|
|
|
|
<?php
|
|
|
|
|
$user_id=$userIdViewed;
|
|
|
|
|
if ($mainUserInfo['status']==1)
|
|
|
|
|
{
|
|
|
|
|
$course_admin=1;
|
|
|
|
|
}
|
|
|
|
|
include_once('permissions_functions.inc.php');
|
|
|
|
|
include_once('all_permissions.inc.php');
|
|
|
|
|
include_once (api_get_library_path()."/groupmanager.lib.php");
|
|
|
|
|
include_once (api_get_library_path()."/blog.lib.php");
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
// ACTIONS
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
if ($_POST['StoreUserPermissions'] and $setting_visualisation=='checkbox')
|
|
|
|
|
{
|
|
|
|
|
$result_message=store_permissions('user', $user_id);
|
|
|
|
|
if ($result_message)
|
|
|
|
|
{
|
|
|
|
|
Display::display_normal_message($result_message);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (isset($_GET['action']))
|
|
|
|
|
{
|
|
|
|
|
if ( isset($_GET['permission']) AND isset($_GET['tool']) AND ($_GET['action']=='grant' OR $_GET['action']=='revoke'))
|
|
|
|
|
{
|
|
|
|
|
$result_message=store_one_permission('user', $_GET['action'], $user_id, $_GET['tool'], $_GET['permission']);
|
|
|
|
|
}
|
|
|
|
|
if (isset($_GET['role']) AND ($_GET['action']=='grant' OR $_GET['action']=='revoke'))
|
|
|
|
|
{
|
|
|
|
|
$result_message=assign_role('user', $_GET['action'], $user_id, $_GET['role'], $_GET['scope']);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (isset($result_message))
|
|
|
|
|
{
|
|
|
|
|
Display::display_normal_message($result_message);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
// RETRIEVING THE PERMISSIONS OF THE USER
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
$current_user_permissions=array();
|
|
|
|
|
$current_user_permissions=get_permissions('user',$user_id);
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// ==================================================================
|
|
|
|
|
// INHERITED PERMISSIONS (group permissions, user roles, group roles)
|
|
|
|
|
// ==================================================================
|
|
|
|
|
|
|
|
|
|
// ------------------------------------------------------------------
|
|
|
|
|
// RETRIEVING THE PERMISSIONS OF THE GROUPS OF THE USER
|
|
|
|
|
// ------------------------------------------------------------------
|
|
|
|
|
$groups_of_user=array();
|
|
|
|
|
$groups_of_user=GroupManager::get_group_ids($_course['db_name'],$user_id);
|
|
|
|
|
foreach ($groups_of_user as $group)
|
|
|
|
|
{
|
|
|
|
|
$this_group_permissions=get_permissions('group',$group);
|
|
|
|
|
foreach ($this_group_permissions as $tool=>$permissions)
|
|
|
|
|
{
|
|
|
|
|
foreach ($permissions as $permission)
|
|
|
|
|
{
|
|
|
|
|
$inherited_group_permissions[$tool][]=$permission;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
$inherited_permissions=$inherited_group_permissions;
|
|
|
|
|
|
|
|
|
|
// ------------------------------------------------------------------
|
|
|
|
|
// RETRIEVING THE PERMISSIONS OF THE ROLES OF THE USER
|
|
|
|
|
// ------------------------------------------------------------------
|
|
|
|
|
if (api_get_setting('user_roles')=='true')
|
|
|
|
|
{
|
|
|
|
|
// course roles that are assigned to the user
|
|
|
|
|
$current_user_role_permissions_of_user=get_roles_permissions('user',$user_id);
|
|
|
|
|
$inherited_permissions=permission_array_merge($inherited_permissions,$current_user_role_permissions_of_user);
|
|
|
|
|
// NOTE: deze array moet nog gemerged worden met de $inherited_permissions array
|
|
|
|
|
// (heet momenteel nog $current_group_permissions_of_user omdat voorlopig enkel de
|
|
|
|
|
// groepsge<EFBFBD>rfde permissions in beschouwing worden genomen
|
|
|
|
|
// dit moet ook de rol permissies van rollen die toegekend worden aan een gebruiker
|
|
|
|
|
// en de rol permissies van rollen die toegekend worden aan de groepen van een gebruiker
|
|
|
|
|
// omvatten.
|
|
|
|
|
// NOTE: checken als de rollen brol wel degelijk geactiveerd is voordat we dit allemaal
|
|
|
|
|
// ophalen.
|
|
|
|
|
// platform roles that are assigned to the user
|
|
|
|
|
$current_user_role_permissions_of_user=get_roles_permissions('user',$user_id, 'platform');
|
|
|
|
|
$inherited_permissions=permission_array_merge($inherited_permissions,$current_user_role_permissions_of_user);
|
|
|
|
|
}
|
|
|
|
|
// ------------------------------------------------------------------
|
|
|
|
|
// RETRIEVING THE PERMISSIONS OF THE ROLES OF THE GROUPS OF THE USER
|
|
|
|
|
// ------------------------------------------------------------------
|
|
|
|
|
if (api_get_setting('group_roles')=='true')
|
|
|
|
|
{
|
|
|
|
|
// NOTE: DIT MOET NOG VERDER UITGEWERKT WORDEN
|
|
|
|
|
foreach ($groups_of_user as $group)
|
|
|
|
|
{
|
|
|
|
|
$this_current_group_role_permissions_of_user=get_roles_permissions('user',$user_id);
|
|
|
|
|
//$inherited_permissions[$tool][]=$permission;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
// LIMITED OR FULL
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
$current_user_permissions=limited_or_full($current_user_permissions);
|
|
|
|
|
$inherited_permissions=limited_or_full($inherited_permissions);
|
|
|
|
|
if (api_get_setting('permissions')=='limited')
|
|
|
|
|
{
|
|
|
|
|
$header_array=$rights_limited;
|
|
|
|
|
}
|
|
|
|
|
if (api_get_setting('permissions')=='full')
|
|
|
|
|
{
|
|
|
|
|
$header_array=$rights_full;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
echo "<form method=\"post\" action=\"".str_replace('&', '&', $_SERVER['REQUEST_URI'])."\">";
|
|
|
|
|
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
// DISPLAYING THE ROLES LIST
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
if (api_get_setting('user_roles')=='true')
|
|
|
|
|
{
|
|
|
|
|
// the list of the roles for the user
|
|
|
|
|
echo '<strong>'.get_lang('UserRoles').'</strong><br />';
|
|
|
|
|
$current_user_course_roles=get_roles('user',$user_id);
|
|
|
|
|
$current_user_platform_roles=get_roles('user',$user_id, 'platform');
|
|
|
|
|
display_role_list($current_user_course_roles, $current_user_platform_roles);
|
|
|
|
|
echo '<br />';
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
// DISPLAYING THE MATRIX (user permissions)
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
echo '<strong>'.get_lang('UserPermissions').'</strong>';
|
|
|
|
|
echo "<table class=\"data_table\">\n";
|
|
|
|
|
|
|
|
|
|
// the header
|
|
|
|
|
echo "\t<tr>\n";
|
|
|
|
|
echo "\t\t<th>".get_lang('Module')."</th>\n";
|
|
|
|
|
foreach ($header_array as $header_key=>$header_value)
|
|
|
|
|
{
|
|
|
|
|
echo "\t\t<th>".get_lang($header_value)."</th>\n";
|
|
|
|
|
}
|
|
|
|
|
echo "\t</tr>\n";
|
|
|
|
|
|
|
|
|
|
// the main area with the checkboxes or images
|
|
|
|
|
foreach ($tool_rights as $tool=>$rights) // $tool_rights contains all the possible tools and their rights
|
|
|
|
|
{
|
|
|
|
|
echo "\t<tr>\n";
|
|
|
|
|
echo "\t\t<td>\n";
|
|
|
|
|
if (strstr($tool,'BLOG'))
|
|
|
|
|
{
|
|
|
|
|
// Not dealing with a real tool here, get name of this blog
|
|
|
|
|
// Strip blog id
|
|
|
|
|
$tmp = strpos($tool,'_')+1;
|
|
|
|
|
$blog_id = substr($tool,$tmp,strlen($tool));
|
|
|
|
|
// Get title
|
|
|
|
|
echo get_lang('Blog').": ".Blog::get_blog_title($blog_id);
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
echo get_lang($tool);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
echo "\t\t</td>\n";
|
|
|
|
|
|
|
|
|
|
foreach ($header_array as $key=>$value)
|
|
|
|
|
{
|
|
|
|
|
|
|
|
|
|
echo "\t\t<td align='center'>\n";
|
|
|
|
|
if (in_array($value,$rights))
|
|
|
|
|
{
|
|
|
|
|
if ($setting_visualisation=='checkbox')
|
|
|
|
|
{
|
|
|
|
|
display_checkbox_matrix($current_user_permissions, $tool, $value, $inherited_permissions,$course_admin);
|
|
|
|
|
}
|
|
|
|
|
if ($setting_visualisation=='image')
|
|
|
|
|
{
|
|
|
|
|
display_image_matrix($current_user_permissions, $tool, $value,$inherited_permissions, $course_admin);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
// note: in a later stage this part will be replaced by a function
|
|
|
|
|
// so that we can easily switch between a checkbox approach or an image approach
|
|
|
|
|
// where every click is in fact a change of status. In the checkbox approach you first have to
|
|
|
|
|
// do the changes and then store them by clicking the submit button.
|
|
|
|
|
echo "\t\t</td>\n";
|
|
|
|
|
}
|
|
|
|
|
echo "\t</tr>\n";
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
echo "</table>\n";
|
|
|
|
|
if ($setting_visualisation=='checkbox')
|
|
|
|
|
{
|
|
|
|
|
echo "<input type=\"Submit\" name=\"StoreUserPermissions\" value=\"".get_lang('StorePermissions')."\">";
|
|
|
|
|
}
|
|
|
|
|
echo "</form><br />";
|
|
|
|
|
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
// LEGEND
|
|
|
|
|
// ---------------------------------------------------
|
|
|
|
|
echo '<strong>'.get_lang('Legend').'</strong><br />';
|
|
|
|
|
echo '<img src="../img/wrong.gif" /> '.get_lang('UserHasPermissionNot').'<br />';
|
|
|
|
|
echo '<img src="../img/checkbox_on2.gif" /> '.get_lang('UserHasPermission').'<br />';
|
|
|
|
|
echo '<img src="../img/checkbox_on3.gif" /> '.get_lang('UserHasPermissionByRoleGroup').'<br />';
|
|
|
|
|
|
|
|
|
|
?>
|