chamilo
/
chamilo-lms
mirror of https://github.com/chamilo/chamilo-lms/tree/1.11.x
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

If course is not set then fire api_not_allowed() even if I'm admin.

Browse Source
1.9.x
Julio Montoya 11 years ago
parent dfa4df8c8e
commit 7d658aedf4
1 changed files with 18 additions and 6 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 24
      main/inc/lib/main_api.lib.php

24
main/inc/lib/main_api.lib.php
Unescape View File

@ -912,36 +912,48 @@ function api_protect_course_script($print_headers = false, $allow_session_admins
$is_allowed_in_course = api_is_allowed_in_course(); $is_allowed_in_course = api_is_allowed_in_course();
$is_visible = false; $is_visible = false;
$course_info = api_get_course_info();
if (empty($course_info)) {
api_not_allowed($print_headers);
return false;
}
if (api_is_drh()) { if (api_is_drh()) {
return true; return true;
} }
if (api_is_platform_admin($allow_session_admins)) { if (api_is_platform_admin($allow_session_admins)) {
return true; return true;
} }
$course_info = api_get_course_info();
if (isset($course_info) && isset($course_info['visibility'])) { if (isset($course_info) && isset($course_info['visibility'])) {
switch ($course_info['visibility']) { switch ($course_info['visibility']) {
default: default:
case COURSE_VISIBILITY_CLOSED: //Completely closed: the course is only accessible to the teachers. - 0 case COURSE_VISIBILITY_CLOSED:
// Completely closed: the course is only accessible to the teachers. - 0
if (api_get_user_id() && !api_is_anonymous() && $is_allowed_in_course) { if (api_get_user_id() && !api_is_anonymous() && $is_allowed_in_course) {
$is_visible = true; $is_visible = true;
} }
break; break;
case COURSE_VISIBILITY_REGISTERED: //Private - access authorized to course members only - 1 case COURSE_VISIBILITY_REGISTERED:
// Private - access authorized to course members only - 1
if (api_get_user_id() && !api_is_anonymous() && $is_allowed_in_course) { if (api_get_user_id() && !api_is_anonymous() && $is_allowed_in_course) {
$is_visible = true; $is_visible = true;
} }
break; break;
case COURSE_VISIBILITY_OPEN_PLATFORM: // Open - access allowed for users registered on the platform - 2 case COURSE_VISIBILITY_OPEN_PLATFORM:
// Open - access allowed for users registered on the platform - 2
if (api_get_user_id() && !api_is_anonymous()) { if (api_get_user_id() && !api_is_anonymous()) {
$is_visible = true; $is_visible = true;
} }
break; break;
case COURSE_VISIBILITY_OPEN_WORLD: //Open - access allowed for the whole world - 3 case COURSE_VISIBILITY_OPEN_WORLD:
//Open - access allowed for the whole world - 3
$is_visible = true; $is_visible = true;
break; break;
case COURSE_VISIBILITY_HIDDEN: //Completely closed: the course is only accessible to the teachers. - 0 case COURSE_VISIBILITY_HIDDEN:
//Completely closed: the course is only accessible to the teachers. - 0
if (api_is_platform_admin()) { if (api_is_platform_admin()) {
$is_visible = true; $is_visible = true;
} }

Write Preview
Loading…
Cancel
Save