--- loncom/auth/lonacc.pm 2014/03/10 02:07:01 1.154 +++ loncom/auth/lonacc.pm 2014/05/17 21:43:55 1.156 @@ -1,7 +1,7 @@ # The LearningOnline Network # Cookie Based Access Handler # -# $Id: lonacc.pm,v 1.154 2014/03/10 02:07:01 raeburn Exp $ +# $Id: lonacc.pm,v 1.156 2014/05/17 21:43:55 raeburn Exp $ # # Copyright Michigan State University Board of Trustees # @@ -283,7 +283,7 @@ sub sso_login { my ($r,$handle,$username) = @_; my $lonidsdir=$r->dir_config('lonIDsDir'); - if (($r->user eq '') || ($username ne '') || + if (($r->user eq '') || ($username ne '') || ($r->user eq 'public:public') || (defined($env{'user.name'}) && (defined($env{'user.domain'})) && ($handle ne ''))) { # not an SSO case or already logged in @@ -386,10 +386,8 @@ sub sso_login { $r->set_handlers('PerlHandler'=> undef); } return OK; - } elsif (defined($r->dir_config('lonSSOUserUnknownRedirect'))) { + } else { &Apache::lonnet::logthis(" SSO authorized unknown user $user "); - $r->subprocess_env->set('SSOUserUnknown' => $user); - $r->subprocess_env->set('SSOUserDomain' => $domain); my @cancreate; my %domconfig = &Apache::lonnet::get_dom('configuration',['usercreation'],$domain); @@ -403,15 +401,18 @@ sub sso_login { } } } - if (grep(/^sso$/,@cancreate)) { - $r->set_handlers('PerlHandler'=> - [\&Apache::createaccount::handler]); - $r->handler('perl-script'); - } else { - $r->internal_redirect($r->dir_config('lonSSOUserUnknownRedirect')); - $r->set_handlers('PerlHandler'=> undef); + if ((grep(/^sso$/,@cancreate)) || (defined($r->dir_config('lonSSOUserUnknownRedirect')))) { + $r->subprocess_env->set('SSOUserUnknown' => $user); + $r->subprocess_env->set('SSOUserDomain' => $domain); + if (grep(/^sso$/,@cancreate)) { + $r->set_handlers('PerlHandler'=> [\&Apache::createaccount::handler]); + $r->handler('perl-script'); + } else { + $r->internal_redirect($r->dir_config('lonSSOUserUnknownRedirect')); + $r->set_handlers('PerlHandler'=> undef); + } + return OK; } - return OK; } return undef; }