<?php //$id: $
/* For licensing terms, see /dokeos_license.txt */
/**
* @package dokeos.glossary
* @author Christian Fasanando, initial version
* @author Patrick Cool < patrick.cool @ UGent . be > , Ghent University, Belgium, refactoring and tighter integration in Dokeos
*/
// name of the language file that needs to be included
$language_file = array('notebook');
// including the global dokeos file
require_once '../inc/global.inc.php';
// the section (tabs)
$this_section=SECTION_COURSES;
// notice for unauthorized people.
api_protect_course_script(true);
// including additional libraries
require_once api_get_path(LIBRARY_PATH).'formvalidator/FormValidator.class.php';
// additional javascript
$htmlHeadXtra[] = javascript_notebook();
// setting the tool constants
$tool = TOOL_NOTEBOOK;
// tracking
event_access_tool(TOOL_NOTEBOOK);
// tool name
if ( isset($_GET['action']) & & $_GET['action'] == 'addnote')
{
$tool = 'NoteAddNew';
$interbreadcrumb[] = array ("url"=>"index.php", "name"=> get_lang('Notebook'));
}
if ( isset($_GET['action']) & & $_GET['action'] == 'editnote')
{
$tool = 'ModifyNote';
$interbreadcrumb[] = array ("url"=>"index.php", "name"=> get_lang('Notebook'));
}
// displaying the header
Display::display_header(get_lang(ucfirst($tool)));
// Tool introduction
Display::display_introduction_section(TOOL_NOTEBOOK);
// Action handling: Adding a note
if (isset($_GET['action']) & & $_GET['action'] == 'addnote')
{
if (api_get_session_id()!=0 & & api_is_allowed_to_session_edit(false,true)==false) {
api_not_allowed();
}
if (!empty($_GET['isStudentView'])) {
display_notes();
exit;
}
$_SESSION['notebook_view'] = 'creation_date';
// initiate the object
$form = new FormValidator('note','post', api_get_self().'?action='.Security::remove_XSS($_GET['action']));
// settting the form elements
$form->addElement('header', '', get_lang('NoteAddNew'));
$form->addElement('text', 'note_title', get_lang('NoteTitle'),array('size'=>'95'));
//$form->applyFilter('note_title', 'html_filter');
$form->addElement('html_editor', 'note_comment', get_lang('NoteComment'), null, api_is_allowed_to_edit()
? array('ToolbarSet' => 'Notebook', 'Width' => '100%', 'Height' => '300')
: array('ToolbarSet' => 'NotebookStudent', 'Width' => '100%', 'Height' => '300', 'UserStatus' => 'student')
);
$form->addElement('style_submit_button', 'SubmitNote', get_lang('AddNote'), 'class="add"');
// setting the rules
$form->addRule('note_title', '< div class = "required" > '.get_lang('ThisFieldIsRequired'), 'required');
// The validation or display
if ( $form->validate() )
{
$check = Security::check_token('post');
if ($check)
{
$values = $form->exportValues();
save_note($values);
}
Security::clear_token();
display_notes();
}
else
{
echo '< div class = "actions" > ';
echo '< a href = "index.php" > '.Display::return_icon('back.png').' '.get_lang('BackToNotesList').'< / a > ';
echo '< / div > ';
$token = Security::get_token();
$form->addElement('hidden','sec_token');
$form->setConstants(array('sec_token' => $token));
$form->display();
}
}
// Action handling: Editing a note
else if (isset($_GET['action']) & & $_GET['action'] == 'editnote' & & is_numeric($_GET['notebook_id']))
{
if (!empty($_GET['isStudentView'])) {
display_notes();
exit;
}
// initiate the object
$form = new FormValidator('note','post', api_get_self().'?action='.Security::remove_XSS($_GET['action']).'¬ebook_id='.Security::remove_XSS($_GET['notebook_id']));
// settting the form elements
$form->addElement('header', '', get_lang('ModifyNote'));
$form->addElement('hidden', 'notebook_id');
$form->addElement('text', 'note_title', get_lang('NoteTitle'),array('size'=>'100'));
//$form->applyFilter('note_title', 'html_filter');
$form->addElement('html_editor', 'note_comment', get_lang('NoteComment'), null, api_is_allowed_to_edit()
? array('ToolbarSet' => 'Notebook', 'Width' => '100%', 'Height' => '300')
: array('ToolbarSet' => 'NotebookStudent', 'Width' => '100%', 'Height' => '300', 'UserStatus' => 'student')
);
$form->addElement('style_submit_button', 'SubmitNote', get_lang('ModifyNote'), 'class="save"');
// setting the defaults
$defaults = get_note_information(Security::remove_XSS($_GET['notebook_id']));
$form->setDefaults($defaults);
// setting the rules
$form->addRule('note_title', '< div class = "required" > '.get_lang('ThisFieldIsRequired'), 'required');
// The validation or display
if ( $form->validate() )
{
$check = Security::check_token('post');
if ($check)
{
$values = $form->exportValues();
update_note($values);
}
Security::clear_token();
display_notes();
}
else
{
echo '< div class = "actions" > ';
echo '< a href = "index.php" > '.Display::return_icon('back.png').' '.get_lang('BackToNotesList').'< / a > ';
echo '< / div > ';
$token = Security::get_token();
$form->addElement('hidden','sec_token');
$form->setConstants(array('sec_token' => $token));
$form->display();
}
}
// Action handling: deleting a note
else if (isset($_GET['action']) & & $_GET['action'] == 'deletenote' & & is_numeric($_GET['notebook_id']))
{
delete_note(Security::remove_XSS($_GET['notebook_id']));
display_notes();
}
// Action handling: changing the view (sorting order)
else if ($_GET['action'] == 'changeview' AND in_array($_GET['view'],array('creation_date','update_date', 'title')))
{
switch ($_GET['view'])
{
case 'creation_date':
if (!$_GET['direction'] OR $_GET['direction'] == 'ASC')
{
Display::display_confirmation_message(get_lang('NotesSortedByCreationDateAsc'));
}
else
{
Display::display_confirmation_message(get_lang('NotesSortedByCreationDateDESC'));
}
break;
case 'update_date':
if (!$_GET['direction'] OR $_GET['direction'] == 'ASC')
{
Display::display_confirmation_message(get_lang('NotesSortedByUpdateDateAsc'));
}
else
{
Display::display_confirmation_message(get_lang('NotesSortedByUpdateDateDESC'));
}
break;
case 'title':
if (!$_GET['direction'] OR $_GET['direction'] == 'ASC')
{
Display::display_confirmation_message(get_lang('NotesSortedByTitleAsc'));
}
else
{
Display::display_confirmation_message(get_lang('NotesSortedByTitleDESC'));
}
break;
}
$_SESSION['notebook_view'] = $_GET['view'];
display_notes();
} else {
display_notes();
}
// footer
Display::display_footer();
/**
* a little bit of javascript to display a prettier warning when deleting a note
*
* @return unknown
*
* @author Patrick Cool < patrick.cool @ ugent . be > , Ghent University, Belgium
* @version januari 2009, dokeos 1.8.6
*/
function javascript_notebook()
{
return "< script type = \"text/javascript\" >
function confirmation (name)
{
if (confirm(\" ". get_lang("NoteConfirmDelete") ." \"+ name + \" ?\"))
{return true;}
else
{return false;}
}
< / script > ";
}
/**
* This functions stores the note in the database
*
* @param array $values
*
* @author Christian Fasanando < christian.fasanando @ dokeos . com >
* @author Patrick Cool < patrick.cool @ ugent . be > , Ghent University, Belgium
* @version januari 2009, dokeos 1.8.6
*/
function save_note($values) {
// Database table definition
$t_notebook = Database :: get_course_table(TABLE_NOTEBOOK);
$sql = "INSERT INTO $t_notebook (user_id, course, session_id, title, description, creation_date,update_date,status)
VALUES(
'".Database::escape_string(api_get_user_id())."',
'".Database::escape_string(api_get_course_id())."',
'".Database::escape_string($_SESSION['id_session'])."',
'".Database::escape_string(Security::remove_XSS($values['note_title']))."',
'".Database::escape_string(Security::remove_XSS(stripslashes(api_html_entity_decode($values['note_comment'])),COURSEMANAGERLOWSECURITY))."',
'".Database::escape_string(date('Y-m-d H:i:s'))."',
'".Database::escape_string(date('Y-m-d H:i:s'))."',
'0')";
$result = Database::query($sql, __FILE__, __LINE__);
$id = Database::insert_id();
if ($id > 0) {
//insert into item_property
api_item_property_update(api_get_course_info(), TOOL_NOTEBOOK, $id, 'NotebookAdded', api_get_user_id());
}
// display the feedback message
Display::display_confirmation_message(get_lang('NoteAdded'));
}
function get_note_information($notebook_id) {
// Database table definition
$t_notebook = Database :: get_course_table(TABLE_NOTEBOOK);
$sql = "SELECT notebook_id AS notebook_id,
title AS note_title,
description AS note_comment,
session_id AS session_id
FROM $t_notebook
WHERE notebook_id = '".Database::escape_string($notebook_id)."' ";
$result = Database::query($sql, __FILE__, __LINE__);
return Database::fetch_array($result);
}
/**
* This functions updates the note in the database
*
* @param array $values
*
* @author Christian Fasanando < christian.fasanando @ dokeos . com >
* @author Patrick Cool < patrick.cool @ ugent . be > , Ghent University, Belgium
* @version januari 2009, dokeos 1.8.6
*/
function update_note($values) {
// Database table definition
$t_notebook = Database :: get_course_table(TABLE_NOTEBOOK);
$sql = "UPDATE $t_notebook SET
user_id = '".Database::escape_string(api_get_user_id())."',
course = '".Database::escape_string(api_get_course_id())."',
session_id = '".Database::escape_string($_SESSION['id_session'])."',
title = '".Database::escape_string(Security::remove_XSS($values['note_title']))."',
description = '".Database::escape_string(Security::remove_XSS(stripslashes(api_html_entity_decode($values['note_comment'])),COURSEMANAGERLOWSECURITY))."',
update_date = '".Database::escape_string(date('Y-m-d H:i:s'))."'
WHERE notebook_id = '".Database::escape_string($values['notebook_id'])."'";
$result = Database::query($sql, __FILE__, __LINE__);
//update item_property (update)
api_item_property_update(api_get_course_info(), TOOL_NOTEBOOK, Database::escape_string($values['notebook_id']), 'NotebookUpdated', api_get_user_id());
// display the feedback message
Display::display_confirmation_message(get_lang('NoteUpdated'));
}
function delete_note($notebook_id) {
// Database table definition
$t_notebook = Database :: get_course_table(TABLE_NOTEBOOK);
$sql = "DELETE FROM $t_notebook WHERE notebook_id='".Database::escape_string($notebook_id)."' AND user_id = '".Database::escape_string(api_get_user_id())."'";
$result = Database::query($sql, __FILE__, __LINE__);
//update item_property (delete)
api_item_property_update(api_get_course_info(), TOOL_NOTEBOOK, Database::escape_string($notebook_id), 'delete', api_get_user_id());
Display::display_confirmation_message(get_lang('NoteDeleted'));
}
function display_notes() {
global $_user;
if (!$_GET['direction'])
{
$sort_direction = 'ASC';
$link_sort_direction = 'DESC';
}
elseif ($_GET['direction'] == 'ASC')
{
$sort_direction = 'ASC';
$link_sort_direction = 'DESC';
}
else
{
$sort_direction = 'DESC';
$link_sort_direction = 'ASC';
}
// action links
echo '< div class = "actions" style = "margin-bottom:20px" > ';
//if (api_is_allowed_to_edit())
//{
if (!api_is_anonymous()) {
if (api_get_session_id()==0)
echo '< a href = "index.php?'.api_get_cidreq().'&action=addnote" > '.Display::return_icon('filenew.gif',get_lang('NoteAddNew')).get_lang('NoteAddNew').'< / a > ';
elseif(api_is_allowed_to_session_edit(false,true)){
echo '< a href = "index.php?'.api_get_cidreq().'&action=addnote" > '.Display::return_icon('filenew.gif',get_lang('NoteAddNew')).get_lang('NoteAddNew').'< / a > ';
}
} else {
echo '< a href = "javascript:void(0)" > '.Display::return_icon('filenew.gif',get_lang('NoteAddNew')).get_lang('NoteAddNew').'< / a > ';
}
//}
echo '< a href = "index.php?'.api_get_cidreq().'&action=changeview&view=creation_date&direction='.$link_sort_direction.'" > '.Display::return_icon('calendar_select.gif',get_lang('OrderByCreationDate')).get_lang('OrderByCreationDate').'< / a > ';
echo '< a href = "index.php?'.api_get_cidreq().'&action=changeview&view=update_date&direction='.$link_sort_direction.'" > '.Display::return_icon('calendar_select.gif',get_lang('OrderByModificationDate')).get_lang('OrderByModificationDate').'< / a > ';
echo '< a href = "index.php?'.api_get_cidreq().'&action=changeview&view=title&direction='.$link_sort_direction.'" > '.Display::return_icon('comment.gif',get_lang('OrderByTitle')).get_lang('OrderByTitle').'< / a > ';
echo '< / div > ';
if (!in_array($_SESSION['notebook_view'],array('creation_date','update_date', 'title'))) {
$_SESSION['notebook_view'] = 'creation_date';
}
// Database table definition
$t_notebook = Database :: get_course_table(TABLE_NOTEBOOK);
$order_by = "";
if ($_SESSION['notebook_view'] == 'creation_date' || $_SESSION['notebook_view'] == 'update_date') {
$order_by = " ORDER BY ".$_SESSION['notebook_view']." $sort_direction ";
} else {
$order_by = " ORDER BY ".$_SESSION['notebook_view']." $sort_direction ";
}
//condition for the session
$session_id = api_get_session_id();
$condition_session = api_get_session_condition($session_id);
$cond_extra = ($_SESSION['notebook_view']== 'update_date')?" AND update_date < > '0000-00-00 00:00:00'":" ";
$sql = "SELECT * FROM $t_notebook WHERE user_id = '".Database::escape_string(api_get_user_id())."' $condition_session $cond_extra $order_by";
$result = Database::query($sql, __FILE__, __LINE__);
while ($row = Database::fetch_array($result)) {
//validacion when belongs to a session
$session_img = api_get_session_image($row['session_id'], $_user['status']);
echo '< div class = "sectiontitle" > ';
echo '< span style = "float: right;" > ('.get_lang('CreationDate').': '.date_to_str_ago($row['creation_date']).' < span class = "dropbox_date" > '.$row['creation_date'].'< / span > ';
if ($row['update_date'] < > $row['creation_date']) {
echo ', '.get_lang('UpdateDate').': '.date_to_str_ago($row['update_date']).' < span class = "dropbox_date" > '.$row['update_date'].'< / span > ';
}
echo ')< / span > ';
echo $row['title'] . $session_img;
echo '< / div > ';
echo '< div class = "sectioncomment" > '.$row['description'].'< / div > ';
echo '< div > ';
echo '< a href = "'.api_get_self().'?action=editnote&notebook_id='.$row['notebook_id'].'" > '.Display::return_icon('edit.gif', get_lang('Edit')).'< / a > ';
echo '< a href = "'.api_get_self().'?action=deletenote&notebook_id='.$row['notebook_id'].'" onclick = "return confirmation(\''.$row['title'].'\');" > '.Display::return_icon('delete.gif', get_lang('Delete')).'< / a > ';
echo '< / div > ';
}
//return $return;
}
?>