loncom/auth/lonlogin.pm - diff

Return to lonlogin.pm CVS log

Up to [LON-CAPA] / loncom / auth

Diff for /loncom/auth/lonlogin.pm between versions 1.197 and 1.203

version 1.197, 2022/05/27 01:36:08	version 1.203, 2022/08/30 12:25:03
Line 68 sub handler {	Line 68 sub handler {
$env{'form.ltoken'} = $info{'ltoken'};	$env{'form.ltoken'} = $info{'ltoken'};
} elsif ($info{'linkprot'}) {	} elsif ($info{'linkprot'}) {
$env{'form.linkprot'} = $info{'linkprot'};	$env{'form.linkprot'} = $info{'linkprot'};
	foreach my $item ('linkprotuser','linkprotexit') {
	if ($info{$item} ne '') {
	$env{'form.'.$item} = $info{$item};
	}
	}
} elsif ($info{'linkkey'} ne '') {	} elsif ($info{'linkkey'} ne '') {
$env{'form.linkkey'} = $info{'linkkey'};	$env{'form.linkkey'} = $info{'linkkey'};
}	}
Line 181 sub handler {	Line 186 sub handler {
$link_info{'ltoken'} = $env{'form.ltoken'};	$link_info{'ltoken'} = $env{'form.ltoken'};
} elsif ($env{'form.linkprot'}) {	} elsif ($env{'form.linkprot'}) {
$link_info{'linkprot'} = $env{'form.linkprot'};	$link_info{'linkprot'} = $env{'form.linkprot'};
	foreach my $item ('linkprotuser','linkprotexit') {
	if ($env{'form.'.$item} ne '') {
	$link_info{$item} = $env{'form.'.$item};
	}
	}
} elsif ($env{'form.linkkey'} ne '') {	} elsif ($env{'form.linkkey'} ne '') {
$link_info{'linkkey'} = $env{'form.linkkey'};	$link_info{'linkkey'} = $env{'form.linkkey'};
}	}
Line 249 sub handler {	Line 259 sub handler {
$dest = &HTML::Entities::encode($env{'form.firsturl'},'\'"<>&');	$dest = &HTML::Entities::encode($env{'form.firsturl'},'\'"<>&');
}	}
if (($env{'form.ltoken'}) \|\| ($env{'form.linkprot'})) {	if (($env{'form.ltoken'}) \|\| ($env{'form.linkprot'})) {
my $linkprot;	my ($linkprot,$linkprotuser,$linkprotexit);
if ($env{'form.ltoken'}) {	if ($env{'form.ltoken'}) {
my %info = &Apache::lonnet::tmpget($env{'form.ltoken'});	my %info = &Apache::lonnet::tmpget($env{'form.ltoken'});
$linkprot = $info{'linkprot'};	$linkprot = $info{'linkprot'};
my $delete = &Apache::lonnet::tmpdel($env{'form.ltoken'});	if ($info{'linkprotuser'} ne '') {
	$linkprotuser = $info{'linkprotuser'};
	}
	if ($info{'linkprotexit'} ne '') {
	$linkprotexit = $info{'linkprotexit'};
	}
} else {	} else {
$linkprot = $env{'form.linkprot'};	$linkprot = $env{'form.linkprot'};
	$linkprotuser = $env{'form.linkprotuser'};
	$linkprotexit = $env{'form.linkprotexit'};
}	}
if ($linkprot) {	if ($linkprot) {
my ($linkprotector,$deeplink) = split(/:/,$linkprot,2);	my ($linkprotector,$deeplink) = split(/:/,$linkprot,2);
	if (($deeplink =~ m{^/tiny/$match_domain/\w+$}) &&
	($linkprotuser ne '') && ($linkprotuser ne $env{'user.name'}.':'.$env{'user.domain'})) {
	my $ip = &Apache::lonnet::get_requestor_ip();
	my %linkprotinfo = (
	origurl => $deeplink,
	linkprot => $linkprot,
	linkprotuser => $linkprotuser,
	linkprotexit => $linkprotexit,
	);
	if ($env{'form.ltoken'}) {
	my $delete = &Apache::lonnet::tmpdel($env{'form.ltoken'});
	}
	&Apache::migrateuser::logout($r,$ip,$handle,undef,undef,\%linkprotinfo);
	return OK;
	}
if ($env{'user.linkprotector'}) {	if ($env{'user.linkprotector'}) {
my @protectors = split(/,/,$env{'user.linkprotector'});	my @protectors = split(/,/,$env{'user.linkprotector'});
unless (grep(/^\Q$linkprotector\E$/,@protectors)) {	unless (grep(/^\Q$linkprotector\E$/,@protectors)) {
Line 304 sub handler {	Line 336 sub handler {
}	}
}	}
}	}
	if ($env{'form.ltoken'}) {
	my $delete = &Apache::lonnet::tmpdel($env{'form.ltoken'});
	}
$r->print(	$r->print(
$start_page	$start_page
.'<p class="LC_warning">'.&mt('You are already logged in!').'</p>'	.'<p class="LC_warning">'.&mt('You are already logged in!').'</p>'
Line 429 sub handler {	Line 464 sub handler {

# -------------------------------------------------------- Store away log token	# -------------------------------------------------------- Store away log token
my ($tokenextras,$tokentype,$linkprot_for_login);	my ($tokenextras,$tokentype,$linkprot_for_login);
my @names = ('role','symb','iptoken','ltoken','linkprot','linkkey');	my @names = ('role','symb','iptoken','ltoken','linkprotuser','linkprotexit','linkprot','linkkey');
foreach my $name (@names) {	foreach my $name (@names) {
if ($env{'form.'.$name} ne '') {	if ($env{'form.'.$name} ne '') {
if ($name eq 'ltoken') {	if ($name eq 'ltoken') {
Line 437 sub handler {	Line 472 sub handler {
if ($info{'linkprot'}) {	if ($info{'linkprot'}) {
$linkprot_for_login = $info{'linkprot'};	$linkprot_for_login = $info{'linkprot'};
$tokenextras .= '&linkprot='.&escape($info{'linkprot'});	$tokenextras .= '&linkprot='.&escape($info{'linkprot'});
	foreach my $item ('linkprotuser','linkprotexit') {
	if ($info{$item}) {
	$tokenextras .= '&'.$item.'='.&escape($info{$item});
	}
	}
$tokentype = 'link';	$tokentype = 'link';
last;	last;
}	}
} else {	} else {
$tokenextras .= '&'.$name.'='.&escape($env{'form.'.$name});	$tokenextras .= '&'.$name.'='.&escape($env{'form.'.$name});
if (($name eq 'linkkey') \|\| ($name eq 'linkprot')) {	if (($name eq 'linkkey') \|\| ($name eq 'linkprot')) {
if (($env{'form.retry'}) && (!$env{'form.ltoken'}) && ($name eq 'linkprot')) {	if ((($env{'form.retry'}) \|\| ($env{'form.sso'})) &&
	(!$env{'form.ltoken'}) && ($name eq 'linkprot')) {
$linkprot_for_login = $env{'form.linkprot'};	$linkprot_for_login = $env{'form.linkprot'};
}	}
$tokentype = 'link';	$tokentype = 'link';
Line 623 function enableInput() {	Line 664 function enableInput() {
ENDSCRIPT	ENDSCRIPT

my ($lonhost_in_use,@hosts,%defaultdomconf,$saml_prefix,$saml_landing,	my ($lonhost_in_use,@hosts,%defaultdomconf,$saml_prefix,$saml_landing,
$samlssotext,$samlnonsso,$samlssoimg,$samlssoalt,$samlssourl,$samltooltip);	$samlssotext,$samlnonsso,$samlssoimg,$samlssoalt,$samlssourl,$samltooltip,
	$samlwindow);
%defaultdomconf = &Apache::loncommon::get_domainconf($defdom);	%defaultdomconf = &Apache::loncommon::get_domainconf($defdom);
@hosts = &Apache::lonnet::current_machine_ids();	@hosts = &Apache::lonnet::current_machine_ids();
$lonhost_in_use = $lonhost;	$lonhost_in_use = $lonhost;
Line 644 ENDSCRIPT	Line 686 ENDSCRIPT
$samlssoalt = $defaultdomconf{$saml_prefix.'alt_'.$lonhost_in_use};	$samlssoalt = $defaultdomconf{$saml_prefix.'alt_'.$lonhost_in_use};
$samlssourl = $defaultdomconf{$saml_prefix.'url_'.$lonhost_in_use};	$samlssourl = $defaultdomconf{$saml_prefix.'url_'.$lonhost_in_use};
$samltooltip = $defaultdomconf{$saml_prefix.'title_'.$lonhost_in_use};	$samltooltip = $defaultdomconf{$saml_prefix.'title_'.$lonhost_in_use};
	$samlwindow = $defaultdomconf{$saml_prefix.'window_'.$lonhost_in_use};
}	}
if ($saml_landing) {	if ($saml_landing) {
if ($samlssotext eq '') {	if ($samlssotext eq '') {
Line 831 HEADER	Line 874 HEADER

my $stdauthformstyle = 'inline-block';	my $stdauthformstyle = 'inline-block';
my $ssoauthstyle = 'none';	my $ssoauthstyle = 'none';
	my $sso_onclick;
my $logintype;	my $logintype;
$r->print('<div style="float:left;margin-top:0;">');	$r->print('<div style="float:left;margin-top:0;">');
if ($saml_landing) {	if ($saml_landing) {
Line 841 HEADER	Line 885 HEADER
if ($samlssourl ne '') {	if ($samlssourl ne '') {
$ssologin = $samlssourl;	$ssologin = $samlssourl;
}	}
	my $ssologin_for_js = &js_escape($ssologin);
	my $querystr_for_js;
if (($logtoken eq 'con_lost') \|\| ($logtoken eq 'no_such_host')) {	if (($logtoken eq 'con_lost') \|\| ($logtoken eq 'no_such_host')) {
my $querystring;	my $querystring;
if ($env{'form.firsturl'} ne '') {	if ($env{'form.firsturl'} ne '') {
Line 861 HEADER	Line 907 HEADER
}	}
if ($querystring ne '') {	if ($querystring ne '') {
$ssologin .= (($ssologin=~/\?/)?'&':'?') . $querystring;	$ssologin .= (($ssologin=~/\?/)?'&':'?') . $querystring;
	$querystr_for_js = &js_escape($querystring);
}	}
} elsif ($logtoken ne '') {	} elsif ($logtoken ne '') {
$ssologin .= (($ssologin=~/\?/)?'&':'?') . 'logtoken='.$logtoken;	$ssologin .= (($ssologin=~/\?/)?'&':'?') . 'logtoken='.$logtoken;
	$querystr_for_js = &js_escape('logtoken='.$logtoken);
}	}
my $ssohref;	my $ssohref;
	if ($samlwindow) {
	$sso_onclick = <<"ENDJS";
	if (document.getElementById('LC_sso_login_link')) {
	var ssoelem = document.getElementById('LC_sso_login_link')
	ssoelem.addEventListener('click',samlWinFunction,false);
	var windows = {};
	function samlWinFunction(evt) {
	evt.preventDefault();
	var url = '$ssologin_for_js';
	var name = 'lcssowin';
	var querystr = '$querystr_for_js';
	if (querystr) {
	url += '?'+querystr+'&lcssowin=1';
	} else {
	url += '?lcssowin=1';
	}
	if ((typeof windows[name] !== 'undefined') && (!windows[name].closed)) {
	windows[name].close();
	}
	windows[name]=window.open(url,name,'width=350,height=600');
	windows[name].focus();
	return false;
	}
	}
	ENDJS
	}
if ($samlssoimg ne '') {	if ($samlssoimg ne '') {
$ssohref = '<a href="'.$ssologin.'" title="'.$samltooltip.'">'.	$ssohref = '<a href="'.$ssologin.'" title="'.$samltooltip.'" id="LC_sso_login_link">'.
'<img src="'.$samlssoimg.'" alt="'.$samlssoalt.'" id="lcssobutton" /></a>';	'<img src="'.$samlssoimg.'" alt="'.$samlssoalt.'" id="lcssobutton" /></a>';
} else {	} else {
$ssohref = '<a href="'.$ssologin.'">'.$samlssotext.'</a>';	$ssohref = '<a href="'.$ssologin.'" id="LC_sso_login_link">'.$samlssotext.'</a>';
}	}
if (($env{'form.saml'} eq 'no') \|\|	if (($env{'form.saml'} eq 'no') \|\|
(($env{'form.username'} ne '') && ($env{'form.domain'} ne ''))) {	(($env{'form.username'} ne '') && ($env{'form.domain'} ne ''))) {
Line 907 ENDSAML	Line 981 ENDSAML
my ($linkprotector,$linkproturi) = split(/:/,$linkprot_for_login,2);	my ($linkprotector,$linkproturi) = split(/:/,$linkprot_for_login,2);
if (($linkprotector =~ /^\d+(c\|d)$/) && ($linkproturi =~ m{^/+tiny/+$LONCAPA::match_domain/+\w+$})) {	if (($linkprotector =~ /^\d+(c\|d)$/) && ($linkproturi =~ m{^/+tiny/+$LONCAPA::match_domain/+\w+$})) {
my $set_target;	my $set_target;
if ($env{'form.retry'}) {	if (($env{'form.retry'}) \|\| ($env{'form.sso'})) {
if ($linkproturi eq $env{'form.firsturl'}) {	if ($linkproturi eq $env{'form.firsturl'}) {
$set_target = " document.server.target = '_self';";	$set_target = " document.server.target = '_self';";
}	}
Line 925 ENDTARG	Line 999 ENDTARG
// <![CDATA[	// <![CDATA[
if ((window.self !== window.top) && (document.server.target != '_self')) {	if ((window.self !== window.top) && (document.server.target != '_self')) {
$set_target	$set_target
	$sso_onclick
}	}
// ]]>	// ]]>
</script>	</script>
ENDJS	ENDJS
}	}
	} elsif ($samlwindow) {
	$in_frame_js = <<ENDJS;
	<script type="text/javascript">
	// <![CDATA[
	if ((window.self !== window.top) && (document.server.target != '_self')) {
	$sso_onclick
	}
	// ]]>
	</script>
	ENDJS
}	}

$r->print(<<ENDLOGIN);	$r->print(<<ENDLOGIN);
Line 1124 sub redirect_page {	Line 1209 sub redirect_page {
$path = '/'.$path;	$path = '/'.$path;
}	}
my $url = $protocol.'://'.$hostname.$path;	my $url = $protocol.'://'.$hostname.$path;
if ($env{'form.firsturl'} ne '') {	my $args = {};
	if ($env{'form.firsturl'} =~ m{^/tiny/$match_domain/\w+$}) {
	$url = $protocol.'://'.$hostname.$env{'form.firsturl'};
	if (($env{'form.ltoken'}) \|\| ($env{'form.linkprot'} ne '') \|\|
	($env{'form.linkkey'} ne '')) {
	my %link_info;
	if ($env{'form.ltoken'}) {
	%link_info = &Apache::lonnet::tmpget($env{'form.ltoken'});
	&Apache::lonnet::tmpdel($env{'form.ltoken'});
	$args->{'only_body'} = 1;
	} elsif ($env{'form.linkprot'}) {
	$link_info{'linkprot'} = $env{'form.linkprot'};
	foreach my $item ('linkprotuser','linkprotexit') {
	if ($env{'form.'.$item}) {
	$link_info{$item} = $env{'form.'.$item};
	}
	}
	$args->{'only_body'} = 1;
	} elsif ($env{'form.linkkey'} ne '') {
	$link_info{'linkkey'} = $env{'form.linkkey'};
	}
	my $token = &Apache::lonnet::tmpput(\%link_info,$desthost,'link');
	unless (($token eq 'con_lost') \|\| ($token eq 'refused') \|\|
	($token eq 'unknown_cmd') \|\| ($token eq 'no_such_host')) {
	$url .= '?ltoken='.$token;
	}
	}
	} else {
my $querystring;	my $querystring;
if ($env{'form.firsturl'} =~ /[^\x00-\xFF]/) {	if ($env{'form.firsturl'} ne '') {
$querystring = &uri_escape_utf8($env{'form.firsturl'});	if ($env{'form.firsturl'} =~ /[^\x00-\xFF]/) {
} else {	$querystring = &uri_escape_utf8($env{'form.firsturl'});
$querystring = &uri_escape($env{'form.firsturl'});	} else {
	$querystring = &uri_escape($env{'form.firsturl'});
	}
	$querystring = &HTML::Entities::encode($querystring,"'");
	$querystring = '?firsturl='.$querystring;
}	}
$querystring = &HTML::Entities::encode($querystring,"'");
$url .='?firsturl='.$querystring;
}
if (($env{'form.ltoken'}) \|\| ($env{'form.linkkey'} ne '')) {
my %link_info;
if ($env{'form.ltoken'}) {	if ($env{'form.ltoken'}) {
$link_info{'ltoken'} = $env{'form.ltoken'};	my %link_info = &Apache::lonnet::tmpget($env{'form.ltoken'});
} elsif ($env{'form.linkkey'} ne '') {	&Apache::lonnet::tmpdel($env{'form.ltoken'});
$link_info{'linkkey'} = $env{'form.linkkey'};	my $token = &Apache::lonnet::tmpput(\%link_info,$desthost,'link');
}	unless (($token eq 'con_lost') \|\| ($token eq 'refused') \|\| ($token =~ /^error:/) \|\|
my $token = &Apache::lonnet::tmpput(\%link_info,$desthost,'link');	($token eq 'unknown_cmd') \|\| ($token eq 'no_such_host')) {
unless (($token eq 'con_lost') \|\| ($token eq 'refused') \|\|	unless (($path eq '/adm/roles') \|\| ($path eq '/adm/login')) {
($token eq 'unknown_cmd') \|\| ($token eq 'no_such_host')) {	$url = $protocol.'://'.$hostname.'/adm/roles';
$url .= (($url=~/\?/)?'&':'?') . 'ttoken='.$token;	}
	$querystring .= (($querystring =~/^\?/)?'&':'?') . 'ttoken='.$token;
	}
}	}
	$url .= $querystring;
}	}
my $start_page = &Apache::loncommon::start_page('Switching Server ...',undef,	$args->{'redirect'} = [0,$url];
{'redirect' => [0,$url],});	my $start_page = &Apache::loncommon::start_page('Switching Server ...',undef,$args);
my $end_page = &Apache::loncommon::end_page();	my $end_page = &Apache::loncommon::end_page();
return $start_page.$end_page;	return $start_page.$end_page;
}	}

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

Removed from v.1.197
changed lines
	Added in v.1.203