|
version 1.748, 2006/06/08 20:53:34
|
version 1.764.2.1, 2006/07/21 08:40:54
|
|
Line 281 sub critical {
|
Line 281 sub critical {
|
| return $answer; |
return $answer; |
| } |
} |
| |
|
| |
# ------------------------------------------- check if return value is an error |
| |
|
| |
sub error { |
| |
my ($result) = @_; |
| |
if ($result =~ /^(con_lost|no_such_host|error: (\d+) (.*))/) { |
| |
if ($2 == 2) { return undef; } |
| |
return $1; |
| |
} |
| |
return undef; |
| |
} |
| |
|
| # ------------------------------------------- Transfer profile into environment |
# ------------------------------------------- Transfer profile into environment |
| |
|
| sub transfer_profile_to_env { |
sub transfer_profile_to_env { |
|
Line 1874 sub get_course_adv_roles {
|
Line 1885 sub get_course_adv_roles {
|
| (!$nothide{$username.':'.$domain})) { next; } |
(!$nothide{$username.':'.$domain})) { next; } |
| if ($role eq 'cr') { next; } |
if ($role eq 'cr') { next; } |
| my $key=&plaintext($role); |
my $key=&plaintext($role); |
| if ($role =~ /^cr/) { |
|
| $key=(split('/',$role))[3]; |
|
| } |
|
| if ($section) { $key.=' (Sec/Grp '.$section.')'; } |
if ($section) { $key.=' (Sec/Grp '.$section.')'; } |
| if ($returnhash{$key}) { |
if ($returnhash{$key}) { |
| $returnhash{$key}.=','.$username.':'.$domain; |
$returnhash{$key}.=','.$username.':'.$domain; |
|
Line 2922 sub del {
|
Line 2930 sub del {
|
| # -------------------------------------------------------------- dump interface |
# -------------------------------------------------------------- dump interface |
| |
|
| sub dump { |
sub dump { |
| my ($namespace,$udomain,$uname,$regexp,$range)=@_; |
my ($namespace,$udomain,$uname,$regexp,$range)=@_; |
| if (!$udomain) { $udomain=$env{'user.domain'}; } |
if (!$udomain) { $udomain=$env{'user.domain'}; } |
| if (!$uname) { $uname=$env{'user.name'}; } |
if (!$uname) { $uname=$env{'user.name'}; } |
| my $uhome=&homeserver($uname,$udomain); |
my $uhome=&homeserver($uname,$udomain); |
| if ($regexp) { |
if ($regexp) { |
| $regexp=&escape($regexp); |
$regexp=&escape($regexp); |
| } else { |
} else { |
| $regexp='.'; |
$regexp='.'; |
| } |
} |
| my $rep=reply("dump:$udomain:$uname:$namespace:$regexp:$range",$uhome); |
my $rep=&reply("dump:$udomain:$uname:$namespace:$regexp:$range",$uhome); |
| my @pairs=split(/\&/,$rep); |
my @pairs=split(/\&/,$rep); |
| my %returnhash=(); |
my %returnhash=(); |
| foreach (@pairs) { |
foreach my $item (@pairs) { |
| my ($key,$value)=split(/=/,$_,2); |
my ($key,$value)=split(/=/,$item,2); |
| $returnhash{unescape($key)}=&thaw_unescape($value); |
$key = &unescape($key); |
| } |
next if ($key =~ /^error: 2 /); |
| return %returnhash; |
$returnhash{$key}=&thaw_unescape($value); |
| |
} |
| |
return %returnhash; |
| } |
} |
| |
|
| # --------------------------------------------------------- dumpstore interface |
# --------------------------------------------------------- dumpstore interface |
|
Line 3264 sub allowed {
|
Line 3274 sub allowed {
|
| return 'F'; |
return 'F'; |
| } |
} |
| |
|
| # bre access to group if user has rgf priv for this group and course. |
# bre access to group portfolio for rgf priv in group, or mdg or vcg in course. |
| if (($space=~/^(uploaded|editupload)$/) && ($dir[0] eq 'groups') |
if (($space=~/^(uploaded|editupload)$/) && ($dir[0] eq 'groups') |
| && ($dir[2] eq 'portfolio') && ($priv eq 'bre')) { |
&& ($dir[2] eq 'portfolio') && ($priv eq 'bre')) { |
| if (exists($env{'request.course.id'})) { |
if (exists($env{'request.course.id'})) { |
|
Line 3276 sub allowed {
|
Line 3286 sub allowed {
|
| if ($env{'user.priv.'.$env{'request.role'}.'./'.$courseprivid |
if ($env{'user.priv.'.$env{'request.role'}.'./'.$courseprivid |
| .'/'.$dir[1]} =~/rgf\&([^\:]*)/) { |
.'/'.$dir[1]} =~/rgf\&([^\:]*)/) { |
| return $1; |
return $1; |
| |
} else { |
| |
if ($env{'request.course.sec'}) { |
| |
$courseprivid.='/'.$env{'request.course.sec'}; |
| |
} |
| |
if ($env{'user.priv.'.$env{'request.role'}.'./'. |
| |
$courseprivid} =~/(mdg|vcg)\&([^\:]*)/) { |
| |
return $2; |
| |
} |
| } |
} |
| } |
} |
| } |
} |
|
Line 3344 sub allowed {
|
Line 3362 sub allowed {
|
| $thisallowed.=$1; |
$thisallowed.=$1; |
| } |
} |
| |
|
| # Group: uri itself is a group |
|
| my $groupuri=$uri; |
|
| $groupuri=~s/^([^\/])/\/$1/; |
|
| if ($env{'user.priv.'.$env{'request.role'}.'.'.$groupuri} |
|
| =~/\Q$priv\E\&([^\:]*)/) { |
|
| $thisallowed.=$1; |
|
| } |
|
| |
|
| # URI is an uploaded document for this course, default permissions don't matter |
# URI is an uploaded document for this course, default permissions don't matter |
| # not allowing 'edit' access (editupload) to uploaded course docs |
# not allowing 'edit' access (editupload) to uploaded course docs |
| if (($priv eq 'bre') && ($uri=~m|^uploaded/|)) { |
if (($priv eq 'bre') && ($uri=~m|^uploaded/|)) { |
|
Line 4100 sub devalidate_getgroups_cache {
|
Line 4110 sub devalidate_getgroups_cache {
|
| |
|
| sub plaintext { |
sub plaintext { |
| my ($short,$type,$cid) = @_; |
my ($short,$type,$cid) = @_; |
| |
if ($short =~ /^cr/) { |
| |
return (split('/',$short))[-1]; |
| |
} |
| if (!defined($cid)) { |
if (!defined($cid)) { |
| $cid = $env{'request.course.id'}; |
$cid = $env{'request.course.id'}; |
| } |
} |
|
Line 4569 sub is_locked {
|
Line 4582 sub is_locked {
|
| } |
} |
| } |
} |
| |
|
| |
sub declutter_portfile { |
| |
my ($file) = @_; |
| |
&logthis("got $file"); |
| |
$file =~ s-^(/portfolio/|portfolio/)-/-; |
| |
&logthis("ret $file"); |
| |
return $file; |
| |
} |
| |
|
| # ------------------------------------------------------------- Mark as Read Only |
# ------------------------------------------------------------- Mark as Read Only |
| |
|
| sub mark_as_readonly { |
sub mark_as_readonly { |
|
Line 4577 sub mark_as_readonly {
|
Line 4598 sub mark_as_readonly {
|
| my ($tmp)=keys(%current_permissions); |
my ($tmp)=keys(%current_permissions); |
| if ($tmp=~/^error:/) { undef(%current_permissions); } |
if ($tmp=~/^error:/) { undef(%current_permissions); } |
| foreach my $file (@{$files}) { |
foreach my $file (@{$files}) { |
| |
$file = &declutter_portfile($file); |
| push(@{$current_permissions{$file}},$what); |
push(@{$current_permissions{$file}},$what); |
| } |
} |
| &put('file_permissions',\%current_permissions,$domain,$user); |
&put('file_permissions',\%current_permissions,$domain,$user); |
|
Line 4664 sub get_portfile_permissions {
|
Line 4686 sub get_portfile_permissions {
|
| |
|
| #---------------------------------------------Get portfolio file access controls |
#---------------------------------------------Get portfolio file access controls |
| |
|
| sub get_access_controls { |
sub get_access_controls { |
| my ($current_permissions,$group,$file) = @_; |
my ($current_permissions,$group,$file) = @_; |
| my @access_checks = (); |
|
| my %access; |
my %access; |
| if (defined($file)) { |
if (defined($file)) { |
| @access_checks = ($file); |
if (ref($$current_permissions{$file."\0".'accesscontrol'}) eq 'HASH') { |
| |
foreach my $control (keys(%{$$current_permissions{$file."\0".'accesscontrol'}})) { |
| |
$access{$file}{$control} = $$current_permissions{$file."\0".$control}; |
| |
} |
| |
} |
| } else { |
} else { |
| @access_checks = keys(%{$current_permissions}); |
foreach my $key (keys(%{$current_permissions})) { |
| |
if ($key =~ /\0accesscontrol$/) { |
| |
if (defined($group)) { |
| |
if ($key !~ m-^\Q$group\E/-) { |
| |
next; |
| |
} |
| |
} |
| |
my ($fullpath) = split(/\0/,$key); |
| |
if (ref($$current_permissions{$key}) eq 'HASH') { |
| |
foreach my $control (keys(%{$$current_permissions{$key}})) { |
| |
$access{$fullpath}{$control}=$$current_permissions{$fullpath."\0".$control}; |
| |
} |
| |
} |
| |
} |
| |
} |
| } |
} |
| foreach my $file_name (@access_checks) { |
return %access; |
| my $value = $$current_permissions{$file_name}; |
} |
| if (defined($group)) { |
|
| if ($file_name !~ m-^\Q$group\E/-) { |
sub modify_access_controls { |
| next; |
my ($file_name,$changes,$domain,$user)=@_; |
| |
my ($outcome,$deloutcome); |
| |
my %store_permissions; |
| |
my %new_values; |
| |
my %new_control; |
| |
my %translation; |
| |
my @deletions = (); |
| |
my $now = time; |
| |
if (exists($$changes{'activate'})) { |
| |
if (ref($$changes{'activate'}) eq 'HASH') { |
| |
my @newitems = sort(keys(%{$$changes{'activate'}})); |
| |
my $numnew = scalar(@newitems); |
| |
for (my $i=0; $i<$numnew; $i++) { |
| |
my $newkey = $newitems[$i]; |
| |
my $newid = &Apache::loncommon::get_cgi_id(); |
| |
$newkey =~ s/^(\d+)/$newid/; |
| |
$translation{$1} = $newid; |
| |
$new_values{$file_name."\0".$newkey} = |
| |
$$changes{'activate'}{$newitems[$i]}; |
| |
$new_control{$newkey} = $now; |
| } |
} |
| } |
} |
| if (ref($value) eq "ARRAY") { |
} |
| foreach my $stored_what (@{$value}) { |
my %todelete; |
| if (ref($stored_what) eq 'HASH') { |
my %changed_items; |
| $access{$file_name} = $$stored_what{'access'}; |
foreach my $action ('delete','update') { |
| |
if (exists($$changes{$action})) { |
| |
if (ref($$changes{$action}) eq 'HASH') { |
| |
foreach my $key (keys(%{$$changes{$action}})) { |
| |
my ($itemnum) = ($key =~ /^([^:]+):/); |
| |
if ($action eq 'delete') { |
| |
$todelete{$itemnum} = 1; |
| |
} else { |
| |
$changed_items{$itemnum} = $key; |
| |
} |
| } |
} |
| } |
} |
| } |
} |
| } |
} |
| return %access; |
# get lock on access controls for file. |
| |
my $lockhash = { |
| |
$file_name."\0".'locked_access_records' => $env{'user.name'}. |
| |
':'.$env{'user.domain'}, |
| |
}; |
| |
my $tries = 0; |
| |
my $gotlock = &newput('file_permissions',$lockhash,$domain,$user); |
| |
|
| |
while (($gotlock ne 'ok') && $tries <3) { |
| |
$tries ++; |
| |
sleep 1; |
| |
$gotlock = &newput('file_permissions',$lockhash,$domain,$user); |
| |
} |
| |
if ($gotlock eq 'ok') { |
| |
my %curr_permissions = &dump('file_permissions',$domain,$user,$file_name); |
| |
my ($tmp)=keys(%curr_permissions); |
| |
if ($tmp=~/^error:/) { undef(%curr_permissions); } |
| |
if (exists($curr_permissions{$file_name."\0".'accesscontrol'})) { |
| |
my $curr_controls = $curr_permissions{$file_name."\0".'accesscontrol'}; |
| |
if (ref($curr_controls) eq 'HASH') { |
| |
foreach my $control_item (keys(%{$curr_controls})) { |
| |
my ($itemnum) = ($control_item =~ /^([^:]+):/); |
| |
if (defined($todelete{$itemnum})) { |
| |
push(@deletions,$file_name."\0".$control_item); |
| |
} else { |
| |
if (defined($changed_items{$itemnum})) { |
| |
$new_control{$changed_items{$itemnum}} = $now; |
| |
push(@deletions,$file_name."\0".$control_item); |
| |
$new_values{$file_name."\0".$changed_items{$itemnum}} = $$changes{'update'}{$changed_items{$itemnum}}; |
| |
} else { |
| |
$new_control{$control_item} = $$curr_controls{$control_item}; |
| |
} |
| |
} |
| |
} |
| |
} |
| |
} |
| |
$deloutcome = &del('file_permissions',\@deletions,$domain,$user); |
| |
$new_values{$file_name."\0".'accesscontrol'} = \%new_control; |
| |
$outcome = &put('file_permissions',\%new_values,$domain,$user); |
| |
# remove lock |
| |
my @del_lock = ($file_name."\0".'locked_access_records'); |
| |
my $dellockoutcome = &del('file_permissions',\@del_lock,$domain,$user); |
| |
} else { |
| |
$outcome = "error: could not obtain lockfile\n"; |
| |
} |
| |
return ($outcome,$deloutcome,\%new_values,\%translation); |
| } |
} |
| |
|
| #------------------------------------------------------Get Marked as Read Only |
#------------------------------------------------------Get Marked as Read Only |
|
Line 4708 sub get_marked_as_readonly {
|
Line 4820 sub get_marked_as_readonly {
|
| if (ref($value) eq "ARRAY"){ |
if (ref($value) eq "ARRAY"){ |
| foreach my $stored_what (@{$value}) { |
foreach my $stored_what (@{$value}) { |
| my $cmp2=$stored_what; |
my $cmp2=$stored_what; |
| if (ref($stored_what eq 'HASH')) { |
if (ref($stored_what) eq 'ARRAY') { |
| next; |
|
| } elsif (ref($stored_what eq 'ARRAY')) { |
|
| $cmp2=join('',@{$stored_what}); |
$cmp2=join('',@{$stored_what}); |
| } |
} |
| if ($cmp1 eq $cmp2) { |
if ($cmp1 eq $cmp2) { |
|
Line 4739 sub get_marked_as_readonly_hash {
|
Line 4849 sub get_marked_as_readonly_hash {
|
| if (ref($value) eq "ARRAY"){ |
if (ref($value) eq "ARRAY"){ |
| foreach my $stored_what (@{$value}) { |
foreach my $stored_what (@{$value}) { |
| if (ref($stored_what) eq 'ARRAY') { |
if (ref($stored_what) eq 'ARRAY') { |
| if ($stored_what eq $what) { |
foreach my $lock_descriptor(@{$stored_what}) { |
| $readonly_files{$file_name} = 'locked'; |
if ($lock_descriptor eq 'graded') { |
| } elsif (!defined($what)) { |
$readonly_files{$file_name} = 'graded'; |
| $readonly_files{$file_name} = 'locked'; |
} elsif ($lock_descriptor eq 'handback') { |
| |
$readonly_files{$file_name} = 'handback'; |
| |
} else { |
| |
if (!exists($readonly_files{$file_name})) { |
| |
$readonly_files{$file_name} = 'locked'; |
| |
} |
| |
} |
| } |
} |
| } |
} |
| } |
} |
| } |
} |
| } |
} |
|
Line 4756 sub unmark_as_readonly {
|
Line 4872 sub unmark_as_readonly {
|
| # unmarks $file_name (if $file_name is defined), or all files locked by $what |
# unmarks $file_name (if $file_name is defined), or all files locked by $what |
| # for portfolio submissions, $what contains [$symb,$crsid] |
# for portfolio submissions, $what contains [$symb,$crsid] |
| my ($domain,$user,$what,$file_name,$group) = @_; |
my ($domain,$user,$what,$file_name,$group) = @_; |
| |
$file_name = &declutter_portfile($file_name); |
| my $symb_crs = $what; |
my $symb_crs = $what; |
| if (ref($what)) { $symb_crs=join('',@$what); } |
if (ref($what)) { $symb_crs=join('',@$what); } |
| my %current_permissions = &dump('file_permissions',$domain,$user,$group); |
my %current_permissions = &dump('file_permissions',$domain,$user,$group); |
|
Line 4763 sub unmark_as_readonly {
|
Line 4880 sub unmark_as_readonly {
|
| if ($tmp=~/^error:/) { undef(%current_permissions); } |
if ($tmp=~/^error:/) { undef(%current_permissions); } |
| my @readonly_files = &get_marked_as_readonly($domain,$user,$what,$group); |
my @readonly_files = &get_marked_as_readonly($domain,$user,$what,$group); |
| foreach my $file (@readonly_files) { |
foreach my $file (@readonly_files) { |
| if (defined($file_name) && ($file_name ne $file)) { next; } |
my $clean_file = &declutter_portfile($file); |
| |
if (defined($file_name) && ($file_name ne $clean_file)) { next; } |
| my $current_locks = $current_permissions{$file}; |
my $current_locks = $current_permissions{$file}; |
| my @new_locks; |
my @new_locks; |
| my @del_keys; |
my @del_keys; |
| if (ref($current_locks) eq "ARRAY"){ |
if (ref($current_locks) eq "ARRAY"){ |
| foreach my $locker (@{$current_locks}) { |
foreach my $locker (@{$current_locks}) { |
| my $compare=$locker; |
my $compare=$locker; |
| if (!ref($locker) eq 'ARRAY') { |
if (ref($locker) eq 'ARRAY') { |
| push(@new_locks,$locker); |
|
| } else { |
|
| $compare=join('',@{$locker}); |
$compare=join('',@{$locker}); |
| if ($compare ne $symb_crs) { |
if ($compare ne $symb_crs) { |
| push(@new_locks, $locker); |
push(@new_locks, $locker); |
|
Line 5039 sub devalidatecourseresdata {
|
Line 5155 sub devalidatecourseresdata {
|
| &devalidate_cache_new('courseres',$hashid); |
&devalidate_cache_new('courseres',$hashid); |
| } |
} |
| |
|
| |
|
| # --------------------------------------------------- Course Resourcedata Query |
# --------------------------------------------------- Course Resourcedata Query |
| |
|
| sub get_courseresdata { |
sub get_courseresdata { |
|
Line 5760 sub metadata_generate_part0 {
|
Line 5877 sub metadata_generate_part0 {
|
| } |
} |
| } |
} |
| |
|
| |
# ------------------------------------------------------ Devalidate title cache |
| |
|
| |
sub devalidate_title_cache { |
| |
my ($url)=@_; |
| |
if (!$env{'request.course.id'}) { return; } |
| |
my $symb=&symbread($url); |
| |
if (!$symb) { return; } |
| |
my $key=$env{'request.course.id'}."\0".$symb; |
| |
&devalidate_cache_new('title',$key); |
| |
} |
| |
|
| # ------------------------------------------------- Get the title of a resource |
# ------------------------------------------------- Get the title of a resource |
| |
|
| sub gettitle { |
sub gettitle { |
|
Line 6806 BEGIN {
|
Line 6934 BEGIN {
|
| } |
} |
| close($config); |
close($config); |
| # FIXME: dev server don't want this, production servers _do_ want this |
# FIXME: dev server don't want this, production servers _do_ want this |
| #&get_iphost(); |
&get_iphost(); |
| } |
} |
| |
|
| sub get_iphost { |
sub get_iphost { |
|
Line 7844 Args:
|
Line 7972 Args:
|
| file: (optional) the file you want access info on |
file: (optional) the file you want access info on |
| |
|
| Returns: |
Returns: |
| a hash containing |
a hash (keys are file names) of hashes containing |
| keys of 'control type' (possiblities?) |
keys are: path to file/file_name\0uniqueID:scope_end_start (see below) |
| values are XML contianing settings |
values are XML containing access control settings (see below) |
| |
|
| Internal notes: |
Internal notes: |
| |
|
| access controls are stored in file_permissions.db as array of arrays and a hash. |
access controls are stored in file_permissions.db as key=value pairs. |
| array refs -> are locks |
key -> path to file/file_name\0uniqueID:scope_end_start |
| hash refs -> all other types of controls |
where scope -> public,guest,course,group,domains or users. |
| and will contain keys |
end -> UNIX time for end of access (0 -> no end date) |
| |
start -> UNIX time for start of access |
| 'access' -> hash where keys are access controls and |
|
| values are settings (in XML) |
value -> XML description of access control |
| |
<scope type=""> (type =1 of: public,guest,course,group,domains,users"> |
| 'accesscount' -> scalar - equal to the next number to |
<start></start> |
| use as the first part of an access |
<end></end> |
| control key when defining a new |
|
| control. |
<password></password> for scope type = guest |
| |
|
| |
<domain></domain> for scope type = course or group |
| |
<number></number> |
| |
<roles id=""> |
| |
<role></role> |
| |
<access></access> |
| |
<section></section> |
| |
<group></group> |
| |
</roles> |
| |
|
| |
<dom></dom> for scope type = domains |
| |
|
| |
<users> for scope type = users |
| |
<user> |
| |
<uname></uname> |
| |
<udom></udom> |
| |
</user> |
| |
</users> |
| |
</scope> |
| |
|
| |
Access data is also aggregated for each file in an additional key=value pair: |
| |
key -> path to file/file_name\0accesscontrol |
| |
value -> reference to hash |
| |
hash contains key = value pairs |
| |
where key = uniqueID:scope_end_start |
| |
value = UNIX time record was last updated |
| |
|
| |
Used to improve speed of look-ups of access controls for each file. |
| |
|
| |
Locks on files (resulting from submission of portfolio file to a homework problem stored in array of arrays. |
| |
|
| |
parse_access_controls(): |
| |
|
| |
Parses XML of an access control record |
| |
Args |
| |
1. Text string (XML) of access comtrol record |
| |
|
| |
Returns: |
| |
1. Hash of access control settings. |
| |
|
| |
modify_access_controls(): |
| |
|
| |
Modifies access controls for a portfolio file |
| |
Args |
| |
1. file name |
| |
2. reference to hash of required changes, |
| |
3. domain |
| |
4. username |
| |
where domain,username are the domain of the portfolio owner |
| |
(either a user or a course) |
| |
|
| |
Returns: |
| |
1. result of additions or updates ('ok' or 'error', with error message). |
| |
2. result of deletions ('ok' or 'error', with error message). |
| |
3. reference to hash of any new or updated access controls. |
| |
4. reference to hash used to map incoming IDs to uniqueIDs assigned to control. |
| |
key = integer (inbound ID) |
| |
value = uniqueID |
| |
|
| =back |
=back |
| |
|
![[BACK]](/icons/back.gif){kind=icon}
Return to lonnet.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / lonnet / perl