--- loncom/auth/lontokacc.pm 2002/07/31 15:23:55 1.3 +++ loncom/auth/lontokacc.pm 2002/08/01 22:36:11 1.4 @@ -1,8 +1,7 @@ # The LearningOnline Network -# Low security Access Handler for Token-based access -# (clearance given by other loncapa host) +# Access Handler for User File Transfers # -# $Id: lontokacc.pm,v 1.3 2002/07/31 15:23:55 www Exp $ +# $Id: lontokacc.pm,v 1.4 2002/08/01 22:36:11 www Exp $ # # Copyright Michigan State University Board of Trustees # @@ -30,27 +29,33 @@ package Apache::lontokacc; use strict; -use Apache::Constants qw(:common); +use Apache::Constants qw(:common :remotehost); use Apache::lonnet(); -use Apache::loncommon(); +use Apache::File(); sub handler { my $r = shift; - my $query=$r->args; - &Apache::loncommon::get_unprocessed_cgi($query,['token','server']); - my $tmpinfo='no_token'; - if (($ENV{'form.token'}) || ($ENV{'form.server'})) { - $tmpinfo=&Apache::lonnet::unescape( - &Apache::lonnet::reply('tmpget:'.$ENV{'form.token'}, - $ENV{'form.server'})); - chomp($tmpinfo); - my $uri=$r->uri; - if ($tmpinfo=~/$uri$/) { - return OK; - } + my $reqhost; + unless ($reqhost=$r->get_remote_host(REMOTE_DOUBLE_REV)) { + $r->log_reason("Spoof request"); + return FORBIDDEN; } - $r->log_reason("Invalid token-based access:".$r->uri.' for '.$tmpinfo.'.', - $r->filename); + my $readline; + my $lontabdir=$r->dir_config('lonTabDir'); + { + my $fh; + unless ($fh=Apache::File->new("$lontabdir/hosts.tab")) { + $r->log_reason("Could not find host tab file"); + return FORBIDDEN; + } + while ($readline=<$fh>) { + my ($id,$domain,$role,$name,$ip)=split(/:/,$readline); + if ($name =~ /$reqhost/i) { return OK; } + } + + } + $r->log_reason("Invalid request for user file transfer from $reqhost", + $r->filename); return FORBIDDEN; } @@ -58,3 +63,8 @@ sub handler { __END__ + + + + +