Annotation of loncom/auth/checkauthen.pm, revision 1.16

1.1       albertel    1: # The LearningOnline Network
                      2: # checks for a cokkie to authenticate a user
                      3: #
1.16    ! raeburn     4: # $Id: checkauthen.pm,v 1.15 2014/01/05 11:30:06 raeburn Exp $
1.1       albertel    5: #
                      6: # Copyright Michigan State University Board of Trustees
                      7: #
                      8: # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
                      9: #
                     10: # LON-CAPA is free software; you can redistribute it and/or modify
                     11: # it under the terms of the GNU General Public License as published by
                     12: # the Free Software Foundation; either version 2 of the License, or
                     13: # (at your option) any later version.
                     14: #
                     15: # LON-CAPA is distributed in the hope that it will be useful,
                     16: # but WITHOUT ANY WARRANTY; without even the implied warranty of
                     17: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
                     18: # GNU General Public License for more details.
                     19: #
                     20: # You should have received a copy of the GNU General Public License
                     21: # along with LON-CAPA; if not, write to the Free Software
                     22: # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
                     23: #
                     24: # /home/httpd/html/adm/gpl.txt
                     25: #
                     26: # http://www.lon-capa.org/
                     27: #
                     28: ###
                     29: 
                     30: package Apache::checkauthen;
                     31: 
                     32: use strict;
                     33: use Apache::Constants qw(:common);
                     34: use Apache::lonnet;
                     35: 
                     36: sub handler {
                     37:     my ($r) = @_;
                     38: 
1.14      raeburn    39:     if ($r->uri() =~ m{^/res/adm/pages/[^/]+\.(gif|png)$}) {
                     40:         if ($r->user() eq '') {
1.16    ! raeburn    41:             $r->user('public:public');
1.14      raeburn    42:         }
                     43:         return OK;
                     44:     }
                     45: 
1.11      raeburn    46:     if (&Apache::lonnet::is_domainimage($r->uri)) {
1.14      raeburn    47:         if ($r->user() eq '') {
1.16    ! raeburn    48:             $r->user('public:public');
1.14      raeburn    49:         }
1.11      raeburn    50:         return OK;
                     51:     }
                     52: 
1.7       albertel   53:     if ($r->auth_type() ne 'LONCAPA') {
1.2       albertel   54: 	return DECLINED;
                     55:     }
1.1       albertel   56:     my $fail = FORBIDDEN; 
                     57:     if ($r->dir_config('lonOtherAuthen') eq 'yes') {
1.6       albertel   58: 	if (defined($r->dir_config('lonOtherAuthenType'))) {
                     59:             $r->auth_type($r->dir_config('lonOtherAuthenType'));
                     60:         }
1.2       albertel   61: 	#&Apache::lonnet::logthis("other authen");
1.1       albertel   62: 	$fail = DECLINED;
                     63:     }
                     64: 
                     65:     if ($env{'user.name'} eq 'public' 
                     66: 	&& $env{'user.domain'} eq 'public') {
                     67: 	if ($env{'request.publicaccess'} ) {
1.14      raeburn    68:             if ($r->user() eq '') {
1.16    ! raeburn    69:                 $r->user('public:public');
1.14      raeburn    70:             }
1.1       albertel   71: 	    return OK;
                     72: 	} else {
                     73: 	    return $fail;
                     74: 	}
                     75:     }
                     76: 
1.14      raeburn    77:     my %user;
                     78:     my $handle = &Apache::lonnet::check_for_valid_session($r,undef,\%user);
1.12      albertel   79:     if ($handle eq '') {
1.8       albertel   80:         $handle = $env{'user.environment'};
1.14      raeburn    81:         if (($handle ne '') && ($r->user() eq '')) {
                     82:             if ($env{'user.domain'} eq $r->dir_config('lonDefDomain')) {
                     83:                 $r->user($env{'user.name'});
                     84:             } else {
                     85:                 $r->user($env{'user.name'}.':'.$env{'user.domain'});
                     86:             }
                     87:         }
1.8       albertel   88:     }
                     89: 
1.12      albertel   90:     if ($handle ne '') {
1.14      raeburn    91:         if ($r->user() eq '') {
                     92:             if ($user{'domain'} eq $r->dir_config('lonDefDomain')) {
                     93:                 $r->user($user{'name'});
                     94:             } else {
                     95:                 $r->user($user{'name'}.':'.$user{'domain'});
                     96:             }
                     97:         }
1.8       albertel   98:         return OK;
1.1       albertel   99:     }
1.15      raeburn   100:     if (($fail == FORBIDDEN) &&
                    101:         (($r->uri eq '/adm/email') || ($r->uri eq '/adm/preferences') ||
                    102:          ($r->uri eq '/adm/requestcourse'))) {
1.13      raeburn   103:         $env{'form.firsturl'} = $r->uri;
                    104:     }
1.1       albertel  105:     return $fail;
                    106: }
                    107: 
                    108: 1;

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>