Annotation of loncom/lonnet/perl/lonnet.pm, revision 1.27
1.1 albertel 1: # The LearningOnline Network
2: # TCP networking package
1.12 www 3: #
4: # Functions for use by content handlers:
5: #
6: # plaintext(short) : plain text explanation of short term
1.25 www 7: # fileembstyle(ext) : embed style in page for file extension
8: # filedescription(ext) : descriptor text for file extension
1.26 www 9: # allowed(short,url) : returns codes for allowed actions F,R,S,X,C
1.21 www 10: # definerole(rolename,sys,dom,cou) : define a custom role rolename
11: # set priviledges in format of lonTabs/roles.tab for
12: # system, domain and course level,
13: # assignrole(udom,uname,url,role,end,start) : give a role to a user for the
14: # level given by url. Optional start and end dates
15: # (leave empty string or zero for "no date")
16: # assigncustomrole (udom,uname,url,rdom,rnam,rolename,end,start) : give a
17: # custom role to a user for the level given by url.
18: # Specify name and domain of role author, and role name
19: # revokerole (udom,uname,url,role) : Revoke a role for url
20: # revokecustomrole (udom,uname,url,rdom,rnam,rolename) : Revoke a custom role
1.24 www 21: # appenv(hash) : adds hash to session environment
1.12 www 22: # store(hash) : stores hash permanently for this url
23: # restore : returns hash for this url
24: # eget(namesp,array) : returns hash with keys from array filled in from namesp
25: # get(namesp,array) : returns hash with keys from array filled in from namesp
1.27 ! www 26: # del(namesp,array) : deletes keys out of arry from namesp
1.12 www 27: # put(namesp,hash) : stores hash in namesp
1.15 www 28: # dump(namesp) : dumps the complete namespace into a hash
1.23 www 29: # ssi(url,hash) : does a complete request cycle on url to localhost, posts
30: # hash
1.17 www 31: # repcopy(filename) : replicate file
32: # dirlist(url) : gets a directory listing
1.26 www 33: # condval(index) : value of condition index based on state
1.12 www 34: #
1.1 albertel 35: # 6/1/99,6/2,6/10,6/11,6/12,6/14,6/26,6/28,6/29,6/30,
1.5 www 36: # 7/1,7/2,7/9,7/10,7/12,7/14,7/15,7/19,
1.8 www 37: # 11/8,11/16,11/18,11/22,11/23,12/22,
1.12 www 38: # 01/06,01/13,02/24,02/28,02/29,
39: # 03/01,03/02,03/06,03/07,03/13,
1.15 www 40: # 04/05,05/29,05/31,06/01,
41: # 06/05,06/26 Gerd Kortemeyer
42: # 06/26 Ben Tyszka
1.22 www 43: # 06/30,07/15,07/17,07/18,07/20,07/21,07/22,07/25 Gerd Kortemeyer
1.23 www 44: # 08/14 Ben Tyszka
1.26 www 45: # 08/22,08/28,08/31,09/01 Gerd Kortemeyer
1.1 albertel 46:
47: package Apache::lonnet;
48:
49: use strict;
50: use Apache::File;
1.8 www 51: use LWP::UserAgent();
1.15 www 52: use HTTP::Headers;
1.11 www 53: use vars
1.25 www 54: qw(%perlvar %hostname %homecache %spareid %hostdom %libserv %pr %prp %fe %fd $readit);
1.1 albertel 55: use IO::Socket;
1.8 www 56: use Apache::Constants qw(:common :http);
1.1 albertel 57:
58: # --------------------------------------------------------------------- Logging
59:
60: sub logthis {
61: my $message=shift;
62: my $execdir=$perlvar{'lonDaemons'};
63: my $now=time;
64: my $local=localtime($now);
65: my $fh=Apache::File->new(">>$execdir/logs/lonnet.log");
66: print $fh "$local ($$): $message\n";
67: return 1;
68: }
69:
70: sub logperm {
71: my $message=shift;
72: my $execdir=$perlvar{'lonDaemons'};
73: my $now=time;
74: my $local=localtime($now);
75: my $fh=Apache::File->new(">>$execdir/logs/lonnet.perm.log");
76: print $fh "$now:$message:$local\n";
77: return 1;
78: }
79:
80: # -------------------------------------------------- Non-critical communication
81: sub subreply {
82: my ($cmd,$server)=@_;
83: my $peerfile="$perlvar{'lonSockDir'}/$server";
84: my $client=IO::Socket::UNIX->new(Peer =>"$peerfile",
85: Type => SOCK_STREAM,
86: Timeout => 10)
87: or return "con_lost";
88: print $client "$cmd\n";
89: my $answer=<$client>;
1.9 www 90: if (!$answer) { $answer="con_lost"; }
1.1 albertel 91: chomp($answer);
92: return $answer;
93: }
94:
95: sub reply {
96: my ($cmd,$server)=@_;
97: my $answer=subreply($cmd,$server);
98: if ($answer eq 'con_lost') { $answer=subreply($cmd,$server); }
1.12 www 99: if (($answer=~/^error:/) || ($answer=~/^refused/) ||
100: ($answer=~/^rejected/)) {
101: &logthis("<font color=blue>WARNING:".
102: " $cmd to $server returned $answer</font>");
103: }
1.1 albertel 104: return $answer;
105: }
106:
107: # ----------------------------------------------------------- Send USR1 to lonc
108:
109: sub reconlonc {
110: my $peerfile=shift;
111: &logthis("Trying to reconnect for $peerfile");
112: my $loncfile="$perlvar{'lonDaemons'}/logs/lonc.pid";
113: if (my $fh=Apache::File->new("$loncfile")) {
114: my $loncpid=<$fh>;
115: chomp($loncpid);
116: if (kill 0 => $loncpid) {
117: &logthis("lonc at pid $loncpid responding, sending USR1");
118: kill USR1 => $loncpid;
119: sleep 1;
120: if (-e "$peerfile") { return; }
121: &logthis("$peerfile still not there, give it another try");
122: sleep 5;
123: if (-e "$peerfile") { return; }
1.12 www 124: &logthis(
125: "<font color=blue>WARNING: $peerfile still not there, giving up</font>");
1.1 albertel 126: } else {
1.12 www 127: &logthis(
128: "<font color=blue>WARNING:".
129: " lonc at pid $loncpid not responding, giving up</font>");
1.1 albertel 130: }
131: } else {
1.12 www 132: &logthis('<font color=blue>WARNING: lonc not running, giving up</font>');
1.1 albertel 133: }
134: }
135:
136: # ------------------------------------------------------ Critical communication
1.12 www 137:
1.1 albertel 138: sub critical {
139: my ($cmd,$server)=@_;
140: my $answer=reply($cmd,$server);
141: if ($answer eq 'con_lost') {
142: my $pingreply=reply('ping',$server);
143: &reconlonc("$perlvar{'lonSockDir'}/$server");
144: my $pongreply=reply('pong',$server);
145: &logthis("Ping/Pong for $server: $pingreply/$pongreply");
146: $answer=reply($cmd,$server);
147: if ($answer eq 'con_lost') {
148: my $now=time;
149: my $middlename=$cmd;
1.5 www 150: $middlename=substr($middlename,0,16);
1.1 albertel 151: $middlename=~s/\W//g;
152: my $dfilename=
153: "$perlvar{'lonSockDir'}/delayed/$now.$middlename.$server";
154: {
155: my $dfh;
156: if ($dfh=Apache::File->new(">$dfilename")) {
1.7 www 157: print $dfh "$cmd\n";
1.1 albertel 158: }
159: }
160: sleep 2;
161: my $wcmd='';
162: {
163: my $dfh;
164: if ($dfh=Apache::File->new("$dfilename")) {
165: $wcmd=<$dfh>;
166: }
167: }
168: chomp($wcmd);
1.7 www 169: if ($wcmd eq $cmd) {
1.12 www 170: &logthis("<font color=blue>WARNING: ".
171: "Connection buffer $dfilename: $cmd</font>");
1.1 albertel 172: &logperm("D:$server:$cmd");
173: return 'con_delayed';
174: } else {
1.12 www 175: &logthis("<font color=red>CRITICAL:"
176: ." Critical connection failed: $server $cmd</font>");
1.1 albertel 177: &logperm("F:$server:$cmd");
178: return 'con_failed';
179: }
180: }
181: }
182: return $answer;
183: }
184:
1.5 www 185: # ---------------------------------------------------------- Append Environment
186:
187: sub appenv {
1.6 www 188: my %newenv=@_;
189: my @oldenv;
190: {
191: my $fh;
192: unless ($fh=Apache::File->new("$ENV{'user.environment'}")) {
1.5 www 193: return 'error';
1.6 www 194: }
195: @oldenv=<$fh>;
196: }
197: for (my $i=0; $i<=$#oldenv; $i++) {
198: chomp($oldenv[$i]);
1.9 www 199: if ($oldenv[$i] ne '') {
200: my ($name,$value)=split(/=/,$oldenv[$i]);
1.24 www 201: unless (defined($newenv{$name})) {
202: $newenv{$name}=$value;
203: }
1.9 www 204: }
1.6 www 205: }
206: {
207: my $fh;
208: unless ($fh=Apache::File->new(">$ENV{'user.environment'}")) {
209: return 'error';
210: }
211: my $newname;
212: foreach $newname (keys %newenv) {
213: print $fh "$newname=$newenv{$newname}\n";
214: }
1.5 www 215: }
216: return 'ok';
217: }
1.1 albertel 218:
219: # ------------------------------ Find server with least workload from spare.tab
1.11 www 220:
1.1 albertel 221: sub spareserver {
222: my $tryserver;
223: my $spareserver='';
224: my $lowestserver=100;
225: foreach $tryserver (keys %spareid) {
226: my $answer=reply('load',$tryserver);
227: if (($answer =~ /\d/) && ($answer<$lowestserver)) {
228: $spareserver="http://$hostname{$tryserver}";
229: $lowestserver=$answer;
230: }
231: }
232: return $spareserver;
233: }
234:
235: # --------- Try to authenticate user from domain's lib servers (first this one)
1.11 www 236:
1.1 albertel 237: sub authenticate {
238: my ($uname,$upass,$udom)=@_;
1.12 www 239: $upass=escape($upass);
1.1 albertel 240: if (($perlvar{'lonRole'} eq 'library') &&
241: ($udom eq $perlvar{'lonDefDomain'})) {
1.3 www 242: my $answer=reply("encrypt:auth:$udom:$uname:$upass",$perlvar{'lonHostID'});
1.2 www 243: if ($answer =~ /authorized/) {
1.9 www 244: if ($answer eq 'authorized') {
245: &logthis("User $uname at $udom authorized by local server");
246: return $perlvar{'lonHostID'};
247: }
248: if ($answer eq 'non_authorized') {
249: &logthis("User $uname at $udom rejected by local server");
250: return 'no_host';
251: }
1.2 www 252: }
1.1 albertel 253: }
254:
255: my $tryserver;
256: foreach $tryserver (keys %libserv) {
257: if ($hostdom{$tryserver} eq $udom) {
1.10 www 258: my $answer=reply("encrypt:auth:$udom:$uname:$upass",$tryserver);
1.1 albertel 259: if ($answer =~ /authorized/) {
1.9 www 260: if ($answer eq 'authorized') {
261: &logthis("User $uname at $udom authorized by $tryserver");
262: return $tryserver;
263: }
264: if ($answer eq 'non_authorized') {
265: &logthis("User $uname at $udom rejected by $tryserver");
266: return 'no_host';
267: }
1.1 albertel 268: }
269: }
1.9 www 270: }
271: &logthis("User $uname at $udom could not be authenticated");
1.1 albertel 272: return 'no_host';
273: }
274:
275: # ---------------------- Find the homebase for a user from domain's lib servers
1.11 www 276:
1.1 albertel 277: sub homeserver {
278: my ($uname,$udom)=@_;
279:
280: my $index="$uname:$udom";
281: if ($homecache{$index}) { return "$homecache{$index}"; }
282:
283: my $tryserver;
284: foreach $tryserver (keys %libserv) {
285: if ($hostdom{$tryserver} eq $udom) {
286: my $answer=reply("home:$udom:$uname",$tryserver);
287: if ($answer eq 'found') {
288: $homecache{$index}=$tryserver;
289: return $tryserver;
290: }
291: }
292: }
293: return 'no_host';
294: }
295:
296: # ----------------------------- Subscribe to a resource, return URL if possible
1.11 www 297:
1.1 albertel 298: sub subscribe {
299: my $fname=shift;
300: my $author=$fname;
301: $author=~s/\/home\/httpd\/html\/res\/([^\/]*)\/([^\/]*).*/$1\/$2/;
302: my ($udom,$uname)=split(/\//,$author);
303: my $home=homeserver($uname,$udom);
304: if (($home eq 'no_host') || ($home eq $perlvar{'lonHostID'})) {
305: return 'not_found';
306: }
307: my $answer=reply("sub:$fname",$home);
308: return $answer;
309: }
310:
1.8 www 311: # -------------------------------------------------------------- Replicate file
312:
313: sub repcopy {
314: my $filename=shift;
1.23 www 315: $filename=~s/\/+/\//g;
1.8 www 316: my $transname="$filename.in.transfer";
1.17 www 317: if ((-e $filename) || (-e $transname)) { return OK; }
1.8 www 318: my $remoteurl=subscribe($filename);
319: if ($remoteurl eq 'con_lost') {
320: &logthis("Subscribe returned con_lost: $filename");
321: return HTTP_SERVICE_UNAVAILABLE;
322: } elsif ($remoteurl eq 'not_found') {
323: &logthis("Subscribe returned not_found: $filename");
324: return HTTP_NOT_FOUND;
1.20 www 325: } elsif ($remoteurl eq 'rejected') {
326: &logthis("Subscribe returned rejected: $filename");
1.8 www 327: return FORBIDDEN;
1.20 www 328: } elsif ($remoteurl eq 'directory') {
329: return OK;
1.8 www 330: } else {
331: my @parts=split(/\//,$filename);
332: my $path="/$parts[1]/$parts[2]/$parts[3]/$parts[4]";
333: if ($path ne "$perlvar{'lonDocRoot'}/res") {
334: &logthis("Malconfiguration for replication: $filename");
335: return HTTP_BAD_REQUEST;
336: }
337: my $count;
338: for ($count=5;$count<$#parts;$count++) {
339: $path.="/$parts[$count]";
340: if ((-e $path)!=1) {
341: mkdir($path,0777);
342: }
343: }
344: my $ua=new LWP::UserAgent;
345: my $request=new HTTP::Request('GET',"$remoteurl");
346: my $response=$ua->request($request,$transname);
347: if ($response->is_error()) {
348: unlink($transname);
349: my $message=$response->status_line;
1.12 www 350: &logthis("<font color=blue>WARNING:"
351: ." LWP get: $message: $filename</font>");
1.8 www 352: return HTTP_SERVICE_UNAVAILABLE;
353: } else {
1.16 www 354: if ($remoteurl!~/\.meta$/) {
355: my $mrequest=new HTTP::Request('GET',$remoteurl.'.meta');
356: my $mresponse=$ua->request($mrequest,$filename.'.meta');
357: if ($mresponse->is_error()) {
358: unlink($filename.'.meta');
359: &logthis(
360: "<font color=yellow>INFO: No metadata: $filename</font>");
361: }
362: }
1.8 www 363: rename($transname,$filename);
364: return OK;
365: }
366: }
367: }
368:
1.15 www 369: # --------------------------------------------------------- Server Side Include
370:
371: sub ssi {
372:
1.23 www 373: my ($fn,%form)=@_;
1.15 www 374:
375: my $ua=new LWP::UserAgent;
1.23 www 376:
377: my $request;
378:
379: if (%form) {
380: $request=new HTTP::Request('POST',"http://".$ENV{'HTTP_HOST'}.$fn);
381: $request->content(join '&', map { "$_=$form{$_}" } keys %form);
382: } else {
383: $request=new HTTP::Request('GET',"http://".$ENV{'HTTP_HOST'}.$fn);
384: }
385:
1.15 www 386: $request->header(Cookie => $ENV{'HTTP_COOKIE'});
387: my $response=$ua->request($request);
388:
389: return $response->content;
390: }
391:
1.14 www 392: # ------------------------------------------------------------------------- Log
393:
394: sub log {
395: my ($dom,$nam,$hom,$what)=@_;
396: return reply("log:$dom:$nam:$what",$hom);
397: }
398:
1.9 www 399: # ----------------------------------------------------------------------- Store
400:
401: sub store {
402: my %storehash=shift;
1.12 www 403: my $namevalue='';
404: map {
405: $namevalue.=escape($_).'='.escape($storehash{$_}).'&';
406: } keys %storehash;
407: $namevalue=~s/\&$//;
408: return reply("store:$ENV{'user.domain'}:$ENV{'user.name'}:"
409: ."$ENV{'user.class'}:$ENV{'request.filename'}:$namevalue",
410: "$ENV{'user.home'}");
1.9 www 411: }
412:
413: # --------------------------------------------------------------------- Restore
414:
415: sub restore {
1.12 www 416: my $answer=reply("restore:$ENV{'user.domain'}:$ENV{'user.name'}:"
417: ."$ENV{'user.class'}:$ENV{'request.filename'}",
418: "$ENV{'user.home'}");
419: my %returnhash=();
420: map {
421: my ($name,$value)=split(/\=/,$_);
422: $returnhash{&unescape($name)}=&unescape($value);
423: } split(/\&/,$answer);
1.13 www 424: return %returnhash;
1.9 www 425: }
1.1 albertel 426:
1.11 www 427: # -------------------------------------------------------- Get user priviledges
428:
429: sub rolesinit {
430: my ($domain,$username,$authhost)=@_;
431: my $rolesdump=reply("dump:$domain:$username:roles",$authhost);
1.12 www 432: if (($rolesdump eq 'con_lost') || ($rolesdump eq '')) { return ''; }
1.11 www 433: my %allroles=();
434: my %thesepriv=();
435: my $now=time;
1.21 www 436: my $userroles="user.login.time=$now\n";
1.11 www 437: my $thesestr;
438:
439: if ($rolesdump ne '') {
440: map {
1.21 www 441: if ($_!~/^rolesdef\&/) {
1.11 www 442: my ($area,$role)=split(/=/,$_);
1.21 www 443: $area=~s/\_\w\w$//;
1.11 www 444: my ($trole,$tend,$tstart)=split(/_/,$role);
1.21 www 445: $userroles.='user.role.'.$trole.'.'.$area.'='.
446: $tstart.'.'.$tend."\n";
1.11 www 447: if ($tend!=0) {
448: if ($tend<$now) {
449: $trole='';
450: }
451: }
452: if ($tstart!=0) {
453: if ($tstart>$now) {
454: $trole='';
455: }
456: }
457: if (($area ne '') && ($trole ne '')) {
1.12 www 458: my ($tdummy,$tdomain,$trest)=split(/\//,$area);
459: if ($trole =~ /^cr\//) {
460: my ($rdummy,$rdomain,$rauthor,$rrole)=split(/\//,$trole);
461: my $homsvr=homeserver($rauthor,$rdomain);
462: if ($hostname{$homsvr} ne '') {
463: my $roledef=
1.21 www 464: reply("get:$rdomain:$rauthor:roles:rolesdef_$rrole",
1.12 www 465: $homsvr);
466: if (($roledef ne 'con_lost') && ($roledef ne '')) {
467: my ($syspriv,$dompriv,$coursepriv)=
1.21 www 468: split(/\_/,unescape($roledef));
1.12 www 469: $allroles{'/'}.=':'.$syspriv;
470: if ($tdomain ne '') {
471: $allroles{'/'.$tdomain.'/'}.=':'.$dompriv;
472: if ($trest ne '') {
473: $allroles{$area}.=':'.$coursepriv;
474: }
475: }
476: }
1.11 www 477: }
1.12 www 478: } else {
479: $allroles{'/'}.=':'.$pr{$trole.':s'};
480: if ($tdomain ne '') {
481: $allroles{'/'.$tdomain.'/'}.=':'.$pr{$trole.':d'};
482: if ($trest ne '') {
483: $allroles{$area}.=':'.$pr{$trole.':c'};
484: }
485: }
1.11 www 486: }
1.12 www 487: }
488: }
1.11 www 489: } split(/&/,$rolesdump);
490: map {
491: %thesepriv=();
492: map {
493: if ($_ ne '') {
494: my ($priviledge,$restrictions)=split(/&/,$_);
495: if ($restrictions eq '') {
496: $thesepriv{$priviledge}='F';
497: } else {
498: if ($thesepriv{$priviledge} ne 'F') {
499: $thesepriv{$priviledge}.=$restrictions;
500: }
501: }
502: }
503: } split(/:/,$allroles{$_});
504: $thesestr='';
505: map { $thesestr.=':'.$_.'&'.$thesepriv{$_}; } keys %thesepriv;
506: $userroles.='user.priv.'.$_.'='.$thesestr."\n";
507: } keys %allroles;
508: }
509: return $userroles;
510: }
511:
1.12 www 512: # --------------------------------------------------------------- get interface
513:
514: sub get {
515: my ($namespace,@storearr)=@_;
516: my $items='';
517: map {
518: $items.=escape($_).'&';
519: } @storearr;
520: $items=~s/\&$//;
521: my $rep=reply("get:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$items",
522: $ENV{'user.home'});
1.15 www 523: my @pairs=split(/\&/,$rep);
524: my %returnhash=();
525: map {
526: my ($key,$value)=split(/=/,$_);
527: $returnhash{unespace($key)}=unescape($value);
528: } @pairs;
529: return %returnhash;
1.27 ! www 530: }
! 531:
! 532: # --------------------------------------------------------------- del interface
! 533:
! 534: sub del {
! 535: my ($namespace,@storearr)=@_;
! 536: my $items='';
! 537: map {
! 538: $items.=escape($_).'&';
! 539: } @storearr;
! 540: $items=~s/\&$//;
! 541: return reply("del:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$items",
! 542: $ENV{'user.home'});
1.15 www 543: }
544:
545: # -------------------------------------------------------------- dump interface
546:
547: sub dump {
548: my $namespace=shift;
549: my $rep=reply("dump:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace",
550: $ENV{'user.home'});
1.12 www 551: my @pairs=split(/\&/,$rep);
552: my %returnhash=();
553: map {
554: my ($key,$value)=split(/=/,$_);
555: $returnhash{unespace($key)}=unescape($value);
556: } @pairs;
557: return %returnhash;
558: }
559:
560: # --------------------------------------------------------------- put interface
561:
562: sub put {
563: my ($namespace,%storehash)=@_;
564: my $items='';
565: map {
566: $items.=escape($_).'='.escape($storehash{$_}).'&';
567: } keys %storehash;
568: $items=~s/\&$//;
569: return reply("put:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$items",
570: $ENV{'user.home'});
571: }
572:
573: # -------------------------------------------------------------- eget interface
574:
575: sub eget {
576: my ($namespace,@storearr)=@_;
577: my $items='';
578: map {
579: $items.=escape($_).'&';
580: } @storearr;
581: $items=~s/\&$//;
582: my $rep=reply("eget:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$items",
583: $ENV{'user.home'});
584: my @pairs=split(/\&/,$rep);
585: my %returnhash=();
586: map {
587: my ($key,$value)=split(/=/,$_);
588: $returnhash{unespace($key)}=unescape($value);
589: } @pairs;
590: return %returnhash;
591: }
592:
593: # ------------------------------------------------- Check for a user priviledge
594:
595: sub allowed {
596: my ($priv,$uri)=@_;
597: $uri=~s/^\/res//;
598: $uri=~s/^\///;
1.14 www 599: if ($uri=~/^adm\//) {
600: return 'F';
601: }
1.12 www 602: my $thisallowed='';
603: if ($ENV{'user.priv./'}=~/$priv\&([^\:]*)/) {
604: $thisallowed.=$1;
605: }
606: if ($ENV{'user.priv./'.(split(/\//,$uri))[0].'/'}=~/$priv\&([^\:]*)/) {
607: $thisallowed.=$1;
608: }
609: if ($ENV{'user.priv./'.$uri}=~/$priv\&([^\:]*)/) {
610: $thisallowed.=$1;
611: }
612: return $thisallowed;
613: }
614:
615: # ----------------------------------------------------------------- Define Role
616:
617: sub definerole {
618: if (allowed('mcr','/')) {
619: my ($rolename,$sysrole,$domrole,$courole)=@_;
1.21 www 620: map {
621: my ($crole,$cqual)=split(/\&/,$_);
622: if ($pr{'cr:s'}!~/$crole/) { return "refused:s:$crole"; }
623: if ($pr{'cr:s'}=~/$crole\&/) {
624: if ($pr{'cr:s'}!~/$crole\&\w*$cqual/) {
625: return "refused:s:$crole&$cqual";
626: }
627: }
628: } split('/',$sysrole);
629: map {
630: my ($crole,$cqual)=split(/\&/,$_);
631: if ($pr{'cr:d'}!~/$crole/) { return "refused:d:$crole"; }
632: if ($pr{'cr:d'}=~/$crole\&/) {
633: if ($pr{'cr:d'}!~/$crole\&\w*$cqual/) {
634: return "refused:d:$crole&$cqual";
635: }
636: }
637: } split('/',$domrole);
638: map {
639: my ($crole,$cqual)=split(/\&/,$_);
640: if ($pr{'cr:c'}!~/$crole/) { return "refused:c:$crole"; }
641: if ($pr{'cr:c'}=~/$crole\&/) {
642: if ($pr{'cr:c'}!~/$crole\&\w*$cqual/) {
643: return "refused:c:$crole&$cqual";
644: }
645: }
646: } split('/',$courole);
1.12 www 647: my $command="encrypt:rolesput:$ENV{'user.domain'}:$ENV{'user.name'}:".
648: "$ENV{'user.domain'}:$ENV{'user.name'}:".
1.21 www 649: "rolesdef_$rolename=".
650: escape($sysrole.'_'.$domrole.'_'.$courole);
1.12 www 651: return reply($command,$ENV{'user.home'});
652: } else {
653: return 'refused';
654: }
655: }
656:
657: # ------------------------------------------------------------------ Plain Text
658:
659: sub plaintext {
1.22 www 660: my $short=shift;
661: return $prp{$short};
1.12 www 662: }
663:
1.25 www 664: # ------------------------------------------------------------------ Plain Text
665:
666: sub fileembstyle {
667: my $ending=shift;
668: return $fe{$ending};
669: }
670:
671: # ------------------------------------------------------------ Description Text
672:
673: sub filedecription {
674: my $ending=shift;
675: return $fd{$ending};
676: }
677:
1.12 www 678: # ----------------------------------------------------------------- Assign Role
679:
680: sub assignrole {
1.21 www 681: my ($udom,$uname,$url,$role,$end,$start)=@_;
682: my $mrole;
683: if ($role =~ /^cr\//) {
684: unless ($url=~/\.course$/) { return 'invalid'; }
685: unless (allowed('ccr',$url)) { return 'refused'; }
686: $mrole='cr';
687: } else {
688: unless (($url=~/\.course$/) || ($url=~/\/$/)) { return 'invalid'; }
689: unless (allowed('c'+$role)) { return 'refused'; }
690: $mrole=$role;
691: }
692: my $command="encrypt:rolesput:$ENV{'user.domain'}:$ENV{'user.name'}:".
693: "$udom:$uname:$url".'_'."$mrole=$role";
694: if ($end) { $command.='_$end'; }
695: if ($start) {
696: if ($end) {
697: $command.='_$start';
698: } else {
699: $command.='_0_$start';
700: }
701: }
702: return &reply($command,&homeserver($uname,$udom));
703: }
704:
705: # ---------------------------------------------------------- Assign Custom Role
706:
707: sub assigncustomrole {
708: my ($udom,$uname,$url,$rdom,$rnam,$rolename,$end,$start)=@_;
709: return &assignrole($udom,$uname,$url,'cr/'.$rdom.'/'.$rnam.'/'.$rolename,
710: $end,$start);
711: }
712:
713: # ----------------------------------------------------------------- Revoke Role
714:
715: sub revokerole {
716: my ($udom,$uname,$url,$role)=@_;
717: my $now=time;
718: return &assignrole($udom,$uname,$url,$role,$now);
719: }
720:
721: # ---------------------------------------------------------- Revoke Custom Role
722:
723: sub revokecustomrole {
724: my ($udom,$uname,$url,$rdom,$rnam,$rolename)=@_;
725: my $now=time;
726: return &assigncustomrole($udom,$uname,$url,$rdom,$rnam,$rolename,$now);
1.17 www 727: }
728:
729: # ------------------------------------------------------------ Directory lister
730:
731: sub dirlist {
732: my $uri=shift;
1.18 www 733: $uri=~s/^\///;
734: $uri=~s/\/$//;
1.19 www 735: my ($res,$udom,$uname,@rest)=split(/\//,$uri);
736: if ($udom) {
737: if ($uname) {
738: my $listing=reply('ls:'.$perlvar{'lonDocRoot'}.'/'.$uri,
739: homeserver($uname,$udom));
740: return split(/:/,$listing);
741: } else {
742: my $tryserver;
743: my %allusers=();
744: foreach $tryserver (keys %libserv) {
745: if ($hostdom{$tryserver} eq $udom) {
746: my $listing=reply('ls:'.$perlvar{'lonDocRoot'}.'/res/'.$udom,
747: $tryserver);
748: if (($listing ne 'no_such_dir') && ($listing ne 'empty')
749: && ($listing ne 'con_lost')) {
750: map {
751: my ($entry,@stat)=split(/&/,$_);
752: $allusers{$entry}=1;
753: } split(/:/,$listing);
754: }
755: }
756: }
757: my $alluserstr='';
758: map {
759: $alluserstr.=$_.'&user:';
760: } sort keys %allusers;
761: $alluserstr=~s/:$//;
762: return split(/:/,$alluserstr);
763: }
764: } else {
765: my $tryserver;
766: my %alldom=();
767: foreach $tryserver (keys %libserv) {
768: $alldom{$hostdom{$tryserver}}=1;
769: }
770: my $alldomstr='';
771: map {
772: $alldomstr.=$perlvar{'lonDocRoot'}.'/res/'.$_.'&domain:';
773: } sort keys %alldom;
774: $alldomstr=~s/:$//;
775: return split(/:/,$alldomstr);
776: }
1.26 www 777: }
778:
779: # -------------------------------------------------------- Value of a Condition
780:
781: sub condval {
782: my $condidx=shift;
783: my $result=0;
784: if ($ENV{'request.course'}) {
785: if ($ENV{'acc.cond.'.$ENV{'request.course'}.'.'.$condidx}) {
786: my $operand='|';
787: my @stack;
788: map {
789: if ($_ eq '(') {
790: push @stack,($operand,$result)
791: } elsif ($_ eq ')') {
792: my $before=pop @stack;
793: if (pop @stack eq '&') {
794: $result=$result>$before?$before:$result;
795: } else {
796: $result=$result>$before?$result:$before;
797: }
798: } elsif (($_ eq '&') || ($_ eq '|')) {
799: $operand=$_;
800: } else {
801: my $new=
802: substr($ENV{'user.state.'.$ENV{'request.course'}},$_,1);
803: if ($operand eq '&') {
804: $result=$result>$new?$new:$result;
805: } else {
806: $result=$result>$new?$result:$new;
807: }
808: }
809: } ($ENV{'acc.cond.'.$ENV{'request.course'}.'.'.$condidx}=~
810: /(\d+|\(|\)|\&|\|)/g);
811: }
812: }
813: return $result;
1.12 www 814: }
815:
816: # -------------------------------------------------------- Escape Special Chars
817:
818: sub escape {
819: my $str=shift;
820: $str =~ s/(\W)/"%".unpack('H2',$1)/eg;
821: return $str;
822: }
823:
824: # ----------------------------------------------------- Un-Escape Special Chars
825:
826: sub unescape {
827: my $str=shift;
828: $str =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C",hex($1))/eg;
829: return $str;
830: }
1.11 www 831:
1.1 albertel 832: # ================================================================ Main Program
833:
834: sub BEGIN {
835: if ($readit ne 'done') {
836: # ------------------------------------------------------------ Read access.conf
837: {
838: my $config=Apache::File->new("/etc/httpd/conf/access.conf");
839:
840: while (my $configline=<$config>) {
841: if ($configline =~ /PerlSetVar/) {
842: my ($dummy,$varname,$varvalue)=split(/\s+/,$configline);
1.8 www 843: chomp($varvalue);
1.1 albertel 844: $perlvar{$varname}=$varvalue;
845: }
846: }
847: }
848:
849: # ------------------------------------------------------------- Read hosts file
850: {
851: my $config=Apache::File->new("$perlvar{'lonTabDir'}/hosts.tab");
852:
853: while (my $configline=<$config>) {
854: my ($id,$domain,$role,$name,$ip)=split(/:/,$configline);
855: $hostname{$id}=$name;
856: $hostdom{$id}=$domain;
857: if ($role eq 'library') { $libserv{$id}=$name; }
858: }
859: }
860:
861: # ------------------------------------------------------ Read spare server file
862: {
863: my $config=Apache::File->new("$perlvar{'lonTabDir'}/spare.tab");
864:
865: while (my $configline=<$config>) {
866: chomp($configline);
867: if (($configline) && ($configline ne $perlvar{'lonHostID'})) {
868: $spareid{$configline}=1;
869: }
870: }
871: }
1.11 www 872: # ------------------------------------------------------------ Read permissions
873: {
874: my $config=Apache::File->new("$perlvar{'lonTabDir'}/roles.tab");
875:
876: while (my $configline=<$config>) {
877: chomp($configline);
878: my ($role,$perm)=split(/ /,$configline);
879: if ($perm ne '') { $pr{$role}=$perm; }
880: }
881: }
882:
883: # -------------------------------------------- Read plain texts for permissions
884: {
885: my $config=Apache::File->new("$perlvar{'lonTabDir'}/rolesplain.tab");
886:
887: while (my $configline=<$config>) {
888: chomp($configline);
889: my ($short,$plain)=split(/:/,$configline);
890: if ($plain ne '') { $prp{$short}=$plain; }
1.25 www 891: }
892: }
893:
894: # ------------------------------------------------------------- Read file types
895: {
896: my $config=Apache::File->new("$perlvar{'lonTabDir'}/filetypes.tab");
897:
898: while (my $configline=<$config>) {
899: chomp($configline);
900: my ($ending,$emb,@descr)=split(/\s+/,$configline);
901: if ($descr[0] ne '') {
902: $fe{$ending}=$emb;
903: $fd{$ending}=join(' ',@descr);
904: }
1.11 www 905: }
906: }
907:
1.22 www 908:
1.1 albertel 909: $readit='done';
1.12 www 910: &logthis('<font color=yellow>INFO: Read configuration</font>');
1.1 albertel 911: }
912: }
913: 1;
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/back.gif){kind=icon}
Return to lonnet.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / lonnet / perl