--- doc/gutshtml/SessionOn1.html	2002/06/28 20:30:29	1.1
+++ doc/gutshtml/SessionOn1.html	2003/07/22 14:47:00	1.2
@@ -1 +1,849 @@
-<html>
<head>
<meta name=Title content="Session One: Roles, Data Storage, Parameters (Gerd)">
<meta http-equiv=Content-Type content="text/html; charset=macintosh">
<title>Session One: Roles, Data Storage, Parameters (Gerd)</title>
<style><!--
.MsoHeader
	{tab-stops:center 3.0in right 6.0in;
	font-size:10.0pt;
	font-family:"Times New Roman";}
.Preformatted
	{tab-stops:0in 47.95pt 95.9pt 143.85pt 191.8pt 239.75pt 287.7pt 335.65pt 383.6pt 431.55pt 479.5pt;
	font-size:10.0pt;
	font-family:"Courier New";
	layout-grid-mode:line;}
.Section1
	{page:Section1;}
.Section2
	{page:Section2;}
-->
</style>
</head>
<body bgcolor=#FFFFFF class="Normal" lang=EN-US>
<div class=Section1> 
  <h2>Session One: Roles, Data Storage, Parameters (Gerd)</h2>
  <h3><a name="_Toc421867084">Domains</a></h3>
  <p><span style='font-size:10.0pt'>Every user in LON-CAPA is member of one domain. 
    A domain can be institutional and &quot;open&quot;, for example &quot;msu&quot; 
    or &quot;wscc&quot; - open means that in it there can be students, authors 
    and other users. A domain can also be functional, for example &quot;timss_tests&quot; 
    or &quot;smith_publishers”. Physically, every domain needs at least one dedicated 
    library server.</span></p>
  <h3><a name="_Toc421867085">Userdata</a></h3>
  <p>Every user in the system has one library server, which is their home server. 
    It stores the authoritative copy of all of their records. Internally, this 
    data is stored in a directory </p>
  <p><span style='font-family:"Courier New"'>&nbsp;/home/httpd/lonUsers/<i>domain</i></span><span
style='font-family:"Courier New"'>/<i>1.char</i></span><span style='font-family:
"Courier New"'>/<i>2.char</i></span><span style='font-family:"Courier New"'>/<i>3.char</i></span><span
style='font-family:"Courier New"'>/<i>username</i></span><span
style='font-family:"Courier New"'>/</span></p>
  <p class=MsoHeader>for example</p>
  <p><span style='font-family:"Courier New"'>&nbsp;/home/httpd/lonUsers/msu/s/m/i/smith/</span></p>
  <div style='border:solid windowtext .5pt;padding:1.0pt 4.0pt 1.0pt 4.0pt'> 
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>ls -alF /home/httpd/lonUsers/msu/k/o/r/kortemey</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp; &nbsp;1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      13006 May 15 12:21 activity.log</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      12413 Oct 26&nbsp; 2000 coursedescriptions.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      11361 Oct 26&nbsp; 2000 coursedescriptions.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      13576 Apr 19 17:45 critical.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      1302 Apr 19 17:45 critical.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      13512 Apr 19 17:45 email_status.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      1496 Apr 19 17:45 email_status.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp; &nbsp;&nbsp;&nbsp;&nbsp;users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      12373 Apr 19 17:45 environment.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      169 Apr 19 17:45 environment.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      12315 Oct 25&nbsp; 2000 junk.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      1590 Nov&nbsp; 4&nbsp; 1999 junk.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      23626 Apr 19 17:45 msu_12679c3ed543a25msul1.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      3363 Apr 19 17:45 msu_12679c3ed543a25msul1.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      17242 Nov 13&nbsp; 2000 msu_1827338c7d339a3msul1.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r-- &nbsp;&nbsp;1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      1986 Nov 13&nbsp; 2000 msu_1827338c7d339a3msul1.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      18497 Dec 21 11:25 msu_1827338c7d339b4msul1.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      3801 Dec 21 11:25 msu_1827338c7d339b4msul1.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      12470 Apr 19 17:45 nohist_annotations.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      13395 Nov 15&nbsp; 2000 nohist_bookmarks.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      104264 Apr 19 17:45 </span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      nohist_calculatedsheets_msu_12679c3ed543a25msul1.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      13248 Apr&nbsp; 5 17:18 </span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      nohist_calculatedsheets_msu_1827338c7d339b4msul1.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      12568 Oct 28&nbsp; 2000 nohist_coursedescriptions.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      765954 Apr 19 17:45 nohist_email.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      710631 Apr 19 17:45 nohist_email.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      13 Apr 19 17:45 passwd</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      12802 May&nbsp; 3 13:08 roles.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      1316 Apr 12 16:05 roles.hist</span></p>
  </div>
  <p><span style='font-size:14.0pt'><b>Fig.2.1.1</b></span><span
style='font-size:14.0pt'> – Directory listing of user’s home directory</span></p>
  <p>Files ending on <span style='font-family:"Courier New"'>.db</span> are GDBM 
    files, files ending on <span style='font-family:"Courier New"'>.hist</span> 
    are logs of entries to these files. Filenames starting with “nohist” do not 
    keep history files. <span style='font-family:"Courier New"'>passwd</span> 
    stores the login mechanism and password (if applicable). </p>
  <p><span style='font-family:"Courier New"'>environment</span> stores name-value 
    pairs that are automatically added to the session environment at login time, 
    for example the full name, etc. </p>
  <p><span style='font-family:"Courier New"'>roles</span> stores the userroles.</p>
  <p><span style='font-family:"Courier New"'>critical</span>, <span
style='font-family:"Courier New"'>nohist_email</span>, and <span
style='font-family:"Courier New"'>email_status</span> are used by the messaging 
    mechanisms</p>
  <p>Files with a course-ID as name, for example <span
style='font-size:9.0pt;font-family:"Courier New"'>msu_12679c3ed543a25msul1.db</span>, 
    store performance data for that student in the course, as stored by <span
style='font-family:"Courier New"'>store</span> and <span style='font-family:
"Courier New"'>restore</span> in lonnet.</p>
  <p>Other files are caches, for example for previously calculated spreadsheets, 
    etc.</p>
  <h3><a name="_Toc421867086">Courses</a></h3>
  <p><span style='font-size:10.0pt'>Courses are assigned to users, not vice versa. 
    Internally, courses are handled like users without login privileges. The username 
    is a unique ID, for example </span><span style='font-size:9.0pt;
font-family:"Courier New"'>msu_12679c3ed543a25msul1</span><span
style='font-size:10.0pt;font-family:"Courier New"'> </span><span
style='font-size:10.0pt'>– every course in every semester has a unique ID, there 
    is no semester transition. The userdata of the course includes the full name 
    of the course, a pointer to its top-level resource map (“course map”), and 
    any associated deadlines, spreadsheets, etc., as well as a course enrollment 
    list. The latter is somewhat redundant, since in principle, this list could 
    be produced by going through the roles of all users, and looking for the valid 
    role of being student in that course.</span></p>
  <div style='border:solid windowtext .5pt;padding:1.0pt 4.0pt 1.0pt 4.0pt'> 
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>ls -alF /home/httpd/lonUsers/msu/1/2/6/12679c3ed543a25msul1/</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      17155 Apr 25 16:20 classlist.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      60912 Apr 25 16:20 classlist.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      12354 Jan&nbsp; 4 16:40 environment.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      82 Jan&nbsp; 4 16:40 environment.hist</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      103030 May 15 14:47 nohist_calculatedsheets.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      13050 May&nbsp; 9 21:04 nohist_expirationdates.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      6 Jan&nbsp; 4 16:40 passwd</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      17457 May&nbsp; 9 21:04 resourcedata.db</span></p>
    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      8888 May&nbsp; 9 21:04 resourcedata.hist</span></p>
  </div>
  <p><span style='font-size:14.0pt'><b>Fig.2.1.2</b></span><span
style='font-size:14.0pt'> – Directory listing of course’s home directory</span></p>
  <p><span style='font-size:9.0pt;font-family:"Courier New"'>classlist</span> 
    is this list of students in the course, <span style='font-size:9.0pt;
font-family:"Courier New"'>environment</span> includes the course’s full name, 
    etc, and <span style='font-size:9.0pt;font-family:"Courier New"'>resourcedata</span> 
    are deadlines, etc (parameters for homework).</p>
  <h3><a name="_Toc421867087">Roles</a></h3>
  <p><span style='font-size:10.0pt'>Users keep their login, data, preferences, 
    etc, over their complete tenure. Every user can have several roles, and the 
    roles can change over the lifetime of a username. For example, over the course 
    of studies, a student username assumes the role of &quot;student&quot; in 
    different courses. Roles can have start and expiration dates.</span></p>
  <table border=1 cellspacing=0 cellpadding=0>
    <tr> 
      <td width=429 colspan=3 class="Normal"> <p align=center style='text-align:center'><span
  style='font-size:9.0pt'>Example: User smith at msu</span></p></td>
    </tr>
    <tr> 
      <td width=85 class="Normal"> <p><span style='font-size:9.0pt'>Instructor</span></p></td>
      <td width=171 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_12679c3ed543a25msul1</span></p></td>
      <td width=170 class="Normal">&nbsp; </td>
    </tr>
    <tr> 
      <td width=85 class="Normal"> <p><span style='font-size:9.0pt'>Course Coordinator</span></p></td>
      <td width=171 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_12679c3ed543a25msul1</span></p></td>
      <td width=170 class="Normal"> <p><span style='font-size:9.0pt'>From July 
          1st, 2001 to December 30th, 2001</span></p></td>
    </tr>
    <tr> 
      <td width=85 class="Normal"> <p><span style='font-size:9.0pt'>Instructor</span></p></td>
      <td width=171 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_18879c3ed543a25msul2</span></p></td>
      <td width=170 class="Normal"> <p><span style='font-size:9.0pt'>From Jan 
          1st, 2001 to June 30th, 2001</span></p></td>
    </tr>
    <tr> 
      <td width=85 class="Normal"> <p><span style='font-size:9.0pt'>Resource Author</span></p></td>
      <td width=171 class="Normal"> <p><tt><span style='font-size:9.0pt;font-family:"Courier New"'>msu</span></tt></p></td>
      <td width=170 class="Normal"> <p><span style='font-size:9.0pt'>From Aug 
          15th, 2000</span></p></td>
    </tr>
    <tr> 
      <td width=85 class="Normal"> <p><span style='font-size:9.0pt'>Student</span></p></td>
      <td width=171 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_82679c3gd543a35msul1</span></p></td>
      <td width=170 class="Normal"> <p><span style='font-size:9.0pt'>From July 
          1st, 2001 to December 30th, 2001&nbsp;</span></p></td>
    </tr>
  </table>
  <p><span style='font-size:14.0pt'><b>Fig.2.1.3</b></span><span
style='font-size:14.0pt'> – Sample Instructor Roles</span></p>
  <br
clear=ALL style='page-break-before:always'>
  <table border=1 cellspacing=0 cellpadding=0>
    <tr> 
      <td width=433 colspan=3 class="Normal"> <p align=center style='text-align:center'><span
  style='font-size:9.0pt'>Example: User jones at msu</span></p></td>
    </tr>
    <tr> 
      <td width=117 class="Normal"> <p><span style='font-size:9.0pt'>Custom Role 
          &quot;Helproom TA (smith at msu)&quot;</span></p></td>
      <td width=194 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_82679c3gd543a35msul1</span></p></td>
      <td width=119 class="Normal"> <p><span style='font-size:9.0pt'>From July 
          1st, 2001 to December 30th, 2001</span></p></td>
    </tr>
    <tr> 
      <td width=117 class="Normal"> <p><span style='font-size:9.0pt'>Student</span></p></td>
      <td width=194 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_02679c3gq543a35msul1</span></p></td>
      <td width=119 class="Normal"> <p><span style='font-size:9.0pt'>From Jan 
          1st, 2001 to June 30th, 2001</span></p></td>
    </tr>
    <tr> 
      <td width=117 class="Normal"> <p><span style='font-size:9.0pt'>Student</span></p></td>
      <td width=194 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>umn_82679c3gd543a35umnl2</span></p></td>
      <td width=119 class="Normal"> <p><span style='font-size:9.0pt'>From July 
          1st, 2001 to December 30th, 2001</span></p></td>
    </tr>
    <tr> 
      <td width=117 class="Normal"> <p><span style='font-size:9.0pt'>Exam Proctor</span></p></td>
      <td width=194 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_82679c3gd543a35msul1</span></p></td>
      <td width=119 class="Normal"> <p><span style='font-size:9.0pt'>Feb 21st, 
          2001, 1pm to 3pm</span></p></td>
    </tr>
  </table>
  <p><span style='font-size:14.0pt'><b>Fig.2.1.4</b></span><span
style='font-size:14.0pt'> – Sample Student Roles</span></p>
  <h3><a name="_Toc421867088">Custom Roles</a></h3>
  <p>Course Coordinators are able to define named &quot;Custom Roles&quot; for 
    their courses within a pre-defined set of capabilities. In addition to these 
    custom roles, there are three standard course faculty/staff roles defined, 
    Instructor, Exam Proctor and TA. The instructor of record in a small class 
    is likely to be &quot;Course Coordinator&quot; and &quot;Instructor&quot; 
    during the term when the course is running, and might remain course coordinator 
    afterwards. Course coordinator can assign themselves new roles for their course 
    anytime.</p>
</div>
<div class=Section7>
  <h1><a name="_Toc514840853">&nbsp;</a></h1>
  <p>Custom role definitions are stored in the <span
style='font-size:9.0pt;font-family:"Courier New"'>roles.db</span> file of the 
    role author.</p>
  <h3><a name="_Toc421867089">Choose a Role, Role Privileges</a></h3>
  <p><span style='font-family:"Courier New"'>lonroles </span>is a handler that 
    allows a user to switch roles in mid-session.<span
style='font-family:"Courier New"'> </span>LON-CAPA attempts to work with “No Role 
    Specified” as widely as possible, but certain handlers for example need specification 
    which course they should act on, etc. Both in this scenario, and when the 
    handler determines via <span style='font-family:"Courier New"'>lonnet</span>’s 
    <span style='font-family:"Courier New"'>&amp;allowed</span> function that 
    a certain action is not allowed, <span style='font-family:"Courier New"'>lonroles</span> 
    is used as errorhandler. <span style='font-family:"Courier New"'>lonroles</span> 
    can also be accessed via the CRS button in the Remote Control. <b>Fig. 2.1.5</b><span
style='font-weight:normal'> shows a sample output of </span><span
style='font-family:"Courier New"'>lonroles</span>.</p>
  <p><img border=0 width=434 height=198 id="_x0000_i1026"
src="handout_files/image002.jpg"></p>
  <p><b>Fig. 2.1.5</b><span style='font-weight:normal'> – Sample Roles Choice 
    in </span><span style='font-size:12.0pt;font-family:"Courier New"'>lonroles.pm</span></p>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>System: /</span></p>
  </div>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='
border:none;padding:0in'><span style='font-size:8.0pt;font-family:Symbol'>·<span
style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span><span
style='font-size:8.0pt'>Browse resources</span></p>
    <p style='
border:none;padding:0in'><span style='font-size:8.0pt;font-family:Symbol'>·<span
style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span><span
style='font-size:8.0pt'>Generate anonymous statistics</span></p>
    <p style='
border:none;padding:0in'><span style='font-size:8.0pt;font-family:Symbol'>·<span
style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span><span
style='font-size:8.0pt'>Create a Course Custom Role</span></p>
    <ul type=disc>
      <li style='border:none;padding:0in'><span
     style='font-size:8.0pt'>Send internal email</span></li>
    </ul>
  </div>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>Domain: msu</span></p>
  </div>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Assemble resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Browse resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Administrator 
      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Author 
      (UNIX authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Co-Author 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Course 
      Coordinator (UNIX authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke Course Custom Role 
      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Domain 
      Guest (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Exam Proctor 
      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Instructor 
      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Librarian 
      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Copy resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Student 
      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Teaching 
      Assistant (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
    <ul type=disc>
      <li style='line-height:90%;border:none;
     padding:0in'><span style='font-size:8.0pt'>Create, edit, modify and publish 
        resources</span></li>
      <li style='line-height:90%;border:none;
     padding:0in'><span style='font-size:8.0pt'>Modify authentication mechanism 
        and data for a user</span></li>
    </ul>
  </div>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>Course: lbs267L 
      Lab SS01</span></p>
  </div>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Assemble resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke Course Custom Role 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Exam Proctor 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Instructor 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Copy resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Student 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Teaching 
      Assistant (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Create, edit, modify and publish 
      resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Generate anonymous statistics</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Set assessment parameters</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Send broadcast and receipt-required 
      email</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>View grades</span></p>
  </div>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>Course: lbs267 
      Lecture SS01</span></p>
  </div>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Assemble resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke Course Custom Role 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Exam Proctor 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Instructor 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Copy resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Student 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Teaching 
      Assistant (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Create, edit, modify and publish 
      resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Generate anonymous statistics</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Set assessment parameters</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Send broadcast and receipt-required 
      email</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>View grades</span></p>
  </div>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>Course: Demo 
      Course</span></p>
  </div>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Assemble resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke Course Custom Role 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Exam Proctor 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Instructor 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Copy resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Student 
      (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Teaching 
      Assistant (Internally authenticated, Kerberos authenticated)</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Create, edit, modify and publish 
      resources</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Generate anonymous statistics</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Set assessment parameters</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>Send broadcast and receipt-required 
      email</span></p>
    <p style='line-height:90%;
border:none;padding:0in'><span style='font-size:8.0pt;
font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
      </span></span><span style='font-size:8.0pt'>View grades</span></p>
  </div>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>Construction 
      Space: User: korte, Domain: msu</span></p>
  </div>
  <p><span style='font-size:14.0pt'><b>Fig. 2.1.6</b></span><span
style='font-size:14.0pt'> – Sample Set of Privileges</span></p>
  <p><b>Fig. 2.1.6</b><span style='font-weight:normal'> shows a common set of 
    privileges for the user roles in </span><b>Fig. 2.1.5</b><span
style='font-weight:normal'>. The plain text explanations of the various roles 
    and the extent of them is drawn from </span><span style='font-family:"Courier New"'>/home/httpd/rolesplain.tab</span>, 
    see <b>Fig. 2.1.7</b><span style='font-weight:normal'>.</span></p>
  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>[www@zaphod www]$ more /home/httpd/lonTabs/rolesplain.tab</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>s:system wide</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>d:domain wide</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>c:course wide</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>U:UNIX authenticated</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>I:Internally authenticated</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>K:Kerberos authenticated</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>C:according to course preferences</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>S:according to custom role settings</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>R:according to resource settings</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>L:unless locked</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>X:according to user session 
      state</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>F:no restrictions</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cm:No Role, Cumulative Privileges</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>su:Superuser</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>dc:Domain Coordinator</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cc:Course Coordinator</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>in:Instructor</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ta:Teaching Assistant</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ep:Exam Proctor</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cr:Course Custom Role</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>st:Student</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ad:Administrator</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>li:Librarian </span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>au:Author</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>dg:Domain Guest</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ca:Co-Author</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>csu:Grant/revoke role of Superuser</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cdc:Grant/revoke role of Domain 
      Coordinator</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ccc:Grant/revoke role of Course 
      Coordinator</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cin:Grant/revoke role of Instructor</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cta:Grant/revoke role of Teaching 
      Assistant</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cep:Grant/revoke role of Exam 
      Proctor</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ccr:Grant/revoke Course Custom 
      Role</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cst:Grant/revoke role of Student</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cad:Grant/revoke role of Administrator</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cli:Grant/revoke role of Librarian</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cau:Grant/revoke role of Author</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cdg:Grant/revoke role of Domain 
      Guest</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cca:Grant/revoke role of Co-Author</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>mcr:Create a Course Custom Role</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>mau:Modify authentication mechanism 
      and data for a user</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>bre:Browse resources</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>are:Assemble resources</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cre:Copy resources</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ere:Create, edit, modify and 
      publish resources</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>mme:Modify metadata for a resource 
      </span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>vgr:View grades</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>mgr:Modify grades</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>gan:Generate anonymous statistics</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>dcm:Disable all communication 
      among students</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>sma:Send internal email</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>srm:Send broadcast and receipt-required 
      email</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>pch:Post to chatrooms and bulletin 
      boards</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>dch:Delete messages from bulletin 
      boards</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>pac:Post anonymously</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>rin:Get identity behind anonymous 
      postings</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>las:Lock and unlock assessments</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>opa:Set assessment parameters</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ain:Assume a student's identity 
      </span></p>
  </div>
  <p><span style='font-size:14.0pt'><b>Fig. 2.1.7</b></span><span
style='font-size:14.0pt'> – Explanation of Privilege Shorthands</span></p>
  <h3><a name="_Toc421867090">Role Initialization</a></h3>
  <p>The privileges for a user are established at login time and stored in the 
    session environment. A consequence is that a new role does not become active 
    till the next login. Handlers are able to query for privileges using<span style='font-family:"Courier New"'> 
    </span><span style='font-size:
9.0pt;font-family:"Courier New"'>lonnet</span>’s<span style='font-size:8.0pt;
font-family:"Courier New"'> </span><span style='font-size:9.0pt;font-family:
"Courier New"'>&amp;allowed</span><span style='font-size:8.0pt;font-family:
"Courier New"'> </span>function. When a user first logs in, their role is the 
    “common” role, which means that they have the sum of all of their privileges. 
    During a session it might become necessary to choose a particular role, which 
    as a consequence also limits the user to only the privileges in that particular 
    role.</p>
  <div style='border:solid windowtext .5pt;padding:1.0pt 4.0pt 1.0pt 4.0pt'> 
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>[www@zaphod www]$ more /home/httpd/lonTabs/roles.tab</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>su:s csu&amp;U:sma:mau:cdc&amp;U</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>dc:s sma</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>dc:d cli&amp;UIK:cau&amp;U:cdg&amp;UIK:mau:ccc&amp;U:cin&amp;UIK:cta&amp;UIK:cep&amp;UIK:ccr&amp;UIK:cst&amp;UIK:cad&amp;UIK</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cc:s bre:sma:mcr</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cc:c cin&amp;IK:cta&amp;IK:cep&amp;IK:ccr&amp;IK:cst&amp;IK:are:cre:ere:vgr:gan:srm:opa</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>in:s sma</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>in:d bre</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>in:c vgr:mgr:gan:dcm:srm:pch:dch:pac:rin:las:opa</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ta:d sma</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ta:c bre&amp;RL:vgr&amp;CR:mgr&amp;CR:srm:pch:dch:pac</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ep:d sma</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ep:c bre&amp;R:mgr&amp;R:dcm:las</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cr:d sma</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>cr:c bre&amp;R:vgr&amp;SCR:mgr&amp;SCR:gan&amp;SCR:dcm&amp;SC:srm&amp;SC:pch:dch&amp;S:pac:rin&amp;S:las&amp;SR:opa&amp;SR</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>st:d sma&amp;L</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>st:c bre&amp;RXL:pch&amp;L:pac&amp;CL</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ad:d sma</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ad:c bre:gan:vgr:srm</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>li:s gan:sma</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>li:d mme</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>au:s gan:sma</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>au:d bre:are:cre:ere:cca&amp;IK</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ca:s gan:sma</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>ca:d bre:are:cre:ere</span></p>
    <p style='line-height:90%;border:none;padding:0in'><span
style='font-size:8.0pt;font-family:"Courier New"'>dg:d bre&amp;R</span></p>
  </div>
  <p><span style='font-size:14.0pt'><b>Fig. 2.1.8</b></span><span
style='font-size:14.0pt'> – Privileges by roles and extent</span></p>
  <p><span style='font-size:12.0pt;font-family:Arial'>Role Assignment</span></p>
  <p><span style='font-size:12.0pt;font-family:Arial'><img
border=0 width=175 height=227 id="_x0000_i1027"
src="handout_files/image003.jpg"></span></p>
  <p><span style='font-size:14.0pt'><b>Fig. 2.1.9</b></span><span
style='font-size:14.0pt'> – Assigning privileges to a user</span></p>
  <ul type=disc>
    <li><span style='font-family:"Courier New"'>loncreateuser.pm</span> allows 
      users to within their own privileges (‘c<i>xx</i><span
     style='font-style:normal'> privileges) create users and give them roles (<b>Fig. 
      2.1.9</b></span>)<span style='font-size:12.0pt;font-family:Arial'> </span></li>
    <li><span style='font-family:"Courier New"'>londropadd.pm</span> allows course 
      coordinators to upload courselists in different formats, and automatically 
      create users (if they do not exist already), assign them the role of student 
      in a course, and add them to the classlist. </li>
    <li><span style='font-family:"Courier New"'>loncreatecourse.pm</span> allows 
      domain coordinators to create new courses and assign course coordinators.</li>
  </ul>
  <span style='font-size:12.0pt;font-family:Arial'><b><i><br clear=ALL
style='page-break-before:always'>
  </i></b></span> 
  <h2><a name="_Toc514840854">&nbsp;</a></h2>
</div>
<br
clear=ALL style='page-break-before:always;'>
<div class=Section2> </div>
</body>
</html>
\ No newline at end of file
+<html>
+<head>
+<meta name=Title content="Session One: Roles, Data Storage, Parameters (Gerd)">
+<meta http-equiv=Content-Type content="text/html; charset=macintosh">
+<title>Session One: Roles, Data Storage, Parameters (Gerd)</title>
+<style><!--
+.MsoHeader
+	{tab-stops:center 3.0in right 6.0in;
+	font-size:10.0pt;
+	font-family:"Times New Roman";}
+.Preformatted
+	{tab-stops:0in 47.95pt 95.9pt 143.85pt 191.8pt 239.75pt 287.7pt 335.65pt 383.6pt 431.55pt 479.5pt;
+	font-size:10.0pt;
+	font-family:"Courier New";
+	layout-grid-mode:line;}
+.Section1
+	{page:Section1;}
+.Section2
+	{page:Section2;}
+-->
+</style>
+</head>
+<body bgcolor=#FFFFFF class="Normal" lang=EN-US>
+<div class=Section1> 
+  <h2>Session One: Roles, Data Storage, Parameters (Gerd)</h2>
+  <h3><a name="_Toc421867084">Domains</a></h3>
+  <p><span style='font-size:10.0pt'>Every user in LON-CAPA is member of one domain. 
+    A domain can be institutional and &quot;open&quot;, for example &quot;msu&quot; 
+    or &quot;wscc&quot; - open means that in it there can be students, authors 
+    and other users. A domain can also be functional, for example &quot;timss_tests&quot; 
+    or &quot;smith_publishers”. Physically, every domain needs at least one dedicated 
+    library server.</span></p>
+  <h3><a name="_Toc421867085">Userdata</a></h3>
+  <p>Every user in the system has one library server, which is their home server. 
+    It stores the authoritative copy of all of their records. Internally, this 
+    data is stored in a directory </p>
+  <p><span style='font-family:"Courier New"'>&nbsp;/home/httpd/lonUsers/<i>domain</i></span><span
+style='font-family:"Courier New"'>/<i>1.char</i></span><span style='font-family:
+"Courier New"'>/<i>2.char</i></span><span style='font-family:"Courier New"'>/<i>3.char</i></span><span
+style='font-family:"Courier New"'>/<i>username</i></span><span
+style='font-family:"Courier New"'>/</span></p>
+  <p class=MsoHeader>for example</p>
+  <p><span style='font-family:"Courier New"'>&nbsp;/home/httpd/lonUsers/msu/s/m/i/smith/</span></p>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 4.0pt 1.0pt 4.0pt'> 
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>ls -alF /home/httpd/lonUsers/msu/k/o/r/kortemey</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp; &nbsp;1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      13006 May 15 12:21 activity.log</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      12413 Oct 26&nbsp; 2000 coursedescriptions.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      11361 Oct 26&nbsp; 2000 coursedescriptions.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      13576 Apr 19 17:45 critical.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      1302 Apr 19 17:45 critical.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      13512 Apr 19 17:45 email_status.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      1496 Apr 19 17:45 email_status.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp; &nbsp;&nbsp;&nbsp;&nbsp;users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      12373 Apr 19 17:45 environment.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      169 Apr 19 17:45 environment.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      12315 Oct 25&nbsp; 2000 junk.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      1590 Nov&nbsp; 4&nbsp; 1999 junk.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      23626 Apr 19 17:45 msu_12679c3ed543a25msul1.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      3363 Apr 19 17:45 msu_12679c3ed543a25msul1.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      17242 Nov 13&nbsp; 2000 msu_1827338c7d339a3msul1.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r-- &nbsp;&nbsp;1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      1986 Nov 13&nbsp; 2000 msu_1827338c7d339a3msul1.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      18497 Dec 21 11:25 msu_1827338c7d339b4msul1.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      3801 Dec 21 11:25 msu_1827338c7d339b4msul1.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      12470 Apr 19 17:45 nohist_annotations.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      13395 Nov 15&nbsp; 2000 nohist_bookmarks.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      104264 Apr 19 17:45 </span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      nohist_calculatedsheets_msu_12679c3ed543a25msul1.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      13248 Apr&nbsp; 5 17:18 </span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      nohist_calculatedsheets_msu_1827338c7d339b4msul1.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      12568 Oct 28&nbsp; 2000 nohist_coursedescriptions.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      765954 Apr 19 17:45 nohist_email.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      710631 Apr 19 17:45 nohist_email.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      13 Apr 19 17:45 passwd</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      12802 May&nbsp; 3 13:08 roles.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      1316 Apr 12 16:05 roles.hist</span></p>
+  </div>
+  <p><span style='font-size:14.0pt'><b>Fig.2.1.1</b></span><span
+style='font-size:14.0pt'> – Directory listing of user’s home directory</span></p>
+  <p>Files ending on <span style='font-family:"Courier New"'>.db</span> are GDBM 
+    files, files ending on <span style='font-family:"Courier New"'>.hist</span> 
+    are logs of entries to these files. Filenames starting with “nohist” do not 
+    keep history files. <span style='font-family:"Courier New"'>passwd</span> 
+    stores the login mechanism and password (if applicable). </p>
+  <p><span style='font-family:"Courier New"'>environment</span> stores name-value 
+    pairs that are automatically added to the session environment at login time, 
+    for example the full name, etc. </p>
+  <p><span style='font-family:"Courier New"'>roles</span> stores the userroles.</p>
+  <p><span style='font-family:"Courier New"'>critical</span>, <span
+style='font-family:"Courier New"'>nohist_email</span>, and <span
+style='font-family:"Courier New"'>email_status</span> are used by the messaging 
+    mechanisms</p>
+  <p>Files with a course-ID as name, for example <span
+style='font-size:9.0pt;font-family:"Courier New"'>msu_12679c3ed543a25msul1.db</span>, 
+    store performance data for that student in the course, as stored by <span
+style='font-family:"Courier New"'>store</span> and <span style='font-family:
+"Courier New"'>restore</span> in lonnet.</p>
+  <p>Other files are caches, for example for previously calculated spreadsheets, 
+    etc.</p>
+  <h3><a name="_Toc421867086">Courses</a></h3>
+  <p><span style='font-size:10.0pt'>Courses are assigned to users, not vice versa. 
+    Internally, courses are handled like users without login privileges. The username 
+    is a unique ID, for example </span><span style='font-size:9.0pt;
+font-family:"Courier New"'>msu_12679c3ed543a25msul1</span><span
+style='font-size:10.0pt;font-family:"Courier New"'> </span><span
+style='font-size:10.0pt'>– every course in every semester has a unique ID, there 
+    is no semester transition. The userdata of the course includes the full name 
+    of the course, a pointer to its top-level resource map (“course map”), and 
+    any associated deadlines, spreadsheets, etc., as well as a course enrollment 
+    list. The latter is somewhat redundant, since in principle, this list could 
+    be produced by going through the roles of all users, and looking for the valid 
+    role of being student in that course.</span></p>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 4.0pt 1.0pt 4.0pt'> 
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>ls -alF /home/httpd/lonUsers/msu/1/2/6/12679c3ed543a25msul1/</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      17155 Apr 25 16:20 classlist.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      60912 Apr 25 16:20 classlist.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      12354 Jan&nbsp; 4 16:40 environment.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      82 Jan&nbsp; 4 16:40 environment.hist</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      103030 May 15 14:47 nohist_calculatedsheets.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      13050 May&nbsp; 9 21:04 nohist_expirationdates.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      6 Jan&nbsp; 4 16:40 passwd</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r-----&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      17457 May&nbsp; 9 21:04 resourcedata.db</span></p>
+    <p class=Preformatted style='border:none;padding:0in;'><span style='font-size:
+8.0pt'>-rw-r--r--&nbsp;&nbsp; 1 www&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; users&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      8888 May&nbsp; 9 21:04 resourcedata.hist</span></p>
+  </div>
+  <p><span style='font-size:14.0pt'><b>Fig.2.1.2</b></span><span
+style='font-size:14.0pt'> – Directory listing of course’s home directory</span></p>
+  <p><span style='font-size:9.0pt;font-family:"Courier New"'>classlist</span> 
+    is this list of students in the course, <span style='font-size:9.0pt;
+font-family:"Courier New"'>environment</span> includes the course’s full name, 
+    etc, and <span style='font-size:9.0pt;font-family:"Courier New"'>resourcedata</span> 
+    are deadlines, etc (parameters for homework).</p>
+  <h3><a name="_Toc421867087">Roles</a></h3>
+  <p><span style='font-size:10.0pt'>Users keep their login, data, preferences, 
+    etc, over their complete tenure. Every user can have several roles, and the 
+    roles can change over the lifetime of a username. For example, over the course 
+    of studies, a student username assumes the role of &quot;student&quot; in 
+    different courses. Roles can have start and expiration dates.</span></p>
+  <table border=1 cellspacing=0 cellpadding=0>
+    <tr> 
+      <td width=429 colspan=3 class="Normal"> <p align=center style='text-align:center'><span
+  style='font-size:9.0pt'>Example: User smith at msu</span></p></td>
+    </tr>
+    <tr> 
+      <td width=85 class="Normal"> <p><span style='font-size:9.0pt'>Instructor</span></p></td>
+      <td width=171 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_12679c3ed543a25msul1</span></p></td>
+      <td width=170 class="Normal">&nbsp; </td>
+    </tr>
+    <tr> 
+      <td width=85 class="Normal"> <p><span style='font-size:9.0pt'>Course Coordinator</span></p></td>
+      <td width=171 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_12679c3ed543a25msul1</span></p></td>
+      <td width=170 class="Normal"> <p><span style='font-size:9.0pt'>From July 
+          1st, 2001 to December 30th, 2001</span></p></td>
+    </tr>
+    <tr> 
+      <td width=85 class="Normal"> <p><span style='font-size:9.0pt'>Instructor</span></p></td>
+      <td width=171 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_18879c3ed543a25msul2</span></p></td>
+      <td width=170 class="Normal"> <p><span style='font-size:9.0pt'>From Jan 
+          1st, 2001 to June 30th, 2001</span></p></td>
+    </tr>
+    <tr> 
+      <td width=85 class="Normal"> <p><span style='font-size:9.0pt'>Resource Author</span></p></td>
+      <td width=171 class="Normal"> <p><tt><span style='font-size:9.0pt;font-family:"Courier New"'>msu</span></tt></p></td>
+      <td width=170 class="Normal"> <p><span style='font-size:9.0pt'>From Aug 
+          15th, 2000</span></p></td>
+    </tr>
+    <tr> 
+      <td width=85 class="Normal"> <p><span style='font-size:9.0pt'>Student</span></p></td>
+      <td width=171 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_82679c3gd543a35msul1</span></p></td>
+      <td width=170 class="Normal"> <p><span style='font-size:9.0pt'>From July 
+          1st, 2001 to December 30th, 2001&nbsp;</span></p></td>
+    </tr>
+  </table>
+  <p><span style='font-size:14.0pt'><b>Fig.2.1.3</b></span><span
+style='font-size:14.0pt'> – Sample Instructor Roles</span></p>
+  <br
+clear=ALL style='page-break-before:always'>
+  <table border=1 cellspacing=0 cellpadding=0>
+    <tr> 
+      <td width=433 colspan=3 class="Normal"> <p align=center style='text-align:center'><span
+  style='font-size:9.0pt'>Example: User jones at msu</span></p></td>
+    </tr>
+    <tr> 
+      <td width=117 class="Normal"> <p><span style='font-size:9.0pt'>Custom Role 
+          &quot;Helproom TA (smith at msu)&quot;</span></p></td>
+      <td width=194 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_82679c3gd543a35msul1</span></p></td>
+      <td width=119 class="Normal"> <p><span style='font-size:9.0pt'>From July 
+          1st, 2001 to December 30th, 2001</span></p></td>
+    </tr>
+    <tr> 
+      <td width=117 class="Normal"> <p><span style='font-size:9.0pt'>Student</span></p></td>
+      <td width=194 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_02679c3gq543a35msul1</span></p></td>
+      <td width=119 class="Normal"> <p><span style='font-size:9.0pt'>From Jan 
+          1st, 2001 to June 30th, 2001</span></p></td>
+    </tr>
+    <tr> 
+      <td width=117 class="Normal"> <p><span style='font-size:9.0pt'>Student</span></p></td>
+      <td width=194 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>umn_82679c3gd543a35umnl2</span></p></td>
+      <td width=119 class="Normal"> <p><span style='font-size:9.0pt'>From July 
+          1st, 2001 to December 30th, 2001</span></p></td>
+    </tr>
+    <tr> 
+      <td width=117 class="Normal"> <p><span style='font-size:9.0pt'>Exam Proctor</span></p></td>
+      <td width=194 class="Normal"> <p><span style='font-size:9.0pt;font-family:"Courier New"'>msu_82679c3gd543a35msul1</span></p></td>
+      <td width=119 class="Normal"> <p><span style='font-size:9.0pt'>Feb 21st, 
+          2001, 1pm to 3pm</span></p></td>
+    </tr>
+  </table>
+  <p><span style='font-size:14.0pt'><b>Fig.2.1.4</b></span><span
+style='font-size:14.0pt'> – Sample Student Roles</span></p>
+  <h3><a name="_Toc421867088">Custom Roles</a></h3>
+  <p>Course Coordinators are able to define named &quot;Custom Roles&quot; for 
+    their courses within a pre-defined set of capabilities. In addition to these 
+    custom roles, there are three standard course faculty/staff roles defined, 
+    Instructor, Exam Proctor and TA. The instructor of record in a small class 
+    is likely to be &quot;Course Coordinator&quot; and &quot;Instructor&quot; 
+    during the term when the course is running, and might remain course coordinator 
+    afterwards. Course coordinator can assign themselves new roles for their course 
+    anytime.</p>
+</div>
+<div class=Section7>
+  <h1><a name="_Toc514840853">&nbsp;</a></h1>
+  <p>Custom role definitions are stored in the <span
+style='font-size:9.0pt;font-family:"Courier New"'>roles.db</span> file of the 
+    role author.</p>
+  <h3><a name="_Toc421867089">Choose a Role, Role Privileges</a></h3>
+  <p><span style='font-family:"Courier New"'>lonroles </span>is a handler that 
+    allows a user to switch roles in mid-session.<span
+style='font-family:"Courier New"'> </span>LON-CAPA attempts to work with “No Role 
+    Specified” as widely as possible, but certain handlers for example need specification 
+    which course they should act on, etc. Both in this scenario, and when the 
+    handler determines via <span style='font-family:"Courier New"'>lonnet</span>’s 
+    <span style='font-family:"Courier New"'>&amp;allowed</span> function that 
+    a certain action is not allowed, <span style='font-family:"Courier New"'>lonroles</span> 
+    is used as errorhandler. <span style='font-family:"Courier New"'>lonroles</span> 
+    can also be accessed via the CRS button in the Remote Control. <b>Fig. 2.1.5</b><span
+style='font-weight:normal'> shows a sample output of </span><span
+style='font-family:"Courier New"'>lonroles</span>.</p>
+  <p><img border=0 width=434 height=198 id="_x0000_i1026"
+src="handout_files/image002.jpg"></p>
+  <p><b>Fig. 2.1.5</b><span style='font-weight:normal'> – Sample Roles Choice 
+    in </span><span style='font-size:12.0pt;font-family:"Courier New"'>lonroles.pm</span></p>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>System: /</span></p>
+  </div>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='
+border:none;padding:0in'><span style='font-size:8.0pt;font-family:Symbol'>·<span
+style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span><span
+style='font-size:8.0pt'>Browse resources</span></p>
+    <p style='
+border:none;padding:0in'><span style='font-size:8.0pt;font-family:Symbol'>·<span
+style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span><span
+style='font-size:8.0pt'>Generate anonymous statistics</span></p>
+    <p style='
+border:none;padding:0in'><span style='font-size:8.0pt;font-family:Symbol'>·<span
+style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span><span
+style='font-size:8.0pt'>Create a Course Custom Role</span></p>
+    <ul type=disc>
+      <li style='border:none;padding:0in'><span
+     style='font-size:8.0pt'>Send internal email</span></li>
+    </ul>
+  </div>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>Domain: msu</span></p>
+  </div>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Assemble resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Browse resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Administrator 
+      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Author 
+      (UNIX authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Co-Author 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Course 
+      Coordinator (UNIX authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke Course Custom Role 
+      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Domain 
+      Guest (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Exam Proctor 
+      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Instructor 
+      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Librarian 
+      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Copy resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Student 
+      (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Teaching 
+      Assistant (UNIX authenticated, Internally authenticated, Kerberos authenticated)</span></p>
+    <ul type=disc>
+      <li style='line-height:90%;border:none;
+     padding:0in'><span style='font-size:8.0pt'>Create, edit, modify and publish 
+        resources</span></li>
+      <li style='line-height:90%;border:none;
+     padding:0in'><span style='font-size:8.0pt'>Modify authentication mechanism 
+        and data for a user</span></li>
+    </ul>
+  </div>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>Course: lbs267L 
+      Lab SS01</span></p>
+  </div>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Assemble resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke Course Custom Role 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Exam Proctor 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Instructor 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Copy resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Student 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Teaching 
+      Assistant (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Create, edit, modify and publish 
+      resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Generate anonymous statistics</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Set assessment parameters</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Send broadcast and receipt-required 
+      email</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>View grades</span></p>
+  </div>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>Course: lbs267 
+      Lecture SS01</span></p>
+  </div>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Assemble resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke Course Custom Role 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Exam Proctor 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Instructor 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Copy resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Student 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Teaching 
+      Assistant (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Create, edit, modify and publish 
+      resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Generate anonymous statistics</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Set assessment parameters</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Send broadcast and receipt-required 
+      email</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>View grades</span></p>
+  </div>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>Course: Demo 
+      Course</span></p>
+  </div>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Assemble resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke Course Custom Role 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Exam Proctor 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Instructor 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Copy resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Student 
+      (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Grant/revoke role of Teaching 
+      Assistant (Internally authenticated, Kerberos authenticated)</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Create, edit, modify and publish 
+      resources</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Generate anonymous statistics</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Set assessment parameters</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>Send broadcast and receipt-required 
+      email</span></p>
+    <p style='line-height:90%;
+border:none;padding:0in'><span style='font-size:8.0pt;
+font-family:Symbol'>·<span style='font:7.0pt "Times New Roman"'>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 
+      </span></span><span style='font-size:8.0pt'>View grades</span></p>
+  </div>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='border:none;padding:0in'><span style='font-size:8.0pt'>Construction 
+      Space: User: korte, Domain: msu</span></p>
+  </div>
+  <p><span style='font-size:14.0pt'><b>Fig. 2.1.6</b></span><span
+style='font-size:14.0pt'> – Sample Set of Privileges</span></p>
+  <p><b>Fig. 2.1.6</b><span style='font-weight:normal'> shows a common set of 
+    privileges for the user roles in </span><b>Fig. 2.1.5</b><span
+style='font-weight:normal'>. The plain text explanations of the various roles 
+    and the extent of them is drawn from </span><span style='font-family:"Courier New"'>/home/httpd/rolesplain.tab</span>, 
+    see <b>Fig. 2.1.7</b><span style='font-weight:normal'>.</span></p>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 1.0pt 1.0pt 1.0pt'> 
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>[www@zaphod www]$ more /home/httpd/lonTabs/rolesplain.tab</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>s:system wide</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>d:domain wide</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>c:course wide</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>U:UNIX authenticated</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>I:Internally authenticated</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>K:Kerberos authenticated</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>C:according to course preferences</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>S:according to custom role settings</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>R:according to resource settings</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>L:unless locked</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>X:according to user session 
+      state</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>F:no restrictions</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cm:No Role, Cumulative Privileges</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>su:Superuser</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>dc:Domain Coordinator</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cc:Course Coordinator</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>in:Instructor</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ta:Teaching Assistant</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ep:Exam Proctor</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cr:Course Custom Role</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>st:Student</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ad:Administrator</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>li:Librarian </span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>au:Author</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>dg:Domain Guest</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ca:Co-Author</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>csu:Grant/revoke role of Superuser</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cdc:Grant/revoke role of Domain 
+      Coordinator</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ccc:Grant/revoke role of Course 
+      Coordinator</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cin:Grant/revoke role of Instructor</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cta:Grant/revoke role of Teaching 
+      Assistant</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cep:Grant/revoke role of Exam 
+      Proctor</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ccr:Grant/revoke Course Custom 
+      Role</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cst:Grant/revoke role of Student</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cad:Grant/revoke role of Administrator</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cli:Grant/revoke role of Librarian</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cau:Grant/revoke role of Author</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cdg:Grant/revoke role of Domain 
+      Guest</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cca:Grant/revoke role of Co-Author</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>mcr:Create a Course Custom Role</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>mau:Modify authentication mechanism 
+      and data for a user</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>bre:Browse resources</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>are:Assemble resources</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cre:Copy resources</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ere:Create, edit, modify and 
+      publish resources</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>mme:Modify metadata for a resource 
+      </span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>vgr:View grades</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>mgr:Modify grades</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>gan:Generate anonymous statistics</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>dcm:Disable all communication 
+      among students</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>sma:Send internal email</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>srm:Send broadcast and receipt-required 
+      email</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>pch:Post to chatrooms and bulletin 
+      boards</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>dch:Delete messages from bulletin 
+      boards</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>pac:Post anonymously</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>rin:Get identity behind anonymous 
+      postings</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>las:Lock and unlock assessments</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>opa:Set assessment parameters</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ain:Assume a student's identity 
+      </span></p>
+  </div>
+  <p><span style='font-size:14.0pt'><b>Fig. 2.1.7</b></span><span
+style='font-size:14.0pt'> – Explanation of Privilege Shorthands</span></p>
+  <h3><a name="_Toc421867090">Role Initialization</a></h3>
+  <p>The privileges for a user are established at login time and stored in the 
+    session environment. A consequence is that a new role does not become active 
+    till the next login. Handlers are able to query for privileges using<span style='font-family:"Courier New"'> 
+    </span><span style='font-size:
+9.0pt;font-family:"Courier New"'>lonnet</span>’s<span style='font-size:8.0pt;
+font-family:"Courier New"'> </span><span style='font-size:9.0pt;font-family:
+"Courier New"'>&amp;allowed</span><span style='font-size:8.0pt;font-family:
+"Courier New"'> </span>function. When a user first logs in, their role is the 
+    “common” role, which means that they have the sum of all of their privileges. 
+    During a session it might become necessary to choose a particular role, which 
+    as a consequence also limits the user to only the privileges in that particular 
+    role.</p>
+  <div style='border:solid windowtext .5pt;padding:1.0pt 4.0pt 1.0pt 4.0pt'> 
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>[www@zaphod www]$ more /home/httpd/lonTabs/roles.tab</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>su:s csu&amp;U:sma:mau:cdc&amp;U</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>dc:s sma</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>dc:d cli&amp;UIK:cau&amp;U:cdg&amp;UIK:mau:ccc&amp;U:cin&amp;UIK:cta&amp;UIK:cep&amp;UIK:ccr&amp;UIK:cst&amp;UIK:cad&amp;UIK</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cc:s bre:sma:mcr</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cc:c cin&amp;IK:cta&amp;IK:cep&amp;IK:ccr&amp;IK:cst&amp;IK:are:cre:ere:vgr:gan:srm:opa</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>in:s sma</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>in:d bre</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>in:c vgr:mgr:gan:dcm:srm:pch:dch:pac:rin:las:opa</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ta:d sma</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ta:c bre&amp;RL:vgr&amp;CR:mgr&amp;CR:srm:pch:dch:pac</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ep:d sma</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ep:c bre&amp;R:mgr&amp;R:dcm:las</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cr:d sma</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>cr:c bre&amp;R:vgr&amp;SCR:mgr&amp;SCR:gan&amp;SCR:dcm&amp;SC:srm&amp;SC:pch:dch&amp;S:pac:rin&amp;S:las&amp;SR:opa&amp;SR</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>st:d sma&amp;L</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>st:c bre&amp;RXL:pch&amp;L:pac&amp;CL</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ad:d sma</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ad:c bre:gan:vgr:srm</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>li:s gan:sma</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>li:d mme</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>au:s gan:sma</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>au:d bre:are:cre:ere:cca&amp;IK</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ca:s gan:sma</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>ca:d bre:are:cre:ere</span></p>
+    <p style='line-height:90%;border:none;padding:0in'><span
+style='font-size:8.0pt;font-family:"Courier New"'>dg:d bre&amp;R</span></p>
+  </div>
+  <p><span style='font-size:14.0pt'><b>Fig. 2.1.8</b></span><span
+style='font-size:14.0pt'> – Privileges by roles and extent</span></p>
+  <p><span style='font-size:12.0pt;font-family:Arial'>Role Assignment</span></p>
+  <p><span style='font-size:12.0pt;font-family:Arial'><img
+border=0 width=175 height=227 id="_x0000_i1027"
+src="handout_files/image003.jpg"></span></p>
+  <p><span style='font-size:14.0pt'><b>Fig. 2.1.9</b></span><span
+style='font-size:14.0pt'> – Assigning privileges to a user</span></p>
+  <ul type=disc>
+    <li><span style='font-family:"Courier New"'>loncreateuser.pm</span> allows 
+      users to within their own privileges (‘c<i>xx</i><span
+     style='font-style:normal'> privileges) create users and give them roles (<b>Fig. 
+      2.1.9</b></span>)<span style='font-size:12.0pt;font-family:Arial'> </span></li>
+    <li><span style='font-family:"Courier New"'>londropadd.pm</span> allows course 
+      coordinators to upload courselists in different formats, and automatically 
+      create users (if they do not exist already), assign them the role of student 
+      in a course, and add them to the classlist. </li>
+    <li><span style='font-family:"Courier New"'>loncreatecourse.pm</span> allows 
+      domain coordinators to create new courses and assign course coordinators.</li>
+  </ul>
+  <span style='font-size:12.0pt;font-family:Arial'><b><i><br clear=ALL
+style='page-break-before:always'>
+  </i></b></span> 
+  <h2><a name="_Toc514840854">&nbsp;</a></h2>
+</div>
+<br
+clear=ALL style='page-break-before:always;'>
+<div class=Section2> </div>
+</body>
+</html>