1: # The LearningOnline Network with CAPA
2: # User Roles Screen
3: #
4: # $Id: lonroles.pm,v 1.248 2010/06/02 14:55:37 raeburn Exp $
5: #
6: # Copyright Michigan State University Board of Trustees
7: #
8: # This file is part of the LearningOnline Network with CAPA (LON-CAPA).
9: #
10: # LON-CAPA is free software; you can redistribute it and/or modify
11: # it under the terms of the GNU General Public License as published by
12: # the Free Software Foundation; either version 2 of the License, or
13: # (at your option) any later version.
14: #
15: # LON-CAPA is distributed in the hope that it will be useful,
16: # but WITHOUT ANY WARRANTY; without even the implied warranty of
17: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
18: # GNU General Public License for more details.
19: #
20: # You should have received a copy of the GNU General Public License
21: # along with LON-CAPA; if not, write to the Free Software
22: # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
23: #
24: # /home/httpd/html/adm/gpl.txt
25: #
26: # http://www.lon-capa.org/
27: #
28: ###
29:
30: =pod
31:
32: =head1 NAME
33:
34: Apache::lonroles - User Roles Screen
35:
36: =head1 SYNOPSIS
37:
38: Invoked by /etc/httpd/conf/srm.conf:
39:
40: <Location /adm/roles>
41: PerlAccessHandler Apache::lonacc
42: SetHandler perl-script
43: PerlHandler Apache::lonroles
44: ErrorDocument 403 /adm/login
45: ErrorDocument 500 /adm/errorhandler
46: </Location>
47:
48: =head1 OVERVIEW
49:
50: =head2 Choosing Roles
51:
52: C<lonroles> is a handler that allows a user to switch roles in
53: mid-session. LON-CAPA attempts to work with "No Role Specified", the
54: default role that a user has before selecting a role, as widely as
55: possible, but certain handlers for example need specification which
56: course they should act on, etc. Both in this scenario, and when the
57: handler determines via C<lonnet>'s C<&allowed> function that a certain
58: action is not allowed, C<lonroles> is used as error handler. This
59: allows the user to select another role which may have permission to do
60: what they were trying to do.
61:
62: =begin latex
63:
64: \begin{figure}
65: \begin{center}
66: \includegraphics[width=0.45\paperwidth,keepaspectratio]{Sample_Roles_Screen}
67: \caption{\label{Sample_Roles_Screen}Sample Roles Screen}
68: \end{center}
69: \end{figure}
70:
71: =end latex
72:
73: =head2 Role Initialization
74:
75: The privileges for a user are established at login time and stored in the session environment. As a consequence, a new role does not become active till the next login. Handlers are able to query for privileges using C<lonnet>'s C<&allowed> function. When a user first logs in, their role is the "common" role, which means that they have the sum of all of their privileges. During a session it might become necessary to choose a particular role, which as a consequence also limits the user to only the privileges in that particular role.
76:
77: =head1 INTRODUCTION
78:
79: This module enables a user to select what role he wishes to
80: operate under (instructor, student, teaching assistant, course
81: coordinator, etc). These roles are pre-established by the actions
82: of upper-level users.
83:
84: This is part of the LearningOnline Network with CAPA project
85: described at http://www.lon-capa.org.
86:
87: =head1 HANDLER SUBROUTINE
88:
89: This routine is called by Apache and mod_perl.
90:
91: =over 4
92:
93: =item *
94:
95: Roles Initialization (yes/no)
96:
97: =item *
98:
99: Get Error Message from Environment
100:
101: =item *
102:
103: Who is this?
104:
105: =item *
106:
107: Generate Page Output
108:
109: =item *
110:
111: Choice or no choice
112:
113: =item *
114:
115: Table
116:
117: =item *
118:
119: Privileges
120:
121: =back
122:
123: =cut
124:
125:
126: package Apache::lonroles;
127:
128: use strict;
129: use Apache::lonnet;
130: use Apache::lonuserstate();
131: use Apache::Constants qw(:common);
132: use Apache::File();
133: use Apache::lonmenu;
134: use Apache::loncommon;
135: use Apache::lonhtmlcommon;
136: use Apache::lonannounce;
137: use Apache::lonlocal;
138: use Apache::lonpageflip();
139: use Apache::lonnavdisplay();
140: use Apache::loncoursequeueadmin;
141: use GDBM_File;
142: use LONCAPA qw(:DEFAULT :match);
143: use HTML::Entities;
144:
145:
146: sub redirect_user {
147: my ($r,$title,$url,$msg) = @_;
148: $msg = $title if (! defined($msg));
149: &Apache::loncommon::content_type($r,'text/html');
150: &Apache::loncommon::no_cache($r);
151: $r->send_http_header;
152:
153: # Breadcrumbs
154: my $brcrum = [{'href' => $url,
155: 'text' => 'Switching Role'},];
156: my $start_page = &Apache::loncommon::start_page('Switching Role',undef,
157: {'redirect' => [1,$url],
158: 'bread_crumbs' => $brcrum,});
159: my $end_page = &Apache::loncommon::end_page();
160:
161: # Note to style police:
162: # This must only replace the spaces, nothing else, or it bombs elsewhere.
163: $url=~s/ /\%20/g;
164: $r->print(<<ENDREDIR);
165: $start_page
166: <p>$msg</p>
167: $end_page
168: ENDREDIR
169: return;
170: }
171:
172: sub error_page {
173: my ($r,$error,$dest)=@_;
174: &Apache::loncommon::content_type($r,'text/html');
175: &Apache::loncommon::no_cache($r);
176: $r->send_http_header;
177: return OK if $r->header_only;
178: # Breadcrumbs
179: my $brcrum = [{'href' => $dest,
180: 'text' => 'Problems during Course Initialization'},];
181: $r->print(&Apache::loncommon::start_page('Problems during Course Initialization',
182: undef,
183: {'bread_crumbs' => $brcrum,})
184: );
185: $r->print(
186: '<script type="text/javascript">'.
187: '// <![CDATA['.
188: &Apache::lonmenu::rawconfig().
189: '// ]]>'.
190: '</script>'.
191: '<p class="LC_error">'.&mt('The following problems occurred:').
192: '<br />'.
193: $error.
194: '</p><br /><a href="'.$dest.'">'.&mt('Continue').'</a>'
195: );
196: $r->print(&Apache::loncommon::end_page());
197: }
198:
199: sub handler {
200:
201: my $r = shift;
202:
203: my $now=time;
204: my $then=$env{'user.login.time'};
205: my $refresh=$env{'user.refresh.time'};
206: if (!$refresh) {
207: $refresh = $then;
208: }
209: my $envkey;
210: my %dcroles = ();
211: my $numdc = &check_fordc(\%dcroles,$then);
212: &Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'});
213:
214: # ================================================================== Roles Init
215: if ($env{'form.selectrole'}) {
216:
217: my $locknum=&Apache::lonnet::get_locks();
218: if ($locknum) { return 409; }
219:
220: if ($env{'form.newrole'}) {
221: $env{'form.'.$env{'form.newrole'}}=1;
222: }
223: if ($env{'request.course.id'}) {
224: # Check if user is CC trying to select a course role
225: if ($env{'form.switchrole'}) {
226: if (!defined($env{'user.role.'.$env{'form.switchrole'}})) {
227: &adhoc_course_role($refresh,$then);
228: }
229: }
230: my %temp=('logout_'.$env{'request.course.id'} => time);
231: &Apache::lonnet::put('email_status',\%temp);
232: &Apache::lonnet::delenv('user.state.'.$env{'request.course.id'});
233: }
234: &Apache::lonnet::appenv({"request.course.id" => '',
235: "request.course.fn" => '',
236: "request.course.uri" => '',
237: "request.course.sec" => '',
238: "request.role" => 'cm',
239: "request.role.adv" => $env{'user.adv'},
240: "request.role.domain" => $env{'user.domain'}});
241: # Check if user is a DC trying to enter a course or author space and needs privs to be created
242: if ($numdc > 0) {
243: foreach my $envkey (keys %env) {
244: # Is this an ad-hoc Coordinator role?
245: if (my ($ccrole,$domain,$coursenum) =
246: ($envkey =~ m-^form\.(cc|co)\./($match_domain)/($match_courseid)$-)) {
247: if ($dcroles{$domain}) {
248: &Apache::lonnet::check_adhoc_privs($domain,$coursenum,
249: $then,$refresh,$now,$ccrole);
250: }
251: last;
252: }
253: # Is this an ad-hoc CA-role?
254: if (my ($domain,$user) =
255: ($envkey =~ m-^form\.ca\./($match_domain)/($match_username)$-)) {
256: if (($domain eq $env{'user.domain'}) && ($user eq $env{'user.name'})) {
257: delete($env{$envkey});
258: $env{'form.au./'.$domain.'/'} = 1;
259: my ($server_status,$home) = &check_author_homeserver($user,$domain);
260: if ($server_status eq 'switchserver') {
261: my $trolecode = 'au./'.$domain.'/';
262: my $switchserver = '/adm/switchserver?otherserver='.$home.'&role='.$trolecode;
263: $r->internal_redirect($switchserver);
264: }
265: last;
266: }
267: if (my ($castart,$caend) = ($env{'user.role.ca./'.$domain.'/'.$user} =~ /^(\d*)\.(\d*)$/)) {
268: if (((($castart) && ($castart < $now)) || !$castart) &&
269: ((!$caend) || (($caend) && ($caend > $now)))) {
270: my ($server_status,$home) = &check_author_homeserver($user,$domain);
271: if ($server_status eq 'switchserver') {
272: my $trolecode = 'ca./'.$domain.'/'.$user;
273: my $switchserver = '/adm/switchserver?otherserver='.$home.'&role='.$trolecode;
274: $r->internal_redirect($switchserver);
275: }
276: last;
277: }
278: }
279: # Check if author blocked ca-access
280: my %blocked=&Apache::lonnet::get('environment',['domcoord.author'],$domain,$user);
281: if ($blocked{'domcoord.author'} eq 'blocked') {
282: delete($env{$envkey});
283: $env{'user.error.msg'}=':::1:User '.$user.' in domain '.$domain.' blocked domain coordinator access';
284: last;
285: }
286: if ($dcroles{$domain}) {
287: my ($server_status,$home) = &check_author_homeserver($user,$domain);
288: if (($server_status eq 'ok') || ($server_status eq 'switchserver')) {
289: &Apache::lonnet::check_adhoc_privs($domain,$user,$then,
290: $refresh,$now,'ca');
291: if ($server_status eq 'switchserver') {
292: my $trolecode = 'ca./'.$domain.'/'.$user;
293: my $switchserver = '/adm/switchserver?'
294: .'otherserver='.$home.'&role='.$trolecode;
295: $r->internal_redirect($switchserver);
296: }
297: } else {
298: delete($env{$envkey});
299: }
300: } else {
301: delete($env{$envkey});
302: }
303: last;
304: }
305: }
306: }
307:
308: foreach $envkey (keys %env) {
309: next if ($envkey!~/^user\.role\./);
310: my ($where,$trolecode,$role,$tstatus,$tend,$tstart);
311: &Apache::lonnet::role_status($envkey,$then,$refresh,$now,\$role,\$where,
312: \$trolecode,\$tstatus,\$tstart,\$tend);
313: if ($env{'form.'.$trolecode}) {
314: if ($tstatus eq 'is') {
315: $where=~s/^\///;
316: my ($cdom,$cnum,$csec)=split(/\//,$where);
317: # check for course groups
318: my %coursegroups = &Apache::lonnet::get_active_groups(
319: $env{'user.domain'},$env{'user.name'},$cdom, $cnum);
320: my $cgrps = join(':',keys(%coursegroups));
321:
322: # store role if recent_role list being kept
323: if ($env{'environment.recentroles'}) {
324: my %frozen_roles =
325: &Apache::lonhtmlcommon::get_recent_frozen('roles',$env{'environment.recentrolesn'});
326: &Apache::lonhtmlcommon::store_recent('roles',
327: $trolecode,' ',$frozen_roles{$trolecode});
328: }
329:
330:
331: # check for keyed access
332: if (($role eq 'st') &&
333: ($env{'course.'.$cdom.'_'.$cnum.'.keyaccess'} eq 'yes')) {
334: # who is key authority?
335: my $authdom=$cdom;
336: my $authnum=$cnum;
337: if ($env{'course.'.$cdom.'_'.$cnum.'.keyauth'}) {
338: ($authnum,$authdom)=
339: split(/:/,$env{'course.'.$cdom.'_'.$cnum.'.keyauth'});
340: }
341: # check with key authority
342: unless (&Apache::lonnet::validate_access_key(
343: $env{'environment.key.'.$cdom.'_'.$cnum},
344: $authdom,$authnum)) {
345: # there is no valid key
346: if ($env{'form.newkey'}) {
347: # student attempts to register a new key
348: &Apache::loncommon::content_type($r,'text/html');
349: &Apache::loncommon::no_cache($r);
350: $r->send_http_header;
351: my $swinfo=&Apache::lonmenu::rawconfig();
352: my $start_page=&Apache::loncommon::start_page
353: ('Verifying Access Key to Unlock this Course');
354: my $end_page=&Apache::loncommon::end_page();
355: my $buttontext=&mt('Enter Course');
356: my $message=&mt('Successfully registered key');
357: my $assignresult=
358: &Apache::lonnet::assign_access_key(
359: $env{'form.newkey'},
360: $authdom,$authnum,
361: $cdom,$cnum,
362: $env{'user.domain'},
363: $env{'user.name'},
364: &mt('Assigned from [_1] at [_2] for [_3]'
365: ,$ENV{'REMOTE_ADDR'}
366: ,&Apache::lonlocal::locallocaltime()
367: ,$trolecode)
368: );
369: unless ($assignresult eq 'ok') {
370: $assignresult=~s/^error\:\s*//;
371: $message=&mt($assignresult).
372: '<br /><a href="/adm/logout">'.
373: &mt('Logout').'</a>';
374: $buttontext=&mt('Re-Enter Key');
375: }
376: $r->print(<<ENDENTEREDKEY);
377: $start_page
378: <script type="text/javascript">
379: // <![CDATA[
380: $swinfo
381: // ]]>
382: </script>
383: <form action="" method="post">
384: <input type="hidden" name="selectrole" value="1" />
385: <input type="hidden" name="$trolecode" value="1" />
386: <span class="LC_fontsize_large">$message</span><br />
387: <input type="submit" value="$buttontext" />
388: </form>
389: $end_page
390: ENDENTEREDKEY
391: return OK;
392: } else {
393: # print form to enter a new key
394: &Apache::loncommon::content_type($r,'text/html');
395: &Apache::loncommon::no_cache($r);
396: $r->send_http_header;
397: my $swinfo=&Apache::lonmenu::rawconfig();
398: my $start_page=&Apache::loncommon::start_page
399: ('Enter Access Key to Unlock this Course');
400: my $end_page=&Apache::loncommon::end_page();
401: $r->print(<<ENDENTERKEY);
402: $start_page
403: <script type="text/javascript">
404: // <![CDATA[
405: $swinfo
406: // ]]>
407: </script>
408: <form action="" method="post">
409: <input type="hidden" name="selectrole" value="1" />
410: <input type="hidden" name="$trolecode" value="1" />
411: <input type="text" size="20" name="newkey" value="$env{'form.newkey'}" />
412: <input type="submit" value="Enter key" />
413: </form>
414: $end_page
415: ENDENTERKEY
416: return OK;
417: }
418: }
419: }
420: &Apache::lonnet::log($env{'user.domain'},
421: $env{'user.name'},
422: $env{'user.home'},
423: "Role ".$trolecode);
424:
425: &Apache::lonnet::appenv(
426: {'request.role' => $trolecode,
427: 'request.role.domain' => $cdom,
428: 'request.course.sec' => $csec,
429: 'request.course.groups' => $cgrps});
430: my $tadv=0;
431:
432: if (($cnum) && ($role ne 'ca') && ($role ne 'aa')) {
433: my $msg;
434: my ($furl,$ferr)=
435: &Apache::lonuserstate::readmap($cdom.'/'.$cnum);
436: if (($env{'form.orgurl'}) &&
437: ($env{'form.orgurl'}!~/^\/adm\/flip/)) {
438: my $dest=$env{'form.orgurl'};
439: if ($env{'form.symb'}) {
440: if ($dest =~ /\?/) {
441: $dest .= '&';
442: } else {
443: $dest .= '?'
444: }
445: $dest .= 'symb='.$env{'form.symb'};
446: }
447: if (&Apache::lonnet::allowed('adv') eq 'F') { $tadv=1; }
448: &Apache::lonnet::appenv({'request.role.adv'=>$tadv});
449: if (($ferr) && ($tadv)) {
450: &error_page($r,$ferr,$dest);
451: } else {
452: $r->internal_redirect($dest);
453: }
454: return OK;
455: } else {
456: if (!$env{'request.course.id'}) {
457: &Apache::lonnet::appenv(
458: {"request.course.id" => $cdom.'_'.$cnum});
459: $furl='/adm/roles?tryagain=1';
460: $msg='<p><span class="LC_error">'
461: .&mt('Could not initialize [_1] at this time.',
462: $env{'course.'.$cdom.'_'.$cnum.'.description'})
463: .'</span></p>'
464: .'<p>'.&mt('Please try again.').'</p>'
465: .'<p>'.$ferr.'</p>';
466: }
467: if (&Apache::lonnet::allowed('adv') eq 'F') { $tadv=1; }
468: &Apache::lonnet::appenv({'request.role.adv'=>$tadv});
469:
470: if (($ferr) && ($tadv)) {
471: &error_page($r,$ferr,$furl);
472: } else {
473: # Check to see if the user is a CC entering a course
474: # for the first time
475: my (undef, undef, $role, $courseid) = split(/\./, $envkey);
476: if (substr($courseid, 0, 1) eq '/') {
477: $courseid = substr($courseid, 1);
478: }
479: $courseid =~ s/\//_/;
480: if ((($role eq 'cc') || ($role eq 'co'))
481: && ($env{'course.' . $courseid .'.course.helper.not.run'})) {
482: $furl = "/adm/helper/course.initialization.helper";
483: # Send the user to the course they selected
484: } elsif ($env{'request.course.id'}) {
485: if ($env{'form.destinationurl'}) {
486: my $dest = $env{'form.destinationurl'};
487: if ($env{'form.destsymb'} ne '') {
488: my $esc_symb = &HTML::Entities::encode($env{'form.destsymb'},'"<>&');
489: $dest .= '?symb='.$esc_symb;
490: }
491: &redirect_user($r, &mt('Entering [_1]',
492: $env{'course.'.$courseid.'.description'}),
493: $dest, $msg);
494: return OK;
495: }
496: if (&Apache::lonnet::allowed('whn',
497: $env{'request.course.id'})
498: || &Apache::lonnet::allowed('whn',
499: $env{'request.course.id'}.'/'
500: .$env{'request.course.sec'})
501: ) {
502: my $startpage = &courseloadpage($courseid);
503: unless ($startpage eq 'firstres') {
504: $msg = &mt('Entering [_1] ...',
505: $env{'course.'.$courseid.'.description'});
506: &redirect_user($r, &mt('New in course'),
507: '/adm/whatsnew?refpage=start', $msg);
508: return OK;
509: }
510: }
511: }
512: # Are we allowed to look at the first resource?
513: if ($furl !~ m|^/adm/|) {
514: # Guess not ...
515: $furl=&Apache::lonpageflip::first_accessible_resource();
516: }
517: $msg = &mt('Entering [_1] ...',
518: $env{'course.'.$courseid.'.description'});
519: &redirect_user($r, &mt('Entering [_1]',
520: $env{'course.'.$courseid.'.description'}),
521: $furl, $msg);
522: }
523: return OK;
524: }
525: }
526: #
527: # Send the user to the construction space they selected
528: if ($role =~ /^(au|ca|aa)$/) {
529: my $redirect_url = '/priv/';
530: if ($role eq 'au') {
531: $redirect_url.=$env{'user.name'};
532: } else {
533: $where =~ /\/(.*)$/;
534: $redirect_url .= $1;
535: }
536: $redirect_url .= '/';
537: &redirect_user($r,&mt('Entering Construction Space'),
538: $redirect_url);
539: return OK;
540: }
541: if ($role eq 'dc') {
542: my $redirect_url = '/adm/menu/';
543: &redirect_user($r,&mt('Loading Domain Coordinator Menu'),
544: $redirect_url);
545: return OK;
546: }
547: if ($role eq 'sc') {
548: my $redirect_url = '/adm/grades?command=scantronupload';
549: &redirect_user($r,&mt('Loading Data Upload Page'),
550: $redirect_url);
551: return OK;
552: }
553: }
554: }
555: }
556: }
557:
558:
559: # =============================================================== No Roles Init
560:
561: &Apache::loncommon::content_type($r,'text/html');
562: &Apache::loncommon::no_cache($r);
563: $r->send_http_header;
564: return OK if $r->header_only;
565:
566: my $crumbtext = 'User Roles';
567: my $pagetitle = 'My Roles';
568: my $recent = &mt('Recent Roles');
569: my $show_course=&Apache::loncommon::show_course();
570: if ($show_course) {
571: $crumbtext = 'Courses';
572: $pagetitle = 'My Courses';
573: $recent = &mt('Recent Courses');
574: }
575: my $brcrum =[{href=>"/adm/roles",text=>$crumbtext}];
576: my $swinfo=&Apache::lonmenu::rawconfig();
577: my $start_page=&Apache::loncommon::start_page($pagetitle,undef,{bread_crumbs=>$brcrum});
578: my $standby=&mt('Role selected. Please stand by.');
579: $standby=~s/\n/\\n/g;
580: my $noscript='<span class="LC_error">'.&mt('Use of LON-CAPA requires Javascript to be enabled in your web browser.').'<br />'.&mt('As this is not the case, most functionality in the system will be unavailable.').'</span><br />';
581:
582: $r->print(<<ENDHEADER);
583: $start_page
584: <br />
585: <noscript>
586: $noscript
587: </noscript>
588: <script type="text/javascript">
589: // <![CDATA[
590: $swinfo
591: window.focus();
592:
593: active=true;
594:
595: function enterrole (thisform,rolecode,buttonname) {
596: if (active) {
597: active=false;
598: document.title='$standby';
599: window.status='$standby';
600: thisform.newrole.value=rolecode;
601: thisform.submit();
602: } else {
603: alert('$standby');
604: }
605: }
606: // ]]>
607: </script>
608: ENDHEADER
609:
610: # ------------------------------------------ Get Error Message from Environment
611:
612: my ($fn,$priv,$nochoose,$error,$msg)=split(/:/,$env{'user.error.msg'});
613: if ($env{'user.error.msg'}) {
614: $r->log_reason(
615: "$msg for $env{'user.name'} domain $env{'user.domain'} access $priv",$fn);
616: }
617:
618: # ------------------------------------------------- Can this user re-init, etc?
619:
620: my $advanced=$env{'user.adv'};
621: &Apache::loncommon::get_unprocessed_cgi($ENV{'QUERY_STRING'},['tryagain']);
622: my $tryagain=$env{'form.tryagain'};
623: my $reinit=$env{'user.reinit'};
624: delete $env{'user.reinit'};
625:
626: # -------------------------------------------------------- Generate Page Output
627: # --------------------------------------------------------------- Error Header?
628: if ($error) {
629: $r->print("<h1>".&mt('LON-CAPA Access Control')."</h1>");
630: $r->print("<!-- LONCAPAACCESSCONTROLERRORSCREEN --><hr /><pre>");
631: if ($priv ne '') {
632: $r->print(&mt('Access : ').&Apache::lonnet::plaintext($priv)."\n");
633: }
634: if ($fn ne '') {
635: $r->print(&mt('Resource: ').&Apache::lonenc::check_encrypt($fn)."\n");
636: }
637: if ($msg ne '') {
638: $r->print(&mt('Action : ').$msg."\n");
639: }
640: $r->print("</pre><hr />");
641: my $url=$fn;
642: my $last;
643: if (tie(my %hash,'GDBM_File',$env{'request.course.fn'}.'_symb.db',
644: &GDBM_READER(),0640)) {
645: $last=$hash{'last_known'};
646: untie(%hash);
647: }
648: if ($last) { $fn.='?symb='.&escape($last); }
649:
650: &Apache::londocs::changewarning($r,undef,'You have modified your course recently, [_1] may fix this access problem.',
651: &Apache::lonenc::check_encrypt($fn));
652: } else {
653: if ($env{'user.error.msg'}) {
654: if ($reinit) {
655: $r->print(
656: '<h3><span class="LC_error">'.
657: &mt('As your session file for the course or community has expired, you will need to re-select it.').'</span></h3>');
658: } else {
659: $r->print(
660: '<h3><span class="LC_error">'.
661: &mt('You need to choose another user role or enter a specific course or community for this function.').
662: '</span></h3>');
663: }
664: }
665: }
666: # -------------------------------------------------------- Choice or no choice?
667: if ($nochoose) {
668: $r->print("<h2>".&mt('Sorry ...')."</h2>\n<span class='LC_error'>".
669: &mt('This action is currently not authorized.').'</span>'.
670: &Apache::loncommon::end_page());
671: return OK;
672: } else {
673: if (($ENV{'REDIRECT_QUERY_STRING'}) && ($fn)) {
674: $fn.='?'.$ENV{'REDIRECT_QUERY_STRING'};
675: }
676: $r->print('<form method="post" name="rolechoice" action="'.(($fn)?$fn:$r->uri).'">');
677: $r->print('<input type="hidden" name="orgurl" value="'.$fn.'" />');
678: $r->print('<input type="hidden" name="selectrole" value="1" />');
679: $r->print('<input type="hidden" name="newrole" value="" />');
680: }
681:
682: my (%roletext,%sortrole,%roleclass,%futureroles,%timezones);
683: my ($countactive,$countfuture,$inrole,$possiblerole) =
684: &gather_roles($then,$refresh,$now,$reinit,$nochoose,\%roletext,\%sortrole,\%roleclass,
685: \%futureroles,\%timezones);
686:
687: $refresh = $now;
688: &Apache::lonnet::appenv({'user.refresh.time' => $refresh});
689: if ($env{'user.adv'}) {
690: $r->print('<p><label><input type="checkbox" name="showall"');
691: if ($env{'form.showall'}) { $r->print(' checked="checked" '); }
692: $r->print(' />'.&mt('Show all roles').'</label>'
693: .' <input type="submit" value="'.&mt('Update display').'" />'
694: .'</p>');
695: } else {
696: if ($countactive > 0) {
697: $r->print(&Apache::loncoursequeueadmin::queued_selfenrollment());
698: my $domdesc = &Apache::lonnet::domain($env{'user.domain'},'description');
699: my $esc_dom = &HTML::Entities::encode($env{'user.domain'},'"<>&');
700: $r->print(
701: '<p>'
702: .&mt('[_1]Visit the [_2]Course/Community Catalog[_3]'
703: .' to view all [_4] LON-CAPA courses and communities.'
704: ,'<b>'
705: ,'<a href="/adm/coursecatalog?showdom='.$esc_dom.'">'
706: ,'</a></b>',$domdesc)
707: .'<br />'
708: .&mt('If a course or community is [_1]not[_2] in your list of current courses and communities below,'
709: .' you may be able to enroll if self-enrollment is permitted.'
710: ,'<b>','</b>')
711: .'</p>'
712: );
713: }
714: }
715:
716: # No active roles
717: if ($countactive==0) {
718: if ($inrole) {
719: $r->print('<h2>'.&mt('Currently no additional roles, courses or communities').'</h2>');
720: } else {
721: $r->print('<h2>'.&mt('Currently no active roles, courses or communities').'</h2>');
722: }
723: &findcourse_advice($r);
724: &requestcourse_advice($r);
725: $r->print('</form>');
726: if ($countfuture) {
727: $r->print(&mt('The following [quant,_1,role,roles] will become active in the future:',$countfuture));
728: my $doheaders = &roletable_headers($r,\%roleclass,\%sortrole,
729: $nochoose);
730: &print_rolerows($r,$doheaders,\%roleclass,\%sortrole,\%dcroles,
731: \%roletext);
732: my $tremark='';
733: my $tbg;
734: if ($env{'request.role'} eq 'cm') {
735: $tbg="LC_roles_selected";
736: $tremark=&mt('Currently selected.').' ';
737: } else {
738: $tbg="LC_roles_is";
739: }
740: $r->print(&Apache::loncommon::start_data_table_row()
741: .'<td class="'.$tbg.'"> </td>'
742: .'<td colspan="3">'
743: .&mt('No role specified')
744: .'</td>'
745: .'<td>'.$tremark.' </td>'
746: .&Apache::loncommon::end_data_table_row()
747: );
748:
749: $r->print(&Apache::loncommon::end_data_table());
750: }
751: $r->print(&Apache::loncommon::end_page());
752: return OK;
753: }
754: # ----------------------------------------------------------------------- Table
755:
756: if ($numdc > 0) {
757: $r->print(&coursepick_jscript());
758: $r->print(&Apache::loncommon::coursebrowser_javascript().
759: &Apache::loncommon::authorbrowser_javascript());
760: }
761:
762: unless ((!&Apache::loncommon::show_course()) || ($nochoose) || ($countactive==1)) {
763: $r->print("<h2>".&mt('Select a Course to Enter')."</h2>\n");
764: }
765: if ($env{'form.destinationurl'}) {
766: $r->print('<input type="hidden" name="destinationurl" value="'.
767: $env{'form.destinationurl'}.'" />');
768: if ($env{'form.destsymb'} ne '') {
769: $r->print('<input type="hidden" name="destsymb" value="'.
770: $env{'form.destsymb'}.'" />');
771: }
772: }
773:
774: my $doheaders = &roletable_headers($r,\%roleclass,\%sortrole,$nochoose);
775: if ($env{'environment.recentroles'}) {
776: my %recent_roles =
777: &Apache::lonhtmlcommon::get_recent('roles',$env{'environment.recentrolesn'});
778: my $output='';
779: foreach my $role (sort(keys(%recent_roles))) {
780: if (ref($roletext{'user.role.'.$role}) eq 'ARRAY') {
781: $output.= &Apache::loncommon::start_data_table_row().
782: $roletext{'user.role.'.$role}->[0].
783: &Apache::loncommon::end_data_table_row().
784: &Apache::loncommon::continue_data_table_row().
785: $roletext{'user.role.'.$role}->[1].
786: &Apache::loncommon::end_data_table_row();
787: if ($role =~ m{dc\./($match_domain)/}
788: && $dcroles{$1}) {
789: $output .= &adhoc_roles_row($1,'recent');
790: }
791: } elsif ($numdc > 0) {
792: unless ($role =~/^error\:/) {
793: $output.=&display_cc_role('user.role.'.$_);
794: }
795: }
796: }
797: if ($output) {
798: $r->print(&Apache::loncommon::start_data_table_empty_row()
799: .'<td align="center" colspan="5">'
800: .$recent
801: .'</td>'
802: .&Apache::loncommon::end_data_table_empty_row()
803: );
804: $r->print($output);
805: $doheaders ++;
806: }
807: }
808: &print_rolerows($r,$doheaders,\%roleclass,\%sortrole,\%dcroles,\%roletext);
809: if ($countactive > 1) {
810: my $tremark='';
811: my $tbg;
812: if ($env{'request.role'} eq 'cm') {
813: $tbg="LC_roles_selected";
814: $tremark=&mt('Currently selected.').' ';
815: } else {
816: $tbg="LC_roles_is";
817: }
818: $r->print(&Apache::loncommon::start_data_table_row());
819: unless ($nochoose) {
820: if ($env{'request.role'} ne 'cm') {
821: $r->print('<td class="'.$tbg.'"><input type="submit" value="'.
822: &mt('Select').'" name="cm" /></td>');
823: } else {
824: $r->print('<td class="'.$tbg.'"> </td>');
825: }
826: }
827: $r->print('<td colspan="3">'
828: .&mt('No role specified')
829: .'</td>'
830: .'<td>'.$tremark.' </td>'
831: .&Apache::loncommon::end_data_table_row()
832: );
833: }
834: $r->print(&Apache::loncommon::end_data_table());
835: unless ($nochoose) {
836: $r->print("</form>\n");
837: }
838: # ------------------------------------------------------------ Privileges Info
839: if (($advanced) && (($env{'user.error.msg'}) || ($error))) {
840: $r->print('<hr /><h2>'.&mt('Current Privileges').'</h2>');
841: $r->print(&privileges_info());
842: }
843: $r->print(&Apache::lonnet::getannounce());
844: if ($advanced) {
845: my $esc_dom = &HTML::Entities::encode($env{'user.domain'},'"<>&');
846: $r->print('<p><small><i>'
847: .&mt('This LON-CAPA server is version [_1]',$r->dir_config('lonVersion'))
848: .'</i><br />'
849: .'<a href="/adm/logout">'.&mt('Logout').'</a> '
850: .'<a href="/adm/coursecatalog?showdom='.$esc_dom.'">'
851: .&mt('Course/Community Catalog')
852: .'</a></small></p>');
853: }
854: $r->print(&Apache::loncommon::end_page());
855: return OK;
856: }
857:
858: sub gather_roles {
859: my ($then,$refresh,$now,$reinit,$nochoose,$roletext,$sortrole,$roleclass,$futureroles,$timezones) = @_;
860: my ($countactive,$countfuture,$inrole,$possiblerole) = (0,0,0,'');
861: my $advanced = $env{'user.adv'};
862: my $tryagain = $env{'form.tryagain'};
863: foreach my $envkey (sort(keys(%env))) {
864: my $button = 1;
865: my $switchserver='';
866: my ($role_text,$role_text_end,$sortkey);
867: if ($envkey=~/^user\.role\./) {
868: my ($role,$where,$trolecode,$tstart,$tend,$tremark,$tstatus,$tpstart,$tpend);
869: &Apache::lonnet::role_status($envkey,$then,$refresh,$now,\$role,\$where,
870: \$trolecode,\$tstatus,\$tstart,\$tend);
871: next if (!defined($role) || $role eq '' || $role =~ /^gr/);
872: my $timezone = &role_timezone($where,$timezones);
873: $tremark='';
874: $tpstart=' ';
875: $tpend=' ';
876: if ($tstart) {
877: $tpstart=&Apache::lonlocal::locallocaltime($tstart,$timezone);
878: }
879: if ($tend) {
880: $tpend=&Apache::lonlocal::locallocaltime($tend,$timezone);
881: }
882: if ($env{'request.role'} eq $trolecode) {
883: $tstatus='selected';
884: }
885: my $tbg;
886: if (($tstatus eq 'is')
887: || ($tstatus eq 'selected')
888: || ($tstatus eq 'future')
889: || ($env{'form.showall'})) {
890: if ($tstatus eq 'is') {
891: $tbg='LC_roles_is';
892: $possiblerole=$trolecode;
893: $countactive++;
894: } elsif ($tstatus eq 'future') {
895: $tbg='LC_roles_future';
896: $button=0;
897: $futureroles->{$trolecode} = $tstart.':'.$tend;
898: $countfuture ++;
899: } elsif ($tstatus eq 'expired') {
900: $tbg='LC_roles_expired';
901: $button=0;
902: } elsif ($tstatus eq 'will_not') {
903: $tbg='LC_roles_will_not';
904: $tremark.=&mt('Expired after logout.').' ';
905: } elsif ($tstatus eq 'selected') {
906: $tbg='LC_roles_selected';
907: $inrole=1;
908: $countactive++;
909: $tremark.=&mt('Currently selected.').' ';
910: }
911: my $trole;
912: if ($role =~ /^cr\//) {
913: my ($rdummy,$rdomain,$rauthor,$rrole)=split(/\//,$role);
914: if ($tremark) { $tremark.='<br />'; }
915: $tremark.=&mt('Defined by [_1] at [_2].',$rauthor,$rdomain);
916: }
917: $trole=Apache::lonnet::plaintext($role);
918: my $ttype;
919: my $twhere;
920: my ($tdom,$trest,$tsection)=
921: split(/\//,Apache::lonnet::declutter($where));
922: # First, Co-Authorship roles
923: if (($role eq 'ca') || ($role eq 'aa')) {
924: my $home = &Apache::lonnet::homeserver($trest,$tdom);
925: my $allowed=0;
926: my @ids=&Apache::lonnet::current_machine_ids();
927: foreach my $id (@ids) { if ($id eq $home) { $allowed=1; } }
928: if (!$allowed) {
929: $button=0;
930: $switchserver='otherserver='.$home.'&role='.$trolecode;
931: }
932: #next if ($home eq 'no_host');
933: $home = &Apache::lonnet::hostname($home);
934: $ttype='Construction Space';
935: $twhere=&mt('User').': '.$trest.'<br />'.&mt('Domain').
936: ': '.$tdom.'<br />'.
937: ' '.&mt('Server').': '.$home;
938: $env{'course.'.$tdom.'_'.$trest.'.description'}='ca';
939: $tremark.=&Apache::lonhtmlcommon::authorbombs('/res/'.$tdom.'/'.$trest.'/');
940: $sortkey=$role."$trest:$tdom";
941: } elsif ($role eq 'au') {
942: # Authors
943: my $home = &Apache::lonnet::homeserver
944: ($env{'user.name'},$env{'user.domain'});
945: my $allowed=0;
946: my @ids=&Apache::lonnet::current_machine_ids();
947: foreach my $id (@ids) { if ($id eq $home) { $allowed=1; } }
948: if (!$allowed) {
949: $button=0;
950: $switchserver='otherserver='.$home.'&role='.$trolecode;
951: }
952: #next if ($home eq 'no_host');
953: $home = &Apache::lonnet::hostname($home);
954: $ttype='Construction Space';
955: $twhere=&mt('Domain').': '.$tdom.'<br />'.&mt('Server').
956: ': '.$home;
957: $env{'course.'.$tdom.'_'.$trest.'.description'}='ca';
958: $tremark.=&Apache::lonhtmlcommon::authorbombs('/res/'.$tdom.'/'.$env{'user.name'}.'/');
959: $sortkey=$role;
960: } elsif ($trest) {
961: my $tcourseid=$tdom.'_'.$trest;
962: $ttype = &Apache::loncommon::course_type($tcourseid);
963: $trole = &Apache::lonnet::plaintext($role,$ttype,$tcourseid);
964: if ($env{'course.'.$tcourseid.'.description'}) {
965: $twhere=$env{'course.'.$tcourseid.'.description'};
966: $sortkey=$role."\0".$tdom."\0".$twhere."\0".$envkey;
967: $twhere = &HTML::Entities::encode($twhere,'"<>&');
968: unless ($twhere eq &mt('Currently not available')) {
969: $twhere.=' <span class="LC_fontsize_small">'.
970: &Apache::loncommon::syllabuswrapper(&mt('Syllabus'),$trest,$tdom).
971: '</span>';
972: }
973: } else {
974: my %newhash=&Apache::lonnet::coursedescription($tcourseid);
975: if (%newhash) {
976: $sortkey=$role."\0".$tdom."\0".$newhash{'description'}.
977: "\0".$envkey;
978: $twhere=&HTML::Entities::encode($newhash{'description'},'"<>&').
979: ' <span class="LC_fontsize_small">'.
980: &Apache::loncommon::syllabuswrapper(&mt('Syllabus'),$trest,$tdom).
981: '</span>';
982: $ttype = $newhash{'type'};
983: $trole = &Apache::lonnet::plaintext($role,$ttype,$tcourseid);
984: } else {
985: $twhere=&mt('Currently not available');
986: $env{'course.'.$tcourseid.'.description'}=$twhere;
987: $sortkey=$role."\0".$tdom."\0".$twhere."\0".$envkey;
988: $ttype = 'Unavailable';
989: }
990: }
991: if ($tsection) {
992: $twhere.='<br />'.&mt('Section').': '.$tsection;
993: }
994: if ($role ne 'st') { $twhere.="<br />".&mt('Domain').":".$tdom; }
995: } elsif ($tdom) {
996: $ttype='Domain';
997: $twhere=$tdom;
998: $sortkey=$role.$twhere;
999: } else {
1000: $ttype='System';
1001: $twhere=&mt('system wide');
1002: $sortkey=$role.$twhere;
1003: }
1004: ($role_text,$role_text_end) =
1005: &build_roletext($trolecode,$tdom,$trest,$tstatus,$tryagain,
1006: $advanced,$tremark,$tbg,$trole,$twhere,$tpstart,
1007: $tpend,$nochoose,$button,$switchserver,$reinit);
1008: $roletext->{$envkey}=[$role_text,$role_text_end];
1009: if (!$sortkey) {$sortkey=$twhere."\0".$envkey;}
1010: $sortrole->{$sortkey}=$envkey;
1011: $roleclass->{$envkey}=$ttype;
1012: }
1013: }
1014: }
1015: return ($countactive,$countfuture,$inrole,$possiblerole);
1016: }
1017:
1018: sub role_timezone {
1019: my ($where,$timezones) = @_;
1020: my $timezone;
1021: if (ref($timezones) eq 'HASH') {
1022: if ($where =~ m{^/($match_domain)/($match_courseid)}) {
1023: my $cdom = $1;
1024: my $cnum = $2;
1025: if ($cdom && $cnum) {
1026: if (!exists($timezones->{$cdom.'_'.$cnum})) {
1027: my %timehash =
1028: &Apache::lonnet::get('environment',['timezone'],$cdom,$cnum);
1029: if ($timehash{'timezone'} eq '') {
1030: if (!exists($timezones->{$cdom})) {
1031: my %domdefaults =
1032: &Apache::lonnet::get_domain_defaults($cdom);
1033: if ($domdefaults{'timezone_def'} eq '') {
1034: $timezones->{$cdom} = 'local';
1035: } else {
1036: $timezones->{$cdom} = $domdefaults{'timezone_def'};
1037: }
1038: }
1039: $timezones->{$cdom.'_'.$cnum} = $timezones->{$cdom};
1040: } else {
1041: $timezones->{$cdom.'_'.$cnum} =
1042: &Apache::lonlocal::gettimezone($timehash{'timezone'});
1043: }
1044: }
1045: $timezone = $timezones->{$cdom.'_'.$cnum};
1046: }
1047: } else {
1048: my ($tdom) = ($where =~ m{^/($match_domain)});
1049: if ($tdom) {
1050: if (!exists($timezones->{$tdom})) {
1051: my %domdefaults = &Apache::lonnet::get_domain_defaults($tdom);
1052: if ($domdefaults{'timezone_def'} eq '') {
1053: $timezones->{$tdom} = 'local';
1054: } else {
1055: $timezones->{$tdom} = $domdefaults{'timezone_def'};
1056: }
1057: }
1058: $timezone = $timezones->{$tdom};
1059: }
1060: }
1061: if ($timezone eq 'local') {
1062: $timezone = undef;
1063: }
1064: }
1065: return $timezone;
1066: }
1067:
1068: sub roletable_headers {
1069: my ($r,$roleclass,$sortrole,$nochoose) = @_;
1070: my $doheaders;
1071: if ((ref($sortrole) eq 'HASH') && (ref($roleclass) eq 'HASH')) {
1072: $r->print('<br />'
1073: .&Apache::loncommon::start_data_table()
1074: .&Apache::loncommon::start_data_table_header_row()
1075: );
1076: if (!$nochoose) { $r->print('<th> </th>'); }
1077: $r->print('<th>'.&mt('User Role').'</th>'
1078: .'<th>'.&mt('Extent').'</th>'
1079: .'<th>'.&mt('Start').'</th>'
1080: .'<th>'.&mt('End').'</th>'
1081: .&Apache::loncommon::end_data_table_header_row()
1082: );
1083: $doheaders=-1;
1084: my @roletypes = &roletypes();
1085: foreach my $type (@roletypes) {
1086: my $haverole=0;
1087: foreach my $which (sort {uc($a) cmp uc($b)} (keys(%{$sortrole}))) {
1088: if ($roleclass->{$sortrole->{$which}} =~ /^\Q$type\E/) {
1089: $haverole=1;
1090: }
1091: }
1092: if ($haverole) { $doheaders++; }
1093: }
1094: }
1095: return $doheaders;
1096: }
1097:
1098: sub roletypes {
1099: my @types = ('Domain','Construction Space','Course','Community','Unavailable','System');
1100: return @types;
1101: }
1102:
1103: sub print_rolerows {
1104: my ($r,$doheaders,$roleclass,$sortrole,$dcroles,$roletext) = @_;
1105: if ((ref($roleclass) eq 'HASH') && (ref($sortrole) eq 'HASH')) {
1106: my @types = &roletypes();
1107: foreach my $type (@types) {
1108: my $output;
1109: foreach my $which (sort {uc($a) cmp uc($b)} (keys(%{$sortrole}))) {
1110: if ($roleclass->{$sortrole->{$which}} =~ /^\Q$type\E/) {
1111: if (ref($roletext) eq 'HASH') {
1112: if (ref($roletext->{$sortrole->{$which}}) eq 'ARRAY') {
1113: $output.= &Apache::loncommon::start_data_table_row().
1114: $roletext->{$sortrole->{$which}}->[0].
1115: &Apache::loncommon::end_data_table_row().
1116: &Apache::loncommon::continue_data_table_row().
1117: $roletext->{$sortrole->{$which}}->[1].
1118: &Apache::loncommon::end_data_table_row();
1119: }
1120: if ($sortrole->{$which} =~ m-dc\./($match_domain)/-) {
1121: if (ref($dcroles) eq 'HASH') {
1122: if ($dcroles->{$1}) {
1123: $output .= &adhoc_roles_row($1,'');
1124: }
1125: }
1126: }
1127: }
1128: }
1129: }
1130: if ($output) {
1131: if ($doheaders > 0) {
1132: $r->print(&Apache::loncommon::start_data_table_empty_row()
1133: .'<td align="center" colspan="5">'
1134: .&mt($type)
1135: .'</td>'
1136: .&Apache::loncommon::end_data_table_empty_row()
1137: );
1138: }
1139: $r->print($output);
1140: }
1141: }
1142: }
1143: }
1144:
1145: sub findcourse_advice {
1146: my ($r) = @_;
1147: my $domdesc = &Apache::lonnet::domain($env{'user.domain'},'description');
1148: my $esc_dom = &HTML::Entities::encode($env{'user.domain'},'"<>&');
1149: if (&Apache::lonnet::auto_run(undef,$env{'user.domain'})) {
1150: $r->print(&mt('If you were expecting to see an active role listed for a particular course in the [_1] domain, it may be missing for one of the following reasons:',$domdesc).'
1151: <ul>
1152: <li>'.&mt('The course has yet to be created.').'</li>
1153: <li>'.&mt('Automatic enrollment of registered students has not been enabled for the course.').'</li>
1154: <li>'.&mt('You are in a section of course for which automatic enrollment in the corresponding LON-CAPA course is not active.').'</li>
1155: <li>'.&mt('The start date for automated enrollment has yet to be reached.').'</li>
1156: <li>'.&mt('You registered for the course recently and there is a time lag between the time you register, and the time this information becomes available for the update of LON-CAPA course rosters.').'</li>
1157: </ul>');
1158: } else {
1159: $r->print(&mt('If you were expecting to see an active role listed for a particular course, that course may not have been created yet.').'<br />');
1160: }
1161: $r->print('<h3>'.&mt('Self-Enrollment').'</h3>'.
1162: '<p>'.&mt('The [_1]Course/Community Catalog[_2] provides information about all [_3] classes for which LON-CAPA courses have been created, as well as any communities in the domain.','<a href="/adm/coursecatalog?showdom='.$esc_dom.'">','</a>',$domdesc).'<br />');
1163: $r->print(&mt('You can search for courses and communities which permit self-enrollment, if you would like to enroll in one.').'</p>'.
1164: &Apache::loncoursequeueadmin::queued_selfenrollment());
1165: return;
1166: }
1167:
1168: sub requestcourse_advice {
1169: my ($r) = @_;
1170: my $domdesc = &Apache::lonnet::domain($env{'user.domain'},'description');
1171: my $esc_dom = &HTML::Entities::encode($env{'user.domain'},'"<>&');
1172: my (%can_request,%request_doms);
1173: &Apache::lonnet::check_can_request($env{'user.domain'},\%can_request,\%request_doms);
1174: if (keys(%request_doms) > 0) {
1175: my ($types,$typename) = &Apache::loncommon::course_types();
1176: if ((ref($types) eq 'ARRAY') && (ref($typename) eq 'HASH')) {
1177: $r->print('<h3>'.&mt('Request creation of a course or community').'</h3>'.
1178: '<p>'.&mt('You have rights to request the creation of courses and/or communities in the following domain(s):').'<ul>');
1179: my (@reqdoms,@reqtypes);
1180: foreach my $type (sort(keys(%request_doms))) {
1181: push(@reqtypes,$type);
1182: if (ref($request_doms{$type}) eq 'ARRAY') {
1183: my $domstr = join(', ',map { &Apache::lonnet::domain($_) } sort(@{$request_doms{$type}}));
1184: $r->print(
1185: '<li>'
1186: .&mt('[_1]'.$typename->{$type}.'[_2] in domain: [_3]',
1187: '<i>',
1188: '</i>',
1189: '<b>'.$domstr.'</b>')
1190: .'</li>'
1191: );
1192: foreach my $dom (@{$request_doms{$type}}) {
1193: unless (grep(/^\Q$dom\E/,@reqdoms)) {
1194: push(@reqdoms,$dom);
1195: }
1196: }
1197: }
1198: }
1199: my @showtypes;
1200: foreach my $type (@{$types}) {
1201: if (grep(/^\Q$type\E$/,@reqtypes)) {
1202: push(@showtypes,$type);
1203: }
1204: }
1205: my $requrl = '/adm/requestcourse';
1206: if (@reqdoms == 1) {
1207: $requrl .= '?showdom='.$reqdoms[0];
1208: }
1209: if (@showtypes > 0) {
1210: $requrl.=(($requrl=~/\?/)?'&':'?').'crstype='.$showtypes[0];
1211: }
1212: if (@reqdoms == 1 || @showtypes > 0) {
1213: $requrl .= '&state=crstype&action=new';
1214: }
1215: $r->print('</ul>'.&mt('Use the [_1]request form[_2] to submit a request for creation of a new course or community.','<a href="'.$requrl.'">','</a>').'</p>');
1216: }
1217: }
1218: return;
1219: }
1220:
1221: sub privileges_info {
1222: my ($which) = @_;
1223: my $output;
1224:
1225: $which ||= $env{'request.role'};
1226:
1227: foreach my $envkey (sort(keys(%env))) {
1228: next if ($envkey!~/^user\.priv\.\Q$which\E\.(.*)/);
1229:
1230: my $where=$1;
1231: my $ttype;
1232: my $twhere;
1233: my (undef,$tdom,$trest,$tsec)=split(m{/},$where);
1234: if ($trest) {
1235: if ($env{'course.'.$tdom.'_'.$trest.'.description'} eq 'ca') {
1236: $ttype='Construction Space';
1237: $twhere='User: '.$trest.', Domain: '.$tdom;
1238: } else {
1239: $ttype= &Apache::loncommon::course_type($tdom.'_'.$trest);
1240: $twhere=$env{'course.'.$tdom.'_'.$trest.'.description'};
1241: if ($tsec) {
1242: my $sec_type = 'Section';
1243: if (exists($env{"user.role.gr.$where"})) {
1244: $sec_type = 'Group';
1245: }
1246: $twhere.=' ('.$sec_type.': '.$tsec.')';
1247: }
1248: }
1249: } elsif ($tdom) {
1250: $ttype='Domain';
1251: $twhere=$tdom;
1252: } else {
1253: $ttype='System';
1254: $twhere='/';
1255: }
1256: $output .= "\n<h3>".&mt($ttype).': '.$twhere.'</h3>'."\n<ul>";
1257: foreach my $priv (sort(split(/:/,$env{$envkey}))) {
1258: next if (!$priv);
1259:
1260: my ($prv,$restr)=split(/\&/,$priv);
1261: my $trestr='';
1262: if ($restr ne 'F') {
1263: $trestr.=' ('.
1264: join(', ',
1265: map { &Apache::lonnet::plaintext($_) }
1266: (split('',$restr))).') ';
1267: }
1268: $output .= "\n\t".
1269: '<li>'.&Apache::lonnet::plaintext($prv).$trestr.'</li>';
1270: }
1271: $output .= "\n".'</ul>';
1272: }
1273: return $output;
1274: }
1275:
1276: sub build_roletext {
1277: my ($trolecode,$tdom,$trest,$tstatus,$tryagain,$advanced,$tremark,$tbg,$trole,$twhere,$tpstart,$tpend,$nochoose,$button,$switchserver,$reinit) = @_;
1278: my ($roletext,$roletext_end);
1279: my $is_dc=($trolecode =~ m/^dc\./);
1280: my $rowspan=($is_dc) ? ''
1281: : ' rowspan="2" ';
1282:
1283: unless ($nochoose) {
1284: my $buttonname=$trolecode;
1285: $buttonname=~s/\W//g;
1286: if (!$button) {
1287: if ($switchserver) {
1288: $roletext.='<td'.$rowspan.' class="'.$tbg.'">'
1289: .'<a href="/adm/switchserver?'.$switchserver.'">'
1290: .&mt('Switch Server')
1291: .'</a></td>';
1292: } else {
1293: $roletext.=('<td'.$rowspan.' class="'.$tbg.'"> </td>');
1294: }
1295: } elsif ($tstatus eq 'is') {
1296: $roletext.='<td'.$rowspan.' class="'.$tbg.'">'.
1297: '<input name="'.$buttonname.'" type="button" value="'.
1298: &mt('Select').'" onclick="javascript:enterrole(this.form,\''.
1299: $trolecode."','".$buttonname.'\');" /></td>';
1300: } elsif ($tryagain) {
1301: $roletext.=
1302: '<td'.$rowspan.' class="'.$tbg.'">'.
1303: '<input name="'.$buttonname.'" type="button" value="'.
1304: &mt('Try Selecting Again').'" onclick="javascript:enterrole(this.form,\''.
1305: $trolecode."','".$buttonname.'\');" /></td>';
1306: } elsif ($advanced) {
1307: $roletext.=
1308: '<td'.$rowspan.' class="'.$tbg.'">'.
1309: '<input name="'.$buttonname.'" type="button" value="'.
1310: &mt('Re-Initialize').'" onclick="javascript:enterrole(this.form,\''.
1311: $trolecode."','".$buttonname.'\');" /></td>';
1312: } elsif ($reinit) {
1313: $roletext.=
1314: '<td'.$rowspan.' class="'.$tbg.'">'.
1315: '<input name="'.$buttonname.'" type="button" value="'.
1316: &mt('Re-Select').'" onclick="javascript:enterrole(this.form,\''.
1317: $trolecode."','".$buttonname.'\');" /></td>';
1318: } else {
1319: $roletext.=
1320: '<td'.$rowspan.' class="'.$tbg.'">'.
1321: '<input name="'.$buttonname.'" type="button" value="'.
1322: &mt('Re-Select').'" onclick="javascript:enterrole(this.form,\''.
1323: $trolecode."','".$buttonname.'\');" /></td>';
1324: }
1325: }
1326: if ($trolecode !~ m/^(dc|ca|au|aa)\./) {
1327: $tremark.=&Apache::lonannounce::showday(time,1,
1328: &Apache::lonannounce::readcalendar($tdom.'_'.$trest));
1329: }
1330: $roletext.='<td>'.$trole.'</td>'
1331: .'<td>'.$twhere.'</td>'
1332: .'<td>'.$tpstart.'</td>'
1333: .'<td>'.$tpend.'</td>';
1334: if (!$is_dc) {
1335: $roletext_end = '<td colspan="4">'.
1336: $tremark.' '.
1337: '</td>';
1338: }
1339: return ($roletext,$roletext_end);
1340: }
1341:
1342: sub check_needs_switchserver {
1343: my ($possiblerole) = @_;
1344: my $needs_switchserver;
1345: my ($role,$where) = split(/\./,$possiblerole,2);
1346: my (undef,$tdom,$twho) = split(/\//,$where);
1347: my ($server_status,$home);
1348: if (($role eq 'ca') || ($role eq 'aa')) {
1349: ($server_status,$home) = &check_author_homeserver($twho,$tdom);
1350: } else {
1351: ($server_status,$home) = &check_author_homeserver($env{'user.name'},
1352: $env{'user.domain'});
1353: }
1354: if ($server_status eq 'switchserver') {
1355: $needs_switchserver = 1;
1356: }
1357: return $needs_switchserver;
1358: }
1359:
1360: sub check_author_homeserver {
1361: my ($uname,$udom)=@_;
1362: if (($uname eq '') || ($udom eq '')) {
1363: return ('fail','');
1364: }
1365: my $home = &Apache::lonnet::homeserver($uname,$udom);
1366: if (&Apache::lonnet::host_domain($home) ne $udom) {
1367: return ('fail',$home);
1368: }
1369: my @ids=&Apache::lonnet::current_machine_ids();
1370: if (grep(/^\Q$home\E$/,@ids)) {
1371: return ('ok',$home);
1372: } else {
1373: return ('switchserver',$home);
1374: }
1375: }
1376:
1377: sub check_fordc {
1378: my ($dcroles,$then) = @_;
1379: my $numdc = 0;
1380: if ($env{'user.adv'}) {
1381: foreach my $envkey (sort keys %env) {
1382: if ($envkey=~/^user\.role\.dc\.\/($match_domain)\/$/) {
1383: my $dcdom = $1;
1384: my $livedc = 1;
1385: my ($tstart,$tend)=split(/\./,$env{$envkey});
1386: if ($tstart && $tstart>$then) { $livedc = 0; }
1387: if ($tend && $tend <$then) { $livedc = 0; }
1388: if ($livedc) {
1389: $$dcroles{$dcdom} = $envkey;
1390: $numdc++;
1391: }
1392: }
1393: }
1394: }
1395: return $numdc;
1396: }
1397:
1398: sub adhoc_course_role {
1399: my ($refresh,$then) = @_;
1400: my ($cdom,$cnum,$crstype);
1401: $cdom = $env{'course.'.$env{'request.course.id'}.'.domain'};
1402: $cnum = $env{'course.'.$env{'request.course.id'}.'.num'};
1403: $crstype = &Apache::loncommon::course_type();
1404: if (&check_forcc($cdom,$cnum,$refresh,$then,$crstype)) {
1405: my $setprivs;
1406: if (!defined($env{'user.role.'.$env{'form.switchrole'}})) {
1407: $setprivs = 1;
1408: } else {
1409: my ($start,$end) = split(/\./,$env{'user.role.'.$env{'form.switchrole'}});
1410: if (($start && ($start>$refresh || $start == -1)) ||
1411: ($end && $end<$then)) {
1412: $setprivs = 1;
1413: }
1414: }
1415: if ($setprivs) {
1416: if ($env{'form.switchrole'} =~ m-^(in|ta|ep|ad|st|cr)([\w/]*)\./\Q$cdom\E/\Q$cnum\E/?(\w*)$-) {
1417: my $role = $1;
1418: my $custom_role = $2;
1419: my $usec = $3;
1420: if ($role eq 'cr') {
1421: if ($custom_role =~ m-^/$match_domain/$match_username/\w+$-) {
1422: $role .= $custom_role;
1423: } else {
1424: return;
1425: }
1426: }
1427: my (%userroles,%newrole,%newgroups,%group_privs);
1428: my %cgroups =
1429: &Apache::lonnet::get_active_groups($env{'user.domain'},
1430: $env{'user.name'},$cdom,$cnum);
1431: foreach my $group (keys(%cgroups)) {
1432: $group_privs{$group} =
1433: $env{'user.priv.cc./'.$cdom.'/'.$cnum.'./'.$cdom.'/'.$cnum.'/'.$group};
1434: }
1435: $newgroups{'/'.$cdom.'/'.$cnum} = \%group_privs;
1436: my $area = '/'.$cdom.'/'.$cnum;
1437: my $spec = $role.'.'.$area;
1438: if ($usec ne '') {
1439: $spec .= '/'.$usec;
1440: $area .= '/'.$usec;
1441: }
1442: &Apache::lonnet::standard_roleprivs(\%newrole,$role,$cdom,$spec,$cnum,$area);
1443: &Apache::lonnet::set_userprivs(\%userroles,\%newrole,\%newgroups);
1444: my $adhocstart = $refresh-1;
1445: $userroles{'user.role.'.$spec} = $adhocstart.'.';
1446: &Apache::lonnet::appenv(\%userroles,[$role,'cm']);
1447: }
1448: }
1449: }
1450: return;
1451: }
1452:
1453: sub check_forcc {
1454: my ($cdom,$cnum,$refresh,$then,$crstype) = @_;
1455: my ($is_cc,$ccrole);
1456: if ($crstype eq 'Community') {
1457: $ccrole = 'co';
1458: } else {
1459: $ccrole = 'cc';
1460: }
1461: if ($cdom ne '' && $cnum ne '') {
1462: if (&Apache::lonnet::is_course($cdom,$cnum)) {
1463: my $envkey = 'user.role.'.$ccrole.'./'.$cdom.'/'.$cnum;
1464: if (defined($env{$envkey})) {
1465: $is_cc = 1;
1466: my ($tstart,$tend)=split(/\./,$env{$envkey});
1467: if ($tstart && $tstart>$refresh) { $is_cc = 0; }
1468: if ($tend && $tend <$then) { $is_cc = 0; }
1469: }
1470: }
1471: }
1472: return $is_cc;
1473: }
1474:
1475: sub courselink {
1476: my ($dcdom,$rowtype) = @_;
1477: my $courseform=&Apache::loncommon::selectcourse_link
1478: ('rolechoice','dccourse'.$rowtype.'_'.$dcdom,
1479: 'dcdomain'.$rowtype.'_'.$dcdom,'coursedesc'.$rowtype.'_'.
1480: $dcdom,$dcdom,undef,'Course/Community');
1481: my $hiddenitems = '<input type="hidden" name="dcdomain'.$rowtype.'_'.$dcdom.'" value="'.$dcdom.'" />'.
1482: '<input type="hidden" name="origdom'.$rowtype.'_'.$dcdom.'" value="'.$dcdom.'" />'.
1483: '<input type="hidden" name="dccourse'.$rowtype.'_'.$dcdom.'" value="" />'.
1484: '<input type="hidden" name="coursedesc'.$rowtype.'_'.$dcdom.'" value="" />';
1485: return $courseform.$hiddenitems;
1486: }
1487:
1488: sub coursepick_jscript {
1489: my %lt = &Apache::lonlocal::texthash(
1490: plsu => "Please use the 'Select Course/Community' link to open a separate pick course window where you may select the course or community you wish to enter.",
1491: youc => 'You can only use this screen to select courses and communities in the current domain.',
1492: );
1493: my $verify_script = <<"END";
1494: <script type="text/javascript">
1495: // <![CDATA[
1496: function verifyCoursePick(caller) {
1497: var numbutton = getIndex(caller)
1498: var pickedCourse = document.rolechoice.elements[numbutton+4].value
1499: var pickedDomain = document.rolechoice.elements[numbutton+2].value
1500: if (document.rolechoice.elements[numbutton+2].value == document.rolechoice.elements[numbutton+3].value) {
1501: if (pickedCourse != '') {
1502: if (numbutton != -1) {
1503: var courseTarget = "cc./"+pickedDomain+"/"+pickedCourse
1504: document.rolechoice.elements[numbutton+1].name = courseTarget
1505: document.rolechoice.submit()
1506: }
1507: }
1508: else {
1509: alert("$lt{'plsu'}");
1510: }
1511: }
1512: else {
1513: alert("$lt{'youc'}")
1514: }
1515: }
1516: function getIndex(caller) {
1517: for (var i=0;i<document.rolechoice.elements.length;i++) {
1518: if (document.rolechoice.elements[i] == caller) {
1519: return i;
1520: }
1521: }
1522: return -1;
1523: }
1524: // ]]>
1525: </script>
1526: END
1527: return $verify_script;
1528: }
1529:
1530: sub coauthorlink {
1531: my ($dcdom,$rowtype) = @_;
1532: my $coauthorform=&Apache::loncommon::selectauthor_link('rolechoice',$dcdom);
1533: my $hiddenitems = '<input type="hidden" name="adhoccauname'.$rowtype.'_'.$dcdom.'" value="" />';
1534: return $coauthorform.$hiddenitems;
1535: }
1536:
1537: sub display_cc_role {
1538: my $rolekey = shift;
1539: my ($roletext,$roletext_end);
1540: my $advanced = $env{'user.adv'};
1541: my $tryagain = $env{'form.tryagain'};
1542: unless ($rolekey =~/^error\:/) {
1543: if ($rolekey =~ m{^user\.role\.(cc|co)\./($match_domain)/($match_courseid)$}) {
1544: my $ccrole = $1;
1545: my $tcourseid = $2.'_'.$3;
1546: my $trolecode = $1.'./'.$2.'/'.$3;
1547: my $twhere;
1548: my $ttype;
1549: my $tbg='LC_roles_is';
1550: my %newhash=&Apache::lonnet::coursedescription($tcourseid);
1551: if (%newhash) {
1552: $twhere=$newhash{'description'}.
1553: ' <span style="LC_fontsize_small">'.
1554: &Apache::loncommon::syllabuswrapper(&mt('Syllabus'),$2,$1).
1555: '</span>';
1556: $ttype = $newhash{'type'};
1557: } else {
1558: $twhere=&mt('Currently not available');
1559: $env{'course.'.$tcourseid.'.description'}=$twhere;
1560: }
1561: my $trole = &Apache::lonnet::plaintext($ccrole,$ttype,$tcourseid);
1562: $twhere.="<br />".&mt('Domain').":".$1;
1563: ($roletext,$roletext_end) = &build_roletext($trolecode,$1,$2,'is',$tryagain,$advanced,'',$tbg,$trole,$twhere,'','','',1,'');
1564: }
1565: }
1566: return ($roletext,$roletext_end);
1567: }
1568:
1569: sub adhoc_roles_row {
1570: my ($dcdom,$rowtype) = @_;
1571: my $output = &Apache::loncommon::continue_data_table_row()
1572: .' <td colspan="5">'
1573: .&mt('[_1]Ad hoc[_2] roles in domain [_3] --'
1574: ,'<span class="LC_cusr_emph">','</span>',$dcdom)
1575: .' ';
1576: my $selectcclink = &courselink($dcdom,$rowtype);
1577: my $ccrole = &Apache::lonnet::plaintext('co',undef,undef,1);
1578: my $carole = &Apache::lonnet::plaintext('ca');
1579: my $selectcalink = &coauthorlink($dcdom,$rowtype);
1580: $output.=$ccrole.': '.$selectcclink
1581: .' | '.$carole.': '.$selectcalink
1582: .&Apache::loncommon::end_data_table_row();
1583: return $output;
1584: }
1585:
1586: sub recent_filename {
1587: my $area=shift;
1588: return 'nohist_recent_'.&escape($area);
1589: }
1590:
1591: sub courseloadpage {
1592: my ($courseid) = @_;
1593: my $startpage;
1594: my %entry_settings = &Apache::lonnet::get('nohist_whatsnew',
1595: [$courseid.':courseinit']);
1596: my ($tmp) = %entry_settings;
1597: unless ($tmp =~ /^error: 2 /) {
1598: $startpage = $entry_settings{$courseid.':courseinit'};
1599: }
1600: if ($startpage eq '') {
1601: if (exists($env{'environment.course_init_display'})) {
1602: $startpage = $env{'environment.course_init_display'};
1603: }
1604: }
1605: return $startpage;
1606: }
1607:
1608: 1;
1609: __END__
1610:
1611: =head1 NAME
1612:
1613: Apache::lonroles - User Roles Screen
1614:
1615: =head1 SYNOPSIS
1616:
1617: Invoked by /etc/httpd/conf/srm.conf:
1618:
1619: <Location /adm/roles>
1620: PerlAccessHandler Apache::lonacc
1621: SetHandler perl-script
1622: PerlHandler Apache::lonroles
1623: ErrorDocument 403 /adm/login
1624: ErrorDocument 500 /adm/errorhandler
1625: </Location>
1626:
1627: =head1 OVERVIEW
1628:
1629: =head2 Choosing Roles
1630:
1631: C<lonroles> is a handler that allows a user to switch roles in
1632: mid-session. LON-CAPA attempts to work with "No Role Specified", the
1633: default role that a user has before selecting a role, as widely as
1634: possible, but certain handlers for example need specification which
1635: course they should act on, etc. Both in this scenario, and when the
1636: handler determines via C<lonnet>'s C<&allowed> function that a certain
1637: action is not allowed, C<lonroles> is used as error handler. This
1638: allows the user to select another role which may have permission to do
1639: what they were trying to do.
1640:
1641: =begin latex
1642:
1643: \begin{figure}
1644: \begin{center}
1645: \includegraphics[width=0.45\paperwidth,keepaspectratio]{Sample_Roles_Screen}
1646: \caption{\label{Sample_Roles_Screen}Sample Roles Screen}
1647: \end{center}
1648: \end{figure}
1649:
1650: =end latex
1651:
1652: =head2 Role Initialization
1653:
1654: The privileges for a user are established at login time and stored in the session environment. As a consequence, a new role does not become active till the next login. Handlers are able to query for privileges using C<lonnet>'s C<&allowed> function. When a user first logs in, their role is the "common" role, which means that they have the sum of all of their privileges. During a session it might become necessary to choose a particular role, which as a consequence also limits the user to only the privileges in that particular role.
1655:
1656: =head1 INTRODUCTION
1657:
1658: This module enables a user to select what role he wishes to
1659: operate under (instructor, student, teaching assistant, course
1660: coordinator, etc). These roles are pre-established by the actions
1661: of upper-level users.
1662:
1663: This is part of the LearningOnline Network with CAPA project
1664: described at http://www.lon-capa.org.
1665:
1666: =head1 HANDLER SUBROUTINE
1667:
1668: This routine is called by Apache and mod_perl.
1669:
1670: =over 4
1671:
1672: =item *
1673:
1674: Roles Initialization (yes/no)
1675:
1676: =item *
1677:
1678: Get Error Message from Environment
1679:
1680: =item *
1681:
1682: Who is this?
1683:
1684: =item *
1685:
1686: Generate Page Output
1687:
1688: =item *
1689:
1690: Choice or no choice
1691:
1692: =item *
1693:
1694: Table
1695:
1696: =item *
1697:
1698: Privileges
1699:
1700: =back
1701:
1702: =cut
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>