version 1.40, 2002/08/21 17:18:08
|
version 1.44, 2002/11/18 20:06:53
|
Line 80 BEGIN {
|
Line 80 BEGIN {
|
$authformloc = &Apache::loncommon::authform_local(%param); |
$authformloc = &Apache::loncommon::authform_local(%param); |
} |
} |
|
|
|
|
|
|
|
# ==================================================== Figure out author access |
|
|
|
sub authorpriv { |
|
my ($auname,$audom)=@_; |
|
if (($auname ne $ENV{'user.name'}) || |
|
(($audom ne $ENV{'user.domain'}) && |
|
($audom ne $ENV{'request.role.domain'}))) { return ''; } |
|
unless (&Apache::lonnet::allowed('cca',$audom)) { return ''; } |
|
return 1; |
|
} |
|
|
# =================================================================== Phase one |
# =================================================================== Phase one |
|
|
sub phase_one { |
sub print_username_entry_form { |
my $r=shift; |
my $r=shift; |
my $defdom=$ENV{'user.domain'}; |
my $defdom=$ENV{'request.role.domain'}; |
my @domains = &Apache::loncommon::get_domains(); |
my @domains = &Apache::loncommon::get_domains(); |
my $domform = &Apache::loncommon::select_dom_form($defdom,'ccdomain'); |
my $domform = &Apache::loncommon::select_dom_form($defdom,'ccdomain'); |
my $bodytag =&Apache::loncommon::bodytag( |
my $bodytag =&Apache::loncommon::bodytag( |
Line 95 sub phase_one {
|
Line 108 sub phase_one {
|
<title>The LearningOnline Network with CAPA</title> |
<title>The LearningOnline Network with CAPA</title> |
</head> |
</head> |
$bodytag |
$bodytag |
<form action=/adm/createuser method=post> |
<form action="/adm/createuser" method="post"> |
<input type=hidden name=phase value=two> |
<input type="hidden" name="phase" value="get_user_info"> |
<p> |
<p> |
Username: <input type=text size=15 name=ccuname><br> |
<table> |
Domain: $domform |
<tr><td>Username:</td><td><input type="text" size="15" name="ccuname"> |
|
</td></tr><tr><td> |
|
Domain:</td><td>$domform</td></tr> |
|
</table> |
</p> |
</p> |
<input type=submit value="Continue"> |
<input type="submit" value="Continue"> |
</form> |
</form> |
</body> |
</body> |
</html> |
</html> |
Line 109 ENDDOCUMENT
|
Line 125 ENDDOCUMENT
|
} |
} |
|
|
# =================================================================== Phase two |
# =================================================================== Phase two |
sub phase_two { |
sub print_user_modification_page { |
my $r=shift; |
my $r=shift; |
my $ccuname=$ENV{'form.ccuname'}; |
my $ccuname=$ENV{'form.ccuname'}; |
my $ccdomain=$ENV{'form.ccdomain'}; |
my $ccdomain=$ENV{'form.ccdomain'}; |
Line 122 sub phase_two {
|
Line 138 sub phase_two {
|
); |
); |
$loginscript = &Apache::loncommon::authform_header(%param); |
$loginscript = &Apache::loncommon::authform_header(%param); |
|
|
my $defdom=$ENV{'user.domain'}; |
my $defdom=$ENV{'request.role.domain'}; |
|
|
$ccuname=~s/\W//g; |
$ccuname=~s/\W//g; |
$ccdomain=~s/\W//g; |
$ccdomain=~s/\W//g; |
Line 160 ENDDOCHEAD
|
Line 176 ENDDOCHEAD
|
'Create Users, Change User Privileges')); |
'Create Users, Change User Privileges')); |
my $forminfo =<<"ENDFORMINFO"; |
my $forminfo =<<"ENDFORMINFO"; |
<form action="/adm/createuser" method="post" name="cu"> |
<form action="/adm/createuser" method="post" name="cu"> |
<input type="hidden" name="phase" value="three"> |
<input type="hidden" name="phase" value="update_user_data"> |
<input type="hidden" name="ccuname" value="$ccuname"> |
<input type="hidden" name="ccuname" value="$ccuname"> |
<input type="hidden" name="ccdomain" value="$ccdomain"> |
<input type="hidden" name="ccdomain" value="$ccdomain"> |
<input type="hidden" name="pres_value" value="" > |
<input type="hidden" name="pres_value" value="" > |
Line 294 END
|
Line 310 END
|
} |
} |
} |
} |
} |
} |
# I have no idea what the hell the above code does |
if ($role_code eq 'ca') { |
# So the following is a check: |
$area=~/\/(\w+)\/(\w+)/; |
if ($allowed) { |
if (&authorpriv($2,$1)) { |
# If we are looking at a co-author role, make sure it is |
$allowed=1; |
# for the current users construction space before we let |
} else { |
# them revoke it. |
$allowed=0; |
if (($role_code eq 'ca') && |
|
($ENV{'request.role'} !~ /^dc/)) { |
|
if ($area !~ |
|
/^\/$ENV{'user.domain'}\/$ENV{'user.name'}/) { |
|
$allowed = 0; |
|
} |
|
} |
} |
} |
} |
my $row = ''; |
my $row = ''; |
Line 329 END
|
Line 339 END
|
$r->print('</table>'); |
$r->print('</table>'); |
} # End of unless |
} # End of unless |
my $currentauth=&Apache::lonnet::queryauthenticate($ccuname,$ccdomain); |
my $currentauth=&Apache::lonnet::queryauthenticate($ccuname,$ccdomain); |
if ($currentauth=~/^krb4:/) { |
if ($currentauth=~/^krb(4|5):/) { |
$currentauth=~/^krb4:(.*)/; |
$currentauth=~/^krb(4|5):(.*)/; |
my $krbdefdom2=$1; |
my $krbdefdom2=$1; |
my %param = ( formname => 'document.cu', |
my %param = ( formname => 'document.cu', |
kerb_def_dom => $krbdefdom |
kerb_def_dom => $krbdefdom |
Line 338 END
|
Line 348 END
|
$loginscript = &Apache::loncommon::authform_header(%param); |
$loginscript = &Apache::loncommon::authform_header(%param); |
} |
} |
# Check for a bad authentication type |
# Check for a bad authentication type |
unless ($currentauth=~/^krb4:/ or |
unless ($currentauth=~/^krb(4|5):/ or |
$currentauth=~/^unix:/ or |
$currentauth=~/^unix:/ or |
$currentauth=~/^internal:/ or |
$currentauth=~/^internal:/ or |
$currentauth=~/^localauth:/ |
$currentauth=~/^localauth:/ |
) { # bad authentication scheme |
) { # bad authentication scheme |
if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) { |
if (&Apache::lonnet::allowed('mau',$ENV{'request.role.domain'})) { |
$r->print(<<ENDBADAUTH); |
$r->print(<<ENDBADAUTH); |
<hr /> |
<hr /> |
<script type="text/javascript" language="Javascript"> |
<script type="text/javascript" language="Javascript"> |
Line 376 ENDBADAUTH
|
Line 386 ENDBADAUTH
|
} else { # Authentication type is valid |
} else { # Authentication type is valid |
my $authformcurrent=''; |
my $authformcurrent=''; |
my $authform_other=''; |
my $authform_other=''; |
if ($currentauth=~/^krb4:/) { |
if ($currentauth=~/^krb(4|5):/) { |
$authformcurrent=$authformkrb; |
$authformcurrent=$authformkrb; |
$authform_other="<p>$authformint</p>\n". |
$authform_other="<p>$authformint</p>\n". |
"<p>$authformfsys</p><p>$authformloc</p>"; |
"<p>$authformfsys</p><p>$authformloc</p>"; |
Line 406 ENDBADAUTH
|
Line 416 ENDBADAUTH
|
<td bgcolor='#cbbcbb'>Changing this value will overwrite existing authentication for the user; you should notify the user of this change.</td></tr> |
<td bgcolor='#cbbcbb'>Changing this value will overwrite existing authentication for the user; you should notify the user of this change.</td></tr> |
</table> |
</table> |
ENDCURRENTAUTH |
ENDCURRENTAUTH |
if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) { |
if (&Apache::lonnet::allowed('mau',$ENV{'request.role.domain'})) { |
# Current user has login modification privileges |
# Current user has login modification privileges |
$r->print(<<ENDOTHERAUTHS); |
$r->print(<<ENDOTHERAUTHS); |
<hr /> |
<hr /> |
Line 427 ENDOTHERAUTHS
|
Line 437 ENDOTHERAUTHS
|
# |
# |
# Co-Author |
# Co-Author |
# |
# |
|
if (&authorpriv($ENV{'user.name'},$ENV{'request.role.domain'}) && |
if (&Apache::lonnet::allowed('cca',$ENV{'user.domain'})) { |
($ENV{'user.name'} ne $ccuname || $ENV{'user.domain'} ne $ccdomain)) { |
|
# No sense in assigning co-author role to yourself |
my $cuname=$ENV{'user.name'}; |
my $cuname=$ENV{'user.name'}; |
my $cudom=$ENV{'user.domain'}; |
my $cudom=$ENV{'request.role.domain'}; |
$r->print(<<ENDCOAUTH); |
$r->print(<<ENDCOAUTH); |
<h4>Construction Space</h4> |
<h4>Construction Space</h4> |
<table border=2><tr><th>Activate</th><th>Role</th><th>Extent</th> |
<table border=2><tr><th>Activate</th><th>Role</th><th>Extent</th> |
Line 486 ENDDROW
|
Line 497 ENDDROW
|
} |
} |
|
|
# ================================================================= Phase Three |
# ================================================================= Phase Three |
sub phase_three { |
sub update_user_data { |
my $r=shift; |
my $r=shift; |
my $uhome=&Apache::lonnet::homeserver($ENV{'form.ccuname'}, |
my $uhome=&Apache::lonnet::homeserver($ENV{'form.ccuname'}, |
$ENV{'form.ccdomain'}); |
$ENV{'form.ccdomain'}); |
Line 541 ENDTHREEHEAD
|
Line 552 ENDTHREEHEAD
|
my $amode=''; |
my $amode=''; |
my $genpwd=''; |
my $genpwd=''; |
if ($ENV{'form.login'} eq 'krb') { |
if ($ENV{'form.login'} eq 'krb') { |
$amode='krb4'; |
$amode='krb'; |
|
$amode.=$ENV{'form.krbver'}; |
$genpwd=$ENV{'form.krbarg'}; |
$genpwd=$ENV{'form.krbarg'}; |
} elsif ($ENV{'form.login'} eq 'int') { |
} elsif ($ENV{'form.login'} eq 'int') { |
$amode='internal'; |
$amode='internal'; |
Line 782 sub handler {
|
Line 794 sub handler {
|
(&Apache::lonnet::allowed('cin',$ENV{'request.course.id'})) || |
(&Apache::lonnet::allowed('cin',$ENV{'request.course.id'})) || |
(&Apache::lonnet::allowed('ccr',$ENV{'request.course.id'})) || |
(&Apache::lonnet::allowed('ccr',$ENV{'request.course.id'})) || |
(&Apache::lonnet::allowed('cep',$ENV{'request.course.id'})) || |
(&Apache::lonnet::allowed('cep',$ENV{'request.course.id'})) || |
(&Apache::lonnet::allowed('cca',$ENV{'user.domain'})) || |
(&Apache::lonnet::allowed('cca',$ENV{'request.role.domain'})) || |
(&Apache::lonnet::allowed('mau',$ENV{'user.domain'}))) { |
(&Apache::lonnet::allowed('mau',$ENV{'request.role.domain'}))) { |
$r->content_type('text/html'); |
$r->content_type('text/html'); |
$r->send_http_header; |
$r->send_http_header; |
unless ($ENV{'form.phase'}) { |
unless ($ENV{'form.phase'}) { |
&phase_one($r); |
&print_username_entry_form($r); |
} |
} |
if ($ENV{'form.phase'} eq 'two') { |
if ($ENV{'form.phase'} eq 'get_user_info') { |
&phase_two($r); |
&print_user_modification_page($r); |
} elsif ($ENV{'form.phase'} eq 'three') { |
} elsif ($ENV{'form.phase'} eq 'update_user_data') { |
&phase_three($r); |
&update_user_data($r); |
} |
} |
} else { |
} else { |
$ENV{'user.error.msg'}= |
$ENV{'user.error.msg'}= |