--- loncom/auth/switchserver.pm	2005/10/24 21:32:43	1.1
+++ loncom/auth/switchserver.pm	2007/11/14 02:54:11	1.18
@@ -1,7 +1,7 @@
 # The LearningOnline Network
 # Switch Servers Handler
 #
-# $Id: switchserver.pm,v 1.1 2005/10/24 21:32:43 albertel Exp $
+# $Id: switchserver.pm,v 1.18 2007/11/14 02:54:11 albertel Exp $
 #
 # Copyright Michigan State University Board of Trustees
 #
@@ -37,78 +37,112 @@ use Apache::lonlocal;
 
 sub init_env {
     my ($r) = @_;
+    
+    if (-e $env{'user.environment'}) {
+	return  $env{'user.environment'};
+    }
     my $requrl=$r->uri;
-    my %cookies=CGI::Cookie->parse($r->header_in('Cookie'));
-    my $lonid=$cookies{'lonID'};
-    my $cookie;
-    if (!$lonid) { return undef; }
-
-    my $handle=$lonid->value;
-    $handle=~s/\W//g;
-    my $lonidsdir=$r->dir_config('lonIDsDir');
-    if ((!-e "$lonidsdir/$handle.id") || ($handle eq '')) {
-	$r->log_reason("Cookie $handle not valid", $r->filename); 
+    my $handle= &Apache::lonnet::check_for_valid_session($r);
+    if ($handle ne '') {
 	return undef;
     }
-
+    my $lonidsdir=$r->dir_config('lonIDsDir');
     &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle);
     
-    return $handle;
+    return $r->dir_config('lonIDsDir')."/$handle.id";
+}
+
+sub do_redirect {
+    my ($r,$url,$only_body,$extra_text) = @_;
+    $r->send_http_header;
+    my $start_page = 
+	&Apache::loncommon::start_page('Switching Server ...',undef,
+				       {'redirect'       => [0.5,$url],
+                                        'no_inline_link' => 1,
+					'only_body'      => $only_body,});
+    my $end_page   = &Apache::loncommon::end_page();
+    $r->print($start_page.$extra_text.$end_page);
+    return OK;
+
 }
 
 sub handler {
-    my $r = shift;
-    
+    my ($r) = @_;
     
     my $handle=&init_env($r);
     if (!defined($handle)) { return FORBIDDEN; }
 
     &Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},
 					    ['otherserver','role']);
-    my $switch_to=$Apache::lonnet::hostname{$env{'form.otherserver'}};
+
+    my $switch_to=&Apache::lonnet::hostname($env{'form.otherserver'});
+    if (! $env{'form.otherserver'}) {
+	$env{'form.otherserver'} =	
+	    &Apache::lonnet::find_existing_session($env{'user.domain'},
+						   $env{'user.name'});
+	if (! $env{'form.otherserver'}) {
+	    $env{'form.otherserver'} = 
+		&Apache::lonnet::spareserver(30000,undef,1);
+	}
+
+	$switch_to=&Apache::lonnet::hostname($env{'form.otherserver'});
+    }
+
     if (!defined($switch_to)) { return FORBIDDEN; }
-    if (!exists($env{'user.role.'.$env{'form.role'}})) { return FORBIDDEN; }
+
+    if ($env{'user.name'} eq 'public'
+	&& $env{'user.domain'} eq 'public') {
+	my $url = 'http://'.$switch_to.'/'.$r->uri;
+	return &do_redirect($r,$url,1)
+    }
+
+    if ($env{'form.role'} && 
+	!exists($env{'user.role.'.$env{'form.role'}})) { return FORBIDDEN; }
 
     #remove session env, and log event
-    unlink($r->dir_config('lonIDsDir')."/$handle.id");
+    unlink($handle);
     my %temp=('switchserver' => time.':'.$env{'form.otherserver'},
 	      $env{'form.role'});
     &Apache::lonnet::put('email_status',\%temp);
     &Apache::lonnet::log($env{'user.domain'},$env{'user.name'},
 			 $env{'user.home'},
 			 "Switch Server to $env{'form.otherserver'} with role $env{'form.role'} $ENV{'REMOTE_ADDR'}");
-    &Apache::lonnet::logthis(join(' -- ',$env{'user.domain'},$env{'user.name'},
-			 $env{'user.home'},
-			 "Switch Server to $env{'form.otherserver'} with role $env{'form.role'} $ENV{'REMOTE_ADDR'}"));
 
     &Apache::loncommon::content_type($r,'text/html');
+
+    #expire the cookie
+    my $c = new CGI::Cookie(-name    => 'lonID',
+			    -value   => '',
+			    -expires => '-10y',);
+    $r->header_out('Set-cookie' => $c);
     $r->send_http_header;
     return OK if $r->header_only;
 # -------------------------------------------------------- Menu script and info
 	   
-    my $windowinfo=&Apache::lonmenu::close();
-    $windowinfo.=&Apache::lonnavmaps::close();
+    my $windowinfo=
+	&Apache::lonmenu::close().
+	&Apache::lonnavmaps::close();
 # ---------------------------------------------------------------- Get handover
 
-    my $token = &Apache::lonnet::reply('tmpput:'.join('&',$ENV{'REMOTE_ADDR'},$env{'user.domain'},$env{'user.name'},$env{'form.role'}),$env{'form.otherserver'});
-    &Apache::lonnet::logthis("token is $token $switch_to");
-    my $switch='<meta HTTP-EQUIV="Refresh" CONTENT="0.5; url=http://'.$switch_to.'/adm/migrateuser?token='.$token.'">';
-    my $bodytag=&Apache::loncommon::bodytag('Switching Server ...');
+    my %info=('ip'       => $ENV{'REMOTE_ADDR'},
+	      'domain'   => $env{'user.domain'},
+	      'username' => $env{'user.name'},
+	      'role'     => $env{'form.role'},
+	      'server'   => $r->dir_config('lonHostID'));
+    if ($env{'request.sso.login'}) {
+	$info{'sso.login'} = $env{'request.sso.login'};
+    }
+    if ($env{'request.sso.reloginserver'}) {
+        $info{'sso.reloginserver'} = $env{'request.sso.reloginserver'};
+    }
+    my $token = &Apache::lonnet::tmpput(\%info,$env{'form.otherserver'});
+    my $url ='http://'.$switch_to.'/adm/login?'.
+	'domain='.$env{'user.domain'}.
+	'&username='.$env{'user.name'}.
+	'&token='.$token;
 # --------------------------------------------------------------- Screen Output
-    my $doc=(<<ENDDOCUMENT);
-	   <html>
-	       <head><title>The LearningOnline Network with CAPA Logout</title>
-	       $switch
-	       </head>
-	       $bodytag
-	       $windowinfo
-	       </body>
-	       </html>
-ENDDOCUMENT
-&Apache::lonnet::logthis($doc);
-    $r->print($doc);
     &Apache::lonnet::flushcourselogs();
-    return OK;
+    return &do_redirect($r,$url,0,$windowinfo);
 }
 
 1;