version 1.34, 2013/07/19 18:24:17
|
version 1.38, 2016/09/12 16:02:16
|
Line 57 use Apache::lonnet;
|
Line 57 use Apache::lonnet;
|
use Apache::loncommon; |
use Apache::loncommon; |
use Apache::lonlocal; |
use Apache::lonlocal; |
use LONCAPA; |
use LONCAPA; |
|
use HTML::Entities; |
|
|
sub handler { |
sub handler { |
my $r = shift; |
my $r = shift; |
Line 87 sub handler {
|
Line 88 sub handler {
|
&Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},['token']); |
&Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},['token']); |
|
|
my @emailtypes = ('permanentemail','critnotification','notification'); |
my @emailtypes = ('permanentemail','critnotification','notification'); |
my $uname = &unescape($env{'form.uname'}); |
my $uname = $env{'form.uname'}; |
my $udom = $env{'form.udom'}; |
$uname =~ s/^\s+|\s+$//g; |
|
$uname = &LONCAPA::clean_username($uname); |
|
my $udom = &LONCAPA::clean_domain($env{'form.udom'}); |
|
my ($domdesc,$otherinst); |
|
if ($udom) { |
|
$domdesc = &Apache::lonnet::domain($udom,'description'); |
|
if ($domdesc) { |
|
my %servers = &Apache::lonnet::internet_dom_servers($udom); |
|
unless (exists($servers{$server})) { |
|
$otherinst = 1; |
|
} |
|
} |
|
} |
my $token = $env{'form.token'}; |
my $token = $env{'form.token'}; |
my $brcrum = []; |
my $brcrum = []; |
if ($token) { |
if ($token) { |
Line 106 sub handler {
|
Line 119 sub handler {
|
} |
} |
} |
} |
my $args = {bread_crumbs => $brcrum}; |
my $args = {bread_crumbs => $brcrum}; |
$r->print(&Apache::loncommon::start_page('Reset password','',$args)); |
my $js; |
$r->print('<h2>'.&mt('Reset forgotten LON-CAPA password').'</h2>'); |
unless ($token || $otherinst || ($uname && $udom)) { |
|
my (@intdoms,@instdoms); |
|
my $internet_names = &Apache::lonnet::get_internet_names($server); |
|
if (ref($internet_names) eq 'ARRAY') { |
|
@intdoms = @{$internet_names}; |
|
} |
|
if (@intdoms) { |
|
my %iphost = &Apache::lonnet::get_iphost(); |
|
foreach my $ip (keys(%iphost)) { |
|
if (ref($iphost{$ip}) eq 'ARRAY') { |
|
foreach my $id (@{$iphost{$ip}}) { |
|
my $location = &Apache::lonnet::internet_dom($id); |
|
if ($location) { |
|
if (grep(/^\Q$location\E$/,@intdoms)) { |
|
my $dom = &Apache::lonnet::host_domain($id); |
|
unless (grep(/^\Q$dom\E/,@instdoms)) { |
|
push(@instdoms,$dom); |
|
} |
|
} |
|
} |
|
} |
|
} |
|
} |
|
} |
|
my $instdomstr; |
|
if (@instdoms > 0) { |
|
$instdomstr = "'".join("','",@instdoms)."'"; |
|
} |
|
my %js_lt = &Apache::lonlocal::texthash( |
|
thdo => 'The domain you have selected is for another institution.', |
|
yowi => 'You will be switched to the Forgot Password utility at that institution.', |
|
unam => 'You must enter a username.', |
|
mail => 'You must enter an e-mail address.' |
|
); |
|
&js_escape(\%js_lt); |
|
$js = <<"END"; |
|
<script type="text/javascript"> |
|
// <![CDATA[ |
|
function verifyDomain(caller,form) { |
|
var redirect = 1; |
|
var instdoms = new Array($instdomstr); |
|
if (instdoms.length > 0) { |
|
for (var i=0; i<instdoms.length; i++) { |
|
if (caller.options[caller.selectedIndex].value == instdoms[i]) { |
|
redirect = 0; |
|
break; |
|
} |
|
} |
|
} |
|
if (redirect == 1) { |
|
if (confirm('$js_lt{thdo}\\n$js_lt{yowi}')) { |
|
form.submit(); |
|
} |
|
} |
|
return; |
|
} |
|
|
|
function validInfo() { |
|
if (document.forgotpw.uname.value == '') { |
|
alert("$js_lt{'unam'}"); |
|
return false; |
|
} |
|
if (document.forgotpw.useremail.value == '') { |
|
alert("$js_lt{'mail'}"); |
|
return false; |
|
} |
|
return true; |
|
} |
|
// ]]> |
|
</script> |
|
END |
|
} |
|
my $header = &Apache::loncommon::start_page('Reset password',$js,$args). |
|
'<h2>'.&mt('Reset forgotten LON-CAPA password').'</h2>'; |
my $output; |
my $output; |
if ($token) { |
if ($token) { |
$output = &reset_passwd($r,$token,$contact_name,$contact_email); |
$output = &reset_passwd($r,$token,$contact_name,$contact_email); |
} elsif ($uname && $udom) { |
} elsif ($udom) { |
my $domdesc = &Apache::lonnet::domain($udom,'description'); |
if (!$domdesc) { |
my $authtype = &Apache::lonnet::queryauthenticate($uname,$udom); |
$output = &invalid_state('baddomain',$domdesc, |
if ($authtype =~ /^internal/) { |
$contact_name,$contact_email); |
my $useremail = $env{'form.useremail'}; |
} elsif ($otherinst) { |
if ($useremail !~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) { |
($header,$output) = &homeserver_redirect($uname,$udom,$domdesc,$brcrum); |
$output = &invalid_state('baduseremail',$domdesc, |
} elsif ($uname) { |
$contact_name,$contact_email); |
my $authtype = &Apache::lonnet::queryauthenticate($uname,$udom); |
} else { |
if ($authtype =~ /^internal/) { |
my %userinfo = |
my $useremail = $env{'form.useremail'}; |
&Apache::lonnet::get('environment',\@emailtypes, |
my ($blocked,$blocktext) = |
$udom,$uname); |
&Apache::loncommon::blocking_status('passwd',$uname,$udom); |
my @allemails; |
if ($blocked) { |
foreach my $type (@emailtypes) { |
$output = '<p class="LC_warning">'.$blocktext.'</p>' |
my $email = $userinfo{$type}; |
.&display_actions($contact_email,$domdesc); |
my @items; |
} elsif ($useremail !~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) { |
if ($email =~ /,/) { |
$output = &invalid_state('baduseremail',$domdesc, |
@items = split(',',$userinfo{$type}); |
$contact_name,$contact_email); |
} else { |
} else { |
@items = ($email); |
my %userinfo = |
} |
&Apache::lonnet::get('environment',\@emailtypes, |
foreach my $item (@items) { |
$udom,$uname); |
if ($item =~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) { |
my @allemails; |
unless(grep(/^\Q$item\E$/,@allemails)) { |
foreach my $type (@emailtypes) { |
push(@allemails,$item); |
my $email = $userinfo{$type}; |
|
my @items; |
|
if ($email =~ /,/) { |
|
@items = split(',',$userinfo{$type}); |
|
} else { |
|
@items = ($email); |
|
} |
|
foreach my $item (@items) { |
|
if ($item =~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) { |
|
unless(grep(/^\Q$item\E$/,@allemails)) { |
|
push(@allemails,$item); |
|
} |
} |
} |
} |
} |
} |
} |
} |
if (@allemails > 0) { |
if (@allemails > 0) { |
if (grep(/^\Q$useremail\E$/,@allemails)) { |
if (grep(/^\Q$useremail\E$/,@allemails)) { |
$output = &send_token($uname,$udom,$useremail,$server, |
$output = &send_token($uname,$udom,$useremail,$server, |
$domdesc,$contact_name, |
$domdesc,$contact_name, |
$contact_email); |
$contact_email); |
} else { |
|
$output = &invalid_state('mismatch',$domdesc, |
|
$contact_name, |
|
$contact_email); |
|
} |
} else { |
} else { |
$output = &invalid_state('mismatch',$domdesc, |
$output = &invalid_state('missing',$domdesc, |
$contact_name, |
$contact_name,$contact_email); |
$contact_email); |
|
} |
} |
} else { |
|
$output = &invalid_state('missing',$domdesc, |
|
$contact_name,$contact_email); |
|
} |
} |
|
} elsif ($authtype =~ /^(krb|unix|local)/) { |
|
$output = &invalid_state('authentication',$domdesc, |
|
$contact_name,$contact_email); |
|
} else { |
|
$output = &invalid_state('invalid',$domdesc, |
|
$contact_name,$contact_email); |
} |
} |
} elsif ($authtype =~ /^(krb|unix|local)/) { |
|
$output = &invalid_state('authentication',$domdesc, |
|
$contact_name,$contact_email); |
|
} else { |
} else { |
$output = &invalid_state('invalid',$domdesc, |
$output = &get_uname($defdom); |
$contact_name,$contact_email); |
|
} |
} |
} else { |
} else { |
$output = &get_uname($defdom); |
$output = &get_uname($defdom); |
} |
} |
$r->print($output); |
$r->print($header.$output); |
$r->print(&Apache::loncommon::end_page()); |
$r->print(&Apache::loncommon::end_page()); |
return OK; |
return OK; |
} |
} |
Line 184 sub get_uname {
|
Line 283 sub get_uname {
|
.'<li>'.&mt('You must be able to access e-mail sent to that address.').'</li>' |
.'<li>'.&mt('You must be able to access e-mail sent to that address.').'</li>' |
.'<li>'.&mt('Your LON-CAPA account must be of a type for which LON-CAPA can reset a password.') |
.'<li>'.&mt('Your LON-CAPA account must be of a type for which LON-CAPA can reset a password.') |
.'</ul>'; |
.'</ul>'; |
$msg .= '<form name="forgotpw" method="post" action="/adm/resetpw">'. |
my $mobileargs; |
|
(undef,undef,undef,undef,undef,undef,my $clientmobile) = |
|
&Apache::loncommon::decode_user_agent(); |
|
if ($clientmobile) { |
|
$mobileargs = 'autocapitalize="off" autocorrect="off" '; |
|
} |
|
my $onchange = 'javascript:verifyDomain(this,this.form);'; |
|
$msg .= '<form name="forgotpw" method="post" action="/adm/resetpw" onsubmit="return validInfo();">'. |
&Apache::lonhtmlcommon::start_pick_box(). |
&Apache::lonhtmlcommon::start_pick_box(). |
&Apache::lonhtmlcommon::row_title($lt{'unam'}). |
&Apache::lonhtmlcommon::row_title($lt{'unam'}). |
'<input type="text" name="uname" size="20" />'. |
'<input type="text" name="uname" size="20" '.$mobileargs.'/>'. |
&Apache::lonhtmlcommon::row_closure(1). |
&Apache::lonhtmlcommon::row_closure(1). |
&Apache::lonhtmlcommon::row_title($lt{'udom'}). |
&Apache::lonhtmlcommon::row_title($lt{'udom'}). |
&Apache::loncommon::select_dom_form($defdom,'udom'). |
&Apache::loncommon::select_dom_form($defdom,'udom',undef,undef,$onchange). |
&Apache::lonhtmlcommon::row_closure(1). |
&Apache::lonhtmlcommon::row_closure(1). |
&Apache::lonhtmlcommon::row_title($lt{'uemail'}). |
&Apache::lonhtmlcommon::row_title($lt{'uemail'}). |
'<input type="text" name="useremail" size="30" />'. |
'<input type="text" name="useremail" size="30" '.$mobileargs.'/>'. |
&Apache::lonhtmlcommon::end_pick_box(). |
&Apache::lonhtmlcommon::end_pick_box(). |
'<br /><br /><input type="submit" name="resetter" value="'.$lt{'proc'}.'" /></form>'; |
'<br /><br /><input type="submit" name="resetter" value="'.$lt{'proc'}.'" /></form>'; |
return $msg; |
return $msg; |
Line 236 sub send_token {
|
Line 342 sub send_token {
|
.' associated with your LON-CAPA account.') |
.' associated with your LON-CAPA account.') |
.'</p>' |
.'</p>' |
.&display_actions($contact_email,$domdesc); |
.&display_actions($contact_email,$domdesc); |
|
|
} |
} |
} else { |
} else { |
$msg .= |
$msg .= |
Line 288 sub invalid_state {
|
Line 393 sub invalid_state {
|
$msg = &mt('A valid e-mail address was not located in the LON-CAPA system for the username and domain you provided.'); |
$msg = &mt('A valid e-mail address was not located in the LON-CAPA system for the username and domain you provided.'); |
} elsif ($error eq 'authentication') { |
} elsif ($error eq 'authentication') { |
$msg = &mt('The username you provided uses an authentication type which can not be reset directly via LON-CAPA.'); |
$msg = &mt('The username you provided uses an authentication type which can not be reset directly via LON-CAPA.'); |
|
} elsif ($error eq 'baddomain') { |
|
$msg = &mt('The domain you provided was not verified as a valid domain in the LON-CAPA system.'); |
} |
} |
$msg = '<p class="LC_warning">'.$msg.'</p>' |
$msg = '<p class="LC_warning">'.$msg.'</p>' |
.&display_actions($contact_email,$domdesc); |
.&display_actions($contact_email,$domdesc); |
Line 295 sub invalid_state {
|
Line 402 sub invalid_state {
|
return $msg; |
return $msg; |
} |
} |
|
|
|
sub homeserver_redirect { |
|
my ($uname,$udom,$domdesc,$brcrum) = @_; |
|
my $uhome = &Apache::lonnet::homeserver(); |
|
if ($uhome eq 'no_host') { |
|
$uhome = &Apache::lonnet::domain($udom,'primary'); |
|
} |
|
my $protocol = $Apache::lonnet::protocol{$uhome}; |
|
$protocol = 'http' if ($protocol ne 'https'); |
|
my $url = $protocol.'://'.&Apache::lonnet::hostname($uhome).'/adm/resetpw'; |
|
# Breadcrumbs |
|
my $start_page = &Apache::loncommon::start_page('Switching Server',undef, |
|
{'redirect' => [0,$url], |
|
'bread_crumbs' => $brcrum,}); |
|
my $output = '<p>'.&mt('This LON-CAPA server belongs to a different domain.').' '. |
|
&mt('You are being switched to your domain ([_1]), to use the "Forgot Password" tool.',$domdesc). |
|
'</p>'; |
|
return ($start_page,$output); |
|
} |
|
|
sub reset_passwd { |
sub reset_passwd { |
my ($r,$token,$contact_name,$contact_email) = @_; |
my ($r,$token,$contact_name,$contact_email) = @_; |
my $msg; |
my $msg; |
Line 311 sub reset_passwd {
|
Line 437 sub reset_passwd {
|
($data{'email'} =~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) && |
($data{'email'} =~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) && |
($data{'temppasswd'} =~/^\w+$/)) { |
($data{'temppasswd'} =~/^\w+$/)) { |
my $reqtime = &Apache::lonlocal::locallocaltime($data{'time'}); |
my $reqtime = &Apache::lonlocal::locallocaltime($data{'time'}); |
if ($now - $data{'time'} < 7200) { |
my ($blocked,$blocktext) = |
|
&Apache::loncommon::blocking_status('passwd',$data{'username'},$data{'domain'}); |
|
if ($blocked) { |
|
$msg = '<p class="LC_warning">'.$blocktext.'</p>'; |
|
return $msg; |
|
} elsif ($now - $data{'time'} < 7200) { |
if ($env{'form.action'} eq 'verify_and_change_pass') { |
if ($env{'form.action'} eq 'verify_and_change_pass') { |
unless (($env{'form.uname'} eq $data{'username'}) && ($env{'form.udom'} eq $data{'domain'}) && ($env{'form.email'} eq $data{'email'})) { |
unless (($env{'form.uname'} eq $data{'username'}) && ($env{'form.udom'} eq $data{'domain'}) && ($env{'form.email'} eq $data{'email'})) { |
$msg = &generic_failure_msg($contact_name,$contact_email); |
$msg = &generic_failure_msg($contact_name,$contact_email); |
Line 398 sub generic_failure_msg {
|
Line 529 sub generic_failure_msg {
|
'<p class="LC_error">' |
'<p class="LC_error">' |
.&mt('A problem occurred when attempting to reset the password for your account.') |
.&mt('A problem occurred when attempting to reset the password for your account.') |
.'<br />' |
.'<br />' |
.&mt('Please contact the [_1] - ([_2]) for assistance.', |
.&mt('Please contact the [_1] ([_2]) for assistance.', |
$contact_name,'<a href="mailto:'.$contact_email.'">'.$contact_email.'</a>') |
$contact_name,'<a href="mailto:'.$contact_email.'">'.$contact_email.'</a>') |
.'</p>'; |
.'</p>'; |
} |
} |