Annotation of loncom/auth/checkauthen.pm, revision 1.14

1.1       albertel    1: # The LearningOnline Network
                      2: # checks for a cokkie to authenticate a user
                      3: #
1.14    ! raeburn     4: # $Id: checkauthen.pm,v 1.13 2012/04/18 18:55:06 raeburn Exp $
1.1       albertel    5: #
                      6: # Copyright Michigan State University Board of Trustees
                      7: #
                      8: # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
                      9: #
                     10: # LON-CAPA is free software; you can redistribute it and/or modify
                     11: # it under the terms of the GNU General Public License as published by
                     12: # the Free Software Foundation; either version 2 of the License, or
                     13: # (at your option) any later version.
                     14: #
                     15: # LON-CAPA is distributed in the hope that it will be useful,
                     16: # but WITHOUT ANY WARRANTY; without even the implied warranty of
                     17: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
                     18: # GNU General Public License for more details.
                     19: #
                     20: # You should have received a copy of the GNU General Public License
                     21: # along with LON-CAPA; if not, write to the Free Software
                     22: # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
                     23: #
                     24: # /home/httpd/html/adm/gpl.txt
                     25: #
                     26: # http://www.lon-capa.org/
                     27: #
                     28: ###
                     29: 
                     30: package Apache::checkauthen;
                     31: 
                     32: use strict;
                     33: use Apache::Constants qw(:common);
                     34: use Apache::lonnet;
                     35: 
                     36: sub handler {
                     37:     my ($r) = @_;
                     38: 
1.14    ! raeburn    39:     if ($r->uri() =~ m{^/res/adm/pages/[^/]+\.(gif|png)$}) {
        !            40:         if ($r->user() eq '') {
        !            41:             $r->user('public');
        !            42:         }
        !            43:         return OK;
        !            44:     }
        !            45: 
1.11      raeburn    46:     if (&Apache::lonnet::is_domainimage($r->uri)) {
1.14    ! raeburn    47:         if ($r->user() eq '') {
        !            48:             $r->user('public');
        !            49:         }
1.11      raeburn    50:         return OK;
                     51:     }
                     52: 
1.7       albertel   53:     if ($r->auth_type() ne 'LONCAPA') {
1.2       albertel   54: 	return DECLINED;
                     55:     }
1.1       albertel   56:     my $fail = FORBIDDEN; 
                     57:     if ($r->dir_config('lonOtherAuthen') eq 'yes') {
1.6       albertel   58: 	if (defined($r->dir_config('lonOtherAuthenType'))) {
                     59:             $r->auth_type($r->dir_config('lonOtherAuthenType'));
                     60:         }
1.2       albertel   61: 	#&Apache::lonnet::logthis("other authen");
1.1       albertel   62: 	$fail = DECLINED;
                     63:     }
                     64: 
                     65:     if ($env{'user.name'} eq 'public' 
                     66: 	&& $env{'user.domain'} eq 'public') {
                     67: 	if ($env{'request.publicaccess'} ) {
1.14    ! raeburn    68:             if ($r->user() eq '') {
        !            69:                 $r->user('public');
        !            70:             }
1.1       albertel   71: 	    return OK;
                     72: 	} else {
                     73: 	    return $fail;
                     74: 	}
                     75:     }
                     76: 
1.14    ! raeburn    77:     my %user;
        !            78:     my $handle = &Apache::lonnet::check_for_valid_session($r,undef,\%user);
1.12      albertel   79:     if ($handle eq '') {
1.8       albertel   80:         $handle = $env{'user.environment'};
1.14    ! raeburn    81:         if (($handle ne '') && ($r->user() eq '')) {
        !            82:             if ($env{'user.domain'} eq $r->dir_config('lonDefDomain')) {
        !            83:                 $r->user($env{'user.name'});
        !            84:             } else {
        !            85:                 $r->user($env{'user.name'}.':'.$env{'user.domain'});
        !            86:             }
        !            87:         }
1.8       albertel   88:     }
                     89: 
1.12      albertel   90:     if ($handle ne '') {
1.14    ! raeburn    91:         if ($r->user() eq '') {
        !            92:             if ($user{'domain'} eq $r->dir_config('lonDefDomain')) {
        !            93:                 $r->user($user{'name'});
        !            94:             } else {
        !            95:                 $r->user($user{'name'}.':'.$user{'domain'});
        !            96:             }
        !            97:         }
1.8       albertel   98:         return OK;
1.1       albertel   99:     }
1.13      raeburn   100:     if (($fail == FORBIDDEN) && ($r->uri eq '/adm/email')) {
                    101:         $env{'form.firsturl'} = $r->uri;
                    102:     }
1.1       albertel  103:     return $fail;
                    104: }
                    105: 
                    106: 1;

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>