Return to lonlogin.pm CVS log

Up to [LON-CAPA] / loncom / auth

Diff for /loncom/auth/lonlogin.pm between versions 1.101 and 1.178

-version 1.101, 2008/02/24 23:18:37
+version 1.178, 2018/12/27 18:14:38
  Line 1
  # The LearningOnline Network
  # Login Screen
  #
  # $Id$
  #
  # Copyright Michigan State University Board of Trustees
  #
  # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
  #
  # LON-CAPA is free software; you can redistribute it and/or modify
  # it under the terms of the GNU General Public License as published by
  # the Free Software Foundation; either version 2 of the License, or
  # (at your option) any later version.
  #
  # LON-CAPA is distributed in the hope that it will be useful,
  # but WITHOUT ANY WARRANTY; without even the implied warranty of
  # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  # GNU General Public License for more details.
  #
  # You should have received a copy of the GNU General Public License
  # along with LON-CAPA; if not, write to the Free Software
  # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
  #
  # /home/httpd/html/adm/gpl.txt
  #
  # http://www.lon-capa.org/
  #
  package Apache::lonlogin;
  use strict;
  use Apache::Constants qw(:common);
  use Apache::File ();
  use Apache::lonnet;
  use Apache::loncommon();
  use Apache::lonauth();
  use Apache::lonlocal;
  use Apache::migrateuser();
  use lib '/home/httpd/lib/perl/';
- use LONCAPA;
+ use LONCAPA qw(:DEFAULT :match);
+ use CGI::Cookie();
- sub handler {
-     my $r = shift;
+ sub handler {
+     my $r = shift;
-     &Apache::loncommon::get_unprocessed_cgi
- 	(join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'},
+     &Apache::loncommon::get_unprocessed_cgi
- 	      $ENV{'REDIRECT_QUERY_STRING'}),
+ 	(join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'},
- 	 ['interface','username','domain','firsturl','localpath','localres',
+ 	      $ENV{'REDIRECT_QUERY_STRING'}),
- 	  'token']);
+ 	 ['interface','username','domain','firsturl','localpath','localres',
+ 	  'token','role','symb','iptoken','btoken','ltoken']);
- # -- check if they are a migrating user
+     if (!defined($env{'form.firsturl'})) {
-     if (defined($env{'form.token'})) {
+         &Apache::lonacc::get_posted_cgi($r,['firsturl']);
- 	return &Apache::migrateuser::handler($r);
+     }
-     }
+     if (!defined($env{'form.firsturl'})) {
+         if ($ENV{'REDIRECT_URL'} =~ m{^/+tiny/+$LONCAPA::match_domain/+\w+$}) {
-     &Apache::loncommon::no_cache($r);
+             $env{'form.firsturl'} = $ENV{'REDIRECT_URL'};
-     &Apache::lonlocal::get_language_handle($r);
+         }
-     &Apache::loncommon::content_type($r,'text/html');
+     }
-     $r->send_http_header;
-     return OK if $r->header_only;
+ # -- check if they are a migrating user
+     if (defined($env{'form.token'})) {
+ 	return &Apache::migrateuser::handler($r);
- # Are we re-routing?
+     }
-     if (-e '/home/httpd/html/lon-status/reroute.txt') {
- 	&Apache::lonauth::reroute($r);
+ # For "public user" - remove any exising "public" cookie, as user really wants to log-in
- 	return OK;
+     my ($handle,$lonidsdir,$expirepub,$userdom);
-     }
+     $lonidsdir=$r->dir_config('lonIDsDir');
+     unless ($r->header_only) {
+         $handle = &Apache::lonnet::check_for_valid_session($r,'lonID',undef,\$userdom);
- # -------------------------------- Prevent users from attempting to login twice
+         if ($handle ne '') {
-     my $handle = &Apache::lonnet::check_for_valid_session($r);
+             if ($handle=~/^publicuser\_/) {
-     if ($handle=~/^publicuser\_/) {
+                 unlink($r->dir_config('lonIDsDir')."/$handle.id");
- # For "public user" - remove it, we apparently really want to login
+                 undef($handle);
- 	unlink($r->dir_config('lonIDsDir')."/$handle.id");
+                 undef($userdom);
-     } elsif ($handle ne '') {
+                 $expirepub = 1;
- # Indeed, a valid token is found
+             }
- 	my $start_page =
+         }
- 	    &Apache::loncommon::start_page('Already logged in');
+     }
- 	my $end_page =
- 	    &Apache::loncommon::end_page();
+     &Apache::loncommon::no_cache($r);
- 	$r->print(
+     &Apache::lonlocal::get_language_handle($r);
-                   $start_page
+     &Apache::loncommon::content_type($r,'text/html');
-                  .'<h1>'.&mt('You are already logged in').'</h1>'
+     if ($expirepub) {
-                  .'<p>'.&mt('Please either [_1]continue the current session[_2] or [_3]logout[_4].',
+         my $c = new CGI::Cookie(-name    => 'lonPubID',
-                   '<a href="/adm/roles">','</a>','<a href="/adm/logout">','</a>').'</p>'
+                                 -value   => '',
-                  .'<p><a href="/adm/loginproblems.html">'.&mt('Login problems?').'</a></p>'
+                                 -expires => '-10y',);
-                  .$end_page
+         $r->header_out('Set-cookie' => $c);
-                  );
+     } elsif (($handle eq '') && ($userdom ne '')) {
-         return OK;
+         my %cookies=CGI::Cookie->parse($r->header_in('Cookie'));
-     }
+         foreach my $name (keys(%cookies)) {
+             next unless ($name =~ /^lon(|S|Link|Pub)ID$/);
- # ---------------------------------------------------- No valid token, continue
+             my $c = new CGI::Cookie(-name    => $name,
+                                     -value   => '',
-  # ---------------------------- Not possible to really login to domain "public"
+                                     -expires => '-10y',);
-     if ($env{'form.domain'} eq 'public') {
+             $r->headers_out->add('Set-cookie' => $c);
- 	$env{'form.domain'}='';
+         }
- 	$env{'form.username'}='';
+     }
-     }
+     $r->send_http_header;
- # ----------------------------------------------------------- Process Interface
+     return OK if $r->header_only;
-     $env{'form.interface'}=~s/\W//g;
-     my $textbrowsers=$r->dir_config('lonTextBrowsers');
+ # Are we re-routing?
-     my $httpbrowser=$ENV{"HTTP_USER_AGENT"};
+     my $londocroot = $r->dir_config('lonDocRoot');
+     if (-e "$londocroot/lon-status/reroute.txt") {
-     foreach (split(/\:/,$textbrowsers)) {
+ 	&Apache::lonauth::reroute($r);
- 	if ($httpbrowser=~/$_/i) {
+ 	return OK;
- 	    $env{'form.interface'}='textual';
+     }
-         }
-     }
+     my $lonhost = $r->dir_config('lonHostID');
+     $env{'form.firsturl'} =~ s/(`)/'/g;
-     my $fullgraph=($env{'form.interface'} ne 'textual');
+ # Check if browser sent a LON-CAPA load balancer cookie (and this is a balancer)
-     my $iconpath=
- 	&Apache::loncommon::lonhttpdurl($r->dir_config('lonIconsURL'));
+     my ($found_server,$balancer_cookie) = &Apache::lonnet::check_for_balancer_cookie($r,1);
+     if ($found_server) {
-     my $domain = &Apache::lonnet::default_login_domain();
+         my $hostname = &Apache::lonnet::hostname($found_server);
-     if (($env{'form.domain'}) &&
+         if ($hostname ne '') {
- 	(&Apache::lonnet::domain($env{'form.domain'},'description'))) {
+             my $protocol = $Apache::lonnet::protocol{$found_server};
- 	$domain=$env{'form.domain'};
+             $protocol = 'http' if ($protocol ne 'https');
-     }
+             my $dest = '/adm/roles';
-     my $role    = $r->dir_config('lonRole');
+             if ($env{'form.firsturl'} ne '') {
-     my $loadlim = $r->dir_config('lonLoadLim');
+                 $dest = $env{'form.firsturl'};
-     my $servadm = $r->dir_config('lonAdmEMail');
+             }
-     my $lonhost = $r->dir_config('lonHostID');
+             my %info = (
-     my $tabdir  = $r->dir_config('lonTabDir');
+                          balcookie => $lonhost.':'.$balancer_cookie,
-     my $include = $r->dir_config('lonIncludes');
+                        );
-     my $expire  = $r->dir_config('lonExpire');
+             if ($env{'form.ltoken'}) {
-     my $version = $r->dir_config('lonVersion');
+                 my %link_info = &Apache::lonnet::tmpget($env{'form.ltoken'});
-     my $host_name = &Apache::lonnet::hostname($lonhost);
+                 if ($link_info{'linkprot'}) {
+                     $info{'linkprot'} = $link_info{'linkprot'};
- # --------------------------------------------- Default values for login fields
+                 }
+                 &Apache::lonnet::tmpdel($env{'form.ltoken'});
-     my $authusername=($env{'form.username'}?$env{'form.username'}:'');
+                 delete($env{'form.ltoken'});
-     my $authdomain=($env{'form.domain'}?$env{'form.domain'}:$domain);
+             }
+             my $balancer_token = &Apache::lonnet::tmpput(\%info,$found_server);
- # ---------------------------------------------------------- Determine own load
+             if ($balancer_token) {
-     my $loadavg;
+                 $dest .=  (($dest=~/\?/)?'&;':'?') . 'btoken='.$balancer_token;
-     {
+             }
- 	my $loadfile=Apache::File->new('/proc/loadavg');
+             my $url = $protocol.'://'.$hostname.$dest;
- 	$loadavg=<$loadfile>;
+             my $start_page =
-     }
+                 &Apache::loncommon::start_page('Switching Server ...',undef,
-     $loadavg =~ s/\s.*//g;
+                                                {'redirect'       => [0,$url],});
-     my $loadpercent=sprintf("%.1f",100*$loadavg/$loadlim);
+             my $end_page   = &Apache::loncommon::end_page();
-     my $userloadpercent=&Apache::lonnet::userload();
+             $r->print($start_page.$end_page);
+             return OK;
- # ------------------------------------------------------- Do the load balancing
+         }
-     my $otherserver= &Apache::lonnet::absolute_url($host_name);
+     }
-     my $firsturl=
-     ($env{'request.firsturl'}?$env{'request.firsturl'}:$env{'form.firsturl'});
+ #
- # ---------------------------------------------------------- Are we overloaded?
+ # Check if a LON-CAPA load balancer sent user here because user's browser sent
-     if ((($userloadpercent>100.0)||($loadpercent>100.0))) {
+ # it a balancer cookie for an active session on this server.
-         my $unloaded=Apache::lonnet::spareserver($loadpercent,$userloadpercent);
+ #
- 	if ($unloaded) { $otherserver=$unloaded; }
-     }
+     my ($balcookie,$linkprot);
+     if ($env{'form.btoken'}) {
- # ----------------------------------------------------------- Get announcements
+         my %info = &Apache::lonnet::tmpget($env{'form.btoken'});
-     my $announcements=&Apache::lonnet::getannounce();
+         $balcookie = $info{'balcookie'};
- # -------------------------------------------------------- Set login parameters
+         if ($balcookie) {
+             if ($info{'linkprot'}) {
-     my @hexstr=('0','1','2','3','4','5','6','7',
+                 $linkprot = $info{'linkprot'};
-                 '8','9','a','b','c','d','e','f');
+             }
-     my $lkey='';
+         }
-     for (0..7) {
+         &Apache::lonnet::tmpdel($env{'form.btoken'});
-         $lkey.=$hexstr[rand(15)];
+         delete($env{'form.btoken'});
      }
-     my $ukey='';
+ #
-     for (0..7) {
+ # If browser sent an old cookie for which the session file had been removed
-         $ukey.=$hexstr[rand(15)];
+ # check if configuration for user's domain has a portal URL set.  If so
-     }
+ # switch user's log-in to the portal.
+ #
-     my $lextkey=hex($lkey);
-     if ($lextkey>2147483647) { $lextkey-=4294967296; }
+     if (($handle eq '') && ($userdom ne '')) {
+         my %domdefaults = &Apache::lonnet::get_domain_defaults($userdom);
-     my $uextkey=hex($ukey);
+         if ($domdefaults{'portal_def'} =~ /^https?\:/) {
-     if ($uextkey>2147483647) { $uextkey-=4294967296; }
+             my $start_page = &Apache::loncommon::start_page('Switching Server ...',undef,
+                                           {'redirect' => [0,$domdefaults{'portal_def'}],});
- # -------------------------------------------------------- Store away log token
+             my $end_page   = &Apache::loncommon::end_page();
-     my $logtoken=Apache::lonnet::reply(
+             $r->print($start_page.$end_page);
-        'tmpput:'.$ukey.$lkey.'&'.$firsturl,
+             return OK;
-        $lonhost);
+         }
+     }
- # ------------------- If we cannot talk to ourselves, we are in serious trouble
+ # -------------------------------- Prevent users from attempting to login twice
-     if ($logtoken eq 'con_lost') {
+     if ($handle ne '') {
-         my $spares='';
+         &Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle);
- 	my $last;
+ 	my $start_page =
-         foreach my $hostid (sort
+ 	    &Apache::loncommon::start_page('Already logged in');
- 			    {
+ 	my $end_page =
- 				&Apache::lonnet::hostname($a) cmp
+ 	    &Apache::loncommon::end_page();
- 				    &Apache::lonnet::hostname($b);
+         my $dest = '/adm/roles';
- 			    }
+         if ($env{'form.firsturl'} ne '') {
- 			    keys(%Apache::lonnet::spareid)) {
+             $dest = $env{'form.firsturl'};
-             next if ($hostid eq $lonhost);
+         }
- 	    my $hostname = &Apache::lonnet::hostname($hostid);
+         if (($env{'form.ltoken'}) || ($linkprot)) {
- 	    next if ($last eq $hostname);
+             unless ($linkprot) {
-             $spares.='<br /><font size="+1"><a href="http://'.
+                 my %info = &Apache::lonnet::tmpget($env{'form.ltoken'});
-                 $hostname.
+                 $linkprot = $info{'linkprot'};
-                 '/adm/login?domain='.$authdomain.'">'.
+                 my $delete = &Apache::lonnet::tmpdel($env{'form.ltoken'});
-                 $hostname.'</a>'.
+                 delete($env{'form.ltoken'});
-                 ' (preferred)</font>'.$/;
+             }
- 	    $last=$hostname;
+             if ($linkprot) {
-         }
+                 my ($linkprotector,$deeplink) = split(/:/,$linkprot,2);
-         $spares.= '<br />';
+                 if ($env{'user.linkprotector'}) {
- 	my %all_hostnames = &Apache::lonnet::all_hostnames();
+                     my @protectors = split(/,/,$env{'user.linkprotector'});
-         foreach my $hostid (sort
+                     unless (grep(/^\Q$linkprotector\E$/,@protectors)) {
- 			    {
+                         push(@protectors,$linkprotector);
- 				&Apache::lonnet::hostname($a) cmp
+                         @protectors = sort { $a <=> $b } @protectors;
- 				    &Apache::lonnet::hostname($b);
+                         &Apache::lonnet::appenv({'user.linkprotector' => join(',',@protectors)});
- 			    }
+                     }
- 			    keys(%all_hostnames)) {
+                 } else {
-             next if ($hostid eq $lonhost || $Apache::lonnet::spareid{$hostid});
+                     &Apache::lonnet::appenv({'user.linkprotector' => $linkprotector });
- 	    my $hostname = &Apache::lonnet::hostname($hostid);
+                 }
-             next if ($last eq $hostname);
+                 if ($env{'user.linkproturi'}) {
-             $spares.='<br /><a href="http://'.
+                     my @proturis = split(/,/,$env{'user.linkproturi'});
-                 $hostname.
+                     unless(grep(/^\Q$deeplink\E$/,@proturis)) {
-                 '/adm/login?domain='.$authdomain.'">'.
+                         push(@proturis,$deeplink);
-                 $hostname.'</a>';
+                         @proturis = sort @proturis;
- 	    $last=$hostname;
+                         &Apache::lonnet::appenv({'user.linkproturi' => join(',',@proturis)});
-         }
+                     }
- 	$r->print(<<ENDTROUBLE);
+                 } else {
- <html>
+                     &Apache::lonnet::appenv({'user.linkproturi' => $deeplink});
- <head><title>The LearningOnline Network with CAPA</title></head>
+                 }
- <body bgcolor="#FFFFFF">
+             }
- <img src="/adm/lonKaputt/lonlogo_broken.gif" align="right" />
+         }
- <h3>This LON-CAPA server is temporarily not available for login</h3>
+ 	$r->print(
- <p>Please attempt to login to one of the following servers:</p>$spares
+                   $start_page
- </body>
+                  .'<p class="LC_warning">'.&mt('You are already logged in!').'</p>'
- </html>
+                  .'<p>'.&mt('Please either [_1]continue the current session[_2] or [_3]log out[_4].',
- ENDTROUBLE
+                   '<a href="'.$dest.'">','</a>','<a href="/adm/logout">','</a>').'</p>'
-         return OK;
+                  .$end_page
-     }
+                  );
+         return OK;
- # ----------------------------------------------- Apparently we are in business
+     }
-     $servadm=~s/\,/\<br \/\>/g;
+ # ---------------------------------------------------- No valid token, continue
- # ----------------------------------------------------------- Front page design
-     my $pgbg=
+ # ---------------------------- Not possible to really login to domain "public"
-       ($fullgraph?&Apache::loncommon::designparm('login.pgbg',$domain):'#FFFFFF');
+     if ($env{'form.domain'} eq 'public') {
-     my $font=
+ 	$env{'form.domain'}='';
-       ($fullgraph?&Apache::loncommon::designparm('login.font',$domain):'#000000');
+ 	$env{'form.username'}='';
-     my $link=
+     }
-       ($fullgraph?&Apache::loncommon::designparm('login.link',$domain):'#0000FF');
-     my $vlink=
+ # ------ Is this page requested because /adm/migrateuser detected an IP change?
-       ($fullgraph?&Apache::loncommon::designparm('login.vlink',$domain):'#0000FF');
+     my %sessiondata;
-     my $alink=&Apache::loncommon::designparm('login.alink',$domain);
+     if ($env{'form.iptoken'}) {
-     my $mainbg=
+         %sessiondata = &Apache::lonnet::tmpget($env{'form.iptoken'});
-       ($fullgraph?&Apache::loncommon::designparm('login.mainbg',$domain):'#FFFFFF');
+         unless ($sessiondata{'sessionserver'}) {
-     my $sidebg=
+             my $delete = &Apache::lonnet::tmpdel($env{'form.iptoken'});
-       ($fullgraph?&Apache::loncommon::designparm('login.sidebg',$domain):'#FFFFFF');
+             delete($env{'form.iptoken'});
-     my $textcol =
+         }
-       ($fullgraph?&Apache::loncommon::designparm('login.textcol',$domain):'#000000');
+     }
-     my $bgcol =
+ # ----------------------------------------------------------- Process Interface
-       ($fullgraph?&Apache::loncommon::designparm('login.bgcol',$domain):'#FFFFFF');
+     $env{'form.interface'}=~s/\W//g;
-     my $logo=&Apache::loncommon::designparm('login.logo',$domain);
-     my $img=&Apache::loncommon::designparm('login.img',$domain);
+     (undef,undef,undef,undef,undef,undef,my $clientmobile) =
-     my $domainlogo=&Apache::loncommon::domainlogo($domain);
+         &Apache::loncommon::decode_user_agent();
-     my $login=&Apache::loncommon::designparm('login.login',$domain);
-     if ($login eq '') {
+     my $iconpath=
-         $login = $iconpath.'/'.&mt('userauthentication.gif');
+ 	&Apache::loncommon::lonhttpdurl($r->dir_config('lonIconsURL'));
-     }
-     my $showadminmail=&Apache::loncommon::designparm('login.adminmail',$domain);
+     my $domain = &Apache::lonnet::default_login_domain();
-     my $showcoursecat =
+     my $defdom = $domain;
-         &Apache::loncommon::designparm('login.coursecatalog',$domain);
+     if ($lonhost ne '') {
-     my $loginheader =&Apache::loncommon::designparm('login.loginheader',$domain);
+         unless ($sessiondata{'sessionserver'}) {
-     my $shownewuserlink =
+             my $redirect = &check_loginvia($domain,$lonhost,$lonidsdir,$balcookie,$linkprot);
-         &Apache::loncommon::designparm('login.newuser',$domain);
+             if ($redirect) {
-     my $now=time;
+                 $r->print($redirect);
-     my $js = (<<ENDSCRIPT);
+                 return OK;
+             }
-  <script language="JavaScript">
+         }
-     function send()
+     }
-     {
-         this.document.server.elements.uname.value
+     if (($sessiondata{'domain'}) &&
-        =this.document.client.elements.uname.value;
+         (&Apache::lonnet::domain($sessiondata{'domain'},'description'))) {
+         $domain=$sessiondata{'domain'};
-         this.document.server.elements.udom.value
+     } elsif (($env{'form.domain'}) &&
-        =this.document.client.elements.udom.value;
+ 	(&Apache::lonnet::domain($env{'form.domain'},'description'))) {
+ 	$domain=$env{'form.domain'};
-         this.document.server.elements.imagesuppress.value
+     }
-        =this.document.client.elements.imagesuppress.checked;
+     my $role    = $r->dir_config('lonRole');
-         this.document.server.elements.embedsuppress.value
+     my $loadlim = $r->dir_config('lonLoadLim');
-        =this.document.client.elements.embedsuppress.checked;
+     my $uloadlim= $r->dir_config('lonUserLoadLim');
+     my $servadm = $r->dir_config('lonAdmEMail');
-         this.document.server.elements.appletsuppress.value
+     my $tabdir  = $r->dir_config('lonTabDir');
-        =this.document.client.elements.appletsuppress.checked;
+     my $include = $r->dir_config('lonIncludes');
+     my $expire  = $r->dir_config('lonExpire');
-         this.document.server.elements.fontenhance.value
+     my $version = $r->dir_config('lonVersion');
-        =this.document.client.elements.fontenhance.checked;
+     my $host_name = &Apache::lonnet::hostname($lonhost);
-         this.document.server.elements.blackwhite.value
+ # --------------------------------------------- Default values for login fields
-        =this.document.client.elements.blackwhite.checked;
+     my ($authusername,$authdomain);
-         this.document.server.elements.remember.value
+     if ($sessiondata{'username'}) {
-        =this.document.client.elements.remember.checked;
+         $authusername=$sessiondata{'username'};
+     } else {
-         uextkey=this.document.client.elements.uextkey.value;
+         $env{'form.username'} = &Apache::loncommon::cleanup_html($env{'form.username'});
-         lextkey=this.document.client.elements.lextkey.value;
+         $authusername=($env{'form.username'}?$env{'form.username'}:'');
-         initkeys();
+     }
+     if ($sessiondata{'domain'}) {
-         this.document.server.elements.upass0.value
+         $authdomain=$sessiondata{'domain'};
-             =crypted(this.document.client.elements.upass$now.value.substr(0,15));
+     } else {
-         this.document.server.elements.upass1.value
+         $env{'form.domain'} = &Apache::loncommon::cleanup_html($env{'form.domain'});
-             =crypted(this.document.client.elements.upass$now.value.substr(15,15));
+         $authdomain=($env{'form.domain'}?$env{'form.domain'}:$domain);
-         this.document.server.elements.upass2.value
+     }
-             =crypted(this.document.client.elements.upass$now.value.substr(30,15));
+ # ---------------------------------------------------------- Determine own load
-         this.document.client.elements.uname.value='';
+     my $loadavg;
-         this.document.client.elements.upass$now.value='';
+     {
+ 	my $loadfile=Apache::File->new('/proc/loadavg');
-         this.document.server.submit();
+ 	$loadavg=<$loadfile>;
-         return false;
+     }
-     }
+     $loadavg =~ s/\s.*//g;
-  </script>
+     my ($loadpercent,$userloadpercent);
- ENDSCRIPT
+     if ($loadlim) {
+         $loadpercent=sprintf("%.1f",100*$loadavg/$loadlim);
- # --------------------------------------------------- Print login screen header
+     }
+     if ($uloadlim) {
-     my %add_entries = (topmargin    => "0",
+         $userloadpercent=&Apache::lonnet::userload();
-                        leftmargin   => "0",
+     }
-                        marginheight => "0",
-                        marginwidth  => "0",
+     my $firsturl=
-                        bgcolor      => "$pgbg",
+     ($env{'request.firsturl'}?$env{'request.firsturl'}:$env{'form.firsturl'});
-                        text         => "$font",
-                        link         => "$link",
+ # ----------------------------------------------------------- Get announcements
-                        vlink        => "$vlink",
+     my $announcements=&Apache::lonnet::getannounce();
-                        alink        => "$alink",);
+ # -------------------------------------------------------- Set login parameters
-     $r->print(&Apache::loncommon::start_page('The LearningOnline Network with CAPA Login',$js,
+     my @hexstr=('0','1','2','3','4','5','6','7',
-                                        { 'redirect'       => [$expire,'/adm/roles'],
+                 '8','9','a','b','c','d','e','f');
-                                          'add_entries' => \%add_entries,
+     my $lkey='';
-                                          'only_body'   => 1,}));
+     for (0..7) {
+         $lkey.=$hexstr[rand(15)];
- # ----------------------------------------------------------------------- Texts
+     }
- my %lt=&Apache::lonlocal::texthash(
+     my $ukey='';
- 		  'un'  => 'Username',
+     for (0..7) {
- 		  'pw'  => 'Password',
+         $ukey.=$hexstr[rand(15)];
- 		  'dom' => 'Domain',
+     }
- 		  'perc' => 'percent',
- 		  'load' => 'Load',
+     my $lextkey=hex($lkey);
-                   'userload' => 'User Load',
+     if ($lextkey>2147483647) { $lextkey-=4294967296; }
-                   'about'  => 'About LON-CAPA',
-                   'access' => 'Accessibility Options',
+     my $uextkey=hex($ukey);
-                   'catalog' => 'Course Catalog',
+     if ($uextkey>2147483647) { $uextkey-=4294967296; }
- 		  'log' => 'Log in',
- 		  'help' => 'Log-in Help',
+ # -------------------------------------------------------- Store away log token
- 		  'serv' => 'Server',
+     my $tokenextras;
-                   'servadm' => 'Server Administration',
+     if ($env{'form.role'}) {
-                   'helpdesk' => 'Contact Helpdesk',
+         $tokenextras = '&role='.&escape($env{'form.role'});
-                   'forgotpw' => 'Forgot password?',
+     }
-                   'newuser'  => 'New User?',
+     if ($env{'form.symb'}) {
-                   'options_headline' => 'Select Accessibility Options',
+         if (!$tokenextras) {
-                   'sprs_img' => 'Suppress rendering of images',
+             $tokenextras = '&';
-                   'sprs_applet' => 'Suppress Java applets',
+         }
-                   'sprs_embed' => 'Suppress rendering of embedded multimedia',
+         $tokenextras .= '&symb='.&escape($env{'form.symb'});
-                   'sprs_font' => 'Increase font size',
+     }
-                   'sprs_blackwhite' => 'Switch to black and white mode',
+     if ($env{'form.iptoken'}) {
-                   'remember' => 'Remember these settings for next login');
+         if (!$tokenextras) {
- # -------------------------------------------------- Change password field name
+             $tokenextras = '&&';
-     my $forgotpw = &forgotpwdisplay(%lt);
+         }
-     my $loginhelp = &loginhelpdisplay(%lt);
+         $tokenextras .= '&iptoken='.&escape($env{'form.iptoken'});
+     }
- # ---------------------------------------------------- Serve out DES JavaScript
+     if ($env{'form.ltoken'}) {
-     {
+         my %info = &Apache::lonnet::tmpget($env{'form.ltoken'});
-         my $jsh=Apache::File->new($include."/londes.js");
+         &Apache::lonnet::tmpdel($env{'form.ltoken'});
-         $r->print(<$jsh>);
+         delete($env{'form.ltoken'});
-     }
+         if ($info{'linkprot'}) {
- # ---------------------------------------------------------- Serve rest of page
+             if (!$tokenextras) {
+                 $tokenextras = '&&&';
-     if ($fullgraph) {
+             }
- 	$r->print(
+             $tokenextras .= '&linkprot='.&escape($info{'linkprot'});
- 		  '<table width="100%" cellpadding=0 cellspacing=0 border=0>');
+         }
      }
+     my $logtoken=Apache::lonnet::reply(
-     $r->print(<<ENDSERVERFORM);
+        'tmpput:'.$ukey.$lkey.'&'.$firsturl.$tokenextras,
-   <form name="server" action="$otherserver/adm/authenticate" method="post" target="_top">
+        $lonhost);
-    <input type="hidden" name="logtoken" value="$logtoken" />
-    <input type="hidden" name="serverid" value="$lonhost" />
+ # -- If we cannot talk to ourselves, or hostID does not map to a hostname
-    <input type="hidden" name="interface" value="$env{'form.interface'}" />
+ #    we are in serious trouble
-    <input type="hidden" name="uname" value="" />
-    <input type="hidden" name="upass0" value="" />
+     if (($logtoken eq 'con_lost') || ($logtoken eq 'no_such_host')) {
-    <input type="hidden" name="upass1" value="" />
+         if ($logtoken eq 'no_such_host') {
-    <input type="hidden" name="upass2" value="" />
+             &Apache::lonnet::logthis('No valid logtoken for log-in page -- unable to determine hostname for hostID: '.$lonhost.'. Check entry in hosts.tab');
-    <input type="hidden" name="udom" value="" />
+         }
-    <input type="hidden" name="imagesuppress"  value="" />
+         my $spares='';
-    <input type="hidden" name="appletsuppress"  value="" />
+ 	my $last;
-    <input type="hidden" name="embedsuppress"  value="" />
+         foreach my $hostid (sort
-    <input type="hidden" name="fontenhance"  value="" />
+ 			    {
-    <input type="hidden" name="blackwhite"  value="" />
+ 				&Apache::lonnet::hostname($a) cmp
-    <input type="hidden" name="remember"  value="" />
+ 				    &Apache::lonnet::hostname($b);
-    <input type="hidden" name="localpath" value="$env{'form.localpath'}" />
+ 			    }
-    <input type="hidden" name="localres" value="$env{'form.localres'}" />
+ 			    keys(%Apache::lonnet::spareid)) {
-   </form>
+             next if ($hostid eq $lonhost);
- ENDSERVERFORM
+ 	    my $hostname = &Apache::lonnet::hostname($hostid);
-     my $coursecatalog;
+ 	    next if (($last eq $hostname) || ($hostname eq ''));
-     if (($showcoursecat eq '') || ($showcoursecat)) {
+             $spares.='<br /><font size="+1"><a href="http://'.
-         $coursecatalog = &coursecatalog_link($lt{'catalog'});
+                 $hostname.
-     }
+                 '/adm/login?domain='.$authdomain.'">'.
-     my $newuserlink;
+                 $hostname.'</a>'.
-     if ($shownewuserlink) {
+                 ' '.&mt('(preferred)').'</font>'.$/;
-         $newuserlink = &newuser_link($lt{'newuser'});
+ 	    $last=$hostname;
-     }
+         }
-     if ($fullgraph) { $r->print(<<ENDTOP);
+         if ($spares) {
-   <!-- The LON-CAPA Header -->
+             $spares.= '<br />';
-   <tr>
+         }
+         my %all_hostnames = &Apache::lonnet::all_hostnames();
-    <!-- Row 1 Columns 2-4 -->
+         foreach my $hostid (sort
-    <td width="100%" height=75 colspan=4 align="left" valign="top" bgcolor="$pgbg"><img src="$img" border=0 alt="The Learning Online Network with CAPA" /></td>
+ 		    {
-   </tr>
+ 			&Apache::lonnet::hostname($a) cmp
+ 			    &Apache::lonnet::hostname($b);
-   <!-- The gray bar that starts the two table frames -->
+ 		    }
-   <tr>
+ 		    keys(%all_hostnames)) {
+             next if ($hostid eq $lonhost || $Apache::lonnet::spareid{$hostid});
-    <!-- Row 2 Column 1 -->
+             my $hostname = &Apache::lonnet::hostname($hostid);
-    <td width=182 height=27 bgcolor="$sidebg">&nbsp;</td>
+             next if (($last eq $hostname) || ($hostname eq ''));
+             $spares.='<br /><a href="http://'.
-    <!-- Row 2 Column 2 -->
+ 	             $hostname.
-    <td width=27 height=27 align="left" background="$iconpath/filltop.gif"><img src="$iconpath/upperleft.gif" border=0 alt="" /></td>
+ 	             '/adm/login?domain='.$authdomain.'">'.
+ 	             $hostname.'</a>';
-    <!-- Row 2 Column 3 -->
+             $last=$hostname;
-    <td height=27 background="$iconpath/filltop.gif"><img src="$iconpath/filltop.gif" alt="" /></td>
+          }
+          $r->print(
-    <!-- Row 2 Column 4 -->
+    '<html>'
-    <td width=27 height=27 align="right" background="$iconpath/filltop.gif"><img src="$iconpath/upperright.gif" border=0 alt="" /></td>
+   .'<head><title>'
-   </tr>
+   .&mt('The LearningOnline Network with CAPA')
-   <tr>
+   .'</title></head>'
+   .'<body bgcolor="#FFFFFF">'
-    <!-- A cell that will hold the 'access', 'about', and 'catalog' links -->
+   .'<h1>'.&mt('The LearningOnline Network with CAPA').'</h1>'
-    <!-- Row 3 Column 1 -->
+   .'<img src="/adm/lonKaputt/lonlogo_broken.gif" align="right" />'
-    <td valign="top" height="60" align="left" bgcolor="$sidebg">
+   .'<h3>'.&mt('This LON-CAPA server is temporarily not available for login.').'</h3>');
-     <table cellpadding="0" cellspacing="2" border="0">
+         if ($spares) {
-      <tr>
+             $r->print('<p>'.&mt('Please attempt to login to one of the following servers:')
-       <td>&nbsp;</td>
+                      .'</p>'
-       <td><a href="/adm/login?interface=textual"><b>$lt{'access'}</b></a></td>
+                      .$spares);
-      </tr>
+         }
-      <tr>
+         $r->print('</body>'
-       <td>&nbsp;</td>
+                  .'</html>'
-       <td><a href="/adm/about.html"><b>$lt{'about'}</b></a></td>
+         );
-      </tr>$coursecatalog
+         return OK;
-      <tr>
+     }
-       <td colspan="2">&nbsp;</td>
-      </tr>
+ # ----------------------------------------------- Apparently we are in business
-     </table>
+     $servadm=~s/\,/\<br \/\>/g;
-    </td>
-    <!-- The shaded space between the two main columns -->
+ # ----------------------------------------------------------- Front page design
-    <!-- Row 3 Column 2 -->
+     my $pgbg=&Apache::loncommon::designparm('login.pgbg',$domain);
-    <td width=27 height=60 background="$iconpath/fillleft.gif"><img src="$iconpath/fillleft.gif" alt="" /></td>
+     my $font=&Apache::loncommon::designparm('login.font',$domain);
+     my $link=&Apache::loncommon::designparm('login.link',$domain);
-    <!-- The right main column holding the large LON-CAPA logo-->
+     my $vlink=&Apache::loncommon::designparm('login.vlink',$domain);
-    <!-- Rows 3-4 Column 3 -->
+     my $alink=&Apache::loncommon::designparm('login.alink',$domain);
-    <td align="center" valign="top" width="100%" height="100%" bgcolor="$mainbg">
+     my $mainbg=&Apache::loncommon::designparm('login.mainbg',$domain);
-     <center>
+     my $loginbox_bg=&Apache::loncommon::designparm('login.sidebg',$domain);
-      <img src="$logo" alt="" />
+     my $loginbox_header_bgcol=&Apache::loncommon::designparm('login.bgcol',$domain);
-     </center>
+     my $loginbox_header_textcol=&Apache::loncommon::designparm('login.textcol',$domain);
-    </td>
+     my $logo=&Apache::loncommon::designparm('login.logo',$domain);
+     my $img=&Apache::loncommon::designparm('login.img',$domain);
-    <!-- Row 3 Column 4 -->
+     my $domainlogo=&Apache::loncommon::domainlogo($domain);
-    <td width=27 background="$iconpath/fillright.gif"><img src="$iconpath/fillright.gif" alt="" /></td>
+     my $showbanner = 1;
-   </tr>
+     my $showmainlogo = 1;
-   <tr>
+     if (defined(&Apache::loncommon::designparm('login.showlogo_img',$domain))) {
+         $showbanner = &Apache::loncommon::designparm('login.showlogo_img',$domain);
-    <!-- The entry form -->
+     }
-    <!-- Row 4 Column 1 -->
+     if (defined(&Apache::loncommon::designparm('login.showlogo_logo',$domain))) {
-    <td align="center" valign="middle" bgcolor="$sidebg">
+         $showmainlogo = &Apache::loncommon::designparm('login.showlogo_logo',$domain);
- ENDTOP
+     }
- } else {
+     my $showadminmail;
-     $r->print('<h1>The Learning<i>Online</i> Network with CAPA</h1>'
+     my @possdoms = &Apache::lonnet::current_machine_domains();
-              .'<h2>'.&mt('Text-based Interface Login').'</h2>'
+     if (grep(/^\Q$domain\E$/,@possdoms)) {
-              .$announcements);
+         $showadminmail=&Apache::loncommon::designparm('login.adminmail',$domain);
- }
+     }
-     $r->print('<form name="client" onsubmit="return(send())">');
+     my $showcoursecat =
-     unless ($fullgraph) {
+         &Apache::loncommon::designparm('login.coursecatalog',$domain);
-         $r->print(<<ENDACCESSOPTIONS);
+     my $shownewuserlink =
- <h3>$lt{'options_headline'}</h3>
+         &Apache::loncommon::designparm('login.newuser',$domain);
- <label><input type="checkbox" name="imagesuppress" /> $lt{'sprs_img'}</label><br />
+     my $showhelpdesk =
- <label><input type="checkbox" name="appletsuppress" /> $lt{'sprs_applet'}</label><br />
+         &Apache::loncommon::designparm('login.helpdesk',$domain);
- <label><input type="checkbox" name="embedsuppress" /> $lt{'sprs_embed'}</label><br />
+     my $now=time;
- <label><input type="checkbox" name="fontenhance" /> $lt{'sprs_font'}</label><br />
+     my $js = (<<ENDSCRIPT);
- <label><input type="checkbox" name="blackwhite" /> $lt{'sprs_blackwhite'}</label><br />
- <br />
+ <script type="text/javascript" language="JavaScript">
- <input type="checkbox" name="remember" /> $lt{'remember'}<hr />
+ // <![CDATA[
- ENDACCESSOPTIONS
+ function send()
- } else {
+ {
-     $r->print(<<ENDNOOPT);
+ this.document.server.elements.uname.value
- <input type="hidden" name="imagesuppress"  value="" />
+ =this.document.client.elements.uname.value;
- <input type="hidden" name="embedsuppress"  value="" />
- <input type="hidden" name="appletsuppress"  value="" />
+ this.document.server.elements.udom.value
- <input type="hidden" name="fontenhance"  value="" />
+ =this.document.client.elements.udom.value;
- <input type="hidden" name="blackwhite"  value="" />
- <input type="hidden" name="remember"  value="" />
+ uextkey=this.document.client.elements.uextkey.value;
- ENDNOOPT
+ lextkey=this.document.client.elements.lextkey.value;
- }
+ initkeys();
-     my $logintitle;
-     if ($loginheader eq 'text') {
+ if(this.document.server.action.substr(0,5) === 'http:'){
-         $logintitle = '<td bgcolor="'.$bgcol.'" colspan="2">&nbsp;&nbsp;&nbsp;<b><font size="+1" color="'.$textcol.'">'.$lt{'log'}.'</font></b></td>';
+     this.document.server.elements.upass0.value
-     } else {
+         =getCrypted(this.document.client.elements.upass$now.value);
-         $logintitle = '<td bgcolor="'.$sidebg.'" colspan="2"><img src="'.$login.'" alt="'.
+ } else {
-                       &mt('User Authentication').'" /></td>';
+     this.document.server.elements.upass0.value
-     }
+         =this.document.client.elements.upass$now.value;
-     $r->print(<<ENDLOGIN);
+ }
-      <input type="hidden" name="lextkey" value="$lextkey">
-      <input type="hidden" name="uextkey" value="$uextkey">
+ this.document.client.elements.uname.value='';
+ this.document.client.elements.upass$now.value='';
-      <!-- Start the sub-table for text and input alignment -->
-      <table border=0 cellspacing=0 cellpadding=0>
+ this.document.server.submit();
-       <tr>$logintitle</tr>
+ return false;
-       <tr>
+ }
-        <td bgcolor="$mainbg"><br /><font size=-1><b>&nbsp;&nbsp;&nbsp;<label for="uname">$lt{'un'}</label>:</b></font></td>
-        <td bgcolor="$mainbg"><br /><input type="text" name="uname" size="10" value="$authusername" /></td>
+ function enableInput() {
-       </tr>
+     this.document.client.elements.upass$now.removeAttribute("readOnly");
-       <tr>
+     this.document.client.elements.uname.removeAttribute("readOnly");
-        <td bgcolor="$mainbg"><font size=-1><b>&nbsp;&nbsp;&nbsp;<label for="upass$now">$lt{'pw'}</label>:</b></font></td>
+     this.document.client.elements.udom.removeAttribute("readOnly");
-        <td bgcolor="$mainbg"><input type="password" name="upass$now" size="10" /></td>
+     return;
-       </tr>
+ }
-       <tr>
-        <td bgcolor="$mainbg"><font size=-1><b>&nbsp;&nbsp;&nbsp;<label for="udom">$lt{'dom'}</label>:</b></font></td>
+ // ]]>
-        <td bgcolor="$mainbg"><input type="text" name="udom" size="10" value="$authdomain" /></td>
+ </script>
-       </tr>
-       <tr>
+ ENDSCRIPT
-        <td bgcolor="$mainbg">&nbsp;</td>
-        <td bgcolor="$mainbg" valign="bottom" align="center">
+ # --------------------------------------------------- Print login screen header
-         <br />
-         <input type="submit" value="$lt{'log'}" />
+     my %add_entries = (
-        </td>
+ 	       bgcolor      => "$mainbg",
-       </tr>
+ 	       text         => "$font",
-       <tr>
+ 	       link         => "$link",
-        <td bgcolor="$mainbg" valign="bottom" align="left" colspan="2">
+ 	       vlink        => "$vlink",
-         $loginhelp
+ 	       alink        => "$alink",
-         $forgotpw
+                onload       => 'javascript:enableInput();',);
-         $newuserlink
-         <br />
+     my ($lonhost_in_use,$headextra,$headextra_exempt,@hosts,%defaultdomconf);
-        </td>
+     @hosts = &Apache::lonnet::current_machine_ids();
-       </tr>
+     $lonhost_in_use = $lonhost;
-      </table>
+     if (@hosts > 1) {
-      <!-- End sub-table -->
+         foreach my $hostid (@hosts) {
-     </form>
+             if (&Apache::lonnet::host_domain($hostid) eq $defdom) {
- ENDLOGIN
+                 $lonhost_in_use = $hostid;
-     if ($fullgraph) {
+                 last;
-         my $helpdeskscript;
+             }
-         my $contactblock = &contactdisplay(\%lt,$servadm,$showadminmail,
+         }
-                                   $version,$authdomain,\$helpdeskscript);
+     }
- 	$r->print(<<ENDDOCUMENT);
+     %defaultdomconf = &Apache::loncommon::get_domainconf($defdom);
-    </td>
+     $headextra = $defaultdomconf{$defdom.'.login.headtag_'.$lonhost_in_use};
+     $headextra_exempt = $defaultdomconf{$domain.'.login.headtag_exempt_'.$lonhost_in_use};
-    <!-- Row 4 Column 2 -->
+     if ($headextra) {
-    <td width=27 background="$iconpath/fillleft.gif"><img src="$iconpath/fillleft.gif" alt="" /></td>
+         my $omitextra;
+         if ($headextra_exempt ne '') {
-    <!-- Row 4 Column 3 -->
+             my @exempt = split(',',$headextra_exempt);
- <td bgcolor="$mainbg">$announcements</td>
+             my $ip = $ENV{'REMOTE_ADDR'};
+             if (grep(/^\Q$ip\E$/,@exempt)) {
-    <!-- Row 4 Column 4 -->
+                 $omitextra = 1;
-    <td width=27 background="$iconpath/fillright.gif"><img src="$iconpath/fillright.gif" alt="" /></td>
+             }
-   </tr>
+         }
-   <tr>
+         unless ($omitextra) {
+             my $confname = $defdom.'-domainconfig';
-    <!-- Row 5 Column 1 -->
+             if ($headextra =~ m{^\Q/res/$defdom/$confname/login/headtag/$lonhost_in_use/\E}) {
-    <td bgcolor="$sidebg" valign="middle" align="left">
+                 my $extra = &Apache::lonnet::getfile(&Apache::lonnet::filelocation("",$headextra));
-      <br />
+                 unless ($extra eq '-1') {
-      <table border=0 cellspacing=0 cellpadding=0>
+                     $js .= "\n".$extra."\n";
-       <tr>
+                 }
-        <td bgcolor="$sidebg" align="left" valign="top">
+             }
-         <small><b>&nbsp;&nbsp;&nbsp;$lt{'dom'}:&nbsp;</b></small>
+         }
-        </td>
+     }
-        <td bgcolor="$sidebg" align="left" valign="top">
-         <small><tt>&nbsp;$domain</tt></small>
+     $r->print(&Apache::loncommon::start_page('The LearningOnline Network with CAPA Login',$js,
-        </td>
+ 			       { 'redirect'       => [$expire,'/adm/roles'],
-       </tr>
+ 				 'add_entries' => \%add_entries,
-       <tr>
+ 				 'only_body'   => 1,}));
-        <td bgcolor="$sidebg" align="left" valign="top">
-         <small><b>&nbsp;&nbsp;&nbsp;$lt{'serv'}:&nbsp;</b></small>
+ # ----------------------------------------------------------------------- Texts
-        </td>
-        <td bgcolor="$sidebg" align="left" valign="top">
+     my %lt=&Apache::lonlocal::texthash(
-         <small><tt>&nbsp;$lonhost ($role)</tt></small>
+           'un'       => 'Username',
-        </td>
+           'pw'       => 'Password',
-       </tr>
+           'dom'      => 'Domain',
-       <tr>
+           'perc'     => 'percent',
-        <td bgcolor="$sidebg" align="left" valign="top">
+           'load'     => 'Server Load',
-         <small><b>&nbsp;&nbsp;&nbsp;$lt{'load'}:&nbsp;</b></small>
+           'userload' => 'User Load',
-        </td>
+           'catalog'  => 'Course/Community Catalog',
-        <td bgcolor="$sidebg" align="left" valign="top">
+           'log'      => 'Log in',
-         <small><tt>&nbsp;$loadpercent $lt{'perc'}</tt></small>
+           'help'     => 'Log-in Help',
-        </td>
+           'serv'     => 'Server',
-       </tr>
+           'servadm'  => 'Server Administration',
-       <tr>
+           'helpdesk' => 'Contact Helpdesk',
-        <td bgcolor="$sidebg" align="left" valign="top">
+           'forgotpw' => 'Forgot password?',
-         <small><b>&nbsp;&nbsp;&nbsp;$lt{'userload'}:&nbsp;</b></small>
+           'newuser'  => 'New User?',
-        </td>
+        );
-        <td bgcolor="$sidebg" align="left" valign="top">
+ # -------------------------------------------------- Change password field name
-         <small><tt>&nbsp;$userloadpercent $lt{'perc'}</tt></small>
-        </td>
+     my $forgotpw = &forgotpwdisplay(%lt);
-       </tr>
+     $forgotpw .= '<br />' if $forgotpw;
-      </table>
+     my $loginhelp = &Apache::lonauth::loginhelpdisplay($authdomain);
-      <br />
+     if ($loginhelp) {
-     $contactblock
+         $loginhelp = '<a href="'.$loginhelp.'">'.$lt{'help'}.'</a><br />';
-    </td>
+     }
-    <!-- Row 5 Column 2 -->
+ # ---------------------------------------------------- Serve out DES JavaScript
-    <td width=27 background="$iconpath/fillleft.gif"><img src="$iconpath/fillleft.gif" alt="" /></td>
+     {
+     my $jsh=Apache::File->new($include."/londes.js");
-    <!-- Row 5 Column 3 -->
+     $r->print(<$jsh>);
-    <td width="100%" valign="bottom" bgcolor="$mainbg">
+     }
- $domainlogo
+ # ---------------------------------------------------------- Serve rest of page
- </td>
+     $r->print(
-    <!-- Row 5 Column 4 -->
+     '<div class="LC_Box"'
-    <td width=27 background="$iconpath/fillright.gif"><img src="$iconpath/fillright.gif" alt="" /></td>
+    .' style="margin:0 auto; padding:10px; width:90%; height: auto; background-color:#FFFFFF;">'
-   </tr>
+ );
-   <tr>
+     $r->print(<<ENDSERVERFORM);
-    <!-- Row 6 Column 1 -->
+ <form name="server" action="/adm/authenticate" method="post" target="_top">
-    <td bgcolor="$sidebg">&nbsp;</td>
+    <input type="hidden" name="logtoken" value="$logtoken" />
+    <input type="hidden" name="serverid" value="$lonhost" />
-    <!-- Row 6 Column 2 -->
+    <input type="hidden" name="uname" value="" />
-    <td align="left" background="$iconpath/fillbottom.gif"><img src="$iconpath/lowerleft.gif" alt="" /></td>
+    <input type="hidden" name="upass0" value="" />
+    <input type="hidden" name="udom" value="" />
-    <!-- Row 6 Column 3 -->
+    <input type="hidden" name="localpath" value="$env{'form.localpath'}" />
-    <td background="$iconpath/fillbottom.gif"><img src="$iconpath/fillbottom.gif" alt="" /></td>
+    <input type="hidden" name="localres" value="$env{'form.localres'}" />
+   </form>
-    <!-- Row 6 Column 4 -->
+ ENDSERVERFORM
-    <td align="right" background="$iconpath/fillbottom.gif"><img src="$iconpath/lowerright.gif" alt="" /></td>
+     my $coursecatalog;
-   </tr>
+     if (($showcoursecat eq '') || ($showcoursecat)) {
-  </table>
+         $coursecatalog = &coursecatalog_link($lt{'catalog'}).'<br />';
+     }
- <script type="text/javascript">
+     my $newuserlink;
- // the if prevents the script error if the browser can not handle this
+     if ($shownewuserlink) {
- if ( document.client.uname ) { document.client.uname.focus(); }
+         $newuserlink = &newuser_link($lt{'newuser'}).'<br />';
- </script>
+     }
- $helpdeskscript
+     my $logintitle =
+         '<h2 class="LC_hcell"'
- ENDDOCUMENT
+        .' style="background:'.$loginbox_header_bgcol.';'
- }
+        .' color:'.$loginbox_header_textcol.'">'
-     my %endargs = ( 'noredirectlink' => 1, );
+        .$lt{'log'}
-     $r->print(&Apache::loncommon::end_page(\%endargs));
+        .'</h2>';
-     return OK;
- }
+     my $noscript_warning='<noscript><span class="LC_warning"><b>'
+                         .&mt('Use of LON-CAPA requires Javascript to be enabled in your web browser.')
- sub contactdisplay {
+                         .'</b></span></noscript>';
-     my ($lt,$servadm,$showadminmail,$version,$authdomain,$helpdeskscript) = @_;
+     my $helpdeskscript;
-     my $contactblock;
+     my $contactblock = &contactdisplay(\%lt,$servadm,$showadminmail,
-     my $showhelpdesk = 0;
+                                        $authdomain,\$helpdeskscript,
-     my $requestmail = $Apache::lonnet::perlvar{'lonSupportEMail'};
+                                        $showhelpdesk,\@possdoms);
-     if ($requestmail =~ m/^[^\@]+\@[^\@]+$/) {
-         $showhelpdesk = 1;
+     my $mobileargs;
-     }
+     if ($clientmobile) {
-     if ($servadm && $showadminmail) {
+         $mobileargs = 'autocapitalize="off" autocorrect="off"';
-         $contactblock .= '<b>&nbsp;&nbsp;&nbsp;'.$$lt{'servadm'}.':</b><br />'.
+     }
-                          '<tt>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'.$servadm.'</tt><br />&nbsp;<br />';
+     my $loginform=(<<LFORM);
-     }
+ <form name="client" action="" onsubmit="return(send())">
-     if ($showhelpdesk) {
+   <input type="hidden" name="lextkey" value="$lextkey" />
-         $contactblock .= '<b>&nbsp;&nbsp;&nbsp;<a href="javascript:helpdesk()"><font size="+1">'.$lt->{'helpdesk'}.'</font></a></b><br />';
+   <input type="hidden" name="uextkey" value="$uextkey" />
-         my $thisurl = &escape('/adm/login');
+   <b><label for="uname">$lt{'un'}</label>:</b><br />
-         $$helpdeskscript = <<"ENDSCRIPT";
+   <input type="text" name="uname" id="uname" size="15" value="$authusername" readonly="readonly" $mobileargs /><br />
- <script type="text/javascript">
+   <b><label for="upass$now">$lt{'pw'}</label>:</b><br />
- function helpdesk() {
+   <input type="password" name="upass$now" id="upass$now" size="15" readonly="readonly" /><br />
-     var codedom = document.client.udom.value;
+   <b><label for="udom">$lt{'dom'}</label>:</b><br />
-     if (codedom == '') {
+   <input type="text" name="udom" id="udom" size="15" value="$authdomain" readonly="readonly" $mobileargs /><br />
-         codedom = "$authdomain";
+   <input type="submit" value="$lt{'log'}" />
-     }
+ </form>
-     var querystr = "origurl=$thisurl&codedom="+codedom;
+ LFORM
-     document.location.href = "/adm/helpdesk?"+querystr;
-     return;
+     if ($showbanner) {
- }
+         $r->print(<<HEADER);
- </script>
+ <!-- The LON-CAPA Header -->
- ENDSCRIPT
+ <div style="background:$pgbg;margin:0;width:100%;">
-     }
+   <img src="$img" border="0" alt="The Learning Online Network with CAPA" class="LC_maxwidth" />
-     $contactblock .= <<"ENDBLOCK";
+ </div>
-      &nbsp;&nbsp;&nbsp;$version
+ HEADER
- ENDBLOCK
+     }
-     return $contactblock;
+     $r->print(<<ENDTOP);
- }
+ <div style="float:left;margin-top:0;">
+ <div class="LC_Box" style="background:$loginbox_bg;">
- sub forgotpwdisplay {
+   $logintitle
-     my (%lt) = @_;
+   $loginform
-     my $prompt_for_resetpw = 1;
+   $noscript_warning
-     if ($prompt_for_resetpw) {
+ </div>
-         return '<br />&nbsp;&nbsp;&nbsp;<a href="/adm/resetpw">'.$lt{'forgotpw'}.'</a></b><br />';
-     }
+ <div class="LC_Box" style="padding-top: 10px;">
-     return;
+   $loginhelp
- }
+   $forgotpw
+   $contactblock
- sub loginhelpdisplay {
+   $newuserlink
-     my (%lt) = @_;
+   $coursecatalog
-     my $login_help = 1;
+ </div>
-     if ($login_help) {
+ </div>
-         return '&nbsp;&nbsp;&nbsp;<a href="/adm/loginproblems.html">'.$lt{'help'}.'</a></b>';
-     }
+ <div>
-     return;
+ ENDTOP
- }
+     if ($showmainlogo) {
+         $r->print(' <img src="'.$logo.'" alt="" class="LC_maxwidth" />'."\n");
- sub coursecatalog_link {
+     }
-     my ($linkname) = @_;
+ $r->print(<<ENDTOP);
-     return <<"END";
+ $announcements
-      <tr>
+ </div>
-       <td>&nbsp;</td>
+ <hr style="clear:both;" />
-       <td><a href="/adm/coursecatalog"><b>$linkname</b></a></td>
+ ENDTOP
-      </tr>
+     my ($domainrow,$serverrow,$loadrow,$userloadrow,$versionrow);
- END
+     $domainrow = <<"END";
- }
+       <tr>
+        <td  align="left" valign="top">
- sub newuser_link {
+         <small><b>$lt{'dom'}:&nbsp;</b></small>
-     my ($linkname) = @_;
+        </td>
-     return '&nbsp;&nbsp;&nbsp;<a href="/adm/createaccount"><b>'.$linkname.'</b></a><br />';
+        <td  align="left" valign="top">
- }
+         <small><tt>&nbsp;$domain</tt></small>
+        </td>
-;
+       </tr>
- __END__
+ END
+     $serverrow = <<"END";
+       <tr>
+        <td  align="left" valign="top">
+         <small><b>$lt{'serv'}:&nbsp;</b></small>
+        </td>
+        <td align="left" valign="top">
+         <small><tt>&nbsp;$lonhost ($role)</tt></small>
+        </td>
+       </tr>
+ END
+     if ($loadlim) {
+         $loadrow = <<"END";
+       <tr>
+        <td align="left" valign="top">
+         <small><b>$lt{'load'}:&nbsp;</b></small>
+        </td>
+        <td align="left" valign="top">
+         <small><tt>&nbsp;$loadpercent $lt{'perc'}</tt></small>
+        </td>
+       </tr>
+ END
+     }
+     if ($uloadlim) {
+         $userloadrow = <<"END";
+       <tr>
+        <td align="left" valign="top">
+         <small><b>$lt{'userload'}:&nbsp;</b></small>
+        </td>
+        <td align="left" valign="top">
+         <small><tt>&nbsp;$userloadpercent $lt{'perc'}</tt></small>
+        </td>
+       </tr>
+ END
+     }
+     if (($version ne '') && ($version ne '<!-- VERSION -->')) {
+         $versionrow = <<"END";
+       <tr>
+        <td colspan="2" align="left">
+         <small>$version</small>
+        </td>
+       </tr>
+ END
+     }
+     $r->print(<<ENDDOCUMENT);
+     <div style="float: left;">
+      <table border="0" cellspacing="0" cellpadding="0">
+ $domainrow
+ $serverrow
+ $loadrow
+ $userloadrow
+ $versionrow
+      </table>
+     </div>
+     <div style="float: right;">
+     $domainlogo
+     </div>
+     <br style="clear:both;" />
+  </div>
+ <script type="text/javascript">
+ // <![CDATA[
+ // the if prevents the script error if the browser can not handle this
+ if ( document.client.uname ) { document.client.uname.focus(); }
+ // ]]>
+ </script>
+ $helpdeskscript
+ ENDDOCUMENT
+     my %endargs = ( 'noredirectlink' => 1, );
+     $r->print(&Apache::loncommon::end_page(\%endargs));
+     return OK;
+ }
+ sub check_loginvia {
+     my ($domain,$lonhost,$lonidsdir,$balcookie,$linkprot) = @_;
+     if ($domain eq '' || $lonhost eq '' || $lonidsdir eq '') {
+         return;
+     }
+     my %domconfhash = &Apache::loncommon::get_domainconf($domain);
+     my $loginvia = $domconfhash{$domain.'.login.loginvia_'.$lonhost};
+     my $loginvia_exempt = $domconfhash{$domain.'.login.loginvia_exempt_'.$lonhost};
+     my $output;
+     if ($loginvia ne '') {
+         my $noredirect;
+         my $ip = $ENV{'REMOTE_ADDR'};
+         if ($ip eq '127.0.0.1') {
+             $noredirect = 1;
+         } else {
+             if ($loginvia_exempt ne '') {
+                 my @exempt = split(',',$loginvia_exempt);
+                 if (grep(/^\Q$ip\E$/,@exempt)) {
+                     $noredirect = 1;
+                 }
+             }
+         }
+         unless ($noredirect) {
+             my ($newhost,$path);
+             if ($loginvia =~ /:/) {
+                 ($newhost,$path) = split(':',$loginvia);
+             } else {
+                 $newhost = $loginvia;
+             }
+             if ($newhost ne $lonhost) {
+                 if (&Apache::lonnet::hostname($newhost) ne '') {
+                     if ($balcookie) {
+                         my ($balancer,$cookie) = split(/:/,$balcookie);
+                         if ($cookie =~ /^($match_domain)_($match_username)_([a-f0-9]+)$/) {
+                             my ($udom,$uname,$cookieid) = ($1,$2,$3);
+                             unless (&Apache::lonnet::delbalcookie($cookie,$balancer) eq 'ok') {
+                                 if ((-d $lonidsdir) && (opendir(my $dh,$lonidsdir))) {
+                                     while (my $filename=readdir($dh)) {
+                                         if ($filename=~/^(\Q$uname\E_\d+_\Q$udom\E_$match_lonid)\.id$/) {
+                                             my $handle = $1;
+                                             my %hash =
+                                                 &Apache::lonnet::get_sessionfile_vars($handle,$lonidsdir,
+                                                                                      ['request.balancercookie',
+                                                                                       'user.linkedenv']);
+                                             if ($hash{'request.balancercookie'} eq "$balancer:$cookieid") {
+                                                 if (unlink("$lonidsdir/$filename")) {
+                                                     if (($hash{'user.linkedenv'} =~ /^[a-f0-9]+_linked$/) &&
+                                                         (-l "$lonidsdir/$hash{'user.linkedenv'}.id") &&
+                                                         (readlink("$lonidsdir/$hash{'user.linkedenv'}.id") eq "$lonidsdir/$filename")) {
+                                                         unlink("$lonidsdir/$hash{'user.linkedenv'}.id");
+                                                     }
+                                                 }
+                                             }
+                                             last;
+                                         }
+                                     }
+                                     closedir($dh);
+                                 }
+                             }
+                         }
+                     }
+                     $output = &redirect_page($newhost,$path,$linkprot);
+                 }
+             }
+         }
+     }
+     return $output;
+ }
+ sub redirect_page {
+     my ($desthost,$path,$linkprot) = @_;
+     my $hostname = &Apache::lonnet::hostname($desthost);
+     my $protocol = $Apache::lonnet::protocol{$desthost};
+     $protocol = 'http' if ($protocol ne 'https');
+     unless ($path =~ m{^/}) {
+         $path = '/'.$path;
+     }
+     my $url = $protocol.'://'.$hostname.$path;
+     if ($env{'form.firsturl'} ne '') {
+         $url .='?firsturl='.$env{'form.firsturl'};
+     }
+     if ($linkprot) {
+         my $ltoken = &Apache::lonnet::tmpput({linkprot => $linkprot},$desthost);
+         if ($ltoken) {
+             $url .= (($url =~ /\?/) ? '&' : '?').'ltoken='.$ltoken;
+         }
+     }
+     my $start_page = &Apache::loncommon::start_page('Switching Server ...',undef,
+                                                     {'redirect' => [0,$url],});
+     my $end_page   = &Apache::loncommon::end_page();
+     return $start_page.$end_page;
+ }
+ sub contactdisplay {
+     my ($lt,$servadm,$showadminmail,$authdomain,$helpdeskscript,$showhelpdesk,
+         $possdoms) = @_;
+     my $contactblock;
+     my $origmail;
+     if (ref($possdoms) eq 'ARRAY') {
+         if (grep(/^\Q$authdomain\E$/,@{$possdoms})) {
+             $origmail = $Apache::lonnet::perlvar{'lonSupportEMail'};
+         }
+     }
+     my $requestmail =
+         &Apache::loncommon::build_recipient_list(undef,'helpdeskmail',
+                                                  $authdomain,$origmail);
+     unless ($showhelpdesk eq '0') {
+         if ($requestmail =~ m/[^\@]+\@[^\@]+/) {
+             $showhelpdesk = 1;
+         } else {
+             $showhelpdesk = 0;
+         }
+     }
+     if ($servadm && $showadminmail) {
+         $contactblock .= $$lt{'servadm'}.':<br />'.
+                          '<tt>'.$servadm.'</tt><br />';
+     }
+     if ($showhelpdesk) {
+         $contactblock .= '<a href="javascript:helpdesk()">'.$lt->{'helpdesk'}.'</a><br />';
+         my $thisurl = &escape('/adm/login');
+         $$helpdeskscript = <<"ENDSCRIPT";
+ <script type="text/javascript">
+ // <![CDATA[
+ function helpdesk() {
+     var possdom = document.client.udom.value;
+     var codedom = possdom.replace( new RegExp("[^A-Za-z0-9.\\-]","g"),'');
+     if (codedom == '') {
+         codedom = "$authdomain";
+     }
+     var querystr = "origurl=$thisurl&codedom="+codedom;
+     document.location.href = "/adm/helpdesk?"+querystr;
+     return;
+ }
+ // ]]>
+ </script>
+ ENDSCRIPT
+     }
+     return $contactblock;
+ }
+ sub forgotpwdisplay {
+     my (%lt) = @_;
+     my $prompt_for_resetpw = 1;
+     if ($prompt_for_resetpw) {
+         return '<a href="/adm/resetpw">'.$lt{'forgotpw'}.'</a>';
+     }
+     return;
+ }
+ sub coursecatalog_link {
+     my ($linkname) = @_;
+     return <<"END";
+       <a href="/adm/coursecatalog">$linkname</a>
+ END
+ }
+ sub newuser_link {
+     my ($linkname) = @_;
+     return '<a href="/adm/createaccount">'.$linkname.'</a>';
+ }
+;
+ __END__

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>

500 Internal Server Error

Internal Server Error

The server encountered an internal error or misconfiguration and was unable to complete your request.

Please contact the server administrator at root@localhost to inform them of the time this error occurred, and the actions you performed just before this error.

More information about this error may be available in the server error log.

Removed from v.1.101
changed lines
	Added in v.1.178