Annotation of loncom/lonnet/perl/lonnet.pm, revision 1.62
1.1 albertel 1: # The LearningOnline Network
2: # TCP networking package
1.12 www 3: #
4: # Functions for use by content handlers:
5: #
6: # plaintext(short) : plain text explanation of short term
1.25 www 7: # fileembstyle(ext) : embed style in page for file extension
8: # filedescription(ext) : descriptor text for file extension
1.29 www 9: # allowed(short,url) : returns codes for allowed actions
10: # F: full access
11: # U,I,K: authentication modes (cxx only)
12: # '': forbidden
13: # 1: user needs to choose course
14: # 2: browse allowed
1.21 www 15: # definerole(rolename,sys,dom,cou) : define a custom role rolename
16: # set priviledges in format of lonTabs/roles.tab for
17: # system, domain and course level,
18: # assignrole(udom,uname,url,role,end,start) : give a role to a user for the
19: # level given by url. Optional start and end dates
20: # (leave empty string or zero for "no date")
21: # assigncustomrole (udom,uname,url,rdom,rnam,rolename,end,start) : give a
22: # custom role to a user for the level given by url.
23: # Specify name and domain of role author, and role name
24: # revokerole (udom,uname,url,role) : Revoke a role for url
25: # revokecustomrole (udom,uname,url,rdom,rnam,rolename) : Revoke a custom role
1.24 www 26: # appenv(hash) : adds hash to session environment
1.56 www 27: # delenv(varname) : deletes all environment entries starting with varname
1.12 www 28: # store(hash) : stores hash permanently for this url
1.47 www 29: # cstore(hash) : critical store
1.12 www 30: # restore : returns hash for this url
31: # eget(namesp,array) : returns hash with keys from array filled in from namesp
32: # get(namesp,array) : returns hash with keys from array filled in from namesp
1.38 www 33: # del(namesp,array) : deletes keys out of array from namesp
1.12 www 34: # put(namesp,hash) : stores hash in namesp
1.47 www 35: # cput(namesp,hash) : critical put
1.15 www 36: # dump(namesp) : dumps the complete namespace into a hash
1.23 www 37: # ssi(url,hash) : does a complete request cycle on url to localhost, posts
38: # hash
1.34 www 39: # coursedescription(id) : returns and caches course description for id
1.17 www 40: # repcopy(filename) : replicate file
41: # dirlist(url) : gets a directory listing
1.40 www 42: # directcondval(index) : reading condition value of single condition from
43: # state string
1.28 www 44: # condval(index) : value of condition index based on state
1.58 www 45: # EXT(name) : value of a variable
1.31 www 46: # symblist(map,hash) : Updates symbolic storage links
1.44 www 47: # symbread([filename]) : returns the data handle (filename optional)
1.31 www 48: # rndseed() : returns a random seed
1.36 albertel 49: # getfile(filename) : returns the contents of filename, or a -1 if it can't
50: # be found, replicates and subscribes to the file
51: # filelocation(dir,file) : returns a farily clean absolute reference to file
52: # from the directory dir
1.46 www 53: # hreflocation(dir,file) : same as filelocation, but for hrefs
1.47 www 54: # log(domain,user,home,msg) : write to permanent log for user
1.12 www 55: #
1.1 albertel 56: # 6/1/99,6/2,6/10,6/11,6/12,6/14,6/26,6/28,6/29,6/30,
1.5 www 57: # 7/1,7/2,7/9,7/10,7/12,7/14,7/15,7/19,
1.8 www 58: # 11/8,11/16,11/18,11/22,11/23,12/22,
1.12 www 59: # 01/06,01/13,02/24,02/28,02/29,
60: # 03/01,03/02,03/06,03/07,03/13,
1.15 www 61: # 04/05,05/29,05/31,06/01,
62: # 06/05,06/26 Gerd Kortemeyer
63: # 06/26 Ben Tyszka
1.22 www 64: # 06/30,07/15,07/17,07/18,07/20,07/21,07/22,07/25 Gerd Kortemeyer
1.23 www 65: # 08/14 Ben Tyszka
1.36 albertel 66: # 08/22,08/28,08/31,09/01,09/02,09/04,09/05,09/25,09/28,09/30 Gerd Kortemeyer
1.35 www 67: # 10/04 Gerd Kortemeyer
1.36 albertel 68: # 10/04 Guy Albertelli
1.54 www 69: # 10/06,10/09,10/10,10/11,10/14,10/20,10/23,10/25,10/26,10/27,10/28,10/29,
1.60 www 70: # 10/30,10/31,11/2,11/14 Gerd Kortemeyer
1.1 albertel 71:
72: package Apache::lonnet;
73:
74: use strict;
75: use Apache::File;
1.8 www 76: use LWP::UserAgent();
1.15 www 77: use HTTP::Headers;
1.11 www 78: use vars
1.25 www 79: qw(%perlvar %hostname %homecache %spareid %hostdom %libserv %pr %prp %fe %fd $readit);
1.1 albertel 80: use IO::Socket;
1.31 www 81: use GDBM_File;
1.8 www 82: use Apache::Constants qw(:common :http);
1.1 albertel 83:
84: # --------------------------------------------------------------------- Logging
85:
86: sub logthis {
87: my $message=shift;
88: my $execdir=$perlvar{'lonDaemons'};
89: my $now=time;
90: my $local=localtime($now);
91: my $fh=Apache::File->new(">>$execdir/logs/lonnet.log");
92: print $fh "$local ($$): $message\n";
93: return 1;
94: }
95:
96: sub logperm {
97: my $message=shift;
98: my $execdir=$perlvar{'lonDaemons'};
99: my $now=time;
100: my $local=localtime($now);
101: my $fh=Apache::File->new(">>$execdir/logs/lonnet.perm.log");
102: print $fh "$now:$message:$local\n";
103: return 1;
104: }
105:
106: # -------------------------------------------------- Non-critical communication
107: sub subreply {
108: my ($cmd,$server)=@_;
109: my $peerfile="$perlvar{'lonSockDir'}/$server";
110: my $client=IO::Socket::UNIX->new(Peer =>"$peerfile",
111: Type => SOCK_STREAM,
112: Timeout => 10)
113: or return "con_lost";
114: print $client "$cmd\n";
115: my $answer=<$client>;
1.9 www 116: if (!$answer) { $answer="con_lost"; }
1.1 albertel 117: chomp($answer);
118: return $answer;
119: }
120:
121: sub reply {
122: my ($cmd,$server)=@_;
123: my $answer=subreply($cmd,$server);
124: if ($answer eq 'con_lost') { $answer=subreply($cmd,$server); }
1.12 www 125: if (($answer=~/^error:/) || ($answer=~/^refused/) ||
126: ($answer=~/^rejected/)) {
127: &logthis("<font color=blue>WARNING:".
128: " $cmd to $server returned $answer</font>");
129: }
1.1 albertel 130: return $answer;
131: }
132:
133: # ----------------------------------------------------------- Send USR1 to lonc
134:
135: sub reconlonc {
136: my $peerfile=shift;
137: &logthis("Trying to reconnect for $peerfile");
138: my $loncfile="$perlvar{'lonDaemons'}/logs/lonc.pid";
139: if (my $fh=Apache::File->new("$loncfile")) {
140: my $loncpid=<$fh>;
141: chomp($loncpid);
142: if (kill 0 => $loncpid) {
143: &logthis("lonc at pid $loncpid responding, sending USR1");
144: kill USR1 => $loncpid;
145: sleep 1;
146: if (-e "$peerfile") { return; }
147: &logthis("$peerfile still not there, give it another try");
148: sleep 5;
149: if (-e "$peerfile") { return; }
1.12 www 150: &logthis(
151: "<font color=blue>WARNING: $peerfile still not there, giving up</font>");
1.1 albertel 152: } else {
1.12 www 153: &logthis(
154: "<font color=blue>WARNING:".
155: " lonc at pid $loncpid not responding, giving up</font>");
1.1 albertel 156: }
157: } else {
1.12 www 158: &logthis('<font color=blue>WARNING: lonc not running, giving up</font>');
1.1 albertel 159: }
160: }
161:
162: # ------------------------------------------------------ Critical communication
1.12 www 163:
1.1 albertel 164: sub critical {
165: my ($cmd,$server)=@_;
166: my $answer=reply($cmd,$server);
167: if ($answer eq 'con_lost') {
168: my $pingreply=reply('ping',$server);
169: &reconlonc("$perlvar{'lonSockDir'}/$server");
170: my $pongreply=reply('pong',$server);
171: &logthis("Ping/Pong for $server: $pingreply/$pongreply");
172: $answer=reply($cmd,$server);
173: if ($answer eq 'con_lost') {
174: my $now=time;
175: my $middlename=$cmd;
1.5 www 176: $middlename=substr($middlename,0,16);
1.1 albertel 177: $middlename=~s/\W//g;
178: my $dfilename=
179: "$perlvar{'lonSockDir'}/delayed/$now.$middlename.$server";
180: {
181: my $dfh;
182: if ($dfh=Apache::File->new(">$dfilename")) {
1.7 www 183: print $dfh "$cmd\n";
1.1 albertel 184: }
185: }
186: sleep 2;
187: my $wcmd='';
188: {
189: my $dfh;
190: if ($dfh=Apache::File->new("$dfilename")) {
191: $wcmd=<$dfh>;
192: }
193: }
194: chomp($wcmd);
1.7 www 195: if ($wcmd eq $cmd) {
1.12 www 196: &logthis("<font color=blue>WARNING: ".
197: "Connection buffer $dfilename: $cmd</font>");
1.1 albertel 198: &logperm("D:$server:$cmd");
199: return 'con_delayed';
200: } else {
1.12 www 201: &logthis("<font color=red>CRITICAL:"
202: ." Critical connection failed: $server $cmd</font>");
1.1 albertel 203: &logperm("F:$server:$cmd");
204: return 'con_failed';
205: }
206: }
207: }
208: return $answer;
209: }
210:
1.5 www 211: # ---------------------------------------------------------- Append Environment
212:
213: sub appenv {
1.6 www 214: my %newenv=@_;
1.35 www 215: map {
216: if (($newenv{$_}=~/^user\.role/) || ($newenv{$_}=~/^user\.priv/)) {
217: &logthis("<font color=blue>WARNING: ".
218: "Attempt to modify environment ".$_." to ".$newenv{$_});
219: delete($newenv{$_});
220: } else {
221: $ENV{$_}=$newenv{$_};
222: }
223: } keys %newenv;
1.6 www 224: my @oldenv;
225: {
226: my $fh;
227: unless ($fh=Apache::File->new("$ENV{'user.environment'}")) {
1.5 www 228: return 'error';
1.6 www 229: }
230: @oldenv=<$fh>;
231: }
232: for (my $i=0; $i<=$#oldenv; $i++) {
233: chomp($oldenv[$i]);
1.9 www 234: if ($oldenv[$i] ne '') {
235: my ($name,$value)=split(/=/,$oldenv[$i]);
1.24 www 236: unless (defined($newenv{$name})) {
237: $newenv{$name}=$value;
238: }
1.9 www 239: }
1.6 www 240: }
241: {
242: my $fh;
243: unless ($fh=Apache::File->new(">$ENV{'user.environment'}")) {
244: return 'error';
245: }
246: my $newname;
247: foreach $newname (keys %newenv) {
248: print $fh "$newname=$newenv{$newname}\n";
249: }
1.56 www 250: }
251: return 'ok';
252: }
253: # ----------------------------------------------------- Delete from Environment
254:
255: sub delenv {
256: my $delthis=shift;
257: my %newenv=();
258: if (($delthis=~/user\.role/) || ($delthis=~/user\.priv/)) {
259: &logthis("<font color=blue>WARNING: ".
260: "Attempt to delete from environment ".$delthis);
261: return 'error';
262: }
263: my @oldenv;
264: {
265: my $fh;
266: unless ($fh=Apache::File->new("$ENV{'user.environment'}")) {
267: return 'error';
268: }
269: @oldenv=<$fh>;
270: }
271: {
272: my $fh;
273: unless ($fh=Apache::File->new(">$ENV{'user.environment'}")) {
274: return 'error';
275: }
276: map {
277: unless ($_=~/^$delthis/) { print $fh $_; }
278: } @oldenv;
1.5 www 279: }
280: return 'ok';
281: }
1.1 albertel 282:
283: # ------------------------------ Find server with least workload from spare.tab
1.11 www 284:
1.1 albertel 285: sub spareserver {
286: my $tryserver;
287: my $spareserver='';
288: my $lowestserver=100;
289: foreach $tryserver (keys %spareid) {
290: my $answer=reply('load',$tryserver);
291: if (($answer =~ /\d/) && ($answer<$lowestserver)) {
292: $spareserver="http://$hostname{$tryserver}";
293: $lowestserver=$answer;
294: }
295: }
296: return $spareserver;
297: }
298:
299: # --------- Try to authenticate user from domain's lib servers (first this one)
1.11 www 300:
1.1 albertel 301: sub authenticate {
302: my ($uname,$upass,$udom)=@_;
1.12 www 303: $upass=escape($upass);
1.1 albertel 304: if (($perlvar{'lonRole'} eq 'library') &&
305: ($udom eq $perlvar{'lonDefDomain'})) {
1.3 www 306: my $answer=reply("encrypt:auth:$udom:$uname:$upass",$perlvar{'lonHostID'});
1.2 www 307: if ($answer =~ /authorized/) {
1.9 www 308: if ($answer eq 'authorized') {
309: &logthis("User $uname at $udom authorized by local server");
310: return $perlvar{'lonHostID'};
311: }
312: if ($answer eq 'non_authorized') {
313: &logthis("User $uname at $udom rejected by local server");
314: return 'no_host';
315: }
1.2 www 316: }
1.1 albertel 317: }
318:
319: my $tryserver;
320: foreach $tryserver (keys %libserv) {
321: if ($hostdom{$tryserver} eq $udom) {
1.10 www 322: my $answer=reply("encrypt:auth:$udom:$uname:$upass",$tryserver);
1.1 albertel 323: if ($answer =~ /authorized/) {
1.9 www 324: if ($answer eq 'authorized') {
325: &logthis("User $uname at $udom authorized by $tryserver");
326: return $tryserver;
327: }
328: if ($answer eq 'non_authorized') {
329: &logthis("User $uname at $udom rejected by $tryserver");
330: return 'no_host';
331: }
1.1 albertel 332: }
333: }
1.9 www 334: }
335: &logthis("User $uname at $udom could not be authenticated");
1.1 albertel 336: return 'no_host';
337: }
338:
339: # ---------------------- Find the homebase for a user from domain's lib servers
1.11 www 340:
1.1 albertel 341: sub homeserver {
342: my ($uname,$udom)=@_;
343:
344: my $index="$uname:$udom";
345: if ($homecache{$index}) { return "$homecache{$index}"; }
346:
347: my $tryserver;
348: foreach $tryserver (keys %libserv) {
349: if ($hostdom{$tryserver} eq $udom) {
350: my $answer=reply("home:$udom:$uname",$tryserver);
351: if ($answer eq 'found') {
352: $homecache{$index}=$tryserver;
353: return $tryserver;
354: }
355: }
356: }
357: return 'no_host';
358: }
359:
360: # ----------------------------- Subscribe to a resource, return URL if possible
1.11 www 361:
1.1 albertel 362: sub subscribe {
363: my $fname=shift;
364: my $author=$fname;
365: $author=~s/\/home\/httpd\/html\/res\/([^\/]*)\/([^\/]*).*/$1\/$2/;
366: my ($udom,$uname)=split(/\//,$author);
367: my $home=homeserver($uname,$udom);
368: if (($home eq 'no_host') || ($home eq $perlvar{'lonHostID'})) {
369: return 'not_found';
370: }
371: my $answer=reply("sub:$fname",$home);
372: return $answer;
373: }
374:
1.8 www 375: # -------------------------------------------------------------- Replicate file
376:
377: sub repcopy {
378: my $filename=shift;
1.23 www 379: $filename=~s/\/+/\//g;
1.8 www 380: my $transname="$filename.in.transfer";
1.17 www 381: if ((-e $filename) || (-e $transname)) { return OK; }
1.8 www 382: my $remoteurl=subscribe($filename);
383: if ($remoteurl eq 'con_lost') {
384: &logthis("Subscribe returned con_lost: $filename");
385: return HTTP_SERVICE_UNAVAILABLE;
386: } elsif ($remoteurl eq 'not_found') {
387: &logthis("Subscribe returned not_found: $filename");
388: return HTTP_NOT_FOUND;
1.20 www 389: } elsif ($remoteurl eq 'rejected') {
390: &logthis("Subscribe returned rejected: $filename");
1.8 www 391: return FORBIDDEN;
1.20 www 392: } elsif ($remoteurl eq 'directory') {
393: return OK;
1.8 www 394: } else {
395: my @parts=split(/\//,$filename);
396: my $path="/$parts[1]/$parts[2]/$parts[3]/$parts[4]";
397: if ($path ne "$perlvar{'lonDocRoot'}/res") {
398: &logthis("Malconfiguration for replication: $filename");
399: return HTTP_BAD_REQUEST;
400: }
401: my $count;
402: for ($count=5;$count<$#parts;$count++) {
403: $path.="/$parts[$count]";
404: if ((-e $path)!=1) {
405: mkdir($path,0777);
406: }
407: }
408: my $ua=new LWP::UserAgent;
409: my $request=new HTTP::Request('GET',"$remoteurl");
410: my $response=$ua->request($request,$transname);
411: if ($response->is_error()) {
412: unlink($transname);
413: my $message=$response->status_line;
1.12 www 414: &logthis("<font color=blue>WARNING:"
415: ." LWP get: $message: $filename</font>");
1.8 www 416: return HTTP_SERVICE_UNAVAILABLE;
417: } else {
1.16 www 418: if ($remoteurl!~/\.meta$/) {
419: my $mrequest=new HTTP::Request('GET',$remoteurl.'.meta');
420: my $mresponse=$ua->request($mrequest,$filename.'.meta');
421: if ($mresponse->is_error()) {
422: unlink($filename.'.meta');
423: &logthis(
424: "<font color=yellow>INFO: No metadata: $filename</font>");
425: }
426: }
1.8 www 427: rename($transname,$filename);
428: return OK;
429: }
430: }
431: }
432:
1.15 www 433: # --------------------------------------------------------- Server Side Include
434:
435: sub ssi {
436:
1.23 www 437: my ($fn,%form)=@_;
1.15 www 438:
439: my $ua=new LWP::UserAgent;
1.23 www 440:
441: my $request;
442:
443: if (%form) {
444: $request=new HTTP::Request('POST',"http://".$ENV{'HTTP_HOST'}.$fn);
445: $request->content(join '&', map { "$_=$form{$_}" } keys %form);
446: } else {
447: $request=new HTTP::Request('GET',"http://".$ENV{'HTTP_HOST'}.$fn);
448: }
449:
1.15 www 450: $request->header(Cookie => $ENV{'HTTP_COOKIE'});
451: my $response=$ua->request($request);
452:
453: return $response->content;
454: }
455:
1.14 www 456: # ------------------------------------------------------------------------- Log
457:
458: sub log {
459: my ($dom,$nam,$hom,$what)=@_;
1.47 www 460: return critical("log:$dom:$nam:$what",$hom);
1.14 www 461: }
462:
1.9 www 463: # ----------------------------------------------------------------------- Store
464:
465: sub store {
1.31 www 466: my %storehash=@_;
467: my $symb;
1.44 www 468: unless ($symb=escape(&symbread())) { return ''; }
1.31 www 469: my $namespace;
1.33 www 470: unless ($namespace=$ENV{'request.course.id'}) { return ''; }
1.12 www 471: my $namevalue='';
472: map {
473: $namevalue.=escape($_).'='.escape($storehash{$_}).'&';
474: } keys %storehash;
475: $namevalue=~s/\&$//;
1.31 www 476: return reply(
477: "store:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$symb:$namevalue",
1.12 www 478: "$ENV{'user.home'}");
1.9 www 479: }
480:
1.47 www 481: # -------------------------------------------------------------- Critical Store
482:
483: sub cstore {
484: my %storehash=@_;
485: my $symb;
486: unless ($symb=escape(&symbread())) { return ''; }
487: my $namespace;
488: unless ($namespace=$ENV{'request.course.id'}) { return ''; }
489: my $namevalue='';
490: map {
491: $namevalue.=escape($_).'='.escape($storehash{$_}).'&';
492: } keys %storehash;
493: $namevalue=~s/\&$//;
494: return critical(
495: "store:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$symb:$namevalue",
496: "$ENV{'user.home'}");
497: }
498:
1.9 www 499: # --------------------------------------------------------------------- Restore
500:
501: sub restore {
1.31 www 502: my $symb;
1.44 www 503: unless ($symb=escape(&symbread())) { return ''; }
1.31 www 504: my $namespace;
1.33 www 505: unless ($namespace=$ENV{'request.course.id'}) { return ''; }
1.31 www 506: my $answer=reply(
507: "restore:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$symb",
508: "$ENV{'user.home'}");
1.12 www 509: my %returnhash=();
510: map {
511: my ($name,$value)=split(/\=/,$_);
512: $returnhash{&unescape($name)}=&unescape($value);
513: } split(/\&/,$answer);
1.31 www 514: map {
515: $returnhash{$_}=$returnhash{$returnhash{'version'}.':'.$_};
516: } split(/\:/,$returnhash{$returnhash{'version'}.':keys'});
1.13 www 517: return %returnhash;
1.34 www 518: }
519:
520: # ---------------------------------------------------------- Course Description
521:
522: sub coursedescription {
523: my $courseid=shift;
524: $courseid=~s/^\///;
1.49 www 525: $courseid=~s/\_/\//g;
1.34 www 526: my ($cdomain,$cnum)=split(/\//,$courseid);
527: my $chome=homeserver($cnum,$cdomain);
528: if ($chome ne 'no_host') {
529: my $rep=reply("dump:$cdomain:$cnum:environment",$chome);
530: if ($rep ne 'con_lost') {
1.54 www 531: my $normalid=$courseid;
532: $normalid=~s/\//\_/g;
1.53 www 533: my %envhash=();
1.34 www 534: my %returnhash=('home' => $chome,
535: 'domain' => $cdomain,
536: 'num' => $cnum);
537: map {
538: my ($name,$value)=split(/\=/,$_);
539: $name=&unescape($name);
540: $value=&unescape($value);
541: $returnhash{$name}=$value;
1.53 www 542: $envhash{'course.'.$normalid.'.'.$name}=$value;
1.34 www 543: } split(/\&/,$rep);
544: $returnhash{'url'}='/res/'.declutter($returnhash{'url'});
545: $returnhash{'fn'}=$perlvar{'lonDaemons'}.'/tmp/'.
1.38 www 546: $ENV{'user.name'}.'_'.$cdomain.'_'.$cnum;
1.54 www 547: $envhash{'course.'.$normalid.'.last_cache'}=time;
1.60 www 548: $envhash{'course.'.$normalid.'.home'}=$chome;
549: $envhash{'course.'.$normalid.'.domain'}=$cdomain;
550: $envhash{'course.'.$normalid.'.num'}=$cnum;
1.53 www 551: &appenv(%envhash);
1.34 www 552: return %returnhash;
553: }
554: }
555: return ();
1.9 www 556: }
1.1 albertel 557:
1.11 www 558: # -------------------------------------------------------- Get user priviledges
559:
560: sub rolesinit {
561: my ($domain,$username,$authhost)=@_;
562: my $rolesdump=reply("dump:$domain:$username:roles",$authhost);
1.12 www 563: if (($rolesdump eq 'con_lost') || ($rolesdump eq '')) { return ''; }
1.11 www 564: my %allroles=();
565: my %thesepriv=();
566: my $now=time;
1.21 www 567: my $userroles="user.login.time=$now\n";
1.11 www 568: my $thesestr;
569:
570: if ($rolesdump ne '') {
571: map {
1.21 www 572: if ($_!~/^rolesdef\&/) {
1.11 www 573: my ($area,$role)=split(/=/,$_);
1.21 www 574: $area=~s/\_\w\w$//;
1.11 www 575: my ($trole,$tend,$tstart)=split(/_/,$role);
1.21 www 576: $userroles.='user.role.'.$trole.'.'.$area.'='.
577: $tstart.'.'.$tend."\n";
1.11 www 578: if ($tend!=0) {
579: if ($tend<$now) {
580: $trole='';
581: }
582: }
583: if ($tstart!=0) {
584: if ($tstart>$now) {
585: $trole='';
586: }
587: }
588: if (($area ne '') && ($trole ne '')) {
1.50 www 589: my $spec=$trole.'.'.$area;
1.12 www 590: my ($tdummy,$tdomain,$trest)=split(/\//,$area);
591: if ($trole =~ /^cr\//) {
592: my ($rdummy,$rdomain,$rauthor,$rrole)=split(/\//,$trole);
593: my $homsvr=homeserver($rauthor,$rdomain);
594: if ($hostname{$homsvr} ne '') {
595: my $roledef=
1.21 www 596: reply("get:$rdomain:$rauthor:roles:rolesdef_$rrole",
1.12 www 597: $homsvr);
598: if (($roledef ne 'con_lost') && ($roledef ne '')) {
599: my ($syspriv,$dompriv,$coursepriv)=
1.21 www 600: split(/\_/,unescape($roledef));
1.50 www 601: $allroles{'cm./'}.=':'.$syspriv;
602: $allroles{$spec.'./'}.=':'.$syspriv;
1.12 www 603: if ($tdomain ne '') {
1.50 www 604: $allroles{'cm./'.$tdomain.'/'}.=':'.$dompriv;
605: $allroles{$spec.'./'.$tdomain.'/'}.=':'.$dompriv;
1.12 www 606: if ($trest ne '') {
1.50 www 607: $allroles{'cm.'.$area}.=':'.$coursepriv;
608: $allroles{$spec.'.'.$area}.=':'.$coursepriv;
1.12 www 609: }
610: }
611: }
1.11 www 612: }
1.12 www 613: } else {
1.50 www 614: $allroles{'cm./'}.=':'.$pr{$trole.':s'};
615: $allroles{$spec.'./'}.=':'.$pr{$trole.':s'};
1.12 www 616: if ($tdomain ne '') {
1.50 www 617: $allroles{'cm./'.$tdomain.'/'}.=':'.$pr{$trole.':d'};
618: $allroles{$spec.'./'.$tdomain.'/'}.=':'.$pr{$trole.':d'};
1.12 www 619: if ($trest ne '') {
1.50 www 620: $allroles{'cm.'.$area}.=':'.$pr{$trole.':c'};
621: $allroles{$spec.'.'.$area}.=':'.$pr{$trole.':c'};
1.12 www 622: }
623: }
1.11 www 624: }
1.12 www 625: }
626: }
1.11 www 627: } split(/&/,$rolesdump);
628: map {
629: %thesepriv=();
630: map {
631: if ($_ ne '') {
632: my ($priviledge,$restrictions)=split(/&/,$_);
633: if ($restrictions eq '') {
634: $thesepriv{$priviledge}='F';
635: } else {
636: if ($thesepriv{$priviledge} ne 'F') {
637: $thesepriv{$priviledge}.=$restrictions;
638: }
639: }
640: }
641: } split(/:/,$allroles{$_});
642: $thesestr='';
643: map { $thesestr.=':'.$_.'&'.$thesepriv{$_}; } keys %thesepriv;
644: $userroles.='user.priv.'.$_.'='.$thesestr."\n";
645: } keys %allroles;
646: }
647: return $userroles;
648: }
649:
1.12 www 650: # --------------------------------------------------------------- get interface
651:
652: sub get {
653: my ($namespace,@storearr)=@_;
654: my $items='';
655: map {
656: $items.=escape($_).'&';
657: } @storearr;
658: $items=~s/\&$//;
659: my $rep=reply("get:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$items",
660: $ENV{'user.home'});
1.15 www 661: my @pairs=split(/\&/,$rep);
662: my %returnhash=();
1.42 www 663: my $i=0;
1.15 www 664: map {
1.42 www 665: $returnhash{$_}=unescape($pairs[$i]);
666: $i++;
667: } @storearr;
1.15 www 668: return %returnhash;
1.27 www 669: }
670:
671: # --------------------------------------------------------------- del interface
672:
673: sub del {
674: my ($namespace,@storearr)=@_;
675: my $items='';
676: map {
677: $items.=escape($_).'&';
678: } @storearr;
679: $items=~s/\&$//;
680: return reply("del:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$items",
681: $ENV{'user.home'});
1.15 www 682: }
683:
684: # -------------------------------------------------------------- dump interface
685:
686: sub dump {
687: my $namespace=shift;
688: my $rep=reply("dump:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace",
689: $ENV{'user.home'});
1.12 www 690: my @pairs=split(/\&/,$rep);
691: my %returnhash=();
692: map {
693: my ($key,$value)=split(/=/,$_);
1.29 www 694: $returnhash{unescape($key)}=unescape($value);
1.12 www 695: } @pairs;
696: return %returnhash;
697: }
698:
699: # --------------------------------------------------------------- put interface
700:
701: sub put {
702: my ($namespace,%storehash)=@_;
703: my $items='';
704: map {
705: $items.=escape($_).'='.escape($storehash{$_}).'&';
706: } keys %storehash;
707: $items=~s/\&$//;
708: return reply("put:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$items",
1.47 www 709: $ENV{'user.home'});
710: }
711:
712: # ------------------------------------------------------ critical put interface
713:
714: sub cput {
715: my ($namespace,%storehash)=@_;
716: my $items='';
717: map {
718: $items.=escape($_).'='.escape($storehash{$_}).'&';
719: } keys %storehash;
720: $items=~s/\&$//;
721: return critical
722: ("put:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$items",
1.12 www 723: $ENV{'user.home'});
724: }
725:
726: # -------------------------------------------------------------- eget interface
727:
728: sub eget {
729: my ($namespace,@storearr)=@_;
730: my $items='';
731: map {
732: $items.=escape($_).'&';
733: } @storearr;
734: $items=~s/\&$//;
735: my $rep=reply("eget:$ENV{'user.domain'}:$ENV{'user.name'}:$namespace:$items",
736: $ENV{'user.home'});
737: my @pairs=split(/\&/,$rep);
738: my %returnhash=();
1.42 www 739: my $i=0;
1.12 www 740: map {
1.42 www 741: $returnhash{$_}=unescape($pairs[$i]);
742: $i++;
743: } @storearr;
1.12 www 744: return %returnhash;
745: }
746:
747: # ------------------------------------------------- Check for a user priviledge
748:
749: sub allowed {
750: my ($priv,$uri)=@_;
1.52 www 751: $uri=&declutter($uri);
1.29 www 752:
1.54 www 753: # Free bre access to adm and meta resources
1.29 www 754:
1.54 www 755: if ((($uri=~/^adm\//) || ($uri=~/\.meta$/)) && ($priv eq 'bre')) {
1.14 www 756: return 'F';
757: }
1.29 www 758:
1.52 www 759: my $thisallowed='';
760: my $statecond=0;
761: my $courseprivid='';
762:
763: # Course
764:
765: if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'}=~/$priv\&([^\:]*)/) {
766: $thisallowed.=$1;
767: }
1.29 www 768:
1.52 www 769: # Domain
770:
771: if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'.(split(/\//,$uri))[0].'/'}
772: =~/$priv\&([^\:]*)/) {
1.12 www 773: $thisallowed.=$1;
774: }
1.52 www 775:
776: # Course: uri itself is a course
777:
778: if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'.$uri}
779: =~/$priv\&([^\:]*)/) {
1.12 www 780: $thisallowed.=$1;
781: }
1.29 www 782:
1.52 www 783: # Full access at system, domain or course-wide level? Exit.
1.29 www 784:
785: if ($thisallowed=~/F/) {
786: return 'F';
787: }
788:
1.52 www 789: # If this is generating or modifying users, exit with special codes
1.29 www 790:
1.52 www 791: if (':csu:cdc:ccc:cin:cta:cep:ccr:cst:cad:cli:cau:cdg:'=~/\:$priv\:/) {
792: return $thisallowed;
793: }
794: #
795: # Gathered so far: system, domain and course wide priviledges
796: #
797: # Course: See if uri or referer is an individual resource that is part of
798: # the course
799:
800: if ($ENV{'request.course.id'}) {
801: $courseprivid=$ENV{'request.course.id'};
802: if ($ENV{'request.course.sec'}) {
803: $courseprivid.='/'.$ENV{'request.course.sec'};
804: }
805: $courseprivid=~s/\_/\//;
806: my $checkreferer=1;
807: my @uriparts=split(/\//,$uri);
808: my $filename=$uriparts[$#uriparts];
809: my $pathname=$uri;
810: $pathname=~s/\/$filename$//;
811: if ($ENV{'acc.res.'.$ENV{'request.course.id'}.'.'.$pathname}=~
1.54 www 812: /\&$filename\:([\d\|]+)\&/) {
1.52 www 813: $statecond=$1;
814: if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'.$courseprivid}
815: =~/$priv\&([^\:]*)/) {
816: $thisallowed.=$1;
817: $checkreferer=0;
818: }
1.29 www 819: }
1.55 www 820:
1.52 www 821: if (($ENV{'HTTP_REFERER'}) && ($checkreferer)) {
1.55 www 822: my $refuri=$ENV{'HTTP_REFERER'};
823: $refuri=~s/^http\:\/\/$ENV{'request.host'}//i;
824: $refuri=&declutter($refuri);
1.53 www 825: my @uriparts=split(/\//,$refuri);
1.52 www 826: my $filename=$uriparts[$#uriparts];
1.53 www 827: my $pathname=$refuri;
1.52 www 828: $pathname=~s/\/$filename$//;
1.55 www 829: my @filenameparts=split(/\./,$uri);
1.53 www 830: if (&fileembstyle($filenameparts[$#filenameparts]) ne 'ssi') {
831: if ($ENV{'acc.res.'.$ENV{'request.course.id'}.'.'.$pathname}=~
1.54 www 832: /\&$filename\:([\d\|]+)\&/) {
1.53 www 833: my $refstatecond=$1;
1.52 www 834: if ($ENV{'user.priv.'.$ENV{'request.role'}.'./'.$courseprivid}
835: =~/$priv\&([^\:]*)/) {
836: $thisallowed.=$1;
1.53 www 837: $uri=$refuri;
838: $statecond=$refstatecond;
1.52 www 839: }
1.53 www 840: }
1.52 www 841: }
1.29 www 842: }
1.52 www 843: }
1.29 www 844:
1.52 www 845: #
846: # Gathered now: all priviledges that could apply, and condition number
847: #
848: #
849: # Full or no access?
850: #
1.29 www 851:
1.52 www 852: if ($thisallowed=~/F/) {
853: return 'F';
854: }
1.29 www 855:
1.52 www 856: unless ($thisallowed) {
857: return '';
858: }
1.29 www 859:
1.52 www 860: # Restrictions exist, deal with them
861: #
862: # C:according to course preferences
863: # R:according to resource settings
864: # L:unless locked
865: # X:according to user session state
866: #
867:
868: # Possibly locked functionality, check all courses
1.54 www 869: # Locks might take effect only after 10 minutes cache expiration for other
870: # courses, and 2 minutes for current course
1.52 www 871:
872: my $envkey;
873: if ($thisallowed=~/L/) {
874: foreach $envkey (keys %ENV) {
1.54 www 875: if ($envkey=~/^user\.role\.(st|ta)\.([^\.]*)/) {
876: my $courseid=$2;
877: my $roleid=$1.'.'.$2;
878: my $expiretime=600;
879: if ($ENV{'request.role'} eq $roleid) {
880: $expiretime=120;
881: }
882: my ($cdom,$cnum,$csec)=split(/\//,$courseid);
883: my $prefix='course.'.$cdom.'_'.$cnum.'.';
884: if ((time-$ENV{$prefix.'last_cache'})>$expiretime) {
885: &coursedescription($courseid);
886: }
887: if (($ENV{$prefix.'res.'.$uri.'.lock.sections'}=~/\,$csec\,/)
888: || ($ENV{$prefix.'res.'.$uri.'.lock.sections'} eq 'all')) {
889: if ($ENV{$prefix.'res.'.$uri.'.lock.expire'}>time) {
1.57 www 890: &log($ENV{'user.domain'},$ENV{'user.name'},
891: $ENV{'user.host'},
892: 'Locked by res: '.$priv.' for '.$uri.' due to '.
1.52 www 893: $cdom.'/'.$cnum.'/'.$csec.' expire '.
1.54 www 894: $ENV{$prefix.'priv.'.$priv.'.lock.expire'});
1.52 www 895: return '';
896: }
897: }
1.54 www 898: if (($ENV{$prefix.'priv.'.$priv.'.lock.sections'}=~/\,$csec\,/)
899: || ($ENV{$prefix.'priv.'.$priv.'.lock.sections'} eq 'all')) {
900: if ($ENV{'priv.'.$priv.'.lock.expire'}>time) {
1.57 www 901: &log($ENV{'user.domain'},$ENV{'user.name'},
902: $ENV{'user.host'},
903: 'Locked by priv: '.$priv.' for '.$uri.' due to '.
1.52 www 904: $cdom.'/'.$cnum.'/'.$csec.' expire '.
1.54 www 905: $ENV{$prefix.'priv.'.$priv.'.lock.expire'});
1.52 www 906: return '';
907: }
908: }
909: }
1.29 www 910: }
1.52 www 911: }
912:
913: #
914: # Rest of the restrictions depend on selected course
915: #
916:
917: unless ($ENV{'request.course.id'}) {
918: return '1';
919: }
1.29 www 920:
1.52 www 921: #
922: # Now user is definitely in a course
923: #
1.53 www 924:
925:
926: # Course preferences
927:
928: if ($thisallowed=~/C/) {
1.54 www 929: my $rolecode=(split(/\./,$ENV{'request.role'}))[0];
930: if ($ENV{'course.'.$ENV{'request.course.id'}.'.'.$priv.'.roles.denied'}
931: =~/\,$rolecode\,/) {
1.57 www 932: &log($ENV{'user.domain'},$ENV{'user.name'},$ENV{'user.host'},
933: 'Denied by role: '.$priv.' for '.$uri.' as '.$rolecode.' in '.
1.54 www 934: $ENV{'request.course.id'});
935: return '';
936: }
1.53 www 937: }
938:
939: # Resource preferences
940:
941: if ($thisallowed=~/R/) {
1.54 www 942: my $rolecode=(split(/\./,$ENV{'request.role'}))[0];
943: my $filename=$perlvar{'lonDocRoot'}.'/res/'.$uri.'.meta';
944: if (-e $filename) {
945: my @content;
946: {
947: my $fh=Apache::File->new($filename);
948: @content=<$fh>;
949: }
950: if (join('',@content)=~
951: /\<roledeny[^\>]*\>[^\<]*$rolecode[^\<]*\<\/roledeny\>/) {
1.57 www 952: &log($ENV{'user.domain'},$ENV{'user.name'},$ENV{'user.host'},
953: 'Denied by role: '.$priv.' for '.$uri.' as '.$rolecode);
1.54 www 954: return '';
955:
956: }
957: }
1.53 www 958: }
1.30 www 959:
1.52 www 960: # Restricted by state?
1.30 www 961:
1.52 www 962: if ($thisallowed=~/X/) {
963: if (&condval($statecond)) {
964: return '2';
965: } else {
966: return '';
967: }
968: }
1.30 www 969:
1.52 www 970: return 'F';
1.12 www 971: }
972:
973: # ----------------------------------------------------------------- Define Role
974:
975: sub definerole {
976: if (allowed('mcr','/')) {
977: my ($rolename,$sysrole,$domrole,$courole)=@_;
1.21 www 978: map {
979: my ($crole,$cqual)=split(/\&/,$_);
980: if ($pr{'cr:s'}!~/$crole/) { return "refused:s:$crole"; }
981: if ($pr{'cr:s'}=~/$crole\&/) {
982: if ($pr{'cr:s'}!~/$crole\&\w*$cqual/) {
983: return "refused:s:$crole&$cqual";
984: }
985: }
986: } split('/',$sysrole);
987: map {
988: my ($crole,$cqual)=split(/\&/,$_);
989: if ($pr{'cr:d'}!~/$crole/) { return "refused:d:$crole"; }
990: if ($pr{'cr:d'}=~/$crole\&/) {
991: if ($pr{'cr:d'}!~/$crole\&\w*$cqual/) {
992: return "refused:d:$crole&$cqual";
993: }
994: }
995: } split('/',$domrole);
996: map {
997: my ($crole,$cqual)=split(/\&/,$_);
998: if ($pr{'cr:c'}!~/$crole/) { return "refused:c:$crole"; }
999: if ($pr{'cr:c'}=~/$crole\&/) {
1000: if ($pr{'cr:c'}!~/$crole\&\w*$cqual/) {
1001: return "refused:c:$crole&$cqual";
1002: }
1003: }
1004: } split('/',$courole);
1.12 www 1005: my $command="encrypt:rolesput:$ENV{'user.domain'}:$ENV{'user.name'}:".
1006: "$ENV{'user.domain'}:$ENV{'user.name'}:".
1.21 www 1007: "rolesdef_$rolename=".
1008: escape($sysrole.'_'.$domrole.'_'.$courole);
1.12 www 1009: return reply($command,$ENV{'user.home'});
1010: } else {
1011: return 'refused';
1012: }
1013: }
1014:
1015: # ------------------------------------------------------------------ Plain Text
1016:
1017: sub plaintext {
1.22 www 1018: my $short=shift;
1019: return $prp{$short};
1.12 www 1020: }
1021:
1.25 www 1022: # ------------------------------------------------------------------ Plain Text
1023:
1024: sub fileembstyle {
1025: my $ending=shift;
1026: return $fe{$ending};
1027: }
1028:
1029: # ------------------------------------------------------------ Description Text
1030:
1031: sub filedecription {
1032: my $ending=shift;
1033: return $fd{$ending};
1034: }
1035:
1.12 www 1036: # ----------------------------------------------------------------- Assign Role
1037:
1038: sub assignrole {
1.21 www 1039: my ($udom,$uname,$url,$role,$end,$start)=@_;
1040: my $mrole;
1.31 www 1041: $url=declutter($url);
1.21 www 1042: if ($role =~ /^cr\//) {
1043: unless ($url=~/\.course$/) { return 'invalid'; }
1044: unless (allowed('ccr',$url)) { return 'refused'; }
1045: $mrole='cr';
1046: } else {
1047: unless (($url=~/\.course$/) || ($url=~/\/$/)) { return 'invalid'; }
1048: unless (allowed('c'+$role)) { return 'refused'; }
1049: $mrole=$role;
1050: }
1051: my $command="encrypt:rolesput:$ENV{'user.domain'}:$ENV{'user.name'}:".
1052: "$udom:$uname:$url".'_'."$mrole=$role";
1053: if ($end) { $command.='_$end'; }
1054: if ($start) {
1055: if ($end) {
1056: $command.='_$start';
1057: } else {
1058: $command.='_0_$start';
1059: }
1060: }
1061: return &reply($command,&homeserver($uname,$udom));
1062: }
1063:
1064: # ---------------------------------------------------------- Assign Custom Role
1065:
1066: sub assigncustomrole {
1067: my ($udom,$uname,$url,$rdom,$rnam,$rolename,$end,$start)=@_;
1068: return &assignrole($udom,$uname,$url,'cr/'.$rdom.'/'.$rnam.'/'.$rolename,
1069: $end,$start);
1070: }
1071:
1072: # ----------------------------------------------------------------- Revoke Role
1073:
1074: sub revokerole {
1075: my ($udom,$uname,$url,$role)=@_;
1076: my $now=time;
1077: return &assignrole($udom,$uname,$url,$role,$now);
1078: }
1079:
1080: # ---------------------------------------------------------- Revoke Custom Role
1081:
1082: sub revokecustomrole {
1083: my ($udom,$uname,$url,$rdom,$rnam,$rolename)=@_;
1084: my $now=time;
1085: return &assigncustomrole($udom,$uname,$url,$rdom,$rnam,$rolename,$now);
1.17 www 1086: }
1087:
1088: # ------------------------------------------------------------ Directory lister
1089:
1090: sub dirlist {
1091: my $uri=shift;
1.18 www 1092: $uri=~s/^\///;
1093: $uri=~s/\/$//;
1.19 www 1094: my ($res,$udom,$uname,@rest)=split(/\//,$uri);
1095: if ($udom) {
1096: if ($uname) {
1097: my $listing=reply('ls:'.$perlvar{'lonDocRoot'}.'/'.$uri,
1098: homeserver($uname,$udom));
1099: return split(/:/,$listing);
1100: } else {
1101: my $tryserver;
1102: my %allusers=();
1103: foreach $tryserver (keys %libserv) {
1104: if ($hostdom{$tryserver} eq $udom) {
1105: my $listing=reply('ls:'.$perlvar{'lonDocRoot'}.'/res/'.$udom,
1106: $tryserver);
1107: if (($listing ne 'no_such_dir') && ($listing ne 'empty')
1108: && ($listing ne 'con_lost')) {
1109: map {
1110: my ($entry,@stat)=split(/&/,$_);
1111: $allusers{$entry}=1;
1112: } split(/:/,$listing);
1113: }
1114: }
1115: }
1116: my $alluserstr='';
1117: map {
1118: $alluserstr.=$_.'&user:';
1119: } sort keys %allusers;
1120: $alluserstr=~s/:$//;
1121: return split(/:/,$alluserstr);
1122: }
1123: } else {
1124: my $tryserver;
1125: my %alldom=();
1126: foreach $tryserver (keys %libserv) {
1127: $alldom{$hostdom{$tryserver}}=1;
1128: }
1129: my $alldomstr='';
1130: map {
1131: $alldomstr.=$perlvar{'lonDocRoot'}.'/res/'.$_.'&domain:';
1132: } sort keys %alldom;
1133: $alldomstr=~s/:$//;
1134: return split(/:/,$alldomstr);
1135: }
1.26 www 1136: }
1137:
1138: # -------------------------------------------------------- Value of a Condition
1139:
1.40 www 1140: sub directcondval {
1141: my $number=shift;
1142: if ($ENV{'user.state.'.$ENV{'request.course.id'}}) {
1143: return substr($ENV{'user.state.'.$ENV{'request.course.id'}},$number,1);
1144: } else {
1145: return 2;
1146: }
1147: }
1148:
1.26 www 1149: sub condval {
1150: my $condidx=shift;
1151: my $result=0;
1.54 www 1152: my $allpathcond='';
1153: map {
1154: if (defined($ENV{'acc.cond.'.$ENV{'request.course.id'}.'.'.$_})) {
1155: $allpathcond.=
1156: '('.$ENV{'acc.cond.'.$ENV{'request.course.id'}.'.'.$_}.')|';
1157: }
1158: } split(/\|/,$condidx);
1159: $allpathcond=~s/\|$//;
1.33 www 1160: if ($ENV{'request.course.id'}) {
1.54 www 1161: if ($allpathcond) {
1.26 www 1162: my $operand='|';
1163: my @stack;
1164: map {
1165: if ($_ eq '(') {
1166: push @stack,($operand,$result)
1167: } elsif ($_ eq ')') {
1168: my $before=pop @stack;
1169: if (pop @stack eq '&') {
1170: $result=$result>$before?$before:$result;
1171: } else {
1172: $result=$result>$before?$result:$before;
1173: }
1174: } elsif (($_ eq '&') || ($_ eq '|')) {
1175: $operand=$_;
1176: } else {
1.40 www 1177: my $new=directcondval($_);
1.26 www 1178: if ($operand eq '&') {
1179: $result=$result>$new?$new:$result;
1180: } else {
1181: $result=$result>$new?$result:$new;
1182: }
1183: }
1.54 www 1184: } ($allpathcond=~/(\d+|\(|\)|\&|\|)/g);
1.26 www 1185: }
1186: }
1187: return $result;
1.28 www 1188: }
1189:
1190: # --------------------------------------------------------- Value of a Variable
1191:
1.58 www 1192: sub EXT {
1.48 www 1193: my $varname=shift;
1194: my ($realm,$space,$qualifier,@therest)=split(/\./,$varname);
1195: my $rest;
1196: if ($therest[0]) {
1197: $rest=join('.',@therest);
1198: } else {
1199: $rest='';
1200: }
1.57 www 1201: my $qualifierrest=$qualifier;
1202: if ($rest) { $qualifierrest.='.'.$rest; }
1203: my $spacequalifierrest=$space;
1204: if ($qualifierrest) { $spacequalifierrest.='.'.$qualifierrest; }
1.28 www 1205: if ($realm eq 'user') {
1.48 www 1206: # --------------------------------------------------------------- user.resource
1207: if ($space eq 'resource') {
1.57 www 1208: my %restored=&restore;
1209: return $restored{$qualifierrest};
1.48 www 1210: # ----------------------------------------------------------------- user.access
1211: } elsif ($space eq 'access') {
1212: return &allowed($qualifier,$rest);
1213: # ------------------------------------------ user.preferences, user.environment
1214: } elsif (($space eq 'preferences') || ($space eq 'environment')) {
1.57 www 1215: return $ENV{join('.',('environment',$qualifierrest))};
1.48 www 1216: # ----------------------------------------------------------------- user.course
1217: } elsif ($space eq 'course') {
1218: return $ENV{join('.',('request.course',$qualifier))};
1219: # ------------------------------------------------------------------- user.role
1220: } elsif ($space eq 'role') {
1221: my ($role,$where)=split(/\./,$ENV{'request.role'});
1222: if ($qualifier eq 'value') {
1223: return $role;
1224: } elsif ($qualifier eq 'extent') {
1225: return $where;
1226: }
1227: # ----------------------------------------------------------------- user.domain
1228: } elsif ($space eq 'domain') {
1229: return $ENV{'user.domain'};
1230: # ------------------------------------------------------------------- user.name
1231: } elsif ($space eq 'name') {
1232: return $ENV{'user.name'};
1233: # ---------------------------------------------------- Any other user namespace
1.29 www 1234: } else {
1.48 www 1235: my $item=($rest)?$qualifier.'.'.$rest:$qualifier;
1236: my %reply=&get($space,$item);
1237: return $reply{$item};
1238: }
1239: } elsif ($realm eq 'request') {
1240: # ------------------------------------------------------------- request.browser
1241: if ($space eq 'browser') {
1242: return $ENV{'browser.'.$qualifier};
1.57 www 1243: # ------------------------------------------------------------ request.filename
1244: } else {
1245: return $ENV{'request.'.$spacequalifierrest};
1.29 www 1246: }
1.28 www 1247: } elsif ($realm eq 'course') {
1.48 www 1248: # ---------------------------------------------------------- course.description
1.57 www 1249: my $section='';
1250: if ($ENV{'request.course.sec'}) {
1251: $section='_'.$ENV{'request.course.sec'};
1.48 www 1252: }
1.57 www 1253: return $ENV{'course.'.$ENV{'request.course.id'}.$section.'.'.
1254: $spacequalifierrest};
1255: } elsif ($realm eq 'resource') {
1.60 www 1256: if ($ENV{'request.course.id'}) {
1257: # ----------------------------------------------------- Cascading lookup scheme
1258: my $reslevel=
1259: $ENV{'request.course.id'}.'.'.&symbread().'.'.$spacequalifierrest;
1260: my $seclevel=
1261: $ENV{'request.course.id'}.'.'.
1262: $ENV{'request.course.sec'}.'.'.$spacequalifierrest;
1263: my $courselevel=
1264: $ENV{'request.course.id'}.'.'.$spacequalifierrest;
1265:
1266: # ----------------------------------------------------------- first, check user
1267: my %resourcedata=get('resourcedata',($reslevel,$seclevel,$courselevel));
1268: if ($resourcedata{$reslevel}) { return $resourcedata{$reslevel}; }
1269: if ($resourcedata{$seclevel}) { return $resourcedata{$seclevel}; }
1270: if ($resourcedata{$courselevel}) { return $resourcedata{$courselevel}; }
1271:
1272: # -------------------------------------------------------- second, check course
1273: my $section='';
1274: if ($ENV{'request.course.sec'}) {
1275: $section='_'.$ENV{'request.course.sec'};
1276: }
1277: my $reply=&reply('get:'.
1278: $ENV{'course.'.$ENV{'request.course.id'}.$section.'.domain'}.':'.
1279: $ENV{'course.'.$ENV{'request.course.id'}.$section.'.num'}.
1280: ':resourcedata:'.
1281: escape($reslevel).':'.escape($seclevel).':'.escape($courselevel),
1282: $ENV{'course.'.$ENV{'request.course.id'}.$section.'.home'});
1283: map {
1284: my ($name,$value)=split(/\=/,$_);
1285: $resourcedata{unescape($name)}=unescape($value);
1286: } split(/\&/,$reply);
1287: if ($resourcedata{$reslevel}) { return $resourcedata{$reslevel}; }
1288: if ($resourcedata{$seclevel}) { return $resourcedata{$seclevel}; }
1289: if ($resourcedata{$courselevel}) { return $resourcedata{$courselevel}; }
1290:
1291: # ------------------------------------------------------ third, check map parms
1292:
1293: if ($ENV{'resource.parms.'.$reslevel}) {
1294: return $ENV{'resource.parms.'.$reslevel};
1295: }
1296: }
1297:
1298: # --------------------------------------------- last, look in resource metadata
1.57 www 1299: my $uri=&declutter($ENV{'request.filename'});
1300: my $filename=$perlvar{'lonDocRoot'}.'/res/'.$ENV.'.meta';
1301: if (-e $filename) {
1302: my @content;
1303: {
1304: my $fh=Apache::File->new($filename);
1305: @content=<$fh>;
1306: }
1307: if (join('',@content)=~
1308: /\<$space[^\>]*\>([^\<]*)\<\/$space\>/) {
1309: return $1;
1.60 www 1310: }
1311: }
1.48 www 1312: # ---------------------------------------------------- Any other user namespace
1313: } elsif ($realm eq 'environment') {
1314: # ----------------------------------------------------------------- environment
1.57 www 1315: return $ENV{$spacequalifierrest};
1.28 www 1316: } elsif ($realm eq 'system') {
1.48 www 1317: # ----------------------------------------------------------------- system.time
1318: if ($space eq 'time') {
1319: return time;
1320: }
1.28 www 1321: }
1.48 www 1322: return '';
1.61 www 1323: }
1324:
1325: # ---------------------------------------- Append resource parms to environment
1326:
1327: sub appendparms {
1328: my ($symb,$parms)=@_;
1329: my %storehash=();
1330: my $prefix='resource.parms.'.$ENV{'request.course.id'}.'.'.$symb;
1331: map {
1332: my ($typename,$value)=split(/\=/,$_);
1333: my ($type,$name)=split(/\:/,$typename);
1334: $storehash{$prefix.'.'.unescape($name)}=unescape($value);
1335: $storehash{$prefix.'.'.unescape($name).'.type'}=unescape($type);
1336: } split(/\&/,$parms);
1337: &appenv(%storehash);
1.31 www 1338: }
1339:
1340: # ------------------------------------------------- Update symbolic store links
1341:
1342: sub symblist {
1343: my ($mapname,%newhash)=@_;
1344: $mapname=declutter($mapname);
1345: my %hash;
1346: if (($ENV{'request.course.fn'}) && (%newhash)) {
1347: if (tie(%hash,'GDBM_File',$ENV{'request.course.fn'}.'_symb.db',
1348: &GDBM_WRCREAT,0640)) {
1349: map {
1350: $hash{declutter($_)}=$mapname.'___'.$newhash{$_};
1351: } keys %newhash;
1352: if (untie(%hash)) {
1353: return 'ok';
1354: }
1355: }
1356: }
1357: return 'error';
1358: }
1359:
1360: # ------------------------------------------------------ Return symb list entry
1361:
1362: sub symbread {
1.44 www 1363: my $thisfn=shift;
1364: unless ($thisfn) {
1365: $thisfn=$ENV{'request.filename'};
1366: }
1367: $thisfn=declutter($thisfn);
1.31 www 1368: my %hash;
1.37 www 1369: my %bighash;
1370: my $syval='';
1.62 ! www 1371: my $parms='';
1.45 www 1372: if (($ENV{'request.course.fn'}) && ($thisfn)) {
1.31 www 1373: if (tie(%hash,'GDBM_File',$ENV{'request.course.fn'}.'_symb.db',
1374: &GDBM_READER,0640)) {
1375: $syval=$hash{$thisfn};
1.37 www 1376: untie(%hash);
1377: }
1378: # ---------------------------------------------------------- There was an entry
1379: if ($syval) {
1380: unless ($syval=~/\_\d+$/) {
1381: unless ($ENV{'form.request.prefix'}=~/\.(\d+)\_$/) {
1.44 www 1382: &appenv('request.ambiguous' => $thisfn);
1.37 www 1383: return '';
1384: }
1385: $syval.=$1;
1386: }
1387: } else {
1388: # ------------------------------------------------------- Was not in symb table
1389: if (tie(%bighash,'GDBM_File',$ENV{'request.course.fn'}.'.db',
1390: &GDBM_READER,0640)) {
1391: # ---------------------------------------------- Get ID(s) for current resource
1392: my $ids=$bighash{'ids_/res/'.$thisfn};
1393: if ($ids) {
1394: # ------------------------------------------------------------------- Has ID(s)
1395: my @possibilities=split(/\,/,$ids);
1.39 www 1396: if ($#possibilities==0) {
1397: # ----------------------------------------------- There is only one possibility
1.37 www 1398: my ($mapid,$resid)=split(/\./,$ids);
1.62 ! www 1399: $parms=$bighash{'param_'.$ids};
1.37 www 1400: $syval=declutter($bighash{'map_id_'.$mapid}).'___'.$resid;
1401: } else {
1.39 www 1402: # ------------------------------------------ There is more than one possibility
1403: my $realpossible=0;
1404: map {
1405: my $file=$bighash{'src_'.$_};
1406: if (&allowed('bre',$file)) {
1407: my ($mapid,$resid)=split(/\./,$_);
1408: if ($bighash{'map_type_'.$mapid} ne 'page') {
1409: $realpossible++;
1.62 ! www 1410: $parms=$bighash{'param_'.$_};
1.39 www 1411: $syval=declutter($bighash{'map_id_'.$mapid}).
1412: '___'.$resid;
1413: }
1414: }
1415: } @possibilities;
1416: if ($realpossible!=1) { $syval=''; }
1.37 www 1417: }
1418: }
1419: untie(%bighash)
1420: }
1.31 www 1421: }
1.62 ! www 1422: if ($syval) {
! 1423: if ($parms) {
! 1424: &appendparms($syval.'___'.$thisfn,$parms);
! 1425: }
! 1426: return $syval.'___'.$thisfn;
! 1427: }
1.31 www 1428: }
1.44 www 1429: &appenv('request.ambiguous' => $thisfn);
1.31 www 1430: return '';
1431: }
1432:
1433: # ---------------------------------------------------------- Return random seed
1434:
1.32 www 1435: sub numval {
1436: my $txt=shift;
1437: $txt=~tr/A-J/0-9/;
1438: $txt=~tr/a-j/0-9/;
1439: $txt=~tr/K-T/0-9/;
1440: $txt=~tr/k-t/0-9/;
1441: $txt=~tr/U-Z/0-5/;
1442: $txt=~tr/u-z/0-5/;
1443: $txt=~s/\D//g;
1444: return int($txt);
1445: }
1446:
1.31 www 1447: sub rndseed {
1448: my $symb;
1.44 www 1449: unless ($symb=&symbread()) { return time; }
1.32 www 1450: my $symbchck=unpack("%32C*",$symb);
1451: my $symbseed=numval($symb)%$symbchck;
1452: my $namechck=unpack("%32C*",$ENV{'user.name'});
1453: my $nameseed=numval($ENV{'user.name'})%$namechck;
1454: return int( $symbseed
1455: .$nameseed
1456: .unpack("%32C*",$ENV{'user.domain'})
1.33 www 1457: .unpack("%32C*",$ENV{'request.course.id'})
1.32 www 1458: .$namechck
1459: .$symbchck);
1.36 albertel 1460: }
1461:
1462: # ------------------------------------------------------------ Serves up a file
1463: # returns either the contents of the file or a -1
1464: sub getfile {
1465: my $file=shift;
1.37 www 1466: &repcopy($file);
1.36 albertel 1467: if (! -e $file ) { return -1; };
1468: my $fh=Apache::File->new($file);
1469: my $a='';
1470: while (<$fh>) { $a .=$_; }
1471: return $a
1472: }
1473:
1474: sub filelocation {
1475: my ($dir,$file) = @_;
1476: my $location;
1477: $file=~ s/^\s*(\S+)\s*$/$1/; ## strip off leading and trailing spaces
1.59 albertel 1478: if ($file=~m:^/~:) { # is a contruction space reference
1479: $location = $file;
1480: $location =~ s:/~(.*?)/(.*):/home/$1/public_html/$2:;
1.36 albertel 1481: } else {
1.59 albertel 1482: $file=~s/^$perlvar{'lonDocRoot'}//;
1483: $file=~s:^/*res::;
1484: if ( !( $file =~ m:^/:) ) {
1485: $location = $dir. '/'.$file;
1486: } else {
1487: $location = '/home/httpd/html/res'.$file;
1488: }
1.36 albertel 1489: }
1490: $location=~s://+:/:g; # remove duplicate /
1.46 www 1491: while ($location=~m:/\.\./:) {$location=~ s:/[^/]+/\.\./:/:g;} #remove dir/..
1492: return $location;
1493: }
1.36 albertel 1494:
1.46 www 1495: sub hreflocation {
1496: my ($dir,$file)=@_;
1497: unless (($_=~/^http:\/\//i) || ($_=~/^\//)) {
1498: my $finalpath=filelocation($dir,$file);
1499: $finalpath=~s/^\/home\/httpd\/html//;
1500: return $finalpath;
1501: } else {
1502: return $file;
1503: }
1.31 www 1504: }
1505:
1506: # ------------------------------------------------------------- Declutters URLs
1507:
1508: sub declutter {
1509: my $thisfn=shift;
1510: $thisfn=~s/^$perlvar{'lonDocRoot'}//;
1511: $thisfn=~s/^\///;
1512: $thisfn=~s/^res\///;
1513: return $thisfn;
1.12 www 1514: }
1515:
1516: # -------------------------------------------------------- Escape Special Chars
1517:
1518: sub escape {
1519: my $str=shift;
1520: $str =~ s/(\W)/"%".unpack('H2',$1)/eg;
1521: return $str;
1522: }
1523:
1524: # ----------------------------------------------------- Un-Escape Special Chars
1525:
1526: sub unescape {
1527: my $str=shift;
1528: $str =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C",hex($1))/eg;
1529: return $str;
1530: }
1.11 www 1531:
1.1 albertel 1532: # ================================================================ Main Program
1533:
1534: sub BEGIN {
1535: if ($readit ne 'done') {
1536: # ------------------------------------------------------------ Read access.conf
1537: {
1538: my $config=Apache::File->new("/etc/httpd/conf/access.conf");
1539:
1540: while (my $configline=<$config>) {
1541: if ($configline =~ /PerlSetVar/) {
1542: my ($dummy,$varname,$varvalue)=split(/\s+/,$configline);
1.8 www 1543: chomp($varvalue);
1.1 albertel 1544: $perlvar{$varname}=$varvalue;
1545: }
1546: }
1547: }
1548:
1549: # ------------------------------------------------------------- Read hosts file
1550: {
1551: my $config=Apache::File->new("$perlvar{'lonTabDir'}/hosts.tab");
1552:
1553: while (my $configline=<$config>) {
1554: my ($id,$domain,$role,$name,$ip)=split(/:/,$configline);
1555: $hostname{$id}=$name;
1556: $hostdom{$id}=$domain;
1557: if ($role eq 'library') { $libserv{$id}=$name; }
1558: }
1559: }
1560:
1561: # ------------------------------------------------------ Read spare server file
1562: {
1563: my $config=Apache::File->new("$perlvar{'lonTabDir'}/spare.tab");
1564:
1565: while (my $configline=<$config>) {
1566: chomp($configline);
1567: if (($configline) && ($configline ne $perlvar{'lonHostID'})) {
1568: $spareid{$configline}=1;
1569: }
1570: }
1571: }
1.11 www 1572: # ------------------------------------------------------------ Read permissions
1573: {
1574: my $config=Apache::File->new("$perlvar{'lonTabDir'}/roles.tab");
1575:
1576: while (my $configline=<$config>) {
1577: chomp($configline);
1578: my ($role,$perm)=split(/ /,$configline);
1579: if ($perm ne '') { $pr{$role}=$perm; }
1580: }
1581: }
1582:
1583: # -------------------------------------------- Read plain texts for permissions
1584: {
1585: my $config=Apache::File->new("$perlvar{'lonTabDir'}/rolesplain.tab");
1586:
1587: while (my $configline=<$config>) {
1588: chomp($configline);
1589: my ($short,$plain)=split(/:/,$configline);
1590: if ($plain ne '') { $prp{$short}=$plain; }
1.25 www 1591: }
1592: }
1593:
1594: # ------------------------------------------------------------- Read file types
1595: {
1596: my $config=Apache::File->new("$perlvar{'lonTabDir'}/filetypes.tab");
1597:
1598: while (my $configline=<$config>) {
1599: chomp($configline);
1600: my ($ending,$emb,@descr)=split(/\s+/,$configline);
1601: if ($descr[0] ne '') {
1602: $fe{$ending}=$emb;
1603: $fd{$ending}=join(' ',@descr);
1604: }
1.11 www 1605: }
1606: }
1607:
1.22 www 1608:
1.1 albertel 1609: $readit='done';
1.12 www 1610: &logthis('<font color=yellow>INFO: Read configuration</font>');
1.1 albertel 1611: }
1612: }
1613: 1;
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/back.gif){kind=icon}
Return to lonnet.pm CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [LON-CAPA] / loncom / lonnet / perl