|
version 1.1172.2.12, 2012/09/25 23:15:25
|
version 1.1172.2.13, 2012/12/13 19:32:52
|
|
Line 119 our @EXPORT = qw(%env);
|
Line 119 our @EXPORT = qw(%env);
|
| $cdom = $env{'course.'.$env{'request.course.id'}.'.domain'}; |
$cdom = $env{'course.'.$env{'request.course.id'}.'.domain'}; |
| } |
} |
| } |
} |
| $logid++; |
$logid ++; |
| my $now = time(); |
my $now = time(); |
| my $id=$now.'00000'.$$.'00000'.$logid; |
my $id=$now.'00000'.$$.'00000'.$logid; |
| my $logentry = { |
my $logentry = { |
|
Line 2637 sub allowuploaded {
|
Line 2637 sub allowuploaded {
|
| &Apache::lonnet::appenv(\%httpref); |
&Apache::lonnet::appenv(\%httpref); |
| } |
} |
| |
|
| |
# |
| |
# Determine if the current user should be able to edit a particular resource, |
| |
# when viewing in course context. |
| |
# (a) When viewing resource used to determine if "Edit" item is included in |
| |
# Functions. |
| |
# (b) When displaying folder contents in course editor, used to determine if |
| |
# "Edit" link will be displayed alongside resource. |
| |
# |
| |
# input: six args -- filename (decluttered), course number, course domain, |
| |
# url, symb (if registered) and group (if this is a group |
| |
# item -- e.g., bulletin board, group page etc.). |
| |
# output: array of five scalars -- |
| |
# $cfile -- url for file editing if editable on current server |
| |
# $home -- homeserver of resource (i.e., for author if published, |
| |
# or course if uploaded.). |
| |
# $switchserver -- 1 if server switch will be needed. |
| |
# $forceedit -- 1 if icon/link should be to go to edit mode |
| |
# $forceview -- 1 if icon/link should be to go to view mode |
| |
# |
| |
|
| |
sub can_edit_resource { |
| |
my ($file,$cnum,$cdom,$resurl,$symb,$group) = @_; |
| |
my ($cfile,$home,$switchserver,$forceedit,$forceview,$uploaded,$incourse); |
| |
# |
| |
# For aboutme pages user can only edit his/her own. |
| |
# |
| |
if ($resurl =~ m{^/?adm/($match_domain)/($match_username)/aboutme$}) { |
| |
my ($sdom,$sname) = ($1,$2); |
| |
if (($sdom eq $env{'user.domain'}) && ($sname eq $env{'user.name'})) { |
| |
$home = $env{'user.home'}; |
| |
$cfile = $resurl; |
| |
if ($env{'form.forceedit'}) { |
| |
$forceview = 1; |
| |
} else { |
| |
$forceedit = 1; |
| |
} |
| |
return ($cfile,$home,$switchserver,$forceedit,$forceview); |
| |
} else { |
| |
return; |
| |
} |
| |
} |
| |
|
| |
if ($env{'request.course.id'}) { |
| |
my $crsedit = &Apache::lonnet::allowed('mdc',$env{'request.course.id'}); |
| |
if ($group ne '') { |
| |
# if this is a group homepage or group bulletin board, check group privs |
| |
my $allowed = 0; |
| |
if ($resurl =~ m{^/?adm/$cdom/$cnum/$group/smppg$}) { |
| |
if ((&allowed('mdg',$env{'request.course.id'}. |
| |
($env{'request.course.sec'}?'/'.$env{'request.course.sec'}:''))) || |
| |
(&allowed('mgh',$env{'request.course.id'}.'/'.$group)) || $crsedit) { |
| |
$allowed = 1; |
| |
} |
| |
} elsif ($resurl =~ m{^/?adm/$cdom/$cnum/\d+/bulletinboard$}) { |
| |
if ((&allowed('mdg',$env{'request.course.id'}.($env{'request.course.sec'}?'/'.$env{'request.course.sec'}:''))) || |
| |
(&allowed('cgb',$env{'request.course.id'}.'/'.$group)) || $crsedit) { |
| |
$allowed = 1; |
| |
} |
| |
} |
| |
if ($allowed) { |
| |
$home=&homeserver($cnum,$cdom); |
| |
if ($env{'form.forceedit'}) { |
| |
$forceview = 1; |
| |
} else { |
| |
$forceedit = 1; |
| |
} |
| |
$cfile = $resurl; |
| |
} else { |
| |
return; |
| |
} |
| |
} else { |
| |
# |
| |
# No edit allowed where CC has switched to student role. |
| |
# |
| |
unless ($crsedit) { |
| |
return; |
| |
} |
| |
} |
| |
} |
| |
|
| |
if ($file ne '') { |
| |
if (($cnum =~ /$match_courseid/) && ($cdom =~ /$match_domain/)) { |
| |
if (&is_course_upload($file,$cnum,$cdom)) { |
| |
$uploaded = 1; |
| |
$incourse = 1; |
| |
if ($file =~/\.(htm|html|css|js|txt)$/) { |
| |
$cfile = &hreflocation('',$file); |
| |
if ($env{'form.forceedit'}) { |
| |
$forceview = 1; |
| |
} else { |
| |
$forceedit = 1; |
| |
} |
| |
} |
| |
} elsif ($resurl =~ m{^/public/$cdom/$cnum/syllabus}) { |
| |
$incourse = 1; |
| |
if ($env{'form.forceedit'}) { |
| |
$forceview = 1; |
| |
} else { |
| |
$forceedit = 1; |
| |
} |
| |
$cfile = $resurl; |
| |
} elsif (($resurl ne '') && (&is_on_map($resurl))) { |
| |
if ($resurl =~ m{^/adm/$match_domain/$match_username/\d+/smppg|bulletinboard$}) { |
| |
$incourse = 1; |
| |
if ($env{'form.forceedit'}) { |
| |
$forceview = 1; |
| |
} else { |
| |
$forceedit = 1; |
| |
} |
| |
$cfile = $resurl; |
| |
} elsif ($resurl eq '/res/lib/templates/simpleproblem.problem') { |
| |
$incourse = 1; |
| |
$cfile = $resurl.'/smpedit'; |
| |
} elsif ($resurl =~ m{^/adm/wrapper/ext/}) { |
| |
$incourse = 1; |
| |
if ($env{'form.forceedit'}) { |
| |
$forceview = 1; |
| |
} else { |
| |
$forceedit = 1; |
| |
} |
| |
$cfile = $resurl; |
| |
} |
| |
} elsif ($resurl eq '/res/lib/templates/simpleproblem.problem/smpedit') { |
| |
my $template = '/res/lib/templates/simpleproblem.problem'; |
| |
if (&is_on_map($template)) { |
| |
$incourse = 1; |
| |
$forceview = 1; |
| |
$cfile = $template; |
| |
} |
| |
} elsif (($resurl =~ m{^/adm/wrapper/ext/}) && ($env{'form.folderpath'} =~ /^supplemental/)) { |
| |
$incourse = 1; |
| |
if ($env{'form.forceedit'}) { |
| |
$forceview = 1; |
| |
} else { |
| |
$forceedit = 1; |
| |
} |
| |
$cfile = $resurl; |
| |
} elsif (($resurl eq '/adm/extresedit') && ($symb || $env{'form.folderpath'})) { |
| |
$incourse = 1; |
| |
$forceview = 1; |
| |
if ($symb) { |
| |
my ($map,$id,$res)=&decode_symb($symb); |
| |
$env{'request.symb'} = $symb; |
| |
$cfile = &clutter($res); |
| |
} else { |
| |
$cfile = $env{'form.suppurl'}; |
| |
$cfile =~ s{^http://}{}; |
| |
$cfile = '/adm/wrapper/ext/'.$cfile; |
| |
} |
| |
} |
| |
} |
| |
if ($uploaded || $incourse) { |
| |
$home=&homeserver($cnum,$cdom); |
| |
} else { |
| |
$file=~s{^(priv/$match_domain/$match_username)}{/$1}; |
| |
$file=~s{^($match_domain/$match_username)}{/priv/$1}; |
| |
# Check that the user has permission to edit this resource |
| |
my $setpriv = 1; |
| |
my ($cfuname,$cfudom)=&constructaccess($file,$setpriv); |
| |
if (defined($cfudom)) { |
| |
$home=&homeserver($cfuname,$cfudom); |
| |
$cfile=$file; |
| |
} |
| |
} |
| |
if (($cfile ne '') && (!$incourse || $uploaded) && |
| |
(($home ne '') && ($home ne 'no_host'))) { |
| |
my @ids=¤t_machine_ids(); |
| |
unless (grep(/^\Q$home\E$/,@ids)) { |
| |
$switchserver=1; |
| |
} |
| |
} |
| |
} |
| |
return ($cfile,$home,$switchserver,$forceedit,$forceview); |
| |
} |
| |
|
| |
sub is_course_upload { |
| |
my ($file,$cnum,$cdom) = @_; |
| |
my $uploadpath = &LONCAPA::propath($cdom,$cnum); |
| |
$uploadpath =~ s{^\/}{}; |
| |
if (($file =~ m{^\Q$uploadpath\E/userfiles/(docs|supplemental)/}) || |
| |
($file =~ m{^userfiles/\Q$cdom\E/\Q$cnum\E/(docs|supplemental)/})) { |
| |
return 1; |
| |
} |
| |
return; |
| |
} |
| |
|
| |
sub in_course { |
| |
my ($udom,$uname,$cdom,$cnum,$type,$hideprivileged) = @_; |
| |
if ($hideprivileged) { |
| |
my $skipuser; |
| |
if (&privileged($uname,$udom)) { |
| |
$skipuser = 1; |
| |
my %coursehash = &coursedescription($cdom.'_'.$cnum); |
| |
if ($coursehash{'nothideprivileged'}) { |
| |
foreach my $item (split(/\s*\,\s*/,$coursehash{'nothideprivileged'})) { |
| |
my $user; |
| |
if ($item =~ /:/) { |
| |
$user = $item; |
| |
} else { |
| |
$user = join(':',split(/[\@]/,$item)); |
| |
} |
| |
if ($user eq $uname.':'.$udom) { |
| |
undef($skipuser); |
| |
last; |
| |
} |
| |
} |
| |
} |
| |
if ($skipuser) { |
| |
return 0; |
| |
} |
| |
} |
| |
} |
| |
$type ||= 'any'; |
| |
if (!defined($cdom) || !defined($cnum)) { |
| |
my $cid = $env{'request.course.id'}; |
| |
$cdom = $env{'course.'.$cid.'.domain'}; |
| |
$cnum = $env{'course.'.$cid.'.num'}; |
| |
} |
| |
my $typesref; |
| |
if (($type eq 'any') || ($type eq 'all')) { |
| |
$typesref = ['active','previous','future']; |
| |
} elsif ($type eq 'previous' || $type eq 'future') { |
| |
$typesref = [$type]; |
| |
} |
| |
my %roles = &get_my_roles($uname,$udom,'userroles', |
| |
$typesref,undef,[$cdom]); |
| |
my ($tmp) = keys(%roles); |
| |
return 0 if ($tmp =~ /^(con_lost|error|no_such_host)/i); |
| |
my @course_roles = grep(/^\Q$cnum\E:\Q$cdom\E:/, keys(%roles)); |
| |
if (@course_roles > 0) { |
| |
return 1; |
| |
} |
| |
return 0; |
| |
} |
| |
|
| # --------- File operations in /home/httpd/html/userfiles/$domain/1/2/3/$course |
# --------- File operations in /home/httpd/html/userfiles/$domain/1/2/3/$course |
| # input: action, courseID, current domain, intended |
# input: action, courseID, current domain, intended |
| # path to file, source of file, instruction to parse file for objects, |
# path to file, source of file, instruction to parse file for objects, |
|
Line 5443 sub tmpdel {
|
Line 5678 sub tmpdel {
|
| return &reply("tmpdel:$token",$server); |
return &reply("tmpdel:$token",$server); |
| } |
} |
| |
|
| |
# ------------------------------------------------------------ get_timebased_id |
| |
|
| |
sub get_timebased_id { |
| |
my ($prefix,$keyid,$namespace,$cdom,$cnum,$idtype,$who,$locktries, |
| |
$maxtries) = @_; |
| |
my ($newid,$error,$dellock); |
| |
unless (($prefix =~ /^\w+$/) && ($keyid =~ /^\w+$/) && ($namespace ne '')) { |
| |
return ('','ok','invalid call to get suffix'); |
| |
} |
| |
|
| |
# set defaults for any optional args for which values were not supplied |
| |
if ($who eq '') { |
| |
$who = $env{'user.name'}.':'.$env{'user.domain'}; |
| |
} |
| |
if (!$locktries) { |
| |
$locktries = 3; |
| |
} |
| |
if (!$maxtries) { |
| |
$maxtries = 10; |
| |
} |
| |
|
| |
if (($cdom eq '') || ($cnum eq '')) { |
| |
if ($env{'request.course.id'}) { |
| |
$cdom = $env{'course.'.$env{'request.course.id'}.'.domain'}; |
| |
$cnum = $env{'course.'.$env{'request.course.id'}.'.num'}; |
| |
} |
| |
if (($cdom eq '') || ($cnum eq '')) { |
| |
return ('','ok','call to get suffix not in course context'); |
| |
} |
| |
} |
| |
|
| |
# construct locking item |
| |
my $lockhash = { |
| |
$prefix."\0".'locked_'.$keyid => $who, |
| |
}; |
| |
my $tries = 0; |
| |
|
| |
# attempt to get lock on nohist_$namespace file |
| |
my $gotlock = &Apache::lonnet::newput('nohist_'.$namespace,$lockhash,$cdom,$cnum); |
| |
while (($gotlock ne 'ok') && $tries <$locktries) { |
| |
$tries ++; |
| |
sleep 1; |
| |
$gotlock = &Apache::lonnet::newput('nohist_'.$namespace,$lockhash,$cdom,$cnum); |
| |
} |
| |
|
| |
# attempt to get unique identifier, based on current timestamp |
| |
if ($gotlock eq 'ok') { |
| |
my %inuse = &Apache::lonnet::dump('nohist_'.$namespace,$cdom,$cnum,$prefix); |
| |
my $id = time; |
| |
$newid = $id; |
| |
my $idtries = 0; |
| |
while (exists($inuse{$prefix."\0".$newid}) && $idtries < $maxtries) { |
| |
if ($idtype eq 'concat') { |
| |
$newid = $id.$idtries; |
| |
} else { |
| |
$newid ++; |
| |
} |
| |
$idtries ++; |
| |
} |
| |
if (!exists($inuse{$prefix."\0".$newid})) { |
| |
my %new_item = ( |
| |
$prefix."\0".$newid => $who, |
| |
); |
| |
my $putresult = &Apache::lonnet::put('nohist_'.$namespace,\%new_item, |
| |
$cdom,$cnum); |
| |
if ($putresult ne 'ok') { |
| |
undef($newid); |
| |
$error = 'error saving new item: '.$putresult; |
| |
} |
| |
} else { |
| |
$error = ('error: no unique suffix available for the new item '); |
| |
} |
| |
# remove lock |
| |
my @del_lock = ($prefix."\0".'locked_'.$keyid); |
| |
$dellock = &Apache::lonnet::del('nohist_'.$namespace,\@del_lock,$cdom,$cnum); |
| |
} else { |
| |
$error = "error: could not obtain lockfile\n"; |
| |
$dellock = 'ok'; |
| |
} |
| |
return ($newid,$dellock,$error); |
| |
} |
| |
|
| # -------------------------------------------------- portfolio access checking |
# -------------------------------------------------- portfolio access checking |
| |
|
| sub portfolio_access { |
sub portfolio_access { |
|
Line 6469 sub allowed {
|
Line 6786 sub allowed {
|
| return 'F'; |
return 'F'; |
| } |
} |
| |
|
| |
# ------------------------------------------- Check construction space access |
| |
|
| |
sub constructaccess { |
| |
my ($url,$setpriv)=@_; |
| |
|
| |
# We do not allow editing of previous versions of files |
| |
if ($url=~/\.(\d+)\.(\w+)$/) { return ''; } |
| |
|
| |
# Get username and domain from URL |
| |
my ($ownername,$ownerdomain,$ownerhome); |
| |
|
| |
($ownerdomain,$ownername) = |
| |
($url=~ m{^(?:\Q$perlvar{'lonDocRoot'}\E|)/priv/($match_domain)/($match_username)/}); |
| |
|
| |
# The URL does not really point to any authorspace, forget it |
| |
unless (($ownername) && ($ownerdomain)) { return ''; } |
| |
|
| |
# Now we need to see if the user has access to the authorspace of |
| |
# $ownername at $ownerdomain |
| |
|
| |
if (($ownername eq $env{'user.name'}) && ($ownerdomain eq $env{'user.domain'})) { |
| |
# Real author for this? |
| |
$ownerhome = $env{'user.home'}; |
| |
if (exists($env{'user.priv.au./'.$ownerdomain.'/./'})) { |
| |
return ($ownername,$ownerdomain,$ownerhome); |
| |
} |
| |
} else { |
| |
# Co-author for this? |
| |
if (exists($env{'user.priv.ca./'.$ownerdomain.'/'.$ownername.'./'}) || |
| |
exists($env{'user.priv.aa./'.$ownerdomain.'/'.$ownername.'./'}) ) { |
| |
$ownerhome = &homeserver($ownername,$ownerdomain); |
| |
return ($ownername,$ownerdomain,$ownerhome); |
| |
} |
| |
} |
| |
|
| |
# We don't have any access right now. If we are not possibly going to do anything about this, |
| |
# we might as well leave |
| |
unless ($setpriv) { return ''; } |
| |
|
| |
# Backdoor access? |
| |
my $allowed=&allowed('eco',$ownerdomain); |
| |
# Nope |
| |
unless ($allowed) { return ''; } |
| |
# Looks like we may have access, but could be locked by the owner of the construction space |
| |
if ($allowed eq 'U') { |
| |
my %blocked=&get('environment',['domcoord.author'], |
| |
$ownerdomain,$ownername); |
| |
# Is blocked by owner |
| |
if ($blocked{'domcoord.author'} eq 'blocked') { return ''; } |
| |
} |
| |
if (($allowed eq 'F') || ($allowed eq 'U')) { |
| |
# Grant temporary access |
| |
my $then=$env{'user.login.time'}; |
| |
my $update==$env{'user.update.time'}; |
| |
if (!$update) { $update = $then; } |
| |
my $refresh=$env{'user.refresh.time'}; |
| |
if (!$refresh) { $refresh = $update; } |
| |
my $now = time; |
| |
&check_adhoc_privs($ownerdomain,$ownername,$update,$refresh, |
| |
$now,'ca','constructaccess'); |
| |
$ownerhome = &homeserver($ownername,$ownerdomain); |
| |
return($ownername,$ownerdomain,$ownerhome); |
| |
} |
| |
# No business here |
| |
return ''; |
| |
} |
| |
|
| sub get_comm_blocks { |
sub get_comm_blocks { |
| my ($cdom,$cnum) = @_; |
my ($cdom,$cnum) = @_; |
| if ($cdom eq '' || $cnum eq '') { |
if ($cdom eq '' || $cnum eq '') { |
|
Line 7617 sub assignrole {
|
Line 8001 sub assignrole {
|
| # log new user role if status is ok |
# log new user role if status is ok |
| if ($answer eq 'ok') { |
if ($answer eq 'ok') { |
| &userrolelog($role,$uname,$udom,$url,$start,$end); |
&userrolelog($role,$uname,$udom,$url,$start,$end); |
| # for course roles, perform group memberships changes triggered by role change. |
|
| unless ($role =~ /^gr/) { |
|
| &Apache::longroup::group_changes($udom,$uname,$url,$role,$origend, |
|
| $origstart,$selfenroll,$context); |
|
| } |
|
| if (($role eq 'cc') || ($role eq 'in') || |
if (($role eq 'cc') || ($role eq 'in') || |
| ($role eq 'ep') || ($role eq 'ad') || |
($role eq 'ep') || ($role eq 'ad') || |
| ($role eq 'ta') || ($role eq 'st') || |
($role eq 'ta') || ($role eq 'st') || |
| ($role=~/^cr/) || ($role eq 'gr') || |
($role=~/^cr/) || ($role eq 'gr') || |
| ($role eq 'co')) { |
($role eq 'co')) { |
| |
# for course roles, perform group memberships changes triggered by role change. |
| |
unless ($role =~ /^gr/) { |
| |
&Apache::longroup::group_changes($udom,$uname,$url,$role,$origend, |
| |
$origstart,$selfenroll,$context); |
| |
} |
| &courserolelog($role,$uname,$udom,$url,$origstart,$origend,$delflag, |
&courserolelog($role,$uname,$udom,$url,$origstart,$origend,$delflag, |
| $selfenroll,$context); |
$selfenroll,$context); |
| } elsif (($role eq 'li') || ($role eq 'dg') || ($role eq 'sc') || |
} elsif (($role eq 'li') || ($role eq 'dg') || ($role eq 'sc') || |
|
Line 9865 sub gettitle {
|
Line 10249 sub gettitle {
|
| return $title; |
return $title; |
| } |
} |
| |
|
| |
sub getdocspath { |
| |
my ($symb) = @_; |
| |
my $path; |
| |
if ($symb) { |
| |
my ($mapurl,$id,$resurl) = &decode_symb($symb); |
| |
if ($resurl=~/\.(sequence|page)$/) { |
| |
$mapurl=$resurl; |
| |
} elsif ($resurl eq 'adm/navmaps') { |
| |
$mapurl=$env{'course.'.$env{'request.course.id'}.'.url'}; |
| |
} |
| |
my $mapresobj; |
| |
my $navmap = Apache::lonnavmaps::navmap->new(); |
| |
if (ref($navmap)) { |
| |
$mapresobj = $navmap->getResourceByUrl($mapurl); |
| |
} |
| |
$mapurl=~s{^.*/([^/]+)\.(\w+)$}{$1}; |
| |
my $type=$2; |
| |
if (ref($mapresobj)) { |
| |
my $pcslist = $mapresobj->map_hierarchy(); |
| |
if ($pcslist ne '') { |
| |
foreach my $pc (split(/,/,$pcslist)) { |
| |
next if ($pc <= 1); |
| |
my $res = $navmap->getByMapPc($pc); |
| |
if (ref($res)) { |
| |
my $thisurl = $res->src(); |
| |
$thisurl=~s{^.*/([^/]+)\.\w+$}{$1}; |
| |
my $thistitle = $res->title(); |
| |
$path .= '&'. |
| |
&Apache::lonhtmlcommon::entity_encode($thisurl).'&'. |
| |
&Apache::lonhtmlcommon::entity_encode($thistitle). |
| |
':'.$res->randompick(). |
| |
':'.$res->randomout(). |
| |
':'.$res->encrypted(). |
| |
':'.$res->randomorder(). |
| |
':'.$res->is_page(); |
| |
} |
| |
} |
| |
} |
| |
$path =~ s/^\&//; |
| |
my $maptitle = $mapresobj->title(); |
| |
if ($mapurl eq 'default') { |
| |
$maptitle = 'Main Course Documents'; |
| |
} |
| |
$path .= ($path ne '')? '&' : ''. |
| |
&Apache::lonhtmlcommon::entity_encode($mapurl).'&'. |
| |
&Apache::lonhtmlcommon::entity_encode($maptitle). |
| |
':'.$mapresobj->randompick(). |
| |
':'.$mapresobj->randomout(). |
| |
':'.$mapresobj->encrypted(). |
| |
':'.$mapresobj->randomorder(). |
| |
':'.$mapresobj->is_page(); |
| |
} else { |
| |
my $maptitle = &gettitle($mapurl); |
| |
my $ispage; |
| |
if ($mapurl =~ /\.page$/) { |
| |
$ispage = 1; |
| |
} |
| |
if ($mapurl eq 'default') { |
| |
$maptitle = 'Main Course Documents'; |
| |
} |
| |
$path = &Apache::lonhtmlcommon::entity_encode($mapurl).'&'. |
| |
&Apache::lonhtmlcommon::entity_encode($maptitle).':::::'.$ispage; |
| |
} |
| |
unless ($mapurl eq 'default') { |
| |
$path = 'default&'. |
| |
&Apache::lonhtmlcommon::entity_encode('Main Course Documents'). |
| |
':::::&'.$path; |
| |
} |
| |
} |
| |
return $path; |
| |
} |
| |
|
| sub get_slot { |
sub get_slot { |
| my ($which,$cnum,$cdom)=@_; |
my ($which,$cnum,$cdom)=@_; |
| if (!$cnum || !$cdom) { |
if (!$cnum || !$cdom) { |
|
Line 10012 sub symbverify {
|
Line 10468 sub symbverify {
|
| |
|
| if (tie(%bighash,'GDBM_File',$env{'request.course.fn'}.'.db', |
if (tie(%bighash,'GDBM_File',$env{'request.course.fn'}.'.db', |
| &GDBM_READER(),0640)) { |
&GDBM_READER(),0640)) { |
| |
my $noclutter; |
| if (($thisurl =~ m{^/adm/wrapper/ext/}) || ($thisurl =~ m{^ext/})) { |
if (($thisurl =~ m{^/adm/wrapper/ext/}) || ($thisurl =~ m{^ext/})) { |
| $thisurl =~ s/\?.+$//; |
$thisurl =~ s/\?.+$//; |
| |
if ($map =~ m{^uploaded/.+\.page$}) { |
| |
$thisurl =~ s{^(/adm/wrapper|)/ext/}{http://}; |
| |
$thisurl =~ s{^\Qhttp://https://\E}{https://}; |
| |
$noclutter = 1; |
| |
} |
| |
} |
| |
my $ids; |
| |
if ($noclutter) { |
| |
$ids=$bighash{'ids_'.$thisurl}; |
| |
} else { |
| |
$ids=$bighash{'ids_'.&clutter($thisurl)}; |
| } |
} |
| my $ids=$bighash{'ids_'.&clutter($thisurl)}; |
|
| unless ($ids) { |
unless ($ids) { |
| my $idkey = 'ids_'.($thisurl =~ m{^/}? '' : '/').$thisurl; |
my $idkey = 'ids_'.($thisurl =~ m{^/}? '' : '/').$thisurl; |
| $ids=$bighash{$idkey}; |
$ids=$bighash{$idkey}; |
| } |
} |
| if ($ids) { |
if ($ids) { |
| # ------------------------------------------------------------------- Has ID(s) |
# ------------------------------------------------------------------- Has ID(s) |
| |
if ($thisfn =~ m{^/adm/wrapper/ext/}) { |
| |
$symb =~ s/\?.+$//; |
| |
} |
| foreach my $id (split(/\,/,$ids)) { |
foreach my $id (split(/\,/,$ids)) { |
| my ($mapid,$resid)=split(/\./,$id); |
my ($mapid,$resid)=split(/\./,$id); |
| if ($thisfn =~ m{^/adm/wrapper/ext/}) { |
|
| $symb =~ s/\?.+$//; |
|
| } |
|
| if ( |
if ( |
| &symbclean(&declutter($bighash{'map_id_'.$mapid}).'___'.$resid.'___'.$thisfn) |
&symbclean(&declutter($bighash{'map_id_'.$mapid}).'___'.$resid.'___'.$thisfn) |
| eq $symb) { |
eq $symb) { |
| if (ref($encstate)) { |
if (ref($encstate)) { |
| $$encstate = $bighash{'encrypted_'.$id}; |
$$encstate = $bighash{'encrypted_'.$id}; |
| } |
} |
| if (($env{'request.role.adv'}) || |
if (($env{'request.role.adv'}) || |
| ($bighash{'encrypted_'.$id} eq $env{'request.enc'}) || |
($bighash{'encrypted_'.$id} eq $env{'request.enc'}) || |
| ($thisurl eq '/adm/navmaps')) { |
($thisurl eq '/adm/navmaps')) { |
| $okay=1; |
$okay=1; |
| } |
last; |
| } |
} |
| } |
} |
| |
} |
| } |
} |
| untie(%bighash); |
untie(%bighash); |
| } |
} |
|
Line 10112 sub deversion {
|
Line 10580 sub deversion {
|
| |
|
| sub symbread { |
sub symbread { |
| my ($thisfn,$donotrecurse)=@_; |
my ($thisfn,$donotrecurse)=@_; |
| my $cache_str='request.symbread.cached.'.$thisfn; |
my $cache_str; |
| if (defined($env{$cache_str})) { |
if ($thisfn ne '') { |
| if (($thisfn) || ($env{$cache_str} ne '')) { |
$cache_str='request.symbread.cached.'.$thisfn; |
| |
if ($env{$cache_str} ne '') { |
| return $env{$cache_str}; |
return $env{$cache_str}; |
| } |
} |
| } |
} else { |
| # no filename provided? try from environment |
# no filename provided? try from environment |
| unless ($thisfn) { |
|
| if ($env{'request.symb'}) { |
if ($env{'request.symb'}) { |
| return $env{$cache_str}=&symbclean($env{'request.symb'}); |
return $env{$cache_str}=&symbclean($env{'request.symb'}); |
| } |
} |
| $thisfn=$env{'request.filename'}; |
$thisfn=$env{'request.filename'}; |
| } |
} |
| if ($thisfn=~m|^/enc/|) { $thisfn=&Apache::lonenc::unencrypted($thisfn); } |
if ($thisfn=~m|^/enc/|) { $thisfn=&Apache::lonenc::unencrypted($thisfn); } |
| # is that filename actually a symb? Verify, clean, and return |
# is that filename actually a symb? Verify, clean, and return |
|
Line 10351 sub rndseed {
|
Line 10819 sub rndseed {
|
| $which =&get_rand_alg($courseid); |
$which =&get_rand_alg($courseid); |
| } |
} |
| if (defined(&getCODE())) { |
if (defined(&getCODE())) { |
| |
|
| if ($which eq '64bit5') { |
if ($which eq '64bit5') { |
| return &rndseed_CODE_64bit5($symb,$courseid,$domain,$username); |
return &rndseed_CODE_64bit5($symb,$courseid,$domain,$username); |
| } elsif ($which eq '64bit4') { |
} elsif ($which eq '64bit4') { |
|
Line 11900 allowed($priv,$uri,$symb,$role) : check
|
Line 12367 allowed($priv,$uri,$symb,$role) : check
|
| |
|
| =item * |
=item * |
| |
|
| |
constructaccess($url,$setpriv) : check for access to construction space URL |
| |
|
| |
See if the owner domain and name in the URL match those in the |
| |
expected environment. If so, return three element list |
| |
($ownername,$ownerdomain,$ownerhome). |
| |
|
| |
Otherwise return the null string. |
| |
|
| |
If second argument 'setpriv' is true, it assigns the privileges, |
| |
and returns the same three element list, unless the owner has |
| |
blocked "ad hoc" Domain Coordinator access to the Author Space, |
| |
in which case the null string is returned. |
| |
|
| |
=item * |
| |
|
| definerole($rolename,$sysrole,$domrole,$courole) : define role; define a custom |
definerole($rolename,$sysrole,$domrole,$courole) : define role; define a custom |
| role rolename set privileges in format of lonTabs/roles.tab for system, domain, |
role rolename set privileges in format of lonTabs/roles.tab for system, domain, |
| and course level |
and course level |
|
Line 11930 of role statuses (active, future or prev
|
Line 12412 of role statuses (active, future or prev
|
| to restrict the list of roles reported. If no array ref is |
to restrict the list of roles reported. If no array ref is |
| provided for types, will default to return only active roles. |
provided for types, will default to return only active roles. |
| |
|
| |
=item * |
| |
|
| |
in_course($udom,$uname,$cdom,$cnum,$type,$hideprivileged) : determine if |
| |
user: $uname:$udom has a role in the course: $cdom_$cnum. |
| |
|
| |
Additional optional arguments are: $type (if role checking is to be restricted |
| |
to certain user status types -- previous (expired roles), active (currently |
| |
available roles) or future (roles available in the future), and |
| |
$hideprivileged -- if true will not report course roles for users who |
| |
have active Domain Coordinator or Super User roles. |
| |
|
| =back |
=back |
| |
|
| =head2 User Modification |
=head2 User Modification |
|
Line 12132 data base, returning a hash that is keye
|
Line 12625 data base, returning a hash that is keye
|
| values that are the resource value. I believe that the timestamps and |
values that are the resource value. I believe that the timestamps and |
| versions are also returned. |
versions are also returned. |
| |
|
| |
|
| =back |
=back |
| |
|
| =head2 Course Modification |
=head2 Course Modification |
|
Line 12242 arg is an optional reference to a scalar
|
Line 12734 arg is an optional reference to a scalar
|
| call to symbverify, it will be set to 1 if the symb has been set to be |
call to symbverify, it will be set to 1 if the symb has been set to be |
| encrypted; otherwise it will be null. |
encrypted; otherwise it will be null. |
| |
|
| |
|
| =item * |
=item * |
| |
|
| symbclean($symb) : removes versions numbers from a symb, returns the |
symbclean($symb) : removes versions numbers from a symb, returns the |
|
Line 12294 expirespread($uname,$udom,$stype,$usymb)
|
Line 12785 expirespread($uname,$udom,$stype,$usymb)
|
| devalidate($symb) : devalidate temporary spreadsheet calculations, |
devalidate($symb) : devalidate temporary spreadsheet calculations, |
| forcing spreadsheet to reevaluate the resource scores next time. |
forcing spreadsheet to reevaluate the resource scores next time. |
| |
|
| |
=item * |
| |
|
| |
can_edit_resource($file,$cnum,$cdom,$resurl,$symb,$group) : determine if current user can edit a particular resource, |
| |
when viewing in course context. |
| |
|
| |
input: six args -- filename (decluttered), course number, course domain, |
| |
url, symb (if registered) and group (if this is a |
| |
group item -- e.g., bulletin board, group page etc.). |
| |
|
| |
output: array of five scalars -- |
| |
$cfile -- url for file editing if editable on current server |
| |
$home -- homeserver of resource (i.e., for author if published, |
| |
or course if uploaded.). |
| |
$switchserver -- 1 if server switch will be needed. |
| |
$forceedit -- 1 if icon/link should be to go to edit mode |
| |
$forceview -- 1 if icon/link should be to go to view mode |
| |
|
| |
=item * |
| |
|
| |
is_course_upload($file,$cnum,$cdom) |
| |
|
| |
Used in course context to determine if current file was uploaded to |
| |
the course (i.e., would be found in /userfiles/docs on the course's |
| |
homeserver. |
| |
|
| |
input: 3 args -- filename (decluttered), course number and course domain. |
| |
output: boolean -- 1 if file was uploaded. |
| |
|
| =back |
=back |
| |
|
| =head2 Storing/Retreiving Data |
=head2 Storing/Retreiving Data |
|
Line 12849 Internal notes:
|
Line 13368 Internal notes:
|
| |
|
| Locks on files (resulting from submission of portfolio file to a homework problem stored in array of arrays. |
Locks on files (resulting from submission of portfolio file to a homework problem stored in array of arrays. |
| |
|
| |
=item * |
| |
|
| modify_access_controls(): |
modify_access_controls(): |
| |
|
| Modifies access controls for a portfolio file |
Modifies access controls for a portfolio file |
|
Line 12866 Returns:
|
Line 13387 Returns:
|
| 3. reference to hash of any new or updated access controls. |
3. reference to hash of any new or updated access controls. |
| 4. reference to hash used to map incoming IDs to uniqueIDs assigned to control. |
4. reference to hash used to map incoming IDs to uniqueIDs assigned to control. |
| key = integer (inbound ID) |
key = integer (inbound ID) |
| value = uniqueID |
value = uniqueID |
| |
|
| |
=item * |
| |
|
| |
get_timebased_id(): |
| |
|
| |
Attempts to get a unique timestamp-based suffix for use with items added to a |
| |
course via the Course Editor (e.g., folders, composite pages, |
| |
group bulletin boards). |
| |
|
| |
Args: (first three required; six others optional) |
| |
|
| |
1. prefix (alphanumeric): of keys in hash, e.g., suppsequence, docspage, |
| |
docssequence, or name of group |
| |
|
| |
2. keyid (alphanumeric): name of temporary locking key in hash, |
| |
e.g., num, boardids |
| |
|
| |
3. namespace: name of gdbm file used to store suffixes already assigned; |
| |
file will be named nohist_namespace.db |
| |
|
| |
4. cdom: domain of course; default is current course domain from %env |
| |
|
| |
5. cnum: course number; default is current course number from %env |
| |
|
| |
6. idtype: set to concat if an additional digit is to be appended to the |
| |
unix timestamp to form the suffix, if the plain timestamp is already |
| |
in use. Default is to not do this, but simply increment the unix |
| |
timestamp by 1 until a unique key is obtained. |
| |
|
| |
7. who: holder of locking key; defaults to user:domain for user. |
| |
|
| |
8. locktries: number of attempts to obtain a lock (sleep of 1s before |
| |
retrying); default is 3. |
| |
|
| |
9. maxtries: number of attempts to obtain a unique suffix; default is 20. |
| |
|
| |
Returns: |
| |
|
| |
1. suffix obtained (numeric) |
| |
|
| |
2. result of deleting locking key (ok if deleted, or lock never obtained) |
| |
|
| |
3. error: contains (localized) error message if an error occurred. |
| |
|
| |
|
| =back |
=back |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to lonnet.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / lonnet / perl