1: # The LearningOnline Network
2: # checks for a cookie to authenticate a user
3: #
4: # $Id: checkauthen.pm,v 1.18 2015/09/18 11:43:05 raeburn Exp $
5: #
6: # Copyright Michigan State University Board of Trustees
7: #
8: # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
9: #
10: # LON-CAPA is free software; you can redistribute it and/or modify
11: # it under the terms of the GNU General Public License as published by
12: # the Free Software Foundation; either version 2 of the License, or
13: # (at your option) any later version.
14: #
15: # LON-CAPA is distributed in the hope that it will be useful,
16: # but WITHOUT ANY WARRANTY; without even the implied warranty of
17: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18: # GNU General Public License for more details.
19: #
20: # You should have received a copy of the GNU General Public License
21: # along with LON-CAPA; if not, write to the Free Software
22: # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
23: #
24: # /home/httpd/html/adm/gpl.txt
25: #
26: # http://www.lon-capa.org/
27: #
28: ###
29:
30: package Apache::checkauthen;
31:
32: use strict;
33: use Apache::Constants qw(:common);
34: use Apache::lonnet;
35:
36: sub handler {
37: my ($r) = @_;
38:
39: if ($r->uri() =~ m{^/res/adm/pages/[^/]+\.(gif|png)$}) {
40: if ($r->user() eq '') {
41: $r->user('public:public');
42: }
43: return OK;
44: }
45:
46: if (&Apache::lonnet::is_domainimage($r->uri)) {
47: if ($r->user() eq '') {
48: $r->user('public:public');
49: }
50: return OK;
51: }
52:
53: if ($r->uri() =~ m{^/res/adm/pages/reactionresponse/[^/]+\.html$}) {
54: if ($r->user() eq '') {
55: $r->user('public:public');
56: }
57: return OK;
58: }
59:
60: if ($r->auth_type() ne 'LONCAPA') {
61: return DECLINED;
62: }
63: my $fail = FORBIDDEN;
64: if ($r->dir_config('lonOtherAuthen') eq 'yes') {
65: if (defined($r->dir_config('lonOtherAuthenType'))) {
66: $r->auth_type($r->dir_config('lonOtherAuthenType'));
67: }
68: #&Apache::lonnet::logthis("other authen");
69: $fail = DECLINED;
70: }
71:
72: if ($env{'user.name'} eq 'public'
73: && $env{'user.domain'} eq 'public') {
74: if ($env{'request.publicaccess'} ) {
75: if ($r->user() eq '') {
76: $r->user('public:public');
77: }
78: return OK;
79: } else {
80: return $fail;
81: }
82: }
83:
84: my %user;
85: my $handle = &Apache::lonnet::check_for_valid_session($r,undef,\%user);
86: if ($handle eq '') {
87: $handle = $env{'user.environment'};
88: if (($handle ne '') && ($r->user() eq '')) {
89: if ($env{'user.domain'} eq $r->dir_config('lonDefDomain')) {
90: $r->user($env{'user.name'});
91: } else {
92: $r->user($env{'user.name'}.':'.$env{'user.domain'});
93: }
94: }
95: }
96:
97: if ($handle ne '') {
98: if ($r->user() eq '') {
99: if ($user{'domain'} eq $r->dir_config('lonDefDomain')) {
100: $r->user($user{'name'});
101: } else {
102: $r->user($user{'name'}.':'.$user{'domain'});
103: }
104: }
105: return OK;
106: }
107: if (($fail == FORBIDDEN) &&
108: (($r->uri eq '/adm/email') || ($r->uri eq '/adm/preferences') ||
109: ($r->uri eq '/adm/requestcourse'))) {
110: $env{'form.firsturl'} = $r->uri;
111: }
112: return $fail;
113: }
114:
115: 1;
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>