--- loncom/auth/lonlogin.pm	2003/08/26 19:41:53	1.47
+++ loncom/auth/lonlogin.pm	2006/02/28 16:42:42	1.72
@@ -1,7 +1,7 @@
 # The LearningOnline Network
 # Login Screen
 #
-# $Id: lonlogin.pm,v 1.47 2003/08/26 19:41:53 albertel Exp $
+# $Id: lonlogin.pm,v 1.72 2006/02/28 16:42:42 albertel Exp $
 #
 # Copyright Michigan State University Board of Trustees
 #
@@ -25,47 +25,101 @@
 #
 # http://www.lon-capa.org/
 #
-# 5/21/99,5/22,5/25,5/26,5/31,6/2,6/10,7/12,7/14,
-# 1/14/00,5/29,5/30,6/1,6/29,7/1,11/9,
-# 1/17/01 Gerd Kortemeyer
-#
-# 2/7/02,2/8,2/12,2/14,2/15,2/19 Josh Brunskole
-# 
-# 7/10/02 Jeremy Bowers
 
 package Apache::lonlogin;
 
 use strict;
 use Apache::Constants qw(:common);
+use CGI::Cookie();
 use Apache::File ();
-use Apache::lonnet();
+use Apache::lonnet;
 use Apache::loncommon();
+use Apache::lonauth();
+use Apache::lonlocal;
+use Apache::migrateuser();
 
 sub handler {
     my $r = shift;
-    $r->content_type('text/html');
+
+    &Apache::loncommon::get_unprocessed_cgi
+	($ENV{'QUERY_STRING'}.'&'.$env{'request.querystring'},
+	 ['interface','username','domain','firsturl','localpath','localres',
+	  'token']);
+
+# -- check if they are a migrating user
+    if (defined($env{'form.token'})) {
+	return &Apache::migrateuser::handler($r);
+    }
+
     &Apache::loncommon::no_cache($r);
+    &Apache::lonlocal::get_language_handle($r);
+    &Apache::loncommon::content_type($r,'text/html');
     $r->send_http_header;
     return OK if $r->header_only;
 
 
-    &Apache::loncommon::get_unprocessed_cgi
-     ($ENV{'QUERY_STRING'}.'&'.$ENV{'request.querystring'},
-      ['interface','username','domain','firsturl','localpath','localres']);
- 
+# Are we re-routing?
+    if (-e '/home/httpd/html/lon-status/reroute.txt') {
+	&Apache::lonauth::reroute($r);
+	return OK;
+    }
+
+
+# -------------------------------- Prevent users from attempting to login twice
+    my %cookies=CGI::Cookie->parse($r->header_in('Cookie'));
+    my $lonid=$cookies{'lonID'};
+    my $cookie;
+    if ($lonid) {
+	my $handle=$lonid->value;
+        $handle=~s/\W//g;
+        my $lonidsdir=$r->dir_config('lonIDsDir');
+	if (-e "$lonidsdir/$handle.id") {
+# Is there an existing token file?
+	    if ($handle=~/^publicuser\_/) {
+# For "public user" - remove it, we apparently really want to login
+		unlink("$lonidsdir/$handle.id");
+	    } elsif ($handle ne '') {
+# Indeed, a valid token is found
+		my $bodytag=&Apache::loncommon::bodytag('Already logged in');
+		$r->print(<<ENDFAILED);
+<html>
+<head>
+<title>Already logged in</title>
+</head>
+$bodytag
+<h1>You are already logged in</h1>
+<p>Please either <a href="/adm/roles">continue the current session</a> or
+<a href="/adm/logout">logout</a>.</p>
+<p>
+<a href="/adm/loginproblems.html">Problems?</a></p>
+</body>
+</html>
+ENDFAILED
+                return OK;
+ 	    }  
+	}
+    }
+
+# ---------------------------------------------------- No valid token, continue
+
+ # ---------------------------- Not possible to really login to domain "public"
+    if ($env{'form.domain'} eq 'public') {
+	$env{'form.domain'}='';
+	$env{'form.username'}='';
+    }
 # ----------------------------------------------------------- Process Interface
-    $ENV{'form.interface'}=~s/\W//g;
+    $env{'form.interface'}=~s/\W//g;
 
     my $textbrowsers=$r->dir_config('lonTextBrowsers');
     my $httpbrowser=$ENV{"HTTP_USER_AGENT"};
     
     foreach (split(/\:/,$textbrowsers)) {
 	if ($httpbrowser=~/$_/i) {
-	    $ENV{'form.interface'}='textual';
+	    $env{'form.interface'}='textual';
         }
     }
 
-    my $fullgraph=($ENV{'form.interface'} ne 'textual');
+    my $fullgraph=($env{'form.interface'} ne 'textual');
     my $port_to_use=$r->dir_config('lonhttpdPort');
     if (!defined($port_to_use)) {
 	$port_to_use='8080';
@@ -73,9 +127,13 @@ sub handler {
     my $iconpath= 'http://'.$ENV{'HTTP_HOST'}.':'.$port_to_use.
                   $r->dir_config('lonIconsURL');
     my $domain  = $r->dir_config('lonDefDomain');
-    if (($ENV{'form.domain'}) && 
-	 ($Apache::lonnet::domaindescription{$ENV{'form.domain'}})) {
-	$domain=$ENV{'form.domain'};
+    my $testdomain=(split(/\./,$ENV{'HTTP_HOST'}))[0];
+    foreach my $posdom (&Apache::lonnet::current_machine_domains()) {
+	if (lc($posdom) eq lc($testdomain)) { $domain=$posdomain; }
+    }
+    if (($env{'form.domain'}) && 
+	 ($Apache::lonnet::domaindescription{$env{'form.domain'}})) {
+	$domain=$env{'form.domain'};
     }
     my $role    = $r->dir_config('lonRole');
     my $loadlim = $r->dir_config('lonLoadLim');
@@ -89,8 +147,8 @@ sub handler {
 
 # --------------------------------------------- Default values for login fields
 
-    my $authusername=($ENV{'form.username'}?$ENV{'form.username'}:'');
-    my $authdomain=($ENV{'form.domain'}?$ENV{'form.domain'}:$domain);
+    my $authusername=($env{'form.username'}?$env{'form.username'}:'');
+    my $authdomain=($env{'form.domain'}?$env{'form.domain'}:$domain);
 
 # ---------------------------------------------------------- Determine own load
     my $loadavg;
@@ -99,13 +157,13 @@ sub handler {
 	$loadavg=<$loadfile>;
     }
     $loadavg =~ s/\s.*//g;
-    my $loadpercent=100*$loadavg/$loadlim;
+    my $loadpercent=sprintf("%.1f",100*$loadavg/$loadlim);
     my $userloadpercent=&Apache::lonnet::userload();
 
 # ------------------------------------------------------- Do the load balancing
     my $otherserver='http://'.$ENV{'SERVER_NAME'};
     my $firsturl=
-    ($ENV{'request.firsturl'}?$ENV{'request.firsturl'}:$ENV{'form.firsturl'});
+    ($env{'request.firsturl'}?$env{'request.firsturl'}:$env{'form.firsturl'});
 # ---------------------------------------- Are we access server and overloaded?
     if (($role eq 'access') &&
 	(($userloadpercent>100.0)||($loadpercent>100.0))) {
@@ -144,15 +202,36 @@ sub handler {
 
     if ($logtoken eq 'con_lost') {
         my $spares='';
-        foreach (keys %Apache::lonnet::hostname) {
-            if ($_ ne $lonhost) {
-               $spares.='<br /><a href="http://'.$Apache::lonnet::hostname{$_}.
-		 '/adm/login?domain='.$authdomain.'">'.
-                 $Apache::lonnet::hostname{$_}.'</a>';
-               if ($Apache::lonnet::spareid{$_}) {
-		   $spares.=' (preferred)';
-               }
-	   }
+	my $last;
+        foreach my $hostid (sort
+			    {
+				$Apache::lonnet::hostname{$a} cmp
+				    $Apache::lonnet::hostname{$b};
+			    }
+			    keys(%Apache::lonnet::spareid)) {
+            next if ($hostid eq $lonhost);
+            next if ($last eq $Apache::lonnet::hostname{$hostid});
+            $spares.='<br /><font size="+1"><a href="http://'.
+                $Apache::lonnet::hostname{$hostid}.
+                '/adm/login?domain='.$authdomain.'">'.
+                $Apache::lonnet::hostname{$hostid}.'</a>'.
+                ' (preferred)</font>'.$/;
+	    $last=$Apache::lonnet::hostname{$hostid};
+        }
+        $spares.= '<br />';
+        foreach my $hostid (sort
+			    {
+				$Apache::lonnet::hostname{$a} cmp
+				    $Apache::lonnet::hostname{$b};
+			    }
+			    keys(%Apache::lonnet::hostname)) {
+            next if ($hostid eq $lonhost || $Apache::lonnet::spareid{$hostid});
+            next if ($last eq $Apache::lonnet::hostname{$hostid});
+            $spares.='<br /><a href="http://'.
+                $Apache::lonnet::hostname{$hostid}.
+                '/adm/login?domain='.$authdomain.'">'.
+                $Apache::lonnet::hostname{$hostid}.'</a>';
+	    $last=$Apache::lonnet::hostname{$hostid};
         }
 	$r->print(<<ENDTROUBLE);
 <html>
@@ -170,7 +249,7 @@ ENDTROUBLE
 
 # ----------------------------------------------- Apparently we are in business
 
-    my $domainlogo=&Apache::loncommon::domainlogo();
+    my $domainlogo=&Apache::loncommon::domainlogo($domain);
     $servadm=~s/\,/\<br \/\>/g;
     $sysadm=~s/\,/\<br \/\>/g;
 
@@ -205,7 +284,26 @@ ENDHEADER
     my $logo=&Apache::loncommon::designparm('login.logo',$domain);
     my $img=&Apache::loncommon::designparm('login.img',$domain);
 
+# ----------------------------------------------------------------------- Texts
 
+my %lt=&Apache::lonlocal::texthash(
+		  'un'  => 'Username',
+		  'pw'  => 'Password',
+		  'dom' => 'Domain',
+		  'perc' => 'percent',
+		  'load' => 'Load',
+                  'userload' => 'User Load',
+                  'about'  => 'aboutlon.gif',
+                  'access' => 'accessbutton.gif',
+		  'auth' => 'userauthentication.gif',
+		  'log' => 'Log in',
+		  'help' => 'Help',
+		  'serv' => 'Server',
+                  'servadm' => 'Server Administration',
+                  'sysadm' => 'System Administration',
+                  'helpdesk' => 'Contact Helpdesk');
+# -------------------------------------------------- Change password field name
+    my $now=time;
 # ---------------------------------------------------------- Serve rest of page
     $r->print(<<ENDSCRIPT);
 
@@ -243,8 +341,15 @@ ENDHEADER
         lextkey=this.document.client.elements.lextkey.value;
         initkeys();
 
-        this.document.server.elements.upass.value
-	    =crypted(this.document.client.elements.upass.value);
+        this.document.server.elements.upass0.value
+	    =crypted(this.document.client.elements.upass$now.value.substr(0,15));
+	this.document.server.elements.upass1.value
+	    =crypted(this.document.client.elements.upass$now.value.substr(15,15));
+	this.document.server.elements.upass2.value
+	    =crypted(this.document.client.elements.upass$now.value.substr(30,15));
+
+        this.document.client.elements.uname.value='';
+        this.document.client.elements.upass$now.value='';
 
         this.document.server.submit();
 	return false;
@@ -261,9 +366,11 @@ ENDSCRIPT
   <form name="server" action="$otherserver/adm/authenticate" method="post" target="_top">
    <input type="hidden" name="logtoken" value="$logtoken" />
    <input type="hidden" name="serverid" value="$lonhost" />
-   <input type="hidden" name="interface" value="$ENV{'form.interface'}" />
+   <input type="hidden" name="interface" value="$env{'form.interface'}" />
    <input type="hidden" name="uname" value="" />
-   <input type="hidden" name="upass" value="" />
+   <input type="hidden" name="upass0" value="" />
+   <input type="hidden" name="upass1" value="" />
+   <input type="hidden" name="upass2" value="" />
    <input type="hidden" name="udom" value="" />
    <input type="hidden" name="imagesuppress"  value="" />
    <input type="hidden" name="appletsuppress"  value="" />
@@ -271,8 +378,8 @@ ENDSCRIPT
    <input type="hidden" name="fontenhance"  value="" />
    <input type="hidden" name="blackwhite"  value="" />
    <input type="hidden" name="remember"  value="" />
-   <input type="hidden" name="localpath" value="$ENV{'form.localpath'}" />
-   <input type="hidden" name="localres" value="$ENV{'form.localres'}" />
+   <input type="hidden" name="localpath" value="$env{'form.localpath'}" />
+   <input type="hidden" name="localres" value="$env{'form.localres'}" />
   </form>
 ENDSERVERFORM
     if ($fullgraph) { $r->print(<<ENDTOP);
@@ -303,9 +410,9 @@ ENDSERVERFORM
    <!-- A cell that will hold the 'access' and 'about' buttons -->
    <!-- Row 3 Column 1 -->
    <td valign="top" height=60 align="center" bgcolor="$sidebg">
-    <a href="/adm/login?interface=textual"><img src="$iconpath/accessbutton.gif" border=0 alt="Accessibility Options" /></a>
+    <a href="/adm/login?interface=textual"><img src="$iconpath/$lt{'access'}" border=0 alt="Accessibility Options" /></a>
     <br />
-    <a href="/adm/about.html"><img src="$iconpath/aboutlon.gif" border=0 alt="About LON-CAPA" /></a>
+    <a href="/adm/about.html"><img src="$iconpath/$lt{'about'}" border=0 alt="About LON-CAPA" /></a>
    </td>
 
    <!-- The shaded space between the two main columns -->
@@ -336,11 +443,11 @@ ENDTOP
     unless ($fullgraph) {
         $r->print(<<ENDACCESSOPTIONS);
 <h3>Select Accessibility Options</h3>
-<input type="checkbox" name="imagesuppress" /> Suppress rendering of images<br />
-<input type="checkbox" name="appletsuppress" /> Suppress Java applets<br />
-<input type="checkbox" name="embedsuppress" /> Suppress rendering of embedded multimedia<br />
-<input type="checkbox" name="fontenhance" /> Increase font size<br />
-<input type="checkbox" name="blackwhite" /> Switch to black and white mode<br />
+<label><input type="checkbox" name="imagesuppress" /> Suppress rendering of images</label><br />
+<label><input type="checkbox" name="appletsuppress" /> Suppress Java applets</label><br />
+<label><input type="checkbox" name="embedsuppress" /> Suppress rendering of embedded multimedia</label><br />
+<label><input type="checkbox" name="fontenhance" /> Increase font size</label><br />
+<label><input type="checkbox" name="blackwhite" /> Switch to black and white mode</label><br />
 <p>If you have accessibility needs that are not addressed by this interface, 
 please
 contact the system administrator at <tt>$sysadm</tt>.</p><br />
@@ -362,24 +469,24 @@ ENDNOOPT
 
      <!-- Start the sub-table for text and input alignment -->
      <table border=0 cellspacing=0 cellpadding=0>
-      <tr><td bgcolor="$sidebg" colspan=2><img src="$iconpath/userauthentication.gif" alt="User Authentication" /></td></tr>
+      <tr><td bgcolor="$sidebg" colspan=2><img src="$iconpath/$lt{'auth'}" alt="User Authentication" /></td></tr>
       <tr>
-       <td bgcolor="$mainbg"><br /><font size=-1><b>&nbsp;&nbsp;&nbsp;User Name:</b></font></td>
+       <td bgcolor="$mainbg"><br /><font size=-1><b>&nbsp;&nbsp;&nbsp;$lt{'un'}:</b></font></td>
        <td bgcolor="$mainbg"><br /><input type="text" name="uname" size="10" value="$authusername" /></td>
       </tr>
       <tr>
-       <td bgcolor="$mainbg"><font size=-1><b>&nbsp;&nbsp;&nbsp;Password:</b></font></td>
-       <td bgcolor="$mainbg"><input type="password" name="upass" size="10" /></td>
+       <td bgcolor="$mainbg"><font size=-1><b>&nbsp;&nbsp;&nbsp;$lt{'pw'}:</b></font></td>
+       <td bgcolor="$mainbg"><input type="password" name="upass$now" size="10" /></td>
       </tr>
       <tr>
-       <td bgcolor="$mainbg"><font size=-1><b>&nbsp;&nbsp;&nbsp;Domain:</b></font></td>
+       <td bgcolor="$mainbg"><font size=-1><b>&nbsp;&nbsp;&nbsp;$lt{'dom'}:</b></font></td>
        <td bgcolor="$mainbg"><input type="text" name="udom" size="10" value="$authdomain" /></td>
       </tr>
       <tr>
-       <td bgcolor="$mainbg">&nbsp;&nbsp;&nbsp;<a href="/adm/loginproblems.html">Help</a></td>
+       <td bgcolor="$mainbg">&nbsp;&nbsp;&nbsp;<a href="/adm/loginproblems.html">$lt{'help'}</a></td>
        <td bgcolor="$mainbg" valign="bottom" align="center">
         <br />
-        <input type="submit" value="Log In" />
+        <input type="submit" value="$lt{'log'}" />
        </td>
       </tr>
      </table>
@@ -387,6 +494,8 @@ ENDNOOPT
     </form>
 ENDLOGIN
     if ($fullgraph) {
+        my $helpdeskscript;
+        my $contactblock = &contactdisplay(\%lt,$sysadm,$servadm,$version,$authdomain,\$helpdeskscript);
 	$r->print(<<ENDDOCUMENT);
    </td>
 
@@ -407,7 +516,7 @@ ENDLOGIN
      <table border=0 cellspacing=0 cellpadding=0>
       <tr>
        <td bgcolor="$sidebg" align="left" valign="top">
-        <small><b>&nbsp;&nbsp;&nbsp;Domain:&nbsp;</b></small>
+        <small><b>&nbsp;&nbsp;&nbsp;$lt{'dom'}:&nbsp;</b></small>
        </td>
        <td bgcolor="$sidebg" align="left" valign="top">
         <small><tt>&nbsp;$domain</tt></small>
@@ -415,7 +524,7 @@ ENDLOGIN
       </tr>
       <tr>
        <td bgcolor="$sidebg" align="left" valign="top">
-        <small><b>&nbsp;&nbsp;&nbsp;Server:&nbsp;</b></small>
+        <small><b>&nbsp;&nbsp;&nbsp;$lt{'serv'}:&nbsp;</b></small>
        </td>
        <td bgcolor="$sidebg" align="left" valign="top">
         <small><tt>&nbsp;$lonhost ($role)</tt></small>
@@ -423,29 +532,23 @@ ENDLOGIN
       </tr>
       <tr>
        <td bgcolor="$sidebg" align="left" valign="top">
-        <small><b>&nbsp;&nbsp;&nbsp;Load:&nbsp;</b></small>
+        <small><b>&nbsp;&nbsp;&nbsp;$lt{'load'}:&nbsp;</b></small>
        </td>
        <td bgcolor="$sidebg" align="left" valign="top">
-        <small><tt>&nbsp;$loadpercent percent</tt></small>
+        <small><tt>&nbsp;$loadpercent $lt{'perc'}</tt></small>
        </td>
       </tr>
       <tr>
        <td bgcolor="$sidebg" align="left" valign="top">
-        <small><b>&nbsp;&nbsp;&nbsp;User&nbsp;Load:&nbsp;</b></small>
+        <small><b>&nbsp;&nbsp;&nbsp;$lt{'userload'}:&nbsp;</b></small>
        </td>
        <td bgcolor="$sidebg" align="left" valign="top">
-        <small><tt>&nbsp;$userloadpercent percent</tt></small>
+        <small><tt>&nbsp;$userloadpercent $lt{'perc'}</tt></small>
        </td>
       </tr>
      </table>
      <br />
-    <small>
-     <b>&nbsp;&nbsp;&nbsp;System Administration:</b><br />
-     <tt>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;$sysadm</tt><br />
-     <b>&nbsp;&nbsp;&nbsp;Server Administration:</b><br />
-     <tt>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;$servadm</tt><br />&nbsp;<br />
-     &nbsp;&nbsp;&nbsp;$version
-    </small>
+    $contactblock
    </td>
 
    <!-- Row 5 Column 2 -->
@@ -475,16 +578,59 @@ $domainlogo
   </tr>
  </table>
 
-<script>
-// the if prevents the script error if the browser can't handle this
+<script type="text/javascript">
+// the if prevents the script error if the browser can not handle this
 if ( document.client.uname ) { document.client.uname.focus(); }
 </script>
+$helpdeskscript
 
 ENDDOCUMENT
 }
     $r->print('</body></html>');
     return OK;
-} 
+}
+
+sub contactdisplay {
+    my ($lt,$sysadm,$servadm,$version,$authdomain,$helpdeskscript) = @_;
+    my $contactblock;
+    my $showsysadm = 1;
+    my $showservadm = 1;
+    my $showhelpdesk = 0;
+    my $requestmail = $Apache::lonnet::perlvar{'lonSupportEMail'};
+    if ($requestmail =~ m/^[^\@]+\@[^\@]+$/) {
+        $showhelpdesk = 1;
+    }
+    if ($showsysadm) {
+        $contactblock .= '<b>&nbsp;&nbsp;&nbsp;'.$$lt{'sysadm'}.':</b><br />'.
+                         '<tt>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'.$sysadm.'</tt><br />';
+    }
+    if ($showservadm) {
+        $contactblock .= '<b>&nbsp;&nbsp;&nbsp;'.$$lt{'servadm'}.':</b><br />'.
+                         '<tt>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'.$servadm.'</tt><br />&nbsp;<br />';
+    }
+    if ($showhelpdesk) {
+        $contactblock .= '<b>&nbsp;&nbsp;&nbsp;<a href="javascript:helpdesk()">'.$$lt{'helpdesk'}.'</a></b><br />';
+        my $thisurl = &Apache::lonnet::escape('/adm/login');
+        $$helpdeskscript = <<"ENDSCRIPT";
+<script type="text/javascript">
+function helpdesk() {
+    var codedom = document.client.udom.value;
+    if (codedom == '') {
+        codedom = "$authdomain";
+    }
+    var querystr = "origurl=$thisurl&codedom="+codedom;
+    document.location.href = "/adm/helpdesk?"+querystr;
+    return;
+}
+</script>
+ENDSCRIPT
+    }
+    $contactblock .= <<"ENDBLOCK";
+     &nbsp;&nbsp;&nbsp;$version
+ENDBLOCK
+    return $contactblock;
+}
+ 
 
 1;
 __END__



User Name:	$lt{'un'}:
Password:		$lt{'pw'}:
Domain:	$lt{'dom'}:
Help	$lt{'help'}	- +
- Domain: + $lt{'dom'}:	`$domain` @@ -415,7 +524,7 @@ ENDLOGIN
- Server: + $lt{'serv'}:	`$lonhost ($role)` @@ -423,29 +532,23 @@ ENDLOGIN
- Load: + $lt{'load'}:	- `$loadpercent percent` + `$loadpercent $lt{'perc'}`
- User Load: + $lt{'userload'}:	- `$userloadpercent percent` + `$userloadpercent $lt{'perc'}`