--- loncom/interface/courseprefs.pm	2018/09/02 00:14:24	1.49.2.24
+++ loncom/interface/courseprefs.pm	2023/09/02 16:12:21	1.49.2.28.2.16
@@ -1,7 +1,7 @@
 # The LearningOnline Network with CAPA
 # Handler to set configuration settings for a course
 #
-# $Id: courseprefs.pm,v 1.49.2.24 2018/09/02 00:14:24 raeburn Exp $
+# $Id: courseprefs.pm,v 1.49.2.28.2.16 2023/09/02 16:12:21 raeburn Exp $
 #
 # Copyright Michigan State University Board of Trustees
 #
@@ -52,12 +52,16 @@ This module is used for configuration of
 
 =item process_changes()
 
+=item process_linkprot()
+
 =item get_sec_str()
 
 =item check_clone()
 
 =item store_changes()
 
+=item store_linkprot()
+
 =item update_env()
 
 =item display_disallowed()
@@ -112,7 +116,7 @@ This module is used for configuration of
 
 =item item_table_row_end()
 
-=item yes_no_radio()
+=item yesno_radio()
 
 =item select_from_options()
 
@@ -220,6 +224,8 @@ use Apache::lonparmset;
 use Apache::courseclassifier;
 use Apache::lonlocal;
 use LONCAPA qw(:DEFAULT :match);
+use Crypt::CBC;
+use Time::HiRes qw( sleep );
 
 my $registered_cleanup;
 my $modified_courses;
@@ -288,7 +294,7 @@ sub handler {
                 excc => 'Exclude from community catalog',
                 clon => 'Users allowed to clone community',
                 rept => 'Replacement titles for standard community roles',
-                time => 'Timezone where the community is located',
+                time => 'Time Zone where the community is located',
                 date => 'Locale used for community calendar',
                 coco => 'Community Content',
                 copo => 'Community Policy',
@@ -317,7 +323,7 @@ sub handler {
                 excc => 'Exclude from course catalog',
                 clon => 'Users allowed to clone course',
                 rept => 'Replacement titles for standard course roles',
-                time => 'Timezone in which the course takes place',
+                time => 'Time Zone in which the course takes place',
                 date => 'Locale used for course calendar',
                 coco => 'Course Content',
                 copo => 'Course Policy',
@@ -365,10 +371,48 @@ sub handler {
     }
 
     my %values=&Apache::lonnet::dump('environment',$cdom,$cnum);
+    my %linkprot=&Apache::lonnet::dump('lti',$cdom,$cnum,undef,undef,undef,1);
+    my %ltienc = &Apache::lonnet::dump('nohist_ltienc',$cdom,$cnum,undef,undef,undef,1);
+    my %ltitools = &Apache::lonnet::dump('ltitools',$cdom,$cnum,undef,undef,undef,1);
+    my %ltitoolsenc = &Apache::lonnet::dump('nohist_toolsenc',$cdom,$cnum,undef,undef,undef,1);
+    foreach my $id (keys(%linkprot)) {
+        if (ref($linkprot{$id}) eq 'HASH') {
+            if (ref($ltienc{$id}) eq 'HASH') {
+                $values{'linkprot'}{$id} = { %{$linkprot{$id}}, %{$ltienc{$id}} };
+            } else {
+                $values{'linkprot'}{$id} = $linkprot{$id};
+            }
+        }
+        unless ($phase eq 'process') {
+            if (ref($values{'linkprot'}{$id}) eq 'HASH') {
+                delete($values{'linkprot'}{$id}{'secret'});
+            }
+        }
+    }
+    if ($linkprot{'lock'}) {
+        delete($linkprot{'lock'});
+    }
+    foreach my $id (keys(%ltitools)) {
+        if (ref($ltitools{$id}) eq 'HASH') {
+            if (ref($ltitoolsenc{$id}) eq 'HASH') {
+                $values{'ltitools'}{$id} = { %{$ltitools{$id}}, %{$ltitoolsenc{$id}} };
+            } else {
+                $values{'ltitools'}{$id} = $ltitools{$id};
+            }
+        }
+        unless ($phase eq 'process') {
+            if (ref($values{'ltitools'}{$id}) eq 'HASH') {
+                delete($values{'ltitools'}{$id}{'secret'});
+            }
+        }
+    }
+    if ($ltitools{'lock'}) {
+        delete($ltitools{'lock'});
+    }
     my @prefs_order = ('courseinfo','localization','feedback','discussion',
                        'classlists','appearance','grading','printouts',
-                       'spreadsheet','bridgetasks','other');
-
+                       'menuitems','ltitools','linkprot','spreadsheet',
+                       'bridgetasks','other');
     my %prefs = (
         'courseinfo' =>
                    { text => $lt{'gens'},
@@ -382,7 +426,7 @@ sub handler {
                                    'co-owners'        => $lt{'cown'},
                                    'description'      => $lt{'desc'},
                                    'courseid'         => $lt{'idnu'},
-                                   'uniquecode'       => $lt{'unco'}, 
+                                   'uniquecode'       => $lt{'unco'},
                                    'categories'       => $lt{'catg'},
                                    'hidefromcat'      => $lt{'excc'},
                                    'cloners'          => $lt{'clon'}, 
@@ -430,7 +474,7 @@ sub handler {
                          'plc.users.denied'             => 'No Chat room use',
                          allow_limited_html_in_feedback => 'Allow limited HTML in discussion',
                          allow_discussion_post_editing  => 'Users can edit/delete own discussion posts',
-                         discussion_post_fonts       => 'Discussion post fonts based on likes/unlikes',
+                         discussion_post_fonts          => 'Discussion post fonts based on likes/unlikes',
                                   },
                     },
         'classlists' =>
@@ -464,7 +508,8 @@ sub handler {
                      help => 'Course_Prefs_Display',
                      ordered => ['default_xml_style','pageseparators',
                                  'disable_receipt_display','texengine',
-                                 'tthoptions','uselcmath','usejsme'],
+                                 'tthoptions','uselcmath','usejsme',
+                                 'inline_chem','extresource'],
                       itemtext => {
                           default_xml_style       => 'Default XML style file',
                           pageseparators          => 'Visibly Separate Items on Pages',
@@ -473,6 +518,8 @@ sub handler {
                           tthoptions              => 'Default set of options to pass to tth/m when converting TeX',
                           uselcmath               => 'Student formula entry uses inline preview, not DragMath pop-up',
                           usejsme                 => 'Molecule editor uses JSME (HTML5) in place of JME (Java)',
+                          inline_chem             => 'Chemical reaction response uses inline preview, not pop-up',
+                          extresource             => 'Display of external resources',
                                   },
                   },
         'grading' =>
@@ -527,6 +574,37 @@ sub handler {
                         suppress_embed_prompt => 'Hide upload references prompt if uploading file to portfolio',
                                 },
                   },
+        'menuitems' =>
+                   {
+                     text => 'Menu display',
+                     help => 'Course_Prefs_Menus',
+                     header => [{col1 => 'Default Menu',
+                                 col2 => 'Value',},
+                                {col1 => 'Menu collections',
+                                 col2 => 'Settings',
+                                }],
+                     ordered => ['menudefault','menucollections'],
+                     itemtext => {
+                         menudefault     => 'Choose default collection of menu items for course',
+                         menucollections => 'Menu collections',
+                                 },
+                   },
+        'linkprot' =>
+                   {
+                     text => 'Link protection',
+                     help => 'Course_Prefs_Linkprotection',
+                     header => [{col1 => 'Item',
+                                 col2 => 'Settings',
+                                }],
+                   },
+        'ltitools' =>
+                   {
+                     text => 'External tools',
+                     help => 'Course_Prefs_ExternalTools',
+                     header => [{col1 => 'Item',
+                                 col2 => 'Settings',
+                                }],
+                   },
         'other' =>
                   { text => 'Other settings',
                     help => 'Course_Prefs_Other',
@@ -537,15 +615,25 @@ sub handler {
     );
     if (($phase eq 'process') && ($parm_permission->{'process'})) {
         my @allitems = &get_allitems(%prefs);
-        &Apache::lonconfigsettings::make_changes($r,$cdom,$phase,$context,
-                                                 \@prefs_order,\%prefs,\%values,
-                                                  $cnum,undef,\@allitems,
-                                                  'coursepref',$parm_permission);
+        my $result = &Apache::lonconfigsettings::make_changes($r,$cdom,$phase,$context,
+                                                              \@prefs_order,\%prefs,\%values,
+                                                              $cnum,undef,\@allitems,
+                                                              'coursepref',$parm_permission);
+        if ((ref($result) eq 'HASH') && (keys(%{$result}))) {
+            $r->rflush();
+            &devalidate_remote_courseprefs($cdom,$cnum,$result);
+        }
     } elsif (($phase eq 'display') && ($parm_permission->{'display'})) {
-        my $jscript = &get_jscript($cid,$cdom,$phase,$crstype,\%values);
+        my $noedit;
+        if (ref($parm_permission) eq 'HASH') {
+            unless ($parm_permission->{'process'}) {
+                $noedit = 1;
+            }
+        }
+        my $jscript = &get_jscript($cid,$cdom,$phase,$crstype,\%values,$noedit);
         my @allitems = &get_allitems(%prefs);
         &Apache::lonconfigsettings::display_settings($r,$cdom,$phase,$context,
-            \@prefs_order,\%prefs,\%values,undef,$jscript,\@allitems,$crstype,
+            \@prefs_order,\%prefs,\%values,$cnum,$jscript,\@allitems,$crstype,
             'coursepref',$parm_permission);
     } else {
         &Apache::lonconfigsettings::display_choices($r,$phase,$context,
@@ -591,6 +679,8 @@ sub get_allitems {
                 if ($item eq 'feedback') {
                     push(@allitems,(map { $_.'.text'; } @{$prefs{$item}{'ordered'}}));
                 }
+            } elsif (($item eq 'linkprot') || ($item eq 'ltitools')) {
+                push(@allitems,$item);
             }
         }
     }
@@ -598,7 +688,7 @@ sub get_allitems {
 }
 
 sub print_config_box {
-    my ($r,$cdom,$phase,$action,$item,$settings,$allitems,$crstype,$parm_permission) = @_;
+    my ($r,$cdom,$cnum,$phase,$action,$item,$settings,$allitems,$crstype,$parm_permission) = @_;
     my $ordered = $item->{'ordered'};
     my $itemtext = $item->{'itemtext'};
     my $noedit;
@@ -619,7 +709,7 @@ sub print_config_box {
     }
     $output .= '</span></th>'."\n".
                '</tr>';
-    if (($action eq 'feedback') || ($action eq 'classlists')) {
+    if (($action eq 'feedback') || ($action eq 'classlists') || ($action eq 'menuitems')) {
         $output .= '
           <tr>
            <td>
@@ -644,6 +734,8 @@ sub print_config_box {
             $output .= &print_feedback('top',$cdom,$settings,$ordered,$itemtext,\$rowtotal,$noedit);
         } elsif ($action eq 'classlists') {
             $output .= &print_classlists('top',$cdom,$settings,$itemtext,\$rowtotal,$crstype,$noedit);
+        } elsif ($action eq 'menuitems') {
+            $output .= &print_menuitems('top',$cdom,$settings,$itemtext,\$rowtotal,$crstype,$noedit);
         }
         $output .= '
            </table>
@@ -722,6 +814,16 @@ sub print_config_box {
         $output .= &print_spreadsheet($cdom,$settings,$ordered,$itemtext,\$rowtotal,$crstype,$noedit);
     } elsif ($action eq 'bridgetasks') {
         $output .= &print_bridgetasks($cdom,$settings,$ordered,$itemtext,\$rowtotal,$crstype,$noedit);
+    } elsif ($action eq 'ltitools') {
+        my $currtools = {};
+        if ((ref($settings) eq 'HASH') && (ref($settings->{'ltitools'}))) {
+            $currtools = $settings->{'ltitools'};
+        }
+        $output .= &print_ltitools($cdom,$cnum,$currtools,\$rowtotal,$crstype,$noedit,'course');
+    } elsif ($action eq 'menuitems') {
+        $output .= &print_menuitems('bottom',$cdom,$settings,$itemtext,\$rowtotal,$crstype,$noedit);
+    } elsif ($action eq 'linkprot') {
+        $output .= &print_linkprotection($cdom,$cnum,$settings,\$rowtotal,$crstype,$noedit,'course');
     } elsif ($action eq 'other') {
         $output .= &print_other($cdom,$settings,$allitems,\$rowtotal,$crstype,$noedit);
     }
@@ -734,8 +836,8 @@ sub print_config_box {
 }
 
 sub process_changes {
-    my ($cdom,$action,$values,$item,$changes,$allitems,$disallowed,$crstype) = @_;
-    my %newvalues;
+    my ($cdom,$cnum,$action,$values,$item,$changes,$allitems,$disallowed,$crstype,$lastactref) = @_;
+    my (%newvalues,$errors);
     if (ref($item) eq 'HASH') {
         if (ref($changes) eq 'HASH') {
             my @ordered;
@@ -752,6 +854,18 @@ sub process_changes {
                         }
                     }
                 }
+            } elsif (($action eq 'linkprot') || ($action eq 'ltitools')) {
+                if (ref($values->{$action}) eq 'HASH') {
+                    foreach my $id (keys(%{$values->{$action}})) {
+                        if ($id =~ /^\d+$/) {
+                            push(@ordered,$id);
+                        }
+                    }
+                }
+                @ordered = sort { $a <=> $b } @ordered;
+                if (($env{'form.'.$action.'_add'}) && ($env{'form.'.$action.'_maxnum'} =~ /^\d+$/)) {
+                    push(@ordered,$env{'form.'.$action.'_maxnum'});
+                }
             } elsif (ref($item->{'ordered'}) eq 'ARRAY') {
                 if ($action eq 'courseinfo') {
                     my ($can_toggle_cat,$can_categorize) =
@@ -814,6 +928,91 @@ sub process_changes {
                             $changes->{$ext_entry} = $newvalues{$ext_entry};
                         }
                     }
+                } elsif ($action eq 'menuitems') {
+                    my (%current,@colls);
+                    my $next = 1;
+                    if ($values->{'menucollections'}) {
+                        foreach my $item (split(/;/,$values->{'menucollections'})) {
+                            my ($num,$value) = split(/\%/,$item);
+                            if ($num =~ /^\d+$/) {
+                                unless (grep(/^$num$/,@colls)) {
+                                    push(@colls,$num);
+                                }
+                                my @entries = split(/\&/,$value);
+                                foreach my $entry (@entries) {
+                                    my ($name,$fields) = split(/=/,$entry);
+                                    $current{$num}{$name} = $fields;
+                                }
+                            }
+                        }
+                    }
+                    if (@colls) {
+                        @colls = sort { $a <=> $b } @colls;
+                        $next += $colls[-1];
+                    }
+                    if ($env{'form.menucollections_add'} eq $next) {
+                        push(@colls,$next);
+                    }
+                    my $currdef = $values->{'menudefault'};
+                    my $possdef = $env{'form.menudefault'};
+                    if (($possdef =~ /^\d+$/) && (grep(/^$possdef$/,@colls))) {
+                        if ($currdef ne $possdef) {
+                            $changes->{'menudefault'} = $possdef;
+                        }
+                    } elsif ($currdef) {
+                        $changes->{'menudefault'} = '';
+                    }
+                    my $menucoll;
+                    if (@colls) {
+                        my ($ordered,$cats) = &menuitems_categories();
+                        my %shortcats = &menuitems_abbreviations();
+                        foreach my $num (@colls) {
+                            my ($entry,%include);
+                            map { $include{$_}= 1; } &Apache::loncommon::get_env_multiple('form.menucollections_'.$num);
+                            foreach my $item (@{$ordered}) {
+                                if ($item eq 'shown') {
+                                    foreach my $type (@{$cats->{$item}}) {
+                                        $entry .= $type.'=';
+                                        if ($include{$type}) {
+                                            $entry .= 'y';
+                                        } else {
+                                            $entry .= 'n';
+                                        }
+                                        $entry .= '&';
+                                    }
+                                } else {
+                                    $entry .= $shortcats{$item}.'=';
+                                    foreach my $type (@{$cats->{$item}}) {
+                                        if ($include{$type}) {
+                                            $entry .= $type.',';
+                                        }
+                                    }
+                                    $entry =~ s/,$//;
+                                    $entry .= '&';
+                                }
+                            }
+                            $entry =~ s/\&$//;
+                            if ($menucoll) {
+                                $menucoll .= ';';
+                            }
+                            $menucoll .= $num.'%'.$entry;
+                        }
+                        if ($menucoll ne $values->{'menucollections'}) {
+                            $changes->{'menucollections'} = $menucoll;
+                        }
+                    } elsif ($values->{'menucollections'}) {
+                        $changes->{'menucollections'} = '';
+                    }
+                } elsif ($action eq 'linkprot') {
+                    if (ref($values) eq 'HASH') {
+                        $errors = &process_linkprot($cdom,$cnum,$values->{$action},$changes,'course',$lastactref);
+                    }
+                } elsif ($action eq 'ltitools') {
+                    if (ref($values) eq 'HASH') {
+                        my $switchserver = &check_switchserver($cdom,$cnum,'course','/adm/courseprefs');
+                        $errors = &process_ltitools('',$cdom,$cnum,$values->{$action},$changes,'course',$lastactref,
+                                                    'ok','','ok');
+                    }
                 } else {
                     foreach my $entry (@ordered) {
                         if ($entry eq 'cloners') {
@@ -854,7 +1053,7 @@ sub process_changes {
                                     my $clonedom = $env{'form.cloners_newdom'};
                                     if (&check_clone($clonedom,$disallowed) eq 'ok') {
                                         my $newdom = '*:'.$env{'form.cloners_newdom'};
-                                        if (@clonedoms) { 
+                                        if (@clonedoms) {
                                             if (!grep(/^\Q$newdom\E$/,@clonedoms)) {
                                                 $newvalues{$entry} .= ','.$newdom;
                                             }
@@ -943,7 +1142,9 @@ sub process_changes {
                                         $autocoowner = $domconf{'autoenroll'}{'co-owners'};
                                     }
                                 }
-                                unless ($autocoowner) {
+                                if ($autocoowner) {
+                                    $newvalues{'co-owners'} = $values->{'internal.co-owners'}; 
+                                } else {
                                     my @keepcoowners = &Apache::loncommon::get_env_multiple('form.coowners');
                                     my @pendingcoowners = &Apache::loncommon::get_env_multiple('form.pendingcoowners');
                                     my @invitecoowners =  &Apache::loncommon::get_env_multiple('form.invitecoowners');
@@ -967,19 +1168,19 @@ sub process_changes {
                                 my $udom = $env{'user.domain'};
                                 my $pendingcoowners = $values->{'internal.pendingco-owners'};
                                 my @pendingcoown = split(',',$pendingcoowners);
-                                if ($env{'form.pending_coowoner'}) {
+                                if ($env{'form.pending_coowner'}) {
                                     foreach my $item (@pendingcoown) {
                                         unless ($item eq $uname.':'.$udom) {
                                             push(@newpending,$item);
                                         }
                                     }
                                     @newcoown = @currcoown;
-                                    if ($env{'form.pending_coowoner'} eq 'accept') {
+                                    if ($env{'form.pending_coowner'} eq 'accept') {
                                         unless (grep(/^\Q$uname\E:\Q$udom\E$/,@currcoown)) {
                                             push(@newcoown,$uname.':'.$udom);
                                         }
                                     }
-                                } elsif ($env{'form.remove_coowoner'}) {
+                                } elsif ($env{'form.remove_coowner'}) {
                                     foreach my $item (@currcoown) {
                                         unless ($item eq $uname.':'.$udom) {
                                             push(@newcoown,$item);
@@ -988,6 +1189,8 @@ sub process_changes {
                                     if ($pendingcoowners ne '') {
                                         @newpending = @pendingcoown;
                                     }
+                                } else {
+                                    @newcoown = @currcoown;
                                 }
                                 $newvalues{'pendingco-owners'} = join(',',sort(@newpending));
                                 $newvalues{'co-owners'} = join(',',sort(@newcoown));
@@ -1253,10 +1456,54 @@ sub process_changes {
                                 $settings =~ s/,$//;
                             }
                             $newvalues{$entry} = $settings;
+                        } elsif ($entry eq 'extresource') {
+                            if ($env{'form.'.$entry} =~ /^iframe|tab|window$/) {
+                                $newvalues{$entry} = $env{'form.'.$entry};
+                                if ($env{'form.'.$entry} ne 'iframe') {
+                                    if ($env{'form.extwintabreuse'}) {
+                                        $newvalues{$entry} .= ':1';
+                                    } else {
+                                        $newvalues{$entry} .= ':0';
+                                    }
+                                    if ($env{'form.'.$entry} eq 'window') {
+                                        foreach my $dim ('width','height') {
+                                            $env{'form.extreswin'.$dim} =~ s/^\s+|\s+$//g;
+                                            if ($env{'form.extreswin'.$dim} =~ /^\d+$/) {
+                                                $newvalues{$entry} .= ':'.$env{'form.extreswin'.$dim};
+                                            } else {
+                                                $newvalues{$entry} .= ':';
+                                            }
+                                        }
+                                    }
+                                }
+                            }
+                            unless (($newvalues{$entry} eq 'iframe') && ($values->{$entry} eq '')) {
+                                if ($newvalues{$entry} ne $values->{$entry}) {
+                                    $changes->{$entry} = $newvalues{$entry};
+                                }
+                            }
+                        } elsif ($entry eq 'timezone') {
+                            if ($env{'form.'.$entry}) {
+                                $newvalues{$entry} = $env{'form.'.$entry};
+                                if ($newvalues{$entry} ne $values->{$entry}) {
+                                    $changes->{$entry} = $newvalues{$entry};
+                                }
+                                if ($env{'form.tzover'}) {
+                                    $newvalues{'tzover'} = $env{'form.tzover'};
+                                    if ($newvalues{'tzover'} ne $values->{'tzover'}) {
+                                        $changes->{'tzover'} = $newvalues{'tzover'};
+                                    }
+                                } elsif ($values->{'tzover'}) {
+                                    $changes->{'tzover'} = '';
+                                }
+                            } elsif ($values->{$entry}) {
+                                $changes->{$entry} = '';
+                            }
                         } else {
                             $newvalues{$entry} = $env{'form.'.$entry};
                         }
-                        unless (($entry eq 'co-owners') || ($entry eq 'discussion_post_fonts')) {
+                        unless (($entry eq 'co-owners') || ($entry eq 'discussion_post_fonts') ||
+                                ($entry eq 'extresource') || ($entry eq 'timezone')) {
                             if ($newvalues{$entry} ne $values->{$entry}) {
                                 $changes->{$entry} = $newvalues{$entry};
                             }
@@ -1266,7 +1513,954 @@ sub process_changes {
             }
         }
     }
-    return;
+    return $errors;
+}
+
+sub process_linkprot {
+    my ($cdom,$cnum,$values,$changes,$context,$lastactref) = @_;
+    my ($dest,$ltiauth,$privnum,$cipher,$errors,%linkprot);
+    if (ref($values) eq 'HASH') {
+        foreach my $id (keys(%{$values})) {
+            if ($id =~ /^\d+$/) {
+                unless (ref($values->{$id}) eq 'HASH') {
+                    $linkprot{$id} = '';
+                }
+            }
+        }
+    }
+    ($cipher,$privnum) = &get_credentials($cdom,$cnum,'lti',$context);
+    if ($context eq 'domain') {
+        $dest = '/adm/domainprefs';
+        $ltiauth = 1;
+    } else {
+        $dest = '/adm/courseprefs';
+        if (exists($env{'course.'.$env{'request.course.id'}.'.internal.ltiauth'})) {
+            $ltiauth = $env{'course.'.$env{'request.course.id'}.'.internal.ltiauth'};
+        } else {
+            my %domdefs = &Apache::lonnet::get_domain_defaults($cdom);
+            $ltiauth = $domdefs{'crsltiauth'};
+        }
+    }
+    my $switchserver = &check_switchserver($cdom,$cnum,$context,$dest);
+    my (@items,%deletions,%itemids,%haschanges);
+    if ($env{'form.linkprot_add'}) {
+        my $name = $env{'form.linkprot_name_add'};
+        $name =~ s/(`)/'/g;
+        my ($newid,$error) = &get_linkprot_id($cdom,$cnum,$name,$context);
+        if ($newid) {
+            $itemids{'add'} = $newid;
+            push(@items,'add');
+            $haschanges{$newid} = 1;
+        } else {
+            $errors .= '<span class="LC_error">'.
+                       &mt('Failed to acquire unique ID for link protection').
+                       '</span>';
+        }
+    }
+    if (ref($values) eq 'HASH') {
+        my @todelete = &Apache::loncommon::get_env_multiple('form.linkprot_del');
+        my $maxnum = $env{'form.linkprot_maxnum'};
+        for (my $i=0; $i<$maxnum; $i++) {
+            my $itemid = $env{'form.linkprot_id_'.$i};
+            $itemid =~ s/\D+//g;
+            if ($itemid) {
+                if (ref($values->{$itemid}) eq 'HASH') {
+                    push(@items,$i);
+                    $itemids{$i} = $itemid;
+                    if ((@todelete > 0) && (grep(/^$i$/,@todelete))) {
+                        $deletions{$itemid} = $values->{$itemid}->{'name'};
+                    }
+                }
+            }
+        }
+    }
+    foreach my $idx (@items) {
+        my $itemid = $itemids{$idx};
+        next unless ($itemid);
+        if (exists($deletions{$itemid})) {
+            $linkprot{$itemid} = $deletions{$itemid};
+            $haschanges{$itemid} = 1;
+            next;
+        }
+        my %current;
+        if (ref($values) eq 'HASH') {
+            if (ref($values->{$itemid}) eq 'HASH') {
+                foreach my $key (keys(%{$values->{$itemid}})) {
+                    $current{$key} = $values->{$itemid}->{$key};
+                }
+            }
+        }
+        foreach my $inner ('name','lifetime','version') {
+            my $formitem = 'form.linkprot_'.$inner.'_'.$idx;
+            $env{$formitem} =~ s/(`)/'/g;
+            if ($inner eq 'lifetime') {
+                $env{$formitem} =~ s/[^\d.]//g;
+            }
+            unless ($idx eq 'add') {
+                if ($current{$inner} ne $env{$formitem}) {
+                    $haschanges{$itemid} = 1;
+                }
+            }
+            if ($env{$formitem} ne '') {
+                $linkprot{$itemid}{$inner} = $env{$formitem};
+            }
+        }
+        my $urlitem = 'form.linkprot_returnurl_'.$idx;
+        my $urlparamname = 'form.linkprot_urlparam_'.$idx;
+        if ($env{$urlitem} == 1) {
+            $env{$urlparamname} =~ s/(`)/'/g;
+        } elsif (exists($env{$urlparamname})) {
+            $env{$urlparamname} = '';
+        }
+        my $passback = 'form.linkprot_passback_'.$idx;
+        my $passbackparamname = 'form.linkprot_passbackformat_'.$idx;
+        if ($env{$passback} == 1) {
+            unless ($env{$passbackparamname} =~ /^1\.(0|1)$/) {
+                $env{$passbackparamname} = '';
+            }
+        } elsif (exists($env{$passbackparamname})) {
+            $env{$passbackparamname} = '';
+        }
+        unless ($idx eq 'add') {
+            if ((!$current{'returnurl'} && ($env{$urlparamname} ne '')) ||
+                ($current{'returnurl'} && ($env{$urlparamname} eq ''))) {
+                $haschanges{$itemid} = 1;
+            }
+            if ((!$current{'passback'} && ($env{$passbackparamname} ne '')) ||
+                ($current{'passback'} && ($env{$passbackparamname} eq ''))) {
+                $haschanges{$itemid} = 1;
+            }
+        }
+        if ($env{$urlparamname} ne '') {
+            $linkprot{$itemid}{'returnurl'} = $env{$urlparamname};
+        }
+        if ($env{$passbackparamname} ne '') {
+            $linkprot{$itemid}{'passback'} = 1;
+            $linkprot{$itemid}{'passbackformat'} = $env{$passbackparamname};
+        }
+        if ($ltiauth) {
+            my $reqitem = 'form.linkprot_requser_'.$idx;
+            $env{$reqitem} =~ s/(`)/'/g;
+            unless ($idx eq 'add') {
+                if ((!$current{'requser'} && $env{$reqitem}) ||
+                    ($current{'requser'} && !$env{$reqitem})) {
+                    $haschanges{$itemid} = 1;
+                }
+            }
+            if ($env{$reqitem} == 1) {
+                $linkprot{$itemid}{'requser'} = $env{$reqitem};
+                foreach my $inner ('mapuser','notstudent') {
+                    my $formitem = 'form.linkprot_'.$inner.'_'.$idx;
+                    $env{$formitem} =~ s/(`)/'/g;
+                    if ($inner eq 'mapuser') {
+                        if ($env{$formitem} eq 'other') {
+                            my $mapuser = $env{'form.linkprot_customuser_'.$idx};
+                            $mapuser =~ s/(`)/'/g;
+                            $mapuser =~ s/^\s+|\s+$//g;
+                            if ($mapuser ne '') {
+                                $linkprot{$itemid}{$inner} = $mapuser;
+                            } else {
+                                delete($linkprot{$itemid}{'requser'});
+                                last;
+                            }
+                        } elsif ($env{$formitem} eq 'sourcedid') {
+                            $linkprot{$itemid}{$inner} = 'lis_person_sourcedid';
+                        } elsif ($env{$formitem} eq 'email') {
+                            $linkprot{$itemid}{$inner} = 'lis_person_contact_email_primary';
+                        }
+                    } else {
+                        $linkprot{$itemid}{$inner} = $env{$formitem};
+                    }
+                    unless ($idx eq 'add') {
+                        if ($current{$inner} ne $linkprot{$itemid}{$inner}) {
+                            $haschanges{$itemid} = 1;
+                        }
+                    }
+                }
+            }
+        }
+        unless ($switchserver) {
+            my $keyitem = 'form.linkprot_key_'.$idx;
+            $env{$keyitem} =~ s/(`)/'/g;
+            unless ($idx eq 'add') {
+                if ($current{'key'} ne $env{$keyitem}) {
+                    $haschanges{$itemid} = 1;
+                }
+            }
+            if ($env{$keyitem} ne '') {
+                $linkprot{$itemid}{'key'} = $env{$keyitem};
+            }
+            my $secretitem = 'form.linkprot_secret_'.$idx;
+            $env{$secretitem} =~ s/(`)/'/g;
+            if ($current{'usable'}) {
+                if ($env{'form.linkprot_changesecret_'.$idx}) {
+                    if ($env{$secretitem} ne '') {
+                        if ($privnum && $cipher) {
+                            $linkprot{$itemid}{'secret'} = $cipher->encrypt_hex($env{$secretitem});
+                            $linkprot{$itemid}{'cipher'} = $privnum;
+                        } else {
+                            $linkprot{$itemid}{'secret'} = $env{$secretitem};
+                        }
+                        $haschanges{$itemid} = 1;
+                    }
+                } else {
+                    $linkprot{$itemid}{'secret'} = $current{'secret'};
+                    $linkprot{$itemid}{'cipher'} = $current{'cipher'};
+                }
+            } elsif ($env{$secretitem} ne '') {
+                if ($privnum && $cipher) {
+                    $linkprot{$itemid}{'secret'} = $cipher->encrypt_hex($env{$secretitem});
+                    $linkprot{$itemid}{'cipher'} = $privnum;
+                } else {
+                    $linkprot{$itemid}{'secret'} = $env{$secretitem};
+                }
+                $haschanges{$itemid} = 1;
+            }
+        }
+    }
+    if (keys(%haschanges)) {
+        foreach my $entry (keys(%haschanges)) {
+            $changes->{$entry} = $linkprot{$entry};
+        }
+        if (ref($lastactref) eq 'HASH') {
+            $lastactref->{'courselti'} = 1;
+        }
+    }
+    return $errors;
+}
+
+sub get_linkprot_id {
+    my ($cdom,$cnum,$name,$context) = @_;
+    # get lock on lti db in course or linkprot db in domain
+    my $lockhash = {
+                      lock => $env{'user.name'}.
+                              ':'.$env{'user.domain'},
+                   };
+    my $tries = 0;
+    my $gotlock;
+    if ($context eq 'domain') {
+        $gotlock = &Apache::lonnet::newput_dom('linkprot',$lockhash,$cdom);
+    } else {
+        $gotlock = &Apache::lonnet::newput('lti',$lockhash,$cdom,$cnum);
+    }
+    my ($id,$error);
+    while (($gotlock ne 'ok') && ($tries<10)) {
+        $tries ++;
+        sleep (0.1);
+        if ($context eq 'domain') {
+            $gotlock = &Apache::lonnet::newput_dom('linkprot',$lockhash,$cdom);
+        } else {
+            $gotlock = &Apache::lonnet::newput('lti',$lockhash,$cdom,$cnum);
+        }
+    }
+    if ($gotlock eq 'ok') {
+        my %currids;
+        if ($context eq 'domain') {
+            %currids = &Apache::lonnet::dump_dom('linkprot',$cdom);
+        } else {
+            %currids  = &Apache::lonnet::dump('lti',$cdom,$cnum,undef,undef,undef,1);
+        }
+        if ($currids{'lock'}) {
+            delete($currids{'lock'});
+            if (keys(%currids)) {
+                my @curr = sort { $a <=> $b } keys(%currids);
+                if ($curr[-1] =~ /^\d+$/) {
+                    $id = 1 + $curr[-1];
+                } else {
+                    $id = 1;
+                }
+            } else {
+                $id = 1;
+            }
+            if ($id) {
+                if ($context eq 'domain') {
+                     unless (&Apache::lonnet::newput_dom('linkprot',{ $id => $name },$cdom) eq 'ok') {
+                         $error = 'nostore';
+                     }
+                } else {
+                    unless (&Apache::lonnet::newput('lti',{ $id => $name },$cdom,$cnum) eq 'ok') {
+                        $error = 'nostore';
+                    }
+                }
+            } else {
+                $error = 'nonumber';
+            }
+        }
+        my $dellockoutcome;
+        if ($context eq 'domain') {
+            $dellockoutcome = &Apache::lonnet::del_dom('linkprot',['lock'],$cdom);
+        } else {
+            $dellockoutcome = &Apache::lonnet::del('lti',['lock'],$cdom,$cnum);
+        }
+    } else {
+        $error = 'nolock';
+    }
+    return ($id,$error);
+}
+
+sub get_credentials {
+    my ($cdom,$cnum,$type,$context) = @_;
+    my ($cipher,$privnum,$home);
+    my %domdefs = &Apache::lonnet::get_domain_defaults($cdom);
+    my @ids=&Apache::lonnet::current_machine_ids();
+    if ($context eq 'domain') {
+        $home = &Apache::lonnet::domain($cdom,'primary');
+    } else {
+        $home = &Apache::lonnet::homeserver($cnum,$cdom);
+    }
+    my ($hostskey,$domkey,$crskey);
+    if ($type eq 'ltitools') {
+        $hostskey = 'toolprivhosts';
+        $domkey = 'toolenc_dom';
+        $crskey = 'toolenc_crs';
+    } else {
+        $hostskey = 'ltiprivhosts';
+        $domkey = 'linkprotenc_dom';
+        $crskey = 'linkprotenc_crs';
+    }
+    if ((($context eq 'domain') && ($domdefs{$domkey})) ||
+        (($context eq 'course') && ($domdefs{$crskey}))) {
+        unless (($home eq 'no_host') || ($home eq '')) {
+            if (grep(/^\Q$home\E$/,@ids)) {
+                if (ref($domdefs{$hostskey}) eq 'ARRAY') {
+                    if (grep(/^\Q$home\E$/,@{$domdefs{$hostskey}})) {
+                        my %privhash  = &Apache::lonnet::restore_dom($type,'private',$cdom,$home,1);
+                        my $privkey = $privhash{'key'};
+                        $privnum = $privhash{'version'};
+                        if (($privnum) && ($privkey ne '')) {
+                            $cipher = Crypt::CBC->new({'key'     => $privkey,
+                                                       'cipher'  => 'DES'});
+                        }
+                    }
+                }
+            }
+        }
+    }
+    return ($cipher,$privnum);
+}
+
+sub process_ltitools {
+    my ($r,$cdom,$cnum,$values,$changes,$context,$lastactref,$configuserok,$lonhost,
+        $author_ok,$confname) = @_;
+    my (%currconfig,$newid,@allpos,%changes,%ltitools,$errors);
+
+    my (%posslti,%possfield);
+    my @courseroles = ('cc','in','ta','ep','st');
+    my @ltiroles = qw(Instructor ContentDeveloper TeachingAssistant Learner);
+    map { $posslti{$_} = 1; } @ltiroles;
+    my @allfields = ('fullname','firstname','lastname','email','user','roles');
+    map { $possfield{$_} = 1; } @allfields;
+
+    my ($dest,$privnum,$cipher);
+
+    ($cipher,$privnum) = &get_credentials($cdom,$cnum,'ltitools',$context);
+    if ($context eq 'domain') {
+        $dest = '/adm/domainprefs';
+    } else {
+        $dest = '/adm/courseprefs';
+    }
+    my $switchserver = &check_switchserver($cdom,$cnum,$context,$dest);
+
+    my (@allpos,@items,%deletions,%itemids,%haschanges);
+    if ($env{'form.ltitools_add'}) {
+        my $title = $env{'form.ltitools_add_title'};
+        $title =~ s/(`)/'/g;
+        my ($newid,$error) = &get_ltitools_id($context,$cdom,$cnum,$title);
+        if ($newid) {
+            my $position = $env{'form.ltitools_add_pos'};
+            $position =~ s/\D+//g;
+            if ($position ne '') {
+                $allpos[$position] = $newid;
+            }
+            $haschanges{$newid} = 1;
+            foreach my $item ('title','url','lifetime') {
+                $env{'form.ltitools_add_'.$item} =~ s/(`)/'/g;
+                if ($item eq 'lifetime') {
+                    $env{'form.ltitools_add_'.$item} =~ s/[^\d.]//g;
+                }
+                if ($env{'form.ltitools_add_'.$item}) {
+                    $ltitools{$newid}{$item} = $env{'form.ltitools_add_'.$item};
+                }
+            }
+            if ($env{'form.ltitools_add_version'} eq 'LTI-1p0') {
+                $ltitools{$newid}{'version'} = $env{'form.ltitools_add_version'};
+            }
+            if ($env{'form.ltitools_add_msgtype'} eq 'basic-lti-launch-request') {
+                $ltitools{$newid}{'msgtype'} = $env{'form.ltitools_add_msgtype'};
+            }
+            if ($env{'form.ltitools_add_sigmethod'} eq 'HMAC-SHA256') {
+                $ltitools{$newid}{'sigmethod'} = $env{'form.ltitools_add_sigmethod'};
+            } else {
+                $ltitools{$newid}{'sigmethod'} = 'HMAC-SHA1';
+            }
+            foreach my $item ('width','height','linktext','explanation') {
+                $env{'form.ltitools_add_'.$item} =~ s/^\s+//;
+                $env{'form.ltitools_add_'.$item} =~ s/\s+$//;
+                if (($item eq 'width') || ($item eq 'height')) {
+                    if ($env{'form.ltitools_add_'.$item} =~ /^\d+$/) {
+                        $ltitools{$newid}{'display'}{$item} = $env{'form.ltitools_add_'.$item};
+                    }
+                } else {
+                    if ($env{'form.ltitools_add_'.$item} ne '') {
+                        $ltitools{$newid}{'display'}{$item} = $env{'form.ltitools_add_'.$item};
+                    }
+                }
+            }
+            if ($env{'form.ltitools_add_target'} eq 'window') {
+                $ltitools{$newid}{'display'}{'target'} = $env{'form.ltitools_add_target'};
+            } elsif ($env{'form.ltitools_add_target'} eq 'tab') {
+                $ltitools{$newid}{'display'}{'target'} = $env{'form.ltitools_add_target'};
+            } else {
+                $ltitools{$newid}{'display'}{'target'} = 'iframe';
+            }
+            foreach my $item ('passback','roster') {
+                if ($env{'form.ltitools_'.$item.'_add'}) {
+                    $ltitools{$newid}{$item} = 1;
+                    if ($env{'form.ltitools_'.$item.'valid_add'} ne '') {
+                        my $lifetime = $env{'form.ltitools_'.$item.'valid_add'};
+                        $lifetime =~ s/^\s+|\s+$//g;
+                        if ($lifetime =~ /^\d+\.?\d*$/) {
+                            $ltitools{$newid}{$item.'valid'} = $lifetime;
+                        }
+                    }
+                }
+            }
+            if ($env{'form.ltitools_add_image.filename'} ne '') {
+                my ($imageurl,$error) =
+                    &process_ltitools_image($r,$context,$cdom,$cnum,$confname,'ltitools_add_image',
+                                            $newid,$configuserok,$lonhost,$author_ok);
+                if ($imageurl) {
+                    $ltitools{$newid}{'image'} = $imageurl;
+                }
+                if ($error) {
+                    &Apache::lonnet::logthis($error);
+                    $errors .= '<li><span class="LC_error">'.$error.'</span></li>';
+                }
+            }
+            my @fields = &Apache::loncommon::get_env_multiple('form.ltitools_add_fields');
+            foreach my $field (@fields) {
+                if ($possfield{$field}) {
+                    if ($field eq 'roles') {
+                        foreach my $role (@courseroles) {
+                            my $choice = $env{'form.ltitools_add_roles_'.$role};
+                            if (($choice ne '') && ($posslti{$choice})) {
+                                $ltitools{$newid}{'roles'}{$role} = $choice;
+                                if ($role eq 'cc') {
+                                    $ltitools{$newid}{'roles'}{'co'} = $choice;
+                                }
+                            }
+                        }
+                    } else {
+                        $ltitools{$newid}{'fields'}{$field} = 1;
+                    }
+                }
+            }
+            if (ref($ltitools{$newid}{'fields'}) eq 'HASH') {
+                if ($ltitools{$newid}{'fields'}{'user'}) {
+                    if ($env{'form.ltitools_add_userincdom'}) {
+                        $ltitools{$newid}{'incdom'} = 1;
+                    }
+                }
+            }
+            my @courseconfig = &Apache::loncommon::get_env_multiple('form.ltitools_add_courseconfig');
+            foreach my $item (@courseconfig) {
+                $ltitools{$newid}{'crsconf'}{$item} = 1;
+            }
+            if ($env{'form.ltitools_add_custom'}) {
+                my $name = $env{'form.ltitools_add_custom_name'};
+                my $value = $env{'form.ltitools_add_custom_value'};
+                $value =~ s/(`)/'/g;
+                $name =~ s/(`)/'/g;
+                $ltitools{$newid}{'custom'}{$name} = $value;
+            }
+            unless ($switchserver) {
+                my $keyitem = 'form.ltitools_add_key';
+                $env{$keyitem} =~ s/(`)/'/g;
+                if ($env{$keyitem} ne '') {
+                    $ltitools{$newid}{'key'} = $env{$keyitem};
+                }
+                my $secretitem = 'form.ltitools_secret_add';
+                $env{$secretitem} =~ s/(`)/'/g;
+                if ($env{$secretitem} ne '') {
+                    if ($privnum && $cipher) {
+                        $ltitools{$newid}{'secret'} = $cipher->encrypt_hex($env{$secretitem});
+                        $ltitools{$newid}{'cipher'} = $privnum;
+                    } else {
+                        $ltitools{$newid}{'secret'} = $env{$secretitem};
+                    }
+                }
+            }
+        } else {
+            $errors .= '<li><span class="LC_error">'.
+                       &mt('Failed to acquire unique ID for new external tool').
+                       '</span></li>';
+        }
+    }
+    if (ref($values) eq 'HASH') {
+        my %deletions;
+        my @todelete = &Apache::loncommon::get_env_multiple('form.ltitools_del');
+        if (@todelete) {
+            map { $deletions{$_} = 1; } @todelete;
+        }
+        my %customadds;
+        my @newcustom = &Apache::loncommon::get_env_multiple('form.ltitools_customadd');
+        if (@newcustom) {
+            map { $customadds{$_} = 1; } @newcustom;
+        }
+        my %imgdeletions;
+        my @todeleteimages = &Apache::loncommon::get_env_multiple('form.ltitools_image_del');
+        if (@todeleteimages) {
+            map { $imgdeletions{$_} = 1; } @todeleteimages;
+        }
+        my $maxnum = $env{'form.ltitools_maxnum'};
+        for (my $i=0; $i<=$maxnum; $i++) {
+            my $itemid = $env{'form.ltitools_id_'.$i};
+            $itemid =~ s/\D+//g;
+            if (ref($values->{$itemid}) eq 'HASH') {
+                if ($deletions{$itemid}) {
+                    if ($values->{$itemid}{'image'}) {
+                        #FIXME need to obsolete item in RES space
+                    }
+                    $haschanges{$itemid} = $values->{$itemid}{'title'};
+                    next;
+                } else {
+                    my $newpos = $env{'form.ltitools_'.$itemid};
+                    $newpos =~ s/\D+//g;
+                    foreach my $item ('title','url','lifetime') {
+                        $ltitools{$itemid}{$item} = $env{'form.ltitools_'.$item.'_'.$i};
+                        if ($values->{$itemid}{$item} ne $ltitools{$itemid}{$item}) {
+                            $haschanges{$itemid} = 1;
+                        }
+                    }
+                    if ($env{'form.ltitools_version_'.$i} eq 'LTI-1p0') {
+                        $ltitools{$itemid}{'version'} = $env{'form.ltitools_version_'.$i};
+                    }
+                    if ($env{'form.ltitools_msgtype_'.$i} eq 'basic-lti-launch-request') {
+                        $ltitools{$itemid}{'msgtype'} = $env{'form.ltitools_msgtype_'.$i};
+                    }
+                    if ($env{'form.ltitools_sigmethod_'.$i} eq 'HMAC-SHA256') {
+                        $ltitools{$itemid}{'sigmethod'} = $env{'form.ltitools_sigmethod_'.$i};
+                    } else {
+                        $ltitools{$itemid}{'sigmethod'} = 'HMAC-SHA1';
+                    }
+                    if ($values->{$itemid}{'sigmethod'} eq '') {
+                        if ($ltitools{$itemid}{'sigmethod'} ne 'HMAC-SHA1') {
+                            $haschanges{$itemid} = 1;
+                        }
+                    } elsif ($values->{$itemid}{'sigmethod'} ne $ltitools{$itemid}{'sigmethod'}) {
+                        $haschanges{$itemid} = 1;
+                    }
+                    foreach my $size ('width','height') {
+                        $env{'form.ltitools_'.$size.'_'.$i} =~ s/^\s+//;
+                        $env{'form.ltitools_'.$size.'_'.$i} =~ s/\s+$//;
+                        if ($env{'form.ltitools_'.$size.'_'.$i} =~ /^\d+$/) {
+                            $ltitools{$itemid}{'display'}{$size} = $env{'form.ltitools_'.$size.'_'.$i};
+                            if (ref($values->{$itemid}{'display'}) eq 'HASH') {
+                                if ($values->{$itemid}{'display'}{$size} ne $ltitools{$itemid}{'display'}{$size}) {
+                                    $haschanges{$itemid} = 1;
+                                }
+                            } else {
+                                $haschanges{$itemid} = 1;
+                            }
+                        } elsif (ref($values->{$itemid}{'display'}) eq 'HASH') {
+                            if ($values->{$itemid}{'display'}{$size} ne '') {
+                                $haschanges{$itemid} = 1;
+                            }
+                        }
+                    }
+                    foreach my $item ('linktext','explanation') {
+                        $env{'form.ltitools_'.$item.'_'.$i} =~ s/^\s+//;
+                        $env{'form.ltitools_'.$item.'_'.$i} =~ s/\s+$//;
+                        if ($env{'form.ltitools_'.$item.'_'.$i} ne '') {
+                            $ltitools{$itemid}{'display'}{$item} = $env{'form.ltitools_'.$item.'_'.$i};
+                            if (ref($values->{$itemid}{'display'}) eq 'HASH') {
+                                if ($values->{$itemid}{'display'}{$item} ne $ltitools{$itemid}{'display'}{$item}) {
+                                    $haschanges{$itemid} = 1;
+                                }
+                            } else {
+                                $haschanges{$itemid} = 1;
+                            }
+                        } elsif (ref($values->{$itemid}{'display'}) eq 'HASH') {
+                            if ($values->{$itemid}{'display'}{$item} ne '') {
+                                $haschanges{$itemid} = 1;
+                            }
+                        }
+                    }
+                    if ($env{'form.ltitools_target_'.$i} eq 'window') {
+                        $ltitools{$itemid}{'display'}{'target'} = $env{'form.ltitools_target_'.$i};
+                    } elsif ($env{'form.ltitools_target_'.$i} eq 'tab') {
+                        $ltitools{$itemid}{'display'}{'target'} = $env{'form.ltitools_target_'.$i};
+                    } else {
+                        $ltitools{$itemid}{'display'}{'target'} = 'iframe';
+                    }
+                    if (ref($values->{$itemid}{'display'}) eq 'HASH') {
+                        if ($values->{$itemid}{'display'}{'target'} ne $ltitools{$itemid}{'display'}{'target'}) {
+                            $haschanges{$itemid} = 1;
+                        }
+                    } else {
+                        $haschanges{$itemid} = 1;
+                    }
+                    foreach my $extra ('passback','roster') {
+                        if ($env{'form.ltitools_'.$extra.'_'.$i}) {
+                            $ltitools{$itemid}{$extra} = 1;
+                            if ($env{'form.ltitools_'.$extra.'valid_'.$i} ne '') {
+                                my $lifetime = $env{'form.ltitools_'.$extra.'valid_'.$i};
+                                $lifetime =~ s/^\s+|\s+$//g;
+                                if ($lifetime =~ /^\d+\.?\d*$/) {
+                                    $ltitools{$itemid}{$extra.'valid'} = $lifetime;
+                                }
+                            }
+                        }
+                        if ($values->{$itemid}{$extra} ne $ltitools{$itemid}{$extra}) {
+                            $haschanges{$itemid} = 1;
+                        }
+                        if ($values->{$itemid}{$extra.'valid'} ne $ltitools{$itemid}{$extra.'valid'}) {
+                            $haschanges{$itemid} = 1;
+                        }
+                    }
+                    my @courseconfig = &Apache::loncommon::get_env_multiple('form.ltitools_courseconfig_'.$i);
+                    foreach my $item ('label','title','target','linktext','explanation','append') {
+                        if (grep(/^\Q$item\E$/,@courseconfig)) {
+                            $ltitools{$itemid}{'crsconf'}{$item} = 1;
+                            if (ref($values->{$itemid}{'crsconf'}) eq 'HASH') {
+                                if ($values->{$itemid}{'crsconf'}{$item} ne $ltitools{$itemid}{'crsconf'}{$item}) {
+                                    $haschanges{$itemid} = 1;
+                                }
+                            } else {
+                                $haschanges{$itemid} = 1;
+                            }
+                        }
+                    }
+                    my @fields = &Apache::loncommon::get_env_multiple('form.ltitools_fields_'.$i);
+                    foreach my $field (@fields) {
+                        if ($possfield{$field}) {
+                            if ($field eq 'roles') {
+                                foreach my $role (@courseroles) {
+                                    my $choice = $env{'form.ltitools_roles_'.$role.'_'.$i};
+                                    if (($choice ne '') && ($posslti{$choice})) {
+                                        $ltitools{$itemid}{'roles'}{$role} = $choice;
+                                        if ($role eq 'cc') {
+                                            $ltitools{$itemid}{'roles'}{'co'} = $choice;
+                                        }
+                                    }
+                                    if (ref($values->{$itemid}{'roles'}) eq 'HASH') {
+                                        if ($values->{$itemid}{'roles'}{$role} ne $ltitools{$itemid}{'roles'}{$role}) {
+                                            $haschanges{$itemid} = 1;
+                                        }
+                                    } elsif ($ltitools{$itemid}{'roles'}{$role}) {
+                                        $haschanges{$itemid} = 1;
+                                    }
+                                }
+                            } else {
+                                $ltitools{$itemid}{'fields'}{$field} = 1;
+                                if (ref($values->{$itemid}{'fields'}) eq 'HASH') {
+                                    if ($values->{$itemid}{'fields'}{$field} ne $ltitools{$itemid}{'fields'}{$field}) {
+                                        $haschanges{$itemid} = 1;
+                                    }
+                                } else {
+                                    $haschanges{$itemid} = 1;
+                                }
+                            }
+                        }
+                    }
+                    if (ref($ltitools{$itemid}{'fields'}) eq 'HASH') {
+                        if ($ltitools{$itemid}{'fields'}{'user'}) {
+                            if ($env{'form.ltitools_userincdom_'.$i}) {
+                                $ltitools{$itemid}{'incdom'} = 1;
+                            }
+                            if ($values->{$itemid}{'incdom'} ne $ltitools{$itemid}{'incdom'}) {
+                                $haschanges{$itemid} = 1;
+                            }
+                        }
+                    }
+                    $allpos[$newpos] = $itemid;
+                }
+                if ($imgdeletions{$itemid}) {
+                    $haschanges{$itemid} = 1;
+                    if ($context eq 'course') {
+                        my $currimgurl = $values->{$itemid}{'image'};
+                        if ($currimgurl =~ m{^(\Q/uploaded/$cdom/$cnum/toollogo/$itemid\E)/([^/]+)$}) {
+                            my ($path,$imagefile) = ($1,$2);
+                            if ($imagefile =~ /^tn\-(.+)$/) {
+                                my $origimg = $1;
+                                &Apache::lonnet::removeuploadedurl("$path/$origimg");
+                            }
+                            &Apache::lonnet::removeuploadedurl($currimgurl);
+                        }
+                    }
+                    #FIXME need to obsolete item in RES space
+                } elsif ($env{'form.ltitools_image_'.$i.'.filename'}) {
+                    my $currimgurl = $values->{$itemid}{'image'};
+                    my ($imgurl,$error) = &process_ltitools_image($r,$context,$cdom,$cnum,$confname,'ltitools_image_'.$i,
+                                                                 $itemid,$configuserok,$lonhost,$author_ok,$currimgurl);
+                    if ($imgurl) {
+                        $ltitools{$itemid}{'image'} = $imgurl;
+                        $haschanges{$itemid} = 1;
+                    }
+                    if ($error) {
+                        &Apache::lonnet::logthis($error);
+                        $errors .= '<li><span class="LC_error">'.$error.'</span></li>';
+                    }
+                } elsif ($values->{$itemid}{'image'}) {
+                    $ltitools{$itemid}{'image'} = $values->{$itemid}{'image'};
+                }
+                if ($customadds{$i}) {
+                    my $name = $env{'form.ltitools_custom_name_'.$i};
+                    $name =~ s/(`)/'/g;
+                    $name =~ s/^\s+//;
+                    $name =~ s/\s+$//;
+                    my $value = $env{'form.ltitools_custom_value_'.$i};
+                    $value =~ s/(`)/'/g;
+                    $value =~ s/^\s+//;
+                    $value =~ s/\s+$//;
+                    if ($name ne '') {
+                        $ltitools{$itemid}{'custom'}{$name} = $value;
+                        $haschanges{$itemid} = 1;
+                    }
+                }
+                my %customdels;
+                my @customdeletions = &Apache::loncommon::get_env_multiple('form.ltitools_customdel_'.$i);
+                if (@customdeletions) {
+                    $haschanges{$itemid} = 1;
+                }
+                map { $customdels{$_} = 1; } @customdeletions;
+                if (ref($values->{$itemid}{'custom'}) eq 'HASH') {
+                    foreach my $key (keys(%{$values->{$itemid}{'custom'}})) {
+                        unless ($customdels{$key}) {
+                            if ($env{'form.ltitools_customval_'.$key.'_'.$i} ne '') {
+                                $ltitools{$itemid}{'custom'}{$key} = $env{'form.ltitools_customval_'.$key.'_'.$i};
+                            }
+                            if ($values->{$itemid}{'custom'}{$key} ne $env{'form.ltitools_customval_'.$key.'_'.$i}) {
+                                $haschanges{$itemid} = 1;
+                            }
+                        }
+                    }
+                }
+                unless ($switchserver) {
+                    my $keyitem = 'form.ltitools_key_'.$i;
+                    $env{$keyitem} =~ s/(`)/'/g;
+                    if ($values->{$itemid}{'key'} ne $env{$keyitem}) {
+                        $haschanges{$itemid} = 1;
+                    }
+                    if ($env{$keyitem} ne '') {
+                        $ltitools{$itemid}{'key'} = $env{$keyitem};
+                    }
+                    my $secretitem = 'form.ltitools_secret_'.$i;
+                    $env{$secretitem} =~ s/(`)/'/g;
+                    if ($values->{$itemid}{'usable'}) {
+                        if ($env{'form.ltitools_changesecret_'.$i}) {
+                            if ($env{$secretitem} ne '') {
+                                if ($privnum && $cipher) {
+                                    $ltitools{$itemid}{'secret'} = $cipher->encrypt_hex($env{$secretitem});
+                                    $ltitools{$itemid}{'cipher'} = $privnum;
+                                } else {
+                                    $ltitools{$itemid}{'secret'} = $env{$secretitem};
+                                }
+                                $haschanges{$itemid} = 1;
+                            }
+                        } else {
+                            $ltitools{$itemid}{'secret'} = $values->{$itemid}{'secret'};
+                            $ltitools{$itemid}{'cipher'} = $values->{$itemid}{'cipher'};
+                        }
+                    } elsif ($env{$secretitem} ne '') {
+                        if ($privnum && $cipher) {
+                            $ltitools{$itemid}{'secret'} = $cipher->encrypt_hex($env{$secretitem});
+                            $ltitools{$itemid}{'cipher'} = $privnum;
+                        } else {
+                            $ltitools{$itemid}{'secret'} = $env{$secretitem};
+                        }
+                        $haschanges{$itemid} = 1;
+                    }
+                }
+                unless ($haschanges{$itemid}) {
+                    foreach my $key (keys(%{$values->{$itemid}})) {
+                        if (ref($values->{$itemid}{$key}) eq 'HASH') {
+                            if (ref($ltitools{$itemid}{$key}) eq 'HASH') {
+                                foreach my $innerkey (keys(%{$values->{$itemid}{$key}})) {
+                                    unless (exists($ltitools{$itemid}{$key}{$innerkey})) {
+                                        $haschanges{$itemid} = 1;
+                                        last;
+                                    }
+                                }
+                            } elsif (keys(%{$values->{$itemid}{$key}}) > 0) {
+                                $haschanges{$itemid} = 1;
+                            }
+                        }
+                        last if ($haschanges{$itemid});
+                    }
+                }
+            }
+        }
+    }
+    if (@allpos > 0) {
+        my $idx = 0;
+        foreach my $itemid (@allpos) {
+            if ($itemid ne '') {
+                $ltitools{$itemid}{'order'} = $idx;
+                if (ref($values) eq 'HASH') {
+                    if (ref($values->{$itemid}) eq 'HASH') {
+                        if ($values->{$itemid}{'order'} ne $idx) {
+                            $haschanges{$itemid} = 1;
+                        }
+                    }
+                }
+                $idx ++;
+            }
+        }
+    }
+    if (keys(%haschanges)) {
+        foreach my $entry (keys(%haschanges)) {
+            $changes->{$entry} = $ltitools{$entry};
+        }
+        if (ref($lastactref) eq 'HASH') {
+            $lastactref->{'courseltitools'} = 1;
+        }
+    }
+    return $errors;
+}
+
+sub get_ltitools_id {
+    my ($context,$cdom,$cnum,$title) = @_;
+    my ($lockhash,$tries,$gotlock,$id,$error);
+
+    # get lock on ltitools db
+    $lockhash = {
+                   lock => $env{'user.name'}.
+                           ':'.$env{'user.domain'},
+                };
+    $tries = 0;
+    if ($context eq 'domain') {
+        $gotlock = &Apache::lonnet::newput_dom('ltitools',$lockhash,$cdom);
+    } else {
+        $gotlock = &Apache::lonnet::newput('ltitools',$lockhash,$cdom,$cnum);
+    }
+    while (($gotlock ne 'ok') && ($tries<10)) {
+        $tries ++;
+        sleep (0.1);
+        if ($context eq 'domain') {
+            $gotlock = &Apache::lonnet::newput_dom('ltitools',$lockhash,$cdom);
+        } else {
+            $gotlock = &Apache::lonnet::newput('ltitools',$lockhash,$cdom,$cnum);
+        }
+    }
+    if ($gotlock eq 'ok') {
+        my %currids;
+        if ($context eq 'domain') {
+            %currids = &Apache::lonnet::dump_dom('ltitools',$cdom);
+        } else {
+            %currids = &Apache::lonnet::dump('ltitools',$cdom,$cnum);
+        }
+        if ($currids{'lock'}) {
+            delete($currids{'lock'});
+            if (keys(%currids)) {
+                my @curr = sort { $a <=> $b } keys(%currids);
+                if ($curr[-1] =~ /^\d+$/) {
+                    $id = 1 + $curr[-1];
+                }
+            } else {
+                $id = 1;
+            }
+            if ($id) {
+                if ($context eq 'domain') {
+                    unless (&Apache::lonnet::newput_dom('ltitools',{ $id => $title },$cdom) eq 'ok') {
+                        $error = 'nostore';
+                    }
+                } else {
+                    unless (&Apache::lonnet::newput('ltitools',{ $id => $title },$cdom,$cnum) eq 'ok') {
+                        $error = 'nostore';
+                    }
+                }
+            } else {
+                $error = 'nonumber';
+            }
+        }
+        my $dellockoutcome;
+        if ($context eq 'domain') {
+            $dellockoutcome = &Apache::lonnet::del_dom('ltitools',['lock'],$cdom);
+        } else {
+            $dellockoutcome = &Apache::lonnet::del('ltitools',['lock'],$cdom,$cnum);
+        }
+    } else {
+        $error = 'nolock';
+    }
+    return ($id,$error);
+}
+
+sub process_ltitools_image {
+    my ($r,$context,$dom,$cnum,$confname,$caller,$itemid,$configuserok,$switch,$author_ok,$currimg) = @_;
+    my $filename = $env{'form.'.$caller.'.filename'};
+    my ($error,$url);
+    my ($width,$height) = (21,21);
+    if ($configuserok eq 'ok') {
+        if ($switch) {
+            $error = &mt('Upload of Tool Provider (LTI) icon is not permitted to this server: [_1]',
+                         $switch);
+        } elsif ($author_ok eq 'ok') {
+            my ($result,$imageurl,$madethumb);
+            if ($context eq 'domain') {
+                ($result,$imageurl,$madethumb) =
+                    &Apache::lonconfigsettings::publishlogo($r,'upload',$caller,$dom,$confname,
+                                                            "ltitools/$itemid/icon",$width,$height);
+            } else {
+                ($result,$imageurl,$madethumb) = &processlogo($dom,$cnum,$caller,$currimg,$itemid,$width,$height);
+            }
+            if ($result eq 'ok') {
+                if ($madethumb) {
+                    my ($path,$imagefile) = ($imageurl =~ m{^(.+)/([^/]+)$});
+                    my $imagethumb = "$path/tn-".$imagefile;
+                    $url = $imagethumb;
+                } else {
+                    $url = $imageurl;
+                }
+            } else {
+                if ($context eq 'domain') {
+                    $error = &mt("Upload of [_1] failed because an error occurred publishing the file in RES space. Error was: [_2].",$filename,$result);
+                } else {
+                    $error = &mt("Upload of [_1] failed because an error occurred. Error was: [_2].",$filename,$result);
+                }
+            }
+        } else {
+            $error = &mt("Upload of [_1] failed because an author role could not be assigned to a Domain Configuration user ([_2]) in domain: [_3].  Error was: [_4].",$filename,$confname,$dom,$author_ok);
+        }
+    } else {
+        $error = &mt("Upload of [_1] failed because a Domain Configuration user ([_2]) could not be created in domain: [_3].  Error was: [_4].",$filename,$confname,$dom,$configuserok);
+    }
+    return ($url,$error);
+}
+
+sub processlogo {
+    my ($dom,$cnum,$caller,$currimg,$itemid,$width,$height) = @_;
+    my ($result,$imageurl,$madethumb);
+    if ($env{"form.$caller.filename"} ne '') {
+        unless ($caller eq 'ltitools_add_image') {
+            if ($currimg =~ m{^(\Q/uploaded/$dom/$cnum/toollogo/$itemid\E)/([^/]+)$}) {
+                my ($path,$imagefile) = ($1,$2);
+                if ($imagefile =~ /^tn\-(.+)$/) {
+                     my $origimg = $1;
+                     &Apache::lonnet::removeuploadedurl("$path/$origimg");
+                }
+                &Apache::lonnet::removeuploadedurl($currimg);
+            }
+        }
+        $imageurl = &Apache::lonnet::userfileupload($caller,'toollogo',"toollogo/$itemid",
+                                                    '','','',$cnum,$dom,$width,$height);
+        if ($imageurl =~ m{^(\Q/uploaded/$dom/$cnum/toollogo/$itemid\E)/([^/]+)$}) {
+            my ($path,$imagefile) = ($1,$2);
+            $result = 'ok';
+            my $thumburl = "$path/tn-".$imagefile;
+            my ($rtncode,$info);
+            my $res = &Apache::lonnet::getuploaded('HEAD',$thumburl,$dom,$cnum,\$info,\$rtncode);
+            if ($res eq 'ok') {
+                $madethumb = 1;
+            }
+        } elsif ($imageurl eq '/adm/notfound.html') {
+            undef($imageurl);
+            $result = 'store failed';
+        } elsif ($imageurl =~ /^error: (.+)$/) {
+            $result = $1;
+        }
+    }
+    return ($result,$imageurl,$madethumb);
 }
 
 sub get_sec_str {
@@ -1311,8 +2505,15 @@ sub check_clone {
 sub store_changes {
     my ($cdom,$cnum,$prefs_order,$actions,$prefs,$values,$changes,$crstype) = @_;
     my ($chome,$output);
-    my (%storehash,@delkeys,@need_env_update,@oldcloner);
+    my (%storehash,@delkeys,@need_env_update,@oldcloner,%oldlinkprot,%oldltitools);
     if ((ref($values) eq 'HASH') && (ref($changes) eq 'HASH')) {
+        if (ref($values->{'linkprot'}) eq 'HASH') {
+            %oldlinkprot = %{$values->{'linkprot'}};
+        }
+        delete($values->{'linkprot'});
+        if (ref($values->{'ltitools'}) eq 'HASH') {
+            %oldltitools = %{$values->{'ltitools'}};
+        }
         %storehash = %{$values};
     } else {
         if ($crstype eq 'Community') {
@@ -1322,6 +2523,22 @@ sub store_changes {
         }
         return $output;
     }
+    my ($numchanges,$skipstore);
+    if (ref($changes) eq 'HASH') {
+        $numchanges = scalar(keys(%{$changes}));
+        if (($numchanges == 1) && (exists($changes->{'linkprot'}))) {
+            $skipstore = 1;
+        } elsif (($numchanges == 1) && (exists($changes->{'ltitools'}))) {
+            $skipstore = 1;
+        } elsif (!$numchanges) {
+            if ($crstype eq 'Community') {
+                $output = &mt('No changes made to community settings.');
+            } else {
+                $output = &mt('No changes made to course settings.');
+            }
+            return $output;
+        }
+    }
     my %yesno = (
                  hidefromcat           => '1',
                  problem_stream_switch => '1',
@@ -1347,6 +2564,10 @@ sub store_changes {
                                            "'$storehash{$key}'")).'</li>';
                             }
                         }
+                    } elsif ($item eq 'linkprot') {
+                        $output .= &store_linkprot($cdom,$cnum,'course',$changes->{$item},\%oldlinkprot);
+                    } elsif ($item eq 'ltitools') {
+                        $output .= &store_ltitools($cdom,$cnum,'course',$changes->{$item},\%oldltitools);
                     } else {
                         if (ref($prefs->{$item}->{'ordered'}) eq 'ARRAY') {
                             my @settings = @{$prefs->{$item}->{'ordered'}};
@@ -1378,12 +2599,52 @@ sub store_changes {
                                     if ($msg ne '') {
                                         $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success(&mt($displayname)).'<ul class="LC_success">'.$msg.'</ul></li>';
                                     }
+                                } elsif ($key eq 'timezone') {
+                                    next unless ((exists($changes->{$item}{$key})) || (exists($changes->{$item}{'tzover'})));
+                                    my ($displayname,$text);
+                                    $text = $prefs->{$item}->{'itemtext'}{$key};
+                                    my $displayval;
+                                    if (exists($changes->{$item}{$key})) {
+                                        $displayname = &mt($text);
+                                        $storehash{$key} = $changes->{$item}{$key};
+                                        if ($changes->{$item}{$key} ne '') {
+                                            $displayval = '<b>'.$changes->{$item}{$key}.'</b>';
+                                        } else {
+                                            push(@delkeys,$key);
+                                            if (exists($values->{'tzover'})) {
+                                                push(@delkeys,'tzover');
+                                            }
+                                            $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success(&mt('Deleted setting for [_1]',
+                                                                                                      '<i>'.$displayname.'</i>')).'</li>';
+                                        }
+                                    }
+                                    unless (grep(/^\Q$key\E$/,@delkeys)) {
+                                        if (exists($changes->{$item}{'tzover'})) {
+                                            $storehash{'tzover'} = $changes->{$item}{'tzover'};
+                                            my $tzovertext;
+                                            if ($changes->{$item}{'tzover'} ne '') {
+                                                $tzovertext = &mt('Course Time Zone overrides individual user preference');
+                                            } else {
+                                                push(@delkeys,'tzover');
+                                                $tzovertext = &mt('Course Time Zone does not override individual user preference');
+                                            }
+                                            if ($displayval eq '') {
+                                                $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success($tzovertext).'</li>';
+                                            } else {
+                                                $displayval .= '<br />'.('&nbsp;'x5).$tzovertext;
+                                            }
+                                        }
+                                        if ($displayval ne '') {
+                                            $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success(&mt('[_1] set to [_2]',
+                                                              '<i>'.$displayname.'</i>',$displayval)).'</li>';
+                                        }
+                                    }
                                 } else {
                                     next if (!exists($changes->{$item}{$key}));
                                     my ($displayname,$text);
                                     $text = $prefs->{$item}->{'itemtext'}{$key};
                                     my $displayval;
-                                    unless (($key eq 'co-owners') || ($key eq 'discussion_post_fonts')) {
+                                    unless (($key eq 'co-owners') || ($key eq 'discussion_post_fonts') || ($key eq 'extresource')) {
                                         $displayval = $changes->{$item}{$key};
                                     }
                                     if ($item eq 'feedback') {
@@ -1463,6 +2724,16 @@ sub store_changes {
                                             }
                                         }
                                         $displayname = &mt($text);
+                                    } elsif ($item eq 'menuitems') {
+                                        unless ($changes->{$item}{$key} eq '') {
+                                            if ($key eq 'menudefault') {
+                                                $displayname = &mt('Default collection of menu items');
+                                                $displayval = &mt('Collection: [_1]',
+                                                                  $changes->{$item}{$key});
+                                            } elsif ($key eq 'menucollections') {
+                                                $displayval = &menucollections_display($changes->{$item}{$key});
+                                            }
+                                        }
                                     } else {
                                         $displayname = &mt($text);
                                     }
@@ -1475,12 +2746,44 @@ sub store_changes {
                                         $displayval = &Apache::lonlocal::locallocaltime($displayval);
                                     } elsif ($key eq 'categories') {
                                         $displayval = $env{'form.categories_display'};
-                                    } elsif (($key eq 'canuse_pdfforms') || ($key eq 'usejsme') || ($key eq 'uselcmath')) {
+                                    } elsif (($key eq 'canuse_pdfforms') || ($key eq 'usejsme') ||
+                                             ($key eq 'uselcmath') || ($key eq 'inline_chem')) {
                                         if ($changes->{$item}{$key} eq '1') {
                                             $displayval = &mt('Yes');
                                         } elsif ($changes->{$item}{$key} eq '0') {
                                             $displayval = &mt('No');
                                         }
+                                    } elsif ($key eq 'extresource') {
+                                        if ($changes->{$item}{$key} eq 'iframe') {
+                                            $displayval = &mt('In iframe');
+                                        } else {
+                                            my ($selected,$reuse,$width,$height) = split(/:/,$changes->{$item}{$key});
+                                            if ($selected eq 'tab') {
+                                                if ($reuse) {
+                                                    $displayval = &mt('[_1]In tab[_2],[_3] and tab re-used for different external resources in course',
+                                                                      "'<b>","</b>'",'<br />');
+                                                } else {
+                                                    $displayval = &mt('[_1]In tab[_2],[_3] with new tab for each external resource in course',
+                                                                      "'<b>","</b>'",'<br />');
+                                                }
+                                            } elsif ($selected eq 'window') {
+                                                 if ($reuse) {
+                                                     $displayval = &mt('[_1]In pop-up window[_2],[_3] and window re-used for different external resources in course',
+                                                                       "'<b>","</b>'",'<br />');
+                                                 } else {
+                                                     $displayval = &mt('[_1]In pop-up window[_2],[_3] with new window for each external resource in course',
+                                                                       "'<b>","</b>'",'<br />');
+                                                 }
+                                                 if (($width ne '') || ($height ne '')) {
+                                                     if ($width ne '') {
+                                                         $displayval .= '<br />'.&mt('Window width: [_1]px',$width);
+                                                     }
+                                                     if ($height ne '') {
+                                                         $displayval .= '<br />'.&mt('Window height: [_1]px',$height);
+                                                     }
+                                                 }
+                                            }
+                                        }
                                     }
                                     if ($key eq 'co-owners') {
                                         if (ref($changes->{$item}{$key}) eq 'HASH') {
@@ -1507,12 +2810,12 @@ sub store_changes {
                                                 }
                                             }
                                             unless (&Apache::lonnet::is_course_owner($cdom,$cnum)) {
-                                                if ($env{'form.pending_coowoner'} eq 'accept') {
+                                                if ($env{'form.pending_coowner'} eq 'accept') {
                                                         $displayval = &mt('on');
-                                                } elsif ($env{'form.pending_coowoner'} eq 'decline') {
+                                                } elsif ($env{'form.pending_coowner'} eq 'decline') {
                                                         $displayval = '';
                                                         $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success(&mt('Invitation to be co-owner declined')).'</li>';
-                                                } elsif ($env{'form.remove_coowoner'}) {
+                                                } elsif ($env{'form.remove_coowner'}) {
                                                     $displayval = &mt('off');
                                                 }
                                                 if ($displayval) {
@@ -1525,12 +2828,25 @@ sub store_changes {
                                         }
                                     } elsif ($changes->{$item}{$key} eq '') {
                                         push(@delkeys,$key);
-                                        $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success(&mt('Deleted setting for [_1]',
-                                                   '<i>'.$displayname.'</i>')).'</li>';
+                                        if ($item eq 'menuitems') {
+                                            if ($key eq 'menudefault') {
+                                                $output .= '<li>'.&mt("Default collection of menu items set to: 'Standard' (all menus shown)").'</li>';
+                                            } elsif ($key eq 'menucollections') {
+                                                $output .= '<li>'.&mt('Specific collections of menus no longer available').'</li>';
+                                            }
+                                        } else {
+                                            $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success(&mt('Deleted setting for [_1]',
+                                                       '<i>'.$displayname.'</i>')).'</li>';
+                                        }
+                                    } elsif ($key eq 'menucollections') {
+                                        $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success(&mt('Numbered menu collections:')).'<br />'.
+                                                   $displayval.'</li>';
                                     } else {
+                                        unless (($key eq 'extresource') && ($changes->{$item}{$key} ne 'iframe')) {
+                                            $displayval = "'<b>$displayval</b>'";
+                                        }
                                         $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success(&mt('[_1] set to [_2]',
-                                                   '<i>'.$displayname.'</i>',
-                                                   "'<b>$displayval</b>'"));
+                                                   '<i>'.$displayname.'</i>',$displayval));
                                         if ($key eq 'url') {
                                             my $bkuptime=time;
                                             $output .= ('&nbsp;'x2).&mt('(Previous URL backed up)').': '.
@@ -1582,6 +2898,9 @@ sub store_changes {
             }
         }
     }
+    if ($skipstore) {
+        return $output;
+    }
     if (&Apache::lonnet::put('environment',\%storehash,$cdom,$cnum) eq 'ok') {
         if (ref($changes) eq 'HASH') {
             if (ref($changes->{'courseinfo'}) eq 'HASH') {
@@ -1624,6 +2943,378 @@ sub store_changes {
     return $output;
 }
 
+sub store_linkprot {
+    my ($cdom,$cnum,$context,$changes,$oldlinkprot) = @_;
+    my ($ltiauth,$home,$lti_save_error,$output,$error,%ltienc,@deletions);
+    if ($context eq 'domain') {
+        $ltiauth = 1;
+        $home = &Apache::lonnet::domain($cdom,'primary');
+    } else {
+        $home = &Apache::lonnet::homeserver($cnum,$cdom);
+        if (exists($env{'course.'.$env{'request.course.id'}.'.internal.ltiauth'})) {
+            $ltiauth = $env{'course.'.$env{'request.course.id'}.'.internal.ltiauth'};
+        } else {
+            my %domdefs = &Apache::lonnet::get_domain_defaults($cdom);
+            $ltiauth = $domdefs{'crsltiauth'};
+        }
+    }
+    if (ref($changes) eq 'HASH') {
+        foreach my $id (sort { $a <=> $b } keys(%{$changes})) {
+            if (ref($changes->{$id}) eq 'HASH') {
+                if (exists($changes->{$id}->{'key'})) {
+                    $ltienc{$id}{'key'} = $changes->{$id}->{'key'};
+                    delete($changes->{$id}->{'key'});
+                }
+                if (exists($changes->{$id}->{'secret'})) {
+                    $ltienc{$id}{'secret'} = $changes->{$id}->{'secret'};
+                    delete($changes->{$id}->{'secret'});
+                } elsif (ref($oldlinkprot->{$id}) eq 'HASH') {
+                    if (exists($oldlinkprot->{$id}{'usable'})) {
+                        $changes->{$id}->{'usable'} = 1;
+                    }
+                    if (exists($oldlinkprot->{$id}{'cipher'})) {
+                        $changes->{$id}->{'cipher'} = $oldlinkprot->{$id}{'cipher'};
+                    }
+                }
+            }
+        }
+    }
+    my @ids=&Apache::lonnet::current_machine_ids();
+    if (keys(%ltienc) > 0) {
+        if ($context eq 'domain') {
+            foreach my $id (keys(%ltienc)) {
+                if (exists($ltienc{$id}{'secret'})) {
+                    $changes->{$id}->{'usable'} = 1;
+                }
+            }
+        } else {
+            unless (($home eq 'no_host') || ($home eq '')) {
+                my $allowed;
+                foreach my $id (@ids) { if ($id eq $home) { $allowed=1; } }
+                if ($allowed) {
+                    if (&Apache::lonnet::put('nohist_ltienc',\%ltienc,$cdom,$cnum,1) eq 'ok') {
+                        foreach my $id (keys(%ltienc)) {
+                            if (exists($ltienc{$id}{'secret'})) {
+                                $changes->{$id}->{'usable'} = 1;
+                            }
+                        }
+                    } else {
+                        $lti_save_error = 1;
+                    }
+                }
+            }
+        }
+    }
+    unless ($lti_save_error) {
+        if ($context eq 'course') {
+            if (&Apache::lonnet::put('lti',$changes,$cdom,$cnum,1) eq 'ok') {
+                my $hashid=$cdom.'_'.$cnum;
+                &Apache::lonnet::devalidate_cache_new('courselti',$hashid);
+                unless (($home eq 'no_host') || ($home eq '')) {
+                    if (grep(/^\Q$home\E$/,@ids)) {
+                        &Apache::lonnet::devalidate_cache_new('courseltienc',$hashid);
+                    }
+                }
+            } else {
+                $lti_save_error = 1;
+            }
+        }
+        unless ($lti_save_error) {
+            foreach my $id (sort { $a <=> $b } %{$changes}) {
+                if (ref($changes->{$id}) eq 'HASH') {
+                    my %values = %{$changes->{$id}};
+                    my %desc = &linkprot_names();
+                    my $display;
+                    foreach my $title ('name','lifetime','version','key','secret','returnurl','passbackformat') {
+                        if (($title eq 'key') || ($title eq 'secret')) {
+                            if (ref($ltienc{$id}) eq 'HASH') {
+                                if (exists($ltienc{$id}{$title})) {
+                                    if ($title eq 'secret') {
+                                        my $length = length($ltienc{$id}{$title});
+                                        $display .= $desc{$title}.': ['.&mt('not shown').'], ';
+                                    } else {
+                                        $display .= $desc{$title}.': '.$ltienc{$id}{$title}.', ';
+                                    }
+                                }
+                            }
+                        } elsif ($title eq 'version') {
+                            if ($values{$title} eq 'LTI-1p0') {
+                                $display .= $desc{$title}.': 1.1, ';
+                            }
+                        } elsif ($title eq 'returnurl') {
+                            if ($values{$title}) {
+                                $display .= &mt('Return URL parameter').': '.$values{$title}.', ';
+                            }
+                        } elsif ($title eq 'passbackformat') {
+                            if ($values{$title} eq '1.0') {
+                                $display .= &mt('Can return grades to Launcher with Outcomes Service 1.0 format').', ';
+                            } elsif ($values{$title} eq '1.1') {
+                                $display .= &mt('Can return grades to Launcher with Outcomes Service 1.1 format').', ';
+                            }
+                        } else {
+                            $display .= $desc{$title}.': '.$values{$title}.', ';
+                        }
+                    }
+                    if ($ltiauth) {
+                        if (($values{'requser'}) && ($values{'mapuser'} ne '')) {
+                            if ($values{'mapuser'} eq 'lis_person_contact_email_primary') {
+                                $display .= &mt('Source of username: Email address [_1]',
+                                                '(lis_person_contact_email_primary)').', ';
+                            } elsif ($values{'mapuser'} eq 'lis_person_sourcedid') {
+                                $display .= &mt('Source of username: User ID [_1]',
+                                                '(lis_person_sourcedid)').', ';
+                            } else {
+                                $display .= &mt('Source of username: [_1]',$values{'mapuser'}).', ';
+                            }
+                            if ($values{'notstudent'} eq 'auth') {
+                                $display .= &mt('Display LON-CAPA login page if no match').', ';
+                            } elsif ($values{'notstudent'} eq 'reject') {
+                                $display .= &mt('Discontinue launch if no match').', ';
+                            }
+                        }
+                    }
+                    $display =~ s/, $//;
+                    $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success(&mt('[_1] set to [_2]','<i>'.$id.'</i>',
+                                                                              "'$display'")).'</li>';
+                } elsif (ref($oldlinkprot->{$id}) eq 'HASH') {
+                    my $oldname = $oldlinkprot->{$id}{'name'};
+                    $output .= '<li>'.&Apache::lonhtmlcommon::confirm_success(&mt('Deleted setting for [_1]','<i>'."$id ($oldname)".'</i>')).'</li>';
+                }
+            }
+        } else {
+            $lti_save_error = 1;
+        }
+    }
+    unless ($lti_save_error) {
+        foreach my $id (sort { $a <=> $b } keys(%{$changes})) {
+            unless (ref($changes->{$id}) eq 'HASH') {
+                push(@deletions,$id);
+            }
+        }
+        if (@deletions) {
+            if ($context eq 'course') {
+                &Apache::lonnet::del('nohist_ltienc',\@deletions,$cdom,$cnum);
+            }
+        }
+    }
+    if ($lti_save_error) {
+        $output .= '<li>'.
+                   '<span class="LC_error">'.
+                   &mt('An error occurred when saving changes to link protection settings, which remain unchanged.').
+                   '</span>'.
+                   '</li>';
+    }
+    return $output;
+}
+
+sub store_ltitools {
+    my ($cdom,$cnum,$context,$changes,$oldltitools) = @_;
+    my ($home,$ltitools_save_error,$output,$error,%toolsenc,@deletions);
+    my %lt = &ltitools_names();
+    my @courseroles = ('cc','in','ta','ep','st');
+    my @allfields = ('fullname','firstname','lastname','email','user','roles');
+    if ($context eq 'domain') {
+        $home = &Apache::lonnet::domain($cdom,'primary');
+    } else {
+        $home = &Apache::lonnet::homeserver($cnum,$cdom);
+    }
+    if (ref($changes) eq 'HASH') {
+        foreach my $id (sort { $a <=> $b } keys(%{$changes})) {
+            if (ref($changes->{$id}) eq 'HASH') {
+                if (exists($changes->{$id}->{'key'})) {
+                    $toolsenc{$id}{'key'} = $changes->{$id}->{'key'};
+                    delete($changes->{$id}->{'key'});
+                }
+                if (exists($changes->{$id}->{'secret'})) {
+                    $toolsenc{$id}{'secret'} = $changes->{$id}->{'secret'};
+                    delete($changes->{$id}->{'secret'});
+                } elsif (ref($oldltitools->{$id}) eq 'HASH') {
+                    if (exists($oldltitools->{$id}{'usable'})) {
+                        $changes->{$id}->{'usable'} = 1;
+                    }
+                    if (exists($oldltitools->{$id}{'cipher'})) {
+                        $changes->{$id}->{'cipher'} = $oldltitools->{$id}{'cipher'};
+                    }
+                }
+            }
+        }
+    }
+    my @ids=&Apache::lonnet::current_machine_ids();
+    if (keys(%toolsenc) > 0) {
+        unless (($home eq 'no_host') || ($home eq '')) {
+            my $allowed;
+            foreach my $id (@ids) { if ($id eq $home) { $allowed=1; } }
+            if ($allowed) {
+                if (($context eq 'domain') ||
+                    (($context eq 'course') &&
+                     (&Apache::lonnet::put('nohist_toolsenc',\%toolsenc,$cdom,$cnum,1) eq 'ok'))) {
+                    foreach my $id (keys(%toolsenc)) {
+                        if (exists($toolsenc{$id}{'secret'})) {
+                            $changes->{$id}->{'usable'} = 1;
+                        }
+                    }
+                } else {
+                    $ltitools_save_error = 1;
+                }
+            }
+        }
+    }
+    unless ($ltitools_save_error) {
+        if ($context eq 'course') {
+            if (&Apache::lonnet::put('ltitools',$changes,$cdom,$cnum,1) eq 'ok') {
+                my $hashid=$cdom.'_'.$cnum;
+                &Apache::lonnet::devalidate_cache_new('courseltitools',$hashid);
+                unless (($home eq 'no_host') || ($home eq '')) {
+                    if (grep(/^\Q$home\E$/,@ids)) {
+                        &Apache::lonnet::devalidate_cache_new('crsltitoolsenc',$hashid);
+                    }
+                }
+            } else {
+                $ltitools_save_error = 1;
+            }
+        }
+        unless ($ltitools_save_error) {
+            my %bynum;
+            foreach my $itemid (sort(keys(%{$changes}))) {
+                my $position = $changes->{$itemid}{'order'};
+                $bynum{$position} = $itemid;
+            }
+            foreach my $pos (sort { $a <=> $b } keys(%bynum)) {
+                my $itemid = $bynum{$pos};
+                if (ref($changes->{$itemid}) ne 'HASH') {
+                    $output .= '<li>'.&mt('Deleted: [_1]',$changes->{$itemid}).'</li>';
+                } else {
+                    $output .= '<li><b>'.$changes->{$itemid}{'title'}.'</b>';
+                    if ($changes->{$itemid}{'image'}) {
+                        $output .= '&nbsp;'.
+                                   '<img src="'.$changes->{$itemid}{'image'}.'"'.
+                                   ' alt="'.&mt('Tool Provider icon').'" />';
+                    }
+                    $output .= '</li><ul>';
+                    my $position = $pos + 1;
+                    $output .= '<li>'.&mt('Order: [_1]',$position).'</li>';
+                    foreach my $item ('version','msgtype','sigmethod','url','lifetime') {
+                        if ($changes->{$itemid}{$item} ne '') {
+                            $output .= '<li>'.$lt{$item}.':&nbsp;'.$changes->{$itemid}{$item}.'</li>';
+                        }
+                    }
+                    if (ref($toolsenc{$itemid}) eq 'HASH') {
+                        foreach my $item ('key','secret') {
+                            if (exists($toolsenc{$itemid}{$item})) {
+                                if ($item eq 'secret') {
+                                    $output .= '<li>'.$lt{$item}.':&nbsp;['.&mt('not shown').']</li>';
+                                } else {
+                                    $output .= '<li>'.$lt{$item}.':&nbsp;'.$toolsenc{$itemid}{$item}.'</li>';
+                                }
+                            }
+                        }
+                    }
+                    $output .= '<li>'.&mt('Configurable in course:');
+                    my @possconfig = ('label','title','target','linktext','explanation','append');
+                    my $numconfig = 0;
+                    if (ref($changes->{$itemid}{'crsconf'}) eq 'HASH') {
+                        foreach my $item (@possconfig) {
+                            if ($changes->{$itemid}{'crsconf'}{$item}) {
+                                $numconfig ++;
+                                $output .= ' "'.$lt{'crs'.$item}.'"';
+                            }
+                        }
+                    }
+                    if (!$numconfig) {
+                        $output .= '&nbsp;'.&mt('None');
+                    }
+                    $output .= '</li>';
+                    foreach my $item ('passback','roster') {
+                        $output .= '<li>'.$lt{$item}.'&nbsp;';
+                        if ($changes->{$itemid}{$item}) {
+                            $output .= &mt('Yes');
+                            if ($changes->{$itemid}{$item.'valid'}) {
+                                if ($item eq 'passback') {
+                                    $output .= ' '.&mt('valid for at least [quant,_1,day] after launch',
+                                                       $changes->{$itemid}{$item.'valid'});
+                                } else {
+                                    $output .= ' '.&mt('valid for at least [quant,_1,second] after launch',
+                                                       $changes->{$itemid}{$item.'valid'});
+                                }
+                            }
+                        } else {
+                            $output .= &mt('No');
+                        }
+                        $output .= '</li>';
+                    }
+                    if (ref($changes->{$itemid}{'display'}) eq 'HASH') {
+                        my $displaylist;
+                        if ($changes->{$itemid}{'display'}{'target'}) {
+                            $displaylist = &mt('Display target').':&nbsp;'.
+                                           $changes->{$itemid}{'display'}{'target'}.',';
+                        }
+                        foreach my $size ('width','height') {
+                            if ($changes->{$itemid}{'display'}{$size}) {
+                                $displaylist .= ('&nbsp;'x2).$lt{$size}.':&nbsp;'.
+                                                $changes->{$itemid}{'display'}{$size}.',';
+                            }
+                        }
+                        if ($displaylist) {
+                            $displaylist =~ s/,$//;
+                            $output .= '<li>'.$displaylist.'</li>';
+                        }
+                        foreach my $item ('linktext','explanation') {
+                            if ($changes->{$itemid}{'display'}{$item}) {
+                                $output .= '<li>'.$lt{$item}.':&nbsp;'.$changes->{$itemid}{'display'}{$item}.'</li>';
+                            }
+                        }
+                    }
+                    if (ref($changes->{$itemid}{'fields'}) eq 'HASH') {
+                        my $fieldlist;
+                        foreach my $field (@allfields) {
+                            if ($changes->{$itemid}{'fields'}{$field}) {
+                                $fieldlist .= ('&nbsp;'x2).$lt{$field}.',';
+                            }
+                        }
+                        if ($fieldlist) {
+                            $fieldlist =~ s/,$//;
+                            if ($changes->{$itemid}{'fields'}{'user'}) {
+                                if ($changes->{$itemid}{'incdom'}) {
+                                    $fieldlist .= ' ('.&mt('username:domain').')';
+                                } else {
+                                    $fieldlist .= ' ('.&mt('username').')';
+                                }
+                            }
+                            $output .= '<li>'.&mt('Data sent').':'.$fieldlist.'</li>';
+                        }
+                    }
+                    if (ref($changes->{$itemid}{'roles'}) eq 'HASH') {
+                        my $rolemaps;
+                        foreach my $role (@courseroles) {
+                            if ($changes->{$itemid}{'roles'}{$role}) {
+                                $rolemaps .= ('&nbsp;'x2).&Apache::lonnet::plaintext($role,'Course').'='.
+                                             $changes->{$itemid}{'roles'}{$role}.',';
+                            }
+                        }
+                        if ($rolemaps) {
+                            $rolemaps =~ s/,$//;
+                            $output .= '<li>'.&mt('Role mapping:').$rolemaps.'</li>';
+                        }
+                    }
+                    if (ref($changes->{$itemid}{'custom'}) eq 'HASH') {
+                        my $customlist;
+                        if (keys(%{$changes->{$itemid}{'custom'}})) {
+                            foreach my $key (sort(keys(%{$changes->{$itemid}{'custom'}}))) {
+                                $customlist .= $key.':'.$changes->{$itemid}{'custom'}{$key}.('&nbsp;'x2);
+                            }
+                        }
+                        if ($customlist) {
+                            $output .= '<li>'.&mt('Custom items').': '.$customlist.'</li>';
+                        }
+                    }
+                    $output .= '</ul></li>';
+                }
+            }
+        }
+    }
+    return $output;
+}
+
 sub update_env {
     my ($cnum,$cdom,$chome,$need_env_update,$storehash)  = @_;
     my $count = 0;
@@ -1752,12 +3443,17 @@ sub get_course {
 }
 
 sub get_jscript {
-    my ($cid,$cdom,$phase,$crstype,$settings) = @_;
+    my ($cid,$cdom,$phase,$crstype,$settings,$noedit) = @_;
     my ($can_toggle_cat,$can_categorize) = &can_modify_catsettings($cdom,$crstype);
-    my ($jscript,$categorize_js,$loncaparev_js,$instcode_js);
+    my ($jscript,$categorize_js,$loncaparev_js,$instcode_js,$extresource_js,$localization_js);
     my $stubrowse_js = &Apache::loncommon::studentbrowser_javascript();
     my $browse_js = &Apache::loncommon::browser_and_searcher_javascript('parmset');
     my $cloners_js = &cloners_javascript($phase);
+    my $currltitools;
+    if (ref($settings) eq 'HASH') {
+        $currltitools = $settings->{'ltitools'};
+    }
+    my $ltitools_js = &Apache::lonconfigsettings::ltitools_javascript($currltitools);
     my @code_order;
     if ($crstype ne 'Community') {
         if (ref($settings) eq 'HASH') {
@@ -1878,12 +3574,138 @@ function syllabusinfo() {
     }
 }
 ENDSCRIPT
+    my $menuitems_js;
+    unless ($noedit) {
+        my $collections;
+        my $next = 1;
+        if (ref($settings) eq 'HASH') {
+            if ($settings->{'menucollections'} ne '') {
+                my @current;
+                foreach my $item (split(/;/,$settings->{'menucollections'})) {
+                    my ($num) = split(/\%/,$item);
+                    if ($num =~ /^\d+$/) {
+                        push(@current,$num);
+                    }
+                }
+                $collections = join("','",sort { $a <=> $b } @current);
+                if ($collections) {
+                    $collections = "'$collections'";
+                }
+                $next += $current[-1];
+            }
+        }
+        my $deftext = &mt('Standard (all menus shown)');
+        $menuitems_js = <<ENDSCRIPT;
+function toggleAddmenucoll() {
+    if (document.getElementById('menucollections_add')) {
+        var state = 'none';
+        var add = document.getElementById('menucollections_add').checked;
+        if (add) {
+            state = 'inline-block';
+        }
+        var fieldsets = new Array('shown','text','links','list','inline');
+        for (var i=0; i<fieldsets.length; i++) {
+            if (document.getElementById('addmenucoll_'+fieldsets[i])) {
+                document.getElementById('addmenucoll_'+fieldsets[i]).style.display = state;
+            }
+        }
+        var box = document.getElementsByClassName('LC_menucoll_add');
+        if (box.length) {
+            for (var i=0; i<box.length; i++) {
+                if (add) {
+                    box[i].checked = true;
+                } else {
+                    box[i].checked = false;
+                }
+            }
+        }
+        if (document.getElementById('menudefault')) {
+            var menudef = document.getElementById('menudefault');
+            var currsel = menudef.selectedIndex;
+            var colls = new Array($collections);
+            menudef.options.length = 0;
+            if (!add) {
+                if (currsel == 1 + colls.length) {
+                    currsel = 0;
+                }
+            }
+            if (currsel == 0) {
+                menudef.options[0] = new Option('$deftext','',true,true);
+            } else {
+                menudef.options[0] = new Option('$deftext','',false,false);
+            }
+            if (colls.length) {
+                for (var i=0; i<colls.length; i++) {
+                    var idx = i+1;
+                    if (currsel == colls[i]) {
+                        menudef.options[idx] = new Option(colls[i],colls[i],true,true);
+                    } else {
+                        menudef.options[idx] = new Option(colls[i],colls[i],false,false);
+                    }
+                }
+            }
+            if (add) {
+                var addidx = 1 + colls.length;
+                if (currsel == addidx) {
+                     menudef.options[addidx] = new Option('$next','$next',true,true);
+                } else {
+                    menudef.options[addidx] = new Option('$next','$next',false,false);
+                }
+            }
+        }
+    }
+}
+ENDSCRIPT
+    }
+    $extresource_js = <<"ENDSCRIPT";
+function toggleExtRes() {
+    if (document.getElementById('LC_extresource')) {
+        var extressel = document.getElementById('LC_extresource').value;
+        if (document.getElementById('LC_extresreusediv')) {
+            var extresreuse = document.getElementById('LC_extresreusediv');
+            if (document.getElementById('LC_extressize')) {
+                var extressize = document.getElementById('LC_extressize');
+                var setvis;
+                if ((extressel == 'tab') || (extressel == 'window')) {
+                    extresreuse.style.display = 'inline-block';
+                    setvis = 1;
+                    if (extressel == 'window') {
+                        extressize.style.display = 'inline-block';
+                    } else {
+                        extressize.style.display = 'none';
+                    }
+                }
+                if (!setvis) {
+                    extresreuse.style.display = 'none';
+                    extressize.style.display = 'none';
+                }
+            }
+        }
+    }
+}
+ENDSCRIPT
+    $localization_js = <<"ENDSCRIPT";
+function toggleTimeZone() {
+    if (document.getElementById('LC_set_timezone')) {
+        var timezonesel = document.getElementById('LC_set_timezone').value;
+        if (document.getElementById('LC_tzoverdiv')) {
+            var tzoverdiv = document.getElementById('LC_tzoverdiv');
+            if (timezonesel == '') {
+                tzoverdiv.style.display = 'none';
+            } else {
+                tzoverdiv.style.display = 'block';
+            }
+        }
+    }
+}
+ENDSCRIPT
     $jscript = '<script type="text/javascript" language="Javascript">'."\n".
                '// <![CDATA['."\n".
                $browse_js."\n".$categorize_js."\n".$loncaparev_js."\n".
-               $cloners_js."\n".$instcode_js.
-               $syllabus_js."\n".'//]]>'."\n".
-               '</script>'."\n".$stubrowse_js."\n";
+               $cloners_js."\n".$instcode_js."\n".$localization_js."\n".
+               $syllabus_js."\n".$menuitems_js."\n".$extresource_js."\n".
+               &linkprot_javascript()."\n".'//]]>'."\n".
+               '</script>'."\n".$stubrowse_js."\n".$ltitools_js."\n";
     return $jscript;
 }
 
@@ -1968,6 +3790,36 @@ function getIndexByName(item) {
 ENDSCRIPT
 }
 
+sub linkprot_javascript {
+    return <<"ENDSCRIPT";
+function toggleLinkProtExtra(form,item,extra,valon,styleon,num) {
+    if (document.getElementById('linkprot_'+extra+'_'+num)) {
+        var extraid = document.getElementById('linkprot_'+extra+'_'+num);
+        var itemname = form.elements['linkprot_'+item+'_'+num];
+        if (itemname) {
+            if (itemname.length > 0) {
+                var setvis;
+                for (var i=0; i<itemname.length; i++) {
+                    if (itemname[i].checked == true) {
+                        if (itemname[i].value == valon) {
+                            extraid.style.display = styleon;
+                            setvis = 1;
+                        }
+                        break;
+                    }
+                }
+                if (!setvis) {
+                    extraid.style.display = 'none';
+                }
+            }
+        }
+    }
+    return;
+}
+
+ENDSCRIPT
+
+}
 
 sub print_courseinfo {
     my ($cdom,$settings,$ordered,$itemtext,$rowtotal,$crstype,$noedit) = @_;
@@ -2187,7 +4039,7 @@ sub print_courseinfo {
                         $default = '0';
                     }
                     $datatable .= &new_cloners_dom_row($cdom,'0',$default);
-                } 
+                }
             } elsif ($settings->{$item} ne '*') {
                 my @entries = split(/,/,$settings->{$item});
                 if (@entries > 0) {
@@ -3171,7 +5023,7 @@ sub coowner_invitations {
         @pendingcoown = split(',',$pendingcoowners);
     }
     if (ref($currcoownref) eq 'ARRAY') {
-        @currcoown == @{$currcoownref};
+        @currcoown = @{$currcoownref};
     }
     my $disabled;
     if ($noedit) {
@@ -3235,7 +5087,7 @@ sub manage_coownership  {
         @pendingcoown = split(',',$pendingcoowners);
     }
     if (ref($currcoownref) eq 'ARRAY') {
-        @currcoown == @{$currcoownref};
+        @currcoown = @{$currcoownref};
     }
     my $disabled;
     if ($noedit) {
@@ -3270,10 +5122,10 @@ sub manage_coownership  {
         }
         $output .= '<span class="LC_nobreak">';
         if ($is_coowner) {
-            $output .= &mt('You are currently a co-owner:').'&nbsp;<label><input type="checkbox" name="remove_coowoner" value="'.$uname.':'.$udom.'" />'.&mt('Discontinue?').'</label>';
+            $output .= &mt('You are currently a co-owner:').'&nbsp;<label><input type="checkbox" name="remove_coowner" value="'.$uname.':'.$udom.'" />'.&mt('Discontinue?').'</label>';
         } else {
-            $output .= &mt('The course owner has invited you to become a co-owner:').'&nbsp;<label><input type="radio" name="pending_coowoner" value="accept"'.$disabled.' />'.&mt('Accept?').'</label>'.('&nbsp;'x2).
-                       '<label><input type="radio" name=pending_coowoner" value="decline"'.$disabled.' />'.&mt('Decline?').'</label>';
+            $output .= &mt('The course owner has invited you to become a co-owner:').'&nbsp;<label><input type="radio" name="pending_coowner" value="accept"'.$disabled.' />'.&mt('Accept?').'</label>'.('&nbsp;'x2).
+                       '<label><input type="radio" name=pending_coowner" value="decline"'.$disabled.' />'.&mt('Decline?').'</label>';
         }
         $output .= '</span>';
         if (@currcoown) {
@@ -3321,9 +5173,23 @@ sub print_localization {
         if ($item eq 'timezone') {
             my $includeempty = 1;
             my $timezone = &Apache::lonlocal::gettimezone();
+            my $onchange;
+            unless ($noedit) {
+               $onchange = ' onchange="javascript:toggleTimeZone();"';
+            }
+            my $id = ' id="LC_set_timezone"';
             $datatable .= 
-                &Apache::loncommon::select_timezone($item,$timezone,undef,
-                                                    $includeempty,$disabled);
+                &Apache::loncommon::select_timezone($item,$timezone,$onchange,
+                                                    $includeempty,$id,$disabled);
+            my $tzsty = 'none';
+            if ($timezone ne '') {
+                $tzsty = 'block';
+            }
+            $datatable .= '<div id="LC_tzoverdiv" style="display:'.$tzsty.';">'.
+                          '<span class="LC_nobreak">'.
+                          &mt('Override individual user preference?').
+                          &yesno_radio('tzover',$settings,undef,1,'',$noedit).
+                          '</span></div>';
         } elsif ($item eq 'datelocale') {
             my $includeempty = 1;
             my $locale_obj = &Apache::lonlocal::getdatelocale();
@@ -3366,7 +5232,7 @@ sub print_localization {
                     }
                 }
                 unless ($noedit) {
-                    $datatable .= 
+                    $datatable .=
                               &Apache::loncommon::start_data_table_row().
                               '<td align="left"><span class="LC_nobreak">'.
                               &mt('Additional language:'). '</span><br />'.
@@ -3462,7 +5328,7 @@ sub user_table {
     if ($currvalue eq '') {
         unless ($noedit) {
             $output .= &select_recipient($item,'0',$cdom,$sections);
-        }  
+        }
     } else {
         my $num = 0;
         my @curr = split(/,/,$currvalue);
@@ -3531,7 +5397,7 @@ sub select_recipient {
     my $domform = &Apache::loncommon::select_dom_form($cdom,$item.'_udom_'.$num,$includeempty);
     my $selectlink =
         &Apache::loncommon::selectstudent_link('display',$item.'_uname_'.$num,
-                                               $item.'_udom_'.$num,1);
+                                               $item.'_udom_'.$num,'only');
     my $output = 
         '<table><tr><td align="center">'.&mt('Username').'<br />'.
         '<input type="text" name="'.$item.'_uname_'.$num.'" value="" /></td>'.
@@ -4016,6 +5882,20 @@ sub print_appearance {
                    text => '<b>'.&mt($itemtext->{'usejsme'}).'</b>',
                    input => 'radio',
                  },
+         'inline_chem' => {
+                   text => '<b>'.&mt($itemtext->{'inline_chem'}).'</b>',
+                   input => 'radio',
+                 },
+         'extresource' => {
+                   text => '<b>'.&mt($itemtext->{'extresource'}).'</b>',
+                   input => 'selectbox',
+                   options => {
+                                iframe => 'In iframe',
+                                tab    => 'In new tab',
+                                window => 'In pop-up window',
+                              },
+                   order  => ['iframe','tab','window'],
+                 },
     );
     return &make_item_rows($cdom,\%items,$ordered,$settings,$rowtotal,$crstype,'appearance',$noedit);
 }
@@ -4206,6 +6086,1245 @@ sub print_bridgetasks {
     return &make_item_rows($cdom,\%items,$ordered,$settings,$rowtotal,$crstype,'bridgetasks',$noedit);
 }
 
+sub print_ltitools {
+    my ($cdom,$cnum,$settings,$rowtotal,$crstype,$noedit,$context) = @_;
+    my ($datatable,$disabled,$css_class,$dest);
+    if ($noedit) {
+        $disabled = ' disabled="disabled"';
+    }
+    my $itemcount = 1;
+    unless ($context eq 'domain') {
+        my %tooltypes = &Apache::loncommon::usable_exttools();
+        unless ($tooltypes{'crs'}) {
+            my $showtype = 'course';
+            if ($crstype eq 'Community') {
+                $showtype = lc($crstype);
+            }
+            $css_class = $itemcount%2?' class="LC_odd_row"':'';
+            $datatable = '<tr '.$css_class.'><td colspan="2">'.
+                         &mt("Definition of external tools is not enabled for this $showtype.").'<br />';
+            if ($tooltypes{'dom'}) {
+                         $datatable .= &mt("Contact an administrator for the $showtype domain ([_1]) to request this feature be enabled.",
+                                           '<i>'.$cdom.'</i>').
+                         '<br /><br />'.
+                         &mt("Use of external tools defined at a domain level is enabled, so the $showtype editor can be used to add tool(s), if any have been defined.");
+            } else {
+                $datatable .= &mt("Use of external tools defined at a domain level is not enabled, either, for this $showtype.").
+                              '<br /><br />'.
+                              &mt("Contact an administrator for the $showtype domain ([_1]) to request changes.",
+                                  '<i>'.$cdom.'</i>');
+
+            }
+            $datatable .= '</tr>';
+            $itemcount ++;
+            return $datatable;
+        }
+    }
+    my %lt = &ltitools_names();
+    my $maxnum = 0;
+    my %ordered;
+    if (ref($settings) eq 'HASH') {
+        foreach my $item (keys(%{$settings})) {
+            if (ref($settings->{$item}) eq 'HASH') {
+                my $num = $settings->{$item}{'order'};
+                $ordered{$num} = $item;
+            }
+        }
+    }
+
+    if ($context eq 'domain') {
+        $dest = '/adm/domainprefs';
+    } else {
+        $dest = '/adm/courseprefs';
+    }
+    my ($switchserver,$switchmessage);
+    $switchserver = &check_switchserver($cdom,$cnum,$context,$dest);
+    if ($switchserver) {
+        if ($context eq 'domain') {
+            $switchmessage = &mt("submit from domain's primary library server: [_1].",$switchserver);
+        } elsif ($crstype eq 'Community') {
+            $switchmessage = &mt("submit from community's home server: [_1].",$switchserver);
+        } else {
+            $switchmessage = &mt("submit from course's home server: [_1].",$switchserver);
+        }
+    }
+    my $maxnum = scalar(keys(%ordered));
+    my @courseroles = ('cc','in','ta','ep','st');
+    my @ltiroles = qw(Instructor ContentDeveloper TeachingAssistant Learner);
+    my @fields = ('fullname','firstname','lastname','email','roles','user');
+    if (keys(%ordered)) {
+        my @items = sort { $a <=> $b } keys(%ordered);
+        for (my $i=0; $i<@items; $i++) {
+            $css_class = $itemcount%2?' class="LC_odd_row"':'';
+            my $item = $ordered{$items[$i]};
+            my ($title,$key,$url,$usable,$lifetime,$imgsrc,%sigsel);
+            if (ref($settings->{$item}) eq 'HASH') {
+                $title = $settings->{$item}->{'title'};
+                $url = $settings->{$item}->{'url'};
+                $key = $settings->{$item}->{'key'};
+                $usable = $settings->{$item}->{'usable'};
+                $lifetime = $settings->{$item}->{'lifetime'};
+                my $image = $settings->{$item}->{'image'};
+                if ($image ne '') {
+                    $imgsrc = '<img src="'.$image.'" alt="'.&mt('Tool Provider icon').'" />';
+                }
+                if ($settings->{$item}->{'sigmethod'} eq 'HMAC-256') {
+                    $sigsel{'HMAC-256'} = ' selected="selected"';
+                } else {
+                    $sigsel{'HMAC-SHA1'} = ' selected="selected"';
+                }
+            }
+            my $chgstr = ' onchange="javascript:reorderLTITools(this.form,'."'ltitools_".$item."'".');"';
+            $datatable .= '<tr '.$css_class.'><td><span class="LC_nobreak">'
+                         .'<select name="ltitools_'.$item.'"'.$chgstr.'>';
+            for (my $k=0; $k<=$maxnum; $k++) {
+                my $vpos = $k+1;
+                my $selstr;
+                if ($k == $i) {
+                    $selstr = ' selected="selected" ';
+                }
+                $datatable .= '<option value="'.$k.'"'.$selstr.'>'.$vpos.'</option>';
+            }
+            $datatable .= '</select>'.('&nbsp;'x2).
+                '<label><input type="checkbox" name="ltitools_del" value="'.$item.'" />'.
+                &mt('Delete?').'</label></span></td>'.
+                '<td colspan="2">'.
+                '<fieldset><legend>'.&mt('Required settings').'</legend>'.
+                '<span class="LC_nobreak">'.$lt{'title'}.':<input type="text" size="20" name="ltitools_title_'.$i.'" value="'.$title.'" /></span> '.
+                ('&nbsp;'x2).
+                '<span class="LC_nobreak">'.$lt{'version'}.':<select name="ltitools_version_'.$i.'">'.
+                '<option value="LTI-1p0" selected="selected">1.1</option></select></span> '.
+                ('&nbsp;'x2).
+                '<span class="LC_nobreak">'.$lt{'msgtype'}.':<select name="ltitools_msgtype_'.$i.'">'.
+                '<option value="basic-lti-launch-request" selected="selected">Launch</option></select></span> '.
+                ('&nbsp;'x2).
+                '<span class="LC_nobreak">'.$lt{'sigmethod'}.':<select name="ltitools_sigmethod_'.$i.'">'.
+                '<option value="HMAC-SHA1"'.$sigsel{'HMAC-SHA1'}.'>HMAC-SHA1</option>'.
+                '<option value="HMAC-SHA256"'.$sigsel{'HMAC-SHA256'}.'>HMAC-SHA256</option></select></span>'.
+                '<br /><br />'.
+                '<span class="LC_nobreak">'.$lt{'url'}.':<input type="text" size="60" name="ltitools_url_'.$i.'"'.
+                ' value="'.$url.'" /></span>'.
+                ('&nbsp;'x2).
+                '<span class="LC_nobreak">'.$lt{'lifetime'}.':'.
+                '<input type="text" size="5" name="ltitools_lifetime_'.$i.'" value="'.$lifetime.'" /></span><br /><br />';
+            if ($key ne '') {
+                $datatable .= '<span class="LC_nobreak">'.$lt{'key'};
+                if ($noedit) {
+                    $datatable .= ': ['.&mt('not shown').']';
+                } elsif ($switchserver) {
+                    $datatable .= ': ['.&mt('[_1] to view/edit',$switchserver).']';
+                } else {
+                    $datatable .= ':<input type="text" size="25" name="ltitools_key_'.$i.'" value="'.$key.'" autocomplete="off"'.$disabled.' />';
+                }
+                $datatable .= '</span> '.('&nbsp;'x2);
+            } elsif (!$switchserver) {
+                $datatable .= '<span class="LC_nobreak">'.$lt{'key'}.':'.
+                              '<input type="text" size="25" name="ltitools_key_'.$i.'" value="'.$key.'" autocomplete="off"'.$disabled.' />'.
+                              '</span> '.('&nbsp;'x2);
+            }
+            if ($switchserver) {
+                if ($usable ne '') {
+                    $datatable .= '<div id="ltitools_divcurrsecret_'.$i.'" style="display:inline-block" /><span class="LC_nobreak">'.
+                                  $lt{'secret'}.': ['.&mt('not shown').'] '.('&nbsp;'x2).'</span></div>'.
+                                  '<span class="LC_nobreak">'.&mt('Change secret?').
+                                  '<label><input type="radio" value="0" name="ltitools_changesecret_'.$i.'" onclick="javascript:toggleChgSecret(this.form,'."'$i','secret','ltitools'".');" checked="checked"'.$disabled.' />'.&mt('No').'</label>'.
+                                  ('&nbsp;'x2).
+                                  '<label><input type="radio" value="1" name="ltitools_changesecret_'.$i.'" onclick="javascript:toggleChgSecret(this.form,'."'$i','secret','ltitools'".');" '.$disabled.' />'.&mt('Yes').'</label>'.('&nbsp;'x2).
+                                  '</span><div id="ltitools_divchgsecret_'.$i.'" style="display:none" />'.
+                                  '<span class="LC_nobreak"> - '.$switchmessage.'</span>'.
+                                  '</div>';
+                } elsif ($key eq '') {
+                    $datatable .= '<span class="LC_nobreak">'.&mt('Key and Secret are required').' - '.$switchmessage.'</span>'."\n";
+                } else {
+                    $datatable .= '<span class="LC_nobreak">'.&mt('Secret required').' - '.$switchmessage.'</span>'."\n";
+                }
+                $datatable .= '<input type="hidden" name="ltitools_id_'.$i.'" value="'.$item.'" />';
+            } else {
+                if ($usable ne '') {
+                    $datatable .= '<div id="ltitools_divcurrsecret_'.$i.'" style="display:inline-block" /><span class="LC_nobreak">'.
+                                  $lt{'secret'}.': ['.&mt('not shown').'] '.('&nbsp;'x2).'</span></div>'.
+                                  '<span class="LC_nobreak">'.&mt('Change?').
+                                  '<label><input type="radio" value="0" name="ltitools_changesecret_'.$i.'" onclick="javascript:toggleChgSecret(this.form,'."'$i','secret','ltitools'".');" checked="checked"'.$disabled.' />'.&mt('No').'</label>'.
+                                  ('&nbsp;'x2).
+                                  '<label><input type="radio" value="1" name="ltitools_changesecret_'.$i.'" onclick="javascript:toggleChgSecret(this.form,'."'$i','secret','ltitools'".');"'.$disabled.' />'.&mt('Yes').
+                                  '</label>&nbsp;&nbsp;</span><div id="ltitools_divchgsecret_'.$i.'" style="display:none" />'.
+                                  '<span class="LC_nobreak">'.&mt('New Secret').':'.
+                                  '<input type="password" size="20" name="ltitools_secret_'.$i.'" value="" autocomplete="new-password"'.$disabled.' />'.
+                                  '<label><input type="checkbox" name="ltitools_visible_'.$i.'" id="ltitools_visible_'.$i.'" onclick="if (this.checked) { this.form.ltitools_secret_'.$i.'.type='."'text'".' } else { this.form.ltitools_secret_'.$i.'.type='."'password'".' }"'.$disabled.' />'.&mt('Visible input').'</label>'.
+                                  '<input type="hidden" name="ltitools_id_'.$i.'" value="'.$item.'" /></span></div>';
+                } else {
+                    $datatable .=
+                        '<span class="LC_nobreak">'.$lt{'secret'}.':'.
+                        '<input type="password" size="20" name="ltitools_secret_'.$i.'" value="" autocomplete="new-password"'.$disabled.' />'.
+                        '<label><input type="checkbox" name="ltitools_visible_'.$i.'" id="ltitools_visible_'.$i.'" onclick="if (this.checked) { this.form.ltitools_secret_'.$i.'.type='."'text'".' } else { this.form.ltitools_secret_'.$i.'.type='."'password'".' }"'.$disabled.' />'.&mt('Visible input').'</label>'.
+                        '<input type="hidden" name="ltitools_id_'.$i.'" value="'.$item.'" /></span>';
+                }
+            }
+            $datatable .= '</fieldset>'.
+                          '<fieldset><legend>'.&mt('Optional settings').'</legend>'.
+                          '<span class="LC_nobreak">'.&mt('Display target:');
+            my %currdisp;
+            if (ref($settings->{$item}->{'display'}) eq 'HASH') {
+                if ($settings->{$item}->{'display'}->{'target'} eq 'window') {
+                    $currdisp{'window'} = ' checked="checked"';
+                } elsif ($settings->{$item}->{'display'}->{'target'} eq 'tab') {
+                    $currdisp{'tab'} = ' checked="checked"';
+                } else {
+                    $currdisp{'iframe'} = ' checked="checked"';
+                }
+                if ($settings->{$item}->{'display'}->{'width'} =~ /^(\d+)$/) {
+                    $currdisp{'width'} = $1;
+                }
+                if ($settings->{$item}->{'display'}->{'height'} =~ /^(\d+)$/) {
+                    $currdisp{'height'} = $1;
+                }
+                $currdisp{'linktext'} = $settings->{$item}->{'display'}->{'linktext'};
+                $currdisp{'explanation'} = $settings->{$item}->{'display'}->{'explanation'};
+            } else {
+                $currdisp{'iframe'} = ' checked="checked"';
+            }
+            foreach my $disp ('iframe','tab','window') {
+                $datatable .= '<label><input type="radio" name="ltitools_target_'.$i.'" value="'.$disp.'"'.$currdisp{$disp}.' />'.
+                              $lt{$disp}.'</label>'.('&nbsp;'x2);
+            }
+            $datatable .= ('&nbsp;'x4);
+            foreach my $dimen ('width','height') {
+                $datatable .= '<label>'.$lt{$dimen}.'&nbsp;'.
+                              '<input type="text" name="ltitools_'.$dimen.'_'.$i.'" size="5" value="'.$currdisp{$dimen}.'" /></label>'.
+                              ('&nbsp;'x2);
+            }
+            $datatable .= '</span><br />'.
+                          '<div class="LC_left_float">'.$lt{'linktext'}.'<br />'.
+                          '<input type="text" name="ltitools_linktext_'.$i.'" size="25" value="'.$currdisp{'linktext'}.'" /></div>'.
+                          '<div class="LC_left_float">'.$lt{'explanation'}.'<br />'.
+                          '<textarea name="ltitools_explanation_'.$i.'" rows="5" cols="40">'.$currdisp{'explanation'}.
+                          '</textarea></div><div style=""></div><br />';
+            my %units = (
+                          'passback' => 'days',
+                          'roster'   => 'seconds',
+                        );
+            foreach my $extra ('passback','roster') {
+                my $validsty = 'none';
+                my $currvalid;
+                my $checkedon = '';
+                my $checkedoff = ' checked="checked"';
+                if ($settings->{$item}->{$extra}) {
+                    $checkedon = $checkedoff;
+                    $checkedoff = '';
+                    $validsty = 'inline-block';
+                    if ($settings->{$item}->{$extra.'valid'} =~ /^\d+\.?\d*$/) {
+                        $currvalid = $settings->{$item}->{$extra.'valid'};
+                    }
+                }
+                my $onclick = ' onclick="toggleLTITools(this.form,'."'$extra','$i'".');"';
+                $datatable .= '<div class="LC_floatleft"><span class="LC_nobreak">'.$lt{$extra}.'&nbsp;'.
+                              '<label><input type="radio" name="ltitools_'.$extra.'_'.$i.'" value="0"'.$checkedoff.$onclick.' />'.
+                              &mt('No').'</label>'.('&nbsp;'x2).
+                              '<label><input type="radio" name="ltitools_'.$extra.'_'.$i.'" value="1"'.$checkedon.$onclick.' />'.
+                              &mt('Yes').'</label></span></div>'.
+                              '<div class="LC_floatleft" style="display:'.$validsty.';" id="ltitools_'.$extra.'time_'.$i.'">'.
+                              '<span class="LC_nobreak">'.
+                              &mt("until at least [_1] $units{$extra} after launch",
+                                  '<input type="text" name="ltitools_'.$extra.'valid_'.$i.'" value="'.$currvalid.'" />').
+                              '</span></div><div style="padding:0;clear:both;margin:0;border:0"></div>';
+            }
+            $datatable .= '<span class="LC_nobreak">'.$lt{'icon'}.':&nbsp;';
+            if ($imgsrc) {
+                $datatable .= $imgsrc.
+                              '<label><input type="checkbox" name="ltitools_image_del"'.
+                              ' value="'.$item.'" />'.&mt('Delete?').'</label></span> '.
+                              '<span class="LC_nobreak">&nbsp;'.&mt('Replace:').'&nbsp;';
+            } else {
+                $datatable .= '('.&mt('if larger than 21x21 pixels, image will be scaled').')&nbsp;';
+            }
+            if ($switchserver) {
+                $datatable .= &mt('Upload to library server: [_1]',$switchserver);
+            } else {
+                $datatable .= '<input type="file" name="ltitools_image_'.$i.'" value="" />';
+            }
+            $datatable .= '</span></fieldset>';
+            my (%checkedfields,%rolemaps,$userincdom);
+            if (ref($settings->{$item}) eq 'HASH') {
+                if (ref($settings->{$item}->{'fields'}) eq 'HASH') {
+                    %checkedfields = %{$settings->{$item}->{'fields'}};
+                }
+                $userincdom = $settings->{$item}->{'incdom'};
+                if (ref($settings->{$item}->{'roles'}) eq 'HASH') {
+                    %rolemaps = %{$settings->{$item}->{'roles'}};
+                    $checkedfields{'roles'} = 1;
+                }
+            }
+            $datatable .= '<fieldset><legend>'.&mt('User data sent on launch').'</legend>'.
+                          '<span class="LC_nobreak">';
+            my $userfieldstyle = 'display:none;';
+            my $seluserdom = '';
+            my $unseluserdom = ' selected="selected"';
+            foreach my $field (@fields) {
+                my ($checked,$onclick,$id,$spacer);
+                if ($checkedfields{$field}) {
+                    $checked = ' checked="checked"';
+                }
+                if ($field eq 'user') {
+                    $id = ' id="ltitools_user_field_'.$i.'"';
+                    $onclick = ' onclick="toggleLTITools(this.form,'."'$field','$i'".')"';
+                    if ($checked) {
+                        $userfieldstyle = 'display:inline-block';
+                        if ($userincdom) {
+                            $seluserdom = $unseluserdom;
+                            $unseluserdom = '';
+                        }
+                    }
+                } else {
+                    $spacer = ('&nbsp;' x2);
+                }
+                $datatable .= '<label>'.
+                              '<input type="checkbox" name="ltitools_fields_'.$i.'" value="'.$field.'"'.$id.$checked.$onclick.' />'.
+                              $lt{$field}.'</label>'.$spacer;
+            }
+            $datatable .= '</span>';
+            $datatable .= '<div style="'.$userfieldstyle.'" id="ltitools_user_div_'.$i.'">'.
+                          '<span class="LC_nobreak"> : '.
+                          '<select name="ltitools_userincdom_'.$i.'">'.
+                          '<option value="">'.&mt('Select').'</option>'.
+                          '<option value="0"'.$unseluserdom.'>'.&mt('username').'</option>'.
+                          '<option value="1"'.$seluserdom.'>'.&mt('username:domain').'</option>'.
+                          '</select></span></div>';
+            $datatable .= '</fieldset>'.
+                          '<fieldset><legend>'.&mt('Role mapping').'</legend><table><tr>';
+            foreach my $role (@courseroles) {
+                my ($selected,$selectnone);
+                if (!$rolemaps{$role}) {
+                    $selectnone = ' selected="selected"';
+                }
+                $datatable .= '<td style="text-align: center">'.
+                              &Apache::lonnet::plaintext($role,'Course').'<br />'.
+                              '<select name="ltitools_roles_'.$role.'_'.$i.'">'.
+                              '<option value=""'.$selectnone.'>'.&mt('Select').'</option>';
+                foreach my $ltirole (@ltiroles) {
+                    unless ($selectnone) {
+                        if ($rolemaps{$role} eq $ltirole) {
+                            $selected = ' selected="selected"';
+                        } else {
+                            $selected = '';
+                        }
+                    }
+                    $datatable .= '<option value="'.$ltirole.'"'.$selected.'>'.$ltirole.'</option>';
+                }
+                $datatable .= '</select></td>';
+            }
+            $datatable .= '</tr></table></fieldset>';
+            my %courseconfig;
+            if (ref($settings->{$item}) eq 'HASH') {
+                if (ref($settings->{$item}->{'crsconf'}) eq 'HASH') {
+                    %courseconfig = %{$settings->{$item}->{'crsconf'}};
+                }
+            }
+            $datatable .= '<fieldset><legend>'.&mt('Configurable in course').'</legend><span class="LC_nobreak">';
+            foreach my $item ('label','title','target','linktext','explanation','append') {
+                my $checked;
+                if ($courseconfig{$item}) {
+                    $checked = ' checked="checked"';
+                }
+                $datatable .= '<label>'.
+                       '<input type="checkbox" name="ltitools_courseconfig_'.$i.'" value="'.$item.'"'.$checked.' />'.
+                       $lt{'crs'.$item}.'</label>&nbsp; '."\n";
+            }
+            $datatable .= '</span></fieldset>'.
+                          '<fieldset><legend>'.&mt('Custom items sent on launch').'</legend>'.
+                          '<table><tr><th>'.&mt('Action').'</th><th>'.&mt('Name').'</th><th>'.&mt('Value').'</th></tr>';
+            if (ref($settings->{$item}->{'custom'}) eq 'HASH') {
+                my %custom = %{$settings->{$item}->{'custom'}};
+                if (keys(%custom) > 0) {
+                    foreach my $key (sort(keys(%custom))) {
+                        $datatable .= '<tr><td><span class="LC_nobreak">'.
+                                      '<label><input type="checkbox" name="ltitools_customdel_'.$i.'" value="'.
+                                      $key.'" />'.&mt('Delete').'</label></span></td><td>'.$key.'</td>'.
+                                      '<td><input type="text" name="ltitools_customval_'.$key.'_'.$i.'"'.
+                                      ' value="'.$custom{$key}.'" /></td></tr>';
+                    }
+                }
+            }
+            $datatable .= '<tr><td><span class="LC_nobreak">'.
+                          '<label><input type="checkbox" name="ltitools_customadd" value="'.$i.'" />'.
+                          &mt('Add').'</label></span></td><td><input type="text" name="ltitools_custom_name_'.$i.'" />'.
+                          '</td><td><input type="text" name="ltitools_custom_value_'.$i.'" /></td></tr>';
+            $datatable .= '</table></fieldset></td></tr>'."\n";
+            $itemcount ++;
+        }
+    }
+    $css_class = $itemcount%2?' class="LC_odd_row"':'';
+    my $chgstr = ' onchange="javascript:reorderLTITools(this.form,'."'ltitools_add_pos'".');"';
+    $datatable .= '<tr '.$css_class.'><td><span class="LC_nobreak">'."\n".
+                  '<input type="hidden" name="ltitools_maxnum" value="'.$maxnum.'" />'."\n".
+                  '<select name="ltitools_add_pos"'.$chgstr.'>';
+    for (my $k=0; $k<$maxnum+1; $k++) {
+        my $vpos = $k+1;
+        my $selstr;
+        if ($k == $maxnum) {
+            $selstr = ' selected="selected" ';
+        }
+        $datatable .= '<option value="'.$k.'"'.$selstr.'>'.$vpos.'</option>';
+    }
+    $datatable .= '</select>&nbsp;'."\n".
+                  '<input type="checkbox" name="ltitools_add" value="1" />'.&mt('Add').'</span></td>'."\n".
+                  '<td colspan="2">'.
+                  '<fieldset><legend>'.&mt('Required settings').'</legend>'.
+                  '<span class="LC_nobreak">'.$lt{'title'}.':<input type="text" size="20" name="ltitools_add_title" value="" /></span> '."\n".
+                  ('&nbsp;'x2).
+                  '<span class="LC_nobreak">'.$lt{'version'}.':<select name="ltitools_add_version">'.
+                  '<option value="LTI-1p0" selected="selected">1.1</option></select></span> '."\n".
+                  ('&nbsp;'x2).
+                  '<span class="LC_nobreak">'.$lt{'msgtype'}.':<select name="ltitools_add_msgtype">'.
+                  '<option value="basic-lti-launch-request" selected="selected">Launch</option></select></span> '.
+                  '<span class="LC_nobreak">'.$lt{'sigmethod'}.':<select name="ltitools_add_sigmethod">'.
+                  '<option value="HMAC-SHA1" selected="selected">HMAC-SHA1</option>'.
+                  '<option value="HMAC-SHA256">HMAC-SHA256</option></select></span>'.
+                  '<br />'.
+                  '<span class="LC_nobreak">'.$lt{'url'}.':<input type="text" size="60" name="ltitools_add_url" value="" /></span> '."\n".
+                  ('&nbsp;'x2).
+                  '<span class="LC_nobreak">'.$lt{'lifetime'}.':<input type="text" size="5" name="ltitools_add_lifetime" value="300" /></span><br />';
+    if ($switchserver) {
+        $datatable .= '<span class="LC_nobreak">'.&mt('Key and Secret are required').' - '.$switchmessage.'</span>'."\n";
+    } else {
+        $datatable .= '<span class="LC_nobreak">'.$lt{'key'}.':<input type="text" size="25" name="ltitools_add_key" value="" autocomplete="off"'.$disabled.' /></span> '."\n".
+                      ('&nbsp;'x2).
+                      '<span class="LC_nobreak">'.$lt{'secret'}.':<input type="password" size="20" name="ltitools_secret_add" value="" autocomplete="new-password"'.$disabled.' />'.
+                      '<label><input type="checkbox" name="ltitools_add_visible" id="ltitools_add_visible" onclick="if (this.checked) { this.form.ltitools_secret_add.type='."'text'".' } else { this.form.ltitools_secret_add.type='."'password'".' }"'.$disabled.' />'.&mt('Visible input').'</label></span> '."\n";
+    }
+    $datatable .= '<br /><br />'.
+                  '</fieldset>'.
+                  '<fieldset><legend>'.&mt('Optional settings').'</legend>'.
+                  '<span class="LC_nobreak">'.&mt('Display target:');
+    my %defaultdisp;
+    $defaultdisp{'iframe'} = ' checked="checked"';
+    foreach my $disp ('iframe','tab','window') {
+        $datatable .= '<label><input type="radio" name="ltitools_add_target" value="'.$disp.'"'.$defaultdisp{$disp}.' />'.
+                      $lt{$disp}.'</label>'.('&nbsp;'x2);
+    }
+    $datatable .= ('&nbsp;'x4);
+    foreach my $dimen ('width','height') {
+        $datatable .= '<label>'.$lt{$dimen}.'&nbsp;'.
+                      '<input type="text" name="ltitools_add_'.$dimen.'" size="5" /></label>'.
+                      ('&nbsp;'x2);
+    }
+    $datatable .= '</span><br />'.
+                  '<div class="LC_left_float">'.$lt{'linktext'}.'<br />'.
+                  '<input type="text" name="ltitools_add_linktext" size="5" /></div>'.
+                  '<div class="LC_left_float">'.$lt{'explanation'}.'<br />'.
+                  '<textarea name="ltitools_add_explanation" rows="5" cols="40"></textarea>'.
+                  '</div><div style=""></div><br />';
+    my %units = (
+                  'passback' => 'days',
+                  'roster'   => 'seconds',
+                );
+    my %defaulttimes = (
+                     'passback' => '7',
+                     'roster'   => '300',
+                   );
+    foreach my $extra ('passback','roster') {
+        my $onclick = ' onclick="toggleLTITools(this.form,'."'$extra','add'".');"';
+        $datatable .= '<div class="LC_floatleft"><span class="LC_nobreak">'.$lt{$extra}.'&nbsp;'.
+                      '<label><input type="radio" name="ltitools_'.$extra.'_add" value="0" checked="checked"'.$onclick.' />'.
+                      &mt('No').'</label></span>'.('&nbsp;'x2).'<span class="LC_nobreak">'.
+                      '<label><input type="radio" name="ltitools_'.$extra.'_add" value="1"'.$onclick.' />'.
+                      &mt('Yes').'</label></span></div>'.
+                      '<div class="LC_floatleft" style="display:none;" id="ltitools_'.$extra.'time_add">'.
+                      '<span class="LC_nobreak">'.
+                      &mt("until at least [_1] $units{$extra} after launch",
+                          '<input type="text" name="ltitools_'.$extra.'valid_add" value="'.$defaulttimes{$extra}.'" />').
+                      '</span></div><div style="padding:0;clear:both;margin:0;border:0"></div>';
+    }
+    $datatable .= '<span class="LC_nobreak">'.$lt{'icon'}.':&nbsp;'.
+                  '('.&mt('if larger than 21x21 pixels, image will be scaled').')&nbsp;';
+    if ($switchserver) {
+        $datatable .= &mt('Upload to library server: [_1]',$switchserver);
+    } else {
+        $datatable .= '<input type="file" name="ltitools_add_image" value="" />';
+    }
+    $datatable .= '</span></fieldset>'.
+                  '<fieldset><legend>'.&mt('User data sent on launch').'</legend>'.
+                  '<span class="LC_nobreak">';
+    foreach my $field (@fields) {
+        my ($id,$onclick,$spacer);
+        if ($field eq 'user') {
+            $id = ' id="ltitools_user_field_add"';
+            $onclick = ' onclick="toggleLTITools(this.form,'."'$field','add'".')"';
+        } else {
+            $spacer = ('&nbsp;' x2);
+        }
+        $datatable .= '<label>'.
+                      '<input type="checkbox" name="ltitools_add_fields" value="'.$field.'"'.$id.$onclick.' />'.
+                      $lt{$field}.'</label>'.$spacer;
+    }
+    $datatable .= '</span>'.
+                  '<div style="display:none;" id="ltitools_user_div_add">'.
+                  '<span class="LC_nobreak"> : '.
+                  '<select name="ltitools_add_userincdom">'.
+                  '<option value="" selected="selected">'.&mt('Select').'</option>'.
+                  '<option value="0">'.&mt('username').'</option>'.
+                  '<option value="1">'.&mt('username:domain').'</option>'.
+                  '</select></span></div></fieldset>';
+    $datatable .= '<fieldset><legend>'.&mt('Role mapping').'</legend><table><tr>';
+    foreach my $role (@courseroles) {
+        my ($checked,$checkednone);
+        $datatable .= '<td style="text-align: center">'.
+                      &Apache::lonnet::plaintext($role,'Course').'<br />'.
+                      '<select name="ltitools_add_roles_'.$role.'">'.
+                      '<option value="" selected="selected">'.&mt('Select').'</option>';
+        foreach my $ltirole (@ltiroles) {
+            $datatable .= '<option value="'.$ltirole.'">'.$ltirole.'</option>';
+        }
+        $datatable .= '</select></td>';
+    }
+    $datatable .= '</tr></table></fieldset>'.
+                  '<fieldset><legend>'.&mt('Configurable in course').'</legend><span class="LC_nobreak">';
+    foreach my $item ('label','title','target','linktext','explanation','append') {
+        $datatable .= '<label>'.
+                      '<input type="checkbox" name="ltitools_add_courseconfig" value="'.$item.'" checked="checked" />'.
+                      $lt{'crs'.$item}.'</label>'.('&nbsp;' x2)."\n";
+    }
+    $datatable .= '</span></fieldset>'.
+                  '<fieldset><legend>'.&mt('Custom items sent on launch').'</legend>'.
+                  '<table><tr><th>'.&mt('Action').'</th><th>'.&mt('Name').'</th><th>'.&mt('Value').'</th></tr>'.
+                  '<tr><td><span class="LC_nobreak">'.
+                  '<label><input type="checkbox" name="ltitools_add_custom" value="1" />'.
+                  &mt('Add').'</label></span></td><td><input type="text" name="ltitools_add_custom_name" />'.
+                  '</td><td><input type="text" name="ltitools_add_custom_value" /></td></tr>'.
+                  '</table></fieldset>'."\n".
+                  '</td>'."\n".
+                  '</tr>'."\n";
+    $itemcount ++;
+    return $datatable;
+}
+
+sub ltitools_names {
+    my %lt = &Apache::lonlocal::texthash(
+                                          'title'          => 'Title',
+                                          'version'        => 'Version',
+                                          'msgtype'        => 'Message Type',
+                                          'sigmethod'      => 'Signature Method',
+                                          'url'            => 'URL',
+                                          'key'            => 'Key',
+                                          'lifetime'       => 'Nonce lifetime (s)',
+                                          'secret'         => 'Secret',
+                                          'icon'           => 'Icon',
+                                          'user'           => 'User',
+                                          'fullname'       => 'Full Name',
+                                          'firstname'      => 'First Name',
+                                          'lastname'       => 'Last Name',
+                                          'email'          => 'E-mail',
+                                          'roles'          => 'Role',
+                                          'window'         => 'Window',
+                                          'tab'            => 'Tab',
+                                          'iframe'         => 'iFrame',
+                                          'height'         => 'Height',
+                                          'width'          => 'Width',
+                                          'linktext'       => 'Default Link Text',
+                                          'explanation'    => 'Default Explanation',
+                                          'passback'       => 'Tool can return grades:',
+                                          'roster'         => 'Tool can retrieve roster:',
+                                          'crstarget'      => 'Display target',
+                                          'crslabel'       => 'Course label',
+                                          'crstitle'       => 'Course title',
+                                          'crslinktext'    => 'Link Text',
+                                          'crsexplanation' => 'Explanation',
+                                          'crsappend'      => 'Provider URL',
+                                        );
+    return %lt;
+}
+
+sub ltimenu_titles {
+    return &Apache::lonlocal::texthash(
+                                        fullname    => 'Full name',
+                                        coursetitle => 'Course title',
+                                        role        => 'Role',
+                                        logout      => 'Logout',
+                                        grades      => 'Grades',
+    );
+}
+
+sub print_menuitems {
+    my ($position,$cdom,$settings,$itemtext,$rowtotal,$crstype,$noedit) = @_;
+    unless ((ref($settings) eq 'HASH') && (ref($itemtext) eq 'HASH')) {
+        return;
+    }
+    if ($position eq 'top') {
+        my (%defaultmenu_options,@defaultmenu_order,$addcollection);
+        if ($settings->{'menucollections'} ne '') {
+            foreach my $item (split(/;/,$settings->{'menucollections'})) {
+                my ($num,$value) = split(/\%/,$item);
+                if ($num =~ /^\d+$/) {
+                    $defaultmenu_options{$num} = $num;
+                }
+            }
+            @defaultmenu_order = sort { $a <=> $b } keys(%defaultmenu_options);
+            $addcollection = $defaultmenu_order[-1] + 1;
+        } else {
+            $addcollection = 1;
+        }
+        $defaultmenu_options{$addcollection} = $addcollection;
+        my %items = (
+            'menudefault' => {
+                   text => '<b>'.&mt($itemtext->{'menudefault'}).'</b><br />'.
+                           &mt("(can be overriden in deep-link context)"),
+                   input => 'selectbox',
+                   options => \%defaultmenu_options,
+                   order  => \@defaultmenu_order,
+                   nullval => &mt('Standard (all menus shown)'),
+                            },
+        );
+        return &make_item_rows($cdom,\%items,['menudefault'],$settings,$rowtotal,$crstype,'menuitems',$noedit);
+    } else {
+        my %menu;
+        my $count = 0;
+        my $next = 1;
+        my ($datatable,$disabled);
+        if ($noedit) {
+            $disabled = ' disabled="disabled"';
+        }
+
+        my ($ordered,$cats) = &menuitems_categories();
+        my @order = @{$ordered};
+        my %categories = %{$cats};
+        my %menutitles = &menuitems_titles();
+        my %menufields = &menuitems_fields();
+
+        if ($settings->{'menucollections'} ne '') {
+            foreach my $item (split(/;/,$settings->{'menucollections'})) {
+                my ($num,$value) = split(/\%/,$item);
+                if ($num =~ /^\d+$/) {
+                    my @entries = split(/\&/,$value);
+                    foreach my $entry (@entries) {
+                        my ($name,$fields) = split(/=/,$entry);
+                        $menu{$num}{$name} = $fields;
+                    }
+                }
+            }
+            if (keys(%menu)) {
+                my @current = sort { $a <=> $b } keys(%menu);
+                $next += $current[-1];
+                foreach my $num (@current) {
+                    my %checked;
+                    my $on = ' checked="checked"';
+                    foreach my $key (keys(%{$menu{$num}})) {
+                        if (($key eq 'top') || ($key eq 'inline') || ($key eq 'foot') || ($key eq 'main')) {
+                            if ($menu{$num}{$key} eq 'y') {
+                                $checked{$key} = $on;
+                            }
+                        } else {
+                            foreach my $field (split(/,/,$menu{$num}{$key})) {
+                                if (exists($menufields{$field})) {
+                                    $checked{$field} = $on;
+                                }
+                            }
+                        }
+                    }
+                    if (ref($menu{$num}) eq 'HASH') {
+                        $datatable .= &item_table_row_start('<em class="LC_nav_bar">'.$num.'</em>',$count,'','','','LC_left_item');
+                        foreach my $category (@order) {
+                            if ((ref($categories{$category}) eq 'ARRAY') && (@{$categories{$category}} > 0)) {
+                                $datatable .= '<fieldset style="vertical-align:top; display:inline-block"><legend>'.$menutitles{$category}.'</legend>'."\n";
+                                if ($category eq 'text') {
+                                    $datatable .= '<i>'.&mt('Header').'</i><br />';
+                                }
+                                foreach my $field (@{$categories{$category}}) {
+                                    if ($field eq 'disc') {
+                                        $datatable .= '<br /><i>'.&mt('Footer').'</i><br />';
+                                    }
+                                    $datatable .= '<label><input type="checkbox" name="menucollections_'.$num.'" value="'.$field.'"'.$checked{$field}.$disabled.' />'.
+                                                  $menufields{$field}.'</label><br />';
+                                }
+                                $datatable .= '</fieldset>';
+                            }
+                        }
+                        $datatable .= &item_table_row_end();
+                        $count ++;
+                    }
+                }
+            }
+        } elsif ($noedit) {
+            my $text = &mt('No menu collections defined for this course.');
+            $datatable .= &item_table_row_start($text,$count);
+        }
+        unless ($noedit) {
+            my $add = '<label><input type="checkbox" name="menucollections_add" id="menucollections_add" value="'.$next.'" '.
+                      'onclick="javascript:toggleAddmenucoll();" />'.&mt('Add').'</label>';
+            $datatable .= &item_table_row_start($add,$count,'','','','LC_left_item');
+            foreach my $category (@order) {
+                if ((ref($categories{$category}) eq 'ARRAY') && (@{$categories{$category}} > 0)) {
+                    $datatable .= '<fieldset id="addmenucoll_'.$category.'" style="display:none; vertical-align:top;"><legend>'.$menutitles{$category}.'</legend>'."\n";
+                    foreach my $field (@{$categories{$category}}) {
+                        $datatable .= '<label><input type="checkbox" class="LC_menucoll_add" name="menucollections_'.$next.'" value="'.$field.'"'.$disabled.' />'.
+                                      $menufields{$field}.'</label><br />';
+                    }
+                    $datatable .= '</fieldset>';
+                }
+            }
+            $datatable .= &item_table_row_end();
+            $count ++;
+        }
+        return $datatable;
+    }
+}
+
+sub menuitems_abbreviations {
+    my %briefcats = (
+                     text => 'pt',
+                     links => 'p',
+                     list => 'ps',
+                     inline => 's',
+                    );
+    return %briefcats;
+}
+
+sub menuitems_categories {
+    my @order = ('shown','text','links','list','inline');
+    my %categories = (
+                       shown => ['top','inline','foot','main'],
+                       text  => ['name','role','crs','disc','fdbk'],
+                       links => ['pers','logo','comm','roles','help','logout'],
+                       list => ['about','prefs','port','wish','anno','rss'],
+                       inline => ['cont','grades','chat','people','groups','resv','syll','feeds'],
+                     );
+    return (\@order,\%categories);
+}
+
+sub menuitems_titles {
+    return &Apache::lonlocal::texthash (
+        shown => 'Hierarchy',
+        text  => 'Text',
+        links => 'Header links',
+        list => 'Drop-down list',
+        inline => 'Inline links',
+    );
+}
+
+sub menuitems_fields {
+    return &Apache::lonlocal::texthash (
+               top => 'Display header',
+               inline => 'Display inline menu',
+               foot => 'Display footer',
+               main => 'Access to main menu',
+               pers => 'Personal',
+               logo => 'LON-CAPA',
+               comm => 'Messages',
+               roles => 'Roles/Courses',
+               help => 'Help',
+               logout => 'Logout',
+               name => 'Fullname',
+               crs => 'Course Title',
+               role => 'Current Role',
+               disc => 'Discussion',
+               fdbk => 'Feedback',
+               about => 'Information',
+               prefs => 'Preferences',
+               port => 'Portfolio',
+               wish => 'Stored Links',
+               anno => 'Calendar',
+               rss => 'RSS Feeds',
+               cont => 'Contents',
+               grades => 'Grades',
+               chat => 'Chat',
+               people => 'People',
+               groups => 'Groups',
+               resv => 'Reservations',
+               syll => 'Syllabus',
+               feeds => 'Feeds',
+    );
+}
+
+sub menucollections_display {
+    my ($collections) = @_;
+    my %menu;
+    my ($ordered,$cats) = &menuitems_categories();
+    my @order = @{$ordered};
+    my %categories = %{$cats};
+    my %menutitles = &menuitems_titles();
+    my %menufields = &menuitems_fields();
+    foreach my $item (split(/;/,$collections)) {
+        my ($num,$value) = split(/\%/,$item);
+        if ($num =~ /^\d+$/) {
+            my @entries = split(/\&/,$value);
+            foreach my $entry (@entries) {
+                my ($name,$fields) = split(/=/,$entry);
+                $menu{$num}{$name} = $fields;
+            }
+        }
+    }
+    my $output = '';
+    if (keys(%menu)) {
+        my @current = sort { $a <=> $b } keys(%menu);
+        foreach my $num (@current) {
+            my %checked;
+            foreach my $key (keys(%{$menu{$num}})) {
+                if (($key eq 'top') || ($key eq 'inline') || ($key eq 'foot') || ($key eq 'main')) {
+                    if ($menu{$num}{$key} eq 'y') {
+                        $checked{$key} = 1;
+                    }
+                } else {
+                    foreach my $field (split(/,/,$menu{$num}{$key})) {
+                        if (exists($menufields{$field})) {
+                            $checked{$field} = 1;
+                        }
+                    }
+                }
+            }
+            if (ref($menu{$num}) eq 'HASH') {
+                $output .= '<fieldset><legend>'.&mt('Collection [_1]',$num).'</legend>';
+                foreach my $category (@order) {
+                    if ((ref($categories{$category}) eq 'ARRAY') && (@{$categories{$category}} > 0)) {
+                        $output .= '<fieldset style="vertical-align:top; display:inline-block">'.
+                                   '<legend>'.$menutitles{$category}.'</legend>'."\n";
+                        if ($category eq 'text') {
+                            $output .= '<b>'.&mt('Header Text').'</b><br /><br />';
+                        }
+                        foreach my $field (@{$categories{$category}}) {
+                            if ($field eq 'disc') {
+                                $output .= '<br /><b>'.&mt('Footer Text').'</b><br /><br />';
+                            }
+                            if ($checked{$field}) {
+                                $output .= &Apache::lonhtmlcommon::confirm_success($menufields{$field});
+                            } else {
+                                $output .= &Apache::lonhtmlcommon::confirm_success($menufields{$field},1);
+                            }
+                            $output .= '<br />';
+                        }
+                        $output .= '</fieldset>';
+                    }
+                }
+                $output .= '</fieldset>';
+            }
+        }
+    }
+    return $output;
+}
+
+sub print_linkprotection {
+    my ($cdom,$cnum,$settings,$rowtotal,$crstype,$noedit,$context) = @_;
+
+    my %linkprotection;
+    my $count = 0;
+    my $next = 1;
+    my ($datatable,$disabled,$css_class,$dest);
+    if ($noedit) {
+        $disabled = ' disabled="disabled"';
+    }
+    my %desc = &linkprot_names();
+    my %lt = &Apache::lonlocal::texthash (
+       'requ'      => 'Required settings',
+       'opti'      => 'Optional settings',
+    );
+    my $itemcount = 0;
+
+    my $ltiauth;
+    if ($context eq 'domain') {
+        $ltiauth = 1;
+    } else {
+        if (exists($env{'course.'.$env{'request.course.id'}.'.internal.ltiauth'})) {
+            $ltiauth = $env{'course.'.$env{'request.course.id'}.'.internal.ltiauth'};
+        } else {
+            my %domdefs = &Apache::lonnet::get_domain_defaults($cdom);
+            $ltiauth = $domdefs{'crsltiauth'};
+        }
+    }
+    if ($context eq 'domain') {
+        $dest = '/adm/domainprefs';
+    } else {
+        $dest = '/adm/courseprefs';
+    }
+
+    my ($switchserver,$switchmessage);
+    $switchserver = &check_switchserver($cdom,$cnum,$context,$dest);
+    if ($switchserver) {
+        if ($context eq 'domain') {
+            $switchmessage = &mt("submit from domain's primary library server: [_1].",$switchserver);
+        } elsif ($crstype eq 'Community') {
+           $switchmessage = &mt("submit from community's home server: [_1].",$switchserver);
+        } else {
+            $switchmessage = &mt("submit from course's home server: [_1].",$switchserver);
+        }
+    }
+
+    if ((ref($settings) eq 'HASH') && (ref($settings->{'linkprot'}) eq 'HASH')) {
+        if (keys(%{$settings->{'linkprot'}})) {
+            my @current = sort { $a <=> $b } keys(%{$settings->{'linkprot'}});
+            $next += $current[-1];
+            for (my $i=0; $i<@current; $i++) {
+                my $num = $current[$i];
+                my %values;
+                if (ref($settings->{'linkprot'}->{$num}) eq 'HASH') {
+                    %values = %{$settings->{'linkprot'}->{$num}};
+                } else {
+                    next;
+                }
+                my $selected;
+                if (($values{'version'} eq 'LTI-1p0') || ($values{'version'} eq '')) {
+                    $selected = ' selected="selected"';
+                }
+                $css_class = $itemcount%2?' class="LC_odd_row"':'';
+                $datatable .=
+                    '<tr '.$css_class.'><td><span class="LC_nobreak">'.
+                    '<label><input type="checkbox" name="linkprot_del" value="'.$i.'"'.$disabled.' />'.
+                    &mt('Delete?').'</label></span></td><td>';
+                my ($usersty,$onclickrequser,%checkedrequser,$onclickreturnurl,%checkedreturnurl,
+                    $onclickpassback,%checkedpassback,$passbacksty,%checkedpassbackfmt);
+                $passbacksty = 'none';
+                $onclickpassback = ' onclick="toggleLinkProtExtra(this.form,'."'passback','passbackparam','1','inline-block','$i'".');"';
+                %checkedpassback = (
+                    'no' => ' checked="checked"',
+                    'yes' => '',
+                );
+                %checkedpassbackfmt = (
+                    '1p1' => ' checked="checked"',
+                    '1p0' => '',
+                );
+                if ($values{'passback'} ne '') {
+                    $passbacksty = 'inline-block';
+                    $checkedpassback{'yes'} = ' checked="checked"';
+                    $checkedpassback{'no'} = '';
+                    if ($values{'passbackformat'} eq '1.0') {
+                        $checkedpassbackfmt{'1p0'} = ' checked="checked"';
+                        $checkedpassbackfmt{'1p1'} = '';
+                    }
+                }
+                if ($ltiauth) {
+                    $usersty = 'display:none';
+                    $onclickrequser = ' onclick="toggleLinkProtExtra(this.form,'."'requser','optional','1','block','$i'".');"';
+                    %checkedrequser = (
+                        no => ' checked="checked"',
+                        yes  => '',
+                    );
+                    if ($values{'requser'}) {
+                        $checkedrequser{'yes'} = $checkedrequser{'no'};
+                        $checkedrequser{'no'} = '';
+                    }
+                    $datatable .= '<fieldset><legend>'.$lt{'requ'}.'</legend>';
+                    if ($values{'requser'}) {
+                        $usersty = 'display:inline-block';
+                    }
+                }
+                $onclickreturnurl = ' onclick="toggleLinkProtExtra(this.form,'."'returnurl','divurlparam','1','inline-block','$i'".');"';
+                %checkedreturnurl = (
+                    no => ' checked="checked"',
+                    yes  => '',
+                );
+                if ($values{'returnurl'} ne '') {
+                    $checkedreturnurl{'yes'} = $checkedreturnurl{'no'};
+                    $checkedreturnurl{'no'} = '';
+                }
+                $datatable .=
+                    '<span class="LC_nobreak">'.$desc{'name'}.
+                    ':<input type="text" size="15" name="linkprot_name_'.$i.'" value="'.$values{'name'}.'" autocomplete="off"'.$disabled.' /></span> '.
+                    ('&nbsp;'x2).
+                    '<span class="LC_nobreak">'.$desc{'version'}.':<select name="linkprot_version_'.$i.'"'.$disabled.'>'.
+                    '<option value="LTI-1p0" '.$selected.'>1.1</option></select></span> '."\n".
+                    ('&nbsp;'x2).
+                    '<span class="LC_nobreak">'.$desc{'lifetime'}.':<input type="text" name="linkprot_lifetime_'.$i.'"'.
+                    ' value="'.$values{'lifetime'}.'" size="3"'.$disabled.' /></span><br /><br />';
+                if ($values{'key'} ne '') {
+                    $datatable .= '<span class="LC_nobreak">'.$desc{'key'};
+                    if ($noedit) {
+                        $datatable .= ': ['.&mt('not shown').']';
+                    } elsif ($switchserver) {
+                        $datatable .= ': ['.&mt('[_1] to view/edit',$switchserver).']';
+                    } else {
+                        $datatable .= ':<input type="text" size="25" name="linkprot_key_'.$i.'" value="'.$values{'key'}.'" autocomplete="off"'.$disabled.' />';
+                    }
+                    $datatable .= '</span> '.('&nbsp;'x2);
+                } elsif (!$switchserver) {
+                    $datatable .= '<span class="LC_nobreak">'.$desc{'key'}.':'.
+                                  '<input type="text" size="25" name="linkprot_key_'.$i.'" value="'.$values{'key'}.'" autocomplete="off"'.$disabled.' />'.
+                                  '</span> '.('&nbsp;'x2);
+                }
+                if ($switchserver) {
+                    if ($values{'usable'} ne '') {
+                        $datatable .= '<div id="linkprot_divcurrsecret_'.$i.'" style="display:inline-block" /><span class="LC_nobreak">'.
+                                      $desc{'secret'}.': ['.&mt('not shown').'] '.('&nbsp;'x2).'</span></div>'.
+                                      '<span class="LC_nobreak">'.&mt('Change secret?').
+                                      '<label><input type="radio" value="0" name="linkprot_changesecret_'.$i.'" onclick="javascript:toggleChgSecret(this.form,'."'$i','secret','linkprot'".');" checked="checked"'.$disabled.' />'.&mt('No').'</label>'.
+                                      ('&nbsp;'x2).
+                                      '<label><input type="radio" value="1" name="linkprot_changesecret_'.$i.'" onclick="javascript:toggleChgSecret(this.form,'."'$i','secret','linkprot'".');" '.$disabled.' />'.&mt('Yes').'</label>'.('&nbsp;'x2).
+                                      '</span><div id="linkprot_divchgsecret_'.$i.'" style="display:none" />'.
+                                      '<span class="LC_nobreak"> - '.$switchmessage.'</span>'.
+                                      '</div>';
+                    } elsif ($values{'key'} eq '') {
+                        $datatable .= '<span class="LC_nobreak">'.&mt('Key and Secret are required').' - '.$switchmessage.'</span>'."\n";
+                    } else {
+                        $datatable .= '<span class="LC_nobreak">'.&mt('Secret required').' - '.$switchmessage.'</span>'."\n";
+                    }
+                    $datatable .= '<input type="hidden" name="linkprot_id_'.$i.'" value="'.$num.'" />';
+                } else {
+                    if ($values{'usable'} ne '') {
+                        $datatable .= '<div id="linkprot_divcurrsecret_'.$i.'" style="display:inline-block" /><span class="LC_nobreak">'.
+                                      $desc{'secret'}.': ['.&mt('not shown').'] '.('&nbsp;'x2).'</span></div>'.
+                                      '<span class="LC_nobreak">'.&mt('Change?').
+                                      '<label><input type="radio" value="0" name="linkprot_changesecret_'.$i.'" onclick="javascript:toggleChgSecret(this.form,'."'$i','secret','linkprot'".');" checked="checked"'.$disabled.' />'.&mt('No').'</label>'.
+                                      ('&nbsp;'x2).
+                                      '<label><input type="radio" value="1" name="linkprot_changesecret_'.$i.'" onclick="javascript:toggleChgSecret(this.form,'."'$i','secret','linkprot'".');"'.$disabled.' />'.&mt('Yes').
+                                      '</label>&nbsp;&nbsp;</span><div id="linkprot_divchgsecret_'.$i.'" style="display:none" />'.
+                                      '<span class="LC_nobreak">'.&mt('New Secret').':'.
+                                      '<input type="password" size="20" name="linkprot_secret_'.$i.'" value="" autocomplete="new-password"'.$disabled.' />'.
+                                      '<label><input type="checkbox" name="linkprot_visible_'.$i.'" id="linkprot_visible_'.$i.'" onclick="if (this.checked) { this.form.linkprot_secret_'.$i.'.type='."'text'".' } else { this.form.linkprot_secret_'.$i.'.type='."'password'".' }"'.$disabled.' />'.&mt('Visible input').'</label>'.
+                                      '<input type="hidden" name="linkprot_id_'.$i.'" value="'.$num.'" /></span></div>';
+                    } else {
+                        $datatable .=
+                            '<span class="LC_nobreak">'.$desc{'secret'}.':'.
+                            '<input type="password" size="20" name="linkprot_secret_'.$i.'" value="" autocomplete="new-password"'.$disabled.' />'.
+                            '<label><input type="checkbox" name="linkprot_visible_'.$i.'" id="linkprot_visible_'.$i.'" onclick="if (this.checked) { this.form.linkprot_secret_'.$i.'.type='."'text'".' } else { this.form.linkprot_secret_'.$i.'.type='."'password'".' }"'.$disabled.' />'.&mt('Visible input').'</label>'.
+                            '<input type="hidden" name="linkprot_id_'.$i.'" value="'.$num.'" /></span>';
+                    }
+                }
+                $datatable .= '<br /><br />'.
+                              '<span class="LC_nobreak">'.$desc{'passback'}.'?'.
+                              '<label><input type="radio" name="linkprot_passback_'.$i.'" value="0"'.
+                              $onclickpassback.$checkedpassback{'no'}.$disabled.' />'.&mt('No').'</label>&nbsp;'.
+                              '<label><input type="radio" name="linkprot_passback_'.$i.'" value="1"'.
+                              $onclickpassback.$checkedpassback{'yes'}.$disabled.' />'.&mt('Yes').'</label></span><br />'.
+                              '<div id="linkprot_passbackparam_'.$i.'" class="LC_floatleft" style="display:'.$passbacksty.'" />'.
+                              '<span class="LC_nobreak">'.&mt('Grade format').
+                              '<label><input type="radio" name="linkprot_passbackformat_'.$i.'" value="1.1"'.$checkedpassbackfmt{'1p1'}.' />'.
+                              &mt('Outcomes Service (1.1)').'</label>'.('&nbsp;'x2).
+                              '<label><input type="radio" name="linkprot_passbackformat_'.$i.'" value="1.0"'.$checkedpassbackfmt{'1p0'}.'/>'.
+                              &mt('Outcomes Extension (1.0)').'</label></span></div>'.
+                              '<div style="padding:0;clear:both;margin:0;border:0"></div>'.
+                              '<br />'.
+                              '<span class="LC_nobreak">'.$desc{'returnurl'}.'?'.
+                              '<label><input type="radio" name="linkprot_returnurl_'.$i.'" value="0"'.
+                              $onclickreturnurl.$checkedreturnurl{'no'}.$disabled.' />'.&mt('No').'</label>&nbsp;'.
+                              '<label><input type="radio" name="linkprot_returnurl_'.$i.'" value="1"'.
+                              $onclickreturnurl.$checkedreturnurl{'yes'}.$disabled.' />'.&mt('Yes').'</label></span>'.
+                              '&nbsp;&nbsp;</span><div id="linkprot_divurlparam_'.$i.'" style="display:none" />'.
+                              '<span class="LC_nobreak">'.&mt('Parameter name').':'.
+                              '<input type="text" size="15" name="linkprot_urlparam_'.$i.'" value="'.$values{'returnurl'}.'" autocomplete="off"'.$disabled.' />'.
+                              '</span></div> ';
+                if ($ltiauth) {
+                    $datatable .= ('&nbsp;'x2).'<span class="LC_nobreak">'.$desc{'requser'}.'?'.
+                                  '<label><input type="radio" name="linkprot_requser_'.$i.'" value="0"'.
+                                  $onclickrequser.$checkedrequser{'no'}.$disabled.' />'.&mt('No').'</label>&nbsp;'.
+                                  '<label><input type="radio" name="linkprot_requser_'.$i.'" value="1"'.
+                                  $onclickrequser.$checkedrequser{'yes'}.$disabled.' />'.&mt('Yes').'</label></span>'.
+                        '</fieldset>'.
+                        '<fieldset id="linkprot_optional_'.$i.'" style="'.$usersty.'"><legend>'.$lt{'opti'}.'</legend>'.
+                        &linkprot_options($i,$itemcount,$disabled,\%values,\%desc).
+                        '</fieldset>';
+                }
+                $datatable .= '</td></tr>';
+                $itemcount ++;
+            }
+        }
+    }
+    $css_class = $itemcount%2?' class="LC_odd_row"':'';
+    $datatable .= '<tr '.$css_class.'><td><span class="LC_nobreak">'."\n".
+                  '<input type="hidden" name="linkprot_maxnum" value="'.$next.'" />'."\n".
+                  '<input type="checkbox" name="linkprot_add" value="1"'.$disabled.' />'.&mt('Add').'</span></td>'."\n".
+                  '<td width="100%">';
+    my ($usersty,$onclickrequser,%checkedrequser,$onclickreturnurl,%checkedreturnurl,
+       $onclickpassback,%checkedpassback,%checkedpassbackfmt);
+    if ($ltiauth) {
+        $usersty = 'display:none';
+        $onclickrequser = ' onclick="toggleLinkProtExtra(this.form,'."'requser','optional','1','block','add'".');"';
+        %checkedrequser = (
+            no => ' checked="checked"',
+            yes  => '',
+        );
+        $datatable .= '<fieldset><legend>'.$lt{'requ'}.'</legend>';
+    }
+    $onclickpassback = ' onclick="toggleLinkProtExtra(this.form,'."'passback','passbackparam','1','inline-block','add'".');"';
+    %checkedpassback = (
+        'no' => ' checked="checked"',
+        'yes' => '',
+    );
+    %checkedpassbackfmt = (
+        '1p1' => ' checked="checked"',
+        '1p0' => '',
+    );
+    $onclickreturnurl = ' onclick="toggleLinkProtExtra(this.form,'."'returnurl','divurlparam','1','inline-block','add'".');"';
+    %checkedreturnurl = (
+        no => ' checked="checked"',
+        yes => '',
+    );
+    $datatable .= '<span class="LC_nobreak">'.$desc{'name'}.
+                  ':<input type="text" size="15" name="linkprot_name_add" value="" autocomplete="off"'.$disabled.' /></span> '."\n".
+                  ('&nbsp;'x2).
+                  '<span class="LC_nobreak">'.$desc{'version'}.':<select name="linkprot_version_add"'.$disabled.'>'.
+                  '<option value="LTI-1p0" selected="selected">1.1</option></select></span> '."\n".
+                  ('&nbsp;'x2).
+                  '<span class="LC_nobreak">'.$desc{'lifetime'}.':<input type="text" size="3" name="linkprot_lifetime_add" value="300"'.$disabled.' /></span> '."\n".
+                  '<br /><br />';
+    if ($switchserver) {
+        $datatable .= '<span class="LC_nobreak">'.&mt('Key and Secret are required').' - '.$switchmessage.'</span>'."\n";
+    } else {
+        $datatable .= '<span class="LC_nobreak">'.$desc{'key'}.':<input type="text" size="25" name="linkprot_key_add" value="" autocomplete="off"'.$disabled.' /></span> '."\n".
+                      ('&nbsp;'x2).
+                      '<span class="LC_nobreak">'.$desc{'secret'}.':<input type="password" size="20" name="linkprot_secret_add" value="" autocomplete="new-password"'.$disabled.' />'.
+                      '<label><input type="checkbox" name="linkprot_visible_add" id="linkprot_visible_add" onclick="if (this.checked) { this.form.linkprot_secret_add.type='."'text'".' } else { this.form.linkprot_secret_add.type='."'password'".' }"'.$disabled.' />'.&mt('Visible input').'</label></span> '."\n";
+    }
+    $datatable .= '<br /><br />'.
+                  '<span class="LC_nobreak">'.$desc{'passback'}.'?'.
+                  '<label><input type="radio" name="linkprot_passback_add" value="0"'.
+                  $onclickpassback.$checkedpassback{'no'}.$disabled.' />'.&mt('No').'</label>&nbsp;'.
+                  '<label><input type="radio" name="linkprot_passback_add" value="1"'.
+                  $onclickpassback.$checkedpassback{'yes'}.$disabled.' />'.&mt('Yes').'</label></span>'.
+                  '<br /><div id="linkprot_passbackparam_add" class="LC_floatleft" style="display:none" />'.
+                  '<span class="LC_nobreak">'.&mt('Grade format').
+                  '<label><input type="radio" name="linkprot_passbackformat_add" value="1.1"'.$checkedpassbackfmt{'1p1'}.$disabled.' />'.
+                  &mt('Outcomes Service (1.1)').'</label>'.('&nbsp;'x2).
+                  '<label><input type="radio" name="linkprot_passbackformat_add" value="1.0"'.$checkedpassbackfmt{'1p0'}.$disabled.' />'.
+                  &mt('Outcomes Extension (1.0)').'</label></span></div>'.
+                  '<div style="padding:0;clear:both;margin:0;border:0"></div>'.
+                  '<br />'.
+                  '<span class="LC_nobreak">'.$desc{'returnurl'}.'?'.
+                  '<label><input type="radio" name="linkprot_returnurl_add" value="0"'.
+                  $onclickreturnurl.$checkedreturnurl{'no'}.$disabled.' />'.&mt('No').'</label>&nbsp;'.
+                  '<label><input type="radio" name="linkprot_returnurl_add" value="1"'.
+                  $onclickreturnurl.$checkedreturnurl{'yes'}.$disabled.' />'.&mt('Yes').'</label></span>'.
+                  '&nbsp;&nbsp;</span><div id="linkprot_divurlparam_add" style="display:none" />'.
+                  '<span class="LC_nobreak">'.&mt('Parameter name').':'.
+                  '<input type="text" size="15" name="linkprot_urlparam_add" value="" autocomplete="off"'.$disabled.' />'.
+                  '</span></div> ';
+    if ($ltiauth) {
+        $datatable .= ('&nbsp;'x2).'<span class="LC_nobreak">'.$desc{'requser'}.'?'.
+                      '<label><input type="radio" name="linkprot_requser_add" value="0"'.
+                      $onclickrequser.$checkedrequser{'no'}.$disabled.' />'.&mt('No').'</label>&nbsp;'.
+                      '<label><input type="radio" name="linkprot_requser_add" value="1"'.
+                      $onclickrequser.$checkedrequser{'yes'}.$disabled.' />'.&mt('Yes').'</label></span>'.
+                      '</fieldset>'.
+                      '<fieldset id="linkprot_optional_add" style="'.$usersty.'"><legend>'.$lt{'opti'}.'</legend>'.
+                      &linkprot_options('add',$itemcount,$disabled,{},\%desc).
+                     '</fieldset>';
+    }
+    $datatable .= '</td></tr>';
+    $$rowtotal ++;
+    return $datatable;
+}
+
+sub linkprot_names {
+    return &Apache::lonlocal::texthash(
+                                          'version'   => 'LTI Version',
+                                          'key'       => 'Key',
+                                          'lifetime'  => 'Nonce lifetime (s)',
+                                          'name'      => 'Launcher Application',
+                                          'secret'    => 'Secret',
+                                          'passback'  => 'Can return grades to Launcher',
+                                          'returnurl' => 'Launcher return URL',
+                                          'requser'   => 'Use identity',
+                                          'email'     => 'Email address',
+                                          'sourcedid' => 'User ID',
+                                          'other'     => 'Other',
+                                          'auth'      => 'Display LON-CAPA login page',
+                                          'reject'    => 'Discontinue launch process',
+                                        );
+}
+
+sub check_switchserver {
+    my ($cdom,$cnum,$context,$dest) = @_;
+    my ($allowed,$switchserver,$home);
+    if ($context eq 'domain') {
+        $home = &Apache::lonnet::domain($cdom,'primary');
+    } else {
+        $home = &Apache::lonnet::homeserver($cnum,$cdom);
+    }
+    unless (($home eq 'no_host') || ($home eq '')) {
+        my @ids=&Apache::lonnet::current_machine_ids();
+        foreach my $id (@ids) { if ($id eq $home) { $allowed=1; } }
+        if (!$allowed) {
+            $switchserver='<a href="/adm/switchserver?otherserver='.$home.'&amp;role='.
+                          &HTML::Entities::encode($env{'request.role'},'\'<>"&').
+                          '&amp;destinationurl='.$dest.'">'.&mt('Switch Server').'</a>';
+        }
+    }
+    return $switchserver;
+}
+
+sub linkprot_options {
+    my ($num,$itemcount,$disabled,$current,$desc) = @_;
+    my %lt;
+    if (ref($desc) eq 'HASH') {
+        %lt = %{$desc};
+    }
+    my $userfieldsty = 'none';
+    my (%checked,$userfield);
+    $checked{'sourcedid'} = ' checked="checked"';
+    $checked{'reject'} = ' checked="checked"';
+    if (ref($current) eq 'HASH') {
+        if (($current->{'mapuser'} ne '') && ($current->{'mapuser'} ne 'lis_person_sourcedid')) {
+            $checked{'sourcedid'} = '';
+            if ($current->{'mapuser'} eq 'lis_person_contact_email_primary') {
+                $checked{'email'} = ' checked="checked"';
+            } else {
+                $checked{'other'} = ' checked="checked"';
+                $userfield = $current->{'mapuser'};
+                $userfieldsty = 'inline-block';
+            }
+        }
+        if (($current->{'notstudent'} ne '') && ($current->{'notstudent'} ne 'reject')) {
+            $checked{'reject'} = '';
+            $checked{'auth'} = ' checked="checked"';
+        }
+    }
+    my $onclickuser = ' onclick="toggleLinkProtExtra(this.form,'."'mapuser','userfield','other','inline-block','$num'".');"';
+    my $output = '<div class="LC_floatleft"><span class="LC_nobreak">'.
+                 &mt('Source of LON-CAPA username in LTI request').':&nbsp;';
+    foreach my $option ('sourcedid','email','other') {
+        $output .= '<label><input type="radio" name="linkprot_mapuser_'.$num.'" value="'.$option.'"'.
+                   $checked{$option}.$onclickuser.$disabled.' />'.$lt{$option}.'</label>'.
+                   ($option eq 'other' ? '' : ('&nbsp;'x2) );
+    }
+    $output .= '</span></div>'.
+               '<div class="LC_floatleft" style="display:'.$userfieldsty.';" id="linkprot_userfield_'.$num.'">'.
+               '<input type="text" name="linkprot_customuser_'.$num.'" '.
+               'value="'.$userfield.'"'.$disabled.' /></div>';
+    $output .= '<br />'.
+               '<div class="LC_floatleft"><span class="LC_nobreak">'.
+               &mt('Action when username is not for an enrolled student').':&nbsp;';
+    foreach my $option ('reject','auth') {
+        $output .= '<label><input type="radio" name="linkprot_notstudent_'.$num.'" value="'.$option.'"'.
+                   $checked{$option}.$disabled.' />'.$lt{$option}.'</label>'.
+                   ($option eq 'auth' ? '' : ('&nbsp;'x2) );
+    }
+    $output .= '</span></div>';
+    return $output;
+}
+
+sub print_extresource_row {
+    my ($item,$config,$curr,$noedit) = @_;
+    my $onchange;
+    unless ($noedit) {
+        $onchange = ' onchange="javascript:toggleExtRes();"';
+    }
+    my $id = 'LC_'.$item;
+    my ($selected,$reuse,$width,$height) = split(/:/,$curr);
+    my $output = &select_from_options($item,$config->{'order'},
+                                      $config->{'options'},$selected,
+                                      $config->{'nullval'},
+                                      undef,undef,$onchange,$noedit,$id);
+    my ($checked,$reusesty,$sizesty);
+    if ($reuse) {
+        $checked = ' checked="checked"';
+    }
+    $reusesty = 'none';
+    $sizesty = 'none';
+    if (($selected eq 'window') || ($selected eq 'tab')) {
+        $reusesty = 'inline-block';
+        if ($selected eq 'window') {
+            $sizesty = 'inline-block';
+        }
+    }
+    $output .= '<div id="LC_extresreusediv" style="display:'.$reusesty.';">'.
+               '<span class="LC_nobreak">'.
+               '<label><input type="checkbox" name="extwintabreuse" value="1"'.$checked.'>'.
+               &mt('Re-use tab/window').'</label>'.
+               '</span></div>'.
+               '<fieldset id="LC_extressize" style="display:'.$sizesty.';">'.
+               '<legend>'.&mt('Window size (optional)').'</legend>'.
+               '<span class="LC_nobreak">'.
+               &mt('width').':<input type="text" name="extreswinwidth" value="'.$width.'" size="3" />px'.
+               ('&nbsp;' x 3).
+               &mt('height').':<input type="text" name="extreswinheight" value="'.$height.'" size="3" />px'.
+               '</span></fieldset>';
+    return $output;
+}
+
 sub print_other {
     my ($cdom,$settings,$allitems,$rowtotal,$crstype,$noedit) = @_;
     unless ((ref($settings) eq 'HASH') && (ref($allitems) eq 'ARRAY')) {
@@ -4228,7 +7347,7 @@ sub print_other {
                             input => 'textbox',
                             size  => '30',
                            };
-    my $output = &make_item_rows($cdom,\%items,\@ordered,$settings,$rowtotal,$crstype,'other',$noedit);
+    return &make_item_rows($cdom,\%items,\@ordered,$settings,$rowtotal,$crstype,'other',$noedit);
 }
 
 sub get_other_items {
@@ -4257,17 +7376,23 @@ sub get_other_items {
 }
 
 sub item_table_row_start {
-    my ($text,$count,$add_class,$colspan) = @_;
+    my ($text,$count,$add_class,$colspan,$leftclass,$rightclass) = @_;
     my $output;
     my $css_class = ($count % 2) ? 'LC_odd_row' : 'LC_even_row';
     $css_class = (join(' ',$css_class,$add_class)) unless ($add_class eq '');
+    if ($leftclass eq '') {
+        $leftclass = 'LC_left_item';
+    }
+    if ($rightclass eq '') {
+        $rightclass = 'LC_right_item';
+    }
     $output .= '<tr class="'.$css_class.'">'."\n".
-               '<td class="LC_left_item">'.$text.
+               '<td class="'.$leftclass.'">'.$text.
                '</td>';
-    if ($colspan) {
-        $output .= '<td class="LC_right_item" colspan="'.$colspan.'">';
+    if ($colspan > 1) {
+        $output .= '<td class="'.$rightclass.'" colspan="'.$colspan.'">';
     } else {
-        $output .= '<td class="LC_right_item">';
+        $output .= '<td class="'.$rightclass.'">';
     }
     return $output;
 }
@@ -4308,7 +7433,7 @@ sub yesno_radio {
 }
 
 sub select_from_options {
-    my ($item,$order,$options,$curr,$nullval,$multiple,$maxsize,$onchange,$noedit) = @_;
+    my ($item,$order,$options,$curr,$nullval,$multiple,$maxsize,$onchange,$noedit,$id) = @_;
     my $output;
     my $disabled;
     if ($noedit) {
@@ -4324,6 +7449,9 @@ sub select_from_options {
                 $output .= ' size="'.$maxsize.'"';
             }
         }
+        if ($id ne '') {
+            $output .= ' id="'.$id.'"';
+        }
         $output .= $disabled.'>'."\n";
         if ($nullval ne '') {
             $output .= '<option value=""';
@@ -4368,10 +7496,16 @@ sub make_item_rows {
                 (($caller eq 'printouts') && ($item ne 'print_header_format'))) {
                 $colspan = 2;
             }
+            my $rowdesc;
+            if ($caller eq 'appearance') {
+                $rowdesc = '<span class="LC_nobreak">'.$items->{$item}{text}.'</span>';
+            } else {
+                $rowdesc = $items->{$item}{text};
+            }
             if (exists $items->{$item}{advanced} && $items->{$item}{advanced} == 1) {
-                $datatable .= &item_table_row_start($items->{$item}{text},$count,"advanced",$colspan);
+                $datatable .= &item_table_row_start($rowdesc,$count,"advanced",$colspan);
             } else {
-                $datatable .= &item_table_row_start($items->{$item}{text},$count,undef,$colspan);
+                $datatable .= &item_table_row_start($rowdesc,$count,undef,$colspan);
             }
             if ($item eq 'defaultcredits') {
                 my $defaultcredits = $env{'course.'.$env{'request.course.id'}.'.internal.defaultcredits'};
@@ -4388,6 +7522,8 @@ sub make_item_rows {
                 $datatable .= &checkforpriv_row($cdom,$item,$settings,$crstype,$noedit);
             } elsif ($item eq 'print_header_format') {
                 $datatable .= &print_hdrfmt_row($item,$settings,$noedit);
+            } elsif ($item eq 'extresource') {
+                $datatable .= &print_extresource_row($item,$items->{$item},$settings->{$item},$noedit);
             } elsif ($items->{$item}{input} eq 'dates') {
                my $disabled;
                if ($noedit) {
@@ -4398,7 +7534,7 @@ sub make_item_rows {
                                                        $settings->{$item},$disabled);
             } elsif ($items->{$item}{input} eq 'radio') {
                 my ($unsetdefault,$valueyes,$valueno);
-                if (($item eq 'usejsme') || ($item eq 'uselcmath')) {
+                if (($item eq 'usejsme') || ($item eq 'uselcmath') || ($item eq 'inline_chem')) {
                      my %domdefs = &Apache::lonnet::get_domain_defaults($cdom);
                      unless ($domdefs{$item} eq '0') {
                          $unsetdefault = 1;
@@ -4408,12 +7544,16 @@ sub make_item_rows {
                 }
                 $datatable .= &yesno_radio($item,$settings,$unsetdefault,$valueyes,$valueno,$noedit);
             } elsif ($items->{$item}{input} eq 'selectbox') {
+                my $id;
+                if ($caller eq 'menuitems') {
+                    $id = $item;
+                }
                 my $curr = $settings->{$item};
                 $datatable .=
                     &select_from_options($item,$items->{$item}{'order'},
                                          $items->{$item}{'options'},$curr,
                                          $items->{$item}{'nullval'},
-                                         undef,undef,undef,$noedit);
+                                         undef,undef,undef,$noedit,$id);
             } elsif ($items->{$item}{input} eq 'textbox') {
                 my $disabled;
                 if ($noedit) {
@@ -4669,7 +7809,7 @@ ENDJS
             $output .= '</tr>';
         }
     }
-    my $pos = $currnum+1; 
+    my $pos = $currnum+1;
     unless ($noedit) {
         $output .= 
                '<tr>'.
@@ -4808,6 +7948,30 @@ sub change_clone {
             }
         }
     }
+    return;
+}
+
+sub devalidate_remote_courseprefs {
+    my ($cdom,$cnum,$cachekeys) = @_;
+    return unless (ref($cachekeys) eq 'HASH');
+    my %servers = &Apache::lonnet::internet_dom_servers($cdom);
+    my %thismachine;
+    map { $thismachine{$_} = 1; } &Apache::lonnet::current_machine_ids();
+    my @posscached = ('courselti','courseltitools');
+    if (keys(%servers)) {
+        foreach my $server (keys(%servers)) {
+            next if ($thismachine{$server});
+            my @cached;
+            foreach my $name (@posscached) {
+                if ($cachekeys->{$name}) {
+                    push(@cached,&escape($name).':'.&escape($cdom.'_'.$cnum));
+                }
+            }
+            if (@cached) {
+                &Apache::lonnet::remote_devalidate_cache($server,\@cached);
+            }
+        }
+    }
     return;
 }