|
|
|
@ -10,13 +10,17 @@ switch ($_REQUEST['action']) { |
|
|
|
print storage_get($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey']); |
|
|
|
print storage_get($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey']); |
|
|
|
break; |
|
|
|
break; |
|
|
|
case "set": |
|
|
|
case "set": |
|
|
|
print storage_set($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey'], $_REQUEST['svvalue']); |
|
|
|
if (storage_can_set($_REQUEST['svuser'])) { |
|
|
|
|
|
|
|
print storage_set($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey'], $_REQUEST['svvalue']); |
|
|
|
|
|
|
|
} |
|
|
|
break; |
|
|
|
break; |
|
|
|
case "getall": |
|
|
|
case "getall": |
|
|
|
print storage_getall($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco']); |
|
|
|
print storage_getall($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco']); |
|
|
|
break; |
|
|
|
break; |
|
|
|
case "stackpush": |
|
|
|
case "stackpush": |
|
|
|
print storage_stack_push($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey'], $_REQUEST['svvalue']); |
|
|
|
if (storage_can_set($_REQUEST['svuser'])) { |
|
|
|
|
|
|
|
print storage_stack_push($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey'], $_REQUEST['svvalue']); |
|
|
|
|
|
|
|
} |
|
|
|
break; |
|
|
|
break; |
|
|
|
case "stackpop": |
|
|
|
case "stackpop": |
|
|
|
print storage_stack_pop($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey']); |
|
|
|
print storage_stack_pop($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey']); |
|
|
|
@ -25,7 +29,9 @@ switch ($_REQUEST['action']) { |
|
|
|
print storage_stack_length($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey']); |
|
|
|
print storage_stack_length($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey']); |
|
|
|
break; |
|
|
|
break; |
|
|
|
case "stackclear": |
|
|
|
case "stackclear": |
|
|
|
print storage_stack_clear($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey']); |
|
|
|
if (storage_can_set($_REQUEST['svuser'])) { |
|
|
|
|
|
|
|
print storage_stack_clear($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey']); |
|
|
|
|
|
|
|
} |
|
|
|
break; |
|
|
|
break; |
|
|
|
case "stackgetall": |
|
|
|
case "stackgetall": |
|
|
|
print storage_stack_getall($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey']); |
|
|
|
print storage_stack_getall($_REQUEST['svuser'], $_REQUEST['svcourse'], $_REQUEST['svsco'], $_REQUEST['svkey']); |
|
|
|
@ -34,6 +40,15 @@ switch ($_REQUEST['action']) { |
|
|
|
// Do nothing |
|
|
|
// Do nothing |
|
|
|
} |
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
function storage_can_set($sv_user) { |
|
|
|
|
|
|
|
// platform admin can change any user's stored values, other users can only change their own values |
|
|
|
|
|
|
|
$allowed = ((api_is_platform_admin()) || ($sv_user == api_get_user_id())); |
|
|
|
|
|
|
|
if (!$allowed) { |
|
|
|
|
|
|
|
print "ERROR : Not allowed"; |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
return $allowed; |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
function storage_get($sv_user, $sv_course, $sv_sco, $sv_key) { |
|
|
|
function storage_get($sv_user, $sv_course, $sv_sco, $sv_key) { |
|
|
|
$sql = "select sv_value |
|
|
|
$sql = "select sv_value |
|
|
|
from ".Database::get_main_table(TABLE_MAIN_STORED_VALUES)." |
|
|
|
from ".Database::get_main_table(TABLE_MAIN_STORED_VALUES)." |
|
|
|
|
Noel Dieschburg
14 years ago