--- loncom/interface/lonpreferences.pm 2002/02/15 22:04:39 1.3 +++ loncom/interface/lonpreferences.pm 2004/03/16 20:18:01 1.38 @@ -1,7 +1,7 @@ # The LearningOnline Network # Preferences # -# $Id: lonpreferences.pm,v 1.3 2002/02/15 22:04:39 matthew Exp $ +# $Id: lonpreferences.pm,v 1.38 2004/03/16 20:18:01 albertel Exp $ # # Copyright Michigan State University Board of Trustees # @@ -25,16 +25,6 @@ # # http://www.lon-capa.org/ # -# (Internal Server Error Handler -# -# (Login Screen -# 5/21/99,5/22,5/25,5/26,5/31,6/2,6/10,7/12,7/14, -# 1/14/00,5/29,5/30,6/1,6/29,7/1,11/9 Gerd Kortemeyer) -# -# 3/1/1 Gerd Kortemeyer) -# -# 3/1 Gerd Kortemeyer -# # 2/13/02 2/14 2/15 Matthew Hall # # This package uses the "londes.js" javascript code. @@ -49,50 +39,24 @@ use Apache::Constants qw(:common); use Apache::File; use Crypt::DES; use DynaLoader; # for Crypt::DES version +use Apache::loncommon(); +use Apache::lonhtmlcommon(); +use Apache::lonlocal; -#------------------- forms to be output -my $passwordform =< - - - -ENDPASSWORDFORM - -my $environmentform = < -There are currently no environment variables you can change. -

- -ENDENVIRONMENTFORM -#------------------ end of forms to be output - -################################################################ -# Handler subroutines # -################################################################ # # Write lonnet::passwd to do the call below. # Use: # my $answer=reply("encrypt:passwd:$udom:$uname:$upass",$tryserver); # -# I really should write some javascript to check on the client side for -# mismatched passwords, but other problems are more pressing -# ################################################## # password associated functions # ################################################## sub des_keys { - # Make a new key for DES encryption - # Each key has two parts which are returned seperately + # Make a new key for DES encryption. + # Each key has two parts which are returned separately. + # Please note: Each key must be passed through the &hex function + # before it is output to the web browser. The hex versions cannot + # be used to decrypt. my @hexstr=('0','1','2','3','4','5','6','7', '8','9','a','b','c','d','e','f'); my $lkey=''; @@ -119,16 +83,353 @@ sub des_decrypt { $cypher->decrypt(unpack("a8",pack("H16",substr($cyphertext,0,16)))); $plaintext.= $cypher->decrypt(unpack("a8",pack("H16",substr($cyphertext,16,16)))); - $plaintext=unpack("a8",$plaintext); - $plaintext=substr($plaintext,1,ord(substr($plaintext,0,1))); - unpack("a8",$plaintext); + $plaintext=substr($plaintext,1,ord(substr($plaintext,0,1)) ); return $plaintext; } +################################################################ +# Handler subroutines # +################################################################ + +################################################################ +# Language Change Subroutines # +################################################################ +sub languagechanger { + my $r = shift; + my $user = $ENV{'user.name'}; + my $domain = $ENV{'user.domain'}; + my %userenv = &Apache::lonnet::get + ('environment',['languages']); + my $language=$userenv{'languages'}; + + my $pref=&mt('Preferred language'); + my %langchoices=('' => 'No language preference'); + foreach (&Apache::loncommon::languageids()) { + if (&Apache::loncommon::supportedlanguagecode($_)) { + $langchoices{&Apache::loncommon::supportedlanguagecode($_)} + = &Apache::loncommon::plainlanguagedescription($_); + } + } + my $selectionbox=&Apache::loncommon::select_form($language,'language', + %langchoices); + $r->print(< + +
$pref: $selectionbox +ENDLSCREEN + $r->print('
'); +} + + +sub verify_and_change_languages { + my $r = shift; + my $user = $ENV{'user.name'}; + my $domain = $ENV{'user.domain'}; +# Screenname + my $newlanguage = $ENV{'form.language'}; + $newlanguage=~s/[^\-\w]//g; + my $message=''; + if ($newlanguage) { + &Apache::lonnet::put('environment',{'languages' => $newlanguage}); + &Apache::lonnet::appenv('environment.languages' => $newlanguage); + $message='Set new preferred languages to '.$newlanguage; + } else { + &Apache::lonnet::del('environment',['languages']); + &Apache::lonnet::delenv('environment\.languages'); + $message='Reset preferred language'; + } + $r->print(< +$message +ENDVCSCREEN +} + + +################################################################ +# Anonymous Discussion Name Change Subroutines # +################################################################ +sub screennamechanger { + my $r = shift; + my $user = $ENV{'user.name'}; + my $domain = $ENV{'user.domain'}; + my %userenv = &Apache::lonnet::get + ('environment',['screenname','nickname']); + my $screenname=$userenv{'screenname'}; + my $nickname=$userenv{'nickname'}; + $r->print(< + +
New screenname (shown if you post anonymously): + +
New nickname (shown if you post non-anonymously): + + + +ENDSCREEN +} + +sub verify_and_change_screenname { + my $r = shift; + my $user = $ENV{'user.name'}; + my $domain = $ENV{'user.domain'}; +# Screenname + my $newscreen = $ENV{'form.screenname'}; + $newscreen=~s/[^ \w]//g; + my $message=''; + if ($newscreen) { + &Apache::lonnet::put('environment',{'screenname' => $newscreen}); + &Apache::lonnet::appenv('environment.screenname' => $newscreen); + $message='Set new screenname to '.$newscreen; + } else { + &Apache::lonnet::del('environment',['screenname']); + &Apache::lonnet::delenv('environment\.screenname'); + $message='Reset screenname'; + } +# Nickname + $message.='
'; + $newscreen = $ENV{'form.nickname'}; + $newscreen=~s/[^ \w]//g; + if ($newscreen) { + &Apache::lonnet::put('environment',{'nickname' => $newscreen}); + &Apache::lonnet::appenv('environment.nickname' => $newscreen); + $message.='Set new nickname to '.$newscreen; + } else { + &Apache::lonnet::del('environment',['nickname']); + &Apache::lonnet::delenv('environment\.nickname'); + $message.='Reset nickname'; + } + + $r->print(< +$message +ENDVCSCREEN +} + +################################################################ +# Message Forward # +################################################################ + +sub msgforwardchanger { + my $r = shift; + my $user = $ENV{'user.name'}; + my $domain = $ENV{'user.domain'}; + my %userenv = &Apache::lonnet::get('environment',['msgforward','notification','critnotification']); + my $msgforward=$userenv{'msgforward'}; + my $notification=$userenv{'notification'}; + my $critnotification=$userenv{'critnotification'}; + my $forwardingHelp = Apache::loncommon::help_open_topic("Prefs_Forwarding", + "What are forwarding ". + "and notification ". + "addresses"); + my $criticalMessageHelp = Apache::loncommon::help_open_topic("Course_Critical_Message", + "What are critical messages"); + + $r->print(< +
+ +New Forwarding Address(es) (user:domain,user:domain,...): +
+New Message Notification Email Address(es) (joe\@doe.com,jane\@doe.edu,...): +
+New Critical Message Notification Email Address(es) (joe\@doe.com,jane\@doe.edu,...): +$criticalMessageHelp
+ +
+ENDMSG +} + +sub verify_and_change_msgforward { + my $r = shift; + my $user = $ENV{'user.name'}; + my $domain = $ENV{'user.domain'}; + my $newscreen = ''; + my $message=''; + foreach (split(/\,/,$ENV{'form.msgforward'})) { + my ($msuser,$msdomain)=split(/[\@\:]/,$_); + $msuser=~s/\W//g; + $msdomain=~s/\W//g; + if (($msuser) && ($msdomain)) { + if (&Apache::lonnet::homeserver($msuser,$msdomain) ne 'no_host') { + $newscreen.=$msuser.':'.$msdomain.','; + } else { + $message.='No such user: '.$msuser.':'.$msdomain.'
'; + } + } + } + $newscreen=~s/\,$//; + if ($newscreen) { + &Apache::lonnet::put('environment',{'msgforward' => $newscreen}); + &Apache::lonnet::appenv('environment.msgforward' => $newscreen); + $message.='Set new message forwarding to '.$newscreen.'
'; + } else { + &Apache::lonnet::del('environment',['msgforward']); + &Apache::lonnet::delenv('environment\.msgforward'); + $message.='Reset message forwarding
'; + } + my $notification=$ENV{'form.notification'}; + $notification=~s/\s//gs; + if ($notification) { + &Apache::lonnet::put('environment',{'notification' => $notification}); + &Apache::lonnet::appenv('environment.notification' => $notification); + $message.='Set message notification address to '.$notification.'
'; + } else { + &Apache::lonnet::del('environment',['notification']); + &Apache::lonnet::delenv('environment\.notification'); + $message.='Reset message notification
'; + } + my $critnotification=$ENV{'form.critnotification'}; + $critnotification=~s/\s//gs; + if ($critnotification) { + &Apache::lonnet::put('environment',{'critnotification' => $critnotification}); + &Apache::lonnet::appenv('environment.critnotification' => $critnotification); + $message.='Set critical message notification address to '.$critnotification; + } else { + &Apache::lonnet::del('environment',['critnotification']); + &Apache::lonnet::delenv('environment\.critnotification'); + $message.='Reset critical message notification
'; + } + $r->print(< +$message +ENDVCMSG +} + +################################################################ +# Colors # +################################################################ + +sub colorschanger { + my $r = shift; +# figure out colors + my $function='student'; + if ($ENV{'request.role'}=~/^(cc|in|ta|ep)/) { + $function='coordinator'; + } + if ($ENV{'request.role'}=~/^(su|dc|ad|li)/) { + $function='admin'; + } + if (($ENV{'request.role'}=~/^(au|ca)/) || + ($ENV{'REQUEST_URI'}=~/^(\/priv|\~)/)) { + $function='author'; + } + my $domain=&Apache::loncommon::determinedomain(); + my %colortypes=('pgbg' => 'Page Background', + 'tabbg' => 'Header Background', + 'sidebg'=> 'Header Border', + 'font' => 'Font', + 'link' => 'Un-Visited Link', + 'vlink' => 'Visited Link', + 'alink' => 'Active Link'); + my $chtable=''; + foreach my $item (sort(keys(%colortypes))) { + my $curcol=&Apache::loncommon::designparm($function.'.'.$item,$domain); + $chtable.=''.$colortypes{$item}.'      Select'; + } + my $pjump_def = &Apache::lonhtmlcommon::pjump_javascript_definition(); + $r->print(< + + function pclose() { + parmwin=window.open("/adm/rat/empty.html","LONCAPAparms", + "height=350,width=350,scrollbars=no,menubar=no"); + parmwin.close(); + } + + $pjump_def + + function psub() { + pclose(); + if (document.parmform.pres_marker.value!='') { + if (document.parmform.pres_type.value!='') { + eval('document.server.'+ + document.parmform.pres_marker.value+ + '.value=document.parmform.pres_value.value;'); + } + } else { + document.parmform.pres_value.value=''; + document.parmform.pres_marker.value=''; + } + } + + + +
+ + + +
+
+ + +$chtable +
+ + +
+ENDCOL +} + +sub verify_and_change_colors { + my $r = shift; +# figure out colors + my $function='student'; + if ($ENV{'request.role'}=~/^(cc|in|ta|ep)/) { + $function='coordinator'; + } + if ($ENV{'request.role'}=~/^(su|dc|ad|li)/) { + $function='admin'; + } + if (($ENV{'request.role'}=~/^(au|ca)/) || + ($ENV{'REQUEST_URI'}=~/^(\/priv|\~)/)) { + $function='author'; + } + my $domain=&Apache::loncommon::determinedomain(); + my %colortypes=('pgbg' => 'Page Background', + 'tabbg' => 'Header Background', + 'sidebg'=> 'Header Border', + 'font' => 'Font', + 'link' => 'Un-Visited Link', + 'vlink' => 'Visited Link', + 'alink' => 'Active Link'); + + my $message=''; + foreach my $item (keys %colortypes) { + my $color=$ENV{'form.'.$item}; + my $entry='color.'.$function.'.'.$item; + if (($color=~/^\#[0-9A-Fa-f]{6}$/) && (!$ENV{'form.resetall'})) { + &Apache::lonnet::put('environment',{$entry => $color}); + &Apache::lonnet::appenv('environment.'.$entry => $color); + $message.='Set '.$colortypes{$item}.' to '.$color.'
'; + } else { + &Apache::lonnet::del('environment',[$entry]); + &Apache::lonnet::delenv('environment\.'.$entry); + $message.='Reset '.$colortypes{$item}.'
'; + } + } + $r->print(< +$message +
+ +
+ENDVCCOL +} + +###################################################### +# password handler subroutines # +###################################################### sub passwordchanger { + # This function is a bit of a mess.... # Passwords are encrypted using londes.js (DES encryption) - # my $r = shift; + my $errormessage = shift; + $errormessage = ($errormessage || ''); my $user = $ENV{'user.name'}; my $domain = $ENV{'user.domain'}; my $homeserver = $ENV{'user.home'}; @@ -140,14 +441,14 @@ sub passwordchanger { my ($lkey_cpass ,$ukey_cpass ) = &des_keys(); my ($lkey_npass1,$ukey_npass1) = &des_keys(); my ($lkey_npass2,$ukey_npass2) = &des_keys(); - # Store the keys + # Store the keys in the log files my $lonhost = $r->dir_config('lonHostID'); my $logtoken=Apache::lonnet::reply('tmpput:' .$ukey_cpass . $lkey_cpass .'&' .$ukey_npass1 . $lkey_npass1.'&' .$ukey_npass2 . $lkey_npass2, $lonhost); - # Hexify these keys + # Hexify the keys for output as javascript variables $ukey_cpass = hex($ukey_cpass); $lkey_cpass = hex($lkey_cpass); $ukey_npass1= hex($ukey_npass1); @@ -155,22 +456,14 @@ sub passwordchanger { $ukey_npass2= hex($ukey_npass2); $lkey_npass2= hex($lkey_npass2); # Output javascript to deal with passwords - $r->print(< - -The LearningOnline Network with CAPA - -ENDHEADER - # Output DES javascript + # Output DES javascript + $r->print(""); { my $include = $r->dir_config('lonIncludes'); my $jsh=Apache::File->new($include."/londes.js"); $r->print(<$jsh>); } $r->print(< - -

Preferences for $user

-

$user is a member of domain $domain

-

-Change password for $user -

+$errormessage +

- @@ -211,23 +501,23 @@ Change password for $user - - + +

- - - - - - + + + + + +
Current password:
New password:
Confirm password:
Current password:
New password:
Confirm password:
- - + + @@ -245,47 +535,103 @@ sub verify_and_change_password { my $domain = $ENV{'user.domain'}; my $homeserver = $ENV{'user.home'}; my $currentauth=&Apache::lonnet::queryauthenticate($user,$domain); + # Check for authentication types that allow changing of the password. + return if ($currentauth !~ /^(unix|internal):/); # - $r->print("

verify and change password

\n"); + $r->print(< + +LON-CAPA Preferences: Change password for $user + +ENDHEADER # my $currentpass = $ENV{'form.currentpass'}; my $newpass1 = $ENV{'form.newpass_1'}; my $newpass2 = $ENV{'form.newpass_2'}; my $logtoken = $ENV{'form.logtoken'}; # Check for empty data - if (!(defined($currentpass) && - defined($newpass1) && - defined($newpass2))){ - $r->print("ERROR Password data was ". - "blank.\n"); + unless (defined($currentpass) && + defined($newpass1) && + defined($newpass2) ){ + &passwordchanger($r,"

\nERROR". + "Password data was blank.\n

"); return; } # Get the keys my $lonhost = $r->dir_config('lonHostID'); my $tmpinfo = Apache::lonnet::reply('tmpget:'.$logtoken,$lonhost); if (($tmpinfo=~/^error/) || ($tmpinfo eq 'con_lost')) { + # I do not a have a better idea about how to handle this $r->print(< ERROR: Unable to retrieve stored token for -password decryption. +password decryption. Please log out and try again.

ENDERROR + # Probably should log an error here return; } my ($ckey,$n1key,$n2key)=split(/&/,$tmpinfo); - # decrypt - my $currentpass = &des_decrypt($ckey ,$currentpass); - my $newpass1 = &des_decrypt($n1key,$newpass1); - my $newpass2 = &des_decrypt($n2key,$newpass2); - # Sanity check + # + $currentpass = &des_decrypt($ckey ,$currentpass); + $newpass1 = &des_decrypt($n1key,$newpass1); + $newpass2 = &des_decrypt($n2key,$newpass2); + # if ($newpass1 ne $newpass2) { - $r->print('ERROR:The new passwords you '. - 'entered do not match. Please try again.'); - &passwordchanger($r); + &passwordchanger($r, + 'ERROR:'. + 'The new passwords you entered do not match. '. + 'Please try again.'); return; } + if (length($newpass1) < 7) { + &passwordchanger($r, + 'ERROR:'. + 'Passwords must be a minimum of 7 characters long. '. + 'Please try again.'); + return; + } + # + # Check for bad characters + my $badpassword = 0; + foreach (split(//,$newpass1)) { + $badpassword = 1 if ((ord($_)<32)||(ord($_)>126)); + } + if ($badpassword) { + # I can't figure out how to enter bad characters on my browser. + &passwordchanger($r,<ERROR: +The password you entered contained illegal characters.
+Valid characters are: space and
+
+!"\#$%&\'()*+,-./0123456789:;<=>?\@
+ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_\`abcdefghijklmnopqrstuvwxyz{|}~
+
+ENDERROR + } + # + # Change the password (finally) + my $result = &Apache::lonnet::changepass + ($user,$domain,$currentpass,$newpass1,$homeserver); + # Inform the user the password has (not?) been changed + if ($result =~ /^ok$/) { + $r->print(<<"ENDTEXT"); +

The password for $user was successfully changed

+ENDTEXT + } else { + # error error: run in circles, scream and shout + $r->print(<The password for $user was not changed +Please make sure your old password was entered correctly. +ENDERROR + } + return; } +###################################################### +# other handler subroutines # +###################################################### + ################################################################ # Main handler # ################################################################ @@ -293,38 +639,196 @@ sub handler { my $r = shift; my $user = $ENV{'user.name'}; my $domain = $ENV{'user.domain'}; - $r->content_type('text/html'); + &Apache::loncommon::content_type($r,'text/html'); + # Some pages contain DES keys and should not be cached. + &Apache::loncommon::no_cache($r); $r->send_http_header; return OK if $r->header_only; - # Spit out the header - if ($ENV{'form.action'} eq 'changepass') { - &passwordchanger($r); - } elsif ($ENV{'form.action'} eq 'verify_and_change_pass') { - &verify_and_change_password($r); - } else { - $r->print(< '/adm/preferences', + text => 'Set User Preferences'}); + + my @Options; + # Determine current authentication method + my $currentauth=&Apache::lonnet::queryauthenticate($user,$domain); + if ($currentauth =~ /^(unix|internal):/) { + push (@Options,({ action => 'changepass', + linktext => 'Change password', + href => '/adm/preferences', + help => 'Change_Password', + subroutine => \&passwordchanger, + breadcrumb => + { href => '/adm/preferences?action=changepass', + text => 'Change Password'}, + }, + { action => 'verify_and_change_pass', + subroutine => \&verify_and_change_password, + breadcrumb => + { href =>'/adm/preferences?action=changepass', + text => 'Change Password'}, + printmenu => 'yes', + })); + } + push (@Options,({ action => 'changescreenname', + linktext => 'Change Screen Name', + href => '/adm/preferences', + help => 'Prefs_Screen_Name_Nickname', + subroutine => \&screennamechanger, + breadcrumb => + { href => '/adm/preferences?action=changescreenname', + text => 'Change Screen Name'}, + }, + { action => 'verify_and_change_screenname', + subroutine => \&verify_and_change_screenname, + breadcrumb => + { href => '/adm/preferences?action=changescreenname', + text => 'Change Screen Name'}, + printmenu => 'yes', + })); + + push (@Options,({ action => 'changemsgforward', + linktext => 'Change Message Forwarding', + text => 'and Notification Addresses', + href => '/adm/preferences', + help => 'Prefs_Forwarding', + breadcrumb => + { href => '/adm/preferences?action=changemsgforward', + text => 'Change Message Forwarding'}, + subroutine => \&msgforwardchanger, + }, + { action => 'verify_and_change_msgforward', + breadcrumb => + { href => '/adm/preferences?action=changemsgforward', + text => 'Change Message Forwarding'}, + printmenu => 'yes', + subroutine => \&verify_and_change_msgforward })); + my $aboutmeaction= + '/adm/'.$ENV{'user.domain'}.'/'.$ENV{'user.name'}.'/aboutme'; + push (@Options,{ action => 'none', + linktext => + q{Edit the 'About Me' personal information screen}, + href => $aboutmeaction}); + push (@Options,({ action => 'changecolors', + linktext => 'Change Color Scheme', + href => '/adm/preferences', + help => 'Change_Colors', + breadcrumb => + { href => '/adm/preferences?action=changecolors', + text => 'Change Colors'}, + subroutine => \&colorschanger, + }, + { action => 'verify_and_change_colors', + breadcrumb => + { href => '/adm/preferences?action=changecolors', + text => 'Change Colors'}, + printmenu => 'yes', + subroutine => \&verify_and_change_colors, + })); + push (@Options,({ action => 'changelanguages', + linktext => 'Change Language Prefences', + href => '/adm/preferences', + breadcrumb=> + { href => '/adm/preferences?action=changelanguages', + text => 'Change Language'}, + subroutine => \&languagechanger, + }, + { action => 'verify_and_change_languages', + breadcrumb=> + {href => '/adm/preferences?action=changelanguages', + text => 'Change Language'}, + printmenu => 'yes', + subroutine=>\&verify_and_change_languages, } + )); + if ($ENV{'user.name'} =~ /^(albertel|koretemey|korte|hallmat3|turtle)$/) { + push (@Options,({ action => 'debugtoggle', + printmenu => 'yes', + subroutine => \&toggle_debug, + })); + } + $r->print(< -The LearningOnline Network with CAPA +LON-CAPA Preferences - -

Preferences for $user

-

$user is a member of domain $domain

ENDHEADER - # Determine current authentication method - my $currentauth=&Apache::lonnet::queryauthenticate($user,$domain); - if ($currentauth =~ /^(unix|internal):/) { - $r->print($passwordform); - } - $r->print($environmentform); + my $call = undef; + my $printmenu = 'yes'; + foreach my $option (@Options) { + if ($option->{'action'} eq $ENV{'form.action'}) { + $call = $option->{'subroutine'}; + $printmenu = $option->{'printmenu'}; + if (exists($option->{'breadcrumb'})) { + &Apache::lonhtmlcommon::add_breadcrumb + ($option->{'breadcrumb'}); + } + } + } + $r->print(&Apache::loncommon::bodytag('Change Preferences')); + $r->print(&Apache::lonhtmlcommon::breadcrumbs + (undef,'Change Preferences')); + if (defined($call)) { + $call->($r); + } + if ($printmenu eq 'yes') { + my $optionlist = ''; + if ($ENV{'user.name'} =~ + /^(albertel|kortemey|korte|hallmat3|turtle)$/ + ) { + push (@Options,({ action => 'debugtoggle', + linktext => 'Toggle Debug Messages', + text => 'Current Debug status is -'. + $ENV{'user.debug'}.'-.', + href => '/adm/preferences', + printmenu => 'yes', + subroutine => \&toggle_debug, + })); + } + foreach my $option(@Options) { + my $optiontext = ''; + if (exists($option->{'href'})) { + $optiontext .= + ''. + $option->{'linktext'}.''; + } + if (exists($option->{'text'})) { + $optiontext .= ' '.$option->{'text'}; + } + if ($optiontext ne '') { + $optiontext = ''.$optiontext.''; + my $helplink = ' '; + if (exists($option->{'help'})) { + $helplink = &Apache::loncommon::help_open_topic + ($option->{'help'}); + } + $optionlist .= ''. + ''. + ''. + ''; + } + } + $optionlist .= '
'.$helplink.''.$optiontext.'
'; + $r->print($optionlist); } - # Spit out the footer $r->print(< ENDFOOTER return OK; -} +} + +sub toggle_debug { + if ($ENV{'user.debug'}) { + &Apache::lonnet::delenv('user\.debug'); + } else { + &Apache::lonnet::appenv('user.debug' => 1); + } +} 1; __END__