1: # The LearningOnline Network
2: # Login Screen
3: #
4: # $Id: lonlogin.pm,v 1.129 2009/10/23 16:14:36 bisitz Exp $
5: #
6: # Copyright Michigan State University Board of Trustees
7: #
8: # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
9: #
10: # LON-CAPA is free software; you can redistribute it and/or modify
11: # it under the terms of the GNU General Public License as published by
12: # the Free Software Foundation; either version 2 of the License, or
13: # (at your option) any later version.
14: #
15: # LON-CAPA is distributed in the hope that it will be useful,
16: # but WITHOUT ANY WARRANTY; without even the implied warranty of
17: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18: # GNU General Public License for more details.
19: #
20: # You should have received a copy of the GNU General Public License
21: # along with LON-CAPA; if not, write to the Free Software
22: # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
23: #
24: # /home/httpd/html/adm/gpl.txt
25: #
26: # http://www.lon-capa.org/
27: #
28:
29: package Apache::lonlogin;
30:
31: use strict;
32: use Apache::Constants qw(:common);
33: use Apache::File ();
34: use Apache::lonnet;
35: use Apache::loncommon();
36: use Apache::lonauth();
37: use Apache::lonlocal;
38: use Apache::migrateuser();
39: use lib '/home/httpd/lib/perl/';
40: use LONCAPA;
41:
42: sub handler {
43: my $r = shift;
44:
45: &Apache::loncommon::get_unprocessed_cgi
46: (join('&',$ENV{'QUERY_STRING'},$env{'request.querystring'},
47: $ENV{'REDIRECT_QUERY_STRING'}),
48: ['interface','username','domain','firsturl','localpath','localres',
49: 'token','role','symb']);
50: if (!defined($env{'form.firsturl'})) {
51: &Apache::lonacc::get_posted_cgi($r,['firsturl']);
52: }
53:
54: # -- check if they are a migrating user
55: if (defined($env{'form.token'})) {
56: return &Apache::migrateuser::handler($r);
57: }
58:
59: &Apache::loncommon::no_cache($r);
60: &Apache::lonlocal::get_language_handle($r);
61: &Apache::loncommon::content_type($r,'text/html');
62: $r->send_http_header;
63: return OK if $r->header_only;
64:
65:
66: # Are we re-routing?
67: if (-e '/home/httpd/html/lon-status/reroute.txt') {
68: &Apache::lonauth::reroute($r);
69: return OK;
70: }
71:
72:
73: # -------------------------------- Prevent users from attempting to login twice
74: my $handle = &Apache::lonnet::check_for_valid_session($r);
75: if ($handle=~/^publicuser\_/) {
76: # For "public user" - remove it, we apparently really want to login
77: unlink($r->dir_config('lonIDsDir')."/$handle.id");
78: } elsif ($handle ne '') {
79: # Indeed, a valid token is found
80: my $start_page =
81: &Apache::loncommon::start_page('Already logged in');
82: my $end_page =
83: &Apache::loncommon::end_page();
84: my $dest = '/adm/roles';
85: if ($env{'form.firsturl'} ne '') {
86: $dest = $env{'form.firsturl'};
87: }
88: $r->print(
89: $start_page
90: .'<h1>'.&mt('You are already logged in!').'</h1>'
91: .'<p>'.&mt('Please either [_1]continue the current session[_2] or [_3]log out[_4].',
92: '<a href="'.$dest.'">','</a>','<a href="/adm/logout">','</a>').'</p>'
93: .'<p><a href="/adm/loginproblems.html">'.&mt('Login problems?').'</a></p>'
94: .$end_page
95: );
96: return OK;
97: }
98:
99: # ---------------------------------------------------- No valid token, continue
100:
101: # ---------------------------- Not possible to really login to domain "public"
102: if ($env{'form.domain'} eq 'public') {
103: $env{'form.domain'}='';
104: $env{'form.username'}='';
105: }
106: # ----------------------------------------------------------- Process Interface
107: $env{'form.interface'}=~s/\W//g;
108:
109: my $httpbrowser=$ENV{"HTTP_USER_AGENT"};
110:
111: my $iconpath=
112: &Apache::loncommon::lonhttpdurl($r->dir_config('lonIconsURL'));
113:
114: my $lonhost = $r->dir_config('lonHostID');
115: my $domain = &Apache::lonnet::default_login_domain();
116: my %domconfhash = &Apache::loncommon::get_domainconf($domain);
117: if ($lonhost ne '') {
118: my $loginvia = $domconfhash{$domain.'.login.loginvia_'.$lonhost};
119: if (($loginvia ne '') && ($loginvia ne $lonhost)) {
120: if (&Apache::lonnet::hostname($loginvia) ne '') {
121: $r->print(&redirect_page($loginvia));
122: return OK;
123: }
124: }
125: }
126:
127: if (($env{'form.domain'}) &&
128: (&Apache::lonnet::domain($env{'form.domain'},'description'))) {
129: $domain=$env{'form.domain'};
130: }
131: my $role = $r->dir_config('lonRole');
132: my $loadlim = $r->dir_config('lonLoadLim');
133: my $servadm = $r->dir_config('lonAdmEMail');
134: my $tabdir = $r->dir_config('lonTabDir');
135: my $include = $r->dir_config('lonIncludes');
136: my $expire = $r->dir_config('lonExpire');
137: my $version = $r->dir_config('lonVersion');
138: my $host_name = &Apache::lonnet::hostname($lonhost);
139:
140: # --------------------------------------------- Default values for login fields
141:
142: my $authusername=($env{'form.username'}?$env{'form.username'}:'');
143: my $authdomain=($env{'form.domain'}?$env{'form.domain'}:$domain);
144:
145: # ---------------------------------------------------------- Determine own load
146: my $loadavg;
147: {
148: my $loadfile=Apache::File->new('/proc/loadavg');
149: $loadavg=<$loadfile>;
150: }
151: $loadavg =~ s/\s.*//g;
152: my $loadpercent=sprintf("%.1f",100*$loadavg/$loadlim);
153: my $userloadpercent=&Apache::lonnet::userload();
154:
155: # ------------------------------------------------------- Do the load balancing
156: my $otherserver= &Apache::lonnet::absolute_url($host_name);
157: my $firsturl=
158: ($env{'request.firsturl'}?$env{'request.firsturl'}:$env{'form.firsturl'});
159: # ---------------------------------------------------------- Are we overloaded?
160: if ((($userloadpercent>100.0)||($loadpercent>100.0))) {
161: my $unloaded=Apache::lonnet::spareserver($loadpercent,$userloadpercent);
162: if ($unloaded) { $otherserver=$unloaded; }
163: }
164:
165: # ----------------------------------------------------------- Get announcements
166: my $announcements=&Apache::lonnet::getannounce();
167: # -------------------------------------------------------- Set login parameters
168:
169: my @hexstr=('0','1','2','3','4','5','6','7',
170: '8','9','a','b','c','d','e','f');
171: my $lkey='';
172: for (0..7) {
173: $lkey.=$hexstr[rand(15)];
174: }
175:
176: my $ukey='';
177: for (0..7) {
178: $ukey.=$hexstr[rand(15)];
179: }
180:
181: my $lextkey=hex($lkey);
182: if ($lextkey>2147483647) { $lextkey-=4294967296; }
183:
184: my $uextkey=hex($ukey);
185: if ($uextkey>2147483647) { $uextkey-=4294967296; }
186:
187: # -------------------------------------------------------- Store away log token
188: my $tokenextras;
189: if ($env{'form.role'}) {
190: $tokenextras = '&role='.&escape($env{'form.role'});
191: }
192: if ($env{'form.symb'}) {
193: if (!$tokenextras) {
194: $tokenextras = '&';
195: }
196: $tokenextras .= '&symb='.&escape($env{'form.symb'});
197: }
198: my $logtoken=Apache::lonnet::reply(
199: 'tmpput:'.$ukey.$lkey.'&'.$firsturl.$tokenextras,
200: $lonhost);
201:
202: # ------------------- If we cannot talk to ourselves, we are in serious trouble
203:
204: if ($logtoken eq 'con_lost') {
205: my $spares='';
206: my $last;
207: foreach my $hostid (sort
208: {
209: &Apache::lonnet::hostname($a) cmp
210: &Apache::lonnet::hostname($b);
211: }
212: keys(%Apache::lonnet::spareid)) {
213: next if ($hostid eq $lonhost);
214: my $hostname = &Apache::lonnet::hostname($hostid);
215: next if ($last eq $hostname);
216: $spares.='<br /><font size="+1"><a href="http://'.
217: $hostname.
218: '/adm/login?domain='.$authdomain.'">'.
219: $hostname.'</a>'.
220: ' '.&mt('(preferred)').'</font>'.$/;
221: $last=$hostname;
222: }
223: $spares.= '<br />';
224: my %all_hostnames = &Apache::lonnet::all_hostnames();
225: foreach my $hostid (sort
226: {
227: &Apache::lonnet::hostname($a) cmp
228: &Apache::lonnet::hostname($b);
229: }
230: keys(%all_hostnames)) {
231: next if ($hostid eq $lonhost || $Apache::lonnet::spareid{$hostid});
232: my $hostname = &Apache::lonnet::hostname($hostid);
233: next if ($last eq $hostname);
234: $spares.='<br /><a href="http://'.
235: $hostname.
236: '/adm/login?domain='.$authdomain.'">'.
237: $hostname.'</a>';
238: $last=$hostname;
239: }
240: $r->print(
241: '<html>'
242: .'<head><title>'
243: .&mt('The LearningOnline Network with CAPA')
244: .'</title></head>'
245: .'<body bgcolor="#FFFFFF">'
246: .'<h1>'.&mt('The LearningOnline Network with CAPA').'</h1>'
247: .'<img src="/adm/lonKaputt/lonlogo_broken.gif" align="right" />'
248: .'<h3>'.&mt('This LON-CAPA server is temporarily not available for login.').'</h3>'
249: .'<p>'.&mt('Please attempt to login to one of the following servers:').'</p>'
250: .$spares
251: .'</body>'
252: .'</html>'
253: );
254: return OK;
255: }
256:
257: # ----------------------------------------------- Apparently we are in business
258: $servadm=~s/\,/\<br \/\>/g;
259:
260: # ----------------------------------------------------------- Front page design
261: my $pgbg=&Apache::loncommon::designparm('login.pgbg',$domain);
262: my $font=&Apache::loncommon::designparm('login.font',$domain);
263: my $link=&Apache::loncommon::designparm('login.link',$domain);
264: my $vlink=&Apache::loncommon::designparm('login.vlink',$domain);
265: my $alink=&Apache::loncommon::designparm('login.alink',$domain);
266: my $mainbg=&Apache::loncommon::designparm('login.mainbg',$domain);
267: my $logo=&Apache::loncommon::designparm('login.logo',$domain);
268: my $img=&Apache::loncommon::designparm('login.img',$domain);
269: my $domainlogo=&Apache::loncommon::domainlogo($domain);
270: my $login=&Apache::loncommon::designparm('login.login',$domain);
271: if ($login eq '') {
272: $login = $iconpath.'/'.&mt('userauthentication.gif');
273: }
274: my $showbanner = 1;
275: my $showmainlogo = 1;
276: if (defined(&Apache::loncommon::designparm('login.showlogo_img',$domain))) {
277: $showbanner = &Apache::loncommon::designparm('login.showlogo_img',$domain);
278: }
279: if (defined(&Apache::loncommon::designparm('login.showlogo_logo',$domain))) {
280: $showmainlogo = &Apache::loncommon::designparm('login.showlogo_logo',$domain);
281: }
282: my $showadminmail=&Apache::loncommon::designparm('login.adminmail',$domain);
283: my $showcoursecat =
284: &Apache::loncommon::designparm('login.coursecatalog',$domain);
285: my $loginheader =&Apache::loncommon::designparm('login.loginheader',$domain);
286: my $shownewuserlink =
287: &Apache::loncommon::designparm('login.newuser',$domain);
288: my $now=time;
289: my $js = (<<ENDSCRIPT);
290:
291: <script type="text/javascript" language="JavaScript">
292: // <![CDATA[
293: function send()
294: {
295: this.document.server.elements.uname.value
296: =this.document.client.elements.uname.value;
297:
298: this.document.server.elements.udom.value
299: =this.document.client.elements.udom.value;
300:
301: uextkey=this.document.client.elements.uextkey.value;
302: lextkey=this.document.client.elements.lextkey.value;
303: initkeys();
304:
305: this.document.server.elements.upass0.value
306: =crypted(this.document.client.elements.upass$now.value.substr(0,15));
307: this.document.server.elements.upass1.value
308: =crypted(this.document.client.elements.upass$now.value.substr(15,15));
309: this.document.server.elements.upass2.value
310: =crypted(this.document.client.elements.upass$now.value.substr(30,15));
311:
312: this.document.client.elements.uname.value='';
313: this.document.client.elements.upass$now.value='';
314:
315: this.document.server.submit();
316: return false;
317: }
318: // ]]>
319: </script>
320:
321: ENDSCRIPT
322:
323: # --------------------------------------------------- Print login screen header
324:
325: my %add_entries = (
326: bgcolor => "$mainbg",
327: text => "$font",
328: link => "$link",
329: vlink => "$vlink",
330: alink => "$alink",);
331:
332: $r->print(&Apache::loncommon::start_page('The LearningOnline Network with CAPA Login',$js,
333: { 'redirect' => [$expire,'/adm/roles'],
334: 'add_entries' => \%add_entries,
335: 'only_body' => 1,}));
336:
337: # ----------------------------------------------------------------------- Texts
338:
339: my %lt=&Apache::lonlocal::texthash(
340: 'un' => 'Username',
341: 'pw' => 'Password',
342: 'dom' => 'Domain',
343: 'perc' => 'percent',
344: 'load' => 'Server Load',
345: 'userload' => 'User Load',
346: 'catalog' => 'Course/Community Catalog',
347: 'log' => 'Log in',
348: 'help' => 'Log-in Help',
349: 'serv' => 'Server',
350: 'servadm' => 'Server Administration',
351: 'helpdesk' => 'Contact Helpdesk',
352: 'forgotpw' => 'Forgot password?',
353: 'newuser' => 'New User?',
354: );
355: # -------------------------------------------------- Change password field name
356: my $forgotpw = &forgotpwdisplay(%lt);
357: my $loginhelp = &loginhelpdisplay(%lt);
358:
359: # ---------------------------------------------------- Serve out DES JavaScript
360: {
361: my $jsh=Apache::File->new($include."/londes.js");
362: $r->print(<$jsh>);
363: }
364: # ---------------------------------------------------------- Serve rest of page
365:
366: $r->print(
367: '<div class="LC_loginpage_container">');
368:
369: #
370: # If the loadbalancing yielded just http:// because perhaps there's no loadbalancing?
371: # then just us a relative link to authenticate:
372: #
373:
374: $r->print(<<ENDSERVERFORM);
375: <form name="server" action="$otherserver/adm/authenticate" method="post" target="_top">
376: <input type="hidden" name="logtoken" value="$logtoken" />
377: <input type="hidden" name="serverid" value="$lonhost" />
378: <input type="hidden" name="uname" value="" />
379: <input type="hidden" name="upass0" value="" />
380: <input type="hidden" name="upass1" value="" />
381: <input type="hidden" name="upass2" value="" />
382: <input type="hidden" name="udom" value="" />
383: <input type="hidden" name="localpath" value="$env{'form.localpath'}" />
384: <input type="hidden" name="localres" value="$env{'form.localres'}" />
385: </form>
386: ENDSERVERFORM
387: my $coursecatalog;
388: if (($showcoursecat eq '') || ($showcoursecat)) {
389: $coursecatalog = &coursecatalog_link($lt{'catalog'});
390: }
391: my $newuserlink;
392: if ($shownewuserlink) {
393: $newuserlink = &newuser_link($lt{'newuser'}).'<br />';
394: }
395: my $logintitle;
396: if ($loginheader eq 'text') {
397: $logintitle ='<h2>'.$lt{'log'}.'</h2>';
398: } else {
399: $logintitle = '<img src="'.$login.'" alt="'.
400: &mt('User Authentication').'" />';
401: }
402:
403: my $noscript_warning='<noscript><span class="LC_warning"><b>'
404: .&mt('Use of LON-CAPA requires Javascript to be enabled in your web browser.')
405: .'</b></span></noscript>';
406: my $helpdeskscript;
407: my $contactblock = &contactdisplay(\%lt,$servadm,$showadminmail,
408: $version,$authdomain,\$helpdeskscript);
409:
410: my $loginform=(<<LFORM);
411: <form name="client" action="" onsubmit="return(send())">
412: <input type="hidden" name="lextkey" value="$lextkey" />
413: <input type="hidden" name="uextkey" value="$uextkey" />
414: <b><label for="uname">$lt{'un'}</label>:</b><br />
415: <input type="text" name="uname" size="15" value="$authusername" /><br />
416: <b><label for="upass$now">$lt{'pw'}</label>:</b><br />
417: <input type="password" name="upass$now" size="15" /><br />
418: <b><label for="udom">$lt{'dom'}</label>:</b><br />
419: <input type="text" name="udom" size="15" value="$authdomain" /><br />
420: <input type="submit" value="$lt{'log'}" />
421: </form>
422: LFORM
423:
424: if ($showbanner) {
425: $r->print(<<HEADER);
426: <!-- The LON-CAPA Header -->
427: <table border="0" align="left" width="100%" cellspacing="0" cellpadding="1">
428: <tr>
429: <td align="left" valign="top" bgcolor="$pgbg">
430: <img src="$img" border="0" alt="The Learning Online Network with CAPA" />
431: </td>
432: </tr>
433: </table>
434: HEADER
435: }
436: $r->print(<<ENDTOP);
437: <div class="LC_loginpage_space"> </div>
438: <div class="LC_loginpage_floatLeft">
439: <div class="LC_loginpage_loginContainer">
440: $logintitle
441: <table border="0" align="left" cellspacing="1" cellpadding="2" width="100%">
442: <tr>
443: <td>
444: $loginform
445: </td>
446: </tr>
447: </table>
448: $noscript_warning
449: </div>
450:
451: <div class="LC_loginpage_loginInfo">
452: $loginhelp<br />
453: $forgotpw<br />
454: $contactblock<br />
455: $newuserlink
456: $coursecatalog
457: </div>
458: </div>
459: ENDTOP
460: if ($showmainlogo) {
461: $r->print(' <img src="'.$logo.'" alt="" />'."\n");
462: }
463: $r->print(<<ENDTOP);
464: $announcements
465: $domainlogo
466: <div class="LC_loginpage_space"> </div>
467: ENDTOP
468:
469: $r->print(<<ENDDOCUMENT);
470: <table border="0" cellspacing="0" cellpadding="0">
471: <tr>
472: <td align="left" valign="top">
473: <small><b> $lt{'dom'}: </b></small>
474: </td>
475: <td align="left" valign="top">
476: <small><tt> $domain</tt></small>
477: </td>
478: </tr>
479: <tr>
480: <td align="left" valign="top">
481: <small><b> $lt{'serv'}: </b></small>
482: </td>
483: <td align="left" valign="top">
484: <small><tt> $lonhost ($role)</tt></small>
485: </td>
486: </tr>
487: <tr>
488: <td align="left" valign="top">
489: <small><b> $lt{'load'}: </b></small>
490: </td>
491: <td align="left" valign="top">
492: <small><tt> $loadpercent $lt{'perc'}</tt></small>
493: </td>
494: </tr>
495: <tr>
496: <td align="left" valign="top">
497: <small><b> $lt{'userload'}: </b></small>
498: </td>
499: <td align="left" valign="top">
500: <small><tt> $userloadpercent $lt{'perc'}</tt></small>
501: </td>
502: </tr>
503: </table>
504: </div>
505:
506: <script type="text/javascript">
507: // <![CDATA[
508: // the if prevents the script error if the browser can not handle this
509: if ( document.client.uname ) { document.client.uname.focus(); }
510: // ]]>
511: </script>
512: $helpdeskscript
513:
514: ENDDOCUMENT
515: my %endargs = ( 'noredirectlink' => 1, );
516: $r->print(&Apache::loncommon::end_page(\%endargs));
517: return OK;
518: }
519:
520: sub redirect_page {
521: my ($desthost) = @_;
522: my $protocol = $Apache::lonnet::protocol{$desthost};
523: $protocol = 'http' if ($protocol ne 'https');
524: my $url = $protocol.'://'.&Apache::lonnet::hostname($desthost).'/';
525: if ($env{'form.firsturl'} ne '') {
526: $url .='?firsturl='.$env{'form.firsturl'};
527: }
528: my $start_page = &Apache::loncommon::start_page('Switching Server',undef,
529: {'redirect' => [0,$url],});
530: my $end_page = &Apache::loncommon::end_page();
531: return $start_page.$end_page;
532: }
533:
534: sub contactdisplay {
535: my ($lt,$servadm,$showadminmail,$version,$authdomain,$helpdeskscript) = @_;
536: my $contactblock;
537: my $showhelpdesk = 0;
538: my $requestmail = $Apache::lonnet::perlvar{'lonSupportEMail'};
539: if ($requestmail =~ m/^[^\@]+\@[^\@]+$/) {
540: $showhelpdesk = 1;
541: }
542: if ($servadm && $showadminmail) {
543: $contactblock .= '<b> '.$$lt{'servadm'}.':</b><br />'.
544: '<tt> '.$servadm.'</tt><br /> <br />';
545: }
546: if ($showhelpdesk) {
547: $contactblock .= '<a href="javascript:helpdesk()">'.$lt->{'helpdesk'}.'</a><br />';
548: my $thisurl = &escape('/adm/login');
549: $$helpdeskscript = <<"ENDSCRIPT";
550: <script type="text/javascript">
551: // <![CDATA[
552: function helpdesk() {
553: var codedom = document.client.udom.value;
554: if (codedom == '') {
555: codedom = "$authdomain";
556: }
557: var querystr = "origurl=$thisurl&codedom="+codedom;
558: document.location.href = "/adm/helpdesk?"+querystr;
559: return;
560: }
561: // ]]>
562: </script>
563: ENDSCRIPT
564: }
565: $contactblock .= <<"ENDBLOCK";
566: $version
567: ENDBLOCK
568: return $contactblock;
569: }
570:
571: sub forgotpwdisplay {
572: my (%lt) = @_;
573: my $prompt_for_resetpw = 1;
574: if ($prompt_for_resetpw) {
575: return '<a href="/adm/resetpw">'.$lt{'forgotpw'}.'</a>';
576: }
577: return;
578: }
579:
580: sub loginhelpdisplay {
581: my (%lt) = @_;
582: my $login_help = 1;
583: if ($login_help) {
584: return '<a href="/adm/loginproblems.html">'.$lt{'help'}.'</a>';
585: }
586: return;
587: }
588:
589: sub coursecatalog_link {
590: my ($linkname) = @_;
591: return <<"END";
592: <a href="/adm/coursecatalog">$linkname</a>
593: END
594: }
595:
596: sub newuser_link {
597: my ($linkname) = @_;
598: return ' <a href="/adm/createaccount"><b>'.$linkname.'</b></a><br />';
599: }
600:
601: 1;
602: __END__
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>