--- loncom/auth/lonroles.pm	2005/12/20 15:47:07	1.140
+++ loncom/auth/lonroles.pm	2006/05/30 17:15:00	1.150
@@ -1,7 +1,7 @@
 # The LearningOnline Network with CAPA
 # User Roles Screen
 #
-# $Id: lonroles.pm,v 1.140 2005/12/20 15:47:07 raeburn Exp $
+# $Id: lonroles.pm,v 1.150 2006/05/30 17:15:00 www Exp $
 #
 # Copyright Michigan State University Board of Trustees
 #
@@ -40,6 +40,9 @@ use Apache::lonhtmlcommon;
 use Apache::lonannounce;
 use Apache::lonlocal;
 use GDBM_File;
+use lib '/home/httpd/lib/perl/';
+use LONCAPA;
+ 
 
 sub redirect_user {
     my ($r,$title,$url,$msg,$launch_nav) = @_;
@@ -55,28 +58,40 @@ sub redirect_user {
     } else {
 	$navwindow.=&Apache::lonnavmaps::close();
     }
-    my $bodytag=&Apache::loncommon::bodytag('Switching Role');
+    my $start_page = &Apache::loncommon::start_page('Switching Role',undef,
+						    {'redirect' => [1,$url],});
+    my $end_page   = &Apache::loncommon::end_page();
+
 # Note to style police: 
 # This must only replace the spaces, nothing else, or it bombs elsewhere.
     $url=~s/ /\%20/g;
     $r->print(<<ENDREDIR);
-<head><title>$title</title>
-<meta HTTP-EQUIV="Refresh" CONTENT="1; url=$url">
-</head>
-<html>
-$bodytag
+$start_page
 <script type="text/javascript">
 $swinfo
 </script>
 $navwindow
 <h1>$msg</h1>
-<a href="$url">Continue</a>
-</body>
-</html>
+$end_page
 ENDREDIR
     return;
 }
 
+sub error_page {
+    my ($r,$error,$dest)=@_;
+    &Apache::loncommon::content_type($r,'text/html');
+    &Apache::loncommon::no_cache($r);
+    $r->send_http_header;
+    return OK if $r->header_only;
+    $r->print(&Apache::loncommon::start_page('Problems during Course Initialization').
+	      '<script type="text/javascript">'.
+	      &Apache::lonmenu::rawconfig().'</script>'.
+	      '<p>'.&mt('The following problems occurred:').
+	      $error.
+	      '</p><br /><a href="'.$dest.'>'.&mt('Continue').'</a>'.
+	      &Apache::loncommon::end_page());
+}
+
 sub handler {
 
     my $r = shift;
@@ -86,6 +101,7 @@ sub handler {
     my $envkey;
     my %dcroles = ();
     my $numdc = &check_fordc(\%dcroles,$then);
+    &Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'});
 
 # ================================================================== Roles Init
     if ($env{'form.selectrole'}) {
@@ -108,10 +124,10 @@ sub handler {
 # Check if user is a DC trying to enter a course and needs privs to be created
         if ($numdc > 0) {
             foreach my $envkey (keys %env) {
-                if ($envkey =~ m-^form\.cc\./(\w+)/(\w+)$-) {
-                    if ($dcroles{$1}) {
-                        my $cckey = 'user.role.cc./'.$1.'/'.$2;
-                        &check_privs($cckey,$then,$now);
+                if (my ($domain,$coursenum) =
+                                    ($envkey =~ m-^form\.cc\./(\w+)/(\w+)$-)) {
+                    if ($dcroles{$domain}) {
+                        &check_privs($domain,$coursenum,$then,$now);
                     }
                     last;
                 }
@@ -159,8 +175,9 @@ sub handler {
 				 &Apache::loncommon::no_cache($r);
 				 $r->send_http_header;
 				 my $swinfo=&Apache::lonmenu::rawconfig();
-				 my $bodytag=&Apache::loncommon::bodytag
+				 my $start_page=&Apache::loncommon::start_page
 				    ('Verifying Access Key to Unlock this Course');
+				 my $end_page=&Apache::loncommon::end_page();
 				 my $buttontext=&mt('Enter Course');
 				 my $message=&mt('Successfully registered key');
 				 my $assignresult=
@@ -180,10 +197,7 @@ sub handler {
 				     $buttontext=&mt('Re-Enter Key');
 				 }
 				 $r->print(<<ENDENTEREDKEY);
-<head><title>Verifying Course Access Key</title>
-</head>
-<html>
-$bodytag
+$start_page
 <script>
 $swinfo
 </script>
@@ -193,7 +207,7 @@ $swinfo
 <font size="+2">$message</font><br />
 <input type="submit" value="$buttontext" />
 </form>
-</body></html>
+$end_page
 ENDENTEREDKEY
                                  return OK;
 			     } else {
@@ -202,13 +216,11 @@ ENDENTEREDKEY
 				 &Apache::loncommon::no_cache($r);
 				 $r->send_http_header;
 				 my $swinfo=&Apache::lonmenu::rawconfig();
-				 my $bodytag=&Apache::loncommon::bodytag
+				 my $start_page=&Apache::loncommon::start_page
 				    ('Enter Access Key to Unlock this Course');
+				 my $end_page=&Apache::loncommon::end_page();
 				 $r->print(<<ENDENTERKEY);
-<head><title>Entering Course Access Key</title>
-</head>
-<html>
-$bodytag
+$start_page
 <script>
 $swinfo
 </script>
@@ -218,7 +230,7 @@ $swinfo
 <input type="text" size="20" name="newkey" value="$env{'form.newkey'}" />
 <input type="submit" value="Enter key" />
 </form>
-</body></html>
+$end_page
 ENDENTERKEY
 				 return OK;
 			     }
@@ -245,7 +257,11 @@ ENDENTERKEY
 			    my $dest=$env{'form.orgurl'};
 			    if (&Apache::lonnet::allowed('adv') eq 'F') { $tadv=1; }
 			    &Apache::lonnet::appenv('request.role.adv'=>$tadv);
-			    $r->internal_redirect($dest);
+                            if (($ferr) && ($tadv)) {
+				&error_page($r,$ferr,$dest);
+			    } else {
+				$r->internal_redirect($dest);
+			    }
 			    return OK;
 			} else {
 			    unless ($env{'request.course.id'}) {
@@ -259,33 +275,41 @@ ENDENTERKEY
 			    }
 			    if (&Apache::lonnet::allowed('adv') eq 'F') { $tadv=1; }
 			    &Apache::lonnet::appenv('request.role.adv'=>$tadv);
-
-			    # Check to see if the user is a CC entering a course 
-			    # for the first time
-			    my (undef, undef, $role, $courseid) = split(/\./, $envkey);
-			    if (substr($courseid, 0, 1) eq '/') {
-				$courseid = substr($courseid, 1);
-			    }
-			    $courseid =~ s/\//_/;
-			    if ($role eq 'cc' && $env{'course.' . $courseid . 
-							  '.course.helper.not.run'}) {
-				$furl = "/adm/helper/course.initialization.helper";
-				# Send the user to the course they selected
-			    } elsif ($env{'request.course.fn'}) {
-                                if ($env{'user.adv'}) {
-                                    my $startpage = &courseloadpage($courseid);
-                                    unless ($startpage eq 'firstres') {         
-				        $msg = &mt('Entering course ....');
-				        &redirect_user($r,&mt('New in course'),
-					     '/adm/whatsnew?refpage=start',$msg,
-					     $env{'environment.remotenavmap'});
-				        return OK;
-                                    }
-                                }
+			    if (($ferr) && ($tadv)) {
+				&error_page($r,$ferr,$furl);
+			    } else {
+				# Check to see if the user is a CC entering a course 
+				# for the first time
+				my (undef, undef, $role, $courseid) = split(/\./, $envkey);
+				if (substr($courseid, 0, 1) eq '/') {
+				    $courseid = substr($courseid, 1);
+				}
+				$courseid =~ s/\//_/;
+				if ($role eq 'cc' && $env{'course.' . $courseid . 
+							      '.course.helper.not.run'}) {
+				    $furl = "/adm/helper/course.initialization.helper";
+				    # Send the user to the course they selected
+				} elsif ($env{'request.course.id'}) {
+				    if (&Apache::lonnet::allowed('whn',
+								 $env{'request.course.id'})
+					|| &Apache::lonnet::allowed('whn',
+								    $env{'request.course.id'}.'/'
+								    .$env{'request.course.sec'})
+					) {
+					my $startpage = &courseloadpage($courseid);
+					unless ($startpage eq 'firstres') {         
+					    $msg = &mt('Entering course ....');
+					    &redirect_user($r,&mt('New in course'),
+							   '/adm/whatsnew?refpage=start',$msg,
+							   $env{'environment.remotenavmap'});
+					    return OK;
+					}
+				    }
+				}
+				&redirect_user($r,&mt('Entering Course'),
+					       $furl,$msg,
+					       $env{'environment.remotenavmap'});
 			    }
-			    &redirect_user($r,&mt('Entering Course'),
-                                           $furl,$msg,
-					   $env{'environment.remotenavmap'});
 			    return OK;
 			}
 		    }
@@ -324,16 +348,12 @@ ENDENTERKEY
     return OK if $r->header_only;
 
     my $swinfo=&Apache::lonmenu::rawconfig();
-    my $bodytag=&Apache::loncommon::bodytag('User Roles');
+    my $start_page=&Apache::loncommon::start_page('User Roles');
     my $standby=&mt('Role selected. Please stand by.');
     $standby=~s/\n/\\n/g;
     my $helptag='<table><tr><td>'.&Apache::loncommon::help_open_menu('','General Intro','General_Intro','User Roles',1,undef,undef,undef,undef,,&mt("Click here for help")).'</td></td></tr></table>';
     $r->print(<<ENDHEADER);
-<html>
-<head>
-<title>LON-CAPA User Roles</title>
-</head>
-$bodytag
+$start_page
 $helptag<br />
 <script>
 $swinfo
@@ -384,7 +404,7 @@ ENDHEADER
 	    $last=$hash{'last_known'};
 	    untie(%hash);
 	}
-	if ($last) { $fn.='?symb='.&Apache::lonnet::escape($last); }
+	if ($last) { $fn.='?symb='.&escape($last); }
 
 	&Apache::londocs::changewarning($r,undef,'You have modified your course recently, [_1] may fix this access problem.',
 					&Apache::lonenc::check_encrypt($fn));
@@ -397,19 +417,10 @@ ENDHEADER
     }
 # -------------------------------------------------------- Choice or no choice?
     if ($nochoose) {
-        if ($advanced) {
-	    $r->print("<h2>".&mt('Assigned User Roles')."</h2>\n");
-        } else {
-	    $r->print("<h2>".&mt('Sorry ...')."</h2>\n".
-		      &mt('This resource might be part of'));
-	    if ($env{'request.course.id'}) {
-		$r->print(&mt(' another'));
-	    } else {
-		$r->print(&mt(' a certain'));
-	    } 
-	    $r->print(&mt(' course.').'</body></html>');
-	    return OK;
-        } 
+	$r->print("<h2>".&mt('Sorry ...')."</h2>\n".
+		  &mt('This action is currently not authorized.').
+		  &Apache::loncommon::end_page());
+	return OK;
     } else {
         if ($advanced) {
 	    $r->print(&mt("Your home server is ").
@@ -530,11 +541,7 @@ ENDHEADER
 		    foreach my $id (@ids) { if ($id eq $home) { $allowed=1; } }
                     if (!$allowed) {
 			$button=0;
-                        $switchserver=&Apache::lonnet::escape('http://'.
-                         $Apache::lonnet::hostname{$home}.
-                          '/adm/login?domain='.$env{'user.domain'}.
-			   '&username='.$env{'user.name'}.
-                           '&firsturl=/priv/'.$env{'user.name'}.'/');
+                        $switchserver='otherserver='.$home.'&role='.$trolecode;
                     }
                     #next if ($home eq 'no_host');
                     $home = $Apache::lonnet::hostname{$home};
@@ -600,7 +607,7 @@ ENDHEADER
 	} else {
 	    $r->print('<h2>'.&mt('Currently no active roles or courses').'</h2>');
 	}
-	$r->print('</form></body></html>');
+	$r->print('</form>'.&Apache::loncommon::end_page());
 	return OK;
 # Is there only one choice?
     } elsif (($countactive==1) && ($env{'request.role'} eq 'cm')) {
@@ -609,7 +616,7 @@ ENDHEADER
 	$r->print("</form>\n");
 	$r->rflush();
 	$r->print('<script>document.forms.rolechoice.submit();</script>');
-	$r->print('</body></html>');
+	$r->print(&Apache::loncommon::end_page());
 	return OK;
     }
 # More than one possible role
@@ -766,7 +773,7 @@ ENDHEADER
 		  $r->dir_config('lonVersion').'</i><br />'.
 		  '<a href="/adm/logout">'.&mt('Logout').'</a></small></p>');
     }
-    $r->print("</body></html>\n");
+    $r->print(&Apache::loncommon::end_page());
     return OK;
 }
 
@@ -846,15 +853,16 @@ sub build_roletext {
 }
 
 sub check_privs {
-    my ($cckey,$then,$now) = @_;
+    my ($cdom,$cnum,$then,$now) = @_;
+    my $cckey = 'user.role.cc./'.$cdom.'/'.$cnum; 
     if ($env{$cckey}) {
         my ($role,$where,$trolecode,$tstart,$tend,$tremark,$tstatus,$tpstart,$tpend,$tfont);
         &role_status($cckey,$then,$now,\$role,\$where,\$trolecode,\$tstatus,\$tstart,\$tend);
         unless (($tstatus eq 'is') || ($tstatus eq 'will_not')) {
-            &set_privileges($1,$2);
+            &set_privileges($cdom,$cnum);
         }
     } else {
-        &set_privileges($1,$2);
+        &set_privileges($cdom,$cnum);
     }
 }
 
@@ -997,7 +1005,7 @@ sub allcourses_row {
 
 sub recent_filename {
     my $area=shift;
-    return 'nohist_recent_'.&Apache::lonnet::escape($area);
+    return 'nohist_recent_'.&escape($area);
 }
 
 sub set_privileges {
@@ -1021,7 +1029,7 @@ sub set_privileges {
                          $env{'user.home'},
                         "Role ".$role);
     &Apache::lonnet::appenv(
-                          'request.role'        => $role,
+                          'request.role'        => $spec,
                           'request.role.domain' => $dcdom,
                           'request.course.sec'  => '');
     my $tadv=0;
@@ -1032,11 +1040,10 @@ sub set_privileges {
 sub courseloadpage {
     my ($courseid) = @_;
     my $startpage;
-    my %entry_settings =
-              &Apache::lonnet::dump('nohist_whatsnew',$env{'user.domain'},
-                                    $env{'user.name'},$courseid.':courseinit');
+    my %entry_settings = &Apache::lonnet::get('nohist_whatsnew',
+					      [$courseid.':courseinit']);
     my ($tmp) = %entry_settings;
-    unless ($tmp =~ /^Error/) {
+    unless ($tmp =~ /^error: 2 /) {
         $startpage = $entry_settings{$courseid.':courseinit'};
     }
     if ($startpage eq '') {