1: # The LearningOnline Network with CAPA
2: # Create a user
3: #
4: # $Id: loncreateuser.pm,v 1.224 2007/12/24 16:00:13 raeburn Exp $
5: #
6: # Copyright Michigan State University Board of Trustees
7: #
8: # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
9: #
10: # LON-CAPA is free software; you can redistribute it and/or modify
11: # it under the terms of the GNU General Public License as published by
12: # the Free Software Foundation; either version 2 of the License, or
13: # (at your option) any later version.
14: #
15: # LON-CAPA is distributed in the hope that it will be useful,
16: # but WITHOUT ANY WARRANTY; without even the implied warranty of
17: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18: # GNU General Public License for more details.
19: #
20: # You should have received a copy of the GNU General Public License
21: # along with LON-CAPA; if not, write to the Free Software
22: # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
23: #
24: # /home/httpd/html/adm/gpl.txt
25: #
26: # http://www.lon-capa.org/
27: #
28: ###
29:
30: package Apache::loncreateuser;
31:
32: =pod
33:
34: =head1 NAME
35:
36: Apache::loncreateuser - handler to create users and custom roles
37:
38: =head1 SYNOPSIS
39:
40: Apache::loncreateuser provides an Apache handler for creating users,
41: editing their login parameters, roles, and removing roles, and
42: also creating and assigning custom roles.
43:
44: =head1 OVERVIEW
45:
46: =head2 Custom Roles
47:
48: In LON-CAPA, roles are actually collections of privileges. "Teaching
49: Assistant", "Course Coordinator", and other such roles are really just
50: collection of privileges that are useful in many circumstances.
51:
52: Creating custom roles can be done by the Domain Coordinator through
53: the Create User functionality. That screen will show all privileges
54: that can be assigned to users. For a complete list of privileges,
55: please see C</home/httpd/lonTabs/rolesplain.tab>.
56:
57: Custom role definitions are stored in the C<roles.db> file of the role
58: author.
59:
60: =cut
61:
62: use strict;
63: use Apache::Constants qw(:common :http);
64: use Apache::lonnet;
65: use Apache::loncommon;
66: use Apache::lonlocal;
67: use Apache::longroup;
68: use Apache::lonuserutils;
69: use LONCAPA qw(:DEFAULT :match);
70:
71: my $loginscript; # piece of javascript used in two separate instances
72: my $authformnop;
73: my $authformkrb;
74: my $authformint;
75: my $authformfsys;
76: my $authformloc;
77:
78: sub initialize_authen_forms {
79: my ($dom,$curr_authtype,$mode) = @_;
80: my ($krbdefdom)=( $ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/);
81: $krbdefdom= uc($krbdefdom);
82: my %param = ( formname => 'document.cu',
83: kerb_def_dom => $krbdefdom,
84: domain => $dom,
85: );
86: my %abv_auth = &auth_abbrev();
87: if ($curr_authtype =~ /^(krb4|krb5|internal|localauth|unix):$/) {
88: my $long_auth = $1;
89: my %abv_auth = &auth_abbrev();
90: $param{'curr_authtype'} = $abv_auth{$long_auth};
91: if ($long_auth =~ /^krb(4|5)$/) {
92: $param{'curr_kerb_ver'} = $1;
93: }
94: if ($mode eq 'modifyuser') {
95: $param{'mode'} = $mode;
96: }
97: }
98: # no longer static due to configurable kerberos defaults
99: # $loginscript = &Apache::loncommon::authform_header(%param);
100: $authformnop = &Apache::loncommon::authform_nochange(%param);
101: # no longer static due to configurable kerberos defaults
102: # $authformkrb = &Apache::loncommon::authform_kerberos(%param);
103: $authformint = &Apache::loncommon::authform_internal(%param);
104: $authformfsys = &Apache::loncommon::authform_filesystem(%param);
105: $authformloc = &Apache::loncommon::authform_local(%param);
106: }
107:
108: sub auth_abbrev {
109: my %abv_auth = (
110: krb4 => 'krb',
111: internal => 'int',
112: localuth => 'loc',
113: unix => 'fsys',
114: );
115: return %abv_auth;
116: }
117:
118: # ====================================================
119:
120: sub portfolio_quota {
121: my ($ccuname,$ccdomain) = @_;
122: my %lt = &Apache::lonlocal::texthash(
123: 'disk' => "Disk space allocated to user's portfolio files",
124: 'cuqu' => "Current quota",
125: 'cust' => "Custom quota",
126: 'defa' => "Default",
127: 'chqu' => "Change quota",
128: );
129: my ($currquota,$quotatype,$inststatus,$defquota) =
130: &Apache::loncommon::get_user_quota($ccuname,$ccdomain);
131: my ($usertypes,$order) = &Apache::lonnet::retrieve_inst_usertypes($ccdomain);
132: my ($longinsttype,$showquota,$custom_on,$custom_off,$defaultinfo);
133: if ($inststatus ne '') {
134: if ($usertypes->{$inststatus} ne '') {
135: $longinsttype = $usertypes->{$inststatus};
136: }
137: }
138: $custom_on = ' ';
139: $custom_off = ' checked="checked" ';
140: my $quota_javascript = <<"END_SCRIPT";
141: <script type="text/javascript">
142: function quota_changes(caller) {
143: if (caller == "custom") {
144: if (document.cu.customquota[0].checked) {
145: document.cu.portfolioquota.value = "";
146: }
147: }
148: if (caller == "quota") {
149: document.cu.customquota[1].checked = true;
150: }
151: }
152: </script>
153: END_SCRIPT
154: if ($quotatype eq 'custom') {
155: $custom_on = $custom_off;
156: $custom_off = ' ';
157: $showquota = $currquota;
158: if ($longinsttype eq '') {
159: $defaultinfo = &mt('For this user, the default quota would be [_1]
160: Mb.',$defquota);
161: } else {
162: $defaultinfo = &mt("For this user, the default quota would be [_1]
163: Mb, as determined by the user's institutional
164: affiliation ([_2]).",$defquota,$longinsttype);
165: }
166: } else {
167: if ($longinsttype eq '') {
168: $defaultinfo = &mt('For this user, the default quota is [_1]
169: Mb.',$defquota);
170: } else {
171: $defaultinfo = &mt("For this user, the default quota of [_1]
172: Mb, is determined by the user's institutional
173: affiliation ([_2]).",$defquota,$longinsttype);
174: }
175: }
176: my $output = $quota_javascript.
177: '<h3>'.$lt{'disk'}.'</h3>'.
178: &Apache::loncommon::start_data_table().
179: &Apache::loncommon::start_data_table_row().
180: '<td>'.$lt{'cuqu'}.': '.$currquota.' Mb. '.
181: $defaultinfo.'</td>'.
182: &Apache::loncommon::end_data_table_row().
183: &Apache::loncommon::start_data_table_row().
184: '<td><span class="LC_nobreak">'.$lt{'chqu'}.
185: ': <label>'.
186: '<input type="radio" name="customquota" value="0" '.
187: $custom_off.' onchange="javascript:quota_changes('."'custom'".')"
188: />'.$lt{'defa'}.' ('.$defquota.' Mb).</label> '.
189: ' <label><input type="radio" name="customquota" value="1" '.
190: $custom_on.' onchange="javascript:quota_changes('."'custom'".')" />'.
191: $lt{'cust'}.':</label> '.
192: '<input type="text" name="portfolioquota" size ="5" value="'.
193: $showquota.'" onfocus="javascript:quota_changes('."'quota'".')" '.
194: '/> Mb</span></td>'.
195: &Apache::loncommon::end_data_table_row().
196: &Apache::loncommon::end_data_table();
197: return $output;
198: }
199:
200: # =================================================================== Phase one
201:
202: sub print_username_entry_form {
203: my ($r,$context,$response,$srch,$forcenewuser) = @_;
204: my $defdom=$env{'request.role.domain'};
205: my $formtoset = 'crtuser';
206: if (exists($env{'form.startrolename'})) {
207: $formtoset = 'docustom';
208: $env{'form.rolename'} = $env{'form.startrolename'};
209: } elsif ($env{'form.origform'} eq 'crtusername') {
210: $formtoset = $env{'form.origform'};
211: }
212:
213: my ($jsback,$elements) = &crumb_utilities();
214:
215: my $jscript = &Apache::loncommon::studentbrowser_javascript()."\n".
216: '<script type="text/javascript">'."\n".
217: &Apache::lonhtmlcommon::set_form_elements($elements->{$formtoset}).
218: '</script>'."\n";
219:
220: my %loaditems = (
221: 'onload' => "javascript:setFormElements(document.$formtoset)",
222: );
223: my $start_page =
224: &Apache::loncommon::start_page('User Management',
225: $jscript,{'add_entries' => \%loaditems,});
226: if ($env{'form.action'} eq 'custom') {
227: &Apache::lonhtmlcommon::add_breadcrumb
228: ({href=>"javascript:backPage(document.crtuser)",
229: text=>"Pick custom role",});
230: } else {
231: &Apache::lonhtmlcommon::add_breadcrumb
232: ({href=>"javascript:backPage(document.crtuser)",
233: text=>"Single user search",
234: faq=>282,bug=>'Instructor Interface',});
235: }
236: my $helpitem = 'Course_Change_Privileges';
237: if ($env{'form.action'} eq 'custom') {
238: $helpitem = 'Course_Editing_Custom_Roles';
239: } elsif ($env{'form.action'} eq 'singlestudent') {
240: $helpitem = 'Course_Add_Student';
241: }
242: my $crumbs = &Apache::lonhtmlcommon::breadcrumbs('User Management',
243: $helpitem);
244: my %existingroles=&Apache::lonuserutils::my_custom_roles();
245: my $choice=&Apache::loncommon::select_form('make new role','rolename',
246: ('make new role' => 'Generate new role ...',%existingroles));
247: my %lt=&Apache::lonlocal::texthash(
248: 'srch' => "User Search",
249: or => "or",
250: 'usr' => "Username",
251: 'dom' => "Domain",
252: 'ecrp' => "Edit Custom Role Privileges",
253: 'nr' => "Name of Role",
254: 'cre' => "Custom Role Editor",
255: 'mod' => "to modify user information or add/modify roles",
256: 'enrl' => "to enroll one student",
257: );
258: my $help = &Apache::loncommon::help_open_menu(undef,undef,282,'Instructor Interface');
259: my $sellink=&Apache::loncommon::selectstudent_link('crtuser','srchterm','srchdomain');
260: if ($sellink) {
261: $sellink = "$lt{'or'} ".$sellink;
262: }
263: $r->print($start_page."\n".$crumbs);
264: if ($env{'form.action'} eq 'custom') {
265: if (&Apache::lonnet::allowed('mcr','/')) {
266: $r->print(<<ENDCUSTOM);
267: <form action="/adm/createuser" method="post" name="docustom">
268: <input type="hidden" name="action" value="$env{'form.action'}" />
269: <input type="hidden" name="phase" value="selected_custom_edit" />
270: <h3>$lt{'ecrp'}</h3>
271: $lt{'nr'}: $choice <input type="text" size="15" name="newrolename" /><br />
272: <input name="customeditor" type="submit" value="$lt{'cre'}" />
273: </form>
274: ENDCUSTOM
275: }
276: } else {
277: my $actiontext = $lt{'mod'};
278: if ($env{'form.action'} eq 'singlestudent') {
279: $actiontext = $lt{'enrl'};
280: }
281: $r->print("
282: <h3>$lt{'srch'} $sellink $actiontext</h3>");
283: if ($env{'form.origform'} ne 'crtusername') {
284: $r->print("\n".$response);
285: }
286: $r->print(&entry_form($defdom,$srch,$forcenewuser,$context,$response));
287: }
288: $r->print(&Apache::loncommon::end_page());
289: }
290:
291: sub entry_form {
292: my ($dom,$srch,$forcenewuser,$context,$responsemsg) = @_;
293: my %domconf = &Apache::lonnet::get_dom('configuration',['usercreation'],$dom);
294: my $usertype;
295: if (ref($srch) eq 'HASH') {
296: if (($srch->{'srchin'} eq 'dom') &&
297: ($srch->{'srchby'} eq 'uname') &&
298: ($srch->{'srchtype'} eq 'exact') &&
299: ($srch->{'srchdomain'} ne '') &&
300: ($srch->{'srchterm'} ne '')) {
301: my ($rules,$ruleorder) =
302: &Apache::lonnet::inst_userrules($srch->{'srchdomain'},'username');
303: $usertype = &Apache::lonuserutils::check_usertype($srch->{'srchdomain'},$srch->{'srchterm'},$rules);
304: }
305: }
306: my $cancreate =
307: &Apache::lonuserutils::can_create_user($dom,$context,$usertype);
308: my $userpicker =
309: &Apache::loncommon::user_picker($dom,$srch,$forcenewuser,
310: 'document.crtuser',$cancreate,$usertype);
311: my $srchbutton = &mt('Search');
312: my $output = <<"ENDBLOCK";
313: <form action="/adm/createuser" method="post" name="crtuser">
314: <input type="hidden" name="action" value="$env{'form.action'}" />
315: <input type="hidden" name="phase" value="get_user_info" />
316: $userpicker
317: <input name="userrole" type="button" value="$srchbutton" onclick="javascript:validateEntry(document.crtuser)" />
318: </form>
319: ENDBLOCK
320: if ($cancreate && $env{'form.phase'} eq '') {
321: my $defdom=$env{'request.role.domain'};
322: my $domform = &Apache::loncommon::select_dom_form($defdom,'srchdomain');
323: my $helpcrt=&Apache::loncommon::help_open_topic('Course_Change_Privileges');
324: my %lt=&Apache::lonlocal::texthash(
325: 'crnu' => 'Create a new user',
326: 'usr' => 'Username',
327: 'dom' => 'in domain',
328: 'cra' => 'Create user',
329: );
330: $output .= <<"ENDDOCUMENT";
331: <form action="/adm/createuser" method="post" name="crtusername">
332: <input type="hidden" name="action" value="$env{'form.action'}" />
333: <input type="hidden" name="phase" value="createnewuser" />
334: <input type="hidden" name="srchtype" value="exact" />
335: <input type="hidden" name="srchby" value="username" />
336: <input type="hidden" name="srchin" value="dom" />
337: <input type="hidden" name="forcenewuser" value="1" />
338: <input type="hidden" name="origform" value="crtusername" />
339: <h3>$lt{crnu}$helpcrt</h3>
340: $responsemsg
341: <table>
342: <tr>
343: <td>$lt{'usr'}:</td>
344: <td><input type="text" size="15" name="srchterm" /></td>
345: <td> $lt{'dom'}:</td><td>$domform</td>
346: <td> <input name="userrole" type="submit" value="$lt{'cra'}" /></td>
347: </tr>
348: </table>
349: </form>
350: ENDDOCUMENT
351: }
352: return $output;
353: }
354:
355: sub user_modification_js {
356: my ($pjump_def,$dc_setcourse_code,$nondc_setsection_code,$groupslist)=@_;
357:
358: return <<END;
359: <script type="text/javascript" language="Javascript">
360:
361: function pclose() {
362: parmwin=window.open("/adm/rat/empty.html","LONCAPAparms",
363: "height=350,width=350,scrollbars=no,menubar=no");
364: parmwin.close();
365: }
366:
367: $pjump_def
368: $dc_setcourse_code
369:
370: function dateset() {
371: eval("document.cu."+document.cu.pres_marker.value+
372: ".value=document.cu.pres_value.value");
373: pclose();
374: }
375:
376: $nondc_setsection_code
377:
378: </script>
379: END
380: }
381:
382: # =================================================================== Phase two
383: sub print_user_selection_page {
384: my ($r,$response,$srch,$srch_results,$operation,$srcharray,$context) = @_;
385: my @fields = ('username','domain','lastname','firstname','permanentemail');
386: my $sortby = $env{'form.sortby'};
387:
388: if (!grep(/^\Q$sortby\E$/,@fields)) {
389: $sortby = 'lastname';
390: }
391:
392: my ($jsback,$elements) = &crumb_utilities();
393:
394: my $jscript = (<<ENDSCRIPT);
395: <script type="text/javascript">
396: function pickuser(uname,udom) {
397: document.usersrchform.seluname.value=uname;
398: document.usersrchform.seludom.value=udom;
399: document.usersrchform.phase.value="userpicked";
400: document.usersrchform.submit();
401: }
402:
403: $jsback
404: </script>
405: ENDSCRIPT
406:
407: my %lt=&Apache::lonlocal::texthash(
408: 'usrch' => "User Search to add/modify roles",
409: 'stusrch' => "User Search to enroll student",
410: 'usel' => "Select a user to add/modify roles",
411: 'stusel' => "Select a user to enroll as a student",
412: 'username' => "username",
413: 'domain' => "domain",
414: 'lastname' => "last name",
415: 'firstname' => "first name",
416: 'permanentemail' => "permanent e-mail",
417: );
418: $r->print(&Apache::loncommon::start_page('User Management',$jscript));
419: if ($operation eq 'createuser') {
420: &Apache::lonhtmlcommon::add_breadcrumb
421: ({href=>"javascript:backPage(document.usersrchform,'','')",
422: text=>"Create/modify user",
423: faq=>282,bug=>'Instructor Interface',},
424: {href=>"javascript:backPage(document.usersrchform,'get_user_info','select')",
425: text=>"Select User",
426: faq=>282,bug=>'Instructor Interface',});
427: $r->print(&Apache::lonhtmlcommon::breadcrumbs('User Management',
428: 'Course_Change_Privileges'));
429: $r->print("<b>$lt{'usrch'}</b><br />");
430: $r->print(&entry_form($srch->{'srchdomain'},$srch,undef,$context));
431: $r->print('<h3>'.$lt{'usel'}.'</h3>');
432: } elsif ($operation eq 'enrollstudent') {
433: &Apache::lonhtmlcommon::add_breadcrumb
434: ({href=>"javascript:backPage(document.usersrchform,'','')",
435: text=>"Create/modify student",
436: faq=>282,bug=>'Instructor Interface',},
437: {href=>"javascript:backPage(document.usersrchform,'get_user_info','select')",
438: text=>"Select Student",
439: faq=>282,bug=>'Instructor Interface',});
440: $r->print(&Apache::lonhtmlcommon::breadcrumbs('User Management',
441: 'Course_Add_Student'));
442: $r->print($jscript."<b>$lt{'stusrch'}</b><br />");
443: $r->print(&entry_form($srch->{'srchdomain'},$srch,undef,$context));
444: $r->print('</form><h3>'.$lt{'stusel'}.'</h3>');
445: }
446: $r->print('<form name="usersrchform" method="post">'.
447: &Apache::loncommon::start_data_table()."\n".
448: &Apache::loncommon::start_data_table_header_row()."\n".
449: ' <th> </th>'."\n");
450: foreach my $field (@fields) {
451: $r->print(' <th><a href="javascript:document.usersrchform.sortby.value='.
452: "'".$field."'".';document.usersrchform.submit();">'.
453: $lt{$field}.'</a></th>'."\n");
454: }
455: $r->print(&Apache::loncommon::end_data_table_header_row());
456:
457: my @sorted_users = sort {
458: lc($srch_results->{$a}->{$sortby}) cmp lc($srch_results->{$b}->{$sortby})
459: ||
460: lc($srch_results->{$a}->{lastname}) cmp lc($srch_results->{$b}->{lastname})
461: ||
462: lc($srch_results->{$a}->{firstname}) cmp lc($srch_results->{$b}->{firstname})
463: ||
464: lc($a) cmp lc($b)
465: } (keys(%$srch_results));
466:
467: foreach my $user (@sorted_users) {
468: my ($uname,$udom) = split(/:/,$user);
469: $r->print(&Apache::loncommon::start_data_table_row().
470: '<td><input type="button" name="seluser" value="'.&mt('Select').'" onclick="javascript:pickuser('."'".$uname."'".','."'".$udom."'".')" /></td>'.
471: '<td><tt>'.$uname.'</tt></td>'.
472: '<td><tt>'.$udom.'</tt></td>');
473: foreach my $field ('lastname','firstname','permanentemail') {
474: $r->print('<td>'.$srch_results->{$user}->{$field}.'</td>');
475: }
476: $r->print(&Apache::loncommon::end_data_table_row());
477: }
478: $r->print(&Apache::loncommon::end_data_table().'<br /><br />');
479: if (ref($srcharray) eq 'ARRAY') {
480: foreach my $item (@{$srcharray}) {
481: $r->print('<input type="hidden" name="'.$item.'" value="'.$env{'form.'.$item}.'" />'."\n");
482: }
483: }
484: $r->print(' <input type="hidden" name="sortby" value="'.$sortby.'" />'."\n".
485: ' <input type="hidden" name="seluname" value="" />'."\n".
486: ' <input type="hidden" name="seludom" value="" />'."\n".
487: ' <input type="hidden" name="currstate" value="select" />'."\n".
488: ' <input type="hidden" name="phase" value="get_user_info" />'."\n".
489: ' <input type="hidden" name="action" value="'.$env{'form.action'}.'" />'."\n");
490: $r->print($response.'</form>'.&Apache::loncommon::end_page());
491: }
492:
493: sub print_user_query_page {
494: my ($r,$caller) = @_;
495: # FIXME - this is for a network-wide name search (similar to catalog search)
496: # To use frames with similar behavior to catalog/portfolio search.
497: # To be implemented.
498: return;
499: }
500:
501: sub print_user_modification_page {
502: my ($r,$ccuname,$ccdomain,$srch,$response,$context,$permission) = @_;
503: if (($ccuname eq '') || ($ccdomain eq '')) {
504: my $usermsg = &mt('No username and/or domain provided.');
505: $env{'form.phase'} = '';
506: &print_username_entry_form($r,$context,$usermsg);
507: return;
508: }
509: my ($form,$formname);
510: if ($env{'form.action'} eq 'singlestudent') {
511: $form = 'document.enrollstudent';
512: $formname = 'enrollstudent';
513: } else {
514: $form = 'document.cu';
515: $formname = 'cu';
516: }
517: my %abv_auth = &auth_abbrev();
518: my ($curr_authtype,%rulematch,%inst_results,$curr_kerb_ver,$newuser,
519: %alerts,%curr_rules,%got_rules);
520: my $uhome=&Apache::lonnet::homeserver($ccuname,$ccdomain);
521: if ($uhome eq 'no_host') {
522: my $usertype;
523: my ($rules,$ruleorder) =
524: &Apache::lonnet::inst_userrules($ccdomain,'username');
525: $usertype =
526: &Apache::lonuserutils::check_usertype($ccdomain,$ccuname,$rules);
527: my $cancreate =
528: &Apache::lonuserutils::can_create_user($ccdomain,$context,
529: $usertype);
530: if (!$cancreate) {
531: my $helplink = ' href="javascript:helpMenu('."'display'".')"';
532: my %usertypetext = (
533: official => 'institutional',
534: unofficial => 'non-institutional',
535: );
536: my $response;
537: if ($env{'form.origform'} eq 'crtusername') {
538: $response = '<span class="LC_warning">'.&mt('No match was found for the username ([_1]) in LON-CAPA domain: [_2]',$ccuname,$ccdomain).
539: '</span><br />';
540: }
541: $response .= '<span class="LC_warning">'.&mt("You are not authorized to create new $usertypetext{$usertype} users in this domain.").' '.&mt('Contact the <a[_1]>helpdesk</a> for assistance.',$helplink).'</span><br /><br />';
542: $env{'form.phase'} = '';
543: &print_username_entry_form($r,$context,$response);
544: return;
545: }
546: $newuser = 1;
547: my $checkhash;
548: my $checks = { 'username' => 1 };
549: $checkhash->{$ccuname.':'.$ccdomain} = { 'newuser' => $newuser };
550: &Apache::loncommon::user_rule_check($checkhash,$checks,
551: \%alerts,\%rulematch,\%inst_results,\%curr_rules,\%got_rules);
552: if (ref($alerts{'username'}) eq 'HASH') {
553: if (ref($alerts{'username'}{$ccdomain}) eq 'HASH') {
554: my $domdesc =
555: &Apache::lonnet::domain($ccdomain,'description');
556: if ($alerts{'username'}{$ccdomain}{$ccuname}) {
557: my $userchkmsg;
558: if (ref($curr_rules{$ccdomain}) eq 'HASH') {
559: $userchkmsg =
560: &Apache::loncommon::instrule_disallow_msg('username',
561: $domdesc,1).
562: &Apache::loncommon::user_rule_formats($ccdomain,
563: $domdesc,$curr_rules{$ccdomain}{'username'},
564: 'username');
565: }
566: $env{'form.phase'} = '';
567: &print_username_entry_form($r,$context,$userchkmsg);
568: return;
569: }
570: }
571: }
572: } else {
573: $newuser = 0;
574: my $currentauth =
575: &Apache::lonnet::queryauthenticate($ccuname,$ccdomain);
576: if ($currentauth =~ /^(krb4|krb5|unix|internal|localauth):/) {
577: $curr_authtype = $abv_auth{$1};
578: if ($currentauth =~ /^krb(4|5)/) {
579: $curr_kerb_ver = $1;
580: }
581: }
582: }
583: if ($response) {
584: $response = '<br />'.$response;
585: }
586: my $defdom=$env{'request.role.domain'};
587:
588: my ($krbdef,$krbdefdom) =
589: &Apache::loncommon::get_kerberos_defaults($defdom);
590:
591: my %param = ( formname => 'document.cu',
592: kerb_def_dom => $krbdefdom,
593: kerb_def_auth => $krbdef,
594: curr_authtype => $curr_authtype,
595: curr_kerb_ver => $curr_kerb_ver,
596: domain => $ccdomain,
597: );
598: $loginscript = &Apache::loncommon::authform_header(%param);
599: $authformkrb = &Apache::loncommon::authform_kerberos(%param);
600:
601: my $pjump_def = &Apache::lonhtmlcommon::pjump_javascript_definition();
602: my $dc_setcourse_code = '';
603: my $nondc_setsection_code = '';
604: my %loaditem;
605:
606: my $groupslist = &Apache::lonuserutils::get_groupslist();
607:
608: my $js = &validation_javascript($context,$ccdomain,$pjump_def,
609: $groupslist,$newuser,$formname,\%loaditem);
610: my $start_page =
611: &Apache::loncommon::start_page('User Management',
612: $js,{'add_entries' => \%loaditem,});
613: my %breadcrumb_text = &singleuser_breadcrumb();
614: &Apache::lonhtmlcommon::add_breadcrumb
615: ({href=>"javascript:backPage($form)",
616: text=>$breadcrumb_text{'search'},
617: faq=>282,bug=>'Instructor Interface',});
618:
619: if ($env{'form.phase'} eq 'userpicked') {
620: &Apache::lonhtmlcommon::add_breadcrumb
621: ({href=>"javascript:backPage($form,'get_user_info','select')",
622: text=>$breadcrumb_text{'userpicked'},
623: faq=>282,bug=>'Instructor Interface',});
624: }
625: &Apache::lonhtmlcommon::add_breadcrumb
626: ({href=>"javascript:backPage($form,'$env{'form.phase'}','modify')",
627: text=>$breadcrumb_text{'modify'},
628: faq=>282,bug=>'Instructor Interface',});
629: my $helpitem = 'Course_Change_Privileges';
630: if ($env{'form.action'} eq 'singlestudent') {
631: $helpitem = 'Course_Add_Student';
632: }
633: my $crumbs = &Apache::lonhtmlcommon::breadcrumbs('User Management',
634: $helpitem);
635:
636: my $forminfo =<<"ENDFORMINFO";
637: <form action="/adm/createuser" method="post" name="$formname">
638: <input type="hidden" name="phase" value="update_user_data" />
639: <input type="hidden" name="ccuname" value="$ccuname" />
640: <input type="hidden" name="ccdomain" value="$ccdomain" />
641: <input type="hidden" name="pres_value" value="" />
642: <input type="hidden" name="pres_type" value="" />
643: <input type="hidden" name="pres_marker" value="" />
644: ENDFORMINFO
645: my %inccourses;
646: foreach my $key (keys(%env)) {
647: if ($key=~/^user\.priv\.cm\.\/($match_domain)\/($match_username)/) {
648: $inccourses{$1.'_'.$2}=1;
649: }
650: }
651: if ($newuser) {
652: my $portfolioform;
653: if (&Apache::lonnet::allowed('mpq',$env{'request.role.domain'})) {
654: # Current user has quota modification privileges
655: $portfolioform = '<br />'.&portfolio_quota($ccuname,$ccdomain);
656: }
657: &initialize_authen_forms($ccdomain);
658: my %lt=&Apache::lonlocal::texthash(
659: 'cnu' => 'Create New User',
660: 'ast' => 'as a student',
661: 'ind' => 'in domain',
662: 'lg' => 'Login Data',
663: 'hs' => "Home Server",
664: );
665: $r->print(<<ENDTITLE);
666: $start_page
667: $crumbs
668: $response
669: $forminfo
670: <script type="text/javascript" language="Javascript">
671: $loginscript
672: </script>
673: <input type='hidden' name='makeuser' value='1' />
674: <h2>$lt{'cnu'} "$ccuname" $lt{'ind'} $ccdomain
675: ENDTITLE
676: if ($env{'form.action'} eq 'singlestudent') {
677: $r->print(' ('.$lt{'ast'}.')');
678: }
679: $r->print('</h2>'."\n".'<div class="LC_left_float">');
680: my $personal_table =
681: &personal_data_display($ccuname,$ccdomain,$newuser,$context,
682: $inst_results{$ccuname.':'.$ccdomain});
683: $r->print($personal_table);
684: my ($home_server_pick,$numlib) =
685: &Apache::loncommon::home_server_form_item($ccdomain,'hserver',
686: 'default','hide');
687: if ($numlib > 1) {
688: $r->print("
689: <br />
690: $lt{'hs'}: $home_server_pick
691: <br />");
692: } else {
693: $r->print($home_server_pick);
694: }
695: $r->print('</div>'."\n".'<div class="LC_left_float"><h3>'.
696: $lt{'lg'}.'</h3>');
697: my ($fixedauth,$varauth,$authmsg);
698: if (ref($rulematch{$ccuname.':'.$ccdomain}) eq 'HASH') {
699: my $matchedrule = $rulematch{$ccuname.':'.$ccdomain}{'username'};
700: my ($rules,$ruleorder) =
701: &Apache::lonnet::inst_userrules($ccdomain,'username');
702: if (ref($rules) eq 'HASH') {
703: if (ref($rules->{$matchedrule}) eq 'HASH') {
704: my $authtype = $rules->{$matchedrule}{'authtype'};
705: if ($authtype !~ /^(krb4|krb5|int|fsys|loc)$/) {
706: $r->print(&Apache::lonuserutils::set_login($ccdomain,$authformkrb,$authformint,$authformloc));
707: } else {
708: my $authparm = $rules->{$matchedrule}{'authparm'};
709: if ($authtype =~ /^krb(4|5)$/) {
710: my $ver = $1;
711: if ($authparm ne '') {
712: $fixedauth = <<"KERB";
713: <input type="hidden" name="login" value="krb" />
714: <input type="hidden" name="krbver" value="$ver" />
715: <input type="hidden" name="krbarg" value="$authparm" />
716: KERB
717: $authmsg = $rules->{$matchedrule}{'authmsg'};
718: }
719: } else {
720: $fixedauth =
721: '<input type="hidden" name="login" value="'.$authtype.'" />'."\n";
722: if ($rules->{$matchedrule}{'authparmfixed'}) {
723: $fixedauth .=
724: '<input type="hidden" name="'.$authtype.'arg" value="'.$authparm.'" />'."\n";
725: } else {
726: $varauth =
727: '<input type="text" name="'.$authtype.'arg" value="" />'."\n";
728: }
729: }
730: }
731: } else {
732: $r->print(&Apache::lonuserutils::set_login($ccdomain,$authformkrb,$authformint,$authformloc));
733: }
734: }
735: if ($authmsg) {
736: $r->print(<<ENDAUTH);
737: $fixedauth
738: $authmsg
739: $varauth
740: ENDAUTH
741: }
742: } else {
743: $r->print(&Apache::lonuserutils::set_login($ccdomain,$authformkrb,$authformint,$authformloc));
744: }
745: $r->print($portfolioform);
746: if ($env{'form.action'} eq 'singlestudent') {
747: $r->print(&date_sections_select($context,$newuser,$formname,
748: $permission));
749: }
750: $r->print('</div><div class="LC_clear_float_footer"></div>');
751: } else { # user already exists
752: my %lt=&Apache::lonlocal::texthash(
753: 'cup' => "Modify existing user: ",
754: 'ens' => "Enroll one student: ",
755: 'id' => "in domain",
756: );
757: $r->print(<<ENDCHANGEUSER);
758: $start_page
759: $crumbs
760: $forminfo
761: <h2>
762: ENDCHANGEUSER
763: if ($env{'form.action'} eq 'singlestudent') {
764: $r->print($lt{'ens'});
765: } else {
766: $r->print($lt{'cup'});
767: }
768: $r->print(' "'.$ccuname.'" '.$lt{'id'}.' "'.$ccdomain.'"</h2>'.
769: "\n".'<div class="LC_left_float">');
770: my ($personal_table,$showforceid) =
771: &personal_data_display($ccuname,$ccdomain,$newuser,$context,
772: $inst_results{$ccuname.':'.$ccdomain});
773: $r->print($personal_table);
774: if ($showforceid) {
775: $r->print(&Apache::lonuserutils::forceid_change($context));
776: }
777: $r->print('</div>');
778: my $user_auth_text =
779: &user_authentication($ccuname,$ccdomain,$krbdefdom,\%abv_auth);
780: my $user_quota_text;
781: if (&Apache::lonnet::allowed('mpq',$ccdomain)) {
782: # Current user has quota modification privileges
783: $user_quota_text = &portfolio_quota($ccuname,$ccdomain);
784: } elsif (&Apache::lonnet::allowed('mpq',$env{'request.role.domain'})) {
785: # Get the user's portfolio information
786: my %portq = &Apache::lonnet::get('environment',['portfolioquota'],
787: $ccdomain,$ccuname);
788:
789: my %lt=&Apache::lonlocal::texthash(
790: 'dska' => "Disk space allocated to user's portfolio files",
791: 'youd' => "You do not have privileges to modify the portfolio quota for this user.",
792: 'ichr' => "If a change is required, contact a domain coordinator for the domain",
793: );
794: $user_quota_text = <<ENDNOPORTPRIV;
795: <h3>$lt{'dska'}</h3>
796: $lt{'youd'} $lt{'ichr'}: $ccdomain
797: ENDNOPORTPRIV
798: }
799: if ($user_auth_text ne '') {
800: $r->print('<div class="LC_left_float">'.$user_auth_text);
801: if ($user_quota_text ne '') {
802: $r->print($user_quota_text);
803: }
804: if ($env{'form.action'} eq 'singlestudent') {
805: $r->print(&date_sections_select($context,$newuser,$formname));
806: }
807: } elsif ($user_quota_text ne '') {
808: $r->print('<div class="LC_left_float">'.$user_quota_text);
809: if ($env{'form.action'} eq 'singlestudent') {
810: $r->print(&date_sections_select($context,$newuser,$formname));
811: }
812: } else {
813: if ($env{'form.action'} eq 'singlestudent') {
814: $r->print('<div class="LC_left_float">'.
815: &date_sections_select($context,$newuser,$formname));
816: }
817: }
818: $r->print('</div><div class="LC_clear_float_footer"></div>');
819: if ($env{'form.action'} ne 'singlestudent') {
820: &display_existing_roles($r,$ccuname,$ccdomain,\%inccourses);
821: }
822: } ## End of new user/old user logic
823:
824: if ($env{'form.action'} eq 'singlestudent') {
825: $r->print('<br /><input type="button" value="'.&mt('Enroll Student').'" onClick="setSections(this.form)" />'."\n");
826: } else {
827: $r->print('<h3>'.&mt('Add Roles').'</h3>');
828: my $addrolesdisplay = 0;
829: if ($context eq 'domain' || $context eq 'author') {
830: $addrolesdisplay = &new_coauthor_roles($r,$ccuname,$ccdomain);
831: }
832: if ($context eq 'domain') {
833: my $add_domainroles = &new_domain_roles($r);
834: if (!$addrolesdisplay) {
835: $addrolesdisplay = $add_domainroles;
836: }
837: $r->print(&course_level_dc($env{'request.role.domain'},'Course'));
838: $r->print('<br /><input type="button" value="'.&mt('Modify User').'" onClick="setCourse()" />'."\n");
839: } elsif ($context eq 'author') {
840: if ($addrolesdisplay) {
841: $r->print('<br /><input type="button" value="'.&mt('Modify User').'"');
842: if ($newuser) {
843: $r->print(' onClick="verify_message(this.form)" \>'."\n");
844: } else {
845: $r->print('onClick="this.form.submit()" \>'."\n");
846: }
847: } else {
848: $r->print('<br /><a href="javascript:backPage(document.cu)">'.
849: &mt('Back to previous page').'</a>');
850: }
851: } else {
852: $r->print(&course_level_table(%inccourses));
853: $r->print('<br /><input type="button" value="'.&mt('Modify User').'" onClick="setSections(this.form)" />'."\n");
854: }
855: }
856: $r->print(&Apache::lonhtmlcommon::echo_form_input(['phase','userrole','ccdomain','prevphase','currstate','ccuname','ccdomain']));
857: $r->print('<input type="hidden" name="currstate" value="" />');
858: $r->print('<input type="hidden" name="prevphase" value="'.$env{'form.phase'}.'" />');
859: $r->print("</form>".&Apache::loncommon::end_page());
860: return;
861: }
862:
863: sub singleuser_breadcrumb {
864: my %breadcrumb_text;
865: if ($env{'form.action'} eq 'singlestudent') {
866: $breadcrumb_text{'search'} = 'Enroll a student';
867: $breadcrumb_text{'userpicked'} = 'Select a user',
868: $breadcrumb_text{'modify'} = 'Set section/dates',
869: } else {
870: $breadcrumb_text{'search'} = 'Create/modify user';
871: $breadcrumb_text{'userpicked'} = 'Select a user',
872: $breadcrumb_text{'modify'} = 'Set user role',
873: }
874: return %breadcrumb_text;
875: }
876:
877: sub date_sections_select {
878: my ($context,$newuser,$formname,$permission) = @_;
879: my $cid = $env{'request.course.id'};
880: my ($cnum,$cdom) = &Apache::lonuserutils::get_course_identity($cid);
881: my $date_table = '<h3>'.&mt('Starting and Ending Dates').'</h3>'."\n".
882: &Apache::lonuserutils::date_setting_table(undef,undef,$context,
883: undef,$formname,$permission);
884: my $rowtitle = 'Section';
885: my $secbox = '<h3>'.&mt('Section').'</h3>'."\n".
886: &Apache::lonuserutils::section_picker($cdom,$cnum,'st',$rowtitle,
887: $permission);
888: my $output = $date_table.$secbox;
889: return $output;
890: }
891:
892: sub validation_javascript {
893: my ($context,$ccdomain,$pjump_def,$groupslist,$newuser,$formname,
894: $loaditem) = @_;
895: my $dc_setcourse_code = '';
896: my $nondc_setsection_code = '';
897: if ($context eq 'domain') {
898: my $dcdom = $env{'request.role.domain'};
899: $loaditem->{'onload'} = "document.cu.coursedesc.value='';";
900: $dc_setcourse_code = &Apache::lonuserutils::dc_setcourse_js('cu','singleuser');
901: } else {
902: $nondc_setsection_code =
903: &Apache::lonuserutils::setsections_javascript($formname,$groupslist);
904: }
905: my $js = &user_modification_js($pjump_def,$dc_setcourse_code,
906: $nondc_setsection_code,$groupslist);
907:
908: my ($jsback,$elements) = &crumb_utilities();
909: my $javascript_validations;
910: if ((&Apache::lonnet::allowed('mau',$ccdomain)) || ($newuser)) {
911: my ($krbdef,$krbdefdom) =
912: &Apache::loncommon::get_kerberos_defaults($ccdomain);
913: $javascript_validations =
914: &Apache::lonuserutils::javascript_validations('createuser',$krbdefdom,undef,
915: undef,$ccdomain);
916: }
917: $js .= "\n".
918: '<script type="text/javascript">'."\n".$jsback."\n".
919: $javascript_validations.'</script>';
920: return $js;
921: }
922:
923: sub display_existing_roles {
924: my ($r,$ccuname,$ccdomain,$inccourses) = @_;
925: my %rolesdump=&Apache::lonnet::dump('roles',$ccdomain,$ccuname);
926: # Build up table of user roles to allow revocation and re-enabling of roles.
927: my ($tmp) = keys(%rolesdump);
928: if ($tmp !~ /^(con_lost|error)/i) {
929: my $now=time;
930: my %lt=&Apache::lonlocal::texthash(
931: 'rer' => "Existing Roles",
932: 'rev' => "Revoke",
933: 'del' => "Delete",
934: 'ren' => "Re-Enable",
935: 'rol' => "Role",
936: 'ext' => "Extent",
937: 'sta' => "Start",
938: 'end' => "End",
939: );
940: my (%roletext,%sortrole,%roleclass,%rolepriv);
941: foreach my $area (sort { my $a1=join('_',(split('_',$a))[1,0]);
942: my $b1=join('_',(split('_',$b))[1,0]);
943: return $a1 cmp $b1;
944: } keys(%rolesdump)) {
945: next if ($area =~ /^rolesdef/);
946: my $envkey=$area;
947: my $role = $rolesdump{$area};
948: my $thisrole=$area;
949: $area =~ s/\_\w\w$//;
950: my ($role_code,$role_end_time,$role_start_time) =
951: split(/_/,$role);
952: # Is this a custom role? Get role owner and title.
953: my ($croleudom,$croleuname,$croletitle)=
954: ($role_code=~m{^cr/($match_domain)/($match_username)/(\w+)$});
955: my $allowed=0;
956: my $delallowed=0;
957: my $sortkey=$role_code;
958: my $class='Unknown';
959: if ($area =~ m{^/($match_domain)/($match_courseid)} ) {
960: $class='Course';
961: my ($coursedom,$coursedir) = ($1,$2);
962: $sortkey.="\0$coursedom";
963: # $1.'_'.$2 is the course id (eg. 103_12345abcef103l3).
964: my %coursedata=
965: &Apache::lonnet::coursedescription($1.'_'.$2);
966: my $carea;
967: if (defined($coursedata{'description'})) {
968: $carea=$coursedata{'description'}.
969: '<br />'.&mt('Domain').': '.$coursedom.(' 'x8).
970: &Apache::loncommon::syllabuswrapper('Syllabus',$coursedir,$coursedom);
971: $sortkey.="\0".$coursedata{'description'};
972: $class=$coursedata{'type'};
973: } else {
974: $carea=&mt('Unavailable course').': '.$area;
975: $sortkey.="\0".&mt('Unavailable course').': '.$area;
976: }
977: $sortkey.="\0$coursedir";
978: $inccourses->{$1.'_'.$2}=1;
979: if ((&Apache::lonnet::allowed('c'.$role_code,$1.'/'.$2)) ||
980: (&Apache::lonnet::allowed('c'.$role_code,$ccdomain))) {
981: $allowed=1;
982: }
983: if ((&Apache::lonnet::allowed('dro',$1)) ||
984: (&Apache::lonnet::allowed('dro',$ccdomain))) {
985: $delallowed=1;
986: }
987: # - custom role. Needs more info, too
988: if ($croletitle) {
989: if (&Apache::lonnet::allowed('ccr',$1.'/'.$2)) {
990: $allowed=1;
991: $thisrole.='.'.$role_code;
992: }
993: }
994: # Compute the background color based on $area
995: if ($area=~m{^/($match_domain)/($match_courseid)/(\w+)}) {
996: $carea.='<br />Section: '.$3;
997: $sortkey.="\0$3";
998: if (!$allowed) {
999: if ($env{'request.course.sec'} eq $3) {
1000: if (&Apache::lonnet::allowed('c'.$role_code,$1.'/'.$2.'/'.$3)) {
1001: $allowed = 1;
1002: }
1003: }
1004: }
1005: }
1006: $area=$carea;
1007: } else {
1008: $sortkey.="\0".$area;
1009: # Determine if current user is able to revoke privileges
1010: if ($area=~m{^/($match_domain)/}) {
1011: if ((&Apache::lonnet::allowed('c'.$role_code,$1)) ||
1012: (&Apache::lonnet::allowed('c'.$role_code,$ccdomain))) {
1013: $allowed=1;
1014: }
1015: if (((&Apache::lonnet::allowed('dro',$1)) ||
1016: (&Apache::lonnet::allowed('dro',$ccdomain))) &&
1017: ($role_code ne 'dc')) {
1018: $delallowed=1;
1019: }
1020: } else {
1021: if (&Apache::lonnet::allowed('c'.$role_code,'/')) {
1022: $allowed=1;
1023: }
1024: }
1025: if ($role_code eq 'ca' || $role_code eq 'au') {
1026: $class='Construction Space';
1027: } elsif ($role_code eq 'su') {
1028: $class='System';
1029: } else {
1030: $class='Domain';
1031: }
1032: }
1033: if (($role_code eq 'ca') || ($role_code eq 'aa')) {
1034: $area=~m{/($match_domain)/($match_username)};
1035: if (&Apache::lonuserutils::authorpriv($2,$1)) {
1036: $allowed=1;
1037: } else {
1038: $allowed=0;
1039: }
1040: }
1041: my $row = '';
1042: $row.= '<td>';
1043: my $active=1;
1044: $active=0 if (($role_end_time) && ($now>$role_end_time));
1045: if (($active) && ($allowed)) {
1046: $row.= '<input type="checkbox" name="rev:'.$thisrole.'" />';
1047: } else {
1048: if ($active) {
1049: $row.=' ';
1050: } else {
1051: $row.=&mt('expired or revoked');
1052: }
1053: }
1054: $row.='</td><td>';
1055: if ($allowed && !$active) {
1056: $row.= '<input type="checkbox" name="ren:'.$thisrole.'" />';
1057: } else {
1058: $row.=' ';
1059: }
1060: $row.='</td><td>';
1061: if ($delallowed) {
1062: $row.= '<input type="checkbox" name="del:'.$thisrole.'" />';
1063: } else {
1064: $row.=' ';
1065: }
1066: my $plaintext='';
1067: if (!$croletitle) {
1068: $plaintext=&Apache::lonnet::plaintext($role_code,$class)
1069: } else {
1070: $plaintext=
1071: "Customrole '$croletitle'<br />defined by $croleuname\@$croleudom";
1072: }
1073: $row.= '</td><td>'.$plaintext.
1074: '</td><td>'.$area.
1075: '</td><td>'.($role_start_time?localtime($role_start_time)
1076: : ' ' ).
1077: '</td><td>'.($role_end_time ?localtime($role_end_time)
1078: : ' ' )
1079: ."</td>";
1080: $sortrole{$sortkey}=$envkey;
1081: $roletext{$envkey}=$row;
1082: $roleclass{$envkey}=$class;
1083: $rolepriv{$envkey}=$allowed;
1084: #$r->print($row);
1085: } # end of foreach (table building loop)
1086: my $rolesdisplay = 0;
1087: my %output = ();
1088: foreach my $type ('Construction Space','Course','Group','Domain','System','Unknown') {
1089: $output{$type} = '';
1090: foreach my $which (sort {uc($a) cmp uc($b)} (keys(%sortrole))) {
1091: if ( ($roleclass{$sortrole{$which}} =~ /^\Q$type\E/ ) && ($rolepriv{$sortrole{$which}}) ) {
1092: $output{$type}.=
1093: &Apache::loncommon::start_data_table_row().
1094: $roletext{$sortrole{$which}}.
1095: &Apache::loncommon::end_data_table_row();
1096: }
1097: }
1098: unless($output{$type} eq '') {
1099: $output{$type} = '<tr class="LC_info_row">'.
1100: "<td align='center' colspan='7'>".&mt($type)."</td></tr>".
1101: $output{$type};
1102: $rolesdisplay = 1;
1103: }
1104: }
1105: if ($rolesdisplay == 1) {
1106: $r->print('
1107: <h3>'.$lt{'rer'}.'</h3>'.
1108: &Apache::loncommon::start_data_table("LC_createuser").
1109: &Apache::loncommon::start_data_table_header_row().
1110: '<th>'.$lt{'rev'}.'</th><th>'.$lt{'ren'}.'</th><th>'.$lt{'del'}.
1111: '</th><th>'.$lt{'rol'}.'</th><th>'.$lt{'ext'}.
1112: '</th><th>'.$lt{'sta'}.'</th><th>'.$lt{'end'}.'</th>'.
1113: &Apache::loncommon::end_data_table_header_row());
1114: foreach my $type ('Construction Space','Course','Group','Domain','System','Unknown') {
1115: if ($output{$type}) {
1116: $r->print($output{$type}."\n");
1117: }
1118: }
1119: $r->print(&Apache::loncommon::end_data_table());
1120: }
1121: } # End of check for keys in rolesdump
1122: return;
1123: }
1124:
1125: sub new_coauthor_roles {
1126: my ($r,$ccuname,$ccdomain) = @_;
1127: my $addrolesdisplay = 0;
1128: #
1129: # Co-Author
1130: #
1131: if (&Apache::lonuserutils::authorpriv($env{'user.name'},
1132: $env{'request.role.domain'}) &&
1133: ($env{'user.name'} ne $ccuname || $env{'user.domain'} ne $ccdomain)) {
1134: # No sense in assigning co-author role to yourself
1135: $addrolesdisplay = 1;
1136: my $cuname=$env{'user.name'};
1137: my $cudom=$env{'request.role.domain'};
1138: my %lt=&Apache::lonlocal::texthash(
1139: 'cs' => "Construction Space",
1140: 'act' => "Activate",
1141: 'rol' => "Role",
1142: 'ext' => "Extent",
1143: 'sta' => "Start",
1144: 'end' => "End",
1145: 'cau' => "Co-Author",
1146: 'caa' => "Assistant Co-Author",
1147: 'ssd' => "Set Start Date",
1148: 'sed' => "Set End Date"
1149: );
1150: $r->print('<h4>'.$lt{'cs'}.'</h4>'."\n".
1151: &Apache::loncommon::start_data_table()."\n".
1152: &Apache::loncommon::start_data_table_header_row()."\n".
1153: '<th>'.$lt{'act'}.'</th><th>'.$lt{'rol'}.'</th>'.
1154: '<th>'.$lt{'ext'}.'</th><th>'.$lt{'sta'}.'</th>'.
1155: '<th>'.$lt{'end'}.'</th>'."\n".
1156: &Apache::loncommon::end_data_table_header_row()."\n".
1157: &Apache::loncommon::start_data_table_row().'
1158: <td>
1159: <input type=checkbox name="act_'.$cudom.'_'.$cuname.'_ca" />
1160: </td>
1161: <td>'.$lt{'cau'}.'</td>
1162: <td>'.$cudom.'_'.$cuname.'</td>
1163: <td><input type="hidden" name="start_'.$cudom.'_'.$cuname.'_ca" value="" />
1164: <a href=
1165: "javascript:pjump('."'date_start','Start Date Co-Author',document.cu.start_$cudom\_$cuname\_ca.value,'start_$cudom\_$cuname\_ca','cu.pres','dateset'".')">'.$lt{'ssd'}.'</a></td>
1166: <td><input type="hidden" name="end_'.$cudom.'_'.$cuname.'_ca" value="" />
1167: <a href=
1168: "javascript:pjump('."'date_end','End Date Co-Author',document.cu.end_$cudom\_$cuname\_ca.value,'end_$cudom\_$cuname\_ca','cu.pres','dateset'".')">'.$lt{'sed'}.'</a></td>'."\n".
1169: &Apache::loncommon::end_data_table_row()."\n".
1170: &Apache::loncommon::start_data_table_row()."\n".
1171: '<td><input type=checkbox name="act_'.$cudom.'_'.$cuname.'_aa" /></td>
1172: <td>'.$lt{'caa'}.'</td>
1173: <td>'.$cudom.'_'.$cuname.'</td>
1174: <td><input type="hidden" name="start_'.$cudom.'_'.$cuname.'_aa" value="" />
1175: <a href=
1176: "javascript:pjump('."'date_start','Start Date Assistant Co-Author',document.cu.start_$cudom\_$cuname\_aa.value,'start_$cudom\_$cuname\_aa','cu.pres','dateset'".')">'.$lt{'ssd'}.'</a></td>
1177: <td><input type="hidden" name="end_'.$cudom.'_'.$cuname.'_aa" value="" />
1178: <a href=
1179: "javascript:pjump('."'date_end','End Date Assistant Co-Author',document.cu.end_$cudom\_$cuname\_aa.value,'end_$cudom\_$cuname\_aa','cu.pres','dateset'".')">'.$lt{'sed'}.'</a></td>'."\n".
1180: &Apache::loncommon::end_data_table_row()."\n".
1181: &Apache::loncommon::end_data_table());
1182: } elsif ($env{'request.role'} =~ /^au\./) {
1183: if (!(&Apache::lonuserutils::authorpriv($env{'user.name'},
1184: $env{'request.role.domain'}))) {
1185: $r->print('<span class="LC_error">'.
1186: &mt('You do not have privileges to assign co-author roles.').
1187: '</span>');
1188: } elsif (($env{'user.name'} eq $ccuname) &&
1189: ($env{'user.domain'} eq $ccdomain)) {
1190: $r->print(&mt('Assigning yourself a co-author or assistant co-author role in your own author area in Construction Space is not permitted'));
1191: }
1192: }
1193: return $addrolesdisplay;;
1194: }
1195:
1196: sub new_domain_roles {
1197: my ($r) = @_;
1198: my $addrolesdisplay = 0;
1199: #
1200: # Domain level
1201: #
1202: my $num_domain_level = 0;
1203: my $domaintext =
1204: '<h4>'.&mt('Domain Level').'</h4>'.
1205: &Apache::loncommon::start_data_table().
1206: &Apache::loncommon::start_data_table_header_row().
1207: '<th>'.&mt('Activate').'</th><th>'.&mt('Role').'</th><th>'.
1208: &mt('Extent').'</th>'.
1209: '<th>'.&mt('Start').'</th><th>'.&mt('End').'</th>'.
1210: &Apache::loncommon::end_data_table_header_row();
1211: foreach my $thisdomain (sort(&Apache::lonnet::all_domains())) {
1212: foreach my $role ('dc','li','dg','au','sc') {
1213: if (&Apache::lonnet::allowed('c'.$role,$thisdomain)) {
1214: my $plrole=&Apache::lonnet::plaintext($role);
1215: my %lt=&Apache::lonlocal::texthash(
1216: 'ssd' => "Set Start Date",
1217: 'sed' => "Set End Date"
1218: );
1219: $num_domain_level ++;
1220: $domaintext .=
1221: &Apache::loncommon::start_data_table_row().
1222: '<td><input type=checkbox name="act_'.$thisdomain.'_'.$role.'" /></td>
1223: <td>'.$plrole.'</td>
1224: <td>'.$thisdomain.'</td>
1225: <td><input type="hidden" name="start_'.$thisdomain.'_'.$role.'" value="" />
1226: <a href=
1227: "javascript:pjump('."'date_start','Start Date $plrole',document.cu.start_$thisdomain\_$role.value,'start_$thisdomain\_$role','cu.pres','dateset'".')">'.$lt{'ssd'}.'</a></td>
1228: <td><input type="hidden" name="end_'.$thisdomain.'_'.$role.'" value="" />
1229: <a href=
1230: "javascript:pjump('."'date_end','End Date $plrole',document.cu.end_$thisdomain\_$role.value,'end_$thisdomain\_$role','cu.pres','dateset'".')">'.$lt{'sed'}.'</a></td>'.
1231: &Apache::loncommon::end_data_table_row();
1232: }
1233: }
1234: }
1235: $domaintext.= &Apache::loncommon::end_data_table();
1236: if ($num_domain_level > 0) {
1237: $r->print($domaintext);
1238: $addrolesdisplay = 1;
1239: }
1240: return $addrolesdisplay;
1241: }
1242:
1243: sub user_authentication {
1244: my ($ccuname,$ccdomain,$krbdefdom,$abv_auth) = @_;
1245: my $currentauth=&Apache::lonnet::queryauthenticate($ccuname,$ccdomain);
1246: my ($loginscript,$outcome);
1247: if ($currentauth=~/^(krb)(4|5):(.*)/) {
1248: my $long_auth = $1.$2;
1249: my $curr_kerb_ver = $2;
1250: my $krbdefdom=$3;
1251: my $curr_authtype = $abv_auth->{$long_auth};
1252: my %param = ( formname => 'document.cu',
1253: kerb_def_dom => $krbdefdom,
1254: domain => $ccdomain,
1255: curr_authtype => $curr_authtype,
1256: curr_kerb_ver => $curr_kerb_ver,
1257: );
1258: $loginscript = &Apache::loncommon::authform_header(%param);
1259: }
1260: # Check for a bad authentication type
1261: if ($currentauth !~ /^(krb4|krb5|unix|internal|localauth):/) {
1262: # bad authentication scheme
1263: my %lt=&Apache::lonlocal::texthash(
1264: 'err' => "ERROR",
1265: 'uuas' => "This user has an unrecognized authentication scheme",
1266: 'adcs' => "Please alert a domain coordinator of this situation",
1267: 'sldb' => "Please specify login data below",
1268: 'ld' => "Login Data"
1269: );
1270: if (&Apache::lonnet::allowed('mau',$ccdomain)) {
1271: &initialize_authen_forms($ccdomain);
1272: my $choices = &Apache::lonuserutils::set_login($ccdomain,$authformkrb,$authformint,$authformloc);
1273: $outcome = <<ENDBADAUTH;
1274: <script type="text/javascript" language="Javascript">
1275: $loginscript
1276: </script>
1277: <span class="LC_error">$lt{'err'}:
1278: $lt{'uuas'} ($currentauth). $lt{'sldb'}.</span>
1279: <h3>$lt{'ld'}</h3>
1280: $choices
1281: ENDBADAUTH
1282: } else {
1283: # This user is not allowed to modify the user's
1284: # authentication scheme, so just notify them of the problem
1285: $outcome = <<ENDBADAUTH;
1286: <span class="LC_error"> $lt{'err'}:
1287: $lt{'uuas'} ($currentauth). $lt{'adcs'}.
1288: </span>
1289: ENDBADAUTH
1290: }
1291: } else { # Authentication type is valid
1292: &initialize_authen_forms($ccdomain,$currentauth,'modifyuser');
1293: my ($authformcurrent,$can_modify,@authform_others) =
1294: &modify_login_block($ccdomain,$currentauth);
1295: if (&Apache::lonnet::allowed('mau',$ccdomain)) {
1296: # Current user has login modification privileges
1297: my %lt=&Apache::lonlocal::texthash (
1298: 'ld' => "Login Data",
1299: 'ccld' => "Change Current Login Data",
1300: 'enld' => "Enter New Login Data"
1301: );
1302: $outcome =
1303: '<script type="text/javascript" language="Javascript">'."\n".
1304: $loginscript."\n".
1305: '</script>'."\n".
1306: '<h3>'.$lt{'ld'}.'</h3>'.
1307: &Apache::loncommon::start_data_table().
1308: &Apache::loncommon::start_data_table_row().
1309: '<td>'.$authformnop;
1310: if ($can_modify) {
1311: $outcome .= '</td>'."\n".
1312: &Apache::loncommon::end_data_table_row().
1313: &Apache::loncommon::start_data_table_row().
1314: '<td>'.$authformcurrent.'</td>'.
1315: &Apache::loncommon::end_data_table_row()."\n";
1316: } else {
1317: $outcome .= ' ('.$authformcurrent.')</td>'.
1318: &Apache::loncommon::end_data_table_row()."\n";
1319: }
1320: foreach my $item (@authform_others) {
1321: $outcome .= &Apache::loncommon::start_data_table_row().
1322: '<td>'.$item.'</td>'.
1323: &Apache::loncommon::end_data_table_row()."\n";
1324: }
1325: $outcome .= &Apache::loncommon::end_data_table();
1326: } else {
1327: if (&Apache::lonnet::allowed('mau',$env{'request.role.domain'})) {
1328: my %lt=&Apache::lonlocal::texthash(
1329: 'ccld' => "Change Current Login Data",
1330: 'yodo' => "You do not have privileges to modify the authentication configuration for this user.",
1331: 'ifch' => "If a change is required, contact a domain coordinator for the domain",
1332: );
1333: $outcome .= <<ENDNOPRIV;
1334: <h3>$lt{'ccld'}</h3>
1335: $lt{'yodo'} $lt{'ifch'}: $ccdomain
1336: ENDNOPRIV
1337: }
1338: }
1339: } ## End of "check for bad authentication type" logic
1340: return $outcome;
1341: }
1342:
1343: sub modify_login_block {
1344: my ($dom,$currentauth) = @_;
1345: my %domconfig = &Apache::lonnet::get_dom('configuration',['usercreation'],$dom);
1346: my ($authnum,%can_assign) =
1347: &Apache::loncommon::get_assignable_auth($dom);
1348: my ($authformcurrent,@authform_others,$show_override_msg);
1349: if ($currentauth=~/^krb(4|5):/) {
1350: $authformcurrent=$authformkrb;
1351: if ($can_assign{'int'}) {
1352: push(@authform_others,$authformint);
1353: }
1354: if ($can_assign{'loc'}) {
1355: push(@authform_others,$authformloc);
1356: }
1357: if (($can_assign{'krb4'}) || ($can_assign{'krb5'})) {
1358: $show_override_msg = 1;
1359: }
1360: } elsif ($currentauth=~/^internal:/) {
1361: $authformcurrent=$authformint;
1362: if (($can_assign{'krb4'}) || ($can_assign{'krb5'})) {
1363: push(@authform_others,$authformkrb);
1364: }
1365: if ($can_assign{'loc'}) {
1366: push(@authform_others,$authformloc);
1367: }
1368: if ($can_assign{'int'}) {
1369: $show_override_msg = 1;
1370: }
1371: } elsif ($currentauth=~/^unix:/) {
1372: $authformcurrent=$authformfsys;
1373: if (($can_assign{'krb4'}) || ($can_assign{'krb5'})) {
1374: push(@authform_others,$authformkrb);
1375: }
1376: if ($can_assign{'int'}) {
1377: push(@authform_others,$authformint);
1378: }
1379: if ($can_assign{'loc'}) {
1380: push(@authform_others,$authformloc);
1381: }
1382: if ($can_assign{'fsys'}) {
1383: $show_override_msg = 1;
1384: }
1385: } elsif ($currentauth=~/^localauth:/) {
1386: $authformcurrent=$authformloc;
1387: if (($can_assign{'krb4'}) || ($can_assign{'krb5'})) {
1388: push(@authform_others,$authformkrb);
1389: }
1390: if ($can_assign{'int'}) {
1391: push(@authform_others,$authformint);
1392: }
1393: if ($can_assign{'loc'}) {
1394: $show_override_msg = 1;
1395: }
1396: }
1397: if ($show_override_msg) {
1398: $authformcurrent = '<table><tr><td colspan="3">'.$authformcurrent.
1399: '</td></tr>'."\n".
1400: '<tr><td> </td>'.
1401: '<td><b>'.&mt('Currently in use').'</b></td>'.
1402: '<td align="right"><span class="LC_cusr_emph">'.
1403: &mt('will override current values').
1404: '</span></td></tr></table>';
1405: }
1406: return ($authformcurrent,$show_override_msg,@authform_others);
1407: }
1408:
1409: sub personal_data_display {
1410: my ($ccuname,$ccdomain,$newuser,$context,$inst_results) = @_;
1411: my ($output,$showforceid,%userenv,%canmodify);
1412: my @userinfo = ('firstname','middlename','lastname','generation',
1413: 'permanentemail','id');
1414: if (!$newuser) {
1415: # Get the users information
1416: %userenv = &Apache::lonnet::get('environment',
1417: ['firstname','middlename','lastname','generation',
1418: 'permanentemail','id'],$ccdomain,$ccuname);
1419: %canmodify =
1420: &Apache::lonuserutils::can_modify_userinfo($context,$ccdomain,
1421: \@userinfo);
1422: }
1423: my %lt=&Apache::lonlocal::texthash(
1424: 'pd' => "Personal Data",
1425: 'firstname' => "First Name",
1426: 'middlename' => "Middle Name",
1427: 'lastname' => "Last Name",
1428: 'generation' => "Generation",
1429: 'permanentemail' => "Permanent e-mail address",
1430: 'id' => "ID/Student Number",
1431: 'lg' => "Login Data"
1432: );
1433: my %textboxsize = (
1434: firstname => '15',
1435: middlename => '15',
1436: lastname => '15',
1437: generation => '5',
1438: permanentemail => '25',
1439: id => '15',
1440: );
1441: my $genhelp=&Apache::loncommon::help_open_topic('Generation');
1442: $output = '<h3>'.$lt{'pd'}.'</h3>'.
1443: &Apache::lonhtmlcommon::start_pick_box();
1444: foreach my $item (@userinfo) {
1445: my $rowtitle = $lt{$item};
1446: if ($item eq 'generation') {
1447: $rowtitle = $genhelp.$rowtitle;
1448: }
1449: $output .= &Apache::lonhtmlcommon::row_title($rowtitle,undef,'LC_oddrow_value')."\n";
1450: if ($newuser) {
1451: if (ref($inst_results) eq 'HASH') {
1452: if ($inst_results->{$item} ne '') {
1453: $output .= '<input type="hidden" name="c'.$item.'" value="'.$inst_results->{$item}.'" />'.$inst_results->{$item};
1454: } else {
1455: $output .= '<input type="text" name="c'.$item.'" size="'.$textboxsize{$item}.'" value="" />';
1456: }
1457: } else {
1458: $output .= '<input type="text" name="c'.$item.'" size="'.$textboxsize{$item}.'" value="" />';
1459: }
1460: } else {
1461: if ($canmodify{$item}) {
1462: $output .= '<input type="text" name="c'.$item.'" size="'.$textboxsize{$item}.'" value="'.$userenv{$item}.'" />';
1463: } else {
1464: $output .= $userenv{$item};
1465: }
1466: if ($item eq 'id') {
1467: $showforceid = $canmodify{$item};
1468: }
1469: }
1470: $output .= &Apache::lonhtmlcommon::row_closure(1);
1471: }
1472: $output .= &Apache::lonhtmlcommon::end_pick_box();
1473: if (wantarray) {
1474: return ($output,$showforceid);
1475: } else {
1476: return $output;
1477: }
1478: }
1479:
1480: # ================================================================= Phase Three
1481: sub update_user_data {
1482: my ($r,$context) = @_;
1483: my $uhome=&Apache::lonnet::homeserver($env{'form.ccuname'},
1484: $env{'form.ccdomain'});
1485: # Error messages
1486: my $error = '<span class="LC_error">'.&mt('Error').': ';
1487: my $end = '</span><br /><br />';
1488: my $rtnlink = '<a href="javascript:backPage(document.userupdate,'.
1489: "'$env{'form.prevphase'}','modify')".'" />'.
1490: &mt('Return to previous page').'</a>'.
1491: &Apache::loncommon::end_page();
1492: my $now = time;
1493: my $title;
1494: if (exists($env{'form.makeuser'})) {
1495: $title='Set Privileges for New User';
1496: } else {
1497: $title='Modify User Privileges';
1498: }
1499: my $newuser = 0;
1500: my ($jsback,$elements) = &crumb_utilities();
1501: my $jscript = '<script type="text/javascript">'."\n".
1502: $jsback."\n".'</script>'."\n";
1503: my %breadcrumb_text = &singleuser_breadcrumb();
1504: $r->print(&Apache::loncommon::start_page($title,$jscript));
1505: &Apache::lonhtmlcommon::add_breadcrumb
1506: ({href=>"javascript:backPage(document.userupdate)",
1507: text=>$breadcrumb_text{'search'},
1508: faq=>282,bug=>'Instructor Interface',});
1509: if ($env{'form.prevphase'} eq 'userpicked') {
1510: &Apache::lonhtmlcommon::add_breadcrumb
1511: ({href=>"javascript:backPage(document.userupdate,'get_user_info','select')",
1512: text=>$breadcrumb_text{'userpicked'},
1513: faq=>282,bug=>'Instructor Interface',});
1514: }
1515: &Apache::lonhtmlcommon::add_breadcrumb
1516: ({href=>"javascript:backPage(document.userupdate,'$env{'form.prevphase'}','modify')",
1517: text=>$breadcrumb_text{'modify'},
1518: faq=>282,bug=>'Instructor Interface',},
1519: {href=>"/adm/createuser",
1520: text=>"Result",
1521: faq=>282,bug=>'Instructor Interface',});
1522: my $helpitem = 'Course_Change_Privileges';
1523: if ($env{'form.action'} eq 'singlestudent') {
1524: $helpitem = 'Course_Add_Student';
1525: }
1526: $r->print(&Apache::lonhtmlcommon::breadcrumbs('User Management',
1527: $helpitem));
1528: $r->print(&update_result_form($uhome));
1529: # Check Inputs
1530: if (! $env{'form.ccuname'} ) {
1531: $r->print($error.&mt('No login name specified').'.'.$end.$rtnlink);
1532: return;
1533: }
1534: if ( $env{'form.ccuname'} ne
1535: &LONCAPA::clean_username($env{'form.ccuname'}) ) {
1536: $r->print($error.&mt('Invalid login name').'. '.
1537: &mt('Only letters, numbers, periods, dashes, @, and underscores are valid').'.'.
1538: $end.$rtnlink);
1539: return;
1540: }
1541: if (! $env{'form.ccdomain'} ) {
1542: $r->print($error.&mt('No domain specified').'.'.$end.$rtnlink);
1543: return;
1544: }
1545: if ( $env{'form.ccdomain'} ne
1546: &LONCAPA::clean_domain($env{'form.ccdomain'}) ) {
1547: $r->print($error.&mt ('Invalid domain name').'. '.
1548: &mt('Only letters, numbers, periods, dashes, and underscores are valid').'.'.
1549: $end.$rtnlink);
1550: return;
1551: }
1552: if ($uhome eq 'no_host') {
1553: $newuser = 1;
1554: }
1555: if (! exists($env{'form.makeuser'})) {
1556: # Modifying an existing user, so check the validity of the name
1557: if ($uhome eq 'no_host') {
1558: $r->print($error.&mt('Unable to determine home server for ').
1559: $env{'form.ccuname'}.&mt(' in domain ').
1560: $env{'form.ccdomain'}.'.');
1561: return;
1562: }
1563: }
1564: # Determine authentication method and password for the user being modified
1565: my $amode='';
1566: my $genpwd='';
1567: if ($env{'form.login'} eq 'krb') {
1568: $amode='krb';
1569: $amode.=$env{'form.krbver'};
1570: $genpwd=$env{'form.krbarg'};
1571: } elsif ($env{'form.login'} eq 'int') {
1572: $amode='internal';
1573: $genpwd=$env{'form.intarg'};
1574: } elsif ($env{'form.login'} eq 'fsys') {
1575: $amode='unix';
1576: $genpwd=$env{'form.fsysarg'};
1577: } elsif ($env{'form.login'} eq 'loc') {
1578: $amode='localauth';
1579: $genpwd=$env{'form.locarg'};
1580: $genpwd=" " if (!$genpwd);
1581: } elsif (($env{'form.login'} eq 'nochange') ||
1582: ($env{'form.login'} eq '' )) {
1583: # There is no need to tell the user we did not change what they
1584: # did not ask us to change.
1585: # If they are creating a new user but have not specified login
1586: # information this will be caught below.
1587: } else {
1588: $r->print($error.&mt('Invalid login mode or password').$end.$rtnlink);
1589: return;
1590: }
1591:
1592: $r->print('<h3>'.&mt('User [_1] in domain [_2]',
1593: $env{'form.ccuname'}, $env{'form.ccdomain'}).'</h3>');
1594: my (%alerts,%rulematch,%inst_results,%curr_rules);
1595: if ($env{'form.makeuser'}) {
1596: $r->print('<h3>'.&mt('Creating new account.').'</h3>');
1597: # Check for the authentication mode and password
1598: if (! $amode || ! $genpwd) {
1599: $r->print($error.&mt('Invalid login mode or password').$end.$rtnlink);
1600: return;
1601: }
1602: # Determine desired host
1603: my $desiredhost = $env{'form.hserver'};
1604: if (lc($desiredhost) eq 'default') {
1605: $desiredhost = undef;
1606: } else {
1607: my %home_servers =
1608: &Apache::lonnet::get_servers($env{'form.ccdomain'},'library');
1609: if (! exists($home_servers{$desiredhost})) {
1610: $r->print($error.&mt('Invalid home server specified').$end.$rtnlink);
1611: return;
1612: }
1613: }
1614: # Check ID format
1615: my %checkhash;
1616: my %checks = ('id' => 1);
1617: %{$checkhash{$env{'form.ccuname'}.':'.$env{'form.ccdomain'}}} = (
1618: 'newuser' => $newuser,
1619: 'id' => $env{'form.cid'},
1620: );
1621: if ($env{'form.cid'} ne '') {
1622: &Apache::loncommon::user_rule_check(\%checkhash,\%checks,\%alerts,
1623: \%rulematch,\%inst_results,\%curr_rules);
1624: if (ref($alerts{'id'}) eq 'HASH') {
1625: if (ref($alerts{'id'}{$env{'form.ccdomain'}}) eq 'HASH') {
1626: my $domdesc =
1627: &Apache::lonnet::domain($env{'form.ccdomain'},'description');
1628: if ($alerts{'id'}{$env{'form.ccdomain'}}{$env{'form.cid'}}) {
1629: my $userchkmsg;
1630: if (ref($curr_rules{$env{'form.ccdomain'}}) eq 'HASH') {
1631: $userchkmsg =
1632: &Apache::loncommon::instrule_disallow_msg('id',
1633: $domdesc,1).
1634: &Apache::loncommon::user_rule_formats($env{'form.ccdomain'},
1635: $domdesc,$curr_rules{$env{'form.ccdomain'}}{'id'},'id');
1636: }
1637: $r->print($error.&mt('Invalid ID format').$end.
1638: $userchkmsg.$rtnlink);
1639: return;
1640: }
1641: }
1642: }
1643: }
1644: # Call modifyuser
1645: my $result = &Apache::lonnet::modifyuser
1646: ($env{'form.ccdomain'},$env{'form.ccuname'},$env{'form.cid'},
1647: $amode,$genpwd,$env{'form.cfirstname'},
1648: $env{'form.cmiddlename'},$env{'form.clastname'},
1649: $env{'form.cgeneration'},undef,$desiredhost,
1650: $env{'form.cpermanentemail'});
1651: $r->print(&mt('Generating user').': '.$result);
1652: $uhome = &Apache::lonnet::homeserver($env{'form.ccuname'},
1653: $env{'form.ccdomain'});
1654: $r->print('<br />'.&mt('Home server').': '.$uhome.' '.
1655: &Apache::lonnet::hostname($uhome));
1656: } elsif (($env{'form.login'} ne 'nochange') &&
1657: ($env{'form.login'} ne '' )) {
1658: # Modify user privileges
1659: if (! $amode || ! $genpwd) {
1660: $r->print($error.'Invalid login mode or password'.$end.$rtnlink);
1661: return;
1662: }
1663: # Only allow authentification modification if the person has authority
1664: if (&Apache::lonnet::allowed('mau',$env{'form.ccdomain'})) {
1665: $r->print('Modifying authentication: '.
1666: &Apache::lonnet::modifyuserauth(
1667: $env{'form.ccdomain'},$env{'form.ccuname'},
1668: $amode,$genpwd));
1669: $r->print('<br />'.&mt('Home server').': '.&Apache::lonnet::homeserver
1670: ($env{'form.ccuname'},$env{'form.ccdomain'}));
1671: } else {
1672: # Okay, this is a non-fatal error.
1673: $r->print($error.&mt('You do not have the authority to modify this users authentification information').'.'.$end);
1674: }
1675: }
1676: ##
1677: my (@userroles,%userupdate,$cnum,$cdom,$namechanged);
1678: if ($context eq 'course') {
1679: ($cnum,$cdom) = &Apache::lonuserutils::get_course_identity();
1680: }
1681: if (! $env{'form.makeuser'} ) {
1682: # Check for need to change
1683: my %userenv = &Apache::lonnet::get
1684: ('environment',['firstname','middlename','lastname','generation',
1685: 'id','permanentemail','portfolioquota','inststatus'],
1686: $env{'form.ccdomain'},$env{'form.ccuname'});
1687: my ($tmp) = keys(%userenv);
1688: if ($tmp =~ /^(con_lost|error)/i) {
1689: %userenv = ();
1690: }
1691: my $no_forceid_alert;
1692: # Check to see if user information can be changed
1693: my %domconfig =
1694: &Apache::lonnet::get_dom('configuration',['usermodification'],
1695: $env{'form.ccdomain'});
1696: my @statuses = ('active','future');
1697: my %roles = &Apache::lonnet::get_my_roles($env{'form.ccuname'},$env{'form.ccdomain'},'userroles',\@statuses,undef,$env{'request.role.domain'});
1698: my ($auname,$audom);
1699: if ($context eq 'author') {
1700: $auname = $env{'user.name'};
1701: $audom = $env{'user.domain'};
1702: }
1703: foreach my $item (keys(%roles)) {
1704: my ($rolenum,$roledom,$role) = split(/:/,$item,-1);
1705: if ($context eq 'course') {
1706: if ($cnum ne '' && $cdom ne '') {
1707: if ($rolenum eq $cnum && $roledom eq $cdom) {
1708: if (!grep(/^\Q$role\E$/,@userroles)) {
1709: push(@userroles,$role);
1710: }
1711: }
1712: }
1713: } elsif ($context eq 'author') {
1714: if ($rolenum eq $auname && $roledom eq $audom) {
1715: if (!grep(/^\Q$role\E$/,@userroles)) {
1716: push(@userroles,$role);
1717: }
1718: }
1719: }
1720: }
1721: if ($env{'form.action'} eq 'singlestudent') {
1722: if (!grep(/^st$/,@userroles)) {
1723: push(@userroles,'st');
1724: }
1725: } else {
1726: # Check for course or co-author roles being activated or re-enabled
1727: if ($context eq 'author' || $context eq 'course') {
1728: foreach my $key (keys(%env)) {
1729: if ($context eq 'author') {
1730: if ($key=~/^form\.act_\Q$audom\E_\Q$auname\E_([^_]+)/) {
1731: if (!grep(/^\Q$1\E$/,@userroles)) {
1732: push(@userroles,$1);
1733: }
1734: } elsif ($key =~/^form\.ren\:\Q$audom\E\/\Q$auname\E_([^_]+)/) {
1735: if (!grep(/^\Q$1\E$/,@userroles)) {
1736: push(@userroles,$1);
1737: }
1738: }
1739: } elsif ($context eq 'course') {
1740: if ($key=~/^form\.act_\Q$cdom\E_\Q$cnum\E_([^_]+)/) {
1741: if (!grep(/^\Q$1\E$/,@userroles)) {
1742: push(@userroles,$1);
1743: }
1744: } elsif ($key =~/^form\.ren\:\Q$cdom\E\/\Q$cnum\E(\/?\w*)_([^_]+)/) {
1745: if (!grep(/^\Q$1\E$/,@userroles)) {
1746: push(@userroles,$1);
1747: }
1748: }
1749: }
1750: }
1751: }
1752: }
1753: #Check to see if we can change personal data for the user
1754: my (@mod_disallowed,@longroles);
1755: foreach my $role (@userroles) {
1756: if ($role eq 'cr') {
1757: push(@longroles,'Custom');
1758: } else {
1759: push(@longroles,&Apache::lonnet::plaintext($role));
1760: }
1761: }
1762: my @userinfo = ('firstname','middlename','lastname','generation','permanentemail','id');
1763: my %canmodify = &Apache::lonuserutils::can_modify_userinfo($context,$env{'form.ccdomain'},\@userinfo,\@userroles);
1764: foreach my $item (@userinfo) {
1765: # Strip leading and trailing whitespace
1766: $env{'form.c'.$item} =~ s/(\s+$|^\s+)//g;
1767: if (!$canmodify{$item}) {
1768: if (defined($env{'form.c'.$item})) {
1769: if ($env{'form.c'.$item} ne $userenv{$item}) {
1770: push(@mod_disallowed,$item);
1771: }
1772: }
1773: $env{'form.c'.$item} = $userenv{$item};
1774: }
1775: }
1776: # Check to see if we can change the ID/student number
1777: my $forceid = $env{'form.forceid'};
1778: my $recurseid = $env{'form.recurseid'};
1779: my (%alerts,%rulematch,%idinst_results,%curr_rules,%got_rules);
1780: my %uidhash = &Apache::lonnet::idrget($env{'form.ccdomain'},
1781: $env{'form.ccuname'});
1782: if (($uidhash{$env{'form.ccuname'}}) &&
1783: ($uidhash{$env{'form.ccuname'}}!~/error\:/) &&
1784: (!$forceid)) {
1785: if ($env{'form.cid'} ne $uidhash{$env{'form.ccuname'}}) {
1786: $env{'form.cid'} = $userenv{'id'};
1787: $no_forceid_alert = &mt('New student/employeeID does not match existing ID for this user.').'<br />'.&mt('Change is not permitted without checking the \'Force ID change\' checkbox on the previous page.').'<br />'."\n";
1788: }
1789: }
1790: if ($env{'form.cid'} ne $userenv{'id'}) {
1791: my $checkhash;
1792: my $checks = { 'id' => 1 };
1793: $checkhash->{$env{'form.ccuname'}.':'.$env{'form.ccdomain'}} =
1794: { 'newuser' => $newuser,
1795: 'id' => $env{'form.cid'},
1796: };
1797: &Apache::loncommon::user_rule_check($checkhash,$checks,
1798: \%alerts,\%rulematch,\%idinst_results,\%curr_rules,\%got_rules);
1799: if (ref($alerts{'id'}) eq 'HASH') {
1800: if (ref($alerts{'id'}{$env{'form.ccdomain'}}) eq 'HASH') {
1801: $env{'form.cid'} = $userenv{'id'};
1802: }
1803: }
1804: }
1805: my ($quotachanged,$oldportfolioquota,$newportfolioquota,
1806: $inststatus,$oldisdefault,$newisdefault,$olddefquotatext,
1807: $newdefquotatext);
1808: my ($defquota,$settingstatus) =
1809: &Apache::loncommon::default_quota($env{'form.ccdomain'},$inststatus);
1810: my $showquota;
1811: if (&Apache::lonnet::allowed('mpq',$env{'form.ccdomain'})) {
1812: $showquota = 1;
1813: }
1814: my %changeHash;
1815: $changeHash{'portfolioquota'} = $userenv{'portfolioquota'};
1816: if ($userenv{'portfolioquota'} ne '') {
1817: $oldportfolioquota = $userenv{'portfolioquota'};
1818: if ($env{'form.customquota'} == 1) {
1819: if ($env{'form.portfolioquota'} eq '') {
1820: $newportfolioquota = 0;
1821: } else {
1822: $newportfolioquota = $env{'form.portfolioquota'};
1823: $newportfolioquota =~ s/[^\d\.]//g;
1824: }
1825: if ($newportfolioquota != $oldportfolioquota) {
1826: $quotachanged = "a_admin($newportfolioquota,\%changeHash);
1827: }
1828: } else {
1829: $quotachanged = "a_admin('',\%changeHash);
1830: $newportfolioquota = $defquota;
1831: $newisdefault = 1;
1832: }
1833: } else {
1834: $oldisdefault = 1;
1835: $oldportfolioquota = $defquota;
1836: if ($env{'form.customquota'} == 1) {
1837: if ($env{'form.portfolioquota'} eq '') {
1838: $newportfolioquota = 0;
1839: } else {
1840: $newportfolioquota = $env{'form.portfolioquota'};
1841: $newportfolioquota =~ s/[^\d\.]//g;
1842: }
1843: $quotachanged = "a_admin($newportfolioquota,\%changeHash);
1844: } else {
1845: $newportfolioquota = $defquota;
1846: $newisdefault = 1;
1847: }
1848: }
1849: if ($oldisdefault) {
1850: $olddefquotatext = &get_defaultquota_text($settingstatus);
1851: }
1852: if ($newisdefault) {
1853: $newdefquotatext = &get_defaultquota_text($settingstatus);
1854: }
1855: if ($env{'form.cfirstname'} ne $userenv{'firstname'} ||
1856: $env{'form.cmiddlename'} ne $userenv{'middlename'} ||
1857: $env{'form.clastname'} ne $userenv{'lastname'} ||
1858: $env{'form.cgeneration'} ne $userenv{'generation'} ||
1859: $env{'form.cid'} ne $userenv{'id'} ||
1860: $env{'form.cpermanentemail'} ne $userenv{'permanentemail'} ) {
1861: $namechanged = 1;
1862: }
1863: if ($namechanged || $quotachanged) {
1864: $changeHash{'firstname'} = $env{'form.cfirstname'};
1865: $changeHash{'middlename'} = $env{'form.cmiddlename'};
1866: $changeHash{'lastname'} = $env{'form.clastname'};
1867: $changeHash{'generation'} = $env{'form.cgeneration'};
1868: $changeHash{'id'} = $env{'form.cid'};
1869: $changeHash{'permanentemail'} = $env{'form.cpermanentemail'};
1870: my ($quotachgresult,$namechgresult);
1871: if ($quotachanged) {
1872: $quotachgresult =
1873: &Apache::lonnet::put('environment',\%changeHash,
1874: $env{'form.ccdomain'},$env{'form.ccuname'});
1875: }
1876: if ($namechanged) {
1877: # Make the change
1878: $namechgresult =
1879: &Apache::lonnet::modifyuser($env{'form.ccdomain'},
1880: $env{'form.ccuname'},$changeHash{'id'},undef,undef,
1881: $changeHash{'firstname'},$changeHash{'middlename'},
1882: $changeHash{'lastname'},$changeHash{'generation'},
1883: $changeHash{'id'},undef,$changeHash{'permanentemail'});
1884: %userupdate = (
1885: lastname => $env{'form.clastname'},
1886: middlename => $env{'form.cmiddlename'},
1887: firstname => $env{'form.cfirstname'},
1888: generation => $env{'form.cgeneration'},
1889: id => $env{'form.cid'},
1890: );
1891: }
1892: if (($namechanged && $namechgresult eq 'ok') ||
1893: ($quotachanged && $quotachgresult eq 'ok')) {
1894: # Tell the user we changed the name
1895: my %lt=&Apache::lonlocal::texthash(
1896: 'uic' => "User Information Changed",
1897: 'frst' => "first",
1898: 'mddl' => "middle",
1899: 'lst' => "last",
1900: 'gen' => "generation",
1901: 'id' => "ID/Student number",
1902: 'mail' => "permanent e-mail",
1903: 'disk' => "disk space allocated to portfolio files",
1904: 'prvs' => "Previous",
1905: 'chto' => "Changed To"
1906: );
1907: $r->print('<h4>'.$lt{'uic'}.'</h4>'.
1908: &Apache::loncommon::start_data_table().
1909: &Apache::loncommon::start_data_table_header_row());
1910: $r->print(<<"END");
1911: <th> </th>
1912: <th>$lt{'frst'}</th>
1913: <th>$lt{'mddl'}</th>
1914: <th>$lt{'lst'}</th>
1915: <th>$lt{'gen'}</th>
1916: <th>$lt{'id'}</th>
1917: <th>$lt{'mail'}</th>
1918: END
1919: if ($showquota) {
1920: $r->print("
1921: <th>$lt{'disk'}</th>\n");
1922: }
1923: $r->print(&Apache::loncommon::end_data_table_header_row().
1924: &Apache::loncommon::start_data_table_row());
1925: $r->print(<<"END");
1926: <td><b>$lt{'prvs'}</b></td>
1927: <td>$userenv{'firstname'} </td>
1928: <td>$userenv{'middlename'} </td>
1929: <td>$userenv{'lastname'} </td>
1930: <td>$userenv{'generation'} </td>
1931: <td>$userenv{'id'}</td>
1932: <td>$userenv{'permanentemail'} </td>
1933: END
1934: if ($showquota) {
1935: $r->print("
1936: <td>$oldportfolioquota Mb $olddefquotatext </td>\n");
1937: }
1938: $r->print(&Apache::loncommon::end_data_table_row().
1939: &Apache::loncommon::start_data_table_row());
1940: $r->print(<<"END");
1941: <td><b>$lt{'chto'}</b></td>
1942: <td>$env{'form.cfirstname'} </td>
1943: <td>$env{'form.cmiddlename'} </td>
1944: <td>$env{'form.clastname'} </td>
1945: <td>$env{'form.cgeneration'} </td>
1946: <td>$env{'form.cid'} </td>
1947: <td>$env{'form.cpermanentemail'} </td>
1948: END
1949: if ($showquota) {
1950: $r->print("
1951: <td>$newportfolioquota Mb $newdefquotatext </td>\n");
1952: }
1953: $r->print(&Apache::loncommon::end_data_table_row().
1954: &Apache::loncommon::end_data_table().'<br />');
1955: if ($env{'form.cid'} ne $userenv{'id'}) {
1956: &Apache::lonnet::idput($env{'form.ccdomain'},
1957: ($env{'form.ccuname'} => $env{'form.cid'}));
1958: if (($recurseid) &&
1959: (&Apache::lonnet::allowed('mau',$env{'form.ccdomain'}))) {
1960: my $idresult =
1961: &Apache::lonuserutils::propagate_id_change(
1962: $env{'form.ccuname'},$env{'form.ccdomain'},
1963: \%userupdate);
1964: $r->print('<br />'.$idresult.'<br />');
1965: }
1966: }
1967: if (($env{'form.ccdomain'} eq $env{'user.domain'}) &&
1968: ($env{'form.ccuname'} eq $env{'user.name'})) {
1969: my %newenvhash;
1970: foreach my $key (keys(%changeHash)) {
1971: $newenvhash{'environment.'.$key} = $changeHash{$key};
1972: }
1973: &Apache::lonnet::appenv(%newenvhash);
1974: }
1975: } else { # error occurred
1976: $r->print('<span class="LC_error">'.&mt('Unable to successfully change environment for').' '.
1977: $env{'form.ccuname'}.' '.&mt('in domain').' '.
1978: $env{'form.ccdomain'}.'</span><br />');
1979: }
1980: } else { # End of if ($env ... ) logic
1981: # They did not want to change the users name or quota but we can
1982: # still tell them what the name and quota are
1983: my %lt=&Apache::lonlocal::texthash(
1984: 'id' => "ID/Student number",
1985: 'mail' => "Permanent e-mail",
1986: 'disk' => "Disk space allocated to user's portfolio files",
1987: );
1988: $r->print(<<"END");
1989: <h4>$userenv{'firstname'} $userenv{'middlename'} $userenv{'lastname'} $userenv{'generation'}
1990: END
1991: if ($userenv{'permanentemail'} ne '') {
1992: $r->print('<br />['.$lt{'mail'}.': '.
1993: $userenv{'permanentemail'}.']');
1994: }
1995: if ($showquota) {
1996: $r->print('<br />['.$lt{'disk'}.': '.$oldportfolioquota.' Mb '.
1997: $olddefquotatext.']');
1998: }
1999: $r->print('</h4>');
2000: }
2001: if (@mod_disallowed) {
2002: my ($rolestr,$contextname);
2003: if (@longroles > 0) {
2004: $rolestr = join(', ',@longroles);
2005: } else {
2006: $rolestr = &mt('No roles');
2007: }
2008: if ($context eq 'course') {
2009: $contextname = &mt('course');
2010: } elsif ($context eq 'author') {
2011: $contextname = &mt('co-author');
2012: }
2013: $r->print(&mt('The following fields were not updated: ').'<ul>');
2014: my %fieldtitles = &Apache::loncommon::personal_data_fieldtitles();
2015: foreach my $field (@mod_disallowed) {
2016: $r->print('<li>'.$fieldtitles{$field}.'</li>'."\n");
2017: }
2018: $r->print('</ul>');
2019: if (@mod_disallowed == 1) {
2020: $r->print(&mt("You do not have the authority to change this field given the user's current set of active/future [_1] roles:",$contextname));
2021: } else {
2022: $r->print(&mt("You do not have the authority to change these fields given the user's current set of active/future [_1] roles:",$contextname));
2023: }
2024: $r->print('<span class="LC_cusr_emph">'.$rolestr.'</span><br />'.
2025: &mt('Contact your <a href="[_1]">helpdesk</a> for more information.',"javascript:helpMenu('display')").'<br />');
2026: }
2027: $r->print($no_forceid_alert.
2028: &Apache::lonuserutils::print_namespacing_alerts($env{'form.ccdomain'},\%alerts, \%curr_rules));
2029: }
2030: if ($env{'form.action'} eq 'singlestudent') {
2031: &enroll_single_student($r,$uhome,$amode,$genpwd,$now,$newuser);
2032: } else {
2033: my $rolechanges = &update_roles($r);
2034: if (!$rolechanges && $namechanged) {
2035: if ($context eq 'course') {
2036: if (@userroles > 0) {
2037: if (grep(/^st$/,@userroles)) {
2038: my $classlistupdated =
2039: &Apache::lonuserutils::update_classlist($cdom,
2040: $cnum,$env{'form.ccdomain'},
2041: $env{'form.ccuname'},\%userupdate);
2042: }
2043: }
2044: }
2045: }
2046: }
2047: $r->print(&Apache::loncommon::end_page());
2048: }
2049:
2050: sub update_roles {
2051: my ($r) = @_;
2052: my $now=time;
2053: my $rolechanges = 0;
2054: my %disallowed;
2055: $r->print('<h3>'.&mt('Modifying Roles').'</h3>');
2056: foreach my $key (keys (%env)) {
2057: next if (! $env{$key});
2058: next if ($key eq 'form.action');
2059: # Revoke roles
2060: if ($key=~/^form\.rev/) {
2061: if ($key=~/^form\.rev\:([^\_]+)\_([^\_\.]+)$/) {
2062: # Revoke standard role
2063: my ($scope,$role) = ($1,$2);
2064: my $result =
2065: &Apache::lonnet::revokerole($env{'form.ccdomain'},
2066: $env{'form.ccuname'},
2067: $scope,$role);
2068: $r->print(&mt('Revoking [_1] in [_2]: [_3]',
2069: $role,$scope,'<b>'.$result.'</b>').'<br />');
2070: if ($role eq 'st') {
2071: my $result =
2072: &Apache::lonuserutils::classlist_drop($scope,
2073: $env{'form.ccuname'},$env{'form.ccdomain'},
2074: $now);
2075: $r->print($result);
2076: }
2077: }
2078: if ($key=~m{^form\.rev\:([^_]+)_cr\.cr/($match_domain)/($match_username)/(\w+)$}s) {
2079: # Revoke custom role
2080: $r->print(&mt('Revoking custom role:').
2081: ' '.$4.' by '.$3.':'.$2.' in '.$1.': <b>'.
2082: &Apache::lonnet::revokecustomrole($env{'form.ccdomain'},
2083: $env{'form.ccuname'},$1,$2,$3,$4).
2084: '</b><br />');
2085: }
2086: $rolechanges ++;
2087: } elsif ($key=~/^form\.del/) {
2088: if ($key=~/^form\.del\:([^\_]+)\_([^\_\.]+)$/) {
2089: # Delete standard role
2090: my ($scope,$role) = ($1,$2);
2091: my $result =
2092: &Apache::lonnet::assignrole($env{'form.ccdomain'},
2093: $env{'form.ccuname'},
2094: $scope,$role,$now,0,1);
2095: $r->print(&mt('Deleting [_1] in [_2]: [_3]',$role,$scope,
2096: '<b>'.$result.'</b>').'<br />');
2097: if ($role eq 'st') {
2098: my $result =
2099: &Apache::lonuserutils::classlist_drop($scope,
2100: $env{'form.ccuname'},$env{'form.ccdomain'},
2101: $now);
2102: $r->print($result);
2103: }
2104: }
2105: if ($key=~m{^form\.del\:([^_]+)_cr\.cr/($match_domain)/($match_username)/(\w+)$}) {
2106: my ($url,$rdom,$rnam,$rolename) = ($1,$2,$3,$4);
2107: # Delete custom role
2108: $r->print(&mt('Deleting custom role [_1] by [_2]:[_3] in [_4]',
2109: $rolename,$rnam,$rdom,$url).': <b>'.
2110: &Apache::lonnet::assigncustomrole($env{'form.ccdomain'},
2111: $env{'form.ccuname'},$url,$rdom,$rnam,$rolename,$now,
2112: 0,1).'</b><br />');
2113: }
2114: $rolechanges ++;
2115: } elsif ($key=~/^form\.ren/) {
2116: my $udom = $env{'form.ccdomain'};
2117: my $uname = $env{'form.ccuname'};
2118: # Re-enable standard role
2119: if ($key=~/^form\.ren\:([^\_]+)\_([^\_\.]+)$/) {
2120: my $url = $1;
2121: my $role = $2;
2122: my $logmsg;
2123: my $output;
2124: if ($role eq 'st') {
2125: if ($url =~ m-^/($match_domain)/($match_courseid)/?(\w*)$-) {
2126: my $result = &Apache::loncommon::commit_studentrole(\$logmsg,$udom,$uname,$url,$role,$now,0,$1,$2,$3);
2127: if (($result =~ /^error/) || ($result eq 'not_in_class') || ($result eq 'unknown_course') || ($result eq 'refused')) {
2128: if ($result eq 'refused' && $logmsg) {
2129: $output = $logmsg;
2130: } else {
2131: $output = "Error: $result\n";
2132: }
2133: } else {
2134: $output = &mt('Assigning').' '.$role.' in '.$url.
2135: &mt('starting').' '.localtime($now).
2136: ': <br />'.$logmsg.'<br />'.
2137: &mt('Add to classlist').': <b>ok</b><br />';
2138: }
2139: }
2140: } else {
2141: my $result=&Apache::lonnet::assignrole($env{'form.ccdomain'},
2142: $env{'form.ccuname'},$url,$role,0,$now);
2143: $output = &mt('Re-enabling [_1] in [_2]: <b>[_3]</b>',
2144: $role,$url,$result).'<br />';
2145: }
2146: $r->print($output);
2147: }
2148: # Re-enable custom role
2149: if ($key=~m{^form\.ren\:([^_]+)_cr\.cr/($match_domain)/($match_username)/(\w+)$}) {
2150: my ($url,$rdom,$rnam,$rolename) = ($1,$2,$3,$4);
2151: my $result = &Apache::lonnet::assigncustomrole(
2152: $env{'form.ccdomain'}, $env{'form.ccuname'},
2153: $url,$rdom,$rnam,$rolename,0,$now);
2154: $r->print(&mt('Re-enabling custom role [_1] by [_2]@[_3] in [_4] : <b>[_5]</b>',
2155: $rolename,$rnam,$rdom,$url,$result).'<br />');
2156: }
2157: $rolechanges ++;
2158: } elsif ($key=~/^form\.act/) {
2159: my $udom = $env{'form.ccdomain'};
2160: my $uname = $env{'form.ccuname'};
2161: if ($key=~/^form\.act\_($match_domain)\_($match_courseid)\_cr_cr_($match_domain)_($match_username)_([^\_]+)$/) {
2162: # Activate a custom role
2163: my ($one,$two,$three,$four,$five)=($1,$2,$3,$4,$5);
2164: my $url='/'.$one.'/'.$two;
2165: my $full=$one.'_'.$two.'_cr_cr_'.$three.'_'.$four.'_'.$five;
2166:
2167: my $start = ( $env{'form.start_'.$full} ?
2168: $env{'form.start_'.$full} :
2169: $now );
2170: my $end = ( $env{'form.end_'.$full} ?
2171: $env{'form.end_'.$full} :
2172: 0 );
2173:
2174: # split multiple sections
2175: my %sections = ();
2176: my $num_sections = &build_roles($env{'form.sec_'.$full},\%sections,$5);
2177: if ($num_sections == 0) {
2178: $r->print(&Apache::loncommon::commit_customrole($udom,$uname,$url,$three,$four,$five,$start,$end));
2179: } else {
2180: my %curr_groups =
2181: &Apache::longroup::coursegroups($one,$two);
2182: foreach my $sec (sort {$a cmp $b} keys %sections) {
2183: if (($sec eq 'none') || ($sec eq 'all') ||
2184: exists($curr_groups{$sec})) {
2185: $disallowed{$sec} = $url;
2186: next;
2187: }
2188: my $securl = $url.'/'.$sec;
2189: $r->print(&Apache::loncommon::commit_customrole($udom,$uname,$securl,$three,$four,$five,$start,$end));
2190: }
2191: }
2192: } elsif ($key=~/^form\.act\_($match_domain)\_($match_name)\_([^\_]+)$/) {
2193: # Activate roles for sections with 3 id numbers
2194: # set start, end times, and the url for the class
2195: my ($one,$two,$three)=($1,$2,$3);
2196: my $start = ( $env{'form.start_'.$one.'_'.$two.'_'.$three} ?
2197: $env{'form.start_'.$one.'_'.$two.'_'.$three} :
2198: $now );
2199: my $end = ( $env{'form.end_'.$one.'_'.$two.'_'.$three} ?
2200: $env{'form.end_'.$one.'_'.$two.'_'.$three} :
2201: 0 );
2202: my $url='/'.$one.'/'.$two;
2203: my $type = 'three';
2204: # split multiple sections
2205: my %sections = ();
2206: my $num_sections = &build_roles($env{'form.sec_'.$one.'_'.$two.'_'.$three},\%sections,$three);
2207: if ($num_sections == 0) {
2208: $r->print(&Apache::loncommon::commit_standardrole($udom,$uname,$url,$three,$start,$end,$one,$two,''));
2209: } else {
2210: my %curr_groups =
2211: &Apache::longroup::coursegroups($one,$two);
2212: my $emptysec = 0;
2213: foreach my $sec (sort {$a cmp $b} keys %sections) {
2214: $sec =~ s/\W//g;
2215: if ($sec ne '') {
2216: if (($sec eq 'none') || ($sec eq 'all') ||
2217: exists($curr_groups{$sec})) {
2218: $disallowed{$sec} = $url;
2219: next;
2220: }
2221: my $securl = $url.'/'.$sec;
2222: $r->print(&Apache::loncommon::commit_standardrole($udom,$uname,$securl,$three,$start,$end,$one,$two,$sec));
2223: } else {
2224: $emptysec = 1;
2225: }
2226: }
2227: if ($emptysec) {
2228: $r->print(&Apache::loncommon::commit_standardrole($udom,$uname,$url,$three,$start,$end,$one,$two,''));
2229: }
2230: }
2231: } elsif ($key=~/^form\.act\_([^\_]+)\_([^\_]+)$/) {
2232: # Activate roles for sections with two id numbers
2233: # set start, end times, and the url for the class
2234: my $start = ( $env{'form.start_'.$1.'_'.$2} ?
2235: $env{'form.start_'.$1.'_'.$2} :
2236: $now );
2237: my $end = ( $env{'form.end_'.$1.'_'.$2} ?
2238: $env{'form.end_'.$1.'_'.$2} :
2239: 0 );
2240: my $url='/'.$1.'/';
2241: # split multiple sections
2242: my %sections = ();
2243: my $num_sections = &build_roles($env{'form.sec_'.$1.'_'.$2},\%sections,$2);
2244: if ($num_sections == 0) {
2245: $r->print(&Apache::loncommon::commit_standardrole($udom,$uname,$url,$2,$start,$end,$1,undef,''));
2246: } else {
2247: my $emptysec = 0;
2248: foreach my $sec (sort {$a cmp $b} keys %sections) {
2249: if ($sec ne '') {
2250: my $securl = $url.'/'.$sec;
2251: $r->print(&Apache::loncommon::commit_standardrole($udom,$uname,$securl,$2,$start,$end,$1,undef,$sec));
2252: } else {
2253: $emptysec = 1;
2254: }
2255: }
2256: if ($emptysec) {
2257: $r->print(&Apache::loncommon::commit_standardrole($udom,$uname,$url,$2,$start,$end,$1,undef,''));
2258: }
2259: }
2260: } else {
2261: $r->print('<p><span class="LC_error">'.&mt('ERROR').': '.&mt('Unknown command').' <tt>'.$key.'</tt></span></p><br />');
2262: }
2263: foreach my $key (sort(keys(%disallowed))) {
2264: if (($key eq 'none') || ($key eq 'all')) {
2265: $r->print('<p>'.&mt('[_1] may not be used as the name for a section, as it is a reserved word.',$key));
2266: } else {
2267: $r->print('<p>'.&mt('[_1] may not be used as the name for a section, as it is the name of a course group.',$key));
2268: }
2269: $r->print(' '.&mt('Please <a href="javascript:history.go(-1)">go back</a> and choose a different section name.').'</p><br />');
2270: }
2271: $rolechanges ++;
2272: }
2273: } # End of foreach (keys(%env))
2274: # Flush the course logs so reverse user roles immediately updated
2275: &Apache::lonnet::flushcourselogs();
2276: if (!$rolechanges) {
2277: $r->print(&mt('No roles to modify'));
2278: }
2279: return $rolechanges;
2280: }
2281:
2282: sub enroll_single_student {
2283: my ($r,$uhome,$amode,$genpwd,$now,$newuser) = @_;
2284: $r->print('<h3>'.&mt('Enrolling Student').'</h3>');
2285:
2286: # Remove non alphanumeric values from section
2287: $env{'form.sections'}=~s/\W//g;
2288:
2289: # Clean out any old student roles the user has in this class.
2290: &Apache::lonuserutils::modifystudent($env{'form.ccdomain'},
2291: $env{'form.ccuname'},$env{'request.course.id'},undef,$uhome);
2292: my ($startdate,$enddate) = &Apache::lonuserutils::get_dates_from_form();
2293: my $enroll_result =
2294: &Apache::lonnet::modify_student_enrollment($env{'form.ccdomain'},
2295: $env{'form.ccuname'},$env{'form.cid'},$env{'form.cfirstname'},
2296: $env{'form.cmiddlename'},$env{'form.clastname'},
2297: $env{'form.generation'},$env{'form.sections'},$enddate,
2298: $startdate,'manual',undef,$env{'request.course.id'});
2299: if ($enroll_result =~ /^ok/) {
2300: $r->print(&mt('<b>[_1]</b> enrolled',$env{'form.ccuname'}.':'.$env{'form.ccdomain'}));
2301: if ($env{'form.sections'} ne '') {
2302: $r->print(' '.&mt('in section [_1]',$env{'form.sections'}));
2303: }
2304: my ($showstart,$showend);
2305: if ($startdate <= $now) {
2306: $showstart = &mt('Access starts immediately');
2307: } else {
2308: $showstart = &mt('Access starts: ').&Apache::lonlocal::locallocaltime($startdate);
2309: }
2310: if ($enddate == 0) {
2311: $showend = &mt('ends: no ending date');
2312: } else {
2313: $showend = &mt('ends: ').&Apache::lonlocal::locallocaltime($enddate);
2314: }
2315: $r->print('.<br />'.$showstart.'; '.$showend);
2316: if ($startdate <= $now && !$newuser) {
2317: $r->print("<p> ".&mt('If the student is currently logged-in to LON-CAPA, the new role will be available when the student next logs in.')."</p>");
2318: }
2319: } else {
2320: $r->print(&mt('unable to enroll').": ".$enroll_result);
2321: }
2322: return;
2323: }
2324:
2325: sub get_defaultquota_text {
2326: my ($settingstatus) = @_;
2327: my $defquotatext;
2328: if ($settingstatus eq '') {
2329: $defquotatext = &mt('(default)');
2330: } else {
2331: my ($usertypes,$order) =
2332: &Apache::lonnet::retrieve_inst_usertypes($env{'form.ccdomain'});
2333: if ($usertypes->{$settingstatus} eq '') {
2334: $defquotatext = &mt('(default)');
2335: } else {
2336: $defquotatext = &mt('(default for [_1])',$usertypes->{$settingstatus});
2337: }
2338: }
2339: return $defquotatext;
2340: }
2341:
2342: sub update_result_form {
2343: my ($uhome) = @_;
2344: my $outcome =
2345: '<form name="userupdate" method="post" />'."\n";
2346: foreach my $item ('srchby','srchin','srchtype','srchterm','srchdomain','ccuname','ccdomain') {
2347: $outcome .= '<input type="hidden" name="'.$item.'" value="'.$env{'form.'.$item}.'" />'."\n";
2348: }
2349: if ($env{'form.origname'} ne '') {
2350: $outcome .= '<input type="hidden" name="origname" value="'.$env{'form.origname'}.'" />'."\n";
2351: }
2352: foreach my $item ('sortby','seluname','seludom') {
2353: if (exists($env{'form.'.$item})) {
2354: $outcome .= '<input type="hidden" name="'.$item.'" value="'.$env{'form.'.$item}.'" />'."\n";
2355: }
2356: }
2357: if ($uhome eq 'no_host') {
2358: $outcome .= '<input type="hidden" name="forcenewuser" value="1" />'."\n";
2359: }
2360: $outcome .= '<input type="hidden" name="phase" value="" />'."\n".
2361: '<input type ="hidden" name="currstate" value="" />'."\n".
2362: '<input type ="hidden" name="action" value="'.$env{'form.action'}.'" />'."\n".
2363: '</form>';
2364: return $outcome;
2365: }
2366:
2367: sub quota_admin {
2368: my ($setquota,$changeHash) = @_;
2369: my $quotachanged;
2370: if (&Apache::lonnet::allowed('mpq',$env{'form.ccdomain'})) {
2371: # Current user has quota modification privileges
2372: $quotachanged = 1;
2373: $changeHash->{'portfolioquota'} = $setquota;
2374: }
2375: return $quotachanged;
2376: }
2377:
2378: sub build_roles {
2379: my ($sectionstr,$sections,$role) = @_;
2380: my $num_sections = 0;
2381: if ($sectionstr=~ /,/) {
2382: my @secnums = split/,/,$sectionstr;
2383: if ($role eq 'st') {
2384: $secnums[0] =~ s/\W//g;
2385: $$sections{$secnums[0]} = 1;
2386: $num_sections = 1;
2387: } else {
2388: foreach my $sec (@secnums) {
2389: $sec =~ ~s/\W//g;
2390: if (!($sec eq "")) {
2391: if (exists($$sections{$sec})) {
2392: $$sections{$sec} ++;
2393: } else {
2394: $$sections{$sec} = 1;
2395: $num_sections ++;
2396: }
2397: }
2398: }
2399: }
2400: } else {
2401: $sectionstr=~s/\W//g;
2402: unless ($sectionstr eq '') {
2403: $$sections{$sectionstr} = 1;
2404: $num_sections ++;
2405: }
2406: }
2407:
2408: return $num_sections;
2409: }
2410:
2411: # ========================================================== Custom Role Editor
2412:
2413: sub custom_role_editor {
2414: my ($r) = @_;
2415: my $rolename=$env{'form.rolename'};
2416:
2417: if ($rolename eq 'make new role') {
2418: $rolename=$env{'form.newrolename'};
2419: }
2420:
2421: $rolename=~s/[^A-Za-z0-9]//gs;
2422:
2423: if (!$rolename || $env{'form.phase'} eq 'pickrole') {
2424: &print_username_entry_form($r);
2425: return;
2426: }
2427: # ------------------------------------------------------- What can be assigned?
2428: my %full=();
2429: my %courselevel=();
2430: my %courselevelcurrent=();
2431: my $syspriv='';
2432: my $dompriv='';
2433: my $coursepriv='';
2434: my $body_top;
2435: my ($disp_dummy,$disp_roles) = &Apache::lonnet::get('roles',["st"]);
2436: my ($rdummy,$roledef)=
2437: &Apache::lonnet::get('roles',["rolesdef_$rolename"]);
2438: # ------------------------------------------------------- Does this role exist?
2439: $body_top .= '<h2>';
2440: if (($rdummy ne 'con_lost') && ($roledef ne '')) {
2441: $body_top .= &mt('Existing Role').' "';
2442: # ------------------------------------------------- Get current role privileges
2443: ($syspriv,$dompriv,$coursepriv)=split(/\_/,$roledef);
2444: } else {
2445: $body_top .= &mt('New Role').' "';
2446: $roledef='';
2447: }
2448: $body_top .= $rolename.'"</h2>';
2449: foreach my $item (split(/\:/,$Apache::lonnet::pr{'cr:c'})) {
2450: my ($priv,$restrict)=split(/\&/,$item);
2451: if (!$restrict) { $restrict='F'; }
2452: $courselevel{$priv}=$restrict;
2453: if ($coursepriv=~/\:$priv/) {
2454: $courselevelcurrent{$priv}=1;
2455: }
2456: $full{$priv}=1;
2457: }
2458: my %domainlevel=();
2459: my %domainlevelcurrent=();
2460: foreach my $item (split(/\:/,$Apache::lonnet::pr{'cr:d'})) {
2461: my ($priv,$restrict)=split(/\&/,$item);
2462: if (!$restrict) { $restrict='F'; }
2463: $domainlevel{$priv}=$restrict;
2464: if ($dompriv=~/\:$priv/) {
2465: $domainlevelcurrent{$priv}=1;
2466: }
2467: $full{$priv}=1;
2468: }
2469: my %systemlevel=();
2470: my %systemlevelcurrent=();
2471: foreach my $item (split(/\:/,$Apache::lonnet::pr{'cr:s'})) {
2472: my ($priv,$restrict)=split(/\&/,$item);
2473: if (!$restrict) { $restrict='F'; }
2474: $systemlevel{$priv}=$restrict;
2475: if ($syspriv=~/\:$priv/) {
2476: $systemlevelcurrent{$priv}=1;
2477: }
2478: $full{$priv}=1;
2479: }
2480: my ($jsback,$elements) = &crumb_utilities();
2481: my $button_code = "\n";
2482: my $head_script = "\n";
2483: $head_script .= '<script type="text/javascript">'."\n";
2484: my @template_roles = ("cc","in","ta","ep","st");
2485: foreach my $role (@template_roles) {
2486: $head_script .= &make_script_template($role);
2487: $button_code .= &make_button_code($role);
2488: }
2489: $head_script .= "\n".$jsback."\n".'</script>'."\n";
2490: $r->print(&Apache::loncommon::start_page('Custom Role Editor',$head_script));
2491: &Apache::lonhtmlcommon::add_breadcrumb
2492: ({href=>"javascript:backPage(document.form1,'pickrole','')",
2493: text=>"Pick custom role",
2494: faq=>282,bug=>'Instructor Interface',},
2495: {href=>"javascript:backPage(document.form1,'','')",
2496: text=>"Edit custom role",
2497: faq=>282,bug=>'Instructor Interface',});
2498: $r->print(&Apache::lonhtmlcommon::breadcrumbs('User Management',
2499: 'Course_Editing_Custom_Roles'));
2500:
2501: $r->print($body_top);
2502: my %lt=&Apache::lonlocal::texthash(
2503: 'prv' => "Privilege",
2504: 'crl' => "Course Level",
2505: 'dml' => "Domain Level",
2506: 'ssl' => "System Level");
2507: $r->print('Select a Template<br />');
2508: $r->print('<form action="">');
2509: $r->print($button_code);
2510: $r->print('</form>');
2511: $r->print(<<ENDCCF);
2512: <form name="form1" method="post">
2513: <input type="hidden" name="phase" value="set_custom_roles" />
2514: <input type="hidden" name="rolename" value="$rolename" />
2515: ENDCCF
2516: $r->print(&Apache::loncommon::start_data_table().
2517: &Apache::loncommon::start_data_table_header_row().
2518: '<th>'.$lt{'prv'}.'</th><th>'.$lt{'crl'}.'</th><th>'.$lt{'dml'}.
2519: '</th><th>'.$lt{'ssl'}.'</th>'.
2520: &Apache::loncommon::end_data_table_header_row());
2521: foreach my $priv (sort keys %full) {
2522: my $privtext = &Apache::lonnet::plaintext($priv);
2523: $r->print(&Apache::loncommon::start_data_table_row().
2524: '<td>'.$privtext.'</td><td>'.
2525: ($courselevel{$priv}?'<input type="checkbox" name="'.$priv.'_c" '.
2526: ($courselevelcurrent{$priv}?'checked="1"':'').' />':' ').
2527: '</td><td>'.
2528: ($domainlevel{$priv}?'<input type="checkbox" name="'.$priv.'_d" '.
2529: ($domainlevelcurrent{$priv}?'checked="1"':'').' />':' ').
2530: '</td><td>'.
2531: ($systemlevel{$priv}?'<input type="checkbox" name="'.$priv.'_s" '.
2532: ($systemlevelcurrent{$priv}?'checked="1"':'').' />':' ').
2533: '</td>'.
2534: &Apache::loncommon::end_data_table_row());
2535: }
2536: $r->print(&Apache::loncommon::end_data_table().
2537: '<input type="hidden" name="action" value="'.$env{'form.action'}.'" />'.
2538: '<input type="hidden" name="startrolename" value="'.$env{'form.rolename'}.
2539: '" />'."\n".'<input type="hidden" name="currstate" value="" />'."\n".
2540: '<input type="reset" value="'.&mt("Reset").'" />'."\n".
2541: '<input type="submit" value="'.&mt('Define Role').'" /></form>'.
2542: &Apache::loncommon::end_page());
2543: }
2544: # --------------------------------------------------------
2545: sub make_script_template {
2546: my ($role) = @_;
2547: my %full_c=();
2548: my %full_d=();
2549: my %full_s=();
2550: my $return_script;
2551: foreach my $item (split(/\:/,$Apache::lonnet::pr{'cr:c'})) {
2552: my ($priv,$restrict)=split(/\&/,$item);
2553: $full_c{$priv}=1;
2554: }
2555: foreach my $item (split(/\:/,$Apache::lonnet::pr{'cr:d'})) {
2556: my ($priv,$restrict)=split(/\&/,$item);
2557: $full_d{$priv}=1;
2558: }
2559: foreach my $item (split(/\:/,$Apache::lonnet::pr{'cr:s'})) {
2560: my ($priv,$restrict)=split(/\&/,$item);
2561: $full_s{$priv}=1;
2562: }
2563: $return_script .= 'function set_'.$role.'() {'."\n";
2564: my @temp = split(/:/,$Apache::lonnet::pr{$role.':c'});
2565: my %role_c;
2566: foreach my $priv (@temp) {
2567: my ($priv_item, $dummy) = split(/\&/,$priv);
2568: $role_c{$priv_item} = 1;
2569: }
2570: foreach my $priv_item (keys(%full_c)) {
2571: my ($priv, $dummy) = split(/\&/,$priv_item);
2572: if (exists($role_c{$priv})) {
2573: $return_script .= "document.form1.$priv"."_c.checked = true;\n";
2574: } else {
2575: $return_script .= "document.form1.$priv"."_c.checked = false;\n";
2576: }
2577: }
2578: my %role_d;
2579: @temp = split(/:/,$Apache::lonnet::pr{$role.':d'});
2580: foreach my $priv(@temp) {
2581: my ($priv_item, $dummy) = split(/\&/,$priv);
2582: $role_d{$priv_item} = 1;
2583: }
2584: foreach my $priv_item (keys(%full_d)) {
2585: my ($priv, $dummy) = split(/\&/,$priv_item);
2586: if (exists($role_d{$priv})) {
2587: $return_script .= "document.form1.$priv"."_d.checked = true;\n";
2588: } else {
2589: $return_script .= "document.form1.$priv"."_d.checked = false;\n";
2590: }
2591: }
2592: my %role_s;
2593: @temp = split(/:/,$Apache::lonnet::pr{$role.':s'});
2594: foreach my $priv(@temp) {
2595: my ($priv_item, $dummy) = split(/\&/,$priv);
2596: $role_s{$priv_item} = 1;
2597: }
2598: foreach my $priv_item (keys(%full_s)) {
2599: my ($priv, $dummy) = split(/\&/,$priv_item);
2600: if (exists($role_s{$priv})) {
2601: $return_script .= "document.form1.$priv"."_s.checked = true;\n";
2602: } else {
2603: $return_script .= "document.form1.$priv"."_s.checked = false;\n";
2604: }
2605: }
2606: $return_script .= '}'."\n";
2607: return ($return_script);
2608: }
2609: # ----------------------------------------------------------
2610: sub make_button_code {
2611: my ($role) = @_;
2612: my $label = &Apache::lonnet::plaintext($role);
2613: my $button_code = '<input type="button" onClick="set_'.$role.'()" value="'.$label.'" />';
2614: return ($button_code);
2615: }
2616: # ---------------------------------------------------------- Call to definerole
2617: sub set_custom_role {
2618: my ($r) = @_;
2619: my $rolename=$env{'form.rolename'};
2620: $rolename=~s/[^A-Za-z0-9]//gs;
2621: if (!$rolename) {
2622: &custom_role_editor($r);
2623: return;
2624: }
2625: my ($jsback,$elements) = &crumb_utilities();
2626: my $jscript = '<script type="text/javascript">'.$jsback."\n".'</script>';
2627:
2628: $r->print(&Apache::loncommon::start_page('Save Custom Role'),$jscript);
2629: &Apache::lonhtmlcommon::add_breadcrumb
2630: ({href=>"javascript:backPage(document.customresult,'pickrole','')",
2631: text=>"Pick custom role",
2632: faq=>282,bug=>'Instructor Interface',},
2633: {href=>"javascript:backPage(document.customresult,'selected_custom_edit','')",
2634: text=>"Edit custom role",
2635: faq=>282,bug=>'Instructor Interface',},
2636: {href=>"javascript:backPage(document.customresult,'set_custom_roles','')",
2637: text=>"Result",
2638: faq=>282,bug=>'Instructor Interface',});
2639: $r->print(&Apache::lonhtmlcommon::breadcrumbs('User Management',
2640: 'Course_Editing_Custom_Roles'));
2641:
2642: my ($rdummy,$roledef)=
2643: &Apache::lonnet::get('roles',["rolesdef_$rolename"]);
2644:
2645: # ------------------------------------------------------- Does this role exist?
2646: $r->print('<h3>');
2647: if (($rdummy ne 'con_lost') && ($roledef ne '')) {
2648: $r->print(&mt('Existing Role').' "');
2649: } else {
2650: $r->print(&mt('New Role').' "');
2651: $roledef='';
2652: }
2653: $r->print($rolename.'"</h3>');
2654: # ------------------------------------------------------- What can be assigned?
2655: my $sysrole='';
2656: my $domrole='';
2657: my $courole='';
2658:
2659: foreach my $item (split(/\:/,$Apache::lonnet::pr{'cr:c'})) {
2660: my ($priv,$restrict)=split(/\&/,$item);
2661: if (!$restrict) { $restrict=''; }
2662: if ($env{'form.'.$priv.'_c'}) {
2663: $courole.=':'.$item;
2664: }
2665: }
2666:
2667: foreach my $item (split(/\:/,$Apache::lonnet::pr{'cr:d'})) {
2668: my ($priv,$restrict)=split(/\&/,$item);
2669: if (!$restrict) { $restrict=''; }
2670: if ($env{'form.'.$priv.'_d'}) {
2671: $domrole.=':'.$item;
2672: }
2673: }
2674:
2675: foreach my $item (split(/\:/,$Apache::lonnet::pr{'cr:s'})) {
2676: my ($priv,$restrict)=split(/\&/,$item);
2677: if (!$restrict) { $restrict=''; }
2678: if ($env{'form.'.$priv.'_s'}) {
2679: $sysrole.=':'.$item;
2680: }
2681: }
2682: $r->print('<br />Defining Role: '.
2683: &Apache::lonnet::definerole($rolename,$sysrole,$domrole,$courole));
2684: if ($env{'request.course.id'}) {
2685: my $url='/'.$env{'request.course.id'};
2686: $url=~s/\_/\//g;
2687: $r->print('<br />'.&mt('Assigning Role to Self').': '.
2688: &Apache::lonnet::assigncustomrole($env{'user.domain'},
2689: $env{'user.name'},
2690: $url,
2691: $env{'user.domain'},
2692: $env{'user.name'},
2693: $rolename));
2694: }
2695: $r->print('<p><a href="javascript:backPage(document.customresult,'."'pickrole'".')">'.&mt('Create or edit another custom role').'</a></p><form name="customresult" method="post">');
2696: $r->print(&Apache::lonhtmlcommon::echo_form_input([]).'</form>');
2697: $r->print(&Apache::loncommon::end_page());
2698: }
2699:
2700: # ================================================================ Main Handler
2701: sub handler {
2702: my $r = shift;
2703: if ($r->header_only) {
2704: &Apache::loncommon::content_type($r,'text/html');
2705: $r->send_http_header;
2706: return OK;
2707: }
2708: my $context;
2709: if ($env{'request.course.id'}) {
2710: $context = 'course';
2711: } elsif ($env{'request.role'} =~ /^au\./) {
2712: $context = 'author';
2713: } else {
2714: $context = 'domain';
2715: }
2716: &Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},
2717: ['action','state','callingform','roletype','showrole','bulkaction']);
2718: &Apache::lonhtmlcommon::clear_breadcrumbs();
2719: if ($env{'form.action'} ne 'dateselect') {
2720: &Apache::lonhtmlcommon::add_breadcrumb
2721: ({href=>"/adm/createuser",
2722: text=>"User Management"});
2723: }
2724: my ($permission,$allowed) =
2725: &Apache::lonuserutils::get_permission($context);
2726: if (!$allowed) {
2727: $env{'user.error.msg'}=
2728: "/adm/createuser:cst:0:0:Cannot create/modify user data ".
2729: "or view user status.";
2730: return HTTP_NOT_ACCEPTABLE;
2731: }
2732:
2733: &Apache::loncommon::content_type($r,'text/html');
2734: $r->send_http_header;
2735:
2736: # Main switch on form.action and form.state, as appropriate
2737: if (! exists($env{'form.action'})) {
2738: $r->print(&header());
2739: $r->print(&Apache::lonhtmlcommon::breadcrumbs('User Management'));
2740: $r->print(&print_main_menu($permission,$context));
2741: $r->print(&Apache::loncommon::end_page());
2742: } elsif ($env{'form.action'} eq 'upload' && $permission->{'cusr'}) {
2743: $r->print(&header());
2744: &Apache::lonhtmlcommon::add_breadcrumb
2745: ({href=>'/adm/createuser?action=upload&state=',
2746: text=>"Upload Users List"});
2747: $r->print(&Apache::lonhtmlcommon::breadcrumbs('Upload Users List',
2748: 'Course_Create_Class_List'));
2749: $r->print('<form name="studentform" method="post" '.
2750: 'enctype="multipart/form-data" '.
2751: ' action="/adm/createuser">'."\n");
2752: if (! exists($env{'form.state'})) {
2753: &Apache::lonuserutils::print_first_users_upload_form($r,$context);
2754: } elsif ($env{'form.state'} eq 'got_file') {
2755: &Apache::lonuserutils::print_upload_manager_form($r,$context,
2756: $permission);
2757: } elsif ($env{'form.state'} eq 'enrolling') {
2758: if ($env{'form.datatoken'}) {
2759: &Apache::lonuserutils::upfile_drop_add($r,$context,$permission);
2760: }
2761: } else {
2762: &Apache::lonuserutils::print_first_users_upload_form($r,$context);
2763: }
2764: $r->print('</form>'.&Apache::loncommon::end_page());
2765: } elsif ((($env{'form.action'} eq 'singleuser') || ($env{'form.action'}
2766: eq 'singlestudent')) && ($permission->{'cusr'})) {
2767: my $phase = $env{'form.phase'};
2768: my @search = ('srchterm','srchby','srchin','srchtype','srchdomain');
2769: &Apache::loncreateuser::restore_prev_selections();
2770: my $srch;
2771: foreach my $item (@search) {
2772: $srch->{$item} = $env{'form.'.$item};
2773: }
2774:
2775: if (($phase eq 'get_user_info') || ($phase eq 'userpicked') ||
2776: ($phase eq 'createnewuser')) {
2777: if ($env{'form.phase'} eq 'createnewuser') {
2778: my $response;
2779: if ($env{'form.srchterm'} !~ /^$match_username$/) {
2780: my $response = &mt('You must specify a valid username. Only the following are allowed: letters numbers - . @');
2781: $env{'form.phase'} = '';
2782: &print_username_entry_form($r,$context,$response,$srch);
2783: } else {
2784: my $ccuname =&LONCAPA::clean_username($srch->{'srchterm'});
2785: my $ccdomain=&LONCAPA::clean_domain($srch->{'srchdomain'});
2786: &print_user_modification_page($r,$ccuname,$ccdomain,
2787: $srch,$response,$context,
2788: $permission);
2789: }
2790: } elsif ($env{'form.phase'} eq 'get_user_info') {
2791: my ($currstate,$response,$forcenewuser,$results) =
2792: &user_search_result($context,$srch);
2793: if ($env{'form.currstate'} eq 'modify') {
2794: $currstate = $env{'form.currstate'};
2795: }
2796: if ($currstate eq 'select') {
2797: my $operation;
2798: if ($env{'form.action'} eq 'singleuser') {
2799: $operation = 'createuser';
2800: } elsif ($env{'form.action'} eq 'singlestudent') {
2801: $operation = 'enrollstudent';
2802: }
2803: &print_user_selection_page($r,$response,$srch,$results,
2804: $operation,\@search,$context);
2805: } elsif ($currstate eq 'modify') {
2806: my ($ccuname,$ccdomain);
2807: if (($srch->{'srchby'} eq 'uname') &&
2808: ($srch->{'srchtype'} eq 'exact')) {
2809: $ccuname = $srch->{'srchterm'};
2810: $ccdomain= $srch->{'srchdomain'};
2811: } else {
2812: my @matchedunames = keys(%{$results});
2813: ($ccuname,$ccdomain) = split(/:/,$matchedunames[0]);
2814: }
2815: $ccuname =&LONCAPA::clean_username($ccuname);
2816: $ccdomain=&LONCAPA::clean_domain($ccdomain);
2817: if ($env{'form.forcenewuser'}) {
2818: $response = '';
2819: }
2820: &print_user_modification_page($r,$ccuname,$ccdomain,
2821: $srch,$response,$context,
2822: $permission);
2823: } elsif ($currstate eq 'query') {
2824: &print_user_query_page($r,'createuser');
2825: } else {
2826: &print_username_entry_form($r,$context,$response,$srch,
2827: $forcenewuser);
2828: }
2829: } elsif ($env{'form.phase'} eq 'userpicked') {
2830: my $ccuname = &LONCAPA::clean_username($env{'form.seluname'});
2831: my $ccdomain = &LONCAPA::clean_domain($env{'form.seludom'});
2832: &print_user_modification_page($r,$ccuname,$ccdomain,$srch,'',
2833: $context,$permission);
2834: }
2835: } elsif ($env{'form.phase'} eq 'update_user_data') {
2836: &update_user_data($r,$context);
2837: } else {
2838: &print_username_entry_form($r,$context,undef,$srch);
2839: }
2840: } elsif ($env{'form.action'} eq 'custom' && $permission->{'custom'}) {
2841: if ($env{'form.phase'} eq 'set_custom_roles') {
2842: &set_custom_role($r);
2843: } else {
2844: &custom_role_editor($r);
2845: }
2846: } elsif (($env{'form.action'} eq 'listusers') &&
2847: ($permission->{'view'} || $permission->{'cusr'})) {
2848: if ($env{'form.phase'} eq 'bulkchange') {
2849: &Apache::lonhtmlcommon::add_breadcrumb
2850: ({href=>'/adm/createuser?action=listusers',
2851: text=>"List Users"},
2852: {href=>"/adm/createuser",
2853: text=>"Result"});
2854: my $setting = $env{'form.roletype'};
2855: my $choice = $env{'form.bulkaction'};
2856: $r->print(&header());
2857: $r->print(&Apache::lonhtmlcommon::breadcrumbs("Update Users",
2858: 'Course_View_Class_List'));
2859: if ($permission->{'cusr'}) {
2860: &Apache::lonuserutils::update_user_list($r,$context,$setting,$choice);
2861: $r->print(&Apache::loncommon::end_page());
2862: } else {
2863: $r->print(&mt('You are not authorized to make bulk changes to user roles'));
2864: $r->print('<p><a href="/adm/createuser?action=listusers">'.&mt('Display User Lists').'</a>');
2865: $r->print(&Apache::loncommon::end_page());
2866: }
2867: } else {
2868: &Apache::lonhtmlcommon::add_breadcrumb
2869: ({href=>'/adm/createuser?action=listusers',
2870: text=>"List Users"});
2871: my ($cb_jscript,$jscript,$totcodes,$codetitles,$idlist,$idlist_titles);
2872: my $formname = 'studentform';
2873: if ($context eq 'domain' && $env{'form.roletype'} eq 'course') {
2874: ($cb_jscript,$jscript,$totcodes,$codetitles,$idlist,$idlist_titles) =
2875: &Apache::lonuserutils::courses_selector($env{'request.role.domain'},
2876: $formname);
2877: $jscript .= &verify_user_display();
2878: my $js = &add_script($jscript).$cb_jscript;
2879: my $loadcode =
2880: &Apache::lonuserutils::course_selector_loadcode($formname);
2881: if ($loadcode ne '') {
2882: $r->print(&header($js,{'onload' => $loadcode,}));
2883: } else {
2884: $r->print(&header($js));
2885: }
2886: } else {
2887: $r->print(&header(&add_script(&verify_user_display())));
2888: }
2889: $r->print(&Apache::lonhtmlcommon::breadcrumbs("List Users",
2890: 'Course_View_Class_List'));
2891: &Apache::lonuserutils::print_userlist($r,undef,$permission,$context,
2892: $formname,$totcodes,$codetitles,$idlist,$idlist_titles);
2893: $r->print(&Apache::loncommon::end_page());
2894: }
2895: } elsif ($env{'form.action'} eq 'drop' && $permission->{'cusr'}) {
2896: $r->print(&header());
2897: &Apache::lonhtmlcommon::add_breadcrumb
2898: ({href=>'/adm/createuser?action=drop',
2899: text=>"Drop Students"});
2900: if (!exists($env{'form.state'})) {
2901: $r->print(&Apache::lonhtmlcommon::breadcrumbs('Drop Students',
2902: 'Course_Drop_Student'));
2903:
2904: &Apache::lonuserutils::print_drop_menu($r,$context,$permission);
2905: } elsif ($env{'form.state'} eq 'done') {
2906: &Apache::lonhtmlcommon::add_breadcrumb
2907: ({href=>'/adm/createuser?action=drop',
2908: text=>"Result"});
2909: $r->print(&Apache::lonhtmlcommon::breadcrumbs('Drop Students',
2910: 'Course_Drop_Student'));
2911: &Apache::lonuserutils::update_user_list($r,$context,undef,
2912: $env{'form.action'});
2913: }
2914: $r->print(&Apache::loncommon::end_page());
2915: } elsif ($env{'form.action'} eq 'dateselect') {
2916: if ($permission->{'cusr'}) {
2917: $r->print(&header(undef,undef,{'no_nav_bar' => 1}).
2918: &Apache::lonuserutils::date_section_selector($context,
2919: $permission).
2920: &Apache::loncommon::end_page());
2921: } else {
2922: $r->print(&header().
2923: '<span class="LC_error">'.&mt('You do not have permission to modify dates or sections for users').'</span>'.
2924: &Apache::loncommon::end_page());
2925: }
2926: } else {
2927: $r->print(&header());
2928: $r->print(&Apache::lonhtmlcommon::breadcrumbs('User Management'));
2929: $r->print(&print_main_menu($permission,$context));
2930: $r->print(&Apache::loncommon::end_page());
2931: }
2932: return OK;
2933: }
2934:
2935: sub header {
2936: my ($jscript,$loaditems,$args) = @_;
2937: my $start_page;
2938: if (ref($loaditems) eq 'HASH') {
2939: $start_page=&Apache::loncommon::start_page('User Management',$jscript,{'add_entries' => $loaditems});
2940: } else {
2941: $start_page=&Apache::loncommon::start_page('User Management',$jscript,$args);
2942: }
2943: return $start_page;
2944: }
2945:
2946: sub add_script {
2947: my ($js) = @_;
2948: return '<script type="text/javascript">'."\n".$js."\n".'</script>';
2949: }
2950:
2951: sub verify_user_display {
2952: my $output = <<"END";
2953:
2954: function display_update() {
2955: document.studentform.action.value = 'listusers';
2956: document.studentform.phase.value = 'display';
2957: document.studentform.submit();
2958: }
2959:
2960: END
2961: return $output;
2962:
2963: }
2964:
2965: ###############################################################
2966: ###############################################################
2967: # Menu Phase One
2968: sub print_main_menu {
2969: my ($permission,$context) = @_;
2970: my %links = (
2971: domain => {
2972: upload => 'Upload a File of Users',
2973: singleuser => 'Add/Modify a Single User',
2974: listusers => 'Manage Multiple Users',
2975: },
2976: author => {
2977: upload => 'Upload a File of Co-authors',
2978: singleuser => 'Add/Modify a Single Co-author',
2979: listusers => 'Display Co-authors and Manage Multiple Users',
2980: },
2981: course => {
2982: upload => 'Upload a File of Course Users',
2983: singleuser => 'Add/Modify a Single Course User',
2984: listusers => 'Display Class Lists and Manage Multiple Users',
2985: },
2986: );
2987: my @menu =
2988: (
2989: { text => $links{$context}{'upload'},
2990: help => 'Course_Create_Class_List',
2991: action => 'upload',
2992: permission => $permission->{'cusr'},
2993: },
2994: { text => $links{$context}{'singleuser'},
2995: help => 'Course_Change_Privileges',
2996: action => 'singleuser',
2997: permission => $permission->{'cusr'},
2998: },
2999: { text => $links{$context}{'listusers'},
3000: help => 'Course_View_Class_List',
3001: action => 'listusers',
3002: permission => ($permission->{'view'} || $permission->{'cusr'}),
3003: },
3004: );
3005: if ($context eq 'domain' || $context eq 'course') {
3006: my $customlink = { text => 'Edit Custom Roles',
3007: help => 'Course_Editing_Custom_Roles',
3008: action => 'custom',
3009: permission => $permission->{'custom'},
3010: };
3011: push(@menu,$customlink);
3012: }
3013: if ($context eq 'course') {
3014: my ($cnum,$cdom) = &Apache::lonuserutils::get_course_identity();
3015: my @courselinks =
3016: (
3017: { text => 'Enroll a Single Student',
3018: help => 'Course_Add_Student',
3019: action => 'singlestudent',
3020: permission => $permission->{'cusr'},
3021: },
3022: { text => 'Drop Students',
3023: help => 'Course_Drop_Student',
3024: action => 'drop',
3025: permission => $permission->{'cusr'},
3026: });
3027: if (!exists($permission->{'cusr_section'})) {
3028: push(@courselinks,
3029: { text => 'Automated Student Enrollment Manager',
3030: permission => (&Apache::lonnet::auto_run($cnum,$cdom)
3031: && $permission->{'cusr'}),
3032: url => '/adm/populate',
3033: });
3034: }
3035: push(@courselinks,
3036: { text => 'Manage Course Groups',
3037: help => 'Course_Manage_Group',
3038: permission => $permission->{'grp_manage'},
3039: url => '/adm/coursegroups?refpage=cusr',
3040: });
3041: push(@menu,@courselinks);
3042: }
3043: my $menu_html = '';
3044: foreach my $menu_item (@menu) {
3045: next if (! $menu_item->{'permission'});
3046: $menu_html.='<p>';
3047: $menu_html.='<font size="+1">';
3048: if (exists($menu_item->{'url'})) {
3049: $menu_html.=qq{<a href="$menu_item->{'url'}">};
3050: } else {
3051: $menu_html.=
3052: qq{<a href="/adm/createuser?action=$menu_item->{'action'}">};
3053: }
3054: $menu_html.= &mt($menu_item->{'text'}).'</a></font>';
3055: if (exists($menu_item->{'help'})) {
3056: $menu_html.=
3057: &Apache::loncommon::help_open_topic($menu_item->{'help'});
3058: }
3059: $menu_html.='</p>';
3060: }
3061: return $menu_html;
3062: }
3063:
3064: sub restore_prev_selections {
3065: my %saveable_parameters = ('srchby' => 'scalar',
3066: 'srchin' => 'scalar',
3067: 'srchtype' => 'scalar',
3068: );
3069: &Apache::loncommon::store_settings('user','user_picker',
3070: \%saveable_parameters);
3071: &Apache::loncommon::restore_settings('user','user_picker',
3072: \%saveable_parameters);
3073: }
3074:
3075: #-------------------------------------------------- functions for &phase_two
3076: sub user_search_result {
3077: my ($context,$srch) = @_;
3078: my %allhomes;
3079: my %inst_matches;
3080: my %srch_results;
3081: my ($response,$currstate,$forcenewuser,$dirsrchres);
3082: $srch->{'srchterm'} =~ s/\s+/ /g;
3083: if ($srch->{'srchby'} !~ /^(uname|lastname|lastfirst)$/) {
3084: $response = &mt('Invalid search.');
3085: }
3086: if ($srch->{'srchin'} !~ /^(crs|dom|alc|instd)$/) {
3087: $response = &mt('Invalid search.');
3088: }
3089: if ($srch->{'srchtype'} !~ /^(exact|contains|begins)$/) {
3090: $response = &mt('Invalid search.');
3091: }
3092: if ($srch->{'srchterm'} eq '') {
3093: $response = &mt('You must enter a search term.');
3094: }
3095: if ($srch->{'srchterm'} =~ /^\s+$/) {
3096: $response = &mt('Your search term must contain more than just spaces.');
3097: }
3098: if (($srch->{'srchin'} eq 'dom') || ($srch->{'srchin'} eq 'instd')) {
3099: if (($srch->{'srchdomain'} eq '') ||
3100: ! (&Apache::lonnet::domain($srch->{'srchdomain'}))) {
3101: $response = &mt('You must specify a valid domain when searching in a domain or institutional directory.')
3102: }
3103: }
3104: if (($srch->{'srchin'} eq 'dom') || ($srch->{'srchin'} eq 'crs') ||
3105: ($srch->{'srchin'} eq 'alc')) {
3106: if ($srch->{'srchby'} eq 'uname') {
3107: if ($srch->{'srchterm'} !~ /^$match_username$/) {
3108: $response = &mt('You must specify a valid username. Only the following are allowed: letters numbers - . @');
3109: }
3110: }
3111: }
3112: if ($response ne '') {
3113: $response = '<span class="LC_warning">'.$response.'</span>';
3114: }
3115: if ($srch->{'srchin'} eq 'instd') {
3116: my $instd_chk = &directorysrch_check($srch);
3117: if ($instd_chk ne 'ok') {
3118: $response = '<span class="LC_warning">'.$instd_chk.'</span>'.
3119: '<br />'.&mt('You may want to search in the LON-CAPA domain instead of the institutional directory.').'<br /><br />';
3120: }
3121: }
3122: if ($response ne '') {
3123: return ($currstate,$response);
3124: }
3125: if ($srch->{'srchby'} eq 'uname') {
3126: if (($srch->{'srchin'} eq 'dom') || ($srch->{'srchin'} eq 'crs')) {
3127: if ($env{'form.forcenew'}) {
3128: if ($srch->{'srchdomain'} ne $env{'request.role.domain'}) {
3129: my $uhome=&Apache::lonnet::homeserver($srch->{'srchterm'},$srch->{'srchdomain'});
3130: if ($uhome eq 'no_host') {
3131: my $domdesc = &Apache::lonnet::domain($env{'request.role.domain'},'description');
3132: my $showdom = &display_domain_info($env{'request.role.domain'});
3133: $response = &mt('New users can only be created in the domain to which your current role belongs - [_1].',$showdom);
3134: } else {
3135: $currstate = 'modify';
3136: }
3137: } else {
3138: $currstate = 'modify';
3139: }
3140: } else {
3141: if ($srch->{'srchin'} eq 'dom') {
3142: if ($srch->{'srchtype'} eq 'exact') {
3143: my $uhome=&Apache::lonnet::homeserver($srch->{'srchterm'},$srch->{'srchdomain'});
3144: if ($uhome eq 'no_host') {
3145: ($currstate,$response,$forcenewuser) =
3146: &build_search_response($context,$srch,%srch_results);
3147: } else {
3148: $currstate = 'modify';
3149: }
3150: } else {
3151: %srch_results = &Apache::lonnet::usersearch($srch);
3152: ($currstate,$response,$forcenewuser) =
3153: &build_search_response($context,$srch,%srch_results);
3154: }
3155: } else {
3156: my $courseusers = &get_courseusers();
3157: if ($srch->{'srchtype'} eq 'exact') {
3158: if (exists($courseusers->{$srch->{'srchterm'}.':'.$srch->{'srchdomain'}})) {
3159: $currstate = 'modify';
3160: } else {
3161: ($currstate,$response,$forcenewuser) =
3162: &build_search_response($context,$srch,%srch_results);
3163: }
3164: } else {
3165: foreach my $user (keys(%$courseusers)) {
3166: my ($cuname,$cudomain) = split(/:/,$user);
3167: if ($cudomain eq $srch->{'srchdomain'}) {
3168: my $matched = 0;
3169: if ($srch->{'srchtype'} eq 'begins') {
3170: if ($cuname =~ /^\Q$srch->{'srchterm'}\E/i) {
3171: $matched = 1;
3172: }
3173: } else {
3174: if ($cuname =~ /\Q$srch->{'srchterm'}\E/i) {
3175: $matched = 1;
3176: }
3177: }
3178: if ($matched) {
3179: $srch_results{$user} =
3180: {&Apache::lonnet::get('environment',
3181: ['firstname',
3182: 'lastname',
3183: 'permanentemail'],
3184: $cudomain,$cuname)};
3185: }
3186: }
3187: }
3188: ($currstate,$response,$forcenewuser) =
3189: &build_search_response($context,$srch,%srch_results);
3190: }
3191: }
3192: }
3193: } elsif ($srch->{'srchin'} eq 'alc') {
3194: $currstate = 'query';
3195: } elsif ($srch->{'srchin'} eq 'instd') {
3196: ($dirsrchres,%srch_results) = &Apache::lonnet::inst_directory_query($srch);
3197: if ($dirsrchres eq 'ok') {
3198: ($currstate,$response,$forcenewuser) =
3199: &build_search_response($context,$srch,%srch_results);
3200: } else {
3201: my $showdom = &display_domain_info($srch->{'srchdomain'});
3202: $response = '<span class="LC_warning">'.
3203: &mt('Institutional directory search is not available in domain: [_1]',$showdom).
3204: '</span><br />'.
3205: &mt('You may want to search in the LON-CAPA domain instead of the institutional directory.').
3206: '<br /><br />';
3207: }
3208: }
3209: } else {
3210: if ($srch->{'srchin'} eq 'dom') {
3211: %srch_results = &Apache::lonnet::usersearch($srch);
3212: ($currstate,$response,$forcenewuser) =
3213: &build_search_response($context,$srch,%srch_results);
3214: } elsif ($srch->{'srchin'} eq 'crs') {
3215: my $courseusers = &get_courseusers();
3216: foreach my $user (keys(%$courseusers)) {
3217: my ($uname,$udom) = split(/:/,$user);
3218: my %names = &Apache::loncommon::getnames($uname,$udom);
3219: my %emails = &Apache::loncommon::getemails($uname,$udom);
3220: if ($srch->{'srchby'} eq 'lastname') {
3221: if ((($srch->{'srchtype'} eq 'exact') &&
3222: ($names{'lastname'} eq $srch->{'srchterm'})) ||
3223: (($srch->{'srchtype'} eq 'begins') &&
3224: ($names{'lastname'} =~ /^\Q$srch->{'srchterm'}\E/i)) ||
3225: (($srch->{'srchtype'} eq 'contains') &&
3226: ($names{'lastname'} =~ /\Q$srch->{'srchterm'}\E/i))) {
3227: $srch_results{$user} = {firstname => $names{'firstname'},
3228: lastname => $names{'lastname'},
3229: permanentemail => $emails{'permanentemail'},
3230: };
3231: }
3232: } elsif ($srch->{'srchby'} eq 'lastfirst') {
3233: my ($srchlast,$srchfirst) = split(/,/,$srch->{'srchterm'});
3234: $srchlast =~ s/\s+$//;
3235: $srchfirst =~ s/^\s+//;
3236: if ($srch->{'srchtype'} eq 'exact') {
3237: if (($names{'lastname'} eq $srchlast) &&
3238: ($names{'firstname'} eq $srchfirst)) {
3239: $srch_results{$user} = {firstname => $names{'firstname'},
3240: lastname => $names{'lastname'},
3241: permanentemail => $emails{'permanentemail'},
3242:
3243: };
3244: }
3245: } elsif ($srch->{'srchtype'} eq 'begins') {
3246: if (($names{'lastname'} =~ /^\Q$srchlast\E/i) &&
3247: ($names{'firstname'} =~ /^\Q$srchfirst\E/i)) {
3248: $srch_results{$user} = {firstname => $names{'firstname'},
3249: lastname => $names{'lastname'},
3250: permanentemail => $emails{'permanentemail'},
3251: };
3252: }
3253: } else {
3254: if (($names{'lastname'} =~ /\Q$srchlast\E/i) &&
3255: ($names{'firstname'} =~ /\Q$srchfirst\E/i)) {
3256: $srch_results{$user} = {firstname => $names{'firstname'},
3257: lastname => $names{'lastname'},
3258: permanentemail => $emails{'permanentemail'},
3259: };
3260: }
3261: }
3262: }
3263: }
3264: ($currstate,$response,$forcenewuser) =
3265: &build_search_response($context,$srch,%srch_results);
3266: } elsif ($srch->{'srchin'} eq 'alc') {
3267: $currstate = 'query';
3268: } elsif ($srch->{'srchin'} eq 'instd') {
3269: ($dirsrchres,%srch_results) = &Apache::lonnet::inst_directory_query($srch);
3270: if ($dirsrchres eq 'ok') {
3271: ($currstate,$response,$forcenewuser) =
3272: &build_search_response($context,$srch,%srch_results);
3273: } else {
3274: my $showdom = &display_domain_info($srch->{'srchdomain'}); $response = '<span class="LC_warning">'.
3275: &mt('Institutional directory search is not available in domain: [_1]',$showdom).
3276: '</span><br />'.
3277: &mt('You may want to search in the LON-CAPA domain instead of the institutional directory.').
3278: '<br /><br />';
3279: }
3280: }
3281: }
3282: return ($currstate,$response,$forcenewuser,\%srch_results);
3283: }
3284:
3285: sub directorysrch_check {
3286: my ($srch) = @_;
3287: my $can_search = 0;
3288: my $response;
3289: my %dom_inst_srch = &Apache::lonnet::get_dom('configuration',
3290: ['directorysrch'],$srch->{'srchdomain'});
3291: my $showdom = &display_domain_info($srch->{'srchdomain'});
3292: if (ref($dom_inst_srch{'directorysrch'}) eq 'HASH') {
3293: if (!$dom_inst_srch{'directorysrch'}{'available'}) {
3294: return &mt('Institutional directory search is not available in domain: [_1]',$showdom);
3295: }
3296: if ($dom_inst_srch{'directorysrch'}{'localonly'}) {
3297: if ($env{'request.role.domain'} ne $srch->{'srchdomain'}) {
3298: return &mt('Institutional directory search in domain: [_1] is only allowed for users with a current role in the domain.',$showdom);
3299: }
3300: my @usertypes = split(/:/,$env{'environment.inststatus'});
3301: if (!@usertypes) {
3302: push(@usertypes,'default');
3303: }
3304: if (ref($dom_inst_srch{'directorysrch'}{'cansearch'}) eq 'ARRAY') {
3305: foreach my $type (@usertypes) {
3306: if (grep(/^\Q$type\E$/,@{$dom_inst_srch{'directorysrch'}{'cansearch'}})) {
3307: $can_search = 1;
3308: last;
3309: }
3310: }
3311: }
3312: if (!$can_search) {
3313: my ($insttypes,$order) = &Apache::lonnet::retrieve_inst_usertypes($srch->{'srchdomain'});
3314: my @longtypes;
3315: foreach my $item (@usertypes) {
3316: push (@longtypes,$insttypes->{$item});
3317: }
3318: my $insttype_str = join(', ',@longtypes);
3319: return &mt('Institutional directory search in domain: [_1] is not available to your user type: ',$showdom).$insttype_str;
3320: }
3321: } else {
3322: $can_search = 1;
3323: }
3324: } else {
3325: return &mt('Institutional directory search has not been configured for domain: [_1]',$showdom);
3326: }
3327: my %longtext = &Apache::lonlocal::texthash (
3328: uname => 'username',
3329: lastfirst => 'last name, first name',
3330: lastname => 'last name',
3331: contains => 'contains',
3332: exact => 'as exact match to',
3333: begins => 'begins with',
3334: );
3335: if ($can_search) {
3336: if (ref($dom_inst_srch{'directorysrch'}{'searchby'}) eq 'ARRAY') {
3337: if (!grep(/^\Q$srch->{'srchby'}\E$/,@{$dom_inst_srch{'directorysrch'}{'searchby'}})) {
3338: return &mt('Institutional directory search in domain: [_1] is not available for searching by "[_2]"',$showdom,$longtext{$srch->{'srchby'}});
3339: }
3340: } else {
3341: return &mt('Institutional directory search in domain: [_1] is not available.', $showdom);
3342: }
3343: }
3344: if ($can_search) {
3345: if (ref($dom_inst_srch{'directorysrch'}{'searchtypes'}) eq 'ARRAY') {
3346: if (grep(/^\Q$srch->{'srchtype'}\E/,@{$dom_inst_srch{'directorysrch'}{'searchtypes'}})) {
3347: return 'ok';
3348: } else {
3349: return &mt('Institutional directory search in domain [_1] is not available for the requested search type: "[_2]"',$showdom,$longtext{$srch->{'srchtype'}});
3350: }
3351: } else {
3352: if ((($dom_inst_srch{'directorysrch'}{'searchtypes'} eq 'specify') &&
3353: ($srch->{'srchtype'} eq 'exact' || $srch->{'srchtype'} eq 'contains')) ||
3354: ($dom_inst_srch{'directorysrch'}{'searchtypes'} eq $srch->{'srchtype'})) {
3355: return 'ok';
3356: } else {
3357: return &mt('Institutional directory search in domain [_1] is not available for the requested search type: "[_2]"',$showdom,$longtext{$srch->{'srchtype'}});
3358: }
3359: }
3360: }
3361: }
3362:
3363: sub get_courseusers {
3364: my %advhash;
3365: my $classlist = &Apache::loncoursedata::get_classlist();
3366: my %coursepersonnel=&Apache::lonnet::get_course_adv_roles();
3367: foreach my $role (sort(keys(%coursepersonnel))) {
3368: foreach my $user (split(/\,/,$coursepersonnel{$role})) {
3369: if (!exists($classlist->{$user})) {
3370: $classlist->{$user} = [];
3371: }
3372: }
3373: }
3374: return $classlist;
3375: }
3376:
3377: sub build_search_response {
3378: my ($context,$srch,%srch_results) = @_;
3379: my ($currstate,$response,$forcenewuser);
3380: my %names = (
3381: 'uname' => 'username',
3382: 'lastname' => 'last name',
3383: 'lastfirst' => 'last name, first name',
3384: 'crs' => 'this course',
3385: 'dom' => 'LON-CAPA domain: ',
3386: 'instd' => 'the institutional directory for domain: ',
3387: );
3388:
3389: my %single = (
3390: begins => 'A match',
3391: contains => 'A match',
3392: exact => 'An exact match',
3393: );
3394: my %nomatch = (
3395: begins => 'No match',
3396: contains => 'No match',
3397: exact => 'No exact match',
3398: );
3399: if (keys(%srch_results) > 1) {
3400: $currstate = 'select';
3401: } else {
3402: if (keys(%srch_results) == 1) {
3403: $currstate = 'modify';
3404: $response = &mt("$single{$srch->{'srchtype'}} was found for the $names{$srch->{'srchby'}} ([_1]) in $names{$srch->{'srchin'}}.",$srch->{'srchterm'});
3405: if ($srch->{'srchin'} eq 'dom' || $srch->{'srchin'} eq 'instd') {
3406: $response .= &display_domain_info($srch->{'srchdomain'});
3407: }
3408: } else {
3409: $response = '<span class="LC_warning">'.&mt("$nomatch{$srch->{'srchtype'}} found for the $names{$srch->{'srchby'}} ([_1]) in $names{$srch->{'srchin'}}",$srch->{'srchterm'});
3410: if ($srch->{'srchin'} eq 'dom' || $srch->{'srchin'} eq 'instd') {
3411: $response .= &display_domain_info($srch->{'srchdomain'});
3412: }
3413: $response .= '</span>';
3414: if ($srch->{'srchin'} ne 'alc') {
3415: $forcenewuser = 1;
3416: my $cansrchinst = 0;
3417: if ($srch->{'srchdomain'}) {
3418: my %domconfig = &Apache::lonnet::get_dom('configuration',['directorysrch'],$srch->{'srchdomain'});
3419: if (ref($domconfig{'directorysrch'}) eq 'HASH') {
3420: if ($domconfig{'directorysrch'}{'available'}) {
3421: $cansrchinst = 1;
3422: }
3423: }
3424: }
3425: if ((($srch->{'srchby'} eq 'lastfirst') ||
3426: ($srch->{'srchby'} eq 'lastname')) &&
3427: ($srch->{'srchin'} eq 'dom')) {
3428: if ($cansrchinst) {
3429: $response .= '<br />'.&mt('You may want to broaden your search to a search of the institutional directory for the domain.');
3430: }
3431: }
3432: if ($srch->{'srchin'} eq 'crs') {
3433: $response .= '<br />'.&mt('You may want to broaden your search to the selected LON-CAPA domain.');
3434: }
3435: }
3436: if (!($srch->{'srchby'} eq 'uname' && $srch->{'srchin'} eq 'dom' && $srch->{'srchtype'} eq 'exact' && $srch->{'srchdomain'} eq $env{'request.role.domain'})) {
3437: my $cancreate =
3438: &Apache::lonuserutils::can_create_user($env{'request.role.domain'},$context);
3439: if ($cancreate) {
3440: my $showdom = &display_domain_info($env{'request.role.domain'});
3441: $response .= '<br /><br />'.&mt("<b>To add a new user</b> (you can only create new users in your current role's domain - <span class=\"LC_cusr_emph\">[_1]</span>):",$env{'request.role.domain'}).'<ul><li>'.&mt("Set 'Domain/institution to search' to: <span class=\"LC_cusr_emph\">[_1]</span>",$showdom).'<li>'.&mt("Set 'Search criteria' to: <span class=\"LC_cusr_emph\">'username is ...... in selected LON-CAPA domain'").'</span></li><li>'.&mt('Provide the proposed username').'</li><li>'.&mt('Search').'</li></ul><br />';
3442: } else {
3443: my $helplink = ' href="javascript:helpMenu('."'display'".')"';
3444: $response .= '<br /><br />'.&mt("You are not authorized to create new users in your current role's domain - <span class=\"LC_cusr_emph\">[_1]</span>.",$env{'request.role.domain'}).'<br />'.&mt('Contact the <a[_1]>helpdesk</a> if you need to create a new user.',$helplink).'<br /><br />';
3445: }
3446: }
3447: }
3448: }
3449: return ($currstate,$response,$forcenewuser);
3450: }
3451:
3452: sub display_domain_info {
3453: my ($dom) = @_;
3454: my $output = $dom;
3455: if ($dom ne '') {
3456: my $domdesc = &Apache::lonnet::domain($dom,'description');
3457: if ($domdesc ne '') {
3458: $output .= ' <span class="LC_cusr_emph">('.$domdesc.')</span>';
3459: }
3460: }
3461: return $output;
3462: }
3463:
3464: sub crumb_utilities {
3465: my %elements = (
3466: crtuser => {
3467: srchterm => 'text',
3468: srchin => 'selectbox',
3469: srchby => 'selectbox',
3470: srchtype => 'selectbox',
3471: srchdomain => 'selectbox',
3472: },
3473: crtusername => {
3474: srchterm => 'text',
3475: srchdomain => 'selectbox',
3476: },
3477: docustom => {
3478: rolename => 'selectbox',
3479: newrolename => 'textbox',
3480: },
3481: studentform => {
3482: srchterm => 'text',
3483: srchin => 'selectbox',
3484: srchby => 'selectbox',
3485: srchtype => 'selectbox',
3486: srchdomain => 'selectbox',
3487: },
3488: );
3489:
3490: my $jsback .= qq|
3491: function backPage(formname,prevphase,prevstate) {
3492: if (typeof prevphase == 'undefined') {
3493: formname.phase.value = '';
3494: }
3495: else {
3496: formname.phase.value = prevphase;
3497: }
3498: if (typeof prevstate == 'undefined') {
3499: formname.currstate.value = '';
3500: }
3501: else {
3502: formname.currstate.value = prevstate;
3503: }
3504: formname.submit();
3505: }
3506: |;
3507: return ($jsback,\%elements);
3508: }
3509:
3510: sub course_level_table {
3511: my (%inccourses) = @_;
3512: my $table = '';
3513: # Custom Roles?
3514:
3515: my %customroles=&Apache::lonuserutils::my_custom_roles();
3516: my %lt=&Apache::lonlocal::texthash(
3517: 'exs' => "Existing sections",
3518: 'new' => "Define new section",
3519: 'ssd' => "Set Start Date",
3520: 'sed' => "Set End Date",
3521: 'crl' => "Course Level",
3522: 'act' => "Activate",
3523: 'rol' => "Role",
3524: 'ext' => "Extent",
3525: 'grs' => "Section",
3526: 'sta' => "Start",
3527: 'end' => "End"
3528: );
3529:
3530: foreach my $protectedcourse (sort( keys(%inccourses))) {
3531: my $thiscourse=$protectedcourse;
3532: $thiscourse=~s:_:/:g;
3533: my %coursedata=&Apache::lonnet::coursedescription($thiscourse);
3534: my $area=$coursedata{'description'};
3535: my $type=$coursedata{'type'};
3536: if (!defined($area)) { $area=&mt('Unavailable course').': '.$protectedcourse; }
3537: my ($domain,$cnum)=split(/\//,$thiscourse);
3538: my %sections_count;
3539: if (defined($env{'request.course.id'})) {
3540: if ($env{'request.course.id'} eq $domain.'_'.$cnum) {
3541: %sections_count =
3542: &Apache::loncommon::get_sections($domain,$cnum);
3543: }
3544: }
3545: my @roles = &Apache::lonuserutils::roles_by_context('course');
3546: foreach my $role (@roles) {
3547: my $plrole=&Apache::lonnet::plaintext($role);
3548: if (&Apache::lonnet::allowed('c'.$role,$thiscourse)) {
3549: $table .= &course_level_row($protectedcourse,$role,$area,$domain,
3550: $plrole,\%sections_count,\%lt);
3551: } elsif ($env{'request.course.sec'} ne '') {
3552: if (&Apache::lonnet::allowed('c'.$role,$thiscourse.'/'.
3553: $env{'request.course.sec'})) {
3554: $table .= &course_level_row($protectedcourse,$role,$area,$domain,
3555: $plrole,\%sections_count,\%lt);
3556: }
3557: }
3558: }
3559: if (&Apache::lonnet::allowed('ccr',$thiscourse)) {
3560: foreach my $cust (sort keys %customroles) {
3561: my $role = 'cr_cr_'.$env{'user.domain'}.'_'.$env{'user.name'}.'_'.$cust;
3562: $table .= &course_level_row($protectedcourse,$role,$area,$domain,
3563: $cust,\%sections_count,\%lt);
3564: }
3565: }
3566: }
3567: return '' if ($table eq ''); # return nothing if there is nothing
3568: # in the table
3569: my $result;
3570: if (!$env{'request.course.id'}) {
3571: $result = '<h4>'.$lt{'crl'}.'</h4>'."\n";
3572: }
3573: $result .=
3574: &Apache::loncommon::start_data_table().
3575: &Apache::loncommon::start_data_table_header_row().
3576: '<th>'.$lt{'act'}.'</th><th>'.$lt{'rol'}.'</th><th>'.$lt{'ext'}.'</th>
3577: <th>'.$lt{'grs'}.'</th><th>'.$lt{'sta'}.'</th><th>'.$lt{'end'}.'</th>'.
3578: &Apache::loncommon::end_data_table_header_row().
3579: $table.
3580: &Apache::loncommon::end_data_table();
3581: return $result;
3582: }
3583:
3584: sub course_level_row {
3585: my ($protectedcourse,$role,$area,$domain,$plrole,$sections_count,$lt) = @_;
3586: my $row = &Apache::loncommon::start_data_table_row().
3587: ' <td><input type="checkbox" name="act_'.
3588: $protectedcourse.'_'.$role.'" /></td>'."\n".
3589: ' <td>'.$plrole.'</td>'."\n".
3590: ' <td>'.$area.'<br />Domain: '.$domain.'</td>'."\n";
3591: if ($role eq 'cc') {
3592: $row .= '<td> </td>';
3593: } elsif ($env{'request.course.sec'} ne '') {
3594: $row .= ' <td><input type="hidden" value="'.
3595: $env{'request.course.sec'}.'" '.
3596: 'name="sec_'.$protectedcourse.'_'.$role.'" />'.
3597: $env{'request.course.sec'}.'</td>';
3598: } else {
3599: if (ref($sections_count) eq 'HASH') {
3600: my $currsec =
3601: &Apache::lonuserutils::course_sections($sections_count,
3602: $protectedcourse.'_'.$role);
3603: $row .= '<td><table class="LC_createuser">'."\n".
3604: '<tr class="LC_section_row">'."\n".
3605: ' <td valign="top">'.$lt->{'exs'}.'<br />'.
3606: $currsec.'</td>'."\n".
3607: ' <td> </td>'."\n".
3608: ' <td valign="top"> '.$lt->{'new'}.'<br />'.
3609: '<input type="text" name="newsec_'.$protectedcourse.'_'.$role.
3610: '" value="" />'.
3611: '<input type="hidden" '.
3612: 'name="sec_'.$protectedcourse.'_'.$role.'" /></td>'."\n".
3613: '</tr></table></td>'."\n";
3614: } else {
3615: $row .= '<td><input type="text" size="10" '.
3616: 'name="sec_'.$protectedcourse.'_'.$role.'" /></td>'."\n";
3617: }
3618: }
3619: $row .= <<ENDTIMEENTRY;
3620: <td><input type="hidden" name="start_$protectedcourse\_$role" value="" />
3621: <a href=
3622: "javascript:pjump('date_start','Start Date $plrole',document.cu.start_$protectedcourse\_$role.value,'start_$protectedcourse\_$role','cu.pres','dateset')">$lt->{'ssd'}</a></td>
3623: <td><input type="hidden" name="end_$protectedcourse\_$role" value="" />
3624: <a href=
3625: "javascript:pjump('date_end','End Date $plrole',document.cu.end_$protectedcourse\_$role.value,'end_$protectedcourse\_$role','cu.pres','dateset')">$lt->{'sed'}</a></td>
3626: ENDTIMEENTRY
3627: $row .= &Apache::loncommon::end_data_table_row();
3628: return $row;
3629: }
3630:
3631: sub course_level_dc {
3632: my ($dcdom) = @_;
3633: my %customroles=&Apache::lonuserutils::my_custom_roles();
3634: my @roles = &Apache::lonuserutils::roles_by_context('course');
3635: my $hiddenitems = '<input type="hidden" name="dcdomain" value="'.$dcdom.'" />'.
3636: '<input type="hidden" name="origdom" value="'.$dcdom.'" />'.
3637: '<input type="hidden" name="dccourse" value="" />';
3638: my $courseform='<b>'.&Apache::loncommon::selectcourse_link
3639: ('cu','dccourse','dcdomain','coursedesc',undef,undef,'Course').'</b>';
3640: my $cb_jscript = &Apache::loncommon::coursebrowser_javascript($dcdom,'currsec','cu');
3641: my %lt=&Apache::lonlocal::texthash(
3642: 'rol' => "Role",
3643: 'grs' => "Section",
3644: 'exs' => "Existing sections",
3645: 'new' => "Define new section",
3646: 'sta' => "Start",
3647: 'end' => "End",
3648: 'ssd' => "Set Start Date",
3649: 'sed' => "Set End Date"
3650: );
3651: my $header = '<h4>'.&mt('Course Level').'</h4>'.
3652: &Apache::loncommon::start_data_table().
3653: &Apache::loncommon::start_data_table_header_row().
3654: '<th>'.$courseform.'</th><th>'.$lt{'rol'}.'</th><th>'.$lt{'grs'}.'</th><th>'.$lt{'sta'}.'</th><th>'.$lt{'end'}.'</th>'.
3655: &Apache::loncommon::end_data_table_header_row();
3656: my $otheritems = &Apache::loncommon::start_data_table_row()."\n".
3657: '<td><input type="text" name="coursedesc" value="" onFocus="this.blur();opencrsbrowser('."'cu','dccourse','dcdomain','coursedesc',''".')" /></td>'."\n".
3658: '<td><select name="role">'."\n";
3659: foreach my $role (@roles) {
3660: my $plrole=&Apache::lonnet::plaintext($role);
3661: $otheritems .= ' <option value="'.$role.'">'.$plrole;
3662: }
3663: if ( keys %customroles > 0) {
3664: foreach my $cust (sort keys %customroles) {
3665: my $custrole='cr_cr_'.$env{'user.domain'}.
3666: '_'.$env{'user.name'}.'_'.$cust;
3667: $otheritems .= ' <option value="'.$custrole.'">'.$cust;
3668: }
3669: }
3670: $otheritems .= '</select></td><td>'.
3671: '<table border="0" cellspacing="0" cellpadding="0">'.
3672: '<tr><td valign="top"><b>'.$lt{'exs'}.'</b><br /><select name="currsec">'.
3673: ' <option value=""><--'.&mt('Pick course first').'</select></td>'.
3674: '<td> </td>'.
3675: '<td valign="top"> <b>'.$lt{'new'}.'</b><br />'.
3676: '<input type="text" name="newsec" value="" />'.
3677: '<input type="hidden" name="sections" value="" />'.
3678: '<input type="hidden" name="groups" value="" /></td>'.
3679: '</tr></table></td>';
3680: $otheritems .= <<ENDTIMEENTRY;
3681: <td><input type="hidden" name="start" value='' />
3682: <a href=
3683: "javascript:pjump('date_start','Start Date',document.cu.start.value,'start','cu.pres','dateset')">$lt{'ssd'}</a></td>
3684: <td><input type="hidden" name="end" value='' />
3685: <a href=
3686: "javascript:pjump('date_end','End Date',document.cu.end.value,'end','cu.pres','dateset')">$lt{'sed'}</a></td>
3687: ENDTIMEENTRY
3688: $otheritems .= &Apache::loncommon::end_data_table_row().
3689: &Apache::loncommon::end_data_table()."\n";
3690: return $cb_jscript.$header.$hiddenitems.$otheritems;
3691: }
3692:
3693: #---------------------------------------------- end functions for &phase_two
3694:
3695: #--------------------------------- functions for &phase_two and &phase_three
3696:
3697: #--------------------------end of functions for &phase_two and &phase_three
3698:
3699: 1;
3700: __END__
3701:
3702:
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/back.gif){kind=icon}
Return to loncreateuser.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / interface