--- loncom/auth/publiccheck.pm 2006/07/21 19:42:12 1.9 +++ loncom/auth/publiccheck.pm 2009/01/14 15:36:42 1.16 @@ -1,7 +1,7 @@ # The LearningOnline Network # Cookie Based Access Handler # -# $Id: publiccheck.pm,v 1.9 2006/07/21 19:42:12 albertel Exp $ +# $Id: publiccheck.pm,v 1.16 2009/01/14 15:36:42 raeburn Exp $ # # Copyright Michigan State University Board of Trustees # @@ -34,30 +34,35 @@ use Apache::Constants qw(:common :http : use Apache::lonnet; use Apache::loncommon(); use Apache::lonlocal; -use CGI::Cookie(); use Fcntl qw(:flock); use Apache::lonacc(); +use LONCAPA(); sub handler { my $r = shift; my $requrl=$r->uri; - my %cookies=CGI::Cookie->parse($r->header_in('Cookie')); - my $lonid=$cookies{'lonID'}; - if ($lonid) { - my $handle=$lonid->value; - $handle=~s/\W//g; + + if (&Apache::lonnet::is_domainimage($requrl)) { + return OK; + } + + if ($requrl =~ m{^/res/adm/pages/[^/]+\.(gif|png)$}) { + return OK; + } + + my $handle = &Apache::lonnet::check_for_valid_session($r); + if ($handle ne '') { my $lonidsdir=$r->dir_config('lonIDsDir'); - if ((-e "$lonidsdir/$handle.id") && ($handle ne '')) { - &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle); - if ($env{'user.name'} ne 'public' - && $env{'user.domain'} ne 'public') { - return OK; - } + &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle); + if ($env{'user.name'} ne 'public' + && $env{'user.domain'} ne 'public') { + return OK; } } if ($requrl=~m|^/public/| || $requrl=~m|^/adm/help/.*\.hlp$| + || $requrl=~m|^/adm/[^/]+/[^/]+/aboutme/portfolio$| || (&Apache::lonnet::metadata($requrl,'copyright') eq 'public')) { &process_public($r,$requrl); return OK; @@ -72,6 +77,9 @@ sub handler { } elsif ($requrl eq '/adm/restrictedaccess') { &process_public($r,$requrl); return OK; + } elsif ($requrl eq '/adm/blockedaccess') { + &process_public($r,$requrl); + return OK; } return DECLINED; }