use Modern::Perl;
use C4::ILSDI::Services;
-use C4::Auth;
-use C4::Output;
+use C4::Auth qw( get_template_and_user );
+use C4::Output qw( output_html_with_http_headers );
use C4::Context;
-use List::MoreUtils qw(any);
-use XML::Simple;
+use List::MoreUtils qw( any );
+use XML::Simple qw( XMLout );
use CGI qw ( -utf8 );
+use Net::Netmask;
=head1 DLF ILS-DI for Koha
This script is a basic implementation of ILS-DI protocol for Koha.
It acts like a dispatcher, that get the CGI request, check required and
-optionals arguments, call a function from C4::ILS-DI, and finaly
+optionals arguments, call a function from C4::ILS-DI, and finally
outputs the returned hashref as XML.
=cut
# Instanciate the CGI request
-my $cgi = new CGI;
+my $cgi = CGI->new;
# List of available services, sorted by level
my @services = (
# Level 1: Basic Discovery Interfaces
# 'HarvestBibliographicRecords', # OAI-PMH
# 'HarvestExpandedRecords', # OAI-PMH
- 'GetAvailability', # FIXME Add bibbliographic level
+ 'GetAvailability', # FIXME Add bibliographic level
# 'GoToBibliographicRequestPage' # I don't understant this one
# Level 2: Elementary OPAC supplement
# List of optional arguments
my %optional = (
'Describe' => [],
- 'GetAvailability' => [ 'return_type', 'return_fmt' ],
+ 'GetAvailability' => [ 'return_type', 'return_fmt', 'language' ],
'GetRecords' => ['schema'],
'GetAuthorityRecords' => ['schema'],
'LookupPatron' => ['id_type'],
'AuthenticatePatron' => [],
- 'GetPatronInfo' => [ 'show_contact', 'show_fines', 'show_holds', 'show_loans', 'show_attributes' ],
+ 'GetPatronInfo' => [ 'show_contact', 'show_fines', 'show_holds', 'show_loans', 'loans_per_page', 'loans_page', 'show_attributes' ],
'GetPatronStatus' => [],
'GetServices' => [],
'RenewLoan' => ['desired_due_date'],
- 'HoldTitle' => [ 'pickup_location', 'needed_before_date', 'pickup_expiry_date' ],
- 'HoldItem' => [ 'pickup_location', 'needed_before_date', 'pickup_expiry_date' ],
+ 'HoldTitle' => [ 'pickup_location', 'start_date', 'expiry_date' ],
+ 'HoldItem' => [ 'pickup_location', 'start_date', 'expiry_date' ],
'CancelHold' => [],
);
query => $cgi,
type => "opac",
authnotrequired => 1,
- debug => 1,
}
);
output_html_with_http_headers $cgi, $cookie, $template->output;
exit 0;
}
+# Set the userenv
+C4::Context->_new_userenv( 'ILSDI_'.time() );
+C4::Context->set_userenv(
+ undef, undef, undef, 'ILSDI', 'ILSDI',
+ undef, undef, undef, undef, undef,
+);
+C4::Context->interface('opac');
+
# If user requested a service description, then display it
-if ( $cgi->param('service') eq "Describe" and any { $cgi->param('verb') eq $_ } @services ) {
+if ( scalar $cgi->param('service') eq "Describe" and any { scalar $cgi->param('verb') eq $_ } @services ) {
my ( $template, $loggedinuser, $cookie ) = get_template_and_user(
{ template_name => "ilsdi.tt",
query => $cgi,
type => "opac",
authnotrequired => 1,
- debug => 1,
}
);
- $template->param( $cgi->param('verb') => 1 );
+ $template->param( scalar $cgi->param('verb') => 1 );
output_html_with_http_headers $cgi, $cookie, $template->output;
exit 0;
}
}
# If the remote address is not allowed, redirect to 403
-my @AuthorizedIPs = split(/,/, C4::Context->preference('ILS-DI:AuthorizedIPs'));
-if ( @AuthorizedIPs # If no filter set, allow access to everybody
- and not any { $ENV{'REMOTE_ADDR'} eq $_ } @AuthorizedIPs # IP Check
- ) {
- $out->{'code'} = "NotAllowed";
- $out->{'message'} = "Unauthorized IP address: ".$ENV{'REMOTE_ADDR'}.".";
+my @AuthorizedIPs = split( /,/, C4::Context->preference('ILS-DI:AuthorizedIPs') );
+if (@AuthorizedIPs) { # If no filter set, allow access to everybody
+ my $authorized = 0;
+ foreach my $ip (@AuthorizedIPs) {
+ my $netmask = Net::Netmask->new2($ip);
+ if ( $netmask && $netmask->match( $ENV{REMOTE_ADDR} ) ) {
+ $authorized = 1;
+ last;
+ }
+ }
+ unless ($authorized) {
+ $out->{'code'} = "NotAllowed";
+ $out->{'message'} = "Unauthorized IP address: $ENV{REMOTE_ADDR}.";
+ }
}
my $service = $cgi->param('service') || "ilsdi";
projects / koha-ffzg.git / blobdiff