|
version 1.49, 2000/10/25 20:52:31
|
version 1.107, 2001/03/15 20:56:14
|
|
Line 13
|
Line 13
|
| # 1: user needs to choose course |
# 1: user needs to choose course |
| # 2: browse allowed |
# 2: browse allowed |
| # definerole(rolename,sys,dom,cou) : define a custom role rolename |
# definerole(rolename,sys,dom,cou) : define a custom role rolename |
| # set priviledges in format of lonTabs/roles.tab for |
# set privileges in format of lonTabs/roles.tab for |
| # system, domain and course level, |
# system, domain and course level, |
| # assignrole(udom,uname,url,role,end,start) : give a role to a user for the |
# assignrole(udom,uname,url,role,end,start) : give a role to a user for the |
| # level given by url. Optional start and end dates |
# level given by url. Optional start and end dates |
|
Line 24
|
Line 24
|
| # revokerole (udom,uname,url,role) : Revoke a role for url |
# revokerole (udom,uname,url,role) : Revoke a role for url |
| # revokecustomrole (udom,uname,url,rdom,rnam,rolename) : Revoke a custom role |
# revokecustomrole (udom,uname,url,rdom,rnam,rolename) : Revoke a custom role |
| # appenv(hash) : adds hash to session environment |
# appenv(hash) : adds hash to session environment |
| |
# delenv(varname) : deletes all environment entries starting with varname |
| # store(hash) : stores hash permanently for this url |
# store(hash) : stores hash permanently for this url |
| # cstore(hash) : critical store |
# cstore(hash) : critical store |
| # restore : returns hash for this url |
# restore : returns hash for this url |
|
Line 41
|
Line 42
|
| # directcondval(index) : reading condition value of single condition from |
# directcondval(index) : reading condition value of single condition from |
| # state string |
# state string |
| # condval(index) : value of condition index based on state |
# condval(index) : value of condition index based on state |
| # varval(name) : value of a variable |
# EXT(name) : value of a variable |
| # refreshstate() : refresh the state information string |
|
| # symblist(map,hash) : Updates symbolic storage links |
# symblist(map,hash) : Updates symbolic storage links |
| # symbread([filename]) : returns the data handle (filename optional) |
# symbread([filename]) : returns the data handle (filename optional) |
| # rndseed() : returns a random seed |
# rndseed() : returns a random seed |
| |
# receipt() : returns a receipt to be given out to users |
| # getfile(filename) : returns the contents of filename, or a -1 if it can't |
# getfile(filename) : returns the contents of filename, or a -1 if it can't |
| # be found, replicates and subscribes to the file |
# be found, replicates and subscribes to the file |
| # filelocation(dir,file) : returns a farily clean absolute reference to file |
# filelocation(dir,file) : returns a farily clean absolute reference to file |
| # from the directory dir |
# from the directory dir |
| # hreflocation(dir,file) : same as filelocation, but for hrefs |
# hreflocation(dir,file) : same as filelocation, but for hrefs |
| # log(domain,user,home,msg) : write to permanent log for user |
# log(domain,user,home,msg) : write to permanent log for user |
| |
# usection(domain,user,courseid) : output of section name/number or '' for |
| |
# "not in course" and '-1' for "no section" |
| |
# userenvironment(domain,user,what) : puts out any environment parameter |
| |
# for a user |
| |
# idput(domain,hash) : writes IDs for users from hash (name=>id,name=>id) |
| |
# idget(domain,array): returns hash with usernames (id=>name,id=>name) for |
| |
# an array of IDs |
| |
# idrget(domain,array): returns hash with IDs for usernames (name=>id,...) for |
| |
# an array of names |
| |
# metadata(file,entry): returns the metadata entry for a file. entry='keys' |
| |
# returns a comma separated list of keys |
| # |
# |
| # 6/1/99,6/2,6/10,6/11,6/12,6/14,6/26,6/28,6/29,6/30, |
# 6/1/99,6/2,6/10,6/11,6/12,6/14,6/26,6/28,6/29,6/30, |
| # 7/1,7/2,7/9,7/10,7/12,7/14,7/15,7/19, |
# 7/1,7/2,7/9,7/10,7/12,7/14,7/15,7/19, |
|
Line 66
|
Line 78
|
| # 08/22,08/28,08/31,09/01,09/02,09/04,09/05,09/25,09/28,09/30 Gerd Kortemeyer |
# 08/22,08/28,08/31,09/01,09/02,09/04,09/05,09/25,09/28,09/30 Gerd Kortemeyer |
| # 10/04 Gerd Kortemeyer |
# 10/04 Gerd Kortemeyer |
| # 10/04 Guy Albertelli |
# 10/04 Guy Albertelli |
| # 10/06,10/09,10/10,10/11,10/14,10/20,10/23,10/25 Gerd Kortemeyer |
# 10/06,10/09,10/10,10/11,10/14,10/20,10/23,10/25,10/26,10/27,10/28,10/29, |
| |
# 10/30,10/31, |
| |
# 11/2,11/14,11/15,11/16,11/20,11/21,11/22,11/25,11/27, |
| |
# 12/02,12/12,12/13,12/14,12/28,12/29 Gerd Kortemeyer |
| |
# 05/01/01 Guy Albertelli |
| |
# 05/01,06/01,09/01 Gerd Kortemeyer |
| |
# 09/01 Guy Albertelli |
| |
# 09/01,10/01,11/01 Gerd Kortemeyer |
| |
# 02/27/01 Scott Harrison |
| |
# 3/2 Gerd Kortemeyer |
| |
# 3/15 Scott Harrison |
| |
|
| package Apache::lonnet; |
package Apache::lonnet; |
| |
|
|
Line 75 use Apache::File;
|
Line 97 use Apache::File;
|
| use LWP::UserAgent(); |
use LWP::UserAgent(); |
| use HTTP::Headers; |
use HTTP::Headers; |
| use vars |
use vars |
| qw(%perlvar %hostname %homecache %spareid %hostdom %libserv %pr %prp %fe %fd $readit); |
qw(%perlvar %hostname %homecache %spareid %hostdom %libserv %pr %prp %fe %fd $readit %metacache); |
| use IO::Socket; |
use IO::Socket; |
| use GDBM_File; |
use GDBM_File; |
| use Apache::Constants qw(:common :http); |
use Apache::Constants qw(:common :http); |
| |
use HTML::TokeParser; |
| |
use Fcntl qw(:flock); |
| |
|
| # --------------------------------------------------------------------- Logging |
# --------------------------------------------------------------------- Logging |
| |
|
|
Line 121 sub reply {
|
Line 145 sub reply {
|
| my ($cmd,$server)=@_; |
my ($cmd,$server)=@_; |
| my $answer=subreply($cmd,$server); |
my $answer=subreply($cmd,$server); |
| if ($answer eq 'con_lost') { $answer=subreply($cmd,$server); } |
if ($answer eq 'con_lost') { $answer=subreply($cmd,$server); } |
| if (($answer=~/^error:/) || ($answer=~/^refused/) || |
if (($answer=~/^refused/) || ($answer=~/^rejected/)) { |
| ($answer=~/^rejected/)) { |
|
| &logthis("<font color=blue>WARNING:". |
&logthis("<font color=blue>WARNING:". |
| " $cmd to $server returned $answer</font>"); |
" $cmd to $server returned $answer</font>"); |
| } |
} |
|
Line 162 sub reconlonc {
|
Line 185 sub reconlonc {
|
| |
|
| sub critical { |
sub critical { |
| my ($cmd,$server)=@_; |
my ($cmd,$server)=@_; |
| |
unless ($hostname{$server}) { |
| |
&logthis("<font color=blue>WARNING:". |
| |
" Critical message to unknown server ($server)</font>"); |
| |
return 'no_such_host'; |
| |
} |
| my $answer=reply($cmd,$server); |
my $answer=reply($cmd,$server); |
| if ($answer eq 'con_lost') { |
if ($answer eq 'con_lost') { |
| my $pingreply=reply('ping',$server); |
my $pingreply=reply('ping',$server); |
|
Line 220 sub appenv {
|
Line 248 sub appenv {
|
| $ENV{$_}=$newenv{$_}; |
$ENV{$_}=$newenv{$_}; |
| } |
} |
| } keys %newenv; |
} keys %newenv; |
| |
|
| |
my $lockfh; |
| |
unless ($lockfh=Apache::File->new("$ENV{'user.environment'}")) { |
| |
return 'error: '.$!; |
| |
} |
| |
unless (flock($lockfh,LOCK_EX)) { |
| |
&logthis("<font color=blue>WARNING: ". |
| |
'Could not obtain exclusive lock in appenv: '.$!); |
| |
$lockfh->close(); |
| |
return 'error: '.$!; |
| |
} |
| |
|
| my @oldenv; |
my @oldenv; |
| { |
{ |
| my $fh; |
my $fh; |
| unless ($fh=Apache::File->new("$ENV{'user.environment'}")) { |
unless ($fh=Apache::File->new("$ENV{'user.environment'}")) { |
| return 'error'; |
return 'error: '.$!; |
| } |
} |
| @oldenv=<$fh>; |
@oldenv=<$fh>; |
| |
$fh->close(); |
| } |
} |
| for (my $i=0; $i<=$#oldenv; $i++) { |
for (my $i=0; $i<=$#oldenv; $i++) { |
| chomp($oldenv[$i]); |
chomp($oldenv[$i]); |
|
Line 246 sub appenv {
|
Line 287 sub appenv {
|
| foreach $newname (keys %newenv) { |
foreach $newname (keys %newenv) { |
| print $fh "$newname=$newenv{$newname}\n"; |
print $fh "$newname=$newenv{$newname}\n"; |
| } |
} |
| |
$fh->close(); |
| |
} |
| |
|
| |
$lockfh->close(); |
| |
return 'ok'; |
| |
} |
| |
# ----------------------------------------------------- Delete from Environment |
| |
|
| |
sub delenv { |
| |
my $delthis=shift; |
| |
my %newenv=(); |
| |
if (($delthis=~/user\.role/) || ($delthis=~/user\.priv/)) { |
| |
&logthis("<font color=blue>WARNING: ". |
| |
"Attempt to delete from environment ".$delthis); |
| |
return 'error'; |
| |
} |
| |
my @oldenv; |
| |
{ |
| |
my $fh; |
| |
unless ($fh=Apache::File->new("$ENV{'user.environment'}")) { |
| |
return 'error'; |
| |
} |
| |
unless (flock($fh,LOCK_SH)) { |
| |
&logthis("<font color=blue>WARNING: ". |
| |
'Could not obtain shared lock in delenv: '.$!); |
| |
$fh->close(); |
| |
return 'error: '.$!; |
| |
} |
| |
@oldenv=<$fh>; |
| |
$fh->close(); |
| |
} |
| |
{ |
| |
my $fh; |
| |
unless ($fh=Apache::File->new(">$ENV{'user.environment'}")) { |
| |
return 'error'; |
| |
} |
| |
unless (flock($fh,LOCK_EX)) { |
| |
&logthis("<font color=blue>WARNING: ". |
| |
'Could not obtain exclusive lock in delenv: '.$!); |
| |
$fh->close(); |
| |
return 'error: '.$!; |
| |
} |
| |
map { |
| |
unless ($_=~/^$delthis/) { print $fh $_; } |
| |
} @oldenv; |
| |
$fh->close(); |
| } |
} |
| return 'ok'; |
return 'ok'; |
| } |
} |
|
Line 327 sub homeserver {
|
Line 414 sub homeserver {
|
| return 'no_host'; |
return 'no_host'; |
| } |
} |
| |
|
| |
# ------------------------------------- Find the usernames behind a list of IDs |
| |
|
| |
sub idget { |
| |
my ($udom,@ids)=@_; |
| |
my %returnhash=(); |
| |
|
| |
my $tryserver; |
| |
foreach $tryserver (keys %libserv) { |
| |
if ($hostdom{$tryserver} eq $udom) { |
| |
my $idlist=join('&',@ids); |
| |
$idlist=~tr/A-Z/a-z/; |
| |
my $reply=&reply("idget:$udom:".$idlist,$tryserver); |
| |
my @answer=(); |
| |
if (($reply ne 'con_lost') && ($reply!~/^error\:/)) { |
| |
@answer=split(/\&/,$reply); |
| |
} ; |
| |
my $i; |
| |
for ($i=0;$i<=$#ids;$i++) { |
| |
if ($answer[$i]) { |
| |
$returnhash{$ids[$i]}=$answer[$i]; |
| |
} |
| |
} |
| |
} |
| |
} |
| |
return %returnhash; |
| |
} |
| |
|
| |
# ------------------------------------- Find the IDs behind a list of usernames |
| |
|
| |
sub idrget { |
| |
my ($udom,@unames)=@_; |
| |
my %returnhash=(); |
| |
map { |
| |
$returnhash{$_}=(&userenvironment($udom,$_,'id'))[1]; |
| |
} @unames; |
| |
return %returnhash; |
| |
} |
| |
|
| |
# ------------------------------- Store away a list of names and associated IDs |
| |
|
| |
sub idput { |
| |
my ($udom,%ids)=@_; |
| |
my %servers=(); |
| |
map { |
| |
my $uhom=&homeserver($_,$udom); |
| |
if ($uhom ne 'no_host') { |
| |
my $id=&escape($ids{$_}); |
| |
$id=~tr/A-Z/a-z/; |
| |
my $unam=&escape($_); |
| |
if ($servers{$uhom}) { |
| |
$servers{$uhom}.='&'.$id.'='.$unam; |
| |
} else { |
| |
$servers{$uhom}=$id.'='.$unam; |
| |
} |
| |
&critical('put:'.$udom.':'.$unam.':environment:id='.$id,$uhom); |
| |
} |
| |
} keys %ids; |
| |
map { |
| |
&critical('idput:'.$udom.':'.$servers{$_},$_); |
| |
} keys %servers; |
| |
} |
| |
|
| |
# ------------------------------------- Find the section of student in a course |
| |
|
| |
sub usection { |
| |
my ($udom,$unam,$courseid)=@_; |
| |
$courseid=~s/\_/\//g; |
| |
$courseid=~s/^(\w)/\/$1/; |
| |
map { |
| |
my ($key,$value)=split(/\=/,$_); |
| |
$key=&unescape($key); |
| |
if ($key=~/^$courseid(?:\/)*(\w+)*\_st$/) { |
| |
my $section=$1; |
| |
if ($key eq $courseid.'_st') { $section=''; } |
| |
my ($dummy,$end,$start)=split(/\_/,&unescape($value)); |
| |
my $now=time; |
| |
my $notactive=0; |
| |
if ($start) { |
| |
if ($now<$start) { $notactive=1; } |
| |
} |
| |
if ($end) { |
| |
if ($now>$end) { $notactive=1; } |
| |
} |
| |
unless ($notactive) { return $section; } |
| |
} |
| |
} split(/\&/,&reply('dump:'.$udom.':'.$unam.':roles', |
| |
&homeserver($unam,$udom))); |
| |
return '-1'; |
| |
} |
| |
|
| |
# ------------------------------------- Read an entry from a user's environment |
| |
|
| |
sub userenvironment { |
| |
my ($udom,$unam,@what)=@_; |
| |
my %returnhash=(); |
| |
my @answer=split(/\&/, |
| |
&reply('get:'.$udom.':'.$unam.':environment:'.join('&',@what), |
| |
&homeserver($unam,$udom))); |
| |
my $i; |
| |
for ($i=0;$i<=$#what;$i++) { |
| |
$returnhash{$what[$i]}=&unescape($answer[$i]); |
| |
} |
| |
return %returnhash; |
| |
} |
| |
|
| # ----------------------------- Subscribe to a resource, return URL if possible |
# ----------------------------- Subscribe to a resource, return URL if possible |
| |
|
| sub subscribe { |
sub subscribe { |
|
Line 339 sub subscribe {
|
Line 531 sub subscribe {
|
| return 'not_found'; |
return 'not_found'; |
| } |
} |
| my $answer=reply("sub:$fname",$home); |
my $answer=reply("sub:$fname",$home); |
| |
if (($answer eq 'con_lost') || ($answer eq 'rejected')) { |
| |
$answer.=' by '.$home; |
| |
} |
| return $answer; |
return $answer; |
| } |
} |
| |
|
|
Line 350 sub repcopy {
|
Line 545 sub repcopy {
|
| my $transname="$filename.in.transfer"; |
my $transname="$filename.in.transfer"; |
| if ((-e $filename) || (-e $transname)) { return OK; } |
if ((-e $filename) || (-e $transname)) { return OK; } |
| my $remoteurl=subscribe($filename); |
my $remoteurl=subscribe($filename); |
| if ($remoteurl eq 'con_lost') { |
if ($remoteurl =~ /^con_lost by/) { |
| &logthis("Subscribe returned con_lost: $filename"); |
&logthis("Subscribe returned $remoteurl: $filename"); |
| return HTTP_SERVICE_UNAVAILABLE; |
return HTTP_SERVICE_UNAVAILABLE; |
| } elsif ($remoteurl eq 'not_found') { |
} elsif ($remoteurl eq 'not_found') { |
| &logthis("Subscribe returned not_found: $filename"); |
&logthis("Subscribe returned not_found: $filename"); |
| return HTTP_NOT_FOUND; |
return HTTP_NOT_FOUND; |
| } elsif ($remoteurl eq 'rejected') { |
} elsif ($remoteurl =~ /^rejected by/) { |
| &logthis("Subscribe returned rejected: $filename"); |
&logthis("Subscribe returned $remoteurl: $filename"); |
| return FORBIDDEN; |
return FORBIDDEN; |
| } elsif ($remoteurl eq 'directory') { |
} elsif ($remoteurl eq 'directory') { |
| return OK; |
return OK; |
|
Line 481 sub restore {
|
Line 676 sub restore {
|
| my ($name,$value)=split(/\=/,$_); |
my ($name,$value)=split(/\=/,$_); |
| $returnhash{&unescape($name)}=&unescape($value); |
$returnhash{&unescape($name)}=&unescape($value); |
| } split(/\&/,$answer); |
} split(/\&/,$answer); |
| map { |
my $version; |
| $returnhash{$_}=$returnhash{$returnhash{'version'}.':'.$_}; |
for ($version=1;$version<=$returnhash{'version'};$version++) { |
| } split(/\:/,$returnhash{$returnhash{'version'}.':keys'}); |
map { |
| |
$returnhash{$_}=$returnhash{$version.':'.$_}; |
| |
} split(/\:/,$returnhash{$version.':keys'}); |
| |
} |
| return %returnhash; |
return %returnhash; |
| } |
} |
| |
|
|
Line 498 sub coursedescription {
|
Line 696 sub coursedescription {
|
| if ($chome ne 'no_host') { |
if ($chome ne 'no_host') { |
| my $rep=reply("dump:$cdomain:$cnum:environment",$chome); |
my $rep=reply("dump:$cdomain:$cnum:environment",$chome); |
| if ($rep ne 'con_lost') { |
if ($rep ne 'con_lost') { |
| my %cachehash=(); |
my $normalid=$cdomain.'_'.$cnum; |
| |
my %envhash=(); |
| my %returnhash=('home' => $chome, |
my %returnhash=('home' => $chome, |
| 'domain' => $cdomain, |
'domain' => $cdomain, |
| 'num' => $cnum); |
'num' => $cnum); |
|
Line 507 sub coursedescription {
|
Line 706 sub coursedescription {
|
| $name=&unescape($name); |
$name=&unescape($name); |
| $value=&unescape($value); |
$value=&unescape($value); |
| $returnhash{$name}=$value; |
$returnhash{$name}=$value; |
| if ($name eq 'description') { |
$envhash{'course.'.$normalid.'.'.$name}=$value; |
| $cachehash{$courseid}=$value; |
|
| } |
|
| } split(/\&/,$rep); |
} split(/\&/,$rep); |
| $returnhash{'url'}='/res/'.declutter($returnhash{'url'}); |
$returnhash{'url'}='/res/'.declutter($returnhash{'url'}); |
| $returnhash{'fn'}=$perlvar{'lonDaemons'}.'/tmp/'. |
$returnhash{'fn'}=$perlvar{'lonDaemons'}.'/tmp/'. |
| $ENV{'user.name'}.'_'.$cdomain.'_'.$cnum; |
$ENV{'user.name'}.'_'.$cdomain.'_'.$cnum; |
| put ('coursedescriptions',%cachehash); |
$envhash{'course.'.$normalid.'.last_cache'}=time; |
| |
$envhash{'course.'.$normalid.'.home'}=$chome; |
| |
$envhash{'course.'.$normalid.'.domain'}=$cdomain; |
| |
$envhash{'course.'.$normalid.'.num'}=$cnum; |
| |
&appenv(%envhash); |
| return %returnhash; |
return %returnhash; |
| } |
} |
| } |
} |
| return (); |
return (); |
| } |
} |
| |
|
| # -------------------------------------------------------- Get user priviledges |
# -------------------------------------------------------- Get user privileges |
| |
|
| sub rolesinit { |
sub rolesinit { |
| my ($domain,$username,$authhost)=@_; |
my ($domain,$username,$authhost)=@_; |
|
Line 552 sub rolesinit {
|
Line 753 sub rolesinit {
|
| } |
} |
| } |
} |
| if (($area ne '') && ($trole ne '')) { |
if (($area ne '') && ($trole ne '')) { |
| |
my $spec=$trole.'.'.$area; |
| my ($tdummy,$tdomain,$trest)=split(/\//,$area); |
my ($tdummy,$tdomain,$trest)=split(/\//,$area); |
| if ($trole =~ /^cr\//) { |
if ($trole =~ /^cr\//) { |
| my ($rdummy,$rdomain,$rauthor,$rrole)=split(/\//,$trole); |
my ($rdummy,$rdomain,$rauthor,$rrole)=split(/\//,$trole); |
|
Line 563 sub rolesinit {
|
Line 765 sub rolesinit {
|
| if (($roledef ne 'con_lost') && ($roledef ne '')) { |
if (($roledef ne 'con_lost') && ($roledef ne '')) { |
| my ($syspriv,$dompriv,$coursepriv)= |
my ($syspriv,$dompriv,$coursepriv)= |
| split(/\_/,unescape($roledef)); |
split(/\_/,unescape($roledef)); |
| $allroles{'/'}.=':'.$syspriv; |
$allroles{'cm./'}.=':'.$syspriv; |
| |
$allroles{$spec.'./'}.=':'.$syspriv; |
| if ($tdomain ne '') { |
if ($tdomain ne '') { |
| $allroles{'/'.$tdomain.'/'}.=':'.$dompriv; |
$allroles{'cm./'.$tdomain.'/'}.=':'.$dompriv; |
| |
$allroles{$spec.'./'.$tdomain.'/'}.=':'.$dompriv; |
| if ($trest ne '') { |
if ($trest ne '') { |
| $allroles{$area}.=':'.$coursepriv; |
$allroles{'cm.'.$area}.=':'.$coursepriv; |
| |
$allroles{$spec.'.'.$area}.=':'.$coursepriv; |
| } |
} |
| } |
} |
| } |
} |
| } |
} |
| } else { |
} else { |
| $allroles{'/'}.=':'.$pr{$trole.':s'}; |
$allroles{'cm./'}.=':'.$pr{$trole.':s'}; |
| |
$allroles{$spec.'./'}.=':'.$pr{$trole.':s'}; |
| if ($tdomain ne '') { |
if ($tdomain ne '') { |
| $allroles{'/'.$tdomain.'/'}.=':'.$pr{$trole.':d'}; |
$allroles{'cm./'.$tdomain.'/'}.=':'.$pr{$trole.':d'}; |
| |
$allroles{$spec.'./'.$tdomain.'/'}.=':'.$pr{$trole.':d'}; |
| if ($trest ne '') { |
if ($trest ne '') { |
| $allroles{$area}.=':'.$pr{$trole.':c'}; |
$allroles{'cm.'.$area}.=':'.$pr{$trole.':c'}; |
| |
$allroles{$spec.'.'.$area}.=':'.$pr{$trole.':c'}; |
| } |
} |
| } |
} |
| } |
} |
|
Line 588 sub rolesinit {
|
Line 796 sub rolesinit {
|
| %thesepriv=(); |
%thesepriv=(); |
| map { |
map { |
| if ($_ ne '') { |
if ($_ ne '') { |
| my ($priviledge,$restrictions)=split(/&/,$_); |
my ($privilege,$restrictions)=split(/&/,$_); |
| if ($restrictions eq '') { |
if ($restrictions eq '') { |
| $thesepriv{$priviledge}='F'; |
$thesepriv{$privilege}='F'; |
| } else { |
} else { |
| if ($thesepriv{$priviledge} ne 'F') { |
if ($thesepriv{$privilege} ne 'F') { |
| $thesepriv{$priviledge}.=$restrictions; |
$thesepriv{$privilege}.=$restrictions; |
| } |
} |
| } |
} |
| } |
} |
|
Line 703 sub eget {
|
Line 911 sub eget {
|
| return %returnhash; |
return %returnhash; |
| } |
} |
| |
|
| # ------------------------------------------------- Check for a user priviledge |
# ------------------------------------------------- Check for a user privilege |
| |
|
| sub allowed { |
sub allowed { |
| my ($priv,$uri)=@_; |
my ($priv,$uri)=@_; |
| $uri=~s/^\/res//; |
$uri=&declutter($uri); |
| $uri=~s/^\///; |
|
| |
|
| # Free bre access to adm resources |
# Free bre access to adm and meta resources |
| |
|
| if (($uri=~/^adm\//) && ($priv eq 'bre')) { |
if ((($uri=~/^adm\//) || ($uri=~/\.meta$/)) && ($priv eq 'bre')) { |
| return 'F'; |
return 'F'; |
| } |
} |
| |
|
| # Gather priviledges over system and domain |
|
| |
|
| my $thisallowed=''; |
my $thisallowed=''; |
| if ($ENV{'user.priv./'}=~/$priv\&([^\:]*)/) { |
my $statecond=0; |
| |
my $courseprivid=''; |
| |
|
| |
# Course |
| |
|
| |
if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'}=~/$priv\&([^\:]*)/) { |
| |
$thisallowed.=$1; |
| |
} |
| |
|
| |
# Domain |
| |
|
| |
if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'.(split(/\//,$uri))[0].'/'} |
| |
=~/$priv\&([^\:]*)/) { |
| $thisallowed.=$1; |
$thisallowed.=$1; |
| } |
} |
| if ($ENV{'user.priv./'.(split(/\//,$uri))[0].'/'}=~/$priv\&([^\:]*)/) { |
|
| |
# Course: uri itself is a course |
| |
my $courseuri=$uri; |
| |
$courseuri=~s/\_(\d)/\/$1/; |
| |
$courseuri=~s/^([^\/])/\/$1/; |
| |
|
| |
if ($ENV{'user.priv.'.$ENV{'request.role'}.'.'.$courseuri} |
| |
=~/$priv\&([^\:]*)/) { |
| $thisallowed.=$1; |
$thisallowed.=$1; |
| } |
} |
| |
|
| # Full access at system or domain level? Exit. |
# Full access at system, domain or course-wide level? Exit. |
| |
|
| if ($thisallowed=~/F/) { |
if ($thisallowed=~/F/) { |
| return 'F'; |
return 'F'; |
| } |
} |
| |
|
| # The user does not have full access at system or domain level |
# If this is generating or modifying users, exit with special codes |
| # Course level access control |
|
| |
|
| # uri itself refering to a course? |
if (':csu:cdc:ccc:cin:cta:cep:ccr:cst:cad:cli:cau:cdg:'=~/\:$priv\:/) { |
| |
return $thisallowed; |
| if ($uri=~/\.course$/) { |
} |
| if ($ENV{'user.priv./'.$uri}=~/$priv\&([^\:]*)/) { |
# |
| $thisallowed.=$1; |
# Gathered so far: system, domain and course wide privileges |
| |
# |
| |
# Course: See if uri or referer is an individual resource that is part of |
| |
# the course |
| |
|
| |
if ($ENV{'request.course.id'}) { |
| |
$courseprivid=$ENV{'request.course.id'}; |
| |
if ($ENV{'request.course.sec'}) { |
| |
$courseprivid.='/'.$ENV{'request.course.sec'}; |
| |
} |
| |
$courseprivid=~s/\_/\//; |
| |
my $checkreferer=1; |
| |
my @uriparts=split(/\//,$uri); |
| |
my $filename=$uriparts[$#uriparts]; |
| |
my $pathname=$uri; |
| |
$pathname=~s/\/$filename$//; |
| |
if ($ENV{'acc.res.'.$ENV{'request.course.id'}.'.'.$pathname}=~ |
| |
/\&$filename\:([\d\|]+)\&/) { |
| |
$statecond=$1; |
| |
if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'.$courseprivid} |
| |
=~/$priv\&([^\:]*)/) { |
| |
$thisallowed.=$1; |
| |
$checkreferer=0; |
| |
} |
| } |
} |
| # Full access on course level? Exit. |
|
| if ($thisallowed=~/F/) { |
if (($ENV{'HTTP_REFERER'}) && ($checkreferer)) { |
| return 'F'; |
my $refuri=$ENV{'HTTP_REFERER'}; |
| |
$refuri=~s/^http\:\/\/$ENV{'request.host'}//i; |
| |
$refuri=&declutter($refuri); |
| |
my @uriparts=split(/\//,$refuri); |
| |
my $filename=$uriparts[$#uriparts]; |
| |
my $pathname=$refuri; |
| |
$pathname=~s/\/$filename$//; |
| |
my @filenameparts=split(/\./,$uri); |
| |
if (&fileembstyle($filenameparts[$#filenameparts]) ne 'ssi') { |
| |
if ($ENV{'acc.res.'.$ENV{'request.course.id'}.'.'.$pathname}=~ |
| |
/\&$filename\:([\d\|]+)\&/) { |
| |
my $refstatecond=$1; |
| |
if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'.$courseprivid} |
| |
=~/$priv\&([^\:]*)/) { |
| |
$thisallowed.=$1; |
| |
$uri=$refuri; |
| |
$statecond=$refstatecond; |
| |
} |
| |
} |
| |
} |
| } |
} |
| |
} |
| |
|
| # uri is refering to an individual resource; user needs to be in a course |
# |
| |
# Gathered now: all privileges that could apply, and condition number |
| |
# |
| |
# |
| |
# Full or no access? |
| |
# |
| |
|
| } else { |
if ($thisallowed=~/F/) { |
| |
return 'F'; |
| |
} |
| |
|
| unless(defined($ENV{'request.course.id'})) { |
unless ($thisallowed) { |
| return '1'; |
return ''; |
| } |
} |
| |
|
| # Get access priviledges for course |
# Restrictions exist, deal with them |
| |
# |
| |
# C:according to course preferences |
| |
# R:according to resource settings |
| |
# L:unless locked |
| |
# X:according to user session state |
| |
# |
| |
|
| if ($ENV{'user.priv./'.$ENV{'request.course.id'}}=~/$priv\&([^\:]*)/) { |
# Possibly locked functionality, check all courses |
| $thisallowed.=$1; |
# Locks might take effect only after 10 minutes cache expiration for other |
| |
# courses, and 2 minutes for current course |
| |
|
| |
my $envkey; |
| |
if ($thisallowed=~/L/) { |
| |
foreach $envkey (keys %ENV) { |
| |
if ($envkey=~/^user\.role\.(st|ta)\.([^\.]*)/) { |
| |
my $courseid=$2; |
| |
my $roleid=$1.'.'.$2; |
| |
$courseid=~s/^\///; |
| |
my $expiretime=600; |
| |
if ($ENV{'request.role'} eq $roleid) { |
| |
$expiretime=120; |
| |
} |
| |
my ($cdom,$cnum,$csec)=split(/\//,$courseid); |
| |
my $prefix='course.'.$cdom.'_'.$cnum.'.'; |
| |
if ((time-$ENV{$prefix.'last_cache'})>$expiretime) { |
| |
&coursedescription($courseid); |
| |
} |
| |
if (($ENV{$prefix.'res.'.$uri.'.lock.sections'}=~/\,$csec\,/) |
| |
|| ($ENV{$prefix.'res.'.$uri.'.lock.sections'} eq 'all')) { |
| |
if ($ENV{$prefix.'res.'.$uri.'.lock.expire'}>time) { |
| |
&log($ENV{'user.domain'},$ENV{'user.name'}, |
| |
$ENV{'user.host'}, |
| |
'Locked by res: '.$priv.' for '.$uri.' due to '. |
| |
$cdom.'/'.$cnum.'/'.$csec.' expire '. |
| |
$ENV{$prefix.'priv.'.$priv.'.lock.expire'}); |
| |
return ''; |
| |
} |
| |
} |
| |
if (($ENV{$prefix.'priv.'.$priv.'.lock.sections'}=~/\,$csec\,/) |
| |
|| ($ENV{$prefix.'priv.'.$priv.'.lock.sections'} eq 'all')) { |
| |
if ($ENV{'priv.'.$priv.'.lock.expire'}>time) { |
| |
&log($ENV{'user.domain'},$ENV{'user.name'}, |
| |
$ENV{'user.host'}, |
| |
'Locked by priv: '.$priv.' for '.$uri.' due to '. |
| |
$cdom.'/'.$cnum.'/'.$csec.' expire '. |
| |
$ENV{$prefix.'priv.'.$priv.'.lock.expire'}); |
| |
return ''; |
| |
} |
| |
} |
| |
} |
| } |
} |
| |
} |
| |
|
| |
# |
| |
# Rest of the restrictions depend on selected course |
| |
# |
| |
|
| # See if resource or referer is part of this course |
unless ($ENV{'request.course.id'}) { |
| |
return '1'; |
| my @uriparts=split(/\//,$uri); |
} |
| my $urifile=$uriparts[$#uriparts]; |
|
| $urifile=~/\.(\w+)$/; |
|
| my $uritype=$1; |
|
| $#uriparts--; |
|
| my $uripath=join('/',@uriparts); |
|
| my $uricond=-1; |
|
| if ($ENV{'acc.res.'.$ENV{'request.course.id'}.'.'.$uripath}=~ |
|
| /\&$urifile\:(\d+)\&/) { |
|
| $uricond=$1; |
|
| } elsif (($fe{$uritype} eq 'emb') || ($fe{$uritype} eq 'img')) { |
|
| my $refuri=$ENV{'HTTP_REFERER'}; |
|
| $refuri=~s/^\/res//; |
|
| $refuri=~s/^\///; |
|
| @uriparts=split(/\//,$refuri); |
|
| $urifile=$uriparts[$#uriparts]; |
|
| $#uriparts--; |
|
| $uripath=join('/',@uriparts); |
|
| if ($ENV{'acc.res.'.$ENV{'request.course.id'}.'.'.$uripath}=~ |
|
| /\&$urifile\:(\d+)\&/) { |
|
| $uricond=$1; |
|
| } |
|
| } |
|
| |
|
| if ($uricond>=0) { |
# |
| |
# Now user is definitely in a course |
| |
# |
| |
|
| # The resource is part of the course |
|
| # If user had full access on course level, go ahead |
|
| |
|
| if ($thisallowed=~/F/) { |
# Course preferences |
| return 'F'; |
|
| } |
|
| |
|
| # Restricted by state? |
if ($thisallowed=~/C/) { |
| |
my $rolecode=(split(/\./,$ENV{'request.role'}))[0]; |
| |
if ($ENV{'course.'.$ENV{'request.course.id'}.'.'.$priv.'.roles.denied'} |
| |
=~/\,$rolecode\,/) { |
| |
&log($ENV{'user.domain'},$ENV{'user.name'},$ENV{'user.host'}, |
| |
'Denied by role: '.$priv.' for '.$uri.' as '.$rolecode.' in '. |
| |
$ENV{'request.course.id'}); |
| |
return ''; |
| |
} |
| |
} |
| |
|
| if ($thisallowed=~/X/) { |
# Resource preferences |
| if (&condval($uricond)) { |
|
| return '2'; |
if ($thisallowed=~/R/) { |
| } else { |
my $rolecode=(split(/\./,$ENV{'request.role'}))[0]; |
| return ''; |
my $filename=$perlvar{'lonDocRoot'}.'/res/'.$uri.'.meta'; |
| } |
if (-e $filename) { |
| |
my @content; |
| |
{ |
| |
my $fh=Apache::File->new($filename); |
| |
@content=<$fh>; |
| } |
} |
| |
if (join('',@content)=~ |
| |
/\<roledeny[^\>]*\>[^\<]*$rolecode[^\<]*\<\/roledeny\>/) { |
| |
&log($ENV{'user.domain'},$ENV{'user.name'},$ENV{'user.host'}, |
| |
'Denied by role: '.$priv.' for '.$uri.' as '.$rolecode); |
| |
return ''; |
| |
|
| |
} |
| } |
} |
| } |
} |
| return $thisallowed; |
|
| } |
# Restricted by state? |
| |
|
| # ---------------------------------------------------------- Refresh State Info |
if ($thisallowed=~/X/) { |
| |
if (&condval($statecond)) { |
| |
return '2'; |
| |
} else { |
| |
return ''; |
| |
} |
| |
} |
| |
|
| sub refreshstate { |
return 'F'; |
| } |
} |
| |
|
| # ----------------------------------------------------------------- Define Role |
# ----------------------------------------------------------------- Define Role |
|
Line 856 sub definerole {
|
Line 1183 sub definerole {
|
| } |
} |
| } |
} |
| |
|
| |
# ---------------- Make a metadata query against the network of library servers |
| |
|
| |
sub metadata_query { |
| |
my ($query)=@_; |
| |
my $reply=&reply("querysend:".&escape($query),'msul3'); |
| |
} |
| |
|
| # ------------------------------------------------------------------ Plain Text |
# ------------------------------------------------------------------ Plain Text |
| |
|
| sub plaintext { |
sub plaintext { |
|
Line 872 sub fileembstyle {
|
Line 1206 sub fileembstyle {
|
| |
|
| # ------------------------------------------------------------ Description Text |
# ------------------------------------------------------------ Description Text |
| |
|
| sub filedecription { |
sub filedescription { |
| my $ending=shift; |
my $ending=shift; |
| return $fd{$ending}; |
return $fd{$ending}; |
| } |
} |
|
Line 882 sub filedecription {
|
Line 1216 sub filedecription {
|
| sub assignrole { |
sub assignrole { |
| my ($udom,$uname,$url,$role,$end,$start)=@_; |
my ($udom,$uname,$url,$role,$end,$start)=@_; |
| my $mrole; |
my $mrole; |
| $url=declutter($url); |
|
| if ($role =~ /^cr\//) { |
if ($role =~ /^cr\//) { |
| unless ($url=~/\.course$/) { return 'invalid'; } |
unless (&allowed('ccr',$url)) { |
| unless (allowed('ccr',$url)) { return 'refused'; } |
&logthis('Refused custom assignrole: '. |
| |
$udom.' '.$uname.' '.$url.' '.$role.' '.$end.' '.$start.' by '. |
| |
$ENV{'user.name'}.' at '.$ENV{'user.domain'}); |
| |
return 'refused'; |
| |
} |
| $mrole='cr'; |
$mrole='cr'; |
| } else { |
} else { |
| unless (($url=~/\.course$/) || ($url=~/\/$/)) { return 'invalid'; } |
my $cwosec=$url; |
| unless (allowed('c'+$role)) { return 'refused'; } |
$cwosec=~s/^\/(\w+)\/(\w+)\/.*/$1\/$2/; |
| |
unless (&allowed('c'.$role,$cwosec)) { |
| |
&logthis('Refused assignrole: '. |
| |
$udom.' '.$uname.' '.$url.' '.$role.' '.$end.' '.$start.' by '. |
| |
$ENV{'user.name'}.' at '.$ENV{'user.domain'}); |
| |
return 'refused'; |
| |
} |
| $mrole=$role; |
$mrole=$role; |
| } |
} |
| my $command="encrypt:rolesput:$ENV{'user.domain'}:$ENV{'user.name'}:". |
my $command="encrypt:rolesput:$ENV{'user.domain'}:$ENV{'user.name'}:". |
| "$udom:$uname:$url".'_'."$mrole=$role"; |
"$udom:$uname:$url".'_'."$mrole=$role"; |
| if ($end) { $command.='_$end'; } |
if ($end) { $command.='_'.$end; } |
| if ($start) { |
if ($start) { |
| if ($end) { |
if ($end) { |
| $command.='_$start'; |
$command.='_'.$start; |
| } else { |
} else { |
| $command.='_0_$start'; |
$command.='_0_'.$start; |
| } |
} |
| } |
} |
| return &reply($command,&homeserver($uname,$udom)); |
return &reply($command,&homeserver($uname,$udom)); |
| } |
} |
| |
|
| |
# --------------------------------------------------------------- Modify a user |
| |
|
| |
|
| |
sub modifyuser { |
| |
my ($udom,$uname,$uid,$umode,$upass,$first,$middle,$last,$gene)=@_; |
| |
&logthis('Call to modify user '.$udom.', '.$uname.', '.$uid.', '. |
| |
$umode.', '.$first.', '.$middle.', '. |
| |
$last.', '.$gene.' by '. |
| |
$ENV{'user.name'}.' at '.$ENV{'user.domain'}); |
| |
my $uhome=&homeserver($uname,$udom); |
| |
# ----------------------------------------------------------------- Create User |
| |
if (($uhome eq 'no_host') && ($umode) && ($upass)) { |
| |
my $unhome=''; |
| |
if ($ENV{'course.'.$ENV{'request.course.id'}.'.domain'} eq $udom) { |
| |
$unhome=$ENV{'course.'.$ENV{'request.course.id'}.'.home'}; |
| |
} else { |
| |
my $tryserver; |
| |
my $loadm=10000000; |
| |
foreach $tryserver (keys %libserv) { |
| |
if ($hostdom{$tryserver} eq $udom) { |
| |
my $answer=reply('load',$tryserver); |
| |
if (($answer=~/\d+/) && ($answer<$loadm)) { |
| |
$loadm=$answer; |
| |
$unhome=$tryserver; |
| |
} |
| |
} |
| |
} |
| |
} |
| |
if (($unhome eq '') || ($unhome eq 'no_host')) { |
| |
return 'error: find home'; |
| |
} |
| |
my $reply=&reply('encrypt:makeuser:'.$udom.':'.$uname.':'.$umode.':'. |
| |
&escape($upass),$unhome); |
| |
unless ($reply eq 'ok') { |
| |
return 'error: '.$reply; |
| |
} |
| |
$uhome=&homeserver($uname,$udom); |
| |
if (($uhome eq '') || ($uhome eq 'no_host') || ($uhome ne $unhome)) { |
| |
return 'error: verify home'; |
| |
} |
| |
} |
| |
# ---------------------------------------------------------------------- Add ID |
| |
if ($uid) { |
| |
$uid=~tr/A-Z/a-z/; |
| |
my %uidhash=&idrget($udom,$uname); |
| |
if (($uidhash{$uname}) && ($uidhash{$uname}!~/error\:/)) { |
| |
unless ($uid eq $uidhash{$uname}) { |
| |
return 'error: mismatch '.$uidhash{$uname}.' versus '.$uid; |
| |
} |
| |
} else { |
| |
&idput($udom,($uname => $uid)); |
| |
} |
| |
} |
| |
# -------------------------------------------------------------- Add names, etc |
| |
my $names=&reply('get:'.$udom.':'.$uname. |
| |
':environment:firstname&middlename&lastname&generation', |
| |
$uhome); |
| |
my ($efirst,$emiddle,$elast,$egene)=split(/\&/,$names); |
| |
if ($first) { $efirst = &escape($first); } |
| |
if ($middle) { $emiddle = &escape($middle); } |
| |
if ($last) { $elast = &escape($last); } |
| |
if ($gene) { $egene = &escape($gene); } |
| |
my $reply=&reply('put:'.$udom.':'.$uname. |
| |
':environment:firstname='.$efirst. |
| |
'&middlename='.$emiddle. |
| |
'&lastname='.$elast. |
| |
'&generation='.$egene,$uhome); |
| |
if ($reply ne 'ok') { |
| |
return 'error: '.$reply; |
| |
} |
| |
&logthis('Success modifying user '.$udom.', '.$uname.', '.$uid.', '. |
| |
$umode.', '.$first.', '.$middle.', '. |
| |
$last.', '.$gene.' by '. |
| |
$ENV{'user.name'}.' at '.$ENV{'user.domain'}); |
| |
return 'ok'; |
| |
} |
| |
|
| |
# -------------------------------------------------------------- Modify student |
| |
|
| |
sub modifystudent { |
| |
my ($udom,$uname,$uid,$umode,$upass,$first,$middle,$last,$gene,$usec, |
| |
$end,$start)=@_; |
| |
my $cid=''; |
| |
unless ($cid=$ENV{'request.course.id'}) { |
| |
return 'not_in_class'; |
| |
} |
| |
# --------------------------------------------------------------- Make the user |
| |
my $reply=&modifyuser |
| |
($udom,$uname,$uid,$umode,$upass,$first,$middle,$last,$gene); |
| |
unless ($reply eq 'ok') { return $reply; } |
| |
my $uhome=&homeserver($uname,$udom); |
| |
if (($uhome eq '') || ($uhome eq 'no_host')) { |
| |
return 'error: no such user'; |
| |
} |
| |
# -------------------------------------------------- Add student to course list |
| |
my $reply=critical('put:'.$ENV{'course.'.$cid.'.domain'}.':'. |
| |
$ENV{'course.'.$cid.'.num'}.':classlist:'. |
| |
&escape($uname.':'.$udom).'='. |
| |
&escape($end.':'.$start), |
| |
$ENV{'course.'.$cid.'.home'}); |
| |
unless (($reply eq 'ok') || ($reply eq 'delayed')) { |
| |
return 'error: '.$reply; |
| |
} |
| |
# ---------------------------------------------------- Add student role to user |
| |
my $uurl='/'.$cid; |
| |
$uurl=~s/\_/\//g; |
| |
if ($usec) { |
| |
$uurl.='/'.$usec; |
| |
} |
| |
return &assignrole($udom,$uname,$uurl,'st',$end,$start); |
| |
} |
| |
|
| |
# ------------------------------------------------- Write to course preferences |
| |
|
| |
sub writecoursepref { |
| |
my ($courseid,%prefs)=@_; |
| |
$courseid=~s/^\///; |
| |
$courseid=~s/\_/\//g; |
| |
my ($cdomain,$cnum)=split(/\//,$courseid); |
| |
my $chome=homeserver($cnum,$cdomain); |
| |
if (($chome eq '') || ($chome eq 'no_host')) { |
| |
return 'error: no such course'; |
| |
} |
| |
my $cstring=''; |
| |
map { |
| |
$cstring.=escape($_).'='.escape($prefs{$_}).'&'; |
| |
} keys %prefs; |
| |
$cstring=~s/\&$//; |
| |
return reply('put:'.$cdomain.':'.$cnum.':environment:'.$cstring,$chome); |
| |
} |
| |
|
| |
# ---------------------------------------------------------- Make/modify course |
| |
|
| |
sub createcourse { |
| |
my ($udom,$description,$url)=@_; |
| |
$url=&declutter($url); |
| |
my $cid=''; |
| |
unless (&allowed('ccc',$ENV{'user.domain'})) { |
| |
return 'refused'; |
| |
} |
| |
unless ($udom eq $ENV{'user.domain'}) { |
| |
return 'refused'; |
| |
} |
| |
# ------------------------------------------------------------------- Create ID |
| |
my $uname=substr($$.time,0,5).unpack("H8",pack("I32",time)). |
| |
unpack("H2",pack("I32",int(rand(255)))).$perlvar{'lonHostID'}; |
| |
# ----------------------------------------------- Make sure that does not exist |
| |
my $uhome=&homeserver($uname,$udom); |
| |
unless (($uhome eq '') || ($uhome eq 'no_host')) { |
| |
$uname=substr($$.time,0,5).unpack("H8",pack("I32",time)). |
| |
unpack("H2",pack("I32",int(rand(255)))).$perlvar{'lonHostID'}; |
| |
$uhome=&homeserver($uname,$udom); |
| |
unless (($uhome eq '') || ($uhome eq 'no_host')) { |
| |
return 'error: unable to generate unique course-ID'; |
| |
} |
| |
} |
| |
# ------------------------------------------------------------- Make the course |
| |
my $reply=&reply('encrypt:makeuser:'.$udom.':'.$uname.':none::', |
| |
$ENV{'user.home'}); |
| |
unless ($reply eq 'ok') { return 'error: '.$reply; } |
| |
my $uhome=&homeserver($uname,$udom); |
| |
if (($uhome eq '') || ($uhome eq 'no_host')) { |
| |
return 'error: no such course'; |
| |
} |
| |
&writecoursepref($udom.'_'.$uname, |
| |
('description' => $description, |
| |
'url' => $url)); |
| |
return '/'.$udom.'/'.$uname; |
| |
} |
| |
|
| # ---------------------------------------------------------- Assign Custom Role |
# ---------------------------------------------------------- Assign Custom Role |
| |
|
| sub assigncustomrole { |
sub assigncustomrole { |
|
Line 993 sub directcondval {
|
Line 1506 sub directcondval {
|
| sub condval { |
sub condval { |
| my $condidx=shift; |
my $condidx=shift; |
| my $result=0; |
my $result=0; |
| |
my $allpathcond=''; |
| |
map { |
| |
if (defined($ENV{'acc.cond.'.$ENV{'request.course.id'}.'.'.$_})) { |
| |
$allpathcond.= |
| |
'('.$ENV{'acc.cond.'.$ENV{'request.course.id'}.'.'.$_}.')|'; |
| |
} |
| |
} split(/\|/,$condidx); |
| |
$allpathcond=~s/\|$//; |
| if ($ENV{'request.course.id'}) { |
if ($ENV{'request.course.id'}) { |
| if (defined($ENV{'acc.cond.'.$ENV{'request.course.id'}.'.'.$condidx})) { |
if ($allpathcond) { |
| my $operand='|'; |
my $operand='|'; |
| my @stack; |
my @stack; |
| map { |
map { |
|
Line 1017 sub condval {
|
Line 1538 sub condval {
|
| $result=$result>$new?$result:$new; |
$result=$result>$new?$result:$new; |
| } |
} |
| } |
} |
| } ($ENV{'acc.cond.'.$ENV{'request.course.id'}.'.'.$condidx}=~ |
} ($allpathcond=~/(\d+|\(|\)|\&|\|)/g); |
| /(\d+|\(|\)|\&|\|)/g); |
|
| } |
} |
| } |
} |
| return $result; |
return $result; |
|
Line 1026 sub condval {
|
Line 1546 sub condval {
|
| |
|
| # --------------------------------------------------------- Value of a Variable |
# --------------------------------------------------------- Value of a Variable |
| |
|
| sub varval { |
sub EXT { |
| my $varname=shift; |
my $varname=shift; |
| |
unless ($varname) { return ''; } |
| my ($realm,$space,$qualifier,@therest)=split(/\./,$varname); |
my ($realm,$space,$qualifier,@therest)=split(/\./,$varname); |
| my $rest; |
my $rest; |
| if ($therest[0]) { |
if ($therest[0]) { |
|
Line 1035 sub varval {
|
Line 1556 sub varval {
|
| } else { |
} else { |
| $rest=''; |
$rest=''; |
| } |
} |
| |
my $qualifierrest=$qualifier; |
| |
if ($rest) { $qualifierrest.='.'.$rest; } |
| |
my $spacequalifierrest=$space; |
| |
if ($qualifierrest) { $spacequalifierrest.='.'.$qualifierrest; } |
| if ($realm eq 'user') { |
if ($realm eq 'user') { |
| # --------------------------------------------------------------- user.resource |
# --------------------------------------------------------------- user.resource |
| if ($space eq 'resource') { |
if ($space eq 'resource') { |
| |
my %restored=&restore; |
| |
return $restored{$qualifierrest}; |
| # ----------------------------------------------------------------- user.access |
# ----------------------------------------------------------------- user.access |
| } elsif ($space eq 'access') { |
} elsif ($space eq 'access') { |
| return &allowed($qualifier,$rest); |
return &allowed($qualifier,$rest); |
| # ------------------------------------------ user.preferences, user.environment |
# ------------------------------------------ user.preferences, user.environment |
| } elsif (($space eq 'preferences') || ($space eq 'environment')) { |
} elsif (($space eq 'preferences') || ($space eq 'environment')) { |
| return $ENV{join('.',('environment',$qualifier,$rest))}; |
return $ENV{join('.',('environment',$qualifierrest))}; |
| # ----------------------------------------------------------------- user.course |
# ----------------------------------------------------------------- user.course |
| } elsif ($space eq 'course') { |
} elsif ($space eq 'course') { |
| return $ENV{join('.',('request.course',$qualifier))}; |
return $ENV{join('.',('request.course',$qualifier))}; |
|
Line 1071 sub varval {
|
Line 1598 sub varval {
|
| # ------------------------------------------------------------- request.browser |
# ------------------------------------------------------------- request.browser |
| if ($space eq 'browser') { |
if ($space eq 'browser') { |
| return $ENV{'browser.'.$qualifier}; |
return $ENV{'browser.'.$qualifier}; |
| } elsif ($space eq 'filename') { |
# ------------------------------------------------------------ request.filename |
| return $ENV{'request.filename'}; |
} else { |
| |
return $ENV{'request.'.$spacequalifierrest}; |
| } |
} |
| } elsif ($realm eq 'course') { |
} elsif ($realm eq 'course') { |
| # ---------------------------------------------------------- course.description |
# ---------------------------------------------------------- course.description |
| if ($space eq 'description') { |
my $section=''; |
| my %reply=&coursedescription($ENV{'request.course.id'}); |
if ($ENV{'request.course.sec'}) { |
| return $reply{'description'}; |
$section='_'.$ENV{'request.course.sec'}; |
| # ------------------------------------------------------------------- course.id |
} |
| } elsif ($space eq 'id') { |
return $ENV{'course.'.$ENV{'request.course.id'}.$section.'.'. |
| return $ENV{'request.course.id'}; |
$spacequalifierrest}; |
| # -------------------------------------------------- Any other course namespace |
} elsif ($realm eq 'resource') { |
| } else { |
if ($ENV{'request.course.id'}) { |
| my ($cdom,$cnam)=split(/\_/,$ENV{'request.course.id'}); |
# ----------------------------------------------------- Cascading lookup scheme |
| my $chome=&homeserver($cnam,$cdom); |
my $symbp=&symbread(); |
| my $item=join('.',($qualifier,$rest)); |
my $mapp=(split(/\_\_\_/,$symbp))[0]; |
| return &unescape |
|
| (&reply('get:'.$cdom.':'.$cnam.':'.&escape($space).':'. |
my $symbparm=$symbp.'.'.$spacequalifierrest; |
| &escape($item),$chome)); |
my $mapparm=$mapp.'___(all).'.$spacequalifierrest; |
| } |
|
| } elsif ($realm eq 'userdata') { |
my $seclevel= |
| my $uhome=&homeserver($qualifier,$space); |
$ENV{'request.course.id'}.'.['. |
| # ----------------------------------------------- userdata.domain.name.resource |
$ENV{'request.course.sec'}.'].'.$spacequalifierrest; |
| |
my $seclevelr= |
| |
$ENV{'request.course.id'}.'.['. |
| |
$ENV{'request.course.sec'}.'].'.$symbparm; |
| |
my $seclevelm= |
| |
$ENV{'request.course.id'}.'.['. |
| |
$ENV{'request.course.sec'}.'].'.$mapparm; |
| |
|
| |
my $courselevel= |
| |
$ENV{'request.course.id'}.'.'.$spacequalifierrest; |
| |
my $courselevelr= |
| |
$ENV{'request.course.id'}.'.'.$symbparm; |
| |
my $courselevelm= |
| |
$ENV{'request.course.id'}.'.'.$mapparm; |
| |
|
| |
# ----------------------------------------------------------- first, check user |
| |
my %resourcedata=get('resourcedata', |
| |
($courselevelr,$courselevelm,$courselevel)); |
| |
if (($resourcedata{$courselevelr}!~/^error\:/) && |
| |
($resourcedata{$courselevelr}!~/^con_lost/)) { |
| |
|
| |
if ($resourcedata{$courselevelr}) { |
| |
return $resourcedata{$courselevelr}; } |
| |
if ($resourcedata{$courselevelm}) { |
| |
return $resourcedata{$courselevelm}; } |
| |
if ($resourcedata{$courselevel}) { return $resourcedata{$courselevel}; } |
| |
|
| |
} else { |
| |
if ($resourcedata{$courselevelr}!~/No such file/) { |
| |
&logthis("<font color=blue>WARNING:". |
| |
" Trying to get resource data for ".$ENV{'user.name'}." at " |
| |
.$ENV{'user.domain'}.": ".$resourcedata{$courselevelr}. |
| |
"</font>"); |
| |
} |
| |
} |
| |
|
| |
# -------------------------------------------------------- second, check course |
| |
|
| |
my $reply=&reply('get:'. |
| |
$ENV{'course.'.$ENV{'request.course.id'}.'.domain'}.':'. |
| |
$ENV{'course.'.$ENV{'request.course.id'}.'.num'}. |
| |
':resourcedata:'. |
| |
&escape($seclevelr).'&'.&escape($seclevelm).'&'.&escape($seclevel).'&'. |
| |
&escape($courselevelr).'&'.&escape($courselevelm).'&'.&escape($courselevel), |
| |
$ENV{'course.'.$ENV{'request.course.id'}.'.home'}); |
| |
if ($reply!~/^error\:/) { |
| |
map { |
| |
if ($_) { return &unescape($_); } |
| |
} split(/\&/,$reply); |
| |
} |
| |
if (($reply=~/^con_lost/) || ($reply=~/^error\:/)) { |
| |
&logthis("<font color=blue>WARNING:". |
| |
" Getting ".$reply." asking for ".$varname." for ". |
| |
$ENV{'course.'.$ENV{'request.course.id'}.'.num'}. |
| |
' at '. |
| |
$ENV{'course.'.$ENV{'request.course.id'}.'.domain'}. |
| |
' from '. |
| |
$ENV{'course.'.$ENV{'request.course.id'}.'.home'}. |
| |
"</font>"); |
| |
} |
| |
# ------------------------------------------------------ third, check map parms |
| |
my %parmhash=(); |
| |
my $thisparm=''; |
| |
if (tie(%parmhash,'GDBM_File', |
| |
$ENV{'request.course.fn'}.'_parms.db',&GDBM_READER,0640)) { |
| |
$thisparm=$parmhash{$symbparm}; |
| |
untie(%parmhash); |
| |
} |
| |
if ($thisparm) { return $thisparm; } |
| |
} |
| |
|
| |
# --------------------------------------------- last, look in resource metadata |
| |
|
| |
$spacequalifierrest=~s/\./\_/; |
| |
my $metadata=&metadata($ENV{'request.filename'},$spacequalifierrest); |
| |
if ($metadata) { return $metadata; } |
| |
$metadata=&metadata($ENV{'request.filename'}, |
| |
'parameter_'.$spacequalifierrest); |
| |
if ($metadata) { return $metadata; } |
| |
|
| # ---------------------------------------------------- Any other user namespace |
# ---------------------------------------------------- Any other user namespace |
| } elsif ($realm eq 'environment') { |
} elsif ($realm eq 'environment') { |
| # ----------------------------------------------------------------- environment |
# ----------------------------------------------------------------- environment |
| return $ENV{join('.',($space,$qualifier,$rest))}; |
return $ENV{$spacequalifierrest}; |
| } elsif ($realm eq 'system') { |
} elsif ($realm eq 'system') { |
| # ----------------------------------------------------------------- system.time |
# ----------------------------------------------------------------- system.time |
| if ($space eq 'time') { |
if ($space eq 'time') { |
|
Line 1107 sub varval {
|
Line 1714 sub varval {
|
| return ''; |
return ''; |
| } |
} |
| |
|
| |
# ---------------------------------------------------------------- Get metadata |
| |
|
| |
sub metadata { |
| |
my ($uri,$what)=@_; |
| |
|
| |
$uri=&declutter($uri); |
| |
my $filename=$uri; |
| |
$uri=~s/\.meta$//; |
| |
unless ($metacache{$uri.':keys'}) { |
| |
unless ($filename=~/\.meta$/) { $filename.='.meta'; } |
| |
my $metastring=&getfile($perlvar{'lonDocRoot'}.'/res/'.$filename); |
| |
my $parser=HTML::TokeParser->new(\$metastring); |
| |
my $token; |
| |
while ($token=$parser->get_token) { |
| |
if ($token->[0] eq 'S') { |
| |
my $entry=$token->[1]; |
| |
my $unikey=$entry; |
| |
if (defined($token->[2]->{'part'})) { |
| |
$unikey.='_'.$token->[2]->{'part'}; |
| |
} |
| |
if (defined($token->[2]->{'name'})) { |
| |
$unikey.='_'.$token->[2]->{'name'}; |
| |
} |
| |
if ($metacache{$uri.':keys'}) { |
| |
$metacache{$uri.':keys'}.=','.$unikey; |
| |
} else { |
| |
$metacache{$uri.':keys'}=$unikey; |
| |
} |
| |
map { |
| |
$metacache{$uri.':'.$unikey.'.'.$_}=$token->[2]->{$_}; |
| |
} @{$token->[3]}; |
| |
unless ( |
| |
$metacache{$uri.':'.$unikey}=$parser->get_text('/'.$entry) |
| |
) { $metacache{$uri.':'.$unikey}= |
| |
$metacache{$uri.':'.$unikey.'.default'}; |
| |
} |
| |
} |
| |
} |
| |
} |
| |
return $metacache{$uri.':'.$what}; |
| |
} |
| |
|
| # ------------------------------------------------- Update symbolic store links |
# ------------------------------------------------- Update symbolic store links |
| |
|
| sub symblist { |
sub symblist { |
|
Line 1159 sub symbread {
|
Line 1808 sub symbread {
|
| &GDBM_READER,0640)) { |
&GDBM_READER,0640)) { |
| # ---------------------------------------------- Get ID(s) for current resource |
# ---------------------------------------------- Get ID(s) for current resource |
| my $ids=$bighash{'ids_/res/'.$thisfn}; |
my $ids=$bighash{'ids_/res/'.$thisfn}; |
| |
unless ($ids) { |
| |
$ids=$bighash{'ids_/'.$thisfn}; |
| |
} |
| if ($ids) { |
if ($ids) { |
| # ------------------------------------------------------------------- Has ID(s) |
# ------------------------------------------------------------------- Has ID(s) |
| my @possibilities=split(/\,/,$ids); |
my @possibilities=split(/\,/,$ids); |
|
Line 1186 sub symbread {
|
Line 1838 sub symbread {
|
| untie(%bighash) |
untie(%bighash) |
| } |
} |
| } |
} |
| if ($syval) { return $syval.'___'.$thisfn; } |
if ($syval) { |
| |
return $syval.'___'.$thisfn; |
| |
} |
| } |
} |
| &appenv('request.ambiguous' => $thisfn); |
&appenv('request.ambiguous' => $thisfn); |
| return ''; |
return ''; |
|
Line 1209 sub numval {
|
Line 1863 sub numval {
|
| sub rndseed { |
sub rndseed { |
| my $symb; |
my $symb; |
| unless ($symb=&symbread()) { return time; } |
unless ($symb=&symbread()) { return time; } |
| my $symbchck=unpack("%32C*",$symb); |
{ |
| my $symbseed=numval($symb)%$symbchck; |
use integer; |
| my $namechck=unpack("%32C*",$ENV{'user.name'}); |
my $symbchck=unpack("%32C*",$symb) << 27; |
| my $nameseed=numval($ENV{'user.name'})%$namechck; |
my $symbseed=numval($symb) << 22; |
| return int( $symbseed |
my $namechck=unpack("%32C*",$ENV{'user.name'}) << 17; |
| .$nameseed |
my $nameseed=numval($ENV{'user.name'}) << 12; |
| .unpack("%32C*",$ENV{'user.domain'}) |
my $domainseed=unpack("%32C*",$ENV{'user.domain'}) << 7; |
| .unpack("%32C*",$ENV{'request.course.id'}) |
my $courseseed=unpack("%32C*",$ENV{'request.course.id'}); |
| .$namechck |
my $num=$symbseed+$nameseed+$domainseed+$courseseed+$namechck+$symbchck; |
| .$symbchck); |
#uncommenting these lines can break things! |
| |
#&Apache::lonxml::debug("$symbseed:$nameseed;$domainseed|$courseseed;$namechck:$symbchck"); |
| |
#&Apache::lonxml::debug("rndseed :$num:$symb"); |
| |
return $num; |
| |
} |
| } |
} |
| |
|
| |
sub ireceipt { |
| |
my ($funame,$fudom,$fucourseid,$fusymb)=@_; |
| |
my $cuname=unpack("%32C*",$funame); |
| |
my $cudom=unpack("%32C*",$fudom); |
| |
my $cucourseid=unpack("%32C*",$fucourseid); |
| |
my $cusymb=unpack("%32C*",$fusymb); |
| |
my $cunique=unpack("%32C*",$perlvar{'lonReceipt'}); |
| |
return unpack("%32C*",$perlvar{'lonHostID'}).'-'. |
| |
($cunique%$cuname+ |
| |
$cunique%$cudom+ |
| |
$cusymb%$cuname+ |
| |
$cusymb%$cudom+ |
| |
$cucourseid%$cuname+ |
| |
$cucourseid%$cudom); |
| |
} |
| |
|
| |
sub receipt { |
| |
return &ireceipt($ENV{'user.name'},$ENV{'user.domain'}, |
| |
$ENV{'request.course.id'},&symbread()); |
| |
} |
| |
|
| # ------------------------------------------------------------ Serves up a file |
# ------------------------------------------------------------ Serves up a file |
| # returns either the contents of the file or a -1 |
# returns either the contents of the file or a -1 |
| sub getfile { |
sub getfile { |
|
Line 1237 sub filelocation {
|
Line 1916 sub filelocation {
|
| my ($dir,$file) = @_; |
my ($dir,$file) = @_; |
| my $location; |
my $location; |
| $file=~ s/^\s*(\S+)\s*$/$1/; ## strip off leading and trailing spaces |
$file=~ s/^\s*(\S+)\s*$/$1/; ## strip off leading and trailing spaces |
| $file=~s/^$perlvar{'lonDocRoot'}//; |
if ($file=~m:^/~:) { # is a contruction space reference |
| $file=~s:^/*res::; |
$location = $file; |
| if ( !( $file =~ m:^/:) ) { |
$location =~ s:/~(.*?)/(.*):/home/$1/public_html/$2:; |
| $location = $dir. '/'.$file; |
|
| } else { |
} else { |
| $location = '/home/httpd/html/res'.$file; |
$file=~s/^$perlvar{'lonDocRoot'}//; |
| |
$file=~s:^/*res::; |
| |
if ( !( $file =~ m:^/:) ) { |
| |
$location = $dir. '/'.$file; |
| |
} else { |
| |
$location = '/home/httpd/html/res'.$file; |
| |
} |
| } |
} |
| $location=~s://+:/:g; # remove duplicate / |
$location=~s://+:/:g; # remove duplicate / |
| while ($location=~m:/\.\./:) {$location=~ s:/[^/]+/\.\./:/:g;} #remove dir/.. |
while ($location=~m:/\.\./:) {$location=~ s:/[^/]+/\.\./:/:g;} #remove dir/.. |
|
Line 1362 if ($readit ne 'done') {
|
Line 2046 if ($readit ne 'done') {
|
| } |
} |
| } |
} |
| |
|
| |
%metacache=(); |
| |
|
| $readit='done'; |
$readit='done'; |
| &logthis('<font color=yellow>INFO: Read configuration</font>'); |
&logthis('<font color=yellow>INFO: Read configuration</font>'); |
![[BACK]](/icons/back.gif){kind=icon}
Return to lonnet.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / lonnet / perl