|
version 1.1182, 2012/08/03 10:55:53
|
version 1.1193, 2012/10/31 12:54:23
|
|
Line 113 our @ISA = qw (Exporter);
|
Line 113 our @ISA = qw (Exporter);
|
| our @EXPORT = qw(%env); |
our @EXPORT = qw(%env); |
| |
|
| |
|
| # --------------------------------------------------------------------- Logging |
# ------------------------------------ Logging (parameters, docs, slots, roles) |
| { |
{ |
| my $logid; |
my $logid; |
| sub instructor_log { |
sub write_log { |
| my ($hash_name,$storehash,$delflag,$uname,$udom,$cnum,$cdom)=@_; |
my ($context,$hash_name,$storehash,$delflag,$uname,$udom,$cnum,$cdom)=@_; |
| if (($cnum eq '') || ($cdom eq '')) { |
if ($context eq 'course') { |
| $cnum = $env{'course.'.$env{'request.course.id'}.'.num'}; |
if (($cnum eq '') || ($cdom eq '')) { |
| $cdom = $env{'course.'.$env{'request.course.id'}.'.domain'}; |
$cnum = $env{'course.'.$env{'request.course.id'}.'.num'}; |
| |
$cdom = $env{'course.'.$env{'request.course.id'}.'.domain'}; |
| |
} |
| } |
} |
| $logid++; |
$logid ++; |
| my $now = time(); |
my $now = time(); |
| my $id=$now.'00000'.$$.'00000'.$logid; |
my $id=$now.'00000'.$$.'00000'.$logid; |
| return &Apache::lonnet::put('nohist_'.$hash_name, |
my $logentry = { |
| { $id => { |
$id => { |
| 'exe_uname' => $env{'user.name'}, |
'exe_uname' => $env{'user.name'}, |
| 'exe_udom' => $env{'user.domain'}, |
'exe_udom' => $env{'user.domain'}, |
| 'exe_time' => $now, |
'exe_time' => $now, |
| 'exe_ip' => $ENV{'REMOTE_ADDR'}, |
'exe_ip' => $ENV{'REMOTE_ADDR'}, |
| 'delflag' => $delflag, |
'delflag' => $delflag, |
| 'logentry' => $storehash, |
'logentry' => $storehash, |
| 'uname' => $uname, |
'uname' => $uname, |
| 'udom' => $udom, |
'udom' => $udom, |
| } |
} |
| },$cdom,$cnum); |
}; |
| |
return &put('nohist_'.$hash_name,$logentry,$cdom,$cnum); |
| } |
} |
| } |
} |
| |
|
|
Line 1237 sub get_lonbalancer_config {
|
Line 1240 sub get_lonbalancer_config {
|
| |
|
| sub check_loadbalancing { |
sub check_loadbalancing { |
| my ($uname,$udom) = @_; |
my ($uname,$udom) = @_; |
| my ($is_balancer,$dom_in_use,$homeintdom,$rule_in_effect, |
my ($is_balancer,$currtargets,$currrules,$dom_in_use,$homeintdom, |
| $offloadto,$otherserver); |
$rule_in_effect,$offloadto,$otherserver); |
| my $lonhost = $perlvar{'lonHostID'}; |
my $lonhost = $perlvar{'lonHostID'}; |
| my @hosts = ¤t_machine_ids(); |
my @hosts = ¤t_machine_ids(); |
| my $uprimary_id = &Apache::lonnet::domain($udom,'primary'); |
my $uprimary_id = &Apache::lonnet::domain($udom,'primary'); |
|
Line 1263 sub check_loadbalancing {
|
Line 1266 sub check_loadbalancing {
|
| } |
} |
| } |
} |
| if (ref($result) eq 'HASH') { |
if (ref($result) eq 'HASH') { |
| my $currbalancer = $result->{'lonhost'}; |
($is_balancer,$currtargets,$currrules) = |
| my $currtargets = $result->{'targets'}; |
&check_balancer_result($result,@hosts); |
| my $currrules = $result->{'rules'}; |
|
| if ($currbalancer ne '') { |
|
| if (grep(/^\Q$currbalancer\E$/,@hosts)) { |
|
| $is_balancer = 1; |
|
| } |
|
| } |
|
| if ($is_balancer) { |
if ($is_balancer) { |
| if (ref($currrules) eq 'HASH') { |
if (ref($currrules) eq 'HASH') { |
| if ($homeintdom) { |
if ($homeintdom) { |
|
Line 1328 sub check_loadbalancing {
|
Line 1325 sub check_loadbalancing {
|
| } |
} |
| } |
} |
| if (ref($result) eq 'HASH') { |
if (ref($result) eq 'HASH') { |
| my $currbalancer = $result->{'lonhost'}; |
($is_balancer,$currtargets,$currrules) = |
| my $currtargets = $result->{'targets'}; |
&check_balancer_result($result,@hosts); |
| my $currrules = $result->{'rules'}; |
if ($is_balancer) { |
| |
|
| if ($currbalancer eq $lonhost) { |
|
| $is_balancer = 1; |
|
| if (ref($currrules) eq 'HASH') { |
if (ref($currrules) eq 'HASH') { |
| if ($currrules->{'_LC_internetdom'} ne '') { |
if ($currrules->{'_LC_internetdom'} ne '') { |
| $rule_in_effect = $currrules->{'_LC_internetdom'}; |
$rule_in_effect = $currrules->{'_LC_internetdom'}; |
|
Line 1397 sub check_loadbalancing {
|
Line 1391 sub check_loadbalancing {
|
| return ($is_balancer,$otherserver); |
return ($is_balancer,$otherserver); |
| } |
} |
| |
|
| |
sub check_balancer_result { |
| |
my ($result,@hosts) = @_; |
| |
my ($is_balancer,$currtargets,$currrules); |
| |
if (ref($result) eq 'HASH') { |
| |
if ($result->{'lonhost'} ne '') { |
| |
my $currbalancer = $result->{'lonhost'}; |
| |
if (grep(/^\Q$currbalancer\E$/,@hosts)) { |
| |
$is_balancer = 1; |
| |
$currtargets = $result->{'targets'}; |
| |
$currrules = $result->{'rules'}; |
| |
} |
| |
} else { |
| |
foreach my $key (keys(%{$result})) { |
| |
if (($key ne '') && (grep(/^\Q$key\E$/,@hosts)) && |
| |
(ref($result->{$key}) eq 'HASH')) { |
| |
$is_balancer = 1; |
| |
$currrules = $result->{$key}{'rules'}; |
| |
$currtargets = $result->{$key}{'targets'}; |
| |
last; |
| |
} |
| |
} |
| |
} |
| |
} |
| |
return ($is_balancer,$currtargets,$currrules); |
| |
} |
| |
|
| sub get_loadbalancer_targets { |
sub get_loadbalancer_targets { |
| my ($rule_in_effect,$currtargets,$uname,$udom) = @_; |
my ($rule_in_effect,$currtargets,$uname,$udom) = @_; |
| my $offloadto; |
my $offloadto; |
|
Line 1939 sub get_domain_defaults {
|
Line 1959 sub get_domain_defaults {
|
| my %domconfig = |
my %domconfig = |
| &Apache::lonnet::get_dom('configuration',['defaults','quotas', |
&Apache::lonnet::get_dom('configuration',['defaults','quotas', |
| 'requestcourses','inststatus', |
'requestcourses','inststatus', |
| 'coursedefaults','usersessions'],$domain); |
'coursedefaults','usersessions', |
| |
'requestauthor'],$domain); |
| if (ref($domconfig{'defaults'}) eq 'HASH') { |
if (ref($domconfig{'defaults'}) eq 'HASH') { |
| $domdefaults{'lang_def'} = $domconfig{'defaults'}{'lang_def'}; |
$domdefaults{'lang_def'} = $domconfig{'defaults'}{'lang_def'}; |
| $domdefaults{'auth_def'} = $domconfig{'defaults'}{'auth_def'}; |
$domdefaults{'auth_def'} = $domconfig{'defaults'}{'auth_def'}; |
|
Line 1970 sub get_domain_defaults {
|
Line 1991 sub get_domain_defaults {
|
| $domdefaults{$item} = $domconfig{'requestcourses'}{$item}; |
$domdefaults{$item} = $domconfig{'requestcourses'}{$item}; |
| } |
} |
| } |
} |
| |
if (ref($domconfig{'requestauthor'}) eq 'HASH') { |
| |
$domdefaults{'requestauthor'} = $domconfig{'requestauthor'}; |
| |
} |
| if (ref($domconfig{'inststatus'}) eq 'HASH') { |
if (ref($domconfig{'inststatus'}) eq 'HASH') { |
| foreach my $item ('inststatustypes','inststatusorder') { |
foreach my $item ('inststatustypes','inststatusorder') { |
| $domdefaults{$item} = $domconfig{'inststatus'}{$item}; |
$domdefaults{$item} = $domconfig{'inststatus'}{$item}; |
|
Line 2399 sub chatsend {
|
Line 2423 sub chatsend {
|
| |
|
| sub getversion { |
sub getversion { |
| my $fname=&clutter(shift); |
my $fname=&clutter(shift); |
| unless ($fname=~/^\/res\//) { return -1; } |
unless ($fname=~m{^(/adm/wrapper|)/res/}) { return -1; } |
| return ¤tversion(&filelocation('',$fname)); |
return ¤tversion(&filelocation('',$fname)); |
| } |
} |
| |
|
|
Line 2621 sub allowuploaded {
|
Line 2645 sub allowuploaded {
|
| &Apache::lonnet::appenv(\%httpref); |
&Apache::lonnet::appenv(\%httpref); |
| } |
} |
| |
|
| |
# |
| |
# Determine if the current user should be able to edit a particular resource, |
| |
# when viewing in course context. |
| |
# (a) When viewing resource used to determine if "Edit" item is included in |
| |
# Functions. |
| |
# (b) When displaying folder contents in course editor, used to determine if |
| |
# "Edit" link will be displayed alongside resource. |
| |
# |
| |
# input: 3 args -- filename (decluttered), course number and course domain. |
| |
# output: array of four scalars -- |
| |
# $cfile -- url for file editing if editable on current server |
| |
# $home -- homeserver of resource (i.e., for author if published, |
| |
# or course if uploaded.). |
| |
# $switchserver -- 1 if server switch will be needed. |
| |
# $uploaded -- 1 if resource is a file uploaded to a course. |
| |
# |
| |
|
| |
sub can_edit_resource { |
| |
my ($file,$cnum,$cdom) = @_; |
| |
my ($cfile,$home,$switchserver,$uploaded); |
| |
if ($file ne '') { |
| |
if (($cnum =~ /$match_courseid/) && ($cdom =~ /$match_domain/)) { |
| |
$uploaded = &is_course_upload($file,$cnum,$cdom); |
| |
if ($uploaded) { |
| |
$home=&homeserver($cnum,$cdom); |
| |
if ($file =~/\.(htm|html|css|js|txt)$/) { |
| |
$cfile = &hreflocation('',$file); |
| |
} |
| |
} |
| |
} |
| |
unless ($uploaded) { |
| |
$file=~s{^(priv/$match_domain/$match_username)}{/$1}; |
| |
$file=~s{^($match_domain/$match_username)}{/priv/$1}; |
| |
# Check that the user has permission to edit this resource |
| |
my $setpriv = 1; |
| |
my ($cfuname,$cfudom)=&constructaccess($file,$setpriv); |
| |
if (defined($cfudom)) { |
| |
$home=&homeserver($cfuname,$cfudom); |
| |
$cfile=$file; |
| |
} |
| |
} |
| |
if (($cfile ne '') && (($home ne '') && ($home ne 'no_host'))) { |
| |
my @ids=¤t_machine_ids(); |
| |
unless (grep(/^\Q$home\E$/,@ids)) { |
| |
$switchserver=1; |
| |
} |
| |
} |
| |
} |
| |
return ($cfile,$home,$switchserver,$uploaded); |
| |
} |
| |
|
| |
sub is_course_upload { |
| |
my ($file,$cnum,$cdom) = @_; |
| |
my $uploadpath = &LONCAPA::propath($cdom,$cnum); |
| |
$uploadpath =~ s{^\/}{}; |
| |
if (($file =~ m{^\Q$uploadpath\E/userfiles/docs/}) || |
| |
($file =~ m{^userfiles/\Q$cdom\E/\Q$cnum\E/docs/})) { |
| |
return 1; |
| |
} |
| |
return; |
| |
} |
| |
|
| # --------- File operations in /home/httpd/html/userfiles/$domain/1/2/3/$course |
# --------- File operations in /home/httpd/html/userfiles/$domain/1/2/3/$course |
| # input: action, courseID, current domain, intended |
# input: action, courseID, current domain, intended |
| # path to file, source of file, instruction to parse file for objects, |
# path to file, source of file, instruction to parse file for objects, |
|
Line 3530 sub userrolelog {
|
Line 3616 sub userrolelog {
|
| |
|
| sub courserolelog { |
sub courserolelog { |
| my ($trole,$username,$domain,$area,$tstart,$tend,$delflag,$selfenroll,$context)=@_; |
my ($trole,$username,$domain,$area,$tstart,$tend,$delflag,$selfenroll,$context)=@_; |
| if (($trole eq 'cc') || ($trole eq 'in') || |
if ($area =~ m-^/($match_domain)/($match_courseid)/?([^/]*)-) { |
| ($trole eq 'ep') || ($trole eq 'ad') || |
my $cdom = $1; |
| ($trole eq 'ta') || ($trole eq 'st') || |
my $cnum = $2; |
| ($trole=~/^cr/) || ($trole eq 'gr') || |
my $sec = $3; |
| ($trole eq 'co')) { |
my $namespace = 'rolelog'; |
| if ($area =~ m-^/($match_domain)/($match_courseid)/?([^/]*)-) { |
my %storehash = ( |
| my $cdom = $1; |
role => $trole, |
| my $cnum = $2; |
start => $tstart, |
| my $sec = $3; |
end => $tend, |
| my $namespace = 'rolelog'; |
selfenroll => $selfenroll, |
| my %storehash = ( |
context => $context, |
| role => $trole, |
); |
| start => $tstart, |
if ($trole eq 'gr') { |
| end => $tend, |
$namespace = 'groupslog'; |
| selfenroll => $selfenroll, |
$storehash{'group'} = $sec; |
| context => $context, |
} else { |
| ); |
$storehash{'section'} = $sec; |
| if ($trole eq 'gr') { |
} |
| $namespace = 'groupslog'; |
&write_log('course',$namespace,\%storehash,$delflag,$username, |
| $storehash{'group'} = $sec; |
$domain,$cnum,$cdom); |
| } else { |
if (($trole ne 'st') || ($sec ne '')) { |
| $storehash{'section'} = $sec; |
&devalidate_cache_new('getcourseroles',$cdom.'_'.$cnum); |
| } |
|
| &instructor_log($namespace,\%storehash,$delflag,$username,$domain,$cnum,$cdom); |
|
| if (($trole ne 'st') || ($sec ne '')) { |
|
| &devalidate_cache_new('getcourseroles',$cdom.'_'.$cnum); |
|
| } |
|
| } |
} |
| } |
} |
| return; |
return; |
| } |
} |
| |
|
| |
sub domainrolelog { |
| |
my ($trole,$username,$domain,$area,$tstart,$tend,$delflag,$context)=@_; |
| |
if ($area =~ m{^/($match_domain)/$}) { |
| |
my $cdom = $1; |
| |
my $domconfiguser = &Apache::lonnet::get_domainconfiguser($cdom); |
| |
my $namespace = 'rolelog'; |
| |
my %storehash = ( |
| |
role => $trole, |
| |
start => $tstart, |
| |
end => $tend, |
| |
context => $context, |
| |
); |
| |
&write_log('domain',$namespace,\%storehash,$delflag,$username, |
| |
$domain,$domconfiguser,$cdom); |
| |
} |
| |
return; |
| |
|
| |
} |
| |
|
| |
sub coauthorrolelog { |
| |
my ($trole,$username,$domain,$area,$tstart,$tend,$delflag,$context)=@_; |
| |
if ($area =~ m{^/($match_domain)/($match_username)$}) { |
| |
my $audom = $1; |
| |
my $auname = $2; |
| |
my $namespace = 'rolelog'; |
| |
my %storehash = ( |
| |
role => $trole, |
| |
start => $tstart, |
| |
end => $tend, |
| |
context => $context, |
| |
); |
| |
&write_log('author',$namespace,\%storehash,$delflag,$username, |
| |
$domain,$auname,$audom); |
| |
} |
| |
return; |
| |
} |
| |
|
| sub get_course_adv_roles { |
sub get_course_adv_roles { |
| my ($cid,$codes) = @_; |
my ($cid,$codes) = @_; |
| $cid=$env{'request.course.id'} unless (defined($cid)); |
$cid=$env{'request.course.id'} unless (defined($cid)); |
|
Line 3674 sub get_my_roles {
|
Line 3792 sub get_my_roles {
|
| } |
} |
| my ($rolecode,$username,$domain,$section,$area); |
my ($rolecode,$username,$domain,$section,$area); |
| if ($context eq 'userroles') { |
if ($context eq 'userroles') { |
| ($area,$rolecode) = split(/_/,$entry); |
($area,$rolecode) = ($entry =~ /^(.+)_([^_]+)$/); |
| (undef,$domain,$username,$section) = split(/\//,$area); |
(undef,$domain,$username,$section) = split(/\//,$area); |
| } else { |
} else { |
| ($role,$username,$domain,$section) = split(/\:/,$entry); |
($role,$username,$domain,$section) = split(/\:/,$entry); |
|
Line 5010 sub delete_env_groupprivs {
|
Line 5128 sub delete_env_groupprivs {
|
| sub check_adhoc_privs { |
sub check_adhoc_privs { |
| my ($cdom,$cnum,$update,$refresh,$now,$checkrole,$caller) = @_; |
my ($cdom,$cnum,$update,$refresh,$now,$checkrole,$caller) = @_; |
| my $cckey = 'user.role.'.$checkrole.'./'.$cdom.'/'.$cnum; |
my $cckey = 'user.role.'.$checkrole.'./'.$cdom.'/'.$cnum; |
| |
my $setprivs; |
| if ($env{$cckey}) { |
if ($env{$cckey}) { |
| my ($role,$where,$trolecode,$tstart,$tend,$tremark,$tstatus,$tpstart,$tpend); |
my ($role,$where,$trolecode,$tstart,$tend,$tremark,$tstatus,$tpstart,$tpend); |
| &role_status($cckey,$update,$refresh,$now,\$role,\$where,\$trolecode,\$tstatus,\$tstart,\$tend); |
&role_status($cckey,$update,$refresh,$now,\$role,\$where,\$trolecode,\$tstatus,\$tstart,\$tend); |
| unless (($tstatus eq 'is') || ($tstatus eq 'will_not')) { |
unless (($tstatus eq 'is') || ($tstatus eq 'will_not')) { |
| &set_adhoc_privileges($cdom,$cnum,$checkrole,$caller); |
&set_adhoc_privileges($cdom,$cnum,$checkrole,$caller); |
| |
$setprivs = 1; |
| } |
} |
| } else { |
} else { |
| &set_adhoc_privileges($cdom,$cnum,$checkrole,$caller); |
&set_adhoc_privileges($cdom,$cnum,$checkrole,$caller); |
| |
$setprivs = 1; |
| } |
} |
| |
return $setprivs; |
| } |
} |
| |
|
| sub set_adhoc_privileges { |
sub set_adhoc_privileges { |
|
Line 5680 sub usertools_access {
|
Line 5802 sub usertools_access {
|
| unofficial => 1, |
unofficial => 1, |
| community => 1, |
community => 1, |
| ); |
); |
| |
} elsif ($context eq 'requestauthor') { |
| |
%tools = ( |
| |
requestauthor => 1, |
| |
); |
| } else { |
} else { |
| %tools = ( |
%tools = ( |
| aboutme => 1, |
aboutme => 1, |
|
Line 5699 sub usertools_access {
|
Line 5825 sub usertools_access {
|
| if ($action ne 'reload') { |
if ($action ne 'reload') { |
| if ($context eq 'requestcourses') { |
if ($context eq 'requestcourses') { |
| return $env{'environment.canrequest.'.$tool}; |
return $env{'environment.canrequest.'.$tool}; |
| |
} elsif ($context eq 'requestauthor') { |
| |
return $env{'environment.canrequest.author'}; |
| } else { |
} else { |
| return $env{'environment.availabletools.'.$tool}; |
return $env{'environment.availabletools.'.$tool}; |
| } |
} |
| } |
} |
| } |
} |
| |
|
| my ($toolstatus,$inststatus); |
my ($toolstatus,$inststatus,$envkey); |
| |
if ($context eq 'requestauthor') { |
| |
$envkey = $context; |
| |
} else { |
| |
$envkey = $context.'.'.$tool; |
| |
} |
| |
|
| if (($udom eq $env{'user.domain'}) && ($uname eq $env{'user.name'}) && |
if (($udom eq $env{'user.domain'}) && ($uname eq $env{'user.name'}) && |
| ($action ne 'reload')) { |
($action ne 'reload')) { |
| $toolstatus = $env{'environment.'.$context.'.'.$tool}; |
$toolstatus = $env{'environment.'.$envkey}; |
| $inststatus = $env{'environment.inststatus'}; |
$inststatus = $env{'environment.inststatus'}; |
| } else { |
} else { |
| if (ref($userenvref) eq 'HASH') { |
if (ref($userenvref) eq 'HASH') { |
| $toolstatus = $userenvref->{$context.'.'.$tool}; |
$toolstatus = $userenvref->{$envkey}; |
| $inststatus = $userenvref->{'inststatus'}; |
$inststatus = $userenvref->{'inststatus'}; |
| } else { |
} else { |
| my %userenv = &userenvironment($udom,$uname,$context.'.'.$tool,'inststatus'); |
my %userenv = &userenvironment($udom,$uname,$envkey,'inststatus'); |
| $toolstatus = $userenv{$context.'.'.$tool}; |
$toolstatus = $userenv{$envkey}; |
| $inststatus = $userenv{'inststatus'}; |
$inststatus = $userenv{'inststatus'}; |
| } |
} |
| } |
} |
|
Line 6440 sub allowed {
|
Line 6573 sub allowed {
|
| return 'F'; |
return 'F'; |
| } |
} |
| |
|
| |
# ------------------------------------------- Check construction space access |
| |
|
| |
sub constructaccess { |
| |
my ($url,$setpriv)=@_; |
| |
|
| |
# We do not allow editing of previous versions of files |
| |
if ($url=~/\.(\d+)\.(\w+)$/) { return ''; } |
| |
|
| |
# Get username and domain from URL |
| |
my ($ownername,$ownerdomain,$ownerhome); |
| |
|
| |
($ownerdomain,$ownername) = |
| |
($url=~ m{^(?:\Q$perlvar{'lonDocRoot'}\E|)/priv/($match_domain)/($match_username)/}); |
| |
|
| |
# The URL does not really point to any authorspace, forget it |
| |
unless (($ownername) && ($ownerdomain)) { return ''; } |
| |
|
| |
# Now we need to see if the user has access to the authorspace of |
| |
# $ownername at $ownerdomain |
| |
|
| |
if (($ownername eq $env{'user.name'}) && ($ownerdomain eq $env{'user.domain'})) { |
| |
# Real author for this? |
| |
$ownerhome = $env{'user.home'}; |
| |
if (exists($env{'user.priv.au./'.$ownerdomain.'/./'})) { |
| |
return ($ownername,$ownerdomain,$ownerhome); |
| |
} |
| |
} else { |
| |
# Co-author for this? |
| |
if (exists($env{'user.priv.ca./'.$ownerdomain.'/'.$ownername.'./'}) || |
| |
exists($env{'user.priv.aa./'.$ownerdomain.'/'.$ownername.'./'}) ) { |
| |
$ownerhome = &homeserver($ownername,$ownerdomain); |
| |
return ($ownername,$ownerdomain,$ownerhome); |
| |
} |
| |
} |
| |
|
| |
# We don't have any access right now. If we are not possibly going to do anything about this, |
| |
# we might as well leave |
| |
unless ($setpriv) { return ''; } |
| |
|
| |
# Backdoor access? |
| |
my $allowed=&allowed('eco',$ownerdomain); |
| |
# Nope |
| |
unless ($allowed) { return ''; } |
| |
# Looks like we may have access, but could be locked by the owner of the construction space |
| |
if ($allowed eq 'U') { |
| |
my %blocked=&get('environment',['domcoord.author'], |
| |
$ownerdomain,$ownername); |
| |
# Is blocked by owner |
| |
if ($blocked{'domcoord.author'} eq 'blocked') { return ''; } |
| |
} |
| |
if (($allowed eq 'F') || ($allowed eq 'U')) { |
| |
# Grant temporary access |
| |
my $then=$env{'user.login.time'}; |
| |
my $update==$env{'user.update.time'}; |
| |
if (!$update) { $update = $then; } |
| |
my $refresh=$env{'user.refresh.time'}; |
| |
if (!$refresh) { $refresh = $update; } |
| |
my $now = time; |
| |
&check_adhoc_privs($ownerdomain,$ownername,$update,$refresh, |
| |
$now,'ca','constructaccess'); |
| |
$ownerhome = &homeserver($ownername,$ownerdomain); |
| |
return($ownername,$ownerdomain,$ownerhome); |
| |
} |
| |
# No business here |
| |
return ''; |
| |
} |
| |
|
| sub get_comm_blocks { |
sub get_comm_blocks { |
| my ($cdom,$cnum) = @_; |
my ($cdom,$cnum) = @_; |
| if ($cdom eq '' || $cnum eq '') { |
if ($cdom eq '' || $cnum eq '') { |
|
Line 7504 sub assignrole {
|
Line 7704 sub assignrole {
|
| } |
} |
| } |
} |
| } |
} |
| |
} elsif ($context eq 'requestauthor') { |
| |
if (($udom eq $env{'user.domain'}) && ($uname eq $env{'user.name'}) && |
| |
($url eq '/'.$udom.'/') && ($role eq 'au')) { |
| |
if ($env{'environment.requestauthor'} eq 'automatic') { |
| |
$refused = ''; |
| |
} else { |
| |
my %domdefaults = &get_domain_defaults($udom); |
| |
if (ref($domdefaults{'requestauthor'}) eq 'HASH') { |
| |
my $checkbystatus; |
| |
if ($env{'user.adv'}) { |
| |
my $disposition = $domdefaults{'requestauthor'}{'_LC_adv'}; |
| |
if ($disposition eq 'automatic') { |
| |
$refused = ''; |
| |
} elsif ($disposition eq '') { |
| |
$checkbystatus = 1; |
| |
} |
| |
} else { |
| |
$checkbystatus = 1; |
| |
} |
| |
if ($checkbystatus) { |
| |
if ($env{'environment.inststatus'}) { |
| |
my @inststatuses = split(/,/,$env{'environment.inststatus'}); |
| |
foreach my $type (@inststatuses) { |
| |
if (($type ne '') && |
| |
($domdefaults{'requestauthor'}{$type} eq 'automatic')) { |
| |
$refused = ''; |
| |
} |
| |
} |
| |
} elsif ($domdefaults{'requestauthor'}{'default'} eq 'automatic') { |
| |
$refused = ''; |
| |
} |
| |
} |
| |
} |
| |
} |
| |
} |
| } |
} |
| if ($refused) { |
if ($refused) { |
| &logthis('Refused assignrole: '.$udom.' '.$uname.' '.$url. |
&logthis('Refused assignrole: '.$udom.' '.$uname.' '.$url. |
|
Line 7554 sub assignrole {
|
Line 7789 sub assignrole {
|
| if ($answer eq 'ok') { |
if ($answer eq 'ok') { |
| &userrolelog($role,$uname,$udom,$url,$start,$end); |
&userrolelog($role,$uname,$udom,$url,$start,$end); |
| # for course roles, perform group memberships changes triggered by role change. |
# for course roles, perform group memberships changes triggered by role change. |
| &courserolelog($role,$uname,$udom,$url,$origstart,$origend,$delflag,$selfenroll,$context); |
|
| unless ($role =~ /^gr/) { |
unless ($role =~ /^gr/) { |
| &Apache::longroup::group_changes($udom,$uname,$url,$role,$origend, |
&Apache::longroup::group_changes($udom,$uname,$url,$role,$origend, |
| $origstart,$selfenroll,$context); |
$origstart,$selfenroll,$context); |
| } |
} |
| |
if (($role eq 'cc') || ($role eq 'in') || |
| |
($role eq 'ep') || ($role eq 'ad') || |
| |
($role eq 'ta') || ($role eq 'st') || |
| |
($role=~/^cr/) || ($role eq 'gr') || |
| |
($role eq 'co')) { |
| |
&courserolelog($role,$uname,$udom,$url,$origstart,$origend,$delflag, |
| |
$selfenroll,$context); |
| |
} elsif (($role eq 'li') || ($role eq 'dg') || ($role eq 'sc') || |
| |
($role eq 'au') || ($role eq 'dc')) { |
| |
&domainrolelog($role,$uname,$udom,$url,$origstart,$origend,$delflag, |
| |
$context); |
| |
} elsif (($role eq 'ca') || ($role eq 'aa')) { |
| |
&coauthorrolelog($role,$uname,$udom,$url,$origstart,$origend,$delflag, |
| |
$context); |
| |
} |
| if ($role eq 'cc') { |
if ($role eq 'cc') { |
| &autoupdate_coowners($url,$end,$start,$uname,$udom); |
&autoupdate_coowners($url,$end,$start,$uname,$udom); |
| } |
} |
|
Line 9915 sub symblist {
|
Line 10164 sub symblist {
|
| # --------------------------------------------------------------- Verify a symb |
# --------------------------------------------------------------- Verify a symb |
| |
|
| sub symbverify { |
sub symbverify { |
| my ($symb,$thisurl)=@_; |
my ($symb,$thisurl,$encstate)=@_; |
| my $thisfn=$thisurl; |
my $thisfn=$thisurl; |
| $thisfn=&declutter($thisfn); |
$thisfn=&declutter($thisfn); |
| # direct jump to resource in page or to a sequence - will construct own symbs |
# direct jump to resource in page or to a sequence - will construct own symbs |
|
Line 9951 sub symbverify {
|
Line 10200 sub symbverify {
|
| } |
} |
| if ( |
if ( |
| &symbclean(&declutter($bighash{'map_id_'.$mapid}).'___'.$resid.'___'.$thisfn) |
&symbclean(&declutter($bighash{'map_id_'.$mapid}).'___'.$resid.'___'.$thisfn) |
| eq $symb) { |
eq $symb) { |
| |
if (ref($encstate)) { |
| |
$$encstate = $bighash{'encrypted_'.$id}; |
| |
} |
| if (($env{'request.role.adv'}) || |
if (($env{'request.role.adv'}) || |
| ($bighash{'encrypted_'.$id} eq $env{'request.enc'}) || |
($bighash{'encrypted_'.$id} eq $env{'request.enc'}) || |
| ($thisurl eq '/adm/navmaps')) { |
($thisurl eq '/adm/navmaps')) { |
| $okay=1; |
$okay=1; |
| } |
} |
| } |
} |
| } |
} |
|
Line 11819 allowed($priv,$uri,$symb,$role) : check
|
Line 12071 allowed($priv,$uri,$symb,$role) : check
|
| |
|
| =item * |
=item * |
| |
|
| |
constructaccess($url,$setpriv) : check for access to construction space URL |
| |
|
| |
See if the owner domain and name in the URL match those in the |
| |
expected environment. If so, return three element list |
| |
($ownername,$ownerdomain,$ownerhome). |
| |
|
| |
Otherwise return the null string. |
| |
|
| |
If second argument 'setpriv' is true, it assigns the privileges, |
| |
and returns the same three element list, unless the owner has |
| |
blocked "ad hoc" Domain Coordinator access to the Author Space, |
| |
in which case the null string is returned. |
| |
|
| |
=item * |
| |
|
| definerole($rolename,$sysrole,$domrole,$courole) : define role; define a custom |
definerole($rolename,$sysrole,$domrole,$courole) : define role; define a custom |
| role rolename set privileges in format of lonTabs/roles.tab for system, domain, |
role rolename set privileges in format of lonTabs/roles.tab for system, domain, |
| and course level |
and course level |
|
Line 12152 returns the data handle
|
Line 12419 returns the data handle
|
| |
|
| =item * |
=item * |
| |
|
| symbverify($symb,$thisfn) : verifies that $symb actually exists and is |
symbverify($symb,$thisfn,$encstate) : verifies that $symb actually exists |
| a possible symb for the URL in $thisfn, and if is an encryypted |
and is a possible symb for the URL in $thisfn, and if is an encrypted |
| resource that the user accessed using /enc/ returns a 1 on success, 0 |
resource that the user accessed using /enc/ returns a 1 on success, 0 |
| on failure, user must be in a course, as it assumes the existance of |
on failure, user must be in a course, as it assumes the existence of |
| the course initial hash, and uses $env('request.course.id'} |
the course initial hash, and uses $env('request.course.id'}. The third |
| |
arg is an optional reference to a scalar. If this arg is passed in the |
| |
call to symbverify, it will be set to 1 if the symb has been set to be |
| |
encrypted; otherwise it will be null. |
| |
|
| =item * |
=item * |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to lonnet.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / lonnet / perl