version 1.13, 2006/03/22 19:55:39
|
version 1.17, 2006/09/28 20:47:13
|
Line 29
|
Line 29
|
package Apache::lonenc; |
package Apache::lonenc; |
|
|
use strict; |
use strict; |
use Apache::Constants qw(:common :remotehost); |
|
use Apache::lonnet; |
use Apache::lonnet; |
use Apache::File(); |
|
use Apache::loncommon; |
|
use Crypt::IDEA; |
use Crypt::IDEA; |
use Time::HiRes qw(gettimeofday); |
use Time::HiRes qw(gettimeofday); |
|
use LONCAPA; |
sub handler { |
|
my $r = shift; |
|
my %cookies=CGI::Cookie->parse($r->header_in('Cookie')); |
|
my $lonid=$cookies{'lonID'}; |
|
my $cookie; |
|
if ($lonid) { |
|
my $handle=$lonid->value; |
|
$handle=~s/\W//g; |
|
my $lonidsdir=$r->dir_config('lonIDsDir'); |
|
$env{'request.enc'}=1; |
|
if ((-e "$lonidsdir/$handle.id") && ($handle ne '')) { |
|
# Initialize Environment |
|
&Apache::lonnet::transfer_profile_to_env($lonidsdir,$handle); |
|
# Decrypt URL and redirect |
|
my $redirect=&unencrypted($r->uri); |
|
if ($r->args) { $redirect.='?'.$r->args; } |
|
$r->internal_redirect($redirect); |
|
return OK; |
|
} |
|
} |
|
return FORBIDDEN; |
|
} |
|
|
|
sub encryptseed { |
sub encryptseed { |
my $seed=$env{'course.'.$env{'request.course.id'}.'.internal.encseed'}; |
my $seed=$env{'course.'.$env{'request.course.id'}.'.internal.encseed'}; |
$seed=~s/[^0-9a-f]/0/g; |
$seed=~s/[^0-9a-f]/0/g; |
Line 71 sub unencrypted {
|
Line 46 sub unencrypted {
|
my $uri=shift; |
my $uri=shift; |
$uri=~s/^\/enc\/(\d+)\///; |
$uri=~s/^\/enc\/(\d+)\///; |
my $cmdlength=$1; |
my $cmdlength=$1; |
|
# strip any added extension |
|
$uri=~s/\.[^.]*//; |
my $seed=&encryptseed(); |
my $seed=&encryptseed(); |
unless ($seed) { |
unless ($seed) { |
return '/'.$uri; |
return '/'.$uri; |
} |
} |
$uri=&Apache::lonnet::unescape($uri); |
$uri=&unescape($uri); |
my $cipher=new IDEA $seed; |
my $cipher=new IDEA $seed; |
my $decuri=''; |
my $decuri=''; |
for (my $encidx=0;$encidx<length($uri);$encidx+=16) { |
for (my $encidx=0;$encidx<length($uri);$encidx+=16) { |
Line 127 sub encrypted {
|
Line 104 sub encrypted {
|
$encuri.=unpack("H16", |
$encuri.=unpack("H16", |
$cipher->encrypt(substr($uri,$encidx,8))); |
$cipher->encrypt(substr($uri,$encidx,8))); |
} |
} |
return '/enc/'.$cmdlength.'/'.&Apache::lonnet::escape($encuri); |
return '/enc/'.$cmdlength.'/'.&escape($encuri); |
} |
} |
|
|
sub check_encrypt { |
sub check_encrypt { |
Line 154 sub encrypt_ref {
|
Line 131 sub encrypt_ref {
|
if (!$value) { next; } |
if (!$value) { next; } |
my $href=&Apache::lonnet::hreflocation($Apache::lonxml::pwd[-1],$value); |
my $href=&Apache::lonnet::hreflocation($Apache::lonxml::pwd[-1],$value); |
if ($href !~ /^http:/) { |
if ($href !~ /^http:/) { |
|
# IE really wants an extension |
|
my ($extension) = ($href =~ m/(\.[^.]*)$/); |
$href = &Apache::lonenc::encrypted($href,$force_enc); |
$href = &Apache::lonenc::encrypted($href,$force_enc); |
|
$href .= $extension; |
} |
} |
$token->[2]->{$name}=$href; |
$token->[2]->{$name}=$href; |
} |
} |