loncom/lond - diff

Return to lond CVS log

Up to [LON-CAPA] / loncom

Diff for /loncom/lond between versions 1.290 and 1.380

-version 1.290, 2005/06/28 19:06:10
+version 1.380, 2007/08/23 17:39:51
  Line 31
  use strict;
  use lib '/home/httpd/lib/perl/';
+ use LONCAPA;
  use LONCAPA::Configuration;
+ use Apache::lonnet;
  use IO::Socket;
  use IO::File;
  #use Apache::File;
- use Symbol;
  use POSIX;
  use Crypt::IDEA;
  use LWP::UserAgent();
+ use Digest::MD5 qw(md5_hex);
  use GDBM_File;
  use Authen::Krb4;
  use Authen::Krb5;
- use lib '/home/httpd/lib/perl/';
  use localauth;
  use localenroll;
  use localstudentphoto;
  use File::Copy;
- use LONCAPA::ConfigFileEdit;
+ use File::Find;
  use LONCAPA::lonlocal;
  use LONCAPA::lonssl;
  use Fcntl qw(:flock);
- Line 68  my $clientip;   # IP address of client.
+ Line 69  my $clientip;   # IP address of client.
  my $clientname;			# LonCAPA name of client.
  my $server;
- my $thisserver;			# DNS of us.
  my $keymode;
  Line 84  my $tmpsnum = 0;  # Id of tmpputs.
  my $ConnectionType;
- my %hostid;			# ID's for hosts in cluster by ip.
- my %hostdom;			# LonCAPA domain for hosts in cluster.
- my %hostip;			# IPs for hosts in cluster.
- my %hostdns;			# ID's of hosts looked up by DNS name.
  my %managers;			# Ip -> manager names
  my %perlvar;			# Will have the apache conf defined perl vars.
- Line 140  my @adderrors    = ("ok",
+ Line 135  my @adderrors    = ("ok",
  		    "lcuseradd Unable to make www member of users's group",
  		    "lcuseradd Unable to su to root",
  		    "lcuseradd Unable to set password",
- 		    "lcuseradd Usrname has invalid characters",
+ 		    "lcuseradd Username has invalid characters",
  		    "lcuseradd Password has an invalid character",
  		    "lcuseradd User already exists",
  		    "lcuseradd Could not add user.",
- Line 176  sub ResetStatistics {
+ Line 171  sub ResetStatistics {
  #   $Socket      - Socket open on client.
  #   $initcmd     - The full text of the init command.
  #
- # Implicit inputs:
- #    $thisserver - Our DNS name.
- #
  # Returns:
  #     IDEA session key on success.
  #     undef on failure.
  #
  sub LocalConnection {
      my ($Socket, $initcmd) = @_;
-     Debug("Attempting local connection: $initcmd client: $clientip me: $thisserver");
+     Debug("Attempting local connection: $initcmd client: $clientip");
      if($clientip ne "127.0.0.1") {
  	&logthis('<font color="red"> LocalConnection rejecting non local: '
- 		 ."$clientip ne $thisserver </font>");
+ 		 ."$clientip ne 127.0.0.1 </font>");
  	close $Socket;
  	return undef;
      }  else {
- Line 422  sub ReadManagerTable {
+ Line 414  sub ReadManagerTable {
        if ($host =~ "^#") {                  # Comment line.
           next;
        }
-       if (!defined $hostip{$host}) { # This is a non cluster member
+       if (!defined &Apache::lonnet::get_host_ip($host)) { # This is a non cluster member
  	    #  The entry is of the form:
  	    #    cluname:hostname
  	    #  cluname - A 'cluster hostname' is needed in order to negotiate
- Line 440  sub ReadManagerTable {
+ Line 432  sub ReadManagerTable {
           }
        } else {
           logthis('<font color="green"> existing host'." $host</font>\n");
-          $managers{$hostip{$host}} = $host;  # Use info from cluster tab if clumemeber
+          $managers{&Apache::lonnet::get_host_ip($host)} = $host;  # Use info from cluster tab if clumemeber
        }
     }
  }
- Line 501  sub AdjustHostContents {
+ Line 493  sub AdjustHostContents {
      my $adjusted;
      my $me        = $perlvar{'lonHostID'};
-  foreach my $line (split(/\n/,$contents)) {
+     foreach my $line (split(/\n/,$contents)) {
  	if(!(($line eq "") || ($line =~ /^ *\#/) || ($line =~ /^ *$/))) {
  	    chomp($line);
  	    my ($id,$domain,$role,$name,$ip,$maxcon,$idleto,$mincon)=split(/:/,$line);
  	    if ($id eq $me) {
-           my $ip = gethostbyname($name);
+ 		my $ip = gethostbyname($name);
-           my $ipnew = inet_ntoa($ip);
+ 		my $ipnew = inet_ntoa($ip);
-          $ip = $ipnew;
+ 		$ip = $ipnew;
  		#  Reconstruct the host line and append to adjusted:
- 		   my $newline = "$id:$domain:$role:$name:$ip";
+ 		my $newline = "$id:$domain:$role:$name:$ip";
- 		   if($maxcon ne "") { # Not all hosts have loncnew tuning params
+ 		if($maxcon ne "") { # Not all hosts have loncnew tuning params
- 		     $newline .= ":$maxcon:$idleto:$mincon";
+ 		    $newline .= ":$maxcon:$idleto:$mincon";
- 		   }
+ 		}
- 		   $adjusted .= $newline."\n";
+ 		$adjusted .= $newline."\n";
-       } else {		# Not me, pass unmodified.
+ 	    } else {		# Not me, pass unmodified.
- 		   $adjusted .= $line."\n";
+ 		$adjusted .= $line."\n";
-       }
+ 	    }
  	} else {                  # Blank or comment never re-written.
  	    $adjusted .= $line."\n";	# Pass blanks and comments as is.
  	}
-  }
+     }
-  return $adjusted;
+     return $adjusted;
  }
  #
  #   InstallFile: Called to install an administrative file:
- Line 833  sub AdjustOurHost {
+ Line 825  sub AdjustOurHost {
      #   Use the config line to get my hostname.
      #   Use gethostbyname to translate that into an IP address.
      #
-     my ($id,$domain,$role,$name,$ip,$maxcon,$idleto,$mincon) = split(/:/,$ConfigLine);
+     my ($id,$domain,$role,$name,$maxcon,$idleto,$mincon) = split(/:/,$ConfigLine);
-     my $BinaryIp = gethostbyname($name);
-     my $ip       = inet_ntoa($ip);
      #
      #  Reassemble the config line from the elements in the list.
      #  Note that if the loncnew items were not present before, they will
      #  be now even if they would be empty
      #
      my $newConfigLine = $id;
-     foreach my $item ($domain, $role, $name, $ip, $maxcon, $idleto, $mincon) {
+     foreach my $item ($domain, $role, $name, $maxcon, $idleto, $mincon) {
  	$newConfigLine .= ":".$item;
      }
      #  Replace the line:
- Line 888  sub EditFile {
+ Line 878  sub EditFile {
      #  Split the command into it's pieces:  edit:filetype:script
-     my ($request, $filetype, $script) = split(/:/, $request,3);	# : in script
+     my ($cmd, $filetype, $script) = split(/:/, $request,3);	# : in script
      #  Check the pre-coditions for success:
-     if($request != "edit") {	# Something is amiss afoot alack.
+     if($cmd != "edit") {	# Something is amiss afoot alack.
  	return "error:edit request detected, but request != 'edit'\n";
      }
      if( ($filetype ne "hosts")  &&
- Line 937  sub EditFile {
+ Line 927  sub EditFile {
      return "ok\n";
  }
- #---------------------------------------------------------------
- #
- # Manipulation of hash based databases (factoring out common code
- # for later use as we refactor.
- #
- #  Ties a domain level resource file to a hash.
- #  If requested a history entry is created in the associated hist file.
- #
- #  Parameters:
- #     domain    - Name of the domain in which the resource file lives.
- #     namespace - Name of the hash within that domain.
- #     how       - How to tie the hash (e.g. GDBM_WRCREAT()).
- #     loghead   - Optional parameter, if present a log entry is created
- #                 in the associated history file and this is the first part
- #                  of that entry.
- #     logtail   - Goes along with loghead,  The actual logentry is of the
- #                 form $loghead:<timestamp>:logtail.
- # Returns:
- #    Reference to a hash bound to the db file or alternatively undef
- #    if the tie failed.
- #
- sub tie_domain_hash {
-     my ($domain,$namespace,$how,$loghead,$logtail) = @_;
-     # Filter out any whitespace in the domain name:
-     $domain =~ s/\W//g;
-     # We have enough to go on to tie the hash:
-     my $user_top_dir   = $perlvar{'lonUsersDir'};
-     my $domain_dir     = $user_top_dir."/$domain";
-     my $resource_file  = $domain_dir."/$namespace.db";
-     my %hash;
-     if(tie(%hash, 'GDBM_File', $resource_file, $how, 0640)) {
- 	if (defined($loghead)) {	# Need to log the operation.
- 	    my $logFh = IO::File->new(">>$domain_dir/$namespace.hist");
- 	    if($logFh) {
- 		my $timestamp = time;
- 		print $logFh "$loghead:$timestamp:$logtail\n";
- 	    }
- 	    $logFh->close;
- 	}
- 	return \%hash;		# Return the tied hash.
-     } else {
- 	return undef;		# Tie failed.
-     }
- }
- #
- #   Ties a user's resource file to a hash.
- #   If necessary, an appropriate history
- #   log file entry is made as well.
- #   This sub factors out common code from the subs that manipulate
- #   the various gdbm files that keep keyword value pairs.
- # Parameters:
- #   domain       - Name of the domain the user is in.
- #   user         - Name of the 'current user'.
- #   namespace    - Namespace representing the file to tie.
- #   how          - What the tie is done to (e.g. GDBM_WRCREAT().
- #   loghead      - Optional first part of log entry if there may be a
- #                  history file.
- #   what         - Optional tail of log entry if there may be a history
- #                  file.
- # Returns:
- #   hash to which the database is tied.  It's up to the caller to untie.
- #   undef if the has could not be tied.
- #
- sub tie_user_hash {
-     my ($domain,$user,$namespace,$how,$loghead,$what) = @_;
-     $namespace=~s/\//\_/g;	# / -> _
-     $namespace=~s/\W//g;		# whitespace eliminated.
-     my $proname     = propath($domain, $user);
-     #  Tie the database.
-     my %hash;
-     if(tie(%hash, 'GDBM_File', "$proname/$namespace.db",
- 	   $how, 0640)) {
- 	# If this is a namespace for which a history is kept,
- 	# make the history log entry:
- 	if (($namespace !~/^nohist\_/) && (defined($loghead))) {
- 	    my $args = scalar @_;
- 	    Debug(" Opening history: $namespace $args");
- 	    my $hfh = IO::File->new(">>$proname/$namespace.hist");
- 	    if($hfh) {
- 		my $now = time;
- 		print $hfh "$loghead:$now:$what\n";
- 	    }
- 	    $hfh->close;
- 	}
- 	return \%hash;
-     } else {
- 	return undef;
-     }
- }
  #   read_profile
  #
  #   Returns a set of specific entries from a user's profile file.
- Line 1066  sub read_profile {
+ Line 957  sub read_profile {
  	    $qresult.="$hashref->{$queries[$i]}&";    # Presumably failure gives empty string.
  	}
  	$qresult=~s/\&$//;              # Remove trailing & from last lookup.
- 	if (untie %$hashref) {
+ 	if (&untie_user_hash($hashref)) {
  	    return $qresult;
  	} else {
  	    return "error: ".($!+0)." untie (GDBM) Failed";
- Line 1131  sub ping_handler {
+ Line 1022  sub ping_handler {
  sub pong_handler {
      my ($cmd, $tail, $replyfd) = @_;
-     my $reply=&reply("ping",$clientname);
+     my $reply=&Apache::lonnet::reply("ping",$clientname);
      &Reply( $replyfd, "$currenthostid:$reply\n", "$cmd:$tail");
      return 1;
  }
- Line 1241  sub load_handler {
+ Line 1132  sub load_handler {
  sub user_load_handler {
      my ($cmd, $tail, $replyfd) = @_;
-     my $userloadpercent=&userload();
+     my $userloadpercent=&Apache::lonnet::userload();
      &Reply($replyfd, "$userloadpercent\n", "$cmd:$tail");
      return 1;
- Line 1349  sub push_file_handler {
+ Line 1240  sub push_file_handler {
  #
  sub du_handler {
      my ($cmd, $ududir, $client) = @_;
-     my ($ududir) = split(/:/,$ududir); # Make 'telnet' testing easier.
+     ($ududir) = split(/:/,$ududir); # Make 'telnet' testing easier.
      my $userinput = "$cmd:$ududir";
      if ($ududir=~/\.\./ || $ududir!~m|^/home/httpd/|) {
- Line 1363  sub du_handler {
+ Line 1254  sub du_handler {
      #  etc.
      #
      if (-d $ududir) {
- 	#  And as Shakespeare would say to make
+ 	my $total_size=0;
- 	#  assurance double sure,
+ 	my $code=sub {
- 	# use execute_command to ensure that the command is not executed in
+ 	    if ($_=~/\.\d+\./) { return;}
- 	# a shell that can screw us up.
+ 	    if ($_=~/\.meta$/) { return;}
-         my $file_list =  execute_command("find $ududir -not -regex '.*\.[0-9]+\.[^\.]+' -not -name '*.meta' -print");
+ 	    if (-d $_)         { return;}
- 	my $duout = execute_command("du -ks $file_list");
+ 	    $total_size+=(stat($_))[7];
- 	$duout=~s/[^\d]//g; #preserve only the numbers
+ 	};
- 	&Reply($client,"$duout\n","$cmd:$ududir");
+ 	chdir($ududir);
+ 	find($code,$ududir);
+ 	$total_size=int($total_size/1024);
+ 	&Reply($client,"$total_size\n","$cmd:$ududir");
      } else {
  	&Failure($client, "bad_directory:$ududir\n","$cmd:$ududir");
      }
      return 1;
  }
- Line 1413  sub ls_handler {
+ Line 1305  sub ls_handler {
  	if(-d $ulsdir) {
  	    if (opendir(LSDIR,$ulsdir)) {
  		while ($ulsfn=readdir(LSDIR)) {
- 		    undef $obs, $rights;
+ 		    undef($obs);
+ 		    undef($rights);
  		    my @ulsstats=stat($ulsdir.'/'.$ulsfn);
  		    #We do some obsolete checking here
  		    if(-e $ulsdir.'/'.$ulsfn.".meta") {
  			open(FILE, $ulsdir.'/'.$ulsfn.".meta");
  			my @obsolete=<FILE>;
  			foreach my $obsolete (@obsolete) {
- 			    if($obsolete =~ m|(<obsolete>)(on)|) { $obs = 1; }
+ 			    if($obsolete =~ m/(<obsolete>)(on|1)/) { $obs = 1; }
  			    if($obsolete =~ m|(<copyright>)(default)|) { $rights = 1; }
  			}
  		    }
- Line 1480  sub ls2_handler {
+ Line 1373  sub ls2_handler {
          if(-d $ulsdir) {
              if (opendir(LSDIR,$ulsdir)) {
                  while ($ulsfn=readdir(LSDIR)) {
-                     undef $obs, $rights;
+                     undef($obs);
+ 		    undef($rights);
                      my @ulsstats=stat($ulsdir.'/'.$ulsfn);
                      #We do some obsolete checking here
                      if(-e $ulsdir.'/'.$ulsfn.".meta") {
                          open(FILE, $ulsdir.'/'.$ulsfn.".meta");
                          my @obsolete=<FILE>;
                          foreach my $obsolete (@obsolete) {
-                             if($obsolete =~ m|(<obsolete>)(on)|) { $obs = 1; }
+                             if($obsolete =~ m/(<obsolete>)(on|1)/) { $obs = 1; }
                              if($obsolete =~ m|(<copyright>)(default)|) {
                                  $rights = 1;
                              }
- Line 1671  sub change_password_handler {
+ Line 1565  sub change_password_handler {
      #  uname - Username.
      #  upass - Current password.
      #  npass - New password.
+     #  context - Context in which this was called
+     #            (preferences or reset_by_email).
-     my ($udom,$uname,$upass,$npass)=split(/:/,$tail);
+     my ($udom,$uname,$upass,$npass,$context)=split(/:/,$tail);
      $upass=&unescape($upass);
      $npass=&unescape($npass);
      &Debug("Trying to change password for $uname");
      # First require that the user can be authenticated with their
-     # old password:
+     # old password unless context was 'reset_by_email':
-     my $validated = &validate_user($udom, $uname, $upass);
+     my $validated;
+     if ($context eq 'reset_by_email') {
+         $validated = 1;
+     } else {
+         $validated = &validate_user($udom, $uname, $upass);
+     }
      if($validated) {
  	my $realpasswd  = &get_auth_type($udom, $uname); # Defined since authd.
- Line 1700  sub change_password_handler {
+ Line 1601  sub change_password_handler {
  			 ."to change password");
  		&Failure( $client, "non_authorized\n",$userinput);
  	    }
- 	} elsif ($howpwd eq 'unix') {
+ 	} elsif ($howpwd eq 'unix' && $context ne 'reset_by_email') {
  	    my $result = &change_unix_password($uname, $npass);
  	    &logthis("Result of password change for $uname: ".
  		     $result);
- Line 1939  sub update_resource_handler {
+ Line 1840  sub update_resource_handler {
  	    my $now=time;
  	    my $since=$now-$atime;
  	    if ($since>$perlvar{'lonExpire'}) {
- 		my $reply=&reply("unsub:$fname","$clientname");
+ 		my $reply=&Apache::lonnet::reply("unsub:$fname","$clientname");
+ 		&devalidate_meta_cache($fname);
  		unlink("$fname");
+ 		unlink("$fname.meta");
  	    } else {
  		my $transname="$fname.in.transfer";
- 		my $remoteurl=&reply("sub:$fname","$clientname");
+ 		my $remoteurl=&Apache::lonnet::reply("sub:$fname","$clientname");
  		my $response;
  		alarm(120);
  		{
- Line 1970  sub update_resource_handler {
+ Line 1873  sub update_resource_handler {
  			alarm(0);
  		    }
  		    rename($transname,$fname);
+ 		    &devalidate_meta_cache($fname);
  		}
  	    }
  	    &Reply( $client, "ok\n", $userinput);
- Line 1983  sub update_resource_handler {
+ Line 1887  sub update_resource_handler {
  }
  &register_handler("update", \&update_resource_handler, 0 ,1, 0);
+ sub devalidate_meta_cache {
+     my ($url) = @_;
+     use Cache::Memcached;
+     my $memcache = new Cache::Memcached({'servers'=>['127.0.0.1:11211']});
+     $url = &Apache::lonnet::declutter($url);
+     $url =~ s-\.meta$--;
+     my $id = &escape('meta:'.$url);
+     $memcache->delete($id);
+ }
  #
  #   Fetch a user file from a remote server to the user's home directory
  #   userfiles subdir.
- Line 2197  sub token_auth_user_file_handler {
+ Line 2111  sub token_auth_user_file_handler {
      chomp($session);
      my $reply="non_auth\n";
-     if (open(ENVIN,$perlvar{'lonIDsDir'}.'/'.
+     my $file = $perlvar{'lonIDsDir'}.'/'.$session.'.id';
- 	     $session.'.id')) {
+     if (open(ENVIN,"$file")) {
- 	while (my $line=<ENVIN>) {
+ 	flock(ENVIN,LOCK_SH);
- 	    if ($line=~ m|userfile\.\Q$fname\E\=|) { $reply="ok\n"; }
+ 	tie(my %disk_env,'GDBM_File',"$file",&GDBM_READER(),0640);
+ 	if (exists($disk_env{"userfile.$fname"})) {
+ 	    $reply="ok\n";
+ 	} else {
+ 	    foreach my $envname (keys(%disk_env)) {
+ 		if ($envname=~ m|^userfile\.\Q$fname\E|) {
+ 		    $reply="ok\n";
+ 		    last;
+ 		}
+ 	    }
  	}
+ 	untie(%disk_env);
  	close(ENVIN);
  	&Reply($client, $reply, "$cmd:$tail");
      } else {
- Line 2263  sub subscribe_handler {
+ Line 2187  sub subscribe_handler {
  &register_handler("sub", \&subscribe_handler, 0, 1, 0);
  #
- #   Determine the version of a resource (?) Or is it return
+ #   Determine the latest version of a resource (it looks for the highest
- #   the top version of the resource?  Not yet clear from the
+ #   past version and then returns that +1)
- #   code in currentversion.
  #
  # Parameters:
  #    $cmd      - The command that got us here.
  #    $tail     - Tail of the command (remaining parameters).
+ #                 (Should consist of an absolute path to a file)
  #    $client   - File descriptor connected to client.
  # Returns
  #     0        - Requested to exit, caller should shut down.
- Line 2351  sub put_user_profile_entry {
+ Line 2275  sub put_user_profile_entry {
  		my ($key,$value)=split(/=/,$pair);
  		$hashref->{$key}=$value;
  	    }
- 	    if (untie(%$hashref)) {
+ 	    if (&untie_user_hash($hashref)) {
  		&Reply( $client, "ok\n", $userinput);
  	    } else {
  		&Failure($client, "error: ".($!+0)." untie(GDBM) failed ".
- Line 2359  sub put_user_profile_entry {
+ Line 2283  sub put_user_profile_entry {
  			$userinput);
  	    }
  	} else {
- 	    &Failure( $client, "error: ".($!)." tie(GDBM) Failed ".
+ 	    &Failure( $client, "error: ".($!+0)." tie(GDBM) Failed ".
  		     "while attempting put\n", $userinput);
  	}
      } else {
- Line 2395  sub newput_user_profile_entry {
+ Line 2319  sub newput_user_profile_entry {
      my $hashref = &tie_user_hash($udom, $uname, $namespace,
  				 &GDBM_WRCREAT(),"N",$what);
      if(!$hashref) {
- 	&Failure( $client, "error: ".($!)." tie(GDBM) Failed ".
+ 	&Failure( $client, "error: ".($!+0)." tie(GDBM) Failed ".
  		  "while attempting put\n", $userinput);
  	return 1;
      }
- Line 2414  sub newput_user_profile_entry {
+ Line 2338  sub newput_user_profile_entry {
  	$hashref->{$key}=$value;
      }
-     if (untie(%$hashref)) {
+     if (&untie_user_hash($hashref)) {
  	&Reply( $client, "ok\n", $userinput);
      } else {
  	&Failure($client, "error: ".($!+0)." untie(GDBM) failed ".
- Line 2467  sub increment_user_value_handler {
+ Line 2391  sub increment_user_value_handler {
                      }
                  }
  	    }
- 	    if (untie(%$hashref)) {
+ 	    if (&untie_user_hash($hashref)) {
  		&Reply( $client, "ok\n", $userinput);
  	    } else {
  		&Failure($client, "error: ".($!+0)." untie(GDBM) failed ".
- Line 2534  sub roles_put_handler {
+ Line 2458  sub roles_put_handler {
  			       $auth_type);
  	    $hashref->{$key}=$value;
  	}
- 	if (untie($hashref)) {
+ 	if (&untie_user_hash($hashref)) {
  	    &Reply($client, "ok\n", $userinput);
  	} else {
  	    &Failure( $client, "error: ".($!+0)." untie(GDBM) Failed ".
- Line 2585  sub roles_delete_handler {
+ Line 2509  sub roles_delete_handler {
  	foreach my $key (@rolekeys) {
  	    delete $hashref->{$key};
  	}
- 	if (untie(%$hashref)) {
+ 	if (&untie_user_hash($hashref)) {
  	    &Reply($client, "ok\n", $userinput);
  	} else {
  	    &Failure( $client, "error: ".($!+0)." untie(GDBM) Failed ".
- Line 2664  sub get_profile_entry_encrypted {
+ Line 2588  sub get_profile_entry_encrypted {
      my $userinput = "$cmd:$tail";
-     my ($cmd,$udom,$uname,$namespace,$what) = split(/:/,$userinput);
+     my ($udom,$uname,$namespace,$what) = split(/:/,$tail);
      chomp($what);
      my $qresult = read_profile($udom, $uname, $namespace, $what);
      my ($first) = split(/:/, $qresult);
- Line 2726  sub delete_profile_entry {
+ Line 2650  sub delete_profile_entry {
  	foreach my $key (@keys) {
  	    delete($hashref->{$key});
  	}
- 	if (untie(%$hashref)) {
+ 	if (&untie_user_hash($hashref)) {
  	    &Reply($client, "ok\n", $userinput);
  	} else {
  	    &Failure($client, "error: ".($!+0)." untie(GDBM) Failed ".
- Line 2768  sub get_profile_keys {
+ Line 2692  sub get_profile_keys {
  	foreach my $key (keys %$hashref) {
  	    $qresult.="$key&";
  	}
- 	if (untie(%$hashref)) {
+ 	if (&untie_user_hash($hashref)) {
  	    $qresult=~s/\&$//;
  	    &Reply($client, "$qresult\n", $userinput);
  	} else {
- Line 2829  sub dump_profile_database {
+ Line 2753  sub dump_profile_database {
  	    $data{$symb}->{$param}=$value;
  	    $data{$symb}->{'v.'.$param}=$v;
  	}
- 	if (untie(%$hashref)) {
+ 	if (&untie_user_hash($hashref)) {
  	    while (my ($symb,$param_hash) = each(%data)) {
  		while(my ($param,$value) = each (%$param_hash)){
  		    next if ($param =~ /^v\./);       # Ignore versions...
- Line 2884  sub dump_with_regexp {
+ Line 2808  sub dump_with_regexp {
      my $userinput = "$cmd:$tail";
-     my ($udom,$uname,$namespace,$regexp)=split(/:/,$tail);
+     my ($udom,$uname,$namespace,$regexp,$range)=split(/:/,$tail);
      if (defined($regexp)) {
  	$regexp=&unescape($regexp);
      } else {
  	$regexp='.';
      }
+     my ($start,$end);
+     if (defined($range)) {
+ 	if ($range =~/^(\d+)\-(\d+)$/) {
+ 	    ($start,$end) = ($1,$2);
+ 	} elsif ($range =~/^(\d+)$/) {
+ 	    ($start,$end) = (0,$1);
+ 	} else {
+ 	    undef($range);
+ 	}
+     }
      my $hashref = &tie_user_hash($udom, $uname, $namespace,
  				 &GDBM_READER());
      if ($hashref) {
          my $qresult='';
+ 	my $count=0;
  	while (my ($key,$value) = each(%$hashref)) {
  	    if ($regexp eq '.') {
+ 		$count++;
+ 		if (defined($range) && $count >= $end)   { last; }
+ 		if (defined($range) && $count <  $start) { next; }
  		$qresult.=$key.'='.$value.'&';
  	    } else {
  		my $unescapeKey = &unescape($key);
  		if (eval('$unescapeKey=~/$regexp/')) {
+ 		    $count++;
+ 		    if (defined($range) && $count >= $end)   { last; }
+ 		    if (defined($range) && $count <  $start) { next; }
  		    $qresult.="$key=$value&";
  		}
  	    }
  	}
- 	if (untie(%$hashref)) {
+ 	if (&untie_user_hash($hashref)) {
  	    chop($qresult);
  	    &Reply($client, "$qresult\n", $userinput);
  	} else {
- Line 2966  sub store_handler {
+ Line 2907  sub store_handler {
  	    $hashref->{"$version:$rid:timestamp"}=$now;
  	    $allkeys.='timestamp';
  	    $hashref->{"$version:keys:$rid"}=$allkeys;
- 	    if (untie($hashref)) {
+ 	    if (&untie_user_hash($hashref)) {
  		&Reply($client, "ok\n", $userinput);
  	    } else {
  		&Failure($client, "error: ".($!+0)." untie(GDBM) Failed ".
- Line 2984  sub store_handler {
+ Line 2925  sub store_handler {
  }
  &register_handler("store", \&store_handler, 0, 1, 0);
+ #  Modify a set of key=value pairs associated with a versioned name.
+ #
+ #  Parameters:
+ #    $cmd                - Request command keyword.
+ #    $tail               - Tail of the request.  This is a colon
+ #                          separated list containing:
+ #                          domain/user - User and authentication domain.
+ #                          namespace   - Name of the database being modified
+ #                          rid         - Resource keyword to modify.
+ #                          v           - Version item to modify
+ #                          what        - new value associated with rid.
+ #
+ #    $client             - Socket open on the client.
+ #
+ #
+ #  Returns:
+ #      1 (keep on processing).
+ #  Side-Effects:
+ #    Writes to the client
+ sub putstore_handler {
+     my ($cmd, $tail, $client) = @_;
+     my $userinput = "$cmd:$tail";
+     my ($udom,$uname,$namespace,$rid,$v,$what) =split(/:/,$tail);
+     if ($namespace ne 'roles') {
+ 	chomp($what);
+ 	my $hashref  = &tie_user_hash($udom, $uname, $namespace,
+ 				       &GDBM_WRCREAT(), "M",
+ 				       "$rid:$v:$what");
+ 	if ($hashref) {
+ 	    my $now = time;
+ 	    my %data = &hash_extract($what);
+ 	    my @allkeys;
+ 	    while (my($key,$value) = each(%data)) {
+ 		push(@allkeys,$key);
+ 		$hashref->{"$v:$rid:$key"} = $value;
+ 	    }
+ 	    my $allkeys = join(':',@allkeys);
+ 	    $hashref->{"$v:keys:$rid"}=$allkeys;
+ 	    if (&untie_user_hash($hashref)) {
+ 		&Reply($client, "ok\n", $userinput);
+ 	    } else {
+ 		&Failure($client, "error: ".($!+0)." untie(GDBM) Failed ".
+ 			"while attempting store\n", $userinput);
+ 	    }
+ 	} else {
+ 	    &Failure( $client, "error: ".($!+0)." tie(GDBM) Failed ".
+ 		     "while attempting store\n", $userinput);
+ 	}
+     } else {
+ 	&Failure($client, "refused\n", $userinput);
+     }
+     return 1;
+ }
+ &register_handler("putstore", \&putstore_handler, 0, 1, 0);
+ sub hash_extract {
+     my ($str)=@_;
+     my %hash;
+     foreach my $pair (split(/\&/,$str)) {
+ 	my ($key,$value)=split(/=/,$pair);
+ 	$hash{$key}=$value;
+     }
+     return (%hash);
+ }
+ sub hash_to_str {
+     my ($hash_ref)=@_;
+     my $str;
+     foreach my $key (keys(%$hash_ref)) {
+ 	$str.=$key.'='.$hash_ref->{$key}.'&';
+     }
+     $str=~s/\&$//;
+     return $str;
+ }
  #
  #  Dump out all versions of a resource that has key=value pairs associated
  # with it for each version.  These resources are built up via the store
- Line 3013  sub restore_handler {
+ Line 3033  sub restore_handler {
      my ($cmd, $tail, $client) = @_;
      my $userinput = "$cmd:$tail";	# Only used for logging purposes.
+     my ($udom,$uname,$namespace,$rid) = split(/:/,$tail);
-     my ($cmd,$udom,$uname,$namespace,$rid) = split(/:/,$userinput);
      $namespace=~s/\//\_/g;
-     $namespace=~s/\W//g;
+     $namespace = &LONCAPA::clean_username($namespace);
      chomp($rid);
-     my $proname=&propath($udom,$uname);
      my $qresult='';
-     my %hash;
+     my $hashref = &tie_user_hash($udom, $uname, $namespace, &GDBM_READER());
-     if (tie(%hash,'GDBM_File',"$proname/$namespace.db",
+     if ($hashref) {
- 	    &GDBM_READER(),0640)) {
+ 	my $version=$hashref->{"version:$rid"};
- 	my $version=$hash{"version:$rid"};
  	$qresult.="version=$version&";
  	my $scope;
  	for ($scope=1;$scope<=$version;$scope++) {
- 	    my $vkeys=$hash{"$scope:keys:$rid"};
+ 	    my $vkeys=$hashref->{"$scope:keys:$rid"};
  	    my @keys=split(/:/,$vkeys);
  	    my $key;
  	    $qresult.="$scope:keys=$vkeys&";
  	    foreach $key (@keys) {
- 		$qresult.="$scope:$key=".$hash{"$scope:$rid:$key"}."&";
+ 		$qresult.="$scope:$key=".$hashref->{"$scope:$rid:$key"}."&";
  	    }
  	}
- 	if (untie(%hash)) {
+ 	if (&untie_user_hash($hashref)) {
  	    $qresult=~s/\&$//;
  	    &Reply( $client, "$qresult\n", $userinput);
  	} else {
- Line 3054  sub restore_handler {
+ Line 3072  sub restore_handler {
  &register_handler("restore", \&restore_handler, 0,1,0);
  #
- #   Add a chat message to to a discussion board.
+ #   Add a chat message to a synchronous discussion board.
  #
  # Parameters:
  #    $cmd                - Request keyword.
  #    $tail               - Tail of the command. A colon separated list
  #                          containing:
  #                          cdom    - Domain on which the chat board lives
- #                          cnum    - Identifier of the discussion group.
+ #                          cnum    - Course containing the chat board.
- #                          post    - Body of the posting.
+ #                          newpost - Body of the posting.
+ #                          group   - Optional group, if chat board is only
+ #                                    accessible in a group within the course
  #   $client              - Socket open on the client.
  # Returns:
  #   1    - Indicating caller should keep on processing.
- Line 3077  sub send_chat_handler {
+ Line 3097  sub send_chat_handler {
      my $userinput = "$cmd:$tail";
-     my ($cdom,$cnum,$newpost)=split(/\:/,$tail);
+     my ($cdom,$cnum,$newpost,$group)=split(/\:/,$tail);
-     &chat_add($cdom,$cnum,$newpost);
+     &chat_add($cdom,$cnum,$newpost,$group);
      &Reply($client, "ok\n", $userinput);
      return 1;
- Line 3086  sub send_chat_handler {
+ Line 3106  sub send_chat_handler {
  &register_handler("chatsend", \&send_chat_handler, 0, 1, 0);
  #
- #   Retrieve the set of chat messagss from a discussion board.
+ #   Retrieve the set of chat messages from a discussion board.
  #
  #  Parameters:
  #    $cmd             - Command keyword that initiated the request.
- Line 3096  sub send_chat_handler {
+ Line 3116  sub send_chat_handler {
  #                       chat id        - Discussion thread(?)
  #                       domain/user    - Authentication domain and username
  #                                        of the requesting person.
+ #                       group          - Optional course group containing
+ #                                        the board.
  #   $client           - Socket open on the client program.
  # Returns:
  #    1     - continue processing
- Line 3108  sub retrieve_chat_handler {
+ Line 3130  sub retrieve_chat_handler {
      my $userinput = "$cmd:$tail";
-     my ($cdom,$cnum,$udom,$uname)=split(/\:/,$tail);
+     my ($cdom,$cnum,$udom,$uname,$group)=split(/\:/,$tail);
      my $reply='';
-     foreach (&get_chat($cdom,$cnum,$udom,$uname)) {
+     foreach (&get_chat($cdom,$cnum,$udom,$uname,$group)) {
  	$reply.=&escape($_).':';
      }
      $reply=~s/\:$//;
- Line 3187  sub reply_query_handler {
+ Line 3209  sub reply_query_handler {
      my $userinput = "$cmd:$tail";
-     my ($cmd,$id,$reply)=split(/:/,$userinput);
+     my ($id,$reply)=split(/:/,$tail);
      my $store;
      my $execdir=$perlvar{'lonDaemons'};
      if ($store=IO::File->new(">$execdir/tmp/$id")) {
- Line 3251  sub put_course_id_handler {
+ Line 3273  sub put_course_id_handler {
  	foreach my $pair (@pairs) {
              my ($key,$courseinfo) = split(/=/,$pair,2);
              $courseinfo =~ s/=/:/g;
+             my @current_items = split(/:/,$hashref->{$key},-1);
-             my @current_items = split(/:/,$hashref->{$key});
              shift(@current_items); # remove description
              pop(@current_items);   # remove last access
              my $numcurrent = scalar(@current_items);
+             if ($numcurrent > 3) {
-             my @new_items = split(/:/,$courseinfo);
+                 $numcurrent = 3;
+             }
+             my @new_items = split(/:/,$courseinfo,-1);
              my $numnew = scalar(@new_items);
              if ($numcurrent > 0) {
-                 if ($numnew == 1) { # flushcourselogs() from 1.1 or earlier
+                 if ($numnew <= $numcurrent) { # flushcourselogs() from pre 2.2
-                     $courseinfo .= ':'.join(':',@current_items);
+                     for (my $j=$numcurrent-$numnew; $j>=0; $j--) {
-                 } elsif ($numnew == 2) { # flushcourselogs() from 1.2.X
+                         $courseinfo .= ':'.$current_items[$numcurrent-$j-1];
-                     $courseinfo .= ':'.$current_items[$numcurrent-1];
+                     }
                  }
              }
  	    $hashref->{$key}=$courseinfo.':'.$now;
  	}
- 	if (untie(%$hashref)) {
+ 	if (&untie_domain_hash($hashref)) {
  	    &Reply( $client, "ok\n", $userinput);
  	} else {
  	    &Failure($client, "error: ".($!+0)
- Line 3307  sub put_course_id_handler {
+ Line 3330  sub put_course_id_handler {
  #                 institutional code - optional supplied code to filter
  #                            the dump. Only courses with an institutional code
  #                            that match the supplied code will be returned.
- #                 owner    - optional supplied username of owner to filter
+ #                 owner    - optional supplied username and domain of owner to
- #                            the dump.  Only courses for which the course
+ #                            filter the dump.  Only courses for which the course
- #                            owner matches the supplied username will be
+ #                            owner matches the supplied username and/or domain
- #                            returned. Implicit assumption that owner
+ #                            will be returned. Pre-2.2.0 legacy entries from
- #                            is a user in the domain in which the
+ #                            nohist_courseiddump will only contain usernames.
- #                            course database is defined.
  #     $client  - The socket open on the client.
  # Returns:
  #    1     - Continue processing.
- Line 3323  sub dump_course_id_handler {
+ Line 3345  sub dump_course_id_handler {
      my $userinput = "$cmd:$tail";
-     my ($udom,$since,$description,$instcodefilter,$ownerfilter,$coursefilter) =split(/:/,$tail);
+     my ($udom,$since,$description,$instcodefilter,$ownerfilter,$coursefilter,
+         $typefilter,$regexp_ok) =split(/:/,$tail);
      if (defined($description)) {
  	$description=&unescape($description);
      } else {
- Line 3334  sub dump_course_id_handler {
+ Line 3357  sub dump_course_id_handler {
      } else {
          $instcodefilter='.';
      }
+     my ($ownerunamefilter,$ownerdomfilter);
      if (defined($ownerfilter)) {
          $ownerfilter=&unescape($ownerfilter);
+         if ($ownerfilter ne '.' && defined($ownerfilter)) {
+             if ($ownerfilter =~ /^([^:]*):([^:]*)$/) {
+                  $ownerunamefilter = $1;
+                  $ownerdomfilter = $2;
+             } else {
+                 $ownerunamefilter = $ownerfilter;
+                 $ownerdomfilter = '';
+             }
+         }
      } else {
          $ownerfilter='.';
      }
      if (defined($coursefilter)) {
          $coursefilter=&unescape($coursefilter);
      } else {
          $coursefilter='.';
      }
+     if (defined($typefilter)) {
+         $typefilter=&unescape($typefilter);
+     } else {
+         $typefilter='.';
+     }
+     if (defined($regexp_ok)) {
+         $regexp_ok=&unescape($regexp_ok);
+     }
      unless (defined($since)) { $since=0; }
      my $qresult='';
      my $hashref = &tie_domain_hash($udom, "nohist_courseids", &GDBM_WRCREAT());
      if ($hashref) {
  	while (my ($key,$value) = each(%$hashref)) {
- 	    my ($descr,$lasttime,$inst_code,$owner);
+ 	    my ($descr,$lasttime,$inst_code,$owner,$type);
              my @courseitems = split(/:/,$value);
              $lasttime = pop(@courseitems);
- 	    ($descr,$inst_code,$owner)=@courseitems;
+ 	    ($descr,$inst_code,$owner,$type)=@courseitems;
  	    if ($lasttime<$since) { next; }
              my $match = 1;
  	    unless ($description eq '.') {
- Line 3364  sub dump_course_id_handler {
+ Line 3406  sub dump_course_id_handler {
              }
              unless ($instcodefilter eq '.' || !defined($instcodefilter)) {
                  my $unescapeInstcode = &unescape($inst_code);
-                 unless (eval('$unescapeInstcode=~/\Q$instcodefilter\E/i')) {
+                 if ($regexp_ok) {
-                     $match = 0;
+                     unless (eval('$unescapeInstcode=~/$instcodefilter/')) {
+                         $match = 0;
+                     }
+                 } else {
+                     unless (eval('$unescapeInstcode=~/\Q$instcodefilter\E/i')) {
+                         $match = 0;
+                     }
                  }
  	    }
              unless ($ownerfilter eq '.' || !defined($ownerfilter)) {
                  my $unescapeOwner = &unescape($owner);
-                 unless (eval('$unescapeOwner=~/\Q$ownerfilter\E/i')) {
+                 if (($ownerunamefilter ne '') && ($ownerdomfilter ne '')) {
-                     $match = 0;
+                     if ($unescapeOwner =~ /:/) {
+                         if (eval('$unescapeOwner !~
+                              /\Q$ownerunamefilter\E:\Q$ownerdomfilter\E$/i')) {
+                             $match = 0;
+                         }
+                     } else {
+                         if (eval('$unescapeOwner!~/\Q$ownerunamefilter\E/i')) {
+                             $match = 0;
+                         }
+                     }
+                 } elsif ($ownerunamefilter ne '') {
+                     if ($unescapeOwner =~ /:/) {
+                         if (eval('$unescapeOwner!~/\Q$ownerunamefilter\E:[^:]+$/i')) {
+                              $match = 0;
+                         }
+                     } else {
+                         if (eval('$unescapeOwner!~/\Q$ownerunamefilter\E/i')) {
+                             $match = 0;
+                         }
+                     }
+                 } elsif ($ownerdomfilter ne '') {
+                     if ($unescapeOwner =~ /:/) {
+                         if (eval('$unescapeOwner!~/^[^:]+:\Q$ownerdomfilter\E/')) {
+                              $match = 0;
+                         }
+                     } else {
+                         if ($ownerdomfilter ne $udom) {
+                             $match = 0;
+                         }
+                     }
                  }
              }
              unless ($coursefilter eq '.' || !defined($coursefilter)) {
- Line 3380  sub dump_course_id_handler {
+ Line 3457  sub dump_course_id_handler {
                      $match = 0;
                  }
              }
+             unless ($typefilter eq '.' || !defined($typefilter)) {
+                 my $unescapeType = &unescape($type);
+                 if ($type eq '') {
+                     if ($typefilter ne 'Course') {
+                         $match = 0;
+                     }
+                 } else {
+                     unless (eval('$unescapeType=~/^\Q$typefilter\E$/')) {
+                         $match = 0;
+                     }
+                 }
+             }
              if ($match == 1) {
                  $qresult.=$key.'='.$descr.':'.$inst_code.':'.$owner.'&';
              }
  	}
- 	if (untie(%$hashref)) {
+ 	if (&untie_domain_hash($hashref)) {
  	    chop($qresult);
  	    &Reply($client, "$qresult\n", $userinput);
  	} else {
- Line 3402  sub dump_course_id_handler {
+ Line 3491  sub dump_course_id_handler {
  &register_handler("courseiddump", \&dump_course_id_handler, 0, 1, 0);
  #
+ # Puts an unencrypted entry in a namespace db file at the domain level
+ #
+ # Parameters:
+ #    $cmd      - The command that got us here.
+ #    $tail     - Tail of the command (remaining parameters).
+ #    $client   - File descriptor connected to client.
+ # Returns
+ #     0        - Requested to exit, caller should shut down.
+ #     1        - Continue processing.
+ #  Side effects:
+ #     reply is written to $client.
+ #
+ sub put_domain_handler {
+     my ($cmd,$tail,$client) = @_;
+     my $userinput = "$cmd:$tail";
+     my ($udom,$namespace,$what) =split(/:/,$tail,3);
+     chomp($what);
+     my @pairs=split(/\&/,$what);
+     my $hashref = &tie_domain_hash($udom, "$namespace", &GDBM_WRCREAT(),
+                                    "P", $what);
+     if ($hashref) {
+         foreach my $pair (@pairs) {
+             my ($key,$value)=split(/=/,$pair);
+             $hashref->{$key}=$value;
+         }
+         if (&untie_domain_hash($hashref)) {
+             &Reply($client, "ok\n", $userinput);
+         } else {
+             &Failure($client, "error: ".($!+0)." untie(GDBM) Failed ".
+                      "while attempting putdom\n", $userinput);
+         }
+     } else {
+         &Failure( $client, "error: ".($!+0)." tie(GDBM) Failed ".
+                   "while attempting putdom\n", $userinput);
+     }
+     return 1;
+ }
+ &register_handler("putdom", \&put_domain_handler, 0, 1, 0);
+ # Unencrypted get from the namespace database file at the domain level.
+ # This function retrieves a keyed item from a specific named database in the
+ # domain directory.
+ #
+ # Parameters:
+ #   $cmd             - Command request keyword (get).
+ #   $tail            - Tail of the command.  This is a colon separated list
+ #                      consisting of the domain and the 'namespace'
+ #                      which selects the gdbm file to do the lookup in,
+ #                      & separated list of keys to lookup.  Note that
+ #                      the values are returned as an & separated list too.
+ #   $client          - File descriptor open on the client.
+ # Returns:
+ #   1       - Continue processing.
+ #   0       - Exit.
+ #  Side effects:
+ #     reply is written to $client.
+ #
+ sub get_domain_handler {
+     my ($cmd, $tail, $client) = @_;
+     my $userinput = "$client:$tail";
+     my ($udom,$namespace,$what)=split(/:/,$tail,3);
+     chomp($what);
+     my @queries=split(/\&/,$what);
+     my $qresult='';
+     my $hashref = &tie_domain_hash($udom, "$namespace", &GDBM_READER());
+     if ($hashref) {
+         for (my $i=0;$i<=$#queries;$i++) {
+             $qresult.="$hashref->{$queries[$i]}&";
+         }
+         if (&untie_domain_hash($hashref)) {
+             $qresult=~s/\&$//;
+             &Reply($client, "$qresult\n", $userinput);
+         } else {
+             &Failure( $client, "error: ".($!+0)." untie(GDBM) Failed ".
+                       "while attempting getdom\n",$userinput);
+         }
+     } else {
+         &Failure($client, "error: ".($!+0)." tie(GDBM) Failed ".
+                  "while attempting getdom\n",$userinput);
+     }
+     return 1;
+ }
+ &register_handler("getdom", \&get_domain_handler, 0, 1, 0);
+ #
  #  Puts an id to a domains id database.
  #
  #  Parameters:
- Line 3433  sub put_id_handler {
+ Line 3615  sub put_id_handler {
  	    my ($key,$value)=split(/=/,$pair);
  	    $hashref->{$key}=$value;
  	}
- 	if (untie(%$hashref)) {
+ 	if (&untie_domain_hash($hashref)) {
  	    &Reply($client, "ok\n", $userinput);
  	} else {
  	    &Failure($client, "error: ".($!+0)." untie(GDBM) Failed ".
- Line 3482  sub get_id_handler {
+ Line 3664  sub get_id_handler {
  	for (my $i=0;$i<=$#queries;$i++) {
  	    $qresult.="$hashref->{$queries[$i]}&";
  	}
- 	if (untie(%$hashref)) {
+ 	if (&untie_domain_hash($hashref)) {
  	    $qresult=~s/\&$//;
  	    &Reply($client, "$qresult\n", $userinput);
  	} else {
- Line 3499  sub get_id_handler {
+ Line 3681  sub get_id_handler {
  &register_handler("idget", \&get_id_handler, 0, 1, 0);
  #
+ # Puts broadcast e-mail sent by Domain Coordinator in nohist_dcmail database
+ #
+ # Parameters
+ #   $cmd       - Command keyword that caused us to be dispatched.
+ #   $tail      - Tail of the command.  Consists of a colon separated:
+ #               domain - the domain whose dcmail we are recording
+ #               email    Consists of key=value pair
+ #                        where key is unique msgid
+ #                        and value is message (in XML)
+ #   $client    - Socket open on the client.
+ #
+ # Returns:
+ #    1 - indicating processing should continue.
+ # Side effects
+ #     reply is written to $client.
+ #
+ sub put_dcmail_handler {
+     my ($cmd,$tail,$client) = @_;
+     my $userinput = "$cmd:$tail";
+     my ($udom,$what)=split(/:/,$tail);
+     chomp($what);
+     my $hashref = &tie_domain_hash($udom, "nohist_dcmail", &GDBM_WRCREAT());
+     if ($hashref) {
+         my ($key,$value)=split(/=/,$what);
+         $hashref->{$key}=$value;
+     }
+     if (&untie_domain_hash($hashref)) {
+         &Reply($client, "ok\n", $userinput);
+     } else {
+         &Failure($client, "error: ".($!+0)." untie(GDBM) Failed ".
+                  "while attempting dcmailput\n", $userinput);
+     }
+     return 1;
+ }
+ &register_handler("dcmailput", \&put_dcmail_handler, 0, 1, 0);
+ #
+ # Retrieves broadcast e-mail from nohist_dcmail database
+ # Returns to client an & separated list of key=value pairs,
+ # where key is msgid and value is message information.
+ #
+ # Parameters
+ #   $cmd       - Command keyword that caused us to be dispatched.
+ #   $tail      - Tail of the command.  Consists of a colon separated:
+ #               domain - the domain whose dcmail table we dump
+ #               startfilter - beginning of time window
+ #               endfilter - end of time window
+ #               sendersfilter - & separated list of username:domain
+ #                 for senders to search for.
+ #   $client    - Socket open on the client.
+ #
+ # Returns:
+ #    1 - indicating processing should continue.
+ # Side effects
+ #     reply (& separated list of msgid=messageinfo pairs) is
+ #     written to $client.
+ #
+ sub dump_dcmail_handler {
+     my ($cmd, $tail, $client) = @_;
+     my $userinput = "$cmd:$tail";
+     my ($udom,$startfilter,$endfilter,$sendersfilter) = split(/:/,$tail);
+     chomp($sendersfilter);
+     my @senders = ();
+     if (defined($startfilter)) {
+         $startfilter=&unescape($startfilter);
+     } else {
+         $startfilter='.';
+     }
+     if (defined($endfilter)) {
+         $endfilter=&unescape($endfilter);
+     } else {
+         $endfilter='.';
+     }
+     if (defined($sendersfilter)) {
+         $sendersfilter=&unescape($sendersfilter);
+ 	@senders = map { &unescape($_) } split(/\&/,$sendersfilter);
+     }
+     my $qresult='';
+     my $hashref = &tie_domain_hash($udom, "nohist_dcmail", &GDBM_WRCREAT());
+     if ($hashref) {
+         while (my ($key,$value) = each(%$hashref)) {
+             my $match = 1;
+             my ($timestamp,$subj,$uname,$udom) =
+ 		split(/:/,&unescape(&unescape($key)),5); # yes, twice really
+             $subj = &unescape($subj);
+             unless ($startfilter eq '.' || !defined($startfilter)) {
+                 if ($timestamp < $startfilter) {
+                     $match = 0;
+                 }
+             }
+             unless ($endfilter eq '.' || !defined($endfilter)) {
+                 if ($timestamp > $endfilter) {
+                     $match = 0;
+                 }
+             }
+             unless (@senders < 1) {
+                 unless (grep/^$uname:$udom$/,@senders) {
+                     $match = 0;
+                 }
+             }
+             if ($match == 1) {
+                 $qresult.=$key.'='.$value.'&';
+             }
+         }
+         if (&untie_domain_hash($hashref)) {
+             chop($qresult);
+             &Reply($client, "$qresult\n", $userinput);
+         } else {
+             &Failure($client, "error: ".($!+0)." untie(GDBM) Failed ".
+                     "while attempting dcmaildump\n", $userinput);
+         }
+     } else {
+         &Failure($client, "error: ".($!+0)." tie(GDBM) Failed ".
+                 "while attempting dcmaildump\n", $userinput);
+     }
+     return 1;
+ }
+ &register_handler("dcmaildump", \&dump_dcmail_handler, 0, 1, 0);
+ #
+ # Puts domain roles in nohist_domainroles database
+ #
+ # Parameters
+ #   $cmd       - Command keyword that caused us to be dispatched.
+ #   $tail      - Tail of the command.  Consists of a colon separated:
+ #               domain - the domain whose roles we are recording
+ #               role -   Consists of key=value pair
+ #                        where key is unique role
+ #                        and value is start/end date information
+ #   $client    - Socket open on the client.
+ #
+ # Returns:
+ #    1 - indicating processing should continue.
+ # Side effects
+ #     reply is written to $client.
+ #
+ sub put_domainroles_handler {
+     my ($cmd,$tail,$client) = @_;
+     my $userinput = "$cmd:$tail";
+     my ($udom,$what)=split(/:/,$tail);
+     chomp($what);
+     my @pairs=split(/\&/,$what);
+     my $hashref = &tie_domain_hash($udom, "nohist_domainroles", &GDBM_WRCREAT());
+     if ($hashref) {
+         foreach my $pair (@pairs) {
+             my ($key,$value)=split(/=/,$pair);
+             $hashref->{$key}=$value;
+         }
+         if (&untie_domain_hash($hashref)) {
+             &Reply($client, "ok\n", $userinput);
+         } else {
+             &Failure($client, "error: ".($!+0)." untie(GDBM) Failed ".
+                      "while attempting domroleput\n", $userinput);
+         }
+     } else {
+         &Failure( $client, "error: ".($!+0)." tie(GDBM) Failed ".
+                   "while attempting domroleput\n", $userinput);
+     }
+     return 1;
+ }
+ &register_handler("domroleput", \&put_domainroles_handler, 0, 1, 0);
+ #
+ # Retrieves domain roles from nohist_domainroles database
+ # Returns to client an & separated list of key=value pairs,
+ # where key is role and value is start and end date information.
+ #
+ # Parameters
+ #   $cmd       - Command keyword that caused us to be dispatched.
+ #   $tail      - Tail of the command.  Consists of a colon separated:
+ #               domain - the domain whose domain roles table we dump
+ #   $client    - Socket open on the client.
+ #
+ # Returns:
+ #    1 - indicating processing should continue.
+ # Side effects
+ #     reply (& separated list of role=start/end info pairs) is
+ #     written to $client.
+ #
+ sub dump_domainroles_handler {
+     my ($cmd, $tail, $client) = @_;
+     my $userinput = "$cmd:$tail";
+     my ($udom,$startfilter,$endfilter,$rolesfilter) = split(/:/,$tail);
+     chomp($rolesfilter);
+     my @roles = ();
+     if (defined($startfilter)) {
+         $startfilter=&unescape($startfilter);
+     } else {
+         $startfilter='.';
+     }
+     if (defined($endfilter)) {
+         $endfilter=&unescape($endfilter);
+     } else {
+         $endfilter='.';
+     }
+     if (defined($rolesfilter)) {
+         $rolesfilter=&unescape($rolesfilter);
+ 	@roles = split(/\&/,$rolesfilter);
+     }
+     my $hashref = &tie_domain_hash($udom, "nohist_domainroles", &GDBM_WRCREAT());
+     if ($hashref) {
+         my $qresult = '';
+         while (my ($key,$value) = each(%$hashref)) {
+             my $match = 1;
+             my ($start,$end) = split(/:/,&unescape($value));
+             my ($trole,$uname,$udom,$runame,$rudom,$rsec) = split(/:/,&unescape($key));
+             unless ($startfilter eq '.' || !defined($startfilter)) {
+                 if ($start >= $startfilter) {
+                     $match = 0;
+                 }
+             }
+             unless ($endfilter eq '.' || !defined($endfilter)) {
+                 if ($end <= $endfilter) {
+                     $match = 0;
+                 }
+             }
+             unless (@roles < 1) {
+                 unless (grep/^$trole$/,@roles) {
+                     $match = 0;
+                 }
+             }
+             if ($match == 1) {
+                 $qresult.=$key.'='.$value.'&';
+             }
+         }
+         if (&untie_domain_hash($hashref)) {
+             chop($qresult);
+             &Reply($client, "$qresult\n", $userinput);
+         } else {
+             &Failure($client, "error: ".($!+0)." untie(GDBM) Failed ".
+                     "while attempting domrolesdump\n", $userinput);
+         }
+     } else {
+         &Failure($client, "error: ".($!+0)." tie(GDBM) Failed ".
+                 "while attempting domrolesdump\n", $userinput);
+     }
+     return 1;
+ }
+ &register_handler("domrolesdump", \&dump_domainroles_handler, 0, 1, 0);
  #  Process the tmpput command I'm not sure what this does.. Seems to
  #  create a file in the lonDaemons/tmp directory of the form $id.tmp
  # where Id is the client's ip concatenated with a sequence number.
- Line 3520  sub tmp_put_handler {
+ Line 3954  sub tmp_put_handler {
      my $userinput = "$cmd:$what";	# Reconstruct for logging.
+     my ($record,$context) = split(/:/,$what);
-     my $store;
+     if ($context ne '') {
+         chomp($context);
+         $context = &unescape($context);
+     }
+     my ($id,$store);
      $tmpsnum++;
-     my $id=$$.'_'.$clientip.'_'.$tmpsnum;
+     if ($context eq 'resetpw') {
+         $id = &md5_hex(&md5_hex(time.{}.rand().$$));
+     } else {
+         $id = $$.'_'.$clientip.'_'.$tmpsnum;
+     }
      $id=~s/\W/\_/g;
-     $what=~s/\n//g;
+     $record=~s/\n//g;
      my $execdir=$perlvar{'lonDaemons'};
      if ($store=IO::File->new(">$execdir/tmp/$id.tmp")) {
- 	print $store $what;
+ 	print $store $record;
  	close $store;
  	&Reply($client, "$id\n", $userinput);
      } else {
- Line 3745  sub enrollment_enabled_handler {
+ Line 4187  sub enrollment_enabled_handler {
      my $userinput = $cmd.":".$tail; # For logging purposes.
-     my $cdom = split(/:/, $tail);   # Domain we're asking about.
+     my ($cdom) = split(/:/, $tail, 2);   # Domain we're asking about.
      my $outcome  = &localenroll::run($cdom);
      &Reply($client, "$outcome\n", $userinput);
- Line 3801  sub validate_course_owner_handler {
+ Line 4244  sub validate_course_owner_handler {
      my $userinput = "$cmd:$tail";
      my ($inst_course_id, $owner, $cdom) = split(/:/, $tail);
+     $owner = &unescape($owner);
      my $outcome = &localenroll::new_course($inst_course_id,$owner,$cdom);
      &Reply($client, "$outcome\n", $userinput);
- Line 3841  sub validate_course_section_handler {
+ Line 4285  sub validate_course_section_handler {
  &register_handler("autovalidatecourse", \&validate_course_section_handler, 0, 1, 0);
  #
- #   Create a password for a new auto-enrollment user.
+ #   Validate course owner's access to enrollment data for specific class section.
- #   I think/guess, this password allows access to the institutions
+ #
- #   AIS class list server/services.  Stuart can correct this comment
- #   when he finds out how wrong I am.
  #
  # Formal Parameters:
  #    $cmd     - The command request that got us dispatched.
  #    $tail    - The tail of the command.   In this case this is a colon separated
  #               set of words that will be split into:
- #               $authparam - An authentication parameter (username??).
+ #               $inst_class  - Institutional code for the specific class section
+ #               $courseowner - The escaped username:domain of the course owner
+ #               $cdom        - The domain of the course from the institution's
+ #                              point of view.
+ #    $client  - The socket open on the client.
+ # Returns:
+ #    1 - continue processing.
+ #
+ sub validate_class_access_handler {
+     my ($cmd, $tail, $client) = @_;
+     my $userinput = "$cmd:$tail";
+     my ($inst_class,$courseowner,$cdom) = split(/:/, $tail);
+     $courseowner = &unescape($courseowner);
+     my $outcome;
+     eval {
+ 	local($SIG{__DIE__})='DEFAULT';
+ 	$outcome=&localenroll::check_section($inst_class,$courseowner,$cdom);
+     };
+     &Reply($client,"$outcome\n", $userinput);
+     return 1;
+ }
+ &register_handler("autovalidateclass_sec", \&validate_class_access_handler, 0, 1, 0);
+ #
+ #   Create a password for a new LON-CAPA user added by auto-enrollment.
+ #   Only used for case where authentication method for new user is localauth
+ #
+ # Formal Parameters:
+ #    $cmd     - The command request that got us dispatched.
+ #    $tail    - The tail of the command.   In this case this is a colon separated
+ #               set of words that will be split into:
+ #               $authparam - An authentication parameter (localauth parameter).
  #               $cdom      - The domain of the course from the institution's
  #                            point of view.
  #    $client  - The socket open on the client.
- Line 3957  sub get_institutional_code_format_handle
+ Line 4432  sub get_institutional_code_format_handle
  						    \%cat_titles,
  						    \%cat_order);
      if ($formatreply eq 'ok') {
- 	my $codes_str = &hash2str(%codes);
+ 	my $codes_str = &Apache::lonnet::hash2str(%codes);
- 	my $codetitles_str = &array2str(@codetitles);
+ 	my $codetitles_str = &Apache::lonnet::array2str(@codetitles);
- 	my $cat_titles_str = &hash2str(%cat_titles);
+ 	my $cat_titles_str = &Apache::lonnet::hash2str(%cat_titles);
- 	my $cat_order_str = &hash2str(%cat_order);
+ 	my $cat_order_str = &Apache::lonnet::hash2str(%cat_order);
  	&Reply($client,
  	       $codes_str.':'.$codetitles_str.':'.$cat_titles_str.':'
  	       .$cat_order_str."\n",
- Line 3977  sub get_institutional_code_format_handle
+ Line 4452  sub get_institutional_code_format_handle
  &register_handler("autoinstcodeformat",
  		  \&get_institutional_code_format_handler,0,1,0);
+ sub get_institutional_defaults_handler {
+     my ($cmd, $tail, $client)   = @_;
+     my $userinput               = "$cmd:$tail";
+     my $dom = $tail;
+     my %defaults_hash;
+     my @code_order;
+     my $outcome;
+     eval {
+         local($SIG{__DIE__})='DEFAULT';
+         $outcome = &localenroll::instcode_defaults($dom,\%defaults_hash,
+                                                    \@code_order);
+     };
+     if (!$@) {
+         if ($outcome eq 'ok') {
+             my $result='';
+             while (my ($key,$value) = each(%defaults_hash)) {
+                 $result.=&escape($key).'='.&escape($value).'&';
+             }
+             $result .= 'code_order='.&escape(join('&',@code_order));
+             &Reply($client,$result."\n",$userinput);
+         } else {
+             &Reply($client,"error\n", $userinput);
+         }
+     } else {
+         &Failure($client,"unknown_cmd\n",$userinput);
+     }
+ }
+ &register_handler("autoinstcodedefaults",
+                   \&get_institutional_defaults_handler,0,1,0);
+ # Get domain specific conditions for import of student photographs to a course
+ #
+ # Retrieves information from photo_permission subroutine in localenroll.
+ # Returns outcome (ok) if no processing errors, and whether course owner is
+ # required to accept conditions of use (yes/no).
+ #
+ #
+ sub photo_permission_handler {
+     my ($cmd, $tail, $client)   = @_;
+     my $userinput               = "$cmd:$tail";
+     my $cdom = $tail;
+     my ($perm_reqd,$conditions);
+     my $outcome;
+     eval {
+ 	local($SIG{__DIE__})='DEFAULT';
+ 	$outcome = &localenroll::photo_permission($cdom,\$perm_reqd,
+ 						  \$conditions);
+     };
+     if (!$@) {
+ 	&Reply($client, &escape($outcome.':'.$perm_reqd.':'. $conditions)."\n",
+ 	       $userinput);
+     } else {
+ 	&Failure($client,"unknown_cmd\n",$userinput);
+     }
+     return 1;
+ }
+ &register_handler("autophotopermission",\&photo_permission_handler,0,1,0);
+ #
+ # Checks if student photo is available for a user in the domain, in the user's
+ # directory (in /userfiles/internal/studentphoto.jpg).
+ # Uses localstudentphoto:fetch() to ensure there is an up to date copy of
+ # the student's photo.
+ sub photo_check_handler {
+     my ($cmd, $tail, $client)   = @_;
+     my $userinput               = "$cmd:$tail";
+     my ($udom,$uname,$pid) = split(/:/,$tail);
+     $udom = &unescape($udom);
+     $uname = &unescape($uname);
+     $pid = &unescape($pid);
+     my $path=&propath($udom,$uname).'/userfiles/internal/';
+     if (!-e $path) {
+         &mkpath($path);
+     }
+     my $response;
+     my $result = &localstudentphoto::fetch($udom,$uname,$pid,\$response);
+     $result .= ':'.$response;
+     &Reply($client, &escape($result)."\n",$userinput);
+     return 1;
+ }
+ &register_handler("autophotocheck",\&photo_check_handler,0,1,0);
+ #
+ # Retrieve information from localenroll about whether to provide a button
+ # for users who have enbled import of student photos to initiate an
+ # update of photo files for registered students. Also include
+ # comment to display alongside button.
+ sub photo_choice_handler {
+     my ($cmd, $tail, $client) = @_;
+     my $userinput             = "$cmd:$tail";
+     my $cdom                  = &unescape($tail);
+     my ($update,$comment);
+     eval {
+ 	local($SIG{__DIE__})='DEFAULT';
+ 	($update,$comment)    = &localenroll::manager_photo_update($cdom);
+     };
+     if (!$@) {
+ 	&Reply($client,&escape($update).':'.&escape($comment)."\n",$userinput);
+     } else {
+ 	&Failure($client,"unknown_cmd\n",$userinput);
+     }
+     return 1;
+ }
+ &register_handler("autophotochoice",\&photo_choice_handler,0,1,0);
  #
  # Gets a student's photo to exist (in the correct image type) in the user's
  # directory.
- Line 3989  sub get_institutional_code_format_handle
+ Line 4573  sub get_institutional_code_format_handle
  #    $client  - The socket open on the client.
  # Returns:
  #    1 - continue processing.
  sub student_photo_handler {
      my ($cmd, $tail, $client) = @_;
-     my ($domain,$uname,$type) = split(/:/, $tail);
+     my ($domain,$uname,$ext,$type) = split(/:/, $tail);
-     my $path=&propath($domain,$uname).
+     my $path=&propath($domain,$uname). '/userfiles/internal/';
- 	'/userfiles/internal/studentphoto.'.$type;
+     my $filename = 'studentphoto.'.$ext;
-     if (-e $path) {
+     if ($type eq 'thumbnail') {
+         $filename = 'studentphoto_tn.'.$ext;
+     }
+     if (-e $path.$filename) {
  	&Reply($client,"ok\n","$cmd:$tail");
  	return 1;
      }
      &mkpath($path);
-     my $file=&localstudentphoto::fetch($domain,$uname);
+     my $file;
+     if ($type eq 'thumbnail') {
+ 	eval {
+ 	    local($SIG{__DIE__})='DEFAULT';
+ 	    $file=&localstudentphoto::fetch_thumbnail($domain,$uname);
+ 	};
+     } else {
+         $file=&localstudentphoto::fetch($domain,$uname);
+     }
      if (!$file) {
  	&Failure($client,"unavailable\n","$cmd:$tail");
  	return 1;
      }
-     if (!-e $path) { &convert_photo($file,$path); }
+     if (!-e $path.$filename) { &convert_photo($file,$path.$filename); }
-     if (-e $path) {
+     if (-e $path.$filename) {
  	&Reply($client,"ok\n","$cmd:$tail");
  	return 1;
      }
- Line 4015  sub student_photo_handler {
+ Line 4611  sub student_photo_handler {
  }
  &register_handler("studentphoto", \&student_photo_handler, 0, 1, 0);
+ sub inst_usertypes_handler {
+     my ($cmd, $domain, $client) = @_;
+     my $res;
+     my $userinput = $cmd.":".$domain; # For logging purposes.
+     my (%typeshash,@order,$result);
+     eval {
+ 	local($SIG{__DIE__})='DEFAULT';
+ 	$result=&localenroll::inst_usertypes($domain,\%typeshash,\@order);
+     };
+     if ($result eq 'ok') {
+         if (keys(%typeshash) > 0) {
+             foreach my $key (keys(%typeshash)) {
+                 $res.=&escape($key).'='.&escape($typeshash{$key}).'&';
+             }
+         }
+         $res=~s/\&$//;
+         $res .= ':';
+         if (@order > 0) {
+             foreach my $item (@order) {
+                 $res .= &escape($item).'&';
+             }
+         }
+         $res=~s/\&$//;
+     }
+     &Reply($client, "$res\n", $userinput);
+     return 1;
+ }
+ &register_handler("inst_usertypes", \&inst_usertypes_handler, 0, 1, 0);
  # mkpath makes all directories for a file, expects an absolute path with a
  # file or a trailing / if just a dir is passed
  # returns 1 on success 0 on failure
- Line 4067  sub process_request {
+ Line 4692  sub process_request {
                                  # fix all the userinput -> user_input.
      my $wasenc    = 0;		# True if request was encrypted.
  # ------------------------------------------------------------ See if encrypted
+     # for command
+     # sethost:<server>
+     # <command>:<args>
+     #   we just send it to the processor
+     # for
+     # sethost:<server>:<command>:<args>
+     #  we do the implict set host and then do the command
+     if ($userinput =~ /^sethost:/) {
+ 	(my $cmd,my $newid,$userinput) = split(':',$userinput,3);
+ 	if (defined($userinput)) {
+ 	    &sethost("$cmd:$newid");
+ 	} else {
+ 	    $userinput = "$cmd:$newid";
+ 	}
+     }
      if ($userinput =~ /^enc/) {
  	$userinput = decipher($userinput);
  	$wasenc=1;
- Line 4262  sub catchexception {
+ Line 4903  sub catchexception {
      $SIG{__DIE__}='DEFAULT';
      &status("Catching exception");
      &logthis("<font color='red'>CRITICAL: "
-      ."ABNORMAL EXIT. Child $$ for server $thisserver died through "
+      ."ABNORMAL EXIT. Child $$ for server ".$perlvar{'lonHostID'}." died through "
       ."a crash with this error msg->[$error]</font>");
      &logthis('Famous last words: '.$status.' - '.$lastlog);
      if ($client) { print $client "error: $error\n"; }
- Line 4373  sub HUPSMAN {                      # sig
+ Line 5014  sub HUPSMAN {                      # sig
  }
  #
- #    Kill off hashes that describe the host table prior to re-reading it.
- #    Hashes affected are:
- #       %hostid, %hostdom %hostip %hostdns.
- #
- sub KillHostHashes {
-     foreach my $key (keys %hostid) {
- 	delete $hostid{$key};
-     }
-     foreach my $key (keys %hostdom) {
- 	delete $hostdom{$key};
-     }
-     foreach my $key (keys %hostip) {
- 	delete $hostip{$key};
-     }
-     foreach my $key (keys %hostdns) {
- 	delete $hostdns{$key};
-     }
- }
- #
- #   Read in the host table from file and distribute it into the various hashes:
- #
- #    - %hostid  -  Indexed by IP, the loncapa hostname.
- #    - %hostdom -  Indexed by  loncapa hostname, the domain.
- #    - %hostip  -  Indexed by hostid, the Ip address of the host.
- sub ReadHostTable {
-     open (CONFIG,"$perlvar{'lonTabDir'}/hosts.tab") || die "Can't read host file";
-     my $myloncapaname = $perlvar{'lonHostID'};
-     Debug("My loncapa name is : $myloncapaname");
-     while (my $configline=<CONFIG>) {
- 	if ($configline !~ /^\s*\#/ && $configline !~ /^\s*$/ ) {
- 	    my ($id,$domain,$role,$name)=split(/:/,$configline);
- 	    $name=~s/\s//g;
- 	    my $ip = gethostbyname($name);
- 	    if (length($ip) ne 4) {
- 		&logthis("Skipping host $id name $name no IP $ip found\n");
- 		next;
- 	    }
- 	    $ip=inet_ntoa($ip);
- 	    $hostid{$ip}=$id;         # LonCAPA name of host by IP.
- 	    $hostdom{$id}=$domain;    # LonCAPA domain name of host.
- 	    $hostip{$id}=$ip;         # IP address of host.
- 	    $hostdns{$name} = $id;    # LonCAPA name of host by DNS.
- 	    if ($id eq $perlvar{'lonHostID'}) {
- 		Debug("Found me in the host table: $name");
- 		$thisserver=$name;
- 	    }
- 	}
-     }
-     close(CONFIG);
- }
- #
  #  Reload the Apache daemon's state.
  #  This is done by invoking /home/httpd/perl/apachereload
  #  a setuid perl script that can be root for us to do this job.
- Line 4456  sub UpdateHosts {
+ Line 5044  sub UpdateHosts {
      #  either dropped or changed hosts.  Note that the re-read of the table
      #  will take care of new and changed hosts as connections come into being.
+     &Apache::lonnet::reset_hosts_info();
-     KillHostHashes;
+     foreach my $child (keys(%children)) {
-     ReadHostTable;
-     foreach my $child (keys %children) {
  	my $childip = $children{$child};
- 	if(!$hostid{$childip}) {
+ 	if ($childip ne '127.0.0.1'
+ 	    && !defined(&Apache::lonnet::get_hosts_from_ip($childip))) {
  	    logthis('<font color="blue"> UpdateHosts killing child '
  		    ." $child for ip $childip </font>");
  	    kill('INT', $child);
- Line 4622  sub status {
+ Line 5209  sub status {
      $0='lond: '.$what.' '.$local;
  }
- # -------------------------------------------------------- Escape Special Chars
- sub escape {
-     my $str=shift;
-     $str =~ s/(\W)/"%".unpack('H2',$1)/eg;
-     return $str;
- }
- # ----------------------------------------------------- Un-Escape Special Chars
- sub unescape {
-     my $str=shift;
-     $str =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C",hex($1))/eg;
-     return $str;
- }
- # ----------------------------------------------------------- Send USR1 to lonc
- sub reconlonc {
-     my $peerfile=shift;
-     &logthis("Trying to reconnect for $peerfile");
-     my $loncfile="$perlvar{'lonDaemons'}/logs/lonc.pid";
-     if (my $fh=IO::File->new("$loncfile")) {
- 	my $loncpid=<$fh>;
-         chomp($loncpid);
-         if (kill 0 => $loncpid) {
- 	    &logthis("lonc at pid $loncpid responding, sending USR1");
-             kill USR1 => $loncpid;
-         } else {
- 	    &logthis(
-               "<font color='red'>CRITICAL: "
-              ."lonc at pid $loncpid not responding, giving up</font>");
-         }
-     } else {
-       &logthis('<font color="red">CRITICAL: lonc not running, giving up</font>');
-     }
- }
- # -------------------------------------------------- Non-critical communication
- sub subreply {
-     my ($cmd,$server)=@_;
-     my $peerfile="$perlvar{'lonSockDir'}/$server";
-     my $sclient=IO::Socket::UNIX->new(Peer    =>"$peerfile",
-                                       Type    => SOCK_STREAM,
-                                       Timeout => 10)
-        or return "con_lost";
-     print $sclient "$cmd\n";
-     my $answer=<$sclient>;
-     chomp($answer);
-     if (!$answer) { $answer="con_lost"; }
-     return $answer;
- }
- sub reply {
-   my ($cmd,$server)=@_;
-   my $answer;
-   if ($server ne $currenthostid) {
-     $answer=subreply($cmd,$server);
-     if ($answer eq 'con_lost') {
- 	$answer=subreply("ping",$server);
-         if ($answer ne $server) {
- 	    &logthis("sub reply: answer != server answer is $answer, server is $server");
-            &reconlonc("$perlvar{'lonSockDir'}/$server");
-         }
-         $answer=subreply($cmd,$server);
-     }
-   } else {
-     $answer='self_reply';
-   }
-   return $answer;
- }
  # -------------------------------------------------------------- Talk to lonsql
  sub sql_reply {
- Line 4712  sub sub_sql_reply {
+ Line 5226  sub sub_sql_reply {
                                        Type    => SOCK_STREAM,
                                        Timeout => 10)
         or return "con_lost";
-     print $sclient "$cmd\n";
+     print $sclient "$cmd:$currentdomainid\n";
      my $answer=<$sclient>;
      chomp($answer);
      if (!$answer) { $answer="con_lost"; }
      return $answer;
  }
- # -------------------------------------------- Return path to profile directory
- sub propath {
-     my ($udom,$uname)=@_;
-     $udom=~s/\W//g;
-     $uname=~s/\W//g;
-     my $subdir=$uname.'__';
-     $subdir =~ s/(.)(.)(.).*/$1\/$2\/$3/;
-     my $proname="$perlvar{'lonUsersDir'}/$udom/$subdir/$uname";
-     return $proname;
- }
  # --------------------------------------- Is this the home server of an author?
  sub ishome {
- Line 4775  $SIG{USR1} = \&checkchildren;
+ Line 5277  $SIG{USR1} = \&checkchildren;
  $SIG{USR2} = \&UpdateHosts;
  #  Read the host hashes:
+ &Apache::lonnet::load_hosts_tab();
- ReadHostTable;
  my $dist=`$perlvar{'lonDaemons'}/distprobe`;
- Line 4855  sub make_new_child {
+ Line 5356  sub make_new_child {
  #        my $tmpsnum=0;            # Now global
  #---------------------------------------------------- kerberos 5 initialization
          &Authen::Krb5::init_context();
- 	if ($dist ne 'fedora4') {
+ 	unless (($dist eq 'fedora5') || ($dist eq 'fedora4') ||
+ 		($dist eq 'fedora6') || ($dist eq 'suse9.3')) {
  	    &Authen::Krb5::init_ets();
  	}
- Line 4865  sub make_new_child {
+ Line 5367  sub make_new_child {
  # -----------------------------------------------------------------------------
  	# see if we know client and 'check' for spoof IP by ineffective challenge
- 	ReadManagerTable;	# May also be a manager!!
  	my $outsideip=$clientip;
  	if ($clientip eq '127.0.0.1') {
- 	    $outsideip=$hostip{$perlvar{'lonHostID'}};
+ 	    $outsideip=&Apache::lonnet::get_host_ip($perlvar{'lonHostID'});
  	}
- 	my $clientrec=($hostid{$outsideip}     ne undef);
+ 	my $clientrec=defined(&Apache::lonnet::get_hosts_from_ip($outsideip));
  	my $ismanager=($managers{$outsideip}    ne undef);
  	$clientname  = "[unknonwn]";
  	if($clientrec) {	# Establish client type.
  	    $ConnectionType = "client";
- 	    $clientname = $hostid{$outsideip};
+ 	    $clientname = (&Apache::lonnet::get_hosts_from_ip($outsideip))[-1];
  	    if($ismanager) {
  		$ConnectionType = "both";
  	    }
- Line 4896  sub make_new_child {
+ Line 5396  sub make_new_child {
  	    my $remotereq=<$client>;
  	    chomp($remotereq);
  	    Debug("Got init: $remotereq");
- 	    my $inikeyword = split(/:/, $remotereq);
  	    if ($remotereq =~ /^init/) {
  		&sethost("sethost:$perlvar{'lonHostID'}");
  		#
- Line 4984  sub make_new_child {
+ Line 5484  sub make_new_child {
  	if ($clientok) {
  # ---------------- New known client connecting, could mean machine online again
+ 	    if (&Apache::lonnet::get_host_ip($currenthostid) ne $clientip
- 	    foreach my $id (keys(%hostip)) {
+ 		&& $clientip ne '127.0.0.1') {
- 		if ($hostip{$id} ne $clientip ||
+ 		&Apache::lonnet::reconlonc($clientname);
- 		    $hostip{$currenthostid} eq $clientip) {
- 		    # no need to try to do recon's to myself
- 		    next;
- 		}
- 		&reconlonc("$perlvar{'lonSockDir'}/$id");
  	    }
  	    &logthis("<font color='green'>Established connection: $clientname</font>");
  	    &status('Will listen to '.$clientname);
- Line 5047  sub is_author {
+ Line 5542  sub is_author {
      #  Author role should show up as a key /domain/_au
-     my $key   = "/$domain/_au";
+     my $key    = "/$domain/_au";
-     my $value = $hashref->{$key};
+     my $value;
+     if (defined($hashref)) {
+ 	$value = $hashref->{$key};
+     }
      if(defined($value)) {
  	&Debug("$user @ $domain is an author");
- Line 5265  sub validate_user {
+ Line 5763  sub validate_user {
  		my $krbservice = "krbtgt/".$contentpwd."\@".$contentpwd;
  		my $krbserver  = &Authen::Krb5::parse_name($krbservice);
  		my $credentials= &Authen::Krb5::cc_default();
- 		$credentials->initialize($krbclient);
+ 		$credentials->initialize(&Authen::Krb5::parse_name($user.'@'
+                                                                  .$contentpwd));
  		my $krbreturn  = &Authen::Krb5::get_in_tkt_with_password($krbclient,
  									 $krbserver,
  									 $password,
  									 $credentials);
  		$validated = ($krbreturn == 1);
+ 		if (!$validated) {
+ 		    &logthis('krb5: '.$user.', '.$contentpwd.', '.
+ 			     &Authen::Krb5::error());
+ 		}
  	    } else {
  		$validated = 0;
  	    }
- Line 5278  sub validate_user {
+ Line 5781  sub validate_user {
  	    #  Authenticate via installation specific authentcation method:
  	    $validated = &localauth::localauth($user,
  					       $password,
- 					       $contentpwd);
+ 					       $contentpwd,
+ 					       $domain);
+ 	    if ($validated < 0) {
+ 		&logthis("localauth for $contentpwd $user:$domain returned a $validated");
+ 		$validated = 0;
+ 	    }
  	} else {			# Unrecognized auth is also bad.
  	    $validated = 0;
  	}
- Line 5304  sub addline {
+ Line 5812  sub addline {
      my ($fname,$hostid,$ip,$newline)=@_;
      my $contents;
      my $found=0;
-     my $expr='^'.$hostid.':'.$ip.':';
+     my $expr='^'.quotemeta($hostid).':'.quotemeta($ip).':';
-     $expr =~ s/\./\\\./g;
      my $sh;
      if ($sh=IO::File->new("$fname.subscription")) {
  	while (my $subline=<$sh>) {
- Line 5321  sub addline {
+ Line 5828  sub addline {
  }
  sub get_chat {
-     my ($cdom,$cname,$udom,$uname)=@_;
+     my ($cdom,$cname,$udom,$uname,$group)=@_;
-     my %hash;
-     my $proname=&propath($cdom,$cname);
      my @entries=();
-     if (tie(%hash,'GDBM_File',"$proname/nohist_chatroom.db",
+     my $namespace = 'nohist_chatroom';
- 	    &GDBM_READER(),0640)) {
+     my $namespace_inroom = 'nohist_inchatroom';
- 	@entries=map { $_.':'.$hash{$_} } sort keys %hash;
+     if ($group ne '') {
- 	untie %hash;
+         $namespace .= '_'.$group;
+         $namespace_inroom .= '_'.$group;
+     }
+     my $hashref = &tie_user_hash($cdom, $cname, $namespace,
+ 				 &GDBM_READER());
+     if ($hashref) {
+ 	@entries=map { $_.':'.$hashref->{$_} } sort(keys(%$hashref));
+ 	&untie_user_hash($hashref);
      }
      my @participants=();
      my $cutoff=time-60;
-     if (tie(%hash,'GDBM_File',"$proname/nohist_inchatroom.db",
+     $hashref = &tie_user_hash($cdom, $cname, $namespace_inroom,
- 	    &GDBM_WRCREAT(),0640)) {
+ 			      &GDBM_WRCREAT());
-         $hash{$uname.':'.$udom}=time;
+     if ($hashref) {
-         foreach (sort keys %hash) {
+         $hashref->{$uname.':'.$udom}=time;
- 	    if ($hash{$_}>$cutoff) {
+         foreach my $user (sort(keys(%$hashref))) {
- 		$participants[$#participants+1]='active_participant:'.$_;
+ 	    if ($hashref->{$user}>$cutoff) {
+ 		push(@participants, 'active_participant:'.$user);
              }
          }
-         untie %hash;
+         &untie_user_hash($hashref);
      }
      return (@participants,@entries);
  }
  sub chat_add {
-     my ($cdom,$cname,$newchat)=@_;
+     my ($cdom,$cname,$newchat,$group)=@_;
-     my %hash;
-     my $proname=&propath($cdom,$cname);
      my @entries=();
      my $time=time;
-     if (tie(%hash,'GDBM_File',"$proname/nohist_chatroom.db",
+     my $namespace = 'nohist_chatroom';
- 	    &GDBM_WRCREAT(),0640)) {
+     my $logfile = 'chatroom.log';
- 	@entries=map { $_.':'.$hash{$_} } sort keys %hash;
+     if ($group ne '') {
+         $namespace .= '_'.$group;
+         $logfile = 'chatroom_'.$group.'.log';
+     }
+     my $hashref = &tie_user_hash($cdom, $cname, $namespace,
+ 				 &GDBM_WRCREAT());
+     if ($hashref) {
+ 	@entries=map { $_.':'.$hashref->{$_} } sort(keys(%$hashref));
  	my ($lastid)=($entries[$#entries]=~/^(\w+)\:/);
  	my ($thentime,$idnum)=split(/\_/,$lastid);
  	my $newid=$time.'_000000';
- Line 5363  sub chat_add {
+ Line 5882  sub chat_add {
  	    $idnum=substr('000000'.$idnum,-6,6);
  	    $newid=$time.'_'.$idnum;
  	}
- 	$hash{$newid}=$newchat;
+ 	$hashref->{$newid}=$newchat;
  	my $expired=$time-3600;
- 	foreach (keys %hash) {
+ 	foreach my $comment (keys(%$hashref)) {
- 	    my ($thistime)=($_=~/(\d+)\_/);
+ 	    my ($thistime) = ($comment=~/(\d+)\_/);
  	    if ($thistime<$expired) {
- 		delete $hash{$_};
+ 		delete $hashref->{$comment};
  	    }
  	}
- 	untie %hash;
+ 	{
-     }
+ 	    my $proname=&propath($cdom,$cname);
-     {
+ 	    if (open(CHATLOG,">>$proname/$logfile")) {
- 	my $hfh;
+ 		print CHATLOG ("$time:".&unescape($newchat)."\n");
- 	if ($hfh=IO::File->new(">>$proname/chatroom.log")) {
+ 	    }
- 	    print $hfh "$time:".&unescape($newchat)."\n";
+ 	    close(CHATLOG);
  	}
+ 	&untie_user_hash($hashref);
      }
  }
- Line 5466  sub thisversion {
+ Line 5986  sub thisversion {
  sub subscribe {
      my ($userinput,$clientip)=@_;
      my $result;
-     my ($cmd,$fname)=split(/:/,$userinput);
+     my ($cmd,$fname)=split(/:/,$userinput,2);
      my $ownership=&ishome($fname);
      if ($ownership eq 'owner') {
  # explitly asking for the current version?
- Line 5499  sub subscribe {
+ Line 6019  sub subscribe {
                  # the metadata
  		unless ($fname=~/\.meta$/) { &unsub("$fname.meta",$clientip); }
  		$fname=~s/\/home\/httpd\/html\/res/raw/;
- 		$fname="http://$thisserver/".$fname;
+ 		$fname="http://".&Apache::lonnet::hostname($perlvar{'lonHostID'})."/".$fname;
  		$result="$fname\n";
  	    }
  	} else {
- Line 5647  sub convert_photo {
+ Line 6167  sub convert_photo {
  sub sethost {
      my ($remotereq) = @_;
      my (undef,$hostid)=split(/:/,$remotereq);
+     # ignore sethost if we are already correct
+     if ($hostid eq $currenthostid) {
+ 	return 'ok';
+     }
      if (!defined($hostid)) { $hostid=$perlvar{'lonHostID'}; }
-     if ($hostip{$perlvar{'lonHostID'}} eq $hostip{$hostid}) {
+     if (&Apache::lonnet::get_host_ip($perlvar{'lonHostID'})
+ 	eq &Apache::lonnet::get_host_ip($hostid)) {
  	$currenthostid  =$hostid;
- 	$currentdomainid=$hostdom{$hostid};
+ 	$currentdomainid=&Apache::lonnet::host_domain($hostid);
  	&logthis("Setting hostid to $hostid, and domain to $currentdomainid");
      } else {
  	&logthis("Requested host id $hostid not an alias of ".
- Line 5666  sub version {
+ Line 6192  sub version {
      return "version:$VERSION";
  }
- #There is a copy of this in lonnet.pm
- sub userload {
-     my $numusers=0;
-     {
- 	opendir(LONIDS,$perlvar{'lonIDsDir'});
- 	my $filename;
- 	my $curtime=time;
- 	while ($filename=readdir(LONIDS)) {
- 	    if ($filename eq '.' || $filename eq '..') {next;}
- 	    my ($mtime)=(stat($perlvar{'lonIDsDir'}.'/'.$filename))[9];
- 	    if ($curtime-$mtime < 1800) { $numusers++; }
- 	}
- 	closedir(LONIDS);
-     }
-     my $userloadpercent=0;
-     my $maxuserload=$perlvar{'lonUserLoadLim'};
-     if ($maxuserload) {
- 	$userloadpercent=100*$numusers/$maxuserload;
-     }
-     $userloadpercent=sprintf("%.2f",$userloadpercent);
-     return $userloadpercent;
- }
- # Routines for serializing arrays and hashes (copies from lonnet)
- sub array2str {
-   my (@array) = @_;
-   my $result=&arrayref2str(\@array);
-   $result=~s/^__ARRAY_REF__//;
-   $result=~s/__END_ARRAY_REF__$//;
-   return $result;
- }
- sub arrayref2str {
-   my ($arrayref) = @_;
-   my $result='__ARRAY_REF__';
-   foreach my $elem (@$arrayref) {
-     if(ref($elem) eq 'ARRAY') {
-       $result.=&arrayref2str($elem).'&';
-     } elsif(ref($elem) eq 'HASH') {
-       $result.=&hashref2str($elem).'&';
-     } elsif(ref($elem)) {
-       #print("Got a ref of ".(ref($elem))." skipping.");
-     } else {
-       $result.=&escape($elem).'&';
-     }
-   }
-   $result=~s/\&$//;
-   $result .= '__END_ARRAY_REF__';
-   return $result;
- }
- sub hash2str {
-   my (%hash) = @_;
-   my $result=&hashref2str(\%hash);
-   $result=~s/^__HASH_REF__//;
-   $result=~s/__END_HASH_REF__$//;
-   return $result;
- }
- sub hashref2str {
-   my ($hashref)=@_;
-   my $result='__HASH_REF__';
-   foreach (sort(keys(%$hashref))) {
-     if (ref($_) eq 'ARRAY') {
-       $result.=&arrayref2str($_).'=';
-     } elsif (ref($_) eq 'HASH') {
-       $result.=&hashref2str($_).'=';
-     } elsif (ref($_)) {
-       $result.='=';
-       #print("Got a ref of ".(ref($_))." skipping.");
-     } else {
-         if ($_) {$result.=&escape($_).'=';} else { last; }
-     }
-     if(ref($hashref->{$_}) eq 'ARRAY') {
-       $result.=&arrayref2str($hashref->{$_}).'&';
-     } elsif(ref($hashref->{$_}) eq 'HASH') {
-       $result.=&hashref2str($hashref->{$_}).'&';
-     } elsif(ref($hashref->{$_})) {
-        $result.='&';
-       #print("Got a ref of ".(ref($hashref->{$_}))." skipping.");
-     } else {
-       $result.=&escape($hashref->{$_}).'&';
-     }
-   }
-   $result=~s/\&$//;
-   $result .= '__END_HASH_REF__';
-   return $result;
- }
  # ----------------------------------- POD (plain old documentation, CPAN style)
- Line 6072  to the client, and the connection is clo
+ Line 6508  to the client, and the connection is clo
  IO::Socket
  IO::File
  Apache::File
- Symbol
  POSIX
  Crypt::IDEA
  LWP::UserAgent()

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

Removed from v.1.290
changed lines
	Added in v.1.380