Annotation of loncom/interface/loncreateuser.pm, revision 1.28
1.20 harris41 1: # The LearningOnline Network with CAPA
1.1 www 2: # Create a user
3: #
1.28 ! matthew 4: # $Id: loncreateuser.pm,v 1.27 2002/02/12 21:42:18 matthew Exp $
1.22 albertel 5: #
6: # Copyright Michigan State University Board of Trustees
7: #
8: # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
9: #
10: # LON-CAPA is free software; you can redistribute it and/or modify
11: # it under the terms of the GNU General Public License as published by
12: # the Free Software Foundation; either version 2 of the License, or
13: # (at your option) any later version.
14: #
15: # LON-CAPA is distributed in the hope that it will be useful,
16: # but WITHOUT ANY WARRANTY; without even the implied warranty of
17: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18: # GNU General Public License for more details.
19: #
20: # You should have received a copy of the GNU General Public License
21: # along with LON-CAPA; if not, write to the Free Software
22: # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
23: #
24: # /home/httpd/html/adm/gpl.txt
25: #
26: # http://www.lon-capa.org/
27: #
1.1 www 28: # (Create a course
29: # (My Desk
30: #
31: # (Internal Server Error Handler
32: #
33: # (Login Screen
34: # 5/21/99,5/22,5/25,5/26,5/31,6/2,6/10,7/12,7/14,
35: # 1/14/00,5/29,5/30,6/1,6/29,7/1,11/9 Gerd Kortemeyer)
36: #
1.20 harris41 37: # YEAR=2001
1.1 www 38: # 3/1/1 Gerd Kortemeyer)
39: #
40: # 3/1 Gerd Kortemeyer)
41: #
42: # 2/14 Gerd Kortemeyer)
43: #
1.12 www 44: # 2/14,2/17,2/19,2/20,2/21,2/22,2/23,3/2,3/17,3/24,04/12 Gerd Kortemeyer
1.17 www 45: # April Guy Albertelli
1.19 www 46: # 05/10,10/16 Gerd Kortemeyer
1.20 harris41 47: # 11/12,11/13,11/15 Scott Harrison
1.25 matthew 48: # 02/11/02 Matthew Hall
1.1 www 49: #
1.28 ! matthew 50: # $Id: loncreateuser.pm,v 1.27 2002/02/12 21:42:18 matthew Exp $
1.20 harris41 51: ###
52:
1.1 www 53: package Apache::loncreateuser;
54:
55: use strict;
56: use Apache::Constants qw(:common :http);
57: use Apache::lonnet;
58:
1.20 harris41 59: my $loginscript; # piece of javascript used in two separate instances
60: my $generalrule;
61: my $authformnop;
62: my $authformkrb;
63: my $authformint;
64: my $authformfsys;
65: my $authformloc;
66:
1.23 harris41 67: BEGIN {
1.20 harris41 68: $ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/;
69: my $krbdefdom=$1;
70: $krbdefdom=~tr/a-z/A-Z/;
71: $authformnop=(<<END);
72: <p>
1.27 matthew 73: <input type="radio" name="login" value="" checked="checked"
1.20 harris41 74: onClick="clicknop(this.form);">
75: Do not change login data
76: </p>
77: END
78: $authformkrb=(<<END);
79: <p>
80: <input type=radio name=login value=krb onClick="clickkrb(this.form);">
81: Kerberos authenticated with domain
82: <input type=text size=10 name=krbdom onChange="setkrb(this.form);">
83: </p>
84: END
85: $authformint=(<<END);
86: <p>
87: <input type=radio name=login value=int onClick="clickint(this.form);">
88: Internally authenticated (with initial password
89: <input type=text size=10 name=intpwd onChange="setint(this.form);">)
90: </p>
91: END
92: $authformfsys=(<<END);
93: <p>
94: <input type=radio name=login value=fsys onClick="clickfsys(this.form);">
95: Filesystem authenticated (with initial password
96: <input type=text size=10 name=fsyspwd onChange="setfsys(this.form);">)
97: </p>
98: END
99: $authformloc=(<<END);
100: <p>
101: <input type=radio name=login value=loc onClick="clickloc(this.form);" />
102: Local Authentication with argument
103: <input type=text size=10 name=locarg onChange="setloc(this.form);" />
104: </p>
105: END
106: $loginscript=(<<ENDLOGINSCRIPT);
107: <script>
108: function setkrb(vf) {
109: if (vf.krbdom.value!='') {
110: vf.login[0].checked=true;
111: vf.krbdom.value=vf.krbdom.value.toUpperCase();
112: vf.intpwd.value='';
113: vf.fsyspwd.value='';
114: vf.locarg.value='';
115: }
116: }
117:
118: function setint(vf) {
119: if (vf.intpwd.value!='') {
120: vf.login[1].checked=true;
121: vf.krbdom.value='';
122: vf.fsyspwd.value='';
123: vf.locarg.value='';
124: }
125: }
126:
127: function setfsys(vf) {
128: if (vf.fsyspwd.value!='') {
129: vf.login[2].checked=true;
130: vf.krbdom.value='';
131: vf.intpwd.value='';
132: vf.locarg.value='';
133: }
134: }
135:
136: function setloc(vf) {
137: if (vf.locarg.value!='') {
138: vf.login[3].checked=true;
139: vf.krbdom.value='';
140: vf.intpwd.value='';
141: vf.fsyspwd.value='';
142: }
143: }
144:
145: function clicknop(vf) {
146: vf.krbdom.value='';
147: vf.intpwd.value='';
148: vf.fsyspwd.value='';
149: vf.locarg.value='';
150: }
151:
152: function clickkrb(vf) {
153: vf.krbdom.value='$krbdefdom';
154: vf.intpwd.value='';
155: vf.fsyspwd.value='';
156: vf.locarg.value='';
157: }
158:
159: function clickint(vf) {
160: vf.krbdom.value='';
161: vf.fsyspwd.value='';
162: vf.locarg.value='';
163: }
164:
165: function clickfsys(vf) {
166: vf.krbdom.value='';
167: vf.intpwd.value='';
168: vf.locarg.value='';
169: }
170:
171: function clickloc(vf) {
172: vf.krbdom.value='';
173: vf.intpwd.value='';
174: vf.fsyspwd.value='';
175: }
176: </script>
177: ENDLOGINSCRIPT
178: $generalrule=<<END;
179: <p>
180: <i>As a general rule, only authors or co-authors should be filesystem
181: authenticated (which allows access to the server filesystem).</i>
182: </p>
183: END
184: }
185:
1.2 www 186: # =================================================================== Phase one
1.1 www 187:
1.2 www 188: sub phase_one {
189: my $r=shift;
190: my $defdom=$ENV{'user.domain'};
1.1 www 191: $r->print(<<ENDDOCUMENT);
192: <html>
193: <head>
194: <title>The LearningOnline Network with CAPA</title>
195: </head>
196: <body bgcolor="#FFFFFF">
197: <h1>Create User, Change User Privileges</h1>
1.2 www 198: <form action=/adm/createuser method=post>
199: <input type=hidden name=phase value=two>
200: Username: <input type=text size=15 name=ccuname><br>
201: Domain: <input type=text size=15 name=ccdomain value=$defdom><p>
202: <input type=submit value="Continue">
203: </form>
1.1 www 204: </body>
205: </html>
206: ENDDOCUMENT
1.2 www 207: }
208:
209: # =================================================================== Phase two
210: sub phase_two {
211: my $r=shift;
212: my $ccuname=$ENV{'form.ccuname'};
213: my $ccdomain=$ENV{'form.ccdomain'};
1.4 www 214:
215: $ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/;
216: my $krbdefdom=$1;
217: $krbdefdom=~tr/a-z/A-Z/;
218:
219: my $defdom=$ENV{'user.domain'};
220:
1.2 www 221: $ccuname=~s/\W//g;
222: $ccdomain=~s/\W//g;
1.25 matthew 223: my $dochead =<<"ENDDOCHEAD";
1.2 www 224: <html>
225: <head>
226: <title>The LearningOnline Network with CAPA</title>
1.3 www 227: <script>
228:
229: function pclose() {
230: parmwin=window.open("/adm/rat/empty.html","LONCAPAparms",
231: "height=350,width=350,scrollbars=no,menubar=no");
232: parmwin.close();
233: }
234:
235: function pjump(type,dis,value,marker,ret,call) {
236: parmwin=window.open("/adm/rat/parameter.html?type="+escape(type)
237: +"&value="+escape(value)+"&marker="+escape(marker)
238: +"&return="+escape(ret)
239: +"&call="+escape(call)+"&name="+escape(dis),"LONCAPAparms",
240: "height=350,width=350,scrollbars=no,menubar=no");
241:
242: }
243:
244: function dateset() {
245: eval("document.cu."+document.cu.pres_marker.value+
246: ".value=document.cu.pres_value.value");
247: pclose();
248: }
249:
250: </script>
1.2 www 251: </head>
252: <body bgcolor="#FFFFFF">
1.25 matthew 253: <img align="right" src="/adm/lonIcons/lonlogos.gif">
254: ENDDOCHEAD
255: my $forminfo =<<"ENDFORMINFO";
256: <form action="/adm/createuser" method="post" name="cu">
257: <input type="hidden" name="phase" value="three">
258: <input type="hidden" name="ccuname" value="$ccuname">
259: <input type="hidden" name="ccdomain" value="$ccdomain">
260: <input type="hidden" name="pres_value" value="" >
261: <input type="hidden" name="pres_type" value="" >
262: <input type="hidden" name="pres_marker" value="" >
263: <input type="hidden" name="cuname" value="$ccuname">
264: <input type="hidden" name="cdomain" value="$ccdomain">
265: ENDFORMINFO
1.2 www 266: my $uhome=&Apache::lonnet::homeserver($ccuname,$ccdomain);
267: my %incdomains;
268: my %inccourses;
1.24 matthew 269: foreach (%Apache::lonnet::hostdom) {
1.13 www 270: $incdomains{$_}=1;
1.24 matthew 271: }
272: foreach (keys(%ENV)) {
1.2 www 273: if ($_=~/^user\.priv\.cm\.\/(\w+)\/(\w+)/) {
274: $inccourses{$1.'_'.$2}=1;
275: }
1.24 matthew 276: }
1.2 www 277: if ($uhome eq 'no_host') {
1.26 matthew 278: $r->print(<<ENDNEWUSER);
1.25 matthew 279: $dochead
280: <h1>Create New User</h1>
281: $forminfo
282: <h2>New user "$ccuname" in domain $ccdomain</h2>
1.20 harris41 283: $loginscript
284: <input type='hidden' name='makeuser' value='1' />
1.4 www 285: <h3>Personal Data</h3>
1.25 matthew 286: <p>
287: <table>
288: <tr><td>First Name </td>
289: <td><input type='text' name='cfirst' size='15' /></td></tr>
290: <tr><td>Middle Name </td>
291: <td><input type='text' name='cmiddle' size='15' /></td></tr>
292: <tr><td>Last Name </td>
293: <td><input type='text' name='clast' size='15' /></td></tr>
294: <tr><td>Generation </td>
295: <td><input type='text' name='cgen' size='5' /></td></tr>
296: </table>
297: ID/Student Number <input type='text' name='cstid' size='15' /></p>
298: <hr />
1.4 www 299: <h3>Login Data</h3>
1.20 harris41 300: $generalrule
301: $authformkrb
302: $authformint
303: $authformfsys
304: $authformloc
1.26 matthew 305: ENDNEWUSER
1.25 matthew 306: } else { # user already exists
1.26 matthew 307: $r->print(<<ENDCHANGEUSER);
1.25 matthew 308: $dochead
309: <h1>Change User Privileges</h1>
310: $forminfo
311: <h2>User "$ccuname" in domain $ccdomain </h2>
1.26 matthew 312: ENDCHANGEUSER
1.28 ! matthew 313: # Get the users information
! 314: my %userenv = &Apache::lonnet::get('environment',
! 315: ['firstname','middlename','lastname','generation'],
! 316: $ccdomain,$ccuname);
! 317: my %rolesdump=&Apache::lonnet::dump('roles',$ccdomain,$ccuname);
! 318: $r->print(<<END);
! 319: <hr />
! 320: <table border="2">
! 321: <tr>
! 322: <th>first name</th><th>middle name</th><th>last name</th><th>generation</th>
! 323: </tr>
! 324: <tr>
! 325: END
! 326: foreach ('firstname','middlename','lastname','generation') {
! 327: if (&Apache::lonnet::allowed('mau',$ccdomain)) {
! 328: $r->print(<<"END");
! 329: <td><input type="text" name="c$_" value="$userenv{$_}" size="15"/></td>
! 330: END
! 331: } else {
! 332: $r->print('<td>'.$userenv{$_}.'</td>');
! 333: }
! 334: }
! 335: $r->print(<<END);
! 336: </tr>
! 337: </table>
! 338: END
1.25 matthew 339: # Build up table of user roles to allow revocation of a role.
1.28 ! matthew 340: my ($tmp) = keys(%rolesdump);
! 341: unless ($tmp =~ /^(con_lost|error)/i) {
1.2 www 342: my $now=time;
1.26 matthew 343: $r->print('<hr /><h3>Revoke Existing Roles</h3>'.
1.2 www 344: '<table border=2><tr><th>Revoke</th><th>Role</th><th>Extent</th>'.
1.26 matthew 345: '<th>Start</th><th>End</th>');
1.28 ! matthew 346: foreach my $area (keys(%rolesdump)) {
! 347: if ($area!~/^rolesdef/) {
! 348: my $role = $rolesdump{$area};
! 349: my $thisrole=$area;
! 350: $area=~s/\_\w\w$//;
! 351: my ($role_code,$role_end_time,$role_start_time) =
! 352: split(/_/,$role);
! 353: my $bgcol='ffffff';
! 354: my $allows=0;
! 355: if ($area=~/^\/(\w+)\/(\d\w+)/) {
! 356: my %coursedata=
! 357: &Apache::lonnet::coursedescription($1.'_'.$2);
! 358: my $carea='Course: '.$coursedata{'description'};
! 359: $inccourses{$1.'_'.$2}=1;
! 360: if (&Apache::lonnet::allowed('c'.$role_code,$1.'/'.$2)) {
! 361: $allows=1;
! 362: }
! 363: # Compute the background color based on $area
! 364: $bgcol=$1.'_'.$2;
! 365: $bgcol=~s/[^8-9b-e]//g;
! 366: $bgcol=substr($bgcol.$bgcol.$bgcol.'ffffff',0,6);
! 367: if ($area=~/^\/(\w+)\/(\d\w+)\/(\w+)/) {
! 368: $carea.='<br>Section/Group: '.$3;
! 369: }
! 370: $area=$carea;
! 371: } else {
! 372: # Determine if current user is able to revoke privileges
! 373: if ($area=~/^\/(\w+)\//) {
! 374: if (&Apache::lonnet::allowed('c'.$role_code,$1)) {
! 375: $allows=1;
! 376: }
! 377: } else {
! 378: if (&Apache::lonnet::allowed('c'.$role_code,'/')) {
! 379: $allows=1;
! 380: }
! 381: }
1.2 www 382: }
1.28 ! matthew 383: $r->print('<tr bgcolor=#"'.$bgcol.'"><td>');
! 384: my $active=1;
! 385: $active=0 if (($role_end_time) && ($now>$role_end_time));
! 386: if (($active) && ($allows)) {
! 387: $r->print('<input type="checkbox" name="rev:'
! 388: .$thisrole.'">');
1.7 www 389: } else {
1.28 ! matthew 390: $r->print(' ');
1.2 www 391: }
1.28 ! matthew 392: $r->print('</td><td>'.
! 393: &Apache::lonnet::plaintext($role_code).
! 394: '</td><td>'.$area.'</td><td>'.
! 395: ($role_start_time ? localtime($role_start_time)
! 396: : ' ' )
! 397: .'</td><td>'.
! 398: ($role_end_time ? localtime($role_end_time)
! 399: : ' ' )
! 400: ."</td></tr>\n");
1.2 www 401: }
1.28 ! matthew 402: } # end of foreach (table building loop)
1.2 www 403: $r->print('</table>');
1.28 ! matthew 404: } # End of unless
1.20 harris41 405: my $currentauth=&Apache::lonnet::queryauthenticate($ccuname,$ccdomain);
406: if ($currentauth=~/^krb4:/) {
407: $currentauth=~/^krb4:(.*)/;
408: my $krbdefdom2=$1;
409: $loginscript=~s/vf\.krbdom\.value='.*?';/vf.krbdom.value='$krbdefdom2';/;
410: }
1.26 matthew 411: # Check for a bad authentication type
1.20 harris41 412: unless ($currentauth=~/^krb4:/ or
413: $currentauth=~/^unix:/ or
414: $currentauth=~/^internal:/ or
415: $currentauth=~/^localauth:/
1.26 matthew 416: ) { # bad authentication scheme
417: if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) {
418: $r->print(<<ENDBADAUTH);
1.21 harris41 419: <hr />
420: $loginscript
1.20 harris41 421: <font color='#ff0000'>ERROR:</font>
422: This user has an unrecognized authentication scheme ($currentauth).
423: Please specify login data below.
424: <h3>Login Data</h3>
425: $generalrule
426: $authformkrb
427: $authformint
428: $authformfsys
429: $authformloc
1.26 matthew 430: ENDBADAUTH
431: } else {
432: # This user is not allowed to modify the users
433: # authentication scheme, so just notify them of the problem
434: $r->print(<<ENDBADAUTH);
435: <hr />
436: $loginscript
437: <font color="#ff0000"> ERROR: </font>
438: This user has an unrecognized authentication scheme ($currentauth).
439: Please alert a domain coordinator of this situation.
440: <hr />
441: ENDBADAUTH
442: }
443: } else { # Authentication type is valid
1.20 harris41 444: my $authformcurrent='';
1.26 matthew 445: my $authform_other='';
1.20 harris41 446: if ($currentauth=~/^krb4:/) {
447: $authformcurrent=$authformkrb;
1.26 matthew 448: $authform_other=$authformint.$authformfsys.$authformloc;
1.21 harris41 449: # embarrassing script hack here
450: $loginscript=~s/login\[3\]/login\[4\]/; # loc
451: $loginscript=~s/login\[2\]/login\[3\]/; # fsys
452: $loginscript=~s/login\[1\]/login\[2\]/; # int
453: $loginscript=~s/login\[0\]/login\[1\]/; # krb4
1.20 harris41 454: }
455: elsif ($currentauth=~/^internal:/) {
456: $authformcurrent=$authformint;
1.26 matthew 457: $authform_other=$authformkrb.$authformfsys.$authformloc;
1.21 harris41 458: # embarrassing script hack here
459: $loginscript=~s/login\[3\]/login\[4\]/; # loc
460: $loginscript=~s/login\[2\]/login\[3\]/; # fsys
461: $loginscript=~s/login\[1\]/login\[1\]/; # int
462: $loginscript=~s/login\[0\]/login\[2\]/; # krb4
1.20 harris41 463: }
464: elsif ($currentauth=~/^unix:/) {
465: $authformcurrent=$authformfsys;
1.26 matthew 466: $authform_other=$authformkrb.$authformint.$authformloc;
1.21 harris41 467: # embarrassing script hack here
468: $loginscript=~s/login\[3\]/login\[4\]/; # loc
469: $loginscript=~s/login\[1\]/login\[3\]/; # int
470: $loginscript=~s/login\[2\]/login\[1\]/; # fsys
471: $loginscript=~s/login\[0\]/login\[2\]/; # krb4
1.20 harris41 472: }
473: elsif ($currentauth=~/^localauth:/) {
474: $authformcurrent=$authformloc;
1.26 matthew 475: $authform_other=$authformkrb.$authformint.$authformfsys;
1.21 harris41 476: # embarrassing script hack here
477: $loginscript=~s/login\[3\]/login\[loc\]/; # loc
478: $loginscript=~s/login\[2\]/login\[4\]/; # fsys
479: $loginscript=~s/login\[1\]/login\[3\]/; # int
480: $loginscript=~s/login\[0\]/login\[2\]/; # krb4
481: $loginscript=~s/login\[loc\]/login\[1\]/; # loc
1.20 harris41 482: }
1.26 matthew 483: $authformcurrent=<<ENDCURRENTAUTH;
1.20 harris41 484: <table border='1'>
485: <tr>
486: <td><font color='#ff0000'>* * * WARNING * * *</font></td>
487: <td><font color='#ff0000'>* * * WARNING * * *</font></td>
488: </tr>
489: <tr><td bgcolor='#cbbcbb'>$authformcurrent</td>
490: <td bgcolor='#cbbcbb'>Changing this value will overwrite existing authentication for the user; you should notify the user of this change.</td></tr>
491: </table>
1.26 matthew 492: ENDCURRENTAUTH
493: if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) {
494: # Current user has login modification privileges
495: $r->print(<<ENDOTHERAUTHS);
1.21 harris41 496: <hr />
497: $loginscript
1.20 harris41 498: <h3>Change Current Login Data</h3>
499: $generalrule
500: $authformnop
501: $authformcurrent
502: <h3>Enter New Login Data</h3>
1.26 matthew 503: $authform_other
504: ENDOTHERAUTHS
505: }
506: } ## End of "check for bad authentication type" logic
1.25 matthew 507: } ## End of new user/old user logic
1.20 harris41 508: $r->print('<hr /><h3>Add Roles</h3>');
1.17 www 509: #
510: # Co-Author
511: #
512:
513: if (&Apache::lonnet::allowed('cca',$ENV{'user.domain'})) {
514: my $cuname=$ENV{'user.name'};
515: my $cudom=$ENV{'user.domain'};
516: $r->print(<<ENDCOAUTH);
517: <h4>Construction Space</h4>
518: <table border=2><tr><th>Activate</th><th>Role</th><th>Extent</th>
519: <th>Start</th><th>End</th></tr>
520: <tr>
521: <td><input type=checkbox name="act_$cudom\_$cuname\_ca"></td>
522: <td>Co-Author</td>
523: <td>$cudom\_$cuname</td>
524: <td><input type=hidden name="start_$cudom\_$cuname\_ca" value=''>
525: <a href=
526: "javascript:pjump('date_start','Start Date Co-Author',document.cu.start_$cudom\_$cuname\_ca.value,'start_$cudom\_$cuname\_ca','cu.pres','dateset')">Set Start Date</a></td>
527: <td><input type=hidden name="end_$cudom\_$cuname\_ca" value=''>
528: <a href=
529: "javascript:pjump('date_end','End Date Co-Author',document.cu.end_$cudom\_$cuname\_ca.value,'end_$cudom\_$cuname\_ca','cu.pres','dateset')">Set End Date</a></td>
530: </tr>
531: </table>
532: ENDCOAUTH
533: }
1.8 www 534: #
535: # Domain level
536: #
537: $r->print('<h4>Domain Level</h4>'.
538: '<table border=2><tr><th>Activate</th><th>Role</th><th>Extent</th>'.
539: '<th>Start</th><th>End</th></tr>');
1.24 matthew 540: foreach ( sort( keys(%incdomains))) {
1.2 www 541: my $thisdomain=$_;
1.24 matthew 542: foreach ('dc','li','dg','au') {
1.2 www 543: if (&Apache::lonnet::allowed('c'.$_,$thisdomain)) {
1.8 www 544: my $plrole=&Apache::lonnet::plaintext($_);
545: $r->print(<<ENDDROW);
546: <tr>
547: <td><input type=checkbox name="act_$thisdomain\_$_"></td>
548: <td>$plrole</td>
549: <td>$thisdomain</td>
550: <td><input type=hidden name="start_$thisdomain\_$_" value=''>
551: <a href=
552: "javascript:pjump('date_start','Start Date $plrole',document.cu.start_$thisdomain\_$_.value,'start_$thisdomain\_$_','cu.pres','dateset')">Set Start Date</a></td>
553: <td><input type=hidden name="end_$thisdomain\_$_" value=''>
554: <a href=
555: "javascript:pjump('date_end','End Date $plrole',document.cu.end_$thisdomain\_$_.value,'end_$thisdomain\_$_','cu.pres','dateset')">Set End Date</a></td>
556: </tr>
557: ENDDROW
1.2 www 558: }
1.24 matthew 559: }
560: }
1.8 www 561: $r->print('</table>');
562: #
563: # Course level
564: #
1.26 matthew 565: $r->print(&course_level_table(%inccourses));
566: $r->print("<hr /><input type=submit value=\"Modify User\">\n");
567: $r->print("</form></body></html>");
1.2 www 568: }
1.1 www 569:
1.4 www 570: # ================================================================= Phase Three
571: sub phase_three {
572: my $r=shift;
1.27 matthew 573: # Error messages
574: my $error = '<font color="#ff0000">Error:</font>';
575: my $end = '</body></html>';
576: # Print header
1.4 www 577: $r->print(<<ENDTHREEHEAD);
578: <html>
579: <head>
580: <title>The LearningOnline Network with CAPA</title>
581: </head>
582: <body bgcolor="#FFFFFF">
1.27 matthew 583: <img align="right" src="/adm/lonIcons/lonlogos.gif">
1.4 www 584: ENDTHREEHEAD
1.27 matthew 585: # Check Inputs
586: if (! $ENV{'form.cuname'} ) {
587: $r->print($error.'No login name specified.'.$end);
588: return;
589: }
590: if ( $ENV{'form.cuname'} =~/\W/) {
591: $r->print($error.'Invalid login name. '.
592: 'Only letters, numbers, and underscores are valid.'.
593: $end);
594: return;
595: }
596: if (! $ENV{'form.cdomain'} ) {
597: $r->print($error.'No domain specified.'.$end);
598: return;
599: }
600: if ( $ENV{'form.cdomain'} =~/\W/) {
601: $r->print($error.'Invalid domain name. '.
602: 'Only letters, numbers, and underscores are valid.'.
603: $end);
604: return;
605: }
606: # Determine authentication method and password for the user being modified
607: my $amode='';
608: my $genpwd='';
609: if ($ENV{'form.login'} eq 'krb') {
610: $amode='krb4';
611: $genpwd=$ENV{'form.krbdom'};
612: } elsif ($ENV{'form.login'} eq 'int') {
613: $amode='internal';
614: $genpwd=$ENV{'form.intpwd'};
615: } elsif ($ENV{'form.login'} eq 'fsys') {
616: $amode='unix';
617: $genpwd=$ENV{'form.fsyspwd'};
618: } elsif ($ENV{'form.login'} eq 'loc') {
619: $amode='localauth';
620: $genpwd=$ENV{'form.locarg'};
621: $genpwd=" " if (!$genpwd);
622: }
623: if ($ENV{'form.makeuser'}) {
624: # Create a new user
625: $r->print(<<ENDNEWUSERHEAD);
626: <h1>Create User</h1>
627: <h3>Creating user "$ENV{'form.cuname'}" in domain "$ENV{'form.cdomain'}"</h2>
628: ENDNEWUSERHEAD
629: # Check for the authentication mode and password
630: if (! $amode || ! $genpwd) {
631: $r->print($error.'Invalid login mode or password'.$end);
632: return;
1.18 albertel 633: }
1.27 matthew 634: # Call modifyuser
635: my $result = &Apache::lonnet::modifyuser
636: ($ENV{'form.cdomain'},$ENV{'form.cuname'},
637: $ENV{'form.cstid'},$amode,$genpwd,
638: $ENV{'form.cfirst'},$ENV{'form.cmiddle'},
639: $ENV{'form.clast'},$ENV{'form.cgen'}
640: );
641: $r->print('Generating user: '.$result);
642: $r->print('<br>Home server: '.&Apache::lonnet::homeserver
643: ($ENV{'form.cuname'},$ENV{'form.cdomain'}));
644: } elsif ($ENV{'form.login'} ne '') {
645: # Modify user privileges
646: $r->print(<<ENDMODIFYUSERHEAD);
647: <h1>Change User Privileges</h1>
648: <h2>User "$ENV{'form.cuname'}" in domain "$ENV{'form.cdomain'}"</h2>
649: ENDMODIFYUSERHEAD
650: if (! $amode || ! $genpwd) {
651: $r->print($error.'Invalid login mode or password'.$end);
652: return;
1.20 harris41 653: }
1.27 matthew 654: # Only allow authentification modification if the person has authority
655: if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) {
1.20 harris41 656: $r->print('Modifying authentication: '.
1.27 matthew 657: &Apache::lonnet::modifyuserauth(
1.20 harris41 658: $ENV{'form.cdomain'},$ENV{'form.cuname'},
1.21 harris41 659: $amode,$genpwd));
1.20 harris41 660: $r->print('<br>Home server: '.&Apache::lonnet::homeserver
1.27 matthew 661: ($ENV{'form.cuname'},$ENV{'form.cdomain'}));
1.4 www 662: } else {
1.27 matthew 663: # Okay, this is a non-fatal error.
664: $r->print($error.'You do not have the authority to modify '.
665: 'this users authentification information.');
666: }
1.28 ! matthew 667: }
! 668: ##
! 669: if (! $ENV{'form.makeuser'} ) {
! 670: # Check for need to change
! 671: my %userenv = &Apache::lonnet::get
! 672: ('environment',['firstname','middlename','lastname','generation'],
! 673: $ENV{'form.cdomain'},$ENV{'form.cuname'});
! 674: my ($tmp) = keys(%userenv);
! 675: if ($tmp =~ /^(con_lost|error)/i) {
! 676: %userenv = ();
! 677: }
! 678: # Check to see if we need to change user information
! 679: foreach ('firstname','middlename','lastname','generation') {
! 680: # Strip leading and trailing whitespace
! 681: $ENV{'form.c'.$_} =~ s/(\s+$|^\s+)//g;
! 682: }
! 683: if (&Apache::lonnet::allowed('mau',$ENV{'form.cdomain'}) &&
! 684: ($ENV{'form.cfirstname'} ne $userenv{'firstname'} ||
! 685: $ENV{'form.cmiddlename'} ne $userenv{'middlename'} ||
! 686: $ENV{'form.clastname'} ne $userenv{'lastname'} ||
! 687: $ENV{'form.cgeneration'} ne $userenv{'generation'} )) {
! 688: # Make the change
! 689: my %changeHash;
! 690: $changeHash{'firstname'} = $ENV{'form.cfirstname'};
! 691: $changeHash{'middlename'} = $ENV{'form.cmiddlename'};
! 692: $changeHash{'lastname'} = $ENV{'form.clastname'};
! 693: $changeHash{'generation'} = $ENV{'form.cgeneration'};
! 694: my $putresult = &Apache::lonnet::put
! 695: ('environment',\%changeHash,
! 696: $ENV{'form.cdomain'},$ENV{'form.cuname'});
! 697: if ($putresult eq 'ok') {
! 698: # Tell the user we changed the name
! 699: $r->print(<<"END");
! 700: <table border="2">
! 701: <caption>User Information Changed</caption>
! 702: <tr><th> </th>
! 703: <th>first</th>
! 704: <th>middle</th>
! 705: <th>last</th>
! 706: <th>generation</th></tr>
! 707: <tr><td>Previous</td>
! 708: <td>$userenv{'firstname'} </td>
! 709: <td>$userenv{'middlename'} </td>
! 710: <td>$userenv{'lastname'} </td>
! 711: <td>$userenv{'generation'} </td></tr>
! 712: <tr><td>Changed To</td>
! 713: <td>$ENV{'form.cfirstname'} </td>
! 714: <td>$ENV{'form.cmiddlename'} </td>
! 715: <td>$ENV{'form.clastname'} </td>
! 716: <td>$ENV{'form.cgeneration'} </td></tr>
! 717: </table>
! 718: END
! 719: } else { # error occurred
! 720: $r->print("<h2>Unable to successfully change environment for ".
! 721: $ENV{'form.cuname'}." in domain ".
! 722: $ENV{'form.cdomain'}."</h2>");
! 723: }
! 724: } else { # End of if ($ENV ... ) logic
! 725: # They did not want to change the users name but we can
! 726: # still tell them what the name is
! 727: $r->print(<<"END");
! 728: <h2>User "$ENV{'form.cuname'}" in domain "$ENV{'form.cdomain'}"</h2>
! 729: <h4>$userenv{'firstname'} $userenv{'middlename'} $userenv{'lastname'} </h4>
! 730: <h4>Generation: $userenv{'generation'}</h4>
! 731: END
! 732: }
1.4 www 733: }
1.27 matthew 734: ##
1.4 www 735: my $now=time;
1.6 www 736: $r->print('<h3>Modifying Roles</h3>');
1.24 matthew 737: foreach (keys (%ENV)) {
1.27 matthew 738: next if (! $ENV{$_});
739: # Revoke roles
740: if ($_=~/^form\.rev/) {
741: if ($_=~/^form\.rev\:([^\_]+)\_([^\_]+)$/) {
742: $r->print('Revoking '.$2.' in '.$1.': '.
743: &Apache::lonnet::assignrole($ENV{'form.cdomain'},
744: $ENV{'form.cuname'},$1,$2,$now).'<br>');
745: if ($2 eq 'st') {
746: $1=~/^\/(\w+)\/(\w+)/;
747: my $cid=$1.'_'.$2;
748: $r->print('Drop from classlist: '.
749: &Apache::lonnet::critical('put:'.
750: $ENV{'course.'.$cid.'.domain'}.':'.
751: $ENV{'course.'.$cid.'.num'}.':classlist:'.
752: &Apache::lonnet::escape($ENV{'form.cuname'}.':'.
753: $ENV{'form.cdomain'}).'='.
754: &Apache::lonnet::escape($now.':'),
755: $ENV{'course.'.$cid.'.home'}).'<br>');
756: }
757: }
758: } elsif ($_=~/^form\.act/) {
759: if ($_=~/^form\.act\_([^\_]+)\_([^\_]+)\_([^\_]+)$/) {
760: # Activate roles for sections with 3 id numbers
761: # set start, end times, and the url for the class
762: my $start = ( $ENV{'form.start_'.$1.'_'.$2} ?
763: $ENV{'form.start_'.$1.'_'.$2} :
764: $now );
765: my $end = ( $ENV{'form.end_'.$1.'_'.$2} ?
766: $ENV{'form.end_'.$1.'_'.$2} :
767: 0 );
768: my $url='/'.$1.'/'.$2;
769: if ($ENV{'form.sec_'.$1.'_'.$2.'_'.$3}) {
770: $url.='/'.$ENV{'form.sec_'.$1.'_'.$2.'_'.$3};
771: }
772: # Assign the role and report it
773: $r->print('Assigning: '.$3.' in '.$url.': '.
774: &Apache::lonnet::assignrole(
775: $ENV{'form.cdomain'},$ENV{'form.cuname'},
776: $url,$3,$end,$start).
777: '<br>');
778: # Handle students differently
779: if ($3 eq 'st') {
780: $url=~/^\/(\w+)\/(\w+)/;
781: my $cid=$1.'_'.$2;
782: $r->print('Add to classlist: '.
783: &Apache::lonnet::critical(
784: 'put:'.$ENV{'course.'.$cid.'.domain'}.':'.
785: $ENV{'course.'.$cid.'.num'}.':classlist:'.
786: &Apache::lonnet::escape(
787: $ENV{'form.cuname'}.':'.
788: $ENV{'form.cdomain'} ).'='.
789: &Apache::lonnet::escape($end.':'.$start),
790: $ENV{'course.'.$cid.'.home'})
791: .'<br>');
792: }
793: } elsif ($_=~/^form\.act\_([^\_]+)\_([^\_]+)$/) {
794: # Activate roles for sections with two id numbers
795: # set start, end times, and the url for the class
796: my $start = ( $ENV{'form.start_'.$1.'_'.$2} ?
797: $ENV{'form.start_'.$1.'_'.$2} :
798: $now );
799: my $end = ( $ENV{'form.end_'.$1.'_'.$2} ?
800: $ENV{'form.end_'.$1.'_'.$2} :
801: 0 );
802: my $url='/'.$1.'/';
803: # Assign the role and report it.
804: $r->print('Assigning: '.$2.' in '.$url.': '.
805: &Apache::lonnet::assignrole(
806: $ENV{'form.cdomain'},$ENV{'form.cuname'},
807: $url,$2,$end,$start)
808: .'<br>');
1.10 www 809: }
1.27 matthew 810: }
811: } # End of foreach (keys(%ENV))
1.5 www 812: $r->print('</body></html>');
1.4 www 813: }
814:
1.2 www 815: # ================================================================ Main Handler
816: sub handler {
817: my $r = shift;
818:
819: if ($r->header_only) {
820: $r->content_type('text/html');
821: $r->send_http_header;
822: return OK;
823: }
824:
825: if ((&Apache::lonnet::allowed('cta',$ENV{'request.course.id'})) ||
826: (&Apache::lonnet::allowed('cin',$ENV{'request.course.id'})) ||
827: (&Apache::lonnet::allowed('ccr',$ENV{'request.course.id'})) ||
828: (&Apache::lonnet::allowed('cep',$ENV{'request.course.id'})) ||
1.19 www 829: (&Apache::lonnet::allowed('cca',$ENV{'user.domain'})) ||
1.2 www 830: (&Apache::lonnet::allowed('mau',$ENV{'user.domain'}))) {
831: $r->content_type('text/html');
832: $r->send_http_header;
833: unless ($ENV{'form.phase'}) {
834: &phase_one($r);
835: }
836: if ($ENV{'form.phase'} eq 'two') {
837: &phase_two($r);
1.4 www 838: } elsif ($ENV{'form.phase'} eq 'three') {
839: &phase_three($r);
1.2 www 840: }
1.1 www 841: } else {
842: $ENV{'user.error.msg'}=
1.9 albertel 843: "/adm/createuser:mau:0:0:Cannot modify user data";
1.1 www 844: return HTTP_NOT_ACCEPTABLE;
845: }
846: return OK;
847: }
1.26 matthew 848:
1.27 matthew 849: #-------------------------------------------------- functions for &phase_two
1.26 matthew 850: sub course_level_table {
851: my %inccourses = @_;
852: my $table = '';
853: foreach (sort( keys(%inccourses))) {
854: my $thiscourse=$_;
855: my $protectedcourse=$_;
856: $thiscourse=~s:_:/:g;
857: my %coursedata=&Apache::lonnet::coursedescription($thiscourse);
858: my $area=$coursedata{'description'};
859: my $bgcol=$thiscourse;
860: $bgcol=~s/[^8-9b-e]//g;
861: $bgcol=substr($bgcol.$bgcol.$bgcol.'ffffff',0,6);
862: foreach ('st','ta','ep','ad','in','cc') {
863: if (&Apache::lonnet::allowed('c'.$_,$thiscourse)) {
864: my $plrole=&Apache::lonnet::plaintext($_);
865: $table .= <<ENDEXTENT;
866: <tr bgcolor="#$bgcol">
867: <td><input type="checkbox" name="act_$protectedcourse\_$_"></td>
868: <td>$plrole</td>
869: <td>$area</td>
870: ENDEXTENT
871: if ($_ ne 'cc') {
872: $table .= <<ENDSECTION;
873: <td><input type="text" size="5" name="sec_$protectedcourse\_$_"></td>
874: ENDSECTION
875: } else {
876: $table .= <<ENDSECTION;
877: <td> </td>
878: ENDSECTION
879: }
880: $table .= <<ENDTIMEENTRY;
881: <td><input type=hidden name="start_$protectedcourse\_$_" value=''>
882: <a href=
883: "javascript:pjump('date_start','Start Date $plrole',document.cu.start_$protectedcourse\_$_.value,'start_$protectedcourse\_$_','cu.pres','dateset')">Set Start Date</a></td>
884: <td><input type=hidden name="end_$protectedcourse\_$_" value=''>
885: <a href=
886: "javascript:pjump('date_end','End Date $plrole',document.cu.end_$protectedcourse\_$_.value,'end_$protectedcourse\_$_','cu.pres','dateset')">Set End Date</a></td>
887: ENDTIMEENTRY
888: $table.= "</tr>\n";
889: }
890: }
891: }
892: return '' if ($table eq ''); # return nothing if there is nothing
893: # in the table
894: my $result = <<ENDTABLE;
895: <h4>Course Level</h4>
896: <table border=2><tr><th>Activate</th><th>Role</th><th>Extent</th>
897: <th>Group/Section</th><th>Start</th><th>End</th></tr>
898: $table
899: </table>
900: ENDTABLE
901: return $result;
902: }
1.27 matthew 903: #---------------------------------------------- end functions for &phase_two
1.1 www 904:
905: 1;
906: __END__
1.2 www 907:
908:
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/back.gif){kind=icon}
Return to loncreateuser.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / interface