loncom/interface/lonsource.pm - diff

Return to lonsource.pm CVS log

Up to [LON-CAPA] / loncom / interface

Diff for /loncom/interface/lonsource.pm between versions 1.30 and 1.37

version 1.30, 2013/06/04 23:12:09	version 1.37, 2017/09/29 19:18:10
Line 37 use Apache::lonhtmlcommon();	Line 37 use Apache::lonhtmlcommon();
use Apache::lonsequence();	use Apache::lonsequence();
use Apache::Constants qw(:common :http);	use Apache::Constants qw(:common :http);
use Apache::lonmeta;	use Apache::lonmeta;
	use Apache::lonenc();
use Apache::File;	use Apache::File;
use Apache::lonlocal;	use Apache::lonlocal;
use HTML::Entities;	use HTML::Entities;
Line 44 use LONCAPA qw(:DEFAULT :match);	Line 45 use LONCAPA qw(:DEFAULT :match);

sub make_link {	sub make_link {
my ($filename, $listname) = @_;	my ($filename, $listname) = @_;
my $sourcelink = "/adm/source?inhibitmenu=yes&filename=".$filename."&listname=".$listname;	my $sourcelink = '/adm/source?inhibitmenu=yes&filename='.
	&escape(&escape($filename)).'&listname='.
	&escape(&escape($listname));
return $sourcelink;	return $sourcelink;
}	}

sub stage_2 {	sub stage_2 {
my ($r, $filename, $listname) = @_;	my ($r, $filename, $listname) = @_;
my ($author)=($filename=~/\/res\/[^\/]+\/([^\/]+)\//);	my ($author)=($filename=~/\/res\/[^\/]+\/([^\/]+)\//);
$r->print(&Apache::loncommon::start_page('Copy Problem Source Code to Authoring Space')	$r->print(&Apache::loncommon::start_page('Copy Problem Source Code to Authoring Space',undef,
	{'only_body' => 1,})
.&mt('Please enter the directory that you would like the source code to go into.')	.&mt('Please enter the directory that you would like the source code to go into.')
.'<p>'	.'<p>'
.&mt('Note: the path is in reference to the root of your construction space,'	.&mt('Note: the path is in reference to the root of your Authoring Space,'
.' and new directories will be automatically created.')	.' and new directories will be automatically created.')
.'</p>');	.'</p>');
$r->print('<form name="copy" action="/adm/source" target="_parent" method="post">	$r->print('<form name="copy" action="/adm/source" target="_parent" method="post">
Line 64 sub stage_2 {	Line 67 sub stage_2 {
<input type="hidden" name="action" value="copy_stage" />	<input type="hidden" name="action" value="copy_stage" />
<input type="text" size="50" name="newpath" value="/'.&mt('shared_source').'/'.$author.'" />	<input type="text" size="50" name="newpath" value="/'.&mt('shared_source').'/'.$author.'" />
<input type="submit" value="'.&mt('Copy').'" />	<input type="submit" value="'.&mt('Copy').'" />
</form>');	</form>'.
	&Apache::loncommon::end_page());
return OK;	return OK;
}	}

Line 86 sub copy_author {	Line 90 sub copy_author {
sub copy_stage {	sub copy_stage {
my ($r, $filename, $listname, $newpath) = @_;	my ($r, $filename, $listname, $newpath) = @_;

#Figure out if we are author or co-author	my ($path_to_new_file,$uname,$udom) = &get_path_to_newfile($r,$newpath,$listname);
my ($role,$author_name,$domain)=&copy_author();

# Construct path to copy and filter out any possibly nasty stuff
my $path_to_new_file = $r->dir_config('lonDocRoot').
"/priv/$domain/$author_name/$newpath/$listname";
$path_to_new_file=~s/\.\.//g;
$path_to_new_file=~s/\~//g;
$path_to_new_file=~s/\/+/\//g;

#Just checking again for access as we want to make sure that it is really ok now that we have the real path

my ($uname,$udom)= &Apache::lonnet::constructaccess($path_to_new_file);

if (!$uname \|\| !$udom) {
$r->print(&Apache::loncommon::start_page('Not Allowed'));
$r->print(&mt('Not allowed to create file [_1]', $path_to_new_file));
$r->print(&Apache::loncommon::end_page());
return;
}

#allowed	#allowed
$r->print(&Apache::loncommon::start_page('Copying Source'));	if ($path_to_new_file) {
my $result = &Apache::loncfile::exists($uname, $udom, $path_to_new_file);	$r->print(&Apache::loncommon::start_page('Copying Source',undef,{'only_body' => 1}));
$r->print($result);	my $result = &Apache::loncfile::exists($uname, $udom, $path_to_new_file);
if(($result) && ($result =~ m\|published\|) ) {	$r->print($result);
&delete_copy_file($r, $newpath, $filename, $path_to_new_file, '1');	if (($result) && ($result =~ /published/)) {
} elsif(($result) && ($result =~ m\|exists!\|)) {	&delete_copy_file($r, $newpath, $filename, $path_to_new_file, '1');
&confirm($r, $newpath, $filename, $path_to_new_file);	} elsif (($result) && ($result =~ /exists\!/)) {
} else {	&confirm($r, $newpath, $filename, $listname);
&copy_file($r, $newpath, $filename, $path_to_new_file);	} else {
	&copy_file($r, $newpath, $filename, $path_to_new_file);
	}
	$r->print(&Apache::loncommon::end_page());
}	}
	return;
$r->print(&Apache::loncommon::end_page());
}	}

sub confirm {	sub confirm {
my ($r, $newpath, $filename, $path_to_new_file) = @_;	my ($r, $newpath, $filename, $listname) = @_;
$r->print("<b>Press delete to remove file and replace it with a copy of the source you are viewing</b><br /><br / >");	$r->print('<b>'.&mt('Press delete to remove file and replace it with a copy of the source you are viewing.').'</b><br /><br />');
$r->print('<form name="delete_confirm" action="/adm/source" target="_parent" method="post">	$r->print('<form name="delete_confirm" action="/adm/source" target="_parent" method="post">
<input type="hidden" name="filename" value="'.$filename.'" />	<input type="hidden" name="filename" value="'.$filename.'" />
<input type="hidden" name="path" value="'.$path_to_new_file.'" />	<input type="hidden" name="listname" value="'.$listname.'" />
<input type="hidden" name="newpath" value="'.$newpath.'" />	<input type="hidden" name="newpath" value="'.$newpath.'" />
<input type="hidden" name="action" value="delete_confirm" />	<input type="hidden" name="action" value="delete_confirm" />

<input type="submit" value="Delete" />	<input type="submit" value="Delete" />
</form>');	</form>');
	return;
}	}

sub delete_copy_file {	sub delete_copy_file {
my ($r, $newpath, $filename, $path_to_new_file, $type) = @_;	my ($r, $newpath, $filename, $path_to_new_file, $type) = @_;
if($type eq '1') {	if ($type eq '1') {
$r->print('<p><span class="LC_warning">'	$r->print('<p><span class="LC_warning">'
.&mt('Cannot delete non-obsolete published file.')	.&mt('Cannot delete non-obsolete published file.')
.'</span><br />'	.'</span><br />'
.&mt('Please use the code view in previous window to use shared code.')	.&mt('Please use the code view in previous window to use shared code.')
.'<br /><br />');	.'<br /><br />');
$r->print('<input type="button" value="Close Window" name="close"'	$r->print('<form name="delete_done" action="/adm/source" target="_parent" method="post">'
	.'<input type="button" value="'.&mt('Close Window').'" name="close"'
.' onclick="window.close()" />'	.' onclick="window.close()" />'
.'</p>');	.'</form></p>');
	return;
} else {	} else {
if(-e $path_to_new_file) {	$r->print(&Apache::loncommon::start_page('Copying Source',undef,{'only_body' => 1}));
unless(unlink($path_to_new_file)) {	if (-e $path_to_new_file) {
	unless (unlink($path_to_new_file)) {
$r->print('<p class="LC_error"">'.&mt('Error:').' '.$!.'</p>');	$r->print('<p class="LC_error"">'.&mt('Error:').' '.$!.'</p>');
return 0;	return 0;
}	}
} else {	} else {
$r->print('<p class="LC_error">'.&mt('No such file').'</p></form>');	$r->print('<p class="LC_error">'.&mt('No such file').'</p>');
return 0;	return 0;
}	}
&copy_file($r, $newpath, $filename, $path_to_new_file);	&copy_file($r, $newpath, $filename, $path_to_new_file);
	$r->print(&Apache::loncommon::end_page());
	return;
}	}
}	}

sub copy_file {	sub copy_file {
my ($r, $newpath, $filename, $path_to_new_file) = @_;	my ($r, $newpath, $filename, $path_to_new_file) = @_;
$r->print("<b>Creating directories</b>");	$r->print('<b>'.&mt('Creating directories').'</b>');

#Figure out if we are author or co-author	#Figure out if we are author or co-author
my ($role,$author_name,$domain)=&copy_author();	my ($role,$author_name,$domain)=&copy_author();
Line 188 sub copy_file {	Line 180 sub copy_file {
} else { } #Just move along	} else { } #Just move along

}	}
$r->print("<br /><b>Copying File</b>");	$r->print('<br /><b>'.&mt('Copying File').'</b>');
my $problem_filename = $Apache::lonnet::perlvar{'lonDocRoot'}.$filename;	my $problem_filename = $Apache::lonnet::perlvar{'lonDocRoot'}.$filename;
my $file_output = &includemeta(&Apache::lonnet::getfile($problem_filename),$filename);	my $file_output = &includemeta(&Apache::lonnet::getfile($problem_filename),$filename);
my $fs=Apache::File->new(">$path_to_new_file");	my $fs=Apache::File->new(">$path_to_new_file");
Line 196 sub copy_file {	Line 188 sub copy_file {
print $fs $file_output;	print $fs $file_output;
}	}
$r->print("<br /><br />");	$r->print("<br /><br />");
$r->print('<input type="button" value="Close Window" name="close" onclick="window.close()" />');	$r->print('<form name="copied_file" action="/adm/source" target="_parent" method="post">'
	.'<input type="button" value="'
	.&mt('Close Window').'" name="close" onclick="window.close()" />'
	.'</form>');
#Some 1.3'ish feature is to include the derivative feature, will go here..'	#Some 1.3'ish feature is to include the derivative feature, will go here..'
	return;
}	}

sub print_item {	sub print_item {
my ($r,$filename,$listname) = @_;	my ($r,$filename,$listname,$context) = @_;
my $file_output =	my $file_output;
&includemeta(&Apache::lonnet::getfile($Apache::lonnet::perlvar{'lonDocRoot'}.$filename),	if ($context eq 'view') {
$filename);	$file_output =
	&Apache::lonnet::getfile($Apache::lonnet::perlvar{'lonDocRoot'}.$filename);
	} else {
	$file_output =
	&includemeta(&Apache::lonnet::getfile($Apache::lonnet::perlvar{'lonDocRoot'}.$filename),
	$filename);
	}
$r->print(&Apache::loncommon::start_page('View Source Code',undef,	$r->print(&Apache::loncommon::start_page('View Source Code',undef,
{'only_body' => 1}));	{'only_body' => 1}));
if ($file_output ne '') {	if ($file_output ne '') {
my $access_to_cstr;	my $access_to_cstr;
my $lonhost = $r->dir_config('lonHostID');	my $lonhost = $r->dir_config('lonHostID');
if (&Apache::lonnet::is_library($lonhost)) {	if ($context eq 'view') {
	$r->print('<form name="view" action="" target="_parent" method="post"><span class="LC_info">'.
	&mt('Source code is displayed below.').
	'</span>'.(' ' x4).'<input type="button" name="close" onclick="window.close();"'.
	' value="'.&mt('Close Window').'" /></form><hr />');
	} elsif (&Apache::lonnet::is_library($lonhost)) {
my @possdoms = &Apache::lonnet::current_machine_domains();	my @possdoms = &Apache::lonnet::current_machine_domains();
foreach my $dom (@possdoms) {	foreach my $dom (@possdoms) {
if ($env{"user.role.au./$dom/"}) {	if ($env{"user.role.au./$dom/"}) {
Line 299 sub includemeta {	Line 306 sub includemeta {
}	}
}	}

	sub get_path_to_newfile {
	my ($r,$newpath,$listname) = @_;

	#Figure out if we are author or co-author
	my ($role,$author_name,$domain) = &copy_author();

	# Construct path to copy and filter out any possibly nasty stuff
	my $path = $r->dir_config('lonDocRoot')."/priv/$domain/$author_name/";
	my $path_to_new_file = $path."$newpath/$listname";
	$path_to_new_file=~s/\.\.//g;
	$path_to_new_file=~s/\~//g;
	$path_to_new_file=~s/\/+/\//g;

	#Just checking again for access as we want to make sure that it is really ok
	#now that we have the real path

	my ($uname,$udom)= &Apache::lonnet::constructaccess($path_to_new_file);

	if (!$uname \|\| !$udom) {
	$r->print(&Apache::loncommon::start_page('Not Allowed',undef,{'only_body' => 1}));
	$r->print(&mt('Not allowed to create file [_1]', $path_to_new_file));
	$r->print(&Apache::loncommon::end_page());
	if (wantarray) {
	return();
	} else {
	return;
	}
	}
	if (wantarray) {
	return ($path_to_new_file,$uname,$udom);
	} else {
	return $path_to_new_file;
	}
	}

sub handler {	sub handler {
my $r=shift;	my $r=shift;
&Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},	&Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},
['filename','listname']);	['filename','listname','viewonly']);
my $filename = $env{'form.filename'};	my $filename = $env{'form.filename'};
	my $shownfilename = $filename;
	$shownfilename =~ s/(`)/'/g;
	$shownfilename =~ s/\$/$\$$/g;
my $listname = $env{'form.listname'};	my $listname = $env{'form.listname'};
my $source = &Apache::lonnet::metadata($filename,'sourceavail');	my $viewonly = $env{'form.viewonly'};
if ($source ne 'open') {
$env{'user.error.msg'}="$filename:cre:1:1:Source code not available";	if ($viewonly) {
	my $canview;
	$filename =~ s/\.\.//g;
	$filename =~ s/\~//g;
	$filename =~ s/\/+/\//g;
	if (($env{'request.course.id'}) && (&Apache::lonnet::is_on_map($filename))) {
	if ((&Apache::lonnet::metadata(&Apache::lonenc::check_decrypt($filename)) eq 'open') &&
	(&Apache::lonnet::allowed('cre','/'))) {
	$canview = 1;
	} elsif (&Apache::lonnet::allowed('vxc',$env{'request.course.id'})) {
	my $cdom = $env{'course.'.$env{'request.course.id'}.'.domain'};
	&Apache::lonenc::check_decrypt(\$filename);
	if (($env{'request.role.domain'} eq $cdom) && ($filename =~ /$LONCAPA::assess_re/)) {
	my ($auname) = ($filename =~ m{^\Q/res/$cdom/\E($match_username)/});
	if (($env{'request.course.adhocsrcaccess'} ne '') &&
	(grep(/^\Q$auname\E$/,split(/,/,$env{'request.course.adhocsrcaccess'})))) {
	$canview = 1;
	}
	}
	}
	}
	unless ($canview) {
	$env{'user.error.msg'}="$shownfilename:cre:1:1:Source code not available";
	return HTTP_NOT_ACCEPTABLE;
	}
	} elsif (&Apache::lonnet::metadata($filename,'sourceavail') ne 'open') {
	$env{'user.error.msg'}="$shownfilename:cre:1:1:Source code not available";
return HTTP_NOT_ACCEPTABLE;	return HTTP_NOT_ACCEPTABLE;
}	}
unless (&Apache::lonnet::allowed('bre',$filename)) {	unless (&Apache::lonnet::allowed('bre',$filename)) {
$env{'user.error.msg'}="$filename:bre:1:1:Access to resource denied";	$env{'user.error.msg'}="$shownfilename:bre:1:1:Access to resource denied";
return HTTP_NOT_ACCEPTABLE;	return HTTP_NOT_ACCEPTABLE;
}	}
unless (&Apache::lonnet::allowed('cre','/')) {	unless ($viewonly) {
$env{'user.error.msg'}="$filename:cre:1:1:Access to source code denied";	unless (&Apache::lonnet::allowed('cre','/')) {
return HTTP_NOT_ACCEPTABLE;	$env{'user.error.msg'}="$shownfilename:cre:1:1:Access to source code denied";
	return HTTP_NOT_ACCEPTABLE;
	}
}	}
	my $newpath = $env{'form.newpath'};

&Apache::loncommon::content_type($r,'text/html');	&Apache::loncommon::content_type($r,'text/html');
$r->send_http_header;	$r->send_http_header;

if ($env{'form.action'} eq 'stage2') {	if ($viewonly) {
	&print_item($r,$filename,$listname,'view');
	} elsif ($env{'form.action'} eq 'stage2') {
&stage_2($r,$filename,$listname);	&stage_2($r,$filename,$listname);
} elsif($env{'form.action'} eq 'copy_stage') {	} elsif($env{'form.action'} eq 'copy_stage') {
&copy_stage($r,$filename,$listname,$env{'form.newpath'});	&copy_stage($r,$filename,$listname,$newpath);
} elsif($env{'form.action'} eq 'delete_confirm') {	} elsif($env{'form.action'} eq 'delete_confirm') {
&delete_copy_file($r,$env{'form.newpath'},$filename, $env{'form.path'}, '0');	my $path_to_new_file = &get_path_to_newfile($r,$newpath,$listname);
	if ($path_to_new_file) {
	&delete_copy_file($r, $newpath, $filename, $path_to_new_file, '0');
	}
} else {	} else {
&print_item($r,$filename,$listname);	&print_item($r,$filename,$listname);
}	}

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

Removed from v.1.30
changed lines
	Added in v.1.37