loncom/interface/createaccount.pm - diff

Return to createaccount.pm CVS log

Up to [LON-CAPA] / loncom / interface

Diff for /loncom/interface/createaccount.pm between versions 1.37.2.3 and 1.56

version 1.37.2.3, 2010/11/29 15:13:08	version 1.56, 2013/06/05 12:46:39
Line 39 use Apache::lonhtmlcommon;	Line 39 use Apache::lonhtmlcommon;
use Apache::lonlocal;	use Apache::lonlocal;
use Apache::lonauth;	use Apache::lonauth;
use Apache::resetpw;	use Apache::resetpw;
use Captcha::reCAPTCHA;
use DynaLoader; # for Crypt::DES version	use DynaLoader; # for Crypt::DES version
use Crypt::DES;	use Crypt::DES;
use LONCAPA qw(:DEFAULT :match);	use LONCAPA qw(:DEFAULT :match);
use HTML::Entities;	use HTML::Entities;

	#TODO this module needs documentation

sub handler {	sub handler {
my $r = shift;	my $r = shift;
&Apache::loncommon::content_type($r,'text/html');	&Apache::loncommon::content_type($r,'text/html');
Line 58 sub handler {	Line 59 sub handler {
my $sso_username = $r->subprocess_env->get('REDIRECT_SSOUserUnknown');	my $sso_username = $r->subprocess_env->get('REDIRECT_SSOUserUnknown');
my $sso_domain = $r->subprocess_env->get('REDIRECT_SSOUserDomain');	my $sso_domain = $r->subprocess_env->get('REDIRECT_SSOUserDomain');

&Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},['token','courseid']);	&Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},
	['token','courseid','domain']);
&Apache::lonacc::get_posted_cgi($r);	&Apache::lonacc::get_posted_cgi($r);
&Apache::lonlocal::get_language_handle($r);	&Apache::lonlocal::get_language_handle($r);

if ($sso_username ne '' && $sso_domain ne '') {	if ($sso_username ne '' && $sso_domain ne '') {
$domain = $sso_domain;	$domain = $sso_domain;
} else {	} else {
$domain = &Apache::lonnet::default_login_domain();	($domain, undef) = Apache::lonnet::is_course($env{'form.courseid'});
if (defined($env{'form.courseid'})) {	unless ($domain) {
if (&validate_course($env{'form.courseid'})) {	if ($env{'form.phase'} =~ /^username_(activation\|validation)$/) {
if ($env{'form.courseid'} =~ /^($match_domain)_($match_courseid)$/) {	if (($env{'form.udom'} =~ /^$match_domain$/) &&
$domain = $1;	(&Apache::lonnet::domain($env{'form.udom'}) ne '')) {
	$domain = $env{'form.udom'};
	} else {
	$domain = &Apache::lonnet::default_login_domain();
}	}
	} elsif (($env{'form.phase'} eq '') &&
	($env{'form.domain'} =~ /^$match_domain$/) &&
	(&Apache::lonnet::domain($env{'form.domain'}) ne '')) {
	$domain = $env{'form.domain'};
	} else {
	$domain = &Apache::lonnet::default_login_domain();
}	}
}	}
}	}
Line 98 sub handler {	Line 109 sub handler {
}	}

my ($js,$courseid,$title);	my ($js,$courseid,$title);
if (defined($env{'form.courseid'})) {	$courseid = Apache::lonnet::is_course($env{'form.courseid'});
$courseid = &validate_course($env{'form.courseid'});
}
if ($courseid ne '') {	if ($courseid ne '') {
$js = &catreturn_js();	$js = &catreturn_js();
$title = 'Self-enroll in a LON-CAPA course';	$title = 'Self-enroll in a LON-CAPA course';
Line 127 sub handler {	Line 136 sub handler {
&print_footer($r);	&print_footer($r);
return OK;	return OK;
} else {	} else {
$start_page =	$start_page = &Apache::loncommon::start_page($title,$js);
&Apache::loncommon::start_page($title,$js,
{'no_inline_link' => 1,});
&print_header($r,$start_page,$courseid);	&print_header($r,$start_page,$courseid);
$r->print($output);	$r->print($output);
&print_footer($r);	&print_footer($r);
return OK;	return OK;
}	}
}	}
$start_page =	$start_page = &Apache::loncommon::start_page($title,$js);
&Apache::loncommon::start_page($title,$js,
{'no_inline_link' => 1,});

my %domconfig =	my %domconfig =
&Apache::lonnet::get_dom('configuration',['usercreation'],$domain);	&Apache::lonnet::get_dom('configuration',['usercreation'],$domain);
Line 147 sub handler {	Line 152 sub handler {
&print_header($r,$start_page,$courseid);	&print_header($r,$start_page,$courseid);
my $output = '<h3>'.&mt('Account creation unavailable').'</h3>'.	my $output = '<h3>'.&mt('Account creation unavailable').'</h3>'.
'<span class="LC_warning">'.	'<span class="LC_warning">'.
&mt('Creation of a new user account using an e-mail address or an institutional log-in ID as username is not permitted for the GCI WebCenter.').'</span><br /><br />';	&mt('Creation of a new user account using an e-mail address or an institutional log-in ID as username is not permitted at this institution ([_1]).',$domdesc).'</span><br /><br />';
$r->print($output);	$r->print($output);
&print_footer($r);	&print_footer($r);
return OK;	return OK;
Line 199 sub handler {	Line 204 sub handler {
if ($env{'form.phase'} eq 'username_activation') {	if ($env{'form.phase'} eq 'username_activation') {
(my $result,$output,$nostart) =	(my $result,$output,$nostart) =
&username_activation($r,$env{'form.uname'},$domain,$domdesc,	&username_activation($r,$env{'form.uname'},$domain,$domdesc,
$lonhost,$courseid);	$courseid);
if ($result eq 'ok') {	if ($result eq 'ok') {
if ($nostart) {	if ($nostart) {
return OK;	return OK;
Line 286 sub selfenroll_crumbs {	Line 291 sub selfenroll_crumbs {
}	}
my $last_crumb;	my $last_crumb;
if ($desc ne '') {	if ($desc ne '') {
$last_crumb = &mt('Self-enroll in [_1]','<span class="LC_cusr_emph">'.$desc.'</span>');	$last_crumb = &mt('Self-enroll in [_1]',"<span class='LC_cusr_emph'>$desc</span>");
} else {	} else {
$last_crumb = &mt('Self-enroll');	$last_crumb = &mt('Self-enroll');
}	}
Line 297 sub selfenroll_crumbs {	Line 302 sub selfenroll_crumbs {
return;	return;
}	}

sub validate_course {
my ($courseid) = @_;
my ($cdom,$cnum) = ($courseid =~ /^($match_domain)_($match_courseid)$/);
if (($cdom ne '') && ($cnum ne '')) {
if (&Apache::lonnet::is_course($cdom,$cnum)) {
return ($courseid);
}
}
return;
}

sub javascript_setforms {	sub javascript_setforms {
my ($now) = @_;	my ($now) = @_;
my $js = <<ENDSCRIPT;	my $js = <<ENDSCRIPT;
Line 374 function validate_email() {	Line 368 function validate_email() {
if (validmail(field) == false) {	if (validmail(field) == false) {
alert("$lt{'email'}: "+field.value+" $lt{'notv'}.");	alert("$lt{'email'}: "+field.value+" $lt{'notv'}.");
return false;	return false;
} else {
var emailaddr = field.value;
var lcemail = emailaddr.toLowerCase();
if (emailaddr != lcemail) {
field.value = lcemail;
alert("WebCenter usernames are all lower case.\\nAccordingly your username will be "+lcemail+" once activated.");
}
}	}
return true;	return true;
}	}
Line 410 sub print_username_form {	Line 397 sub print_username_form {
}	}
if (grep(/^email$/,@{$cancreate})) {	if (grep(/^email$/,@{$cancreate})) {
$output .= '<div class="LC_left_float"><h3>'.&mt('Create account with an e-mail address as your username').'</h3>';	$output .= '<div class="LC_left_float"><h3>'.&mt('Create account with an e-mail address as your username').'</h3>';
my $captchaform = &create_recaptcha();	my ($captchaform,$error) = &Apache::loncommon::captcha_display('usercreation',$lonhost);
if ($captchaform) {	if ($error) {
	my $helpdesk = '/adm/helpdesk?origurl=%2fadm%2fcreateaccount';
	if ($courseid ne '') {
	$helpdesk .= '&courseid='.$courseid;
	}
	$output .= '<span class="LC_error">'.&mt('An error occurred generating the validation code[_1] required for an e-mail address to be used as username.','<br />').'</span><br /><br />'.&mt('[_1]Contact the helpdesk[_2] or [_3]reload[_2] the page and try again.','<a href="'.$helpdesk.'">','</a>','<a href="javascript:window.location.reload()">');
	} else {
my $submit_text = &mt('Request LON-CAPA account');	my $submit_text = &mt('Request LON-CAPA account');
my $emailform = '<input type="text" name="useremail" size="25" value="" />';	my $emailform = '<input type="text" name="useremail" size="25" value="" />';
if (grep(/^login$/,@{$cancreate})) {	if (grep(/^login$/,@{$cancreate})) {
Line 419 sub print_username_form {	Line 412 sub print_username_form {
} else {	} else {
$output .= '<br />';	$output .= '<br />';
}	}
$output .= '<form name="createaccount" method="post" onSubmit="return validate_email()" action="/adm/createaccount">'.	$output .= '<form name="createaccount" method="post" onsubmit="return validate_email()" action="/adm/createaccount">'.
&Apache::lonhtmlcommon::start_pick_box()."\n".	&Apache::lonhtmlcommon::start_pick_box()."\n".
&Apache::lonhtmlcommon::row_title(&mt('E-mail address'),	&Apache::lonhtmlcommon::row_title(&mt('E-mail address'),
'LC_pick_box_title')."\n".	'LC_pick_box_title')."\n".
$emailform."\n".	$emailform."\n";
&Apache::lonhtmlcommon::row_closure(1).	if ($captchaform) {
&Apache::lonhtmlcommon::row_title(&mt('Validation'),	$output .= &Apache::lonhtmlcommon::row_closure(1).
'LC_pick_box_title')."\n".	&Apache::lonhtmlcommon::row_title(&mt('Validation'),
$captchaform."\n".	'LC_pick_box_title')."\n".
&mt('If either word is hard to read, [_1] will replace them.','<image src="/res/adm/pages/refresh.gif" alt="reCAPTCHA refresh" />').'<br /><br />';	$captchaform."\n".'<br /><br />';
	}
if ($courseid ne '') {	if ($courseid ne '') {
$output .= '<input type="hidden" name="courseid" value="'.$courseid.'"/>'."\n";	$output .= '<input type="hidden" name="courseid" value="'.$courseid.'"/>'."\n";
}	}
Line 442 sub print_username_form {	Line 436 sub print_username_form {
$output .= &Apache::lonhtmlcommon::echo_form_input(['courseid']);	$output .= &Apache::lonhtmlcommon::echo_form_input(['courseid']);
}	}
$output .= '</form>';	$output .= '</form>';
} else {
my $helpdesk = '/adm/helpdesk?origurl=%2fadm%2fcreateaccount';
if ($courseid ne '') {
$helpdesk .= '&courseid='.$courseid;
}
$output .= '<span class="LC_error">'.&mt('An error occurred generating the validation code[_1] required for an e-mail address to be used as username.','<br />').'</span><br /><br />'.&mt('[_1]Contact the helpdesk[_2] or [_3]reload[_2] the page and try again.','<a href="'.$helpdesk.'">','</a>','<a href="javascript:window.location.reload()">');
}	}
$output .= '</div>';	$output .= '</div>';
}	}
Line 469 sub login_box {	Line 457 sub login_box {
);	);
my ($lkey,$ukey) = &Apache::lonpreferences::des_keys();	my ($lkey,$ukey) = &Apache::lonpreferences::des_keys();
my ($lextkey,$uextkey) = &getkeys($lkey,$ukey);	my ($lextkey,$uextkey) = &getkeys($lkey,$ukey);
my $logtoken=Apache::lonnet::reply('tmpput:'.$ukey.$lkey.'&createaccount',	my $logtoken=Apache::lonnet::reply('tmpput:'.$ukey.$lkey.'&createaccount:createaccount',
$lonhost);	$lonhost);
$output = &serverform($logtoken,$lonhost,undef,$courseid,$context);	$output = &serverform($logtoken,$lonhost,undef,$courseid,$context);
my $unameform = '<input type="text" name="uname" size="20" value="" />';	my $unameform = '<input type="text" name="uname" size="20" value="" />';
my $upassform = '<input type="password" name="upass'.$now.'" size="20" />';	my $upassform = '<input type="password" name="upass'.$now.'" size="20" />';
$output .= '<form name="client" method="post" onsubmit="return(send());">'."\n".	$output .= '<form name="client" method="post" action="" onsubmit="return(send());">'."\n".
'<input type="hidden" name="udom" value="'.$domain.'" />'.
&Apache::lonhtmlcommon::start_pick_box()."\n".	&Apache::lonhtmlcommon::start_pick_box()."\n".
&Apache::lonhtmlcommon::row_title($titles{$context},	&Apache::lonhtmlcommon::row_title($titles{$context},
'LC_pick_box_title')."\n".	'LC_pick_box_title')."\n".
Line 484 sub login_box {	Line 471 sub login_box {
&Apache::lonhtmlcommon::row_title(&mt('Password'),	&Apache::lonhtmlcommon::row_title(&mt('Password'),
'LC_pick_box_title')."\n".	'LC_pick_box_title')."\n".
$upassform;	$upassform;
	if ($context eq 'selfenroll') {
	my $udomform = '<input type="text" name="udom" size="10" value="'.
	$domain.'" />';
	$output .= &Apache::lonhtmlcommon::row_closure(1)."\n".
	&Apache::lonhtmlcommon::row_title(&mt('Domain'),
	'LC_pick_box_title')."\n".
	$udomform."\n";
	} else {
	$output .= '<input type="hidden" name="udom" value="'.$domain.'" />';
	}
$output .= &Apache::lonhtmlcommon::row_closure(1).	$output .= &Apache::lonhtmlcommon::row_closure(1).
&Apache::lonhtmlcommon::row_title().	&Apache::lonhtmlcommon::row_title().
'<br /><input type="submit" name="username_validation" value="'.	'<br /><input type="submit" name="username_validation" value="'.
Line 505 sub login_box {	Line 502 sub login_box {
sub process_email_request {	sub process_email_request {
my ($useremail,$domain,$domdesc,$contact_name,$contact_email,$cancreate,	my ($useremail,$domain,$domdesc,$contact_name,$contact_email,$cancreate,
$server,$settings,$courseid) = @_;	$server,$settings,$courseid) = @_;
$useremail = lc($env{'form.useremail'});	$useremail = $env{'form.useremail'};
my $output;	my $output;
if (ref($cancreate) eq 'ARRAY') {	if (ref($cancreate) eq 'ARRAY') {
if (!grep(/^email$/,@{$cancreate})) {	if (!grep(/^email$/,@{$cancreate})) {
Line 523 sub process_email_request {	Line 520 sub process_email_request {
$contact_name,$contact_email);	$contact_name,$contact_email);
return $output;	return $output;
} else {	} else {
my $captcha = Captcha::reCAPTCHA->new;	my ($captcha_chk,$captcha_error) = &Apache::loncommon::captcha_response('usercreation',$server);
my $captcha_result =	if ($captcha_chk != 1) {
$captcha->check_answer(
'PRIVATEKEY',
$ENV{'REMOTE_ADDR'},
$env{'form.recaptcha_challenge_field'},
$env{'form.recaptcha_response_field'},
);
if (!$captcha_result->{is_valid}) {
$output = &invalid_state('captcha',$domdesc,$contact_name,	$output = &invalid_state('captcha',$domdesc,$contact_name,
$contact_email);	$contact_email,$captcha_error);

return $output;	return $output;
}	}
my $uhome=&Apache::lonnet::homeserver($useremail,$domain);	my $uhome=&Apache::lonnet::homeserver($useremail,$domain);
if ($uhome eq 'no_host') {	if ($uhome eq 'no_host') {
my (%rulematch,%inst_results,%curr_rules,%got_rules,%alerts);	my (%rulematch,%inst_results,%curr_rules,%got_rules,%alerts);
&call_rulecheck($useremail,$domain,\%alerts,\%rulematch,	&call_rulecheck($useremail,$domain,\%alerts,\%rulematch,
\%inst_results,\%curr_rules,%got_rules,'username');	\%inst_results,\%curr_rules,\%got_rules,'username');
if (ref($alerts{'username'}) eq 'HASH') {	if (ref($alerts{'username'}) eq 'HASH') {
if (ref($alerts{'username'}{$domain}) eq 'HASH') {	if (ref($alerts{'username'}{$domain}) eq 'HASH') {
if ($alerts{'username'}{$domain}{$useremail}) {	if ($alerts{'username'}{$domain}{$useremail}) {
Line 593 sub send_token {	Line 582 sub send_token {
'domain' => $domain,	'domain' => $domain,
'username' => $email,	'username' => $email,
'courseid' => $courseid);	'courseid' => $courseid);
my $token = &Apache::lonnet::tmpput(\%info,$server);	my $token = &Apache::lonnet::tmpput(\%info,$server,'createaccount');
if ($token !~ /^error/ && $token ne 'no_such_host') {	if ($token !~ /^error/ && $token ne 'no_such_host') {
my $esc_token = &escape($token);	my $esc_token = &escape($token);
my $showtime = localtime(time);	my $showtime = localtime(time);
my $mailmsg = &mt('A request was submitted on [_1] for creation of a GCI WebCenter account.',$showtime).' '.	my $mailmsg = &mt('A request was submitted on [_1] for creation of a LON-CAPA account at the following institution: [_2].',$showtime,$domdesc).' '.
&mt('To complete this process please open a web browser and enter the following URL in the address/location box: [_1]',	&mt('To complete this process please open a web browser and enter the following URL in the address/location box: [_1]',
&Apache::lonnet::absolute_url().'/adm/createaccount?token='.$esc_token);	&Apache::lonnet::absolute_url().'/adm/createaccount?token='.$esc_token);
my $result = &Apache::resetpw::send_mail($domdesc,$email,$mailmsg,$contact_name,	my $result = &Apache::resetpw::send_mail($domdesc,$email,$mailmsg,$contact_name,
Line 634 sub process_mailtoken {	Line 623 sub process_mailtoken {
($data{'username'} =~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/)) {	($data{'username'} =~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/)) {
if ($now - $data{'time'} < 7200) {	if ($now - $data{'time'} < 7200) {
if ($env{'form.phase'} eq 'createaccount') {	if ($env{'form.phase'} eq 'createaccount') {
my ($result,$output) = &create_account($r,$domain,$lonhost,	my ($result,$output,$uhome) =
$data{'username'},$domdesc);	&create_account($r,$domain,$data{'username'},$domdesc);
if ($result eq 'ok') {	if ($result eq 'ok') {
$msg = $output;	$msg = $output;
my $shownow = &Apache::lonlocal::locallocaltime($now);	my $shownow = &Apache::lonlocal::locallocaltime($now);
my $mailmsg = &mt('A GCI WebCenter account has been created [_1] from IP address: [_2]. If you did not perform this action or authorize it, please contact the [_3] ([_4]).',$shownow,$ENV{'REMOTE_ADDR'},$contact_name,$contact_email)."\n";	my $mailmsg = &mt('A LON-CAPA account for the institution: [_1] has been created [_2] from IP address: [_3]. If you did not perform this action or authorize it, please contact the [_4] ([_5]).',$domdesc,$shownow,$ENV{'REMOTE_ADDR'},$contact_name,$contact_email)."\n";
my $mailresult = &Apache::resetpw::send_mail($domdesc,$data{'email'},	my $mailresult = &Apache::resetpw::send_mail($domdesc,$data{'email'},
$mailmsg,$contact_name,	$mailmsg,$contact_name,
$contact_email);	$contact_email);
Line 648 sub process_mailtoken {	Line 637 sub process_mailtoken {
} else {	} else {
$msg .= &mt('An error occurred when sending e-mail to [_1] confirming creation of your LON-CAPA account.',$data{'username'});	$msg .= &mt('An error occurred when sending e-mail to [_1] confirming creation of your LON-CAPA account.',$data{'username'});
}	}
my %form = &start_session($r,$data{'username'},$domain,	&start_session($r,$data{'username'},$domain,$uhome,
$lonhost,$data{'courseid'},	$data{'courseid'},$token);
$token);
$nostart = 1;	$nostart = 1;
$noend = 1;	$noend = 1;
} else {	} else {
Line 677 sub process_mailtoken {	Line 665 sub process_mailtoken {
}	}

sub start_session {	sub start_session {
my ($r,$username,$domain,$lonhost,$courseid,$token) = @_;	my ($r,$username,$domain,$uhome,$courseid,$token) = @_;
my %form = (
uname => $username,
udom => $domain,
);
my $firsturl = '/adm/roles';
if (defined($courseid)) {
$courseid = &validate_course($courseid);
if ($courseid ne '') {
$form{'courseid'} = $courseid;
$firsturl = '/adm/selfenroll?courseid='.$courseid;
}
}
if ($r->dir_config('lonBalancer') eq 'yes') {	if ($r->dir_config('lonBalancer') eq 'yes') {
&Apache::lonauth::success($r,$form{'uname'},$form{'udom'},	Apache::lonauth::success($r, $username, $domain, $uhome,
$lonhost,'noredirect',undef,\%form);	'noredirect', undef, {});
if ($token ne '') {
my $delete = &Apache::lonnet::tmpdel($token);	Apache::lonnet::tmpdel($token) if $token;
}
$r->internal_redirect('/adm/switchserver');	$r->internal_redirect('/adm/switchserver');
} else {	} else {
&Apache::lonauth::success($r,$form{'uname'},$form{'udom'},	$courseid = Apache::lonnet::is_course($courseid);
$lonhost,$firsturl,undef,\%form);
	Apache::lonauth::success($r, $username, $domain, $uhome,
	($courseid ? "/adm/selfenroll?courseid=$courseid" : '/adm/roles'),
	undef, {});
}	}
return %form;
}

	return;
	}

	#
	# The screen that the user gets to create his or her account
	# Desired username, desired password, etc
	# Stores token to store DES-key and stage during creation session
	#
sub print_dataentry_form {	sub print_dataentry_form {
my ($r,$domain,$lonhost,$include,$mailtoken,$now,$username,$start_page) = @_;	my ($r,$domain,$lonhost,$include,$mailtoken,$now,$username,$start_page) = @_;
my ($error,$output);	my ($error,$output);
Line 717 sub print_dataentry_form {	Line 702 sub print_dataentry_form {
$output .= &javascript_setforms($now)."\n".&javascript_checkpass($now);	$output .= &javascript_setforms($now)."\n".&javascript_checkpass($now);
my ($lkey,$ukey) = &Apache::lonpreferences::des_keys();	my ($lkey,$ukey) = &Apache::lonpreferences::des_keys();
my ($lextkey,$uextkey) = &getkeys($lkey,$ukey);	my ($lextkey,$uextkey) = &getkeys($lkey,$ukey);
my $logtoken=Apache::lonnet::reply('tmpput:'.$ukey.$lkey.'&createaccount',	my $logtoken=Apache::lonnet::reply('tmpput:'.$ukey.$lkey.'&createaccount:createaccount',
$lonhost);	$lonhost);
my $formtag = '<form name="server" method="post" target="_top" action="/adm/createaccount">';	my $formtag = '<form name="server" method="post" target="_top" action="/adm/createaccount">';
my ($datatable,$rowcount) =	my ($datatable,$rowcount) =
Line 746 ENDSERVERFORM	Line 731 ENDSERVERFORM
my $upasstwo = '<input type="password" name="upasscheck'.$now.'" size="10" />';	my $upasstwo = '<input type="password" name="upasscheck'.$now.'" size="10" />';
my $submit_text = &mt('Create LON-CAPA account');	my $submit_text = &mt('Create LON-CAPA account');
$output .= '<h3>'.&mt('Login Data').'</h3>'."\n".	$output .= '<h3>'.&mt('Login Data').'</h3>'."\n".
'<form name="client" method="post" '.	'<form name="client" method="post" action="" '.
'onsubmit="return checkpass();">'."\n".	'onsubmit="return checkpass();">'."\n".
&Apache::lonhtmlcommon::start_pick_box()."\n".	&Apache::lonhtmlcommon::start_pick_box()."\n".
&Apache::lonhtmlcommon::row_title(&mt('Username'),	&Apache::lonhtmlcommon::row_title(&mt('Username'),
Line 784 ENDSERVERFORM	Line 769 ENDSERVERFORM
return $output;	return $output;
}	}

	#
	# Retrieve rules for generating accounts from domain configuration
	# Can the user make a new account or just self-enroll?

sub get_creation_controls {	sub get_creation_controls {
my ($domain,$usercreation) = @_;	my ($domain,$usercreation) = @_;
my (@cancreate,@statustocreate);	my (@cancreate,@statustocreate);
Line 791 sub get_creation_controls {	Line 780 sub get_creation_controls {
if (ref($usercreation->{'cancreate'}) eq 'HASH') {	if (ref($usercreation->{'cancreate'}) eq 'HASH') {
if (ref($usercreation->{'cancreate'}{'statustocreate'}) eq 'ARRAY') {	if (ref($usercreation->{'cancreate'}{'statustocreate'}) eq 'ARRAY') {
@statustocreate = @{$usercreation->{'cancreate'}{'statustocreate'}};	@statustocreate = @{$usercreation->{'cancreate'}{'statustocreate'}};
	if (@statustocreate == 0) {
	my ($othertitle,$usertypes,$types) =
	&Apache::loncommon::sorted_inst_types($domain);
	if (ref($types) eq 'ARRAY') {
	if (@{$types} == 0) {
	@statustocreate = ('default');
	}
	} else {
	@statustocreate = ('default');
	}
	}
} else {	} else {
@statustocreate = ('default');	@statustocreate = ('default');
my ($othertitle,$usertypes,$types) =	my ($othertitle,$usertypes,$types) =
Line 811 sub get_creation_controls {	Line 811 sub get_creation_controls {
}	}

sub create_account {	sub create_account {
my ($r,$domain,$lonhost,$username,$domdesc) = @_;	my ($r,$domain,$username,$domdesc) = @_;
	# Get the token info
my ($retrieved,$output,$upass) = &process_credentials($env{'form.logtoken'},	my ($retrieved,$output,$upass) = &process_credentials($env{'form.logtoken'},
$env{'form.serverid'});	$env{'form.serverid'});
	# $retrieved is 'ok' if things worked
	# $output is user error output
	# $upass is the decrypted password
# Error messages	# Error messages
my $error = '<span class="LC_error">'.&mt('Error:').' ';	my $error = '<span class="LC_error">'.&mt('Error:').' ';
my $end = '</span><br /><br />';	my $end = '</span><br /><br />';
my $rtnlink = '<a href="javascript:history.back();" />'.	my $rtnlink = '<a href="javascript:history.back();">'.
&mt('Return to previous page').'</a>'.	&mt('Return to previous page').'</a>'.
&Apache::loncommon::end_page();	&Apache::loncommon::end_page();
if ($retrieved eq 'ok') {	if ($retrieved eq 'ok') {
if ($env{'form.courseid'} ne '') {	if ($env{'form.courseid'} ne '') {
	# See if we are allowed to use this username per domain rules (number of characters, etc)
my ($result,$userchkmsg) = &check_id($username,$domain,$domdesc);	my ($result,$userchkmsg) = &check_id($username,$domain,$domdesc);
if ($result eq 'fail') {	if ($result eq 'fail') {
$output = $error.&mt('Invalid ID format').$end.	$output = $error.&mt('Invalid ID format').$end.
Line 832 sub create_account {	Line 837 sub create_account {
} else {	} else {
return ('fail',$error.$output.$end.$rtnlink);	return ('fail',$error.$output.$end.$rtnlink);
}	}
# Call modifyuser	# Yes! We can do this. Valid token, valid username format
	# Create an internally authenticated account with password $upass
	# if the account does not exist yet
	# Assign student/staff number $env{'form.cid'}, first name, last name, etc
my $result =	my $result =
&Apache::lonnet::modifyuser($domain,$username,$env{'form.cid'},	&Apache::lonnet::modifyuser($domain,$username,$env{'form.cid'},
'internal',$upass,$env{'form.cfirstname'},	'internal',$upass,$env{'form.cfirstname'},
$env{'form.cmiddlename'},$env{'form.clastname'},	$env{'form.cmiddlename'},$env{'form.clastname'},
$env{'form.cgeneration'},undef,undef,$username);	$env{'form.cgeneration'},undef,undef,$username);
$output = &mt('Generating user: [_1]',$result);	$output = &mt('Generating user: [_1]',$result);
	# Now that the user exists, we can have a homeserver
my $uhome = &Apache::lonnet::homeserver($username,$domain);	my $uhome = &Apache::lonnet::homeserver($username,$domain);
$output .= '<br />'.&mt('Home server: [_1]',$uhome).' '.	$output .= '<br />'.&mt('Home server: [_1]',$uhome).' '.
&Apache::lonnet::hostname($uhome).'<br /><br />';	&Apache::lonnet::hostname($uhome).'<br /><br />';
return ('ok',$output);	return ('ok',$output,$uhome);
}	}

sub username_validation {	sub username_validation {
my ($r,$username,$domain,$domdesc,$contact_name,$contact_email,$courseid,	my ($r,$username,$domain,$domdesc,$contact_name,$contact_email,$courseid,
$lonhost,$statustocreate) = @_;	$lonhost,$statustocreate) = @_;
	# $username,$domain: for the user who needs to be validated
	# $domdesc: full name of the domain (for error messages)
	# $contact_name, $contact_email: name and email for user assistance (for error messages in &username_check
	# $courseid: ID of the course that the user should be validated for, goes into start_session
	# $statustocreate: -> inststatus in username_check ('faculty', 'staff', 'student', ...)

my ($retrieved,$output,$upass);	my ($retrieved,$output,$upass);

$username= &LONCAPA::clean_username($username);	$username= &LONCAPA::clean_username($username);
Line 862 sub username_validation {	Line 877 sub username_validation {
if ($uhome ne 'no_host') {	if ($uhome ne 'no_host') {
my $result = &Apache::lonnet::authenticate($username,$upass,$domain);	my $result = &Apache::lonnet::authenticate($username,$upass,$domain);
if ($result ne 'no_host') {	if ($result ne 'no_host') {
my %form = &start_session($r,$username,$domain,$lonhost,$courseid);	&start_session($r,$username,$domain,$uhome,$courseid);
$output = '<br /><br />'.&mt('A LON-CAPA account already exists for username [_1] at this institution ([_2]).','<tt>'.$username.'</tt>',$domdesc).'<br />'.&mt('The password entered was also correct so you have been logged in.');	$output = '<br /><br />'.&mt('A LON-CAPA account already exists for username [_1] at this institution ([_2]).','<tt>'.$username.'</tt>',$domdesc).'<br />'.&mt('The password entered was also correct so you have been logged in.');
return ('existingaccount',$output);	return ('existingaccount',$output);
} else {	} else {
Line 912 sub username_check {	Line 927 sub username_check {
my (%rulematch,%inst_results,$checkfail,$rowcount,$editable,$output,$msg,	my (%rulematch,%inst_results,$checkfail,$rowcount,$editable,$output,$msg,
%alerts,%curr_rules,%got_rules);	%alerts,%curr_rules,%got_rules);
&call_rulecheck($username,$domain,\%alerts,\%rulematch,	&call_rulecheck($username,$domain,\%alerts,\%rulematch,
\%inst_results,\%curr_rules,%got_rules,'username');	\%inst_results,\%curr_rules,\%got_rules,'username');
if (ref($alerts{'username'}) eq 'HASH') {	if (ref($alerts{'username'}) eq 'HASH') {
if (ref($alerts{'username'}{$domain}) eq 'HASH') {	if (ref($alerts{'username'}{$domain}) eq 'HASH') {
if ($alerts{'username'}{$domain}{$username}) {	if ($alerts{'username'}{$domain}{$username}) {
Line 958 sub username_check {	Line 973 sub username_check {
'time' => $now,	'time' => $now,
'domain' => $domain,	'domain' => $domain,
'username' => $username);	'username' => $username);
my $authtoken = &Apache::lonnet::tmpput(\%info,$lonhost);	my $authtoken = &Apache::lonnet::tmpput(\%info,$lonhost,'createaccount');
if ($authtoken !~ /^error/ && $authtoken ne 'no_such_host') {	if ($authtoken !~ /^error/ && $authtoken ne 'no_such_host') {
$output .= '<input type="hidden" name="authtoken" value="'.&HTML::Entities::encode($authtoken,'&<>"').'" />';	$output .= '<input type="hidden" name="authtoken" value="'.&HTML::Entities::encode($authtoken,'&<>"').'" />';
} else {	} else {
Line 969 sub username_check {	Line 984 sub username_check {
}	}
}	}
if ($checkfail) {	if ($checkfail) {
$msg = '<h4>'.&mt('Account creation unavailable').'</h4>';	$msg = '<br /><h4>'.&mt('Account creation unavailable').'</h4>';
if ($checkfail eq 'username') {	if ($checkfail eq 'username') {
$msg .= '<span class="LC_warning">'.	$msg .= '<span class="LC_warning">'.
&mt('A LON-CAPA account may not be created with the username you use.').	&mt('A LON-CAPA account may not be created with the username you use.').
Line 995 sub username_check {	Line 1010 sub username_check {
if ($rowcount) {	if ($rowcount) {
if ($editable) {	if ($editable) {
if ($courseid ne '') {	if ($courseid ne '') {
$msg = '<h4>'.&mt('User information').'</h4>';	$msg = '<br /><h4>'.&mt('User information').'</h4>';
}	}
$msg .= &mt('To create one, use the table below to provide information about yourself, then click the [_1]Create LON-CAPA account[_2] button.','<span class="LC_cusr_emph">','</span>').'<br />';	$msg .= &mt('To create one, use the table below to provide information about yourself, then click the [_1]Create LON-CAPA account[_2] button.','<span class="LC_cusr_emph">','</span>').'<br />';
} else {	} else {
Line 1016 sub username_check {	Line 1031 sub username_check {
}	}

sub username_activation {	sub username_activation {
my ($r,$username,$domain,$domdesc,$lonhost,$courseid) = @_;	my ($r,$username,$domain,$domdesc,$courseid) = @_;
my $output;	my $output;
my $error = '<span class="LC_error">'.&mt('Error:').' ';	my $error = '<span class="LC_error">'.&mt('Error:').' ';
my $end = '</span><br /><br />';	my $end = '</span><br /><br />';
my $rtnlink = '<a href="javascript:history.back();" />'.	my $rtnlink = '<a href="javascript:history.back();">'.
&mt('Return to previous page').'</a>'.	&mt('Return to previous page').'</a>'.
&Apache::loncommon::end_page();	&Apache::loncommon::end_page();
my %domdefaults = &Apache::lonnet::get_domain_defaults($domain);	my %domdefaults = &Apache::lonnet::get_domain_defaults($domain);
Line 1042 sub username_activation {	Line 1057 sub username_activation {
$output = &mt('Sorry, your authentication has expired.');	$output = &mt('Sorry, your authentication has expired.');
}	}
if ($earlyout ne '') {	if ($earlyout ne '') {
$output .= '<br />'.&mt('Please [_1]start again[_2].','<a href="/adm/createaccount">','</a>');	my $link = '/adm/createaccount';
	if (&Apache::lonnet::domain($domain) ne '') {
	$link .= "?domain=$domain";
	}
	$output .= '<br />'.&mt('Please [_1]start again[_2].',
	'<a href="'.$link.'">','</a>');
return($earlyout,$output);	return($earlyout,$output);
}	}
if ((($domdefaults{'auth_def'} =~/^krb(4\|5)$/) &&	if ((($domdefaults{'auth_def'} =~/^krb(4\|5)$/) &&
Line 1059 sub username_activation {	Line 1079 sub username_activation {
# Call modifyuser	# Call modifyuser
my (%rulematch,%inst_results,%curr_rules,%got_rules,%alerts,%info);	my (%rulematch,%inst_results,%curr_rules,%got_rules,%alerts,%info);
&call_rulecheck($username,$domain,\%alerts,\%rulematch,	&call_rulecheck($username,$domain,\%alerts,\%rulematch,
\%inst_results,\%curr_rules,%got_rules);	\%inst_results,\%curr_rules,\%got_rules);
my @userinfo = ('firstname','middlename','lastname','generation',	my @userinfo = ('firstname','middlename','lastname','generation',
'permanentemail','id');	'permanentemail','id');
my %canmodify =	my %canmodify =
Line 1086 sub username_activation {	Line 1106 sub username_activation {
if ($result eq 'ok') {	if ($result eq 'ok') {
my $delete = &Apache::lonnet::tmpdel($env{'form.authtoken'});	my $delete = &Apache::lonnet::tmpdel($env{'form.authtoken'});
$output = &mt('A LON-CAPA account has been created for username: [_1] in domain: [_2].',$username,$domain);	$output = &mt('A LON-CAPA account has been created for username: [_1] in domain: [_2].',$username,$domain);
my %form = &start_session($r,$username,$domain,$lonhost,$courseid);	my $uhome=&Apache::lonnet::homeserver($username,$domain,'true');
	&start_session($r,$username,$domain,$uhome,$courseid);
my $nostart = 1;	my $nostart = 1;
return ('ok',$output,$nostart);	return ('ok',$output,$nostart);
} else {	} else {
Line 1102 sub username_activation {	Line 1123 sub username_activation {
sub check_id {	sub check_id {
my ($username,$domain,$domdesc) = @_;	my ($username,$domain,$domdesc) = @_;
# Check ID format	# Check ID format
	# Is $username in an okay format for $domain
	# (right number of characters, special characters, etc - follow domain rules)?
	# $domdesc is just used for user error messages
my (%alerts,%rulematch,%inst_results,%curr_rules,%checkhash);	my (%alerts,%rulematch,%inst_results,%curr_rules,%checkhash);
my %checks = ('id' => 1);	my %checks = ('id' => 1);
%{$checkhash{$username.':'.$domain}} = (	%{$checkhash{$username.':'.$domain}} = (
Line 1140 sub invalid_state {	Line 1164 sub invalid_state {
} elsif ($error eq 'userformat') {	} elsif ($error eq 'userformat') {
$msg .= &mt('The e-mail address you provided may not be used as a username at this LON-CAPA institution.');	$msg .= &mt('The e-mail address you provided may not be used as a username at this LON-CAPA institution.');
} elsif ($error eq 'captcha') {	} elsif ($error eq 'captcha') {
$msg .= &mt('Validation of the code your entered failed.');	$msg .= &mt('Validation of the code you entered failed.');
} elsif ($error eq 'noemails') {	} elsif ($error eq 'noemails') {
$msg .= &mt('Creation of a new user account using an e-mail address as username is not permitted at this LON-CAPA institution.');	$msg .= &mt('Creation of a new user account using an e-mail address as username is not permitted at this LON-CAPA institution.');
}	}
Line 1148 sub invalid_state {	Line 1172 sub invalid_state {
if ($msgtext) {	if ($msgtext) {
$msg .= '<br />'.$msgtext;	$msg .= '<br />'.$msgtext;
}	}
$msg .= &linkto_email_help($contact_email,$domdesc);	$msg .= &linkto_email_help($contact_email,$domdesc,$error);
return $msg;	return $msg;
}	}

sub linkto_email_help {	sub linkto_email_help {
my ($contact_email,$domdesc) = @_;	my ($contact_email,$domdesc,$error) = @_;
my $msg;	my $msg;
	my $href = '/adm/helpdesk';
if ($contact_email ne '') {	if ($contact_email ne '') {
my $escuri = &HTML::Entities::encode('/adm/createaccount','&<>"');	my $escuri = &HTML::Entities::encode('/adm/createaccount','&<>"');
$msg .= '<br />'.&mt('You may wish to contact the [_1]LON-CAPA helpdesk[_2] for [_3].','<a href="/adm/helpdesk?origurl='.$escuri.'">','</a>',$domdesc).'<br />';	$href .= '?origurl='.$escuri;
	if ($error eq 'existinguser') {
	my $escemail = &HTML::Entities::encode($env{'form.useremail'});
	$href .= '&useremail='.$escemail.'&useraccount='.$escemail;
	}
	$msg .= '<br />'.&mt('You may wish to contact the [_1]LON-CAPA helpdesk[_2] for [_3].','<a href="'.$href.'">','</a>',$domdesc).'<br />';
} else {	} else {
$msg .= '<br />'.&mt('You may wish to send an e-mail to the server administrator: [_1] for [_2].',$Apache::lonnet::perlvar{'AdminEmail'},$domdesc).'<br />';	$msg .= '<br />'.&mt('You may wish to send an e-mail to the server administrator: [_1] for [_2].',$Apache::lonnet::perlvar{'AdmEMail'},$domdesc).'<br />';
}	}
return $msg;	return $msg;
}	}

sub create_recaptcha {
my $captcha = Captcha::reCAPTCHA->new;
return $captcha->get_options_setter({theme => 'white'})."\n".
$captcha->get_html('PUBLICKEY'); # generate public key for IP
# from http://recaptcha.net/
}

sub getkeys {	sub getkeys {
my ($lkey,$ukey) = @_;	my ($lkey,$ukey) = @_;
my $lextkey=hex($lkey);	my $lextkey=hex($lkey);
Line 1208 ENDSERVERFORM	Line 1231 ENDSERVERFORM
}	}

sub process_credentials {	sub process_credentials {
	#
	# Fetches the information from the logtoken via tmpget
	# Token contains the DES-key and the stage of the process (would only be "createaccount")
	# $lonhost in this routine is not necessarily the machine that this runs on,
	# but $env{'form.serverid'}, the machine that issued the token.
	#
my ($logtoken,$lonhost) = @_;	my ($logtoken,$lonhost) = @_;
my $tmpinfo=Apache::lonnet::reply('tmpget:'.$logtoken,$lonhost);	my $tmpinfo=Apache::lonnet::reply('tmpget:'.$logtoken,$lonhost);
my ($retrieved,$output,$upass);	my ($retrieved,$output,$upass);
Line 1229 sub process_credentials {	Line 1258 sub process_credentials {
} else {	} else {
$output = &mt('Unable to retrieve your log-in information - unexpected context');	$output = &mt('Unable to retrieve your log-in information - unexpected context');
}	}
	# $retrieved is 'ok' if retrieved okay
	# $output is screen output for the user
	# $upass is $env{'form.upass'}, decrypted with the DES-key, if stage was 'createaccount'

return ($retrieved,$output,$upass);	return ($retrieved,$output,$upass);
}	}

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

Removed from v.1.37.2.3
changed lines
	Added in v.1.56