"; /* ----------------------------------------------------------- WIKI MENU ----------------------------------------------------------- */ echo "

"; echo '

'.get_lang('HomeWiki').'
'.get_lang('Page').'
'.get_lang('EditPage').'
'.get_lang('EditPage').'
'.get_lang('Discuss').'
'.get_lang('History').'
'.get_lang('History').'
'.$LinksPages.'
'.get_lang('Delete').'

'; /* ----------------------------------------------------------- MAIN WIKI AREA ----------------------------------------------------------- */ echo "

"; /////////////////////// more options /////////////////////// Juan Carlos Raña Trabado if ($_GET['action']=='more') { echo '
'; echo ''.get_lang('More').'
'; echo '

'; echo '

'.get_lang('OrphanedPages').'
'.get_lang('WantedPages').'
'.get_lang('MostVisitedPages').'
'.get_lang('MostChangedPages').'
'.get_lang('MostLinkedPages').'
'.get_lang('DeadEndPages').'
'.get_lang('MostNewPages').'
'.get_lang('MostLongPages').'
'.get_lang('ProtectedPages').'
'.get_lang('HiddenPages').'
'.get_lang('MostDiscussPages').'
'.get_lang('BestScoredPages').'
'.get_lang('MProgressPages').'
'.get_lang('MostActiveUsers').'
'.get_lang('MostDiscussUsers').'
'.get_lang('Assignments').'
'.get_lang('DelayedAssignments').'
'.get_lang('RandomPage').'

'; } /////////////////////// Most active users /////////////////////// Juan Carlos Raña Trabado if ($_GET['action']=='mactiveusers') { echo '
'; echo ''.get_lang('MostActiveUsers').'
'; echo '

'; $sql='SELECT *, COUNT(*) AS NEDIT FROM '.$tbl_wiki.' WHERE '.$groupfilter.' GROUP BY user_id ORDER BY NEDIT DESC LIMIT 10'; //first ten users with more versions $allpages=api_sql_query($sql,__FILE__,__LINE__); echo '

'.$userinfo['lastname'].', '.$userinfo['firstname'].' -> '.$row['NEDIT'].' '.get_lang('Contributions').'

'; } /////////////////////// User contributions /////////////////////// Juan Carlos Raña Trabado if ($_GET['action']=='usercontrib') { $userinfo=Database::get_user_info_from_id($_GET['user_id']); echo '
'; echo ''.get_lang('UserContributions').': '.$userinfo['lastname'].', '.$userinfo['firstname'].'
'; echo '

'; if(api_is_allowed_to_edit() || api_is_platform_admin()) //only by professors if page is hidden { $sql='SELECT * FROM '.$tbl_wiki.' WHERE '.$groupfilter.' AND user_id="'.$_GET['user_id'].'" ORDER BY reflink,version ASC'; } else { $sql='SELECT * FROM '.$tbl_wiki.' WHERE '.$groupfilter.' AND user_id="'.$_GET['user_id'].'" AND visibility=1 ORDER BY reflink,version ASC'; } $allpages=api_sql_query($sql,__FILE__,__LINE__); echo '

'.$day.' '.$MonthsLong[$month-1].' '.$year.' '.$hours.":".$minutes.":".$seconds.' ... '.$ShowAssignment.''.$row['title'].' ('.get_lang('Version').' '.$row['version'].') ... '.get_lang('Progress').': '.$row['progress'].'%'.$showcomment.'

'; } /////////////////////// Most changed pages /////////////////////// Juan Carlos Raña Trabado if ($_GET['action']=='mostchanged') { echo '
'; echo ''.get_lang('MostChangesPages').'
'; echo '

'; if(api_is_allowed_to_edit() || api_is_platform_admin()) //only by professors if page is hidden { $sql='SELECT *, MAX(version) AS MAX FROM '.$tbl_wiki.' WHERE '.$groupfilter.' GROUP BY reflink ORDER BY MAX DESC, reflink LIMIT 10'; //first ten users } else { $sql='SELECT *, MAX(version) AS MAX FROM '.$tbl_wiki.' WHERE '.$groupfilter.' AND visibility=1 GROUP BY reflink ORDER BY MAX DESC, reflink LIMIT 10';//first ten users } $allpages=api_sql_query($sql,__FILE__,__LINE__); echo '

'.$ShowAssignment.''.$row['title'].' '.get_lang('With').' '.$row['MAX'].' '.get_lang('Changes').'

'; } /////////////////////// Most visited pages /////////////////////// Juan Carlos Raña Trabado if ($_GET['action']=='mvisited') { echo '
'; echo ''.get_lang('MostVisitedPages').'
'; echo '

'; if(api_is_allowed_to_edit() || api_is_platform_admin()) //only by professors if page is hidden { $sql='SELECT *, SUM(hits) AS tsum FROM '.$tbl_wiki.' WHERE '.$groupfilter.' GROUP BY reflink'; // warning GROUP BY reflink don't return the last version, always the first id } else { $sql='SELECT *, SUM(hits) AS tsum FROM '.$tbl_wiki.' WHERE '.$groupfilter.' AND visibility=1 GROUP BY reflink'; // warning GROUP BY reflink don't return the last version, always the first id } $allpages=api_sql_query($sql,__FILE__,__LINE__); //show table if (mysql_num_rows($allpages) > 0) { $row = array (); while ($obj = mysql_fetch_object($allpages)) { //get type assignment icon if($obj->assignment==1) { $ShowAssignment=' '.get_lang('AssignmentDesc').'

'; } elseif ($obj->assignment==2) { $ShowAssignment=' '.get_lang('AssignmentWork').'

'; } elseif ($obj->assignment==0) { $ShowAssignment='

'; } $row = array (); $row[] =$ShowAssignment; $row[] = ''.$obj->title.''; $row[] = $obj->tsum; $rows[] = $row; } $table = new SortableTableFromArrayConfig($rows,2,10,'MostVisitedPages_table','','','DESC'); $table->set_additional_parameters(array('cidReq' =>$_GET['cidReq'],'action'=>$_GET['action'],'group_id'=>Security::remove_XSS($_GET['group_id']))); $table->set_header(0,get_lang('Type'), true, array ('style' => 'width:30px;')); $table->set_header(1,get_lang('Title'), true); $table->set_header(2,get_lang('Visits'), true); $table->display(); } } /////////////////////// Wanted pages /////////////////////// Juan Carlos Raña Trabado if ($_GET['action']=='wanted') { echo '
'; echo ''.get_lang('WantedPages').'
'; echo '

'; $pages = array(); $refs = array(); $orphaned = array(); $sort_wanted=array(); //get name pages $sql='SELECT * FROM '.$tbl_wiki.' WHERE '.$groupfilter.' GROUP BY reflink ORDER BY reflink ASC'; $allpages=api_sql_query($sql,__FILE__,__LINE__); while ($row=Database::fetch_array($allpages)) { $pages[] = $row['reflink']; } //get name refs in last pages and make a unique list $sql='SELECT * FROM '.$tbl_wiki.' s1 WHERE '.$groupfilter.' AND id=(SELECT MAX(s2.id) FROM '.$tbl_wiki.' s2 WHERE s1.reflink = s2.reflink)'; $allpages=api_sql_query($sql,__FILE__,__LINE__); while ($row=Database::fetch_array($allpages)) { //$row['linksto']= str_replace("\n".$row["reflink"]."\n", "\n", $row["linksto"]); //remove self reference. TODO check $rf = explode(" ", trim($row["linksto"]));//wanted pages without /n only blank " " $refs = array_merge($refs, $rf); if ($n++ > 299) { $refs = array_unique($refs); $n=0; } // (clean-up only every 300th loop). Thanks to Erfurt Wiki } //sort linksto. Find linksto into reflink. If not found ->page is wanted natcasesort($refs); echo '

'.str_replace('_',' ',$v).'

'; } /////////////////////// Orphaned pages /////////////////////// Juan Carlos Raña Trabado if ($_GET['action']=='orphaned') { echo '
'; echo ''.get_lang('OrphanedPages').'
'; echo '

'; $pages = array(); $refs = array(); $orphaned = array(); $sort_orphaned=array(); //get name pages $sql='SELECT * FROM '.$tbl_wiki.' WHERE '.$groupfilter.' GROUP BY reflink ORDER BY reflink ASC'; $allpages=api_sql_query($sql,__FILE__,__LINE__); while ($row=Database::fetch_array($allpages)) { $pages[] = $row['reflink']; } //get name refs in last pages and make a unique list $sql='SELECT * FROM '.$tbl_wiki.' s1 WHERE '.$groupfilter.' AND id=(SELECT MAX(s2.id) FROM '.$tbl_wiki.' s2 WHERE s1.reflink = s2.reflink)'; $allpages=api_sql_query($sql,__FILE__,__LINE__); while ($row=Database::fetch_array($allpages)) { //$row['linksto']= str_replace("\n".$row["reflink"]."\n", "\n", $row["linksto"]); //remove self reference. TODO check $rf = explode(" ", trim($row["linksto"])); //TODO: check fix replace explode("\n", trim($row["linksto"])) with explode(" ", trim($row["linksto"])) $refs = array_merge($refs, $rf); if ($n++ > 299) { $refs = array_unique($refs); $n=0; } // (clean-up only every 300th loop). Thanks to Erfurt Wiki } //search each name of list linksto into list reflink foreach($pages as $v) { if(!in_array($v, $refs)) { $orphaned[] = $v; } } //change reflink by title foreach($orphaned as $vshow) { if(api_is_allowed_to_edit() || api_is_platform_admin()) //only by professors if page is hidden { $sql='SELECT * FROM '.$tbl_wiki.' WHERE '.$groupfilter.' AND reflink="'.$vshow.'" GROUP BY reflink'; } else { $sql='SELECT * FROM '.$tbl_wiki.' WHERE '.$groupfilter.' AND reflink="'.$vshow.'" AND visibility=1 GROUP BY reflink'; } $allpages=api_sql_query($sql,__FILE__,__LINE__); echo '

'.$ShowAssignment.''.$row['title'].'

'; } //sort titles //TODO: check to delete this line //natcasesort($sort_orphaned);//TODO: check to delete this line //foreach($sort_orphaned as $vshow_so)//TODO: check to delete this line //{ //echo $vshow_so.'
'; //TODO: link to page //TODO: check to delete this line //}//TODO: check to delete this line } /////////////////////// delete current page /////////////////////// Juan Carlos Raña Trabado if ($_GET['action']=='delete') { if(api_is_allowed_to_edit() || api_is_platform_admin()) { echo '
'; echo ''.get_lang('DeletePageHistory').''; echo '

'; $message = get_lang('ConfirmDeletePage')."

"."

"."".get_lang("No").""." | "."".get_lang("Yes").""."

"; if (!isset ($_GET['delete'])) { Display::display_warning_message($message,false); } if ($_GET['delete'] == 'yes') { $sql='DELETE FROM '.$tbl_wiki.' WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id DESC'; api_sql_query($sql,__FILE__,__LINE__); //// //here TODO: delete discussion and mailcue too /// check_emailcue(0, 'E'); Display::display_confirmation_message(get_lang('WikiPageDeleted')); } } else { Display::display_normal_message(get_lang("OnlyAdminDeletePageWiki")); } } /////////////////////// delete all wiki /////////////////////// Juan Carlos Raña Trabado if ($_GET['action']=='deletewiki') { echo '
'; echo ''.get_lang('DeleteWiki').''; echo '

'; } /////////////////////// search pages /////////////////////// Juan Carlos Raña Trabado //// 1 Searchpages: input search if ($_GET['action']=='searchpages') { echo '
'; echo ''.$SearchPages.''; echo '

'; if (!$_POST['Skeyword']) { echo ''; } } //// 2 SearchPages: find and show pages if ($_GET['action']=='showsearchpages') { echo '
'; echo ''.$Search.': '.$_POST['Skeyword']; //TODO: post is lost when a table has some pages echo '

'; $_clean['group_id']=(int)$_SESSION['_gid']; if(api_is_allowed_to_edit() || api_is_platform_admin()) //only by professors if page is hidden { if($_POST['Scontent']=="1") { $sql="SELECT * FROM ".$tbl_wiki." s1 WHERE ".$groupfilter." AND title LIKE '%".$_POST['Skeyword']."%' OR content LIKE '%".$_POST['Skeyword']."%' AND id=(SELECT MAX(s2.id) FROM ".$tbl_wiki." s2 WHERE s1.reflink = s2.reflink)";// warning don't use group by reflink because don't return the last version } else { $sql="SELECT * FROM ".$tbl_wiki." s1 WHERE ".$groupfilter." AND title LIKE '%".$_POST['Skeyword']."%' AND id=(SELECT MAX(s2.id) FROM ".$tbl_wiki." s2 WHERE s1.reflink = s2.reflink)";// warning don't use group by reflink because don't return the last version } } else { if($_POST['Scontent']=="1") { $sql="SELECT * FROM ".$tbl_wiki." s1 WHERE ".$groupfilter." AND visibility=1 AND title LIKE '%".$_POST['Skeyword']."%' OR content LIKE '%".$_POST['Skeyword']."%' AND id=(SELECT MAX(s2.id) FROM ".$tbl_wiki." s2 WHERE s1.reflink = s2.reflink)";// warning don't use group by reflink because don't return the last version } else { $sql="SELECT * FROM ".$tbl_wiki." s1 WHERE ".$groupfilter." AND visibility=1 AND title LIKE '%".$_POST['Skeyword']."%' AND id=(SELECT MAX(s2.id) FROM ".$tbl_wiki." s2 WHERE s1.reflink = s2.reflink)";// warning don't use group by reflink because don't return the last version } } $result=api_sql_query($sql,__LINE__,__FILE__); //show table if (mysql_num_rows($result) > 0) { $row = array (); while ($obj = mysql_fetch_object($result)) { //get author $userinfo=Database::get_user_info_from_id($obj->user_id); //get time $year = substr($obj->timestamp, 0, 4); $month = substr($obj->timestamp, 5, 2); $day = substr($obj->timestamp, 8, 2); $hours = substr($obj->timestamp, 11,2); $minutes = substr($obj->timestamp, 14,2); $seconds = substr($obj->timestamp, 17,2); //get type assignment icon if($obj->assignment==1) { $ShowAssignment=' '.get_lang('AssignmentDesc').'

'; } elseif ($obj->assignment==2) { $ShowAssignment=' '.get_lang('AssignmentWork').'

'; } elseif ($obj->assignment==0) { $ShowAssignment='

'; } $row = array (); $row[] =$ShowAssignment; $row[] = ''.$obj->title.''; $row[] = $obj->user_id <>0 ? ''.$userinfo['lastname'].', '.$userinfo['firstname'].'' : get_lang('Anonymous').' ('.$obj->user_ip.')'; $row[] = $day.' '.$MonthsLong[$month-1].' '.$year.' '.$hours.":".$minutes.":".$seconds; $rows[] = $row; } $table = new SortableTableFromArrayConfig($rows,1,10,'SearchPages_table','','','ASC'); $table->set_additional_parameters(array('cidReq' =>$_GET['cidReq'],'action'=>$_GET['action'],'group_id'=>Security::remove_XSS($_GET['group_id']))); $table->set_header(0,get_lang('Type'), true, array ('style' => 'width:30px;')); $table->set_header(1,get_lang('Title'), true); $table->set_header(2,get_lang('Author'), true); $table->set_header(3,get_lang('Date'), true); $table->display(); } } /////////////////////// What links here. Show pages that have linked this page /////////////////////// Juan Carlos Raña Trabado if ($_GET['action']=='links') { echo '
'; echo ''.$LinksPages.''; echo '

'; if (!$_GET['title']) { Display::display_normal_message(get_lang("MustSelectPage")); } else { $sql='SELECT * FROM '.$tbl_wiki.' WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.''; $result=api_sql_query($sql,__FILE__,__LINE__); //necessary for pages with compound name. TODO: check if necessay after have fixed wanted pages with _ $row=Database::fetch_array($result); echo $LinksPagesFrom.': '.$row['title'].''; if ($page==get_lang('DefaultTitle')) { $page='index'; } $sql="SELECT * FROM ".$tbl_wiki." WHERE ".$groupfilter." AND linksto LIKE '%".html_entity_decode(Database::escape_string(stripslashes(urldecode($page))))." %' GROUP BY reflink ORDER BY title ASC"; //add blank space after like '%" " %' to identify each word $result=api_sql_query($sql,__LINE__,__FILE__); //show result echo '

'; echo ''.$ShowAssignment.$row['title'].''; echo '...'.$userinfo['lastname'].', '.$userinfo['firstname']; echo '...'.$day.' '.$MonthsLong[$month-1].' '.$year.' '.$hours.":".$minutes.":".$seconds.'

'; echo ''.$ShowAssignment.$row['title'].''; echo '...'.$userinfo['lastname'].', '.$userinfo['firstname']; echo '...'.$day.' '.$MonthsLong[$month-1].' '.$year.' '.$hours.":".$minutes.":".$seconds.'

'; echo ''.$ShowAssignment.$row['title'].''; if ($row['user_id']<>0) { echo '...'.$userinfo['lastname'].', '.$userinfo['firstname']; } else { echo get_lang('Anonymous').' ('.$row[user_ip].')'; } echo '...'.$day.' '.$MonthsLong[$month-1].' '.$year.' '.$hours.":".$minutes.":".$seconds.'

'; } } /////////////////////// adding a new page /////////////////////// // Display the form for adding a new wiki page if ($_GET['action']=='addnew') { //first, check if page index was created. chektitle=false if (checktitle('index')) { if(api_is_allowed_to_edit() || api_is_platform_admin()) { Display::display_normal_message(get_lang('GoAndEditMainPage')); } else { return Display::display_normal_message(get_lang('WikiStandBy')); } } elseif (check_addnewpagelock() && (api_is_allowed_to_edit()==false || api_is_platform_admin()==false)) { Display::display_normal_message(get_lang('AddPagesLocked')); } else { if(GroupManager :: is_user_in_group($_user['user_id'],$_SESSION['_gid'])) { if(api_is_allowed_to_edit() || api_is_platform_admin() || GroupManager :: is_user_in_group($_user['user_id'],$_SESSION['_gid'])) { echo '
'; echo ''.get_lang('AddNew').''; echo '

'; display_new_wiki_form(); } else { Display::display_normal_message(get_lang('OnlyAddPagesGroupMembers')); } } else { echo '
'; echo ''.get_lang('AddNew').''; echo '

'; display_new_wiki_form(); } } } /////////////////////// show home page /////////////////////// if (!$_GET['action'] OR $_GET['action']=='show' AND !$_POST['SaveWikiNew']) { display_wiki_entry(); } /////////////////////// show current page /////////////////////// if ($_GET['action']=='showpage' AND !$_POST['SaveWikiNew']) { display_wiki_entry(); } /////////////////////// edit current page /////////////////////// if ($_GET['action']=='edit') { $_clean['group_id']=(int)$_SESSION['_gid']; $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id DESC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); // we do not need a while loop since we are always displaying the last version //Only teachers and platform admin can edit the index page. Only teachers and platform admin can edit an assignment teacher if(($row['reflink']=='index' || $row['reflink']=='' || $row['assignment']==1) && (!api_is_allowed_to_edit())) { Display::display_normal_message(get_lang('OnlyEditPagesCourseManager')); } else { $PassEdit=false; //check if is a wiki group if($_clean['group_id']!==0) { //Only teacher, platform admin and group members can edit a wiki group if(api_is_allowed_to_edit() || api_is_platform_admin() || GroupManager :: is_user_in_group($_user['user_id'],$_SESSION['_gid'])) { $PassEdit=true; } else { Display::display_normal_message(get_lang('OnlyEditPagesGroupMembers')); } } else { $PassEdit=true; } // check if is a assignment if(stripslashes($row['assignment'])==1) { Display::display_normal_message(get_lang('EditAssignmentWarning')); $icon_assignment=' '.get_lang('AssignmentDescExtra').'

'; } elseif(stripslashes($row['assignment'])==2) { $icon_assignment=' '.get_lang('AssignmentWorkExtra').'

'; if((api_get_user_id()==$row['user_id'])==false) { if(api_is_allowed_to_edit() || api_is_platform_admin()) { $PassEdit=true; } else { Display::display_warning_message(get_lang('LockByTeacher')); $PassEdit=false; } } else { $PassEdit=true; } } if($PassEdit) //show editor if edit is allowed { if (check_protect_page() && (api_is_allowed_to_edit()==false || api_is_platform_admin()==false)) { Display::display_normal_message(get_lang('PageLockedExtra')); } else { if ($row['content']=='' AND $row['title']=='' AND $page='index') { $content=sprintf(get_lang('DefaultContent'),api_get_path(WEB_IMG_PATH)); $title=get_lang('DefaultTitle'); } else { $content=$row['content']; $title=$row['title']; } echo '

'; echo $icon_assignment.' '.$title.'

'; echo '

'; echo ''; echo '

'; } } } } /////////////////////// page history /////////////////////// if ($_GET['action']=='history' or Security::remove_XSS($_POST['HistoryDifferences'])) { $_clean['group_id']=(int)$_SESSION['_gid']; //First, see the property visibility that is at the last register and therefore we should select descending order. But to give ownership to each record, this is no longer necessary except for the title. TODO: check this $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id DESC'; $result=api_sql_query($sql,__LINE__,__FILE__); while ($row=Database::fetch_array($result)) { $KeyVisibility=$row['visibility']; $KeyAssignment=$row['assignment']; $KeyTitle=$row['title']; $KeyUserId=$row['user_id']; } if($KeyAssignment==1) { $icon_assignment=' '.get_lang('AssignmentDescExtra').'

'; } elseif($KeyAssignment==2) { $icon_assignment=' '.get_lang('AssignmentWorkExtra').'

'; } //Second, show //if the page is hidden and is a job only sees its author and professor if($KeyVisibility==1 || api_is_allowed_to_edit() || api_is_platform_admin() || ($KeyAssignment==2 && $KeyVisibility==0 && (api_get_user_id()==$KeyUserId))) { // We show the complete history if (!$_POST['HistoryDifferences'] && !$_POST['HistoryDifferences2'] ) { $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id DESC'; $result=api_sql_query($sql,__LINE__,__FILE__); $title=Security::remove_XSS($_GET['title']); $group_id=Security::remove_XSS($_GET['group_id']); echo '

'; echo $icon_assignment.' '.$KeyTitle; echo '

'; echo '

'; ($counter==0) ? $oldstyle='style="visibility: hidden;"':$oldstyle=''; ($counter==0) ? $newchecked=' checked':$newchecked=''; ($counter==$total_versions-1) ? $newstyle='style="visibility: hidden;"':$newstyle=''; ($counter==1) ? $oldchecked=' checked':$oldchecked=''; echo ' '; echo ' '; echo ''; echo ''; echo $day.' '.$MonthsLong[$month-1].' '.$year.' '.$hours.":".$minutes.":".$seconds; echo ''; echo ' ('.get_lang('Version').' '.$row['version'].')'; echo ' ... '; if ($row['user_id']<>0) { echo ''.$userinfo['lastname'].', '.$userinfo['firstname'].''; } else { echo get_lang('Anonymous').' ('.$row[user_ip].')'; } echo ' ... '.get_lang('Progress').': '.$row['progress'].'%'; $comment=$row['comment']; if (!empty($comment)) { echo ' ... '.get_lang('Comments').': '; } else { echo ' ... '. get_lang('Comments').': '; } echo '

'; } // We show the differences between two versions else { $sql_old="SELECT * FROM $tbl_wiki WHERE id='".Database::escape_string($_POST['old'])."'"; $result_old=api_sql_query($sql_old,__LINE__,__FILE__); $version_old=Database::fetch_array($result_old); $sql_new="SELECT * FROM $tbl_wiki WHERE id='".Database::escape_string($_POST['new'])."'"; $result_new=api_sql_query($sql_new,__LINE__,__FILE__); $version_new=Database::fetch_array($result_new); if($_POST['HistoryDifferences']) { include('diff.inc.php'); //title echo '

'.stripslashes($version_new['title']).' ('.get_lang('DifferencesNew').' '.stripslashes($version_new['timestamp']).' '.get_lang('DifferencesOld').' '.stripslashes($version_old['timestamp']).') '.get_lang('Legend').': '.get_lang(WikiDiffAddedLine).' '.get_lang(WikiDiffDeletedLine).' '.get_lang(WikiDiffMovedLine).'

'; } if($_POST['HistoryDifferences2']) { require_once 'Text/Diff.php'; require_once 'Text/Diff/Renderer/inline.php'; //title echo '

'; } echo '

'; if($_POST['HistoryDifferences']) { echo ''.diff( stripslashes($version_old['content']), stripslashes($version_new['content']), true, 'format_table_line' ).'

'; // format_line mode is better for words echo '

'; echo '

'; echo '
'; echo ''.get_lang('Legend').'

' . "\n"; echo ''; echo ''; echo '

'; echo '

'; echo ''.get_lang('WikiDiffUnchangedLine').'
'; echo ''.get_lang('WikiDiffAddedLine').'
'; echo ''.get_lang('WikiDiffDeletedLine').'
'; echo ''.get_lang('WikiDiffMovedLine').'
'; echo '

'; } if($_POST['HistoryDifferences2']) { $lines1 = array(stripslashes($version_old['content'])); //it may not be necessary stripslashes. TODO $lines2 = array(stripslashes($version_new['content'])); //it may not be necessary stripslashes. TODO $diff = &new Text_Diff($lines1, $lines2); $renderer = &new Text_Diff_Renderer_inline(); echo ''.$renderer->render($diff); // Code inline //echo '

'.html_entity_decode($renderer->render($diff)).'

'; // Html inline. By now, turned off by problems in comparing pages separated by more than one version echo '

'; echo '

' . "\n"; echo ''; echo ''; echo '

'; echo '

'; echo ''.get_lang('WikiDiffAddedTex').'
'; echo ''.get_lang('WikiDiffDeletedTex').'
'; echo '

'; } } } } /////////////////////// recent changes /////////////////////// // //rss feed. TODO // if ($_GET['action']=='recentchanges') { $_clean['group_id']=(int)$_SESSION['_gid']; if (check_notify_all()) { $notify_all= ' '.get_lang('FullNotifyByEmail').'

'.get_lang('NotNotifyChanges').''; } else { $notify_all= ' '.get_lang('FullCancelNotifyByEmail').'

'.get_lang('NotifyChanges').''; } echo '
'; echo ''.get_lang('RecentChanges').' '.$notify_all.'
'; echo '

'; echo '

'.$obj->title.'

'.$userinfo['lastname'].', '.$userinfo['firstname'].'

'.get_lang('AllPages').'

'.$obj->title.'

'.$userinfo['lastname'].', '.$userinfo['firstname'].'

'.get_lang('ShowDiscuss').'

'.get_lang('HideDiscuss').'

'.get_lang('UnlockDiscuss').'

'.get_lang('PageLocked').'

'.get_lang('LockDiscuss').'

'.get_lang('UnlockRatingDiscuss').'

'.get_lang('LockRatingDiscuss').'

'.get_lang('CancelNotifyDiscussByEmail').'

'.get_lang('NotifyDiscussChanges').'

'.get_lang('NotNotifyDiscussChanges').'

'; echo $icon_assignment.' '.$row['title'].'
'.''.$addlock_disc.''.' '.$visibility_disc.''.' '.$ratinglock_disc.' '.$notify_disc.' ('.get_lang('MostRecentVersionBy').''.$userinfo['firstname'].' '.$userinfo['lastname'].' '.$row['timestamp'].$countWPost.')'.$avg_WPost_score.' '; //TODO: read avg score echo '

'; while ($row=Database::fetch_array($result)) { $userinfo=Database::get_user_info_from_id($row['userc_id']); if (($userinfo['status'])=="5") { $author_status=get_lang('Student'); } else { $author_status=get_lang('Teacher'); } require_once(api_get_path(INCLUDE_PATH).'/lib/usermanager.lib.php'); $user_id=$row['userc_id']; $name=$userinfo['lastname']." ".$userinfo['firstname']; $attrb=array(); if ($user_id<>0) { $image_path = UserManager::get_user_picture_path_by_id($user_id,'web',false, true); $image_repository = $image_path['dir']; $existing_image = $image_path['file']; $author_photo= '

'; } else { $author_photo= '

'; } //stars $p_score=$row['p_score']; switch($p_score){ case 0: $imagerating='

'; break; case 1: $imagerating='

'; break; case 2: $imagerating='

'; break; case 3: $imagerating='

'; break; case 4: $imagerating='

'; break; case 5: $imagerating='

'; break; case 6: $imagerating='

'; break; case 7: $imagerating='

'; break; case 8: $imagerating='

'; break; case 9: $imagerating='

'; break; case 10: $imagerating='

'; break; } echo '

'; echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; echo ''; echo "
'.$author_photo.' '.$userinfo['lastname'].', '.$userinfo['firstname'].' ('.$author_status.') '.$row['timestamp'].' - '.get_lang('Rating').': '.$row['p_score'].' '.$imagerating.'
'.$row['comment'].'
"; echo '

'; } // echo"

"; /* ============================================================================== FOOTER ============================================================================== */ //$_SESSION['_gid']; Display::display_footer(); /* ============================================================================== FUNCTIONS ============================================================================== */ /** * @author Patrick Cool , Ghent University * @desc This function checks weither the proposed reflink is not in use yet. It is a recursive function because every newly created reflink suggestion * has to be checked also */ function createreflink($testvalue) { global $groupfilter; $counter=''; while (!checktitle($testvalue.$counter)) { $counter++; echo $counter."-".$testvalue.$counter."
"; } // the reflink has not been found yet, so it is OK return $testvalue.$counter; } /** * @author Patrick Cool , Ghent University **/ function checktitle($paramwk) { global $tbl_wiki; global $groupfilter; $sql='SELECT * FROM '.$tbl_wiki.' WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($paramwk)))).'" AND '.$groupfilter.''; // TODO: check if need entity $result=api_sql_query($sql,__FILE__,__LINE__); $numberofresults=Database::num_rows($result); if ($numberofresults==0) // the value has not been found and is this available { return true; } else // the value has been found { return false; } } /** * @author Juan Carlos Raña * check wikilinks that has a page **/ function links_to($input) { $input_array=preg_split("/(\[\[|\]\])/",$input,-1, PREG_SPLIT_DELIM_CAPTURE); $all_links = array(); foreach ($input_array as $key=>$value) { if ($input_array[$key-1]=='[[' AND $input_array[$key+1]==']]') { if (strpos($value, "|") !== false) { $full_link_array=explode("|", $value); $link=trim($full_link_array[0]); $title=trim($full_link_array[1]); } else { $link=$value; $title=$value; } unset($input_array[$key-1]); unset($input_array[$key+1]); $all_links[]= Database::escape_string(str_replace(' ','_',$link)).' '; //replace blank spaces by _ within the links. But to remove links at the end add a blank space } } $output=implode($all_links); return $output; } /* detect and add style to external links author Juan Carlos Raña Trabado **/ function detect_external_link($input) { $exlink='$value) { if ($input_array[$key-1]=='[[' AND $input_array[$key+1]==']]') //now doubles brackets { if ($_clean['group_id']==0) { $titleg_ex=''; } else { $titleg_ex='^{(g'.$_clean['group_id'].')}'; } //now full wikilink if (strpos($value, "|") !== false) { $full_link_array=explode("|", $value); $link=trim($full_link_array[0]); $title=trim($full_link_array[1]); } else { $link=$value; $title=$value; } //if wikilink is homepage if($link=='index'){ $title=get_lang('DefaultTitle'); } if ($link==get_lang('DefaultTitle')){ $link='index'; } // note: checkreflink checks if the link is still free. If it is not used then it returns true, if it is used, then it returns false. Now the title may be different if (checktitle(strtolower(str_replace(' ','_',$link)))) { $input_array[$key]=''.$title.$titleg_ex.''; } else { $input_array[$key]=''.$title.$titleg_ex.''; } unset($input_array[$key-1]); unset($input_array[$key+1]); } } $output=implode('',$input_array); return $output; } /** * This function saves a change in a wiki page * @author Patrick Cool , Ghent University * @return language string saying that the changes are stored **/ function save_wiki() { global $tbl_wiki; // NOTE: visibility, visibility_disc and ratinglock_disc changes are not made here, but through the interce buttons // cleaning the variables $_clean['reflink']=Database::escape_string($_POST['reflink']); $_clean['title']=Database::escape_string($_POST['title']); $_clean['content']= html_entity_decode(Database::escape_string(stripslashes(urldecode($_POST['content'])))); $_clean['user_id']=(int)Database::escape_string(api_get_user_id()); $_clean['assignment']=Database::escape_string($_POST['assignment']); $_clean['comment']=Database::escape_string($_POST['comment']); $_clean['progress']=Database::escape_string($_POST['progress']); $_clean['startdate_assig']=Database::escape_string($_POST['startdate_assig']); $_clean['enddate_assig']=Database::escape_string($_POST['enddate_assig']); $_clean['delayedsubmit']=Database::escape_string($_POST['delayedsubmit']); $_clean['version']=Database::escape_string($_POST['version'])+1; $_clean['linksto'] = links_to($_clean['content']); //and check links content if (isset($_SESSION['_gid'])) { $_clean['group_id']=Database::escape_string($_SESSION['_gid']); } if (isset($_GET['group_id'])) { $_clean['group_id']=Database::escape_string($_GET['group_id']); } if ($_clean['group_id']) { $sql="INSERT INTO ".$tbl_wiki." (reflink, title,content,user_id, group_id, assignment, comment, progress, startdate_assig, enddate_assig, delayedsubmit, version, linksto, user_ip) VALUES ('".$_clean['reflink']."','".$_clean['title']."','".$_clean['content']."','".$_clean['user_id']."','".$_clean['group_id']."','".$_clean['assignment']."','".$_clean['comment']."','".$_clean['progress']."','".$_clean['startdate_assig']."','".$_clean['enddate_assig']."','".$_clean['delayedsubmit']."','".$_clean['version']."','".$_clean['linksto']."','".$_SERVER['REMOTE_ADDR']."')"; } else { $sql="INSERT INTO ".$tbl_wiki." (reflink, title,content,user_id, assignment, comment, progress, startdate_assig, enddate_assig, delayedsubmit, version, linksto, user_ip) VALUES ('".$_clean['reflink']."','".$_clean['title']."','".$_clean['content']."','".$_clean['user_id']."','".$_clean['assignment']."','".$_clean['comment']."','".$_clean['progress']."','".$_clean['startdate_assig']."','".$_clean['enddate_assig']."','".$_clean['delayedsubmit']."','".$_clean['version']."','".$_clean['linksto']."','".$_SERVER['REMOTE_ADDR']."')"; } $result=api_sql_query($sql); $Id = Database::insert_id(); api_item_property_update($_course, 'wiki', $Id, 'WikiAdded', api_get_user_id()); check_emailcue($_clean['reflink'], 'P'); return get_lang('ChangesStored'); } /** * This function delete a wiki * @author Juan Carlos Raña **/ function delete_wiki() { global $tbl_wiki, $tbl_discuss, $groupfilter; api_sql_query('DELETE FROM '.$tbl_wiki.' WHERE '.$groupfilter.'',__FILE__,__LINE__); //TODO: delete discuss and mailcue return get_lang('WikiDeleted'); } /** * This function saves a new wiki page. * @author Patrick Cool , Ghent University * @todo consider merging this with the function save_wiki into one single function. **/ function save_new_wiki() { global $tbl_wiki; global $assig_user_id; //need for assignments mode // cleaning the variables $_clean['assignment']=Database::escape_string($_POST['assignment']); if($_clean['assignment']==2 || $_clean['assignment']==1) // Unlike ordinary pages of pages of assignments. Allow create a ordinary page although there is a assignment with the same name { $_clean['reflink']=Database::escape_string(str_replace(' ','_',$_POST['title']."_uass".$assig_user_id)); } else { $_clean['reflink']=Database::escape_string(str_replace(' ','_',$_POST['title'])); } $_clean['title']=Database::escape_string($_POST['title']); $_clean['content']= html_entity_decode(Database::escape_string(stripslashes(urldecode($_POST['content'])))); if($_clean['assignment']==2) //config by default for individual assignment (students) { $_clean['user_id']=(int)Database::escape_string($assig_user_id);//Identifies the user as a creator, not the teacher who created $_clean['visibility']=0; $_clean['visibility_disc']=0; $_clean['ratinglock_disc']=0; } else { $_clean['user_id']=(int)Database::escape_string(api_get_user_id()); $_clean['visibility']=1; $_clean['visibility_disc']=1; $_clean['ratinglock_disc']=1; } $_clean['comment']=Database::escape_string($_POST['comment']); $_clean['progress']=Database::escape_string($_POST['progress']); $_clean['startdate_assig']=Database::escape_string($_POST['startdate_assig']); $_clean['enddate_assig']=Database::escape_string($_POST['enddate_assig']); $_clean['delayedsubmit']=Database::escape_string($_POST['delayedsubmit']); $_clean['version']=1; if (isset($_SESSION['_gid'])) { $_clean['group_id']=(int)$_SESSION['_gid']; } if (isset($_GET['group_id'])) { $_clean['group_id']=(int)Database::escape_string($_GET['group_id']); } $_clean['linksto'] = links_to($_clean['content']); //check wikilinks //filter no _uass if(eregi("_uass",$_POST['title']) || (strtoupper(trim($_POST['title']))==strtoupper ('index') || strtoupper(trim(htmlentities($_POST['title'])))==strtoupper(htmlentities(get_lang('DefaultTitle'))))) { $message= get_lang('GoAndEditMainPage'); Display::display_warning_message($message,false); } else { $var=$_clean['reflink']; $group_id=Security::remove_XSS($_GET['group_id']); if(!checktitle($var)) { return get_lang('WikiPageTitleExist').''.$_POST['title'].''; } else { if ($_clean['group_id']) { $sql="INSERT INTO ".$tbl_wiki." (reflink, title, content, user_id, group_id, visibility, visibility_disc, ratinglock_disc, assignment, comment, progress, startdate_assig, enddate_assig, delayedsubmit, version, linksto, user_ip) VALUES ('".$_clean['reflink']."','".$_clean['title']."','".$_clean['content']."','".$_clean['user_id']."','".$_clean['group_id']."','".$_clean['visibility']."','".$_clean['visibility_disc']."','".$_clean['ratinglock_disc']."','".$_clean['assignment']."','".$_clean['comment']."','".$_clean['progress']."','".$_clean['startdate_assig']."','".$_clean['enddate_assig']."','".$_clean['delayedsubmit']."','".$_clean['version']."','".$_clean['linksto']."','".$_SERVER['REMOTE_ADDR']."')"; } else { $sql="INSERT INTO ".$tbl_wiki." (reflink, title,content, user_id, visibility, visibility_disc, ratinglock_disc, assignment, comment, progress, startdate_assig, enddate_assig, delayedsubmit, version, linksto, user_ip) VALUES ('".$_clean['reflink']."','".$_clean['title']."','".$_clean['content']."','".$_clean['user_id']."','".$_clean['visibility']."','".$_clean['visibility_disc']."','".$_clean['ratinglock_disc']."','".$_clean['assignment']."','".$_clean['comment']."','".$_clean['progress']."','".$_clean['startdate_assig']."','".$_clean['enddate_assig']."','".$_clean['delayedsubmit']."','".$_clean['version']."','".$_clean['linksto']."','".$_SERVER['REMOTE_ADDR']."')"; } $result=api_sql_query($sql,__LINE__,__FILE__); $Id = Database::insert_id(); api_item_property_update($_course, 'wiki', $Id, 'WikiAdded', api_get_user_id()); check_emailcue(0, 'A'); return get_lang('NewWikiSaved').''.$_POST['title'].''; } }//end filter no _uass } /** * This function displays the form for adding a new wiki page. * @author Patrick Cool , Ghent University * @return html code **/ function display_new_wiki_form() { ?> '; echo '

'; echo get_lang(Title).': '; if(api_is_allowed_to_edit() || api_is_platform_admin()) { $_clean['group_id']=(int)$_SESSION['_gid']; // TODO: check if delete ? echo '

'.get_lang('DefineAssignmentPage').' '; // 1= teacher 2 =student //by now turned off //echo'

'; //echo ' '.get_lang('StartDate').': (yyyy-mm-dd hh:mm:ss)'; //by now turned off //echo ' '.get_lang('EndDate').': (yyyy-mm-dd hh:mm:ss)'; //by now turned off //echo '
'.get_lang('AllowLaterSends').' '; //by now turned off //echo'

'; } echo '

'; echo '

'; api_disp_html_area('content','','300px'); echo '
'; echo '
'; echo get_lang('Comments').': '; echo get_lang('Progress').': %'; echo '

'; echo ''; echo '

'; echo ''; } /** * This function displays a wiki entry * @author Patrick Cool , Ghent University * @return html code **/ function display_wiki_entry() { global $tbl_wiki; global $groupfilter; global $page; $_clean['group_id']=(int)$_SESSION['_gid']; if ($_GET['view']) { $_clean['view']=(int)Database::escape_string($_GET['view']); $filter=" AND id='".$_clean['view']."'"; } //first, check page visibility in the first page version $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $KeyVisibility=$row['visibility']; // second, show the last version $sql="SELECT * FROM ".$tbl_wiki."WHERE reflink='".html_entity_decode(Database::escape_string(stripslashes(urldecode($page))))."' AND $groupfilter $filter ORDER BY id DESC"; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); // we do not need a while loop since we are always displaying the last version //update visits if($row['id']) { $sql='UPDATE '.$tbl_wiki.' SET hits=(hits+1) WHERE id='.$row['id'].''; api_sql_query($sql,__FILE__,__LINE__); } // if both are empty and we are displaying the index page then we display the default text. if ($row['content']=='' AND $row['title']=='' AND $page='index') { if(api_is_allowed_to_edit() || api_is_platform_admin()) { $content=sprintf(get_lang('DefaultContent'),api_get_path(WEB_IMG_PATH)); $title=get_lang('DefaultTitle'); } else { return Display::display_normal_message(get_lang('WikiStandBy')); } } else { $content=$row['content']; $title=$row['title']; } //Button lock add new pages if (check_addnewpagelock()) { if(api_is_allowed_to_edit() || api_is_platform_admin()) { $protect_addnewpage= ' '.get_lang('AddOptionProtected').'

'.get_lang('ShowAddOption').''; } } else { if(api_is_allowed_to_edit() || api_is_platform_admin()) { $protect_addnewpage= ' '.get_lang('AddOptionUnprotected').'

'.get_lang('HideAddOption').''; } } //Button lock page if (check_protect_page()) { if(api_is_allowed_to_edit() || api_is_platform_admin()) { $protect_page= ' '.get_lang('PageLockedExtra').'

'.get_lang('UnlockPage').''; } else { $protect_page= ' '.get_lang('PageLockedExtra').'

'.get_lang('PageLocked').''; } } else { if(api_is_allowed_to_edit() || api_is_platform_admin()) { $protect_page= ' '.get_lang('PageUnlockedExtra').'

'.get_lang('LockPage').''; } } //Button visibility page if (check_visibility_page()) { //This hides the icon eye closed to users of work they can see yours if(($row['assignment']==2 && $KeyVisibility=="0" && (api_get_user_id()==$row['user_id']))==false) { $visibility_page= ' '.get_lang('HidePageExtra').'

'.get_lang('ShowPage').''; } } else { if(api_is_allowed_to_edit() || api_is_platform_admin()) { $visibility_page= ' '.get_lang('ShowPageExtra').'

'.get_lang('HidePage').''; } } //Button notify page if (check_notify_page($page)) { $notify_page= ' '.get_lang('NotifyByEmail').'

'.get_lang('NotNotifyChanges').''; } else { $notify_page= ' '.get_lang('CancelNotifyByEmail').'

'.get_lang('NotifyChanges').''; } //assignment mode: for identify page type if(stripslashes($row['assignment'])==1) { $icon_assignment=' '.get_lang('AssignmentDescExtra').'

'; } elseif(stripslashes($row['assignment'])==2) { $icon_assignment=' '.get_lang('AssignmentWorkExtra').'

'; } //Show page. Show page to all users if isn't hide page. Mode assignments: if studen is the author, can view if($KeyVisibility=="1" || api_is_allowed_to_edit() || api_is_platform_admin() || ($row['assignment']==2 && $KeyVisibility=="0" && (api_get_user_id()==$row['user_id']))) { echo '

'; if (empty($title)) { $title=get_lang('DefaultTitle'); } if (wiki_exist($title)) { echo $icon_assignment.' '.stripslashes($title).'
'.$protect_addnewpage.''.' '.$protect_page.''.' '.$visibility_page.''.' '.$notify_page.''.' '.get_lang('Progress').': '.stripslashes($row['progress']).'% '.get_lang('Rating').': '.stripslashes($row['score']); } else { echo stripslashes($title); } //export to pdf echo ''; echo ''; echo ''; //copy last version to doc area if(api_is_allowed_to_edit() || api_is_platform_admin()) { echo ''; echo ''; echo ''; } //export to print ?> '; echo ' '.get_lang('Print').'

'; echo ''; //export to zip echo ' '.get_lang('Export2ZIP').'

'; //TODO echo '

'; echo '

'. make_wiki_link_clickable(detect_external_link(stripslashes($content))).'

'; }//end filter visibility } // end function display_wiki_entry //more for export to course document area. See display_wiki_entry if ($_POST['export2DOC']) { $titleDOC=$_POST['titleDOC']; $contentDOC=$_POST['contentDOC']; //check. TODO $groupIdDOC=$_clean['group_id']; export2doc($titleDOC,$contentDOC,$groupIdDOC); } /** * This function checks if wiki title exist */ function wiki_exist($title) { global $tbl_wiki; global $groupfilter; $sql='SELECT id FROM '.$tbl_wiki.'WHERE title="'.Database::escape_string($title).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $cant=Database::num_rows($result); if ($cant>0) return true; else return false; } /** * This function a wiki warning * @author Patrick Cool , Ghent University * @return html code **/ function display_wiki_warning($variable) { echo '

'.$variable.'

'; } /** * Checks if this navigation tab has to be set to active * @author Patrick Cool , Ghent University * @return html code */ function is_active_navigation_tab($paramwk) { if ($_GET['action']==$paramwk) { return ' class="active"'; } } /** * Lock add pages * @author Juan Carlos Raña */ function check_addnewpagelock() { global $tbl_wiki; global $groupfilter; $_clean['group_id']=(int)$_SESSION['_gid']; $sql='SELECT * FROM '.$tbl_wiki.'WHERE '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $status_addlock=$row['addlock']; //change status if ($_GET['actionpage']=='addlock' && (api_is_allowed_to_edit() || api_is_platform_admin())) { if ($row['addlock']==1) { $status_addlock=0; } else { $status_addlock=1; } api_sql_query('UPDATE '.$tbl_wiki.' SET addlock="'.Database::escape_string($status_addlock).'" WHERE '.$groupfilter.'',__LINE__,__FILE__); $sql='SELECT * FROM '.$tbl_wiki.'WHERE '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); } //show status if ($row['addlock']==1 || ($row['content']=='' AND $row['title']=='' AND $page='index')) { return false; } else { return true; } } /** * Protect page * @author Juan Carlos Raña */ function check_protect_page() { global $tbl_wiki; global $page; global $groupfilter; $_clean['group_id']=(int)$_SESSION['_gid']; $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $status_editlock=$row['editlock']; $id=$row['id']; ///change status if ($_GET['actionpage']=='lock' && (api_is_allowed_to_edit() || api_is_platform_admin())) { if ($row['editlock']==0) { $status_editlock=1; } else { $status_editlock=0; } $sql='UPDATE '.$tbl_wiki.' SET editlock="'.Database::escape_string($status_editlock).'" WHERE id="'.$id.'"'; api_sql_query($sql,__FILE__,__LINE__); $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); } //show status if ($row['editlock']==0 || ($row['content']=='' AND $row['title']=='' AND $page=='index')) { return false; } else { return true; } } /** * Visibility page * @author Juan Carlos Raña */ function check_visibility_page() { global $tbl_wiki; global $page; global $groupfilter; $_clean['group_id']=(int)$_SESSION['_gid']; $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $status_visibility=$row['visibility']; $id=$row['id']; //need ? check. TODO //change status if ($_GET['actionpage']=='visibility' && (api_is_allowed_to_edit() || api_is_platform_admin())) { if ($row['visibility']==1) { $status_visibility=0; } else { $status_visibility=1; } $sql='UPDATE '.$tbl_wiki.' SET visibility="'.Database::escape_string($status_visibility).'" WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter; api_sql_query($sql,__FILE__,__LINE__); //Although the value now is assigned to all (not only the first), these three lines remain necessary. They do that by changing the page state is made when you press the button and not have to wait to change his page $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); } //show status if ($row['visibility']=="1" || ($row['content']=='' AND $row['title']=='' AND $page=='index')) { return false; } else { return true; } } /** * Visibility discussion * @author Juan Carlos Raña */ function check_visibility_discuss() { global $tbl_wiki; global $page; global $groupfilter; $_clean['group_id']=(int)$_SESSION['_gid']; $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $status_visibility_disc=$row['visibility_disc']; $id=$row['id']; //need ? check. TODO //change status if ($_GET['actionpage']=='visibility_disc' && (api_is_allowed_to_edit() || api_is_platform_admin())) { if ($row['visibility_disc']==1) { $status_visibility_disc=0; } else { $status_visibility_disc=1; } $sql='UPDATE '.$tbl_wiki.' SET visibility_disc="'.Database::escape_string($status_visibility_disc).'" WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter; api_sql_query($sql,__FILE__,__LINE__); //Although the value now is assigned to all (not only the first), these three lines remain necessary. They do that by changing the page state is made when you press the button and not have to wait to change his page $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); } //show status if ($row['visibility_disc']==1 || ($row['content']=='' AND $row['title']=='' AND $page=='index')) { return false; } else { return true; } } /** * Lock add discussion * @author Juan Carlos Raña */ function check_addlock_discuss() { global $tbl_wiki; global $page; global $groupfilter; $_clean['group_id']=(int)$_SESSION['_gid']; $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $status_addlock_disc=$row['addlock_disc']; $id=$row['id']; //need ? check. TODO //change status if ($_GET['actionpage']=='addlock_disc' && (api_is_allowed_to_edit() || api_is_platform_admin())) { if ($row['addlock_disc']==1) { $status_addlock_disc=0; } else { $status_addlock_disc=1; } $sql='UPDATE '.$tbl_wiki.' SET addlock_disc="'.Database::escape_string($status_addlock_disc).'" WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter; api_sql_query($sql,__FILE__,__LINE__); //Although the value now is assigned to all (not only the first), these three lines remain necessary. They do that by changing the page state is made when you press the button and not have to wait to change his page $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); } //show status if ($row['addlock_disc']==1 || ($row['content']=='' AND $row['title']=='' AND $page=='index')) { return false; } else { return true; } } /** * Lock rating discussion * @author Juan Carlos Raña */ function check_ratinglock_discuss() { global $tbl_wiki; global $page; global $groupfilter; $_clean['group_id']=(int)$_SESSION['_gid']; $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $status_ratinglock_disc=$row['ratinglock_disc']; $id=$row['id']; //need ? check. TODO //change status if ($_GET['actionpage']=='ratinglock_disc' && (api_is_allowed_to_edit() || api_is_platform_admin())) { if ($row['ratinglock_disc']==1) { $status_ratinglock_disc=0; } else { $status_ratinglock_disc=1; } $sql='UPDATE '.$tbl_wiki.' SET ratinglock_disc="'.Database::escape_string($status_ratinglock_disc).'" WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter; //Visibility. Value to all,not only for the first api_sql_query($sql,__FILE__,__LINE__); //Although the value now is assigned to all (not only the first), these three lines remain necessary. They do that by changing the page state is made when you press the button and not have to wait to change his page $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.html_entity_decode(Database::escape_string(stripslashes(urldecode($page)))).'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); } //show status if ($row['ratinglock_disc']==1 || ($row['content']=='' AND $row['title']=='' AND $page=='index')) { return false; } else { return true; } } /** * Notify page changes * @author Juan Carlos Raña */ function check_notify_page($reflink) { global $tbl_wiki; global $groupfilter; global $tbl_wiki_mailcue; $_clean['group_id']=(int)$_SESSION['_gid']; $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.$reflink.'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $id=$row['id']; $sql='SELECT * FROM '.$tbl_wiki_mailcue.'WHERE id="'.$id.'" AND user_id="'.api_get_user_id().'" AND type="P"'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $idm=$row['id']; if (empty($idm)) { $status_notify=0; } else { $status_notify=1; } //change status if ($_GET['actionpage']=='notify') { if ($status_notify==0) { $sql="INSERT INTO ".$tbl_wiki_mailcue." (id, user_id, type, group_id) VALUES ('".$id."','".api_get_user_id()."','P','".$_clean['group_id']."')"; api_sql_query($sql,__FILE__,__LINE__); $status_notify=1; } else { $sql='DELETE FROM '.$tbl_wiki_mailcue.' WHERE id="'.$id.'" AND user_id="'.api_get_user_id().'" AND type="P"'; //$_clean['group_id'] not necessary api_sql_query($sql,__FILE__,__LINE__); $status_notify=0; } } //show status if ($status_notify==0) { return false; } else { return true; } } /** * Notify discussion changes * @author Juan Carlos Raña */ function check_notify_discuss($reflink) { global $tbl_wiki; global $groupfilter; global $tbl_wiki_mailcue; $_clean['group_id']=(int)$_SESSION['_gid']; $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.$reflink.'" AND '.$groupfilter.' ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $id=$row['id']; $sql='SELECT * FROM '.$tbl_wiki_mailcue.'WHERE id="'.$id.'" AND user_id="'.api_get_user_id().'" AND type="D"'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $idm=$row['id']; if (empty($idm)) { $status_notify_disc=0; } else { $status_notify_disc=1; } //change status if ($_GET['actionpage']=='notify_disc') { if ($status_notify_disc==0) { if (!$_POST['Submit']) { $sql="INSERT INTO ".$tbl_wiki_mailcue." (id, user_id, type, group_id) VALUES ('".$id."','".api_get_user_id()."','D','".$_clean['group_id']."')"; api_sql_query($sql,__FILE__,__LINE__); $status_notify_disc=1; } else { $status_notify_disc=0; } } else { if (!$_POST['Submit']) { $sql='DELETE FROM '.$tbl_wiki_mailcue.' WHERE id="'.$id.'" AND user_id="'.api_get_user_id().'" AND type="D"'; //$_clean['group_id'] not necessary api_sql_query($sql,__FILE__,__LINE__); $status_notify_disc=0; } else { $status_notify_disc=1; } } } //show status if ($status_notify_disc==0) { return false; } else { return true; } } /** * Notify all changes * @author Juan Carlos Raña */ function check_notify_all() { global $tbl_wiki_mailcue; $_clean['group_id']=(int)$_SESSION['_gid']; $sql='SELECT * FROM '.$tbl_wiki_mailcue.'WHERE user_id="'.api_get_user_id().'" AND type="F" AND group_id="'.$_clean['group_id'].'"'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $idm=$row['user_id']; if (empty($idm)) { $status_notify_all=0; } else { $status_notify_all=1; } //change status if ($_GET['actionpage']=='notify_all') { if ($status_notify_all==0) { $sql="INSERT INTO ".$tbl_wiki_mailcue." (user_id, type, group_id) VALUES ('".api_get_user_id()."','F','".$_clean['group_id']."')"; api_sql_query($sql,__FILE__,__LINE__); $status_notify_all=1; } else { $sql='DELETE FROM '.$tbl_wiki_mailcue.' WHERE user_id="'.api_get_user_id().'" AND type="F" AND group_id="'.$_clean['group_id'].'"'; api_sql_query($sql,__FILE__,__LINE__); $status_notify_all=0; } } //show status if ($status_notify_all==0) { return false; } else { return true; } } /** * Function check emailcue and send email when a page change * @author Juan Carlos Raña */ function check_emailcue($id_or_ref, $type) { global $tbl_wiki; global $groupfilter; global $tbl_wiki_mailcue; global $_course; $_clean['group_id']=(int)$_SESSION['_gid']; $group_properties = GroupManager :: get_group_properties($_clean['group_id']); $group_name= $group_properties['name']; $allow_send_mail=false; //define the variable to below if ($type=='P') { //if modifying a wiki page $sql='SELECT * FROM '.$tbl_wiki.'WHERE reflink="'.$id_or_ref.'" AND '.$groupfilter.' ORDER BY id ASC'; //id_or_ref is reflink from tblwiki $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $id=$row['id']; $email_page_name=$row['title']; //Who is the author? $userinfo= Database::get_user_info_from_id($row['user_id']); $email_user_author= get_lang('EditedBy').': '.$userinfo['firstname'].' '.$userinfo['lastname']; //When ? $year = substr($row['timestamp'], 0, 4); $month = substr($row['timestamp'], 5, 2); $day = substr($row['timestamp'], 8, 2); $hours=substr($row['timestamp'], 11,2); $minutes=substr($row['timestamp'], 14,2); $seconds=substr($row['timestamp'], 17,2); $email_date_changes=$day.' '.$month.' '.$year.' '.$hours.":".$minutes.":".$seconds; if ($row['visibility']==1) { $allow_send_mail=true; //if visibility off - notify off $sql='SELECT * FROM '.$tbl_wiki_mailcue.'WHERE id="'.$id.'" AND type="'.$type.'" OR type="F" AND group_id="'.$_clean['group_id'].'"'; //type: P=page, D=discuss, F=full. $result=api_sql_query($sql,__LINE__,__FILE__); $emailtext=get_lang('EmailWikipageModified').' '.$email_page_name.' '.get_lang('Wiki'); } } elseif ($type=='D') { //if added a post to discuss $id=$id_or_ref; //$id_or_ref is id from tblwiki $sql='SELECT * FROM '.$tbl_wiki.'WHERE id="'.$id.'" ORDER BY id ASC'; $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $email_page_name=$row['title']; //Who is the author? $userinfo= Database::get_user_info_from_id($row['user_id']); $email_user_author= get_lang('AddedBy').': '.$userinfo['firstname'].' '.$userinfo['lastname']; //When ? $year = substr($row['timestamp'], 0, 4); $month = substr($row['timestamp'], 5, 2); $day = substr($row['timestamp'], 8, 2); $hours=substr($row['timestamp'], 11,2); $minutes=substr($row['timestamp'], 14,2); $seconds=substr($row['timestamp'], 17,2); $email_date_changes=$day.' '.$month.' '.$year.' '.$hours.":".$minutes.":".$seconds; if ($row['visibility_disc']==1) { $allow_send_mail=true; //if visibility off - notify off $sql='SELECT * FROM '.$tbl_wiki_mailcue.'WHERE id="'.$id.'" AND type="'.$type.'" OR type="F" AND group_id="'.$_clean['group_id'].'"'; //type: P=page, D=discuss, F=full $result=api_sql_query($sql,__LINE__,__FILE__); $emailtext=get_lang('EmailWikiPageDiscAdded').' '.$email_page_name.' '.get_lang('Wiki'); } } elseif($type=='A') { //for added pages $id=0; //for tbl_wiki_mailcue $sql='SELECT * FROM '.$tbl_wiki.' ORDER BY id DESC'; //the added is always the last $result=api_sql_query($sql,__LINE__,__FILE__); $row=Database::fetch_array($result); $email_page_name=$row['title']; //Who is the author? $userinfo= Database::get_user_info_from_id($row['user_id']); $email_user_author= get_lang('AddedBy').': '.$userinfo['firstname'].' '.$userinfo['lastname']; //When ? $year = substr($row['timestamp'], 0, 4); $month = substr($row['timestamp'], 5, 2); $day = substr($row['timestamp'], 8, 2); $hours=substr($row['timestamp'], 11,2); $minutes=substr($row['timestamp'], 14,2); $seconds=substr($row['timestamp'], 17,2); $email_date_changes=$day.' '.$month.' '.$year.' '.$hours.":".$minutes.":".$seconds; if($row['assignment']==0) { $allow_send_mail=true; } elseif($row['assignment']==1) { $email_assignment=get_lang('AssignmentDescExtra').' ('.get_lang('AssignmentMode').')'; $allow_send_mail=true; } elseif($row['assignment']==2) { $allow_send_mail=false; //Mode tasks: avoids notifications to all users about all users } $sql='SELECT * FROM '.$tbl_wiki_mailcue.'WHERE id="'.$id.'" AND type="F" AND group_id="'.$_clean['group_id'].'"'; //type: P=page, D=discuss, F=full $result=api_sql_query($sql,__LINE__,__FILE__); $emailtext=get_lang('EmailWikiPageAdded').' '.$email_page_name.' '.get_lang('In').' '. get_lang('Wiki'); } elseif($type=='E') { $id=0; $allow_send_mail=true; //Who is the author? $userinfo= Database::get_user_info_from_id(api_get_user_id()); //current user $email_user_author= get_lang('DeletedBy').': '.$userinfo['firstname'].' '.$userinfo['lastname']; //When ? $today = date('r'); //current time $email_date_changes=$today; $sql='SELECT * FROM '.$tbl_wiki_mailcue.'WHERE id="'.$id.'" AND type="F" AND group_id="'.$_clean['group_id'].'"'; //type: P=page, D=discuss, F=wiki $result=api_sql_query($sql,__LINE__,__FILE__); $emailtext=get_lang('EmailWikipageDedeleted'); } ///make and send email if ($allow_send_mail) { while ($row=Database::fetch_array($result)) { if(empty($charset)){$charset='ISO-8859-1';} $headers = 'Content-Type: text/html; charset='. $charset; $userinfo=Database::get_user_info_from_id($row['user_id']); //$row['user_id'] obtained from tbl_wiki_mailcue $name_to=$userinfo['firstname'].' '.$userinfo['lastname']; $email_to=$userinfo['email']; $sender_name=get_setting('emailAdministrator'); $sender_email=get_setting('emailAdministrator'); $email_subject = get_lang('EmailWikiChanges').' - '.$_course['official_code']; $email_body= get_lang('DearUser').' '.$userinfo['firstname'].' '.$userinfo['lastname'].',

'; $email_body .= $emailtext.' '.$_course['name'].' - '.$group_name.'

'; $email_body .= $email_user_author.' ('.$email_date_changes.')

'; $email_body .= $email_assignment.'

'; $email_body .= ''.get_lang('EmailWikiChangesExt_1').': '.get_lang('NotifyChanges').'
'; $email_body .= get_lang('EmailWikiChangesExt_2').': '.get_lang('NotNotifyChanges').'
'; api_mail_html($name_to, $email_to, $email_subject, $email_body, $sender_name, $sender_email, $headers); } } } /** * Function export last wiki page version to document area * @author Juan Carlos Raña */ function export2doc($wikiTitle, $wikiContents, $groupId) { if ( 0 != $groupId) { $groupPart = '_group' . $groupId; // and add groupId to put the same title document in different groups $group_properties = GroupManager :: get_group_properties($groupId); $groupPath = $group_properties['directory']; } else { $groupPart = ''; $groupPath =''; } $exportDir = api_get_path(SYS_COURSE_PATH).api_get_course_path(). '/document'.$groupPath; $exportFile = replace_dangerous_char( $wikiTitle, 'strict' ) . $groupPart; $i = 1; while ( file_exists($exportDir . '/' .$exportFile.'_'.$i.'.html') ) $i++; //only export last version, but in new export new version in document area $wikiFileName = $exportFile . '_' . $i . '.html'; $exportPath = $exportDir . '/' . $wikiFileName; $wikiContents = stripslashes($wikiContents); file_put_contents( $exportPath, $wikiContents ); $doc_id = add_document($_course, $groupPath.'/'.$wikiFileName,'file',filesize($exportPath),$wikiFileName); api_item_property_update($_course, TOOL_DOCUMENT, $doc_id, 'DocumentAdded', api_get_user_id(), $groupId); // TODO: link to go document area } /** * Function wizard individual assignment * @author Juan Carlos Raña */ function auto_add_page_users($assignment_type) { global $assig_user_id; //need to identify end reflinks $_clean['group_id']=(int)$_SESSION['_gid']; if($_clean['group_id']==0) { //extract course members if(!empty($_SESSION["id_session"])){ $a_users_to_add = CourseManager :: get_user_list_from_course_code($_SESSION['_course']['id'], true, $_SESSION['id_session']); } else { $a_users_to_add = CourseManager :: get_user_list_from_course_code($_SESSION['_course']['id'], true); } } else { //extract group members $subscribed_users = GroupManager :: get_subscribed_users($_clean['group_id']); $subscribed_tutors = GroupManager :: get_subscribed_tutors($_clean['group_id']); $a_users_to_add=array_merge($subscribed_users, $subscribed_tutors);//TODO: check if one tutor subscribed -> filter duplicates } $all_students_pages = array(); //data about teacher $userinfo=Database::get_user_info_from_id(api_get_user_id()); require_once(api_get_path(INCLUDE_PATH).'/lib/usermanager.lib.php'); if (api_get_user_id()<>0) { $image_path = UserManager::get_user_picture_path_by_id(api_get_user_id(),'web',false, true); $image_repository = $image_path['dir']; $existing_image = $image_path['file']; $photo= '

'; } else { $photo= '

'; } //teacher assignment title $title_orig=$_POST['title']; //teacher assignment reflink $link2teacher=$_POST['title']= $title_orig."_uass".api_get_user_id(); //first: teacher name, photo, and assignment description (original content) $content_orig_A='

'.$photo.get_lang('Teacher').': '.$userinfo['firstname'].$userinfo['lastname'].'

'; $content_orig_B='

'.get_lang('AssignmentDescription').'

'.$_POST['content']; //Second: student list (names, photo and links to their works). //Third: Create Students work pages. foreach($a_users_to_add as $user_id=>$o_user_to_add) { if($o_user_to_add['user_id'] != api_get_user_id()) //except that puts the task { $assig_user_id= $o_user_to_add['user_id']; //identifies each page as created by the student, not by teacher $image_path = UserManager::get_user_picture_path_by_id($assig_user_id,'web',false, true); $image_repository = $image_path['dir']; $existing_image = $image_path['file']; $name= $o_user_to_add['lastname'].', '.$o_user_to_add['firstname']; $photo= '

'; $is_tutor_of_group = GroupManager :: is_tutor_of_group($assig_user_id,$_clean['group_id']); //student is tutor $is_tutor_and_member = (GroupManager :: is_tutor_of_group($assig_user_id,$_clean['group_id']) && GroupManager :: is_subscribed($assig_user_id, $_clean['group_id'])); //student is tutor and member if($is_tutor_and_member) { $status_in_group=get_lang('GroupTutorAndMember'); } else { if($is_tutor_of_group) { $status_in_group=get_lang('GroupTutor'); } else { $status_in_group=" "; //get_lang('GroupStandardMember') } } if($assignment_type==1) { $_POST['title']= $title_orig; $_POST['comment']=get_lang('AssignmentFirstComToStudent'); $_POST['content']='

'.$photo.get_lang('Student').': '.$name.'

[['.$link2teacher.' | '.get_lang('AssignmentLinktoTeacherPage').']] '.$content_orig_B; //AssignmentLinktoTeacherPage $all_students_pages[] = '

'.$o_user_to_add['lastname'].', '.$o_user_to_add['firstname'].' [['.$_POST['title']."_uass".$assig_user_id.' | '.$photo.']] '.$status_in_group.'

'; $_POST['assignment']=2; } save_new_wiki(); } }//end foreach for each user foreach($a_users_to_add as $user_id=>$o_user_to_add) { if($o_user_to_add['user_id'] == api_get_user_id()) { $assig_user_id=$o_user_to_add['user_id']; if($assignment_type==1) { $_POST['title']= $title_orig; $_POST['comment']=get_lang('AssignmentDesc'); sort($all_students_pages); $_POST['content']=$content_orig_A.$content_orig_B.'

'.get_lang('AssignmentLinkstoStudentsPage').'
'.$title_orig.'

'.implode($all_students_pages).'

'; $_POST['assignment']=1; } save_new_wiki(); } } //end foreach to teacher } ?>

'.$author_photo.'	'.$userinfo['lastname'].', '.$userinfo['firstname'].' ('.$author_status.') '.$row['timestamp'].' - '.get_lang('Rating').': '.$row['p_score'].' '.$imagerating.'
	'.$row['comment'].'