[BACK]Return to lonuploadedacc.pm CVS log [TXT] [DIR] Up to [LON-CAPA] / loncom / auth

Diff for /loncom/auth/lonuploadedacc.pm between versions 1.4 and 1.13

version 1.4, 2002/11/12 22:23:37 version 1.13, 2006/07/17 17:34:46
Line 28 Line 28
   
 package Apache::lonuploadedacc;  package Apache::lonuploadedacc;
   
   #
   # The way this is supposed to work:
   #
   # User A has client machine C
   # User A is logged into LON-CAPA server S
   # needs file from user B
   # homeserver for user B is H
   # 
   # This handler runs on H
   # To access a userfile:
   # Server S generates a token and puts it into the query string of URL for H
   # Client box C asks H for file with token issued by C
   # H now must ask S if token is valid, uses S's lond-command tokenauthuserfile
   
 use strict;  use strict;
 use Apache::Constants qw(:common :remotehost);  use Apache::Constants qw(:common :http);
 use Apache::lonnet();  use Apache::lonnet;
   
 sub handler {  sub handler {
     my $r = shift;      my $r = shift;
     my $args=$r->args;      my $args=$r->args;
     &Apache::loncommon::get_unprocessed_cgi($args,['token']);       &Apache::loncommon::get_unprocessed_cgi($args,['token','tokenissued']); 
     my (undef,undef,$udom,$uname,$ufile)=split(/\//,$r->uri);      my (undef,undef,$udom,$uname,$ufile)=split(/\//,$r->uri,5);
     $ufile=~s/^[\~\.]+//;      $ufile=~s/^[\~\.]+//;
     my ($homeserver)=($ENV{'form.token'}=~/\_([a-zA-Z0-9]+)$/);      my $remoteserver=$env{'form.tokenissued'};
     my $remoteip=$ENV{'REMOTE_ADDR'};  
     &Apache::lonnet::logthis("remote server $remoteserver");  
     my $remoteserver=$Apache::lonnet::iphost{$remoteip};  
   
     my $reply=&Apache::lonnet::reply('tokenauthuserfile:'.      my $reply=&Apache::lonnet::reply('tokenauthuserfile:'.
                  $udom.'/'.$uname.'/'.$ufile.':'.$ENV{'form.token'},                   $udom.'/'.$uname.'/'.$ufile.':'.$env{'form.token'},
      $remoteserver);       $remoteserver);
     if ($reply eq 'ok') {      if ($reply eq 'ok') {
        return OK;         return OK;
      } elsif ($reply eq 'con_lost' || $reply eq 'no_such_host') {
          &Apache::lonnet::logthis("Server unavailable for userfile access $uname at $udom for $ufile with $remoteserver token $env{'form.token'}: $reply");
          return HTTP_SERVICE_UNAVAILABLE;
    } else {     } else {
        &Apache::lonnet::logthis(         &Apache::lonnet::logthis("Refused userfile access $uname at $udom for $ufile with $remoteserver token $env{'form.token'}: $reply");
 "Refused userfile access $uname at $udom for $ufile from $server with $ENV{'form.token'}: $reply");  
        return FORBIDDEN;         return FORBIDDEN;
    }     }
 }  }
   
   sub skip_phase {
       return OK;
   }
   
 1;  1;
 __END__  __END__
   
Removed from v.1.4  
changed lines
  Added in v.1.13

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>