--- loncom/auth/lonlogin.pm	2005/04/28 01:19:20	1.64
+++ loncom/auth/lonlogin.pm	2007/10/02 01:09:59	1.96
@@ -1,7 +1,7 @@
 # The LearningOnline Network
 # Login Screen
 #
-# $Id: lonlogin.pm,v 1.64 2005/04/28 01:19:20 albertel Exp $
+# $Id: lonlogin.pm,v 1.96 2007/10/02 01:09:59 albertel Exp $
 #
 # Copyright Michigan State University Board of Trustees
 #
@@ -30,15 +30,29 @@ package Apache::lonlogin;
 
 use strict;
 use Apache::Constants qw(:common);
-use CGI::Cookie();
 use Apache::File ();
 use Apache::lonnet;
 use Apache::loncommon();
 use Apache::lonauth();
 use Apache::lonlocal;
-
+use Apache::migrateuser();
+use lib '/home/httpd/lib/perl/';
+use LONCAPA;
+ 
 sub handler {
     my $r = shift;
+
+    &Apache::loncommon::get_unprocessed_cgi
+	(join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'},
+	      $ENV{'REDIRECT_QUERY_STRING'}),
+	 ['interface','username','domain','firsturl','localpath','localres',
+	  'token']);
+
+# -- check if they are a migrating user
+    if (defined($env{'form.token'})) {
+	return &Apache::migrateuser::handler($r);
+    }
+
     &Apache::loncommon::no_cache($r);
     &Apache::lonlocal::get_language_handle($r);
     &Apache::loncommon::content_type($r,'text/html');
@@ -52,42 +66,37 @@ sub handler {
 	return OK;
     }
 
+
 # -------------------------------- Prevent users from attempting to login twice
-    my %cookies=CGI::Cookie->parse($r->header_in('Cookie'));
-    my $lonid=$cookies{'lonID'};
-    my $cookie;
-    if ($lonid) {
-	my $handle=$lonid->value;
-        $handle=~s/\W//g;
-        my $lonidsdir=$r->dir_config('lonIDsDir');
-        if ((-e "$lonidsdir/$handle.id") && ($handle ne '')) {
+    my $handle = &Apache::lonnet::check_for_valid_session($r);
+    if ($handle=~/^publicuser\_/) {
+# For "public user" - remove it, we apparently really want to login
+	unlink($r->dir_config('lonIDsDir')."/$handle.id");
+    } elsif ($handle ne '') {
 # Indeed, a valid token is found
-	    my $bodytag=&Apache::loncommon::bodytag('Already logged in');
-	    $r->print(<<ENDFAILED);
-<html>
-<head>
-<title>Already logged in</title>
-</head>
-$bodytag
+	my $start_page = 
+	    &Apache::loncommon::start_page('Already logged in');
+	my $end_page = 
+	    &Apache::loncommon::end_page();
+	$r->print(<<ENDFAILED);
+$start_page
 <h1>You are already logged in</h1>
 <p>Please either <a href="/adm/roles">continue the current session</a> or
 <a href="/adm/logout">logout</a>.</p>
 <p>
 <a href="/adm/loginproblems.html">Problems?</a></p>
-</body>
-</html>
+$end_page
 ENDFAILED
-           return OK;
-	}
+        return OK;
     }
 
 # ---------------------------------------------------- No valid token, continue
 
-    &Apache::loncommon::get_unprocessed_cgi
-     ($ENV{'QUERY_STRING'}.'&'.$env{'request.querystring'},
-      ['interface','username','domain','firsturl','localpath','localres']);
- 
-
+ # ---------------------------- Not possible to really login to domain "public"
+    if ($env{'form.domain'} eq 'public') {
+	$env{'form.domain'}='';
+	$env{'form.username'}='';
+    }
 # ----------------------------------------------------------- Process Interface
     $env{'form.interface'}=~s/\W//g;
 
@@ -101,26 +110,24 @@ ENDFAILED
     }
 
     my $fullgraph=($env{'form.interface'} ne 'textual');
-    my $port_to_use=$r->dir_config('lonhttpdPort');
-    if (!defined($port_to_use)) {
-	$port_to_use='8080';
-    }
-    my $iconpath= 'http://'.$ENV{'HTTP_HOST'}.':'.$port_to_use.
-                  $r->dir_config('lonIconsURL');
-    my $domain  = $r->dir_config('lonDefDomain');
+
+    my $iconpath= 
+	&Apache::loncommon::lonhttpdurl($r->dir_config('lonIconsURL'));
+
+    my $domain = &Apache::lonnet::default_login_domain();
     if (($env{'form.domain'}) && 
-	 ($Apache::lonnet::domaindescription{$env{'form.domain'}})) {
+	(&Apache::lonnet::domain($env{'form.domain'},'description'))) {
 	$domain=$env{'form.domain'};
     }
     my $role    = $r->dir_config('lonRole');
     my $loadlim = $r->dir_config('lonLoadLim');
     my $servadm = $r->dir_config('lonAdmEMail');
-    my $sysadm  = $r->dir_config('lonSysEMail');
     my $lonhost = $r->dir_config('lonHostID');
     my $tabdir  = $r->dir_config('lonTabDir');
     my $include = $r->dir_config('lonIncludes');
     my $expire  = $r->dir_config('lonExpire');
     my $version = $r->dir_config('lonVersion');
+    my $host_name = &Apache::lonnet::hostname($lonhost);
 
 # --------------------------------------------- Default values for login fields
 
@@ -138,7 +145,7 @@ ENDFAILED
     my $userloadpercent=&Apache::lonnet::userload();
 
 # ------------------------------------------------------- Do the load balancing
-    my $otherserver='http://'.$ENV{'SERVER_NAME'};
+    my $otherserver= &Apache::lonnet::absolute_url($host_name);
     my $firsturl=
     ($env{'request.firsturl'}?$env{'request.firsturl'}:$env{'form.firsturl'});
 # ---------------------------------------- Are we access server and overloaded?
@@ -182,33 +189,36 @@ ENDFAILED
 	my $last;
         foreach my $hostid (sort
 			    {
-				$Apache::lonnet::hostname{$a} cmp
-				    $Apache::lonnet::hostname{$b};
+				&Apache::lonnet::hostname($a) cmp
+				    &Apache::lonnet::hostname($b);
 			    }
 			    keys(%Apache::lonnet::spareid)) {
             next if ($hostid eq $lonhost);
-            next if ($last eq $Apache::lonnet::hostname{$hostid});
+	    my $hostname = &Apache::lonnet::hostname($hostid);
+	    next if ($last eq $hostname);
             $spares.='<br /><font size="+1"><a href="http://'.
-                $Apache::lonnet::hostname{$hostid}.
+                $hostname.
                 '/adm/login?domain='.$authdomain.'">'.
-                $Apache::lonnet::hostname{$hostid}.'</a>'.
+                $hostname.'</a>'.
                 ' (preferred)</font>'.$/;
-	    $last=$Apache::lonnet::hostname{$hostid};
+	    $last=$hostname;
         }
         $spares.= '<br />';
+	my %all_hostnames = &Apache::lonnet::all_hostnames();
         foreach my $hostid (sort
 			    {
-				$Apache::lonnet::hostname{$a} cmp
-				    $Apache::lonnet::hostname{$b};
+				&Apache::lonnet::hostname($a) cmp
+				    &Apache::lonnet::hostname($b);
 			    }
-			    keys(%Apache::lonnet::hostname)) {
+			    keys(%all_hostnames)) {
             next if ($hostid eq $lonhost || $Apache::lonnet::spareid{$hostid});
-            next if ($last eq $Apache::lonnet::hostname{$hostid});
+	    my $hostname = &Apache::lonnet::hostname($hostid);
+            next if ($last eq $hostname);
             $spares.='<br /><a href="http://'.
-                $Apache::lonnet::hostname{$hostid}.
+                $hostname.
                 '/adm/login?domain='.$authdomain.'">'.
-                $Apache::lonnet::hostname{$hostid}.'</a>';
-	    $last=$Apache::lonnet::hostname{$hostid};
+                $hostname.'</a>';
+	    $last=$hostname;
         }
 	$r->print(<<ENDTROUBLE);
 <html>
@@ -217,7 +227,6 @@ ENDFAILED
 <img src="/adm/lonKaputt/lonlogo_broken.gif" align="right" />
 <h3>This LON-CAPA server is temporarily not available for login</h3>
 <p>Please attempt to login to one of the following servers:</p>$spares
-<p>If the problem persists, please contact <tt>$servadm</tt>.</p>
 </body>
 </html>
 ENDTROUBLE
@@ -225,10 +234,7 @@ ENDTROUBLE
     }
 
 # ----------------------------------------------- Apparently we are in business
-
-    my $domainlogo=&Apache::loncommon::domainlogo($domain);
     $servadm=~s/\,/\<br \/\>/g;
-    $sysadm=~s/\,/\<br \/\>/g;
 
 # --------------------------------------------------- Print login screen header
     $r->print(<<ENDHEADER);
@@ -260,6 +266,11 @@ ENDHEADER
       ($fullgraph?&Apache::loncommon::designparm('login.sidebg',$domain):'#FFFFFF');
     my $logo=&Apache::loncommon::designparm('login.logo',$domain);
     my $img=&Apache::loncommon::designparm('login.img',$domain);
+    my $domainlogo=&Apache::loncommon::domainlogo($domain);
+    my $showadminmail=&Apache::loncommon::designparm('login.adminmail',                                                      $domain);
+    my $showcoursecat =
+        &Apache::loncommon::designparm('login.coursecatalog',$domain);
+
 
 # ----------------------------------------------------------------------- Texts
 
@@ -270,16 +281,20 @@ my %lt=&Apache::lonlocal::texthash(
 		  'perc' => 'percent',
 		  'load' => 'Load',
                   'userload' => 'User Load',
-                  'about'  => 'aboutlon.gif',
-                  'access' => 'accessbutton.gif',
+                  'about'  => 'About LON-CAPA',
+                  'access' => 'Accessibility Options',
+                  'catalog' => 'Course Catalog',
 		  'auth' => 'userauthentication.gif',
 		  'log' => 'Log in',
-		  'help' => 'Help',
+		  'help' => 'Log-in Help',
 		  'serv' => 'Server',
                   'servadm' => 'Server Administration',
-                  'sysadm' => 'System Administration',
-                  'helpdesk' => 'Contact Helpdesk');
-
+                  'helpdesk' => 'Contact Helpdesk',
+                  'forgotpw' => 'Forgot password?');
+# -------------------------------------------------- Change password field name
+    my $now=time;
+    my $forgotpw = &forgotpwdisplay(%lt);
+    my $loginhelp = &loginhelpdisplay(%lt);
 # ---------------------------------------------------------- Serve rest of page
     $r->print(<<ENDSCRIPT);
 
@@ -317,8 +332,15 @@ my %lt=&Apache::lonlocal::texthash(
         lextkey=this.document.client.elements.lextkey.value;
         initkeys();
 
-        this.document.server.elements.upass.value
-	    =crypted(this.document.client.elements.upass.value);
+        this.document.server.elements.upass0.value
+	    =crypted(this.document.client.elements.upass$now.value.substr(0,15));
+	this.document.server.elements.upass1.value
+	    =crypted(this.document.client.elements.upass$now.value.substr(15,15));
+	this.document.server.elements.upass2.value
+	    =crypted(this.document.client.elements.upass$now.value.substr(30,15));
+
+        this.document.client.elements.uname.value='';
+        this.document.client.elements.upass$now.value='';
 
         this.document.server.submit();
 	return false;
@@ -337,7 +359,9 @@ ENDSCRIPT
    <input type="hidden" name="serverid" value="$lonhost" />
    <input type="hidden" name="interface" value="$env{'form.interface'}" />
    <input type="hidden" name="uname" value="" />
-   <input type="hidden" name="upass" value="" />
+   <input type="hidden" name="upass0" value="" />
+   <input type="hidden" name="upass1" value="" />
+   <input type="hidden" name="upass2" value="" />
    <input type="hidden" name="udom" value="" />
    <input type="hidden" name="imagesuppress"  value="" />
    <input type="hidden" name="appletsuppress"  value="" />
@@ -349,6 +373,10 @@ ENDSCRIPT
    <input type="hidden" name="localres" value="$env{'form.localres'}" />
   </form>
 ENDSERVERFORM
+    my $coursecatalog;
+    if (($showcoursecat eq '') || ($showcoursecat)) {
+        $coursecatalog = &coursecatalog_link($lt{'catalog'});
+    }
     if ($fullgraph) { $r->print(<<ENDTOP);
   <!-- The LON-CAPA Header -->
   <tr>
@@ -374,14 +402,23 @@ ENDSERVERFORM
   </tr>
   <tr>
    
-   <!-- A cell that will hold the 'access' and 'about' buttons -->
+   <!-- A cell that will hold the 'access', 'about', and 'catalog' links -->
    <!-- Row 3 Column 1 -->
-   <td valign="top" height=60 align="center" bgcolor="$sidebg">
-    <a href="/adm/login?interface=textual"><img src="$iconpath/$lt{'access'}" border=0 alt="Accessibility Options" /></a>
-    <br />
-    <a href="/adm/about.html"><img src="$iconpath/$lt{'about'}" border=0 alt="About LON-CAPA" /></a>
+   <td valign="top" height="60" align="left" bgcolor="$sidebg">
+    <table cellpadding="0" cellspacing="2" border="0">
+     <tr>
+      <td>&nbsp;</td>
+      <td><a href="/adm/login?interface=textual"><b>$lt{'access'}</b></a></td>
+     </tr>
+     <tr>
+      <td>&nbsp;</td>
+      <td><a href="/adm/about.html"><b>$lt{'about'}</b></a></td>
+     </tr>$coursecatalog
+     <tr>
+      <td colspan="2">&nbsp;</td>
+     </tr>
+    </table>
    </td>
-
    <!-- The shaded space between the two main columns -->
    <!-- Row 3 Column 2 -->
    <td width=27 height=60 background="$iconpath/fillleft.gif"><img src="$iconpath/fillleft.gif" alt="" /></td>
@@ -410,14 +447,11 @@ ENDTOP
     unless ($fullgraph) {
         $r->print(<<ENDACCESSOPTIONS);
 <h3>Select Accessibility Options</h3>
-<input type="checkbox" name="imagesuppress" /> Suppress rendering of images<br />
-<input type="checkbox" name="appletsuppress" /> Suppress Java applets<br />
-<input type="checkbox" name="embedsuppress" /> Suppress rendering of embedded multimedia<br />
-<input type="checkbox" name="fontenhance" /> Increase font size<br />
-<input type="checkbox" name="blackwhite" /> Switch to black and white mode<br />
-<p>If you have accessibility needs that are not addressed by this interface, 
-please
-contact the system administrator at <tt>$sysadm</tt>.</p><br />
+<label><input type="checkbox" name="imagesuppress" /> Suppress rendering of images</label><br />
+<label><input type="checkbox" name="appletsuppress" /> Suppress Java applets</label><br />
+<label><input type="checkbox" name="embedsuppress" /> Suppress rendering of embedded multimedia</label><br />
+<label><input type="checkbox" name="fontenhance" /> Increase font size</label><br />
+<label><input type="checkbox" name="blackwhite" /> Switch to black and white mode</label><br />
 <input type="checkbox" name="remember" /> Remember these settings for next login<hr />
 ENDACCESSOPTIONS
 } else {
@@ -438,31 +472,38 @@ ENDNOOPT
      <table border=0 cellspacing=0 cellpadding=0>
       <tr><td bgcolor="$sidebg" colspan=2><img src="$iconpath/$lt{'auth'}" alt="User Authentication" /></td></tr>
       <tr>
-       <td bgcolor="$mainbg"><br /><font size=-1><b>&nbsp;&nbsp;&nbsp;$lt{'un'}:</b></font></td>
+       <td bgcolor="$mainbg"><br /><font size=-1><b>&nbsp;&nbsp;&nbsp;<label for="uname">$lt{'un'}</label>:</b></font></td>
        <td bgcolor="$mainbg"><br /><input type="text" name="uname" size="10" value="$authusername" /></td>
       </tr>
       <tr>
-       <td bgcolor="$mainbg"><font size=-1><b>&nbsp;&nbsp;&nbsp;$lt{'pw'}:</b></font></td>
-       <td bgcolor="$mainbg"><input type="password" name="upass" size="10" /></td>
+       <td bgcolor="$mainbg"><font size=-1><b>&nbsp;&nbsp;&nbsp;<label for="upass$now">$lt{'pw'}</label>:</b></font></td>
+       <td bgcolor="$mainbg"><input type="password" name="upass$now" size="10" /></td>
       </tr>
       <tr>
-       <td bgcolor="$mainbg"><font size=-1><b>&nbsp;&nbsp;&nbsp;$lt{'dom'}:</b></font></td>
+       <td bgcolor="$mainbg"><font size=-1><b>&nbsp;&nbsp;&nbsp;<label for="udom">$lt{'dom'}</label>:</b></font></td>
        <td bgcolor="$mainbg"><input type="text" name="udom" size="10" value="$authdomain" /></td>
       </tr>
       <tr>
-       <td bgcolor="$mainbg">&nbsp;&nbsp;&nbsp;<a href="/adm/loginproblems.html">$lt{'help'}</a></td>
+       <td bgcolor="$mainbg">&nbsp;</td>
        <td bgcolor="$mainbg" valign="bottom" align="center">
         <br />
         <input type="submit" value="$lt{'log'}" />
        </td>
       </tr>
+      <tr>
+       <td bgcolor="$mainbg" valign="bottom" align="left" colspan="2">
+        $loginhelp
+        $forgotpw
+       </td>
+      </tr>
      </table>
      <!-- End sub-table -->
     </form>
 ENDLOGIN
     if ($fullgraph) {
         my $helpdeskscript;
-        my $contactblock = &contactdisplay(\%lt,$sysadm,$servadm,$version,$authdomain,\$helpdeskscript);
+        my $contactblock = &contactdisplay(\%lt,$servadm,$showadminmail,
+                                  $version,$authdomain,\$helpdeskscript);
 	$r->print(<<ENDDOCUMENT);
    </td>
 
@@ -558,26 +599,20 @@ ENDDOCUMENT
 }
 
 sub contactdisplay {
-    my ($lt,$sysadm,$servadm,$version,$authdomain,$helpdeskscript) = @_;
+    my ($lt,$servadm,$showadminmail,$version,$authdomain,$helpdeskscript) = @_;
     my $contactblock;
-    my $showsysadm = 1;
-    my $showservadm = 1;
     my $showhelpdesk = 0;
     my $requestmail = $Apache::lonnet::perlvar{'lonSupportEMail'};
     if ($requestmail =~ m/^[^\@]+\@[^\@]+$/) {
         $showhelpdesk = 1;
     }
-    if ($showsysadm) {
-        $contactblock .= '<b>&nbsp;&nbsp;&nbsp;'.$$lt{'sysadm'}.':</b><br />'.
-                         '<tt>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'.$sysadm.'</tt><br />';
-    }
-    if ($showservadm) {
+    if ($servadm && $showadminmail) {
         $contactblock .= '<b>&nbsp;&nbsp;&nbsp;'.$$lt{'servadm'}.':</b><br />'.
                          '<tt>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'.$servadm.'</tt><br />&nbsp;<br />';
     }
     if ($showhelpdesk) {
-        $contactblock .= '<b>&nbsp;&nbsp;&nbsp;<a href="javascript:helpdesk()">'.$$lt{'helpdesk'}.'</a></b><br />';
-        my $thisurl = &Apache::lonnet::escape('/adm/login');
+        $contactblock .= '<b>&nbsp;&nbsp;&nbsp;<a href="javascript:helpdesk()"><font size="+1">'.$lt->{'helpdesk'}.'</font></a></b><br />';
+        my $thisurl = &escape('/adm/login');
         $$helpdeskscript = <<"ENDSCRIPT";
 <script type="text/javascript">
 function helpdesk() {
@@ -597,7 +632,34 @@ ENDSCRIPT
 ENDBLOCK
     return $contactblock;
 }
- 
+
+sub forgotpwdisplay {
+    my (%lt) = @_;
+    my $prompt_for_resetpw = 1; 
+    if ($prompt_for_resetpw) {
+        return '<br />&nbsp;&nbsp;&nbsp;<a href="/adm/resetpw">'.$lt{'forgotpw'}.'</a></b><br /><br />';
+    }
+    return;
+}
+
+sub loginhelpdisplay {
+    my (%lt) = @_;
+    my $login_help = 1;
+    if ($login_help) {
+        return '&nbsp;&nbsp;&nbsp;<a href="/adm/loginproblems.html">'.$lt{'help'}.'</a></b>';
+    }
+    return;
+}
+
+sub coursecatalog_link {
+    my ($linkname) = @_;
+    return <<"END";
+     <tr>
+      <td>&nbsp;</td>
+      <td><a href="/adm/coursecatalog"><b>$linkname</b></a></td>
+     </tr>
+END
+}
 
 1;
 __END__


$lt{'un'}:	$lt{'un'}:
$lt{'pw'}:		$lt{'pw'}:
$lt{'dom'}:	$lt{'dom'}:
$lt{'help'}
+ $loginhelp + $forgotpw +