# The LearningOnline Network # Cookie Based Access Handler # # $Id: publiccheck.pm,v 1.4 2006/06/26 20:23:33 albertel Exp $ # # Copyright Michigan State University Board of Trustees # # This file is part of the LearningOnline Network with CAPA (LON-CAPA). # # LON-CAPA is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # LON-CAPA is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with LON-CAPA; if not, write to the Free Software # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA # # /home/httpd/html/adm/gpl.txt # # http://www.lon-capa.org/ # ### package Apache::publiccheck; use strict; use Apache::Constants qw(:common :http :methods); use Apache::lonnet; use Apache::loncommon(); use Apache::lonlocal; use CGI::Cookie(); use Fcntl qw(:flock); use Apache::lonacc(); sub handler { my $r = shift; my $requrl=$r->uri; my %cookies=CGI::Cookie->parse($r->header_in('Cookie')); my $lonid=$cookies{'lonID'}; if ($lonid) { my $handle=$lonid->value; $handle=~s/\W//g; my $lonidsdir=$r->dir_config('lonIDsDir'); if ((-e "$lonidsdir/$handle.id") && ($handle ne '')) { &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle); if ($env{'user.name'} ne 'public' && $env{'user.domain'} ne 'public') { return OK; } } } if ($requrl=~m|^/public/| || $requrl=~m|^/adm/help/.*\.hlp$| || (&Apache::lonnet::metadata($requrl,'copyright') eq 'public')) { &process_public($r,$requrl); return OK; } elsif ($requrl =~ m|/+uploaded/([^/]+)/([^/]+)/portfolio(/.+)$|) { if (&process_portfolio($1,$2,$3)) { &process_public($r,$requrl); return OK; } } elsif ($requrl =~ m|/+uploaded/([^/]+)/([^/]+)/groups/([^/]+)/portfolio/(.+)$|) { if (&process_portfolio($1,$2,$3.'/'.$4,$3)) { &process_public($r,$requrl); return OK; } } return DECLINED; } sub process_public { my ($r,$requrl) = @_; &Apache::lonnet::logthis('Granting public access: '.$requrl); if ($env{'user.name'} ne 'public' && $env{'user.domain'} ne 'public') { my $cookie=&Apache::lonauth::success($r,'public','public','public'); my $lonidsdir=$r->dir_config('lonIDsDir'); &Apache::lonnet::transfer_profile_to_env($lonidsdir,$cookie); $r->header_out('Set-cookie',"lonID=$cookie; path=/"); } &Apache::lonacc::get_posted_cgi($r); $env{'request.state'} = "published"; $env{'request.publicaccess'} = 1; $env{'request.filename'} = $r->filename; return; } sub process_portfolio { my ($udom,$unum,$file_name,$group) = @_; my $current_perms = &Apache::lonnet::get_portfile_permissions($udom,$unum); my %access_controls = &Apache::lonnet::get_access_controls($current_perms,$group,$file_name); my $public_access = 0; my $now = time; foreach my $key (keys(%{$access_controls{$file_name}})) { my ($num,$scope,$end,$start) = ($key =~ /^([^:]+):([a-z]+)_(\d*)_?(\d*)$/); if ($start > $now) { next; } if ($end && $end<$now) { next; } if ($scope eq 'public') { $public_access = 1; last; } } return $public_access; } 1; __END__