|
version 1.33, 2013/07/19 16:17:07
|
version 1.38, 2016/09/12 16:02:16
|
|
Line 57 use Apache::lonnet;
|
Line 57 use Apache::lonnet;
|
| use Apache::loncommon; |
use Apache::loncommon; |
| use Apache::lonlocal; |
use Apache::lonlocal; |
| use LONCAPA; |
use LONCAPA; |
| |
use HTML::Entities; |
| |
|
| sub handler { |
sub handler { |
| my $r = shift; |
my $r = shift; |
|
Line 87 sub handler {
|
Line 88 sub handler {
|
| &Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},['token']); |
&Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},['token']); |
| |
|
| my @emailtypes = ('permanentemail','critnotification','notification'); |
my @emailtypes = ('permanentemail','critnotification','notification'); |
| my $uname = &unescape($env{'form.uname'}); |
my $uname = $env{'form.uname'}; |
| my $udom = $env{'form.udom'}; |
$uname =~ s/^\s+|\s+$//g; |
| |
$uname = &LONCAPA::clean_username($uname); |
| |
my $udom = &LONCAPA::clean_domain($env{'form.udom'}); |
| |
my ($domdesc,$otherinst); |
| |
if ($udom) { |
| |
$domdesc = &Apache::lonnet::domain($udom,'description'); |
| |
if ($domdesc) { |
| |
my %servers = &Apache::lonnet::internet_dom_servers($udom); |
| |
unless (exists($servers{$server})) { |
| |
$otherinst = 1; |
| |
} |
| |
} |
| |
} |
| my $token = $env{'form.token'}; |
my $token = $env{'form.token'}; |
| my $brcrum = []; |
my $brcrum = []; |
| if ($token) { |
if ($token) { |
|
Line 106 sub handler {
|
Line 119 sub handler {
|
| } |
} |
| } |
} |
| my $args = {bread_crumbs => $brcrum}; |
my $args = {bread_crumbs => $brcrum}; |
| $r->print(&Apache::loncommon::start_page('Reset password','',$args)); |
my $js; |
| $r->print('<h2>'.&mt('Reset forgotten LON-CAPA password').'</h2>'); |
unless ($token || $otherinst || ($uname && $udom)) { |
| |
my (@intdoms,@instdoms); |
| |
my $internet_names = &Apache::lonnet::get_internet_names($server); |
| |
if (ref($internet_names) eq 'ARRAY') { |
| |
@intdoms = @{$internet_names}; |
| |
} |
| |
if (@intdoms) { |
| |
my %iphost = &Apache::lonnet::get_iphost(); |
| |
foreach my $ip (keys(%iphost)) { |
| |
if (ref($iphost{$ip}) eq 'ARRAY') { |
| |
foreach my $id (@{$iphost{$ip}}) { |
| |
my $location = &Apache::lonnet::internet_dom($id); |
| |
if ($location) { |
| |
if (grep(/^\Q$location\E$/,@intdoms)) { |
| |
my $dom = &Apache::lonnet::host_domain($id); |
| |
unless (grep(/^\Q$dom\E/,@instdoms)) { |
| |
push(@instdoms,$dom); |
| |
} |
| |
} |
| |
} |
| |
} |
| |
} |
| |
} |
| |
} |
| |
my $instdomstr; |
| |
if (@instdoms > 0) { |
| |
$instdomstr = "'".join("','",@instdoms)."'"; |
| |
} |
| |
my %js_lt = &Apache::lonlocal::texthash( |
| |
thdo => 'The domain you have selected is for another institution.', |
| |
yowi => 'You will be switched to the Forgot Password utility at that institution.', |
| |
unam => 'You must enter a username.', |
| |
mail => 'You must enter an e-mail address.' |
| |
); |
| |
&js_escape(\%js_lt); |
| |
$js = <<"END"; |
| |
<script type="text/javascript"> |
| |
// <![CDATA[ |
| |
function verifyDomain(caller,form) { |
| |
var redirect = 1; |
| |
var instdoms = new Array($instdomstr); |
| |
if (instdoms.length > 0) { |
| |
for (var i=0; i<instdoms.length; i++) { |
| |
if (caller.options[caller.selectedIndex].value == instdoms[i]) { |
| |
redirect = 0; |
| |
break; |
| |
} |
| |
} |
| |
} |
| |
if (redirect == 1) { |
| |
if (confirm('$js_lt{thdo}\\n$js_lt{yowi}')) { |
| |
form.submit(); |
| |
} |
| |
} |
| |
return; |
| |
} |
| |
|
| |
function validInfo() { |
| |
if (document.forgotpw.uname.value == '') { |
| |
alert("$js_lt{'unam'}"); |
| |
return false; |
| |
} |
| |
if (document.forgotpw.useremail.value == '') { |
| |
alert("$js_lt{'mail'}"); |
| |
return false; |
| |
} |
| |
return true; |
| |
} |
| |
// ]]> |
| |
</script> |
| |
END |
| |
} |
| |
my $header = &Apache::loncommon::start_page('Reset password',$js,$args). |
| |
'<h2>'.&mt('Reset forgotten LON-CAPA password').'</h2>'; |
| my $output; |
my $output; |
| if ($token) { |
if ($token) { |
| $output = &reset_passwd($r,$token,$contact_name,$contact_email); |
$output = &reset_passwd($r,$token,$contact_name,$contact_email); |
| } elsif ($uname && $udom) { |
} elsif ($udom) { |
| my $domdesc = &Apache::lonnet::domain($udom,'description'); |
if (!$domdesc) { |
| my $authtype = &Apache::lonnet::queryauthenticate($uname,$udom); |
$output = &invalid_state('baddomain',$domdesc, |
| if ($authtype =~ /^internal/) { |
$contact_name,$contact_email); |
| my $useremail = $env{'form.useremail'}; |
} elsif ($otherinst) { |
| if ($useremail !~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) { |
($header,$output) = &homeserver_redirect($uname,$udom,$domdesc,$brcrum); |
| $output = &invalid_state('baduseremail',$domdesc, |
} elsif ($uname) { |
| $contact_name,$contact_email); |
my $authtype = &Apache::lonnet::queryauthenticate($uname,$udom); |
| } else { |
if ($authtype =~ /^internal/) { |
| my %userinfo = |
my $useremail = $env{'form.useremail'}; |
| &Apache::lonnet::get('environment',\@emailtypes, |
my ($blocked,$blocktext) = |
| $udom,$uname); |
&Apache::loncommon::blocking_status('passwd',$uname,$udom); |
| my @allemails; |
if ($blocked) { |
| foreach my $type (@emailtypes) { |
$output = '<p class="LC_warning">'.$blocktext.'</p>' |
| my $email = $userinfo{$type}; |
.&display_actions($contact_email,$domdesc); |
| my @items; |
} elsif ($useremail !~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) { |
| if ($email =~ /,/) { |
$output = &invalid_state('baduseremail',$domdesc, |
| @items = split(',',$userinfo{$type}); |
$contact_name,$contact_email); |
| } else { |
} else { |
| @items = ($email); |
my %userinfo = |
| } |
&Apache::lonnet::get('environment',\@emailtypes, |
| foreach my $item (@items) { |
$udom,$uname); |
| if ($item =~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) { |
my @allemails; |
| unless(grep(/^\Q$item\E$/,@allemails)) { |
foreach my $type (@emailtypes) { |
| push(@allemails,$item); |
my $email = $userinfo{$type}; |
| |
my @items; |
| |
if ($email =~ /,/) { |
| |
@items = split(',',$userinfo{$type}); |
| |
} else { |
| |
@items = ($email); |
| |
} |
| |
foreach my $item (@items) { |
| |
if ($item =~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) { |
| |
unless(grep(/^\Q$item\E$/,@allemails)) { |
| |
push(@allemails,$item); |
| |
} |
| } |
} |
| } |
} |
| } |
} |
| } |
if (@allemails > 0) { |
| if (@allemails > 0) { |
if (grep(/^\Q$useremail\E$/,@allemails)) { |
| if (grep(/^\Q$useremail\E$/,@allemails)) { |
$output = &send_token($uname,$udom,$useremail,$server, |
| $output = &send_token($uname,$udom,$useremail,$server, |
$domdesc,$contact_name, |
| $domdesc,$contact_name, |
$contact_email); |
| $contact_email); |
} else { |
| |
$output = &invalid_state('mismatch',$domdesc, |
| |
$contact_name, |
| |
$contact_email); |
| |
} |
| } else { |
} else { |
| $output = &invalid_state('mismatch',$domdesc, |
$output = &invalid_state('missing',$domdesc, |
| $contact_name, |
$contact_name,$contact_email); |
| $contact_email); |
|
| } |
} |
| } else { |
|
| $output = &invalid_state('missing',$domdesc, |
|
| $contact_name,$contact_email); |
|
| } |
} |
| |
} elsif ($authtype =~ /^(krb|unix|local)/) { |
| |
$output = &invalid_state('authentication',$domdesc, |
| |
$contact_name,$contact_email); |
| |
} else { |
| |
$output = &invalid_state('invalid',$domdesc, |
| |
$contact_name,$contact_email); |
| } |
} |
| } elsif ($authtype =~ /^(krb|unix|local)/) { |
|
| $output = &invalid_state('authentication',$domdesc, |
|
| $contact_name,$contact_email); |
|
| } else { |
} else { |
| $output = &invalid_state('invalid',$domdesc, |
$output = &get_uname($defdom); |
| $contact_name,$contact_email); |
|
| } |
} |
| } else { |
} else { |
| $output = &get_uname($defdom); |
$output = &get_uname($defdom); |
| } |
} |
| $r->print($output); |
$r->print($header.$output); |
| $r->print(&Apache::loncommon::end_page()); |
$r->print(&Apache::loncommon::end_page()); |
| return OK; |
return OK; |
| } |
} |
|
Line 184 sub get_uname {
|
Line 283 sub get_uname {
|
| .'<li>'.&mt('You must be able to access e-mail sent to that address.').'</li>' |
.'<li>'.&mt('You must be able to access e-mail sent to that address.').'</li>' |
| .'<li>'.&mt('Your LON-CAPA account must be of a type for which LON-CAPA can reset a password.') |
.'<li>'.&mt('Your LON-CAPA account must be of a type for which LON-CAPA can reset a password.') |
| .'</ul>'; |
.'</ul>'; |
| $msg .= '<form name="forgotpw" method="post" action="/adm/resetpw">'. |
my $mobileargs; |
| |
(undef,undef,undef,undef,undef,undef,my $clientmobile) = |
| |
&Apache::loncommon::decode_user_agent(); |
| |
if ($clientmobile) { |
| |
$mobileargs = 'autocapitalize="off" autocorrect="off" '; |
| |
} |
| |
my $onchange = 'javascript:verifyDomain(this,this.form);'; |
| |
$msg .= '<form name="forgotpw" method="post" action="/adm/resetpw" onsubmit="return validInfo();">'. |
| &Apache::lonhtmlcommon::start_pick_box(). |
&Apache::lonhtmlcommon::start_pick_box(). |
| &Apache::lonhtmlcommon::row_title($lt{'unam'}). |
&Apache::lonhtmlcommon::row_title($lt{'unam'}). |
| '<input type="text" name="uname" size="20" />'. |
'<input type="text" name="uname" size="20" '.$mobileargs.'/>'. |
| &Apache::lonhtmlcommon::row_closure(1). |
&Apache::lonhtmlcommon::row_closure(1). |
| &Apache::lonhtmlcommon::row_title($lt{'udom'}). |
&Apache::lonhtmlcommon::row_title($lt{'udom'}). |
| &Apache::loncommon::select_dom_form($defdom,'udom'). |
&Apache::loncommon::select_dom_form($defdom,'udom',undef,undef,$onchange). |
| &Apache::lonhtmlcommon::row_closure(1). |
&Apache::lonhtmlcommon::row_closure(1). |
| &Apache::lonhtmlcommon::row_title($lt{'uemail'}). |
&Apache::lonhtmlcommon::row_title($lt{'uemail'}). |
| '<input type="text" name="useremail" size="30" />'. |
'<input type="text" name="useremail" size="30" '.$mobileargs.'/>'. |
| &Apache::lonhtmlcommon::end_pick_box(). |
&Apache::lonhtmlcommon::end_pick_box(). |
| '<br /><br /><input type="submit" name="resetter" value="'.$lt{'proc'}.'" /></form>'; |
'<br /><br /><input type="submit" name="resetter" value="'.$lt{'proc'}.'" /></form>'; |
| return $msg; |
return $msg; |
|
Line 225 sub send_token {
|
Line 331 sub send_token {
|
| my $result = &send_mail($domdesc,$email,$mailmsg,$contact_name, |
my $result = &send_mail($domdesc,$email,$mailmsg,$contact_name, |
| $contact_email); |
$contact_email); |
| if ($result eq 'ok') { |
if ($result eq 'ok') { |
| $msg .= &mt("An e-mail sent to the e-mail address associated with your LON-CAPA account includes the web address for the link you should use to complete the reset process.<br /><br />The link included in the message will be valid for the next <b>two</b> hours."); |
$msg .= |
| |
&mt('An e-mail sent to the e-mail address associated with your LON-CAPA account includes the web address for the link you should use to complete the reset process.') |
| |
.'<br /><br />' |
| |
.&mt('The link included in the message will be valid for the next [_1]two[_2] hours.','<b>','</b>'); |
| } else { |
} else { |
| $msg .= |
$msg .= |
| '<p class="LC_error">' |
'<p class="LC_error">' |
|
Line 233 sub send_token {
|
Line 342 sub send_token {
|
| .' associated with your LON-CAPA account.') |
.' associated with your LON-CAPA account.') |
| .'</p>' |
.'</p>' |
| .&display_actions($contact_email,$domdesc); |
.&display_actions($contact_email,$domdesc); |
| |
|
| } |
} |
| } else { |
} else { |
| $msg .= |
$msg .= |
|
Line 285 sub invalid_state {
|
Line 393 sub invalid_state {
|
| $msg = &mt('A valid e-mail address was not located in the LON-CAPA system for the username and domain you provided.'); |
$msg = &mt('A valid e-mail address was not located in the LON-CAPA system for the username and domain you provided.'); |
| } elsif ($error eq 'authentication') { |
} elsif ($error eq 'authentication') { |
| $msg = &mt('The username you provided uses an authentication type which can not be reset directly via LON-CAPA.'); |
$msg = &mt('The username you provided uses an authentication type which can not be reset directly via LON-CAPA.'); |
| |
} elsif ($error eq 'baddomain') { |
| |
$msg = &mt('The domain you provided was not verified as a valid domain in the LON-CAPA system.'); |
| } |
} |
| $msg = '<p class="LC_warning">'.$msg.'</p>' |
$msg = '<p class="LC_warning">'.$msg.'</p>' |
| .&display_actions($contact_email,$domdesc); |
.&display_actions($contact_email,$domdesc); |
|
Line 292 sub invalid_state {
|
Line 402 sub invalid_state {
|
| return $msg; |
return $msg; |
| } |
} |
| |
|
| |
sub homeserver_redirect { |
| |
my ($uname,$udom,$domdesc,$brcrum) = @_; |
| |
my $uhome = &Apache::lonnet::homeserver(); |
| |
if ($uhome eq 'no_host') { |
| |
$uhome = &Apache::lonnet::domain($udom,'primary'); |
| |
} |
| |
my $protocol = $Apache::lonnet::protocol{$uhome}; |
| |
$protocol = 'http' if ($protocol ne 'https'); |
| |
my $url = $protocol.'://'.&Apache::lonnet::hostname($uhome).'/adm/resetpw'; |
| |
# Breadcrumbs |
| |
my $start_page = &Apache::loncommon::start_page('Switching Server',undef, |
| |
{'redirect' => [0,$url], |
| |
'bread_crumbs' => $brcrum,}); |
| |
my $output = '<p>'.&mt('This LON-CAPA server belongs to a different domain.').' '. |
| |
&mt('You are being switched to your domain ([_1]), to use the "Forgot Password" tool.',$domdesc). |
| |
'</p>'; |
| |
return ($start_page,$output); |
| |
} |
| |
|
| sub reset_passwd { |
sub reset_passwd { |
| my ($r,$token,$contact_name,$contact_email) = @_; |
my ($r,$token,$contact_name,$contact_email) = @_; |
| my $msg; |
my $msg; |
|
Line 308 sub reset_passwd {
|
Line 437 sub reset_passwd {
|
| ($data{'email'} =~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) && |
($data{'email'} =~ /^[^\@]+\@[^\@]+\.[^\@\.]+$/) && |
| ($data{'temppasswd'} =~/^\w+$/)) { |
($data{'temppasswd'} =~/^\w+$/)) { |
| my $reqtime = &Apache::lonlocal::locallocaltime($data{'time'}); |
my $reqtime = &Apache::lonlocal::locallocaltime($data{'time'}); |
| if ($now - $data{'time'} < 7200) { |
my ($blocked,$blocktext) = |
| |
&Apache::loncommon::blocking_status('passwd',$data{'username'},$data{'domain'}); |
| |
if ($blocked) { |
| |
$msg = '<p class="LC_warning">'.$blocktext.'</p>'; |
| |
return $msg; |
| |
} elsif ($now - $data{'time'} < 7200) { |
| if ($env{'form.action'} eq 'verify_and_change_pass') { |
if ($env{'form.action'} eq 'verify_and_change_pass') { |
| unless (($env{'form.uname'} eq $data{'username'}) && ($env{'form.udom'} eq $data{'domain'}) && ($env{'form.email'} eq $data{'email'})) { |
unless (($env{'form.uname'} eq $data{'username'}) && ($env{'form.udom'} eq $data{'domain'}) && ($env{'form.email'} eq $data{'email'})) { |
| $msg = &generic_failure_msg($contact_name,$contact_email); |
$msg = &generic_failure_msg($contact_name,$contact_email); |
|
Line 395 sub generic_failure_msg {
|
Line 529 sub generic_failure_msg {
|
| '<p class="LC_error">' |
'<p class="LC_error">' |
| .&mt('A problem occurred when attempting to reset the password for your account.') |
.&mt('A problem occurred when attempting to reset the password for your account.') |
| .'<br />' |
.'<br />' |
| .&mt('Please contact the [_1] - ([_2]) for assistance.', |
.&mt('Please contact the [_1] ([_2]) for assistance.', |
| $contact_name,'<a href="mailto:'.$contact_email.'">'.$contact_email.'</a>') |
$contact_name,'<a href="mailto:'.$contact_email.'">'.$contact_email.'</a>') |
| .'</p>'; |
.'</p>'; |
| } |
} |
![[BACK]](/icons/back.gif){kind=icon}
Return to resetpw.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / interface