widig
diff --git a/‎assets/page/torito/img/setup.png‎
9.37 KB b/‎assets/page/torito/img/setup.png‎
9.37 KB
diff --git a/‎assets/page/torito/login.html‎
Lines changed: 71 additions & 0 deletions b/‎assets/page/torito/login.html‎
Lines changed: 71 additions & 0 deletions
diff --git a/‎index.js‎
Lines changed: 67 additions & 1 deletion b/‎index.js‎
Lines changed: 67 additions & 1 deletion
diff --git a/‎meta/javascript/client/torito/acl.html‎
Lines changed: 171 additions & 0 deletions b/‎meta/javascript/client/torito/acl.html‎
Lines changed: 171 additions & 0 deletions
@@ -0,0 +1,71 @@
+<!doctype html>
+<html>
+	<head>
+		<script src="/load?file=./assets/page/torito/js/import.js"></script>
+		
+		<style>
+			body {
+				font-family:Tahoma;
+				background-color: #498fff;
+			}
+		</style>
+		<script>
+			window.addEventListener("load",function() {
+				document.getElementById("frmLogin_btnEnter").addEventListener("click",function() {
+					Import({url:"/acl",method:"post",data:{
+						action:"login",
+						username:document.getElementById("frmLogin_txtUsername").value,
+						password:document.getElementById("frmLogin_txtPassword").value
+					}})
+					.done(function(data) {
+						data = JSON.parse(data);
+						if(data.result) {
+							window.location = "/route";
+						}
+					})
+					.send();
+				});
+			});
+		</script>
+	</head>
+	<body>
+		<div id="top" style="">
+			<table width="100%" style="background-color:transparent;border:none;" border=0>
+				<tr>
+					<td align="left">
+					
+					</td>
+					<td align="center" style="font-size:22px;">
+						<table border=0>
+							<tr>
+								<td>
+									<img src="assets/page/torito/img/icon.png" width="64"/>			
+								</td>
+							</tr>
+							<tr>
+								<td align="right">
+									<span style="font-size:12px;">username:</span><br/>
+									<input tabindex=1 id="frmLogin_txtUsername" type="text"/>
+								</td>
+							</tr>
+							<tr>
+								<td align="right">
+									<span style="font-size:12px;">password:</span><br/>
+									<input tabindex=2 id="frmLogin_txtPassword" type="password"/>
+								</td>
+							</tr>
+							<tr>
+								<td align="right">
+									<input id="frmLogin_btnEnter" tabindex=3 type="button" value="enter"/>
+								</td>
+							</tr>
+						</table>
+					</td>
+					<td align="right">
+						
+					</td>
+				</tr>
+			</table>
+		</div>
+	</body>
+</html>
@@ -11,28 +11,94 @@ var routesDirectory = { get : "./meta/javascript/server/routes/get", post : "./m
 var serverPort = 3001;
 app = global.express();
 global.app = app;
+global.session.reset();
+
+function guid() {
+	function s4() {
+		return Math.floor((1 + Math.random()) * 0x10000) .toString(16) .substring(1);
+	}
+	return s4() + s4() + '-' + s4() + '-' + s4() + '-' +  s4() + '-' + s4() + s4() + s4();
+}
+
 app.use(function (req, res, next) {
 	console.log("------------------------------------------------------------------------------------------------");
 	console.log('Request URL:', req.originalUrl);
 	console.log('Request Type:', req.method);
 	console.log('Request Params:', req.params);
 	console.log('Request Query:', req.query);
 	console.log("------------------------------------------------------------------------------------------------");
+	
+	var found = false;
+	if("cookie" in req.headers) {
+		req.cookies = global.cookie.parse(req.headers.cookie);
+		if("session" in req.cookies) {
+			var data = global.session.get( req.cookies.session );
+			if(data != null) {
+				req.session = data;
+				data.date = new Date();
+				found = true;
+			}
+		}
+	}
+	if(!found) {
+		// find a available id
+		var id = guid();
+		while(true) {
+			var data = global.session.get( id );
+			if(data != null) {
+				id = guid();
+			} else {
+				break;
+			}
+		}
+		// create a new session
+		var session = {
+			logged : false,
+			date : new Date()
+		};
+		global.session.set(id,session);
+		res.setHeader('Set-Cookie', global.cookie.serialize("session",id));
+		req.session = session;
+	}
 	next();
 });
 
+
+
+
 var builtin = {
 	get : {},
 	post : {},
 	static : {}
 };
 
+function readdirrecSync(dir,top) {
+	top = top || "";
+	var files = global.fs.readdirSync(dir);
+	var ret = [];
+	for(var x in files) {
+		if( global.fs.lstatSync(dir + "/" + files[x]).isDirectory() ) {
+			var r = readdirrecSync(dir + "/" + files[x],files[x] + "/");
+			ret = ret.concat(r);
+		} else {
+			ret.push(top + files[x]);
+		}
+	}
+	return ret;
+}
 for(var dir in routesDirectory) {
-	arrv = global.fs.readdirSync(escape(routesDirectory[dir]));
+	arrv = readdirrecSync(routesDirectory[dir]);
 	for(var file in arrv) {
 		if(dir == "get" || dir == "post") {
 			if( arrv[file].lastIndexOf(".jsf") == arrv[file].length-4 ) {
 				var name = arrv[file].substring(0,arrv[file].length-4);
+				var names = name.split("/");
+				for(var x = 0; x < names.length;x++) {
+					if(names[x].indexOf("__param__")==0) {
+						names[x] = unescape( names[x].substring("__param__".length) );
+					}
+				}
+				name = names.join("/");
 				try {
 					eval("builtin."+dir+"[ \"/\" + name ] = " + global.fs.readFileSync(routesDirectory[dir] + "/"+arrv[file],"utf8"));
 				} catch(e) {
 
@@ -0,0 +1,171 @@
+<!doctype html>
+<html>
+	<head>
+		<script src="/load?file=./assets/page/torito/js/import.js"></script>
+		<script src="/load?file=./assets/page/torito/js/querystring.js"></script>
+		
+		<style type="text/css">
+			body {
+				font-family:Tahoma;
+				background-color: #498fff;
+			}
+			.datatable {
+				background-color: #fff;
+				border:solid 1px #000;
+				padding:5px;
+			}
+			.caption {
+				font-size:20px;
+				background-color:black;
+				color:white;
+			}
+		</style>
+		<script>
+			function removeUserSet(target,username) {
+				target.addEventListener("click",function() {
+					if(username == "root") {
+						alert("you can't remove root, for security reasons.");
+						return;
+					}
+					if( confirm("are you sure you want to remove '" + username + "'?") ) {
+						Import({url:"/acl",method:"post",data:{
+							action:"remove",
+							username : username
+						}})
+						.done(function(data) {
+							alert(data);
+							window.location.reload();
+						})
+						.send();
+					}
+				});
+			}
+			window.addEventListener("load",function() {
+				Import({url:"/acl",method:"post",data:{action:"login",username:"root",password:"pass"}})
+					.done(function(data) {
+						//alert(data);
+						data = JSON.parse(data);
+						if(data.result) {
+							Import({url:"/acl",method:"post",data:{action:"list"}})
+							.done(function(data) {
+								data = JSON.parse(data);
+								var dir = document.getElementById("dir");
+								dir.innerHTML = "";
+								var table = document.createElement("table");
+								table.setAttribute("border","1");
+								table.setAttribute("width","300");
+								table.setAttribute("class","datatable");
+								
+								var tr = document.createElement("tr");
+								var td = document.createElement("td");
+								td.setAttribute("class","caption");
+								td.innerHTML = "username";
+								tr.appendChild(td);
+								
+								var td = document.createElement("td");
+								td.setAttribute("class","caption");
+								td.innerHTML = "password";
+								tr.appendChild(td);
+								
+								var td = document.createElement("td");
+								td.setAttribute("class","caption");
+								td.innerHTML = "level";
+								tr.appendChild(td);
+								
+								table.appendChild(tr);
+									
+								for(var user in data.users) {
+									var tr = document.createElement("tr");
+									var td = document.createElement("td");
+									td.innerHTML = user;
+									tr.appendChild(td);
+									
+									var td = document.createElement("td");
+									td.innerHTML = data.users[user].password;
+									tr.appendChild(td);
+									
+									var td = document.createElement("td");
+									td.innerHTML = data.users[user].level;
+									tr.appendChild(td);
+									
+									var td = document.createElement("td");
+									td.innerHTML = "remove";
+									removeUserSet(td,user);
+									tr.appendChild(td);
+									
+									table.appendChild(tr);
+								}
+								dir.appendChild(table);
+								
+							})
+							.send();
+						}
+						
+					})
+					.send();
+				document.getElementById("frmNewUser_btnCreate").addEventListener("click",function() {
+					Import({url:"/acl",method:"post",data:{
+						action:"register",
+						username : document.getElementById("frmNewUser_txtUsername").value,
+						password : document.getElementById("frmNewUser_txtPassword").value,
+						level : document.getElementById("frmNewUser_txtLevel").value
+					}})
+					.done(function(data) {
+						window.location.reload();
+					})
+					.send();
+				});
+			});
+		</script>
+	</head>
+	<body>
+		<div id="top" style="">
+			<table width="100%" style="background-color:transparent;border:none;">
+				<tr>
+					<td align="left">
+						<img src="assets/page/torito/img/icon.png" width="64"/>
+					</td>
+					<td align="center" style="font-size:22px;">
+					[ <a href="/route">routes</a> ] [ <a href="/logout">logout</a> ]
+					</td>
+					<td align="right">
+						
+					</td>
+				</tr>
+			</table>
+			
+		</div>
+		<div>
+			<div style="font-size:30px;">
+				Users
+			</div>
+			<div id="dir">
+			
+			</div>
+		</div>
+		<div>
+			<div style="font-size:30px;">
+				New User
+			</div>
+			<table class="datatable">
+				<tr>
+					<td>Username:</td>
+					<td><input id="frmNewUser_txtUsername" type="text"/></td>
+				</tr>
+				<tr>
+					<td>Password:</td>
+					<td><input id="frmNewUser_txtPassword" type="text"/></td>
+				</tr>
+				<tr>
+					<td>Level:</td>
+					<td><input id="frmNewUser_txtLevel" type="text" value="0"/></td>
+				</tr>
+				<tr>
+					<td></td>
+					<td><input id="frmNewUser_btnCreate" type="button" value="create"/></td>
+				</tr>
+			</table>
+		</div>
+	
+	</body>
+</html>