loncom/auth/lonacc.pm - diff

Return to lonacc.pm CVS log

Up to [LON-CAPA] / loncom / auth

Diff for /loncom/auth/lonacc.pm between versions 1.78 and 1.89

version 1.78, 2006/06/02 19:38:21	version 1.89, 2006/07/21 18:52:32
Line 35 use Apache::File;	Line 35 use Apache::File;
use Apache::lonnet;	use Apache::lonnet;
use Apache::loncommon();	use Apache::loncommon();
use Apache::lonlocal;	use Apache::lonlocal;
	use Apache::restrictedaccess();
use CGI::Cookie();	use CGI::Cookie();
use Fcntl qw(:flock);	use Fcntl qw(:flock);
	use LONCAPA;

sub cleanup {	sub cleanup {
my ($r)=@_;	my ($r)=@_;
Line 135 sub get_posted_cgi {	Line 137 sub get_posted_cgi {
$r->headers_in->unset('Content-length');	$r->headers_in->unset('Content-length');
}	}

	sub passphrase_access_checker {
	my ($r,$guestkey,$requrl) = @_;
	my ($num,$scope,$end,$start) = ($guestkey =~ /^([^:]+):([a-z]+)_(\d)_?(\d)$/);
	if ($scope eq 'guest') {
	if (exists($env{'user.passphrase_access_'.$requrl})) {
	if (($env{'user.passphrase_access_'.$requrl} == 0) \|\|
	($env{'user.passphrase_access_'.$requrl} > time)) {
	$env{'request.publicaccess'} = 1;
	return 'ok';
	}
	}
	}
	$r->set_handlers('PerlHandler'=> \&Apache::restrictedaccess::handler);
	$r->content_type('perl-script');
	return;
	}

sub handler {	sub handler {
my $r = shift;	my $r = shift;
Line 197 sub handler {	Line 215 sub handler {
&Apache::lonacc::get_posted_cgi($r);	&Apache::lonacc::get_posted_cgi($r);

# ---------------------------------------------------------------- Check access	# ---------------------------------------------------------------- Check access
	my $now = time;
	if (&Apache::lonnet::is_portfolio_url($requrl)) {
	my $result = &Apache::lonnet::portfolio_access($r,$requrl);
	if ($result eq 'ok') { return OK; }
	}
if ($requrl!~/^\/adm\|public\|prtspool\//) {	if ($requrl!~/^\/adm\|public\|prtspool\//) {
my $access=&Apache::lonnet::allowed('bre',$requrl);	my $access=&Apache::lonnet::allowed('bre',$requrl);
if ($access eq '1') {	if ($access eq '1') {
Line 220 sub handler {	Line 242 sub handler {
if ($env{'user.name'} eq 'public' &&	if ($env{'user.name'} eq 'public' &&
$env{'user.domain'} eq 'public' &&	$env{'user.domain'} eq 'public' &&
$requrl !~ m{^/+(res\|public)/} &&	$requrl !~ m{^/+(res\|public)/} &&
$requrl !~ m{^/+adm/(help\|logout\|randomlabel\.png)}) {	$requrl !~ m{^/+adm/(help\|logout\|restrictedaccess\|randomlabel\.png)}) {
$env{'request.querystring'}=$r->args;	$env{'request.querystring'}=$r->args;
$env{'request.firsturl'}=$requrl;	$env{'request.firsturl'}=$requrl;
return FORBIDDEN;	return FORBIDDEN;
Line 288 sub handler {	Line 310 sub handler {
} else {	} else {
$r->log_reason("Cookie $handle not valid", $r->filename);	$r->log_reason("Cookie $handle not valid", $r->filename);
}	}
}	}

# -------------------------------------------- See if this is a public resource	# -------------------------------------------- See if this is a public resource
if ($requrl=~m\|^/public/\|	if ($requrl=~m\|^/public/\|
Line 308 sub handler {	Line 330 sub handler {
return OK;	return OK;
}	}
if ($requrl=~m\|^/+adm/+help/+\|) {	if ($requrl=~m\|^/+adm/+help/+\|) {
return OK;	return OK;
}	}
	# ------------------------------------- See if this is a viewable portfolio file
	if (&Apache::lonnet::is_portfolio_url($requrl)) {
	my $result = &Apache::lonnet::portfolio_access($r,$requrl);
	if ($result eq 'ok' ) { return OK; }
	}

# -------------------------------------------------------------- Not authorized	# -------------------------------------------------------------- Not authorized
$requrl=~/\.(\w+)$/;	$requrl=~/\.(\w+)$/;
# if ((&Apache::loncommon::fileembstyle($1) eq 'ssi') \|\|	# if ((&Apache::loncommon::fileembstyle($1) eq 'ssi') \|\|

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

Removed from v.1.78
changed lines
	Added in v.1.89