1: # The LearningOnline Network with CAPA
2: # User Roles Screen
3: #
4: # $Id: lonroles.pm,v 1.251 2010/06/02 16:26:21 raeburn Exp $
5: #
6: # Copyright Michigan State University Board of Trustees
7: #
8: # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
9: #
10: # LON-CAPA is free software; you can redistribute it and/or modify
11: # it under the terms of the GNU General Public License as published by
12: # the Free Software Foundation; either version 2 of the License, or
13: # (at your option) any later version.
14: #
15: # LON-CAPA is distributed in the hope that it will be useful,
16: # but WITHOUT ANY WARRANTY; without even the implied warranty of
17: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18: # GNU General Public License for more details.
19: #
20: # You should have received a copy of the GNU General Public License
21: # along with LON-CAPA; if not, write to the Free Software
22: # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
23: #
24: # /home/httpd/html/adm/gpl.txt
25: #
26: # http://www.lon-capa.org/
27: #
28: ###
29:
30: =pod
31:
32: =head1 NAME
33:
34: Apache::lonroles - User Roles Screen
35:
36: =head1 SYNOPSIS
37:
38: Invoked by /etc/httpd/conf/srm.conf:
39:
40: <Location /adm/roles>
41: PerlAccessHandler Apache::lonacc
42: SetHandler perl-script
43: PerlHandler Apache::lonroles
44: ErrorDocument 403 /adm/login
45: ErrorDocument 500 /adm/errorhandler
46: </Location>
47:
48: =head1 OVERVIEW
49:
50: =head2 Choosing Roles
51:
52: C<lonroles> is a handler that allows a user to switch roles in
53: mid-session. LON-CAPA attempts to work with "No Role Specified", the
54: default role that a user has before selecting a role, as widely as
55: possible, but certain handlers for example need specification which
56: course they should act on, etc. Both in this scenario, and when the
57: handler determines via C<lonnet>'s C<&allowed> function that a certain
58: action is not allowed, C<lonroles> is used as error handler. This
59: allows the user to select another role which may have permission to do
60: what they were trying to do.
61:
62: =begin latex
63:
64: \begin{figure}
65: \begin{center}
66: \includegraphics[width=0.45\paperwidth,keepaspectratio]{Sample_Roles_Screen}
67: \caption{\label{Sample_Roles_Screen}Sample Roles Screen}
68: \end{center}
69: \end{figure}
70:
71: =end latex
72:
73: =head2 Role Initialization
74:
75: The privileges for a user are established at login time and stored in the session environment. As a consequence, a new role does not become active till the next login. Handlers are able to query for privileges using C<lonnet>'s C<&allowed> function. When a user first logs in, their role is the "common" role, which means that they have the sum of all of their privileges. During a session it might become necessary to choose a particular role, which as a consequence also limits the user to only the privileges in that particular role.
76:
77: =head1 INTRODUCTION
78:
79: This module enables a user to select what role he wishes to
80: operate under (instructor, student, teaching assistant, course
81: coordinator, etc). These roles are pre-established by the actions
82: of upper-level users.
83:
84: This is part of the LearningOnline Network with CAPA project
85: described at http://www.lon-capa.org.
86:
87: =head1 HANDLER SUBROUTINE
88:
89: This routine is called by Apache and mod_perl.
90:
91: =over 4
92:
93: =item *
94:
95: Roles Initialization (yes/no)
96:
97: =item *
98:
99: Get Error Message from Environment
100:
101: =item *
102:
103: Who is this?
104:
105: =item *
106:
107: Generate Page Output
108:
109: =item *
110:
111: Choice or no choice
112:
113: =item *
114:
115: Table
116:
117: =item *
118:
119: Privileges
120:
121: =back
122:
123: =cut
124:
125:
126: package Apache::lonroles;
127:
128: use strict;
129: use Apache::lonnet;
130: use Apache::lonuserstate();
131: use Apache::Constants qw(:common);
132: use Apache::File();
133: use Apache::lonmenu;
134: use Apache::loncommon;
135: use Apache::lonhtmlcommon;
136: use Apache::lonannounce;
137: use Apache::lonlocal;
138: use Apache::lonpageflip();
139: use Apache::lonnavdisplay();
140: use Apache::loncoursequeueadmin;
141: use GDBM_File;
142: use LONCAPA qw(:DEFAULT :match);
143: use HTML::Entities;
144:
145:
146: sub redirect_user {
147: my ($r,$title,$url,$msg) = @_;
148: $msg = $title if (! defined($msg));
149: &Apache::loncommon::content_type($r,'text/html');
150: &Apache::loncommon::no_cache($r);
151: $r->send_http_header;
152:
153: # Breadcrumbs
154: my $brcrum = [{'href' => $url,
155: 'text' => 'Switching Role'},];
156: my $start_page = &Apache::loncommon::start_page('Switching Role',undef,
157: {'redirect' => [1,$url],
158: 'bread_crumbs' => $brcrum,});
159: my $end_page = &Apache::loncommon::end_page();
160:
161: # Note to style police:
162: # This must only replace the spaces, nothing else, or it bombs elsewhere.
163: $url=~s/ /\%20/g;
164: $r->print(<<ENDREDIR);
165: $start_page
166: <p>$msg</p>
167: $end_page
168: ENDREDIR
169: return;
170: }
171:
172: sub error_page {
173: my ($r,$error,$dest)=@_;
174: &Apache::loncommon::content_type($r,'text/html');
175: &Apache::loncommon::no_cache($r);
176: $r->send_http_header;
177: return OK if $r->header_only;
178: # Breadcrumbs
179: my $brcrum = [{'href' => $dest,
180: 'text' => 'Problems during Course Initialization'},];
181: $r->print(&Apache::loncommon::start_page('Problems during Course Initialization',
182: undef,
183: {'bread_crumbs' => $brcrum,})
184: );
185: $r->print(
186: '<script type="text/javascript">'.
187: '// <![CDATA['.
188: &Apache::lonmenu::rawconfig().
189: '// ]]>'.
190: '</script>'.
191: '<p class="LC_error">'.&mt('The following problems occurred:').
192: '<br />'.
193: $error.
194: '</p><br /><a href="'.$dest.'">'.&mt('Continue').'</a>'
195: );
196: $r->print(&Apache::loncommon::end_page());
197: }
198:
199: sub handler {
200:
201: my $r = shift;
202:
203: my $now=time;
204: my $then=$env{'user.login.time'};
205: my $refresh=$env{'user.refresh.time'};
206: if (!$refresh) {
207: $refresh = $then;
208: }
209: my $envkey;
210: my %dcroles = ();
211: my $numdc = &check_fordc(\%dcroles,$then);
212: &Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'});
213:
214: # ================================================================== Roles Init
215: if ($env{'form.selectrole'}) {
216:
217: my $locknum=&Apache::lonnet::get_locks();
218: if ($locknum) { return 409; }
219:
220: if ($env{'form.newrole'}) {
221: $env{'form.'.$env{'form.newrole'}}=1;
222: }
223: if ($env{'request.course.id'}) {
224: # Check if user is CC trying to select a course role
225: if ($env{'form.switchrole'}) {
226: if (!defined($env{'user.role.'.$env{'form.switchrole'}})) {
227: &adhoc_course_role($refresh,$then);
228: }
229: }
230: my %temp=('logout_'.$env{'request.course.id'} => time);
231: &Apache::lonnet::put('email_status',\%temp);
232: &Apache::lonnet::delenv('user.state.'.$env{'request.course.id'});
233: }
234: &Apache::lonnet::appenv({"request.course.id" => '',
235: "request.course.fn" => '',
236: "request.course.uri" => '',
237: "request.course.sec" => '',
238: "request.role" => 'cm',
239: "request.role.adv" => $env{'user.adv'},
240: "request.role.domain" => $env{'user.domain'}});
241: # Check if user is a DC trying to enter a course or author space and needs privs to be created
242: if ($numdc > 0) {
243: foreach my $envkey (keys %env) {
244: # Is this an ad-hoc Coordinator role?
245: if (my ($ccrole,$domain,$coursenum) =
246: ($envkey =~ m-^form\.(cc|co)\./($match_domain)/($match_courseid)$-)) {
247: if ($dcroles{$domain}) {
248: &Apache::lonnet::check_adhoc_privs($domain,$coursenum,
249: $then,$refresh,$now,$ccrole);
250: }
251: last;
252: }
253: # Is this an ad-hoc CA-role?
254: if (my ($domain,$user) =
255: ($envkey =~ m-^form\.ca\./($match_domain)/($match_username)$-)) {
256: if (($domain eq $env{'user.domain'}) && ($user eq $env{'user.name'})) {
257: delete($env{$envkey});
258: $env{'form.au./'.$domain.'/'} = 1;
259: my ($server_status,$home) = &check_author_homeserver($user,$domain);
260: if ($server_status eq 'switchserver') {
261: my $trolecode = 'au./'.$domain.'/';
262: my $switchserver = '/adm/switchserver?otherserver='.$home.'&role='.$trolecode;
263: $r->internal_redirect($switchserver);
264: }
265: last;
266: }
267: if (my ($castart,$caend) = ($env{'user.role.ca./'.$domain.'/'.$user} =~ /^(\d*)\.(\d*)$/)) {
268: if (((($castart) && ($castart < $now)) || !$castart) &&
269: ((!$caend) || (($caend) && ($caend > $now)))) {
270: my ($server_status,$home) = &check_author_homeserver($user,$domain);
271: if ($server_status eq 'switchserver') {
272: my $trolecode = 'ca./'.$domain.'/'.$user;
273: my $switchserver = '/adm/switchserver?otherserver='.$home.'&role='.$trolecode;
274: $r->internal_redirect($switchserver);
275: }
276: last;
277: }
278: }
279: # Check if author blocked ca-access
280: my %blocked=&Apache::lonnet::get('environment',['domcoord.author'],$domain,$user);
281: if ($blocked{'domcoord.author'} eq 'blocked') {
282: delete($env{$envkey});
283: $env{'user.error.msg'}=':::1:User '.$user.' in domain '.$domain.' blocked domain coordinator access';
284: last;
285: }
286: if ($dcroles{$domain}) {
287: my ($server_status,$home) = &check_author_homeserver($user,$domain);
288: if (($server_status eq 'ok') || ($server_status eq 'switchserver')) {
289: &Apache::lonnet::check_adhoc_privs($domain,$user,$then,
290: $refresh,$now,'ca');
291: if ($server_status eq 'switchserver') {
292: my $trolecode = 'ca./'.$domain.'/'.$user;
293: my $switchserver = '/adm/switchserver?'
294: .'otherserver='.$home.'&role='.$trolecode;
295: $r->internal_redirect($switchserver);
296: }
297: } else {
298: delete($env{$envkey});
299: }
300: } else {
301: delete($env{$envkey});
302: }
303: last;
304: }
305: }
306: }
307:
308: foreach $envkey (keys %env) {
309: next if ($envkey!~/^user\.role\./);
310: my ($where,$trolecode,$role,$tstatus,$tend,$tstart);
311: &Apache::lonnet::role_status($envkey,$then,$refresh,$now,\$role,\$where,
312: \$trolecode,\$tstatus,\$tstart,\$tend);
313: if ($env{'form.'.$trolecode}) {
314: if ($tstatus eq 'is') {
315: $where=~s/^\///;
316: my ($cdom,$cnum,$csec)=split(/\//,$where);
317: # check for course groups
318: my %coursegroups = &Apache::lonnet::get_active_groups(
319: $env{'user.domain'},$env{'user.name'},$cdom, $cnum);
320: my $cgrps = join(':',keys(%coursegroups));
321:
322: # store role if recent_role list being kept
323: if ($env{'environment.recentroles'}) {
324: my %frozen_roles =
325: &Apache::lonhtmlcommon::get_recent_frozen('roles',$env{'environment.recentrolesn'});
326: &Apache::lonhtmlcommon::store_recent('roles',
327: $trolecode,' ',$frozen_roles{$trolecode});
328: }
329:
330:
331: # check for keyed access
332: if (($role eq 'st') &&
333: ($env{'course.'.$cdom.'_'.$cnum.'.keyaccess'} eq 'yes')) {
334: # who is key authority?
335: my $authdom=$cdom;
336: my $authnum=$cnum;
337: if ($env{'course.'.$cdom.'_'.$cnum.'.keyauth'}) {
338: ($authnum,$authdom)=
339: split(/:/,$env{'course.'.$cdom.'_'.$cnum.'.keyauth'});
340: }
341: # check with key authority
342: unless (&Apache::lonnet::validate_access_key(
343: $env{'environment.key.'.$cdom.'_'.$cnum},
344: $authdom,$authnum)) {
345: # there is no valid key
346: if ($env{'form.newkey'}) {
347: # student attempts to register a new key
348: &Apache::loncommon::content_type($r,'text/html');
349: &Apache::loncommon::no_cache($r);
350: $r->send_http_header;
351: my $swinfo=&Apache::lonmenu::rawconfig();
352: my $start_page=&Apache::loncommon::start_page
353: ('Verifying Access Key to Unlock this Course');
354: my $end_page=&Apache::loncommon::end_page();
355: my $buttontext=&mt('Enter Course');
356: my $message=&mt('Successfully registered key');
357: my $assignresult=
358: &Apache::lonnet::assign_access_key(
359: $env{'form.newkey'},
360: $authdom,$authnum,
361: $cdom,$cnum,
362: $env{'user.domain'},
363: $env{'user.name'},
364: &mt('Assigned from [_1] at [_2] for [_3]'
365: ,$ENV{'REMOTE_ADDR'}
366: ,&Apache::lonlocal::locallocaltime()
367: ,$trolecode)
368: );
369: unless ($assignresult eq 'ok') {
370: $assignresult=~s/^error\:\s*//;
371: $message=&mt($assignresult).
372: '<br /><a href="/adm/logout">'.
373: &mt('Logout').'</a>';
374: $buttontext=&mt('Re-Enter Key');
375: }
376: $r->print(<<ENDENTEREDKEY);
377: $start_page
378: <script type="text/javascript">
379: // <![CDATA[
380: $swinfo
381: // ]]>
382: </script>
383: <form action="" method="post">
384: <input type="hidden" name="selectrole" value="1" />
385: <input type="hidden" name="$trolecode" value="1" />
386: <span class="LC_fontsize_large">$message</span><br />
387: <input type="submit" value="$buttontext" />
388: </form>
389: $end_page
390: ENDENTEREDKEY
391: return OK;
392: } else {
393: # print form to enter a new key
394: &Apache::loncommon::content_type($r,'text/html');
395: &Apache::loncommon::no_cache($r);
396: $r->send_http_header;
397: my $swinfo=&Apache::lonmenu::rawconfig();
398: my $start_page=&Apache::loncommon::start_page
399: ('Enter Access Key to Unlock this Course');
400: my $end_page=&Apache::loncommon::end_page();
401: $r->print(<<ENDENTERKEY);
402: $start_page
403: <script type="text/javascript">
404: // <![CDATA[
405: $swinfo
406: // ]]>
407: </script>
408: <form action="" method="post">
409: <input type="hidden" name="selectrole" value="1" />
410: <input type="hidden" name="$trolecode" value="1" />
411: <input type="text" size="20" name="newkey" value="$env{'form.newkey'}" />
412: <input type="submit" value="Enter key" />
413: </form>
414: $end_page
415: ENDENTERKEY
416: return OK;
417: }
418: }
419: }
420: &Apache::lonnet::log($env{'user.domain'},
421: $env{'user.name'},
422: $env{'user.home'},
423: "Role ".$trolecode);
424:
425: &Apache::lonnet::appenv(
426: {'request.role' => $trolecode,
427: 'request.role.domain' => $cdom,
428: 'request.course.sec' => $csec,
429: 'request.course.groups' => $cgrps});
430: my $tadv=0;
431:
432: if (($cnum) && ($role ne 'ca') && ($role ne 'aa')) {
433: my $msg;
434: my ($furl,$ferr)=
435: &Apache::lonuserstate::readmap($cdom.'/'.$cnum);
436: if (($env{'form.orgurl'}) &&
437: ($env{'form.orgurl'}!~/^\/adm\/flip/)) {
438: my $dest=$env{'form.orgurl'};
439: if ($env{'form.symb'}) {
440: if ($dest =~ /\?/) {
441: $dest .= '&';
442: } else {
443: $dest .= '?'
444: }
445: $dest .= 'symb='.$env{'form.symb'};
446: }
447: if (&Apache::lonnet::allowed('adv') eq 'F') { $tadv=1; }
448: &Apache::lonnet::appenv({'request.role.adv'=>$tadv});
449: if (($ferr) && ($tadv)) {
450: &error_page($r,$ferr,$dest);
451: } else {
452: $r->internal_redirect($dest);
453: }
454: return OK;
455: } else {
456: if (!$env{'request.course.id'}) {
457: &Apache::lonnet::appenv(
458: {"request.course.id" => $cdom.'_'.$cnum});
459: $furl='/adm/roles?tryagain=1';
460: $msg='<p><span class="LC_error">'
461: .&mt('Could not initialize [_1] at this time.',
462: $env{'course.'.$cdom.'_'.$cnum.'.description'})
463: .'</span></p>'
464: .'<p>'.&mt('Please try again.').'</p>'
465: .'<p>'.$ferr.'</p>';
466: }
467: if (&Apache::lonnet::allowed('adv') eq 'F') { $tadv=1; }
468: &Apache::lonnet::appenv({'request.role.adv'=>$tadv});
469:
470: if (($ferr) && ($tadv)) {
471: &error_page($r,$ferr,$furl);
472: } else {
473: # Check to see if the user is a CC entering a course
474: # for the first time
475: my (undef, undef, $role, $courseid) = split(/\./, $envkey);
476: if (substr($courseid, 0, 1) eq '/') {
477: $courseid = substr($courseid, 1);
478: }
479: $courseid =~ s/\//_/;
480: if ((($role eq 'cc') || ($role eq 'co'))
481: && ($env{'course.' . $courseid .'.course.helper.not.run'})) {
482: $furl = "/adm/helper/course.initialization.helper";
483: # Send the user to the course they selected
484: } elsif ($env{'request.course.id'}) {
485: if ($env{'form.destinationurl'}) {
486: my $dest = $env{'form.destinationurl'};
487: if ($env{'form.destsymb'} ne '') {
488: my $esc_symb = &HTML::Entities::encode($env{'form.destsymb'},'"<>&');
489: $dest .= '?symb='.$esc_symb;
490: }
491: &redirect_user($r, &mt('Entering [_1]',
492: $env{'course.'.$courseid.'.description'}),
493: $dest, $msg);
494: return OK;
495: }
496: if (&Apache::lonnet::allowed('whn',
497: $env{'request.course.id'})
498: || &Apache::lonnet::allowed('whn',
499: $env{'request.course.id'}.'/'
500: .$env{'request.course.sec'})
501: ) {
502: my $startpage = &courseloadpage($courseid);
503: unless ($startpage eq 'firstres') {
504: $msg = &mt('Entering [_1] ...',
505: $env{'course.'.$courseid.'.description'});
506: &redirect_user($r, &mt('New in course'),
507: '/adm/whatsnew?refpage=start', $msg);
508: return OK;
509: }
510: }
511: }
512: # Are we allowed to look at the first resource?
513: if ($furl !~ m|^/adm/|) {
514: # Guess not ...
515: $furl=&Apache::lonpageflip::first_accessible_resource();
516: }
517: $msg = &mt('Entering [_1] ...',
518: $env{'course.'.$courseid.'.description'});
519: &redirect_user($r, &mt('Entering [_1]',
520: $env{'course.'.$courseid.'.description'}),
521: $furl, $msg);
522: }
523: return OK;
524: }
525: }
526: #
527: # Send the user to the construction space they selected
528: if ($role =~ /^(au|ca|aa)$/) {
529: my $redirect_url = '/priv/';
530: if ($role eq 'au') {
531: $redirect_url.=$env{'user.name'};
532: } else {
533: $where =~ /\/(.*)$/;
534: $redirect_url .= $1;
535: }
536: $redirect_url .= '/';
537: &redirect_user($r,&mt('Entering Construction Space'),
538: $redirect_url);
539: return OK;
540: }
541: if ($role eq 'dc') {
542: my $redirect_url = '/adm/menu/';
543: &redirect_user($r,&mt('Loading Domain Coordinator Menu'),
544: $redirect_url);
545: return OK;
546: }
547: if ($role eq 'sc') {
548: my $redirect_url = '/adm/grades?command=scantronupload';
549: &redirect_user($r,&mt('Loading Data Upload Page'),
550: $redirect_url);
551: return OK;
552: }
553: }
554: }
555: }
556: }
557:
558:
559: # =============================================================== No Roles Init
560:
561: &Apache::loncommon::content_type($r,'text/html');
562: &Apache::loncommon::no_cache($r);
563: $r->send_http_header;
564: return OK if $r->header_only;
565:
566: my $crumbtext = 'User Roles';
567: my $pagetitle = 'My Roles';
568: my $recent = &mt('Recent Roles');
569: my $show_course=&Apache::loncommon::show_course();
570: if ($show_course) {
571: $crumbtext = 'Courses';
572: $pagetitle = 'My Courses';
573: $recent = &mt('Recent Courses');
574: }
575: my $brcrum =[{href=>"/adm/roles",text=>$crumbtext}];
576: my $swinfo=&Apache::lonmenu::rawconfig();
577: my $start_page=&Apache::loncommon::start_page($pagetitle,undef,{bread_crumbs=>$brcrum});
578: my $standby=&mt('Role selected. Please stand by.');
579: $standby=~s/\n/\\n/g;
580: my $noscript='<span class="LC_error">'.&mt('Use of LON-CAPA requires Javascript to be enabled in your web browser.').'<br />'.&mt('As this is not the case, most functionality in the system will be unavailable.').'</span><br />';
581:
582: $r->print(<<ENDHEADER);
583: $start_page
584: <br />
585: <noscript>
586: $noscript
587: </noscript>
588: <script type="text/javascript">
589: // <![CDATA[
590: $swinfo
591: window.focus();
592:
593: active=true;
594:
595: function enterrole (thisform,rolecode,buttonname) {
596: if (active) {
597: active=false;
598: document.title='$standby';
599: window.status='$standby';
600: thisform.newrole.value=rolecode;
601: thisform.submit();
602: } else {
603: alert('$standby');
604: }
605: }
606: // ]]>
607: </script>
608: ENDHEADER
609:
610: # ------------------------------------------ Get Error Message from Environment
611:
612: my ($fn,$priv,$nochoose,$error,$msg)=split(/:/,$env{'user.error.msg'});
613: if ($env{'user.error.msg'}) {
614: $r->log_reason(
615: "$msg for $env{'user.name'} domain $env{'user.domain'} access $priv",$fn);
616: }
617:
618: # ------------------------------------------------- Can this user re-init, etc?
619:
620: my $advanced=$env{'user.adv'};
621: &Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},['tryagain']);
622: my $tryagain=$env{'form.tryagain'};
623: my $reinit=$env{'user.reinit'};
624: delete $env{'user.reinit'};
625:
626: # -------------------------------------------------------- Generate Page Output
627: # --------------------------------------------------------------- Error Header?
628: if ($error) {
629: $r->print("<h1>".&mt('LON-CAPA Access Control')."</h1>");
630: $r->print("<!-- LONCAPAACCESSCONTROLERRORSCREEN --><hr /><pre>");
631: if ($priv ne '') {
632: $r->print(&mt('Access : ').&Apache::lonnet::plaintext($priv)."\n");
633: }
634: if ($fn ne '') {
635: $r->print(&mt('Resource: ').&Apache::lonenc::check_encrypt($fn)."\n");
636: }
637: if ($msg ne '') {
638: $r->print(&mt('Action : ').$msg."\n");
639: }
640: $r->print("</pre><hr />");
641: my $url=$fn;
642: my $last;
643: if (tie(my %hash,'GDBM_File',$env{'request.course.fn'}.'_symb.db',
644: &GDBM_READER(),0640)) {
645: $last=$hash{'last_known'};
646: untie(%hash);
647: }
648: if ($last) { $fn.='?symb='.&escape($last); }
649:
650: &Apache::londocs::changewarning($r,undef,'You have modified your course recently, [_1] may fix this access problem.',
651: &Apache::lonenc::check_encrypt($fn));
652: } else {
653: if ($env{'user.error.msg'}) {
654: if ($reinit) {
655: $r->print(
656: '<h3><span class="LC_error">'.
657: &mt('As your session file for the course or community has expired, you will need to re-select it.').'</span></h3>');
658: } else {
659: $r->print(
660: '<h3><span class="LC_error">'.
661: &mt('You need to choose another user role or enter a specific course or community for this function.').
662: '</span></h3>');
663: }
664: }
665: }
666: # -------------------------------------------------------- Choice or no choice?
667: if ($nochoose) {
668: $r->print("<h2>".&mt('Sorry ...')."</h2>\n<span class='LC_error'>".
669: &mt('This action is currently not authorized.').'</span>'.
670: &Apache::loncommon::end_page());
671: return OK;
672: } else {
673: if (($ENV{'REDIRECT_QUERY_STRING'}) && ($fn)) {
674: $fn.='?'.$ENV{'REDIRECT_QUERY_STRING'};
675: }
676: $r->print('<form method="post" name="rolechoice" action="'.(($fn)?$fn:$r->uri).'">');
677: $r->print('<input type="hidden" name="orgurl" value="'.$fn.'" />');
678: $r->print('<input type="hidden" name="selectrole" value="1" />');
679: $r->print('<input type="hidden" name="newrole" value="" />');
680: }
681:
682: my (%roletext,%sortrole,%roleclass,%futureroles,%timezones);
683: my ($countactive,$countfuture,$inrole,$possiblerole) =
684: &gather_roles($then,$refresh,$now,$reinit,$nochoose,\%roletext,\%sortrole,\%roleclass,
685: \%futureroles,\%timezones);
686:
687: $refresh = $now;
688: &Apache::lonnet::appenv({'user.refresh.time' => $refresh});
689: if ($env{'user.adv'}) {
690: $r->print('<p><label><input type="checkbox" name="showall"');
691: if ($env{'form.showall'}) { $r->print(' checked="checked" '); }
692: $r->print(' />'.&mt('Show all roles').'</label>'
693: .' <input type="submit" value="'.&mt('Update display').'" />'
694: .'</p>');
695: } else {
696: if ($countactive > 0) {
697: $r->print(&Apache::loncoursequeueadmin::queued_selfenrollment());
698: my $domdesc = &Apache::lonnet::domain($env{'user.domain'},'description');
699: my $esc_dom = &HTML::Entities::encode($env{'user.domain'},'"<>&');
700: $r->print(
701: '<p>'
702: .&mt('[_1]Visit the [_2]Course/Community Catalog[_3]'
703: .' to view all [_4] LON-CAPA courses and communities.'
704: ,'<b>'
705: ,'<a href="/adm/coursecatalog?showdom='.$esc_dom.'">'
706: ,'</a></b>',$domdesc)
707: .'<br />'
708: .&mt('If a course or community is [_1]not[_2] in your list of current courses and communities below,'
709: .' you may be able to enroll if self-enrollment is permitted.'
710: ,'<b>','</b>')
711: .'</p>'
712: );
713: }
714: }
715:
716: # No active roles
717: if ($countactive==0) {
718: if ($inrole) {
719: $r->print('<h2>'.&mt('Currently no additional roles, courses or communities').'</h2>');
720: } else {
721: $r->print('<h2>'.&mt('Currently no active roles, courses or communities').'</h2>');
722: }
723: &findcourse_advice($r);
724: &requestcourse_advice($r);
725: $r->print('</form>');
726: if ($countfuture) {
727: $r->print(&mt('The following [quant,_1,role,roles] will become active in the future:',$countfuture));
728: my $doheaders = &roletable_headers($r,\%roleclass,\%sortrole,
729: $nochoose);
730: &print_rolerows($r,$doheaders,\%roleclass,\%sortrole,\%dcroles,
731: \%roletext);
732: my $tremark='';
733: my $tbg;
734: if ($env{'request.role'} eq 'cm') {
735: $tbg="LC_roles_selected";
736: $tremark=&mt('Currently selected.').' ';
737: } else {
738: $tbg="LC_roles_is";
739: }
740: $r->print(&Apache::loncommon::start_data_table_row()
741: .'<td class="'.$tbg.'"> </td>'
742: .'<td colspan="3">'
743: .&mt('No role specified')
744: .'</td>'
745: .'<td>'.$tremark.' </td>'
746: .&Apache::loncommon::end_data_table_row()
747: );
748:
749: $r->print(&Apache::loncommon::end_data_table());
750: }
751: $r->print(&Apache::loncommon::end_page());
752: return OK;
753: }
754: # ----------------------------------------------------------------------- Table
755:
756: if ($numdc > 0) {
757: $r->print(&coursepick_jscript());
758: $r->print(&Apache::loncommon::coursebrowser_javascript().
759: &Apache::loncommon::authorbrowser_javascript());
760: }
761:
762: unless ((!&Apache::loncommon::show_course()) || ($nochoose) || ($countactive==1)) {
763: $r->print("<h2>".&mt('Select a Course to Enter')."</h2>\n");
764: }
765: if ($env{'form.destinationurl'}) {
766: $r->print('<input type="hidden" name="destinationurl" value="'.
767: $env{'form.destinationurl'}.'" />');
768: if ($env{'form.destsymb'} ne '') {
769: $r->print('<input type="hidden" name="destsymb" value="'.
770: $env{'form.destsymb'}.'" />');
771: }
772: }
773:
774: my $doheaders = &roletable_headers($r,\%roleclass,\%sortrole,$nochoose);
775: if ($env{'environment.recentroles'}) {
776: my %recent_roles =
777: &Apache::lonhtmlcommon::get_recent('roles',$env{'environment.recentrolesn'});
778: my $output='';
779: foreach my $role (sort(keys(%recent_roles))) {
780: if (ref($roletext{'user.role.'.$role}) eq 'ARRAY') {
781: $output.= &Apache::loncommon::start_data_table_row().
782: $roletext{'user.role.'.$role}->[0].
783: &Apache::loncommon::end_data_table_row();
784: if ($roletext{'user.role.'.$role}->[1] ne '') {
785: $output .= &Apache::loncommon::continue_data_table_row().
786: $roletext{'user.role.'.$role}->[1].
787: &Apache::loncommon::end_data_table_row();
788: }
789: if ($role =~ m{dc\./($match_domain)/}
790: && $dcroles{$1}) {
791: $output .= &adhoc_roles_row($1,'recent');
792: }
793: } elsif ($numdc > 0) {
794: unless ($role =~/^error\:/) {
795: my ($roletext,$role_text_end) = &display_cc_role('user.role.'.$role);
796: $output.= &Apache::loncommon::start_data_table_row().
797: $roletext.
798: &Apache::loncommon::end_data_table_row().
799: &Apache::loncommon::continue_data_table_row().
800: $role_text_end.
801: &Apache::loncommon::end_data_table_row();
802: }
803: }
804: }
805: if ($output) {
806: $r->print(&Apache::loncommon::start_data_table_empty_row()
807: .'<td align="center" colspan="5">'
808: .$recent
809: .'</td>'
810: .&Apache::loncommon::end_data_table_empty_row()
811: );
812: $r->print($output);
813: $doheaders ++;
814: }
815: }
816: &print_rolerows($r,$doheaders,\%roleclass,\%sortrole,\%dcroles,\%roletext);
817: if ($countactive > 1) {
818: my $tremark='';
819: my $tbg;
820: if ($env{'request.role'} eq 'cm') {
821: $tbg="LC_roles_selected";
822: $tremark=&mt('Currently selected.').' ';
823: } else {
824: $tbg="LC_roles_is";
825: }
826: $r->print(&Apache::loncommon::start_data_table_row());
827: unless ($nochoose) {
828: if ($env{'request.role'} ne 'cm') {
829: $r->print('<td class="'.$tbg.'"><input type="submit" value="'.
830: &mt('Select').'" name="cm" /></td>');
831: } else {
832: $r->print('<td class="'.$tbg.'"> </td>');
833: }
834: }
835: $r->print('<td colspan="3">'
836: .&mt('No role specified')
837: .'</td>'
838: .'<td>'.$tremark.' </td>'
839: .&Apache::loncommon::end_data_table_row()
840: );
841: }
842: $r->print(&Apache::loncommon::end_data_table());
843: unless ($nochoose) {
844: $r->print("</form>\n");
845: }
846: # ------------------------------------------------------------ Privileges Info
847: if (($advanced) && (($env{'user.error.msg'}) || ($error))) {
848: $r->print('<hr /><h2>'.&mt('Current Privileges').'</h2>');
849: $r->print(&privileges_info());
850: }
851: $r->print(&Apache::lonnet::getannounce());
852: if ($advanced) {
853: my $esc_dom = &HTML::Entities::encode($env{'user.domain'},'"<>&');
854: $r->print('<p><small><i>'
855: .&mt('This LON-CAPA server is version [_1]',$r->dir_config('lonVersion'))
856: .'</i><br />'
857: .'<a href="/adm/logout">'.&mt('Logout').'</a> '
858: .'<a href="/adm/coursecatalog?showdom='.$esc_dom.'">'
859: .&mt('Course/Community Catalog')
860: .'</a></small></p>');
861: }
862: $r->print(&Apache::loncommon::end_page());
863: return OK;
864: }
865:
866: sub gather_roles {
867: my ($then,$refresh,$now,$reinit,$nochoose,$roletext,$sortrole,$roleclass,$futureroles,$timezones) = @_;
868: my ($countactive,$countfuture,$inrole,$possiblerole) = (0,0,0,'');
869: my $advanced = $env{'user.adv'};
870: my $tryagain = $env{'form.tryagain'};
871: foreach my $envkey (sort(keys(%env))) {
872: my $button = 1;
873: my $switchserver='';
874: my ($role_text,$role_text_end,$sortkey);
875: if ($envkey=~/^user\.role\./) {
876: my ($role,$where,$trolecode,$tstart,$tend,$tremark,$tstatus,$tpstart,$tpend);
877: &Apache::lonnet::role_status($envkey,$then,$refresh,$now,\$role,\$where,
878: \$trolecode,\$tstatus,\$tstart,\$tend);
879: next if (!defined($role) || $role eq '' || $role =~ /^gr/);
880: my $timezone = &role_timezone($where,$timezones);
881: $tremark='';
882: $tpstart=' ';
883: $tpend=' ';
884: if ($tstart) {
885: $tpstart=&Apache::lonlocal::locallocaltime($tstart,$timezone);
886: }
887: if ($tend) {
888: $tpend=&Apache::lonlocal::locallocaltime($tend,$timezone);
889: }
890: if ($env{'request.role'} eq $trolecode) {
891: $tstatus='selected';
892: }
893: my $tbg;
894: if (($tstatus eq 'is')
895: || ($tstatus eq 'selected')
896: || ($tstatus eq 'future')
897: || ($env{'form.showall'})) {
898: if ($tstatus eq 'is') {
899: $tbg='LC_roles_is';
900: $possiblerole=$trolecode;
901: $countactive++;
902: } elsif ($tstatus eq 'future') {
903: $tbg='LC_roles_future';
904: $button=0;
905: $futureroles->{$trolecode} = $tstart.':'.$tend;
906: $countfuture ++;
907: } elsif ($tstatus eq 'expired') {
908: $tbg='LC_roles_expired';
909: $button=0;
910: } elsif ($tstatus eq 'will_not') {
911: $tbg='LC_roles_will_not';
912: $tremark.=&mt('Expired after logout.').' ';
913: } elsif ($tstatus eq 'selected') {
914: $tbg='LC_roles_selected';
915: $inrole=1;
916: $countactive++;
917: $tremark.=&mt('Currently selected.').' ';
918: }
919: my $trole;
920: if ($role =~ /^cr\//) {
921: my ($rdummy,$rdomain,$rauthor,$rrole)=split(/\//,$role);
922: if ($tremark) { $tremark.='<br />'; }
923: $tremark.=&mt('Defined by [_1] at [_2].',$rauthor,$rdomain);
924: }
925: $trole=Apache::lonnet::plaintext($role);
926: my $ttype;
927: my $twhere;
928: my ($tdom,$trest,$tsection)=
929: split(/\//,Apache::lonnet::declutter($where));
930: # First, Co-Authorship roles
931: if (($role eq 'ca') || ($role eq 'aa')) {
932: my $home = &Apache::lonnet::homeserver($trest,$tdom);
933: my $allowed=0;
934: my @ids=&Apache::lonnet::current_machine_ids();
935: foreach my $id (@ids) { if ($id eq $home) { $allowed=1; } }
936: if (!$allowed) {
937: $button=0;
938: $switchserver='otherserver='.$home.'&role='.$trolecode;
939: }
940: #next if ($home eq 'no_host');
941: $home = &Apache::lonnet::hostname($home);
942: $ttype='Construction Space';
943: $twhere=&mt('User').': '.$trest.'<br />'.&mt('Domain').
944: ': '.$tdom.'<br />'.
945: ' '.&mt('Server').': '.$home;
946: $env{'course.'.$tdom.'_'.$trest.'.description'}='ca';
947: $tremark.=&Apache::lonhtmlcommon::authorbombs('/res/'.$tdom.'/'.$trest.'/');
948: $sortkey=$role."$trest:$tdom";
949: } elsif ($role eq 'au') {
950: # Authors
951: my $home = &Apache::lonnet::homeserver
952: ($env{'user.name'},$env{'user.domain'});
953: my $allowed=0;
954: my @ids=&Apache::lonnet::current_machine_ids();
955: foreach my $id (@ids) { if ($id eq $home) { $allowed=1; } }
956: if (!$allowed) {
957: $button=0;
958: $switchserver='otherserver='.$home.'&role='.$trolecode;
959: }
960: #next if ($home eq 'no_host');
961: $home = &Apache::lonnet::hostname($home);
962: $ttype='Construction Space';
963: $twhere=&mt('Domain').': '.$tdom.'<br />'.&mt('Server').
964: ': '.$home;
965: $env{'course.'.$tdom.'_'.$trest.'.description'}='ca';
966: $tremark.=&Apache::lonhtmlcommon::authorbombs('/res/'.$tdom.'/'.$env{'user.name'}.'/');
967: $sortkey=$role;
968: } elsif ($trest) {
969: my $tcourseid=$tdom.'_'.$trest;
970: $ttype = &Apache::loncommon::course_type($tcourseid);
971: $trole = &Apache::lonnet::plaintext($role,$ttype,$tcourseid);
972: if ($env{'course.'.$tcourseid.'.description'}) {
973: $twhere=$env{'course.'.$tcourseid.'.description'};
974: $sortkey=$role."\0".$tdom."\0".$twhere."\0".$envkey;
975: $twhere = &HTML::Entities::encode($twhere,'"<>&');
976: unless ($twhere eq &mt('Currently not available')) {
977: $twhere.=' <span class="LC_fontsize_small">'.
978: &Apache::loncommon::syllabuswrapper(&mt('Syllabus'),$trest,$tdom).
979: '</span>';
980: }
981: } else {
982: my %newhash=&Apache::lonnet::coursedescription($tcourseid);
983: if (%newhash) {
984: $sortkey=$role."\0".$tdom."\0".$newhash{'description'}.
985: "\0".$envkey;
986: $twhere=&HTML::Entities::encode($newhash{'description'},'"<>&').
987: ' <span class="LC_fontsize_small">'.
988: &Apache::loncommon::syllabuswrapper(&mt('Syllabus'),$trest,$tdom).
989: '</span>';
990: $ttype = $newhash{'type'};
991: $trole = &Apache::lonnet::plaintext($role,$ttype,$tcourseid);
992: } else {
993: $twhere=&mt('Currently not available');
994: $env{'course.'.$tcourseid.'.description'}=$twhere;
995: $sortkey=$role."\0".$tdom."\0".$twhere."\0".$envkey;
996: $ttype = 'Unavailable';
997: }
998: }
999: if ($tsection) {
1000: $twhere.='<br />'.&mt('Section').': '.$tsection;
1001: }
1002: if ($role ne 'st') { $twhere.="<br />".&mt('Domain').":".$tdom; }
1003: } elsif ($tdom) {
1004: $ttype='Domain';
1005: $twhere=$tdom;
1006: $sortkey=$role.$twhere;
1007: } else {
1008: $ttype='System';
1009: $twhere=&mt('system wide');
1010: $sortkey=$role.$twhere;
1011: }
1012: ($role_text,$role_text_end) =
1013: &build_roletext($trolecode,$tdom,$trest,$tstatus,$tryagain,
1014: $advanced,$tremark,$tbg,$trole,$twhere,$tpstart,
1015: $tpend,$nochoose,$button,$switchserver,$reinit);
1016: $roletext->{$envkey}=[$role_text,$role_text_end];
1017: if (!$sortkey) {$sortkey=$twhere."\0".$envkey;}
1018: $sortrole->{$sortkey}=$envkey;
1019: $roleclass->{$envkey}=$ttype;
1020: }
1021: }
1022: }
1023: return ($countactive,$countfuture,$inrole,$possiblerole);
1024: }
1025:
1026: sub role_timezone {
1027: my ($where,$timezones) = @_;
1028: my $timezone;
1029: if (ref($timezones) eq 'HASH') {
1030: if ($where =~ m{^/($match_domain)/($match_courseid)}) {
1031: my $cdom = $1;
1032: my $cnum = $2;
1033: if ($cdom && $cnum) {
1034: if (!exists($timezones->{$cdom.'_'.$cnum})) {
1035: my %timehash =
1036: &Apache::lonnet::get('environment',['timezone'],$cdom,$cnum);
1037: if ($timehash{'timezone'} eq '') {
1038: if (!exists($timezones->{$cdom})) {
1039: my %domdefaults =
1040: &Apache::lonnet::get_domain_defaults($cdom);
1041: if ($domdefaults{'timezone_def'} eq '') {
1042: $timezones->{$cdom} = 'local';
1043: } else {
1044: $timezones->{$cdom} = $domdefaults{'timezone_def'};
1045: }
1046: }
1047: $timezones->{$cdom.'_'.$cnum} = $timezones->{$cdom};
1048: } else {
1049: $timezones->{$cdom.'_'.$cnum} =
1050: &Apache::lonlocal::gettimezone($timehash{'timezone'});
1051: }
1052: }
1053: $timezone = $timezones->{$cdom.'_'.$cnum};
1054: }
1055: } else {
1056: my ($tdom) = ($where =~ m{^/($match_domain)});
1057: if ($tdom) {
1058: if (!exists($timezones->{$tdom})) {
1059: my %domdefaults = &Apache::lonnet::get_domain_defaults($tdom);
1060: if ($domdefaults{'timezone_def'} eq '') {
1061: $timezones->{$tdom} = 'local';
1062: } else {
1063: $timezones->{$tdom} = $domdefaults{'timezone_def'};
1064: }
1065: }
1066: $timezone = $timezones->{$tdom};
1067: }
1068: }
1069: if ($timezone eq 'local') {
1070: $timezone = undef;
1071: }
1072: }
1073: return $timezone;
1074: }
1075:
1076: sub roletable_headers {
1077: my ($r,$roleclass,$sortrole,$nochoose) = @_;
1078: my $doheaders;
1079: if ((ref($sortrole) eq 'HASH') && (ref($roleclass) eq 'HASH')) {
1080: $r->print('<br />'
1081: .&Apache::loncommon::start_data_table()
1082: .&Apache::loncommon::start_data_table_header_row()
1083: );
1084: if (!$nochoose) { $r->print('<th> </th>'); }
1085: $r->print('<th>'.&mt('User Role').'</th>'
1086: .'<th>'.&mt('Extent').'</th>'
1087: .'<th>'.&mt('Start').'</th>'
1088: .'<th>'.&mt('End').'</th>'
1089: .&Apache::loncommon::end_data_table_header_row()
1090: );
1091: $doheaders=-1;
1092: my @roletypes = &roletypes();
1093: foreach my $type (@roletypes) {
1094: my $haverole=0;
1095: foreach my $which (sort {uc($a) cmp uc($b)} (keys(%{$sortrole}))) {
1096: if ($roleclass->{$sortrole->{$which}} =~ /^\Q$type\E/) {
1097: $haverole=1;
1098: }
1099: }
1100: if ($haverole) { $doheaders++; }
1101: }
1102: }
1103: return $doheaders;
1104: }
1105:
1106: sub roletypes {
1107: my @types = ('Domain','Construction Space','Course','Community','Unavailable','System');
1108: return @types;
1109: }
1110:
1111: sub print_rolerows {
1112: my ($r,$doheaders,$roleclass,$sortrole,$dcroles,$roletext) = @_;
1113: if ((ref($roleclass) eq 'HASH') && (ref($sortrole) eq 'HASH')) {
1114: my @types = &roletypes();
1115: foreach my $type (@types) {
1116: my $output;
1117: foreach my $which (sort {uc($a) cmp uc($b)} (keys(%{$sortrole}))) {
1118: if ($roleclass->{$sortrole->{$which}} =~ /^\Q$type\E/) {
1119: if (ref($roletext) eq 'HASH') {
1120: if (ref($roletext->{$sortrole->{$which}}) eq 'ARRAY') {
1121: $output.= &Apache::loncommon::start_data_table_row().
1122: $roletext->{$sortrole->{$which}}->[0].
1123: &Apache::loncommon::end_data_table_row();
1124: if ($roletext->{$sortrole->{$which}}->[1] ne '') {
1125: $output .= &Apache::loncommon::continue_data_table_row().
1126: $roletext->{$sortrole->{$which}}->[1].
1127: &Apache::loncommon::end_data_table_row();
1128: }
1129: }
1130: if ($sortrole->{$which} =~ m-dc\./($match_domain)/-) {
1131: if (ref($dcroles) eq 'HASH') {
1132: if ($dcroles->{$1}) {
1133: $output .= &adhoc_roles_row($1,'');
1134: }
1135: }
1136: }
1137: }
1138: }
1139: }
1140: if ($output) {
1141: if ($doheaders > 0) {
1142: $r->print(&Apache::loncommon::start_data_table_empty_row()
1143: .'<td align="center" colspan="5">'
1144: .&mt($type)
1145: .'</td>'
1146: .&Apache::loncommon::end_data_table_empty_row()
1147: );
1148: }
1149: $r->print($output);
1150: }
1151: }
1152: }
1153: }
1154:
1155: sub findcourse_advice {
1156: my ($r) = @_;
1157: my $domdesc = &Apache::lonnet::domain($env{'user.domain'},'description');
1158: my $esc_dom = &HTML::Entities::encode($env{'user.domain'},'"<>&');
1159: if (&Apache::lonnet::auto_run(undef,$env{'user.domain'})) {
1160: $r->print(&mt('If you were expecting to see an active role listed for a particular course in the [_1] domain, it may be missing for one of the following reasons:',$domdesc).'
1161: <ul>
1162: <li>'.&mt('The course has yet to be created.').'</li>
1163: <li>'.&mt('Automatic enrollment of registered students has not been enabled for the course.').'</li>
1164: <li>'.&mt('You are in a section of course for which automatic enrollment in the corresponding LON-CAPA course is not active.').'</li>
1165: <li>'.&mt('The start date for automated enrollment has yet to be reached.').'</li>
1166: <li>'.&mt('You registered for the course recently and there is a time lag between the time you register, and the time this information becomes available for the update of LON-CAPA course rosters.').'</li>
1167: </ul>');
1168: } else {
1169: $r->print(&mt('If you were expecting to see an active role listed for a particular course, that course may not have been created yet.').'<br />');
1170: }
1171: $r->print('<h3>'.&mt('Self-Enrollment').'</h3>'.
1172: '<p>'.&mt('The [_1]Course/Community Catalog[_2] provides information about all [_3] classes for which LON-CAPA courses have been created, as well as any communities in the domain.','<a href="/adm/coursecatalog?showdom='.$esc_dom.'">','</a>',$domdesc).'<br />');
1173: $r->print(&mt('You can search for courses and communities which permit self-enrollment, if you would like to enroll in one.').'</p>'.
1174: &Apache::loncoursequeueadmin::queued_selfenrollment());
1175: return;
1176: }
1177:
1178: sub requestcourse_advice {
1179: my ($r) = @_;
1180: my $domdesc = &Apache::lonnet::domain($env{'user.domain'},'description');
1181: my $esc_dom = &HTML::Entities::encode($env{'user.domain'},'"<>&');
1182: my (%can_request,%request_doms);
1183: &Apache::lonnet::check_can_request($env{'user.domain'},\%can_request,\%request_doms);
1184: if (keys(%request_doms) > 0) {
1185: my ($types,$typename) = &Apache::loncommon::course_types();
1186: if ((ref($types) eq 'ARRAY') && (ref($typename) eq 'HASH')) {
1187: $r->print('<h3>'.&mt('Request creation of a course or community').'</h3>'.
1188: '<p>'.&mt('You have rights to request the creation of courses and/or communities in the following domain(s):').'<ul>');
1189: my (@reqdoms,@reqtypes);
1190: foreach my $type (sort(keys(%request_doms))) {
1191: push(@reqtypes,$type);
1192: if (ref($request_doms{$type}) eq 'ARRAY') {
1193: my $domstr = join(', ',map { &Apache::lonnet::domain($_) } sort(@{$request_doms{$type}}));
1194: $r->print(
1195: '<li>'
1196: .&mt('[_1]'.$typename->{$type}.'[_2] in domain: [_3]',
1197: '<i>',
1198: '</i>',
1199: '<b>'.$domstr.'</b>')
1200: .'</li>'
1201: );
1202: foreach my $dom (@{$request_doms{$type}}) {
1203: unless (grep(/^\Q$dom\E/,@reqdoms)) {
1204: push(@reqdoms,$dom);
1205: }
1206: }
1207: }
1208: }
1209: my @showtypes;
1210: foreach my $type (@{$types}) {
1211: if (grep(/^\Q$type\E$/,@reqtypes)) {
1212: push(@showtypes,$type);
1213: }
1214: }
1215: my $requrl = '/adm/requestcourse';
1216: if (@reqdoms == 1) {
1217: $requrl .= '?showdom='.$reqdoms[0];
1218: }
1219: if (@showtypes > 0) {
1220: $requrl.=(($requrl=~/\?/)?'&':'?').'crstype='.$showtypes[0];
1221: }
1222: if (@reqdoms == 1 || @showtypes > 0) {
1223: $requrl .= '&state=crstype&action=new';
1224: }
1225: $r->print('</ul>'.&mt('Use the [_1]request form[_2] to submit a request for creation of a new course or community.','<a href="'.$requrl.'">','</a>').'</p>');
1226: }
1227: }
1228: return;
1229: }
1230:
1231: sub privileges_info {
1232: my ($which) = @_;
1233: my $output;
1234:
1235: $which ||= $env{'request.role'};
1236:
1237: foreach my $envkey (sort(keys(%env))) {
1238: next if ($envkey!~/^user\.priv\.\Q$which\E\.(.*)/);
1239:
1240: my $where=$1;
1241: my $ttype;
1242: my $twhere;
1243: my (undef,$tdom,$trest,$tsec)=split(m{/},$where);
1244: if ($trest) {
1245: if ($env{'course.'.$tdom.'_'.$trest.'.description'} eq 'ca') {
1246: $ttype='Construction Space';
1247: $twhere='User: '.$trest.', Domain: '.$tdom;
1248: } else {
1249: $ttype= &Apache::loncommon::course_type($tdom.'_'.$trest);
1250: $twhere=$env{'course.'.$tdom.'_'.$trest.'.description'};
1251: if ($tsec) {
1252: my $sec_type = 'Section';
1253: if (exists($env{"user.role.gr.$where"})) {
1254: $sec_type = 'Group';
1255: }
1256: $twhere.=' ('.$sec_type.': '.$tsec.')';
1257: }
1258: }
1259: } elsif ($tdom) {
1260: $ttype='Domain';
1261: $twhere=$tdom;
1262: } else {
1263: $ttype='System';
1264: $twhere='/';
1265: }
1266: $output .= "\n<h3>".&mt($ttype).': '.$twhere.'</h3>'."\n<ul>";
1267: foreach my $priv (sort(split(/:/,$env{$envkey}))) {
1268: next if (!$priv);
1269:
1270: my ($prv,$restr)=split(/\&/,$priv);
1271: my $trestr='';
1272: if ($restr ne 'F') {
1273: $trestr.=' ('.
1274: join(', ',
1275: map { &Apache::lonnet::plaintext($_) }
1276: (split('',$restr))).') ';
1277: }
1278: $output .= "\n\t".
1279: '<li>'.&Apache::lonnet::plaintext($prv).$trestr.'</li>';
1280: }
1281: $output .= "\n".'</ul>';
1282: }
1283: return $output;
1284: }
1285:
1286: sub build_roletext {
1287: my ($trolecode,$tdom,$trest,$tstatus,$tryagain,$advanced,$tremark,$tbg,$trole,$twhere,$tpstart,$tpend,$nochoose,$button,$switchserver,$reinit) = @_;
1288: my ($roletext,$roletext_end);
1289: my $is_dc=($trolecode =~ m/^dc\./);
1290: my $rowspan=($is_dc) ? ''
1291: : ' rowspan="2" ';
1292:
1293: unless ($nochoose) {
1294: my $buttonname=$trolecode;
1295: $buttonname=~s/\W//g;
1296: if (!$button) {
1297: if ($switchserver) {
1298: $roletext.='<td'.$rowspan.' class="'.$tbg.'">'
1299: .'<a href="/adm/switchserver?'.$switchserver.'">'
1300: .&mt('Switch Server')
1301: .'</a></td>';
1302: } else {
1303: $roletext.=('<td'.$rowspan.' class="'.$tbg.'"> </td>');
1304: }
1305: } elsif ($tstatus eq 'is') {
1306: $roletext.='<td'.$rowspan.' class="'.$tbg.'">'.
1307: '<input name="'.$buttonname.'" type="button" value="'.
1308: &mt('Select').'" onclick="javascript:enterrole(this.form,\''.
1309: $trolecode."','".$buttonname.'\');" /></td>';
1310: } elsif ($tryagain) {
1311: $roletext.=
1312: '<td'.$rowspan.' class="'.$tbg.'">'.
1313: '<input name="'.$buttonname.'" type="button" value="'.
1314: &mt('Try Selecting Again').'" onclick="javascript:enterrole(this.form,\''.
1315: $trolecode."','".$buttonname.'\');" /></td>';
1316: } elsif ($advanced) {
1317: $roletext.=
1318: '<td'.$rowspan.' class="'.$tbg.'">'.
1319: '<input name="'.$buttonname.'" type="button" value="'.
1320: &mt('Re-Initialize').'" onclick="javascript:enterrole(this.form,\''.
1321: $trolecode."','".$buttonname.'\');" /></td>';
1322: } elsif ($reinit) {
1323: $roletext.=
1324: '<td'.$rowspan.' class="'.$tbg.'">'.
1325: '<input name="'.$buttonname.'" type="button" value="'.
1326: &mt('Re-Select').'" onclick="javascript:enterrole(this.form,\''.
1327: $trolecode."','".$buttonname.'\');" /></td>';
1328: } else {
1329: $roletext.=
1330: '<td'.$rowspan.' class="'.$tbg.'">'.
1331: '<input name="'.$buttonname.'" type="button" value="'.
1332: &mt('Re-Select').'" onclick="javascript:enterrole(this.form,\''.
1333: $trolecode."','".$buttonname.'\');" /></td>';
1334: }
1335: }
1336: if ($trolecode !~ m/^(dc|ca|au|aa)\./) {
1337: $tremark.=&Apache::lonannounce::showday(time,1,
1338: &Apache::lonannounce::readcalendar($tdom.'_'.$trest));
1339: }
1340: $roletext.='<td>'.$trole.'</td>'
1341: .'<td>'.$twhere.'</td>'
1342: .'<td>'.$tpstart.'</td>'
1343: .'<td>'.$tpend.'</td>';
1344: if (!$is_dc) {
1345: $roletext_end = '<td colspan="4">'.
1346: $tremark.' '.
1347: '</td>';
1348: }
1349: return ($roletext,$roletext_end);
1350: }
1351:
1352: sub check_needs_switchserver {
1353: my ($possiblerole) = @_;
1354: my $needs_switchserver;
1355: my ($role,$where) = split(/\./,$possiblerole,2);
1356: my (undef,$tdom,$twho) = split(/\//,$where);
1357: my ($server_status,$home);
1358: if (($role eq 'ca') || ($role eq 'aa')) {
1359: ($server_status,$home) = &check_author_homeserver($twho,$tdom);
1360: } else {
1361: ($server_status,$home) = &check_author_homeserver($env{'user.name'},
1362: $env{'user.domain'});
1363: }
1364: if ($server_status eq 'switchserver') {
1365: $needs_switchserver = 1;
1366: }
1367: return $needs_switchserver;
1368: }
1369:
1370: sub check_author_homeserver {
1371: my ($uname,$udom)=@_;
1372: if (($uname eq '') || ($udom eq '')) {
1373: return ('fail','');
1374: }
1375: my $home = &Apache::lonnet::homeserver($uname,$udom);
1376: if (&Apache::lonnet::host_domain($home) ne $udom) {
1377: return ('fail',$home);
1378: }
1379: my @ids=&Apache::lonnet::current_machine_ids();
1380: if (grep(/^\Q$home\E$/,@ids)) {
1381: return ('ok',$home);
1382: } else {
1383: return ('switchserver',$home);
1384: }
1385: }
1386:
1387: sub check_fordc {
1388: my ($dcroles,$then) = @_;
1389: my $numdc = 0;
1390: if ($env{'user.adv'}) {
1391: foreach my $envkey (sort keys %env) {
1392: if ($envkey=~/^user\.role\.dc\.\/($match_domain)\/$/) {
1393: my $dcdom = $1;
1394: my $livedc = 1;
1395: my ($tstart,$tend)=split(/\./,$env{$envkey});
1396: if ($tstart && $tstart>$then) { $livedc = 0; }
1397: if ($tend && $tend <$then) { $livedc = 0; }
1398: if ($livedc) {
1399: $$dcroles{$dcdom} = $envkey;
1400: $numdc++;
1401: }
1402: }
1403: }
1404: }
1405: return $numdc;
1406: }
1407:
1408: sub adhoc_course_role {
1409: my ($refresh,$then) = @_;
1410: my ($cdom,$cnum,$crstype);
1411: $cdom = $env{'course.'.$env{'request.course.id'}.'.domain'};
1412: $cnum = $env{'course.'.$env{'request.course.id'}.'.num'};
1413: $crstype = &Apache::loncommon::course_type();
1414: if (&check_forcc($cdom,$cnum,$refresh,$then,$crstype)) {
1415: my $setprivs;
1416: if (!defined($env{'user.role.'.$env{'form.switchrole'}})) {
1417: $setprivs = 1;
1418: } else {
1419: my ($start,$end) = split(/\./,$env{'user.role.'.$env{'form.switchrole'}});
1420: if (($start && ($start>$refresh || $start == -1)) ||
1421: ($end && $end<$then)) {
1422: $setprivs = 1;
1423: }
1424: }
1425: if ($setprivs) {
1426: if ($env{'form.switchrole'} =~ m-^(in|ta|ep|ad|st|cr)([\w/]*)\./\Q$cdom\E/\Q$cnum\E/?(\w*)$-) {
1427: my $role = $1;
1428: my $custom_role = $2;
1429: my $usec = $3;
1430: if ($role eq 'cr') {
1431: if ($custom_role =~ m-^/$match_domain/$match_username/\w+$-) {
1432: $role .= $custom_role;
1433: } else {
1434: return;
1435: }
1436: }
1437: my (%userroles,%newrole,%newgroups,%group_privs);
1438: my %cgroups =
1439: &Apache::lonnet::get_active_groups($env{'user.domain'},
1440: $env{'user.name'},$cdom,$cnum);
1441: foreach my $group (keys(%cgroups)) {
1442: $group_privs{$group} =
1443: $env{'user.priv.cc./'.$cdom.'/'.$cnum.'./'.$cdom.'/'.$cnum.'/'.$group};
1444: }
1445: $newgroups{'/'.$cdom.'/'.$cnum} = \%group_privs;
1446: my $area = '/'.$cdom.'/'.$cnum;
1447: my $spec = $role.'.'.$area;
1448: if ($usec ne '') {
1449: $spec .= '/'.$usec;
1450: $area .= '/'.$usec;
1451: }
1452: &Apache::lonnet::standard_roleprivs(\%newrole,$role,$cdom,$spec,$cnum,$area);
1453: &Apache::lonnet::set_userprivs(\%userroles,\%newrole,\%newgroups);
1454: my $adhocstart = $refresh-1;
1455: $userroles{'user.role.'.$spec} = $adhocstart.'.';
1456: &Apache::lonnet::appenv(\%userroles,[$role,'cm']);
1457: }
1458: }
1459: }
1460: return;
1461: }
1462:
1463: sub check_forcc {
1464: my ($cdom,$cnum,$refresh,$then,$crstype) = @_;
1465: my ($is_cc,$ccrole);
1466: if ($crstype eq 'Community') {
1467: $ccrole = 'co';
1468: } else {
1469: $ccrole = 'cc';
1470: }
1471: if ($cdom ne '' && $cnum ne '') {
1472: if (&Apache::lonnet::is_course($cdom,$cnum)) {
1473: my $envkey = 'user.role.'.$ccrole.'./'.$cdom.'/'.$cnum;
1474: if (defined($env{$envkey})) {
1475: $is_cc = 1;
1476: my ($tstart,$tend)=split(/\./,$env{$envkey});
1477: if ($tstart && $tstart>$refresh) { $is_cc = 0; }
1478: if ($tend && $tend <$then) { $is_cc = 0; }
1479: }
1480: }
1481: }
1482: return $is_cc;
1483: }
1484:
1485: sub courselink {
1486: my ($dcdom,$rowtype) = @_;
1487: my $courseform=&Apache::loncommon::selectcourse_link
1488: ('rolechoice','dccourse'.$rowtype.'_'.$dcdom,
1489: 'dcdomain'.$rowtype.'_'.$dcdom,'coursedesc'.$rowtype.'_'.
1490: $dcdom,$dcdom,undef,'Course/Community');
1491: my $hiddenitems = '<input type="hidden" name="dcdomain'.$rowtype.'_'.$dcdom.'" value="'.$dcdom.'" />'.
1492: '<input type="hidden" name="origdom'.$rowtype.'_'.$dcdom.'" value="'.$dcdom.'" />'.
1493: '<input type="hidden" name="dccourse'.$rowtype.'_'.$dcdom.'" value="" />'.
1494: '<input type="hidden" name="coursedesc'.$rowtype.'_'.$dcdom.'" value="" />';
1495: return $courseform.$hiddenitems;
1496: }
1497:
1498: sub coursepick_jscript {
1499: my %lt = &Apache::lonlocal::texthash(
1500: plsu => "Please use the 'Select Course/Community' link to open a separate pick course window where you may select the course or community you wish to enter.",
1501: youc => 'You can only use this screen to select courses and communities in the current domain.',
1502: );
1503: my $verify_script = <<"END";
1504: <script type="text/javascript">
1505: // <![CDATA[
1506: function verifyCoursePick(caller) {
1507: var numbutton = getIndex(caller)
1508: var pickedCourse = document.rolechoice.elements[numbutton+4].value
1509: var pickedDomain = document.rolechoice.elements[numbutton+2].value
1510: if (document.rolechoice.elements[numbutton+2].value == document.rolechoice.elements[numbutton+3].value) {
1511: if (pickedCourse != '') {
1512: if (numbutton != -1) {
1513: var courseTarget = "cc./"+pickedDomain+"/"+pickedCourse
1514: document.rolechoice.elements[numbutton+1].name = courseTarget
1515: document.rolechoice.submit()
1516: }
1517: }
1518: else {
1519: alert("$lt{'plsu'}");
1520: }
1521: }
1522: else {
1523: alert("$lt{'youc'}")
1524: }
1525: }
1526: function getIndex(caller) {
1527: for (var i=0;i<document.rolechoice.elements.length;i++) {
1528: if (document.rolechoice.elements[i] == caller) {
1529: return i;
1530: }
1531: }
1532: return -1;
1533: }
1534: // ]]>
1535: </script>
1536: END
1537: return $verify_script;
1538: }
1539:
1540: sub coauthorlink {
1541: my ($dcdom,$rowtype) = @_;
1542: my $coauthorform=&Apache::loncommon::selectauthor_link('rolechoice',$dcdom);
1543: my $hiddenitems = '<input type="hidden" name="adhoccauname'.$rowtype.'_'.$dcdom.'" value="" />';
1544: return $coauthorform.$hiddenitems;
1545: }
1546:
1547: sub display_cc_role {
1548: my $rolekey = shift;
1549: my ($roletext,$roletext_end);
1550: my $advanced = $env{'user.adv'};
1551: my $tryagain = $env{'form.tryagain'};
1552: unless ($rolekey =~/^error\:/) {
1553: if ($rolekey =~ m{^user\.role\.(cc|co)\./($match_domain)/($match_courseid)$}) {
1554: my $ccrole = $1;
1555: my $tdom = $2;
1556: my $trest = $3;
1557: my $tcourseid = $tdom.'_'.$trest;
1558: my $trolecode = $ccrole.'./'.$tdom.'/'.$trest;
1559: my $twhere;
1560: my $ttype;
1561: my $tbg='LC_roles_is';
1562: my %newhash=&Apache::lonnet::coursedescription($tcourseid);
1563: if (%newhash) {
1564: $twhere=$newhash{'description'}.
1565: ' <span style="LC_fontsize_small">'.
1566: &Apache::loncommon::syllabuswrapper(&mt('Syllabus'),$trest,$tdom).
1567: '</span>';
1568: $ttype = $newhash{'type'};
1569: } else {
1570: $twhere=&mt('Currently not available');
1571: $env{'course.'.$tcourseid.'.description'}=$twhere;
1572: }
1573: my $trole = &Apache::lonnet::plaintext($ccrole,$ttype,$tcourseid);
1574: $twhere.="<br />".&mt('Domain').":".$1;
1575: ($roletext,$roletext_end) = &build_roletext($trolecode,$tdom,$trest,'is',$tryagain,$advanced,'',$tbg,$trole,$twhere,'','','',1,'');
1576: }
1577: }
1578: return ($roletext,$roletext_end);
1579: }
1580:
1581: sub adhoc_roles_row {
1582: my ($dcdom,$rowtype) = @_;
1583: my $output = &Apache::loncommon::continue_data_table_row()
1584: .' <td colspan="5">'
1585: .&mt('[_1]Ad hoc[_2] roles in domain [_3] --'
1586: ,'<span class="LC_cusr_emph">','</span>',$dcdom)
1587: .' ';
1588: my $selectcclink = &courselink($dcdom,$rowtype);
1589: my $ccrole = &Apache::lonnet::plaintext('co',undef,undef,1);
1590: my $carole = &Apache::lonnet::plaintext('ca');
1591: my $selectcalink = &coauthorlink($dcdom,$rowtype);
1592: $output.=$ccrole.': '.$selectcclink
1593: .' | '.$carole.': '.$selectcalink.'</td>'
1594: .&Apache::loncommon::end_data_table_row();
1595: return $output;
1596: }
1597:
1598: sub recent_filename {
1599: my $area=shift;
1600: return 'nohist_recent_'.&escape($area);
1601: }
1602:
1603: sub courseloadpage {
1604: my ($courseid) = @_;
1605: my $startpage;
1606: my %entry_settings = &Apache::lonnet::get('nohist_whatsnew',
1607: [$courseid.':courseinit']);
1608: my ($tmp) = %entry_settings;
1609: unless ($tmp =~ /^error: 2 /) {
1610: $startpage = $entry_settings{$courseid.':courseinit'};
1611: }
1612: if ($startpage eq '') {
1613: if (exists($env{'environment.course_init_display'})) {
1614: $startpage = $env{'environment.course_init_display'};
1615: }
1616: }
1617: return $startpage;
1618: }
1619:
1620: 1;
1621: __END__
1622:
1623: =head1 NAME
1624:
1625: Apache::lonroles - User Roles Screen
1626:
1627: =head1 SYNOPSIS
1628:
1629: Invoked by /etc/httpd/conf/srm.conf:
1630:
1631: <Location /adm/roles>
1632: PerlAccessHandler Apache::lonacc
1633: SetHandler perl-script
1634: PerlHandler Apache::lonroles
1635: ErrorDocument 403 /adm/login
1636: ErrorDocument 500 /adm/errorhandler
1637: </Location>
1638:
1639: =head1 OVERVIEW
1640:
1641: =head2 Choosing Roles
1642:
1643: C<lonroles> is a handler that allows a user to switch roles in
1644: mid-session. LON-CAPA attempts to work with "No Role Specified", the
1645: default role that a user has before selecting a role, as widely as
1646: possible, but certain handlers for example need specification which
1647: course they should act on, etc. Both in this scenario, and when the
1648: handler determines via C<lonnet>'s C<&allowed> function that a certain
1649: action is not allowed, C<lonroles> is used as error handler. This
1650: allows the user to select another role which may have permission to do
1651: what they were trying to do.
1652:
1653: =begin latex
1654:
1655: \begin{figure}
1656: \begin{center}
1657: \includegraphics[width=0.45\paperwidth,keepaspectratio]{Sample_Roles_Screen}
1658: \caption{\label{Sample_Roles_Screen}Sample Roles Screen}
1659: \end{center}
1660: \end{figure}
1661:
1662: =end latex
1663:
1664: =head2 Role Initialization
1665:
1666: The privileges for a user are established at login time and stored in the session environment. As a consequence, a new role does not become active till the next login. Handlers are able to query for privileges using C<lonnet>'s C<&allowed> function. When a user first logs in, their role is the "common" role, which means that they have the sum of all of their privileges. During a session it might become necessary to choose a particular role, which as a consequence also limits the user to only the privileges in that particular role.
1667:
1668: =head1 INTRODUCTION
1669:
1670: This module enables a user to select what role he wishes to
1671: operate under (instructor, student, teaching assistant, course
1672: coordinator, etc). These roles are pre-established by the actions
1673: of upper-level users.
1674:
1675: This is part of the LearningOnline Network with CAPA project
1676: described at http://www.lon-capa.org.
1677:
1678: =head1 HANDLER SUBROUTINE
1679:
1680: This routine is called by Apache and mod_perl.
1681:
1682: =over 4
1683:
1684: =item *
1685:
1686: Roles Initialization (yes/no)
1687:
1688: =item *
1689:
1690: Get Error Message from Environment
1691:
1692: =item *
1693:
1694: Who is this?
1695:
1696: =item *
1697:
1698: Generate Page Output
1699:
1700: =item *
1701:
1702: Choice or no choice
1703:
1704: =item *
1705:
1706: Table
1707:
1708: =item *
1709:
1710: Privileges
1711:
1712: =back
1713:
1714: =cut
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>