Annotation of loncom/auth/publiccheck.pm, revision 1.18

1.1       albertel    1: # The LearningOnline Network
                      2: # Cookie Based Access Handler
                      3: #
1.18    ! droeschl    4: # $Id: publiccheck.pm,v 1.17 2009/09/25 13:51:45 droeschl Exp $
1.1       albertel    5: #
                      6: # Copyright Michigan State University Board of Trustees
                      7: #
                      8: # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
                      9: #
                     10: # LON-CAPA is free software; you can redistribute it and/or modify
                     11: # it under the terms of the GNU General Public License as published by
                     12: # the Free Software Foundation; either version 2 of the License, or
                     13: # (at your option) any later version.
                     14: #
                     15: # LON-CAPA is distributed in the hope that it will be useful,
                     16: # but WITHOUT ANY WARRANTY; without even the implied warranty of
                     17: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
                     18: # GNU General Public License for more details.
                     19: #
                     20: # You should have received a copy of the GNU General Public License
                     21: # along with LON-CAPA; if not, write to the Free Software
                     22: # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
                     23: #
                     24: # /home/httpd/html/adm/gpl.txt
                     25: #
                     26: # http://www.lon-capa.org/
                     27: #
                     28: ###
                     29: 
                     30: package Apache::publiccheck;
                     31: 
                     32: use strict;
                     33: use Apache::Constants qw(:common :http :methods);
                     34: use Apache::lonnet;
                     35: use Apache::loncommon();
                     36: use Apache::lonlocal;
                     37: use Fcntl qw(:flock);
1.2       albertel   38: use Apache::lonacc();
1.13      albertel   39: use LONCAPA();
1.1       albertel   40: 
                     41: sub handler {
                     42:     my $r = shift;
1.8       albertel   43: 
1.1       albertel   44:     my $requrl=$r->uri;
1.16      raeburn    45: 
1.14      raeburn    46:     if (&Apache::lonnet::is_domainimage($requrl)) {
                     47:         return OK;
                     48:     }
1.15      albertel   49: 
1.16      raeburn    50:     if ($requrl =~ m{^/res/adm/pages/[^/]+\.(gif|png)$}) {
                     51:         return OK;
                     52:     }
                     53: 
1.15      albertel   54:     my $handle = &Apache::lonnet::check_for_valid_session($r);
                     55:     if ($handle ne '') {
1.1       albertel   56:         my $lonidsdir=$r->dir_config('lonIDsDir');
1.15      albertel   57: 	&Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle);
                     58: 	if ($env{'user.name'} ne 'public'
                     59: 	    && $env{'user.domain'} ne 'public') {
                     60: 	    return OK;
1.1       albertel   61: 	}
                     62:     }
                     63:     if ($requrl=~m|^/public/|
1.4       albertel   64: 	|| $requrl=~m|^/adm/help/.*\.hlp$|
1.10      albertel   65: 	|| $requrl=~m|^/adm/[^/]+/[^/]+/aboutme/portfolio$|
1.17      droeschl   66: 	|| (&Apache::lonnet::metadata($requrl,'copyright') eq 'public') 
1.18    ! droeschl   67:     || $requrl=~m|^/adm/blockingstatus/.*$| 
        !            68:     || $requrl eq '/adm/coursecatalog') {
1.3       raeburn    69:         &process_public($r,$requrl);
1.1       albertel   70:         return OK;
1.8       albertel   71:     } elsif (&Apache::lonnet::is_portfolio_url($requrl)) {
1.7       albertel   72: 	my (undef,$udom,$unum,$file_name,$group) = 
1.8       albertel   73: 	    &Apache::lonnet::parse_portfolio_url($requrl);
1.7       albertel   74:         my $access = &process_portfolio($udom,$unum,$file_name,$group);
1.5       raeburn    75:         if ($access) {
                     76:             &process_public($r,$requrl,$access);
1.3       raeburn    77:             return OK;
                     78:         } 
1.5       raeburn    79:     } elsif ($requrl eq '/adm/restrictedaccess') {
                     80:         &process_public($r,$requrl);
1.8       albertel   81: 	return OK;
1.12      raeburn    82:     } elsif ($requrl eq '/adm/blockedaccess') {
                     83:        &process_public($r,$requrl);
                     84:        return OK;
1.18    ! droeschl   85:     }
1.1       albertel   86:     return DECLINED;
                     87: }
                     88: 
1.3       raeburn    89: sub process_public {
1.5       raeburn    90:     my ($r,$requrl,$access) = @_;
1.3       raeburn    91:     &Apache::lonnet::logthis('Granting public access: '.$requrl);
                     92:     if ($env{'user.name'} ne 'public' && $env{'user.domain'} ne 'public') {
                     93:         my $cookie=&Apache::lonauth::success($r,'public','public','public');
                     94:         my $lonidsdir=$r->dir_config('lonIDsDir');
                     95:         &Apache::lonnet::transfer_profile_to_env($lonidsdir,$cookie);
1.9       albertel   96: 	$r->err_header_out('Set-cookie',"lonID=$cookie; path=/");
1.3       raeburn    97:     }
                     98:     &Apache::lonacc::get_posted_cgi($r);
                     99:     $env{'request.state'} = "published";
                    100:     $env{'request.publicaccess'} = 1;
                    101:     $env{'request.filename'} = $r->filename;
                    102:     return;
                    103: }
                    104: 
                    105: sub process_portfolio {
                    106:     my ($udom,$unum,$file_name,$group) = @_;
                    107:     my $current_perms = &Apache::lonnet::get_portfile_permissions($udom,$unum);
                    108:     my %access_controls = &Apache::lonnet::get_access_controls($current_perms,$group,$file_name);
1.5       raeburn   109:     my $access = '';
1.3       raeburn   110:     my $now = time;
                    111:     foreach my $key (keys(%{$access_controls{$file_name}})) {
                    112:         my ($num,$scope,$end,$start) = ($key =~ /^([^:]+):([a-z]+)_(\d*)_?(\d*)$/);
                    113:         if ($start > $now) {
                    114:             next;
                    115:         }
                    116:         if ($end && $end<$now) {
                    117:             next;
                    118:         }
                    119:         if ($scope eq 'public') {
1.5       raeburn   120:             $access = 'public';
1.3       raeburn   121:             last;
                    122:         }
1.5       raeburn   123:         if ($scope eq 'guest') {
                    124:             $access = 'guest';
                    125:         }
1.3       raeburn   126:     }
1.5       raeburn   127:     return $access;
1.3       raeburn   128: }
                    129: 
1.1       albertel  130: 1;
                    131: 
                    132: __END__

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>