function confirmation(name) { if (confirm("'.get_lang('AreYouSureToDelete').' " + name + " ?")) {return true;} else {return false;} } '; if (!empty ($_GET['coursePath'])) { $course_url = api_get_path(WEB_COURSE_PATH).htmlentities(strip_tags($_GET['coursePath'])).'/index.php'; $interbreadcrumb[] = array ('url' => $course_url, 'name' => $_GET['courseCode']); } /* ----------------------------------------------------------- Configuration file ----------------------------------------------------------- */ require_once (api_get_path(CONFIGURATION_PATH).'profile.conf.php'); /* ----------------------------------------------------------- Libraries ----------------------------------------------------------- */ include_once (api_get_path(LIBRARY_PATH).'fileManage.lib.php'); include_once (api_get_path(LIBRARY_PATH).'fileUpload.lib.php'); include_once (api_get_path(LIBRARY_PATH).'image.lib.php'); require_once (api_get_path(LIBRARY_PATH).'usermanager.lib.php'); if (is_profile_editable()) $tool_name = get_lang('ModifProfile'); else $tool_name = get_lang('ViewProfile'); $table_user = Database :: get_main_table(TABLE_MAIN_USER); /* ----------------------------------------------------------- Form ----------------------------------------------------------- */ /* * Get initial values for all fields. */ $user_data = UserManager::get_user_info_by_id(api_get_user_id()); if ($user_data !== false) { if (is_null($user_data['language'])) $user_data['language'] = api_get_setting('platformLanguage'); } $user_image = UserManager::get_user_picture_path_by_id(api_get_user_id(),'none'); $fck_attribute['Height'] = "150"; $fck_attribute['Width'] = "450"; $fck_attribute['ToolbarSet'] = "Profil"; /* * Initialize the form. */ $form = new FormValidator('profile', 'post', api_get_self()."?{$_SERVER['QUERY_STRING']}", null, array('style' => 'width: 75%; float: '.($text_dir=='rtl'?'right;':'left;'))); /* Make sure this is the first submit on the form, even though it is hidden! * Otherwise, if a user has productions and presses ENTER to submit, he will * attempt to delete the first production in the list. */ if (is_profile_editable()) $form->addElement('submit', null, get_lang('Ok'), array('style' => 'visibility:hidden;')); // LAST NAME and FIRST NAME $form->addElement('text', 'lastname', get_lang('LastName'), array('size' => 40)); $form->addElement('text', 'firstname', get_lang('FirstName'), array('size' => 40)); if (api_get_setting('profile', 'name') !== 'true') $form->freeze(array('lastname', 'firstname')); $form->applyFilter(array('lastname', 'firstname'), 'stripslashes'); $form->applyFilter(array('lastname', 'firstname'), 'trim'); $form->addRule('lastname' , get_lang('ThisFieldIsRequired'), 'required'); $form->addRule('firstname', get_lang('ThisFieldIsRequired'), 'required'); // OFFICIAL CODE if (CONFVAL_ASK_FOR_OFFICIAL_CODE) { $form->addElement('text', 'official_code', get_lang('OfficialCode'), array('size' => 40)); if (api_get_setting('profile', 'officialcode') !== 'true') $form->freeze('official_code'); $form->applyFilter('official_code', 'stripslashes'); $form->applyFilter('official_code', 'trim'); if (api_get_setting('registration', 'officialcode') == 'true' && api_get_setting('profile', 'officialcode') == 'true') $form->addRule('official_code', get_lang('ThisFieldIsRequired'), 'required'); } // EMAIL $form->addElement('text', 'email', get_lang('Email'), array('size' => 40)); if (api_get_setting('profile', 'email') !== 'true') $form->freeze('email'); $form->applyFilter('email', 'stripslashes'); $form->applyFilter('email', 'trim'); if (api_get_setting('registration', 'email') == 'true') $form->addRule('email', get_lang('ThisFieldIsRequired'), 'required'); $form->addRule('email', get_lang('EmailWrong'), 'email'); // PHONE $form->addElement('text', 'phone', get_lang('phone'), array('size' => 20)); if (api_get_setting('profile', 'phone') !== 'true') $form->freeze('phone'); $form->applyFilter('phone', 'stripslashes'); $form->applyFilter('phone', 'trim'); /*if (api_get_setting('registration', 'phone') == 'true') $form->addRule('phone', get_lang('ThisFieldIsRequired'), 'required'); $form->addRule('phone', get_lang('EmailWrong'), 'email');*/ // PICTURE if (is_profile_editable() && api_get_setting('profile', 'picture') == 'true') { $form->addElement('file', 'picture', ($user_image != '' ? get_lang('UpdateImage') : get_lang('AddImage'))); $form->add_progress_bar(); if( strlen($user_data['picture_uri']) > 0) { $form->addElement('checkbox', 'remove_picture', null, get_lang('DelImage')); } $form->addRule('picture', get_lang('OnlyImagesAllowed'), 'mimetype', array('image/gif', 'image/jpeg', 'image/png','image/pjpeg')); } // USERNAME $form->addElement('text', 'username', get_lang('UserName'), array('size' => 40)); if (api_get_setting('profile', 'login') !== 'true') $form->freeze('username'); $form->applyFilter('username', 'stripslashes'); $form->applyFilter('username', 'trim'); $form->addRule('username', get_lang('ThisFieldIsRequired'), 'required'); $form->addRule('username', get_lang('UsernameWrong'), 'username'); $form->addRule('username', get_lang('UserTaken'), 'username_available', $user_data['username']); // LANGUAGE $form->addElement('select_language', 'language', get_lang('Language')); if (api_get_setting('profile', 'language') !== 'true') $form->freeze('language'); // EXTENDED PROFILE if (api_get_setting('extended_profile') == 'true') { $form->addElement('static', null, ''.get_lang('OptionalTextFields').''); // MY COMPETENCES $form->add_html_editor('competences', get_lang('MyCompetences'), false); // MY DIPLOMAS $form->add_html_editor('diplomas', get_lang('MyDiplomas'), false); // WHAT I AM ABLE TO TEACH $form->add_html_editor('teach', get_lang('MyTeach'), false); // MY PRODUCTIONS $form->addElement('file', 'production', get_lang('MyProductions')); if ($production_list = UserManager::build_production_list($_user['user_id'],'',true)) { $form->addElement('static', 'productions', null, $production_list); } // MY PERSONAL OPEN AREA $form->add_html_editor('openarea', get_lang('MyPersonalOpenArea'), false); $form->applyFilter(array('competences', 'diplomas', 'teach', 'openarea'), 'stripslashes'); $form->applyFilter(array('competences', 'diplomas', 'teach'), 'trim'); // openarea is untrimmed for maximum openness } // PASSWORD if (is_profile_editable() && api_get_setting('profile', 'password') == 'true') { $form->addElement('static', null, null, ''.get_lang('Enter2passToChange').''); $form->addElement('password', 'password1', get_lang('Pass'), array('size' => 40)); $form->addElement('password', 'password2', get_lang('Confirmation'), array('size' => 40)); // user must enter identical password twice so we can prevent some user errors $form->addRule(array('password1', 'password2'), get_lang('PassTwo'), 'compare'); if (CHECK_PASS_EASY_TO_FIND) $form->addRule('password1', get_lang('PassTooEasy').': '.api_generate_password(), 'callback', 'api_check_password'); } // SUBMIT if (is_profile_editable()) { $form->addElement('submit', 'apply_change', get_lang('Ok')); } else { $form->freeze(); } /* * Set initial values for all fields. */ $form->setDefaults($user_data); /* ============================================================================== FUNCTIONS ============================================================================== */ /* ----------------------------------------------------------- LOGIC FUNCTIONS ----------------------------------------------------------- */ /** * Can a user edit his/her profile? * * @return boolean Editability of the profile */ function is_profile_editable() { return $GLOBALS['profileIsEditable']; } /* ----------------------------------------------------------- USER IMAGE FUNCTIONS ----------------------------------------------------------- */ /** * Deprecated function. Use UserManager::get_user_picture_path_by_id($user_id,'none') instead * Get a user's display picture. If the user doesn't have a picture, this * function will return an empty string. * * @param $user_id User id * @return The uri to the picture */ function get_user_image($user_id) { $path = UserManager::get_user_picture_path_by_id($user_id,'none'); return $path['file']; /* $table_user = Database :: get_main_table(TABLE_MAIN_USER); $sql = "SELECT picture_uri FROM $table_user WHERE user_id = '$user_id'"; $result = api_sql_query($sql, __FILE__, __LINE__); if ($result && $row = mysql_fetch_array($result, MYSQL_ASSOC)) $image = trim($row['picture_uri']); else $image = ''; return $image; */ } /** * Upload a submitted user image. * * @param $user_id User id * @return The filename of the new picture or FALSE if the upload has failed */ function upload_user_image($user_id) { /* Originally added by Miguel (miguel@cesga.es) - 2003-11-04 * Code Refactoring by Hugues Peeters (hugues.peeters@claroline.net) - 2003-11-24 * Moved inside a function and refactored by Thomas Corthals - 2005-11-04 */ $image_path = UserManager::get_user_picture_path_by_id($user_id,'system',true); $image_repository = $image_path['dir']; $existing_image = $image_path['file']; $file_extension = explode('.', $_FILES['picture']['name']); $file_extension = strtolower($file_extension[sizeof($file_extension) - 1]); if (!file_exists($image_repository)) { //error_log('Making path '.$image_repository,0); mkpath($image_repository); }else{ //error_log('Path '.$image_repository.' exists',0); } if ($existing_image != '') { if (KEEP_THE_NAME_WHEN_CHANGE_IMAGE) { $picture_filename = $existing_image; $old_picture_filename = 'saved_'.date('Y_m_d_H_i_s').'_'.uniqid('').'_'.$existing_image; } else { $old_picture_filename = $existing_image; $picture_filename = (PREFIX_IMAGE_FILENAME_WITH_UID ? 'u'.$user_id.'_' : '').uniqid('').'.'.$file_extension; } if (KEEP_THE_OLD_IMAGE_AFTER_CHANGE) rename($image_repository.$existing_image, $image_repository.$old_picture_filename); else unlink($image_repository.$existing_image); } else { $picture_filename = (PREFIX_IMAGE_FILENAME_WITH_UID ? $user_id.'_' : '').uniqid('').'.'.$file_extension; } $temp = new image($_FILES['picture']['tmp_name']); $picture_infos=getimagesize($_FILES['picture']['tmp_name']); $thumbwidth = IMAGE_THUMBNAIL_WIDTH; if(empty($thumbwidth) or $thumbwidth==0) { $thumbwidth=100; } $new_height = round(($thumbwidth/$picture_infos[0])*$picture_infos[1]); $temp->resize($thumbwidth,$new_height,0); $type=$picture_infos[2]; switch ($type) { case 2 : $temp->send_image('JPG',$image_repository.$picture_filename); break; case 3 : $temp->send_image('PNG',$image_repository.$picture_filename); break; case 1 : $temp->send_image('GIF',$image_repository.$picture_filename); break; } return $picture_filename; } /** * Remove an existing user image. * * @param $user_id User id */ function remove_user_image($user_id) { $image_path = UserManager::get_user_picture_path_by_id($user_id,'system'); $image_repository = $image_path['dir']; $image = $image_path['file']; if ($image != '') { if (KEEP_THE_OLD_IMAGE_AFTER_CHANGE) rename($image_repository.$image, $image_repository.'deleted_'.date('Y_m_d_H_i_s').'_'.$image); else unlink($image_repository.$image); } } /* ----------------------------------------------------------- PRODUCTIONS FUNCTIONS ----------------------------------------------------------- */ /** * Upload a submitted user production. * * @param $user_id User id * @return The filename of the new production or FALSE if the upload has failed */ function upload_user_production($user_id) { $image_path = UserManager::get_user_picture_path_by_id($user_id,'system',true); $production_repository = $image_path['dir'].$user_id.'/'; if (!file_exists($production_repository)) mkpath($production_repository); $filename = replace_dangerous_char($_FILES['production']['name']); $filename = php2phps($filename); if (move_uploaded_file($_FILES['production']['tmp_name'], $production_repository.$filename)) return $filename; return false; // this should be returned if anything went wrong with the upload } /* ============================================================================== MAIN CODE ============================================================================== */ if ($_SESSION['profile_update']) { $update_success = ($_SESSION['profile_update'] == 'success'); unset($_SESSION['profile_update']); } elseif ($_POST['remove_production']) { foreach (array_keys($_POST['remove_production']) as $production) { UserManager::remove_user_production($_user['user_id'], urldecode($production)); } if ($production_list = UserManager::build_production_list($_user['user_id'], true,true)) $form->insertElementBefore($form->createElement('static', null, null, $production_list), 'productions'); $form->removeElement('productions'); $file_deleted = true; } elseif ($form->validate()) { $user_data = $form->exportValues(); // set password if a new one was provided if ($user_data['password1']) $password = $user_data['password1']; // upload picture if a new one is provided if ($_FILES['picture']['size']) { if ($new_picture = upload_user_image($_user['user_id'])) $user_data['picture_uri'] = $new_picture; } // remove existing picture if asked elseif ($user_data['remove_picture']) { remove_user_image($_user['user_id']); $user_data['picture_uri'] = ''; } // upload production if a new one is provided if ($_FILES['production']['size']) upload_user_production($_user['user_id']); // remove values that shouldn't go in the database unset($user_data['password1'], $user_data['password2'], $user_data['MAX_FILE_SIZE'], $user_data['remove_picture'], $user_data['apply_change']); // build SQL query $sql = "UPDATE $table_user SET"; foreach($user_data as $key => $value) { $sql .= " $key = '".addslashes($value)."',"; } if (isset($password)) { if ($userPasswordCrypted) { $sql .= " password = MD5('".addslashes($password)."')"; } else { $sql .= " password = '".addslashes($password)."'"; } } else // remove trailing , from the query we have so far { $sql = rtrim($sql, ','); } $sql .= " WHERE user_id = '".$_user['user_id']."'"; api_sql_query($sql, __FILE__, __LINE__); // re-init the system to take new settings into account $uidReset = true; include (api_get_path(INCLUDE_PATH).'local.inc.php'); $_SESSION['profile_update'] = 'success'; header("Location: http://{$_SERVER['HTTP_HOST']}".api_get_self()."?{$_SERVER['QUERY_STRING']}"); exit; } /* ============================================================================== MAIN DISPLAY SECTION ============================================================================== */ Display :: display_header(get_lang('ModifyProfile')); if ($file_deleted) { Display :: display_normal_message(get_lang('FileDeleted')); } elseif ($update_success) { Display :: display_normal_message(get_lang('ProfileReg')); } // USER PICTURE $image_path = UserManager::get_user_picture_path_by_id($_user['user_id'],'web'); $image_dir = $image_path['dir']; $image = $image_path['file']; $image_file = ($image != '' ? $image_dir.$image : api_get_path(WEB_CODE_PATH).'img/unknown.jpg'); $image_size = @getimagesize($image_file); $img_attributes = 'src="'.$image_file.'?rand='.time().'" ' .'alt="'.$user_data['lastname'].' '.$user_data['firstname'].'" ' .'style="float:'.($text_dir == 'rtl' ? 'left' : 'right').'; padding:5px;" '; if ($image_size[0] > 300) //limit display width to 300px $img_attributes .= 'width="300" '; echo ''; $form->display(); Display :: display_footer(); ?>