loncom/auth/lonauth.pm - diff

Return to lonauth.pm CVS log

Up to [LON-CAPA] / loncom / auth

Diff for /loncom/auth/lonauth.pm between versions 1.95 and 1.101.4.2

-version 1.95, 2008/10/01 11:11:08
+version 1.101.4.2, 2010/05/23 21:20:11
  Line 40  use Apache::lonmenu();
  use Apache::createaccount;
  use Fcntl qw(:flock);
  use Apache::lonlocal;
+ use HTML::Entities;
  # ------------------------------------------------------------ Successful login
  sub success {
- Line 73  sub success {
+ Line 74  sub success {
  # ------------------------------------------------------------ Get cookie ready
      $cookie="lonID=$cookie; path=/";
  # -------------------------------------------------------- Menu script and info
+     my $destination = $lowerurl;
+     if (defined($form->{role})) {
+         my $envkey = 'user.role.'.$form->{role};
+         my $now=time;
+         my $then=$env{'user.login.time'};
+         my $refresh=$env{'user.refresh.time'};
+         if (exists($env{$envkey})) {
+             my ($role,$where,$trolecode,$tstart,$tend,$tremark,$tstatus);
+             &Apache::lonnet::role_status($envkey,$then,$refresh,$now,\$role,\$where,
+                                          \$trolecode,\$tstatus,\$tstart,\$tend);
+             if ($tstatus eq 'is') {
+                 $destination  .= ($destination =~ /\?/) ? '&' : '?';
+                 my $newrole = &HTML::Entities::encode($form->{role},'"<>&');
+                 $destination .= 'selectrole=1&'.$newrole.'=1';
+             }
+         }
+     }
+     if (defined($form->{symb})) {
+         my $destsymb = $form->{symb};
+         $destination  .= ($destination =~ /\?/) ? '&' : '?';
+         if ($destsymb =~ /___/) {
+             # FIXME Need to deal with encrypted symbs and urls as needed.
+             my ($map,$resid,$desturl)=split(/___/,$destsymb);
+             unless ($desturl=~/^(adm|uploaded|editupload|public)/) {
+                 $desturl = &Apache::lonnet::clutter($desturl);
+             }
+             $desturl = &HTML::Entities::encode($desturl,'"<>&');
+             $destsymb = &HTML::Entities::encode($destsymb,'"<>&');
+             $destination .= '&destinationurl='.$desturl.
+                             '&destsymb='.$destsymb;
+         } else {
+             $destsymb = &HTML::Entities::encode($destsymb,'"<>&');
+             $destination .= '&destinationurl='.$destsymb;
+         }
+     }
      my $windowinfo=&Apache::lonmenu::open($env{'browser.os'});
-     my $startupremote=&Apache::lonmenu::startupremote($lowerurl);
+     my $startupremote=&Apache::lonmenu::startupremote($destination);
      my $remoteinfo=&Apache::lonmenu::load_remote_msg($lowerurl);
      my $setflags=&Apache::lonmenu::setflags();
      my $maincall=&Apache::lonmenu::maincall();
      my $start_page=&Apache::loncommon::start_page('Successful Login',
- 						  $startupremote,
+                                                   $startupremote,
- 						  {'no_inline_link' => 1,});
+                                                   {'no_inline_link' => 1,});
      my $end_page  =&Apache::loncommon::end_page();
      my $continuelink;
      if (($env{'browser.interface'} eq 'textual') ||
          ($env{'environment.remote'} eq 'off')) {
- 	$continuelink="<a href=\"$lowerurl\">".&mt('Continue')."</a>";
+ 	$continuelink='<a href="'.$destination.'">'.&mt('Continue').'</a>';
      }
  # ------------------------------------------------- Output for successful login
- Line 120  sub failed {
+ Line 158  sub failed {
      my ($r,$message,$form) = @_;
      my $start_page = &Apache::loncommon::start_page('Unsuccessful Login',undef,
  						    {'no_inline_link' => 1,});
+     my $retry = '/adm/login?username='.$form->{'uname'}.
+                 '&domain='.$form->{'udom'};
+     if (exists($form->{role})) {
+         $retry .= '&role='.$form->{role};
+     }
+     if (exists($form->{symb})) {
+         $retry .= '&symb='.$form->{symb};
+     }
      my $end_page   = &Apache::loncommon::end_page();
      &Apache::loncommon::content_type($r,'text/html');
-     sleep 1; # brute force counteraction: slow down attackers, which try to hack user authentication with automated scripts
      $r->send_http_header;
      $r->print(
         $start_page
        .'<h1>'.&mt('Sorry ...').'</h1>'
        .'<p class="LC_warning">'.&mt($message).'</p>'
-       .'<p>'.&mt('Please [_1]log in again[_2].'
+       .'<p>'.&mt('Please [_1]log in again[_2].','<a href="'.$retry.'">','</a>')
-                 ,"<a href=\"/adm/login?username=$form->{'uname'}&domain=$form->{'udom'}\">",'</a>')
        .'</p>'
        .'<p><a href="/adm/loginproblems.html">'.&mt('Login problems?').'</a></p>'
        .$end_page
- Line 163  sub handler {
+ Line 207  sub handler {
  # -------------------------------- Prevent users from attempting to login twice
      my $handle = &Apache::lonnet::check_for_valid_session($r);
      if ($handle ne '') {
+         my $lonidsdir=$r->dir_config('lonIDsDir');
+         if ($handle=~/^publicuser\_/) {
+ # For "public user" - remove it, we apparently really want to login
+             unlink($r->dir_config('lonIDsDir')."/$handle.id");
+         } else {
  # Indeed, a valid token is found
- 	&Apache::loncommon::content_type($r,'text/html');
+             &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle);
- 	$r->send_http_header;
+ 	    &Apache::loncommon::content_type($r,'text/html');
- 	my $start_page =
+ 	    $r->send_http_header;
- 	    &Apache::loncommon::start_page('Already logged in');
+ 	    my $start_page =
- 	my $end_page =
+ 	        &Apache::loncommon::start_page('Already logged in');
- 	    &Apache::loncommon::end_page();
+ 	    my $end_page =
-         $r->print(
+ 	        &Apache::loncommon::end_page();
-            $start_page
+             my $dest = '/adm/roles';
-           .'<h1>'.&mt('You are already logged in!').'</h1>'
+             if ($env{'form.firsturl'} ne '') {
-           .'<p>'.&mt('Please either [_1]continue the current session[_2] or [_3]logout[_4].'
+                 $dest = $env{'form.firsturl'};
-                     ,'<a href="/adm/roles">','</a>','<a href="/adm/logout">','</a>')
+             }
-           .'</p>'
+             $r->print(
-           .'<p><a href="/adm/loginproblems.html">'.&mt('Login problems?').'</a></p>'
+                 $start_page
-           .$end_page
+                .'<h1>'.&mt('You are already logged in!').'</h1>'
-         );
+                .'<p>'.&mt('Please either [_1]continue the current session[_2] or [_3]log out[_4].'
-         return OK;
+                         ,'<a href="'.$dest.'">','</a>','<a href="/adm/logout">','</a>')
+               .'</p>'
+               .$end_page
+             );
+             return OK;
+         }
      }
  # ---------------------------------------------------- No valid token, continue
- Line 232  sub handler {
+ Line 286  sub handler {
  	    return OK;
  	}
      }
      if (!&Apache::lonnet::domain($form{'udom'})) {
          &failed($r,'The domain you provided is not a valid LON-CAPA domain.',\%form);
          return OK;
      }
-     my ($key,$firsturl)=split(/&/,$tmpinfo);
+     my ($key,$firsturl,$rolestr,$symbstr)=split(/&/,$tmpinfo);
+     if ($rolestr) {
+         $rolestr = &unescape($rolestr);
+     }
+     if ($symbstr) {
+         $symbstr= &unescape($symbstr);
+     }
+     if ($rolestr =~ /^role=/) {
+         (undef,$form{'role'}) = split('=',$rolestr);
+     }
+     if ($symbstr =~ /^symb=/) {
+         (undef,$form{'symb'}) = split('=',$symbstr);
+     }
      my $keybin=pack("H16",$key);

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

Removed from v.1.95
changed lines
	Added in v.1.101.4.2