control: simple access control

diff --git a/config.pl b/config.pl
index 9b2fefcecd6240f5bcdef2e1421885451398f530..2c14a728e2d4ae8c440697241f73686c833e7503 100644 (file)
--- a/config.pl
+++ b/config.pl
@@ -9,3 +9,5 @@ $c{StyleSheet} = "/css/style.css";
 $c{AltArchive} = "http://marc.info/?i=<MSGID>";
 
 $c{ControlAddress} = "control@foobugs.example.com";
+
+$c{ControlAllow} = qw/ijc@hellion.org.uk/;

diff --git a/control.pl b/control.pl
index fee71312f61ec99748be08cd2de532cf57c202dd..f3ebccb2a4d8fe6e636806133b40f61338cc8fdc 100755 (executable)
--- a/control.pl
+++ b/control.pl
@@ -20,6 +20,23 @@ print "Message from ".$head->get('from');
 print "Subject: ".$head->get('subject');
 print "\n";
 
+sub validate_from {
+    my $allowed = 0;
+    my @addresses = Mail::Field::AddrList->extract('from', $head )->addresses;
+
+    return 1 if not $c{ControlAllow};
+
+    for my $addr ( @addresses ) {
+       if ( $addr ~~ $c{ControlAllow} ) {
+           $allowed = 1; last;
+       }
+    }
+
+    die unless $allowed;
+}
+
+validate_from;
+
 our @reply;
 
 our @bugs;

diff --git a/insertmail.pl b/insertmail.pl
index 762559e39f2b295efe20771b2418c81318c6a12f..b300747bf6e58adcba6b85f11fa382ccda4ccf87 100755 (executable)
--- a/insertmail.pl
+++ b/insertmail.pl
@@ -6,7 +6,7 @@ use warnings;
 use Mail::Header;
 
 use Bugs::Message;
-use Bugs::Common qw(readconfig opendb);
+use Bugs::Common qw(readconfig opendb c);
 
 our @hdrs;