ed0ff59152
* Extends login screen to pass along #hash
* Adds JSONP support to C4::Service
* Extends humanmsg to allow per-message classes
* Adds proper charset to results of svc/bib
Test plan:
1. C4/Auth.pm and .../intranet/.../auth.tt: verify that login/usage
works as expected, despite the change to pass on the fragment (...#blah)
from the URL.
2. C4/Service.pm and humanmsg.js: verify that editing system
preferences (the main user of these modules) works correctly despite
updates.
3. svc/bib: verify that records can be correctly downloaded with the
change of character set. This can be done in a Firebug/Chrome Devtools
console by running `$.get('/cgi-bin/koha/svc/bib/1')` and inspecting the
results (possibly replacing 1 with a different valid biblionumber).
Signed-off-by: Nick Clemens <nick@quecheelibrary.org>
Signed-off-by: Katrin Fischer <katrin.fischer.83@web.de>
Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io>
143 lines
4.5 KiB
Perl
Executable file
143 lines
4.5 KiB
Perl
Executable file
#!/usr/bin/perl
|
|
|
|
# Copyright 2007 LibLime
|
|
# Copyright 2012 software.coop and MJ Ray
|
|
#
|
|
# This file is part of Koha.
|
|
#
|
|
# Koha is free software; you can redistribute it and/or modify it
|
|
# under the terms of the GNU General Public License as published by
|
|
# the Free Software Foundation; either version 3 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# Koha is distributed in the hope that it will be useful, but
|
|
# WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License
|
|
# along with Koha; if not, see <http://www.gnu.org/licenses>.
|
|
#
|
|
|
|
use strict;
|
|
use warnings;
|
|
|
|
use CGI qw ( -utf8 );
|
|
use C4::Auth qw/check_api_auth/;
|
|
use C4::Biblio;
|
|
use C4::Items;
|
|
use XML::Simple;
|
|
|
|
my $query = new CGI;
|
|
binmode STDOUT, ':encoding(UTF-8)';
|
|
|
|
my ($status, $cookie, $sessionID) = check_api_auth($query, { editcatalogue => 'edit_catalogue'} );
|
|
unless ($status eq "ok") {
|
|
print $query->header(-type => 'text/xml', -status => '403 Forbidden');
|
|
print XMLout({ auth_status => $status }, NoAttr => 1, RootName => 'response', XMLDecl => 1);
|
|
exit 0;
|
|
}
|
|
|
|
# do initial validation
|
|
my $path_info = $query->path_info();
|
|
|
|
my $biblionumber = undef;
|
|
if ($path_info =~ m!^/(\d+)$!) {
|
|
$biblionumber = $1;
|
|
} else {
|
|
print $query->header(-type => 'text/xml', -status => '400 Bad Request');
|
|
}
|
|
|
|
# are we retrieving, updating or deleting a bib?
|
|
if ($query->request_method eq "GET") {
|
|
fetch_bib($query, $biblionumber);
|
|
} elsif ($query->request_method eq "POST") {
|
|
update_bib($query, $biblionumber);
|
|
} elsif ($query->request_method eq "DELETE") {
|
|
delete_bib($query, $biblionumber);
|
|
} else {
|
|
print $query->header(-type => 'text/xml', -status => '405 Method not allowed');
|
|
print XMLout({ error => 'Method not allowed' }, NoAttr => 1, RootName => 'response', XMLDecl => 1);
|
|
exit 0;
|
|
}
|
|
|
|
exit 0;
|
|
|
|
sub fetch_bib {
|
|
my $query = shift;
|
|
my $biblionumber = shift;
|
|
my $record = GetMarcBiblio( $biblionumber, $query->url_param('items') );
|
|
if (defined $record) {
|
|
print $query->header(-type => 'text/xml',-charset => 'utf-8',);
|
|
print $record->as_xml_record();
|
|
} else {
|
|
print $query->header(-type => 'text/xml', -status => '404 Not Found');
|
|
}
|
|
}
|
|
|
|
sub update_bib {
|
|
my $query = shift;
|
|
my $biblionumber = shift;
|
|
my $old_record = GetMarcBiblio($biblionumber);
|
|
unless (defined $old_record) {
|
|
print $query->header(-type => 'text/xml', -status => '404 Not Found');
|
|
return;
|
|
}
|
|
|
|
my $result = {};
|
|
my $inxml = $query->param('POSTDATA');
|
|
print $query->header(-type => 'text/xml', -charset => 'utf-8');
|
|
|
|
my $record = eval {MARC::Record::new_from_xml( $inxml, "utf8", C4::Context->preference('marcflavour'))};
|
|
my $do_not_escape = 0;
|
|
if ($@) {
|
|
$result->{'status'} = "failed";
|
|
$result->{'error'} = $@;
|
|
} else {
|
|
my $fullrecord = $record->clone();
|
|
my ( $itemtag, $itemsubfield ) =
|
|
GetMarcFromKohaField( "items.itemnumber", '' );
|
|
|
|
# delete any item tags
|
|
foreach my $field ( $record->field($itemtag) ) {
|
|
$record->delete_field($field);
|
|
}
|
|
|
|
if ( $query->url_param('items') ) {
|
|
foreach my $field ( $fullrecord->field($itemtag) ) {
|
|
my $one_item_record = $record->clone();
|
|
$one_item_record->add_fields($field);
|
|
ModItemFromMarc( $one_item_record, $biblionumber,
|
|
$field->subfield($itemsubfield) );
|
|
}
|
|
}
|
|
|
|
ModBiblio( $record, $biblionumber, '' );
|
|
my $new_record =
|
|
GetMarcBiblio( $biblionumber, $query->url_param('items') );
|
|
|
|
$result->{'status'} = "ok";
|
|
$result->{'biblionumber'} = $biblionumber;
|
|
my $xml = $new_record->as_xml_record();
|
|
$xml =~ s/<\?xml.*?\?>//i;
|
|
$result->{'marcxml'} = $xml;
|
|
$do_not_escape = 1;
|
|
}
|
|
|
|
print XMLout($result, NoAttr => 1, RootName => 'response', XMLDecl => 1, NoEscape => $do_not_escape);
|
|
}
|
|
|
|
sub delete_bib {
|
|
my $query = shift;
|
|
my $biblionumber = shift;
|
|
my $error = DelBiblio($biblionumber);
|
|
|
|
if (defined $error) {
|
|
print $query->header(-type => 'text/xml', -status => '400 Bad request');
|
|
print XMLout({ error => $error }, NoAttr => 1, RootName => 'response', XMLDecl => 1);
|
|
exit 0;
|
|
}
|
|
|
|
print $query->header(-type => 'text/xml');
|
|
print XMLout({ status => 'OK, biblio deleted' }, NoAttr => 1, RootName => 'response', XMLDecl => 1);
|
|
}
|