@ -3,26 +3,25 @@
/**
* @package chamilo.calendar
*/
/**
* INIT SECTION
*/
use \ChamiloSession as Session;
// name of the language file that needs to be included
$language_file = array('agenda','group');
$language_file = array('agenda', 'group');
// use anonymous mode when accessing this course tool
$use_anonymous = true;
require_once '../inc/global.inc.php';
$current_course_tool = TOOL_CALENDAR_EVENT;
$current_course_tool = TOOL_CALENDAR_EVENT;
api_protect_course_script(true);
//session
if(isset($_GET['id_session'])) {
$_SESSION['id_session'] = intval($_GET['id_session']);
if (isset($_GET['id_session'])) {
$_SESSION['id_session'] = intval($_GET['id_session']);
}
$action = isset($_GET['action']) ? $_GET['action'] : null;
@ -32,8 +31,8 @@ $this_section = SECTION_COURSES;
if (empty($action)) {
$url = api_get_path(WEB_CODE_PATH).'calendar/agenda_js.php?type=course';
header("Location: $url");
exit;
header("Location: $url");
exit;
}
/* Resource linker */
@ -43,68 +42,69 @@ require_once api_get_path(LIBRARY_PATH).'fileUpload.lib.php';
if (!empty($addresources)) {
// When the "Add Resource" button is clicked we store all the form data into a session
$form_elements= array ('day'=>Security::remove_XSS($_POST['fday']), 'month'=>Security::remove_XSS($_POST['fmonth']), 'year'=>Security::remove_XSS($_POST['fyear']), 'hour'=>Security::remove_XSS($_POST['fhour']), 'minutes'=>Security::remove_XSS($_POST['fminute']),
'end_day'=> Security::remove_XSS($_POST['end_fday']), 'end_month'=>Security::remove_XSS($_POST['end_fmonth']), 'end_year'=>Security::remove_XSS($_POST['end_fyear']), 'end_hours'=>Security::remove_XSS($_POST['end_fhour']), 'end_minutes'=>Security::remove_XSS($_POST['end_fminute']),
'title'=> Security::remove_XSS(stripslashes($_POST['title'])), 'content'=>Security::remove_XSS(stripslashes($_POST['content'])), 'id'=>Security::remove_XSS($_POST['id']), 'action'=>Security::remove_XSS($_POST['action']), 'to'=>Security::remove_XSS($_POST['selectedform']));
$_SESSION['formelements']=$form_elements;
$form_elements = array('day' => Security::remove_XSS($_POST['fday']), 'month' => Security::remove_XSS($_POST['fmonth']), 'year' => Security::remove_XSS($_POST['fyear']), 'hour' => Security::remove_XSS($_POST['fhour']), 'minutes' => Security::remove_XSS($_POST['fminute']),
'end_day' => Security::remove_XSS($_POST['end_fday']), 'end_month' => Security::remove_XSS($_POST['end_fmonth']), 'end_year' => Security::remove_XSS($_POST['end_fyear']), 'end_hours' => Security::remove_XSS($_POST['end_fhour']), 'end_minutes' => Security::remove_XSS($_POST['end_fminute']),
'title' => Security::remove_XSS(stripslashes($_POST['title'])), 'content' => Security::remove_XSS(stripslashes($_POST['content'])), 'id' => Security::remove_XSS($_POST['id']), 'action' => Security::remove_XSS($_POST['action']), 'to' => Security::remove_XSS($_POST['selectedform']));
$_SESSION['formelements'] = $form_elements;
// this is to correctly handle edits
if($id){$action="edit";}
if ($id) {
$action = "edit";
}
//print_r($form_elements);
header('Location: '.api_get_path(WEB_CODE_PATH)."resourcelinker/resourcelinker.php?source_id=1&action=$action&id=$id&originalresource=no");
exit;
}
if (!empty($_GET['view'])) {
$_SESSION['view'] = Security::remove_XSS($_GET['view']);
$_SESSION['view'] = Security::remove_XSS($_GET['view']);
}
// Functions for the agenda tool
require_once 'agenda.inc.php';
/*
TREATING THE PARAMETERS
1. viewing month only or everything
2. sort ascending or descending
3. showing or hiding the send-to-specific-groups-or-users form
4. filter user or group
*/
TREATING THE PARAMETERS
1. viewing month only or everything
2. sort ascending or descending
3. showing or hiding the send-to-specific-groups-or-users form
4. filter user or group
*/
// 3. showing or hiding the send-to-specific-groups-or-users form
$setting_allow_individual_calendar=true;
$setting_allow_individual_calendar = true;
if (empty($_POST['To']) and empty($_SESSION['allow_individual_calendar'])) {
$_SESSION['allow_individual_calendar']= "hide";
$_SESSION['allow_individual_calendar'] = "hide";
}
$allow_individual_calendar_status=$_SESSION['allow_individual_calendar'];
if (!empty($_POST['To']) and ($allow_individual_calendar_status=="hide")) {
$_SESSION['allow_individual_calendar']= "show";
$allow_individual_calendar_status = $_SESSION['allow_individual_calendar'];
if (!empty($_POST['To']) and ($allow_individual_calendar_status == "hide")) {
$_SESSION['allow_individual_calendar'] = "show";
}
if (!empty($_GET['sort']) and ($allow_individual_calendar_status=="show")) {
$_SESSION['allow_individual_calendar']= "hide";
if (!empty($_GET['sort']) and ($allow_individual_calendar_status == "show")) {
$_SESSION['allow_individual_calendar'] = "hide";
}
// 4. filter user or group
if (!empty($_GET['user']) or !empty($_GET['group'])) {
$_SESSION['user']=(int) $_GET['user'];
$_SESSION['user'] = (int) $_GET['user'];
$_SESSION['group']=(int) $_GET['group'];
$_SESSION['group'] = (int) $_GET['group'];
}
if ((!empty($_GET['user']) and $_GET['user']=="none") or (!empty($_GET['group']) and $_GET['group']=="none")) {
Session::erase("user");
Session::erase("group");
if ((!empty($_GET['user']) and $_GET['user'] == "none") or (!empty($_GET['group']) and $_GET['group'] == "none")) {
Session::erase("user");
Session::erase("group");
}
if (!$is_courseAdmin){
if (!empty($_GET['toolgroup'])){
//$_SESSION['toolgroup']=$_GET['toolgroup'];
$toolgroup=Security::remove_XSS($_GET['toolgroup']);
Session::write('toolgroup',$toolgroup);
}
if (!$is_courseAdmin) {
if (!empty($_GET['toolgroup'])) {
$toolgroup = Security::remove_XSS($_GET['toolgroup']);
Session::write('toolgroup', $toolgroup);
}
}
//It comes from the group tools. If it's define it overwrites $_SESSION['group']
/*
if (!empty($_GET['isStudentView']) and $_GET['isStudentView']=="false") {
api_session_unregister("user");
api_session_unregister("group");
}*/
if (!empty($_GET['isStudentView']) and $_GET['isStudentView']=="false") {
api_session_unregister("user");
api_session_unregister("group");
} */
$htmlHeadXtra[] = to_javascript();
$htmlHeadXtra[] = user_group_filter_javascript();
@ -114,30 +114,28 @@ $htmlHeadXtra[] = "<script src=\"tbl_change.js\" type=\"text/javascript\" langua
// setting the name of the tool
$nameTools = get_lang('Agenda'); // language variable in trad4all.inc.php
// showing the header if we are not in the learning path, if we are in
// the learning path, we do not include the banner so we have to explicitly
// include the stylesheet, which is normally done in the header
if (isset($_GET['toolgroup']) & & !empty($_GET['toolgroup'])){
$_clean['toolgroup']= intval($_GET['toolgroup']);
$group_properties = GroupManager :: get_group_properties($_clean['toolgroup']);
$interbreadcrumb[] = array ("url" => "../group/group.php", "name" => get_lang('Groups'));
$interbreadcrumb[] = array ("url"=>"../group/group_space.php?gidReq=".Security::remove_XSS($_GET['toolgroup']), "name"=> get_lang('GroupSpace').' '.$group_properties['name']);
Display::display_header($nameTools,'Agenda');
if (isset($_GET['toolgroup']) & & !empty($_GET['toolgroup'])) {
$_clean['toolgroup'] = intval($_GET['toolgroup']);
$group_properties = GroupManager :: get_group_properties($_clean['toolgroup']);
$interbreadcrumb[] = array("url" => "../group/group.php", "name" => get_lang('Groups'));
$interbreadcrumb[] = array("url" => "../group/group_space.php?gidReq=".Security::remove_XSS($_GET['toolgroup']), "name" => get_lang('GroupSpace').' '.$group_properties['name']);
Display::display_header($nameTools, 'Agenda');
} elseif (empty($origin) or $origin != 'learnpath') {
Display::display_header($nameTools,'Agenda');
Display::display_header($nameTools, 'Agenda');
} else {
echo "< link rel = \"stylesheet\" type = \"text/css\" href = \"".api_get_path(WEB_CODE_PATH)."css/default.css\"/ > ";
echo "< link rel = \"stylesheet\" type = \"text/css\" href = \"".api_get_path(WEB_CODE_PATH)."css/default.css\"/ > ";
}
/*
TRACKING
TRACKING
*/
event_access_tool(TOOL_CALENDAR_EVENT);
/* SETTING SOME VARIABLES
*/
*/
// Variable definitions
// Defining the shorts for the days. We use camelcase because these are arrays of language variables
$DaysShort = api_get_week_days_short();
@ -147,42 +145,42 @@ $DaysLong = api_get_week_days_long();
$MonthsLong = api_get_months_long();
// Database table definitions
$TABLEAGENDA = Database::get_course_table(TABLE_AGENDA);
$TABLE_ITEM_PROPERTY = Database::get_course_table(TABLE_ITEM_PROPERTY);
$tbl_user = Database::get_main_table(TABLE_MAIN_USER);
$tbl_courseUser = Database::get_main_table(TABLE_MAIN_COURSE_USER);
$tbl_group = Database::get_course_table(TABLE_GROUP);
$tbl_groupUser = Database::get_course_table(TABLE_GROUP_USER);
$tbl_session_course_user= Database::get_main_table(TABLE_MAIN_SESSION_COURSE_USER);
/* ACCESS RIGHTS*/
$TABLEAGENDA = Database::get_course_table(TABLE_AGENDA);
$TABLE_ITEM_PROPERTY = Database::get_course_table(TABLE_ITEM_PROPERTY);
$tbl_user = Database::get_main_table(TABLE_MAIN_USER);
$tbl_courseUser = Database::get_main_table(TABLE_MAIN_COURSE_USER);
$tbl_group = Database::get_course_table(TABLE_GROUP);
$tbl_groupUser = Database::get_course_table(TABLE_GROUP_USER);
$tbl_session_course_user = Database::get_main_table(TABLE_MAIN_SESSION_COURSE_USER);
/* ACCESS RIGHTS */
// permission stuff - also used by loading from global in agenda.inc.php
$is_allowed_to_edit = api_is_allowed_to_edit(false,true) OR (api_get_course_setting('allow_user_edit_agenda') & & !api_is_anonymous());
$is_allowed_to_edit = api_is_allowed_to_edit(false, true) OR (api_get_course_setting('allow_user_edit_agenda') & & !api_is_anonymous());
// Tool introduction
Display::display_introduction_section(TOOL_CALENDAR_EVENT);
/* MAIN SECTION */
/* MAIN SECTION */
//setting the default year and month
$select_year = '';
$select_month = '';
$select_day = '';
if(!empty($_GET['year'])) {
$select_year = (int) $_GET['year'];
if (!empty($_GET['year'])) {
$select_year = (int) $_GET['year'];
}
if(!empty($_GET['month'])) {
$select_month = (int) $_GET['month'];
if (!empty($_GET['month'])) {
$select_month = (int) $_GET['month'];
}
if(!empty($_GET['day'])) {
$select_day = (int)$_GET['day'];
if (!empty($_GET['day'])) {
$select_day = (int) $_GET['day'];
}
$today = getdate();
if (empty($select_year)) {
$select_year = $today['year'];
$select_year = $today['year'];
}
if (empty($select_month)) {
$select_month = $today['mon'];
@ -190,8 +188,8 @@ if (empty($select_month)) {
echo '< div class = "actions" > ';
if (api_is_allowed_to_edit(false,true) OR (api_get_course_setting('allow_user_edit_agenda') & & !api_is_anonymous()) & & api_is_allowed_to_session_edit(false,true)) {
echo display_courseadmin_links();
if (api_is_allowed_to_edit(false, true) OR (api_get_course_setting('allow_user_edit_agenda') & & !api_is_anonymous()) & & api_is_allowed_to_session_edit(false, true)) {
echo display_courseadmin_links();
}
//display_student_links();
@ -200,107 +198,106 @@ echo '</div>';
$event_id = isset($_GET['id']) ? $_GET['id'] : null;
$course_info = api_get_course_info();
if (api_is_allowed_to_edit(false,true) OR (api_get_course_setting('allow_user_edit_agenda') & & !api_is_anonymous() & & api_is_allowed_to_session_edit(false,true))) {
switch ($action) {
case 'add':
if (isset($_POST['submit_event']) & & $_POST['submit_event']) {
$event_start = (int) $_POST['fyear'].'-'.(int) $_POST['fmonth'].'-'.(int) $_POST['fday'].' '.(int) $_POST['fhour'].':'.(int) $_POST['fminute'].':00';
$event_stop = (int) $_POST['end_fyear'].'-'.(int) $_POST['end_fmonth'].'-'.(int) $_POST['end_fday'].' '.(int) $_POST['end_fhour'].':'.(int) $_POST['end_fminute'].':00';
$safe_title = Security::remove_XSS($_POST['title']);
$safe_file_comment = Security::remove_XSS($_POST['file_comment']);
if ($_POST['empty_end_date'] == 'on' ) {
$event_stop = '0000-00-00 00:00:00';
}
$id = agenda_add_item($course_info,$safe_title,$_POST['content'],$event_start,$event_stop,$_POST['selected_form'],false, $safe_file_comment);
if (!empty($_POST['repeat'])) {
$end_y = intval($_POST['repeat_end_year']);
$end_m = intval($_POST['repeat_end_month']);
$end_d = intval($_POST['repeat_end_day']);
$end = mktime(23, 59, 59, $end_m, $end_d, $end_y);
$res = agenda_add_repeat_item($course_info,$id, $_POST['repeat_type'], $end, $_POST['selected_form'], $safe_file_comment);
}
Display::display_confirmation_message(get_lang('AddSuccess'));
} else {
show_add_form();
}
break;
case "announce":
//copying the agenda item into an announcement
if (!(api_is_course_coach() & & !api_is_element_in_the_session(TOOL_AGENDA, $event_id))) {
// a coach can only delete an element belonging to his session
$ann_id = store_agenda_item_as_announcement($event_id);
$tool_group_link = (isset($_SESSION['toolgroup'])?'&toolgroup='.$_SESSION['toolgroup']:'');
Display::display_normal_message(get_lang('CopiedAsAnnouncement').' < a href = "../announcements/announcements.php?id='.$ann_id.$tool_group_link.'" > '.get_lang('NewAnnouncement').'< / a > ', false);
}
break;
case 'importical':
if (isset($_POST['ical_submit'])) {
if (api_is_allowed_to_edit(false, true) OR (api_get_course_setting('allow_user_edit_agenda') & & !api_is_anonymous() & & api_is_allowed_to_session_edit(false, true))) {
switch ($action) {
case 'add':
if (isset($_POST['submit_event']) & & $_POST['submit_event']) {
$event_start = (int) $_POST['fyear'].'-'.(int) $_POST['fmonth'].'-'.(int) $_POST['fday'].' '.(int) $_POST['fhour'].':'.(int) $_POST['fminute'].':00';
$event_stop = (int) $_POST['end_fyear'].'-'.(int) $_POST['end_fmonth'].'-'.(int) $_POST['end_fday'].' '.(int) $_POST['end_fhour'].':'.(int) $_POST['end_fminute'].':00';
$safe_title = Security::remove_XSS($_POST['title']);
$safe_file_comment = Security::remove_XSS($_POST['file_comment']);
if ($_POST['empty_end_date'] == 'on') {
$event_stop = '0000-00-00 00:00:00';
}
$id = agenda_add_item($course_info, $safe_title, $_POST['content'], $event_start, $event_stop, $_POST['selected_form'], false, $safe_file_comment);
if (!empty($_POST['repeat'])) {
$end_y = intval($_POST['repeat_end_year']);
$end_m = intval($_POST['repeat_end_month']);
$end_d = intval($_POST['repeat_end_day']);
$end = mktime(23, 59, 59, $end_m, $end_d, $end_y);
$res = agenda_add_repeat_item($course_info, $id, $_POST['repeat_type'], $end, $_POST['selected_form'], $safe_file_comment);
}
Display::display_confirmation_message(get_lang('AddSuccess'));
} else {
show_add_form();
}
break;
case "announce":
//copying the agenda item into an announcement
if (!(api_is_course_coach() & & !api_is_element_in_the_session(TOOL_AGENDA, $event_id))) {
// a coach can only delete an element belonging to his session
$ann_id = store_agenda_item_as_announcement($event_id);
$tool_group_link = (isset($_SESSION['toolgroup']) ? '& toolgroup='.$_SESSION['toolgroup'] : '');
Display::display_normal_message(get_lang('CopiedAsAnnouncement').' < a href = "../announcements/announcements.php?id='.$ann_id.$tool_group_link.'" > '.get_lang('NewAnnouncement').'< / a > ', false);
}
break;
case 'importical':
if (isset($_POST['ical_submit'])) {
$ical_name = $_FILES['ical_import']['name'];
$ical_type = $_FILES['ical_import']['type'];
$ext = substr($ical_name,(strrpos($ical_name,".")+1));
$ext = substr($ical_name, (strrpos($ical_name, ".") + 1));
//$ical_type === 'text/calendar'
if ($ext === 'ics' || $ext === 'ical' || $ext === 'icalendar' || $ext === 'ifb') {
$agenda_result = agenda_import_ical($course_info, $_FILES['ical_import']);
$is_ical = true;
if ($ext === 'ics' || $ext === 'ical' || $ext === 'icalendar' || $ext === 'ifb') {
$agenda_result = agenda_import_ical($course_info, $_FILES['ical_import']);
$is_ical = true;
} else {
$is_ical = false;
$is_ical = false;
}
if (!$is_ical) {
Display::display_error_message(get_lang('IsNotiCalFormatFile'));
display_ical_import_form();
break;
Display::display_error_message(get_lang('IsNotiCalFormatFile'));
display_ical_import_form();
break;
} else {
Display::display_confirmation_message(get_lang('AddSuccess'));
Display::display_confirmation_message(get_lang('AddSuccess'));
echo $agenda_result;
}
} else {
display_ical_import_form();
display_ical_import_form();
}
break;
case 'edit':
if (!(api_is_course_coach() & & !api_is_element_in_the_session(TOOL_AGENDA, intval($_REQUEST['id'])))) {
// a coach can only delete an element belonging to his session
if ($_POST['submit_event']) {
store_edited_agenda_item($_REQUEST['id_attach'], $_REQUEST['file_comment']);
$action = 'view';
} else {
show_add_form($event_id);
}
}
break;
case "delete":
if (!(api_is_course_coach() & & !api_is_element_in_the_session(TOOL_AGENDA, $event_id) )) {
// a coach can only delete an element belonging to his session
delete_agenda_item($event_id);
$action = 'view';
}
break;
case "showhide":
if (!(api_is_course_coach() & & !api_is_element_in_the_session(TOOL_AGENDA, $event_id))) {
// a coach can only delete an element belonging to his session
showhide_agenda_item($event_id);
$action = 'view';
}
if (!empty($_GET['agenda_id'])) {
display_one_agenda_item($_GET['agenda_id']);
}
break;
case "delete_attach": //delete attachment file
$id_attach = $_GET['id_attach'];
if (!empty($id_attach)) {
delete_attachment_file($id_attach);
$action = 'view';
}
break;
case 'edit':
if(!(api_is_course_coach() & & !api_is_element_in_the_session(TOOL_AGENDA, intval($_REQUEST['id'])))) {
// a coach can only delete an element belonging to his session
if ($_POST['submit_event']) {
store_edited_agenda_item($_REQUEST['id_attach'], $_REQUEST['file_comment']);
$action = 'view';
} else {
show_add_form($event_id);
}
}
break;
case "delete":
if( ! (api_is_course_coach() & & !api_is_element_in_the_session(TOOL_AGENDA, $event_id ) ) ) {
// a coach can only delete an element belonging to his session
delete_agenda_item($event_id);
$action = 'view';
}
break;
case "showhide":
if (!(api_is_course_coach() & & !api_is_element_in_the_session(TOOL_AGENDA, $event_id))) {
// a coach can only delete an element belonging to his session
showhide_agenda_item($event_id);
$action = 'view';
}
if (!empty($_GET['agenda_id'])) {
display_one_agenda_item($_GET['agenda_id']);
}
break;
case "delete_attach": //delete attachment file
$id_attach = $_GET['id_attach'];
if (!empty($id_attach)) {
delete_attachment_file($id_attach);
$action = 'view';
}
break;
}
}
}
// The footer is displayed only if we are not in the learnpath
if ($origin != 'learnpath') {
Display::display_footer();
Display::display_footer();
}