2002-12-20 10:21:43 +03:00
|
|
|
# -*- Mode: perl; indent-tabs-mode: nil -*-
|
|
|
|
#
|
|
|
|
# The contents of this file are subject to the Mozilla Public
|
|
|
|
# License Version 1.1 (the "License"); you may not use this file
|
|
|
|
# except in compliance with the License. You may obtain a copy of
|
|
|
|
# the License at http://www.mozilla.org/MPL/
|
|
|
|
#
|
|
|
|
# Software distributed under the License is distributed on an "AS
|
|
|
|
# IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or
|
|
|
|
# implied. See the License for the specific language governing
|
|
|
|
# rights and limitations under the License.
|
|
|
|
#
|
|
|
|
# The Original Code is the Bugzilla Bug Tracking System.
|
|
|
|
#
|
|
|
|
# The Initial Developer of the Original Code is Netscape Communications
|
|
|
|
# Corporation. Portions created by Netscape are
|
|
|
|
# Copyright (C) 1998 Netscape Communications Corporation. All
|
|
|
|
# Rights Reserved.
|
|
|
|
#
|
|
|
|
# Contributor(s): Bradley Baetz <bbaetz@student.usyd.edu.au>
|
2004-07-21 02:41:22 +04:00
|
|
|
# Erik Stambaugh <erik@dasbistro.com>
|
2002-12-20 10:21:43 +03:00
|
|
|
#
|
|
|
|
|
|
|
|
package Bugzilla;
|
|
|
|
|
|
|
|
use strict;
|
|
|
|
|
2003-03-22 07:47:35 +03:00
|
|
|
use Bugzilla::Auth;
|
2004-07-21 02:41:22 +04:00
|
|
|
use Bugzilla::Auth::Login::WWW;
|
2002-12-20 10:21:43 +03:00
|
|
|
use Bugzilla::CGI;
|
2003-01-14 23:00:11 +03:00
|
|
|
use Bugzilla::Config;
|
2003-03-22 07:47:35 +03:00
|
|
|
use Bugzilla::Constants;
|
2003-01-14 23:00:11 +03:00
|
|
|
use Bugzilla::DB;
|
2002-12-20 10:21:43 +03:00
|
|
|
use Bugzilla::Template;
|
2003-03-22 07:47:35 +03:00
|
|
|
use Bugzilla::User;
|
2005-07-14 10:01:35 +04:00
|
|
|
use Bugzilla::Error;
|
|
|
|
use Bugzilla::Util;
|
|
|
|
|
|
|
|
use File::Basename;
|
|
|
|
|
|
|
|
#####################################################################
|
|
|
|
# Constants
|
|
|
|
#####################################################################
|
|
|
|
|
|
|
|
# Scripts that are not stopped by shutdownhtml being in effect.
|
|
|
|
use constant SHUTDOWNHTML_EXEMPT => [
|
|
|
|
'doeditparams.cgi',
|
|
|
|
'editparams.cgi',
|
|
|
|
'checksetup.pl',
|
|
|
|
];
|
|
|
|
|
|
|
|
#####################################################################
|
|
|
|
# Global Code
|
|
|
|
#####################################################################
|
|
|
|
|
|
|
|
# If Bugzilla is shut down, do not allow anything to run, just display a
|
2005-07-27 23:58:23 +04:00
|
|
|
# message to the user about the downtime and log out. Scripts listed in
|
2005-07-14 10:01:35 +04:00
|
|
|
# SHUTDOWNHTML_EXEMPT are exempt from this message.
|
|
|
|
#
|
|
|
|
# This code must go here. It cannot go anywhere in Bugzilla::CGI, because
|
|
|
|
# it uses Template, and that causes various dependency loops.
|
|
|
|
if (Param("shutdownhtml")
|
|
|
|
&& lsearch(SHUTDOWNHTML_EXEMPT, basename($0)) == -1)
|
|
|
|
{
|
2005-07-27 23:58:23 +04:00
|
|
|
# For security reasons, log out users when Bugzilla is down.
|
|
|
|
# Bugzilla->login() is required to catch the logincookie, if any.
|
|
|
|
my $user = Bugzilla->login(LOGIN_OPTIONAL);
|
|
|
|
my $userid = $user->id;
|
|
|
|
Bugzilla->logout();
|
|
|
|
|
2005-07-14 10:01:35 +04:00
|
|
|
my $template = Bugzilla->template;
|
|
|
|
my $vars = {};
|
|
|
|
$vars->{'message'} = 'shutdown';
|
2005-07-27 23:58:23 +04:00
|
|
|
$vars->{'userid'} = $userid;
|
2005-07-14 10:01:35 +04:00
|
|
|
# Generate and return a message about the downtime, appropriately
|
|
|
|
# for if we're a command-line script or a CGI sript.
|
|
|
|
my $extension;
|
|
|
|
if (i_am_cgi() && (!Bugzilla->cgi->param('format')
|
|
|
|
|| Bugzilla->cgi->param('format') eq 'html')) {
|
|
|
|
$extension = 'html';
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
$extension = 'txt';
|
|
|
|
}
|
|
|
|
print Bugzilla->cgi->header() if i_am_cgi();
|
|
|
|
my $t_output;
|
|
|
|
$template->process("global/message.$extension.tmpl", $vars, \$t_output)
|
|
|
|
|| ThrowTemplateError($template->error);
|
|
|
|
print $t_output . "\n";
|
|
|
|
exit;
|
|
|
|
}
|
|
|
|
|
|
|
|
#####################################################################
|
|
|
|
# Subroutines and Methods
|
|
|
|
#####################################################################
|
2002-12-20 10:21:43 +03:00
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
my $_template;
|
|
|
|
sub template {
|
2002-12-20 10:21:43 +03:00
|
|
|
my $class = shift;
|
2003-02-07 10:19:15 +03:00
|
|
|
$_template ||= Bugzilla::Template->create();
|
|
|
|
return $_template;
|
|
|
|
}
|
2002-12-20 10:21:43 +03:00
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
my $_cgi;
|
|
|
|
sub cgi {
|
|
|
|
my $class = shift;
|
|
|
|
$_cgi ||= new Bugzilla::CGI();
|
|
|
|
return $_cgi;
|
2002-12-20 10:21:43 +03:00
|
|
|
}
|
|
|
|
|
2003-03-22 07:47:35 +03:00
|
|
|
my $_user;
|
|
|
|
sub user {
|
|
|
|
my $class = shift;
|
2004-07-31 06:27:26 +04:00
|
|
|
|
|
|
|
if (not defined $_user) {
|
|
|
|
$_user = new Bugzilla::User;
|
|
|
|
}
|
|
|
|
|
2003-03-22 07:47:35 +03:00
|
|
|
return $_user;
|
|
|
|
}
|
|
|
|
|
|
|
|
sub login {
|
|
|
|
my ($class, $type) = @_;
|
2004-07-21 02:41:22 +04:00
|
|
|
$_user = Bugzilla::Auth::Login::WWW->login($type);
|
2003-06-03 13:48:15 +04:00
|
|
|
}
|
|
|
|
|
|
|
|
sub logout {
|
2004-03-27 04:28:29 +03:00
|
|
|
my ($class, $option) = @_;
|
|
|
|
|
2004-07-31 06:27:26 +04:00
|
|
|
# If we're not logged in, go away
|
|
|
|
return unless user->id;
|
|
|
|
|
|
|
|
$option = LOGOUT_CURRENT unless defined $option;
|
2004-07-21 02:41:22 +04:00
|
|
|
Bugzilla::Auth::Login::WWW->logout($_user, $option);
|
2004-03-27 04:28:29 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
sub logout_user {
|
|
|
|
my ($class, $user) = @_;
|
|
|
|
# When we're logging out another user we leave cookies alone, and
|
2004-07-21 02:41:22 +04:00
|
|
|
# therefore avoid calling Bugzilla->logout() directly.
|
|
|
|
Bugzilla::Auth::Login::WWW->logout($user, LOGOUT_ALL);
|
2003-11-27 04:01:00 +03:00
|
|
|
}
|
|
|
|
|
2004-03-27 04:28:29 +03:00
|
|
|
# just a compatibility front-end to logout_user that gets a user by id
|
|
|
|
sub logout_user_by_id {
|
|
|
|
my ($class, $id) = @_;
|
|
|
|
my $user = new Bugzilla::User($id);
|
|
|
|
$class->logout_user($user);
|
|
|
|
}
|
|
|
|
|
|
|
|
# hack that invalidates credentials for a single request
|
2003-11-27 04:01:00 +03:00
|
|
|
sub logout_request {
|
2003-06-03 13:48:15 +04:00
|
|
|
undef $_user;
|
2004-07-29 06:45:38 +04:00
|
|
|
# XXX clean this up eventually
|
2003-06-03 13:48:15 +04:00
|
|
|
$::userid = 0;
|
2004-07-29 06:45:38 +04:00
|
|
|
# We can't delete from $cgi->cookie, so logincookie data will remain
|
|
|
|
# there. Don't rely on it: use Bugzilla->user->login instead!
|
2003-03-22 07:47:35 +03:00
|
|
|
}
|
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
my $_dbh;
|
|
|
|
my $_dbh_main;
|
|
|
|
my $_dbh_shadow;
|
|
|
|
sub dbh {
|
2002-12-20 10:21:43 +03:00
|
|
|
my $class = shift;
|
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
# If we're not connected, then we must want the main db
|
|
|
|
if (!$_dbh) {
|
|
|
|
$_dbh = $_dbh_main = Bugzilla::DB::connect_main();
|
|
|
|
}
|
2002-12-20 10:21:43 +03:00
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
return $_dbh;
|
2002-12-20 10:21:43 +03:00
|
|
|
}
|
|
|
|
|
2004-11-08 05:25:59 +03:00
|
|
|
my $_batch;
|
|
|
|
sub batch {
|
|
|
|
my $class = shift;
|
|
|
|
my $newval = shift;
|
|
|
|
if ($newval) {
|
|
|
|
$_batch = $newval;
|
|
|
|
}
|
|
|
|
return $_batch || 0;
|
|
|
|
}
|
|
|
|
|
2003-02-09 02:26:48 +03:00
|
|
|
sub dbwritesallowed {
|
|
|
|
my $class = shift;
|
|
|
|
|
|
|
|
# We can write if we are connected to the main database.
|
|
|
|
# Note that if we don't have a shadowdb, then we claim that its ok
|
|
|
|
# to write even if we're nominally connected to the shadowdb.
|
|
|
|
# This is OK because this method is only used to test if misc
|
|
|
|
# updates can be done, rather than anything complicated.
|
|
|
|
return $class->dbh == $_dbh_main;
|
|
|
|
}
|
|
|
|
|
2003-01-14 23:00:11 +03:00
|
|
|
sub switch_to_shadow_db {
|
2003-02-07 10:19:15 +03:00
|
|
|
my $class = shift;
|
2003-01-14 23:00:11 +03:00
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
if (!$_dbh_shadow) {
|
2003-01-14 23:00:11 +03:00
|
|
|
if (Param('shadowdb')) {
|
2003-02-07 10:19:15 +03:00
|
|
|
$_dbh_shadow = Bugzilla::DB::connect_shadow();
|
2003-01-14 23:00:11 +03:00
|
|
|
} else {
|
2003-02-07 10:19:15 +03:00
|
|
|
$_dbh_shadow = $_dbh_main;
|
2003-01-14 23:00:11 +03:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
$_dbh = $_dbh_shadow;
|
2003-01-14 23:00:11 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
sub switch_to_main_db {
|
2002-12-20 10:21:43 +03:00
|
|
|
my $class = shift;
|
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
$_dbh = $_dbh_main;
|
2002-12-20 10:21:43 +03:00
|
|
|
}
|
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
# Private methods
|
2002-12-20 10:21:43 +03:00
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
# Per process cleanup
|
2002-12-20 10:21:43 +03:00
|
|
|
sub _cleanup {
|
2003-02-07 10:19:15 +03:00
|
|
|
undef $_cgi;
|
2003-03-22 07:47:35 +03:00
|
|
|
undef $_user;
|
2003-02-07 10:19:15 +03:00
|
|
|
|
2003-02-14 13:37:43 +03:00
|
|
|
# See bug 192531. If we don't clear the possibly active statement handles,
|
|
|
|
# then when this is called from the END block, it happens _before_ the
|
|
|
|
# destructors in Bugzilla::DB have happened.
|
|
|
|
# See http://rt.perl.org/rt2/Ticket/Display.html?id=17450#38810
|
|
|
|
# Without disconnecting explicitly here, noone notices, because DBI::END
|
|
|
|
# ends up calling DBD::mysql's $drh->disconnect_all, which is a noop.
|
|
|
|
# This code is evil, but it needs to be done, at least until SendSQL and
|
|
|
|
# friends can be removed
|
|
|
|
@Bugzilla::DB::SQLStateStack = ();
|
|
|
|
undef $Bugzilla::DB::_current_sth;
|
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
# When we support transactions, need to ->rollback here
|
|
|
|
$_dbh_main->disconnect if $_dbh_main;
|
|
|
|
$_dbh_shadow->disconnect if $_dbh_shadow and Param("shadowdb");
|
|
|
|
undef $_dbh_main;
|
|
|
|
undef $_dbh_shadow;
|
|
|
|
undef $_dbh;
|
2002-12-20 10:21:43 +03:00
|
|
|
}
|
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
sub END {
|
|
|
|
_cleanup();
|
2002-12-20 10:21:43 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
1;
|
|
|
|
|
|
|
|
__END__
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
|
|
|
Bugzilla - Semi-persistent collection of various objects used by scripts
|
|
|
|
and modules
|
|
|
|
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
|
|
|
use Bugzilla;
|
|
|
|
|
|
|
|
sub someModulesSub {
|
2003-02-07 10:19:15 +03:00
|
|
|
Bugzilla->dbh->prepare(...);
|
|
|
|
Bugzilla->template->process(...);
|
2002-12-20 10:21:43 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
|
|
|
Several Bugzilla 'things' are used by a variety of modules and scripts. This
|
|
|
|
includes database handles, template objects, and so on.
|
|
|
|
|
|
|
|
This module is a singleton intended as a central place to store these objects.
|
|
|
|
This approach has several advantages:
|
|
|
|
|
|
|
|
=over 4
|
|
|
|
|
|
|
|
=item *
|
|
|
|
|
|
|
|
They're not global variables, so we don't have issues with them staying arround
|
|
|
|
with mod_perl
|
|
|
|
|
|
|
|
=item *
|
|
|
|
|
|
|
|
Everything is in one central place, so its easy to access, modify, and maintain
|
|
|
|
|
|
|
|
=item *
|
|
|
|
|
|
|
|
Code in modules can get access to these objects without having to have them
|
|
|
|
all passed from the caller, and the caller's caller, and....
|
|
|
|
|
|
|
|
=item *
|
|
|
|
|
|
|
|
We can reuse objects across requests using mod_perl where appropriate (eg
|
|
|
|
templates), whilst destroying those which are only valid for a single request
|
|
|
|
(such as the current user)
|
|
|
|
|
|
|
|
=back
|
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
Note that items accessible via this object are demand-loaded when requested.
|
2002-12-20 10:21:43 +03:00
|
|
|
|
|
|
|
For something to be added to this object, it should either be able to benefit
|
|
|
|
from persistence when run under mod_perl (such as the a C<template> object),
|
|
|
|
or should be something which is globally required by a large ammount of code
|
|
|
|
(such as the current C<user> object).
|
|
|
|
|
2003-02-07 10:19:15 +03:00
|
|
|
=head1 METHODS
|
2002-12-20 10:21:43 +03:00
|
|
|
|
2005-03-03 08:28:42 +03:00
|
|
|
Note that all C<Bugzilla> functionality is method based; use C<Bugzilla-E<gt>dbh>
|
2003-02-07 10:19:15 +03:00
|
|
|
rather than C<Bugzilla::dbh>. Nothing cares about this now, but don't rely on
|
|
|
|
that.
|
2002-12-20 10:21:43 +03:00
|
|
|
|
|
|
|
=over 4
|
|
|
|
|
|
|
|
=item C<template>
|
|
|
|
|
|
|
|
The current C<Template> object, to be used for output
|
|
|
|
|
|
|
|
=item C<cgi>
|
|
|
|
|
|
|
|
The current C<cgi> object. Note that modules should B<not> be using this in
|
|
|
|
general. Not all Bugzilla actions are cgi requests. Its useful as a convenience
|
|
|
|
method for those scripts/templates which are only use via CGI, though.
|
|
|
|
|
2003-03-22 07:47:35 +03:00
|
|
|
=item C<user>
|
|
|
|
|
2004-03-27 04:28:29 +03:00
|
|
|
The current C<Bugzilla::User>. C<undef> if there is no currently logged in user
|
2003-03-22 07:47:35 +03:00
|
|
|
or if the login code has not yet been run.
|
|
|
|
|
|
|
|
=item C<login>
|
|
|
|
|
2003-06-03 13:48:15 +04:00
|
|
|
Logs in a user, returning a C<Bugzilla::User> object, or C<undef> if there is
|
2004-07-21 02:41:22 +04:00
|
|
|
no logged in user. See L<Bugzilla::Auth|Bugzilla::Auth>, and
|
2003-06-03 13:48:15 +04:00
|
|
|
L<Bugzilla::User|Bugzilla::User>.
|
|
|
|
|
2004-03-27 04:28:29 +03:00
|
|
|
=item C<logout($option)>
|
|
|
|
|
|
|
|
Logs out the current user, which involves invalidating user sessions and
|
|
|
|
cookies. Three options are available from
|
|
|
|
L<Bugzilla::Constants|Bugzilla::Constants>: LOGOUT_CURRENT (the
|
|
|
|
default), LOGOUT_ALL or LOGOUT_KEEP_CURRENT.
|
|
|
|
|
|
|
|
=item C<logout_user($user)>
|
|
|
|
|
|
|
|
Logs out the specified user (invalidating all his sessions), taking a
|
|
|
|
Bugzilla::User instance.
|
|
|
|
|
|
|
|
=item C<logout_by_id($id)>
|
2003-06-03 13:48:15 +04:00
|
|
|
|
2004-03-27 04:28:29 +03:00
|
|
|
Logs out the user with the id specified. This is a compatibility
|
|
|
|
function to be used in callsites where there is only a userid and no
|
|
|
|
Bugzilla::User instance.
|
2003-11-27 04:01:00 +03:00
|
|
|
|
|
|
|
=item C<logout_request>
|
|
|
|
|
2005-03-03 08:28:42 +03:00
|
|
|
Essentially, causes calls to C<Bugzilla-E<gt>user> to return C<undef>. This has the
|
2003-11-27 04:01:00 +03:00
|
|
|
effect of logging out a user for the current request only; cookies and
|
2004-07-21 02:41:22 +04:00
|
|
|
database sessions are left intact.
|
2003-03-22 07:47:35 +03:00
|
|
|
|
2004-11-08 05:25:59 +03:00
|
|
|
=item C<batch>
|
|
|
|
|
|
|
|
Set to true, by calling Bugzilla->batch(1), to indicate that Bugzilla is
|
|
|
|
being called in a non-interactive manner and errors should be passed to
|
|
|
|
die() rather than being sent to a browser and finished with an exit().
|
|
|
|
Bugzilla->batch will return the current state of this flag.
|
|
|
|
|
2003-01-14 23:00:11 +03:00
|
|
|
=item C<dbh>
|
|
|
|
|
|
|
|
The current database handle. See L<DBI>.
|
|
|
|
|
2003-02-09 02:26:48 +03:00
|
|
|
=item C<dbwritesallowed>
|
|
|
|
|
|
|
|
Determines if writes to the database are permitted. This is usually used to
|
|
|
|
determine if some general cleanup needs to occur (such as clearing the token
|
|
|
|
table)
|
|
|
|
|
2003-01-14 23:00:11 +03:00
|
|
|
=item C<switch_to_shadow_db>
|
|
|
|
|
|
|
|
Switch from using the main database to using the shadow database.
|
|
|
|
|
|
|
|
=item C<switch_to_main_db>
|
|
|
|
|
|
|
|
Change the database object to refer to the main database.
|
|
|
|
|
2002-12-20 10:21:43 +03:00
|
|
|
=back
|