--- loncom/auth/switchserver.pm	2007/08/25 00:52:47	1.14
+++ loncom/auth/switchserver.pm	2010/07/17 20:02:02	1.26
@@ -1,7 +1,7 @@
 # The LearningOnline Network
 # Switch Servers Handler
 #
-# $Id: switchserver.pm,v 1.14 2007/08/25 00:52:47 albertel Exp $
+# $Id: switchserver.pm,v 1.26 2010/07/17 20:02:02 raeburn Exp $
 #
 # Copyright Michigan State University Board of Trustees
 #
@@ -42,18 +42,11 @@ sub init_env {
 	return  $env{'user.environment'};
     }
     my $requrl=$r->uri;
-    my %cookies=CGI::Cookie->parse($r->header_in('Cookie'));
-    my $lonid=$cookies{'lonID'};
-    my $cookie;
-    if (!$lonid) { return undef; }
-
-    my $handle=&LONCAPA::clean_handle($lonid->value);
-    my $lonidsdir=$r->dir_config('lonIDsDir');
-    if ((!-e "$lonidsdir/$handle.id") || ($handle eq '')) {
-	$r->log_reason("Cookie $handle not valid", $r->filename); 
+    my $handle= &Apache::lonnet::check_for_valid_session($r);
+    if ($handle ne '') {
 	return undef;
     }
-
+    my $lonidsdir=$r->dir_config('lonIDsDir');
     &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle);
     
     return $r->dir_config('lonIDsDir')."/$handle.id";
@@ -62,10 +55,9 @@ sub init_env {
 sub do_redirect {
     my ($r,$url,$only_body,$extra_text) = @_;
     $r->send_http_header;
-    my $switch='<meta HTTP-EQUIV="Refresh" CONTENT="0; url='.$url.'">';
     my $start_page = 
-	&Apache::loncommon::start_page('Switching Server ...', $switch,
-				       {'no_inline_link' => 1,
+	&Apache::loncommon::start_page('Switching Server ...',undef,
+				       {'redirect'       => [0.5,$url],
 					'only_body'      => $only_body,});
     my $end_page   = &Apache::loncommon::end_page();
     $r->print($start_page.$extra_text.$end_page);
@@ -80,11 +72,18 @@ sub handler {
     if (!defined($handle)) { return FORBIDDEN; }
 
     &Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},
-					    ['otherserver','role']);
+				['otherserver','role','origurl','symb']);
 
     my $switch_to=&Apache::lonnet::hostname($env{'form.otherserver'});
-    if (!$env{'form.otherserver'}) {
-	$env{'form.otherserver'}=&Apache::lonnet::spareserver(30000,undef,1);
+    if (! $env{'form.otherserver'}) {
+	$env{'form.otherserver'} =	
+	    &Apache::lonnet::find_existing_session($env{'user.domain'},
+						   $env{'user.name'});
+	if (! $env{'form.otherserver'}) {
+	    $env{'form.otherserver'} = 
+		&Apache::lonnet::spareserver(30000,undef,1);
+	}
+        
 	$switch_to=&Apache::lonnet::hostname($env{'form.otherserver'});
     }
 
@@ -92,10 +91,24 @@ sub handler {
 
     if ($env{'user.name'} eq 'public'
 	&& $env{'user.domain'} eq 'public') {
-	my $url = 'http://'.$switch_to.'/'.$r->uri;
+	my $url = 'http://'.$switch_to.$r->uri;
 	return &do_redirect($r,$url,1)
     }
 
+    my $canhost = 1;
+    my @machinedoms = &Apache::lonnet::machine_domains($switch_to);
+    unless (grep(/^\Q$env{'user.domain'}\E/,@machinedoms)) {
+        my $machinedom = &Apache::lonnet::host_domain($env{'form.otherserver'});
+        my %defdomdefaults = &Apache::lonnet::get_domain_defaults($machinedom);
+        my %udomdefaults = &Apache::lonnet::get_domain_defaults($env{'user.domain'});
+        my $remoterev = &Apache::lonnet::get_server_loncaparev($env{'user.domain'},$env{'form.otherserver'});
+        $canhost = &Apache::lonnet::can_host_session($env{'user.domain'},$machinedom,
+                                                     $remoterev,$udomdefaults{'remotesessions'},
+                                                     $defdomdefaults{'hostedsessions'});
+    }
+
+    unless ($canhost) { return FORBIDDEN; }
+
     if ($env{'form.role'} && 
 	!exists($env{'user.role.'.$env{'form.role'}})) { return FORBIDDEN; }
 
@@ -115,13 +128,13 @@ sub handler {
 			    -value   => '',
 			    -expires => '-10y',);
     $r->header_out('Set-cookie' => $c);
-    $r->send_http_header;
-    return OK if $r->header_only;
+
+    if ($r->header_only) {
+	$r->send_http_header;
+	return OK;
+    }
 # -------------------------------------------------------- Menu script and info
 	   
-    my $windowinfo=
-	&Apache::lonmenu::close().
-	&Apache::lonnavmaps::close();
 # ---------------------------------------------------------------- Get handover
 
     my %info=('ip'       => $ENV{'REMOTE_ADDR'},
@@ -129,6 +142,12 @@ sub handler {
 	      'username' => $env{'user.name'},
 	      'role'     => $env{'form.role'},
 	      'server'   => $r->dir_config('lonHostID'));
+    if ($env{'form.origurl'}) {
+        $info{'origurl'} = $env{'form.origurl'};
+    }
+    if ($env{'form.symb'}) {
+        $info{'symb'} = $env{'form.symb'};
+    }
     if ($env{'request.sso.login'}) {
 	$info{'sso.login'} = $env{'request.sso.login'};
     }
@@ -142,7 +161,7 @@ sub handler {
 	'&amp;token='.$token;
 # --------------------------------------------------------------- Screen Output
     &Apache::lonnet::flushcourselogs();
-    return &do_redirect($r,$url,0,$windowinfo);
+    return &do_redirect($r, $url, 0);
 }
 
 1;