'; $output .= Security::getPasswordRequirementsToString($conditions); Display::addFlash(Display::return_message($output, 'warning', false)); } return $isPasswordOk; } /** * Returns the status string corresponding to the status code. * * @author Noel Dieschburg * * @param the int status code * * @return string */ function get_status_from_code($status_code) { switch ($status_code) { case STUDENT: return get_lang('Student', ''); case COURSEMANAGER: return get_lang('Teacher', ''); case SESSIONADMIN: return get_lang('SessionsAdmin', ''); case DRH: return get_lang('Drh', ''); case ANONYMOUS: return get_lang('Anonymous', ''); case PLATFORM_ADMIN: return get_lang('Administrator', ''); case SESSION_COURSE_COACH: return get_lang('SessionCourseCoach', ''); case SESSION_GENERAL_COACH: return get_lang('SessionGeneralCoach', ''); case COURSE_TUTOR: return get_lang('CourseAssistant', ''); case STUDENT_BOSS: return get_lang('StudentBoss', ''); case INVITEE: return get_lang('Invitee', ''); } } /** * Gets the current Chamilo (not PHP/cookie) session ID. * * @return int O if no active session, the session ID otherwise */ function api_get_session_id() { return (int) Session::read('sid', 0); } /** * Gets the current Chamilo (not social network) group ID. * * @return int O if no active session, the session ID otherwise */ function api_get_group_id() { return Session::read('gid', 0); } /** * Gets the current or given session name. * * @param int Session ID (optional) * * @return string The session name, or null if not found */ function api_get_session_name($session_id = 0) { if (empty($session_id)) { $session_id = api_get_session_id(); if (empty($session_id)) { return null; } } $t = Database::get_main_table(TABLE_MAIN_SESSION); $s = "SELECT name FROM $t WHERE id = ".(int) $session_id; $r = Database::query($s); $c = Database::num_rows($r); if ($c > 0) { //technically, there can be only one, but anyway we take the first $rec = Database::fetch_array($r); return $rec['name']; } return null; } /** * Gets the session info by id. * * @param int $id Session ID * * @return array information of the session */ function api_get_session_info($id) { return SessionManager::fetch($id); } /** * Gets the session visibility by session id. * * @param int $session_id * @param int $courseId * @param bool $ignore_visibility_for_admins * * @return int * 0 = session still available, * SESSION_VISIBLE_READ_ONLY = 1, * SESSION_VISIBLE = 2, * SESSION_INVISIBLE = 3 */ function api_get_session_visibility( $session_id, $courseId = null, $ignore_visibility_for_admins = true ) { if (api_is_platform_admin()) { if ($ignore_visibility_for_admins) { return SESSION_AVAILABLE; } } $now = time(); if (empty($session_id)) { return 0; // Means that the session is still available. } $session_id = (int) $session_id; $tbl_session = Database::get_main_table(TABLE_MAIN_SESSION); $result = Database::query("SELECT * FROM $tbl_session WHERE id = $session_id"); if (Database::num_rows($result) <= 0) { return SESSION_INVISIBLE; } $row = Database::fetch_array($result, 'ASSOC'); $visibility = $row['visibility']; // I don't care the session visibility. if (empty($row['access_start_date']) && empty($row['access_end_date'])) { // Session duration per student. if (isset($row['duration']) && !empty($row['duration'])) { $duration = $row['duration'] * 24 * 60 * 60; $courseAccess = CourseManager::getFirstCourseAccessPerSessionAndUser($session_id, api_get_user_id()); // If there is a session duration but there is no previous // access by the user, then the session is still available if (0 == count($courseAccess)) { return SESSION_AVAILABLE; } $currentTime = time(); $firstAccess = isset($courseAccess['login_course_date']) ? api_strtotime($courseAccess['login_course_date'], 'UTC') : 0; $userDurationData = SessionManager::getUserSession( api_get_user_id(), $session_id ); $userDuration = isset($userDurationData['duration']) ? (intval($userDurationData['duration']) * 24 * 60 * 60) : 0; $totalDuration = $firstAccess + $duration + $userDuration; return $totalDuration > $currentTime ? SESSION_AVAILABLE : SESSION_VISIBLE_READ_ONLY; } return SESSION_AVAILABLE; } // If start date was set. if (!empty($row['access_start_date'])) { $visibility = $now > api_strtotime($row['access_start_date'], 'UTC') ? SESSION_AVAILABLE : SESSION_INVISIBLE; } // If the end date was set. if (!empty($row['access_end_date'])) { // Only if date_start said that it was ok if (SESSION_AVAILABLE === $visibility) { $visibility = $now < api_strtotime($row['access_end_date'], 'UTC') ? SESSION_AVAILABLE // Date still available : $row['visibility']; // Session ends } } // If I'm a coach the visibility can change in my favor depending in the coach dates. $isCoach = api_is_coach($session_id, $courseId); if ($isCoach) { // Test start date. if (!empty($row['coach_access_start_date'])) { $start = api_strtotime($row['coach_access_start_date'], 'UTC'); $visibility = $start < $now ? SESSION_AVAILABLE : SESSION_INVISIBLE; } // Test end date. if (!empty($row['coach_access_end_date'])) { if (SESSION_AVAILABLE === $visibility) { $endDateCoach = api_strtotime($row['coach_access_end_date'], 'UTC'); $visibility = $endDateCoach >= $now ? SESSION_AVAILABLE : $row['visibility']; } } } return $visibility; } /** * This function returns a (star) session icon if the session is not null and * the user is not a student. * * @param int $sessionId * @param int $statusId User status id - if 5 (student), will return empty * * @return string Session icon */ function api_get_session_image($sessionId, $statusId) { $sessionId = (int) $sessionId; $image = ''; if (STUDENT != $statusId) { // Check whether is not a student if ($sessionId > 0) { $image = ' '.Display::return_icon( 'star.png', get_lang('Session-specific resource'), ['align' => 'absmiddle'], ICON_SIZE_SMALL ); } } return $image; } /** * This function add an additional condition according to the session of the course. * * @param int $session_id session id * @param bool $and optional, true if more than one condition false if the only condition in the query * @param bool $with_base_content optional, true to accept content with session=0 as well, * false for strict session condition * @param string $session_field * * @return string condition of the session */ function api_get_session_condition( $session_id, $and = true, $with_base_content = false, $session_field = 'session_id' ) { $session_id = (int) $session_id; if (empty($session_field)) { $session_field = 'session_id'; } // Condition to show resources by session $condition_add = $and ? ' AND ' : ' WHERE '; if ($with_base_content) { $condition_session = $condition_add." ( $session_field = $session_id OR $session_field = 0 OR $session_field IS NULL) "; } else { if (empty($session_id)) { $condition_session = $condition_add." ($session_field = $session_id OR $session_field IS NULL)"; } else { $condition_session = $condition_add." $session_field = $session_id "; } } return $condition_session; } /** * Returns the value of a setting from the web-adjustable admin config settings. * * WARNING true/false are stored as string, so when comparing you need to check e.g. * if (api_get_setting('show_navigation_menu') == 'true') //CORRECT * instead of * if (api_get_setting('show_navigation_menu') == true) //INCORRECT * * @param string $variable The variable name * * @return string|array */ function api_get_setting($variable) { $settingsManager = Container::getSettingsManager(); if (empty($settingsManager)) { return ''; } $variable = trim($variable); switch ($variable) { /*case 'header_extra_content': $filename = api_get_path(SYS_PATH).api_get_home_path().'header_extra_content.txt'; if (file_exists($filename)) { $value = file_get_contents($filename); return $value; } else { return ''; } break; case 'footer_extra_content': $filename = api_get_path(SYS_PATH).api_get_home_path().'footer_extra_content.txt'; if (file_exists($filename)) { $value = file_get_contents($filename); return $value; } else { return ''; } break;*/ case 'server_type': $test = ['dev', 'test']; $environment = Container::getEnvironment(); if (in_array($environment, $test)) { return 'test'; } return 'prod'; case 'stylesheets': $variable = 'platform.theme'; // deprecated settings // no break case 'openid_authentication': case 'service_ppt2lp': case 'formLogin_hide_unhide_label': return false; break; case 'tool_visible_by_default_at_creation': $values = $settingsManager->getSetting($variable); $newResult = []; foreach ($values as $parameter) { $newResult[$parameter] = 'true'; } return $newResult; break; default: return $settingsManager->getSetting($variable); break; } } /** * @param string $variable * @param string $option * * @return bool */ function api_get_setting_in_list($variable, $option) { $value = api_get_setting($variable); return in_array($option, $value); } /** * @param string $plugin * @param string $variable * * @return string */ function api_get_plugin_setting($plugin, $variable) { $variableName = $plugin.'_'.$variable; //$result = api_get_setting($variableName); $params = [ 'category = ? AND subkey = ? AND variable = ?' => [ 'Plugins', $plugin, $variableName, ], ]; $table = Database::get_main_table(TABLE_MAIN_SETTINGS_CURRENT); $result = Database::select( 'selected_value', $table, ['where' => $params], 'one' ); if ($result) { $value = $result['selected_value']; $serializedValue = @unserialize($result['selected_value'], []); if (false !== $serializedValue) { $value = $serializedValue; } return $value; } return null; /// Old code $variableName = $plugin.'_'.$variable; $result = api_get_setting($variableName); if (isset($result[$plugin])) { $value = $result[$plugin]; $unserialized = UnserializeApi::unserialize('not_allowed_classes', $value, true); if (false !== $unserialized) { $value = $unserialized; } return $value; } return null; } /** * Returns the value of a setting from the web-adjustable admin config settings. */ function api_get_settings_params($params) { $table = Database::get_main_table(TABLE_MAIN_SETTINGS_CURRENT); $result = Database::select('*', $table, ['where' => $params]); return $result; } /** * @param array $params example: [id = ? => '1'] * * @return array */ function api_get_settings_params_simple($params) { $table = Database::get_main_table(TABLE_MAIN_SETTINGS_CURRENT); $result = Database::select('*', $table, ['where' => $params], 'one'); return $result; } /** * Returns the value of a setting from the web-adjustable admin config settings. */ function api_delete_settings_params($params) { $table = Database::get_main_table(TABLE_MAIN_SETTINGS_CURRENT); $result = Database::delete($table, $params); return $result; } /** * Returns an escaped version of $_SERVER['PHP_SELF'] to avoid XSS injection. * * @return string Escaped version of $_SERVER['PHP_SELF'] */ function api_get_self() { return htmlentities($_SERVER['PHP_SELF']); } /* USER PERMISSIONS */ /** * Checks whether current user is a platform administrator. * * @param bool $allowSessionAdmins Whether session admins should be considered admins or not * @param bool $allowDrh Whether HR directors should be considered admins or not * * @return bool true if the user has platform admin rights, * false otherwise * * @see usermanager::is_admin(user_id) for a user-id specific function */ function api_is_platform_admin($allowSessionAdmins = false, $allowDrh = false) { $currentUser = api_get_current_user(); if (null === $currentUser) { return false; } $isAdmin = Session::read('is_platformAdmin'); if ($isAdmin) { return true; } $user = api_get_user_info(); return isset($user['status']) && ( ($allowSessionAdmins && SESSIONADMIN == $user['status']) || ($allowDrh && DRH == $user['status']) ); } /** * Checks whether the user given as user id is in the admin table. * * @param int $user_id If none provided, will use current user * @param int $url URL ID. If provided, also check if the user is active on given URL * * @return bool True if the user is admin, false otherwise */ function api_is_platform_admin_by_id($user_id = null, $url = null) { $user_id = (int) $user_id; if (empty($user_id)) { $user_id = api_get_user_id(); } $admin_table = Database::get_main_table(TABLE_MAIN_ADMIN); $sql = "SELECT * FROM $admin_table WHERE user_id = $user_id"; $res = Database::query($sql); $is_admin = 1 === Database::num_rows($res); if (!$is_admin || !isset($url)) { return $is_admin; } // We get here only if $url is set $url = (int) $url; $url_user_table = Database::get_main_table(TABLE_MAIN_ACCESS_URL_REL_USER); $sql = "SELECT * FROM $url_user_table WHERE access_url_id = $url AND user_id = $user_id"; $res = Database::query($sql); $result = 1 === Database::num_rows($res); return $result; } /** * Returns the user's numeric status ID from the users table. * * @param int $user_id If none provided, will use current user * * @return int User's status (1 for teacher, 5 for student, etc) */ function api_get_user_status($user_id = null) { $user_id = (int) $user_id; if (empty($user_id)) { $user_id = api_get_user_id(); } $table = Database::get_main_table(TABLE_MAIN_USER); $sql = "SELECT status FROM $table WHERE id = $user_id "; $result = Database::query($sql); $status = null; if (Database::num_rows($result)) { $row = Database::fetch_array($result); $status = $row['status']; } return $status; } /** * Checks whether current user is allowed to create courses. * * @return bool true if the user has course creation rights, * false otherwise */ function api_is_allowed_to_create_course() { if (api_is_platform_admin()) { return true; } // Teachers can only create courses if (api_is_teacher()) { if ('true' === api_get_setting('allow_users_to_create_courses')) { return true; } else { return false; } } return Session::read('is_allowedCreateCourse'); } /** * Checks whether the current user is a course administrator. * * @return bool True if current user is a course administrator */ function api_is_course_admin() { if (api_is_platform_admin()) { return true; } $user = api_get_current_user(); if ($user) { if ( $user->hasRole('ROLE_CURRENT_SESSION_COURSE_TEACHER') || $user->hasRole('ROLE_CURRENT_COURSE_TEACHER') ) { return true; } } return false; //return Session::read('is_courseAdmin'); } /** * Checks whether the current user is a course coach * Based on the presence of user in session.id_coach (session general coach). * * @return bool True if current user is a course coach */ function api_is_session_general_coach() { return Session::read('is_session_general_coach'); } /** * Checks whether the current user is a course tutor * Based on the presence of user in session_rel_course_rel_user.user_id with status = 2. * * @return bool True if current user is a course tutor */ function api_is_course_tutor() { return Session::read('is_courseTutor'); } /** * @param int $user_id * @param int $courseId * @param int $session_id * * @return bool */ function api_is_course_session_coach($user_id, $courseId, $session_id) { $session_table = Database::get_main_table(TABLE_MAIN_SESSION); $session_rel_course_rel_user_table = Database::get_main_table(TABLE_MAIN_SESSION_COURSE_USER); $user_id = (int) $user_id; $session_id = (int) $session_id; $courseId = (int) $courseId; $sql = "SELECT DISTINCT session.id FROM $session_table INNER JOIN $session_rel_course_rel_user_table session_rc_ru ON session.id = session_rc_ru.session_id WHERE session_rc_ru.user_id = '".$user_id."' AND session_rc_ru.c_id = '$courseId' AND session_rc_ru.status = 2 AND session_rc_ru.session_id = '$session_id'"; $result = Database::query($sql); return Database::num_rows($result) > 0; } /** * Checks whether the current user is a course or session coach. * * @param int $session_id * @param int $courseId * @param bool Check whether we are in student view and, if we are, return false * * @return bool True if current user is a course or session coach */ function api_is_coach($session_id = 0, $courseId = null, $check_student_view = true) { $userId = api_get_user_id(); if (!empty($session_id)) { $session_id = (int) $session_id; } else { $session_id = api_get_session_id(); } // The student preview was on if ($check_student_view && api_is_student_view_active()) { return false; } if (!empty($courseId)) { $courseId = (int) $courseId; } else { $courseId = api_get_course_int_id(); } $session_table = Database::get_main_table(TABLE_MAIN_SESSION); $session_rel_course_rel_user_table = Database::get_main_table(TABLE_MAIN_SESSION_COURSE_USER); $sessionIsCoach = []; if (!empty($courseId)) { $sql = "SELECT DISTINCT s.id, name, access_start_date, access_end_date FROM $session_table s INNER JOIN $session_rel_course_rel_user_table session_rc_ru ON session_rc_ru.session_id = s.id AND session_rc_ru.user_id = '".$userId."' WHERE session_rc_ru.c_id = '$courseId' AND session_rc_ru.status = 2 AND session_rc_ru.session_id = '$session_id'"; $result = Database::query($sql); $sessionIsCoach = Database::store_result($result); } if (!empty($session_id)) { $sql = "SELECT DISTINCT id, name, access_start_date, access_end_date FROM $session_table WHERE session.id_coach = $userId AND id = $session_id ORDER BY access_start_date, access_end_date, name"; $result = Database::query($sql); if (!empty($sessionIsCoach)) { $sessionIsCoach = array_merge( $sessionIsCoach, Database::store_result($result) ); } else { $sessionIsCoach = Database::store_result($result); } } return count($sessionIsCoach) > 0; } /** * Checks whether the current user is a session administrator. * * @return bool True if current user is a course administrator */ function api_is_session_admin() { $user = api_get_user_info(); return isset($user['status']) && SESSIONADMIN == $user['status']; } /** * Checks whether the current user is a human resources manager. * * @return bool True if current user is a human resources manager */ function api_is_drh() { $user = api_get_user_info(); return isset($user['status']) && DRH == $user['status']; } /** * Checks whether the current user is a student. * * @return bool True if current user is a human resources manager */ function api_is_student() { $user = api_get_user_info(); return isset($user['status']) && STUDENT == $user['status']; } /** * Checks whether the current user has the status 'teacher'. * * @return bool True if current user is a human resources manager */ function api_is_teacher() { $user = api_get_user_info(); return isset($user['status']) && COURSEMANAGER == $user['status']; } /** * Checks whether the current user is a invited user. * * @return bool */ function api_is_invitee() { $user = api_get_user_info(); return isset($user['status']) && INVITEE == $user['status']; } /** * This function checks whether a session is assigned into a category. * * @param int - session id * @param string - category name * * @return bool - true if is found, otherwise false */ function api_is_session_in_category($session_id, $category_name) { $session_id = (int) $session_id; $category_name = Database::escape_string($category_name); $tbl_session = Database::get_main_table(TABLE_MAIN_SESSION); $tbl_session_category = Database::get_main_table(TABLE_MAIN_SESSION_CATEGORY); $sql = "SELECT 1 FROM $tbl_session WHERE $session_id IN ( SELECT s.id FROM $tbl_session s, $tbl_session_category sc WHERE s.session_category_id = sc.id AND sc.name LIKE '%$category_name' )"; $rs = Database::query($sql); if (Database::num_rows($rs) > 0) { return true; } else { return false; } } /** * Displays the title of a tool. * Normal use: parameter is a string: * api_display_tool_title("My Tool"). * * Optionally, there can be a subtitle below * the normal title, and / or a supra title above the normal title. * * e.g. supra title: * group * GROUP PROPERTIES * * e.g. subtitle: * AGENDA * calender & events tool * * @author Hugues Peeters
';
if (!empty($title_element['supraTitle'])) {
echo ''.$title_element['supraTitle'].'
';
}
if (!empty($title_element['mainTitle'])) {
echo $title_element['mainTitle'];
}
if (!empty($title_element['subTitle'])) {
echo '
'.$title_element['subTitle'].'';
}
echo '
';
}
/**
* Displays options for switching between student view and course manager view.
*
* Changes in version 1.2 (Patrick Cool)
* Student view switch now behaves as a real switch. It maintains its current state until the state
* is changed explicitly
*
* Changes in version 1.1 (Patrick Cool)
* student view now works correctly in subfolders of the document tool
* student view works correctly in the new links tool
*
* Example code for using this in your tools:
* //if ($is_courseAdmin && api_get_setting('student_view_enabled') == 'true') {
* // display_tool_view_option($isStudentView);
* //}
* //and in later sections, use api_is_allowed_to_edit()
*
* @author Roan Embrechts
* @author Patrick Cool
* @author Julio Montoya, changes added in Chamilo
*
* @version 1.2
*
* @todo rewrite code so it is easier to understand
*/
function api_display_tool_view_option()
{
if ('true' != api_get_setting('student_view_enabled')) {
return '';
}
$sourceurl = '';
$is_framed = false;
// Exceptions apply for all multi-frames pages
if (false !== strpos($_SERVER['REQUEST_URI'], 'chat/chat_banner.php')) {
// The chat is a multiframe bit that doesn't work too well with the student_view, so do not show the link
return '';
}
// Uncomment to remove student view link from document view page
if (false !== strpos($_SERVER['REQUEST_URI'], 'lp/lp_header.php')) {
if (empty($_GET['lp_id'])) {
return '';
}
$sourceurl = substr($_SERVER['REQUEST_URI'], 0, strpos($_SERVER['REQUEST_URI'], '?'));
$sourceurl = str_replace(
'lp/lp_header.php',
'lp/lp_controller.php?'.api_get_cidreq().'&action=view&lp_id='.intval($_GET['lp_id']).'&isStudentView='.('studentview' == $_SESSION['studentview'] ? 'false' : 'true'),
$sourceurl
);
//showinframes doesn't handle student view anyway...
//return '';
$is_framed = true;
}
// Check whether the $_SERVER['REQUEST_URI'] contains already url parameters (thus a questionmark)
if (!$is_framed) {
if (false === strpos($_SERVER['REQUEST_URI'], '?')) {
$sourceurl = api_get_self().'?'.api_get_cidreq();
} else {
$sourceurl = $_SERVER['REQUEST_URI'];
}
}
$output_string = '';
if (!empty($_SESSION['studentview'])) {
if ('studentview' == $_SESSION['studentview']) {
// We have to remove the isStudentView=true from the $sourceurl
$sourceurl = str_replace('&isStudentView=true', '', $sourceurl);
$sourceurl = str_replace('&isStudentView=false', '', $sourceurl);
$output_string .= ''.
Display::returnFontAwesomeIcon('eye').' '.get_lang('Switch to teacher view').'';
} elseif ('teacherview' == $_SESSION['studentview']) {
// Switching to teacherview
$sourceurl = str_replace('&isStudentView=true', '', $sourceurl);
$sourceurl = str_replace('&isStudentView=false', '', $sourceurl);
$output_string .= ''.
Display::returnFontAwesomeIcon('eye').' '.get_lang('Switch to student view').'';
}
} else {
$output_string .= ''.
Display::returnFontAwesomeIcon('eye').' '.get_lang('Switch to student view').'';
}
$output_string = Security::remove_XSS($output_string);
$html = Display::tag('div', $output_string, ['class' => 'view-options']);
return $html;
}
// TODO: This is for the permission section.
/**
* Function that removes the need to directly use is_courseAdmin global in
* tool scripts. It returns true or false depending on the user's rights in
* this particular course.
* Optionally checking for tutor and coach roles here allows us to use the
* student_view feature altogether with these roles as well.
*
* @param bool Whether to check if the user has the tutor role
* @param bool Whether to check if the user has the coach role
* @param bool Whether to check if the user has the session coach role
* @param bool check the student view or not
*
* @author Roan Embrechts
* @author Patrick Cool
* @author Julio Montoya
*
* @version 1.1, February 2004
*
* @return bool true: the user has the rights to edit, false: he does not
*/
function api_is_allowed_to_edit(
$tutor = false,
$coach = false,
$session_coach = false,
$check_student_view = true
) {
$allowSessionAdminEdit = true === api_get_setting('session.session_admins_edit_courses_content');
// Admins can edit anything.
if (api_is_platform_admin($allowSessionAdminEdit)) {
//The student preview was on
if ($check_student_view && api_is_student_view_active()) {
return false;
}
return true;
}
$sessionId = api_get_session_id();
if ($sessionId && api_get_configuration_value('session_courses_read_only_mode')) {
$efv = new ExtraFieldValue('course');
$lockExrafieldField = $efv->get_values_by_handler_and_field_variable(
api_get_course_int_id(),
'session_courses_read_only_mode'
);
if (!empty($lockExrafieldField['value'])) {
return false;
}
}
$is_allowed_coach_to_edit = api_is_coach(null, null, $check_student_view);
$session_visibility = api_get_session_visibility($sessionId);
$is_courseAdmin = api_is_course_admin();
if (!$is_courseAdmin && $tutor) {
// If we also want to check if the user is a tutor...
$is_courseAdmin = $is_courseAdmin || api_is_course_tutor();
}
if (!$is_courseAdmin && $coach) {
// If we also want to check if the user is a coach...';
// Check if session visibility is read only for coaches.
if (SESSION_VISIBLE_READ_ONLY == $session_visibility) {
$is_allowed_coach_to_edit = false;
}
if ('true' === api_get_setting('allow_coach_to_edit_course_session')) {
// Check if coach is allowed to edit a course.
$is_courseAdmin = $is_courseAdmin || $is_allowed_coach_to_edit;
}
}
if (!$is_courseAdmin && $session_coach) {
$is_courseAdmin = $is_courseAdmin || $is_allowed_coach_to_edit;
}
// Check if the student_view is enabled, and if so, if it is activated.
if ('true' === api_get_setting('student_view_enabled')) {
$studentView = api_is_student_view_active();
if (!empty($sessionId)) {
// Check if session visibility is read only for coaches.
if (SESSION_VISIBLE_READ_ONLY == $session_visibility) {
$is_allowed_coach_to_edit = false;
}
$is_allowed = false;
if ('true' === api_get_setting('allow_coach_to_edit_course_session')) {
// Check if coach is allowed to edit a course.
$is_allowed = $is_allowed_coach_to_edit;
}
if ($check_student_view) {
$is_allowed = $is_allowed && false === $studentView;
}
} else {
$is_allowed = $is_courseAdmin;
if ($check_student_view) {
$is_allowed = $is_courseAdmin && false === $studentView;
}
}
return $is_allowed;
} else {
return $is_courseAdmin;
}
}
/**
* Returns true if user is a course coach of at least one course in session.
*
* @param int $sessionId
*
* @return bool
*/
function api_is_coach_of_course_in_session($sessionId)
{
if (api_is_platform_admin()) {
return true;
}
$userId = api_get_user_id();
$courseList = UserManager::get_courses_list_by_session(
$userId,
$sessionId
);
// Session visibility.
$visibility = api_get_session_visibility(
$sessionId,
null,
false
);
if (SESSION_VISIBLE != $visibility && !empty($courseList)) {
// Course Coach session visibility.
$blockedCourseCount = 0;
$closedVisibilityList = [
COURSE_VISIBILITY_CLOSED,
COURSE_VISIBILITY_HIDDEN,
];
foreach ($courseList as $course) {
// Checking session visibility
$sessionCourseVisibility = api_get_session_visibility(
$sessionId,
$course['real_id']
);
$courseIsVisible = !in_array(
$course['visibility'],
$closedVisibilityList
);
if (false === $courseIsVisible || SESSION_INVISIBLE == $sessionCourseVisibility) {
$blockedCourseCount++;
}
}
// If all courses are blocked then no show in the list.
if ($blockedCourseCount === count($courseList)) {
$visibility = SESSION_INVISIBLE;
} else {
$visibility = SESSION_VISIBLE;
}
}
switch ($visibility) {
case SESSION_VISIBLE_READ_ONLY:
case SESSION_VISIBLE:
case SESSION_AVAILABLE:
return true;
break;
case SESSION_INVISIBLE:
return false;
}
return false;
}
/**
* Checks if a student can edit contents in a session depending
* on the session visibility.
*
* @param bool $tutor Whether to check if the user has the tutor role
* @param bool $coach Whether to check if the user has the coach role
*
* @return bool true: the user has the rights to edit, false: he does not
*/
function api_is_allowed_to_session_edit($tutor = false, $coach = false)
{
if (api_is_allowed_to_edit($tutor, $coach)) {
// If I'm a teacher, I will return true in order to not affect the normal behaviour of Chamilo tools.
return true;
} else {
$sessionId = api_get_session_id();
if (0 == $sessionId) {
// I'm not in a session so i will return true to not affect the normal behaviour of Chamilo tools.
return true;
} else {
// I'm in a session and I'm a student
// Get the session visibility
$session_visibility = api_get_session_visibility($sessionId);
// if 5 the session is still available
switch ($session_visibility) {
case SESSION_VISIBLE_READ_ONLY: // 1
return false;
case SESSION_VISIBLE: // 2
return true;
case SESSION_INVISIBLE: // 3
return false;
case SESSION_AVAILABLE: //5
return true;
}
}
}
return false;
}
/**
* Checks whether the user is allowed in a specific tool for a specific action.
*
* @param string $tool the tool we are checking if the user has a certain permission
* @param string $action the action we are checking (add, edit, delete, move, visibility)
*
* @return bool
*
* @author Patrick Cool
';
} else {
$html = '
'.$currentLanguageInfo['original_name'].'
';
}
$html .= '';
if ($showAsButton) {
$html .= '
';
}
return $html;
}
/**
* @param string $languageIsoCode
*
* @return string
*/
function languageToCountryIsoCode($languageIsoCode)
{
$allow = api_get_configuration_value('language_flags_by_country');
// @todo save in DB
switch ($languageIsoCode) {
case 'ar':
$country = 'ae';
break;
case 'bs':
$country = 'ba';
break;
case 'ca':
$country = 'es';
if ($allow) {
$country = 'catalan';
}
break;
case 'cs':
$country = 'cz';
break;
case 'da':
$country = 'dk';
break;
case 'el':
$country = 'ae';
break;
case 'en':
$country = 'gb';
break;
case 'eu': // Euskera
$country = 'es';
if ($allow) {
$country = 'basque';
}
break;
case 'gl': // galego
$country = 'es';
if ($allow) {
$country = 'galician';
}
break;
case 'he':
$country = 'il';
break;
case 'ja':
$country = 'jp';
break;
case 'ka':
$country = 'ge';
break;
case 'ko':
$country = 'kr';
break;
case 'ms':
$country = 'my';
break;
case 'pt-BR':
$country = 'br';
break;
case 'qu':
$country = 'pe';
break;
case 'sl':
$country = 'si';
break;
case 'sv':
$country = 'se';
break;
case 'uk': // Ukraine
$country = 'ua';
break;
case 'zh-TW':
case 'zh':
$country = 'cn';
break;
default:
$country = $languageIsoCode;
break;
}
$country = strtolower($country);
return $country;
}
/**
* Returns a list of all the languages that are made available by the admin.
*
* @return array An array with all languages. Structure of the array is
* array['name'] = An array with the name of every language
* array['folder'] = An array with the corresponding names of the language-folders in the filesystem
*/
function api_get_languages()
{
$table = Database::get_main_table(TABLE_MAIN_LANGUAGE);
$sql = "SELECT * FROM $table WHERE available='1'
ORDER BY original_name ASC";
$result = Database::query($sql);
$languages = [];
while ($row = Database::fetch_array($result, 'ASSOC')) {
$languages[$row['isocode']] = $row['original_name'];
}
return $languages;
}
/**
* Returns a list of all the languages that are made available by the admin.
*
* @return array
*/
function api_get_languages_to_array()
{
$tbl_language = Database::get_main_table(TABLE_MAIN_LANGUAGE);
$sql = "SELECT * FROM $tbl_language WHERE available='1' ORDER BY original_name ASC";
$result = Database::query($sql);
$languages = [];
while ($row = Database::fetch_array($result)) {
$languages[$row['english_name']] = $row['original_name'];
}
return $languages;
}
/**
* Returns the id (the database id) of a language.
*
* @param string language name (the corresponding name of the language-folder in the filesystem)
*
* @return int id of the language
*/
function api_get_language_id($language)
{
$tbl_language = Database::get_main_table(TABLE_MAIN_LANGUAGE);
if (empty($language)) {
return null;
}
$language = Database::escape_string($language);
$sql = "SELECT id FROM $tbl_language
WHERE english_name = '$language' LIMIT 1";
$result = Database::query($sql);
$row = Database::fetch_array($result);
return $row['id'];
}
/**
* Get the language information by its id.
*
* @param int $languageId
*
* @throws Exception
*
* @return array
*/
function api_get_language_info($languageId)
{
if (empty($languageId)) {
return [];
}
$language = Database::getManager()->find(Language::class, $languageId);
if (!$language) {
return [];
}
return [
'id' => $language->getId(),
'original_name' => $language->getOriginalName(),
'english_name' => $language->getEnglishName(),
'isocode' => $language->getIsocode(),
'available' => $language->getAvailable(),
'parent_id' => $language->getParent() ? $language->getParent()->getId() : null,
];
}
/**
* @param string $code
*
* @return Language
*/
function api_get_language_from_iso($code)
{
$em = Database::getManager();
return $em->getRepository(Language::class)->findOneBy(['isocode' => $code]);
}
/**
* Returns the name of the visual (CSS) theme to be applied on the current page.
* The returned name depends on the platform, course or user -wide settings.
*
* @return string The visual theme's name, it is the name of a folder inside web/css/themes
*/
function api_get_visual_theme()
{
static $visual_theme;
if (!isset($visual_theme)) {
// Get style directly from DB
/*$styleFromDatabase = api_get_settings_params_simple(
[
'variable = ? AND access_url = ?' => [
'stylesheets',
api_get_current_access_url_id(),
],
]
);
if ($styleFromDatabase) {
$platform_theme = $styleFromDatabase['selected_value'];
} else {
$platform_theme = api_get_setting('stylesheets');
}*/
$platform_theme = api_get_setting('stylesheets');
// Platform's theme.
$visual_theme = $platform_theme;
if ('true' == api_get_setting('user_selected_theme')) {
$user_info = api_get_user_info();
if (isset($user_info['theme'])) {
$user_theme = $user_info['theme'];
if (!empty($user_theme)) {
$visual_theme = $user_theme;
// User's theme.
}
}
}
$course_id = api_get_course_id();
if (!empty($course_id)) {
if ('true' == api_get_setting('allow_course_theme')) {
$course_theme = api_get_course_setting('course_theme', $course_id);
if (!empty($course_theme) && -1 != $course_theme) {
if (!empty($course_theme)) {
// Course's theme.
$visual_theme = $course_theme;
}
}
$allow_lp_theme = api_get_course_setting('allow_learning_path_theme');
if (1 == $allow_lp_theme) {
/*global $lp_theme_css, $lp_theme_config;
// These variables come from the file lp_controller.php.
if (!$lp_theme_config) {
if (!empty($lp_theme_css)) {
// LP's theme.
$visual_theme = $lp_theme_css;
}
}*/
}
}
}
if (empty($visual_theme)) {
$visual_theme = 'chamilo';
}
/*global $lp_theme_log;
if ($lp_theme_log) {
$visual_theme = $platform_theme;
}*/
}
return $visual_theme;
}
/**
* Returns a list of CSS themes currently available in the CSS folder
* The folder must have a default.css file.
*
* @param bool $getOnlyThemeFromVirtualInstance Used by the vchamilo plugin
*
* @return array list of themes directories from the css folder
* Note: Directory names (names of themes) in the file system should contain ASCII-characters only
*/
function api_get_themes($getOnlyThemeFromVirtualInstance = false)
{
// This configuration value is set by the vchamilo plugin
$virtualTheme = api_get_configuration_value('virtual_css_theme_folder');
$readCssFolder = function ($dir) use ($virtualTheme) {
$finder = new Finder();
$themes = $finder->directories()->in($dir)->depth(0)->sortByName();
$list = [];
/** @var Symfony\Component\Finder\SplFileInfo $theme */
foreach ($themes as $theme) {
$folder = $theme->getFilename();
// A theme folder is consider if there's a default.css file
if (!file_exists($theme->getPathname().'/default.css')) {
continue;
}
$name = ucwords(str_replace('_', ' ', $folder));
if ($folder == $virtualTheme) {
continue;
}
$list[$folder] = $name;
}
return $list;
};
$dir = api_get_path(SYS_CSS_PATH).'themes/';
$list = $readCssFolder($dir);
if (!empty($virtualTheme)) {
$newList = $readCssFolder($dir.'/'.$virtualTheme);
if ($getOnlyThemeFromVirtualInstance) {
return $newList;
}
$list = $list + $newList;
asort($list);
}
return $list;
}
/**
* Find the largest sort value in a given user_course_category
* This function is used when we are moving a course to a different category
* and also when a user subscribes to courses (the new course is added at the end of the main category.
*
* @param int $courseCategoryId the id of the user_course_category
* @param int $userId
*
* @return int the value of the highest sort of the user_course_category
*/
function api_max_sort_value($courseCategoryId, $userId)
{
$user = api_get_user_entity($userId);
$userCourseCategory = Database::getManager()->getRepository(UserCourseCategory::class)->find($courseCategoryId);
return null === $user ? 0 : $user->getMaxSortValue($userCourseCategory);
}
/**
* Transforms a number of seconds in hh:mm:ss format.
*
* @author Julian Prud'homme
*
* @param int $seconds number of seconds
* @param string $space
* @param bool $showSeconds
* @param bool $roundMinutes
*
* @return string the formatted time
*/
function api_time_to_hms($seconds, $space = ':', $showSeconds = true, $roundMinutes = false)
{
// $seconds = -1 means that we have wrong data in the db.
if (-1 == $seconds) {
return
get_lang('Unknown').
Display::return_icon(
'info2.gif',
get_lang('The datas about this user were registered when the calculation of time spent on the platform wasn\'t possible.'),
['align' => 'absmiddle', 'hspace' => '3px']
);
}
// How many hours ?
$hours = floor($seconds / 3600);
// How many minutes ?
$min = floor(($seconds - ($hours * 3600)) / 60);
if ($roundMinutes) {
if ($min >= 45) {
$min = 45;
}
if ($min >= 30 && $min <= 44) {
$min = 30;
}
if ($min >= 15 && $min <= 29) {
$min = 15;
}
if ($min >= 0 && $min <= 14) {
$min = 0;
}
}
// How many seconds
$sec = floor($seconds - ($hours * 3600) - ($min * 60));
if ($hours < 10) {
$hours = "0$hours";
}
if ($sec < 10) {
$sec = "0$sec";
}
if ($min < 10) {
$min = "0$min";
}
$seconds = '';
if ($showSeconds) {
$seconds = $space.$sec;
}
return $hours.$space.$min.$seconds;
}
/* FILE SYSTEM RELATED FUNCTIONS */
/**
* Returns the permissions to be assigned to every newly created directory by the web-server.
* The return value is based on the platform administrator's setting
* "Administration > Configuration settings > Security > Permissions for new directories".
*
* @return int returns the permissions in the format "Owner-Group-Others, Read-Write-Execute", as an integer value
*/
function api_get_permissions_for_new_directories()
{
static $permissions;
if (!isset($permissions)) {
$permissions = trim(api_get_setting('permissions_for_new_directories'));
// The default value 0777 is according to that in the platform administration panel after fresh system installation.
$permissions = octdec(!empty($permissions) ? $permissions : '0777');
}
return $permissions;
}
/**
* Returns the permissions to be assigned to every newly created directory by the web-server.
* The return value is based on the platform administrator's setting
* "Administration > Configuration settings > Security > Permissions for new files".
*
* @return int returns the permissions in the format
* "Owner-Group-Others, Read-Write-Execute", as an integer value
*/
function api_get_permissions_for_new_files()
{
static $permissions;
if (!isset($permissions)) {
$permissions = trim(api_get_setting('permissions_for_new_files'));
// The default value 0666 is according to that in the platform
// administration panel after fresh system installation.
$permissions = octdec(!empty($permissions) ? $permissions : '0666');
}
return $permissions;
}
/**
* Deletes a file, or a folder and its contents.
*
* @author Aidan Lister
* @verbatim
* name = Forum
* description = Enables threaded discussions about general topics.
* dependencies[] = taxonomy
* dependencies[] = comment
* package = Core - optional
* version = VERSION
* @endverbatim
*
*
* @param string $filename
* The file we are parsing. Accepts file with relative or absolute path.
*
* @return
* The info array
*/
function api_parse_info_file($filename)
{
$info = [];
if (!file_exists($filename)) {
return $info;
}
$data = file_get_contents($filename);
if (preg_match_all('
@^\s* # Start at the beginning of a line, ignoring leading whitespace
((?:
[^=;\[\]]| # Key names cannot contain equal signs, semi-colons or square brackets,
\[[^\[\]]*\] # unless they are balanced and not nested
)+?)
\s*=\s* # Key/value pairs are separated by equal signs (ignoring white-space)
(?:
("(?:[^"]|(?<=\\\\)")*")| # Double-quoted string, which may contain slash-escaped quotes/slashes
(\'(?:[^\']|(?<=\\\\)\')*\')| # Single-quoted string, which may contain slash-escaped quotes/slashes
([^\r\n]*?) # Non-quoted string
)\s*$ # Stop at the next end of a line, ignoring trailing whitespace
@msx', $data, $matches, PREG_SET_ORDER)) {
$key = $value1 = $value2 = $value3 = '';
foreach ($matches as $match) {
// Fetch the key and value string.
$i = 0;
foreach (['key', 'value1', 'value2', 'value3'] as $var) {
$$var = isset($match[++$i]) ? $match[$i] : '';
}
$value = stripslashes(substr($value1, 1, -1)).stripslashes(substr($value2, 1, -1)).$value3;
// Parse array syntax.
$keys = preg_split('/\]?\[/', rtrim($key, ']'));
$last = array_pop($keys);
$parent = &$info;
// Create nested arrays.
foreach ($keys as $key) {
if ('' == $key) {
$key = count($parent);
}
if (!isset($parent[$key]) || !is_array($parent[$key])) {
$parent[$key] = [];
}
$parent = &$parent[$key];
}
// Handle PHP constants.
if (defined($value)) {
$value = constant($value);
}
// Insert actual value.
if ('' == $last) {
$last = count($parent);
}
$parent[$last] = $value;
}
}
return $info;
}
/**
* Gets Chamilo version from the configuration files.
*
* @return string A string of type "1.8.4", or an empty string if the version could not be found
*/
function api_get_version()
{
return (string) api_get_configuration_value('system_version');
}
/**
* Gets the software name (the name/brand of the Chamilo-based customized system).
*
* @return string
*/
function api_get_software_name()
{
$name = api_get_configuration_value('software_name');
if (!empty($name)) {
return $name;
} else {
return 'Chamilo';
}
}
function api_get_status_list()
{
$list = [];
// Table of status
$list[COURSEMANAGER] = 'teacher'; // 1
$list[SESSIONADMIN] = 'session_admin'; // 3
$list[DRH] = 'drh'; // 4
$list[STUDENT] = 'user'; // 5
$list[ANONYMOUS] = 'anonymous'; // 6
$list[INVITEE] = 'invited'; // 20
return $list;
}
/**
* Checks whether status given in parameter exists in the platform.
*
* @param mixed the status (can be either int either string)
*
* @return bool if the status exists, else returns false
*/
function api_status_exists($status_asked)
{
$list = api_get_status_list();
return in_array($status_asked, $list) ? true : isset($list[$status_asked]);
}
/**
* Checks whether status given in parameter exists in the platform. The function
* returns the status ID or false if it does not exist, but given the fact there
* is no "0" status, the return value can be checked against
* if(api_status_key()) to know if it exists.
*
* @param mixed The status (can be either int or string)
*
* @return mixed Status ID if exists, false otherwise
*/
function api_status_key($status)
{
$list = api_get_status_list();
return isset($list[$status]) ? $status : array_search($status, $list);
}
/**
* Gets the status langvars list.
*
* @return string[] the list of status with their translations
*/
function api_get_status_langvars()
{
return [
COURSEMANAGER => get_lang('Teacher'),
SESSIONADMIN => get_lang('SessionsAdmin'),
DRH => get_lang('Human Resources Manager'),
STUDENT => get_lang('Learner'),
ANONYMOUS => get_lang('Anonymous'),
STUDENT_BOSS => get_lang('RoleStudentBoss'),
INVITEE => get_lang('Invited'),
];
}
/**
* The function that retrieves all the possible settings for a certain config setting.
*
* @author Patrick Cool '.get_lang('This is an automatic email message. Please do not reply to it.'); } $params = [ 'mail_header_style' => api_get_configuration_value('mail_header_style'), 'mail_content_style' => api_get_configuration_value('mail_content_style'), 'link' => $additionalParameters['link'] ?? '', 'automatic_email_text' => $automaticEmailText, 'content' => $body, 'theme' => api_get_visual_theme(), ]; if (!empty($senderEmail)) { $message->from(new Address($senderEmail, $senderName)); } if (!empty($recipientEmail)) { $message->to(new Address($recipientEmail, $recipientName)); } if (!empty($replyToEmail)) { $message->replyTo(new Address($replyToEmail, $replyToName)); } $message ->htmlTemplate('ChamiloCoreBundle:Mailer:Default/default.html.twig') ->textTemplate('ChamiloCoreBundle:Mailer:Default/default.text.twig') ; $message->context($params); Container::getMailer()->send($message); return true; } catch (Exception $e) { error_log($e->getMessage()); } if (!empty($additionalParameters)) { $plugin = new AppPlugin(); $smsPlugin = $plugin->getSMSPluginLibrary(); if ($smsPlugin) { $smsPlugin->send($additionalParameters); } } return 1; } /** * @param string $tool Possible values: GroupManager::GROUP_TOOL_* * @param bool $showHeader */ function api_protect_course_group($tool, $showHeader = true) { $groupId = api_get_group_id(); if (!empty($groupId)) { if (api_is_platform_admin()) { return true; } if (api_is_allowed_to_edit(false, true, true)) { return true; } $userId = api_get_user_id(); $sessionId = api_get_session_id(); if (!empty($sessionId)) { if (api_is_coach($sessionId, api_get_course_int_id())) { return true; } if (api_is_drh()) { if (SessionManager::isUserSubscribedAsHRM($sessionId, $userId)) { return true; } } } $groupInfo = GroupManager::get_group_properties($groupId); // Group doesn't exists if (empty($groupInfo)) { api_not_allowed($showHeader); } // Check group access $allow = GroupManager::user_has_access( $userId, $groupInfo['iid'], $tool ); if (!$allow) { api_not_allowed($showHeader); } } return false; } /** * Check if a date is in a date range. * * @param datetime $startDate * @param datetime $endDate * @param datetime $currentDate * * @return bool true if date is in rage, false otherwise */ function api_is_date_in_date_range($startDate, $endDate, $currentDate = null) { $startDate = strtotime(api_get_local_time($startDate)); $endDate = strtotime(api_get_local_time($endDate)); $currentDate = strtotime(api_get_local_time($currentDate)); if ($currentDate >= $startDate && $currentDate <= $endDate) { return true; } return false; } /** * Eliminate the duplicates of a multidimensional array by sending the key. * * @param array $array multidimensional array * @param int $key key to find to compare * * @return array */ function api_unique_multidim_array($array, $key) { $temp_array = []; $i = 0; $key_array = []; foreach ($array as $val) { if (!in_array($val[$key], $key_array)) { $key_array[$i] = $val[$key]; $temp_array[$i] = $val; } $i++; } return $temp_array; } /** * Limit the access to Session Admins when the limit_session_admin_role * configuration variable is set to true. */ function api_protect_limit_for_session_admin() { $limitAdmin = api_get_setting('limit_session_admin_role'); if (api_is_session_admin() && 'true' === $limitAdmin) { api_not_allowed(true); } } /** * Limits that a session admin has access to list users. * When limit_session_admin_list_users configuration variable is set to true. */ function api_protect_session_admin_list_users() { $limitAdmin = api_get_configuration_value('limit_session_admin_list_users'); if (api_is_session_admin() && true === $limitAdmin) { api_not_allowed(true); } } /** * @return bool */ function api_is_student_view_active() { $studentView = Session::read('studentview'); return 'studentview' === $studentView; } /** * Adds a file inside the upload/$type/id. * * @param string $type * @param array $file * @param int $itemId * @param string $cropParameters * * @return array|bool */ function api_upload_file($type, $file, $itemId, $cropParameters = '') { throw new Exception('api_upload_file not implemented'); $upload = process_uploaded_file($file); if ($upload) { $name = api_replace_dangerous_char($file['name']); // No "dangerous" files $name = disable_dangerous_file($name); $pathId = '/'.substr((string) $itemId, 0, 1).'/'.$itemId.'/'; $path = api_get_path(SYS_UPLOAD_PATH).$type.$pathId; if (!is_dir($path)) { mkdir($path, api_get_permissions_for_new_directories(), true); } $pathToSave = $path.$name; $result = moveUploadedFile($file, $pathToSave); if ($result) { if (!empty($cropParameters)) { $image = new Image($pathToSave); $image->crop($cropParameters); } return ['path_to_save' => $pathId.$name]; } } return false; } /** * @param string $type * @param int $itemId * @param string $file * * @return bool */ function api_get_uploaded_web_url($type, $itemId, $file) { return api_get_uploaded_file($type, $itemId, $file, true); } /** * @param string $type * @param int $itemId * @param string $file * @param bool $getUrl * * @return bool */ function api_get_uploaded_file($type, $itemId, $file, $getUrl = false) { $itemId = (int) $itemId; $pathId = '/'.substr((string) $itemId, 0, 1).'/'.$itemId.'/'; $path = api_get_path(SYS_UPLOAD_PATH).$type.$pathId; $file = basename($file); $file = $path.'/'.$file; if (Security::check_abs_path($file, $path) && is_file($file) && file_exists($file)) { if ($getUrl) { return str_replace(api_get_path(SYS_UPLOAD_PATH), api_get_path(WEB_UPLOAD_PATH), $file); } return $file; } return false; } /** * @param string $type * @param int $itemId * @param string $file * @param string $title */ function api_download_uploaded_file($type, $itemId, $file, $title = '') { $file = api_get_uploaded_file($type, $itemId, $file); if ($file) { if (Security::check_abs_path($file, api_get_path(SYS_UPLOAD_PATH).$type)) { DocumentManager::file_send_for_download($file, true, $title); exit; } } api_not_allowed(true); } /** * @param string $type * @param string $file */ function api_remove_uploaded_file($type, $file) { $typePath = api_get_path(SYS_UPLOAD_PATH).$type; $path = $typePath.'/'.$file; if (Security::check_abs_path($path, $typePath) && file_exists($path) && is_file($path)) { unlink($path); } } /** * @param string $type * @param int $itemId * @param string $file * * @return bool */ function api_remove_uploaded_file_by_id($type, $itemId, $file) { $file = api_get_uploaded_file($type, $itemId, $file, false); $typePath = api_get_path(SYS_UPLOAD_PATH).$type; if (Security::check_abs_path($file, $typePath) && file_exists($file) && is_file($file)) { unlink($file); return true; } return false; } /** * Converts string value to float value. * * 3.141516 => 3.141516 * 3,141516 => 3.141516 * * @todo WIP * * @param string $number * * @return float */ function api_float_val($number) { $number = (float) str_replace(',', '.', trim($number)); return $number; } /** * Converts float values * Example if $decimals = 2. * * 3.141516 => 3.14 * 3,141516 => 3,14 * * @param string $number number in iso code * @param int $decimals * @param string $decimalSeparator * @param string $thousandSeparator * * @return bool|string */ function api_number_format($number, $decimals = 0, $decimalSeparator = '.', $thousandSeparator = ',') { $number = api_float_val($number); return number_format($number, $decimals, $decimalSeparator, $thousandSeparator); } /** * Set location url with a exit break by default. * * @param string $url * @param bool $exit */ function api_location($url, $exit = true) { header('Location: '.$url); if ($exit) { exit; } } /** * @return string */ function api_get_web_url() { if ('test' === api_get_setting('server_type')) { return api_get_path(WEB_PATH).'web/app_dev.php/'; } else { return api_get_path(WEB_PATH).'web/'; } } /** * @param string $from * @param string $to * * @return string */ function api_get_relative_path($from, $to) { // some compatibility fixes for Windows paths $from = is_dir($from) ? rtrim($from, '\/').'/' : $from; $to = is_dir($to) ? rtrim($to, '\/').'/' : $to; $from = str_replace('\\', '/', $from); $to = str_replace('\\', '/', $to); $from = explode('/', $from); $to = explode('/', $to); $relPath = $to; foreach ($from as $depth => $dir) { // find first non-matching dir if ($dir === $to[$depth]) { // ignore this directory array_shift($relPath); } else { // get number of remaining dirs to $from $remaining = count($from) - $depth; if ($remaining > 1) { // add traversals up to first matching dir $padLength = (count($relPath) + $remaining - 1) * -1; $relPath = array_pad($relPath, $padLength, '..'); break; } else { $relPath[0] = './'.$relPath[0]; } } } return implode('/', $relPath); } /** * Unserialize content using Brummann\Polyfill\Unserialize. * * @param string $type * @param string $serialized * * @return mixed */ function api_unserialize_content($type, $serialized, $ignoreErrors = false) { switch ($type) { case 'career': case 'sequence_graph': $allowedClasses = [ \Fhaculty\Graph\Graph::class, \Fhaculty\Graph\Set\VerticesMap::class, \Fhaculty\Graph\Set\Vertices::class, \Fhaculty\Graph\Set\Edges::class, ]; break; case 'lp': $allowedClasses = [ learnpath::class, learnpathItem::class, aicc::class, aiccBlock::class, aiccItem::class, aiccObjective::class, aiccResource::class, scorm::class, scormItem::class, scormMetadata::class, scormOrganization::class, scormResource::class, Link::class, LpItem::class, ]; break; case 'course': $allowedClasses = [ \Chamilo\CourseBundle\Component\CourseCopy\Course::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Announcement::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Attendance::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\CalendarEvent::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\CourseCopyLearnpath::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\CourseCopyTestCategory::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\CourseDescription::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\CourseSession::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Document::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Forum::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\ForumCategory::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\ForumPost::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\ForumTopic::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Glossary::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\GradeBookBackup::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Link::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\LinkCategory::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Quiz::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\QuizQuestion::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\QuizQuestionOption::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\ScormDocument::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Survey::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\SurveyInvitation::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\SurveyQuestion::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Thematic::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\ToolIntro::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Wiki::class, \Chamilo\CourseBundle\Component\CourseCopy\Resources\Work::class, stdClass::class, ]; break; case 'not_allowed_classes': default: $allowedClasses = false; } if ($ignoreErrors) { return @UnserializeApi::unserialize( $serialized, ['allowed_classes' => $allowedClasses] ); } return UnserializeApi::unserialize( $serialized, ['allowed_classes' => $allowedClasses] ); } /** * @param string $template * * @return string */ function api_find_template($template) { return Template::findTemplateFilePath($template); } /** * @return array */ function api_get_language_list_for_flag() { $table = Database::get_main_table(TABLE_MAIN_LANGUAGE); $sql = "SELECT english_name, isocode FROM $table ORDER BY original_name ASC"; static $languages = []; if (empty($languages)) { $result = Database::query($sql); while ($row = Database::fetch_array($result)) { $languages[$row['english_name']] = $row['isocode']; } $languages['english'] = 'gb'; } return $languages; } /** * @param string $name * * @return \ZipStream\ZipStream */ function api_create_zip($name) { $zipStreamOptions = new \ZipStream\Option\Archive(); $zipStreamOptions->setSendHttpHeaders(true); $zipStreamOptions->setContentDisposition('attachment'); $zipStreamOptions->setContentType('application/x-zip'); $zip = new \ZipStream\ZipStream($name, $zipStreamOptions); return $zip; } /** * @return string */ function api_get_language_translate_html() { $translate = api_get_configuration_value('translate_html'); if (!$translate) { return ''; } $languageList = api_get_languages(); $hideAll = ''; foreach ($languageList['all'] as $language) { $hideAll .= ' $("span:lang('.$language['isocode'].')").filter( function(e, val) { // Only find the spans if they have set the lang if ($(this).attr("lang") == null) { return false; } // Ignore ckeditor classes return !this.className.match(/cke(.*)/); }).hide();'."\n"; } $userInfo = api_get_user_info(); $languageId = api_get_language_id($userInfo['language']); $languageInfo = api_get_language_info($languageId); $isoCode = 'en'; if (!empty($languageInfo)) { $isoCode = $languageInfo['isocode']; } return ' $(function() { '.$hideAll.' var defaultLanguageFromUser = "'.$isoCode.'"; $("span:lang('.$isoCode.')").filter( function() { // Ignore ckeditor classes return !this.className.match(/cke(.*)/); }).show(); var defaultLanguage = ""; var langFromUserFound = false; $(this).find("span").filter( function() { // Ignore ckeditor classes return !this.className.match(/cke(.*)/); }).each(function() { defaultLanguage = $(this).attr("lang"); if (defaultLanguage) { $(this).before().next("br").remove(); if (defaultLanguageFromUser == defaultLanguage) { langFromUserFound = true; } } }); // Show default language if (langFromUserFound == false && defaultLanguage) { $("span:lang("+defaultLanguage+")").filter( function() { // Ignore ckeditor classes return !this.className.match(/cke(.*)/); }).show(); } }); '; } /** * Filter a multi-language HTML string (for the multi-language HTML * feature) into the given language (strip the rest). * * @param string $htmlString The HTML string to "translate". Usually
Some string
Une chaîne
* @param string $language The language in which we want to get the * * @throws Exception * * @return string The filtered string in the given language, or the full string if no translated string was identified */ function api_get_filtered_multilingual_HTML_string($htmlString, $language = null) { if (api_get_configuration_value('translate_html') != true) { return $htmlString; } $userInfo = api_get_user_info(); $languageId = 0; if (!empty($language)) { $languageId = api_get_language_id($language); } elseif (!empty($userInfo['language'])) { $languageId = api_get_language_id($userInfo['language']); } $languageInfo = api_get_language_info($languageId); $isoCode = 'en'; if (!empty($languageInfo)) { $isoCode = $languageInfo['isocode']; } // Split HTML in the separate language strings // Note: some strings might look like...
but others might be like combine 2 in 1
if (!preg_match('/