[BACK]Return to publiccheck.pm CVS log [TXT] [DIR] Up to [LON-CAPA] / loncom / auth
File:  [LON-CAPA] / loncom / auth / publiccheck.pm
Revision 1.3: download - view: text, annotated - select for diffs
Fri Jun 16 22:37:29 2006 UTC (17 years, 10 months ago) by raeburn
Branches: MAIN
CVS tags: HEAD
Enable users to set access controls on portfolio files to permit public viewing. Third iteration of data structure in file_permissions.db for storage of access contol records. Now uses key = value for individual access control records and a key = anonymous hash for fast look-ups of all records for a single file.   Use of a temporary lock record to prevent others modifying access control records for a specific portfolio file while the record for the same file is being updated. Additional argument added to call to lonhtmlcommon::datesetter() to optionally suppress display of calendar link.

# The LearningOnline Network
# Cookie Based Access Handler
#
# $Id: publiccheck.pm,v 1.3 2006/06/16 22:37:29 raeburn Exp $
#
# Copyright Michigan State University Board of Trustees
#
# This file is part of the LearningOnline Network with CAPA (LON-CAPA).
#
# LON-CAPA is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# LON-CAPA is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with LON-CAPA; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
#
# /home/httpd/html/adm/gpl.txt
#
# http://www.lon-capa.org/
#
###

package Apache::publiccheck;

use strict;
use Apache::Constants qw(:common :http :methods);
use Apache::lonnet;
use Apache::loncommon();
use Apache::lonlocal;
use CGI::Cookie();
use Fcntl qw(:flock);
use Apache::lonacc();

sub handler {
    my $r = shift;
    my $requrl=$r->uri;
    my %cookies=CGI::Cookie->parse($r->header_in('Cookie'));
    my $lonid=$cookies{'lonID'};
    if ($lonid) {
	my $handle=$lonid->value;
        $handle=~s/\W//g;
        my $lonidsdir=$r->dir_config('lonIDsDir');
        if ((-e "$lonidsdir/$handle.id") && ($handle ne '')) {
	    &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle);
	    if ($env{'user.name'} ne 'public'
		&& $env{'user.domain'} ne 'public') {
		return OK;
	    }
	}
    }
    if ($requrl=~m|^/public/|
	|| (&Apache::lonnet::metadata($requrl,'copyright') eq 'public')) {
        &process_public($r,$requrl);
        return OK;
    } elsif ($requrl =~ m#/+uploaded/([^/]+)/([^/]+)/portfolio(/.+)$#) {
        if (&process_portfolio($1,$2,$3)) {
            &process_public($r,$requrl);
            return OK;
        } 
    } elsif ($requrl =~ m#/+uploaded/([^/]+)/([^/]+)/groups/([^/]+)/portfolio/(.+)$#) {
        if (&process_portfolio($1,$2,$3.'/'.$4,$3)) {
            &process_public($r,$requrl);
            return OK;
        }
    }
    return DECLINED;
}

sub process_public {
    my ($r,$requrl) = @_;
    &Apache::lonnet::logthis('Granting public access: '.$requrl);
    if ($env{'user.name'} ne 'public' && $env{'user.domain'} ne 'public') {
        my $cookie=&Apache::lonauth::success($r,'public','public','public');
        my $lonidsdir=$r->dir_config('lonIDsDir');
        &Apache::lonnet::transfer_profile_to_env($lonidsdir,$cookie);
        $r->header_out('Set-cookie',"lonID=$cookie; path=/");
    }
    &Apache::lonacc::get_posted_cgi($r);
    $env{'request.state'} = "published";
    $env{'request.publicaccess'} = 1;
    $env{'request.filename'} = $r->filename;
    return;
}

sub process_portfolio {
    my ($udom,$unum,$file_name,$group) = @_;
    my $current_perms = &Apache::lonnet::get_portfile_permissions($udom,$unum);
    my %access_controls = &Apache::lonnet::get_access_controls($current_perms,$group,$file_name);
    my $public_access = 0;
    my $now = time;
    foreach my $key (keys(%{$access_controls{$file_name}})) {
        my ($num,$scope,$end,$start) = ($key =~ /^([^:]+):([a-z]+)_(\d*)_?(\d*)$/);
        if ($start > $now) {
            next;
        }
        if ($end && $end<$now) {
            next;
        }
        if ($scope eq 'public') {
            $public_access = 1;
            last;
        }
    }
    return $public_access;
}

1;

__END__
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>