version 1.171, 2017/09/25 00:36:30
|
version 1.198, 2022/06/01 12:12:32
|
Line 37 use Apache::lonauth();
|
Line 37 use Apache::lonauth();
|
use Apache::lonlocal;
|
use Apache::lonlocal;
|
use Apache::migrateuser();
|
use Apache::migrateuser();
|
use lib '/home/httpd/lib/perl/';
|
use lib '/home/httpd/lib/perl/';
|
use LONCAPA;
|
use LONCAPA qw(:DEFAULT :match);
|
|
use URI::Escape;
|
|
use HTML::Entities();
|
use CGI::Cookie();
|
use CGI::Cookie();
|
|
|
sub handler {
|
sub handler {
|
Line 47 sub handler {
|
Line 49 sub handler {
|
(join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'},
|
(join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'},
|
$ENV{'REDIRECT_QUERY_STRING'}),
|
$ENV{'REDIRECT_QUERY_STRING'}),
|
['interface','username','domain','firsturl','localpath','localres',
|
['interface','username','domain','firsturl','localpath','localres',
|
'token','role','symb','iptoken']);
|
'token','role','symb','iptoken','btoken','ltoken','ttoken','linkkey',
|
if (!defined($env{'form.firsturl'})) {
|
'saml','sso','retry']);
|
&Apache::lonacc::get_posted_cgi($r,['firsturl']);
|
|
}
|
|
|
|
# -- check if they are a migrating user
|
# -- check if they are a migrating user
|
if (defined($env{'form.token'})) {
|
if (defined($env{'form.token'})) {
|
return &Apache::migrateuser::handler($r);
|
return &Apache::migrateuser::handler($r);
|
|
}
|
|
|
|
my $lonhost = $r->dir_config('lonHostID');
|
|
if ($env{'form.ttoken'}) {
|
|
my %info = &Apache::lonnet::tmpget($env{'form.ttoken'});
|
|
&Apache::lonnet::tmpdel($env{'form.ttoken'});
|
|
if ($info{'origurl'}) {
|
|
$env{'form.firsturl'} = $info{'origurl'};
|
|
}
|
|
if ($info{'ltoken'}) {
|
|
$env{'form.ltoken'} = $info{'ltoken'};
|
|
} elsif ($info{'linkprot'}) {
|
|
$env{'form.linkprot'} = $info{'linkprot'};
|
|
} elsif ($info{'linkkey'} ne '') {
|
|
$env{'form.linkkey'} = $info{'linkkey'};
|
|
}
|
|
} elsif (($env{'form.sso'}) || ($env{'form.retry'})) {
|
|
my $infotoken;
|
|
if ($env{'form.sso'}) {
|
|
$infotoken = $env{'form.sso'};
|
|
} else {
|
|
$infotoken = $env{'form.retry'};
|
|
}
|
|
my $data = &Apache::lonnet::reply('tmpget:'.$infotoken,$lonhost);
|
|
unless (($data=~/^error/) || ($data eq 'con_lost') ||
|
|
($data eq 'no_such_host')) {
|
|
my %info = &decode_token($data);
|
|
foreach my $item (keys(%info)) {
|
|
$env{'form.'.$item} = $info{$item};
|
|
}
|
|
&Apache::lonnet::tmpdel($infotoken);
|
|
}
|
|
} else {
|
|
if (!defined($env{'form.firsturl'})) {
|
|
&Apache::lonacc::get_posted_cgi($r,['firsturl']);
|
|
}
|
|
if (!defined($env{'form.firsturl'})) {
|
|
if ($ENV{'REDIRECT_URL'} =~ m{^/+tiny/+$LONCAPA::match_domain/+\w+$}) {
|
|
$env{'form.firsturl'} = $ENV{'REDIRECT_URL'};
|
|
}
|
|
}
|
|
if (($env{'form.firsturl'} =~ m{^/+tiny/+$LONCAPA::match_domain/+\w+$}) &&
|
|
(!$env{'form.ltoken'}) && (!$env{'form.linkprot'}) && (!$env{'form.linkkey'})) {
|
|
&Apache::lonacc::get_posted_cgi($r,['linkkey']);
|
|
}
|
|
if ($env{'form.firsturl'} eq '/adm/logout') {
|
|
delete($env{'form.firsturl'});
|
|
}
|
}
|
}
|
|
|
# For "public user" - remove any exising "public" cookie, as user really wants to log-in
|
# For "public user" - remove any exising "public" cookie, as user really wants to log-in
|
my ($handle,$lonidsdir,$expirepub,$userdom);
|
my ($handle,$lonidsdir,$expirepub,$userdom);
|
|
$lonidsdir=$r->dir_config('lonIDsDir');
|
unless ($r->header_only) {
|
unless ($r->header_only) {
|
$handle = &Apache::lonnet::check_for_valid_session($r,'lonID',undef,\$userdom);
|
$handle = &Apache::lonnet::check_for_valid_session($r,'lonID',undef,\$userdom);
|
if ($handle ne '') {
|
if ($handle ne '') {
|
$lonidsdir=$r->dir_config('lonIDsDir');
|
|
if ($handle=~/^publicuser\_/) {
|
if ($handle=~/^publicuser\_/) {
|
unlink($r->dir_config('lonIDsDir')."/$handle.id");
|
unlink($r->dir_config('lonIDsDir')."/$handle.id");
|
undef($handle);
|
undef($handle);
|
Line 81 sub handler {
|
Line 129 sub handler {
|
-expires => '-10y',);
|
-expires => '-10y',);
|
$r->header_out('Set-cookie' => $c);
|
$r->header_out('Set-cookie' => $c);
|
} elsif (($handle eq '') && ($userdom ne '')) {
|
} elsif (($handle eq '') && ($userdom ne '')) {
|
my $c = new CGI::Cookie(-name => 'lonID',
|
my %cookies=CGI::Cookie->parse($r->header_in('Cookie'));
|
-value => '',
|
foreach my $name (keys(%cookies)) {
|
-expires => '-10y',);
|
next unless ($name =~ /^lon(|S|Link|Pub)ID$/);
|
$r->headers_out->add('Set-cookie' => $c);
|
my $c = new CGI::Cookie(-name => $name,
|
|
-value => '',
|
|
-expires => '-10y',);
|
|
$r->headers_out->add('Set-cookie' => $c);
|
|
}
|
}
|
}
|
$r->send_http_header;
|
$r->send_http_header;
|
return OK if $r->header_only;
|
return OK if $r->header_only;
|
Line 97 sub handler {
|
Line 149 sub handler {
|
return OK;
|
return OK;
|
}
|
}
|
|
|
|
# Check if browser sent a LON-CAPA load balancer cookie (and this is a balancer)
|
|
|
|
my ($found_server,$balancer_cookie) = &Apache::lonnet::check_for_balancer_cookie($r,1);
|
|
if ($found_server) {
|
|
my $hostname = &Apache::lonnet::hostname($found_server);
|
|
if ($hostname ne '') {
|
|
my $protocol = $Apache::lonnet::protocol{$found_server};
|
|
$protocol = 'http' if ($protocol ne 'https');
|
|
my $dest = '/adm/roles';
|
|
if ($env{'form.firsturl'} ne '') {
|
|
$dest = &HTML::Entities::encode($env{'form.firsturl'},'\'"<>&');
|
|
}
|
|
my %info = (
|
|
balcookie => $lonhost.':'.$balancer_cookie,
|
|
);
|
|
if ($env{'form.role'}) {
|
|
$info{'role'} = $env{'form.role'};
|
|
}
|
|
if ($env{'form.symb'}) {
|
|
$info{'symb'} = $env{'form.symb'};
|
|
}
|
|
my $balancer_token = &Apache::lonnet::tmpput(\%info,$found_server);
|
|
unless (($balancer_token eq 'con_lost') || ($balancer_token eq 'refused') ||
|
|
($balancer_token eq 'unknown_cmd') || ($balancer_token eq 'no_such_host')) {
|
|
$dest .= (($dest=~/\?/)?'&':'?') . 'btoken='.$balancer_token;
|
|
}
|
|
if ($env{'form.firsturl'} =~ m{^/tiny/$match_domain/\w+$}) {
|
|
my %link_info;
|
|
if ($env{'form.ltoken'}) {
|
|
$link_info{'ltoken'} = $env{'form.ltoken'};
|
|
} elsif ($env{'form.linkprot'}) {
|
|
$link_info{'linkprot'} = $env{'form.linkprot'};
|
|
} elsif ($env{'form.linkkey'} ne '') {
|
|
$link_info{'linkkey'} = $env{'form.linkkey'};
|
|
}
|
|
if (keys(%link_info)) {
|
|
$link_info{'origurl'} = $env{'form.firsturl'};
|
|
my $token = &Apache::lonnet::tmpput(\%link_info,$found_server,'link');
|
|
unless (($token eq 'con_lost') || ($token eq 'refused') ||
|
|
($token eq 'unknown_cmd') || ($token eq 'no_such_host')) {
|
|
$dest .= (($dest=~/\?/)?'&':'?') . 'ttoken='.$token;
|
|
}
|
|
}
|
|
}
|
|
unless ($found_server eq $lonhost) {
|
|
my $alias = &Apache::lonnet::use_proxy_alias($r,$found_server);
|
|
$hostname = $alias if ($alias ne '');
|
|
}
|
|
my $url = $protocol.'://'.$hostname.$dest;
|
|
my $start_page =
|
|
&Apache::loncommon::start_page('Switching Server ...',undef,
|
|
{'redirect' => [0,$url],});
|
|
my $end_page = &Apache::loncommon::end_page();
|
|
$r->print($start_page.$end_page);
|
|
return OK;
|
|
}
|
|
}
|
|
|
|
#
|
|
# Check if a LON-CAPA load balancer sent user here because user's browser sent
|
|
# it a balancer cookie for an active session on this server.
|
|
#
|
|
|
|
my $balcookie;
|
|
if ($env{'form.btoken'}) {
|
|
my %info = &Apache::lonnet::tmpget($env{'form.btoken'});
|
|
$balcookie = $info{'balcookie'};
|
|
&Apache::lonnet::tmpdel($env{'form.btoken'});
|
|
delete($env{'form.btoken'});
|
|
}
|
|
|
#
|
#
|
# If browser sent an old cookie for which the session file had been removed
|
# If browser sent an old cookie for which the session file had been removed
|
# check if configuration for user's domain has a portal URL set. If so
|
# check if configuration for user's domain has a portal URL set. If so
|
Line 114 sub handler {
|
Line 237 sub handler {
|
}
|
}
|
}
|
}
|
|
|
$env{'form.firsturl'} =~ s/(`)/'/g;
|
|
|
|
# -------------------------------- Prevent users from attempting to login twice
|
# -------------------------------- Prevent users from attempting to login twice
|
if ($handle ne '') {
|
if ($handle ne '') {
|
&Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle);
|
&Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle);
|
Line 125 sub handler {
|
Line 246 sub handler {
|
&Apache::loncommon::end_page();
|
&Apache::loncommon::end_page();
|
my $dest = '/adm/roles';
|
my $dest = '/adm/roles';
|
if ($env{'form.firsturl'} ne '') {
|
if ($env{'form.firsturl'} ne '') {
|
$dest = $env{'form.firsturl'};
|
$dest = &HTML::Entities::encode($env{'form.firsturl'},'\'"<>&');
|
|
}
|
|
if (($env{'form.ltoken'}) || ($env{'form.linkprot'})) {
|
|
my $linkprot;
|
|
if ($env{'form.ltoken'}) {
|
|
my %info = &Apache::lonnet::tmpget($env{'form.ltoken'});
|
|
$linkprot = $info{'linkprot'};
|
|
my $delete = &Apache::lonnet::tmpdel($env{'form.ltoken'});
|
|
} else {
|
|
$linkprot = $env{'form.linkprot'};
|
|
}
|
|
if ($linkprot) {
|
|
my ($linkprotector,$deeplink) = split(/:/,$linkprot,2);
|
|
if ($env{'user.linkprotector'}) {
|
|
my @protectors = split(/,/,$env{'user.linkprotector'});
|
|
unless (grep(/^\Q$linkprotector\E$/,@protectors)) {
|
|
push(@protectors,$linkprotector);
|
|
@protectors = sort { $a <=> $b } @protectors;
|
|
&Apache::lonnet::appenv({'user.linkprotector' => join(',',@protectors)});
|
|
}
|
|
} else {
|
|
&Apache::lonnet::appenv({'user.linkprotector' => $linkprotector });
|
|
}
|
|
if ($env{'user.linkproturi'}) {
|
|
my @proturis = split(/,/,$env{'user.linkproturi'});
|
|
unless (grep(/^\Q$deeplink\E$/,@proturis)) {
|
|
push(@proturis,$deeplink);
|
|
@proturis = sort @proturis;
|
|
&Apache::lonnet::appenv({'user.linkproturi' => join(',',@proturis)});
|
|
}
|
|
} else {
|
|
&Apache::lonnet::appenv({'user.linkproturi' => $deeplink});
|
|
}
|
|
}
|
|
} elsif ($env{'form.linkkey'} ne '') {
|
|
if ($env{'form.firsturl'} =~ m{^/tiny/$match_domain/\w+$}) {
|
|
my $linkkey = $env{'form.linkkey'};
|
|
if ($env{'user.deeplinkkey'}) {
|
|
my @linkkeys = split(/,/,$env{'user.deeplinkkey'});
|
|
unless (grep(/^\Q$linkkey\E$/,@linkkeys)) {
|
|
push(@linkkeys,$linkkey);
|
|
&Apache::lonnet::appenv({'user.deeplinkkey' => join(',',sort(@linkkeys))});
|
|
}
|
|
} else {
|
|
&Apache::lonnet::appenv({'user.deeplinkkey' => $linkkey});
|
|
}
|
|
my $deeplink = $env{'form.firsturl'};
|
|
if ($env{'user.keyedlinkuri'}) {
|
|
my @keyeduris = split(/,/,$env{'user.keyedlinkuri'});
|
|
unless (grep(/^\Q$deeplink\E$/,@keyeduris)) {
|
|
push(@keyeduris,$deeplink);
|
|
&Apache::lonnet::appenv({'user.keyedlinkuri' => join(',',sort(@keyeduris))});
|
|
}
|
|
} else {
|
|
&Apache::lonnet::appenv({'user.keyedlinkuri' => $deeplink});
|
|
}
|
|
}
|
}
|
}
|
$r->print(
|
$r->print(
|
$start_page
|
$start_page
|
Line 158 sub handler {
|
Line 335 sub handler {
|
$env{'form.interface'}=~s/\W//g;
|
$env{'form.interface'}=~s/\W//g;
|
|
|
(undef,undef,undef,undef,undef,undef,my $clientmobile) =
|
(undef,undef,undef,undef,undef,undef,my $clientmobile) =
|
&Apache::loncommon::decode_user_agent();
|
&Apache::loncommon::decode_user_agent($r);
|
|
|
my $iconpath=
|
my $iconpath=
|
&Apache::loncommon::lonhttpdurl($r->dir_config('lonIconsURL'));
|
&Apache::loncommon::lonhttpdurl($r->dir_config('lonIconsURL'));
|
|
|
my $lonhost = $r->dir_config('lonHostID');
|
|
my $domain = &Apache::lonnet::default_login_domain();
|
my $domain = &Apache::lonnet::default_login_domain();
|
my $defdom = $domain;
|
my $defdom = $domain;
|
if ($lonhost ne '') {
|
if ($lonhost ne '') {
|
unless ($sessiondata{'sessionserver'}) {
|
unless ($sessiondata{'sessionserver'}) {
|
my $redirect = &check_loginvia($domain,$lonhost);
|
my $redirect = &check_loginvia($domain,$lonhost,$lonidsdir,$balcookie);
|
if ($redirect) {
|
if ($redirect) {
|
$r->print($redirect);
|
$r->print($redirect);
|
return OK;
|
return OK;
|
Line 177 sub handler {
|
Line 353 sub handler {
|
}
|
}
|
|
|
if (($sessiondata{'domain'}) &&
|
if (($sessiondata{'domain'}) &&
|
(&Apache::lonnet::domain($env{'form.domain'},'description'))) {
|
(&Apache::lonnet::domain($sessiondata{'domain'},'description'))) {
|
$domain=$sessiondata{'domain'};
|
$domain=$sessiondata{'domain'};
|
} elsif (($env{'form.domain'}) &&
|
} elsif (($env{'form.domain'}) &&
|
(&Apache::lonnet::domain($env{'form.domain'},'description'))) {
|
(&Apache::lonnet::domain($env{'form.domain'},'description'))) {
|
Line 252 sub handler {
|
Line 428 sub handler {
|
if ($uextkey>2147483647) { $uextkey-=4294967296; }
|
if ($uextkey>2147483647) { $uextkey-=4294967296; }
|
|
|
# -------------------------------------------------------- Store away log token
|
# -------------------------------------------------------- Store away log token
|
my $tokenextras;
|
my ($tokenextras,$tokentype,$linkprot_for_login);
|
if ($env{'form.role'}) {
|
my @names = ('role','symb','iptoken','ltoken','linkprot','linkkey');
|
$tokenextras = '&role='.&escape($env{'form.role'});
|
foreach my $name (@names) {
|
}
|
if ($env{'form.'.$name} ne '') {
|
if ($env{'form.symb'}) {
|
if ($name eq 'ltoken') {
|
if (!$tokenextras) {
|
my %info = &Apache::lonnet::tmpget($env{'form.'.$name});
|
$tokenextras = '&';
|
if ($info{'linkprot'}) {
|
|
$linkprot_for_login = $info{'linkprot'};
|
|
$tokenextras .= '&linkprot='.&escape($info{'linkprot'});
|
|
$tokentype = 'link';
|
|
last;
|
|
}
|
|
} else {
|
|
$tokenextras .= '&'.$name.'='.&escape($env{'form.'.$name});
|
|
if (($name eq 'linkkey') || ($name eq 'linkprot')) {
|
|
if ((($env{'form.retry'}) || ($env{'form.sso'})) &&
|
|
(!$env{'form.ltoken'}) && ($name eq 'linkprot')) {
|
|
$linkprot_for_login = $env{'form.linkprot'};
|
|
}
|
|
$tokentype = 'link';
|
|
}
|
|
}
|
}
|
}
|
$tokenextras .= '&symb='.&escape($env{'form.symb'});
|
|
}
|
}
|
if ($env{'form.iptoken'}) {
|
if ($tokentype) {
|
if (!$tokenextras) {
|
$tokenextras .= ":$tokentype";
|
$tokenextras = '&&';
|
|
}
|
|
$tokenextras .= '&iptoken='.&escape($env{'form.iptoken'});
|
|
}
|
}
|
my $logtoken=Apache::lonnet::reply(
|
my $logtoken=Apache::lonnet::reply(
|
'tmpput:'.$ukey.$lkey.'&'.$firsturl.$tokenextras,
|
'tmpput:'.$ukey.$lkey.'&'.&escape($firsturl).$tokenextras,
|
$lonhost);
|
$lonhost);
|
|
|
# -- If we cannot talk to ourselves, or hostID does not map to a hostname
|
# -- If we cannot talk to ourselves, or hostID does not map to a hostname
|
Line 279 sub handler {
|
Line 466 sub handler {
|
if ($logtoken eq 'no_such_host') {
|
if ($logtoken eq 'no_such_host') {
|
&Apache::lonnet::logthis('No valid logtoken for log-in page -- unable to determine hostname for hostID: '.$lonhost.'. Check entry in hosts.tab');
|
&Apache::lonnet::logthis('No valid logtoken for log-in page -- unable to determine hostname for hostID: '.$lonhost.'. Check entry in hosts.tab');
|
}
|
}
|
|
if ($env{'form.ltoken'}) {
|
|
&Apache::lonnet::tmpdel($env{'form.ltoken'});
|
|
delete($env{'form.ltoken'});
|
|
}
|
my $spares='';
|
my $spares='';
|
my $last;
|
my (@sparehosts,%spareservers);
|
foreach my $hostid (sort
|
my $sparesref = &Apache::lonnet::this_host_spares($defdom);
|
{
|
if (ref($sparesref) eq 'HASH') {
|
&Apache::lonnet::hostname($a) cmp
|
foreach my $key (keys(%{$sparesref})) {
|
&Apache::lonnet::hostname($b);
|
if (ref($sparesref->{$key}) eq 'ARRAY') {
|
}
|
my @sorted = sort { &Apache::lonnet::hostname($a) cmp
|
keys(%Apache::lonnet::spareid)) {
|
&Apache::lonnet::hostname($b);
|
|
} @{$sparesref->{$key}};
|
|
if (@sorted) {
|
|
if ($key eq 'primary') {
|
|
unshift(@sparehosts,@sorted);
|
|
} elsif ($key eq 'default') {
|
|
push(@sparehosts,@sorted);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
foreach my $hostid (@sparehosts) {
|
next if ($hostid eq $lonhost);
|
next if ($hostid eq $lonhost);
|
my $hostname = &Apache::lonnet::hostname($hostid);
|
my $hostname = &Apache::lonnet::hostname($hostid);
|
next if (($last eq $hostname) || ($hostname eq ''));
|
next if (($hostname eq '') || ($spareservers{$hostname}));
|
$spares.='<br /><font size="+1"><a href="http://'.
|
$spareservers{$hostname} = 1;
|
|
my $protocol = $Apache::lonnet::protocol{$hostid};
|
|
$protocol = 'http' if ($protocol ne 'https');
|
|
$spares.='<br /><span style="font-size: larger;"><a href="'.$protocol.'://'.
|
$hostname.
|
$hostname.
|
'/adm/login?domain='.$authdomain.'">'.
|
'/adm/login?domain='.$authdomain.'">'.
|
$hostname.'</a>'.
|
$hostname.'</a>'.
|
' '.&mt('(preferred)').'</font>'.$/;
|
' '.&mt('(preferred)').'</span>'.$/;
|
$last=$hostname;
|
|
}
|
}
|
if ($spares) {
|
if ($spares) {
|
$spares.= '<br />';
|
$spares.= '<br />';
|
Line 307 sub handler {
|
Line 512 sub handler {
|
&Apache::lonnet::hostname($b);
|
&Apache::lonnet::hostname($b);
|
}
|
}
|
keys(%all_hostnames)) {
|
keys(%all_hostnames)) {
|
next if ($hostid eq $lonhost || $Apache::lonnet::spareid{$hostid});
|
next if ($hostid eq $lonhost);
|
my $hostname = &Apache::lonnet::hostname($hostid);
|
my $hostname = &Apache::lonnet::hostname($hostid);
|
next if (($last eq $hostname) || ($hostname eq ''));
|
next if (($hostname eq '') || ($spareservers{$hostname}));
|
$spares.='<br /><a href="http://'.
|
$spareservers{$hostname} = 1;
|
|
my $protocol = $Apache::lonnet::protocol{$hostid};
|
|
$protocol = 'http' if ($protocol ne 'https');
|
|
$spares.='<br /><a href="'.$protocol.'://'.
|
$hostname.
|
$hostname.
|
'/adm/login?domain='.$authdomain.'">'.
|
'/adm/login?domain='.$authdomain.'">'.
|
$hostname.'</a>';
|
$hostname.'</a>';
|
$last=$hostname;
|
|
}
|
}
|
$r->print(
|
$r->print(
|
'<html>'
|
'<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">'
|
.'<head><title>'
|
.'<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">'
|
|
.'<head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title>'
|
.&mt('The LearningOnline Network with CAPA')
|
.&mt('The LearningOnline Network with CAPA')
|
.'</title></head>'
|
.'</title></head>'
|
.'<body bgcolor="#FFFFFF">'
|
.'<body bgcolor="#FFFFFF">'
|
.'<h1>'.&mt('The LearningOnline Network with CAPA').'</h1>'
|
.'<h1>'.&mt('The LearningOnline Network with CAPA').'</h1>'
|
.'<img src="/adm/lonKaputt/lonlogo_broken.gif" align="right" />'
|
.'<img src="/adm/lonKaputt/lonlogo_broken.gif" alt="broken icon" align="right" />'
|
.'<h3>'.&mt('This LON-CAPA server is temporarily not available for login.').'</h3>');
|
.'<h3>'.&mt('This LON-CAPA server is temporarily not available for login.').'</h3>');
|
if ($spares) {
|
if ($spares) {
|
$r->print('<p>'.&mt('Please attempt to login to one of the following servers:')
|
$r->print('<p>'.&mt('Please attempt to login to one of the following servers:')
|
Line 415 function enableInput() {
|
Line 623 function enableInput() {
|
|
|
ENDSCRIPT
|
ENDSCRIPT
|
|
|
# --------------------------------------------------- Print login screen header
|
my ($lonhost_in_use,@hosts,%defaultdomconf,$saml_prefix,$saml_landing,
|
|
$samlssotext,$samlnonsso,$samlssoimg,$samlssoalt,$samlssourl,$samltooltip);
|
my %add_entries = (
|
%defaultdomconf = &Apache::loncommon::get_domainconf($defdom);
|
bgcolor => "$mainbg",
|
|
text => "$font",
|
|
link => "$link",
|
|
vlink => "$vlink",
|
|
alink => "$alink",
|
|
onload => 'javascript:enableInput();',);
|
|
|
|
my ($lonhost_in_use,$headextra,$headextra_exempt,@hosts,%defaultdomconf);
|
|
@hosts = &Apache::lonnet::current_machine_ids();
|
@hosts = &Apache::lonnet::current_machine_ids();
|
$lonhost_in_use = $lonhost;
|
$lonhost_in_use = $lonhost;
|
if (@hosts > 1) {
|
if (@hosts > 1) {
|
Line 436 ENDSCRIPT
|
Line 636 ENDSCRIPT
|
}
|
}
|
}
|
}
|
}
|
}
|
%defaultdomconf = &Apache::loncommon::get_domainconf($defdom);
|
$saml_prefix = $defdom.'.login.saml_';
|
|
if ($defaultdomconf{$saml_prefix.$lonhost_in_use}) {
|
|
$saml_landing = 1;
|
|
$samlssotext = $defaultdomconf{$saml_prefix.'text_'.$lonhost_in_use};
|
|
$samlnonsso = $defaultdomconf{$saml_prefix.'notsso_'.$lonhost_in_use};
|
|
$samlssoimg = $defaultdomconf{$saml_prefix.'img_'.$lonhost_in_use};
|
|
$samlssoalt = $defaultdomconf{$saml_prefix.'alt_'.$lonhost_in_use};
|
|
$samlssourl = $defaultdomconf{$saml_prefix.'url_'.$lonhost_in_use};
|
|
$samltooltip = $defaultdomconf{$saml_prefix.'title_'.$lonhost_in_use};
|
|
}
|
|
if ($saml_landing) {
|
|
if ($samlssotext eq '') {
|
|
$samlssotext = 'SSO Login';
|
|
}
|
|
if ($samlnonsso eq '') {
|
|
$samlnonsso = 'Non-SSO Login';
|
|
}
|
|
$js .= <<"ENDSAMLJS";
|
|
|
|
<script type="text/javascript">
|
|
// <![CDATA[
|
|
function toggleLClogin() {
|
|
if (document.getElementById('LC_standard_login')) {
|
|
if (document.getElementById('LC_standard_login').style.display == 'none') {
|
|
document.getElementById('LC_standard_login').style.display = 'inline-block';
|
|
if (document.getElementById('LC_login_text')) {
|
|
document.getElementById('LC_login_text').innerHTML = '$samlnonsso';
|
|
}
|
|
if ( document.client.uname ) { document.client.uname.focus(); }
|
|
if (document.getElementById('LC_SSO_login')) {
|
|
document.getElementById('LC_SSO_login').style.display = 'none';
|
|
}
|
|
} else {
|
|
document.getElementById('LC_standard_login').style.display = 'none';
|
|
if (document.getElementById('LC_login_text')) {
|
|
document.getElementById('LC_login_text').innerHTML = '$samlssotext';
|
|
}
|
|
if (document.getElementById('LC_SSO_login')) {
|
|
document.getElementById('LC_SSO_login').style.display = 'inline-block';
|
|
}
|
|
}
|
|
}
|
|
return;
|
|
}
|
|
|
|
// ]]>
|
|
</script>
|
|
|
|
ENDSAMLJS
|
|
}
|
|
|
|
# --------------------------------------------------- Print login screen header
|
|
|
|
my %add_entries = (
|
|
bgcolor => "$mainbg",
|
|
text => "$font",
|
|
link => "$link",
|
|
vlink => "$vlink",
|
|
alink => "$alink",
|
|
onload => 'javascript:enableInput();',);
|
|
|
|
my ($headextra,$headextra_exempt);
|
$headextra = $defaultdomconf{$defdom.'.login.headtag_'.$lonhost_in_use};
|
$headextra = $defaultdomconf{$defdom.'.login.headtag_'.$lonhost_in_use};
|
$headextra_exempt = $defaultdomconf{$domain.'.login.headtag_exempt_'.$lonhost_in_use};
|
$headextra_exempt = $defaultdomconf{$domain.'.login.headtag_exempt_'.$lonhost_in_use};
|
if ($headextra) {
|
if ($headextra) {
|
my $omitextra;
|
my $omitextra;
|
if ($headextra_exempt ne '') {
|
if ($headextra_exempt ne '') {
|
my @exempt = split(',',$headextra_exempt);
|
my @exempt = split(',',$headextra_exempt);
|
my $ip = $ENV{'REMOTE_ADDR'};
|
my $ip = &Apache::lonnet::get_requestor_ip();
|
if (grep(/^\Q$ip\E$/,@exempt)) {
|
if (grep(/^\Q$ip\E$/,@exempt)) {
|
$omitextra = 1;
|
$omitextra = 1;
|
}
|
}
|
Line 481 ENDSCRIPT
|
Line 742 ENDSCRIPT
|
'helpdesk' => 'Contact Helpdesk',
|
'helpdesk' => 'Contact Helpdesk',
|
'forgotpw' => 'Forgot password?',
|
'forgotpw' => 'Forgot password?',
|
'newuser' => 'New User?',
|
'newuser' => 'New User?',
|
|
'change' => 'Change?',
|
);
|
);
|
# -------------------------------------------------- Change password field name
|
# -------------------------------------------------- Change password field name
|
|
|
Line 542 ENDSERVERFORM
|
Line 804 ENDSERVERFORM
|
$mobileargs = 'autocapitalize="off" autocorrect="off"';
|
$mobileargs = 'autocapitalize="off" autocorrect="off"';
|
}
|
}
|
my $loginform=(<<LFORM);
|
my $loginform=(<<LFORM);
|
<form name="client" action="" onsubmit="return(send())">
|
<form name="client" action="" onsubmit="return(send())" id="lclogin">
|
<input type="hidden" name="lextkey" value="$lextkey" />
|
<input type="hidden" name="lextkey" value="$lextkey" />
|
<input type="hidden" name="uextkey" value="$uextkey" />
|
<input type="hidden" name="uextkey" value="$uextkey" />
|
<b><label for="uname">$lt{'un'}</label>:</b><br />
|
<b><label for="uname">$lt{'un'}</label>:</b><br />
|
Line 556 ENDSERVERFORM
|
Line 818 ENDSERVERFORM
|
LFORM
|
LFORM
|
|
|
if ($showbanner) {
|
if ($showbanner) {
|
|
my $alttext = &Apache::loncommon::designparm('login.alttext_img',$domain);
|
|
if ($alttext eq '') {
|
|
$alttext = 'The Learning Online Network with CAPA';
|
|
}
|
$r->print(<<HEADER);
|
$r->print(<<HEADER);
|
<!-- The LON-CAPA Header -->
|
<!-- The LON-CAPA Header -->
|
<div style="background:$pgbg;margin:0;width:100%;">
|
<div style="background:$pgbg;margin:0;width:100%;">
|
<img src="$img" border="0" alt="The Learning Online Network with CAPA" class="LC_maxwidth" />
|
<img src="$img" border="0" alt="$alttext" class="LC_maxwidth" id="lcloginbanner" />
|
</div>
|
</div>
|
HEADER
|
HEADER
|
}
|
}
|
$r->print(<<ENDTOP);
|
|
<div style="float:left;margin-top:0;">
|
my $stdauthformstyle = 'inline-block';
|
|
my $ssoauthstyle = 'none';
|
|
my $logintype;
|
|
$r->print('<div style="float:left;margin-top:0;">');
|
|
if ($saml_landing) {
|
|
$ssoauthstyle = 'inline-block';
|
|
$stdauthformstyle = 'none';
|
|
$logintype = $samlssotext;
|
|
my $ssologin = '/adm/sso';
|
|
if ($samlssourl ne '') {
|
|
$ssologin = $samlssourl;
|
|
}
|
|
if (($logtoken eq 'con_lost') || ($logtoken eq 'no_such_host')) {
|
|
my $querystring;
|
|
if ($env{'form.firsturl'} ne '') {
|
|
$querystring = 'origurl=';
|
|
if ($env{'form.firsturl'} =~ /[^\x00-\xFF]/) {
|
|
$querystring .= &uri_escape_utf8($env{'form.firsturl'});
|
|
} else {
|
|
$querystring .= &uri_escape($env{'form.firsturl'});
|
|
}
|
|
$querystring = &HTML::Entities::encode($querystring,"'");
|
|
}
|
|
if ($env{'form.ltoken'} ne '') {
|
|
$querystring .= (($querystring eq '')?'':'&') . 'ltoken='.
|
|
&HTML::Entities::encode(&uri_escape($env{'form.ltoken'}));
|
|
} elsif ($env{'form.linkkey'}) {
|
|
$querystring .= (($querystring eq '')?'':'&') . 'linkkey='.
|
|
&HTML::Entities::encode(&uri_escape($env{'form.linkkey'}));
|
|
}
|
|
if ($querystring ne '') {
|
|
$ssologin .= (($ssologin=~/\?/)?'&':'?') . $querystring;
|
|
}
|
|
} elsif ($logtoken ne '') {
|
|
$ssologin .= (($ssologin=~/\?/)?'&':'?') . 'logtoken='.$logtoken;
|
|
}
|
|
my $ssohref;
|
|
if ($samlssoimg ne '') {
|
|
$ssohref = '<a href="'.$ssologin.'" title="'.$samltooltip.'">'.
|
|
'<img src="'.$samlssoimg.'" alt="'.$samlssoalt.'" id="lcssobutton" /></a>';
|
|
} else {
|
|
$ssohref = '<a href="'.$ssologin.'">'.$samlssotext.'</a>';
|
|
}
|
|
if (($env{'form.saml'} eq 'no') ||
|
|
(($env{'form.username'} ne '') && ($env{'form.domain'} ne ''))) {
|
|
$ssoauthstyle = 'none';
|
|
$stdauthformstyle = 'inline-block';
|
|
$logintype = $samlnonsso;
|
|
}
|
|
$r->print(<<ENDSAML);
|
|
<p>
|
|
Log-in type:
|
|
<span style="font-weight:bold" id="LC_login_text">$logintype</span><br />
|
|
<span><a href="javascript:toggleLClogin();" style="color:#000000">$lt{'change'}</a></span>
|
|
</p>
|
|
<div style="display:$ssoauthstyle" id="LC_SSO_login">
|
|
<div class="LC_Box" style="padding-top: 10px;">
|
|
$ssohref
|
|
$noscript_warning
|
|
</div>
|
|
<div class="LC_Box" style="padding-top: 10px;">
|
|
$loginhelp
|
|
$contactblock
|
|
$coursecatalog
|
|
</div>
|
|
</div>
|
|
ENDSAML
|
|
} else {
|
|
if ($env{'form.ltoken'}) {
|
|
&Apache::lonnet::tmpdel($env{'form.ltoken'});
|
|
delete($env{'form.ltoken'});
|
|
}
|
|
}
|
|
my $in_frame_js;
|
|
if ($linkprot_for_login) {
|
|
my ($linkprotector,$linkproturi) = split(/:/,$linkprot_for_login,2);
|
|
if (($linkprotector =~ /^\d+(c|d)$/) && ($linkproturi =~ m{^/+tiny/+$LONCAPA::match_domain/+\w+$})) {
|
|
my $set_target;
|
|
if (($env{'form.retry'}) || ($env{'form.sso'})) {
|
|
if ($linkproturi eq $env{'form.firsturl'}) {
|
|
$set_target = " document.server.target = '_self';";
|
|
}
|
|
} else {
|
|
$set_target = <<ENDTARG;
|
|
var linkproturi = '$linkproturi';
|
|
var path = document.location.pathname.replace( new RegExp('^/adm/launch'),'');
|
|
if (linkproturi == path) {
|
|
document.server.target = '_self';
|
|
}
|
|
ENDTARG
|
|
}
|
|
$in_frame_js = <<ENDJS;
|
|
<script type="text/javascript">
|
|
// <![CDATA[
|
|
if ((window.self !== window.top) && (document.server.target != '_self')) {
|
|
$set_target
|
|
}
|
|
// ]]>
|
|
</script>
|
|
ENDJS
|
|
}
|
|
}
|
|
|
|
$r->print(<<ENDLOGIN);
|
|
<div style="display:$stdauthformstyle;" id="LC_standard_login">
|
<div class="LC_Box" style="background:$loginbox_bg;">
|
<div class="LC_Box" style="background:$loginbox_bg;">
|
$logintitle
|
$logintitle
|
$loginform
|
$loginform
|
Line 580 HEADER
|
Line 950 HEADER
|
</div>
|
</div>
|
</div>
|
</div>
|
|
|
<div>
|
ENDLOGIN
|
ENDTOP
|
$r->print('</div><div>'."\n");
|
if ($showmainlogo) {
|
if ($showmainlogo) {
|
$r->print(' <img src="'.$logo.'" alt="" class="LC_maxwidth" />'."\n");
|
my $alttext = &Apache::loncommon::designparm('login.alttext_logo',$domain);
|
|
$r->print(' <img src="'.$logo.'" alt="'.$alttext.'" class="LC_maxwidth" id="lcloginmainlogo" />'."\n");
|
}
|
}
|
$r->print(<<ENDTOP);
|
$r->print(<<ENDTOP);
|
$announcements
|
$announcements
|
Line 661 $versionrow
|
Line 1032 $versionrow
|
<br style="clear:both;" />
|
<br style="clear:both;" />
|
</div>
|
</div>
|
|
|
|
$in_frame_js
|
<script type="text/javascript">
|
<script type="text/javascript">
|
// <![CDATA[
|
// <![CDATA[
|
// the if prevents the script error if the browser can not handle this
|
// the if prevents the script error if the browser can not handle this
|
Line 676 ENDDOCUMENT
|
Line 1048 ENDDOCUMENT
|
}
|
}
|
|
|
sub check_loginvia {
|
sub check_loginvia {
|
my ($domain,$lonhost) = @_;
|
my ($domain,$lonhost,$lonidsdir,$balcookie) = @_;
|
if ($domain eq '' || $lonhost eq '') {
|
if ($domain eq '' || $lonhost eq '' || $lonidsdir eq '') {
|
return;
|
return;
|
}
|
}
|
my %domconfhash = &Apache::loncommon::get_domainconf($domain);
|
my %domconfhash = &Apache::loncommon::get_domainconf($domain);
|
Line 686 sub check_loginvia {
|
Line 1058 sub check_loginvia {
|
my $output;
|
my $output;
|
if ($loginvia ne '') {
|
if ($loginvia ne '') {
|
my $noredirect;
|
my $noredirect;
|
my $ip = $ENV{'REMOTE_ADDR'};
|
my $ip = &Apache::lonnet::get_requestor_ip();
|
if ($ip eq '127.0.0.1') {
|
if ($ip eq '127.0.0.1') {
|
$noredirect = 1;
|
$noredirect = 1;
|
} else {
|
} else {
|
Line 706 sub check_loginvia {
|
Line 1078 sub check_loginvia {
|
}
|
}
|
if ($newhost ne $lonhost) {
|
if ($newhost ne $lonhost) {
|
if (&Apache::lonnet::hostname($newhost) ne '') {
|
if (&Apache::lonnet::hostname($newhost) ne '') {
|
|
if ($balcookie) {
|
|
my ($balancer,$cookie) = split(/:/,$balcookie);
|
|
if ($cookie =~ /^($match_domain)_($match_username)_([a-f0-9]+)$/) {
|
|
my ($udom,$uname,$cookieid) = ($1,$2,$3);
|
|
unless (&Apache::lonnet::delbalcookie($cookie,$balancer) eq 'ok') {
|
|
if ((-d $lonidsdir) && (opendir(my $dh,$lonidsdir))) {
|
|
while (my $filename=readdir($dh)) {
|
|
if ($filename=~/^(\Q$uname\E_\d+_\Q$udom\E_$match_lonid)\.id$/) {
|
|
my $handle = $1;
|
|
my %hash =
|
|
&Apache::lonnet::get_sessionfile_vars($handle,$lonidsdir,
|
|
['request.balancercookie',
|
|
'user.linkedenv']);
|
|
if ($hash{'request.balancercookie'} eq "$balancer:$cookieid") {
|
|
if (unlink("$lonidsdir/$filename")) {
|
|
if (($hash{'user.linkedenv'} =~ /^[a-f0-9]+_linked$/) &&
|
|
(-l "$lonidsdir/$hash{'user.linkedenv'}.id") &&
|
|
(readlink("$lonidsdir/$hash{'user.linkedenv'}.id") eq "$lonidsdir/$filename")) {
|
|
unlink("$lonidsdir/$hash{'user.linkedenv'}.id");
|
|
}
|
|
}
|
|
}
|
|
last;
|
|
}
|
|
}
|
|
closedir($dh);
|
|
}
|
|
}
|
|
}
|
|
}
|
$output = &redirect_page($newhost,$path);
|
$output = &redirect_page($newhost,$path);
|
}
|
}
|
}
|
}
|
Line 716 sub check_loginvia {
|
Line 1118 sub check_loginvia {
|
|
|
sub redirect_page {
|
sub redirect_page {
|
my ($desthost,$path) = @_;
|
my ($desthost,$path) = @_;
|
|
my $hostname = &Apache::lonnet::hostname($desthost);
|
my $protocol = $Apache::lonnet::protocol{$desthost};
|
my $protocol = $Apache::lonnet::protocol{$desthost};
|
$protocol = 'http' if ($protocol ne 'https');
|
$protocol = 'http' if ($protocol ne 'https');
|
unless ($path =~ m{^/}) {
|
unless ($path =~ m{^/}) {
|
$path = '/'.$path;
|
$path = '/'.$path;
|
}
|
}
|
my $url = $protocol.'://'.&Apache::lonnet::hostname($desthost).$path;
|
my $url = $protocol.'://'.$hostname.$path;
|
if ($env{'form.firsturl'} ne '') {
|
if ($env{'form.firsturl'} ne '') {
|
$url .='?firsturl='.$env{'form.firsturl'};
|
my $querystring;
|
|
if ($env{'form.firsturl'} =~ /[^\x00-\xFF]/) {
|
|
$querystring = &uri_escape_utf8($env{'form.firsturl'});
|
|
} else {
|
|
$querystring = &uri_escape($env{'form.firsturl'});
|
|
}
|
|
$querystring = &HTML::Entities::encode($querystring,"'");
|
|
$url .='?firsturl='.$querystring;
|
|
}
|
|
if (($env{'form.ltoken'}) || ($env{'form.linkkey'} ne '')) {
|
|
my %link_info;
|
|
if ($env{'form.ltoken'}) {
|
|
$link_info{'ltoken'} = $env{'form.ltoken'};
|
|
} elsif ($env{'form.linkkey'} ne '') {
|
|
$link_info{'linkkey'} = $env{'form.linkkey'};
|
|
}
|
|
my $token = &Apache::lonnet::tmpput(\%link_info,$desthost,'link');
|
|
unless (($token eq 'con_lost') || ($token eq 'refused') ||
|
|
($token eq 'unknown_cmd') || ($token eq 'no_such_host')) {
|
|
$url .= (($url=~/\?/)?'&':'?') . 'ttoken='.$token;
|
|
}
|
}
|
}
|
my $start_page = &Apache::loncommon::start_page('Switching Server ...',undef,
|
my $start_page = &Apache::loncommon::start_page('Switching Server ...',undef,
|
{'redirect' => [0,$url],});
|
{'redirect' => [0,$url],});
|
Line 799 sub newuser_link {
|
Line 1222 sub newuser_link {
|
return '<a href="/adm/createaccount">'.$linkname.'</a>';
|
return '<a href="/adm/createaccount">'.$linkname.'</a>';
|
}
|
}
|
|
|
|
sub decode_token {
|
|
my ($info) = @_;
|
|
my ($firsturl,@rest)=split(/\&/,$info);
|
|
my %form;
|
|
if ($firsturl ne '') {
|
|
$form{'firsturl'} = &unescape($firsturl);
|
|
}
|
|
foreach my $item (@rest) {
|
|
my ($key,$value) = split(/=/,$item);
|
|
$form{$key} = &unescape($value);
|
|
}
|
|
return %form;
|
|
}
|
|
|
1;
|
1;
|
__END__
|
__END__
|