#!/bin/bash
IFS=$' \n'

##########################################################
# An Access Restricting CGI Script for Web Page Delivery #
#  ©2022 All Rights Reserved - J. S. Gilstrap - GPL 2.0  #
#######################################@##################
      HOME="/home/username"
ThisDomain="https://www.example.com"
      auth=1  # Authenification Level Requirement. '1' is either a key or domain and '2' requires both.
      PAGE="$HOME/public_html/cgi-bin/pages/" # Storing the real page in a sub-directory under cgi-bin is recomended.
   ImgPath="/images/"   # Starts from the webserver root and must have a trailing '/'
      Icon=favicon.png  # URL Icon
#### Data Parsing ########################################################
nam=${0##*/} ; nam=${nam%.*} ; p1=${1:0:15} ; yes=0
LOG="$HOME/public_html${ImgPath}${nam}.log"
[ -r ${nam}.cfg -a -s ${nam}.cfg ] && source ${nam}.cfg
PAGE="${PAGE}${nam}.html" ; DOMs=$(< ${nam}.doms)
Keys=$(while read line ; do printf "${line%%:*} " ; done < ${nam}.keys)
url=${HTTP_REFERER:0:128} ; url=${url/http*:\/\/} ; dom=${url%%/*}
c=0 ; for d in $(date -u) ; do let c++ ; eval d$c=\$d ; done
DATE="$d1 $d3 $d2 $d6 - $d4 $d5" ; unset c d d1 d2 d3 d4 d5 d6

# Domain and/or Key Verification
while [ $yes -lt $auth ]
do
	for K in $Keys ; do [ "$p1"  = "$K" ] && let yes++ ; done ; [ "$yes" -eq "$auth" ] && break
	for D in $DOMs ; do [ "$dom" = "$D" ] && let yes++ ; done ; break
done

# Post Access Denied message
############################
if [ $yes -lt $auth ]
then
	[ -n "$dom" ] && ErrMsg="<b>From Referer Domain:</b><br>$dom"
	[ $auth -eq 2 ] && andor=and || andor=or

while read line ; do echo "$line" ; done <<EoF
Content-type: text/html ; charset=utf-8

<html>
<head>
	<title>Access Denied</title>
	<link rel="shortcut icon" type="image/png" href="${ImgPath}${Icon}">
	<meta http-equiv="Content-Type" content="text/html" charset="utf-8">
	<meta name="viewport" content="width=device-width, initial-scale=0.64, maxium-scale=1.5, minimum-scale=0.64"> 
	<style>
		   a {text-decoration:none; }
		body { width:500px; }
	</style>
</head>
<body bgcolor="#ffffff">
<center>
<font color="#000000" size="7" face="Arial, Helvetica, Sans">
$DATE<br><br>
Access Denied</font><br>
<font color="#000000" size="3" face="Arial, Helvetica, Sans">
$ErrMsg</font><br>
<br>
<font color="#000000" size="3" face="Arial, Helvetica, Sans">
<b>This site is only accessable through a key<br>$andor a link posted from the following domains:</b><br>
$DOMs<br>
<br>
Link to Post:<br>
&lt;a href=&quot;${ThisDomain}/cgi-bin/${nam}.html&quot;&gt;${nam^^}&lt;/a&gt;<br>
(Encode Link Without Line Breaks)
</font><br>
</center>
</body>
</html>
EoF
##########
	printf "<b>Access Denied</b> " >> $LOG
fi

# Append to Access Log
printf "${DATE// }&nbsp;&nbsp;&nbsp;${REMOTE_ADDR}&nbsp;&nbsp;&nbsp;&nbsp;${HTTP_REFERER}&nbsp;&nbsp;<b>${a1}</b><br>\n" >> $LOG
[ $yes -lt $auth ] && exit 1

# Post Page
###########
printf "Content-type: text/html ; charset=utf-8\n\n"
[ -r "$PAGE" -a -s "$PAGE" ] && \
{ sed -e s#ImgPath#$ImgPathg -e s#Icon#$Icong -e s#DATE#$DATEg -e s#ThisDomain#$ThisDomaing -e s#nam#$namg "$PAGE" ; exit ; }

# If not using an external page then edit the following as necessary.
while read line ; do echo "$line" ; done <<EoF
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional/EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
	<title>Page</title>
	<link rel="shortcut icon" type="image/png" href="${ImgPath}${Icon}">
	<meta http-equiv="Content-Type" content="text/html"; charset="utf-8">
	<meta name="author"   content="">
	<meta name="keywords" content="">
	<meta name="viewport" content="width=device-width, initial-scale=0.64, maxium-scale=1.5, minimum-scale=0.64"> 
	<style>
		   a {text-decoration:none; }
		body { width:500px; }
	</style>
</head>
<body text="#000000" bgcolor="#ffffff" link="#0000ff" alink="#ff0028" vlink="#7800cc">

<center>
<font size="4" color="#0000ff" face="'Lucita Handwriting', 'Comic Sans MS', Arial, Helvetica, Sans">${DATE}<br></font>
</center>

<!-- Place Page Code Here -->

</body>
</html>
EoF
###