3 // PlanetLab authentication and integration with Drupal
5 // Mark Huang <mlhuang@cs.princeton.edu>
6 // Copyright (C) 2006 The Trustees of Princeton University
11 require_once 'plc_config.php';
12 require_once 'plc_session.php';
13 require_once 'plc_functions.php';
15 function planetlab_help($section) {
17 case 'admin/modules#description':
18 return t('Enables authenticated login via a PlanetLab API server.');
22 function planetlab_info($field = 0) {
23 $info['name'] = 'PlanetLab';
32 function planetlab_menu($may_cache) {
37 'path' => 'planetlab/logout',
38 'title' => t('Log out of %s', array('%s' => variable_get('site_name', 'local'))),
39 'callback' => 'planetlab_logout',
41 'type' => MENU_CALLBACK
45 'title' => variable_get('site_name', 'local'),
46 'callback' => 'planetlab_page',
48 'type' => MENU_CALLBACK
56 function ul_start () { return '<ul class=menu>'; }
57 function ul_end () { return '</ul>'; }
58 function leaf($text) { return '<li class=leaf>' . $text . '</li>'; }
59 function expanded($text) { return '<li class=expanded>' . $text . '</li>'; }
60 function p($text) { return '<p>' . $text . '</p>'; }
61 // fake theme to look like menu
62 function menu_theme ($menu) {
64 $result .= ul_start();
65 foreach ($menu as $item) $result .= $item;
70 function planetlab_block($op = 'list', $delta = 0, $edit = array()) {
74 $blocks[0]['info'] = t('PlanetLab login');
78 } else if ($op == 'view') {
82 // Force login via HTTPS
84 $form['#action'] = "https://" . $_SERVER['HTTP_HOST'] . url($_GET['q'], drupal_get_destination());
85 $form['#id'] = 'planetlab-login-form';
86 $form['name'] = array('#type' => 'textfield',
87 '#title' => t('E-mail'),
92 $form['pass'] = array('#type' => 'password',
93 '#title' => t('Password'),
97 $form['submit'] = array('#type' => 'submit',
98 '#value' => t('Log in'),
101 $block['subject'] = t('%s login', array('%s' => variable_get('site_name', 'local')));
102 $block['content'] = drupal_get_form('planetlab_login_block', $form, 'planetlab_login');
103 $block['content'] .= p('');
104 $block['content'] .= p( href (l_reset_password(),"Forgot your password?") );
105 $block['content'] .= p( href(l_person_register(),"Create an account") );
106 $block['content'] .= p( href(l_site_register(),"File a site registration") );
108 $block['subject'] = $plc->person['email'];
109 $is_admin = in_array(10,$plc->person['role_ids']);
110 $is_pi = in_array(20,$plc->person['role_ids']);
111 $is_user = in_array(30,$plc->person['role_ids']);
112 $is_tech = in_array(40,$plc->person['role_ids']);
115 $site_item .= href(l_sites(),"Sites");
116 $site_item .= ul_start();
117 $site_item .= leaf( href(l_site(plc_my_site_id()),"My site"));
119 $site_item .= leaf( href(l_site_pending(),"Pending Requests"));
120 $site_item .= ul_end();
121 $items[] = expanded($site_item);
124 $user_item .= href(l_persons(),'Users');
125 $user_item .= ul_start();
126 $user_item .= leaf( l_person_t(plc_my_person_id(),"My account"));
128 $user_item .= leaf( href( l_persons_site(plc_my_site_id()), "My users"));
129 if ( $plc->alt_person && $plc->alt_auth) {
130 $email = $plc->person['email'];
131 $user_item .= leaf( href( l_sulogout(),"Log out of $email"));
133 $user_item .= ul_end();
134 $items [] = expanded($user_item);
137 $node_item .= href(l_nodes(),"Nodes");
138 $node_item .= ul_start();
139 $node_item .= leaf( href (l_nodes_site (plc_my_site_id()),"My Site Nodes"));
140 $node_item .= leaf( href (l_node_add(),"Add Node"));
142 $node_item .= leaf (href(l_peers(),'Peers'));
143 $node_item .= ul_end();
144 $items [] = expanded($node_item);
147 //if( !( $is_tech && ! $is_user && ! $is_pi && ! $is_admin ) )
148 $slice_item .= href(l_slices(),"Slices");
149 $slice_item .= ul_start();
150 if( $is_admin || $is_pi ) {
151 $slice_item .= leaf(href(l_slice_add(),"Create Slice"));
153 if( !( $is_tech && ! $is_user && ! $is_pi && ! $is_admin ) )
154 $slice_item .= leaf(href(l_sirius(),"Sirius"));
155 $slice_item .= ul_end();
156 $items [] = expanded($slice_item);
158 if( $is_admin || $is_pi ) {
160 $tag_item .= href(l_tags(),"All Tag Types");
161 $tag_item .= ul_start();
162 $tag_item .= leaf( href( l_tags_slice(),"Slice Tags"));
163 $tag_item .= leaf( href( l_tags_interface(),"Interface Tags"));
164 $tag_item .= leaf( href (l_tags_interface(),"Setting Types (dup xxx)"));
165 $tag_item .= leaf( href( l_tags_node(),"Node Tags"));
166 $tag_item .= leaf( href( l_nodegroups(),"Node groups (xxx)"));
167 $tag_item .= ul_end();
168 $items [] = expanded($tag_item);
172 $doc_item .= href(l_about(),'About MyPLC');
173 $doc_item .= ul_start();
174 $doc_item .= leaf ( href (l_doc_plcapi(),"PLCAPI doc"));
175 $doc_item .= leaf ( href (l_doc_nmapi(),"NMAPI doc"));
177 $doc_item .= leaf (href(l_events(),'Events'));
178 $doc_item .= ul_end();
179 $items[] = expanded($doc_item);
182 // Drupal logout (destroys the session and cleans up $user)
183 // Thierry unclear when this triggers, I suspect this is obsolete
184 $items[] = leaf (l(t('Log out of %s',
185 array('%s' => variable_get('site_name', 'local'))), 'logout'));
187 // PlanetLab logout (just destroy the session)
188 $items[] = leaf ( href (l_logout(),'Log out'));
191 //$block['content'] = theme('list_item', $items);
192 $block['content'] = menu_theme($items);
193 // plc_debug("content",$block['content']);
201 $block['content'] .= ob_get_contents();
209 function planetlab_login_validate($form_id, $form_values) {
212 if ($form_values['name'] && $form_values['pass']) {
213 // Drupal login succeeded
214 if (($user = user_authenticate($form_values['name'], trim($form_values['pass']))) &&
219 $plc = new PLCSession($form_values['name'], $form_values['pass']);
221 // PlanetLab login failed
223 form_set_error('login', t('Sorry. Unrecognized username or password.'));
224 watchdog('planetlab', t('Login attempt failed for %user.', array('%user' => theme('placeholder', $form_values['name']))));
227 // PlanetLab login succeeded
229 // Login admins to Drupal as the superuser
230 if (in_array('admin', $plc->person['roles'])) {
231 $user = user_load(array('uid' => 1));
237 function planetlab_login_submit($form_id, $form_values) {
240 // Our referring page is encased in a query string of the form
241 // "destination=referrer".
242 parse_str(drupal_get_destination()); // => $destination
244 // The referrer itself is a URL path with the original query string,
245 // e.g. "referer.php?query".
246 extract(parse_url($destination)); // => $query
248 // Which we then have to parse again as a query string.
249 parse_str($query); // => $url
252 // To handle the edge case where this function is called during a
253 // bootstrap, check for the existence of t().
254 if (function_exists('t')) {
255 $message = t('Session opened for %name.', array('%name' => theme('placeholder', $plc->person['email'])));
258 $message = "Session opened for ". check_plain($person['email']);
260 watchdog('planetlab', $message);
263 // Create a timestamped final URL so that browsers don't return the user to
264 // a cached page (where it would appear as if they never logged in or out).
265 return array('time='. time());
267 // Make sure that redirections are always local
268 $url = urldecode($url);
269 if ($url[0] != "/") {
272 Header("Location: $url");
278 function planetlab_logout() {
282 // Invalidate PlanetLab session
284 watchdog('planetlab', t('Session closed for %name.', array('%name' => theme('placeholder', $plc->person['email']))));
287 // Destroy the current session:
290 // The time prevents caching.
291 drupal_goto(NULL, 'time='. time());
294 function planetlab_user($type, &$edit, &$user, $category = NULL) {
299 watchdog('planetlab', t('Session closed for %name.', array('%name' => theme('placeholder', $plc->person['email']))));
305 function planetlab_page() {
306 $path = $_SERVER['DOCUMENT_ROOT'] . preg_replace('/^db\//', '/planetlab/', $_GET['q']);
308 // error_log("Requested " . $_GET['q'] . " -> $path");
311 foreach (array('index.php', 'index.html', 'index.htm') as $index) {
312 if (is_file($path . "/$index")) {
319 if (is_file($path)) {
320 if (preg_match('/.php$/', $path)) {
323 $output = ob_get_contents();
326 $output = file_get_contents($path);
334 function theme_planetlab($content) {