Forum Answer

#!/opt/perl/bin/perl # # This script will take a student's discussion question answer # and append it to the web page from which it was called. # # James Judd juddjam@eng.auburn.edu 960319 # for Auburn University's Political Science Department # under the MCI grant for U102 Online # # copyright and all rights reserved James Judd & AU (email me) # # Version 2.03 # print "Content-type: text/html\n\n"; read(STDIN, $buffer, $ENV{'CONTENT_LENGTH'}); @pairs = split(/&/, $buffer); foreach $pair (@pairs) { ($name, $value) = split(/=/, $pair); # Un-Webify plus signs and %-encoding $value =~ tr/+/ /; $value =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg; # Stop people from using subshells to execute commands $value =~ s/~!/ ~!/g; $FORM{$name} = $value; } $hdir = "$FORM{'profdir'}"; $profname = "$FORM{'prof'}"; $rpage = "$FORM{'retpage'}"; $maxans = "$FORM{'limit'}"; $sanswer = "$FORM{'answer'}"; $stuname = "$FORM{'name'}"; $date = `date`; $line = "nada"; $anscount = 0; $auto = "2"; $notv = 0; $hexval = $rpage; $hexval =~ s/\.html//; # Require filling out the form # &oopsie_page if $FORM{'name'} && !$FORM{'answer'} || $FORM{'answer'} && !$FORM{'name'}; &default_page unless $FORM{'name'} && $FORM{'answer'}; # Filter out tricky students' html code heh heh # $sanswer =~ s/\&/\&/g; $sanswer =~ s//\>/g; $sanswer =~ s/"/\"/g; # Now we search the page and add the student's answer to the page # open(PAGE, "$hdir/public_html/forum/$hexval$auto.html") || print "Web server ERROR(opening PAGE $hdir/public_html/forum/$hexval$auto.html): $!

"; open(TEMPFILE, "> /tmp/tempforum$$")|| print "Web server ERROR(opening /tmp/tempforum$$): $!

"; while ($line = ) { if ($line eq "\n") { $anscount++; } elsif ($line eq "\n") { $anscount++; print TEMPFILE "\n"; print TEMPFILE "$sanswer\n"; print TEMPFILE "

\n"; print TEMPFILE "submitted by $stuname, $date\n"; print TEMPFILE "
\n"; print TEMPFILE "

\n"; } if ($anscount == $maxans) { print TEMPFILE "(Question limit reached, no more answers to this question allowed)

\n" unless $notv; $notv = 1; $line =~ s/\"; close(TEMPFILE)|| print "Web server ERROR(closing TEMPFILE): $!

"; system("/bin/mv /tmp/tempforum$$ $hdir/public_html/forum/$hexval$auto.html") && print "Web server ERROR(moving /tmp/tempforum$$ to $hdir/public_html/forum/$hexval$auto.html): $!

"; # If they answered they see this: # print "\n\nForum Answer - Posting Results\n\n"; print "\n"; print "

\n"; print "

\n Your answer was successfully posted to the forum page if no error messages were printed above. Click on a link below:

"; print "Go back to the Intro Page or
"; print "Go back to the Question page including your Answer"; sub default_page { print "\n\nForum Answer\n\n"; print "\n"; print "

Answer Form

\n"; print "

Instructions:\n

Click on the Answer box, and type your answer.\n
Click on the Name box, and type your name.\n
Click \"Submit Answer\" or press Enter to post your answer.

\n"; print "

\n"; print "\n\n"; exit; } sub oopsie_page { print "\n\nForum Answer\n\n"; print "\n"; print "

Additional Instructions

\n"; print "

\nYou must fill in both the name and answer boxes to post an answer to the question. To type in a box, click on it.\n"; print "

\n"; print "Return to the question page.\n"; print "\n\n"; exit; }