loncom/auth/lonauth.pm - diff

Return to lonauth.pm CVS log

Up to [LON-CAPA] / loncom / auth

Diff for /loncom/auth/lonauth.pm between versions 1.5 and 1.15

version 1.5, 2000/02/29 16:24:00	version 1.15, 2000/10/26 15:27:35
Line 2	Line 2
# User Authentication Module	# User Authentication Module
# 5/21/99,5/22,5/25,5/26,5/27,5/29,6/2,6/11,6/14,6/15	# 5/21/99,5/22,5/25,5/26,5/27,5/29,6/2,6/11,6/14,6/15
# 16/11,12/16,	# 16/11,12/16,
# 1/14,2/24,2/28,2/29 Gerd Kortemeyer	# 1/14,2/24,2/28,2/29,3/7,5/29,5/30,5/31,6/1,6/5,6/29,
	# 7/1,7/10,10/2,10/5,10/9,10/26 Gerd Kortemeyer

package Apache::lonauth;	package Apache::lonauth;

Line 10 use Apache::Constants qw(:common);	Line 11 use Apache::Constants qw(:common);
use Apache::File;	use Apache::File;
use CGI qw(:standard);	use CGI qw(:standard);
use CGI::Cookie();	use CGI::Cookie();
	use Crypt::DES;
use Apache::lonnet();	use Apache::lonnet();
	use Apache::lonmenu();

# ------------------------------------------------------------ Successful login	# ------------------------------------------------------------ Successful login

sub success {	sub success {
my ($r, $username, $domain, $authhost) = @_;	my ($r, $username, $domain, $authhost,$lowerurl) = @_;
my $lonids=$r->dir_config('lonIDsDir');	my $lonids=$r->dir_config('lonIDsDir');

# See if old ID present, if so, remove	# See if old ID present, if so, remove
Line 33 sub success {	Line 36 sub success {

my $userroles=Apache::lonnet::rolesinit($domain,$username,$authhost);	my $userroles=Apache::lonnet::rolesinit($domain,$username,$authhost);

# Write first profile	# ------------------------------------ Check browser type and MathML capability

	my @browsertype=split(/\&/,$r->dir_config("lonBrowsDet"));
	my %mathcap=split(/\&/,$r->dir_config("lonMathML"));
	my $httpbrowser=$ENV{"HTTP_USER_AGENT"};
	my $i;
	my $clientbrowser='unknown';
	my $clientversion='0';
	my $clientmathml='';
	for ($i=0;$i<=$#browsertype;$i++) {
	my ($bname,$match,$notmatch,$vreg,$minv)=split(/\:/,$browsertype[$i]);
	if (($httpbrowser=~/$match/i) && ($httpbrowser!~/$notmatch/i)) {
	$clientbrowser=$bname;
	$httpbrowser=~/$vreg/i;
	$clientversion=$1;
	$clientmathml=($clientversion>=$minv);
	}
	}
	my $clientos='unknown';
	if (($httpbrowser=~/linux/i) \|\|
	($httpbrowser=~/unix/i) \|\|
	($httpbrowser=~/ux/i) \|\|
	($httpbrowser=~/solaris/i)) { $clientos='unix'; }
	if (($httpbrowser=~/vax/i) \|\|
	($httpbrowser=~/vms/i)) { $clientos='vms'; }
	if ($httpbrowser=~/next/i) { $clientos='next'; }
	if (($httpbrowser=~/mac/i) \|\|
	($httpbrowser=~/powerpc/i)) { $clientos='mac'; }
	if ($httpbrowser=~/win/i) { $clientos='win'; }

	# ------------------------------------------------------------- Get environment

	my $userenv=Apache::lonnet::reply("dump:$domain:$username:environment",
	$authhost);
	if (($userenv eq 'con_lost') \|\|
	($userenv =~ /^error\:/)) {
	$userenv='';
	}
	$userenv=~s/\&/\nenvironment\./g;
	if ($userenv ne '') {
	$userenv='environment.'.$userenv;
	}
	# --------------------------------------------------------- Write first profile

{	{
my $idf=Apache::File->new(">$lonids/$cookie.id");	my $idf=Apache::File->new(">$lonids/$cookie.id");
	if ($userenv ne '') { print $idf "$userenv\n"; }
print $idf "user.name=$username\n";	print $idf "user.name=$username\n";
print $idf "user.domain=$domain\n";	print $idf "user.domain=$domain\n";
print $idf "user.home=$authhost\n";	print $idf "user.home=$authhost\n";
if ($userroles ne '') { print $idf "$userroles" };	print $idf "browser.type=$clientbrowser\n";
	print $idf "browser.version=$clientversion\n";
	print $idf "browser.mathml=$clientmathml\n";
	print $idf "browser.os=$clientos\n";
	print $idf "request.course.fn=\n";
	print $idf "request.course.uri=\n";
	print $idf "request.course.sec=\n";
	print $idf "request.role=cm\n";
	if ($userroles ne '') { print $idf "$userroles"; }
	}

	# -------------------------------------------------------------------- Log this

	&Apache::lonnet::log($domain,$username,$authhost,
	"Login $ENV{'REMOTE_ADDR'}");

	# ------------------------------------------------- Check for critical messages

	my @what=&Apache::lonnet::dump('critical');
	if ($what[0]) {
	if ($what[0] ne 'con_lost') {
	$lowerurl='/adm/email/critical/'.$what[0];
}	}
	}

# ------------------------------------------------------------ Get cookie ready	# ------------------------------------------------------------ Get cookie ready

$cookie="lonID=$cookie; path=/";	$cookie="lonID=$cookie; path=/";
	# -------------------------------------------------------- Menu script and info

	my $windowinfo=&Apache::lonmenu::open();
# ------------------------------------------------- Output for successful login	# ------------------------------------------------- Output for successful login

$r->send_cgi_header(<<ENDHEADER);	$r->send_cgi_header(<<ENDHEADER);
Line 58 ENDHEADER	Line 128 ENDHEADER
<html>	<html>
<head>	<head>
<title>Successful Login to the LearningOnline Network with CAPA</title>	<title>Successful Login to the LearningOnline Network with CAPA</title>
	<meta HTTP-EQUIV="Refresh" CONTENT="1; url=$lowerurl">
</head>	</head>
<frameset rows="80,*" border=0>	<body bgcolor="#FFFFFF">
<frame scrolling="no" name="loncontrol" src="/adm/menu">	$windowinfo
<frame name="loncontent" src="/adm/roles">	<h1>Welcome!</h1>
</frameset>	</body>
</html>	</html>
ENDSUCCESS	ENDSUCCESS
}	}
Line 100 sub handler {	Line 171 sub handler {
my $pair; my $name; my $value; my %FORM;	my $pair; my $name; my $value; my %FORM;
foreach $pair (@pairs) {	foreach $pair (@pairs) {
($name,$value) = split(/=/,$pair);	($name,$value) = split(/=/,$pair);
	$value =~ tr/+/ /;
	$value =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C",hex($1))/eg;
$FORM{$name}=$value;	$FORM{$name}=$value;
}	}

Line 108 sub handler {	Line 181 sub handler {
return OK;	return OK;
}	}
$FORM{'uname'} =~ s/\W//g;	$FORM{'uname'} =~ s/\W//g;
$FORM{'upass'} =~ s/\W//g;
$FORM{'udom'} =~ s/\W//g;	$FORM{'udom'} =~ s/\W//g;

my $role = $r->dir_config('lonRole');	my $role = $r->dir_config('lonRole');
my $domain = $r->dir_config('lonDefDomain');	my $domain = $r->dir_config('lonDefDomain');
my $prodir = $r->dir_config('lonUsersDir');	my $prodir = $r->dir_config('lonUsersDir');

	# ---------------------------------------- Get the information from login token

	my $tmpinfo=Apache::lonnet::reply('tmpget:'.$FORM{'logtoken'},
	$FORM{'serverid'});

	if (($tmpinfo=~/^error/) \|\| ($tmpinfo eq 'con_lost')) {
	failed($r,'Login token missing, inaccessible or expired');
	return OK;
	}

	my ($key,$firsturl)=split(/&/,$tmpinfo);

	my $keybin=pack("H16",$key);

	my $cipher=new DES $keybin;

	my $upass=$cipher->decrypt(
	unpack("a8",pack("H16",substr($FORM{'upass'},0,16))));

	$upass.=$cipher->decrypt(
	unpack("a8",pack("H16",substr($FORM{'upass'},16,16))));

	$upass=substr($upass,1,ord(substr($upass,0,1)));

# ---------------------------------------------------------------- Authenticate	# ---------------------------------------------------------------- Authenticate
my $authhost=Apache::lonnet::authenticate($FORM{'uname'},	my $authhost=Apache::lonnet::authenticate($FORM{'uname'},
$FORM{'upass'},	$upass,
$FORM{'udom'});	$FORM{'udom'});

# --------------------------------------------------------------------- Failed?	# --------------------------------------------------------------------- Failed?
Line 127 sub handler {	Line 223 sub handler {
return OK;	return OK;
}	}

my %cookies=CGI::Cookie->parse($r->header_in('Cookie'));	if (($firsturl eq '') \|\| ($firsturl eq '/adm/logout')) {
my $lonurl=$cookies{'lonURL'};	$firsturl='/res/adm/pages/index.html';
if (!$lonurl) { failed($r,'Cookies need to be activated'); return OK; }	}
my $lowerurl=$lonurl->value;

success($r,$FORM{'uname'},$FORM{'udom'},$authhost);	success($r,$FORM{'uname'},$FORM{'udom'},$authhost,$firsturl);
return OK;	return OK;
}	}

1;	1;
__END__	__END__

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

Removed from v.1.5
changed lines
	Added in v.1.15