--- loncom/auth/lonauth.pm 2011/09/29 14:05:41 1.101.8.8 +++ loncom/auth/lonauth.pm 2010/03/22 20:11:08 1.104 @@ -1,7 +1,7 @@ # The LearningOnline Network # User Authentication Module # -# $Id: lonauth.pm,v 1.101.8.8 2011/09/29 14:05:41 raeburn Exp $ +# $Id: lonauth.pm,v 1.104 2010/03/22 20:11:08 droeschl Exp $ # # Copyright Michigan State University Board of Trustees # @@ -40,7 +40,6 @@ use Apache::lonmenu(); use Apache::createaccount; use Fcntl qw(:flock); use Apache::lonlocal; -use Apache::File(); use HTML::Entities; # ------------------------------------------------------------ Successful login @@ -112,23 +111,16 @@ sub success { } } - my $windowinfo=&Apache::lonmenu::open($env{'browser.os'}); - my $startupremote=&Apache::lonmenu::startupremote($destination); - my $remoteinfo=&Apache::lonmenu::load_remote_msg($lowerurl); - my $setflags=&Apache::lonmenu::setflags(); - my $maincall=&Apache::lonmenu::maincall(); + my $windowinfo = Apache::lonhtmlcommon::scripttag('self.name="loncapaclient";'); + my $header = ''; my $brcrum = [{'href' => '', 'text' => 'Successful Login'},]; my $start_page=&Apache::loncommon::start_page('Successful Login', - $startupremote, - {'no_inline_link' => 1, - 'bread_crumbs' => $brcrum,}); + $header, + {'bread_crumbs' => $brcrum,}); my $end_page =&Apache::loncommon::end_page(); - my $continuelink; - if ($env{'environment.remote'} eq 'off') { - $continuelink=''.&mt('Continue').''; - } + my $continuelink=''.&mt('Continue').''; # ------------------------------------------------- Output for successful login &Apache::loncommon::content_type($r,'text/html'); @@ -143,13 +135,10 @@ sub success { ); $r->print(<$lt{'wel'} $lt{'mes'}

$lt{'pro'}

-$remoteinfo -$maincall $continuelink $end_page ENDSUCCESS @@ -159,8 +148,7 @@ ENDSUCCESS sub failed { my ($r,$message,$form) = @_; - my $start_page = &Apache::loncommon::start_page('Unsuccessful Login',undef, - {'no_inline_link' => 1,}); + my $start_page = &Apache::loncommon::start_page('Unsuccessful Login',undef); my $retry = '/adm/login?username='.$form->{'uname'}. '&domain='.$form->{'udom'}; if (exists($form->{role})) { @@ -217,21 +205,17 @@ sub handler { } else { # Indeed, a valid token is found &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle); - &Apache::loncommon::content_type($r,'text/html'); - $r->send_http_header; - my $start_page = - &Apache::loncommon::start_page('Already logged in'); - my $end_page = - &Apache::loncommon::end_page(); - my $dest = '/adm/roles'; - if ($env{'form.firsturl'} ne '') { - $dest = $env{'form.firsturl'}; - } + &Apache::loncommon::content_type($r,'text/html'); + $r->send_http_header; + my $start_page = + &Apache::loncommon::start_page('Already logged in'); + my $end_page = + &Apache::loncommon::end_page(); $r->print( $start_page .'

'.&mt('You are already logged in!').'

' .'

'.&mt('Please either [_1]continue the current session[_2] or [_3]log out[_4].' - ,'','','','') + ,'','','','') .'

' .$end_page ); @@ -277,8 +261,7 @@ sub handler { my $tmpinfo=Apache::lonnet::reply('tmpget:'.$form{'logtoken'}, $form{'serverid'}); - if (($tmpinfo=~/^error/) || ($tmpinfo eq 'con_lost') || - ($tmpinfo eq 'no_such_host')) { + if (($tmpinfo=~/^error/) || ($tmpinfo eq 'con_lost')) { &failed($r,'Information needed to verify your login information is missing, inaccessible or expired.',\%form); return OK; } else { @@ -332,20 +315,24 @@ sub handler { } # ---------------------------------------------------------------- Authenticate - + my @cancreate; my %domconfig = &Apache::lonnet::get_dom('configuration',['usercreation'],$form{'udom'}); - my ($cancreate,$statustocreate) = - &Apache::createaccount::get_creation_controls($form{'udom'},$domconfig{'usercreation'}); - my $defaultauth; - if (ref($cancreate) eq 'ARRAY') { - if (grep(/^login$/,@{$cancreate})) { - $defaultauth = 1; + if (ref($domconfig{'usercreation'}) eq 'HASH') { + if (ref($domconfig{'usercreation'}{'cancreate'}) eq 'HASH') { + if (ref($domconfig{'usercreation'}{'cancreate'}{'selfcreate'}) eq 'ARRAY') { + @cancreate = @{$domconfig{'usercreation'}{'cancreate'}{'selfcreate'}}; + } elsif (($domconfig{'usercreation'}{'cancreate'}{'selfcreate'} ne 'none') && + ($domconfig{'usercreation'}{'cancreate'}{'selfcreate'} ne '')) { + @cancreate = ($domconfig{'usercreation'}{'cancreate'}{'selfcreate'}); + } } } - my $clientcancheckhost = 1; + my $defaultauth; + if (grep(/^login$/,@cancreate)) { + $defaultauth = 1; + } my $authhost=Apache::lonnet::authenticate($form{'uname'},$upass, - $form{'udom'},$defaultauth, - $clientcancheckhost); + $form{'udom'},$defaultauth); # --------------------------------------------------------------------- Failed? @@ -354,25 +341,21 @@ sub handler { \%form); return OK; } elsif ($authhost eq 'no_account_on_host') { - if ($defaultauth) { - my $domdesc = &Apache::lonnet::domain($form{'udom'},'description'); - unless (&check_can_host($r,\%form,'no_account_on_host',$domdesc)) { - return OK; - } + my %domconfig = + &Apache::lonnet::get_dom('configuration',['usercreation'],$form{'udom'}); + if (grep(/^login$/,@cancreate)) { my $start_page = - &Apache::loncommon::start_page('Create a user account in LON-CAPA', - '',{'no_inline_link' => 1,}); + &Apache::loncommon::start_page('Create a user account in LON-CAPA'); + my $domdesc = &Apache::lonnet::domain($form{'udom'},'description'); my $lonhost = $r->dir_config('lonHostID'); my $origmail = $Apache::lonnet::perlvar{'lonSupportEMail'}; my $contacts = &Apache::loncommon::build_recipient_list(undef,'helpdeskmail', $form{'udom'},$origmail); my ($contact_email) = split(',',$contacts); - my $output = - &Apache::createaccount::username_check($form{'uname'},$form{'udom'}, - $domdesc,'',$lonhost, - $contact_email,$contact_name, - undef,$statustocreate); + my $output = &Apache::createaccount::username_check($form{'uname'}, + $form{'udom'},$domdesc,'', + $lonhost,$contact_email,$contact_name); &Apache::loncommon::content_type($r,'text/html'); $r->send_http_header; &Apache::createaccount::print_header($r,$start_page); @@ -414,133 +397,14 @@ sub handler { } if ($r->dir_config("lonBalancer") eq 'yes') { - my $otherserver = &Apache::lonnet::spareserver(30000,undef,1,$form{'udom'}); - if (!$otherserver) { - ($otherserver) = &Apache::lonnet::choose_server($form{'udom'}); - } - if ($otherserver) { - &success($r,$form{'uname'},$form{'udom'},$authhost,'noredirect',undef, - \%form); - $r->internal_redirect('/adm/switchserver?otherserver='.$otherserver.'&origurl='.$firsturl); - } else { - $r->print(&noswitch()); - } - return OK; + &success($r,$form{'uname'},$form{'udom'},$authhost,'noredirect',undef, + \%form); + $r->internal_redirect('/adm/switchserver'); } else { - if (!&check_can_host($r,\%form,$authhost)) { - my ($otherserver) = &Apache::lonnet::choose_server($form{'udom'}); - if ($otherserver) { - &success($r,$form{'uname'},$form{'udom'},$authhost,'noredirect',undef, - \%form); - $r->internal_redirect('/adm/switchserver?otherserver='.$otherserver.'&origurl='.$firsturl); - } else { - $r->print(&noswitch()); - } - return OK; - } -# ------------------------------------------------------- Do the load balancing - -# ---------------------------------------------------------- Determine own load - my $loadlim = $r->dir_config('lonLoadLim'); - my $loadavg; - { - my $loadfile=Apache::File->new('/proc/loadavg'); - $loadavg=<$loadfile>; - } - $loadavg =~ s/\s.*//g; - my $loadpercent=sprintf("%.1f",100*$loadavg/$loadlim); - my $userloadpercent=&Apache::lonnet::userload(); - -# ---------------------------------------------------------- Are we overloaded? - if ((($userloadpercent>100.0)||($loadpercent>100.0))) { - my $unloaded=Apache::lonnet::spareserver($loadpercent,$userloadpercent,1,$form{'udom'}); - if (!$unloaded) { - ($unloaded) = &Apache::lonnet::choose_server($form{'udom'}); - } - if ($unloaded) { - &success($r,$form{'uname'},$form{'udom'},$authhost,'noredirect', - undef,\%form); - $r->internal_redirect('/adm/switchserver?otherserver='.$unloaded.'&origurl='.$firsturl); - return OK; - } - } - &success($r,$form{'uname'},$form{'udom'},$authhost,$firsturl,undef, - \%form); - return OK; - } -} - -sub check_can_host { - my ($r,$form,$authhost,$domdesc) = @_; - return unless (ref($form) eq 'HASH'); - my $canhost = 1; - my $lonhost = $r->dir_config('lonHostID'); - my $udom = $form->{'udom'}; - my @intdoms; - my $internet_names = &Apache::lonnet::get_internet_names($lonhost); - if (ref($internet_names) eq 'ARRAY') { - @intdoms = @{$internet_names}; - } - my $uprimary_id = &Apache::lonnet::domain($udom,'primary'); - my $uint_dom = &Apache::lonnet::internet_dom($uprimary_id); - unless ($uint_dom ne '' && grep(/^\Q$uint_dom\E$/,@intdoms)) { - my $machine_dom = &Apache::lonnet::host_domain($lonhost); - my $hostname = &Apache::lonnet::hostname($lonhost); - my $serverhomeID = &Apache::lonnet::get_server_homeID($hostname); - my $serverhomedom = &Apache::lonnet::host_domain($serverhomeID); - my %defdomdefaults = &Apache::lonnet::get_domain_defaults($serverhomedom); - my %udomdefaults = &Apache::lonnet::get_domain_defaults($udom); - my $loncaparev; - if ($authhost eq 'no_account_on_host') { - $loncaparev = &Apache::lonnet::get_server_loncaparev($machine_dom); - } else { - $loncaparev = &Apache::lonnet::get_server_loncaparev($machine_dom,$lonhost); - } - $canhost = &Apache::lonnet::can_host_session($udom,$lonhost,$loncaparev, - $udomdefaults{'remotesessions'}, - $defdomdefaults{'hostedsessions'}); - } - unless ($canhost) { - if ($authhost eq 'no_account_on_host') { - my $checkloginvia = 1; - my ($login_host,$hostname) = - &Apache::lonnet::choose_server($udom,$checkloginvia); - &Apache::loncommon::content_type($r,'text/html'); - $r->send_http_header; - if ($login_host ne '') { - my $protocol = $Apache::lonnet::protocol{$login_host}; - $protocol = 'http' if ($protocol ne 'https'); - my $newurl = $protocol.'://'.$hostname.'/adm/createaccount'; - $r->print(&Apache::loncommon::start_page('Create a user account in LON-CAPA'). - '

'.&mt('Account creation').'

'. - &mt('You do not currently have a LON-CAPA account at this institution.').'
'. - '

'.&mt('You will be able to create one by logging into a LON-CAPA server within the [_1] domain.',$domdesc).'

'. - '

'.&mt('[_1]Log in[_2]','',''). - &Apache::loncommon::end_page()); - } else { - $r->print(&Apache::loncommon::start_page('Access to LON-CAPA unavailable'). - '

'.&mt('Account creation unavailable').'

'. - &mt('You do not currently have a LON-CAPA account at this institution.').'
'. - '

'.&mt('Currently a LON-CAPA server is not available within the [_1] domain for you to log-in to, to create an account.',$domdesc).'

'. - &Apache::loncommon::end_page()); - } - } else { - &success($r,$form->{'uname'},$udom,$authhost,'noredirect',undef, - $form); - my ($otherserver) = &Apache::lonnet::choose_server($udom); - $r->internal_redirect('/adm/switchserver?otherserver='.$otherserver); - } + &success($r,$form{'uname'},$form{'udom'},$authhost,$firsturl,undef, + \%form); } - return $canhost; -} - -sub noswitch { - my $result = &Apache::loncommon::start_page('Access to LON-CAPA unavailable'). - '

'.&mt('Session unavailable').'

'. - &mt('This LON-CAPA server is unable to host your session.').'
'. - '

'.&mt('Currently no other LON-CAPA server is available to host your session either.').'

'. - &Apache::loncommon::end_page(); - return $result; + return OK; } 1;