|
version 1.22, 2001/12/19 17:17:46
|
version 1.27, 2002/02/12 21:42:18
|
|
Line 45
|
Line 45
|
| # April Guy Albertelli |
# April Guy Albertelli |
| # 05/10,10/16 Gerd Kortemeyer |
# 05/10,10/16 Gerd Kortemeyer |
| # 11/12,11/13,11/15 Scott Harrison |
# 11/12,11/13,11/15 Scott Harrison |
| |
# 02/11/02 Matthew Hall |
| # |
# |
| # $Id$ |
# $Id$ |
| ### |
### |
|
Line 63 my $authformint;
|
Line 64 my $authformint;
|
| my $authformfsys; |
my $authformfsys; |
| my $authformloc; |
my $authformloc; |
| |
|
| sub BEGIN { |
BEGIN { |
| $ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/; |
$ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/; |
| my $krbdefdom=$1; |
my $krbdefdom=$1; |
| $krbdefdom=~tr/a-z/A-Z/; |
$krbdefdom=~tr/a-z/A-Z/; |
| $authformnop=(<<END); |
$authformnop=(<<END); |
| <p> |
<p> |
| <input type=radio name=login value=nop checked='checked' |
<input type="radio" name="login" value="" checked="checked" |
| onClick="clicknop(this.form);"> |
onClick="clicknop(this.form);"> |
| Do not change login data |
Do not change login data |
| </p> |
</p> |
|
Line 206 ENDDOCUMENT
|
Line 207 ENDDOCUMENT
|
| } |
} |
| |
|
| # =================================================================== Phase two |
# =================================================================== Phase two |
| |
|
| sub phase_two { |
sub phase_two { |
| my $r=shift; |
my $r=shift; |
| my $ccuname=$ENV{'form.ccuname'}; |
my $ccuname=$ENV{'form.ccuname'}; |
|
Line 220 sub phase_two {
|
Line 220 sub phase_two {
|
| |
|
| $ccuname=~s/\W//g; |
$ccuname=~s/\W//g; |
| $ccdomain=~s/\W//g; |
$ccdomain=~s/\W//g; |
| $r->print(<<ENDENHEAD); |
my $dochead =<<"ENDDOCHEAD"; |
| <html> |
<html> |
| <head> |
<head> |
| <title>The LearningOnline Network with CAPA</title> |
<title>The LearningOnline Network with CAPA</title> |
|
Line 250 sub phase_two {
|
Line 250 sub phase_two {
|
| </script> |
</script> |
| </head> |
</head> |
| <body bgcolor="#FFFFFF"> |
<body bgcolor="#FFFFFF"> |
| <img align=right src=/adm/lonIcons/lonlogos.gif> |
<img align="right" src="/adm/lonIcons/lonlogos.gif"> |
| <h1>Create User, Change User Privileges</h1> |
ENDDOCHEAD |
| <form action=/adm/createuser method=post name=cu> |
my $forminfo =<<"ENDFORMINFO"; |
| <input type=hidden name=phase value=three> |
<form action="/adm/createuser" method="post" name="cu"> |
| <input type=hidden name=ccuname value=$ccuname> |
<input type="hidden" name="phase" value="three"> |
| <input type=hidden name=ccdomain value=$ccdomain> |
<input type="hidden" name="ccuname" value="$ccuname"> |
| <input type="hidden" value='' name="pres_value"> |
<input type="hidden" name="ccdomain" value="$ccdomain"> |
| <input type="hidden" value='' name="pres_type"> |
<input type="hidden" name="pres_value" value="" > |
| <input type="hidden" value='' name="pres_marker"> |
<input type="hidden" name="pres_type" value="" > |
| <input type=hidden name=cuname value="$ccuname"> |
<input type="hidden" name="pres_marker" value="" > |
| <input type=hidden name=cdomain value="$ccdomain"> |
<input type="hidden" name="cuname" value="$ccuname"> |
| |
<input type="hidden" name="cdomain" value="$ccdomain"> |
| ENDENHEAD |
ENDFORMINFO |
| my $uhome=&Apache::lonnet::homeserver($ccuname,$ccdomain); |
my $uhome=&Apache::lonnet::homeserver($ccuname,$ccdomain); |
| my %incdomains; |
my %incdomains; |
| my %inccourses; |
my %inccourses; |
| map { |
foreach (%Apache::lonnet::hostdom) { |
| $incdomains{$_}=1; |
$incdomains{$_}=1; |
| } values %Apache::lonnet::hostdom; |
} |
| map { |
foreach (keys(%ENV)) { |
| if ($_=~/^user\.priv\.cm\.\/(\w+)\/(\w+)/) { |
if ($_=~/^user\.priv\.cm\.\/(\w+)\/(\w+)/) { |
| $inccourses{$1.'_'.$2}=1; |
$inccourses{$1.'_'.$2}=1; |
| } |
} |
| } %ENV; |
} |
| if ($uhome eq 'no_host') { |
if ($uhome eq 'no_host') { |
| $r->print(<<ENDNUSER); |
$r->print(<<ENDNEWUSER); |
| <h2>New user $ccuname at $ccdomain</h2> |
$dochead |
| ENDNUSER |
<h1>Create New User</h1> |
| $r->print(<<ENDNUSER); |
$forminfo |
| |
<h2>New user "$ccuname" in domain $ccdomain</h2> |
| $loginscript |
$loginscript |
| <input type='hidden' name='makeuser' value='1' /> |
<input type='hidden' name='makeuser' value='1' /> |
| <h3>Personal Data</h3> |
<h3>Personal Data</h3> |
| First Name: <input type='text' name='cfirst' size='15' /><br /> |
<p> |
| Middle Name: <input type='text' name='cmiddle' size='15' /><br /> |
<table> |
| Last Name: <input type='text' name='clast' size='15' /><br /> |
<tr><td>First Name </td> |
| Generation: <input type='text' name='cgen' size='5' /><p> |
<td><input type='text' name='cfirst' size='15' /></td></tr> |
| |
<tr><td>Middle Name </td> |
| |
<td><input type='text' name='cmiddle' size='15' /></td></tr> |
| |
<tr><td>Last Name </td> |
| |
<td><input type='text' name='clast' size='15' /></td></tr> |
| |
<tr><td>Generation </td> |
| |
<td><input type='text' name='cgen' size='5' /></td></tr> |
| |
</table> |
| |
ID/Student Number <input type='text' name='cstid' size='15' /></p> |
| |
|
| ID/Student Number: <input type='text' name='cstid' size='10' /></p> |
<hr /> |
| |
|
| <h3>Login Data</h3> |
<h3>Login Data</h3> |
| $generalrule |
$generalrule |
|
Line 295 $authformkrb
|
Line 304 $authformkrb
|
| $authformint |
$authformint |
| $authformfsys |
$authformfsys |
| $authformloc |
$authformloc |
| ENDNUSER |
ENDNEWUSER |
| } else { |
} else { # user already exists |
| $r->print('<h2>Existing user '.$ccuname.' at '.$ccdomain.'</h2>'); |
$r->print(<<ENDCHANGEUSER); |
| |
$dochead |
| |
<h1>Change User Privileges</h1> |
| |
$forminfo |
| |
<h2>User "$ccuname" in domain $ccdomain </h2> |
| |
ENDCHANGEUSER |
| my $rolesdump=&Apache::lonnet::reply( |
my $rolesdump=&Apache::lonnet::reply( |
| "dump:$ccdomain:$ccuname:roles",$uhome); |
"dump:$ccdomain:$ccuname:roles",$uhome); |
| unless ($rolesdump eq 'con_lost') { |
# Build up table of user roles to allow revocation of a role. |
| |
unless ($rolesdump eq 'con_lost' || $rolesdump =~ m/^error/i) { |
| my $now=time; |
my $now=time; |
| $r->print('<h4>Revoke Existing Roles</h4>'. |
$r->print('<hr /><h3>Revoke Existing Roles</h3>'. |
| '<table border=2><tr><th>Revoke</th><th>Role</th><th>Extent</th>'. |
'<table border=2><tr><th>Revoke</th><th>Role</th><th>Extent</th>'. |
| '<th>Start</th><th>End</th>'); |
'<th>Start</th><th>End</th>'); |
| map { |
foreach (split(/&/,$rolesdump)) { |
| if ($_!~/^rolesdef\&/) { |
if ($_!~/^rolesdef\&/) { |
| |
|
| my ($area,$role)=split(/=/,$_); |
my ($area,$role)=split(/=/,$_); |
| my $thisrole=$area; |
my $thisrole=$area; |
| $area=~s/\_\w\w$//; |
$area=~s/\_\w\w$//; |
| my ($trole,$tend,$tstart)=split(/_/,$role); |
my ($role_code,$role_end_time,$role_start_time)=split(/_/,$role); |
| my $bgcol='ffffff'; |
my $bgcol='ffffff'; |
| my $allows=0; |
my $allows=0; |
| if ($area=~/^\/(\w+)\/(\d\w+)/) { |
if ($area=~/^\/(\w+)\/(\d\w+)/) { |
| my %coursedata=&Apache::lonnet::coursedescription($1.'_'.$2); |
my %coursedata=&Apache::lonnet::coursedescription($1.'_'.$2); |
| my $carea='Course: '.$coursedata{'description'}; |
my $carea='Course: '.$coursedata{'description'}; |
| $inccourses{$1.'_'.$2}=1; |
$inccourses{$1.'_'.$2}=1; |
| if (&Apache::lonnet::allowed('c'.$trole,$1.'/'.$2)) { |
if (&Apache::lonnet::allowed('c'.$role_code,$1.'/'.$2)) { |
| $allows=1; |
$allows=1; |
| } |
} |
| |
# Compute the background color based on $area |
| $bgcol=$1.'_'.$2; |
$bgcol=$1.'_'.$2; |
| $bgcol=~s/[^8-9b-e]//g; |
$bgcol=~s/[^8-9b-e]//g; |
| $bgcol=substr($bgcol.$bgcol.$bgcol.'ffffff',0,6); |
$bgcol=substr($bgcol.$bgcol.$bgcol.'ffffff',0,6); |
|
Line 330 ENDNUSER
|
Line 344 ENDNUSER
|
| } |
} |
| $area=$carea; |
$area=$carea; |
| } else { |
} else { |
| |
# Determine if current user is able to revoke privileges |
| if ($area=~/^\/(\w+)\//) { |
if ($area=~/^\/(\w+)\//) { |
| if (&Apache::lonnet::allowed('c'.$trole,$1)) { |
if (&Apache::lonnet::allowed('c'.$role_code,$1)) { |
| $allows=1; |
$allows=1; |
| } |
} |
| } else { |
} else { |
| if (&Apache::lonnet::allowed('c'.$trole,'/')) { |
if (&Apache::lonnet::allowed('c'.$role_code,'/')) { |
| $allows=1; |
$allows=1; |
| } |
} |
| } |
} |
| } |
} |
| |
|
| |
$r->print('<tr bgcolor=#"'.$bgcol.'"><td>'); |
| my $active=1; |
my $active=1; |
| if (($tend) && ($now>$tend)) { $active=0; } |
if (($role_end_time) && ($now>$role_end_time)) { $active=0; } |
| |
if (($active) && ($allows)) { |
| $r->print('<tr bgcolor=#'.$bgcol.'><td>'); |
$r->print('<input type="checkbox" name="rev:' |
| if ($active) { |
.$thisrole.'">'); |
| if ($allows) { |
|
| $r->print( |
|
| '<input type=checkbox name="rev:'.$thisrole.'">'); |
|
| } else { |
|
| $r->print(' '); |
|
| } |
|
| } else { |
} else { |
| $r->print(' '); |
$r->print(' '); |
| } |
} |
| $r->print('</td><td>'.&Apache::lonnet::plaintext($trole). |
$r->print('</td><td>'.&Apache::lonnet::plaintext($role_code). |
| '</td><td>'.$area.'</td><td>'. |
'</td><td>'.$area.'</td><td>'. |
| ($tstart?localtime($tstart):' ').'</td><td>'. |
($role_start_time ? localtime($role_start_time) |
| ($tend?localtime($tend):' ')."</td></tr>\n"); |
: ' ' ) |
| |
.'</td><td>'. |
| |
($role_end_time ? localtime($role_end_time) |
| |
: ' ' ) |
| |
."</td></tr>\n"); |
| } |
} |
| } split(/&/,$rolesdump); |
} |
| $r->print('</table>'); |
$r->print('</table>'); |
| } |
} |
| my $currentauth=&Apache::lonnet::queryauthenticate($ccuname,$ccdomain); |
my $currentauth=&Apache::lonnet::queryauthenticate($ccuname,$ccdomain); |
|
Line 369 ENDNUSER
|
Line 383 ENDNUSER
|
| my $krbdefdom2=$1; |
my $krbdefdom2=$1; |
| $loginscript=~s/vf\.krbdom\.value='.*?';/vf.krbdom.value='$krbdefdom2';/; |
$loginscript=~s/vf\.krbdom\.value='.*?';/vf.krbdom.value='$krbdefdom2';/; |
| } |
} |
| # minor script hack here |
# Check for a bad authentication type |
| # $loginscript=~s/login\[3\]/login\[4\]/; # loc |
|
| # $loginscript=~s/login\[2\]/login\[3\]/; # fsys |
|
| # $loginscript=~s/login\[1\]/login\[2\]/; # int |
|
| # $loginscript=~s/login\[0\]/login\[1\]/; # krb4 |
|
| |
|
| unless ($currentauth=~/^krb4:/ or |
unless ($currentauth=~/^krb4:/ or |
| $currentauth=~/^unix:/ or |
$currentauth=~/^unix:/ or |
| $currentauth=~/^internal:/ or |
$currentauth=~/^internal:/ or |
| $currentauth=~/^localauth:/ |
$currentauth=~/^localauth:/ |
| ) { |
) { # bad authentication scheme |
| $r->print(<<END); |
if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) { |
| |
$r->print(<<ENDBADAUTH); |
| <hr /> |
<hr /> |
| $loginscript |
$loginscript |
| <font color='#ff0000'>ERROR:</font> |
<font color='#ff0000'>ERROR:</font> |
|
Line 392 $authformkrb
|
Line 402 $authformkrb
|
| $authformint |
$authformint |
| $authformfsys |
$authformfsys |
| $authformloc |
$authformloc |
| END |
ENDBADAUTH |
| } |
} else { |
| else { |
# This user is not allowed to modify the users |
| |
# authentication scheme, so just notify them of the problem |
| |
$r->print(<<ENDBADAUTH); |
| |
<hr /> |
| |
$loginscript |
| |
<font color="#ff0000"> ERROR: </font> |
| |
This user has an unrecognized authentication scheme ($currentauth). |
| |
Please alert a domain coordinator of this situation. |
| |
<hr /> |
| |
ENDBADAUTH |
| |
} |
| |
} else { # Authentication type is valid |
| my $authformcurrent=''; |
my $authformcurrent=''; |
| my $authformother=''; |
my $authform_other=''; |
| if ($currentauth=~/^krb4:/) { |
if ($currentauth=~/^krb4:/) { |
| $authformcurrent=$authformkrb; |
$authformcurrent=$authformkrb; |
| $authformother=$authformint.$authformfsys.$authformloc; |
$authform_other=$authformint.$authformfsys.$authformloc; |
| # embarrassing script hack here |
# embarrassing script hack here |
| $loginscript=~s/login\[3\]/login\[4\]/; # loc |
$loginscript=~s/login\[3\]/login\[4\]/; # loc |
| $loginscript=~s/login\[2\]/login\[3\]/; # fsys |
$loginscript=~s/login\[2\]/login\[3\]/; # fsys |
|
Line 408 END
|
Line 429 END
|
| } |
} |
| elsif ($currentauth=~/^internal:/) { |
elsif ($currentauth=~/^internal:/) { |
| $authformcurrent=$authformint; |
$authformcurrent=$authformint; |
| $authformother=$authformkrb.$authformfsys.$authformloc; |
$authform_other=$authformkrb.$authformfsys.$authformloc; |
| # embarrassing script hack here |
# embarrassing script hack here |
| $loginscript=~s/login\[3\]/login\[4\]/; # loc |
$loginscript=~s/login\[3\]/login\[4\]/; # loc |
| $loginscript=~s/login\[2\]/login\[3\]/; # fsys |
$loginscript=~s/login\[2\]/login\[3\]/; # fsys |
|
Line 417 END
|
Line 438 END
|
| } |
} |
| elsif ($currentauth=~/^unix:/) { |
elsif ($currentauth=~/^unix:/) { |
| $authformcurrent=$authformfsys; |
$authformcurrent=$authformfsys; |
| $authformother=$authformkrb.$authformint.$authformloc; |
$authform_other=$authformkrb.$authformint.$authformloc; |
| # embarrassing script hack here |
# embarrassing script hack here |
| $loginscript=~s/login\[3\]/login\[4\]/; # loc |
$loginscript=~s/login\[3\]/login\[4\]/; # loc |
| $loginscript=~s/login\[1\]/login\[3\]/; # int |
$loginscript=~s/login\[1\]/login\[3\]/; # int |
|
Line 426 END
|
Line 447 END
|
| } |
} |
| elsif ($currentauth=~/^localauth:/) { |
elsif ($currentauth=~/^localauth:/) { |
| $authformcurrent=$authformloc; |
$authformcurrent=$authformloc; |
| $authformother=$authformkrb.$authformint.$authformfsys; |
$authform_other=$authformkrb.$authformint.$authformfsys; |
| # embarrassing script hack here |
# embarrassing script hack here |
| $loginscript=~s/login\[3\]/login\[loc\]/; # loc |
$loginscript=~s/login\[3\]/login\[loc\]/; # loc |
| $loginscript=~s/login\[2\]/login\[4\]/; # fsys |
$loginscript=~s/login\[2\]/login\[4\]/; # fsys |
|
Line 434 END
|
Line 455 END
|
| $loginscript=~s/login\[0\]/login\[2\]/; # krb4 |
$loginscript=~s/login\[0\]/login\[2\]/; # krb4 |
| $loginscript=~s/login\[loc\]/login\[1\]/; # loc |
$loginscript=~s/login\[loc\]/login\[1\]/; # loc |
| } |
} |
| $authformcurrent=<<END; |
$authformcurrent=<<ENDCURRENTAUTH; |
| <table border='1'> |
<table border='1'> |
| <tr> |
<tr> |
| <td><font color='#ff0000'>* * * WARNING * * *</font></td> |
<td><font color='#ff0000'>* * * WARNING * * *</font></td> |
|
Line 443 END
|
Line 464 END
|
| <tr><td bgcolor='#cbbcbb'>$authformcurrent</td> |
<tr><td bgcolor='#cbbcbb'>$authformcurrent</td> |
| <td bgcolor='#cbbcbb'>Changing this value will overwrite existing authentication for the user; you should notify the user of this change.</td></tr> |
<td bgcolor='#cbbcbb'>Changing this value will overwrite existing authentication for the user; you should notify the user of this change.</td></tr> |
| </table> |
</table> |
| END |
ENDCURRENTAUTH |
| $r->print(<<END); |
if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) { |
| |
# Current user has login modification privileges |
| |
$r->print(<<ENDOTHERAUTHS); |
| <hr /> |
<hr /> |
| $loginscript |
$loginscript |
| <h3>Change Current Login Data</h3> |
<h3>Change Current Login Data</h3> |
|
Line 452 $generalrule
|
Line 475 $generalrule
|
| $authformnop |
$authformnop |
| $authformcurrent |
$authformcurrent |
| <h3>Enter New Login Data</h3> |
<h3>Enter New Login Data</h3> |
| $authformother |
$authform_other |
| END |
ENDOTHERAUTHS |
| } |
} |
| } |
} ## End of "check for bad authentication type" logic |
| |
} ## End of new user/old user logic |
| $r->print('<hr /><h3>Add Roles</h3>'); |
$r->print('<hr /><h3>Add Roles</h3>'); |
| # |
# |
| # Co-Author |
# Co-Author |
|
Line 488 ENDCOAUTH
|
Line 512 ENDCOAUTH
|
| $r->print('<h4>Domain Level</h4>'. |
$r->print('<h4>Domain Level</h4>'. |
| '<table border=2><tr><th>Activate</th><th>Role</th><th>Extent</th>'. |
'<table border=2><tr><th>Activate</th><th>Role</th><th>Extent</th>'. |
| '<th>Start</th><th>End</th></tr>'); |
'<th>Start</th><th>End</th></tr>'); |
| map { |
foreach ( sort( keys(%incdomains))) { |
| my $thisdomain=$_; |
my $thisdomain=$_; |
| map { |
foreach ('dc','li','dg','au') { |
| if (&Apache::lonnet::allowed('c'.$_,$thisdomain)) { |
if (&Apache::lonnet::allowed('c'.$_,$thisdomain)) { |
| my $plrole=&Apache::lonnet::plaintext($_); |
my $plrole=&Apache::lonnet::plaintext($_); |
| $r->print(<<ENDDROW); |
$r->print(<<ENDDROW); |
|
Line 507 ENDCOAUTH
|
Line 531 ENDCOAUTH
|
| </tr> |
</tr> |
| ENDDROW |
ENDDROW |
| } |
} |
| } ('dc','li','dg','au'); |
} |
| } sort keys %incdomains; |
} |
| $r->print('</table>'); |
$r->print('</table>'); |
| # |
# |
| # Course level |
# Course level |
| # |
# |
| $r->print('<h4>Course Level</h4>'. |
$r->print(&course_level_table(%inccourses)); |
| '<table border=2><tr><th>Activate</th><th>Role</th><th>Extent</th>'. |
$r->print("<hr /><input type=submit value=\"Modify User\">\n"); |
| '<th>Group/Section</th><th>Start</th><th>End</th></tr>'); |
$r->print("</form></body></html>"); |
| map { |
|
| my $thiscourse=$_; |
|
| my $protectedcourse=$_; |
|
| $thiscourse=~s:_:/:g; |
|
| my %coursedata=&Apache::lonnet::coursedescription($thiscourse); |
|
| my $area=$coursedata{'description'}; |
|
| my $bgcol=$thiscourse; |
|
| $bgcol=~s/[^8-9b-e]//g; |
|
| $bgcol=substr($bgcol.$bgcol.$bgcol.'ffffff',0,6); |
|
| map { |
|
| if (&Apache::lonnet::allowed('c'.$_,$thiscourse)) { |
|
| my $plrole=&Apache::lonnet::plaintext($_); |
|
| $r->print(" |
|
| <tr bgcolor=#$bgcol> |
|
| <td><input type=checkbox name=\"act_$protectedcourse\_$_\"></td> |
|
| <td>$plrole</td> |
|
| <td>$area</td> |
|
| <td>"); |
|
| if ($_ ne 'cc') { |
|
| $r->print("<input type=text size=5 name=\"sec_$protectedcourse\_$_\">"); |
|
| } else { $r->print(" "); } |
|
| $r->print(<<ENDROW); |
|
| <td><input type=hidden name="start_$protectedcourse\_$_" value=''> |
|
| <a href= |
|
| "javascript:pjump('date_start','Start Date $plrole',document.cu.start_$protectedcourse\_$_.value,'start_$protectedcourse\_$_','cu.pres','dateset')">Set Start Date</a></td> |
|
| <td><input type=hidden name="end_$protectedcourse\_$_" value=''> |
|
| <a href= |
|
| "javascript:pjump('date_end','End Date $plrole',document.cu.end_$protectedcourse\_$_.value,'end_$protectedcourse\_$_','cu.pres','dateset')">Set End Date</a></td> |
|
| </tr> |
|
| ENDROW |
|
| } |
|
| } ('st','ta','ep','ad','in','cc'); |
|
| } sort keys %inccourses; |
|
| $r->print('</table>'); |
|
| $r->print('<input type=submit value="Modify User">'); |
|
| $r->print('</form></body></html>'); |
|
| } |
} |
| |
|
| # ================================================================= Phase Three |
# ================================================================= Phase Three |
| |
|
| sub phase_three { |
sub phase_three { |
| my $r=shift; |
my $r=shift; |
| |
# Error messages |
| |
my $error = '<font color="#ff0000">Error:</font>'; |
| |
my $end = '</body></html>'; |
| |
# Print header |
| $r->print(<<ENDTHREEHEAD); |
$r->print(<<ENDTHREEHEAD); |
| <html> |
<html> |
| <head> |
<head> |
| <title>The LearningOnline Network with CAPA</title> |
<title>The LearningOnline Network with CAPA</title> |
| </head> |
</head> |
| <body bgcolor="#FFFFFF"> |
<body bgcolor="#FFFFFF"> |
| <img align=right src=/adm/lonIcons/lonlogos.gif> |
<img align="right" src="/adm/lonIcons/lonlogos.gif"> |
| <h1>Create User, Change User Privileges</h1> |
|
| ENDTHREEHEAD |
ENDTHREEHEAD |
| $r->print('<h2>'.$ENV{'form.cuname'}.' at '.$ENV{'form.cdomain'}.'</h2>'); |
# Check Inputs |
| if ($ENV{'form.makeuser'}) { |
if (! $ENV{'form.cuname'} ) { |
| $r->print('<h3>Creating User</h3>'); |
$r->print($error.'No login name specified.'.$end); |
| if (($ENV{'form.cuname'})&&($ENV{'form.cuname'}!~/\W/)&& |
return; |
| ($ENV{'form.cdomain'})&&($ENV{'form.cdomain'}!~/\W/)) { |
|
| my $amode=''; |
|
| my $genpwd=''; |
|
| if ($ENV{'form.login'} eq 'krb') { |
|
| $amode='krb4'; |
|
| $genpwd=$ENV{'form.krbdom'}; |
|
| } elsif ($ENV{'form.login'} eq 'int') { |
|
| $amode='internal'; |
|
| $genpwd=$ENV{'form.intpwd'}; |
|
| } elsif ($ENV{'form.login'} eq 'fsys') { |
|
| $amode='unix'; |
|
| $genpwd=$ENV{'form.fsyspwd'}; |
|
| } elsif ($ENV{'form.login'} eq 'loc') { |
|
| $amode='localauth'; |
|
| $genpwd=$ENV{'form.locarg'}; |
|
| if (!$genpwd) { $genpwd=" "; } |
|
| } |
|
| if (($amode) && ($genpwd)) { |
|
| $r->print('Generating user: '.&Apache::lonnet::modifyuser( |
|
| $ENV{'form.cdomain'},$ENV{'form.cuname'}, |
|
| $ENV{'form.cstid'},$amode,$genpwd, |
|
| $ENV{'form.cfirst'},$ENV{'form.cmiddle'}, |
|
| $ENV{'form.clast'},$ENV{'form.cgen'})); |
|
| $r->print('<br>Home server: '.&Apache::lonnet::homeserver |
|
| ($ENV{'form.cuname'},$ENV{'form.cdomain'})); |
|
| |
|
| } else { |
|
| $r->print('Invalid login mode or password'); |
|
| } |
|
| } else { |
|
| $r->print('Invalid username or domain'); |
|
| } |
} |
| } |
if ( $ENV{'form.cuname'} =~/\W/) { |
| if (!$ENV{'form.makeuser'} and $ENV{'form.login'} ne 'nop') { |
$r->print($error.'Invalid login name. '. |
| $r->print('<h3>Changing User Login Data</h3>'); |
'Only letters, numbers, and underscores are valid.'. |
| if (($ENV{'form.cuname'})&&($ENV{'form.cuname'}!~/\W/)&& |
$end); |
| ($ENV{'form.cdomain'})&&($ENV{'form.cdomain'}!~/\W/)) { |
return; |
| my $amode=''; |
} |
| my $genpwd=''; |
if (! $ENV{'form.cdomain'} ) { |
| if ($ENV{'form.login'} eq 'krb') { |
$r->print($error.'No domain specified.'.$end); |
| $amode='krb4'; |
return; |
| $genpwd=$ENV{'form.krbdom'}; |
} |
| } elsif ($ENV{'form.login'} eq 'int') { |
if ( $ENV{'form.cdomain'} =~/\W/) { |
| $amode='internal'; |
$r->print($error.'Invalid domain name. '. |
| $genpwd=$ENV{'form.intpwd'}; |
'Only letters, numbers, and underscores are valid.'. |
| } elsif ($ENV{'form.login'} eq 'fsys') { |
$end); |
| $amode='unix'; |
return; |
| $genpwd=$ENV{'form.fsyspwd'}; |
} |
| } elsif ($ENV{'form.login'} eq 'loc') { |
# Determine authentication method and password for the user being modified |
| $amode='localauth'; |
my $amode=''; |
| $genpwd=$ENV{'form.locarg'}; |
my $genpwd=''; |
| if (!$genpwd) { $genpwd=" "; } |
if ($ENV{'form.login'} eq 'krb') { |
| |
$amode='krb4'; |
| |
$genpwd=$ENV{'form.krbdom'}; |
| |
} elsif ($ENV{'form.login'} eq 'int') { |
| |
$amode='internal'; |
| |
$genpwd=$ENV{'form.intpwd'}; |
| |
} elsif ($ENV{'form.login'} eq 'fsys') { |
| |
$amode='unix'; |
| |
$genpwd=$ENV{'form.fsyspwd'}; |
| |
} elsif ($ENV{'form.login'} eq 'loc') { |
| |
$amode='localauth'; |
| |
$genpwd=$ENV{'form.locarg'}; |
| |
$genpwd=" " if (!$genpwd); |
| |
} |
| |
if ($ENV{'form.makeuser'}) { |
| |
# Create a new user |
| |
$r->print(<<ENDNEWUSERHEAD); |
| |
<h1>Create User</h1> |
| |
<h3>Creating user "$ENV{'form.cuname'}" in domain "$ENV{'form.cdomain'}"</h2> |
| |
ENDNEWUSERHEAD |
| |
# Check for the authentication mode and password |
| |
if (! $amode || ! $genpwd) { |
| |
$r->print($error.'Invalid login mode or password'.$end); |
| |
return; |
| |
} |
| |
# Call modifyuser |
| |
my $result = &Apache::lonnet::modifyuser |
| |
($ENV{'form.cdomain'},$ENV{'form.cuname'}, |
| |
$ENV{'form.cstid'},$amode,$genpwd, |
| |
$ENV{'form.cfirst'},$ENV{'form.cmiddle'}, |
| |
$ENV{'form.clast'},$ENV{'form.cgen'} |
| |
); |
| |
$r->print('Generating user: '.$result); |
| |
$r->print('<br>Home server: '.&Apache::lonnet::homeserver |
| |
($ENV{'form.cuname'},$ENV{'form.cdomain'})); |
| |
} elsif ($ENV{'form.login'} ne '') { |
| |
# Modify user privileges |
| |
$r->print(<<ENDMODIFYUSERHEAD); |
| |
<h1>Change User Privileges</h1> |
| |
<h2>User "$ENV{'form.cuname'}" in domain "$ENV{'form.cdomain'}"</h2> |
| |
ENDMODIFYUSERHEAD |
| |
if (! $amode || ! $genpwd) { |
| |
$r->print($error.'Invalid login mode or password'.$end); |
| |
return; |
| } |
} |
| if (($amode) && ($genpwd)) { |
# Only allow authentification modification if the person has authority |
| |
if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) { |
| $r->print('Modifying authentication: '. |
$r->print('Modifying authentication: '. |
| &Apache::lonnet::modifyuserauth( |
&Apache::lonnet::modifyuserauth( |
| $ENV{'form.cdomain'},$ENV{'form.cuname'}, |
$ENV{'form.cdomain'},$ENV{'form.cuname'}, |
| $amode,$genpwd)); |
$amode,$genpwd)); |
| $r->print('<br>Home server: '.&Apache::lonnet::homeserver |
$r->print('<br>Home server: '.&Apache::lonnet::homeserver |
| ($ENV{'form.cuname'},$ENV{'form.cdomain'})); |
($ENV{'form.cuname'},$ENV{'form.cdomain'})); |
| |
|
| } else { |
} else { |
| $r->print('Invalid login mode or password'); |
# Okay, this is a non-fatal error. |
| } |
$r->print($error.'You do not have the authority to modify '. |
| } else { |
'this users authentification information.'); |
| $r->print('Invalid username or domain'); |
} |
| } |
} |
| } |
## |
| my $now=time; |
my $now=time; |
| $r->print('<h3>Modifying Roles</h3>'); |
$r->print('<h3>Modifying Roles</h3>'); |
| map { |
foreach (keys (%ENV)) { |
| if (($_=~/^form\.rev\:([^\_]+)\_([^\_]+)$/) && ($ENV{$_})) { |
next if (! $ENV{$_}); |
| $r->print('Revoking '.$2.' in '.$1.': '. |
# Revoke roles |
| &Apache::lonnet::assignrole($ENV{'form.cdomain'},$ENV{'form.cuname'}, |
if ($_=~/^form\.rev/) { |
| $1,$2,$now).'<br>'); |
if ($_=~/^form\.rev\:([^\_]+)\_([^\_]+)$/) { |
| if ($2 eq 'st') { |
$r->print('Revoking '.$2.' in '.$1.': '. |
| $1=~/^\/(\w+)\/(\w+)/; |
&Apache::lonnet::assignrole($ENV{'form.cdomain'}, |
| my $cid=$1.'_'.$2; |
$ENV{'form.cuname'},$1,$2,$now).'<br>'); |
| $r->print('Drop from classlist: '. |
if ($2 eq 'st') { |
| &Apache::lonnet::critical('put:'.$ENV{'course.'.$cid.'.domain'}.':'. |
$1=~/^\/(\w+)\/(\w+)/; |
| $ENV{'course.'.$cid.'.num'}.':classlist:'. |
my $cid=$1.'_'.$2; |
| &Apache::lonnet::escape($ENV{'form.cuname'}.':'. |
$r->print('Drop from classlist: '. |
| $ENV{'form.cdomain'}).'='. |
&Apache::lonnet::critical('put:'. |
| &Apache::lonnet::escape($now.':'), |
$ENV{'course.'.$cid.'.domain'}.':'. |
| $ENV{'course.'.$cid.'.home'}).'<br>'); |
$ENV{'course.'.$cid.'.num'}.':classlist:'. |
| } |
&Apache::lonnet::escape($ENV{'form.cuname'}.':'. |
| } |
$ENV{'form.cdomain'}).'='. |
| } keys %ENV; |
&Apache::lonnet::escape($now.':'), |
| map { |
$ENV{'course.'.$cid.'.home'}).'<br>'); |
| if (($_=~/^form\.act\_([^\_]+)\_([^\_]+)\_([^\_]+)$/) && ($ENV{$_})) { |
} |
| my $url='/'.$1.'/'.$2; |
} |
| if ($ENV{'form.sec_'.$1.'_'.$2.'_'.$3}) { |
} elsif ($_=~/^form\.act/) { |
| $url.='/'.$ENV{'form.sec_'.$1.'_'.$2.'_'.$3}; |
if ($_=~/^form\.act\_([^\_]+)\_([^\_]+)\_([^\_]+)$/) { |
| } |
# Activate roles for sections with 3 id numbers |
| my $start=$now; |
# set start, end times, and the url for the class |
| if ($ENV{'form.start_'.$1.'_'.$2.'_'.$3}) { |
my $start = ( $ENV{'form.start_'.$1.'_'.$2} ? |
| $start=$ENV{'form.start_'.$1.'_'.$2.'_'.$3}; |
$ENV{'form.start_'.$1.'_'.$2} : |
| } |
$now ); |
| my $end=0; |
my $end = ( $ENV{'form.end_'.$1.'_'.$2} ? |
| if ($ENV{'form.end_'.$1.'_'.$2.'_'.$3}) { |
$ENV{'form.end_'.$1.'_'.$2} : |
| $end=$ENV{'form.end_'.$1.'_'.$2.'_'.$3}; |
0 ); |
| } |
my $url='/'.$1.'/'.$2; |
| $r->print('Assigning: '.$3.' in '.$url.': '. |
if ($ENV{'form.sec_'.$1.'_'.$2.'_'.$3}) { |
| &Apache::lonnet::assignrole($ENV{'form.cdomain'},$ENV{'form.cuname'}, |
$url.='/'.$ENV{'form.sec_'.$1.'_'.$2.'_'.$3}; |
| $url,$3,$end,$start).'<br>'); |
} |
| if ($3 eq 'st') { |
# Assign the role and report it |
| $url=~/^\/(\w+)\/(\w+)/; |
$r->print('Assigning: '.$3.' in '.$url.': '. |
| my $cid=$1.'_'.$2; |
&Apache::lonnet::assignrole( |
| $r->print('Add to classlist: '. |
$ENV{'form.cdomain'},$ENV{'form.cuname'}, |
| &Apache::lonnet::critical('put:'.$ENV{'course.'.$cid.'.domain'}.':'. |
$url,$3,$end,$start). |
| $ENV{'course.'.$cid.'.num'}.':classlist:'. |
'<br>'); |
| &Apache::lonnet::escape($ENV{'form.cuname'}.':'. |
# Handle students differently |
| $ENV{'form.cdomain'}).'='. |
if ($3 eq 'st') { |
| &Apache::lonnet::escape($end.':'.$start), |
$url=~/^\/(\w+)\/(\w+)/; |
| $ENV{'course.'.$cid.'.home'}).'<br>'); |
my $cid=$1.'_'.$2; |
| |
$r->print('Add to classlist: '. |
| |
&Apache::lonnet::critical( |
| |
'put:'.$ENV{'course.'.$cid.'.domain'}.':'. |
| |
$ENV{'course.'.$cid.'.num'}.':classlist:'. |
| |
&Apache::lonnet::escape( |
| |
$ENV{'form.cuname'}.':'. |
| |
$ENV{'form.cdomain'} ).'='. |
| |
&Apache::lonnet::escape($end.':'.$start), |
| |
$ENV{'course.'.$cid.'.home'}) |
| |
.'<br>'); |
| |
} |
| |
} elsif ($_=~/^form\.act\_([^\_]+)\_([^\_]+)$/) { |
| |
# Activate roles for sections with two id numbers |
| |
# set start, end times, and the url for the class |
| |
my $start = ( $ENV{'form.start_'.$1.'_'.$2} ? |
| |
$ENV{'form.start_'.$1.'_'.$2} : |
| |
$now ); |
| |
my $end = ( $ENV{'form.end_'.$1.'_'.$2} ? |
| |
$ENV{'form.end_'.$1.'_'.$2} : |
| |
0 ); |
| |
my $url='/'.$1.'/'; |
| |
# Assign the role and report it. |
| |
$r->print('Assigning: '.$2.' in '.$url.': '. |
| |
&Apache::lonnet::assignrole( |
| |
$ENV{'form.cdomain'},$ENV{'form.cuname'}, |
| |
$url,$2,$end,$start) |
| |
.'<br>'); |
| } |
} |
| } elsif (($_=~/^form\.act\_([^\_]+)\_([^\_]+)$/) && ($ENV{$_})) { |
} |
| my $url='/'.$1.'/'; |
} # End of foreach (keys(%ENV)) |
| my $start=$now; |
|
| if ($ENV{'form.start_'.$1.'_'.$2}) { |
|
| $start=$ENV{'form.start_'.$1.'_'.$2}; |
|
| } |
|
| my $end=0; |
|
| if ($ENV{'form.end_'.$1.'_'.$2}) { |
|
| $end=$ENV{'form.end_'.$1.'_'.$2}; |
|
| } |
|
| $r->print('Assigning: '.$2.' in '.$url.': '. |
|
| &Apache::lonnet::assignrole($ENV{'form.cdomain'},$ENV{'form.cuname'}, |
|
| $url,$2,$end,$start).'<br>'); |
|
| } |
|
| } keys %ENV; |
|
| $r->print('</body></html>'); |
$r->print('</body></html>'); |
| } |
} |
| |
|
|
Line 739 sub handler {
|
Line 755 sub handler {
|
| return OK; |
return OK; |
| } |
} |
| |
|
| |
#-------------------------------------------------- functions for &phase_two |
| |
sub course_level_table { |
| |
my %inccourses = @_; |
| |
my $table = ''; |
| |
foreach (sort( keys(%inccourses))) { |
| |
my $thiscourse=$_; |
| |
my $protectedcourse=$_; |
| |
$thiscourse=~s:_:/:g; |
| |
my %coursedata=&Apache::lonnet::coursedescription($thiscourse); |
| |
my $area=$coursedata{'description'}; |
| |
my $bgcol=$thiscourse; |
| |
$bgcol=~s/[^8-9b-e]//g; |
| |
$bgcol=substr($bgcol.$bgcol.$bgcol.'ffffff',0,6); |
| |
foreach ('st','ta','ep','ad','in','cc') { |
| |
if (&Apache::lonnet::allowed('c'.$_,$thiscourse)) { |
| |
my $plrole=&Apache::lonnet::plaintext($_); |
| |
$table .= <<ENDEXTENT; |
| |
<tr bgcolor="#$bgcol"> |
| |
<td><input type="checkbox" name="act_$protectedcourse\_$_"></td> |
| |
<td>$plrole</td> |
| |
<td>$area</td> |
| |
ENDEXTENT |
| |
if ($_ ne 'cc') { |
| |
$table .= <<ENDSECTION; |
| |
<td><input type="text" size="5" name="sec_$protectedcourse\_$_"></td> |
| |
ENDSECTION |
| |
} else { |
| |
$table .= <<ENDSECTION; |
| |
<td> </td> |
| |
ENDSECTION |
| |
} |
| |
$table .= <<ENDTIMEENTRY; |
| |
<td><input type=hidden name="start_$protectedcourse\_$_" value=''> |
| |
<a href= |
| |
"javascript:pjump('date_start','Start Date $plrole',document.cu.start_$protectedcourse\_$_.value,'start_$protectedcourse\_$_','cu.pres','dateset')">Set Start Date</a></td> |
| |
<td><input type=hidden name="end_$protectedcourse\_$_" value=''> |
| |
<a href= |
| |
"javascript:pjump('date_end','End Date $plrole',document.cu.end_$protectedcourse\_$_.value,'end_$protectedcourse\_$_','cu.pres','dateset')">Set End Date</a></td> |
| |
ENDTIMEENTRY |
| |
$table.= "</tr>\n"; |
| |
} |
| |
} |
| |
} |
| |
return '' if ($table eq ''); # return nothing if there is nothing |
| |
# in the table |
| |
my $result = <<ENDTABLE; |
| |
<h4>Course Level</h4> |
| |
<table border=2><tr><th>Activate</th><th>Role</th><th>Extent</th> |
| |
<th>Group/Section</th><th>Start</th><th>End</th></tr> |
| |
$table |
| |
</table> |
| |
ENDTABLE |
| |
return $result; |
| |
} |
| |
#---------------------------------------------- end functions for &phase_two |
| |
|
| 1; |
1; |
| __END__ |
__END__ |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to loncreateuser.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / interface