Logo ROOT  
Reference Guide
 
Loading...
Searching...
No Matches
httpaccess.C File Reference

Detailed Description

This program demonstrates access control to the THttpServer with digest methods.

Authentication file auth.txt was generated with following shell commands:

[shell] htdigest -c auth.txt root guest
typing <empty> password for guest account
[shell] htdigest auth.txt root admin
typing 'admin' as password for admin account
#define c(i)
Definition RSha256.hxx:101

When macro started and opening in browser with url

http://localhost:8080

User name and password will be requested. One should either specify guest account without password or admin account with password 'admin'

User with guest account only can monitor histograms User with admin account see commands, which can be executed

#include "TH1.h"
#include "TH2.h"
#include "TRandom3.h"
#include "TSystem.h"
#include "THttpServer.h"
void httpaccess()
{
// create histograms
TH1D *hpx = new TH1D("hpx","This is the px distribution",100,-4,4);
hpx->SetFillColor(48);
hpx->SetDirectory(nullptr);
TH2D *hpxpy = new TH2D("hpxpy","py vs px",40,-4,4,40,-4,4);
hpxpy->SetDirectory(nullptr);
if (gSystem->AccessPathName("auth.txt") != 0) {
printf("Please start macro from directory where auth.txt file is available\n");
printf("It required to supply authentication information for the http server\n");
return;
}
// start http server
THttpServer* serv = new THttpServer("http:8080?auth_file=auth.txt&auth_domain=root");
// start http server and allows CORS access to local files
// first copy hsimple.root file to current directory
// THttpServer* serv = new THttpServer("http:8080?auth_file=auth.txt&auth_domain=root&cred_cors&cors=https://root.cern");
// And finally file can be opened via url: https://root.cern/js/dev/?with_credentials&file=http://localhost:8080/currentdir/hsimple.root
// or start FastCGI server, where host server (like Apache or lighttpd) should enable own authentication
// for apache one should add correspondent module and authentication for fastcgi location
// for lighttpd one add following lines to configuration file:
// server.modules += ( "mod_auth" )
// auth.backend = "htdigest"
// auth.backend.htdigest.userfile = "/srv/auth/auth.txt"
// auth.require = ( "/root.app" => ( "method" => "digest", "realm" => "root", "require" => "valid-user" ))
// THttpServer* serv = new THttpServer("fastcgi:9000");
// One could specify location of newer version of JSROOT
// serv->SetJSROOT("https://root.cern/js/latest/");
// serv->SetJSROOT("https://jsroot.gsi.de/dev/");
// register histograms
serv->Register("/", hpx);
serv->Register("/", hpxpy);
// register commands, invoking object methods
serv->RegisterCommand("/ResetHPX","/hpx/->Reset();", "button;rootsys/icons/ed_delete.png");
serv->SetItemField("/ResetHPX","_update_item", "hpx"); // let browser update histogram view after commands execution
serv->RegisterCommand("/ResetHPXPY","/hpxpy/->Reset();", "button;rootsys/icons/bld_delete.png");
serv->SetItemField("/ResetHPXPY","_update_item", "hpxpy"); // let browser update histogram view after commands execution
// here also example how command with arguments can be invoked
serv->RegisterCommand("/RebinHPX","/hpx/->Rebin(%arg1%);", "button;rootsys/icons/ed_execute.png");
serv->SetItemField("/RebinHPX","_update_item", "hpx"); // let browser update histogram view after commands execution
// these two commands fully hidden for other accounts,
// only admin can see and execute these commands
serv->Restrict("/ResetHPX", "visible=admin");
serv->Restrict("/ResetHPXPY", "visible=admin");
// this command visible for other, but will be refused (return false)
// when executed from any other account
serv->Restrict("/RebinHPX", "allow=admin");
// Fill histograms randomly
TRandom3 random;
Float_t px, py;
const Long_t kUPDATE = 1000;
Long_t cnt = 0;
while (kTRUE) {
random.Rannor(px,py);
hpx->Fill(px);
hpxpy->Fill(px,py);
// IMPORTANT: one should regularly call ProcessEvents
if (cnt++ % kUPDATE == 0) {
if (gSystem->ProcessEvents()) break;
}
}
}
long Long_t
Definition RtypesCore.h:54
float Float_t
Definition RtypesCore.h:57
constexpr Bool_t kTRUE
Definition RtypesCore.h:93
R__EXTERN TSystem * gSystem
Definition TSystem.h:561
virtual void SetFillColor(Color_t fcolor)
Set the fill area color.
Definition TAttFill.h:37
1-D histogram with a double per channel (see TH1 documentation)
Definition TH1.h:670
virtual void SetDirectory(TDirectory *dir)
By default, when a histogram is created, it is added to the list of histogram objects in the current ...
Definition TH1.cxx:8964
virtual Int_t Fill(Double_t x)
Increment bin with abscissa X by 1.
Definition TH1.cxx:3346
2-D histogram with a double per channel (see TH1 documentation)
Definition TH2.h:357
Int_t Fill(Double_t) override
Invalid Fill method.
Definition TH2.cxx:393
Online http server for arbitrary ROOT application.
Definition THttpServer.h:31
Bool_t RegisterCommand(const char *cmdname, const char *method, const char *icon=nullptr)
Register command which can be executed from web interface.
Bool_t Register(const char *subfolder, TObject *obj)
Register object in subfolder.
Bool_t SetItemField(const char *fullname, const char *name, const char *value)
Set item field in sniffer.
void Restrict(const char *path, const char *options)
Restrict access to specified object.
Random number generator class based on M.
Definition TRandom3.h:27
virtual void Rannor(Float_t &a, Float_t &b)
Return 2 numbers distributed following a gaussian with mean=0 and sigma=1.
Definition TRandom.cxx:507
virtual Bool_t AccessPathName(const char *path, EAccessMode mode=kFileExists)
Returns FALSE if one can access a file using the specified access mode.
Definition TSystem.cxx:1296
virtual Bool_t ProcessEvents()
Process pending events (GUI, timers, sockets).
Definition TSystem.cxx:416
Author
Sergey Linev

Definition in file httpaccess.C.