1: # The LearningOnline Network
2: # TCP networking package
3: #
4: # Functions for use by content handlers:
5: #
6: # metadata_query(sql-query-string,custom-metadata-regex) :
7: # returns file handle of where sql and
8: # regex results will be stored for query
9: # plaintext(short) : plain text explanation of short term
10: # fileembstyle(ext) : embed style in page for file extension
11: # filedescription(ext) : descriptor text for file extension
12: # allowed(short,url) : returns codes for allowed actions
13: # F: full access
14: # U,I,K: authentication modes (cxx only)
15: # '': forbidden
16: # 1: user needs to choose course
17: # 2: browse allowed
18: # definerole(rolename,sys,dom,cou) : define a custom role rolename
19: # set privileges in format of lonTabs/roles.tab for
20: # system, domain and course level,
21: # assignrole(udom,uname,url,role,end,start) : give a role to a user for the
22: # level given by url. Optional start and end dates
23: # (leave empty string or zero for "no date")
24: # assigncustomrole (udom,uname,url,rdom,rnam,rolename,end,start) : give a
25: # custom role to a user for the level given by url.
26: # Specify name and domain of role author, and role name
27: # revokerole (udom,uname,url,role) : Revoke a role for url
28: # revokecustomrole (udom,uname,url,rdom,rnam,rolename) : Revoke a custom role
29: # appenv(hash) : adds hash to session environment
30: # delenv(varname) : deletes all environment entries starting with varname
31: # store(hashref,symb,courseid,udom,uname)
32: # : stores hash permanently for this url
33: # hashref needs to be given, and should be a \%hashname
34: # the remaining args aren't required and if they aren't
35: # passed or are '' they will be derived from the ENV
36: # cstore(hashref,symb,courseid,udom,uname)
37: # : same as store but uses the critical interface to
38: # guarentee a store
39: # restore(symb,courseid,udom,uname)
40: # : returns hash for this symb, all args are optional
41: # if they aren't given they will be derived from the
42: # current enviroment
43: #
44: #
45: # for the next 6 functions udom and uname are optional
46: # if supplied they use udom as the domain and uname
47: # as the username for the function (supply a courseid
48: # for the uname if you want a course database)
49: # if not supplied it uses %ENV and looks at
50: # user. attribute for the values
51: #
52: # eget(namesp,arrayref,udom,uname)
53: # : returns hash with keys from array reference filled
54: # in from namesp (encrypts the return communication)
55: # get(namesp,arrayref,udom,uname)
56: # : returns hash with keys from array reference filled
57: # in from namesp
58: # dump(namesp,udom,uname) : dumps the complete namespace into a hash
59: # del(namesp,array,udom,uname) : deletes keys out of array from namesp
60: # put(namesp,hash,udom,uname) : stores hash in namesp
61: # cput(namesp,hash,udom,uname) : critical put
62: #
63: #
64: # ssi(url,hash) : does a complete request cycle on url to localhost, posts
65: # hash
66: # coursedescription(id) : returns and caches course description for id
67: # repcopy(filename) : replicate file
68: # dirlist(url) : gets a directory listing
69: # directcondval(index) : reading condition value of single condition from
70: # state string
71: # condval(index) : value of condition index based on state
72: # EXT(name) : value of a variable
73: # symblist(map,hash) : Updates symbolic storage links
74: # symbread([filename]) : returns the data handle (filename optional)
75: # rndseed() : returns a random seed
76: # receipt() : returns a receipt to be given out to users
77: # getfile(filename) : returns the contents of filename, or a -1 if it can't
78: # be found, replicates and subscribes to the file
79: # filelocation(dir,file) : returns a fairly clean absolute reference to file
80: # from the directory dir
81: # hreflocation(dir,file) : same as filelocation, but for hrefs
82: # log(domain,user,home,msg) : write to permanent log for user
83: # usection(domain,user,courseid) : output of section name/number or '' for
84: # "not in course" and '-1' for "no section"
85: # userenvironment(domain,user,what) : puts out any environment parameter
86: # for a user
87: # idput(domain,hash) : writes IDs for users from hash (name=>id,name=>id)
88: # idget(domain,array): returns hash with usernames (id=>name,id=>name) for
89: # an array of IDs
90: # idrget(domain,array): returns hash with IDs for usernames (name=>id,...) for
91: # an array of names
92: # metadata(file,entry): returns the metadata entry for a file. entry='keys'
93: # returns a comma separated list of keys
94: #
95: # 6/1/99,6/2,6/10,6/11,6/12,6/14,6/26,6/28,6/29,6/30,
96: # 7/1,7/2,7/9,7/10,7/12,7/14,7/15,7/19,
97: # 11/8,11/16,11/18,11/22,11/23,12/22,
98: # 01/06,01/13,02/24,02/28,02/29,
99: # 03/01,03/02,03/06,03/07,03/13,
100: # 04/05,05/29,05/31,06/01,
101: # 06/05,06/26 Gerd Kortemeyer
102: # 06/26 Ben Tyszka
103: # 06/30,07/15,07/17,07/18,07/20,07/21,07/22,07/25 Gerd Kortemeyer
104: # 08/14 Ben Tyszka
105: # 08/22,08/28,08/31,09/01,09/02,09/04,09/05,09/25,09/28,09/30 Gerd Kortemeyer
106: # 10/04 Gerd Kortemeyer
107: # 10/04 Guy Albertelli
108: # 10/06,10/09,10/10,10/11,10/14,10/20,10/23,10/25,10/26,10/27,10/28,10/29,
109: # 10/30,10/31,
110: # 11/2,11/14,11/15,11/16,11/20,11/21,11/22,11/25,11/27,
111: # 12/02,12/12,12/13,12/14,12/28,12/29 Gerd Kortemeyer
112: # 05/01/01 Guy Albertelli
113: # 05/01,06/01,09/01 Gerd Kortemeyer
114: # 09/01 Guy Albertelli
115: # 09/01,10/01,11/01 Gerd Kortemeyer
116: # 02/27/01 Scott Harrison
117: # 3/2 Gerd Kortemeyer
118: # 3/15,3/19 Scott Harrison
119: # 3/19,3/20 Gerd Kortemeyer
120: # 3/22,3/27,4/2,4/16,4/17 Scott Harrison
121: # 5/26,5/28 Gerd Kortemeyer
122: # 5/30 H. K. Ng
123: # 6/1 Gerd Kortemeyer
124: #
125:
126: package Apache::lonnet;
127:
128: use strict;
129: use Apache::File;
130: use LWP::UserAgent();
131: use HTTP::Headers;
132: use vars
133: qw(%perlvar %hostname %homecache %spareid %hostdom %libserv %pr %prp %fe %fd $readit %metacache);
134: use IO::Socket;
135: use GDBM_File;
136: use Apache::Constants qw(:common :http);
137: use HTML::TokeParser;
138: use Fcntl qw(:flock);
139:
140: # --------------------------------------------------------------------- Logging
141:
142: sub logthis {
143: my $message=shift;
144: my $execdir=$perlvar{'lonDaemons'};
145: my $now=time;
146: my $local=localtime($now);
147: my $fh=Apache::File->new(">>$execdir/logs/lonnet.log");
148: print $fh "$local ($$): $message\n";
149: return 1;
150: }
151:
152: sub logperm {
153: my $message=shift;
154: my $execdir=$perlvar{'lonDaemons'};
155: my $now=time;
156: my $local=localtime($now);
157: my $fh=Apache::File->new(">>$execdir/logs/lonnet.perm.log");
158: print $fh "$now:$message:$local\n";
159: return 1;
160: }
161:
162: # -------------------------------------------------- Non-critical communication
163: sub subreply {
164: my ($cmd,$server)=@_;
165: my $peerfile="$perlvar{'lonSockDir'}/$server";
166: my $client=IO::Socket::UNIX->new(Peer =>"$peerfile",
167: Type => SOCK_STREAM,
168: Timeout => 10)
169: or return "con_lost";
170: print $client "$cmd\n";
171: my $answer=<$client>;
172: if (!$answer) { $answer="con_lost"; }
173: chomp($answer);
174: return $answer;
175: }
176:
177: sub reply {
178: my ($cmd,$server)=@_;
179: my $answer=subreply($cmd,$server);
180: if ($answer eq 'con_lost') { $answer=subreply($cmd,$server); }
181: if (($answer=~/^refused/) || ($answer=~/^rejected/)) {
182: &logthis("<font color=blue>WARNING:".
183: " $cmd to $server returned $answer</font>");
184: }
185: return $answer;
186: }
187:
188: # ----------------------------------------------------------- Send USR1 to lonc
189:
190: sub reconlonc {
191: my $peerfile=shift;
192: &logthis("Trying to reconnect for $peerfile");
193: my $loncfile="$perlvar{'lonDaemons'}/logs/lonc.pid";
194: if (my $fh=Apache::File->new("$loncfile")) {
195: my $loncpid=<$fh>;
196: chomp($loncpid);
197: if (kill 0 => $loncpid) {
198: &logthis("lonc at pid $loncpid responding, sending USR1");
199: kill USR1 => $loncpid;
200: sleep 1;
201: if (-e "$peerfile") { return; }
202: &logthis("$peerfile still not there, give it another try");
203: sleep 5;
204: if (-e "$peerfile") { return; }
205: &logthis(
206: "<font color=blue>WARNING: $peerfile still not there, giving up</font>");
207: } else {
208: &logthis(
209: "<font color=blue>WARNING:".
210: " lonc at pid $loncpid not responding, giving up</font>");
211: }
212: } else {
213: &logthis('<font color=blue>WARNING: lonc not running, giving up</font>');
214: }
215: }
216:
217: # ------------------------------------------------------ Critical communication
218:
219: sub critical {
220: my ($cmd,$server)=@_;
221: unless ($hostname{$server}) {
222: &logthis("<font color=blue>WARNING:".
223: " Critical message to unknown server ($server)</font>");
224: return 'no_such_host';
225: }
226: my $answer=reply($cmd,$server);
227: if ($answer eq 'con_lost') {
228: my $pingreply=reply('ping',$server);
229: &reconlonc("$perlvar{'lonSockDir'}/$server");
230: my $pongreply=reply('pong',$server);
231: &logthis("Ping/Pong for $server: $pingreply/$pongreply");
232: $answer=reply($cmd,$server);
233: if ($answer eq 'con_lost') {
234: my $now=time;
235: my $middlename=$cmd;
236: $middlename=substr($middlename,0,16);
237: $middlename=~s/\W//g;
238: my $dfilename=
239: "$perlvar{'lonSockDir'}/delayed/$now.$middlename.$server";
240: {
241: my $dfh;
242: if ($dfh=Apache::File->new(">$dfilename")) {
243: print $dfh "$cmd\n";
244: }
245: }
246: sleep 2;
247: my $wcmd='';
248: {
249: my $dfh;
250: if ($dfh=Apache::File->new("$dfilename")) {
251: $wcmd=<$dfh>;
252: }
253: }
254: chomp($wcmd);
255: if ($wcmd eq $cmd) {
256: &logthis("<font color=blue>WARNING: ".
257: "Connection buffer $dfilename: $cmd</font>");
258: &logperm("D:$server:$cmd");
259: return 'con_delayed';
260: } else {
261: &logthis("<font color=red>CRITICAL:"
262: ." Critical connection failed: $server $cmd</font>");
263: &logperm("F:$server:$cmd");
264: return 'con_failed';
265: }
266: }
267: }
268: return $answer;
269: }
270:
271: # ---------------------------------------------------------- Append Environment
272:
273: sub appenv {
274: my %newenv=@_;
275: map {
276: if (($newenv{$_}=~/^user\.role/) || ($newenv{$_}=~/^user\.priv/)) {
277: &logthis("<font color=blue>WARNING: ".
278: "Attempt to modify environment ".$_." to ".$newenv{$_});
279: delete($newenv{$_});
280: } else {
281: $ENV{$_}=$newenv{$_};
282: }
283: } keys %newenv;
284:
285: my $lockfh;
286: unless ($lockfh=Apache::File->new("$ENV{'user.environment'}")) {
287: return 'error: '.$!;
288: }
289: unless (flock($lockfh,LOCK_EX)) {
290: &logthis("<font color=blue>WARNING: ".
291: 'Could not obtain exclusive lock in appenv: '.$!);
292: $lockfh->close();
293: return 'error: '.$!;
294: }
295:
296: my @oldenv;
297: {
298: my $fh;
299: unless ($fh=Apache::File->new("$ENV{'user.environment'}")) {
300: return 'error: '.$!;
301: }
302: @oldenv=<$fh>;
303: $fh->close();
304: }
305: for (my $i=0; $i<=$#oldenv; $i++) {
306: chomp($oldenv[$i]);
307: if ($oldenv[$i] ne '') {
308: my ($name,$value)=split(/=/,$oldenv[$i]);
309: unless (defined($newenv{$name})) {
310: $newenv{$name}=$value;
311: }
312: }
313: }
314: {
315: my $fh;
316: unless ($fh=Apache::File->new(">$ENV{'user.environment'}")) {
317: return 'error';
318: }
319: my $newname;
320: foreach $newname (keys %newenv) {
321: print $fh "$newname=$newenv{$newname}\n";
322: }
323: $fh->close();
324: }
325:
326: $lockfh->close();
327: return 'ok';
328: }
329: # ----------------------------------------------------- Delete from Environment
330:
331: sub delenv {
332: my $delthis=shift;
333: my %newenv=();
334: if (($delthis=~/user\.role/) || ($delthis=~/user\.priv/)) {
335: &logthis("<font color=blue>WARNING: ".
336: "Attempt to delete from environment ".$delthis);
337: return 'error';
338: }
339: my @oldenv;
340: {
341: my $fh;
342: unless ($fh=Apache::File->new("$ENV{'user.environment'}")) {
343: return 'error';
344: }
345: unless (flock($fh,LOCK_SH)) {
346: &logthis("<font color=blue>WARNING: ".
347: 'Could not obtain shared lock in delenv: '.$!);
348: $fh->close();
349: return 'error: '.$!;
350: }
351: @oldenv=<$fh>;
352: $fh->close();
353: }
354: {
355: my $fh;
356: unless ($fh=Apache::File->new(">$ENV{'user.environment'}")) {
357: return 'error';
358: }
359: unless (flock($fh,LOCK_EX)) {
360: &logthis("<font color=blue>WARNING: ".
361: 'Could not obtain exclusive lock in delenv: '.$!);
362: $fh->close();
363: return 'error: '.$!;
364: }
365: map {
366: unless ($_=~/^$delthis/) { print $fh $_; }
367: } @oldenv;
368: $fh->close();
369: }
370: return 'ok';
371: }
372:
373: # ------------------------------ Find server with least workload from spare.tab
374:
375: sub spareserver {
376: my $tryserver;
377: my $spareserver='';
378: my $lowestserver=100;
379: foreach $tryserver (keys %spareid) {
380: my $answer=reply('load',$tryserver);
381: if (($answer =~ /\d/) && ($answer<$lowestserver)) {
382: $spareserver="http://$hostname{$tryserver}";
383: $lowestserver=$answer;
384: }
385: }
386: return $spareserver;
387: }
388:
389: # --------- Try to authenticate user from domain's lib servers (first this one)
390:
391: sub authenticate {
392: my ($uname,$upass,$udom)=@_;
393: $upass=escape($upass);
394: if (($perlvar{'lonRole'} eq 'library') &&
395: ($udom eq $perlvar{'lonDefDomain'})) {
396: my $answer=reply("encrypt:auth:$udom:$uname:$upass",$perlvar{'lonHostID'});
397: if ($answer =~ /authorized/) {
398: if ($answer eq 'authorized') {
399: &logthis("User $uname at $udom authorized by local server");
400: return $perlvar{'lonHostID'};
401: }
402: if ($answer eq 'non_authorized') {
403: &logthis("User $uname at $udom rejected by local server");
404: return 'no_host';
405: }
406: }
407: }
408:
409: my $tryserver;
410: foreach $tryserver (keys %libserv) {
411: if ($hostdom{$tryserver} eq $udom) {
412: my $answer=reply("encrypt:auth:$udom:$uname:$upass",$tryserver);
413: if ($answer =~ /authorized/) {
414: if ($answer eq 'authorized') {
415: &logthis("User $uname at $udom authorized by $tryserver");
416: return $tryserver;
417: }
418: if ($answer eq 'non_authorized') {
419: &logthis("User $uname at $udom rejected by $tryserver");
420: return 'no_host';
421: }
422: }
423: }
424: }
425: &logthis("User $uname at $udom could not be authenticated");
426: return 'no_host';
427: }
428:
429: # ---------------------- Find the homebase for a user from domain's lib servers
430:
431: sub homeserver {
432: my ($uname,$udom)=@_;
433:
434: my $index="$uname:$udom";
435: if ($homecache{$index}) { return "$homecache{$index}"; }
436:
437: my $tryserver;
438: foreach $tryserver (keys %libserv) {
439: if ($hostdom{$tryserver} eq $udom) {
440: my $answer=reply("home:$udom:$uname",$tryserver);
441: if ($answer eq 'found') {
442: $homecache{$index}=$tryserver;
443: return $tryserver;
444: }
445: }
446: }
447: return 'no_host';
448: }
449:
450: # ------------------------------------- Find the usernames behind a list of IDs
451:
452: sub idget {
453: my ($udom,@ids)=@_;
454: my %returnhash=();
455:
456: my $tryserver;
457: foreach $tryserver (keys %libserv) {
458: if ($hostdom{$tryserver} eq $udom) {
459: my $idlist=join('&',@ids);
460: $idlist=~tr/A-Z/a-z/;
461: my $reply=&reply("idget:$udom:".$idlist,$tryserver);
462: my @answer=();
463: if (($reply ne 'con_lost') && ($reply!~/^error\:/)) {
464: @answer=split(/\&/,$reply);
465: } ;
466: my $i;
467: for ($i=0;$i<=$#ids;$i++) {
468: if ($answer[$i]) {
469: $returnhash{$ids[$i]}=$answer[$i];
470: }
471: }
472: }
473: }
474: return %returnhash;
475: }
476:
477: # ------------------------------------- Find the IDs behind a list of usernames
478:
479: sub idrget {
480: my ($udom,@unames)=@_;
481: my %returnhash=();
482: map {
483: $returnhash{$_}=(&userenvironment($udom,$_,'id'))[1];
484: } @unames;
485: return %returnhash;
486: }
487:
488: # ------------------------------- Store away a list of names and associated IDs
489:
490: sub idput {
491: my ($udom,%ids)=@_;
492: my %servers=();
493: map {
494: my $uhom=&homeserver($_,$udom);
495: if ($uhom ne 'no_host') {
496: my $id=&escape($ids{$_});
497: $id=~tr/A-Z/a-z/;
498: my $unam=&escape($_);
499: if ($servers{$uhom}) {
500: $servers{$uhom}.='&'.$id.'='.$unam;
501: } else {
502: $servers{$uhom}=$id.'='.$unam;
503: }
504: &critical('put:'.$udom.':'.$unam.':environment:id='.$id,$uhom);
505: }
506: } keys %ids;
507: map {
508: &critical('idput:'.$udom.':'.$servers{$_},$_);
509: } keys %servers;
510: }
511:
512: # ------------------------------------- Find the section of student in a course
513:
514: sub usection {
515: my ($udom,$unam,$courseid)=@_;
516: $courseid=~s/\_/\//g;
517: $courseid=~s/^(\w)/\/$1/;
518: map {
519: my ($key,$value)=split(/\=/,$_);
520: $key=&unescape($key);
521: if ($key=~/^$courseid(?:\/)*(\w+)*\_st$/) {
522: my $section=$1;
523: if ($key eq $courseid.'_st') { $section=''; }
524: my ($dummy,$end,$start)=split(/\_/,&unescape($value));
525: my $now=time;
526: my $notactive=0;
527: if ($start) {
528: if ($now<$start) { $notactive=1; }
529: }
530: if ($end) {
531: if ($now>$end) { $notactive=1; }
532: }
533: unless ($notactive) { return $section; }
534: }
535: } split(/\&/,&reply('dump:'.$udom.':'.$unam.':roles',
536: &homeserver($unam,$udom)));
537: return '-1';
538: }
539:
540: # ------------------------------------- Read an entry from a user's environment
541:
542: sub userenvironment {
543: my ($udom,$unam,@what)=@_;
544: my %returnhash=();
545: my @answer=split(/\&/,
546: &reply('get:'.$udom.':'.$unam.':environment:'.join('&',@what),
547: &homeserver($unam,$udom)));
548: my $i;
549: for ($i=0;$i<=$#what;$i++) {
550: $returnhash{$what[$i]}=&unescape($answer[$i]);
551: }
552: return %returnhash;
553: }
554:
555: # ----------------------------- Subscribe to a resource, return URL if possible
556:
557: sub subscribe {
558: my $fname=shift;
559: my $author=$fname;
560: $author=~s/\/home\/httpd\/html\/res\/([^\/]*)\/([^\/]*).*/$1\/$2/;
561: my ($udom,$uname)=split(/\//,$author);
562: my $home=homeserver($uname,$udom);
563: if (($home eq 'no_host') || ($home eq $perlvar{'lonHostID'})) {
564: return 'not_found';
565: }
566: my $answer=reply("sub:$fname",$home);
567: if (($answer eq 'con_lost') || ($answer eq 'rejected')) {
568: $answer.=' by '.$home;
569: }
570: return $answer;
571: }
572:
573: # -------------------------------------------------------------- Replicate file
574:
575: sub repcopy {
576: my $filename=shift;
577: $filename=~s/\/+/\//g;
578: my $transname="$filename.in.transfer";
579: if ((-e $filename) || (-e $transname)) { return OK; }
580: my $remoteurl=subscribe($filename);
581: if ($remoteurl =~ /^con_lost by/) {
582: &logthis("Subscribe returned $remoteurl: $filename");
583: return HTTP_SERVICE_UNAVAILABLE;
584: } elsif ($remoteurl eq 'not_found') {
585: &logthis("Subscribe returned not_found: $filename");
586: return HTTP_NOT_FOUND;
587: } elsif ($remoteurl =~ /^rejected by/) {
588: &logthis("Subscribe returned $remoteurl: $filename");
589: return FORBIDDEN;
590: } elsif ($remoteurl eq 'directory') {
591: return OK;
592: } else {
593: my @parts=split(/\//,$filename);
594: my $path="/$parts[1]/$parts[2]/$parts[3]/$parts[4]";
595: if ($path ne "$perlvar{'lonDocRoot'}/res") {
596: &logthis("Malconfiguration for replication: $filename");
597: return HTTP_BAD_REQUEST;
598: }
599: my $count;
600: for ($count=5;$count<$#parts;$count++) {
601: $path.="/$parts[$count]";
602: if ((-e $path)!=1) {
603: mkdir($path,0777);
604: }
605: }
606: my $ua=new LWP::UserAgent;
607: my $request=new HTTP::Request('GET',"$remoteurl");
608: my $response=$ua->request($request,$transname);
609: if ($response->is_error()) {
610: unlink($transname);
611: my $message=$response->status_line;
612: &logthis("<font color=blue>WARNING:"
613: ." LWP get: $message: $filename</font>");
614: return HTTP_SERVICE_UNAVAILABLE;
615: } else {
616: if ($remoteurl!~/\.meta$/) {
617: my $mrequest=new HTTP::Request('GET',$remoteurl.'.meta');
618: my $mresponse=$ua->request($mrequest,$filename.'.meta');
619: if ($mresponse->is_error()) {
620: unlink($filename.'.meta');
621: &logthis(
622: "<font color=yellow>INFO: No metadata: $filename</font>");
623: }
624: }
625: rename($transname,$filename);
626: return OK;
627: }
628: }
629: }
630:
631: # --------------------------------------------------------- Server Side Include
632:
633: sub ssi {
634:
635: my ($fn,%form)=@_;
636:
637: my $ua=new LWP::UserAgent;
638:
639: my $request;
640:
641: if (%form) {
642: $request=new HTTP::Request('POST',"http://".$ENV{'HTTP_HOST'}.$fn);
643: $request->content(join '&', map { "$_=$form{$_}" } keys %form);
644: } else {
645: $request=new HTTP::Request('GET',"http://".$ENV{'HTTP_HOST'}.$fn);
646: }
647:
648: $request->header(Cookie => $ENV{'HTTP_COOKIE'});
649: my $response=$ua->request($request);
650:
651: return $response->content;
652: }
653:
654: # ------------------------------------------------------------------------- Log
655:
656: sub log {
657: my ($dom,$nam,$hom,$what)=@_;
658: return critical("log:$dom:$nam:$what",$hom);
659: }
660:
661: # --------------------------------------------- Set Expire Date for Spreadsheet
662:
663: sub expirespread {
664: my ($uname,$udom,$stype,$usymb)=@_;
665: my $cid=$ENV{'request.course.id'};
666: if ($cid) {
667: my $now=time;
668: my $key=$uname.':'.$udom.':'.$stype.':'.$usymb;
669: return &reply('put:'.$ENV{'course.'.$cid.'.domain'}.':'.
670: $ENV{'course.'.$cid.'.num'}.
671: ':nohist_expirationdates:'.
672: &escape($key).'='.$now,
673: $ENV{'course.'.$cid.'.home'})
674: }
675: return 'ok';
676: }
677:
678: # ----------------------------------------------------- Devalidate Spreadsheets
679:
680: sub devalidate {
681: my $symb=shift;
682: my $cid=$ENV{'request.course.id'};
683: if ($cid) {
684: my $key=$ENV{'user.name'}.':'.$ENV{'user.domain'}.':';
685: my $status=
686: &del('nohist_calculatedsheet',
687: [$key.'studentcalc'],
688: $ENV{'course.'.$cid.'.domain'},
689: $ENV{'course.'.$cid.'.num'})
690: .' '.
691: &del('nohist_calculatedsheets_'.$cid,
692: [$key.'assesscalc:'.$symb]);
693: unless ($status eq 'ok ok') {
694: &logthis('Could not devalidate spreadsheet '.
695: $ENV{'user.name'}.' at '.$ENV{'user.domain'}.' for '.
696: $symb.': '.$status);
697: }
698: }
699: }
700:
701: # ----------------------------------------------------------------------- Store
702:
703: sub store {
704: my ($storehash,$symb,$namespace,$domain,$stuname) = @_;
705: my $home='';
706:
707: if ($stuname) {
708: $home=&homeserver($stuname,$domain);
709: }
710:
711: if (!$symb) { unless ($symb=&symbread()) { return ''; } }
712:
713: &devalidate($symb);
714:
715: $symb=escape($symb);
716: if (!$namespace) { unless ($namespace=$ENV{'request.course.id'}) { return ''; } }
717: if (!$domain) { $domain=$ENV{'user.domain'}; }
718: if (!$stuname) { $stuname=$ENV{'user.name'}; }
719: if (!$home) { $home=$ENV{'user.home'}; }
720: my $namevalue='';
721: map {
722: $namevalue.=escape($_).'='.escape($$storehash{$_}).'&';
723: } keys %$storehash;
724: $namevalue=~s/\&$//;
725: return reply("store:$domain:$stuname:$namespace:$symb:$namevalue","$home");
726: }
727:
728: # -------------------------------------------------------------- Critical Store
729:
730: sub cstore {
731: my ($storehash,$symb,$namespace,$domain,$stuname) = @_;
732: my $home='';
733:
734: if ($stuname) {
735: $home=&homeserver($stuname,$domain);
736: }
737:
738: if (!$symb) { unless ($symb=&symbread()) { return ''; } }
739:
740: &devalidate($symb);
741:
742: $symb=escape($symb);
743: if (!$namespace) { unless ($namespace=$ENV{'request.course.id'}) { return ''; } }
744: if (!$domain) { $domain=$ENV{'user.domain'}; }
745: if (!$stuname) { $stuname=$ENV{'user.name'}; }
746: if (!$home) { $home=$ENV{'user.home'}; }
747:
748: my $namevalue='';
749: map {
750: $namevalue.=escape($_).'='.escape($$storehash{$_}).'&';
751: } keys %$storehash;
752: $namevalue=~s/\&$//;
753: return critical("store:$domain:$stuname:$namespace:$symb:$namevalue","$home");
754: }
755:
756: # --------------------------------------------------------------------- Restore
757:
758: sub restore {
759: my ($symb,$namespace,$domain,$stuname) = @_;
760: my $home='';
761:
762: if ($stuname) {
763: $home=&homeserver($stuname,$domain);
764: }
765:
766: if (!$symb) {
767: unless ($symb=escape(&symbread())) { return ''; }
768: } else {
769: $symb=&escape($symb);
770: }
771: if (!$namespace) { unless ($namespace=$ENV{'request.course.id'}) { return ''; } }
772: if (!$domain) { $domain=$ENV{'user.domain'}; }
773: if (!$stuname) { $stuname=$ENV{'user.name'}; }
774: if (!$home) { $home=$ENV{'user.home'}; }
775: my $answer=&reply("restore:$domain:$stuname:$namespace:$symb","$home");
776:
777: my %returnhash=();
778: map {
779: my ($name,$value)=split(/\=/,$_);
780: $returnhash{&unescape($name)}=&unescape($value);
781: } split(/\&/,$answer);
782: my $version;
783: for ($version=1;$version<=$returnhash{'version'};$version++) {
784: map {
785: $returnhash{$_}=$returnhash{$version.':'.$_};
786: } split(/\:/,$returnhash{$version.':keys'});
787: }
788: return %returnhash;
789: }
790:
791: # ---------------------------------------------------------- Course Description
792:
793: sub coursedescription {
794: my $courseid=shift;
795: $courseid=~s/^\///;
796: $courseid=~s/\_/\//g;
797: my ($cdomain,$cnum)=split(/\//,$courseid);
798: my $chome=&homeserver($cnum,$cdomain);
799: if ($chome ne 'no_host') {
800: my %returnhash=&dump('environment',$cdomain,$cnum);
801: if (!exists($returnhash{'con_lost'})) {
802: my $normalid=$cdomain.'_'.$cnum;
803: my %envhash=();
804: $returnhash{'home'}= $chome;
805: $returnhash{'domain'} = $cdomain;
806: $returnhash{'num'} = $cnum;
807: while (my ($name,$value) = each %returnhash) {
808: $envhash{'course.'.$normalid.'.'.$name}=$value;
809: }
810: $returnhash{'url'}='/res/'.declutter($returnhash{'url'});
811: $returnhash{'fn'}=$perlvar{'lonDaemons'}.'/tmp/'.
812: $ENV{'user.name'}.'_'.$cdomain.'_'.$cnum;
813: $envhash{'course.'.$normalid.'.last_cache'}=time;
814: $envhash{'course.'.$normalid.'.home'}=$chome;
815: $envhash{'course.'.$normalid.'.domain'}=$cdomain;
816: $envhash{'course.'.$normalid.'.num'}=$cnum;
817: &appenv(%envhash);
818: return %returnhash;
819: }
820: }
821: return ();
822: }
823:
824: # -------------------------------------------------------- Get user privileges
825:
826: sub rolesinit {
827: my ($domain,$username,$authhost)=@_;
828: my $rolesdump=reply("dump:$domain:$username:roles",$authhost);
829: if (($rolesdump eq 'con_lost') || ($rolesdump eq '')) { return ''; }
830: my %allroles=();
831: my %thesepriv=();
832: my $now=time;
833: my $userroles="user.login.time=$now\n";
834: my $thesestr;
835:
836: if ($rolesdump ne '') {
837: map {
838: if ($_!~/^rolesdef\&/) {
839: my ($area,$role)=split(/=/,$_);
840: $area=~s/\_\w\w$//;
841: my ($trole,$tend,$tstart)=split(/_/,$role);
842: $userroles.='user.role.'.$trole.'.'.$area.'='.
843: $tstart.'.'.$tend."\n";
844: if ($tend!=0) {
845: if ($tend<$now) {
846: $trole='';
847: }
848: }
849: if ($tstart!=0) {
850: if ($tstart>$now) {
851: $trole='';
852: }
853: }
854: if (($area ne '') && ($trole ne '')) {
855: my $spec=$trole.'.'.$area;
856: my ($tdummy,$tdomain,$trest)=split(/\//,$area);
857: if ($trole =~ /^cr\//) {
858: my ($rdummy,$rdomain,$rauthor,$rrole)=split(/\//,$trole);
859: my $homsvr=homeserver($rauthor,$rdomain);
860: if ($hostname{$homsvr} ne '') {
861: my $roledef=
862: reply("get:$rdomain:$rauthor:roles:rolesdef_$rrole",
863: $homsvr);
864: if (($roledef ne 'con_lost') && ($roledef ne '')) {
865: my ($syspriv,$dompriv,$coursepriv)=
866: split(/\_/,unescape($roledef));
867: $allroles{'cm./'}.=':'.$syspriv;
868: $allroles{$spec.'./'}.=':'.$syspriv;
869: if ($tdomain ne '') {
870: $allroles{'cm./'.$tdomain.'/'}.=':'.$dompriv;
871: $allroles{$spec.'./'.$tdomain.'/'}.=':'.$dompriv;
872: if ($trest ne '') {
873: $allroles{'cm.'.$area}.=':'.$coursepriv;
874: $allroles{$spec.'.'.$area}.=':'.$coursepriv;
875: }
876: }
877: }
878: }
879: } else {
880: $allroles{'cm./'}.=':'.$pr{$trole.':s'};
881: $allroles{$spec.'./'}.=':'.$pr{$trole.':s'};
882: if ($tdomain ne '') {
883: $allroles{'cm./'.$tdomain.'/'}.=':'.$pr{$trole.':d'};
884: $allroles{$spec.'./'.$tdomain.'/'}.=':'.$pr{$trole.':d'};
885: if ($trest ne '') {
886: $allroles{'cm.'.$area}.=':'.$pr{$trole.':c'};
887: $allroles{$spec.'.'.$area}.=':'.$pr{$trole.':c'};
888: }
889: }
890: }
891: }
892: }
893: } split(/&/,$rolesdump);
894: my $adv=0;
895: my $author=0;
896: map {
897: %thesepriv=();
898: if ($_!~/^st/) { $adv=1; }
899: if (($_=~/^au/) || ($_=~/^ca/)) { $author=1; }
900: map {
901: if ($_ ne '') {
902: my ($privilege,$restrictions)=split(/&/,$_);
903: if ($restrictions eq '') {
904: $thesepriv{$privilege}='F';
905: } else {
906: if ($thesepriv{$privilege} ne 'F') {
907: $thesepriv{$privilege}.=$restrictions;
908: }
909: }
910: }
911: } split(/:/,$allroles{$_});
912: $thesestr='';
913: map { $thesestr.=':'.$_.'&'.$thesepriv{$_}; } keys %thesepriv;
914: $userroles.='user.priv.'.$_.'='.$thesestr."\n";
915: } keys %allroles;
916: $userroles.='user.adv='.$adv."\n".
917: 'user.author='.$author."\n";
918: $ENV{'user.adv'}=$adv;
919: }
920: return $userroles;
921: }
922:
923: # --------------------------------------------------------------- get interface
924:
925: sub get {
926: my ($namespace,$storearr,$udomain,$uname)=@_;
927: my $items='';
928: map {
929: $items.=escape($_).'&';
930: } @$storearr;
931: $items=~s/\&$//;
932: if (!$udomain) { $udomain=$ENV{'user.domain'}; }
933: if (!$uname) { $uname=$ENV{'user.name'}; }
934: my $uhome=&homeserver($uname,$udomain);
935:
936: my $rep=&reply("get:$udomain:$uname:$namespace:$items",$uhome);
937: my @pairs=split(/\&/,$rep);
938: my %returnhash=();
939: my $i=0;
940: map {
941: $returnhash{$_}=unescape($pairs[$i]);
942: $i++;
943: } @$storearr;
944: return %returnhash;
945: }
946:
947: # --------------------------------------------------------------- del interface
948:
949: sub del {
950: my ($namespace,$storearr,$udomain,$uname)=@_;
951: my $items='';
952: map {
953: $items.=escape($_).'&';
954: } @$storearr;
955: $items=~s/\&$//;
956: if (!$udomain) { $udomain=$ENV{'user.domain'}; }
957: if (!$uname) { $uname=$ENV{'user.name'}; }
958: my $uhome=&homeserver($uname,$udomain);
959:
960: return &reply("del:$udomain:$uname:$namespace:$items",$uhome);
961: }
962:
963: # -------------------------------------------------------------- dump interface
964:
965: sub dump {
966: my ($namespace,$udomain,$uname)=@_;
967: if (!$udomain) { $udomain=$ENV{'user.domain'}; }
968: if (!$uname) { $uname=$ENV{'user.name'}; }
969: my $uhome=&homeserver($uname,$udomain);
970: my $rep=reply("dump:$udomain:$uname:$namespace",$uhome);
971: my @pairs=split(/\&/,$rep);
972: my %returnhash=();
973: map {
974: my ($key,$value)=split(/=/,$_);
975: $returnhash{unescape($key)}=unescape($value);
976: } @pairs;
977: return %returnhash;
978: }
979:
980: # --------------------------------------------------------------- put interface
981:
982: sub put {
983: my ($namespace,$storehash,$udomain,$uname)=@_;
984: if (!$udomain) { $udomain=$ENV{'user.domain'}; }
985: if (!$uname) { $uname=$ENV{'user.name'}; }
986: my $uhome=&homeserver($uname,$udomain);
987: my $items='';
988: map {
989: $items.=&escape($_).'='.&escape($$storehash{$_}).'&';
990: } keys %$storehash;
991: $items=~s/\&$//;
992: return &reply("put:$udomain:$uname:$namespace:$items",$uhome);
993: }
994:
995: # ------------------------------------------------------ critical put interface
996:
997: sub cput {
998: my ($namespace,$storehash,$udomain,$uname)=@_;
999: if (!$udomain) { $udomain=$ENV{'user.domain'}; }
1000: if (!$uname) { $uname=$ENV{'user.name'}; }
1001: my $uhome=&homeserver($uname,$udomain);
1002: my $items='';
1003: map {
1004: $items.=escape($_).'='.escape($$storehash{$_}).'&';
1005: } keys %$storehash;
1006: $items=~s/\&$//;
1007: return &critical("put:$udomain:$uname:$namespace:$items",$uhome);
1008: }
1009:
1010: # -------------------------------------------------------------- eget interface
1011:
1012: sub eget {
1013: my ($namespace,$storearr,$udomain,$uname)=@_;
1014: my $items='';
1015: map {
1016: $items.=escape($_).'&';
1017: } @$storearr;
1018: $items=~s/\&$//;
1019: if (!$udomain) { $udomain=$ENV{'user.domain'}; }
1020: if (!$uname) { $uname=$ENV{'user.name'}; }
1021: my $uhome=&homeserver($uname,$udomain);
1022: my $rep=&reply("eget:$udomain:$uname:$namespace:$items",$uhome);
1023: my @pairs=split(/\&/,$rep);
1024: my %returnhash=();
1025: my $i=0;
1026: map {
1027: $returnhash{$_}=unescape($pairs[$i]);
1028: $i++;
1029: } @$storearr;
1030: return %returnhash;
1031: }
1032:
1033: # ------------------------------------------------- Check for a user privilege
1034:
1035: sub allowed {
1036: my ($priv,$uri)=@_;
1037: $uri=&declutter($uri);
1038:
1039: # Free bre access to adm and meta resources
1040:
1041: if ((($uri=~/^adm\//) || ($uri=~/\.meta$/)) && ($priv eq 'bre')) {
1042: return 'F';
1043: }
1044:
1045: my $thisallowed='';
1046: my $statecond=0;
1047: my $courseprivid='';
1048:
1049: # Course
1050:
1051: if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'}=~/$priv\&([^\:]*)/) {
1052: $thisallowed.=$1;
1053: }
1054:
1055: # Domain
1056:
1057: if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'.(split(/\//,$uri))[0].'/'}
1058: =~/$priv\&([^\:]*)/) {
1059: $thisallowed.=$1;
1060: }
1061:
1062: # Course: uri itself is a course
1063: my $courseuri=$uri;
1064: $courseuri=~s/\_(\d)/\/$1/;
1065: $courseuri=~s/^([^\/])/\/$1/;
1066:
1067: if ($ENV{'user.priv.'.$ENV{'request.role'}.'.'.$courseuri}
1068: =~/$priv\&([^\:]*)/) {
1069: $thisallowed.=$1;
1070: }
1071:
1072: # Full access at system, domain or course-wide level? Exit.
1073:
1074: if ($thisallowed=~/F/) {
1075: return 'F';
1076: }
1077:
1078: # If this is generating or modifying users, exit with special codes
1079:
1080: if (':csu:cdc:ccc:cin:cta:cep:ccr:cst:cad:cli:cau:cdg:'=~/\:$priv\:/) {
1081: return $thisallowed;
1082: }
1083: #
1084: # Gathered so far: system, domain and course wide privileges
1085: #
1086: # Course: See if uri or referer is an individual resource that is part of
1087: # the course
1088:
1089: if ($ENV{'request.course.id'}) {
1090: $courseprivid=$ENV{'request.course.id'};
1091: if ($ENV{'request.course.sec'}) {
1092: $courseprivid.='/'.$ENV{'request.course.sec'};
1093: }
1094: $courseprivid=~s/\_/\//;
1095: my $checkreferer=1;
1096: my @uriparts=split(/\//,$uri);
1097: my $filename=$uriparts[$#uriparts];
1098: my $pathname=$uri;
1099: $pathname=~s/\/$filename$//;
1100: if ($ENV{'acc.res.'.$ENV{'request.course.id'}.'.'.$pathname}=~
1101: /\&$filename\:([\d\|]+)\&/) {
1102: $statecond=$1;
1103: if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'.$courseprivid}
1104: =~/$priv\&([^\:]*)/) {
1105: $thisallowed.=$1;
1106: $checkreferer=0;
1107: }
1108: }
1109:
1110: if (($ENV{'HTTP_REFERER'}) && ($checkreferer)) {
1111: my $refuri=$ENV{'HTTP_REFERER'};
1112: $refuri=~s/^http\:\/\/$ENV{'request.host'}//i;
1113: $refuri=&declutter($refuri);
1114: my @uriparts=split(/\//,$refuri);
1115: my $filename=$uriparts[$#uriparts];
1116: my $pathname=$refuri;
1117: $pathname=~s/\/$filename$//;
1118: my @filenameparts=split(/\./,$uri);
1119: if (&fileembstyle($filenameparts[$#filenameparts]) ne 'ssi') {
1120: if ($ENV{'acc.res.'.$ENV{'request.course.id'}.'.'.$pathname}=~
1121: /\&$filename\:([\d\|]+)\&/) {
1122: my $refstatecond=$1;
1123: if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'.$courseprivid}
1124: =~/$priv\&([^\:]*)/) {
1125: $thisallowed.=$1;
1126: $uri=$refuri;
1127: $statecond=$refstatecond;
1128: }
1129: }
1130: }
1131: }
1132: }
1133:
1134: #
1135: # Gathered now: all privileges that could apply, and condition number
1136: #
1137: #
1138: # Full or no access?
1139: #
1140:
1141: if ($thisallowed=~/F/) {
1142: return 'F';
1143: }
1144:
1145: unless ($thisallowed) {
1146: return '';
1147: }
1148:
1149: # Restrictions exist, deal with them
1150: #
1151: # C:according to course preferences
1152: # R:according to resource settings
1153: # L:unless locked
1154: # X:according to user session state
1155: #
1156:
1157: # Possibly locked functionality, check all courses
1158: # Locks might take effect only after 10 minutes cache expiration for other
1159: # courses, and 2 minutes for current course
1160:
1161: my $envkey;
1162: if ($thisallowed=~/L/) {
1163: foreach $envkey (keys %ENV) {
1164: if ($envkey=~/^user\.role\.(st|ta)\.([^\.]*)/) {
1165: my $courseid=$2;
1166: my $roleid=$1.'.'.$2;
1167: $courseid=~s/^\///;
1168: my $expiretime=600;
1169: if ($ENV{'request.role'} eq $roleid) {
1170: $expiretime=120;
1171: }
1172: my ($cdom,$cnum,$csec)=split(/\//,$courseid);
1173: my $prefix='course.'.$cdom.'_'.$cnum.'.';
1174: if ((time-$ENV{$prefix.'last_cache'})>$expiretime) {
1175: &coursedescription($courseid);
1176: }
1177: if (($ENV{$prefix.'res.'.$uri.'.lock.sections'}=~/\,$csec\,/)
1178: || ($ENV{$prefix.'res.'.$uri.'.lock.sections'} eq 'all')) {
1179: if ($ENV{$prefix.'res.'.$uri.'.lock.expire'}>time) {
1180: &log($ENV{'user.domain'},$ENV{'user.name'},
1181: $ENV{'user.host'},
1182: 'Locked by res: '.$priv.' for '.$uri.' due to '.
1183: $cdom.'/'.$cnum.'/'.$csec.' expire '.
1184: $ENV{$prefix.'priv.'.$priv.'.lock.expire'});
1185: return '';
1186: }
1187: }
1188: if (($ENV{$prefix.'priv.'.$priv.'.lock.sections'}=~/\,$csec\,/)
1189: || ($ENV{$prefix.'priv.'.$priv.'.lock.sections'} eq 'all')) {
1190: if ($ENV{'priv.'.$priv.'.lock.expire'}>time) {
1191: &log($ENV{'user.domain'},$ENV{'user.name'},
1192: $ENV{'user.host'},
1193: 'Locked by priv: '.$priv.' for '.$uri.' due to '.
1194: $cdom.'/'.$cnum.'/'.$csec.' expire '.
1195: $ENV{$prefix.'priv.'.$priv.'.lock.expire'});
1196: return '';
1197: }
1198: }
1199: }
1200: }
1201: }
1202:
1203: #
1204: # Rest of the restrictions depend on selected course
1205: #
1206:
1207: unless ($ENV{'request.course.id'}) {
1208: return '1';
1209: }
1210:
1211: #
1212: # Now user is definitely in a course
1213: #
1214:
1215:
1216: # Course preferences
1217:
1218: if ($thisallowed=~/C/) {
1219: my $rolecode=(split(/\./,$ENV{'request.role'}))[0];
1220: if ($ENV{'course.'.$ENV{'request.course.id'}.'.'.$priv.'.roles.denied'}
1221: =~/\,$rolecode\,/) {
1222: &log($ENV{'user.domain'},$ENV{'user.name'},$ENV{'user.host'},
1223: 'Denied by role: '.$priv.' for '.$uri.' as '.$rolecode.' in '.
1224: $ENV{'request.course.id'});
1225: return '';
1226: }
1227: }
1228:
1229: # Resource preferences
1230:
1231: if ($thisallowed=~/R/) {
1232: my $rolecode=(split(/\./,$ENV{'request.role'}))[0];
1233: my $filename=$perlvar{'lonDocRoot'}.'/res/'.$uri.'.meta';
1234: if (-e $filename) {
1235: my @content;
1236: {
1237: my $fh=Apache::File->new($filename);
1238: @content=<$fh>;
1239: }
1240: if (join('',@content)=~
1241: /\<roledeny[^\>]*\>[^\<]*$rolecode[^\<]*\<\/roledeny\>/) {
1242: &log($ENV{'user.domain'},$ENV{'user.name'},$ENV{'user.host'},
1243: 'Denied by role: '.$priv.' for '.$uri.' as '.$rolecode);
1244: return '';
1245:
1246: }
1247: }
1248: }
1249:
1250: # Restricted by state?
1251:
1252: if ($thisallowed=~/X/) {
1253: if (&condval($statecond)) {
1254: return '2';
1255: } else {
1256: return '';
1257: }
1258: }
1259:
1260: return 'F';
1261: }
1262:
1263: # ----------------------------------------------------------------- Define Role
1264:
1265: sub definerole {
1266: if (allowed('mcr','/')) {
1267: my ($rolename,$sysrole,$domrole,$courole)=@_;
1268: map {
1269: my ($crole,$cqual)=split(/\&/,$_);
1270: if ($pr{'cr:s'}!~/$crole/) { return "refused:s:$crole"; }
1271: if ($pr{'cr:s'}=~/$crole\&/) {
1272: if ($pr{'cr:s'}!~/$crole\&\w*$cqual/) {
1273: return "refused:s:$crole&$cqual";
1274: }
1275: }
1276: } split('/',$sysrole);
1277: map {
1278: my ($crole,$cqual)=split(/\&/,$_);
1279: if ($pr{'cr:d'}!~/$crole/) { return "refused:d:$crole"; }
1280: if ($pr{'cr:d'}=~/$crole\&/) {
1281: if ($pr{'cr:d'}!~/$crole\&\w*$cqual/) {
1282: return "refused:d:$crole&$cqual";
1283: }
1284: }
1285: } split('/',$domrole);
1286: map {
1287: my ($crole,$cqual)=split(/\&/,$_);
1288: if ($pr{'cr:c'}!~/$crole/) { return "refused:c:$crole"; }
1289: if ($pr{'cr:c'}=~/$crole\&/) {
1290: if ($pr{'cr:c'}!~/$crole\&\w*$cqual/) {
1291: return "refused:c:$crole&$cqual";
1292: }
1293: }
1294: } split('/',$courole);
1295: my $command="encrypt:rolesput:$ENV{'user.domain'}:$ENV{'user.name'}:".
1296: "$ENV{'user.domain'}:$ENV{'user.name'}:".
1297: "rolesdef_$rolename=".
1298: escape($sysrole.'_'.$domrole.'_'.$courole);
1299: return reply($command,$ENV{'user.home'});
1300: } else {
1301: return 'refused';
1302: }
1303: }
1304:
1305: # ---------------- Make a metadata query against the network of library servers
1306:
1307: sub metadata_query {
1308: my ($query,$custom,$customshow)=@_;
1309: # need to put in a library server loop here and return a hash
1310: my %rhash;
1311: for my $server (keys %libserv) {
1312: unless ($custom or $customshow) {
1313: my $reply=&reply("querysend:".&escape($query),$server);
1314: $rhash{$server}=$reply;
1315: }
1316: else {
1317: my $reply=&reply("querysend:".&escape($query).':'.
1318: &escape($custom).':'.&escape($customshow),
1319: $server);
1320: $rhash{$server}=$reply;
1321: }
1322: }
1323: return \%rhash;
1324: }
1325:
1326: # ------------------------------------------------------------------ Plain Text
1327:
1328: sub plaintext {
1329: my $short=shift;
1330: return $prp{$short};
1331: }
1332:
1333: # ------------------------------------------------------------------ Plain Text
1334:
1335: sub fileembstyle {
1336: my $ending=shift;
1337: return $fe{$ending};
1338: }
1339:
1340: # ------------------------------------------------------------ Description Text
1341:
1342: sub filedescription {
1343: my $ending=shift;
1344: return $fd{$ending};
1345: }
1346:
1347: # ----------------------------------------------------------------- Assign Role
1348:
1349: sub assignrole {
1350: my ($udom,$uname,$url,$role,$end,$start)=@_;
1351: my $mrole;
1352: if ($role =~ /^cr\//) {
1353: unless (&allowed('ccr',$url)) {
1354: &logthis('Refused custom assignrole: '.
1355: $udom.' '.$uname.' '.$url.' '.$role.' '.$end.' '.$start.' by '.
1356: $ENV{'user.name'}.' at '.$ENV{'user.domain'});
1357: return 'refused';
1358: }
1359: $mrole='cr';
1360: } else {
1361: my $cwosec=$url;
1362: $cwosec=~s/^\/(\w+)\/(\w+)\/.*/$1\/$2/;
1363: unless (&allowed('c'.$role,$cwosec)) {
1364: &logthis('Refused assignrole: '.
1365: $udom.' '.$uname.' '.$url.' '.$role.' '.$end.' '.$start.' by '.
1366: $ENV{'user.name'}.' at '.$ENV{'user.domain'});
1367: return 'refused';
1368: }
1369: $mrole=$role;
1370: }
1371: my $command="encrypt:rolesput:$ENV{'user.domain'}:$ENV{'user.name'}:".
1372: "$udom:$uname:$url".'_'."$mrole=$role";
1373: if ($end) { $command.='_'.$end; }
1374: if ($start) {
1375: if ($end) {
1376: $command.='_'.$start;
1377: } else {
1378: $command.='_0_'.$start;
1379: }
1380: }
1381: return &reply($command,&homeserver($uname,$udom));
1382: }
1383:
1384: # --------------------------------------------------------------- Modify a user
1385:
1386:
1387: sub modifyuser {
1388: my ($udom,$uname,$uid,$umode,$upass,$first,$middle,$last,$gene)=@_;
1389: &logthis('Call to modify user '.$udom.', '.$uname.', '.$uid.', '.
1390: $umode.', '.$first.', '.$middle.', '.
1391: $last.', '.$gene.' by '.
1392: $ENV{'user.name'}.' at '.$ENV{'user.domain'});
1393: my $uhome=&homeserver($uname,$udom);
1394: # ----------------------------------------------------------------- Create User
1395: if (($uhome eq 'no_host') && ($umode) && ($upass)) {
1396: my $unhome='';
1397: if ($ENV{'course.'.$ENV{'request.course.id'}.'.domain'} eq $udom) {
1398: $unhome=$ENV{'course.'.$ENV{'request.course.id'}.'.home'};
1399: } else {
1400: my $tryserver;
1401: my $loadm=10000000;
1402: foreach $tryserver (keys %libserv) {
1403: if ($hostdom{$tryserver} eq $udom) {
1404: my $answer=reply('load',$tryserver);
1405: if (($answer=~/\d+/) && ($answer<$loadm)) {
1406: $loadm=$answer;
1407: $unhome=$tryserver;
1408: }
1409: }
1410: }
1411: }
1412: if (($unhome eq '') || ($unhome eq 'no_host')) {
1413: return 'error: find home';
1414: }
1415: my $reply=&reply('encrypt:makeuser:'.$udom.':'.$uname.':'.$umode.':'.
1416: &escape($upass),$unhome);
1417: unless ($reply eq 'ok') {
1418: return 'error: '.$reply;
1419: }
1420: $uhome=&homeserver($uname,$udom);
1421: if (($uhome eq '') || ($uhome eq 'no_host') || ($uhome ne $unhome)) {
1422: return 'error: verify home';
1423: }
1424: }
1425: # ---------------------------------------------------------------------- Add ID
1426: if ($uid) {
1427: $uid=~tr/A-Z/a-z/;
1428: my %uidhash=&idrget($udom,$uname);
1429: if (($uidhash{$uname}) && ($uidhash{$uname}!~/error\:/)) {
1430: unless ($uid eq $uidhash{$uname}) {
1431: return 'error: mismatch '.$uidhash{$uname}.' versus '.$uid;
1432: }
1433: } else {
1434: &idput($udom,($uname => $uid));
1435: }
1436: }
1437: # -------------------------------------------------------------- Add names, etc
1438: my %names=&get('environment',
1439: ['firstname','middlename','lastname','generation'],
1440: $udom,$uname);
1441: if ($first) { $names{'firstname'} = $first; }
1442: if ($middle) { $names{'middlename'} = $middle; }
1443: if ($last) { $names{'lastname'} = $last; }
1444: if ($gene) { $names{'generation'} = $gene; }
1445: my $reply = &put('environment', \%names, $udom,$uname);
1446: if ($reply ne 'ok') { return 'error: '.$reply; }
1447: &logthis('Success modifying user '.$udom.', '.$uname.', '.$uid.', '.
1448: $umode.', '.$first.', '.$middle.', '.
1449: $last.', '.$gene.' by '.
1450: $ENV{'user.name'}.' at '.$ENV{'user.domain'});
1451: return 'ok';
1452: }
1453:
1454: # -------------------------------------------------------------- Modify student
1455:
1456: sub modifystudent {
1457: my ($udom,$uname,$uid,$umode,$upass,$first,$middle,$last,$gene,$usec,
1458: $end,$start)=@_;
1459: my $cid='';
1460: unless ($cid=$ENV{'request.course.id'}) {
1461: return 'not_in_class';
1462: }
1463: # --------------------------------------------------------------- Make the user
1464: my $reply=&modifyuser
1465: ($udom,$uname,$uid,$umode,$upass,$first,$middle,$last,$gene);
1466: unless ($reply eq 'ok') { return $reply; }
1467: my $uhome=&homeserver($uname,$udom);
1468: if (($uhome eq '') || ($uhome eq 'no_host')) {
1469: return 'error: no such user';
1470: }
1471: # -------------------------------------------------- Add student to course list
1472: my $reply=critical('put:'.$ENV{'course.'.$cid.'.domain'}.':'.
1473: $ENV{'course.'.$cid.'.num'}.':classlist:'.
1474: &escape($uname.':'.$udom).'='.
1475: &escape($end.':'.$start),
1476: $ENV{'course.'.$cid.'.home'});
1477: unless (($reply eq 'ok') || ($reply eq 'delayed')) {
1478: return 'error: '.$reply;
1479: }
1480: # ---------------------------------------------------- Add student role to user
1481: my $uurl='/'.$cid;
1482: $uurl=~s/\_/\//g;
1483: if ($usec) {
1484: $uurl.='/'.$usec;
1485: }
1486: return &assignrole($udom,$uname,$uurl,'st',$end,$start);
1487: }
1488:
1489: # ------------------------------------------------- Write to course preferences
1490:
1491: sub writecoursepref {
1492: my ($courseid,%prefs)=@_;
1493: $courseid=~s/^\///;
1494: $courseid=~s/\_/\//g;
1495: my ($cdomain,$cnum)=split(/\//,$courseid);
1496: my $chome=homeserver($cnum,$cdomain);
1497: if (($chome eq '') || ($chome eq 'no_host')) {
1498: return 'error: no such course';
1499: }
1500: my $cstring='';
1501: map {
1502: $cstring.=escape($_).'='.escape($prefs{$_}).'&';
1503: } keys %prefs;
1504: $cstring=~s/\&$//;
1505: return reply('put:'.$cdomain.':'.$cnum.':environment:'.$cstring,$chome);
1506: }
1507:
1508: # ---------------------------------------------------------- Make/modify course
1509:
1510: sub createcourse {
1511: my ($udom,$description,$url)=@_;
1512: $url=&declutter($url);
1513: my $cid='';
1514: unless (&allowed('ccc',$ENV{'user.domain'})) {
1515: return 'refused';
1516: }
1517: unless ($udom eq $ENV{'user.domain'}) {
1518: return 'refused';
1519: }
1520: # ------------------------------------------------------------------- Create ID
1521: my $uname=substr($$.time,0,5).unpack("H8",pack("I32",time)).
1522: unpack("H2",pack("I32",int(rand(255)))).$perlvar{'lonHostID'};
1523: # ----------------------------------------------- Make sure that does not exist
1524: my $uhome=&homeserver($uname,$udom);
1525: unless (($uhome eq '') || ($uhome eq 'no_host')) {
1526: $uname=substr($$.time,0,5).unpack("H8",pack("I32",time)).
1527: unpack("H2",pack("I32",int(rand(255)))).$perlvar{'lonHostID'};
1528: $uhome=&homeserver($uname,$udom);
1529: unless (($uhome eq '') || ($uhome eq 'no_host')) {
1530: return 'error: unable to generate unique course-ID';
1531: }
1532: }
1533: # ------------------------------------------------------------- Make the course
1534: my $reply=&reply('encrypt:makeuser:'.$udom.':'.$uname.':none::',
1535: $ENV{'user.home'});
1536: unless ($reply eq 'ok') { return 'error: '.$reply; }
1537: my $uhome=&homeserver($uname,$udom);
1538: if (($uhome eq '') || ($uhome eq 'no_host')) {
1539: return 'error: no such course';
1540: }
1541: &writecoursepref($udom.'_'.$uname,
1542: ('description' => $description,
1543: 'url' => $url));
1544: return '/'.$udom.'/'.$uname;
1545: }
1546:
1547: # ---------------------------------------------------------- Assign Custom Role
1548:
1549: sub assigncustomrole {
1550: my ($udom,$uname,$url,$rdom,$rnam,$rolename,$end,$start)=@_;
1551: return &assignrole($udom,$uname,$url,'cr/'.$rdom.'/'.$rnam.'/'.$rolename,
1552: $end,$start);
1553: }
1554:
1555: # ----------------------------------------------------------------- Revoke Role
1556:
1557: sub revokerole {
1558: my ($udom,$uname,$url,$role)=@_;
1559: my $now=time;
1560: return &assignrole($udom,$uname,$url,$role,$now);
1561: }
1562:
1563: # ---------------------------------------------------------- Revoke Custom Role
1564:
1565: sub revokecustomrole {
1566: my ($udom,$uname,$url,$rdom,$rnam,$rolename)=@_;
1567: my $now=time;
1568: return &assigncustomrole($udom,$uname,$url,$rdom,$rnam,$rolename,$now);
1569: }
1570:
1571: # ------------------------------------------------------------ Directory lister
1572:
1573: sub dirlist {
1574: my $uri=shift;
1575: $uri=~s/^\///;
1576: $uri=~s/\/$//;
1577: my ($res,$udom,$uname,@rest)=split(/\//,$uri);
1578: if ($udom) {
1579: if ($uname) {
1580: my $listing=reply('ls:'.$perlvar{'lonDocRoot'}.'/'.$uri,
1581: homeserver($uname,$udom));
1582: return split(/:/,$listing);
1583: } else {
1584: my $tryserver;
1585: my %allusers=();
1586: foreach $tryserver (keys %libserv) {
1587: if ($hostdom{$tryserver} eq $udom) {
1588: my $listing=reply('ls:'.$perlvar{'lonDocRoot'}.'/res/'.$udom,
1589: $tryserver);
1590: if (($listing ne 'no_such_dir') && ($listing ne 'empty')
1591: && ($listing ne 'con_lost')) {
1592: map {
1593: my ($entry,@stat)=split(/&/,$_);
1594: $allusers{$entry}=1;
1595: } split(/:/,$listing);
1596: }
1597: }
1598: }
1599: my $alluserstr='';
1600: map {
1601: $alluserstr.=$_.'&user:';
1602: } sort keys %allusers;
1603: $alluserstr=~s/:$//;
1604: return split(/:/,$alluserstr);
1605: }
1606: } else {
1607: my $tryserver;
1608: my %alldom=();
1609: foreach $tryserver (keys %libserv) {
1610: $alldom{$hostdom{$tryserver}}=1;
1611: }
1612: my $alldomstr='';
1613: map {
1614: $alldomstr.=$perlvar{'lonDocRoot'}.'/res/'.$_.'&domain:';
1615: } sort keys %alldom;
1616: $alldomstr=~s/:$//;
1617: return split(/:/,$alldomstr);
1618: }
1619: }
1620:
1621: # -------------------------------------------------------- Value of a Condition
1622:
1623: sub directcondval {
1624: my $number=shift;
1625: if ($ENV{'user.state.'.$ENV{'request.course.id'}}) {
1626: return substr($ENV{'user.state.'.$ENV{'request.course.id'}},$number,1);
1627: } else {
1628: return 2;
1629: }
1630: }
1631:
1632: sub condval {
1633: my $condidx=shift;
1634: my $result=0;
1635: my $allpathcond='';
1636: map {
1637: if (defined($ENV{'acc.cond.'.$ENV{'request.course.id'}.'.'.$_})) {
1638: $allpathcond.=
1639: '('.$ENV{'acc.cond.'.$ENV{'request.course.id'}.'.'.$_}.')|';
1640: }
1641: } split(/\|/,$condidx);
1642: $allpathcond=~s/\|$//;
1643: if ($ENV{'request.course.id'}) {
1644: if ($allpathcond) {
1645: my $operand='|';
1646: my @stack;
1647: map {
1648: if ($_ eq '(') {
1649: push @stack,($operand,$result)
1650: } elsif ($_ eq ')') {
1651: my $before=pop @stack;
1652: if (pop @stack eq '&') {
1653: $result=$result>$before?$before:$result;
1654: } else {
1655: $result=$result>$before?$result:$before;
1656: }
1657: } elsif (($_ eq '&') || ($_ eq '|')) {
1658: $operand=$_;
1659: } else {
1660: my $new=directcondval($_);
1661: if ($operand eq '&') {
1662: $result=$result>$new?$new:$result;
1663: } else {
1664: $result=$result>$new?$result:$new;
1665: }
1666: }
1667: } ($allpathcond=~/(\d+|\(|\)|\&|\|)/g);
1668: }
1669: }
1670: return $result;
1671: }
1672:
1673: # --------------------------------------------------------- Value of a Variable
1674:
1675: sub EXT {
1676: my $varname=shift;
1677: unless ($varname) { return ''; }
1678: my ($realm,$space,$qualifier,@therest)=split(/\./,$varname);
1679: my $rest;
1680: if ($therest[0]) {
1681: $rest=join('.',@therest);
1682: } else {
1683: $rest='';
1684: }
1685: my $qualifierrest=$qualifier;
1686: if ($rest) { $qualifierrest.='.'.$rest; }
1687: my $spacequalifierrest=$space;
1688: if ($qualifierrest) { $spacequalifierrest.='.'.$qualifierrest; }
1689: if ($realm eq 'user') {
1690: # --------------------------------------------------------------- user.resource
1691: if ($space eq 'resource') {
1692: my %restored=&restore();
1693: return $restored{$qualifierrest};
1694: # ----------------------------------------------------------------- user.access
1695: } elsif ($space eq 'access') {
1696: return &allowed($qualifier,$rest);
1697: # ------------------------------------------ user.preferences, user.environment
1698: } elsif (($space eq 'preferences') || ($space eq 'environment')) {
1699: return $ENV{join('.',('environment',$qualifierrest))};
1700: # ----------------------------------------------------------------- user.course
1701: } elsif ($space eq 'course') {
1702: return $ENV{join('.',('request.course',$qualifier))};
1703: # ------------------------------------------------------------------- user.role
1704: } elsif ($space eq 'role') {
1705: my ($role,$where)=split(/\./,$ENV{'request.role'});
1706: if ($qualifier eq 'value') {
1707: return $role;
1708: } elsif ($qualifier eq 'extent') {
1709: return $where;
1710: }
1711: # ----------------------------------------------------------------- user.domain
1712: } elsif ($space eq 'domain') {
1713: return $ENV{'user.domain'};
1714: # ------------------------------------------------------------------- user.name
1715: } elsif ($space eq 'name') {
1716: return $ENV{'user.name'};
1717: # ---------------------------------------------------- Any other user namespace
1718: } else {
1719: my $item=($rest)?$qualifier.'.'.$rest:$qualifier;
1720: my %reply=&get($space,[$item]);
1721: return $reply{$item};
1722: }
1723: } elsif ($realm eq 'request') {
1724: # ------------------------------------------------------------- request.browser
1725: if ($space eq 'browser') {
1726: return $ENV{'browser.'.$qualifier};
1727: # ------------------------------------------------------------ request.filename
1728: } else {
1729: return $ENV{'request.'.$spacequalifierrest};
1730: }
1731: } elsif ($realm eq 'course') {
1732: # ---------------------------------------------------------- course.description
1733: return $ENV{'course.'.$ENV{'request.course.id'}.'.'.
1734: $spacequalifierrest};
1735: } elsif ($realm eq 'resource') {
1736: if ($ENV{'request.course.id'}) {
1737: # ----------------------------------------------------- Cascading lookup scheme
1738: my $symbp=&symbread();
1739: my $mapp=(split(/\_\_\_/,$symbp))[0];
1740:
1741: my $symbparm=$symbp.'.'.$spacequalifierrest;
1742: my $mapparm=$mapp.'___(all).'.$spacequalifierrest;
1743:
1744: my $seclevel=
1745: $ENV{'request.course.id'}.'.['.
1746: $ENV{'request.course.sec'}.'].'.$spacequalifierrest;
1747: my $seclevelr=
1748: $ENV{'request.course.id'}.'.['.
1749: $ENV{'request.course.sec'}.'].'.$symbparm;
1750: my $seclevelm=
1751: $ENV{'request.course.id'}.'.['.
1752: $ENV{'request.course.sec'}.'].'.$mapparm;
1753:
1754: my $courselevel=
1755: $ENV{'request.course.id'}.'.'.$spacequalifierrest;
1756: my $courselevelr=
1757: $ENV{'request.course.id'}.'.'.$symbparm;
1758: my $courselevelm=
1759: $ENV{'request.course.id'}.'.'.$mapparm;
1760:
1761: # ----------------------------------------------------------- first, check user
1762: my %resourcedata=get('resourcedata',
1763: [$courselevelr,$courselevelm,$courselevel]);
1764: if (($resourcedata{$courselevelr}!~/^error\:/) &&
1765: ($resourcedata{$courselevelr}!~/^con_lost/)) {
1766:
1767: if ($resourcedata{$courselevelr}) {
1768: return $resourcedata{$courselevelr}; }
1769: if ($resourcedata{$courselevelm}) {
1770: return $resourcedata{$courselevelm}; }
1771: if ($resourcedata{$courselevel}) { return $resourcedata{$courselevel}; }
1772:
1773: } else {
1774: if ($resourcedata{$courselevelr}!~/No such file/) {
1775: &logthis("<font color=blue>WARNING:".
1776: " Trying to get resource data for ".$ENV{'user.name'}." at "
1777: .$ENV{'user.domain'}.": ".$resourcedata{$courselevelr}.
1778: "</font>");
1779: }
1780: }
1781:
1782: # -------------------------------------------------------- second, check course
1783:
1784: my $reply=&reply('get:'.
1785: $ENV{'course.'.$ENV{'request.course.id'}.'.domain'}.':'.
1786: $ENV{'course.'.$ENV{'request.course.id'}.'.num'}.
1787: ':resourcedata:'.
1788: &escape($seclevelr).'&'.&escape($seclevelm).'&'.&escape($seclevel).'&'.
1789: &escape($courselevelr).'&'.&escape($courselevelm).'&'.&escape($courselevel),
1790: $ENV{'course.'.$ENV{'request.course.id'}.'.home'});
1791: if ($reply!~/^error\:/) {
1792: map {
1793: if ($_) { return &unescape($_); }
1794: } split(/\&/,$reply);
1795: }
1796: if (($reply=~/^con_lost/) || ($reply=~/^error\:/)) {
1797: &logthis("<font color=blue>WARNING:".
1798: " Getting ".$reply." asking for ".$varname." for ".
1799: $ENV{'course.'.$ENV{'request.course.id'}.'.num'}.
1800: ' at '.
1801: $ENV{'course.'.$ENV{'request.course.id'}.'.domain'}.
1802: ' from '.
1803: $ENV{'course.'.$ENV{'request.course.id'}.'.home'}.
1804: "</font>");
1805: }
1806: # ------------------------------------------------------ third, check map parms
1807: my %parmhash=();
1808: my $thisparm='';
1809: if (tie(%parmhash,'GDBM_File',
1810: $ENV{'request.course.fn'}.'_parms.db',&GDBM_READER,0640)) {
1811: $thisparm=$parmhash{$symbparm};
1812: untie(%parmhash);
1813: }
1814: if ($thisparm) { return $thisparm; }
1815: }
1816:
1817: # --------------------------------------------- last, look in resource metadata
1818:
1819: $spacequalifierrest=~s/\./\_/;
1820: my $metadata=&metadata($ENV{'request.filename'},$spacequalifierrest);
1821: if ($metadata) { return $metadata; }
1822: $metadata=&metadata($ENV{'request.filename'},
1823: 'parameter_'.$spacequalifierrest);
1824: if ($metadata) { return $metadata; }
1825:
1826: # ---------------------------------------------------- Any other user namespace
1827: } elsif ($realm eq 'environment') {
1828: # ----------------------------------------------------------------- environment
1829: return $ENV{'environment.'.$spacequalifierrest};
1830: } elsif ($realm eq 'system') {
1831: # ----------------------------------------------------------------- system.time
1832: if ($space eq 'time') {
1833: return time;
1834: }
1835: }
1836: return '';
1837: }
1838:
1839: # ---------------------------------------------------------------- Get metadata
1840:
1841: sub metadata {
1842: my ($uri,$what)=@_;
1843:
1844: $uri=&declutter($uri);
1845: my $filename=$uri;
1846: $uri=~s/\.meta$//;
1847: unless ($metacache{$uri.':keys'}) {
1848: unless ($filename=~/\.meta$/) { $filename.='.meta'; }
1849: my $metastring=&getfile($perlvar{'lonDocRoot'}.'/res/'.$filename);
1850: my $parser=HTML::TokeParser->new(\$metastring);
1851: my $token;
1852: while ($token=$parser->get_token) {
1853: if ($token->[0] eq 'S') {
1854: my $entry=$token->[1];
1855: my $unikey=$entry;
1856: if (defined($token->[2]->{'part'})) {
1857: $unikey.='_'.$token->[2]->{'part'};
1858: }
1859: if (defined($token->[2]->{'name'})) {
1860: $unikey.='_'.$token->[2]->{'name'};
1861: }
1862: if ($metacache{$uri.':keys'}) {
1863: $metacache{$uri.':keys'}.=','.$unikey;
1864: } else {
1865: $metacache{$uri.':keys'}=$unikey;
1866: }
1867: map {
1868: $metacache{$uri.':'.$unikey.'.'.$_}=$token->[2]->{$_};
1869: } @{$token->[3]};
1870: unless (
1871: $metacache{$uri.':'.$unikey}=$parser->get_text('/'.$entry)
1872: ) { $metacache{$uri.':'.$unikey}=
1873: $metacache{$uri.':'.$unikey.'.default'};
1874: }
1875: }
1876: }
1877: }
1878: return $metacache{$uri.':'.$what};
1879: }
1880:
1881: # ------------------------------------------------- Update symbolic store links
1882:
1883: sub symblist {
1884: my ($mapname,%newhash)=@_;
1885: $mapname=declutter($mapname);
1886: my %hash;
1887: if (($ENV{'request.course.fn'}) && (%newhash)) {
1888: if (tie(%hash,'GDBM_File',$ENV{'request.course.fn'}.'_symb.db',
1889: &GDBM_WRCREAT,0640)) {
1890: map {
1891: $hash{declutter($_)}=$mapname.'___'.$newhash{$_};
1892: } keys %newhash;
1893: if (untie(%hash)) {
1894: return 'ok';
1895: }
1896: }
1897: }
1898: return 'error';
1899: }
1900:
1901: # ------------------------------------------------------ Return symb list entry
1902:
1903: sub symbread {
1904: my $thisfn=shift;
1905: unless ($thisfn) {
1906: $thisfn=$ENV{'request.filename'};
1907: }
1908: $thisfn=declutter($thisfn);
1909: my %hash;
1910: my %bighash;
1911: my $syval='';
1912: if (($ENV{'request.course.fn'}) && ($thisfn)) {
1913: if (tie(%hash,'GDBM_File',$ENV{'request.course.fn'}.'_symb.db',
1914: &GDBM_READER,0640)) {
1915: $syval=$hash{$thisfn};
1916: untie(%hash);
1917: }
1918: # ---------------------------------------------------------- There was an entry
1919: if ($syval) {
1920: unless ($syval=~/\_\d+$/) {
1921: unless ($ENV{'form.request.prefix'}=~/\.(\d+)\_$/) {
1922: &appenv('request.ambiguous' => $thisfn);
1923: return '';
1924: }
1925: $syval.=$1;
1926: }
1927: } else {
1928: # ------------------------------------------------------- Was not in symb table
1929: if (tie(%bighash,'GDBM_File',$ENV{'request.course.fn'}.'.db',
1930: &GDBM_READER,0640)) {
1931: # ---------------------------------------------- Get ID(s) for current resource
1932: my $ids=$bighash{'ids_/res/'.$thisfn};
1933: unless ($ids) {
1934: $ids=$bighash{'ids_/'.$thisfn};
1935: }
1936: if ($ids) {
1937: # ------------------------------------------------------------------- Has ID(s)
1938: my @possibilities=split(/\,/,$ids);
1939: if ($#possibilities==0) {
1940: # ----------------------------------------------- There is only one possibility
1941: my ($mapid,$resid)=split(/\./,$ids);
1942: $syval=declutter($bighash{'map_id_'.$mapid}).'___'.$resid;
1943: } else {
1944: # ------------------------------------------ There is more than one possibility
1945: my $realpossible=0;
1946: map {
1947: my $file=$bighash{'src_'.$_};
1948: if (&allowed('bre',$file)) {
1949: my ($mapid,$resid)=split(/\./,$_);
1950: if ($bighash{'map_type_'.$mapid} ne 'page') {
1951: $realpossible++;
1952: $syval=declutter($bighash{'map_id_'.$mapid}).
1953: '___'.$resid;
1954: }
1955: }
1956: } @possibilities;
1957: if ($realpossible!=1) { $syval=''; }
1958: }
1959: }
1960: untie(%bighash)
1961: }
1962: }
1963: if ($syval) {
1964: return $syval.'___'.$thisfn;
1965: }
1966: }
1967: &appenv('request.ambiguous' => $thisfn);
1968: return '';
1969: }
1970:
1971: # ---------------------------------------------------------- Return random seed
1972:
1973: sub numval {
1974: my $txt=shift;
1975: $txt=~tr/A-J/0-9/;
1976: $txt=~tr/a-j/0-9/;
1977: $txt=~tr/K-T/0-9/;
1978: $txt=~tr/k-t/0-9/;
1979: $txt=~tr/U-Z/0-5/;
1980: $txt=~tr/u-z/0-5/;
1981: $txt=~s/\D//g;
1982: return int($txt);
1983: }
1984:
1985: sub rndseed {
1986: my $symb;
1987: unless ($symb=&symbread()) { return time; }
1988: {
1989: use integer;
1990: my $symbchck=unpack("%32C*",$symb) << 27;
1991: my $symbseed=numval($symb) << 22;
1992: my $namechck=unpack("%32C*",$ENV{'user.name'}) << 17;
1993: my $nameseed=numval($ENV{'user.name'}) << 12;
1994: my $domainseed=unpack("%32C*",$ENV{'user.domain'}) << 7;
1995: my $courseseed=unpack("%32C*",$ENV{'request.course.id'});
1996: my $num=$symbseed+$nameseed+$domainseed+$courseseed+$namechck+$symbchck;
1997: #uncommenting these lines can break things!
1998: #&Apache::lonxml::debug("$symbseed:$nameseed;$domainseed|$courseseed;$namechck:$symbchck");
1999: #&Apache::lonxml::debug("rndseed :$num:$symb");
2000: return $num;
2001: }
2002: }
2003:
2004: sub ireceipt {
2005: my ($funame,$fudom,$fucourseid,$fusymb)=@_;
2006: my $cuname=unpack("%32C*",$funame);
2007: my $cudom=unpack("%32C*",$fudom);
2008: my $cucourseid=unpack("%32C*",$fucourseid);
2009: my $cusymb=unpack("%32C*",$fusymb);
2010: my $cunique=unpack("%32C*",$perlvar{'lonReceipt'});
2011: return unpack("%32C*",$perlvar{'lonHostID'}).'-'.
2012: ($cunique%$cuname+
2013: $cunique%$cudom+
2014: $cusymb%$cuname+
2015: $cusymb%$cudom+
2016: $cucourseid%$cuname+
2017: $cucourseid%$cudom);
2018: }
2019:
2020: sub receipt {
2021: return &ireceipt($ENV{'user.name'},$ENV{'user.domain'},
2022: $ENV{'request.course.id'},&symbread());
2023: }
2024:
2025: # ------------------------------------------------------------ Serves up a file
2026: # returns either the contents of the file or a -1
2027: sub getfile {
2028: my $file=shift;
2029: &repcopy($file);
2030: if (! -e $file ) { return -1; };
2031: my $fh=Apache::File->new($file);
2032: my $a='';
2033: while (<$fh>) { $a .=$_; }
2034: return $a
2035: }
2036:
2037: sub filelocation {
2038: my ($dir,$file) = @_;
2039: my $location;
2040: $file=~ s/^\s*(\S+)\s*$/$1/; ## strip off leading and trailing spaces
2041: if ($file=~m:^/~:) { # is a contruction space reference
2042: $location = $file;
2043: $location =~ s:/~(.*?)/(.*):/home/$1/public_html/$2:;
2044: } else {
2045: $file=~s/^$perlvar{'lonDocRoot'}//;
2046: $file=~s:^/*res::;
2047: if ( !( $file =~ m:^/:) ) {
2048: $location = $dir. '/'.$file;
2049: } else {
2050: $location = '/home/httpd/html/res'.$file;
2051: }
2052: }
2053: $location=~s://+:/:g; # remove duplicate /
2054: while ($location=~m:/\.\./:) {$location=~ s:/[^/]+/\.\./:/:g;} #remove dir/..
2055: return $location;
2056: }
2057:
2058: sub hreflocation {
2059: my ($dir,$file)=@_;
2060: unless (($_=~/^http:\/\//i) || ($_=~/^\//)) {
2061: my $finalpath=filelocation($dir,$file);
2062: $finalpath=~s/^\/home\/httpd\/html//;
2063: return $finalpath;
2064: } else {
2065: return $file;
2066: }
2067: }
2068:
2069: # ------------------------------------------------------------- Declutters URLs
2070:
2071: sub declutter {
2072: my $thisfn=shift;
2073: $thisfn=~s/^$perlvar{'lonDocRoot'}//;
2074: $thisfn=~s/^\///;
2075: $thisfn=~s/^res\///;
2076: return $thisfn;
2077: }
2078:
2079: # -------------------------------------------------------- Escape Special Chars
2080:
2081: sub escape {
2082: my $str=shift;
2083: $str =~ s/(\W)/"%".unpack('H2',$1)/eg;
2084: return $str;
2085: }
2086:
2087: # ----------------------------------------------------- Un-Escape Special Chars
2088:
2089: sub unescape {
2090: my $str=shift;
2091: $str =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C",hex($1))/eg;
2092: return $str;
2093: }
2094:
2095: # ================================================================ Main Program
2096:
2097: sub BEGIN {
2098: if ($readit ne 'done') {
2099: # ------------------------------------------------------------ Read access.conf
2100: {
2101: my $config=Apache::File->new("/etc/httpd/conf/access.conf");
2102:
2103: while (my $configline=<$config>) {
2104: if ($configline =~ /PerlSetVar/) {
2105: my ($dummy,$varname,$varvalue)=split(/\s+/,$configline);
2106: chomp($varvalue);
2107: $perlvar{$varname}=$varvalue;
2108: }
2109: }
2110: }
2111:
2112: # ------------------------------------------------------------- Read hosts file
2113: {
2114: my $config=Apache::File->new("$perlvar{'lonTabDir'}/hosts.tab");
2115:
2116: while (my $configline=<$config>) {
2117: my ($id,$domain,$role,$name,$ip)=split(/:/,$configline);
2118: $hostname{$id}=$name;
2119: $hostdom{$id}=$domain;
2120: if ($role eq 'library') { $libserv{$id}=$name; }
2121: }
2122: }
2123:
2124: # ------------------------------------------------------ Read spare server file
2125: {
2126: my $config=Apache::File->new("$perlvar{'lonTabDir'}/spare.tab");
2127:
2128: while (my $configline=<$config>) {
2129: chomp($configline);
2130: if (($configline) && ($configline ne $perlvar{'lonHostID'})) {
2131: $spareid{$configline}=1;
2132: }
2133: }
2134: }
2135: # ------------------------------------------------------------ Read permissions
2136: {
2137: my $config=Apache::File->new("$perlvar{'lonTabDir'}/roles.tab");
2138:
2139: while (my $configline=<$config>) {
2140: chomp($configline);
2141: my ($role,$perm)=split(/ /,$configline);
2142: if ($perm ne '') { $pr{$role}=$perm; }
2143: }
2144: }
2145:
2146: # -------------------------------------------- Read plain texts for permissions
2147: {
2148: my $config=Apache::File->new("$perlvar{'lonTabDir'}/rolesplain.tab");
2149:
2150: while (my $configline=<$config>) {
2151: chomp($configline);
2152: my ($short,$plain)=split(/:/,$configline);
2153: if ($plain ne '') { $prp{$short}=$plain; }
2154: }
2155: }
2156:
2157: # ------------------------------------------------------------- Read file types
2158: {
2159: my $config=Apache::File->new("$perlvar{'lonTabDir'}/filetypes.tab");
2160:
2161: while (my $configline=<$config>) {
2162: chomp($configline);
2163: my ($ending,$emb,@descr)=split(/\s+/,$configline);
2164: if ($descr[0] ne '') {
2165: $fe{$ending}=$emb;
2166: $fd{$ending}=join(' ',@descr);
2167: }
2168: }
2169: }
2170:
2171: %metacache=();
2172:
2173: $readit='done';
2174: &logthis('<font color=yellow>INFO: Read configuration</font>');
2175: }
2176: }
2177: 1;
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/back.gif){kind=icon}
Return to lonnet.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / lonnet / perl