# The LearningOnline Network
# Login Screen
#
# $Id: lonlogin.pm,v 1.138 2010/05/21 15:54:34 bisitz Exp $
#
# Copyright Michigan State University Board of Trustees
#
# This file is part of the LearningOnline Network with CAPA (LON-CAPA).
#
# LON-CAPA is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# LON-CAPA is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with LON-CAPA; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
#
# /home/httpd/html/adm/gpl.txt
#
# http://www.lon-capa.org/
#
package Apache::lonlogin;
use strict;
use Apache::Constants qw(:common);
use Apache::File ();
use Apache::lonnet;
use Apache::loncommon();
use Apache::lonauth();
use Apache::lonlocal;
use Apache::migrateuser();
use lib '/home/httpd/lib/perl/';
use LONCAPA;
sub handler {
my $r = shift;
&Apache::loncommon::get_unprocessed_cgi
(join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'},
$ENV{'REDIRECT_QUERY_STRING'}),
['interface','username','domain','firsturl','localpath','localres',
'token','role','symb']);
if (!defined($env{'form.firsturl'})) {
&Apache::lonacc::get_posted_cgi($r,['firsturl']);
}
# -- check if they are a migrating user
if (defined($env{'form.token'})) {
return &Apache::migrateuser::handler($r);
}
&Apache::loncommon::no_cache($r);
&Apache::lonlocal::get_language_handle($r);
&Apache::loncommon::content_type($r,'text/html');
$r->send_http_header;
return OK if $r->header_only;
# Are we re-routing?
if (-e '/home/httpd/html/lon-status/reroute.txt') {
&Apache::lonauth::reroute($r);
return OK;
}
# -------------------------------- Prevent users from attempting to login twice
my $handle = &Apache::lonnet::check_for_valid_session($r);
if ($handle ne '') {
my $lonidsdir=$r->dir_config('lonIDsDir');
if ($handle=~/^publicuser\_/) {
# For "public user" - remove it, we apparently really want to login
unlink($r->dir_config('lonIDsDir')."/$handle.id");
} else {
# Indeed, a valid token is found
&Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle);
my $start_page =
&Apache::loncommon::start_page('Already logged in');
my $end_page =
&Apache::loncommon::end_page();
my $dest = '/adm/roles';
if ($env{'form.firsturl'} ne '') {
$dest = $env{'form.firsturl'};
}
$r->print(
$start_page
.'
'.&mt('You are already logged in!').'
'
.''.&mt('Please either [_1]continue the current session[_2] or [_3]log out[_4].',
'','','','').'
'
.$end_page
);
return OK;
}
}
# ---------------------------------------------------- No valid token, continue
# ---------------------------- Not possible to really login to domain "public"
if ($env{'form.domain'} eq 'public') {
$env{'form.domain'}='';
$env{'form.username'}='';
}
# ----------------------------------------------------------- Process Interface
$env{'form.interface'}=~s/\W//g;
my $httpbrowser=$ENV{"HTTP_USER_AGENT"};
my $iconpath=
&Apache::loncommon::lonhttpdurl($r->dir_config('lonIconsURL'));
my $lonhost = $r->dir_config('lonHostID');
my $domain = &Apache::lonnet::default_login_domain();
if ($lonhost ne '') {
my $redirect = &check_loginvia($domain,$lonhost);
if ($redirect) {
$r->print($redirect);
return OK;
}
}
if (($env{'form.domain'}) &&
(&Apache::lonnet::domain($env{'form.domain'},'description'))) {
$domain=$env{'form.domain'};
}
my $role = $r->dir_config('lonRole');
my $loadlim = $r->dir_config('lonLoadLim');
my $servadm = $r->dir_config('lonAdmEMail');
my $tabdir = $r->dir_config('lonTabDir');
my $include = $r->dir_config('lonIncludes');
my $expire = $r->dir_config('lonExpire');
my $version = $r->dir_config('lonVersion');
my $host_name = &Apache::lonnet::hostname($lonhost);
# --------------------------------------------- Default values for login fields
my $authusername=($env{'form.username'}?$env{'form.username'}:'');
my $authdomain=($env{'form.domain'}?$env{'form.domain'}:$domain);
# ---------------------------------------------------------- Determine own load
my $loadavg;
{
my $loadfile=Apache::File->new('/proc/loadavg');
$loadavg=<$loadfile>;
}
$loadavg =~ s/\s.*//g;
my $loadpercent=sprintf("%.1f",100*$loadavg/$loadlim);
my $userloadpercent=&Apache::lonnet::userload();
# ------------------------------------------------------- Do the load balancing
my $otherserver= &Apache::lonnet::absolute_url($host_name);
my $firsturl=
($env{'request.firsturl'}?$env{'request.firsturl'}:$env{'form.firsturl'});
# ---------------------------------------------------------- Are we overloaded?
if ((($userloadpercent>100.0)||($loadpercent>100.0))) {
my $unloaded=Apache::lonnet::spareserver($loadpercent,$userloadpercent);
if ($unloaded) { $otherserver=$unloaded; }
}
# ----------------------------------------------------------- Get announcements
my $announcements=&Apache::lonnet::getannounce();
# -------------------------------------------------------- Set login parameters
my @hexstr=('0','1','2','3','4','5','6','7',
'8','9','a','b','c','d','e','f');
my $lkey='';
for (0..7) {
$lkey.=$hexstr[rand(15)];
}
my $ukey='';
for (0..7) {
$ukey.=$hexstr[rand(15)];
}
my $lextkey=hex($lkey);
if ($lextkey>2147483647) { $lextkey-=4294967296; }
my $uextkey=hex($ukey);
if ($uextkey>2147483647) { $uextkey-=4294967296; }
# -------------------------------------------------------- Store away log token
my $tokenextras;
if ($env{'form.role'}) {
$tokenextras = '&role='.&escape($env{'form.role'});
}
if ($env{'form.symb'}) {
if (!$tokenextras) {
$tokenextras = '&';
}
$tokenextras .= '&symb='.&escape($env{'form.symb'});
}
my $logtoken=Apache::lonnet::reply(
'tmpput:'.$ukey.$lkey.'&'.$firsturl.$tokenextras,
$lonhost);
# ------------------- If we cannot talk to ourselves, we are in serious trouble
if ($logtoken eq 'con_lost') {
my $spares='';
my $last;
foreach my $hostid (sort
{
&Apache::lonnet::hostname($a) cmp
&Apache::lonnet::hostname($b);
}
keys(%Apache::lonnet::spareid)) {
next if ($hostid eq $lonhost);
my $hostname = &Apache::lonnet::hostname($hostid);
next if ($last eq $hostname);
$spares.='
'.
$hostname.''.
' '.&mt('(preferred)').''.$/;
$last=$hostname;
}
$spares.= '
';
my %all_hostnames = &Apache::lonnet::all_hostnames();
foreach my $hostid (sort
{
&Apache::lonnet::hostname($a) cmp
&Apache::lonnet::hostname($b);
}
keys(%all_hostnames)) {
next if ($hostid eq $lonhost || $Apache::lonnet::spareid{$hostid});
my $hostname = &Apache::lonnet::hostname($hostid);
next if ($last eq $hostname);
$spares.='
'.
$hostname.'';
$last=$hostname;
}
$r->print(
''
.''
.&mt('The LearningOnline Network with CAPA')
.''
.''
.''.&mt('The LearningOnline Network with CAPA').'
'
.''
.''.&mt('This LON-CAPA server is temporarily not available for login.').'
'
.''.&mt('Please attempt to login to one of the following servers:').'
'
.$spares
.''
.''
);
return OK;
}
# ----------------------------------------------- Apparently we are in business
$servadm=~s/\,/\
/g;
# ----------------------------------------------------------- Front page design
my $pgbg=&Apache::loncommon::designparm('login.pgbg',$domain);
my $font=&Apache::loncommon::designparm('login.font',$domain);
my $link=&Apache::loncommon::designparm('login.link',$domain);
my $vlink=&Apache::loncommon::designparm('login.vlink',$domain);
my $alink=&Apache::loncommon::designparm('login.alink',$domain);
my $mainbg=&Apache::loncommon::designparm('login.mainbg',$domain);
my $loginbox_bg=&Apache::loncommon::designparm('login.sidebg',$domain);
my $loginbox_header_bgcol=&Apache::loncommon::designparm('login.bgcol',$domain);
my $loginbox_header_textcol=&Apache::loncommon::designparm('login.textcol',$domain);
my $logo=&Apache::loncommon::designparm('login.logo',$domain);
my $img=&Apache::loncommon::designparm('login.img',$domain);
my $domainlogo=''.&Apache::loncommon::domainlogo($domain).'
';
my $showbanner = 1;
my $showmainlogo = 1;
if (defined(&Apache::loncommon::designparm('login.showlogo_img',$domain))) {
$showbanner = &Apache::loncommon::designparm('login.showlogo_img',$domain);
}
if (defined(&Apache::loncommon::designparm('login.showlogo_logo',$domain))) {
$showmainlogo = &Apache::loncommon::designparm('login.showlogo_logo',$domain);
}
my $showadminmail=&Apache::loncommon::designparm('login.adminmail',$domain);
my $showcoursecat =
&Apache::loncommon::designparm('login.coursecatalog',$domain);
my $shownewuserlink =
&Apache::loncommon::designparm('login.newuser',$domain);
my $now=time;
my $js = (<
//
ENDSCRIPT
# --------------------------------------------------- Print login screen header
my %add_entries = (
bgcolor => "$mainbg",
text => "$font",
link => "$link",
vlink => "$vlink",
alink => "$alink",);
$r->print(&Apache::loncommon::start_page('The LearningOnline Network with CAPA Login',$js,
{ 'redirect' => [$expire,'/adm/roles'],
'add_entries' => \%add_entries,
'only_body' => 1,}));
# ----------------------------------------------------------------------- Texts
my %lt=&Apache::lonlocal::texthash(
'un' => 'Username',
'pw' => 'Password',
'dom' => 'Domain',
'perc' => 'percent',
'load' => 'Server Load',
'userload' => 'User Load',
'catalog' => 'Course/Community Catalog',
'log' => 'Log in',
'help' => 'Log-in Help',
'serv' => 'Server',
'servadm' => 'Server Administration',
'helpdesk' => 'Contact Helpdesk',
'forgotpw' => 'Forgot password?',
'newuser' => 'New User?',
);
# -------------------------------------------------- Change password field name
my $forgotpw = &forgotpwdisplay(%lt);
$forgotpw .= '
' if $forgotpw;
my $loginhelp = &loginhelpdisplay($authdomain,%lt);
$loginhelp .= '
' if $loginhelp;
# ---------------------------------------------------- Serve out DES JavaScript
{
my $jsh=Apache::File->new($include."/londes.js");
$r->print(<$jsh>);
}
# ---------------------------------------------------------- Serve rest of page
$r->print(
'
ENDTOP
if ($showmainlogo) {
$r->print('
'."\n");
}
$r->print(<
ENDTOP
$r->print(<
$lt{'dom'}:
|
$domain
|
$lt{'serv'}:
|
$lonhost ($role)
|
$lt{'load'}:
|
$loadpercent $lt{'perc'}
|
$lt{'userload'}:
|
$userloadpercent $lt{'perc'}
|
$version
|
$helpdeskscript
ENDDOCUMENT
my %endargs = ( 'noredirectlink' => 1, );
$r->print(&Apache::loncommon::end_page(\%endargs));
return OK;
}
sub check_loginvia {
my ($domain,$lonhost) = @_;
if ($domain eq '' || $lonhost eq '') {
return;
}
my %domconfhash = &Apache::loncommon::get_domainconf($domain);
my $loginvia = $domconfhash{$domain.'.login.loginvia_'.$lonhost};
my $loginvia_exempt = $domconfhash{$domain.'.login.loginvia_exempt_'.$lonhost};
my $output;
if ($loginvia ne '') {
my $noredirect;
my $ip = $ENV{'REMOTE_ADDR'};
if ($ip eq '127.0.0.1') {
$noredirect = 1;
} else {
if ($loginvia_exempt ne '') {
my @exempt = split(',',$loginvia_exempt);
if (grep(/^\Q$ip\E$/,@exempt)) {
$noredirect = 1;
}
}
}
unless ($noredirect) {
my ($newhost,$path);
if ($loginvia =~ /:/) {
($newhost,$path) = split(':',$loginvia);
} else {
$newhost = $loginvia;
}
if ($newhost ne $lonhost) {
if (&Apache::lonnet::hostname($newhost) ne '') {
$output = &redirect_page($newhost,$path);
}
}
}
}
return $output;
}
sub redirect_page {
my ($desthost,$path) = @_;
my $protocol = $Apache::lonnet::protocol{$desthost};
$protocol = 'http' if ($protocol ne 'https');
unless ($path =~ m{^/}) {
$path = '/'.$path;
}
my $url = $protocol.'://'.&Apache::lonnet::hostname($desthost).$path;
if ($env{'form.firsturl'} ne '') {
$url .='?firsturl='.$env{'form.firsturl'};
}
my $start_page = &Apache::loncommon::start_page('Switching Server ...',undef,
{'redirect' => [0,$url],});
my $end_page = &Apache::loncommon::end_page();
return $start_page.$end_page;
}
sub contactdisplay {
my ($lt,$servadm,$showadminmail,$authdomain,$helpdeskscript) = @_;
my $contactblock;
my $showhelpdesk = 0;
my $requestmail = $Apache::lonnet::perlvar{'lonSupportEMail'};
if ($requestmail =~ m/^[^\@]+\@[^\@]+$/) {
$showhelpdesk = 1;
}
if ($servadm && $showadminmail) {
$contactblock .= $$lt{'servadm'}.':
'.
''.$servadm.'
';
}
if ($showhelpdesk) {
$contactblock .= ''.$lt->{'helpdesk'}.'
';
my $thisurl = &escape('/adm/login');
$$helpdeskscript = <<"ENDSCRIPT";
ENDSCRIPT
}
return $contactblock;
}
sub forgotpwdisplay {
my (%lt) = @_;
my $prompt_for_resetpw = 1;
if ($prompt_for_resetpw) {
return ''.$lt{'forgotpw'}.'';
}
return;
}
sub loginhelpdisplay {
my ($authdomain,%lt) = @_;
my $login_help = 1;
if ($login_help) {
my $dom = $authdomain;
if ($dom eq '') {
$dom = &Apache::lonnet::default_login_domain();
}
my %helpconfig = &Apache::lonnet::get_dom('configuration',['helpsettings'],$dom);
my $loginhelp_url = $helpconfig{'helpsettings'}{'loginhelpurl'};
if ($loginhelp_url ne '') {
return ''.$lt{'help'}.'';
} else {
return ''.$lt{'help'}.'';
}
}
return;
}
sub coursecatalog_link {
my ($linkname) = @_;
return <<"END";
$linkname
END
}
sub newuser_link {
my ($linkname) = @_;
return ''.$linkname.'';
}
1;
__END__