File:
[LON-CAPA] /
loncom /
auth /
lonlogin.pm
Revision
1.130:
download - view:
text,
annotated -
select for diffs
Tue Dec 1 14:23:49 2009 UTC (14 years, 6 months ago) by
bisitz
Branches:
MAIN
CVS tags:
HEAD
Info Box:
- Consistent design and indention for server admin e-mail address, version number, new account link
- Moved line breaks from subroutines which create the links/texts to the block where they are displayed
- Separate contact block from rest of info fields
- XHTML: Corrected label references for uname, password, domain
1: # The LearningOnline Network
2: # Login Screen
3: #
4: # $Id: lonlogin.pm,v 1.130 2009/12/01 14:23:49 bisitz Exp $
5: #
6: # Copyright Michigan State University Board of Trustees
7: #
8: # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
9: #
10: # LON-CAPA is free software; you can redistribute it and/or modify
11: # it under the terms of the GNU General Public License as published by
12: # the Free Software Foundation; either version 2 of the License, or
13: # (at your option) any later version.
14: #
15: # LON-CAPA is distributed in the hope that it will be useful,
16: # but WITHOUT ANY WARRANTY; without even the implied warranty of
17: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18: # GNU General Public License for more details.
19: #
20: # You should have received a copy of the GNU General Public License
21: # along with LON-CAPA; if not, write to the Free Software
22: # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
23: #
24: # /home/httpd/html/adm/gpl.txt
25: #
26: # http://www.lon-capa.org/
27: #
28:
29: package Apache::lonlogin;
30:
31: use strict;
32: use Apache::Constants qw(:common);
33: use Apache::File ();
34: use Apache::lonnet;
35: use Apache::loncommon();
36: use Apache::lonauth();
37: use Apache::lonlocal;
38: use Apache::migrateuser();
39: use lib '/home/httpd/lib/perl/';
40: use LONCAPA;
41:
42: sub handler {
43: my $r = shift;
44:
45: &Apache::loncommon::get_unprocessed_cgi
46: (join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'},
47: $ENV{'REDIRECT_QUERY_STRING'}),
48: ['interface','username','domain','firsturl','localpath','localres',
49: 'token','role','symb']);
50: if (!defined($env{'form.firsturl'})) {
51: &Apache::lonacc::get_posted_cgi($r,['firsturl']);
52: }
53:
54: # -- check if they are a migrating user
55: if (defined($env{'form.token'})) {
56: return &Apache::migrateuser::handler($r);
57: }
58:
59: &Apache::loncommon::no_cache($r);
60: &Apache::lonlocal::get_language_handle($r);
61: &Apache::loncommon::content_type($r,'text/html');
62: $r->send_http_header;
63: return OK if $r->header_only;
64:
65:
66: # Are we re-routing?
67: if (-e '/home/httpd/html/lon-status/reroute.txt') {
68: &Apache::lonauth::reroute($r);
69: return OK;
70: }
71:
72:
73: # -------------------------------- Prevent users from attempting to login twice
74: my $handle = &Apache::lonnet::check_for_valid_session($r);
75: if ($handle=~/^publicuser\_/) {
76: # For "public user" - remove it, we apparently really want to login
77: unlink($r->dir_config('lonIDsDir')."/$handle.id");
78: } elsif ($handle ne '') {
79: # Indeed, a valid token is found
80: my $start_page =
81: &Apache::loncommon::start_page('Already logged in');
82: my $end_page =
83: &Apache::loncommon::end_page();
84: my $dest = '/adm/roles';
85: if ($env{'form.firsturl'} ne '') {
86: $dest = $env{'form.firsturl'};
87: }
88: $r->print(
89: $start_page
90: .'<h1>'.&mt('You are already logged in!').'</h1>'
91: .'<p>'.&mt('Please either [_1]continue the current session[_2] or [_3]log out[_4].',
92: '<a href="'.$dest.'">','</a>','<a href="/adm/logout">','</a>').'</p>'
93: .'<p><a href="/adm/loginproblems.html">'.&mt('Login problems?').'</a></p>'
94: .$end_page
95: );
96: return OK;
97: }
98:
99: # ---------------------------------------------------- No valid token, continue
100:
101: # ---------------------------- Not possible to really login to domain "public"
102: if ($env{'form.domain'} eq 'public') {
103: $env{'form.domain'}='';
104: $env{'form.username'}='';
105: }
106: # ----------------------------------------------------------- Process Interface
107: $env{'form.interface'}=~s/\W//g;
108:
109: my $httpbrowser=$ENV{"HTTP_USER_AGENT"};
110:
111: my $iconpath=
112: &Apache::loncommon::lonhttpdurl($r->dir_config('lonIconsURL'));
113:
114: my $lonhost = $r->dir_config('lonHostID');
115: my $domain = &Apache::lonnet::default_login_domain();
116: my %domconfhash = &Apache::loncommon::get_domainconf($domain);
117: if ($lonhost ne '') {
118: my $loginvia = $domconfhash{$domain.'.login.loginvia_'.$lonhost};
119: if (($loginvia ne '') && ($loginvia ne $lonhost)) {
120: if (&Apache::lonnet::hostname($loginvia) ne '') {
121: $r->print(&redirect_page($loginvia));
122: return OK;
123: }
124: }
125: }
126:
127: if (($env{'form.domain'}) &&
128: (&Apache::lonnet::domain($env{'form.domain'},'description'))) {
129: $domain=$env{'form.domain'};
130: }
131: my $role = $r->dir_config('lonRole');
132: my $loadlim = $r->dir_config('lonLoadLim');
133: my $servadm = $r->dir_config('lonAdmEMail');
134: my $tabdir = $r->dir_config('lonTabDir');
135: my $include = $r->dir_config('lonIncludes');
136: my $expire = $r->dir_config('lonExpire');
137: my $version = $r->dir_config('lonVersion');
138: my $host_name = &Apache::lonnet::hostname($lonhost);
139:
140: # --------------------------------------------- Default values for login fields
141:
142: my $authusername=($env{'form.username'}?$env{'form.username'}:'');
143: my $authdomain=($env{'form.domain'}?$env{'form.domain'}:$domain);
144:
145: # ---------------------------------------------------------- Determine own load
146: my $loadavg;
147: {
148: my $loadfile=Apache::File->new('/proc/loadavg');
149: $loadavg=<$loadfile>;
150: }
151: $loadavg =~ s/\s.*//g;
152: my $loadpercent=sprintf("%.1f",100*$loadavg/$loadlim);
153: my $userloadpercent=&Apache::lonnet::userload();
154:
155: # ------------------------------------------------------- Do the load balancing
156: my $otherserver= &Apache::lonnet::absolute_url($host_name);
157: my $firsturl=
158: ($env{'request.firsturl'}?$env{'request.firsturl'}:$env{'form.firsturl'});
159: # ---------------------------------------------------------- Are we overloaded?
160: if ((($userloadpercent>100.0)||($loadpercent>100.0))) {
161: my $unloaded=Apache::lonnet::spareserver($loadpercent,$userloadpercent);
162: if ($unloaded) { $otherserver=$unloaded; }
163: }
164:
165: # ----------------------------------------------------------- Get announcements
166: my $announcements=&Apache::lonnet::getannounce();
167: # -------------------------------------------------------- Set login parameters
168:
169: my @hexstr=('0','1','2','3','4','5','6','7',
170: '8','9','a','b','c','d','e','f');
171: my $lkey='';
172: for (0..7) {
173: $lkey.=$hexstr[rand(15)];
174: }
175:
176: my $ukey='';
177: for (0..7) {
178: $ukey.=$hexstr[rand(15)];
179: }
180:
181: my $lextkey=hex($lkey);
182: if ($lextkey>2147483647) { $lextkey-=4294967296; }
183:
184: my $uextkey=hex($ukey);
185: if ($uextkey>2147483647) { $uextkey-=4294967296; }
186:
187: # -------------------------------------------------------- Store away log token
188: my $tokenextras;
189: if ($env{'form.role'}) {
190: $tokenextras = '&role='.&escape($env{'form.role'});
191: }
192: if ($env{'form.symb'}) {
193: if (!$tokenextras) {
194: $tokenextras = '&';
195: }
196: $tokenextras .= '&symb='.&escape($env{'form.symb'});
197: }
198: my $logtoken=Apache::lonnet::reply(
199: 'tmpput:'.$ukey.$lkey.'&'.$firsturl.$tokenextras,
200: $lonhost);
201:
202: # ------------------- If we cannot talk to ourselves, we are in serious trouble
203:
204: if ($logtoken eq 'con_lost') {
205: my $spares='';
206: my $last;
207: foreach my $hostid (sort
208: {
209: &Apache::lonnet::hostname($a) cmp
210: &Apache::lonnet::hostname($b);
211: }
212: keys(%Apache::lonnet::spareid)) {
213: next if ($hostid eq $lonhost);
214: my $hostname = &Apache::lonnet::hostname($hostid);
215: next if ($last eq $hostname);
216: $spares.='<br /><font size="+1"><a href="http://'.
217: $hostname.
218: '/adm/login?domain='.$authdomain.'">'.
219: $hostname.'</a>'.
220: ' '.&mt('(preferred)').'</font>'.$/;
221: $last=$hostname;
222: }
223: $spares.= '<br />';
224: my %all_hostnames = &Apache::lonnet::all_hostnames();
225: foreach my $hostid (sort
226: {
227: &Apache::lonnet::hostname($a) cmp
228: &Apache::lonnet::hostname($b);
229: }
230: keys(%all_hostnames)) {
231: next if ($hostid eq $lonhost || $Apache::lonnet::spareid{$hostid});
232: my $hostname = &Apache::lonnet::hostname($hostid);
233: next if ($last eq $hostname);
234: $spares.='<br /><a href="http://'.
235: $hostname.
236: '/adm/login?domain='.$authdomain.'">'.
237: $hostname.'</a>';
238: $last=$hostname;
239: }
240: $r->print(
241: '<html>'
242: .'<head><title>'
243: .&mt('The LearningOnline Network with CAPA')
244: .'</title></head>'
245: .'<body bgcolor="#FFFFFF">'
246: .'<h1>'.&mt('The LearningOnline Network with CAPA').'</h1>'
247: .'<img src="/adm/lonKaputt/lonlogo_broken.gif" align="right" />'
248: .'<h3>'.&mt('This LON-CAPA server is temporarily not available for login.').'</h3>'
249: .'<p>'.&mt('Please attempt to login to one of the following servers:').'</p>'
250: .$spares
251: .'</body>'
252: .'</html>'
253: );
254: return OK;
255: }
256:
257: # ----------------------------------------------- Apparently we are in business
258: $servadm=~s/\,/\<br \/\>/g;
259:
260: # ----------------------------------------------------------- Front page design
261: my $pgbg=&Apache::loncommon::designparm('login.pgbg',$domain);
262: my $font=&Apache::loncommon::designparm('login.font',$domain);
263: my $link=&Apache::loncommon::designparm('login.link',$domain);
264: my $vlink=&Apache::loncommon::designparm('login.vlink',$domain);
265: my $alink=&Apache::loncommon::designparm('login.alink',$domain);
266: my $mainbg=&Apache::loncommon::designparm('login.mainbg',$domain);
267: my $logo=&Apache::loncommon::designparm('login.logo',$domain);
268: my $img=&Apache::loncommon::designparm('login.img',$domain);
269: my $domainlogo=&Apache::loncommon::domainlogo($domain);
270: my $login=&Apache::loncommon::designparm('login.login',$domain);
271: if ($login eq '') {
272: $login = $iconpath.'/'.&mt('userauthentication.gif');
273: }
274: my $showbanner = 1;
275: my $showmainlogo = 1;
276: if (defined(&Apache::loncommon::designparm('login.showlogo_img',$domain))) {
277: $showbanner = &Apache::loncommon::designparm('login.showlogo_img',$domain);
278: }
279: if (defined(&Apache::loncommon::designparm('login.showlogo_logo',$domain))) {
280: $showmainlogo = &Apache::loncommon::designparm('login.showlogo_logo',$domain);
281: }
282: my $showadminmail=&Apache::loncommon::designparm('login.adminmail',$domain);
283: my $showcoursecat =
284: &Apache::loncommon::designparm('login.coursecatalog',$domain);
285: my $loginheader =&Apache::loncommon::designparm('login.loginheader',$domain);
286: my $shownewuserlink =
287: &Apache::loncommon::designparm('login.newuser',$domain);
288: my $now=time;
289: my $js = (<<ENDSCRIPT);
290:
291: <script type="text/javascript" language="JavaScript">
292: // <![CDATA[
293: function send()
294: {
295: this.document.server.elements.uname.value
296: =this.document.client.elements.uname.value;
297:
298: this.document.server.elements.udom.value
299: =this.document.client.elements.udom.value;
300:
301: uextkey=this.document.client.elements.uextkey.value;
302: lextkey=this.document.client.elements.lextkey.value;
303: initkeys();
304:
305: this.document.server.elements.upass0.value
306: =crypted(this.document.client.elements.upass$now.value.substr(0,15));
307: this.document.server.elements.upass1.value
308: =crypted(this.document.client.elements.upass$now.value.substr(15,15));
309: this.document.server.elements.upass2.value
310: =crypted(this.document.client.elements.upass$now.value.substr(30,15));
311:
312: this.document.client.elements.uname.value='';
313: this.document.client.elements.upass$now.value='';
314:
315: this.document.server.submit();
316: return false;
317: }
318: // ]]>
319: </script>
320:
321: ENDSCRIPT
322:
323: # --------------------------------------------------- Print login screen header
324:
325: my %add_entries = (
326: bgcolor => "$mainbg",
327: text => "$font",
328: link => "$link",
329: vlink => "$vlink",
330: alink => "$alink",);
331:
332: $r->print(&Apache::loncommon::start_page('The LearningOnline Network with CAPA Login',$js,
333: { 'redirect' => [$expire,'/adm/roles'],
334: 'add_entries' => \%add_entries,
335: 'only_body' => 1,}));
336:
337: # ----------------------------------------------------------------------- Texts
338:
339: my %lt=&Apache::lonlocal::texthash(
340: 'un' => 'Username',
341: 'pw' => 'Password',
342: 'dom' => 'Domain',
343: 'perc' => 'percent',
344: 'load' => 'Server Load',
345: 'userload' => 'User Load',
346: 'catalog' => 'Course/Community Catalog',
347: 'log' => 'Log in',
348: 'help' => 'Log-in Help',
349: 'serv' => 'Server',
350: 'servadm' => 'Server Administration',
351: 'helpdesk' => 'Contact Helpdesk',
352: 'forgotpw' => 'Forgot password?',
353: 'newuser' => 'New User?',
354: );
355: # -------------------------------------------------- Change password field name
356: my $forgotpw = &forgotpwdisplay(%lt);
357: my $loginhelp = &loginhelpdisplay(%lt);
358:
359: # ---------------------------------------------------- Serve out DES JavaScript
360: {
361: my $jsh=Apache::File->new($include."/londes.js");
362: $r->print(<$jsh>);
363: }
364: # ---------------------------------------------------------- Serve rest of page
365:
366: $r->print(
367: '<div class="LC_loginpage_container">');
368:
369: #
370: # If the loadbalancing yielded just http:// because perhaps there's no loadbalancing?
371: # then just us a relative link to authenticate:
372: #
373:
374: $r->print(<<ENDSERVERFORM);
375: <form name="server" action="$otherserver/adm/authenticate" method="post" target="_top">
376: <input type="hidden" name="logtoken" value="$logtoken" />
377: <input type="hidden" name="serverid" value="$lonhost" />
378: <input type="hidden" name="uname" value="" />
379: <input type="hidden" name="upass0" value="" />
380: <input type="hidden" name="upass1" value="" />
381: <input type="hidden" name="upass2" value="" />
382: <input type="hidden" name="udom" value="" />
383: <input type="hidden" name="localpath" value="$env{'form.localpath'}" />
384: <input type="hidden" name="localres" value="$env{'form.localres'}" />
385: </form>
386: ENDSERVERFORM
387: my $coursecatalog;
388: if (($showcoursecat eq '') || ($showcoursecat)) {
389: $coursecatalog = &coursecatalog_link($lt{'catalog'});
390: }
391: my $newuserlink;
392: if ($shownewuserlink) {
393: $newuserlink = &newuser_link($lt{'newuser'});
394: }
395: my $logintitle;
396: if ($loginheader eq 'text') {
397: $logintitle ='<h2>'.$lt{'log'}.'</h2>';
398: } else {
399: $logintitle = '<img src="'.$login.'" alt="'.
400: &mt('User Authentication').'" />';
401: }
402:
403: my $noscript_warning='<noscript><span class="LC_warning"><b>'
404: .&mt('Use of LON-CAPA requires Javascript to be enabled in your web browser.')
405: .'</b></span></noscript>';
406: my $helpdeskscript;
407: my $contactblock = &contactdisplay(\%lt,$servadm,$showadminmail,
408: $version,$authdomain,\$helpdeskscript);
409:
410: my $loginform=(<<LFORM);
411: <form name="client" action="" onsubmit="return(send())">
412: <input type="hidden" name="lextkey" value="$lextkey" />
413: <input type="hidden" name="uextkey" value="$uextkey" />
414: <b><label for="uname">$lt{'un'}</label>:</b><br />
415: <input type="text" name="uname" id="uname" size="15" value="$authusername" /><br />
416: <b><label for="upass$now">$lt{'pw'}</label>:</b><br />
417: <input type="password" name="upass$now" id="upass$now" size="15" /><br />
418: <b><label for="udom">$lt{'dom'}</label>:</b><br />
419: <input type="text" name="udom" id="udom" size="15" value="$authdomain" /><br />
420: <input type="submit" value="$lt{'log'}" />
421: </form>
422: LFORM
423:
424: if ($showbanner) {
425: $r->print(<<HEADER);
426: <!-- The LON-CAPA Header -->
427: <table border="0" align="left" width="100%" cellspacing="0" cellpadding="1">
428: <tr>
429: <td align="left" valign="top" bgcolor="$pgbg">
430: <img src="$img" border="0" alt="The Learning Online Network with CAPA" />
431: </td>
432: </tr>
433: </table>
434: HEADER
435: }
436: $r->print(<<ENDTOP);
437: <div class="LC_loginpage_space"> </div>
438: <div class="LC_loginpage_floatLeft">
439: <div class="LC_loginpage_loginContainer">
440: $logintitle
441: <table border="0" align="left" cellspacing="1" cellpadding="2" width="100%">
442: <tr>
443: <td>
444: $loginform
445: </td>
446: </tr>
447: </table>
448: $noscript_warning
449: </div>
450:
451: <div class="LC_loginpage_loginInfo">
452: $loginhelp<br />
453: $forgotpw<br />
454: <br />
455: $contactblock<br />
456: <br />
457: $newuserlink<br />
458: $coursecatalog
459: </div>
460: </div>
461: ENDTOP
462: if ($showmainlogo) {
463: $r->print(' <img src="'.$logo.'" alt="" />'."\n");
464: }
465: $r->print(<<ENDTOP);
466: $announcements
467: $domainlogo
468: <div class="LC_loginpage_space"> </div>
469: ENDTOP
470:
471: $r->print(<<ENDDOCUMENT);
472: <table border="0" cellspacing="0" cellpadding="0">
473: <tr>
474: <td align="left" valign="top">
475: <small><b> $lt{'dom'}: </b></small>
476: </td>
477: <td align="left" valign="top">
478: <small><tt> $domain</tt></small>
479: </td>
480: </tr>
481: <tr>
482: <td align="left" valign="top">
483: <small><b> $lt{'serv'}: </b></small>
484: </td>
485: <td align="left" valign="top">
486: <small><tt> $lonhost ($role)</tt></small>
487: </td>
488: </tr>
489: <tr>
490: <td align="left" valign="top">
491: <small><b> $lt{'load'}: </b></small>
492: </td>
493: <td align="left" valign="top">
494: <small><tt> $loadpercent $lt{'perc'}</tt></small>
495: </td>
496: </tr>
497: <tr>
498: <td align="left" valign="top">
499: <small><b> $lt{'userload'}: </b></small>
500: </td>
501: <td align="left" valign="top">
502: <small><tt> $userloadpercent $lt{'perc'}</tt></small>
503: </td>
504: </tr>
505: </table>
506: </div>
507:
508: <script type="text/javascript">
509: // <![CDATA[
510: // the if prevents the script error if the browser can not handle this
511: if ( document.client.uname ) { document.client.uname.focus(); }
512: // ]]>
513: </script>
514: $helpdeskscript
515:
516: ENDDOCUMENT
517: my %endargs = ( 'noredirectlink' => 1, );
518: $r->print(&Apache::loncommon::end_page(\%endargs));
519: return OK;
520: }
521:
522: sub redirect_page {
523: my ($desthost) = @_;
524: my $protocol = $Apache::lonnet::protocol{$desthost};
525: $protocol = 'http' if ($protocol ne 'https');
526: my $url = $protocol.'://'.&Apache::lonnet::hostname($desthost).'/';
527: if ($env{'form.firsturl'} ne '') {
528: $url .='?firsturl='.$env{'form.firsturl'};
529: }
530: my $start_page = &Apache::loncommon::start_page('Switching Server',undef,
531: {'redirect' => [0,$url],});
532: my $end_page = &Apache::loncommon::end_page();
533: return $start_page.$end_page;
534: }
535:
536: sub contactdisplay {
537: my ($lt,$servadm,$showadminmail,$version,$authdomain,$helpdeskscript) = @_;
538: my $contactblock;
539: my $showhelpdesk = 0;
540: my $requestmail = $Apache::lonnet::perlvar{'lonSupportEMail'};
541: if ($requestmail =~ m/^[^\@]+\@[^\@]+$/) {
542: $showhelpdesk = 1;
543: }
544: if ($servadm && $showadminmail) {
545: $contactblock .= $$lt{'servadm'}.':<br />'.
546: '<tt>'.$servadm.'</tt><br />';
547: }
548: if ($showhelpdesk) {
549: $contactblock .= '<a href="javascript:helpdesk()">'.$lt->{'helpdesk'}.'</a><br />';
550: my $thisurl = &escape('/adm/login');
551: $$helpdeskscript = <<"ENDSCRIPT";
552: <script type="text/javascript">
553: // <![CDATA[
554: function helpdesk() {
555: var codedom = document.client.udom.value;
556: if (codedom == '') {
557: codedom = "$authdomain";
558: }
559: var querystr = "origurl=$thisurl&codedom="+codedom;
560: document.location.href = "/adm/helpdesk?"+querystr;
561: return;
562: }
563: // ]]>
564: </script>
565: ENDSCRIPT
566: }
567: $contactblock .= $version;
568: return $contactblock;
569: }
570:
571: sub forgotpwdisplay {
572: my (%lt) = @_;
573: my $prompt_for_resetpw = 1;
574: if ($prompt_for_resetpw) {
575: return '<a href="/adm/resetpw">'.$lt{'forgotpw'}.'</a>';
576: }
577: return;
578: }
579:
580: sub loginhelpdisplay {
581: my (%lt) = @_;
582: my $login_help = 1;
583: if ($login_help) {
584: return '<a href="/adm/loginproblems.html">'.$lt{'help'}.'</a>';
585: }
586: return;
587: }
588:
589: sub coursecatalog_link {
590: my ($linkname) = @_;
591: return <<"END";
592: <a href="/adm/coursecatalog">$linkname</a>
593: END
594: }
595:
596: sub newuser_link {
597: my ($linkname) = @_;
598: return '<a href="/adm/createaccount">'.$linkname.'</a>';
599: }
600:
601: 1;
602: __END__
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>