[BACK]Return to checkauthen.pm CVS log [TXT] [DIR] Up to [LON-CAPA] / loncom / auth
File:  [LON-CAPA] / loncom / auth / checkauthen.pm
Revision 1.21: download - view: text, annotated - select for diffs
Mon Dec 24 14:29:48 2018 UTC (6 years ago) by raeburn
Branches: MAIN
CVS tags: version_2_12_X, version_2_11_5_msu, version_2_11_4_msu, version_2_11_3_msu, HEAD
- Only store tiny url as firsturl form item in %env if initial request,
  so as not to break LTI provider functionality for /adm/lti/tiny/$dom/id

# The LearningOnline Network
# checks for a cookie to authenticate a user
#
# $Id: checkauthen.pm,v 1.21 2018/12/24 14:29:48 raeburn Exp $
#
# Copyright Michigan State University Board of Trustees
#
# This file is part of the LearningOnline Network with CAPA (LON-CAPA).
#
# LON-CAPA is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# LON-CAPA is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with LON-CAPA; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
#
# /home/httpd/html/adm/gpl.txt
#
# http://www.lon-capa.org/
#
###

package Apache::checkauthen;

use strict;
use Apache::Constants qw(:common);
use Apache::lonnet;

sub handler {
    my ($r) = @_;

    if ($r->uri() =~ m{^/res/adm/pages/[^/]+\.(gif|png)$}) {
        if ($r->user() eq '') {
            $r->user('public:public');
        }
        return OK;
    }

    if (&Apache::lonnet::is_domainimage($r->uri)) {
        if ($r->user() eq '') {
            $r->user('public:public');
        }
        return OK;
    }

    if ($r->auth_type() ne 'LONCAPA') {
	return DECLINED;
    }
    my $fail = FORBIDDEN; 
    if ($r->dir_config('lonOtherAuthen') eq 'yes') {
	if (defined($r->dir_config('lonOtherAuthenType'))) {
            $r->auth_type($r->dir_config('lonOtherAuthenType'));
        }
	#&Apache::lonnet::logthis("other authen");
	$fail = DECLINED;
    }

    if ($env{'user.name'} eq 'public' 
	&& $env{'user.domain'} eq 'public') {
	if ($env{'request.publicaccess'} ) {
            if ($r->user() eq '') {
                $r->user('public:public');
            }
	    return OK;
	} else {
	    return $fail;
	}
    }

    my %user;
    my $handle = &Apache::lonnet::check_for_valid_session($r,undef,\%user);
    if ($handle eq '') {
        $handle = $env{'user.environment'};
        if (($handle ne '') && ($r->user() eq '')) {
            if ($env{'user.domain'} eq $r->dir_config('lonDefDomain')) {
                $r->user($env{'user.name'});
            } else {
                $r->user($env{'user.name'}.':'.$env{'user.domain'});
            }
        }
    }

    if ($handle ne '') {
        if ($r->user() eq '') {
            if ($user{'domain'} eq $r->dir_config('lonDefDomain')) {
                $r->user($user{'name'});
            } else {
                $r->user($user{'name'}.':'.$user{'domain'});
            }
        }
        return OK;
    }
    if (($fail == FORBIDDEN) &&
        (($r->uri eq '/adm/email') || ($r->uri eq '/adm/preferences') ||
         ($r->uri eq '/adm/requestcourse') ||
         (($r->is_initial_req()) && ($r->uri =~ m{^/tiny/[\w\-.]+/\w+$})))) {
        $env{'form.firsturl'} = $r->uri;
    }
    return $fail;
}

1;
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>