eXist-db
diff --git a/‎.gitignore‎
Lines changed: 4 additions & 0 deletions b/‎.gitignore‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 1 addition & 1 deletion b/‎README.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎admin.html‎
Lines changed: 7 additions & 7 deletions b/‎admin.html‎
Lines changed: 7 additions & 7 deletions
diff --git a/‎build.xml‎
Lines changed: 5 additions & 4 deletions b/‎build.xml‎
Lines changed: 5 additions & 4 deletions
diff --git a/‎controller.xql‎
Lines changed: 137 additions & 65 deletions b/‎controller.xql‎
Lines changed: 137 additions & 65 deletions
diff --git a/‎index.html‎
Lines changed: 1 addition & 1 deletion b/‎index.html‎
Lines changed: 1 addition & 1 deletion
@@ -2,3 +2,7 @@ build/*
 expath-pkg.xml
 .existdb.json
 .DS_Store
+
+# IDE settings
+.vscode
+.idea
@@ -11,4 +11,4 @@ The application:
 - Exposes an Atom feed with all package updates
 - Allows administrators to log in, upload new packages, and refresh the package metadata
 
-By default, eXist-db's Dashboard > Package Manager is configured to access the eXist-db Public Application Repository at https://demo.exist-db.org/exist/apps/public-repo/index.html.
+By default, eXist-db's Dashboard > Package Manager is configured to access the eXist-db Public Application Repository at https://exist-db.org/exist/apps/public-repo.
@@ -50,16 +50,16 @@ <h3><span data-template="app:package-group-abbrev"/></h3>
         </div>
         <div class="col-md-4">
             <p>
-                <a href="index.html" class="btn btn-primary">
+                <a href="" class="btn btn-primary">
                     <i class="glyphicon glyphicon-share"/> Return to list 
                 </a>
             </p>
             <p>
-                <a href="?rebuild-package-groups-metadata=true" class="btn btn-default">
+                <a href="admin?rebuild-package-groups-metadata=true" class="btn btn-default">
                     <i class="glyphicon glyphicon-repeat"/> Rebuild package-groups metadata 
                 </a>
             </p>
-            <a href="index.html?logout=true" class="btn btn-default">
+            <a href="?logout=true" class="btn btn-default">
                 <i class="glyphicon glyphicon-log-out"/> Log out</a>
             <h2>Upload Packages</h2>
             <p>Upload xar packages to the public repository. New packages will appear in the list of
@@ -85,14 +85,14 @@ <h2>Upload Packages</h2>
             </table>
         </div>
     </div>
-    <script type="text/javascript" src="resources/scripts/jquery.ui.widget.js"/>
-    <script type="text/javascript" src="resources/scripts/jquery.iframe-transport.js"/>
-    <script type="text/javascript" src="resources/scripts/jquery.fileupload.js"/>
+    <script type="text/javascript" src="resources/scripts/jquery.ui.widget.js"></script>
+    <script type="text/javascript" src="resources/scripts/jquery.iframe-transport.js"></script>
+    <script type="text/javascript" src="resources/scripts/jquery.fileupload.js"></script>
     <script type="text/javascript">
     $(function () {
         'use strict';
         $('#fileupload').fileupload({
-            url: "put-package",
+            url: "publish",
             dataType: 'json',
             done: function (e, data) {
                 $.each(data.result.files, function (index, file) {
 
@@ -3,7 +3,7 @@
     <property file="local.build.properties"/>
     <property file="build.properties"/>
     <property name="build" value="./build"/>
-    <property name="server.url" value="http://demo.exist-db.org/exist/apps/public-repo/public/"/>
+    <!-- <property name="server.url" value="http://exist-db.org/exist/apps/public-repo/publish"/> -->
     <condition property="git.commit" value="${git.commit}" else="">
         <isset property="git.commit"/>
     </condition>
@@ -24,26 +24,27 @@
         <zip destfile="${build}/${project.name}-${project.version}${git.commit}.xar">
             <fileset dir=".">
                 <include name="*.*"/>
+                <exclude name=".*"/>
                 <include name="modules/**"/>
                 <include name="resources/**"/>
                 <include name="templates/**"/>
                 <include name="meta/*"/>
                 <exclude name="${build}/*"/>
-                <exclude name=".git*"/>
                 <exclude name="*.tmpl"/>
                 <exclude name="*.properties"/>
-                <exclude name=".project"/>
                 <exclude name="public/*"/>
             </fileset>
         </zip>
     </target>
+    <!--
     <target name="upload">
         <input message="Enter password:" addproperty="server.pass" defaultvalue="">
             <handler type="secure"/>
         </input>
         <property name="xar" value="${project.name}-${project.version}${git.commit}.xar"/>
         <exec executable="curl">
-            <arg line="-T ${build}/${xar} -u admin:${server.pass} ${server.url}/${xar}"/>
+            <arg line="-T ${build}/${xar} -u repo:${server.pass} ${server.url}/${xar}"/>
         </exec>
     </target>
+    -->
 </project>
@@ -1,8 +1,9 @@
 xquery version "3.1";
 
-import module namespace config="http://exist-db.org/xquery/apps/config" at "modules/config.xqm";
 import module namespace login="http://exist-db.org/xquery/login" at "resource:org/exist/xquery/modules/persistentlogin/login.xql";
 
+import module namespace config="http://exist-db.org/xquery/apps/config" at "modules/config.xqm";
+
 declare namespace sm="http://exist-db.org/xquery/securitymanager";
 
 declare variable $exist:path external;
@@ -17,82 +18,98 @@ declare variable $app-root-absolute-url :=
     || $exist:controller
 ;
 
-login:set-user("org.exist.public-repo.login", (), false()),
+declare function local:is-authorized-user() as xs:boolean {
+    let $user := request:get-attribute($config:login-domain || ".user")
+    return 
+        (
+            exists($user) and 
+            sm:get-user-groups($user) = config:repo-permissions()?group
+        )
+};
+
+login:set-user($config:login-domain, (), false()),
+
+(: 
+ : =============
+ : Public routes 
+ : =============
+ :)
 
-if ($exist:path eq "") then
+if (request:get-method() eq "GET" and $exist:path eq "") then
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
-        <redirect url="{request:get-uri()}/"/>
+        <redirect url="{$app-root-absolute-url}/"/>
+    </dispatch>
+
+(: Landing page with package listing :)
+else if (request:get-method() eq "GET" and $exist:path eq "/") then
+    <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
+        <forward url="{$exist:controller}/index.html"/>
+        <view>
+            <forward url="{$exist:controller}/modules/view.xq">
+                <set-header name="Cache-Control" value="no-cache"/>
+                <add-parameter name="base-url" value="{$app-root-absolute-url}"/>
+            </forward>
+        </view>
     </dispatch>
 
-else if ($exist:path eq "/") then
-    (: forward root path to index.xql :)
+(: Redirect request for legacy "/index.html" page to "/" :)
+else if (request:get-method() eq "GET" and $exist:path eq "/index.html") then
+    (: TODO make the redirect issue a 301 :)
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
-        <redirect url="index.html"/>
+        <redirect url="{$app-root-absolute-url}/"/>
     </dispatch>
 
-else if ($exist:path eq "/public/apps.xml") then
+(: List apps for packageservice. See https://github.com/eXist-db/existdb-packageservice/blob/master/modules/packages.xqm#L285-L286. :)
+else if (request:get-method() eq "GET" and $exist:path eq "/public/apps.xml") then
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
         <forward url="{$exist:controller}/modules/list.xq"/>
     </dispatch>
 
-(:  Protected resource: user is required to log in with valid credentials.
-    If the login fails or no credentials were provided, the request is redirected
-    to the login.html page. :)
-else if ($exist:path eq "/admin.html") then
-    let $user := request:get-attribute("org.exist.public-repo.login.user")
-    return
-        if (exists($user) and sm:get-user-groups($user) = config:repo-permissions()?group) then
-            <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
-                <view>
-                    <forward url="{$exist:controller}/modules/view.xq">
-                        <set-header name="Cache-Control" value="no-cache"/>
-                    </forward>
-                </view>
-            </dispatch>
-        else
-            <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
-                <forward url="login.html"/>
-                <view>
-                    <forward url="{$exist:controller}/modules/view.xq">
-                        <set-header name="Cache-Control" value="no-cache"/>
-                    </forward>
-                </view>
-            </dispatch>
-
-(:  Protected resource :)
-else if ($exist:path eq "/put-package") then
-    <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
-        <forward url="{$exist:controller}/modules/put-package.xq"/>
-    </dispatch>
-
-else if (ends-with($exist:resource, ".html") and starts-with($exist:path, "/packages")) then
-    <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
-        <forward url="{concat($exist:controller, '/packages.html')}"/>
-        <view>
-            <forward url="{concat($exist:controller, '/modules/view.xq')}">
-                <add-parameter name="abbrev" value="{substring-before($exist:resource, '.html')}"/>
-            </forward>
-        </view>
+(: Redirect request for package detail with legacy ".html" extension to new canonical pattern without the extension :)
+else if (request:get-method() eq "GET" and starts-with($exist:path, "/packages") and ends-with($exist:resource, ".html")) then
+    (: TODO make the redirect issue a 301 :)
+    <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
+        <redirect url="{$app-root-absolute-url}/packages/{substring-before($exist:resource, ".html")}?{request:get-query-string()}"/>
     </dispatch>
-    
-else if (ends-with($exist:resource, ".html")) then
-    (: the html page is run through view.xq to expand templates :)
+
+(: Serve package detail - without the legacy ".html" extension :)
+else if (request:get-method() eq "GET" and starts-with($exist:path, "/packages")) then
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
+        <forward url="{$exist:controller}/packages.html"/>
         <view>
-            <forward url="modules/view.xq">
-                <set-header name="Cache-Control" value="no-cache"/>
+            <forward url="{$exist:controller}/modules/view.xq">
+                <add-parameter name="abbrev" value="{$exist:resource}"/>
+                <add-parameter name="base-url" value="{$app-root-absolute-url}"/>
             </forward>
         </view>
     </dispatch>
 
-else if (contains($exist:path, "/public/") and ends-with($exist:resource, ".xar") or ends-with($exist:resource, ".zip")) then
+(: Serve requests for packages as ".xar" or ".zip" :)
+else if 
+    (
+        request:get-method() eq "GET" and
+        starts-with($exist:path, "/public/") and
+        (
+            ends-with($exist:resource, ".xar") or
+            ends-with($exist:resource, ".zip")
+        )
+    ) then
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
         <forward url="{$exist:controller}/modules/get-package.xq">
             <add-parameter name="filename" value="{$exist:resource}"/>
         </forward>
     </dispatch>
 
-else if (contains($exist:path, "/public/") and (ends-with($exist:resource, ".png") or ends-with($exist:resource, ".svg"))) then
+(: Serve requests for icons in the supported formats :)
+else if 
+    (
+        request:get-method() eq "GET" and
+        starts-with($exist:path, "/public/") and
+        (
+            ends-with($exist:resource, ".png") or
+            ends-with($exist:resource, ".svg")
+        )
+    ) then
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
         <forward url="{$exist:controller}/modules/get-icon.xq">
             <add-parameter name="filename" value="{$exist:resource}"/>
@@ -105,37 +122,92 @@ else if (contains($exist:path, "/public/") and (ends-with($exist:resource, ".png
  : - existdb-packageservice v1.3.9 and earlier (fixed in https://github.com/eXist-db/existdb-packageservice/releases/tag/v1.3.10) --> and thus all versions of eXist up to and including v5.2.0.
  : - shared-resources v0.8.4 and earlier (fixed in https://github.com/eXist-db/shared-resources/releases/tag/v0.8.5) --> and thus all versions of eXist up to and including v4.7.0.
  :)
-else if ($exist:path eq "/modules/find.xql") then
+else if (request:get-method() eq "GET" and $exist:path eq "/modules/find.xql") then 
+    (: TODO make the redirect issue a 301 :)
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
-        <redirect url="../find?{request:get-query-string()}"/>
+        <redirect url="{$app-root-absolute-url}/find?{request:get-query-string()}"/>
     </dispatch>
 
-else if ($exist:path eq "/find") then
+else if (request:get-method() eq "GET" and $exist:path eq "/find") then
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
-        <forward url="modules/find.xq">
+        <forward url="{$exist:controller}/modules/find.xq">
             <add-parameter name="app-root-absolute-url" value="{$app-root-absolute-url}"/>
         </forward>
     </dispatch>
 
-else if ($exist:resource eq "feed.xml") then
+else if (request:get-method() eq "GET" and $exist:path eq "/feed.xml") then
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
-        <forward url="modules/feed.xq"/>
+        <forward url="{$exist:controller}/modules/feed.xq"/>
     </dispatch>
 
-else if (contains($exist:path, "/$shared/")) then
+else if (request:get-method() eq "GET" and contains($exist:path, "/$shared/")) then
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
         <forward url="/shared-resources/{substring-after($exist:path, '/$shared/')}">
             <set-header name="Cache-Control" value="max-age=3600, must-revalidate"/>
         </forward>
     </dispatch>
 
-else if (contains($exist:path, "/resources/")) then
+else if (request:get-method() eq "GET" and contains($exist:path, "/resources/")) then
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
         <set-header name="Cache-Control" value="max-age=3600, must-revalidate"/>
     </dispatch>
-    
-else
-    (: everything else is passed through :)
+
+(: 
+ : ================
+ : Protected routes 
+ : ================ 
+ :)
+
+(: User is required to be logged in and member of a specific group. Redirect unauthorized requests to the login page. :)
+else if 
+    (
+        not(local:is-authorized-user()) and 
+        $exist:path = ("/admin", "/publish")
+    ) then
     <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
-        <cache-control cache="yes"/>
+        <forward url="{$exist:controller}/login.html"/>
+        <view>
+            <forward url="{$exist:controller}/modules/view.xq">
+                <set-header name="Cache-Control" value="no-cache"/>
+                <add-parameter name="base-url" value="{$app-root-absolute-url}"/>
+            </forward>
+        </view>
+    </dispatch>
+
+(: Allow authenticated users into admin page :)
+else if (request:get-method() = ("GET", "POST") and $exist:path eq "/admin") then
+    <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
+        <forward url="{$exist:controller}/admin.html"/>
+        <view>
+            <forward url="{$exist:controller}/modules/view.xq">
+                <set-header name="Cache-Control" value="no-cache"/>
+                <add-parameter name="base-url" value="{$app-root-absolute-url}"/>
+            </forward>
+        </view>
     </dispatch>
+
+(: Redirect requests for legacy "/admin.html" page to "/admin" :)
+else if (request:get-method() = ("GET", "POST") and $exist:path eq "/admin.html") then
+    (: TODO make the redirect issue a 301 :)
+    <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
+        <redirect url="{$app-root-absolute-url}/admin"/>
+    </dispatch>
+
+(: Accept package uploads at the "/publish" endpoint :)
+else if (request:get-method() eq "POST" and $exist:path eq "/publish") then
+    <dispatch xmlns="http://exist.sourceforge.net/NS/exist">
+        <forward url="{$exist:controller}/modules/publish-package.xq"/>
+    </dispatch>
+
+(: 
+ : ==============
+ : Fallback route 
+ : ============== 
+ :)
+
+(: Respond with a 404 Not Found error  :)
+else
+    (
+        response:set-status-code(404),
+        <data>Not found</data>
+    )
@@ -30,7 +30,7 @@ <h2>Packages</h2>
         <div class="col-md-4">
             <h2>Admin</h2>
             <p>
-                <a href="admin.html" class="btn btn-primary">
+                <a href="./admin" class="btn btn-primary">
                     <i class="glyphicon glyphicon-open"/> Upload</a>
             </p>
             <p>(requires login)</p>