|
version 1.345, 2006/10/16 19:18:11
|
version 1.349, 2006/11/27 16:33:38
|
|
Line 40 use IO::File;
|
Line 40 use IO::File;
|
| use POSIX; |
use POSIX; |
| use Crypt::IDEA; |
use Crypt::IDEA; |
| use LWP::UserAgent(); |
use LWP::UserAgent(); |
| |
use Digest::MD5 qw(md5_hex); |
| use GDBM_File; |
use GDBM_File; |
| use Authen::Krb4; |
use Authen::Krb4; |
| use Authen::Krb5; |
use Authen::Krb5; |
|
Line 1574 sub change_password_handler {
|
Line 1575 sub change_password_handler {
|
| # uname - Username. |
# uname - Username. |
| # upass - Current password. |
# upass - Current password. |
| # npass - New password. |
# npass - New password. |
| |
# context - Context in which this was called |
| |
# (preferences or reset_by_email). |
| |
|
| my ($udom,$uname,$upass,$npass)=split(/:/,$tail); |
my ($udom,$uname,$upass,$npass,$context)=split(/:/,$tail); |
| |
|
| $upass=&unescape($upass); |
$upass=&unescape($upass); |
| $npass=&unescape($npass); |
$npass=&unescape($npass); |
| &Debug("Trying to change password for $uname"); |
&Debug("Trying to change password for $uname"); |
| |
|
| # First require that the user can be authenticated with their |
# First require that the user can be authenticated with their |
| # old password: |
# old password unless context was 'reset_by_email': |
| |
|
| my $validated = &validate_user($udom, $uname, $upass); |
my $validated; |
| |
if ($context eq 'reset_by_email') { |
| |
$validated = 1; |
| |
} else { |
| |
$validated = &validate_user($udom, $uname, $upass); |
| |
} |
| if($validated) { |
if($validated) { |
| my $realpasswd = &get_auth_type($udom, $uname); # Defined since authd. |
my $realpasswd = &get_auth_type($udom, $uname); # Defined since authd. |
| |
|
|
Line 1603 sub change_password_handler {
|
Line 1611 sub change_password_handler {
|
| ."to change password"); |
."to change password"); |
| &Failure( $client, "non_authorized\n",$userinput); |
&Failure( $client, "non_authorized\n",$userinput); |
| } |
} |
| } elsif ($howpwd eq 'unix') { |
} elsif ($howpwd eq 'unix' && $context ne 'reset_by_email') { |
| my $result = &change_unix_password($uname, $npass); |
my $result = &change_unix_password($uname, $npass); |
| &logthis("Result of password change for $uname: ". |
&logthis("Result of password change for $uname: ". |
| $result); |
$result); |
|
Line 3045 sub restore_handler {
|
Line 3053 sub restore_handler {
|
| my ($cmd, $tail, $client) = @_; |
my ($cmd, $tail, $client) = @_; |
| |
|
| my $userinput = "$cmd:$tail"; # Only used for logging purposes. |
my $userinput = "$cmd:$tail"; # Only used for logging purposes. |
| |
$namespace=~s/\W//g; |
| my ($udom,$uname,$namespace,$rid) = split(/:/,$tail); |
my ($udom,$uname,$namespace,$rid) = split(/:/,$tail); |
| $namespace=~s/\//\_/g; |
$namespace=~s/\//\_/g; |
| $namespace=~s/\W//g; |
|
| chomp($rid); |
chomp($rid); |
| my $qresult=''; |
my $qresult=''; |
| my $hashref = &tie_user_hash($udom, $uname, $namespace, &GDBM_READER()); |
my $hashref = &tie_user_hash($udom, $uname, $namespace, &GDBM_READER()); |
|
Line 3502 sub dump_course_id_handler {
|
Line 3510 sub dump_course_id_handler {
|
| ®ister_handler("courseiddump", \&dump_course_id_handler, 0, 1, 0); |
®ister_handler("courseiddump", \&dump_course_id_handler, 0, 1, 0); |
| |
|
| # |
# |
| |
# Puts an unencrypted entry in a namespace db file at the domain level |
| |
# |
| |
# Parameters: |
| |
# $cmd - The command that got us here. |
| |
# $tail - Tail of the command (remaining parameters). |
| |
# $client - File descriptor connected to client. |
| |
# Returns |
| |
# 0 - Requested to exit, caller should shut down. |
| |
# 1 - Continue processing. |
| |
# Side effects: |
| |
# reply is written to $client. |
| |
# |
| |
sub put_domain_handler { |
| |
my ($cmd,$tail,$client) = @_; |
| |
|
| |
my $userinput = "$cmd:$tail"; |
| |
|
| |
my ($udom,$namespace,$what) =split(/:/,$tail,3); |
| |
chomp($what); |
| |
my @pairs=split(/\&/,$what); |
| |
my $hashref = &tie_domain_hash($udom, "$namespace", &GDBM_WRCREAT(), |
| |
"P", $what); |
| |
if ($hashref) { |
| |
foreach my $pair (@pairs) { |
| |
my ($key,$value)=split(/=/,$pair); |
| |
$hashref->{$key}=$value; |
| |
} |
| |
if (&untie_domain_hash($hashref)) { |
| |
&Reply($client, "ok\n", $userinput); |
| |
} else { |
| |
&Failure($client, "error: ".($!+0)." untie(GDBM) Failed ". |
| |
"while attempting putdom\n", $userinput); |
| |
} |
| |
} else { |
| |
&Failure( $client, "error: ".($!+0)." tie(GDBM) Failed ". |
| |
"while attempting putdom\n", $userinput); |
| |
} |
| |
|
| |
return 1; |
| |
} |
| |
®ister_handler("putdom", \&put_domain_handler, 0, 1, 0); |
| |
|
| |
# Unencrypted get from the namespace database file at the domain level. |
| |
# This function retrieves a keyed item from a specific named database in the |
| |
# domain directory. |
| |
# |
| |
# Parameters: |
| |
# $cmd - Command request keyword (get). |
| |
# $tail - Tail of the command. This is a colon separated list |
| |
# consisting of the domain and the 'namespace' |
| |
# which selects the gdbm file to do the lookup in, |
| |
# & separated list of keys to lookup. Note that |
| |
# the values are returned as an & separated list too. |
| |
# $client - File descriptor open on the client. |
| |
# Returns: |
| |
# 1 - Continue processing. |
| |
# 0 - Exit. |
| |
# Side effects: |
| |
# reply is written to $client. |
| |
# |
| |
|
| |
sub get_domain_handler { |
| |
my ($cmd, $tail, $client) = @_; |
| |
|
| |
my $userinput = "$client:$tail"; |
| |
|
| |
my ($udom,$namespace,$what)=split(/:/,$tail,3); |
| |
chomp($what); |
| |
my @queries=split(/\&/,$what); |
| |
my $qresult=''; |
| |
my $hashref = &tie_domain_hash($udom, "$namespace", &GDBM_READER()); |
| |
if ($hashref) { |
| |
for (my $i=0;$i<=$#queries;$i++) { |
| |
$qresult.="$hashref->{$queries[$i]}&"; |
| |
} |
| |
if (&untie_domain_hash($hashref)) { |
| |
$qresult=~s/\&$//; |
| |
&Reply($client, "$qresult\n", $userinput); |
| |
} else { |
| |
&Failure( $client, "error: ".($!+0)." untie(GDBM) Failed ". |
| |
"while attempting getdom\n",$userinput); |
| |
} |
| |
} else { |
| |
&Failure($client, "error: ".($!+0)." tie(GDBM) Failed ". |
| |
"while attempting getdom\n",$userinput); |
| |
} |
| |
|
| |
return 1; |
| |
} |
| |
®ister_handler("getdom", \&get_id_handler, 0, 1, 0); |
| |
|
| |
|
| |
# |
| # Puts an id to a domains id database. |
# Puts an id to a domains id database. |
| # |
# |
| # Parameters: |
# Parameters: |
|
Line 3872 sub tmp_put_handler {
|
Line 3973 sub tmp_put_handler {
|
| |
|
| my $userinput = "$cmd:$what"; # Reconstruct for logging. |
my $userinput = "$cmd:$what"; # Reconstruct for logging. |
| |
|
| |
my ($record,$context) = split(/:/,$what); |
| my $store; |
if ($context ne '') { |
| |
chomp($context); |
| |
$context = &unescape($context); |
| |
} |
| |
my ($id,$store); |
| $tmpsnum++; |
$tmpsnum++; |
| my $id=$$.'_'.$clientip.'_'.$tmpsnum; |
if ($context eq 'resetpw') { |
| |
$id = &md5_hex(&md5_hex(time.{}.rand().$$)); |
| |
} else { |
| |
$id = $$.'_'.$clientip.'_'.$tmpsnum; |
| |
} |
| $id=~s/\W/\_/g; |
$id=~s/\W/\_/g; |
| $what=~s/\n//g; |
$record=~s/\n//g; |
| my $execdir=$perlvar{'lonDaemons'}; |
my $execdir=$perlvar{'lonDaemons'}; |
| if ($store=IO::File->new(">$execdir/tmp/$id.tmp")) { |
if ($store=IO::File->new(">$execdir/tmp/$id.tmp")) { |
| print $store $what; |
print $store $record; |
| close $store; |
close $store; |
| &Reply($client, "$id\n", $userinput); |
&Reply($client, "$id\n", $userinput); |
| } else { |
} else { |
|
Line 5357 sub make_new_child {
|
Line 5466 sub make_new_child {
|
| # my $tmpsnum=0; # Now global |
# my $tmpsnum=0; # Now global |
| #---------------------------------------------------- kerberos 5 initialization |
#---------------------------------------------------- kerberos 5 initialization |
| &Authen::Krb5::init_context(); |
&Authen::Krb5::init_context(); |
| unless (($dist eq 'fedora4') || ($dist eq 'suse9.3')) { |
unless (($dist eq 'fedora5') || ($dist eq 'fedora4') |
| |
|| ($dist eq 'suse9.3')) { |
| &Authen::Krb5::init_ets(); |
&Authen::Krb5::init_ets(); |
| } |
} |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to lond CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom