chamilo-lms/main/auth/gotocourse.php

<?php
/* For licensing terms, see /license.txt */

/**
 * Allow the user to login to a course after reaching a course URL
 * (e.g. http://chamilo.chamilo.org/courses/MYCOURSE/?id_session=0 )
 * See https://support.chamilo.org/issues/6768.
 *
 * Author : hubert.borderiou@grenet.fr
 */
require_once __DIR__.'/../inc/global.inc.php';
$msg = null;
if (isset($_GET['firstpage'])) {
    $firstpage = $_GET['firstpage'];

    // if course is public, go to course without auth
    $tab_course_info = api_get_course_info($firstpage);

    api_set_firstpage_parameter($firstpage);

    $tpl = new Template(null, 1, 1);

    $action = api_get_self().'?'.Security::remove_XSS($_SERVER['QUERY_STRING']);
    $action = str_replace('&amp;', '&', $action);
    $form = new FormValidator('formLogin', 'post', $action, null, ['class' => 'form-stacked']);
    $params = [
        'placeholder' => get_lang('UserName'),
    ];
    // Avoid showing the autocapitalize option if the browser doesn't
    // support it: this attribute is against the HTML5 standard
    if (api_browser_support('autocapitalize')) {
        $params['autocapitalize'] = 'none';
    }
    $form->addElement(
        'text',
        'login',
        null,
        $params
    );
    $params = [
        'placeholder' => get_lang('Password'),
    ];
    if (api_browser_support('autocapitalize')) {
        $params['autocapitalize'] = 'none';
    }
    $form->addElement(
        'password',
        'password',
        null,
        $params
    );
    $form->addButtonNext(get_lang('LoginEnter'), 'submitAuth');
    // see same text in main_api.lib.php function api_not_allowed
    if (api_is_cas_activated()) {
        $msg .= Display::return_message(sprintf(get_lang('YouHaveAnInstitutionalAccount'), api_get_setting("Institution")), '', false);
        $msg .= Display::div(Template::displayCASLoginButton(), ['align' => 'center']);
        $msg .= Display::return_message(get_lang('YouDontHaveAnInstitutionAccount'));
        $msg .= "<p style='text-align:center'><a href='#' onclick='$(this).parent().next().toggle()'>".get_lang('LoginWithExternalAccount')."</a></p>";
        $msg .= "<div style='display:none;'>";
    }

    $msg .= '<div class="well_login">';
    $msg .= $form->returnForm();
    $msg .= '</div>';
    if (api_is_cas_activated()) {
        $msg .= "</div>";
    }
    $msg .= '<hr/><p style="text-align:center"><a href="'.api_get_path(WEB_PATH).'">'.get_lang('ReturnToCourseHomepage').'</a></p>';

    $tpl->assign('content', '<h4>'.get_lang('LoginToGoToThisCourse').'</h4>'.$msg);
    $tpl->display_one_col_template();
} else {
    api_delete_firstpage_parameter();
    header('Location: '.api_get_path(WEB_PATH).'index.php');
    exit;
}
Applied fixes from FlintCI 8 years ago			`<?php`
			`/* For licensing terms, see /license.txt */`

			`/**`
			`* Allow the user to login to a course after reaching a course URL`
			`* (e.g. http://chamilo.chamilo.org/courses/MYCOURSE/?id_session=0 )`
Applied fixes from FlintCI 8 years ago			`* See https://support.chamilo.org/issues/6768.`
Applied fixes from FlintCI 8 years ago			`*`
			`* Author : hubert.borderiou@grenet.fr`
			`*/`
			`require_once __DIR__.'/../inc/global.inc.php';`
			`$msg = null;`
			`if (isset($_GET['firstpage'])) {`
			`$firstpage = $_GET['firstpage'];`

			`// if course is public, go to course without auth`
			`$tab_course_info = api_get_course_info($firstpage);`

			`api_set_firstpage_parameter($firstpage);`

			`$tpl = new Template(null, 1, 1);`

			`$action = api_get_self().'?'.Security::remove_XSS($_SERVER['QUERY_STRING']);`
			`$action = str_replace('&', '&', $action);`
Applied fixes from FlintCI 8 years ago			`$form = new FormValidator('formLogin', 'post', $action, null, ['class' => 'form-stacked']);`
Applied fixes from FlintCI 8 years ago			`$params = [`
Applied fixes from FlintCI 8 years ago			`'placeholder' => get_lang('UserName'),`
Applied fixes from FlintCI 8 years ago			`];`
			`// Avoid showing the autocapitalize option if the browser doesn't`
			`// support it: this attribute is against the HTML5 standard`
			`if (api_browser_support('autocapitalize')) {`
			`$params['autocapitalize'] = 'none';`
			`}`
			`$form->addElement(`
			`'text',`
			`'login',`
			`null,`
			`$params`
			`);`
			`$params = [`
Applied fixes from FlintCI 8 years ago			`'placeholder' => get_lang('Password'),`
Applied fixes from FlintCI 8 years ago			`];`
			`if (api_browser_support('autocapitalize')) {`
			`$params['autocapitalize'] = 'none';`
			`}`
			`$form->addElement(`
			`'password',`
			`'password',`
			`null,`
			`$params`
			`);`
			`$form->addButtonNext(get_lang('LoginEnter'), 'submitAuth');`
			`// see same text in main_api.lib.php function api_not_allowed`
			`if (api_is_cas_activated()) {`
			`$msg .= Display::return_message(sprintf(get_lang('YouHaveAnInstitutionalAccount'), api_get_setting("Institution")), '', false);`
enable cas→replace_login_form 6 years ago			`$msg .= Display::div(Template::displayCASLoginButton(), ['align' => 'center']);`
Applied fixes from FlintCI 8 years ago			`$msg .= Display::return_message(get_lang('YouDontHaveAnInstitutionAccount'));`
			`$msg .= "<p style='text-align:center'><a href='#' onclick='$(this).parent().next().toggle()'>".get_lang('LoginWithExternalAccount')."</a></p>";`
			`$msg .= "<div style='display:none;'>";`
			`}`

			`$msg .= '<div class="well_login">';`
			`$msg .= $form->returnForm();`
			`$msg .= '</div>';`
			`if (api_is_cas_activated()) {`
			`$msg .= "</div>";`
			`}`
			`$msg .= '<hr/><p style="text-align:center"><a href="'.api_get_path(WEB_PATH).'">'.get_lang('ReturnToCourseHomepage').'</a></p>';`

			`$tpl->assign('content', '<h4>'.get_lang('LoginToGoToThisCourse').'</h4>'.$msg);`
			`$tpl->display_one_col_template();`
			`} else {`
			`api_delete_firstpage_parameter();`
			`header('Location: '.api_get_path(WEB_PATH).'index.php');`
			`exit;`
			`}`