--- loncom/auth/lonauth.pm 2000/10/30 22:41:55 1.16
+++ loncom/auth/lonauth.pm 2014/10/04 13:21:48 1.121.2.12
@@ -1,102 +1,62 @@
# The LearningOnline Network
# User Authentication Module
-# 5/21/99,5/22,5/25,5/26,5/27,5/29,6/2,6/11,6/14,6/15
-# 16/11,12/16,
-# 1/14,2/24,2/28,2/29,3/7,5/29,5/30,5/31,6/1,6/5,6/29,
-# 7/1,7/10,10/2,10/5,10/9,10/26,10/30 Gerd Kortemeyer
+#
+# $Id: lonauth.pm,v 1.121.2.12 2014/10/04 13:21:48 raeburn Exp $
+#
+# Copyright Michigan State University Board of Trustees
+#
+# This file is part of the LearningOnline Network with CAPA (LON-CAPA).
+#
+# LON-CAPA is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# LON-CAPA is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with LON-CAPA; if not, write to the Free Software
+# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
+#
+# /home/httpd/html/adm/gpl.txt
+#
+# http://www.lon-capa.org/
+#
package Apache::lonauth;
+use strict;
+use LONCAPA;
use Apache::Constants qw(:common);
-use Apache::File;
use CGI qw(:standard);
-use CGI::Cookie();
+use DynaLoader; # for Crypt::DES version
use Crypt::DES;
-use Apache::lonnet();
+use Apache::loncommon();
+use Apache::lonnet;
use Apache::lonmenu();
-
+use Apache::createaccount;
+use Fcntl qw(:flock);
+use Apache::lonlocal;
+use Apache::File();
+use HTML::Entities;
+
# ------------------------------------------------------------ Successful login
-
sub success {
- my ($r, $username, $domain, $authhost,$lowerurl) = @_;
- my $lonids=$r->dir_config('lonIDsDir');
+ my ($r, $username, $domain, $authhost, $lowerurl, $extra_env,
+ $form) = @_;
-# See if old ID present, if so, remove
- my $cookie;
- while ($cookie=<$lonids/$username\_*\_$domain\_$authhost.id>) {
- unlink($cookie);
- }
-
-# Give them a new cookie
-
- my $now=time;
- $cookie="$username\_$now\_$domain\_$authhost";
-
-# Initialize roles
-
- my $userroles=Apache::lonnet::rolesinit($domain,$username,$authhost);
-
-# ------------------------------------ Check browser type and MathML capability
-
- my @browsertype=split(/\&/,$r->dir_config("lonBrowsDet"));
- my %mathcap=split(/\&/,$r->dir_config("lonMathML"));
- my $httpbrowser=$ENV{"HTTP_USER_AGENT"};
- my $i;
- my $clientbrowser='unknown';
- my $clientversion='0';
- my $clientmathml='';
- for ($i=0;$i<=$#browsertype;$i++) {
- my ($bname,$match,$notmatch,$vreg,$minv)=split(/\:/,$browsertype[$i]);
- if (($httpbrowser=~/$match/i) && ($httpbrowser!~/$notmatch/i)) {
- $clientbrowser=$bname;
- $httpbrowser=~/$vreg/i;
- $clientversion=$1;
- $clientmathml=($clientversion>=$minv);
- }
- }
- my $clientos='unknown';
- if (($httpbrowser=~/linux/i) ||
- ($httpbrowser=~/unix/i) ||
- ($httpbrowser=~/ux/i) ||
- ($httpbrowser=~/solaris/i)) { $clientos='unix'; }
- if (($httpbrowser=~/vax/i) ||
- ($httpbrowser=~/vms/i)) { $clientos='vms'; }
- if ($httpbrowser=~/next/i) { $clientos='next'; }
- if (($httpbrowser=~/mac/i) ||
- ($httpbrowser=~/powerpc/i)) { $clientos='mac'; }
- if ($httpbrowser=~/win/i) { $clientos='win'; }
-
-# ------------------------------------------------------------- Get environment
-
- my $userenv=Apache::lonnet::reply("dump:$domain:$username:environment",
- $authhost);
- if (($userenv eq 'con_lost') ||
- ($userenv =~ /^error\:/)) {
- $userenv='';
- }
- $userenv=~s/\&/\nenvironment\./g;
- if ($userenv ne '') {
- $userenv='environment.'.$userenv;
- }
-# --------------------------------------------------------- Write first profile
-
- {
- my $idf=Apache::File->new(">$lonids/$cookie.id");
- if ($userenv ne '') { print $idf "$userenv\n"; }
- print $idf "user.name=$username\n";
- print $idf "user.domain=$domain\n";
- print $idf "user.home=$authhost\n";
- print $idf "browser.type=$clientbrowser\n";
- print $idf "browser.version=$clientversion\n";
- print $idf "browser.mathml=$clientmathml\n";
- print $idf "browser.os=$clientos\n";
- print $idf "request.course.fn=\n";
- print $idf "request.course.uri=\n";
- print $idf "request.course.sec=\n";
- print $idf "request.role=cm\n";
- print $idf "request.host=$ENV{'HTTP_HOST'}\n";
- if ($userroles ne '') { print $idf "$userroles"; }
- }
+# ------------------------------------------------------------ Get cookie ready
+ my $cookie =
+ &Apache::loncommon::init_user_environment($r, $username, $domain,
+ $authhost, $form,
+ {'extra_env' => $extra_env,});
+
+ my $public=($username eq 'public' && $domain eq 'public');
+
+ if ($public or $lowerurl eq 'noredirect') { return $cookie; }
# -------------------------------------------------------------------- Log this
@@ -105,131 +65,595 @@ sub success {
# ------------------------------------------------- Check for critical messages
- my @what=&Apache::lonnet::dump('critical');
+ my @what=&Apache::lonnet::dump('critical',$domain,$username);
if ($what[0]) {
- if ($what[0] ne 'con_lost') {
- $lowerurl='/adm/email/critical/'.$what[0];
+ if (($what[0] ne 'con_lost') && ($what[0]!~/^error\:/)) {
+ $lowerurl='/adm/email?critical=display';
}
}
# ------------------------------------------------------------ Get cookie ready
-
$cookie="lonID=$cookie; path=/";
# -------------------------------------------------------- Menu script and info
+ my $destination = $lowerurl;
- my $windowinfo=&Apache::lonmenu::open();
+ if (defined($form->{role})) {
+ my $envkey = 'user.role.'.$form->{role};
+ my $now=time;
+ my $then=$env{'user.login.time'};
+ my $refresh=$env{'user.refresh.time'};
+ my $update=$env{'user.update.time'};
+ if (!$update) {
+ $update = $then;
+ }
+ if (exists($env{$envkey})) {
+ my ($role,$where,$trolecode,$tstart,$tend,$tremark,$tstatus);
+ &Apache::lonnet::role_status($envkey,$update,$refresh,$now,\$role,\$where,
+ \$trolecode,\$tstatus,\$tstart,\$tend);
+ if ($tstatus eq 'is') {
+ $destination .= ($destination =~ /\?/) ? '&' : '?';
+ my $newrole = &HTML::Entities::encode($form->{role},'"<>&');
+ $destination .= 'selectrole=1&'.$newrole.'=1';
+ }
+ }
+ }
+ if (defined($form->{symb})) {
+ my $destsymb = $form->{symb};
+ $destination .= ($destination =~ /\?/) ? '&' : '?';
+ if ($destsymb =~ /___/) {
+ # FIXME Need to deal with encrypted symbs and urls as needed.
+ my ($map,$resid,$desturl)=split(/___/,$destsymb);
+ unless ($desturl=~/^(adm|editupload|public)/) {
+ $desturl = &Apache::lonnet::clutter($desturl);
+ }
+ $desturl = &HTML::Entities::encode($desturl,'"<>&');
+ $destsymb = &HTML::Entities::encode($destsymb,'"<>&');
+ $destination .= 'destinationurl='.$desturl.
+ '&destsymb='.$destsymb;
+ } else {
+ $destsymb = &HTML::Entities::encode($destsymb,'"<>&');
+ $destination .= 'destinationurl='.$destsymb;
+ }
+ }
+ if ($destination =~ m{^/adm/roles}) {
+ $destination .= ($destination =~ /\?/) ? '&' : '?';
+ $destination .= 'source=login';
+ }
+
+ my $windowinfo=&Apache::lonmenu::open($env{'browser.os'});
+ my $startupremote=&Apache::lonmenu::startupremote($destination);
+ my $remoteinfo=&Apache::lonmenu::load_remote_msg($lowerurl);
+ my $setflags=&Apache::lonmenu::setflags();
+ my $maincall=&Apache::lonmenu::maincall();
+ my $brcrum = [{'href' => '',
+ 'text' => 'Successful Login'},];
+ my $start_page=&Apache::loncommon::start_page('Successful Login',
+ $startupremote,
+ {'no_inline_link' => 1,
+ 'bread_crumbs' => $brcrum,});
+ my $end_page =&Apache::loncommon::end_page();
+
+ my $continuelink;
+ if ($env{'environment.remote'} eq 'off') {
+ $continuelink=''.&mt('Continue').'';
+ }
# ------------------------------------------------- Output for successful login
- $r->send_cgi_header(<header_out('Set-cookie' => $cookie);
+ $r->send_http_header;
+
+ my %lt=&Apache::lonlocal::texthash(
+ 'wel' => 'Welcome',
+ 'pro' => 'Login problems?',
+ );
+ my $loginhelp = &loginhelpdisplay($domain);
+ if ($loginhelp) {
+ $loginhelp = ''.$lt{'pro'}.'
';
+ }
-ENDHEADER
+ my $welcome = &mt('Welcome to the Learning[_1]Online[_2] Network with CAPA. Please wait while your session is being set up.','','');
$r->print(<
-
-Successful Login to the LearningOnline Network with CAPA
-
-
-
- $windowinfo
-Welcome!
-
-