version 1.190, 2004/05/11 19:51:49
|
version 1.205.2.1, 2004/08/02 21:02:20
|
Line 45 use Authen::Krb4;
|
Line 45 use Authen::Krb4;
|
use Authen::Krb5; |
use Authen::Krb5; |
use lib '/home/httpd/lib/perl/'; |
use lib '/home/httpd/lib/perl/'; |
use localauth; |
use localauth; |
|
use localenroll; |
use File::Copy; |
use File::Copy; |
use LONCAPA::ConfigFileEdit; |
use LONCAPA::ConfigFileEdit; |
|
use LONCAPA::lonlocal; |
|
use LONCAPA::lonssl; |
|
use Fcntl qw(:flock); |
|
|
my $DEBUG = 0; # Non zero to enable debug log entries. |
my $DEBUG = 0; # Non zero to enable debug log entries. |
|
|
Line 59 my $currenthostid;
|
Line 63 my $currenthostid;
|
my $currentdomainid; |
my $currentdomainid; |
|
|
my $client; |
my $client; |
my $clientip; |
my $clientip; # IP address of client. |
my $clientname; |
my $clientdns; # DNS name of client. |
|
my $clientname; # LonCAPA name of client. |
|
|
my $server; |
my $server; |
my $thisserver; |
my $thisserver; # DNS of us. |
|
|
|
my $keymode; |
|
|
# |
# |
# Connection type is: |
# Connection type is: |
Line 74 my $thisserver;
|
Line 81 my $thisserver;
|
|
|
my $ConnectionType; |
my $ConnectionType; |
|
|
my %hostid; |
my %hostid; # ID's for hosts in cluster by ip. |
my %hostdom; |
my %hostdom; # LonCAPA domain for hosts in cluster. |
my %hostip; |
my %hostip; # IPs for hosts in cluster. |
|
my %hostdns; # ID's of hosts looked up by DNS name. |
|
|
my %managers; # Ip -> manager names |
my %managers; # Ip -> manager names |
|
|
Line 120 my @adderrors = ("ok",
|
Line 128 my @adderrors = ("ok",
|
"lcuseradd Password mismatch"); |
"lcuseradd Password mismatch"); |
|
|
|
|
|
#------------------------------------------------------------------------ |
|
# |
|
# LocalConnection |
|
# Completes the formation of a locally authenticated connection. |
|
# This function will ensure that the 'remote' client is really the |
|
# local host. If not, the connection is closed, and the function fails. |
|
# If so, initcmd is parsed for the name of a file containing the |
|
# IDEA session key. The fie is opened, read, deleted and the session |
|
# key returned to the caller. |
|
# |
|
# Parameters: |
|
# $Socket - Socket open on client. |
|
# $initcmd - The full text of the init command. |
|
# |
|
# Implicit inputs: |
|
# $clientdns - The DNS name of the remote client. |
|
# $thisserver - Our DNS name. |
|
# |
|
# Returns: |
|
# IDEA session key on success. |
|
# undef on failure. |
|
# |
|
sub LocalConnection { |
|
my ($Socket, $initcmd) = @_; |
|
Debug("Attempting local connection: $initcmd client: $clientdns me: $thisserver"); |
|
if($clientdns ne $thisserver) { |
|
&logthis('<font color="red"> LocalConnection rejecting non local: ' |
|
."$clientdns ne $thisserver </font>"); |
|
close $Socket; |
|
return undef; |
|
} |
|
else { |
|
chomp($initcmd); # Get rid of \n in filename. |
|
my ($init, $type, $name) = split(/:/, $initcmd); |
|
Debug(" Init command: $init $type $name "); |
|
|
|
# Require that $init = init, and $type = local: Otherwise |
|
# the caller is insane: |
|
|
|
if(($init ne "init") && ($type ne "local")) { |
|
&logthis('<font color = "red"> LocalConnection: caller is insane! ' |
|
."init = $init, and type = $type </font>"); |
|
close($Socket);; |
|
return undef; |
|
|
|
} |
|
# Now get the key filename: |
|
|
|
my $IDEAKey = lonlocal::ReadKeyFile($name); |
|
return $IDEAKey; |
|
} |
|
} |
|
#------------------------------------------------------------------------------ |
|
# |
|
# SSLConnection |
|
# Completes the formation of an ssh authenticated connection. The |
|
# socket is promoted to an ssl socket. If this promotion and the associated |
|
# certificate exchange are successful, the IDEA key is generated and sent |
|
# to the remote peer via the SSL tunnel. The IDEA key is also returned to |
|
# the caller after the SSL tunnel is torn down. |
|
# |
|
# Parameters: |
|
# Name Type Purpose |
|
# $Socket IO::Socket::INET Plaintext socket. |
|
# |
|
# Returns: |
|
# IDEA key on success. |
|
# undef on failure. |
|
# |
|
sub SSLConnection { |
|
my $Socket = shift; |
|
|
|
Debug("SSLConnection: "); |
|
my $KeyFile = lonssl::KeyFile(); |
|
if(!$KeyFile) { |
|
my $err = lonssl::LastError(); |
|
&logthis("<font color=\"red\"> CRITICAL" |
|
."Can't get key file $err </font>"); |
|
return undef; |
|
} |
|
my ($CACertificate, |
|
$Certificate) = lonssl::CertificateFile(); |
|
|
|
|
|
# If any of the key, certificate or certificate authority |
|
# certificate filenames are not defined, this can't work. |
|
|
|
if((!$Certificate) || (!$CACertificate)) { |
|
my $err = lonssl::LastError(); |
|
&logthis("<font color=\"red\"> CRITICAL" |
|
."Can't get certificates: $err </font>"); |
|
|
|
return undef; |
|
} |
|
Debug("Key: $KeyFile CA: $CACertificate Cert: $Certificate"); |
|
|
|
# Indicate to our peer that we can procede with |
|
# a transition to ssl authentication: |
|
|
|
print $Socket "ok:ssl\n"; |
|
|
|
Debug("Approving promotion -> ssl"); |
|
# And do so: |
|
|
|
my $SSLSocket = lonssl::PromoteServerSocket($Socket, |
|
$CACertificate, |
|
$Certificate, |
|
$KeyFile); |
|
if(! ($SSLSocket) ) { # SSL socket promotion failed. |
|
my $err = lonssl::LastError(); |
|
&logthis("<font color=\"red\"> CRITICAL " |
|
."SSL Socket promotion failed: $err </font>"); |
|
return undef; |
|
} |
|
Debug("SSL Promotion successful"); |
|
|
|
# |
|
# The only thing we'll use the socket for is to send the IDEA key |
|
# to the peer: |
|
|
|
my $Key = lonlocal::CreateCipherKey(); |
|
print $SSLSocket "$Key\n"; |
|
|
|
lonssl::Close($SSLSocket); |
|
|
|
Debug("Key exchange complete: $Key"); |
|
|
|
return $Key; |
|
} |
|
# |
|
# InsecureConnection: |
|
# If insecure connections are allowd, |
|
# exchange a challenge with the client to 'validate' the |
|
# client (not really, but that's the protocol): |
|
# We produce a challenge string that's sent to the client. |
|
# The client must then echo the challenge verbatim to us. |
|
# |
|
# Parameter: |
|
# Socket - Socket open on the client. |
|
# Returns: |
|
# 1 - success. |
|
# 0 - failure (e.g.mismatch or insecure not allowed). |
|
# |
|
sub InsecureConnection { |
|
my $Socket = shift; |
|
|
|
# Don't even start if insecure connections are not allowed. |
|
|
|
if(! $perlvar{londAllowInsecure}) { # Insecure connections not allowed. |
|
return 0; |
|
} |
|
|
|
# Fabricate a challenge string and send it.. |
|
|
|
my $challenge = "$$".time; # pid + time. |
|
print $Socket "$challenge\n"; |
|
&status("Waiting for challenge reply"); |
|
|
|
my $answer = <$Socket>; |
|
$answer =~s/\W//g; |
|
if($challenge eq $answer) { |
|
return 1; |
|
} |
|
else { |
|
logthis("<font color='blue'>WARNING client did not respond to challenge</font>"); |
|
&status("No challenge reqply"); |
|
return 0; |
|
} |
|
|
|
|
|
} |
|
|
# |
# |
# GetCertificate: Given a transaction that requires a certificate, |
# GetCertificate: Given a transaction that requires a certificate, |
# this function will extract the certificate from the transaction |
# this function will extract the certificate from the transaction |
Line 175 sub ReadManagerTable {
|
Line 355 sub ReadManagerTable {
|
while(my $host = <MANAGERS>) { |
while(my $host = <MANAGERS>) { |
chomp($host); |
chomp($host); |
if ($host =~ "^#") { # Comment line. |
if ($host =~ "^#") { # Comment line. |
logthis('<font color="green"> Skipping line: '. "$host</font>\n"); |
|
next; |
next; |
} |
} |
if (!defined $hostip{$host}) { # This is a non cluster member |
if (!defined $hostip{$host}) { # This is a non cluster member |
Line 225 sub ValidManager {
|
Line 404 sub ValidManager {
|
# 1 - Success. |
# 1 - Success. |
# |
# |
sub CopyFile { |
sub CopyFile { |
my $oldfile = shift; |
|
my $newfile = shift; |
my ($oldfile, $newfile) = @_; |
|
|
# The file must exist: |
# The file must exist: |
|
|
Line 326 sub AdjustHostContents {
|
Line 505 sub AdjustHostContents {
|
# 0 - failure and $! has an errno. |
# 0 - failure and $! has an errno. |
# |
# |
sub InstallFile { |
sub InstallFile { |
my $Filename = shift; |
|
my $Contents = shift; |
my ($Filename, $Contents) = @_; |
my $TempFile = $Filename.".tmp"; |
my $TempFile = $Filename.".tmp"; |
|
|
# Open the file for write: |
# Open the file for write: |
Line 350 sub InstallFile {
|
Line 529 sub InstallFile {
|
|
|
return 1; |
return 1; |
} |
} |
|
|
|
|
# |
# |
# ConfigFileFromSelector: converts a configuration file selector |
# ConfigFileFromSelector: converts a configuration file selector |
# (one of host or domain at this point) into a |
# (one of host or domain at this point) into a |
Line 564 sub isValidEditCommand {
|
Line 745 sub isValidEditCommand {
|
# file being edited. |
# file being edited. |
# |
# |
sub ApplyEdit { |
sub ApplyEdit { |
my $directive = shift; |
|
my $editor = shift; |
my ($directive, $editor) = @_; |
|
|
# Break the directive down into its command and its parameters |
# Break the directive down into its command and its parameters |
# (at most two at this point. The meaning of the parameters, if in fact |
# (at most two at this point. The meaning of the parameters, if in fact |
Line 649 sub AdjustOurHost {
|
Line 830 sub AdjustOurHost {
|
# editor - Editor containing the file. |
# editor - Editor containing the file. |
# |
# |
sub ReplaceConfigFile { |
sub ReplaceConfigFile { |
my $filename = shift; |
|
my $editor = shift; |
my ($filename, $editor) = @_; |
|
|
CopyFile ($filename, $filename.".old"); |
CopyFile ($filename, $filename.".old"); |
|
|
Line 863 sub HUPSMAN { # sig
|
Line 1044 sub HUPSMAN { # sig
|
# |
# |
# Kill off hashes that describe the host table prior to re-reading it. |
# Kill off hashes that describe the host table prior to re-reading it. |
# Hashes affected are: |
# Hashes affected are: |
# %hostid, %hostdom %hostip |
# %hostid, %hostdom %hostip %hostdns. |
# |
# |
sub KillHostHashes { |
sub KillHostHashes { |
foreach my $key (keys %hostid) { |
foreach my $key (keys %hostid) { |
Line 875 sub KillHostHashes {
|
Line 1056 sub KillHostHashes {
|
foreach my $key (keys %hostip) { |
foreach my $key (keys %hostip) { |
delete $hostip{$key}; |
delete $hostip{$key}; |
} |
} |
|
foreach my $key (keys %hostdns) { |
|
delete $hostdns{$key}; |
|
} |
} |
} |
# |
# |
# Read in the host table from file and distribute it into the various hashes: |
# Read in the host table from file and distribute it into the various hashes: |
Line 885 sub KillHostHashes {
|
Line 1069 sub KillHostHashes {
|
sub ReadHostTable { |
sub ReadHostTable { |
|
|
open (CONFIG,"$perlvar{'lonTabDir'}/hosts.tab") || die "Can't read host file"; |
open (CONFIG,"$perlvar{'lonTabDir'}/hosts.tab") || die "Can't read host file"; |
|
my $myloncapaname = $perlvar{'lonHostID'}; |
|
Debug("My loncapa name is : $myloncapaname"); |
while (my $configline=<CONFIG>) { |
while (my $configline=<CONFIG>) { |
if (!($configline =~ /^\s*\#/)) { |
if (!($configline =~ /^\s*\#/)) { |
my ($id,$domain,$role,$name,$ip)=split(/:/,$configline); |
my ($id,$domain,$role,$name,$ip)=split(/:/,$configline); |
chomp($ip); $ip=~s/\D+$//; |
chomp($ip); $ip=~s/\D+$//; |
$hostid{$ip}=$id; |
$hostid{$ip}=$id; # LonCAPA name of host by IP. |
$hostdom{$id}=$domain; |
$hostdom{$id}=$domain; # LonCAPA domain name of host. |
$hostip{$id}=$ip; |
$hostip{$id}=$ip; # IP address of host. |
if ($id eq $perlvar{'lonHostID'}) { $thisserver=$name; } |
$hostdns{$name} = $id; # LonCAPA name of host by DNS. |
|
|
|
if ($id eq $perlvar{'lonHostID'}) { |
|
Debug("Found me in the host table: $name"); |
|
$thisserver=$name; |
|
} |
} |
} |
} |
} |
close(CONFIG); |
close(CONFIG); |
Line 956 sub checkchildren {
|
Line 1146 sub checkchildren {
|
&logthis('Going to check on the children'); |
&logthis('Going to check on the children'); |
my $docdir=$perlvar{'lonDocRoot'}; |
my $docdir=$perlvar{'lonDocRoot'}; |
foreach (sort keys %children) { |
foreach (sort keys %children) { |
sleep 1; |
#sleep 1; |
unless (kill 'USR1' => $_) { |
unless (kill 'USR1' => $_) { |
&logthis ('Child '.$_.' is dead'); |
&logthis ('Child '.$_.' is dead'); |
&logstatus($$.' is dead'); |
&logstatus($$.' is dead'); |
|
delete($children{$_}); |
} |
} |
} |
} |
sleep 5; |
sleep 5; |
Line 977 sub checkchildren {
|
Line 1168 sub checkchildren {
|
#my $result=`echo 'Killed lond process $_.' | mailto $emailto -s '$subj' > /dev/null`; |
#my $result=`echo 'Killed lond process $_.' | mailto $emailto -s '$subj' > /dev/null`; |
#$execdir=$perlvar{'lonDaemons'}; |
#$execdir=$perlvar{'lonDaemons'}; |
#$result=`/bin/cp $execdir/logs/lond.log $execdir/logs/lond.log.$_`; |
#$result=`/bin/cp $execdir/logs/lond.log $execdir/logs/lond.log.$_`; |
|
delete($children{$_}); |
alarm(0); |
alarm(0); |
} |
} |
} |
} |
Line 984 sub checkchildren {
|
Line 1176 sub checkchildren {
|
$SIG{ALRM} = 'DEFAULT'; |
$SIG{ALRM} = 'DEFAULT'; |
$SIG{__DIE__} = \&catchexception; |
$SIG{__DIE__} = \&catchexception; |
&status("Finished checking children"); |
&status("Finished checking children"); |
|
&logthis('Finished Checking children'); |
} |
} |
|
|
# --------------------------------------------------------------------- Logging |
# --------------------------------------------------------------------- Logging |
Line 1015 sub Debug {
|
Line 1208 sub Debug {
|
# request - Original request from client. |
# request - Original request from client. |
# |
# |
sub Reply { |
sub Reply { |
my $fd = shift; |
|
my $reply = shift; |
my ($fd, $reply, $request) = @_; |
my $request = shift; |
|
|
|
print $fd $reply; |
print $fd $reply; |
Debug("Request was $request Reply was $reply"); |
Debug("Request was $request Reply was $reply"); |
Line 1029 sub logstatus {
|
Line 1221 sub logstatus {
|
&status("Doing logging"); |
&status("Doing logging"); |
my $docdir=$perlvar{'lonDocRoot'}; |
my $docdir=$perlvar{'lonDocRoot'}; |
{ |
{ |
my $fh=IO::File->new(">>$docdir/lon-status/londstatus.txt"); |
|
print $fh $$."\t".$clientname."\t".$currenthostid."\t".$status."\t".$lastlog."\n"; |
|
$fh->close(); |
|
} |
|
&status("Finished londstatus.txt"); |
|
{ |
|
my $fh=IO::File->new(">$docdir/lon-status/londchld/$$.txt"); |
my $fh=IO::File->new(">$docdir/lon-status/londchld/$$.txt"); |
print $fh $status."\n".$lastlog."\n".time; |
print $fh $status."\n".$lastlog."\n".time."\n$keymode"; |
$fh->close(); |
$fh->close(); |
} |
} |
|
&status("Finished $$.txt"); |
|
{ |
|
open(LOG,">>$docdir/lon-status/londstatus.txt"); |
|
flock(LOG,LOCK_EX); |
|
print LOG $$."\t".$clientname."\t".$currenthostid."\t" |
|
.$status."\t".$lastlog."\t $keymode\n"; |
|
flock(DB,LOCK_UN); |
|
close(LOG); |
|
} |
&status("Finished logging"); |
&status("Finished logging"); |
} |
} |
|
|
Line 1265 sub make_new_child {
|
Line 1460 sub make_new_child {
|
&logthis("Unable to determine who caller was, getpeername returned nothing"); |
&logthis("Unable to determine who caller was, getpeername returned nothing"); |
} |
} |
if (defined($iaddr)) { |
if (defined($iaddr)) { |
$clientip=inet_ntoa($iaddr); |
$clientip = inet_ntoa($iaddr); |
|
Debug("Connected with $clientip"); |
|
$clientdns = gethostbyaddr($iaddr, AF_INET); |
|
Debug("Connected with $clientdns by name"); |
} else { |
} else { |
&logthis("Unable to determine clinetip"); |
&logthis("Unable to determine clientip"); |
$clientip='Unavailable'; |
$clientip='Unavailable'; |
} |
} |
|
|
Line 1301 sub make_new_child {
|
Line 1499 sub make_new_child {
|
# ============================================================================= |
# ============================================================================= |
# do something with the connection |
# do something with the connection |
# ----------------------------------------------------------------------------- |
# ----------------------------------------------------------------------------- |
# see if we know client and check for spoof IP by challenge |
# see if we know client and 'check' for spoof IP by ineffective challenge |
|
|
ReadManagerTable; # May also be a manager!! |
ReadManagerTable; # May also be a manager!! |
|
|
Line 1319 sub make_new_child {
|
Line 1517 sub make_new_child {
|
$clientname = $managers{$clientip}; |
$clientname = $managers{$clientip}; |
} |
} |
my $clientok; |
my $clientok; |
|
|
if ($clientrec || $ismanager) { |
if ($clientrec || $ismanager) { |
&status("Waiting for init from $clientip $clientname"); |
&status("Waiting for init from $clientip $clientname"); |
&logthis('<font color="yellow">INFO: Connection, '. |
&logthis('<font color="yellow">INFO: Connection, '. |
Line 1326 sub make_new_child {
|
Line 1525 sub make_new_child {
|
" ($clientname) connection type = $ConnectionType </font>" ); |
" ($clientname) connection type = $ConnectionType </font>" ); |
&status("Connecting $clientip ($clientname))"); |
&status("Connecting $clientip ($clientname))"); |
my $remotereq=<$client>; |
my $remotereq=<$client>; |
$remotereq=~s/[^\w:]//g; |
chomp($remotereq); |
|
Debug("Got init: $remotereq"); |
|
my $inikeyword = split(/:/, $remotereq); |
if ($remotereq =~ /^init/) { |
if ($remotereq =~ /^init/) { |
&sethost("sethost:$perlvar{'lonHostID'}"); |
&sethost("sethost:$perlvar{'lonHostID'}"); |
my $challenge="$$".time; |
# |
print $client "$challenge\n"; |
# If the remote is attempting a local init... give that a try: |
&status( |
# |
"Waiting for challenge reply from $clientip ($clientname)"); |
my ($i, $inittype) = split(/:/, $remotereq); |
$remotereq=<$client>; |
|
$remotereq=~s/\W//g; |
# If the connection type is ssl, but I didn't get my |
if ($challenge eq $remotereq) { |
# certificate files yet, then I'll drop back to |
$clientok=1; |
# insecure (if allowed). |
print $client "ok\n"; |
|
|
if($inittype eq "ssl") { |
|
my ($ca, $cert) = lonssl::CertificateFile; |
|
my $kfile = lonssl::KeyFile; |
|
if((!$ca) || |
|
(!$cert) || |
|
(!$kfile)) { |
|
$inittype = ""; # This forces insecure attempt. |
|
&logthis("<font color=\"blue\"> Certificates not " |
|
."installed -- trying insecure auth</font>"); |
|
} |
|
else { # SSL certificates are in place so |
|
} # Leave the inittype alone. |
|
} |
|
|
|
if($inittype eq "local") { |
|
my $key = LocalConnection($client, $remotereq); |
|
if($key) { |
|
Debug("Got local key $key"); |
|
$clientok = 1; |
|
my $cipherkey = pack("H32", $key); |
|
$cipher = new IDEA($cipherkey); |
|
print $client "ok:local\n"; |
|
&logthis('<font color="green"' |
|
. "Successful local authentication </font>"); |
|
$keymode = "local" |
|
} else { |
|
Debug("Failed to get local key"); |
|
$clientok = 0; |
|
shutdown($client, 3); |
|
close $client; |
|
} |
|
} elsif ($inittype eq "ssl") { |
|
my $key = SSLConnection($client); |
|
if ($key) { |
|
$clientok = 1; |
|
my $cipherkey = pack("H32", $key); |
|
$cipher = new IDEA($cipherkey); |
|
&logthis('<font color="green">' |
|
."Successfull ssl authentication with $clientname </font>"); |
|
$keymode = "ssl"; |
|
|
|
} else { |
|
$clientok = 0; |
|
close $client; |
|
} |
|
|
} else { |
} else { |
&logthis( |
my $ok = InsecureConnection($client); |
"<font color='blue'>WARNING: $clientip did not reply challenge</font>"); |
if($ok) { |
&status('No challenge reply '.$clientip); |
$clientok = 1; |
|
&logthis('<font color="green">' |
|
."Successful insecure authentication with $clientname </font>"); |
|
print $client "ok\n"; |
|
$keymode = "insecure"; |
|
} else { |
|
&logthis('<font color="yellow">' |
|
."Attempted insecure connection disallowed </font>"); |
|
close $client; |
|
$clientok = 0; |
|
|
|
} |
} |
} |
} else { |
} else { |
&logthis( |
&logthis( |
Line 1349 sub make_new_child {
|
Line 1607 sub make_new_child {
|
."$clientip failed to initialize: >$remotereq< </font>"); |
."$clientip failed to initialize: >$remotereq< </font>"); |
&status('No init '.$clientip); |
&status('No init '.$clientip); |
} |
} |
|
|
} else { |
} else { |
&logthis( |
&logthis( |
"<font color='blue'>WARNING: Unknown client $clientip</font>"); |
"<font color='blue'>WARNING: Unknown client $clientip</font>"); |
&status('Hung up on '.$clientip); |
&status('Hung up on '.$clientip); |
} |
} |
|
|
if ($clientok) { |
if ($clientok) { |
# ---------------- New known client connecting, could mean machine online again |
# ---------------- New known client connecting, could mean machine online again |
|
|
Line 1562 sub make_new_child {
|
Line 1822 sub make_new_child {
|
$pwdcorrect=0; |
$pwdcorrect=0; |
# log error if it is not a bad password |
# log error if it is not a bad password |
if ($krb4_error != 62) { |
if ($krb4_error != 62) { |
&logthis('krb4:'.$uname.','.$contentpwd.','. |
&logthis('krb4:'.$uname.','. |
&Authen::Krb4::get_err_txt($Authen::Krb4::error)); |
&Authen::Krb4::get_err_txt($Authen::Krb4::error)); |
} |
} |
} |
} |
Line 2533 sub make_new_child {
|
Line 2793 sub make_new_child {
|
} |
} |
# ------------------------------------------------------------------- querysend |
# ------------------------------------------------------------------- querysend |
} elsif ($userinput =~ /^querysend/) { |
} elsif ($userinput =~ /^querysend/) { |
if(isClient) { |
if (isClient) { |
my ($cmd,$query, |
my ($cmd,$query, |
$arg1,$arg2,$arg3)=split(/\:/,$userinput); |
$arg1,$arg2,$arg3)=split(/\:/,$userinput); |
$query=~s/\n*$//g; |
$query=~s/\n*$//g; |
Line 2581 sub make_new_child {
|
Line 2841 sub make_new_child {
|
my %hash; |
my %hash; |
if (tie(%hash,'GDBM_File',"$proname.db",&GDBM_WRCREAT(),0640)) { |
if (tie(%hash,'GDBM_File',"$proname.db",&GDBM_WRCREAT(),0640)) { |
foreach my $pair (@pairs) { |
foreach my $pair (@pairs) { |
my ($key,$value)=split(/=/,$pair); |
my ($key,$descr,$inst_code)=split(/=/,$pair); |
$hash{$key}=$value.':'.$now; |
$hash{$key}=$descr.':'.$inst_code.':'.$now; |
} |
} |
if (untie(%hash)) { |
if (untie(%hash)) { |
print $client "ok\n"; |
print $client "ok\n"; |
Line 2617 sub make_new_child {
|
Line 2877 sub make_new_child {
|
my %hash; |
my %hash; |
if (tie(%hash,'GDBM_File',"$proname.db",&GDBM_READER(),0640)) { |
if (tie(%hash,'GDBM_File',"$proname.db",&GDBM_READER(),0640)) { |
while (my ($key,$value) = each(%hash)) { |
while (my ($key,$value) = each(%hash)) { |
my ($descr,$lasttime)=split(/\:/,$value); |
my ($descr,$lasttime,$inst_code); |
|
if ($value =~ m/^([^\:]*):([^\:]*):(\d+)$/) { |
|
($descr,$inst_code,$lasttime)=($1,$2,$3); |
|
} else { |
|
($descr,$lasttime) = split(/\:/,$value); |
|
} |
if ($lasttime<$since) { next; } |
if ($lasttime<$since) { next; } |
if ($description eq '.') { |
if ($description eq '.') { |
$qresult.=$key.'='.$descr.'&'; |
$qresult.=$key.'='.$descr.':'.$inst_code.'&'; |
} else { |
} else { |
my $unescapeVal = &unescape($descr); |
my $unescapeVal = &unescape($descr); |
if (eval('$unescapeVal=~/\Q$description\E/i')) { |
if (eval('$unescapeVal=~/\Q$description\E/i')) { |
$qresult.="$key=$descr&"; |
$qresult.=$key.'='.$descr.':'.$inst_code.'&'; |
} |
} |
} |
} |
} |
} |
Line 2778 sub make_new_child {
|
Line 3043 sub make_new_child {
|
Reply($client, "refused\n", $userinput); |
Reply($client, "refused\n", $userinput); |
|
|
} |
} |
|
# ----------------------------------------- portfolio directory list (portls) |
|
} elsif ($userinput =~ /^portls/) { |
|
if(isClient) { |
|
my ($cmd,$uname,$udom)=split(/:/,$userinput); |
|
my $udir=propath($udom,$uname).'/userfiles/portfolio'; |
|
my $dirLine=''; |
|
my $dirContents=''; |
|
if (opendir(LSDIR,$udir.'/')){ |
|
while ($dirLine = readdir(LSDIR)){ |
|
$dirContents = $dirContents.$dirLine.'<br />'; |
|
} |
|
} else { |
|
$dirContents = "No directory found\n"; |
|
} |
|
print $client $dirContents."\n"; |
|
} else { |
|
Reply($client, "refused\n", $userinput); |
|
} |
# -------------------------------------------------------------------------- ls |
# -------------------------------------------------------------------------- ls |
} elsif ($userinput =~ /^ls/) { |
} elsif ($userinput =~ /^ls/) { |
if(isClient) { |
if(isClient) { |
Line 2864 sub make_new_child {
|
Line 3147 sub make_new_child {
|
} else { |
} else { |
print $client "refused\n"; |
print $client "refused\n"; |
} |
} |
|
#------------------------------- is auto-enrollment enabled? |
|
} elsif ($userinput =~/^autorun:/) { |
|
if (isClient) { |
|
my ($cmd,$cdom) = split(/:/,$userinput); |
|
my $outcome = &localenroll::run($cdom); |
|
print $client "$outcome\n"; |
|
} else { |
|
print $client "0\n"; |
|
} |
|
#------------------------------- get official sections (for auto-enrollment). |
|
} elsif ($userinput =~/^autogetsections:/) { |
|
if (isClient) { |
|
my ($cmd,$coursecode,$cdom)=split(/:/,$userinput); |
|
my @secs = &localenroll::get_sections($coursecode,$cdom); |
|
my $seclist = &escape(join(':',@secs)); |
|
print $client "$seclist\n"; |
|
} else { |
|
print $client "refused\n"; |
|
} |
|
#----------------------- validate owner of new course section (for auto-enrollment). |
|
} elsif ($userinput =~/^autonewcourse:/) { |
|
if (isClient) { |
|
my ($cmd,$inst_course_id,$owner,$cdom)=split(/:/,$userinput); |
|
my $outcome = &localenroll::new_course($inst_course_id,$owner,$cdom); |
|
print $client "$outcome\n"; |
|
} else { |
|
print $client "refused\n"; |
|
} |
|
#-------------- validate course section in schedule of classes (for auto-enrollment). |
|
} elsif ($userinput =~/^autovalidatecourse:/) { |
|
if (isClient) { |
|
my ($cmd,$inst_course_id,$cdom)=split(/:/,$userinput); |
|
my $outcome=&localenroll::validate_courseID($inst_course_id,$cdom); |
|
print $client "$outcome\n"; |
|
} else { |
|
print $client "refused\n"; |
|
} |
|
#--------------------------- create password for new user (for auto-enrollment). |
|
} elsif ($userinput =~/^autocreatepassword:/) { |
|
if (isClient) { |
|
my ($cmd,$authparam,$cdom)=split(/:/,$userinput); |
|
my ($create_passwd,$authchk); |
|
($authparam,$create_passwd,$authchk) = &localenroll::create_password($authparam,$cdom); |
|
print $client &escape($authparam.':'.$create_passwd.':'.$authchk)."\n"; |
|
} else { |
|
print $client "refused\n"; |
|
} |
|
#--------------------------- read and remove temporary files (for auto-enrollment). |
|
} elsif ($userinput =~/^autoretrieve:/) { |
|
if (isClient) { |
|
my ($cmd,$filename) = split(/:/,$userinput); |
|
my $source = $perlvar{'lonDaemons'}.'/tmp/'.$filename; |
|
if ( (-e $source) && ($filename ne '') ) { |
|
my $reply = ''; |
|
if (open(my $fh,$source)) { |
|
while (<$fh>) { |
|
chomp($_); |
|
$_ =~ s/^\s+//g; |
|
$_ =~ s/\s+$//g; |
|
$reply .= $_; |
|
} |
|
close($fh); |
|
print $client &escape($reply)."\n"; |
|
# unlink($source); |
|
} else { |
|
print $client "error\n"; |
|
} |
|
} else { |
|
print $client "error\n"; |
|
} |
|
} else { |
|
print $client "refused\n"; |
|
} |
|
#--------------------- read and retrieve institutional code format (for support form). |
|
} elsif ($userinput =~/^autoinstcodeformat:/) { |
|
if (isClient) { |
|
my $reply; |
|
my($cmd,$cdom,$course) = split(/:/,$userinput); |
|
my @pairs = split/\&/,$course; |
|
my %instcodes = (); |
|
my %codes = (); |
|
my @codetitles = (); |
|
my %cat_titles = (); |
|
my %cat_order = (); |
|
foreach (@pairs) { |
|
my ($key,$value) = split/=/,$_; |
|
$instcodes{&unescape($key)} = &unescape($value); |
|
} |
|
my $formatreply = &localenroll::instcode_format($cdom,\%instcodes,\%codes,\@codetitles,\%cat_titles,\%cat_order); |
|
if ($formatreply eq 'ok') { |
|
my $codes_str = &hash2str(%codes); |
|
my $codetitles_str = &array2str(@codetitles); |
|
my $cat_titles_str = &hash2str(%cat_titles); |
|
my $cat_order_str = &hash2str(%cat_order); |
|
print $client $codes_str.':'.$codetitles_str.':'.$cat_titles_str.':'.$cat_order_str."\n"; |
|
} |
|
} else { |
|
print $client "refused\n"; |
|
} |
# ------------------------------------------------------------- unknown command |
# ------------------------------------------------------------- unknown command |
|
|
} else { |
} else { |
Line 2872 sub make_new_child {
|
Line 3254 sub make_new_child {
|
} |
} |
# -------------------------------------------------------------------- complete |
# -------------------------------------------------------------------- complete |
alarm(0); |
alarm(0); |
&status('Listening to '.$clientname); |
&status('Listening to '.$clientname." ($keymode)"); |
} |
} |
# --------------------------------------------- client unknown or fishy, refuse |
# --------------------------------------------- client unknown or fishy, refuse |
} else { |
} else { |
Line 2910 sub make_new_child {
|
Line 3292 sub make_new_child {
|
# |
# |
sub ManagePermissions |
sub ManagePermissions |
{ |
{ |
my $request = shift; |
|
my $domain = shift; |
my ($request, $domain, $user, $authtype) = @_; |
my $user = shift; |
|
my $authtype= shift; |
|
|
|
# See if the request is of the form /$domain/_au |
# See if the request is of the form /$domain/_au |
if($request =~ /^(\/$domain\/_au)$/) { # It's an author rolesput... |
if($request =~ /^(\/$domain\/_au)$/) { # It's an author rolesput... |
Line 2930 sub ManagePermissions
|
Line 3310 sub ManagePermissions
|
# |
# |
sub GetAuthType |
sub GetAuthType |
{ |
{ |
my $domain = shift; |
|
my $user = shift; |
my ($domain, $user) = @_; |
|
|
Debug("GetAuthType( $domain, $user ) \n"); |
Debug("GetAuthType( $domain, $user ) \n"); |
my $proname = &propath($domain, $user); |
my $proname = &propath($domain, $user); |
Line 3233 sub sethost {
|
Line 3613 sub sethost {
|
my (undef,$hostid)=split(/:/,$remotereq); |
my (undef,$hostid)=split(/:/,$remotereq); |
if (!defined($hostid)) { $hostid=$perlvar{'lonHostID'}; } |
if (!defined($hostid)) { $hostid=$perlvar{'lonHostID'}; } |
if ($hostip{$perlvar{'lonHostID'}} eq $hostip{$hostid}) { |
if ($hostip{$perlvar{'lonHostID'}} eq $hostip{$hostid}) { |
$currenthostid=$hostid; |
$currenthostid =$hostid; |
$currentdomainid=$hostdom{$hostid}; |
$currentdomainid=$hostdom{$hostid}; |
&logthis("Setting hostid to $hostid, and domain to $currentdomainid"); |
&logthis("Setting hostid to $hostid, and domain to $currentdomainid"); |
} else { |
} else { |
Line 3273 sub userload {
|
Line 3653 sub userload {
|
return $userloadpercent; |
return $userloadpercent; |
} |
} |
|
|
|
# Routines for serializing arrays and hashes (copies from lonnet) |
|
|
|
sub array2str { |
|
my (@array) = @_; |
|
my $result=&arrayref2str(\@array); |
|
$result=~s/^__ARRAY_REF__//; |
|
$result=~s/__END_ARRAY_REF__$//; |
|
return $result; |
|
} |
|
|
|
sub arrayref2str { |
|
my ($arrayref) = @_; |
|
my $result='__ARRAY_REF__'; |
|
foreach my $elem (@$arrayref) { |
|
if(ref($elem) eq 'ARRAY') { |
|
$result.=&arrayref2str($elem).'&'; |
|
} elsif(ref($elem) eq 'HASH') { |
|
$result.=&hashref2str($elem).'&'; |
|
} elsif(ref($elem)) { |
|
#print("Got a ref of ".(ref($elem))." skipping."); |
|
} else { |
|
$result.=&escape($elem).'&'; |
|
} |
|
} |
|
$result=~s/\&$//; |
|
$result .= '__END_ARRAY_REF__'; |
|
return $result; |
|
} |
|
|
|
sub hash2str { |
|
my (%hash) = @_; |
|
my $result=&hashref2str(\%hash); |
|
$result=~s/^__HASH_REF__//; |
|
$result=~s/__END_HASH_REF__$//; |
|
return $result; |
|
} |
|
|
|
sub hashref2str { |
|
my ($hashref)=@_; |
|
my $result='__HASH_REF__'; |
|
foreach (sort(keys(%$hashref))) { |
|
if (ref($_) eq 'ARRAY') { |
|
$result.=&arrayref2str($_).'='; |
|
} elsif (ref($_) eq 'HASH') { |
|
$result.=&hashref2str($_).'='; |
|
} elsif (ref($_)) { |
|
$result.='='; |
|
#print("Got a ref of ".(ref($_))." skipping."); |
|
} else { |
|
if ($_) {$result.=&escape($_).'=';} else { last; } |
|
} |
|
|
|
if(ref($hashref->{$_}) eq 'ARRAY') { |
|
$result.=&arrayref2str($hashref->{$_}).'&'; |
|
} elsif(ref($hashref->{$_}) eq 'HASH') { |
|
$result.=&hashref2str($hashref->{$_}).'&'; |
|
} elsif(ref($hashref->{$_})) { |
|
$result.='&'; |
|
#print("Got a ref of ".(ref($hashref->{$_}))." skipping."); |
|
} else { |
|
$result.=&escape($hashref->{$_}).'&'; |
|
} |
|
} |
|
$result=~s/\&$//; |
|
$result .= '__END_HASH_REF__'; |
|
return $result; |
|
} |
|
|
# ----------------------------------- POD (plain old documentation, CPAN style) |
# ----------------------------------- POD (plain old documentation, CPAN style) |
|
|
=head1 NAME |
=head1 NAME |