Skip to content

Commit

Permalink
TTO-231 multivalue env email (#187)
Browse files Browse the repository at this point in the history 
* Add CRMS#extract_env_email and tests
* Iterate on possible multiple ENV{email} values to identify remote user.
* Tidy CRMS#SetupUser
  • Loading branch information
@moseshll
moseshll authored Jun 19, 2024
1 parent 556b049 commit 83a5c70
Show file tree
Hide file tree
Showing 2 changed files with 68 additions and 37 deletions.
82 changes: 45 additions & 37 deletions cgi/CRMS.pm
View file
Original file line number Diff line number Diff line change
Expand Up @@ -83,8 +83,7 @@ sub SetupUser

my $note = '';
my $sdr_dbh = $self->get('ht_repository');
if (!defined $sdr_dbh)
{
if (!defined $sdr_dbh) {
$sdr_dbh = $self->ConnectToSdrDb('ht_repository');
$self->set('ht_repository', $sdr_dbh) if defined $sdr_dbh;
}
Expand All @@ -95,66 +94,53 @@ sub SetupUser
my $candidate = $ENV{'REMOTE_USER'};
$candidate = lc $candidate if defined $candidate;
$note .= sprintf "ENV{REMOTE_USER}=%s\n", (defined $candidate)? $candidate:'<undef>';
if ($candidate)
{
my $candidate2;
if ($candidate) {
my $ht_users_email;
my $ref = $sdr_dbh->selectall_arrayref($htsql, undef, $candidate);
if ($ref && scalar @{$ref})
{
if ($ref && scalar @{$ref}) {
$ht_user = $candidate;
$note .= "Set ht_user=$ht_user\n";
$candidate2 = $ref->[0]->[0];
$ht_users_email = $ref->[0]->[0];
}
if ($self->SimpleSqlGet($usersql, $candidate))
{
if ($self->SimpleSqlGet($usersql, $candidate)) {
$crms_user = $candidate;
$note .= "Set crms_user=$crms_user from lc ENV{REMOTE_USER}\n";
}
if (!$crms_user && $self->SimpleSqlGet($usersql, $candidate2))
{
$crms_user = $candidate2;
if (!$crms_user && $self->SimpleSqlGet($usersql, $ht_users_email)) {
$crms_user = $ht_users_email;
$note .= "Set crms_user=$crms_user from ht_users.email\n";
}
}
if (!$crms_user || !$ht_user)
{
$candidate = $ENV{'email'};
$candidate = lc $candidate if defined $candidate;
$candidate =~ s/\@umich.edu// if defined $candidate;
$note .= sprintf "ENV{email}=%s\n", (defined $candidate)? $candidate:'<undef>';
if ($candidate)
{
my $candidate2;
if (!$crms_user || !$ht_user) {
$note .= sprintf "ENV{email}=%s\n", (defined $ENV{email}) ? $ENV{email} : '<undef>';
foreach my $candidate (@{$self->extract_env_email}) {
my $ht_users_email;
my $ref = $sdr_dbh->selectall_arrayref($htsql, undef, $candidate);
if ($ref && scalar @{$ref} && !$ht_user)
{
if ($ref && scalar @$ref && !$ht_user) {
$ht_user = $candidate;
$note .= "Set ht_user=$ht_user\n";
$candidate2 = $ref->[0]->[0];
$ht_users_email = $ref->[0]->[0];
}
if ($self->SimpleSqlGet($usersql, $candidate) && !$crms_user)
{
if ($self->SimpleSqlGet($usersql, $candidate) && !$crms_user) {
$crms_user = $candidate;
$note .= "Set crms_user=$crms_user from lc ENV{email}\n";
$note .= "Set crms_user=$crms_user from ENV{email} candidate $candidate\n";
}
if (!$crms_user && $self->SimpleSqlGet($usersql, $candidate2) && !$crms_user)
{
$crms_user = $candidate2;
if (!$crms_user && $self->SimpleSqlGet($usersql, $ht_users_email)) {
$crms_user = $ht_users_email;
$note .= "Set crms_user=$crms_user from ht_users.email\n";
}
# No need to iterate further if we have a match in both crms.users and ht.ht_users
last if $ht_user && $crms_user;
}
}
if ($ht_user)
{
if ($self->NeedStepUpAuth($ht_user))
{
if ($ht_user) {
if ($self->NeedStepUpAuth($ht_user)) {
$note .= "HT user $ht_user step-up auth required.\n";
$self->set('stepup', 1);
}
$self->set('ht_user', $ht_user);
}
if ($crms_user)
{
if ($crms_user) {
$note .= "Setting CRMS user to $crms_user.\n";
$self->set('remote_user', $crms_user);
my $alias = $self->GetAlias($crms_user);
Expand All @@ -165,6 +151,28 @@ sub SetupUser
return $crms_user;
}

# Extract potentially multiple values of ENV{email} as an array ref.
# We have seen multiple (duplicate) values of email separated by semicolons
# coming from Shib.
# Values are downcased, unique, nonempty strings with any "@umich.edu" stripped.
sub extract_env_email {
my $self = shift;
my $env_email = shift || $ENV{email};

my $emails = [];
if (defined $env_email) {
my %seen;
foreach my $email (split(';', lc $env_email)) {
$email =~ s/\@umich.edu//;
if (length $email && !$seen{$email}) {
push @$emails, $email;
$seen{$email} = 1;
}
}
}
return $emails;
}

# Construct redirect URL based on template
# replace __HOST__ with $ENV{SERVER_NAME}
# replace __TARGET__ with something like CGI::self_url($cgi)
Expand Down
23 changes: 23 additions & 0 deletions t/CRMS.t
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,6 +18,29 @@ subtest '#Version' => sub {
ok($crms->Version);
};

subtest '#extract_env_email' => sub {
my $tests = [
# Each is [INPUT, OUTPUT, TEST_COMMENT]
[undef, [], 'empty array if no email defined'],
['', [], 'empty array if empty string'],
['[email protected]', ['[email protected]'], 'extracts single value'],
['[email protected];[email protected]', ['[email protected]', '[email protected]'], 'extracts multiple values'],
[';[email protected]', ['[email protected]'], 'ignores leading semicolon'],
['[email protected];', ['[email protected]'], 'ignores trailing semicolon'],
['[email protected]', ['someone'], 'strips @umich.edu'],
['[email protected];[email protected]', ['[email protected]'], 'merges duplicates'],
['[email protected]', ['[email protected]'], 'downcases']
];
my $save_email = $ENV{email};
delete $ENV{email};
foreach my $test (@$tests) {
is_deeply($crms->extract_env_email($test->[0]), $test->[1], $test->[2]);
}
$ENV{email} = '[email protected]';
is_deeply($crms->extract_env_email, ['[email protected]'], 'uses ENV{email} if no parameter');
$ENV{email} = $save_email;
};

subtest 'CRMS::MoveToHathitrustFiles' => sub {
my $tempdir = File::Temp::tempdir(CLEANUP => 1);
my $save_hathitrust_files_directory = $ENV{'CRMS_HATHITRUST_FILES_DIRECTORY'};
Expand Down

0 comments on commit 83a5c70

Please sign in to comment.