|
version 1.158, 2013/11/26 03:17:09
|
version 1.158.2.8, 2019/08/01 14:21:37
|
|
Line 37 use Apache::lonauth();
|
Line 37 use Apache::lonauth();
|
| use Apache::lonlocal; |
use Apache::lonlocal; |
| use Apache::migrateuser(); |
use Apache::migrateuser(); |
| use lib '/home/httpd/lib/perl/'; |
use lib '/home/httpd/lib/perl/'; |
| use LONCAPA; |
use LONCAPA qw(:DEFAULT :match); |
| |
use CGI::Cookie(); |
| |
|
| sub handler { |
sub handler { |
| my $r = shift; |
my $r = shift; |
|
Line 46 sub handler {
|
Line 47 sub handler {
|
| (join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'}, |
(join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'}, |
| $ENV{'REDIRECT_QUERY_STRING'}), |
$ENV{'REDIRECT_QUERY_STRING'}), |
| ['interface','username','domain','firsturl','localpath','localres', |
['interface','username','domain','firsturl','localpath','localres', |
| 'token','role','symb','iptoken']); |
'token','role','symb','iptoken','btoken']); |
| if (!defined($env{'form.firsturl'})) { |
if (!defined($env{'form.firsturl'})) { |
| &Apache::lonacc::get_posted_cgi($r,['firsturl']); |
&Apache::lonacc::get_posted_cgi($r,['firsturl']); |
| } |
} |
|
Line 56 sub handler {
|
Line 57 sub handler {
|
| return &Apache::migrateuser::handler($r); |
return &Apache::migrateuser::handler($r); |
| } |
} |
| |
|
| |
# For "public user" - remove any exising "public" cookie, as user really wants to log-in |
| |
my ($handle,$lonidsdir,$expirepub,$userdom); |
| |
$lonidsdir=$r->dir_config('lonIDsDir'); |
| |
unless ($r->header_only) { |
| |
$handle = &Apache::lonnet::check_for_valid_session($r,'lonID',undef,\$userdom); |
| |
if ($handle ne '') { |
| |
if ($handle=~/^publicuser\_/) { |
| |
unlink($r->dir_config('lonIDsDir')."/$handle.id"); |
| |
undef($handle); |
| |
undef($userdom); |
| |
$expirepub = 1; |
| |
} |
| |
} |
| |
} |
| |
|
| &Apache::loncommon::no_cache($r); |
&Apache::loncommon::no_cache($r); |
| &Apache::lonlocal::get_language_handle($r); |
&Apache::lonlocal::get_language_handle($r); |
| &Apache::loncommon::content_type($r,'text/html'); |
&Apache::loncommon::content_type($r,'text/html'); |
| |
if ($expirepub) { |
| |
my $c = new CGI::Cookie(-name => 'lonID', |
| |
-value => '', |
| |
-expires => '-10y',); |
| |
$r->header_out('Set-cookie' => $c); |
| |
} elsif (($handle eq '') && ($userdom ne '')) { |
| |
my $c = new CGI::Cookie(-name => 'lonID', |
| |
-value => '', |
| |
-expires => '-10y',); |
| |
$r->headers_out->add('Set-cookie' => $c); |
| |
} |
| $r->send_http_header; |
$r->send_http_header; |
| return OK if $r->header_only; |
return OK if $r->header_only; |
| |
|
|
Line 70 sub handler {
|
Line 97 sub handler {
|
| return OK; |
return OK; |
| } |
} |
| |
|
| |
my $lonhost = $r->dir_config('lonHostID'); |
| $env{'form.firsturl'} =~ s/(`)/'/g; |
$env{'form.firsturl'} =~ s/(`)/'/g; |
| |
|
| # -------------------------------- Prevent users from attempting to login twice |
# Check if browser sent a LON-CAPA load balancer cookie (and this is a balancer) |
| my $handle = &Apache::lonnet::check_for_valid_session($r); |
|
| if ($handle ne '') { |
my ($found_server,$balancer_cookie) = &Apache::lonnet::check_for_balancer_cookie($r,1); |
| my $lonidsdir=$r->dir_config('lonIDsDir'); |
if ($found_server) { |
| if ($handle=~/^publicuser\_/) { |
my $hostname = &Apache::lonnet::hostname($found_server); |
| # For "public user" - remove it, we apparently really want to login |
if ($hostname ne '') { |
| unlink($r->dir_config('lonIDsDir')."/$handle.id"); |
my $protocol = $Apache::lonnet::protocol{$found_server}; |
| } else { |
$protocol = 'http' if ($protocol ne 'https'); |
| # Indeed, a valid token is found |
|
| &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle); |
|
| my $start_page = |
|
| &Apache::loncommon::start_page('Already logged in'); |
|
| my $end_page = |
|
| &Apache::loncommon::end_page(); |
|
| my $dest = '/adm/roles'; |
my $dest = '/adm/roles'; |
| if ($env{'form.firsturl'} ne '') { |
if ($env{'form.firsturl'} ne '') { |
| $dest = $env{'form.firsturl'}; |
$dest = $env{'form.firsturl'}; |
| } |
} |
| $r->print( |
my %info = ( |
| $start_page |
balcookie => $lonhost.':'.$balancer_cookie, |
| .'<p class="LC_warning">'.&mt('You are already logged in!').'</p>' |
); |
| .'<p>'.&mt('Please either [_1]continue the current session[_2] or [_3]log out[_4].', |
my $balancer_token = &Apache::lonnet::tmpput(\%info,$found_server); |
| '<a href="'.$dest.'">','</a>','<a href="/adm/logout">','</a>').'</p>' |
if ($balancer_token) { |
| .$end_page |
$dest .= (($dest=~/\?/)?'&;':'?') . 'btoken='.$balancer_token; |
| ); |
} |
| |
my $url = $protocol.'://'.$hostname.$dest; |
| |
my $start_page = |
| |
&Apache::loncommon::start_page('Switching Server ...',undef, |
| |
{'redirect' => [0,$url],}); |
| |
my $end_page = &Apache::loncommon::end_page(); |
| |
$r->print($start_page.$end_page); |
| |
return OK; |
| |
} |
| |
} |
| |
|
| |
# |
| |
# Check if a LON-CAPA load balancer sent user here because user's browser sent |
| |
# it a balancer cookie for an active session on this server. |
| |
# |
| |
|
| |
my $balcookie; |
| |
if ($env{'form.btoken'}) { |
| |
my %info = &Apache::lonnet::tmpget($env{'form.btoken'}); |
| |
$balcookie = $info{'balcookie'}; |
| |
&Apache::lonnet::tmpdel($env{'form.btoken'}); |
| |
delete($env{'form.btoken'}); |
| |
} |
| |
|
| |
# |
| |
# If browser sent an old cookie for which the session file had been removed |
| |
# check if configuration for user's domain has a portal URL set. If so |
| |
# switch user's log-in to the portal. |
| |
# |
| |
|
| |
if (($handle eq '') && ($userdom ne '')) { |
| |
my %domdefaults = &Apache::lonnet::get_domain_defaults($userdom); |
| |
if ($domdefaults{'portal_def'} =~ /^https?\:/) { |
| |
my $start_page = &Apache::loncommon::start_page('Switching Server ...',undef, |
| |
{'redirect' => [0,$domdefaults{'portal_def'}],}); |
| |
my $end_page = &Apache::loncommon::end_page(); |
| |
$r->print($start_page.$end_page); |
| return OK; |
return OK; |
| } |
} |
| } |
} |
| |
|
| |
$env{'form.firsturl'} =~ s/(`)/'/g; |
| |
|
| |
# -------------------------------- Prevent users from attempting to login twice |
| |
if ($handle ne '') { |
| |
&Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle); |
| |
my $start_page = |
| |
&Apache::loncommon::start_page('Already logged in'); |
| |
my $end_page = |
| |
&Apache::loncommon::end_page(); |
| |
my $dest = '/adm/roles'; |
| |
if ($env{'form.firsturl'} ne '') { |
| |
$dest = $env{'form.firsturl'}; |
| |
} |
| |
$r->print( |
| |
$start_page |
| |
.'<p class="LC_warning">'.&mt('You are already logged in!').'</p>' |
| |
.'<p>'.&mt('Please either [_1]continue the current session[_2] or [_3]log out[_4].', |
| |
'<a href="'.$dest.'">','</a>','<a href="/adm/logout">','</a>').'</p>' |
| |
.$end_page |
| |
); |
| |
return OK; |
| |
} |
| |
|
| # ---------------------------------------------------- No valid token, continue |
# ---------------------------------------------------- No valid token, continue |
| |
|
| # ---------------------------- Not possible to really login to domain "public" |
# ---------------------------- Not possible to really login to domain "public" |
|
Line 113 sub handler {
|
Line 194 sub handler {
|
| my %sessiondata; |
my %sessiondata; |
| if ($env{'form.iptoken'}) { |
if ($env{'form.iptoken'}) { |
| %sessiondata = &Apache::lonnet::tmpget($env{'form.iptoken'}); |
%sessiondata = &Apache::lonnet::tmpget($env{'form.iptoken'}); |
| my $delete = &Apache::lonnet::tmpdel($env{'form.token'}); |
unless ($sessiondata{'sessionserver'}) { |
| |
my $delete = &Apache::lonnet::tmpdel($env{'form.iptoken'}); |
| |
delete($env{'form.iptoken'}); |
| |
} |
| } |
} |
| # ----------------------------------------------------------- Process Interface |
# ----------------------------------------------------------- Process Interface |
| $env{'form.interface'}=~s/\W//g; |
$env{'form.interface'}=~s/\W//g; |
|
Line 124 sub handler {
|
Line 208 sub handler {
|
| my $iconpath= |
my $iconpath= |
| &Apache::loncommon::lonhttpdurl($r->dir_config('lonIconsURL')); |
&Apache::loncommon::lonhttpdurl($r->dir_config('lonIconsURL')); |
| |
|
| my $lonhost = $r->dir_config('lonHostID'); |
|
| my $domain = &Apache::lonnet::default_login_domain(); |
my $domain = &Apache::lonnet::default_login_domain(); |
| |
my $defdom = $domain; |
| if ($lonhost ne '') { |
if ($lonhost ne '') { |
| unless ($sessiondata{'sessionserver'}) { |
unless ($sessiondata{'sessionserver'}) { |
| my $redirect = &check_loginvia($domain,$lonhost); |
my $redirect = &check_loginvia($domain,$lonhost,$lonidsdir,$balcookie); |
| if ($redirect) { |
if ($redirect) { |
| $r->print($redirect); |
$r->print($redirect); |
| return OK; |
return OK; |
|
Line 137 sub handler {
|
Line 221 sub handler {
|
| } |
} |
| |
|
| if (($sessiondata{'domain'}) && |
if (($sessiondata{'domain'}) && |
| (&Apache::lonnet::domain($env{'form.domain'},'description'))) { |
(&Apache::lonnet::domain($sessiondata{'domain'},'description'))) { |
| $domain=$sessiondata{'domain'}; |
$domain=$sessiondata{'domain'}; |
| } elsif (($env{'form.domain'}) && |
} elsif (($env{'form.domain'}) && |
| (&Apache::lonnet::domain($env{'form.domain'},'description'))) { |
(&Apache::lonnet::domain($env{'form.domain'},'description'))) { |
|
Line 222 sub handler {
|
Line 306 sub handler {
|
| } |
} |
| $tokenextras .= '&symb='.&escape($env{'form.symb'}); |
$tokenextras .= '&symb='.&escape($env{'form.symb'}); |
| } |
} |
| |
if ($env{'form.iptoken'}) { |
| |
if (!$tokenextras) { |
| |
$tokenextras = '&&'; |
| |
} |
| |
$tokenextras .= '&iptoken='.&escape($env{'form.iptoken'}); |
| |
} |
| my $logtoken=Apache::lonnet::reply( |
my $logtoken=Apache::lonnet::reply( |
| 'tmpput:'.$ukey.$lkey.'&'.$firsturl.$tokenextras, |
'tmpput:'.$ukey.$lkey.'&'.$firsturl.$tokenextras, |
| $lonhost); |
$lonhost); |
|
Line 343 lextkey=this.document.client.elements.le
|
Line 433 lextkey=this.document.client.elements.le
|
| initkeys(); |
initkeys(); |
| |
|
| this.document.server.elements.upass0.value |
this.document.server.elements.upass0.value |
| =crypted(this.document.client.elements.upass$now.value.substr(0,15)); |
=getCrypted(this.document.client.elements.upass$now.value); |
| this.document.server.elements.upass1.value |
|
| =crypted(this.document.client.elements.upass$now.value.substr(15,15)); |
|
| this.document.server.elements.upass2.value |
|
| =crypted(this.document.client.elements.upass$now.value.substr(30,15)); |
|
| |
|
| this.document.client.elements.uname.value=''; |
this.document.client.elements.uname.value=''; |
| this.document.client.elements.upass$now.value=''; |
this.document.client.elements.upass$now.value=''; |
|
Line 378 ENDSCRIPT
|
Line 464 ENDSCRIPT
|
| alink => "$alink", |
alink => "$alink", |
| onload => 'javascript:enableInput();',); |
onload => 'javascript:enableInput();',); |
| |
|
| |
my ($lonhost_in_use,$headextra,$headextra_exempt,@hosts,%defaultdomconf); |
| |
@hosts = &Apache::lonnet::current_machine_ids(); |
| |
$lonhost_in_use = $lonhost; |
| |
if (@hosts > 1) { |
| |
foreach my $hostid (@hosts) { |
| |
if (&Apache::lonnet::host_domain($hostid) eq $defdom) { |
| |
$lonhost_in_use = $hostid; |
| |
last; |
| |
} |
| |
} |
| |
} |
| |
%defaultdomconf = &Apache::loncommon::get_domainconf($defdom); |
| |
$headextra = $defaultdomconf{$defdom.'.login.headtag_'.$lonhost_in_use}; |
| |
$headextra_exempt = $defaultdomconf{$domain.'.login.headtag_exempt_'.$lonhost_in_use}; |
| |
if ($headextra) { |
| |
my $omitextra; |
| |
if ($headextra_exempt ne '') { |
| |
my @exempt = split(',',$headextra_exempt); |
| |
my $ip = $ENV{'REMOTE_ADDR'}; |
| |
if (grep(/^\Q$ip\E$/,@exempt)) { |
| |
$omitextra = 1; |
| |
} |
| |
} |
| |
unless ($omitextra) { |
| |
my $confname = $defdom.'-domainconfig'; |
| |
if ($headextra =~ m{^\Q/res/$defdom/$confname/login/headtag/$lonhost_in_use/\E}) { |
| |
my $extra = &Apache::lonnet::getfile(&Apache::lonnet::filelocation("",$headextra)); |
| |
unless ($extra eq '-1') { |
| |
$js .= "\n".$extra."\n"; |
| |
} |
| |
} |
| |
} |
| |
} |
| |
|
| $r->print(&Apache::loncommon::start_page('The LearningOnline Network with CAPA Login',$js, |
$r->print(&Apache::loncommon::start_page('The LearningOnline Network with CAPA Login',$js, |
| { 'redirect' => [$expire,'/adm/roles'], |
{ 'redirect' => [$expire,'/adm/roles'], |
| 'add_entries' => \%add_entries, |
'add_entries' => \%add_entries, |
|
Line 428 ENDSCRIPT
|
Line 548 ENDSCRIPT
|
| <input type="hidden" name="serverid" value="$lonhost" /> |
<input type="hidden" name="serverid" value="$lonhost" /> |
| <input type="hidden" name="uname" value="" /> |
<input type="hidden" name="uname" value="" /> |
| <input type="hidden" name="upass0" value="" /> |
<input type="hidden" name="upass0" value="" /> |
| <input type="hidden" name="upass1" value="" /> |
|
| <input type="hidden" name="upass2" value="" /> |
|
| <input type="hidden" name="udom" value="" /> |
<input type="hidden" name="udom" value="" /> |
| <input type="hidden" name="localpath" value="$env{'form.localpath'}" /> |
<input type="hidden" name="localpath" value="$env{'form.localpath'}" /> |
| <input type="hidden" name="localres" value="$env{'form.localres'}" /> |
<input type="hidden" name="localres" value="$env{'form.localres'}" /> |
|
Line 480 LFORM
|
Line 598 LFORM
|
| $r->print(<<HEADER); |
$r->print(<<HEADER); |
| <!-- The LON-CAPA Header --> |
<!-- The LON-CAPA Header --> |
| <div style="background:$pgbg;margin:0;width:100%;"> |
<div style="background:$pgbg;margin:0;width:100%;"> |
| <img src="$img" border="0" alt="The Learning Online Network with CAPA" /> |
<img src="$img" border="0" alt="The Learning Online Network with CAPA" class="LC_maxwidth" /> |
| </div> |
</div> |
| HEADER |
HEADER |
| } |
} |
|
Line 504 HEADER
|
Line 622 HEADER
|
| <div> |
<div> |
| ENDTOP |
ENDTOP |
| if ($showmainlogo) { |
if ($showmainlogo) { |
| $r->print(' <img src="'.$logo.'" alt="" />'."\n"); |
$r->print(' <img src="'.$logo.'" alt="" class="LC_maxwidth" />'."\n"); |
| } |
} |
| $r->print(<<ENDTOP); |
$r->print(<<ENDTOP); |
| $announcements |
$announcements |
|
Line 597 ENDDOCUMENT
|
Line 715 ENDDOCUMENT
|
| } |
} |
| |
|
| sub check_loginvia { |
sub check_loginvia { |
| my ($domain,$lonhost) = @_; |
my ($domain,$lonhost,$lonidsdir,$balcookie) = @_; |
| if ($domain eq '' || $lonhost eq '') { |
if ($domain eq '' || $lonhost eq '' || $lonidsdir eq '') { |
| return; |
return; |
| } |
} |
| my %domconfhash = &Apache::loncommon::get_domainconf($domain); |
my %domconfhash = &Apache::loncommon::get_domainconf($domain); |
|
Line 627 sub check_loginvia {
|
Line 745 sub check_loginvia {
|
| } |
} |
| if ($newhost ne $lonhost) { |
if ($newhost ne $lonhost) { |
| if (&Apache::lonnet::hostname($newhost) ne '') { |
if (&Apache::lonnet::hostname($newhost) ne '') { |
| |
if ($balcookie) { |
| |
my ($balancer,$cookie) = split(/:/,$balcookie); |
| |
if ($cookie =~ /^($match_domain)_($match_username)_([a-f0-9]+)$/) { |
| |
my ($udom,$uname,$cookieid) = ($1,$2,$3); |
| |
unless (&Apache::lonnet::delbalcookie($cookie,$balancer) eq 'ok') { |
| |
if ((-d $lonidsdir) && (opendir(my $dh,$lonidsdir))) { |
| |
while (my $filename=readdir($dh)) { |
| |
if ($filename=~/^(\Q$uname\E_\d+_\Q$udom\E_$match_lonid)\.id$/) { |
| |
my $handle = $1; |
| |
my %hash = |
| |
&Apache::lonnet::get_sessionfile_vars($handle,$lonidsdir, |
| |
['request.balancercookie', |
| |
'user.linkedenv']); |
| |
if ($hash{'request.balancercookie'} eq "$balancer:$cookieid") { |
| |
if (unlink("$lonidsdir/$filename")) { |
| |
if (($hash{'user.linkedenv'} =~ /^[a-f0-9]+_linked$/) && |
| |
(-l "$lonidsdir/$hash{'user.linkedenv'}.id") && |
| |
(readlink("$lonidsdir/$hash{'user.linkedenv'}.id") eq "$lonidsdir/$filename")) { |
| |
unlink("$lonidsdir/$hash{'user.linkedenv'}.id"); |
| |
} |
| |
} |
| |
} |
| |
last; |
| |
} |
| |
} |
| |
closedir($dh); |
| |
} |
| |
} |
| |
} |
| |
} |
| $output = &redirect_page($newhost,$path); |
$output = &redirect_page($newhost,$path); |
| } |
} |
| } |
} |
|
Line 637 sub check_loginvia {
|
Line 785 sub check_loginvia {
|
| |
|
| sub redirect_page { |
sub redirect_page { |
| my ($desthost,$path) = @_; |
my ($desthost,$path) = @_; |
| |
my $hostname = &Apache::lonnet::hostname($desthost); |
| my $protocol = $Apache::lonnet::protocol{$desthost}; |
my $protocol = $Apache::lonnet::protocol{$desthost}; |
| $protocol = 'http' if ($protocol ne 'https'); |
$protocol = 'http' if ($protocol ne 'https'); |
| unless ($path =~ m{^/}) { |
unless ($path =~ m{^/}) { |
| $path = '/'.$path; |
$path = '/'.$path; |
| } |
} |
| my $url = $protocol.'://'.&Apache::lonnet::hostname($desthost).$path; |
my $url = $protocol.'://'.$hostname.$path; |
| if ($env{'form.firsturl'} ne '') { |
if ($env{'form.firsturl'} ne '') { |
| $url .='?firsturl='.$env{'form.firsturl'}; |
$url .='?firsturl='.$env{'form.firsturl'}; |
| } |
} |
![[BACK]](/icons/back.gif){kind=icon}
Return to lonlogin.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / auth