) (make-page "Handin Status Login" `(form ([action ,k] [method "post"]) (table ([align "center"]) (tr (td ([colspan "2"] [align "center"]) (font ([color "red"]) ,(or errmsg 'nbsp)))) (tr (td "Username") (td (input ([type "text"] [name "user"] [size "20"] [value ""])))) (tr (td nbsp)) (tr (td "Password") (td (input ([type "password"] [name "passwd"] [size "20"] [value ""])))) (tr (td ([colspan "2"] [align "center"]) (input ([type "submit"] [name "post"] [value "Login"])))))))))] [bindings (request-bindings request)] [user (aget bindings 'user)] [passwd (aget bindings 'passwd)] [user (and user (clean-str user))] [user (and user (if (get-conf 'username-case-sensitive) user (string-foldcase user)))] [user-data (get-user-data user)]) (redirect/get) (cond [(and user-data (string? passwd) (let ([pw (md5 passwd)]) (or (equal? pw (car user-data)) (equal? pw (get-conf 'master-password))))) (status-page user for-handin)] [else (login-page for-handin "Bad username or password")]))) (define web-counter (let ([sema (make-semaphore 1)] [count 0]) (lambda () (dynamic-wind (lambda () (semaphore-wait sema)) (lambda () (set! count (add1 count)) (format "w~a" count)) (lambda () (semaphore-post sema)))))) (define default-context-length (error-print-context-length)) (define (dispatcher request) (error-print-context-length default-context-length) (parameterize ([current-session (web-counter)]) (login-page (aget (request-bindings request) 'handin) #f))) (provide run) (define (run) (if (get-conf 'use-https) (begin0 (parameterize ([error-print-context-length 0]) (run-servlet dispatcher #:log-file (get-conf 'web-log-file))) (log-line "*** embedded web server started")) ;; simple "server" so it's known that there is no server (lambda (msg . args) (when (eq? 'connect msg) (for-each (lambda (x) (display x (cadr args))) '(#"HTTP/1.0 200 OK\r\n" #"Content-Type: text/html\r\n" #"\r\n" #"

" #"Please use the handin plugin" #"

")) (close-input-port (car args)) (close-output-port (cadr args)) (semaphore-post (caddr args))))))