--- loncom/interface/loncreateuser.pm 2003/02/13 21:35:50 1.48
+++ loncom/interface/loncreateuser.pm 2005/06/06 00:06:12 1.102
@@ -1,7 +1,7 @@
# The LearningOnline Network with CAPA
# Create a user
-# $Id: loncreateuser.pm,v 1.48 2003/02/13 21:35:50 albertel Exp $
+# $Id: loncreateuser.pm,v 1.102 2005/06/06 00:06:12 albertel Exp $
# Copyright Michigan State University Board of Trustees
@@ -25,35 +25,45 @@
# http://www.lon-capa.org/
-# (Create a course
-# (My Desk
-# (Internal Server Error Handler
-# (Login Screen
-# 5/21/99,5/22,5/25,5/26,5/31,6/2,6/10,7/12,7/14,
-# 1/14/00,5/29,5/30,6/1,6/29,7/1,11/9 Gerd Kortemeyer)
-# YEAR=2001
-# 3/1/1 Gerd Kortemeyer)
-# 3/1 Gerd Kortemeyer)
-# 2/14 Gerd Kortemeyer)
-# 2/14,2/17,2/19,2/20,2/21,2/22,2/23,3/2,3/17,3/24,04/12 Gerd Kortemeyer
-# April Guy Albertelli
-# 05/10,10/16 Gerd Kortemeyer
-# 02/11/02 Matthew Hall
-# $Id: loncreateuser.pm,v 1.48 2003/02/13 21:35:50 albertel Exp $
package Apache::loncreateuser;
+=head1 NAME
+Apache::loncreateuser - handler to create users and custom roles
+=head1 SYNOPSIS
+Apache::loncreateuser provides an Apache handler for creating users,
+ editing their login parameters, roles, and removing roles, and
+ also creating and assigning custom roles.
+=head1 OVERVIEW
+=head2 Custom Roles
+In LON-CAPA, roles are actually collections of privileges. "Teaching
+Assistant", "Course Coordinator", and other such roles are really just
+collection of privileges that are useful in many circumstances.
+Creating custom roles can be done by the Domain Coordinator through
+the Create User functionality. That screen will show all privileges
+that can be assigned to users. For a complete list of privileges,
+please see C.
+Custom role definitions are stored in the C file of the role
use strict;
use Apache::Constants qw(:common :http);
use Apache::lonnet;
+use Apache::loncommon;
+use Apache::lonlocal;
my $loginscript; # piece of javascript used in two separate instances
my $generalrule;
@@ -63,10 +73,9 @@ my $authformint;
my $authformfsys;
my $authformloc;
- $ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/;
- my $krbdefdom=$1;
- $krbdefdom=~tr/a-z/A-Z/;
+sub initialize_authen_forms {
+ my ($krbdefdom)=( $ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/);
+ $krbdefdom= uc($krbdefdom);
my %param = ( formname => 'document.cu',
kerb_def_dom => $krbdefdom
@@ -82,14 +91,26 @@ BEGIN {
+# ======================================================= Existing Custom Roles
+sub my_custom_roles {
+ my %returnhash=();
+ my %rolehash=&Apache::lonnet::dump('roles');
+ foreach (keys %rolehash) {
+ if ($_=~/^rolesdef\_(\w+)$/) {
+ $returnhash{$1}=$1;
+ }
+ }
+ return %returnhash;
# ==================================================== Figure out author access
sub authorpriv {
my ($auname,$audom)=@_;
- if (($auname ne $ENV{'user.name'}) ||
- (($audom ne $ENV{'user.domain'}) &&
- ($audom ne $ENV{'request.role.domain'}))) { return ''; }
+ if (($auname ne $env{'user.name'}) ||
+ (($audom ne $env{'user.domain'}) &&
+ ($audom ne $env{'request.role.domain'}))) { return ''; }
unless (&Apache::lonnet::allowed('cca',$audom)) { return ''; }
return 1;
@@ -98,16 +119,30 @@ sub authorpriv {
sub print_username_entry_form {
my $r=shift;
- my $defdom=$ENV{'request.role.domain'};
+ my $defdom=$env{'request.role.domain'};
my @domains = &Apache::loncommon::get_domains();
my $domform = &Apache::loncommon::select_dom_form($defdom,'ccdomain');
- my $bodytag =&Apache::loncommon::bodytag(
- 'Create Users, Change User Privileges');
+ my $html=&Apache::lonxml::xmlbegin();
+ my $bodytag =&Apache::loncommon::bodytag('Create Users, Change User Privileges').&Apache::loncommon::help_open_menu('',undef,undef,'',282,'Instructor Interface');
my $selscript=&Apache::loncommon::studentbrowser_javascript();
my $sellink=&Apache::loncommon::selectstudent_link
+ my %existingroles=&my_custom_roles();
+ my $choice=&Apache::loncommon::select_form('make new role','rolename',
+ ('make new role' => 'Generate new role ...',%existingroles));
+ my %lt=&Apache::lonlocal::texthash(
+ 'siur' => "Set Individual User Roles",
+ 'usr' => "Username",
+ 'dom' => "Domain",
+ 'usrr' => "User Roles",
+ 'ecrp' => "Edit Custom Role Privileges",
+ 'nr' => "Name of Role",
+ 'cre' => "Custom Role Editor"
+ );
+ my $helpsiur=&Apache::loncommon::help_open_topic('Course_Change_Privileges');
+ my $helpecpr=&Apache::loncommon::help_open_topic('Course_Editing_Custom_Roles');
The LearningOnline Network with CAPA
@@ -115,15 +150,19 @@ $selscript