--- loncom/auth/lonlogout.pm	2003/09/17 23:50:18	1.11
+++ loncom/auth/lonlogout.pm	2008/04/02 12:29:38	1.30
@@ -1,7 +1,7 @@
 # The LearningOnline Network
 # Logout Handler
 #
-# $Id: lonlogout.pm,v 1.11 2003/09/17 23:50:18 www Exp $
+# $Id: lonlogout.pm,v 1.30 2008/04/02 12:29:38 bisitz Exp $
 #
 # Copyright Michigan State University Board of Trustees
 #
@@ -25,10 +25,6 @@
 #
 # http://www.lon-capa.org/
 #
-# (Cookie Based Access Handler
-# 5/21/99,5/22,5/29,5/31,6/15,16/11,22/11,
-# 01/06,01/13 Gerd Kortemeyer)
-# 05/31,11/29,12/29 Gerd Kortemeyer
 
 package Apache::lonlogout;
 
@@ -43,81 +39,97 @@ use Apache::lonlocal;
 sub handler {
     my $r = shift;
 
+    #Check for cookie
     my $requrl=$r->uri;
-    my %cookies=CGI::Cookie->parse($r->header_in('Cookie'));
-    my $lonid=$cookies{'lonID'};
-    my $cookie;
-    if ($lonid) {
-	my $handle=$lonid->value;
-        $handle=~s/\W//g;
-        my $lonidsdir=$r->dir_config('lonIDsDir');
-        if ((-e "$lonidsdir/$handle.id") && ($handle ne '')) {
-           my @profile;
-           my %sessionhash;
-	    {
-             my $idf=Apache::File->new("$lonidsdir/$handle.id");
-             @profile=<$idf>;
-	    }
-            my $envi;
-            for ($envi=0;$envi<=$#profile;$envi++) {
-		chomp($profile[$envi]);
-		my ($envname,$envvalue)=split(/=/,$profile[$envi]);
-                $sessionhash{$envname}=$envvalue;
-            }
-            unlink("$lonidsdir/$handle.id");
-	    my %temp=('logout' => time);
-	    &Apache::lonnet::put('email_status',\%temp);
-	    &Apache::lonnet::log($sessionhash{'user.domain'},
-                                 $sessionhash{'user.name'},
-                                 $sessionhash{'user.home'},
-                                 "Logout $ENV{'REMOTE_ADDR'}");
-            $r->content_type('text/html');
-            $r->send_http_header;
-            return OK if $r->header_only;
+    my $handle = &Apache::lonnet::check_for_valid_session($r);
+    #check if cookie still valid
+    if ($handle eq '') {
+	$r->log_reason("Cookie $handle not valid", $r->filename); 
+	return FORBIDDEN;
+    }
+
+    #we've got a valid user
+    my @profile;
+    my $lonidsdir=$r->dir_config('lonIDsDir');
+    &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle);
+    unlink("$lonidsdir/$handle.id");
+    my %temp=('logout' => time);
+    &Apache::lonnet::put('email_status',\%temp);
+    &Apache::lonnet::log($env{'user.domain'},
+			 $env{'user.name'},
+			 $env{'user.home'},
+			 "Logout $ENV{'REMOTE_ADDR'}");
+
+    &Apache::loncommon::content_type($r,'text/html');
+
+    #expire the cookie
+    my $c = new CGI::Cookie(-name    => 'lonID',
+			    -value   => '',
+			    -expires => '-10y',);
+    $r->header_out('Set-cookie' => $c);
+
+    $r->send_http_header;
+    return OK if $r->header_only;
 # -------------------------------------------------------- Menu script and info
 
     my $windowinfo=&Apache::lonmenu::close();
+    $windowinfo.=&Apache::lonnavmaps::close();
 # ---------------------------------------------------------------- Get handover
     &Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},['handover']);
     my $switch='';
-    my $bodytag='';
+    my $start_page='';
     my $relogmessage='';
-    if ($ENV{'form.handover'}) {
-       $switch='<meta HTTP-EQUIV="Refresh" CONTENT="0.5; url='.
-	   $ENV{'form.handover'}.'">';
-       $bodytag=&Apache::loncommon::bodytag('Switching Server ...');
-   } else {
-       $bodytag=&Apache::loncommon::bodytag('Logged Out');
-       my %lt=&Apache::lonlocal::texthash('gb' => 'Goodbye',
-                                          'cw' => 'close this window',
-                                          'li' => 'log in again',
-                                          'pe' => 'Please either',
-                                          'or' => 'or');
-       $relogmessage=(<<ENDRELOG);
-<h1>$lt{'gb'}!</h1>
-    $lt{'pe'} <a href="javascript:self.close();">$lt{'cw'}</a> $lt{'or'}
-<a href="/adm/login">$lt{'li'}</a>.
-ENDRELOG
-   }
+    if ($env{'form.handover'}) {
+	$switch='<meta HTTP-EQUIV="Refresh" CONTENT="0.5; url='.
+	    $env{'form.handover'}.'">';
+	$start_page=&Apache::loncommon::start_page('Switching Server ...',
+						   $switch);
+    } else {
+	$start_page=&Apache::loncommon::start_page('Logged Out',undef,
+						   {'no_inline_link' => 1,});
+	
+	$relogmessage.='<h1>'.&mt('Goodbye').'</h1>';
+
+	if (!$env{'request.sso.norelogin'}) {
+	    my $relogin_server;
+	    if ($env{'request.sso.reloginserver'}) {
+		$relogin_server = $env{'request.sso.reloginserver'};
+	    }
+	    my $login_url = $relogin_server.'/adm/'.
+		($env{'request.sso.login'} ? 'roles': 'login');
+
+	    $relogmessage.=&mt('Please either [_1]close this window[_2] or [_3]log in again[_4].'
+                              ,'<a href="javascript:self.close();">','</a>'
+                              ,'<a href="'.$login_url.'?domain='.$env{'user.domain'}.'">','</a>');
+        }
+	my $domain = $env{'user.domain'};
+        if ($env{'request.sso.login'}
+	    && defined($r->dir_config("lonSSOUserLogoutMessageFile_$domain"))) {
+	    open(my $fh,$r->dir_config("lonSSOUserLogoutMessageFile_$domain"));
+	    $relogmessage.= join('',<$fh>);
+	}
+	if ($env{'request.sso.login'}
+	    && defined($r->dir_config('lonSSOUserLogoutMessageFile'))) {
+	    open(my $fh,$r->dir_config('lonSSOUserLogoutMessageFile'));
+	    $relogmessage.= join('',<$fh>);
+	}
+
+    }
+    my $end_page=&Apache::loncommon::end_page();
 # --------------------------------------------------------------- Screen Output
-            $r->print(<<ENDDOCUMENT);
-<html>
-<head><title>The LearningOnline Network with CAPA Logout</title>
-$switch
-</head>
-$bodytag
+    $r->print(<<ENDDOCUMENT);
+$start_page
 $windowinfo
 $relogmessage
-</body>
-</html>
+$end_page
 ENDDOCUMENT
-            &Apache::lonnet::flushcourselogs();
-            return OK; 
-        } else { 
-            $r->log_reason("Cookie $handle not valid", $r->filename); 
-        }
-    }
-    return FORBIDDEN;
+    $r->register_cleanup(\&flush_course_logs);
+    return OK; 
+}
+
+sub flush_course_logs {
+    &Apache::lonnet::flushcourselogs();
+    return OK;
 }
 
 1;