version 1.14, 2006/04/07 22:15:34
|
version 1.26, 2020/03/15 23:04:05
|
Line 32 use strict;
|
Line 32 use strict;
|
use Apache::lonnet; |
use Apache::lonnet; |
use Crypt::IDEA; |
use Crypt::IDEA; |
use Time::HiRes qw(gettimeofday); |
use Time::HiRes qw(gettimeofday); |
|
use LONCAPA; |
|
|
|
|
|
# |
|
# If a module makes multiple SSI calls and some of the ssi calls result in a |
|
# resource for an encoded URL, and this can be done in an unprivileged role, |
|
# there must be a mechanism t oreset the 'request.enc' environment variable. |
|
# This sub centralizes that mechanism: |
|
# |
|
sub reset_enc { |
|
$env{'request.enc'} = 0; |
|
} |
|
|
sub encryptseed { |
sub encryptseed { |
my $seed=$env{'course.'.$env{'request.course.id'}.'.internal.encseed'}; |
my ($cid) = @_; |
$seed=~s/[^0-9a-f]/0/g; |
if (!defined($cid)) { |
$seed.='0123456789abcdef'; |
$cid = $env{'request.course.id'}; |
$seed=substr($seed.$seed,0,32); |
} |
return pack("H32",$seed); |
my $seed; |
|
if (defined($cid)) { |
|
if (defined$env{'course.'.$cid.'.internal.encseed'}) { |
|
$seed = $env{'course.'.$cid.'.internal.encseed'}; |
|
} else { |
|
my %descargs = ( 'one_time' => 1); |
|
my %course = |
|
&Apache::lonnet::coursedescription($cid,\%descargs); |
|
$seed = $course{'internal.encseed'}; |
|
} |
|
} |
|
if (defined($seed)) { |
|
$seed=~s/[^0-9a-f]/0/g; |
|
$seed.='0123456789abcdef'; |
|
$seed=substr($seed.$seed,0,32); |
|
return pack("H32",$seed); |
|
} else { |
|
return pack("H32",1); |
|
} |
} |
} |
|
|
sub unencrypted { |
sub unencrypted { |
my $uri=shift; |
my ($uri,$cid) = @_; |
$uri=~s/^\/enc\/(\d+)\///; |
$uri=~s/^\/enc\/(\d+)\///; |
my $cmdlength=$1; |
my $cmdlength=$1; |
my $seed=&encryptseed(); |
# strip any added extension |
|
$uri=~s/\.[^.]*//; |
|
my $seed=&encryptseed($cid); |
unless ($seed) { |
unless ($seed) { |
return '/'.$uri; |
return '/'.$uri; |
} |
} |
$uri=&Apache::lonnet::unescape($uri); |
$uri=&unescape($uri); |
my $cipher=new IDEA $seed; |
my $cipher=new IDEA $seed; |
my $decuri=''; |
my $decuri=''; |
for (my $encidx=0;$encidx<length($uri);$encidx+=16) { |
for (my $encidx=0;$encidx<length($uri);$encidx+=16) { |
Line 84 sub remove_noise {
|
Line 116 sub remove_noise {
|
} |
} |
|
|
sub encrypted { |
sub encrypted { |
my ($uri,$force_enc) = @_; |
my ($uri,$force_enc,$cid) = @_; |
if (!$force_enc && $env{'request.role.adv'}) { return($uri); } |
if (!$force_enc && $env{'request.role.adv'}) { return($uri); } |
my $seed=&encryptseed(); |
my $seed=&encryptseed($cid); |
unless ($seed) { |
unless ($seed) { |
return $uri; |
return $uri; |
} |
} |
Line 101 sub encrypted {
|
Line 133 sub encrypted {
|
$encuri.=unpack("H16", |
$encuri.=unpack("H16", |
$cipher->encrypt(substr($uri,$encidx,8))); |
$cipher->encrypt(substr($uri,$encidx,8))); |
} |
} |
return '/enc/'.$cmdlength.'/'.&Apache::lonnet::escape($encuri); |
return '/enc/'.$cmdlength.'/'.&escape($encuri); |
} |
} |
|
|
sub check_encrypt { |
sub check_encrypt { |
my $str=shift; |
my $str=shift; |
if ($env{'request.enc'}) { return &Apache::lonenc::encrypted($str); } |
if (ref($str)) { |
|
if ($env{'request.enc'}) { $$str = &Apache::lonenc::encrypted($$str); } |
|
return; |
|
} else { |
|
if ($env{'request.enc'}) { return &Apache::lonenc::encrypted($str); } |
|
} |
return $str; |
return $str; |
} |
} |
|
|
Line 125 sub encrypt_ref {
|
Line 162 sub encrypt_ref {
|
my $html; |
my $html; |
if ($force_enc || $env{'request.enc'}) { |
if ($force_enc || $env{'request.enc'}) { |
while (my ($name,$value)= each(%{ $elements })) { |
while (my ($name,$value)= each(%{ $elements })) { |
if (!$value) { next; } |
next if (!$value); |
|
next if ($value =~ /^\w+:/); # explict javascript: or http: link |
my $href=&Apache::lonnet::hreflocation($Apache::lonxml::pwd[-1],$value); |
my $href=&Apache::lonnet::hreflocation($Apache::lonxml::pwd[-1],$value); |
if ($href !~ /^http:/) { |
if ($href !~ /^https?\:/) { |
$href = &Apache::lonenc::encrypted($href,$force_enc); |
# IE really wants an extension |
|
my ($extension) = ($href =~ m/(\.[^.]*)$/); |
|
my $newhref = &Apache::lonenc::encrypted($href,$force_enc); |
|
unless ($newhref eq $href) { |
|
$href = $newhref.$extension; |
|
} |
} |
} |
$token->[2]->{$name}=$href; |
$token->[2]->{$name}=$href; |
} |
} |