|
version 1.1075.2.141.2.4, 2020/07/18 19:14:03
|
version 1.1075.2.148, 2020/10/01 10:27:14
|
|
Line 83 use Crypt::DES;
|
Line 83 use Crypt::DES;
|
| use DynaLoader; # for Crypt::DES version |
use DynaLoader; # for Crypt::DES version |
| use File::Copy(); |
use File::Copy(); |
| use File::Path(); |
use File::Path(); |
| use String::CRC32(); |
|
| use Short::URL(); |
|
| |
|
| # ---------------------------------------------- Designs |
# ---------------------------------------------- Designs |
| use vars qw(%defaultdesign); |
use vars qw(%defaultdesign); |
|
Line 4680 sub findallcourses {
|
Line 4678 sub findallcourses {
|
| ############################################### |
############################################### |
| |
|
| sub blockcheck { |
sub blockcheck { |
| my ($setters,$activity,$uname,$udom,$url,$is_course) = @_; |
my ($setters,$activity,$uname,$udom,$url,$is_course,$symb,$caller) = @_; |
| |
|
| if (defined($udom) && defined($uname)) { |
if (defined($udom) && defined($uname)) { |
| # If uname and udom are for a course, check for blocks in the course. |
# If uname and udom are for a course, check for blocks in the course. |
| if (($is_course) || (&Apache::lonnet::is_course($udom,$uname))) { |
if (($is_course) || (&Apache::lonnet::is_course($udom,$uname))) { |
| my ($startblock,$endblock,$triggerblock) = |
my ($startblock,$endblock,$triggerblock) = |
| &get_blocks($setters,$activity,$udom,$uname,$url); |
&get_blocks($setters,$activity,$udom,$uname,$url,$symb,$caller); |
| return ($startblock,$endblock,$triggerblock); |
return ($startblock,$endblock,$triggerblock); |
| } |
} |
| } else { |
} else { |
|
Line 4813 sub blockcheck {
|
Line 4811 sub blockcheck {
|
| # of specified user, unless user has 'evb' privilege. |
# of specified user, unless user has 'evb' privilege. |
| |
|
| my ($start,$end,$trigger) = |
my ($start,$end,$trigger) = |
| &get_blocks($setters,$activity,$cdom,$cnum,$url); |
&get_blocks($setters,$activity,$cdom,$cnum,$url,$symb,$caller); |
| if (($start != 0) && |
if (($start != 0) && |
| (($startblock == 0) || ($startblock > $start))) { |
(($startblock == 0) || ($startblock > $start))) { |
| $startblock = $start; |
$startblock = $start; |
|
Line 4833 sub blockcheck {
|
Line 4831 sub blockcheck {
|
| } |
} |
| |
|
| sub get_blocks { |
sub get_blocks { |
| my ($setters,$activity,$cdom,$cnum,$url) = @_; |
my ($setters,$activity,$cdom,$cnum,$url,$symb,$caller) = @_; |
| my $startblock = 0; |
my $startblock = 0; |
| my $endblock = 0; |
my $endblock = 0; |
| my $triggerblock = ''; |
my $triggerblock = ''; |
|
Line 4846 sub get_blocks {
|
Line 4844 sub get_blocks {
|
| my $now = time; |
my $now = time; |
| my %commblocks = &Apache::lonnet::get_comm_blocks($cdom,$cnum); |
my %commblocks = &Apache::lonnet::get_comm_blocks($cdom,$cnum); |
| if ($activity eq 'docs') { |
if ($activity eq 'docs') { |
| @blockers = &Apache::lonnet::has_comm_blocking('bre',undef,$url,\%commblocks); |
my ($blocked,$nosymbcache,$noenccheck); |
| |
if (($caller eq 'blockedaccess') || ($caller eq 'blockingstatus')) { |
| |
$blocked = 1; |
| |
$nosymbcache = 1; |
| |
$noenccheck = 1; |
| |
} |
| |
@blockers = &Apache::lonnet::has_comm_blocking('bre',$symb,$url,$nosymbcache,$noenccheck,$blocked,\%commblocks); |
| foreach my $block (@blockers) { |
foreach my $block (@blockers) { |
| if ($block =~ /^firstaccess____(.+)$/) { |
if ($block =~ /^firstaccess____(.+)$/) { |
| my $item = $1; |
my $item = $1; |
|
Line 4968 sub parse_block_record {
|
Line 4972 sub parse_block_record {
|
| } |
} |
| |
|
| sub blocking_status { |
sub blocking_status { |
| my ($activity,$uname,$udom,$url,$is_course) = @_; |
my ($activity,$uname,$udom,$url,$is_course,$symb,$caller) = @_; |
| my %setters; |
my %setters; |
| |
|
| # check for active blocking |
# check for active blocking |
| my ($startblock,$endblock,$triggerblock) = |
my ($startblock,$endblock,$triggerblock) = |
| &blockcheck(\%setters,$activity,$uname,$udom,$url,$is_course); |
&blockcheck(\%setters,$activity,$uname,$udom,$url,$is_course,$symb,$caller); |
| my $blocked = 0; |
my $blocked = 0; |
| if ($startblock && $endblock) { |
if ($startblock && $endblock) { |
| $blocked = 1; |
$blocked = 1; |
|
Line 4989 sub blocking_status {
|
Line 4993 sub blocking_status {
|
| $querystring .= "&udom=$udom" if ($udom =~ /^$match_domain$/); |
$querystring .= "&udom=$udom" if ($udom =~ /^$match_domain$/); |
| $querystring .= "&uname=$uname" if ($uname =~ /^$match_username$/); |
$querystring .= "&uname=$uname" if ($uname =~ /^$match_username$/); |
| } elsif ($activity eq 'docs') { |
} elsif ($activity eq 'docs') { |
| $querystring .= '&url='.&HTML::Entities::encode($url,'&"'); |
my $showurl = &Apache::lonenc::check_encrypt($url); |
| |
$querystring .= '&url='.&HTML::Entities::encode($showurl,'\'&"<>'); |
| |
if ($symb) { |
| |
my $showsymb = &Apache::lonenc::check_encrypt($symb); |
| |
$querystring .= '&symb='.&HTML::Entities::encode($showsymb,'\'&"<>'); |
| |
} |
| } |
} |
| |
|
| my $output .= <<'END_MYBLOCK'; |
my $output .= <<'END_MYBLOCK'; |
|
Line 5037 sub check_ip_acc {
|
Line 5046 sub check_ip_acc {
|
| if (!defined($acc) || $acc =~ /^\s*$/ || $acc =~/^\s*no\s*$/i) { |
if (!defined($acc) || $acc =~ /^\s*$/ || $acc =~/^\s*no\s*$/i) { |
| return 1; |
return 1; |
| } |
} |
| my ($ip,$allowed); |
my $allowed=0; |
| |
my $ip; |
| if (($ENV{'REMOTE_ADDR'} eq '127.0.0.1') || |
if (($ENV{'REMOTE_ADDR'} eq '127.0.0.1') || |
| ($ENV{'REMOTE_ADDR'} eq &Apache::lonnet::get_host_ip($Apache::lonnet::perlvar{'lonHostID'}))) { |
($ENV{'REMOTE_ADDR'} eq &Apache::lonnet::get_host_ip($Apache::lonnet::perlvar{'lonHostID'}))) { |
| $ip = $env{'request.host'} || $ENV{'REMOTE_ADDR'} || $clientip; |
$ip = $env{'request.host'} || $ENV{'REMOTE_ADDR'} || $clientip; |
|
Line 5046 sub check_ip_acc {
|
Line 5056 sub check_ip_acc {
|
| } |
} |
| |
|
| my $name; |
my $name; |
| my %access = ( |
foreach my $pattern (split(',',$acc)) { |
| allowfrom => 1, |
$pattern =~ s/^\s*//; |
| denyfrom => 0, |
$pattern =~ s/\s*$//; |
| ); |
|
| my @allows; |
|
| my @denies; |
|
| foreach my $item (split(',',$acc)) { |
|
| $item =~ s/^\s*//; |
|
| $item =~ s/\s*$//; |
|
| if ($item =~ /^\!(.+)$/) { |
|
| push(@denies,$1); |
|
| } else { |
|
| push(@allows,$item); |
|
| } |
|
| } |
|
| my $numdenies = scalar(@denies); |
|
| my $numallows = scalar(@allows); |
|
| my $count = 0; |
|
| foreach my $pattern (@denies,@allows) { |
|
| $count ++; |
|
| my $acctype = 'allowfrom'; |
|
| if ($count <= $numdenies) { |
|
| $acctype = 'denyfrom'; |
|
| } |
|
| if ($pattern =~ /\*$/) { |
if ($pattern =~ /\*$/) { |
| #35.8.* |
#35.8.* |
| $pattern=~s/\*//; |
$pattern=~s/\*//; |
| if ($ip =~ /^\Q$pattern\E/) { $allowed=$access{$acctype}; } |
if ($ip =~ /^\Q$pattern\E/) { $allowed=1; } |
| } elsif ($pattern =~ /(\d+\.\d+\.\d+)\.\[(\d+)-(\d+)\]$/) { |
} elsif ($pattern =~ /(\d+\.\d+\.\d+)\.\[(\d+)-(\d+)\]$/) { |
| #35.8.3.[34-56] |
#35.8.3.[34-56] |
| my $low=$2; |
my $low=$2; |
|
Line 5081 sub check_ip_acc {
|
Line 5070 sub check_ip_acc {
|
| $pattern=$1; |
$pattern=$1; |
| if ($ip =~ /^\Q$pattern\E/) { |
if ($ip =~ /^\Q$pattern\E/) { |
| my $last=(split(/\./,$ip))[3]; |
my $last=(split(/\./,$ip))[3]; |
| if ($last <=$high && $last >=$low) { $allowed=$access{$acctype}; } |
if ($last <=$high && $last >=$low) { $allowed=1; } |
| } |
} |
| } elsif ($pattern =~ /^\*/) { |
} elsif ($pattern =~ /^\*/) { |
| #*.msu.edu |
#*.msu.edu |
|
Line 5091 sub check_ip_acc {
|
Line 5080 sub check_ip_acc {
|
| my $netaddr=inet_aton($ip); |
my $netaddr=inet_aton($ip); |
| ($name)=gethostbyaddr($netaddr,AF_INET); |
($name)=gethostbyaddr($netaddr,AF_INET); |
| } |
} |
| if ($name =~ /\Q$pattern\E$/i) { $allowed=$access{$acctype}; } |
if ($name =~ /\Q$pattern\E$/i) { $allowed=1; } |
| } elsif ($pattern =~ /\d+\.\d+\.\d+\.\d+/) { |
} elsif ($pattern =~ /\d+\.\d+\.\d+\.\d+/) { |
| #127.0.0.1 |
#127.0.0.1 |
| if ($ip =~ /^\Q$pattern\E/) { $allowed=$access{$acctype}; } |
if ($ip =~ /^\Q$pattern\E/) { $allowed=1; } |
| } else { |
} else { |
| #some.name.com |
#some.name.com |
| if (!defined($name)) { |
if (!defined($name)) { |
|
Line 5102 sub check_ip_acc {
|
Line 5091 sub check_ip_acc {
|
| my $netaddr=inet_aton($ip); |
my $netaddr=inet_aton($ip); |
| ($name)=gethostbyaddr($netaddr,AF_INET); |
($name)=gethostbyaddr($netaddr,AF_INET); |
| } |
} |
| if ($name =~ /\Q$pattern\E$/i) { $allowed=$access{$acctype}; } |
if ($name =~ /\Q$pattern\E$/i) { $allowed=1; } |
| } |
|
| if ($allowed =~ /^(0|1)$/) { last; } |
|
| } |
|
| if ($allowed eq '') { |
|
| if ($numdenies && !$numallows) { |
|
| $allowed = 1; |
|
| } else { |
|
| $allowed = 0; |
|
| } |
} |
| |
if ($allowed) { last; } |
| } |
} |
| return $allowed; |
return $allowed; |
| } |
} |
|
Line 17253 sub des_decrypt {
|
Line 17235 sub des_decrypt {
|
| return $plaintext; |
return $plaintext; |
| } |
} |
| |
|
| sub make_short_symbs { |
|
| my ($cdom,$cnum,$navmap) = @_; |
|
| return unless (ref($navmap)); |
|
| my ($numnew,@errors); |
|
| my @toshorten = &Apache::loncommon::get_env_multiple('form.addtiny'); |
|
| if (@toshorten) { |
|
| my (%maps,%resources,%titles); |
|
| &Apache::loncourserespicker::enumerate_course_contents($navmap,\%maps,\%resources,\%titles, |
|
| 'shorturls',$cdom,$cnum); |
|
| my %tocreate; |
|
| if (keys(%resources)) { |
|
| foreach my $item (sort {$a <=> $b} (@toshorten)) { |
|
| my $symb = $resources{$item}; |
|
| if ($symb) { |
|
| $tocreate{$cnum.'&'.$symb} = 1; |
|
| } |
|
| } |
|
| } |
|
| if (keys(%tocreate)) { |
|
| my %coursetiny = &Apache::lonnet::dump('tiny',$cdom,$cnum); |
|
| my $su = Short::URL->new(no_vowels => 1); |
|
| my $init = ''; |
|
| my (%newunique,%addcourse,%courseonly,%failed); |
|
| # get lock on tiny db |
|
| my $now = time; |
|
| my $lockhash = { |
|
| "lock\0$now" => $env{'user.name'}. |
|
| ':'.$env{'user.domain'}, |
|
| }; |
|
| my $tries = 0; |
|
| my $gotlock = &Apache::lonnet::newput_dom('tiny',$lockhash,$cdom); |
|
| my ($code,$error); |
|
| while (($gotlock ne 'ok') && ($tries<3)) { |
|
| $tries ++; |
|
| sleep 1; |
|
| $gotlock = &Apache::lonnet::newput_dom('tiny',$lockhash,$cdom); |
|
| } |
|
| if ($gotlock eq 'ok') { |
|
| $init = &shorten_symbs($cdom,$init,$su,\%coursetiny,\%tocreate,\%newunique, |
|
| \%addcourse,\%courseonly,\%failed); |
|
| if (keys(%failed)) { |
|
| my $numfailed = scalar(keys(%failed)); |
|
| push(@errors,&mt('error: could not obtain unique six character URL for [quant,_1,resource]',$numfailed)); |
|
| } |
|
| if (keys(%newunique)) { |
|
| my $putres = &Apache::lonnet::newput_dom('tiny',\%newunique,$cdom); |
|
| if ($putres eq 'ok') { |
|
| $numnew = scalar(keys(%newunique)); |
|
| my $newputres = &Apache::lonnet::newput('tiny',\%addcourse,$cdom,$cnum); |
|
| unless ($newputres eq 'ok') { |
|
| push(@errors,&mt('error: could not store course look-up of short URLs')); |
|
| } |
|
| } else { |
|
| push(@errors,&mt('error: could not store unique six character URLs')); |
|
| } |
|
| } |
|
| } |
|
| } |
|
| } |
|
| return ($numnew,\@errors); |
|
| } |
|
| |
|
| sub shorten_symbs { |
|
| my ($cdom,$init,$su,$coursetiny,$tocreate,$newunique,$addcourse,$courseonly,$failed) = @_; |
|
| return unless ((ref($su)) && (ref($coursetiny) eq 'HASH') && (ref($tocreate) eq 'HASH') && |
|
| (ref($newunique) eq 'HASH') && (ref($addcourse) eq 'HASH') && |
|
| (ref($courseonly) eq 'HASH') && (ref($failed) eq 'HASH')); |
|
| my (%possibles,%collisions); |
|
| foreach my $key (keys(%{$tocreate})) { |
|
| my $num = String::CRC32::crc32($key); |
|
| my $tiny = $su->encode($num,$init); |
|
| if ($tiny) { |
|
| $possibles{$tiny} = $key; |
|
| } |
|
| } |
|
| if (!$init) { |
|
| $init = 1; |
|
| } else { |
|
| $init ++; |
|
| } |
|
| if (keys(%possibles)) { |
|
| my @posstiny = keys(%possibles); |
|
| my $configuname = &Apache::lonnet::get_domainconfiguser($cdom); |
|
| my %currtiny = &Apache::lonnet::get('tiny',\@posstiny,$cdom,$configuname); |
|
| if (keys(%currtiny)) { |
|
| foreach my $key (keys(%currtiny)) { |
|
| next if ($currtiny{$key} eq ''); |
|
| if ($currtiny{$key} eq $possibles{$key}) { |
|
| my ($tcnum,$tsymb) = split(/\&/,$currtiny{$key}); |
|
| unless (($coursetiny->{$tsymb} eq $key) || ($addcourse->{$tsymb} eq $key) || ($courseonly->{$tsymb} eq $key)) { |
|
| $courseonly->{$tsymb} = $key; |
|
| } |
|
| } else { |
|
| $collisions{$possibles{$key}} = 1; |
|
| } |
|
| delete($possibles{$key}); |
|
| } |
|
| } |
|
| foreach my $key (keys(%possibles)) { |
|
| $newunique->{$key} = $possibles{$key}; |
|
| my ($tcnum,$tsymb) = split(/\&/,$possibles{$key}); |
|
| unless (($coursetiny->{$tsymb} eq $key) || ($addcourse->{$tsymb} eq $key) || ($courseonly->{$tsymb} eq $key)) { |
|
| $addcourse->{$tsymb} = $key; |
|
| } |
|
| } |
|
| } |
|
| if (keys(%collisions)) { |
|
| if ($init <5) { |
|
| if (!$init) { |
|
| $init = 1; |
|
| } else { |
|
| $init ++; |
|
| } |
|
| $init = &shorten_symbs($cdom,$init,$su,$coursetiny,\%collisions, |
|
| $newunique,$addcourse,$courseonly,$failed); |
|
| } else { |
|
| foreach my $key (keys(%collisions)) { |
|
| $failed->{$key} = 1; |
|
| $failed->{$key} = 1; |
|
| } |
|
| } |
|
| } |
|
| return $init; |
|
| } |
|
| |
|
| sub is_nonframeable { |
sub is_nonframeable { |
| my ($url,$absolute,$hostname,$ip,$nocache) = @_; |
my ($url,$absolute,$hostname,$ip,$nocache) = @_; |
| my ($remprotocol,$remhost) = ($url =~ m{^(https?)\://(([a-z0-9]+(-[a-z0-9]+)*\.)+[a-z]{2,})}i); |
my ($remprotocol,$remhost) = ($url =~ m{^(https?)\://(([a-z0-9]+(-[a-z0-9]+)*\.)+[a-z]{2,})}i); |
![[BACK]](/icons/back.gif){kind=icon}
Return to loncommon.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / interface