|
version 1.27, 2002/02/12 21:42:18
|
version 1.37, 2002/08/07 18:04:35
|
|
Line 68 BEGIN {
|
Line 68 BEGIN {
|
| $ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/; |
$ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/; |
| my $krbdefdom=$1; |
my $krbdefdom=$1; |
| $krbdefdom=~tr/a-z/A-Z/; |
$krbdefdom=~tr/a-z/A-Z/; |
| $authformnop=(<<END); |
my %param = ( formname => 'document.cu', |
| <p> |
kerb_def_dom => $krbdefdom |
| <input type="radio" name="login" value="" checked="checked" |
); |
| onClick="clicknop(this.form);"> |
$loginscript = &Apache::loncommon::authform_header(%param); |
| Do not change login data |
$generalrule = &Apache::loncommon::authform_authorwarning(%param); |
| </p> |
$authformnop = &Apache::loncommon::authform_nochange(%param); |
| END |
$authformkrb = &Apache::loncommon::authform_kerberos(%param); |
| $authformkrb=(<<END); |
$authformint = &Apache::loncommon::authform_internal(%param); |
| <p> |
$authformfsys = &Apache::loncommon::authform_filesystem(%param); |
| <input type=radio name=login value=krb onClick="clickkrb(this.form);"> |
$authformloc = &Apache::loncommon::authform_local(%param); |
| Kerberos authenticated with domain |
|
| <input type=text size=10 name=krbdom onChange="setkrb(this.form);"> |
|
| </p> |
|
| END |
|
| $authformint=(<<END); |
|
| <p> |
|
| <input type=radio name=login value=int onClick="clickint(this.form);"> |
|
| Internally authenticated (with initial password |
|
| <input type=text size=10 name=intpwd onChange="setint(this.form);">) |
|
| </p> |
|
| END |
|
| $authformfsys=(<<END); |
|
| <p> |
|
| <input type=radio name=login value=fsys onClick="clickfsys(this.form);"> |
|
| Filesystem authenticated (with initial password |
|
| <input type=text size=10 name=fsyspwd onChange="setfsys(this.form);">) |
|
| </p> |
|
| END |
|
| $authformloc=(<<END); |
|
| <p> |
|
| <input type=radio name=login value=loc onClick="clickloc(this.form);" /> |
|
| Local Authentication with argument |
|
| <input type=text size=10 name=locarg onChange="setloc(this.form);" /> |
|
| </p> |
|
| END |
|
| $loginscript=(<<ENDLOGINSCRIPT); |
|
| <script> |
|
| function setkrb(vf) { |
|
| if (vf.krbdom.value!='') { |
|
| vf.login[0].checked=true; |
|
| vf.krbdom.value=vf.krbdom.value.toUpperCase(); |
|
| vf.intpwd.value=''; |
|
| vf.fsyspwd.value=''; |
|
| vf.locarg.value=''; |
|
| } |
|
| } |
|
| |
|
| function setint(vf) { |
|
| if (vf.intpwd.value!='') { |
|
| vf.login[1].checked=true; |
|
| vf.krbdom.value=''; |
|
| vf.fsyspwd.value=''; |
|
| vf.locarg.value=''; |
|
| } |
|
| } |
|
| |
|
| function setfsys(vf) { |
|
| if (vf.fsyspwd.value!='') { |
|
| vf.login[2].checked=true; |
|
| vf.krbdom.value=''; |
|
| vf.intpwd.value=''; |
|
| vf.locarg.value=''; |
|
| } |
|
| } |
|
| |
|
| function setloc(vf) { |
|
| if (vf.locarg.value!='') { |
|
| vf.login[3].checked=true; |
|
| vf.krbdom.value=''; |
|
| vf.intpwd.value=''; |
|
| vf.fsyspwd.value=''; |
|
| } |
|
| } |
|
| |
|
| function clicknop(vf) { |
|
| vf.krbdom.value=''; |
|
| vf.intpwd.value=''; |
|
| vf.fsyspwd.value=''; |
|
| vf.locarg.value=''; |
|
| } |
|
| |
|
| function clickkrb(vf) { |
|
| vf.krbdom.value='$krbdefdom'; |
|
| vf.intpwd.value=''; |
|
| vf.fsyspwd.value=''; |
|
| vf.locarg.value=''; |
|
| } |
|
| |
|
| function clickint(vf) { |
|
| vf.krbdom.value=''; |
|
| vf.fsyspwd.value=''; |
|
| vf.locarg.value=''; |
|
| } |
|
| |
|
| function clickfsys(vf) { |
|
| vf.krbdom.value=''; |
|
| vf.intpwd.value=''; |
|
| vf.locarg.value=''; |
|
| } |
|
| |
|
| function clickloc(vf) { |
|
| vf.krbdom.value=''; |
|
| vf.intpwd.value=''; |
|
| vf.fsyspwd.value=''; |
|
| } |
|
| </script> |
|
| ENDLOGINSCRIPT |
|
| $generalrule=<<END; |
|
| <p> |
|
| <i>As a general rule, only authors or co-authors should be filesystem |
|
| authenticated (which allows access to the server filesystem).</i> |
|
| </p> |
|
| END |
|
| } |
} |
| |
|
| # =================================================================== Phase one |
# =================================================================== Phase one |
|
Line 188 END
|
Line 85 END
|
| sub phase_one { |
sub phase_one { |
| my $r=shift; |
my $r=shift; |
| my $defdom=$ENV{'user.domain'}; |
my $defdom=$ENV{'user.domain'}; |
| $r->print(<<ENDDOCUMENT); |
my @domains = &Apache::loncommon::get_domains(); |
| |
my $domform = &Apache::loncommon::select_dom_form($defdom,'ccdomain'); |
| |
$r->print(<<"ENDDOCUMENT"); |
| <html> |
<html> |
| <head> |
<head> |
| <title>The LearningOnline Network with CAPA</title> |
<title>The LearningOnline Network with CAPA</title> |
|
Line 197 sub phase_one {
|
Line 96 sub phase_one {
|
| <h1>Create User, Change User Privileges</h1> |
<h1>Create User, Change User Privileges</h1> |
| <form action=/adm/createuser method=post> |
<form action=/adm/createuser method=post> |
| <input type=hidden name=phase value=two> |
<input type=hidden name=phase value=two> |
| |
<p> |
| Username: <input type=text size=15 name=ccuname><br> |
Username: <input type=text size=15 name=ccuname><br> |
| Domain: <input type=text size=15 name=ccdomain value=$defdom><p> |
Domain: $domform |
| |
</p> |
| <input type=submit value="Continue"> |
<input type=submit value="Continue"> |
| </form> |
</form> |
| </body> |
</body> |
|
Line 215 sub phase_two {
|
Line 116 sub phase_two {
|
| $ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/; |
$ENV{'SERVER_NAME'}=~/(\w+\.\w+)$/; |
| my $krbdefdom=$1; |
my $krbdefdom=$1; |
| $krbdefdom=~tr/a-z/A-Z/; |
$krbdefdom=~tr/a-z/A-Z/; |
| |
my %param = ( formname => 'document.cu', |
| |
kerb_def_dom => $krbdefdom |
| |
); |
| |
$loginscript = &Apache::loncommon::authform_header(%param); |
| |
|
| my $defdom=$ENV{'user.domain'}; |
my $defdom=$ENV{'user.domain'}; |
| |
|
|
Line 224 sub phase_two {
|
Line 129 sub phase_two {
|
| <html> |
<html> |
| <head> |
<head> |
| <title>The LearningOnline Network with CAPA</title> |
<title>The LearningOnline Network with CAPA</title> |
| <script> |
<script type="text/javascript" language="Javascript"> |
| |
|
| function pclose() { |
function pclose() { |
| parmwin=window.open("/adm/rat/empty.html","LONCAPAparms", |
parmwin=window.open("/adm/rat/empty.html","LONCAPAparms", |
|
Line 260 ENDDOCHEAD
|
Line 165 ENDDOCHEAD
|
| <input type="hidden" name="pres_value" value="" > |
<input type="hidden" name="pres_value" value="" > |
| <input type="hidden" name="pres_type" value="" > |
<input type="hidden" name="pres_type" value="" > |
| <input type="hidden" name="pres_marker" value="" > |
<input type="hidden" name="pres_marker" value="" > |
| <input type="hidden" name="cuname" value="$ccuname"> |
|
| <input type="hidden" name="cdomain" value="$ccdomain"> |
|
| ENDFORMINFO |
ENDFORMINFO |
| my $uhome=&Apache::lonnet::homeserver($ccuname,$ccdomain); |
my $uhome=&Apache::lonnet::homeserver($ccuname,$ccdomain); |
| my %incdomains; |
my %incdomains; |
|
Line 275 ENDFORMINFO
|
Line 178 ENDFORMINFO
|
| } |
} |
| } |
} |
| if ($uhome eq 'no_host') { |
if ($uhome eq 'no_host') { |
| |
my $home_server_list= |
| |
'<option value="default" selected>default</option>'."\n". |
| |
&Apache::loncommon::home_server_option_list($ccdomain); |
| |
|
| $r->print(<<ENDNEWUSER); |
$r->print(<<ENDNEWUSER); |
| $dochead |
$dochead |
| <h1>Create New User</h1> |
<h1>Create New User</h1> |
| $forminfo |
$forminfo |
| <h2>New user "$ccuname" in domain $ccdomain</h2> |
<h2>New user "$ccuname" in domain $ccdomain</h2> |
| |
<script type="text/javascript" language="Javascript"> |
| $loginscript |
$loginscript |
| |
</script> |
| <input type='hidden' name='makeuser' value='1' /> |
<input type='hidden' name='makeuser' value='1' /> |
| <h3>Personal Data</h3> |
<h3>Personal Data</h3> |
| <p> |
<p> |
|
Line 295 $loginscript
|
Line 204 $loginscript
|
| <td><input type='text' name='cgen' size='5' /></td></tr> |
<td><input type='text' name='cgen' size='5' /></td></tr> |
| </table> |
</table> |
| ID/Student Number <input type='text' name='cstid' size='15' /></p> |
ID/Student Number <input type='text' name='cstid' size='15' /></p> |
| |
Home Server: <select name="hserver" size="1"> $home_server_list </select> |
| <hr /> |
<hr /> |
| |
|
| <h3>Login Data</h3> |
<h3>Login Data</h3> |
| $generalrule |
<p>$generalrule </p> |
| $authformkrb |
<p>$authformkrb </p> |
| $authformint |
<p>$authformint </p> |
| $authformfsys |
<p>$authformfsys</p> |
| $authformloc |
<p>$authformloc </p> |
| ENDNEWUSER |
ENDNEWUSER |
| } else { # user already exists |
} else { # user already exists |
| $r->print(<<ENDCHANGEUSER); |
$r->print(<<ENDCHANGEUSER); |
|
Line 312 $dochead
|
Line 220 $dochead
|
| $forminfo |
$forminfo |
| <h2>User "$ccuname" in domain $ccdomain </h2> |
<h2>User "$ccuname" in domain $ccdomain </h2> |
| ENDCHANGEUSER |
ENDCHANGEUSER |
| my $rolesdump=&Apache::lonnet::reply( |
# Get the users information |
| "dump:$ccdomain:$ccuname:roles",$uhome); |
my %userenv = &Apache::lonnet::get('environment', |
| |
['firstname','middlename','lastname','generation'], |
| |
$ccdomain,$ccuname); |
| |
my %rolesdump=&Apache::lonnet::dump('roles',$ccdomain,$ccuname); |
| |
$r->print(<<END); |
| |
<hr /> |
| |
<table border="2"> |
| |
<tr> |
| |
<th>first name</th><th>middle name</th><th>last name</th><th>generation</th> |
| |
</tr> |
| |
<tr> |
| |
END |
| |
foreach ('firstname','middlename','lastname','generation') { |
| |
my $result = &Apache::lonnet::allowed('mau',$ccdomain); |
| |
&Apache::lonnet::logthis("allowed: mau, $ccdomain = $result"); |
| |
if (&Apache::lonnet::allowed('mau',$ccdomain)) { |
| |
$r->print(<<"END"); |
| |
<td><input type="text" name="c$_" value="$userenv{$_}" size="15"/></td> |
| |
END |
| |
} else { |
| |
$r->print('<td>'.$userenv{$_}.'</td>'); |
| |
} |
| |
} |
| |
$r->print(<<END); |
| |
</tr> |
| |
</table> |
| |
END |
| # Build up table of user roles to allow revocation of a role. |
# Build up table of user roles to allow revocation of a role. |
| unless ($rolesdump eq 'con_lost' || $rolesdump =~ m/^error/i) { |
my ($tmp) = keys(%rolesdump); |
| |
unless ($tmp =~ /^(con_lost|error)/i) { |
| my $now=time; |
my $now=time; |
| $r->print('<hr /><h3>Revoke Existing Roles</h3>'. |
$r->print(<<END); |
| '<table border=2><tr><th>Revoke</th><th>Role</th><th>Extent</th>'. |
<hr /> |
| '<th>Start</th><th>End</th>'); |
<h3>Revoke Existing Roles</h3> |
| foreach (split(/&/,$rolesdump)) { |
<table border=2> |
| if ($_!~/^rolesdef\&/) { |
<tr><th>Revoke</th><th>Role</th><th>Extent</th><th>Start</th><th>End</th> |
| my ($area,$role)=split(/=/,$_); |
END |
| my $thisrole=$area; |
foreach my $area (keys(%rolesdump)) { |
| $area=~s/\_\w\w$//; |
next if ($area =~ /^rolesdef/); |
| my ($role_code,$role_end_time,$role_start_time)=split(/_/,$role); |
my $role = $rolesdump{$area}; |
| my $bgcol='ffffff'; |
my $thisrole=$area; |
| my $allows=0; |
$area =~ s/\_\w\w$//; |
| if ($area=~/^\/(\w+)\/(\d\w+)/) { |
my ($role_code,$role_end_time,$role_start_time) = |
| my %coursedata=&Apache::lonnet::coursedescription($1.'_'.$2); |
split(/_/,$role); |
| my $carea='Course: '.$coursedata{'description'}; |
my $bgcol='ffffff'; |
| $inccourses{$1.'_'.$2}=1; |
my $allowed=0; |
| if (&Apache::lonnet::allowed('c'.$role_code,$1.'/'.$2)) { |
if ($area =~ /^\/(\w+)\/(\d\w+)/ ) { |
| $allows=1; |
my %coursedata= |
| } |
&Apache::lonnet::coursedescription($1.'_'.$2); |
| # Compute the background color based on $area |
my $carea='Course: '.$coursedata{'description'}; |
| $bgcol=$1.'_'.$2; |
$inccourses{$1.'_'.$2}=1; |
| $bgcol=~s/[^8-9b-e]//g; |
if (&Apache::lonnet::allowed('c'.$role_code,$1.'/'.$2)) { |
| $bgcol=substr($bgcol.$bgcol.$bgcol.'ffffff',0,6); |
$allowed=1; |
| if ($area=~/^\/(\w+)\/(\d\w+)\/(\w+)/) { |
} |
| $carea.='<br>Section/Group: '.$3; |
# Compute the background color based on $area |
| } |
$bgcol=$1.'_'.$2; |
| $area=$carea; |
$bgcol=~s/[^8-9b-e]//g; |
| } else { |
$bgcol=substr($bgcol.$bgcol.$bgcol.'ffffff',0,6); |
| # Determine if current user is able to revoke privileges |
if ($area=~/^\/(\w+)\/(\d\w+)\/(\w+)/) { |
| if ($area=~/^\/(\w+)\//) { |
$carea.='<br>Section/Group: '.$3; |
| if (&Apache::lonnet::allowed('c'.$role_code,$1)) { |
} |
| $allows=1; |
$area=$carea; |
| } |
} else { |
| } else { |
# Determine if current user is able to revoke privileges |
| if (&Apache::lonnet::allowed('c'.$role_code,'/')) { |
if ($area=~ /^\/(\w+)\//) { |
| $allows=1; |
if (&Apache::lonnet::allowed('c'.$role_code,$1)) { |
| } |
$allowed=1; |
| } |
} |
| } |
} else { |
| |
if (&Apache::lonnet::allowed('c'.$role_code,'/')) { |
| $r->print('<tr bgcolor=#"'.$bgcol.'"><td>'); |
$allowed=1; |
| my $active=1; |
} |
| if (($role_end_time) && ($now>$role_end_time)) { $active=0; } |
} |
| if (($active) && ($allows)) { |
} |
| $r->print('<input type="checkbox" name="rev:' |
# I have no idea what the hell the above code does |
| .$thisrole.'">'); |
# So the following is a check: |
| } else { |
if ($allowed) { |
| $r->print(' '); |
# If we are looking at a co-author role, make sure it is |
| } |
# for the current users construction space before we let |
| $r->print('</td><td>'.&Apache::lonnet::plaintext($role_code). |
# them revoke it. |
| '</td><td>'.$area.'</td><td>'. |
if (($role_code eq 'ca') && |
| ($role_start_time ? localtime($role_start_time) |
($ENV{'request.role'} !~ /^dc/)) { |
| : ' ' ) |
if ($area !~ |
| .'</td><td>'. |
/^\/$ENV{'user.domain'}\/$ENV{'user.name'}/) { |
| ($role_end_time ? localtime($role_end_time) |
$allowed = 0; |
| : ' ' ) |
} |
| ."</td></tr>\n"); |
} |
| } |
} |
| } |
my $row = ''; |
| |
$row.='<tr bgcolor=#"'.$bgcol.'"><td>'; |
| |
my $active=1; |
| |
$active=0 if (($role_end_time) && ($now>$role_end_time)); |
| |
if (($active) && ($allowed)) { |
| |
$row.= '<input type="checkbox" name="rev:'.$thisrole.'">'; |
| |
} else { |
| |
$row.=' '; |
| |
} |
| |
$row.= '</td><td>'.&Apache::lonnet::plaintext($role_code). |
| |
'</td><td>'.$area. |
| |
'</td><td>'.($role_start_time?localtime($role_start_time) |
| |
: ' ' ). |
| |
'</td><td>'.($role_end_time ?localtime($role_end_time) |
| |
: ' ' ) |
| |
."</td></tr>\n"; |
| |
$r->print($row); |
| |
} # end of foreach (table building loop) |
| $r->print('</table>'); |
$r->print('</table>'); |
| } |
} # End of unless |
| my $currentauth=&Apache::lonnet::queryauthenticate($ccuname,$ccdomain); |
my $currentauth=&Apache::lonnet::queryauthenticate($ccuname,$ccdomain); |
| if ($currentauth=~/^krb4:/) { |
if ($currentauth=~/^krb4:/) { |
| $currentauth=~/^krb4:(.*)/; |
$currentauth=~/^krb4:(.*)/; |
| my $krbdefdom2=$1; |
my $krbdefdom2=$1; |
| $loginscript=~s/vf\.krbdom\.value='.*?';/vf.krbdom.value='$krbdefdom2';/; |
my %param = ( formname => 'document.cu', |
| |
kerb_def_dom => $krbdefdom |
| |
); |
| |
$loginscript = &Apache::loncommon::authform_header(%param); |
| } |
} |
| # Check for a bad authentication type |
# Check for a bad authentication type |
| unless ($currentauth=~/^krb4:/ or |
unless ($currentauth=~/^krb4:/ or |
|
Line 392 ENDCHANGEUSER
|
Line 347 ENDCHANGEUSER
|
| if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) { |
if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) { |
| $r->print(<<ENDBADAUTH); |
$r->print(<<ENDBADAUTH); |
| <hr /> |
<hr /> |
| |
<script type="text/javascript" language="Javascript"> |
| $loginscript |
$loginscript |
| |
</script> |
| <font color='#ff0000'>ERROR:</font> |
<font color='#ff0000'>ERROR:</font> |
| This user has an unrecognized authentication scheme ($currentauth). |
This user has an unrecognized authentication scheme ($currentauth). |
| Please specify login data below. |
Please specify login data below. |
| <h3>Login Data</h3> |
<h3>Login Data</h3> |
| $generalrule |
<p>$generalrule</p> |
| $authformkrb |
<p>$authformkrb</p> |
| $authformint |
<p>$authformint</p> |
| $authformfsys |
<p>$authformfsys</p> |
| $authformloc |
<p>$authformloc</p> |
| ENDBADAUTH |
ENDBADAUTH |
| } else { |
} else { |
| # This user is not allowed to modify the users |
# This user is not allowed to modify the users |
| # authentication scheme, so just notify them of the problem |
# authentication scheme, so just notify them of the problem |
| $r->print(<<ENDBADAUTH); |
$r->print(<<ENDBADAUTH); |
| <hr /> |
<hr /> |
| |
<script type="text/javascript" language="Javascript"> |
| $loginscript |
$loginscript |
| |
</script> |
| <font color="#ff0000"> ERROR: </font> |
<font color="#ff0000"> ERROR: </font> |
| This user has an unrecognized authentication scheme ($currentauth). |
This user has an unrecognized authentication scheme ($currentauth). |
| Please alert a domain coordinator of this situation. |
Please alert a domain coordinator of this situation. |
|
Line 420 ENDBADAUTH
|
Line 379 ENDBADAUTH
|
| my $authform_other=''; |
my $authform_other=''; |
| if ($currentauth=~/^krb4:/) { |
if ($currentauth=~/^krb4:/) { |
| $authformcurrent=$authformkrb; |
$authformcurrent=$authformkrb; |
| $authform_other=$authformint.$authformfsys.$authformloc; |
$authform_other="<p>$authformint</p>\n". |
| # embarrassing script hack here |
"<p>$authformfsys</p><p>$authformloc</p>"; |
| $loginscript=~s/login\[3\]/login\[4\]/; # loc |
|
| $loginscript=~s/login\[2\]/login\[3\]/; # fsys |
|
| $loginscript=~s/login\[1\]/login\[2\]/; # int |
|
| $loginscript=~s/login\[0\]/login\[1\]/; # krb4 |
|
| } |
} |
| elsif ($currentauth=~/^internal:/) { |
elsif ($currentauth=~/^internal:/) { |
| $authformcurrent=$authformint; |
$authformcurrent=$authformint; |
| $authform_other=$authformkrb.$authformfsys.$authformloc; |
$authform_other="<p>$authformkrb</p>". |
| # embarrassing script hack here |
"<p>$authformfsys</p><p>$authformloc</p>"; |
| $loginscript=~s/login\[3\]/login\[4\]/; # loc |
|
| $loginscript=~s/login\[2\]/login\[3\]/; # fsys |
|
| $loginscript=~s/login\[1\]/login\[1\]/; # int |
|
| $loginscript=~s/login\[0\]/login\[2\]/; # krb4 |
|
| } |
} |
| elsif ($currentauth=~/^unix:/) { |
elsif ($currentauth=~/^unix:/) { |
| $authformcurrent=$authformfsys; |
$authformcurrent=$authformfsys; |
| $authform_other=$authformkrb.$authformint.$authformloc; |
$authform_other="<p>$authformkrb</p>". |
| # embarrassing script hack here |
"<p>$authformint</p><p>$authformloc;</p>"; |
| $loginscript=~s/login\[3\]/login\[4\]/; # loc |
|
| $loginscript=~s/login\[1\]/login\[3\]/; # int |
|
| $loginscript=~s/login\[2\]/login\[1\]/; # fsys |
|
| $loginscript=~s/login\[0\]/login\[2\]/; # krb4 |
|
| } |
} |
| elsif ($currentauth=~/^localauth:/) { |
elsif ($currentauth=~/^localauth:/) { |
| $authformcurrent=$authformloc; |
$authformcurrent=$authformloc; |
| $authform_other=$authformkrb.$authformint.$authformfsys; |
$authform_other="<p>$authformkrb</p>". |
| # embarrassing script hack here |
"<p>$authformint</p><p>$authformfsys</p>"; |
| $loginscript=~s/login\[3\]/login\[loc\]/; # loc |
|
| $loginscript=~s/login\[2\]/login\[4\]/; # fsys |
|
| $loginscript=~s/login\[1\]/login\[3\]/; # int |
|
| $loginscript=~s/login\[0\]/login\[2\]/; # krb4 |
|
| $loginscript=~s/login\[loc\]/login\[1\]/; # loc |
|
| } |
} |
| $authformcurrent=<<ENDCURRENTAUTH; |
$authformcurrent=<<ENDCURRENTAUTH; |
| <table border='1'> |
<table border='1'> |
|
Line 469 ENDCURRENTAUTH
|
Line 411 ENDCURRENTAUTH
|
| # Current user has login modification privileges |
# Current user has login modification privileges |
| $r->print(<<ENDOTHERAUTHS); |
$r->print(<<ENDOTHERAUTHS); |
| <hr /> |
<hr /> |
| |
<script type="text/javascript" language="Javascript"> |
| $loginscript |
$loginscript |
| |
</script> |
| <h3>Change Current Login Data</h3> |
<h3>Change Current Login Data</h3> |
| $generalrule |
<p>$generalrule</p> |
| $authformnop |
<p>$authformnop</p> |
| $authformcurrent |
<p>$authformcurrent</p> |
| <h3>Enter New Login Data</h3> |
<h3>Enter New Login Data</h3> |
| $authform_other |
$authform_other |
| ENDOTHERAUTHS |
ENDOTHERAUTHS |
|
Line 545 ENDDROW
|
Line 489 ENDDROW
|
| # ================================================================= Phase Three |
# ================================================================= Phase Three |
| sub phase_three { |
sub phase_three { |
| my $r=shift; |
my $r=shift; |
| |
my $uhome=&Apache::lonnet::homeserver($ENV{'form.ccuname'}, |
| |
$ENV{'form.ccdomain'}); |
| # Error messages |
# Error messages |
| my $error = '<font color="#ff0000">Error:</font>'; |
my $error = '<font color="#ff0000">Error:</font>'; |
| my $end = '</body></html>'; |
my $end = '</body></html>'; |
|
Line 558 sub phase_three {
|
Line 504 sub phase_three {
|
| <img align="right" src="/adm/lonIcons/lonlogos.gif"> |
<img align="right" src="/adm/lonIcons/lonlogos.gif"> |
| ENDTHREEHEAD |
ENDTHREEHEAD |
| # Check Inputs |
# Check Inputs |
| if (! $ENV{'form.cuname'} ) { |
if (! $ENV{'form.ccuname'} ) { |
| $r->print($error.'No login name specified.'.$end); |
$r->print($error.'No login name specified.'.$end); |
| return; |
return; |
| } |
} |
| if ( $ENV{'form.cuname'} =~/\W/) { |
if ( $ENV{'form.ccuname'} =~/\W/) { |
| $r->print($error.'Invalid login name. '. |
$r->print($error.'Invalid login name. '. |
| 'Only letters, numbers, and underscores are valid.'. |
'Only letters, numbers, and underscores are valid.'. |
| $end); |
$end); |
| return; |
return; |
| } |
} |
| if (! $ENV{'form.cdomain'} ) { |
if (! $ENV{'form.ccdomain'} ) { |
| $r->print($error.'No domain specified.'.$end); |
$r->print($error.'No domain specified.'.$end); |
| return; |
return; |
| } |
} |
| if ( $ENV{'form.cdomain'} =~/\W/) { |
if ( $ENV{'form.ccdomain'} =~/\W/) { |
| $r->print($error.'Invalid domain name. '. |
$r->print($error.'Invalid domain name. '. |
| 'Only letters, numbers, and underscores are valid.'. |
'Only letters, numbers, and underscores are valid.'. |
| $end); |
$end); |
| return; |
return; |
| } |
} |
| |
if (! exists($ENV{'form.makeuser'})) { |
| |
# Modifying an existing user, so check the validity of the name |
| |
if ($uhome eq 'no_host') { |
| |
$r->print($error.'Unable to determine home server for '. |
| |
$ENV{'form.ccuname'}.' in domain '. |
| |
$ENV{'form.ccdomain'}.'.'); |
| |
return; |
| |
} |
| |
} |
| # Determine authentication method and password for the user being modified |
# Determine authentication method and password for the user being modified |
| my $amode=''; |
my $amode=''; |
| my $genpwd=''; |
my $genpwd=''; |
| if ($ENV{'form.login'} eq 'krb') { |
if ($ENV{'form.login'} eq 'krb') { |
| $amode='krb4'; |
$amode='krb4'; |
| $genpwd=$ENV{'form.krbdom'}; |
$genpwd=$ENV{'form.krbarg'}; |
| } elsif ($ENV{'form.login'} eq 'int') { |
} elsif ($ENV{'form.login'} eq 'int') { |
| $amode='internal'; |
$amode='internal'; |
| $genpwd=$ENV{'form.intpwd'}; |
$genpwd=$ENV{'form.intarg'}; |
| } elsif ($ENV{'form.login'} eq 'fsys') { |
} elsif ($ENV{'form.login'} eq 'fsys') { |
| $amode='unix'; |
$amode='unix'; |
| $genpwd=$ENV{'form.fsyspwd'}; |
$genpwd=$ENV{'form.fsysarg'}; |
| } elsif ($ENV{'form.login'} eq 'loc') { |
} elsif ($ENV{'form.login'} eq 'loc') { |
| $amode='localauth'; |
$amode='localauth'; |
| $genpwd=$ENV{'form.locarg'}; |
$genpwd=$ENV{'form.locarg'}; |
| $genpwd=" " if (!$genpwd); |
$genpwd=" " if (!$genpwd); |
| |
} elsif (($ENV{'form.login'} eq 'nochange') || |
| |
($ENV{'form.login'} eq '' )) { |
| |
# There is no need to tell the user we did not change what they |
| |
# did not ask us to change. |
| |
# If they are creating a new user but have not specified login |
| |
# information this will be caught below. |
| |
} else { |
| |
$r->print($error.'Invalid login mode or password'.$end); |
| |
return; |
| } |
} |
| if ($ENV{'form.makeuser'}) { |
if ($ENV{'form.makeuser'}) { |
| # Create a new user |
# Create a new user |
| $r->print(<<ENDNEWUSERHEAD); |
$r->print(<<ENDNEWUSERHEAD); |
| <h1>Create User</h1> |
<h1>Create User</h1> |
| <h3>Creating user "$ENV{'form.cuname'}" in domain "$ENV{'form.cdomain'}"</h2> |
<h3>Creating user "$ENV{'form.ccuname'}" in domain "$ENV{'form.ccdomain'}"</h2> |
| ENDNEWUSERHEAD |
ENDNEWUSERHEAD |
| # Check for the authentication mode and password |
# Check for the authentication mode and password |
| if (! $amode || ! $genpwd) { |
if (! $amode || ! $genpwd) { |
| $r->print($error.'Invalid login mode or password'.$end); |
$r->print($error.'Invalid login mode or password'.$end); |
| return; |
return; |
| } |
} |
| |
# Determine desired host |
| |
my $desiredhost = $ENV{'form.hserver'}; |
| |
if (lc($desiredhost) eq 'default') { |
| |
$desiredhost = undef; |
| |
} else { |
| |
my %home_servers = &Apache::loncommon::get_home_servers |
| |
($ENV{'form.ccdomain'}); |
| |
if (! exists($home_servers{$desiredhost})) { |
| |
$r->print($error.'Invalid home server specified'); |
| |
return; |
| |
} |
| |
} |
| # Call modifyuser |
# Call modifyuser |
| my $result = &Apache::lonnet::modifyuser |
my $result = &Apache::lonnet::modifyuser |
| ($ENV{'form.cdomain'},$ENV{'form.cuname'}, |
($ENV{'form.ccdomain'},$ENV{'form.ccuname'},$ENV{'form.cstid'}, |
| $ENV{'form.cstid'},$amode,$genpwd, |
$amode,$genpwd,$ENV{'form.cfirst'}, |
| $ENV{'form.cfirst'},$ENV{'form.cmiddle'}, |
$ENV{'form.cmiddle'},$ENV{'form.clast'},$ENV{'form.cgen'}, |
| $ENV{'form.clast'},$ENV{'form.cgen'} |
undef,$desiredhost |
| ); |
); |
| $r->print('Generating user: '.$result); |
$r->print('Generating user: '.$result); |
| $r->print('<br>Home server: '.&Apache::lonnet::homeserver |
my $home = &Apache::lonnet::homeserver($ENV{'form.ccuname'}, |
| ($ENV{'form.cuname'},$ENV{'form.cdomain'})); |
$ENV{'form.ccdomain'}); |
| } elsif ($ENV{'form.login'} ne '') { |
$r->print('<br>Home server: '.$home.' '. |
| |
$Apache::lonnet::libserv{$home}); |
| |
} elsif (($ENV{'form.login'} ne 'nochange') && |
| |
($ENV{'form.login'} ne '' )) { |
| # Modify user privileges |
# Modify user privileges |
| $r->print(<<ENDMODIFYUSERHEAD); |
$r->print(<<ENDMODIFYUSERHEAD); |
| <h1>Change User Privileges</h1> |
<h1>Change User Privileges</h1> |
| <h2>User "$ENV{'form.cuname'}" in domain "$ENV{'form.cdomain'}"</h2> |
<h2>User "$ENV{'form.ccuname'}" in domain "$ENV{'form.ccdomain'}"</h2> |
| ENDMODIFYUSERHEAD |
ENDMODIFYUSERHEAD |
| if (! $amode || ! $genpwd) { |
if (! $amode || ! $genpwd) { |
| $r->print($error.'Invalid login mode or password'.$end); |
$r->print($error.'Invalid login mode or password'.$end); |
| return; |
return; |
| } |
} |
| # Only allow authentification modification if the person has authority |
# Only allow authentification modification if the person has authority |
| if (&Apache::lonnet::allowed('mau',$ENV{'user.domain'})) { |
if (&Apache::lonnet::allowed('mau',$ENV{'form.ccdomain'})) { |
| $r->print('Modifying authentication: '. |
$r->print('Modifying authentication: '. |
| &Apache::lonnet::modifyuserauth( |
&Apache::lonnet::modifyuserauth( |
| $ENV{'form.cdomain'},$ENV{'form.cuname'}, |
$ENV{'form.ccdomain'},$ENV{'form.ccuname'}, |
| $amode,$genpwd)); |
$amode,$genpwd)); |
| $r->print('<br>Home server: '.&Apache::lonnet::homeserver |
$r->print('<br>Home server: '.&Apache::lonnet::homeserver |
| ($ENV{'form.cuname'},$ENV{'form.cdomain'})); |
($ENV{'form.ccuname'},$ENV{'form.ccdomain'})); |
| } else { |
} else { |
| # Okay, this is a non-fatal error. |
# Okay, this is a non-fatal error. |
| $r->print($error.'You do not have the authority to modify '. |
$r->print($error.'You do not have the authority to modify '. |
|
Line 641 ENDMODIFYUSERHEAD
|
Line 620 ENDMODIFYUSERHEAD
|
| } |
} |
| } |
} |
| ## |
## |
| |
if (! $ENV{'form.makeuser'} ) { |
| |
# Check for need to change |
| |
my %userenv = &Apache::lonnet::get |
| |
('environment',['firstname','middlename','lastname','generation'], |
| |
$ENV{'form.ccdomain'},$ENV{'form.ccuname'}); |
| |
my ($tmp) = keys(%userenv); |
| |
if ($tmp =~ /^(con_lost|error)/i) { |
| |
%userenv = (); |
| |
} |
| |
# Check to see if we need to change user information |
| |
foreach ('firstname','middlename','lastname','generation') { |
| |
# Strip leading and trailing whitespace |
| |
$ENV{'form.c'.$_} =~ s/(\s+$|^\s+)//g; |
| |
} |
| |
if (&Apache::lonnet::allowed('mau',$ENV{'form.ccdomain'}) && |
| |
($ENV{'form.cfirstname'} ne $userenv{'firstname'} || |
| |
$ENV{'form.cmiddlename'} ne $userenv{'middlename'} || |
| |
$ENV{'form.clastname'} ne $userenv{'lastname'} || |
| |
$ENV{'form.cgeneration'} ne $userenv{'generation'} )) { |
| |
# Make the change |
| |
my %changeHash; |
| |
$changeHash{'firstname'} = $ENV{'form.cfirstname'}; |
| |
$changeHash{'middlename'} = $ENV{'form.cmiddlename'}; |
| |
$changeHash{'lastname'} = $ENV{'form.clastname'}; |
| |
$changeHash{'generation'} = $ENV{'form.cgeneration'}; |
| |
my $putresult = &Apache::lonnet::put |
| |
('environment',\%changeHash, |
| |
$ENV{'form.ccdomain'},$ENV{'form.ccuname'}); |
| |
if ($putresult eq 'ok') { |
| |
# Tell the user we changed the name |
| |
$r->print(<<"END"); |
| |
<table border="2"> |
| |
<caption>User Information Changed</caption> |
| |
<tr><th> </th> |
| |
<th>first</th> |
| |
<th>middle</th> |
| |
<th>last</th> |
| |
<th>generation</th></tr> |
| |
<tr><td>Previous</td> |
| |
<td>$userenv{'firstname'} </td> |
| |
<td>$userenv{'middlename'} </td> |
| |
<td>$userenv{'lastname'} </td> |
| |
<td>$userenv{'generation'} </td></tr> |
| |
<tr><td>Changed To</td> |
| |
<td>$ENV{'form.cfirstname'} </td> |
| |
<td>$ENV{'form.cmiddlename'} </td> |
| |
<td>$ENV{'form.clastname'} </td> |
| |
<td>$ENV{'form.cgeneration'} </td></tr> |
| |
</table> |
| |
END |
| |
} else { # error occurred |
| |
$r->print("<h2>Unable to successfully change environment for ". |
| |
$ENV{'form.ccuname'}." in domain ". |
| |
$ENV{'form.ccdomain'}."</h2>"); |
| |
} |
| |
} else { # End of if ($ENV ... ) logic |
| |
# They did not want to change the users name but we can |
| |
# still tell them what the name is |
| |
$r->print(<<"END"); |
| |
<h2>User "$ENV{'form.ccuname'}" in domain "$ENV{'form.ccdomain'}"</h2> |
| |
<h4>$userenv{'firstname'} $userenv{'middlename'} $userenv{'lastname'} </h4> |
| |
<h4>Generation: $userenv{'generation'}</h4> |
| |
END |
| |
} |
| |
} |
| |
## |
| my $now=time; |
my $now=time; |
| $r->print('<h3>Modifying Roles</h3>'); |
$r->print('<h3>Modifying Roles</h3>'); |
| foreach (keys (%ENV)) { |
foreach (keys (%ENV)) { |
|
Line 649 ENDMODIFYUSERHEAD
|
Line 694 ENDMODIFYUSERHEAD
|
| if ($_=~/^form\.rev/) { |
if ($_=~/^form\.rev/) { |
| if ($_=~/^form\.rev\:([^\_]+)\_([^\_]+)$/) { |
if ($_=~/^form\.rev\:([^\_]+)\_([^\_]+)$/) { |
| $r->print('Revoking '.$2.' in '.$1.': '. |
$r->print('Revoking '.$2.' in '.$1.': '. |
| &Apache::lonnet::assignrole($ENV{'form.cdomain'}, |
&Apache::lonnet::assignrole($ENV{'form.ccdomain'}, |
| $ENV{'form.cuname'},$1,$2,$now).'<br>'); |
$ENV{'form.ccuname'},$1,$2,$now).'<br>'); |
| if ($2 eq 'st') { |
if ($2 eq 'st') { |
| $1=~/^\/(\w+)\/(\w+)/; |
$1=~/^\/(\w+)\/(\w+)/; |
| my $cid=$1.'_'.$2; |
my $cid=$1.'_'.$2; |
|
Line 658 ENDMODIFYUSERHEAD
|
Line 703 ENDMODIFYUSERHEAD
|
| &Apache::lonnet::critical('put:'. |
&Apache::lonnet::critical('put:'. |
| $ENV{'course.'.$cid.'.domain'}.':'. |
$ENV{'course.'.$cid.'.domain'}.':'. |
| $ENV{'course.'.$cid.'.num'}.':classlist:'. |
$ENV{'course.'.$cid.'.num'}.':classlist:'. |
| &Apache::lonnet::escape($ENV{'form.cuname'}.':'. |
&Apache::lonnet::escape($ENV{'form.ccuname'}.':'. |
| $ENV{'form.cdomain'}).'='. |
$ENV{'form.ccdomain'}).'='. |
| &Apache::lonnet::escape($now.':'), |
&Apache::lonnet::escape($now.':'), |
| $ENV{'course.'.$cid.'.home'}).'<br>'); |
$ENV{'course.'.$cid.'.home'}).'<br>'); |
| } |
} |
|
Line 681 ENDMODIFYUSERHEAD
|
Line 726 ENDMODIFYUSERHEAD
|
| # Assign the role and report it |
# Assign the role and report it |
| $r->print('Assigning: '.$3.' in '.$url.': '. |
$r->print('Assigning: '.$3.' in '.$url.': '. |
| &Apache::lonnet::assignrole( |
&Apache::lonnet::assignrole( |
| $ENV{'form.cdomain'},$ENV{'form.cuname'}, |
$ENV{'form.ccdomain'},$ENV{'form.ccuname'}, |
| $url,$3,$end,$start). |
$url,$3,$end,$start). |
| '<br>'); |
'<br>'); |
| # Handle students differently |
# Handle students differently |
|
Line 693 ENDMODIFYUSERHEAD
|
Line 738 ENDMODIFYUSERHEAD
|
| 'put:'.$ENV{'course.'.$cid.'.domain'}.':'. |
'put:'.$ENV{'course.'.$cid.'.domain'}.':'. |
| $ENV{'course.'.$cid.'.num'}.':classlist:'. |
$ENV{'course.'.$cid.'.num'}.':classlist:'. |
| &Apache::lonnet::escape( |
&Apache::lonnet::escape( |
| $ENV{'form.cuname'}.':'. |
$ENV{'form.ccuname'}.':'. |
| $ENV{'form.cdomain'} ).'='. |
$ENV{'form.ccdomain'} ).'='. |
| &Apache::lonnet::escape($end.':'.$start), |
&Apache::lonnet::escape($end.':'.$start), |
| $ENV{'course.'.$cid.'.home'}) |
$ENV{'course.'.$cid.'.home'}) |
| .'<br>'); |
.'<br>'); |
|
Line 712 ENDMODIFYUSERHEAD
|
Line 757 ENDMODIFYUSERHEAD
|
| # Assign the role and report it. |
# Assign the role and report it. |
| $r->print('Assigning: '.$2.' in '.$url.': '. |
$r->print('Assigning: '.$2.' in '.$url.': '. |
| &Apache::lonnet::assignrole( |
&Apache::lonnet::assignrole( |
| $ENV{'form.cdomain'},$ENV{'form.cuname'}, |
$ENV{'form.ccdomain'},$ENV{'form.ccuname'}, |
| $url,$2,$end,$start) |
$url,$2,$end,$start) |
| .'<br>'); |
.'<br>'); |
| } |
} |
|
Line 811 ENDTABLE
|
Line 856 ENDTABLE
|
| } |
} |
| #---------------------------------------------- end functions for &phase_two |
#---------------------------------------------- end functions for &phase_two |
| |
|
| |
#--------------------------------- functions for &phase_two and &phase_three |
| |
|
| |
#--------------------------end of functions for &phase_two and &phase_three |
| |
|
| 1; |
1; |
| __END__ |
__END__ |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to loncreateuser.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / interface