|
version 1.180, 2020/10/16 23:27:45
|
version 1.189, 2021/10/06 19:41:53
|
|
Line 38 use Apache::lonlocal;
|
Line 38 use Apache::lonlocal;
|
| use Apache::migrateuser();
|
use Apache::migrateuser();
|
| use lib '/home/httpd/lib/perl/';
|
use lib '/home/httpd/lib/perl/';
|
| use LONCAPA qw(:DEFAULT :match);
|
use LONCAPA qw(:DEFAULT :match);
|
| |
use URI::Escape;
|
| |
use HTML::Entities();
|
| use CGI::Cookie();
|
use CGI::Cookie();
|
|
|
|
| sub handler {
|
sub handler {
|
|
Line 47 sub handler {
|
Line 49 sub handler {
|
| (join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'},
|
(join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'},
|
| $ENV{'REDIRECT_QUERY_STRING'}),
|
$ENV{'REDIRECT_QUERY_STRING'}),
|
| ['interface','username','domain','firsturl','localpath','localres',
|
['interface','username','domain','firsturl','localpath','localres',
|
| 'token','role','symb','iptoken','btoken','ltoken','linkkey']);
|
'token','role','symb','iptoken','btoken','ltoken','linkkey','saml']);
|
| if (!defined($env{'form.firsturl'})) {
|
if (!defined($env{'form.firsturl'})) {
|
| &Apache::lonacc::get_posted_cgi($r,['firsturl']);
|
&Apache::lonacc::get_posted_cgi($r,['firsturl']);
|
| }
|
}
|
|
Line 60 sub handler {
|
Line 62 sub handler {
|
| (!$env{'form.ltoken'}) && (!$env{'form.linkkey'})) {
|
(!$env{'form.ltoken'}) && (!$env{'form.linkkey'})) {
|
| &Apache::lonacc::get_posted_cgi($r,['linkkey']);
|
&Apache::lonacc::get_posted_cgi($r,['linkkey']);
|
| }
|
}
|
| |
if ($env{'form.firsturl'} eq '/adm/logout') {
|
| |
delete($env{'form.firsturl'});
|
| |
}
|
|
|
|
| # -- check if they are a migrating user
|
# -- check if they are a migrating user
|
| if (defined($env{'form.token'})) {
|
if (defined($env{'form.token'})) {
|
|
Line 111 sub handler {
|
Line 116 sub handler {
|
| }
|
}
|
|
|
|
| my $lonhost = $r->dir_config('lonHostID');
|
my $lonhost = $r->dir_config('lonHostID');
|
| $env{'form.firsturl'} =~ s/(`)/'/g;
|
|
|
|
|
| # Check if browser sent a LON-CAPA load balancer cookie (and this is a balancer)
|
# Check if browser sent a LON-CAPA load balancer cookie (and this is a balancer)
|
|
|
|
|
Line 123 sub handler {
|
Line 127 sub handler {
|
| $protocol = 'http' if ($protocol ne 'https');
|
$protocol = 'http' if ($protocol ne 'https');
|
| my $dest = '/adm/roles';
|
my $dest = '/adm/roles';
|
| if ($env{'form.firsturl'} ne '') {
|
if ($env{'form.firsturl'} ne '') {
|
| $dest = $env{'form.firsturl'};
|
if ($env{'form.firsturl'} =~ /[^\x00-\xFF]/) {
|
| |
$dest = &uri_escape_utf8($env{'form.firsturl'});
|
| |
} else {
|
| |
$dest = &uri_escape($env{'form.firsturl'});
|
| |
}
|
| |
$dest = &HTML::Entities::encode($dest,"'");
|
| }
|
}
|
| my %info = (
|
my %info = (
|
| balcookie => $lonhost.':'.$balancer_cookie,
|
balcookie => $lonhost.':'.$balancer_cookie,
|
|
Line 141 sub handler {
|
Line 150 sub handler {
|
| }
|
}
|
| my $balancer_token = &Apache::lonnet::tmpput(\%info,$found_server);
|
my $balancer_token = &Apache::lonnet::tmpput(\%info,$found_server);
|
| if ($balancer_token) {
|
if ($balancer_token) {
|
| $dest .= (($dest=~/\?/)?'&;':'?') . 'btoken='.$balancer_token;
|
$dest .= (($dest=~/\?/)?'&':'?') . 'btoken='.$balancer_token;
|
| |
}
|
| |
unless ($found_server eq $lonhost) {
|
| |
my $alias = &Apache::lonnet::use_proxy_alias($r,$found_server);
|
| |
$hostname = $alias if ($alias ne '');
|
| }
|
}
|
| my $url = $protocol.'://'.$hostname.$dest;
|
my $url = $protocol.'://'.$hostname.$dest;
|
| my $start_page =
|
my $start_page =
|
|
Line 199 sub handler {
|
Line 212 sub handler {
|
| &Apache::loncommon::end_page();
|
&Apache::loncommon::end_page();
|
| my $dest = '/adm/roles';
|
my $dest = '/adm/roles';
|
| if ($env{'form.firsturl'} ne '') {
|
if ($env{'form.firsturl'} ne '') {
|
| $dest = $env{'form.firsturl'};
|
if ($env{'form.firsturl'} =~ /[^\x00-\xFF]/) {
|
| |
$dest = &uri_escape_utf8($env{'form.firsturl'});
|
| |
} else {
|
| |
$dest = &uri_escape($env{'form.firsturl'});
|
| |
}
|
| |
$dest = &HTML::Entities::encode($dest,"'");
|
| }
|
}
|
| if (($env{'form.ltoken'}) || ($linkprot)) {
|
if (($env{'form.ltoken'}) || ($linkprot)) {
|
| unless ($linkprot) {
|
unless ($linkprot) {
|
|
Line 469 sub handler {
|
Line 487 sub handler {
|
| next if ($hostid eq $lonhost);
|
next if ($hostid eq $lonhost);
|
| my $hostname = &Apache::lonnet::hostname($hostid);
|
my $hostname = &Apache::lonnet::hostname($hostid);
|
| next if (($hostname eq '') || ($spareservers{$hostname}));
|
next if (($hostname eq '') || ($spareservers{$hostname}));
|
| |
$spareservers{$hostname} = 1;
|
| my $protocol = $Apache::lonnet::protocol{$hostid};
|
my $protocol = $Apache::lonnet::protocol{$hostid};
|
| $protocol = 'http' if ($protocol ne 'https');
|
$protocol = 'http' if ($protocol ne 'https');
|
| $spares.='<br /><a href="'.$protocol.'://'.
|
$spares.='<br /><a href="'.$protocol.'://'.
|
|
Line 576 function enableInput() {
|
Line 595 function enableInput() {
|
|
|
|
| ENDSCRIPT
|
ENDSCRIPT
|
|
|
|
| # --------------------------------------------------- Print login screen header
|
my ($lonhost_in_use,@hosts,%defaultdomconf,$saml_prefix,$saml_landing,
|
|
|
$samlssotext,$samlnonsso,$samlssoimg,$samlssoalt,$samlssourl,$samltooltip);
|
| my %add_entries = (
|
%defaultdomconf = &Apache::loncommon::get_domainconf($defdom);
|
| bgcolor => "$mainbg",
|
|
| text => "$font",
|
|
| link => "$link",
|
|
| vlink => "$vlink",
|
|
| alink => "$alink",
|
|
| onload => 'javascript:enableInput();',);
|
|
|
|
|
| my ($lonhost_in_use,$headextra,$headextra_exempt,@hosts,%defaultdomconf);
|
|
| @hosts = &Apache::lonnet::current_machine_ids();
|
@hosts = &Apache::lonnet::current_machine_ids();
|
| $lonhost_in_use = $lonhost;
|
$lonhost_in_use = $lonhost;
|
| if (@hosts > 1) {
|
if (@hosts > 1) {
|
|
Line 597 ENDSCRIPT
|
Line 608 ENDSCRIPT
|
| }
|
}
|
| }
|
}
|
| }
|
}
|
| %defaultdomconf = &Apache::loncommon::get_domainconf($defdom);
|
$saml_prefix = $defdom.'.login.saml_';
|
| |
if ($defaultdomconf{$saml_prefix.$lonhost_in_use}) {
|
| |
$saml_landing = 1;
|
| |
$samlssotext = $defaultdomconf{$saml_prefix.'text_'.$lonhost_in_use};
|
| |
$samlnonsso = $defaultdomconf{$saml_prefix.'notsso_'.$lonhost_in_use};
|
| |
$samlssoimg = $defaultdomconf{$saml_prefix.'img_'.$lonhost_in_use};
|
| |
$samlssoalt = $defaultdomconf{$saml_prefix.'alt_'.$lonhost_in_use};
|
| |
$samlssourl = $defaultdomconf{$saml_prefix.'url_'.$lonhost_in_use};
|
| |
$samltooltip = $defaultdomconf{$saml_prefix.'title_'.$lonhost_in_use};
|
| |
}
|
| |
if ($saml_landing) {
|
| |
if ($samlssotext eq '') {
|
| |
$samlssotext = 'SSO Login';
|
| |
}
|
| |
if ($samlnonsso eq '') {
|
| |
$samlnonsso = 'Non-SSO Login';
|
| |
}
|
| |
$js .= <<"ENDSAMLJS";
|
| |
|
| |
<script type="text/javascript">
|
| |
// <![CDATA[
|
| |
function toggleLClogin() {
|
| |
if (document.getElementById('LC_standard_login')) {
|
| |
if (document.getElementById('LC_standard_login').style.display == 'none') {
|
| |
document.getElementById('LC_standard_login').style.display = 'inline-block';
|
| |
if (document.getElementById('LC_login_text')) {
|
| |
document.getElementById('LC_login_text').innerHTML = '$samlnonsso';
|
| |
}
|
| |
if (document.getElementById('LC_SSO_login')) {
|
| |
document.getElementById('LC_SSO_login').style.display = 'none';
|
| |
}
|
| |
} else {
|
| |
document.getElementById('LC_standard_login').style.display = 'none';
|
| |
if (document.getElementById('LC_login_text')) {
|
| |
document.getElementById('LC_login_text').innerHTML = '$samlssotext';
|
| |
}
|
| |
if (document.getElementById('LC_SSO_login')) {
|
| |
document.getElementById('LC_SSO_login').style.display = 'inline-block';
|
| |
}
|
| |
}
|
| |
}
|
| |
return;
|
| |
}
|
| |
|
| |
// ]]>
|
| |
</script>
|
| |
|
| |
ENDSAMLJS
|
| |
}
|
| |
|
| |
# --------------------------------------------------- Print login screen header
|
| |
|
| |
my %add_entries = (
|
| |
bgcolor => "$mainbg",
|
| |
text => "$font",
|
| |
link => "$link",
|
| |
vlink => "$vlink",
|
| |
alink => "$alink",
|
| |
onload => 'javascript:enableInput();',);
|
| |
|
| |
my ($headextra,$headextra_exempt);
|
| $headextra = $defaultdomconf{$defdom.'.login.headtag_'.$lonhost_in_use};
|
$headextra = $defaultdomconf{$defdom.'.login.headtag_'.$lonhost_in_use};
|
| $headextra_exempt = $defaultdomconf{$domain.'.login.headtag_exempt_'.$lonhost_in_use};
|
$headextra_exempt = $defaultdomconf{$domain.'.login.headtag_exempt_'.$lonhost_in_use};
|
| if ($headextra) {
|
if ($headextra) {
|
| my $omitextra;
|
my $omitextra;
|
| if ($headextra_exempt ne '') {
|
if ($headextra_exempt ne '') {
|
| my @exempt = split(',',$headextra_exempt);
|
my @exempt = split(',',$headextra_exempt);
|
| my $ip = $ENV{'REMOTE_ADDR'};
|
my $ip = &Apache::lonnet::get_requestor_ip();
|
| if (grep(/^\Q$ip\E$/,@exempt)) {
|
if (grep(/^\Q$ip\E$/,@exempt)) {
|
| $omitextra = 1;
|
$omitextra = 1;
|
| }
|
}
|
|
Line 642 ENDSCRIPT
|
Line 713 ENDSCRIPT
|
| 'helpdesk' => 'Contact Helpdesk',
|
'helpdesk' => 'Contact Helpdesk',
|
| 'forgotpw' => 'Forgot password?',
|
'forgotpw' => 'Forgot password?',
|
| 'newuser' => 'New User?',
|
'newuser' => 'New User?',
|
| |
'change' => 'Change?',
|
| );
|
);
|
| # -------------------------------------------------- Change password field name
|
# -------------------------------------------------- Change password field name
|
|
|
|
|
Line 703 ENDSERVERFORM
|
Line 775 ENDSERVERFORM
|
| $mobileargs = 'autocapitalize="off" autocorrect="off"';
|
$mobileargs = 'autocapitalize="off" autocorrect="off"';
|
| }
|
}
|
| my $loginform=(<<LFORM);
|
my $loginform=(<<LFORM);
|
| <form name="client" action="" onsubmit="return(send())">
|
<form name="client" action="" onsubmit="return(send())" id="lclogin">
|
| <input type="hidden" name="lextkey" value="$lextkey" />
|
<input type="hidden" name="lextkey" value="$lextkey" />
|
| <input type="hidden" name="uextkey" value="$uextkey" />
|
<input type="hidden" name="uextkey" value="$uextkey" />
|
| <b><label for="uname">$lt{'un'}</label>:</b><br />
|
<b><label for="uname">$lt{'un'}</label>:</b><br />
|
|
Line 724 LFORM
|
Line 796 LFORM
|
| </div>
|
</div>
|
| HEADER
|
HEADER
|
| }
|
}
|
| $r->print(<<ENDTOP);
|
|
| <div style="float:left;margin-top:0;">
|
my $stdauthformstyle = 'inline-block';
|
| |
my $ssoauthstyle = 'none';
|
| |
my $logintype;
|
| |
$r->print('<div style="float:left;margin-top:0;">');
|
| |
if ($saml_landing) {
|
| |
$ssoauthstyle = 'inline-block';
|
| |
$stdauthformstyle = 'none';
|
| |
$logintype = $samlssotext;
|
| |
my $ssologin = '/adm/sso';
|
| |
if ($samlssourl ne '') {
|
| |
$ssologin = $samlssourl;
|
| |
}
|
| |
if ($env{'form.firsturl'} ne '') {
|
| |
my $querystring;
|
| |
if ($env{'form.firsturl'} =~ /[^\x00-\xFF]/) {
|
| |
$querystring = &uri_escape_utf8($env{'form.firsturl'});
|
| |
} else {
|
| |
$querystring = &uri_escape($env{'form.firsturl'});
|
| |
}
|
| |
$querystring = &HTML::Entities::encode($querystring,"'");
|
| |
$ssologin .= (($ssologin=~/\?/)?'&':'?') . $querystring;
|
| |
}
|
| |
my $ssohref;
|
| |
if ($samlssoimg ne '') {
|
| |
$ssohref = '<a href="'.$ssologin.'" title="'.$samltooltip.'"><img src="'.$samlssoimg.'" alt="'.$samlssoalt.'" /></a>';
|
| |
} else {
|
| |
$ssohref = '<a href="'.$ssologin.'">'.$samlssotext.'</a>';
|
| |
}
|
| |
if (($env{'form.saml'} eq 'no') ||
|
| |
(($env{'form.username'} ne '') && ($env{'form.domain'} ne ''))) {
|
| |
$ssoauthstyle = 'none';
|
| |
$stdauthformstyle = 'inline-block';
|
| |
$logintype = $samlnonsso;
|
| |
}
|
| |
$r->print(<<ENDSAML);
|
| |
<p>
|
| |
Log-in type:
|
| |
<span style="font-weight:bold" id="LC_login_text">$logintype</span><br />
|
| |
<span><a href="javascript:toggleLClogin();" style="color:#000000">$lt{'change'}</a></span>
|
| |
</p>
|
| |
<div style="display:$ssoauthstyle" id="LC_SSO_login">
|
| |
<div class="LC_Box" style="padding-top: 10px;">
|
| |
$ssohref
|
| |
$noscript_warning
|
| |
</div>
|
| |
<div class="LC_Box" style="padding-top: 10px;">
|
| |
$loginhelp
|
| |
$contactblock
|
| |
$coursecatalog
|
| |
</div>
|
| |
</div>
|
| |
ENDSAML
|
| |
}
|
| |
|
| |
$r->print(<<ENDLOGIN);
|
| |
<div style="display:$stdauthformstyle;" id="LC_standard_login">
|
| <div class="LC_Box" style="background:$loginbox_bg;">
|
<div class="LC_Box" style="background:$loginbox_bg;">
|
| $logintitle
|
$logintitle
|
| $loginform
|
$loginform
|
|
Line 741 HEADER
|
Line 868 HEADER
|
| </div>
|
</div>
|
| </div>
|
</div>
|
|
|
|
| <div>
|
ENDLOGIN
|
| ENDTOP
|
$r->print('</div><div>'."\n");
|
| if ($showmainlogo) {
|
if ($showmainlogo) {
|
| $r->print(' <img src="'.$logo.'" alt="" class="LC_maxwidth" />'."\n");
|
$r->print(' <img src="'.$logo.'" alt="" class="LC_maxwidth" />'."\n");
|
| }
|
}
|
|
Line 847 sub check_loginvia {
|
Line 974 sub check_loginvia {
|
| my $output;
|
my $output;
|
| if ($loginvia ne '') {
|
if ($loginvia ne '') {
|
| my $noredirect;
|
my $noredirect;
|
| my $ip = $ENV{'REMOTE_ADDR'};
|
my $ip = &Apache::lonnet::get_requestor_ip();
|
| if ($ip eq '127.0.0.1') {
|
if ($ip eq '127.0.0.1') {
|
| $noredirect = 1;
|
$noredirect = 1;
|
| } else {
|
} else {
|
|
Line 915 sub redirect_page {
|
Line 1042 sub redirect_page {
|
| }
|
}
|
| my $url = $protocol.'://'.$hostname.$path;
|
my $url = $protocol.'://'.$hostname.$path;
|
| if ($env{'form.firsturl'} ne '') {
|
if ($env{'form.firsturl'} ne '') {
|
| $url .='?firsturl='.$env{'form.firsturl'};
|
my $querystring;
|
| |
if ($env{'form.firsturl'} =~ /[^\x00-\xFF]/) {
|
| |
$querystring = &uri_escape_utf8($env{'form.firsturl'});
|
| |
} else {
|
| |
$querystring = &uri_escape($env{'form.firsturl'});
|
| |
}
|
| |
$querystring = &HTML::Entities::encode($querystring,"'");
|
| |
$url .='?firsturl='.$querystring
|
| }
|
}
|
| if ($linkprot) {
|
if ($linkprot) {
|
| my $ltoken = &Apache::lonnet::tmpput({linkprot => $linkprot},$desthost);
|
my $ltoken = &Apache::lonnet::tmpput({linkprot => $linkprot},$desthost);
|
| if ($ltoken) {
|
if ($ltoken) {
|
| $url .= (($url =~ /\?/) ? '&' : '?').'ltoken='.$ltoken;
|
$url .= (($url =~ /\?/) ? '&' : '?').'ltoken='.$ltoken;
|
| }
|
}
|
| }
|
}
|
| my $start_page = &Apache::loncommon::start_page('Switching Server ...',undef,
|
my $start_page = &Apache::loncommon::start_page('Switching Server ...',undef,
|
![[BACK]](/icons/back.gif){kind=icon}
Return to lonlogin.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / auth