--- loncom/interface/loncreateuser.pm	2001/02/15 00:57:41	1.1
+++ loncom/interface/loncreateuser.pm	2001/02/19 22:58:53	1.2
@@ -16,7 +16,7 @@
 #
 # 2/14 Gerd Kortemeyer)
 #
-# 2/14 Gerd Kortemeyer
+# 2/14,2/17,2/19 Gerd Kortemeyer
 #
 package Apache::loncreateuser;
 
@@ -24,20 +24,11 @@ use strict;
 use Apache::Constants qw(:common :http);
 use Apache::lonnet;
 
-sub handler {
-    my $r = shift;
-
-    if ($r->header_only) {
-       $r->content_type('text/html');
-       $r->send_http_header;
-       return OK;
-    }
-
-    if (&Apache::lonnet::allowed('ccc',$ENV{'user.domain'})) {
-       $r->content_type('text/html');
-       $r->send_http_header;
-
+# =================================================================== Phase one
 
+sub phase_one {
+    my $r=shift;
+    my $defdom=$ENV{'user.domain'};
     $r->print(<<ENDDOCUMENT);
 <html>
 <head>
@@ -45,14 +36,155 @@ sub handler {
 </head>
 <body bgcolor="#FFFFFF">
 <h1>Create User, Change User Privileges</h1>
-<img src="/adm/lonKaputt/lonconstruct.gif">
+<form action=/adm/createuser method=post>
+<input type=hidden name=phase value=two>
+Username: <input type=text size=15 name=ccuname><br>
+Domain: <input type=text size=15 name=ccdomain value=$defdom><p>
+<input type=submit value="Continue">
+</form>
 </body>
 </html>
 ENDDOCUMENT
+}
+
+# =================================================================== Phase two
+
+sub phase_two {
+    my $r=shift;
+    my $ccuname=$ENV{'form.ccuname'};
+    my $ccdomain=$ENV{'form.ccdomain'};
+    $ccuname=~s/\W//g;
+    $ccdomain=~s/\W//g;
+    $r->print(<<ENDENHEAD);
+<html>
+<head>
+<title>The LearningOnline Network with CAPA</title>
+</head>
+<body bgcolor="#FFFFFF">
+<img align=right src=/adm/lonIcons/lonlogos.gif>
+<h1>Create User, Change User Privileges</h1>
+<form action=/adm/createuser method=post>
+<input type=hidden name=phase value=three>
+<input type=hidden name=ccuname value=$ccuname>
+<input type=hidden name=ccdomain value=$ccdomain>
+ENDENHEAD
+    my $uhome=&Apache::lonnet::homeserver($ccuname,$ccdomain);
+    my %incdomains; 
+    my %inccourses;
+    $incdomains{$ENV{'user.domain'}}=1;
+    map {
+	if ($_=~/^user\.priv\.cm\.\/(\w+)\/(\w+)/) {
+	    $inccourses{$1.'_'.$2}=1;
+        }
+    } %ENV;
+    if ($uhome eq 'no_host') {
+	$r->print('<h3>New user '.$ccuname.' at '.$ccdomain.'</h3>');
+    } else {
+	$r->print('<h3>Existing user '.$ccuname.' at '.$ccdomain.'</h3>');
+        my $rolesdump=&Apache::lonnet::reply(
+                                  "dump:$ccdomain:$ccuname:roles",$uhome);
+        unless ($rolesdump eq 'con_lost') { 
+           my $now=time;
+           $r->print('<h4>Revoke Existing Roles</h4>'.
+             '<table border=2><tr><th>Revoke</th><th>Role</th><th>Extent</th>'.
+		     '<th>Start</th><th>End</th>');
+           map {
+             if ($_!~/^rolesdef\&/) {
+
+              my ($area,$role)=split(/=/,$_);
+              my $thisrole=$area;
+              $area=~s/\_\w\w$//;
+              my ($trole,$tend,$tstart)=split(/_/,$role);
+
+              my $allows=0;
+              if ($area=~/^\/(\w+)\/(\d\w+)\/(\w+)/) {
+                 my %coursedata=&Apache::lonnet::coursedescription($1.'_'.$2);
+                 $area='Course: '.
+                          $coursedata{'description'}.'<br>Section/Group: '.$3;
+                 $inccourses{$1.'_'.$2}=1;
+                 if (&Apache::lonnet::allowed('c'.$trole,$1.'_'.$2)) {
+		     $allows=1;
+                 }
+	      } else {
+                 if ($1) {
+		     $incdomains{$1}=1;
+                     if (&Apache::lonnet::allowed('c'.$trole,$1)) {
+			 $allows=1;
+                     }
+                 }
+	      }
+
+              my $active=1;
+              if (($tend) && ($now>$tend)) { $active=0; }
+
+              $r->print('<tr><td>');
+              if ($active) {
+                  if ($allows) {
+		     $r->print(
+                             '<input type=checkbox name="rev:'.$thisrole.'">');
+		 } else {
+                     $r->print('&nbsp;');
+                 }
+              } else {
+                  $r->print('&nbsp;');
+              }
+              $r->print('</td><td>'.&Apache::lonnet::plaintext($trole).
+                        '</td><td>'.$area.'</td><td>'.
+                        ($tstart?localtime($tstart):'&nbsp;').'</td><td>'.
+                        ($tend?localtime($tend):'&nbsp;')."</td></tr>\n");
+	     }
+	   } split(/&/,$rolesdump);
+	   $r->print('</table>');
+         }   
+    }
+    $r->print('<hr><h4>Add Roles</h4><h5>System Level</h5>');
+    $r->print('<h5>Domain Level</h5>');
+    map {
+	my $thisdomain=$_;
+        map {
+            if (&Apache::lonnet::allowed('c'.$_,$thisdomain)) {
+		$r->print($_.' - '.$thisdomain.'<br>');
+            }
+        } ('dc','cc','li','dg','au');
+    } sort keys %incdomains;
+    $r->print('<h5>Course Level</h5>');
+    map {
+	my $thiscourse=$_;
+        map {
+            if (&Apache::lonnet::allowed('c'.$_,$thiscourse)) {
+		$r->print($_.' - '.$thiscourse.'<br>');
+            }
+        } ('st','ta','ep','ad','in');
+    } sort keys %inccourses;
+    $r->print('</form></body></html>');
+}
 
+# ================================================================ Main Handler
+sub handler {
+    my $r = shift;
+
+    if ($r->header_only) {
+       $r->content_type('text/html');
+       $r->send_http_header;
+       return OK;
+    }
+
+    if ((&Apache::lonnet::allowed('cta',$ENV{'request.course.id'})) ||
+        (&Apache::lonnet::allowed('cin',$ENV{'request.course.id'})) || 
+        (&Apache::lonnet::allowed('ccr',$ENV{'request.course.id'})) || 
+        (&Apache::lonnet::allowed('cep',$ENV{'request.course.id'})) ||
+        (&Apache::lonnet::allowed('mau',$ENV{'user.domain'}))) {
+       $r->content_type('text/html');
+       $r->send_http_header;
+       unless ($ENV{'form.phase'}) {
+	   &phase_one($r);
+       }
+       if ($ENV{'form.phase'} eq 'two') {
+           &phase_two($r);
+       }
    } else {
       $ENV{'user.error.msg'}=
-        "/adm/createcourse:ccc:0:0:Cannot create courses";
+        "/adm/createcourse:mau:0:0:Cannot modify user data";
       return HTTP_NOT_ACCEPTABLE; 
    }
    return OK;
@@ -60,3 +192,5 @@ ENDDOCUMENT
 
 1;
 __END__
+
+