|
version 1.964, 2008/08/13 08:17:57
|
version 1.976.2.1, 2008/12/18 17:43:53
|
|
Line 27
|
Line 27
|
| # |
# |
| ### |
### |
| |
|
| |
=pod |
| |
|
| |
=head1 NAME |
| |
|
| |
Apache::lonnet.pm |
| |
|
| |
=head1 SYNOPSIS |
| |
|
| |
This file is an interface to the lonc processes of |
| |
the LON-CAPA network as well as set of elaborated functions for handling information |
| |
necessary for navigating through a given cluster of LON-CAPA machines within a |
| |
domain. There are over 40 specialized functions in this module which handle the |
| |
reading and transmission of metadata, user information (ids, names, environments, roles, |
| |
logs), file information (storage, reading, directories, extensions, replication, embedded |
| |
styles and descriptors), educational resources (course descriptions, section names and |
| |
numbers), url hashing (to assign roles on a url basis), and translating abbreviated symbols to |
| |
and from more descriptive phrases or explanations. |
| |
|
| |
This is part of the LearningOnline Network with CAPA project |
| |
described at http://www.lon-capa.org. |
| |
|
| |
=head1 Package Variables |
| |
|
| |
These are largely undocumented, so if you decipher one please note it here. |
| |
|
| |
=over 4 |
| |
|
| |
=item $processmarker |
| |
|
| |
Contains the time this process was started and this servers host id. |
| |
|
| |
=item $dumpcount |
| |
|
| |
Counts the number of times a message log flush has been attempted (regardless |
| |
of success) by this process. Used as part of the filename when messages are |
| |
delayed. |
| |
|
| |
=back |
| |
|
| |
=cut |
| |
|
| package Apache::lonnet; |
package Apache::lonnet; |
| |
|
| use strict; |
use strict; |
|
Line 34 use LWP::UserAgent();
|
Line 75 use LWP::UserAgent();
|
| use HTTP::Date; |
use HTTP::Date; |
| # use Date::Parse; |
# use Date::Parse; |
| use vars qw(%perlvar %spareid %pr %prp $memcache %packagetab $tmpdir |
use vars qw(%perlvar %spareid %pr %prp $memcache %packagetab $tmpdir |
| $_64bit %env); |
$_64bit %env %protocol); |
| |
|
| my (%badServerCache, $memcache, %courselogs, %accesshash, %domainrolehash, |
my (%badServerCache, $memcache, %courselogs, %accesshash, %domainrolehash, |
| %userrolehash, $processmarker, $dumpcount, %coursedombuf, |
%userrolehash, $processmarker, $dumpcount, %coursedombuf, |
|
Line 61 require Exporter;
|
Line 102 require Exporter;
|
| our @ISA = qw (Exporter); |
our @ISA = qw (Exporter); |
| our @EXPORT = qw(%env); |
our @EXPORT = qw(%env); |
| |
|
| =pod |
|
| |
|
| =head1 Package Variables |
|
| |
|
| These are largely undocumented, so if you decipher one please note it here. |
|
| |
|
| =over 4 |
|
| |
|
| =item $processmarker |
|
| |
|
| Contains the time this process was started and this servers host id. |
|
| |
|
| =item $dumpcount |
|
| |
|
| Counts the number of times a message log flush has been attempted (regardless |
|
| of success) by this process. Used as part of the filename when messages are |
|
| delayed. |
|
| |
|
| =back |
|
| |
|
| =cut |
|
| |
|
| |
|
| # --------------------------------------------------------------------- Logging |
# --------------------------------------------------------------------- Logging |
| { |
{ |
|
Line 643 sub spareserver {
|
Line 662 sub spareserver {
|
| } |
} |
| |
|
| if (!$want_server_name) { |
if (!$want_server_name) { |
| $spare_server="http://".&hostname($spare_server); |
my $protocol = 'http'; |
| |
if ($protocol{$spare_server} eq 'https') { |
| |
$protocol = $protocol{$spare_server}; |
| |
} |
| |
$spare_server = $protocol.'://'.&hostname($spare_server); |
| } |
} |
| return $spare_server; |
return $spare_server; |
| } |
} |
|
Line 1199 sub inst_userrules {
|
Line 1222 sub inst_userrules {
|
| return (\%ruleshash,\@ruleorder); |
return (\%ruleshash,\@ruleorder); |
| } |
} |
| |
|
| # ------------------------- Get Authentication and Language Defaults for Domain |
# ------------- Get Authentication, Language and User Tools Defaults for Domain |
| |
|
| sub get_domain_defaults { |
sub get_domain_defaults { |
| my ($domain) = @_; |
my ($domain) = @_; |
| my $cachetime = 60*60*24; |
my $cachetime = 60*60*24; |
| my ($defauthtype,$defautharg,$deflang); |
my ($defauthtype,$defautharg,$deflang,%deftools); |
| my ($result,$cached)=&is_cached_new('domdefaults',$domain); |
my ($result,$cached)=&is_cached_new('domdefaults',$domain); |
| if (defined($cached)) { |
if (defined($cached)) { |
| if (ref($result) eq 'HASH') { |
if (ref($result) eq 'HASH') { |
|
Line 1213 sub get_domain_defaults {
|
Line 1236 sub get_domain_defaults {
|
| } |
} |
| my %domdefaults; |
my %domdefaults; |
| my %domconfig = |
my %domconfig = |
| &Apache::lonnet::get_dom('configuration',['defaults'],$domain); |
&Apache::lonnet::get_dom('configuration',['defaults','quotas'],$domain); |
| if (ref($domconfig{'defaults'}) eq 'HASH') { |
if (ref($domconfig{'defaults'}) eq 'HASH') { |
| $domdefaults{'lang_def'} = $domconfig{'defaults'}{'lang_def'}; |
$domdefaults{'lang_def'} = $domconfig{'defaults'}{'lang_def'}; |
| $domdefaults{'auth_def'} = $domconfig{'defaults'}{'auth_def'}; |
$domdefaults{'auth_def'} = $domconfig{'defaults'}{'auth_def'}; |
|
Line 1223 sub get_domain_defaults {
|
Line 1246 sub get_domain_defaults {
|
| $domdefaults{'auth_def'} = &domain($domain,'auth_def'); |
$domdefaults{'auth_def'} = &domain($domain,'auth_def'); |
| $domdefaults{'auth_arg_def'} = &domain($domain,'auth_arg_def'); |
$domdefaults{'auth_arg_def'} = &domain($domain,'auth_arg_def'); |
| } |
} |
| |
if (ref($domconfig{'quotas'}) eq 'HASH') { |
| |
if (ref($domconfig{'quotas'}{'defaultquota'}) eq 'HASH') { |
| |
$domdefaults{'defaultquota'} = $domconfig{'quotas'}{'defaultquota'}; |
| |
} else { |
| |
$domdefaults{'defaultquota'} = $domconfig{'quotas'}; |
| |
} |
| |
my @usertools = ('aboutme','blog','portfolio'); |
| |
foreach my $item (@usertools) { |
| |
if (ref($domconfig{'quotas'}{$item}) eq 'HASH') { |
| |
$domdefaults{$item} = $domconfig{'quotas'}{$item}; |
| |
} |
| |
} |
| |
} |
| &Apache::lonnet::do_cache_new('domdefaults',$domain,\%domdefaults, |
&Apache::lonnet::do_cache_new('domdefaults',$domain,\%domdefaults, |
| $cachetime); |
$cachetime); |
| return %domdefaults; |
return %domdefaults; |
|
Line 1547 sub purge_remembered {
|
Line 1583 sub purge_remembered {
|
| |
|
| sub userenvironment { |
sub userenvironment { |
| my ($udom,$unam,@what)=@_; |
my ($udom,$unam,@what)=@_; |
| |
my $items; |
| |
foreach my $item (@what) { |
| |
$items.=&escape($item).'&'; |
| |
} |
| |
$items=~s/\&$//; |
| my %returnhash=(); |
my %returnhash=(); |
| my @answer=split(/\&/, |
my @answer=split(/\&/, |
| &reply('get:'.$udom.':'.$unam.':environment:'.join('&',@what), |
&reply('get:'.$udom.':'.$unam.':environment:'.$items, |
| &homeserver($unam,$udom))); |
&homeserver($unam,$udom))); |
| my $i; |
my $i; |
| for ($i=0;$i<=$#what;$i++) { |
for ($i=0;$i<=$#what;$i++) { |
|
Line 2466 sub courseacclog {
|
Line 2507 sub courseacclog {
|
| # FIXME: Probably ought to escape things.... |
# FIXME: Probably ought to escape things.... |
| foreach my $key (keys(%env)) { |
foreach my $key (keys(%env)) { |
| if ($key=~/^form\.(.*)/) { |
if ($key=~/^form\.(.*)/) { |
| $what.=':'.$1.'='.$env{$key}; |
my $formitem = $1; |
| |
if ($formitem =~ /^HWFILE(?:SIZE|TOOBIG)/) { |
| |
$what.=':'.$formitem.'='.$env{$key}; |
| |
} elsif ($formitem !~ /^HWFILE(?:[^.]+)$/) { |
| |
$what.=':'.$formitem.'='.$env{$key}; |
| |
} |
| } |
} |
| } |
} |
| } elsif ($fnsymb =~ m:^/adm/searchcat:) { |
} elsif ($fnsymb =~ m:^/adm/searchcat:) { |
|
Line 2596 sub get_course_adv_roles {
|
Line 2642 sub get_course_adv_roles {
|
| } |
} |
| } else { |
} else { |
| my $key=&plaintext($role); |
my $key=&plaintext($role); |
| if ($section) { $key.=' (Section '.$section.')'; } |
if ($section) { $key.=' ('.&Apache::lonlocal::mt('Section [_1]',$section).')'; } |
| if ($returnhash{$key}) { |
if ($returnhash{$key}) { |
| $returnhash{$key}.=','.$username.':'.$domain; |
$returnhash{$key}.=','.$username.':'.$domain; |
| } else { |
} else { |
|
Line 3561 sub privileged {
|
Line 3607 sub privileged {
|
| |
|
| sub rolesinit { |
sub rolesinit { |
| my ($domain,$username,$authhost)=@_; |
my ($domain,$username,$authhost)=@_; |
| |
my %userroles; |
| my $rolesdump=reply("dump:$domain:$username:roles",$authhost); |
my $rolesdump=reply("dump:$domain:$username:roles",$authhost); |
| if (($rolesdump eq 'con_lost') || ($rolesdump eq '')) { return ''; } |
if (($rolesdump eq 'con_lost') || ($rolesdump eq '')) { return \%userroles; } |
| my %allroles=(); |
my %allroles=(); |
| my %allgroups=(); |
my %allgroups=(); |
| my $now=time; |
my $now=time; |
| my %userroles = ('user.login.time' => $now); |
%userroles = ('user.login.time' => $now); |
| my $group_privs; |
my $group_privs; |
| |
|
| if ($rolesdump ne '') { |
if ($rolesdump ne '') { |
|
Line 4327 sub is_portfolio_file {
|
Line 4374 sub is_portfolio_file {
|
| return; |
return; |
| } |
} |
| |
|
| |
sub usertools_access { |
| |
my ($uname,$udom,$tool,$action) = @_; |
| |
my $access; |
| |
my %tools = ( |
| |
aboutme => 1, |
| |
blog => 1, |
| |
portfolio => 1, |
| |
); |
| |
return if (!defined($tools{$tool})); |
| |
|
| |
if ((!defined($udom)) || (!defined($uname))) { |
| |
$udom = $env{'user.domain'}; |
| |
$uname = $env{'user.name'}; |
| |
} |
| |
|
| |
if (($udom eq $env{'user.domain'}) && ($uname eq $env{'user.name'})) { |
| |
if ($action ne 'reload') { |
| |
return $env{'environment.availabletools.'.$tool}; |
| |
} |
| |
} |
| |
|
| |
my ($toolstatus,$inststatus); |
| |
|
| |
if (($udom eq $env{'user.domain'}) && ($uname eq $env{'user.name'})) { |
| |
$toolstatus = $env{'environment.tools.'.$tool}; |
| |
$inststatus = $env{'environment.inststatus'}; |
| |
} else { |
| |
my %userenv = &userenvironment($udom,$uname,'tools.'.$tool); |
| |
$toolstatus = $userenv{'tools.'.$tool}; |
| |
$inststatus = $userenv{'inststatus'}; |
| |
} |
| |
|
| |
if ($toolstatus ne '') { |
| |
if ($toolstatus) { |
| |
$access = 1; |
| |
} else { |
| |
$access = 0; |
| |
} |
| |
return $access; |
| |
} |
| |
|
| |
my $is_adv = &is_advanced_user($udom,$uname); |
| |
my %domdef = &get_domain_defaults($udom); |
| |
if (ref($domdef{$tool}) eq 'HASH') { |
| |
if ($is_adv) { |
| |
if ($domdef{$tool}{'_LC_adv'} ne '') { |
| |
if ($domdef{$tool}{'_LC_adv'}) { |
| |
$access = 1; |
| |
} else { |
| |
$access = 0; |
| |
} |
| |
return $access; |
| |
} |
| |
} |
| |
if ($inststatus ne '') { |
| |
my ($hasaccess,$hasnoaccess); |
| |
foreach my $affiliation (split(/:/,$inststatus)) { |
| |
if ($domdef{$tool}{$affiliation} ne '') { |
| |
if ($domdef{$tool}{$affiliation}) { |
| |
$hasaccess = 1; |
| |
} else { |
| |
$hasnoaccess = 1; |
| |
} |
| |
} |
| |
} |
| |
if ($hasaccess || $hasnoaccess) { |
| |
if ($hasaccess) { |
| |
$access = 1; |
| |
} elsif ($hasnoaccess) { |
| |
$access = 0; |
| |
} |
| |
return $access; |
| |
} |
| |
} else { |
| |
if ($domdef{$tool}{'default'} ne '') { |
| |
if ($domdef{$tool}{'default'}) { |
| |
$access = 1; |
| |
} elsif ($domdef{$tool}{'default'} == 0) { |
| |
$access = 0; |
| |
} |
| |
return $access; |
| |
} |
| |
} |
| |
} else { |
| |
$access = 1; |
| |
return $access; |
| |
} |
| |
} |
| |
|
| |
sub is_advanced_user { |
| |
my ($udom,$uname) = @_; |
| |
my %roleshash = &get_my_roles($uname,$udom,'userroles',undef,undef,undef,1); |
| |
my %allroles; |
| |
my $is_adv; |
| |
foreach my $role (keys(%roleshash)) { |
| |
my ($trest,$tdomain,$trole,$sec) = split(/:/,$role); |
| |
my $area = '/'.$tdomain.'/'.$trest; |
| |
if ($sec ne '') { |
| |
$area .= '/'.$sec; |
| |
} |
| |
if (($area ne '') && ($trole ne '')) { |
| |
my $spec=$trole.'.'.$area; |
| |
if ($trole =~ /^cr\//) { |
| |
&custom_roleprivs(\%allroles,$trole,$tdomain,$trest,$spec,$area); |
| |
} elsif ($trole ne 'gr') { |
| |
&standard_roleprivs(\%allroles,$trole,$tdomain,$spec,$trest,$area); |
| |
} |
| |
} |
| |
} |
| |
foreach my $role (keys(%allroles)) { |
| |
last if ($is_adv); |
| |
foreach my $item (split(/:/,$allroles{$role})) { |
| |
if ($item ne '') { |
| |
my ($privilege,$restrictions)=split(/&/,$item); |
| |
if ($privilege eq 'adv') { |
| |
$is_adv = 1; |
| |
last; |
| |
} |
| |
} |
| |
} |
| |
} |
| |
return $is_adv; |
| |
} |
| |
|
| # ---------------------------------------------- Custom access rule evaluation |
# ---------------------------------------------- Custom access rule evaluation |
| |
|
|
Line 4891 sub log_query {
|
Line 5061 sub log_query {
|
| |
|
| sub update_portfolio_table { |
sub update_portfolio_table { |
| my ($uname,$udom,$file_name,$query,$group,$action) = @_; |
my ($uname,$udom,$file_name,$query,$group,$action) = @_; |
| |
if ($group ne '') { |
| |
$file_name =~s /^\Q$group\E//; |
| |
} |
| my $homeserver = &homeserver($uname,$udom); |
my $homeserver = &homeserver($uname,$udom); |
| my $queryid= |
my $queryid= |
| &reply("querysend:".$query.':'.&escape($uname.':'.$udom.':'.$group). |
&reply("querysend:".$query.':'.&escape($uname.':'.$udom.':'.$group). |
|
Line 5879 sub assigncustomrole {
|
Line 6052 sub assigncustomrole {
|
| sub revokerole { |
sub revokerole { |
| my ($udom,$uname,$url,$role,$deleteflag,$selfenroll,$context)=@_; |
my ($udom,$uname,$url,$role,$deleteflag,$selfenroll,$context)=@_; |
| my $now=time; |
my $now=time; |
| return &assignrole($udom,$uname,$url,$role,$now,$deleteflag,$selfenroll,$context); |
return &assignrole($udom,$uname,$url,$role,$now,undef,$deleteflag,$selfenroll,$context); |
| } |
} |
| |
|
| # ---------------------------------------------------------- Revoke Custom Role |
# ---------------------------------------------------------- Revoke Custom Role |
|
Line 6144 sub modify_access_controls {
|
Line 6317 sub modify_access_controls {
|
| } |
} |
| } |
} |
| } |
} |
| |
my ($group); |
| |
if (&is_course($domain,$user)) { |
| |
($group,my $file) = split(/\//,$file_name,2); |
| |
} |
| $deloutcome = &del('file_permissions',\@deletions,$domain,$user); |
$deloutcome = &del('file_permissions',\@deletions,$domain,$user); |
| $new_values{$file_name."\0".'accesscontrol'} = \%new_control; |
$new_values{$file_name."\0".'accesscontrol'} = \%new_control; |
| $outcome = &put('file_permissions',\%new_values,$domain,$user); |
$outcome = &put('file_permissions',\%new_values,$domain,$user); |
| # remove lock |
# remove lock |
| my @del_lock = ($file_name."\0".'locked_access_records'); |
my @del_lock = ($file_name."\0".'locked_access_records'); |
| my $dellockoutcome = &del('file_permissions',\@del_lock,$domain,$user); |
my $dellockoutcome = &del('file_permissions',\@del_lock,$domain,$user); |
| my ($file,$group); |
|
| if (&is_course($domain,$user)) { |
|
| ($group,$file) = split(/\//,$file_name,2); |
|
| } else { |
|
| $file = $file_name; |
|
| } |
|
| my $sqlresult = |
my $sqlresult = |
| &update_portfolio_table($user,$domain,$file,'portfolio_access', |
&update_portfolio_table($user,$domain,$file_name,'portfolio_access', |
| $group); |
$group); |
| } else { |
} else { |
| $outcome = "error: could not obtain lockfile\n"; |
$outcome = "error: could not obtain lockfile\n"; |
|
Line 8518 sub get_dns {
|
Line 8689 sub get_dns {
|
| } |
} |
| return $domain{$name}{$what}; |
return $domain{$name}{$what}; |
| } |
} |
| |
|
| |
sub domain_info { |
| |
&load_domain_tab() if (!$loaded); |
| |
return %domain; |
| |
} |
| |
|
| } |
} |
| |
|
| |
|
|
Line 8535 sub get_dns {
|
Line 8712 sub get_dns {
|
| next if ($configline =~ /^(\#|\s*$ )/x); |
next if ($configline =~ /^(\#|\s*$ )/x); |
| next if ($configline =~ /^\^/); |
next if ($configline =~ /^\^/); |
| chomp($configline); |
chomp($configline); |
| my ($id,$domain,$role,$name)=split(/:/,$configline); |
my ($id,$domain,$role,$name,$protocol)=split(/:/,$configline); |
| $name=~s/\s//g; |
$name=~s/\s//g; |
| if ($id && $domain && $role && $name) { |
if ($id && $domain && $role && $name) { |
| $hostname{$id}=$name; |
$hostname{$id}=$name; |
| push(@{$name_to_host{$name}}, $id); |
push(@{$name_to_host{$name}}, $id); |
| $hostdom{$id}=$domain; |
$hostdom{$id}=$domain; |
| if ($role eq 'library') { $libserv{$id}=$name; } |
if ($role eq 'library') { $libserv{$id}=$name; } |
| |
if (defined($protocol)) { |
| |
if ($protocol eq 'https') { |
| |
$protocol{$id} = $protocol; |
| |
} else { |
| |
$protocol{$id} = 'http'; |
| |
} |
| |
} else { |
| |
$protocol{$id} = 'http'; |
| |
} |
| } |
} |
| } |
} |
| } |
} |
|
Line 8586 sub get_dns {
|
Line 8772 sub get_dns {
|
| return %name_to_host; |
return %name_to_host; |
| } |
} |
| |
|
| |
sub all_host_domain { |
| |
&load_hosts_tab() if (!$loaded); |
| |
return %hostdom; |
| |
} |
| |
|
| sub is_library { |
sub is_library { |
| &load_hosts_tab() if (!$loaded); |
&load_hosts_tab() if (!$loaded); |
| |
|
|
Line 8984 when the connection is brought back up
|
Line 9175 when the connection is brought back up
|
| =item * B<con_failed>: unable to contact remote host and unable to save message |
=item * B<con_failed>: unable to contact remote host and unable to save message |
| for later delivery |
for later delivery |
| |
|
| =item * B<error:>: an error a occured, a description of the error follows the : |
=item * B<error:>: an error a occurred, a description of the error follows the : |
| |
|
| =item * B<no_such_host>: unable to fund a host associated with the user/domain |
=item * B<no_such_host>: unable to fund a host associated with the user/domain |
| that was requested |
that was requested |
|
Line 9564 Returns:
|
Line 9755 Returns:
|
| 'key_exists: <key>' -> failed to anything out of $storehash, as at |
'key_exists: <key>' -> failed to anything out of $storehash, as at |
| least <key> already existed in the db (other |
least <key> already existed in the db (other |
| requested keys may also already exist) |
requested keys may also already exist) |
| 'error: <msg>' -> unable to tie the DB or other erorr occured |
'error: <msg>' -> unable to tie the DB or other error occurred |
| 'con_lost' -> unable to contact request server |
'con_lost' -> unable to contact request server |
| 'refused' -> action was not allowed by remote machine |
'refused' -> action was not allowed by remote machine |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to lonnet.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / lonnet / perl