chamilo-lms/main/admin/index.php

<?php
/* For licensing terms, see /license.txt */
/**
 * Index page of the admin tools
 * @package chamilo.admin
 */
// Resetting the course id.
$cidReset = true;

// Including some necessary chamilo files.
require_once '../inc/global.inc.php';

// Setting the section (for the tabs).
$this_section = SECTION_PLATFORM_ADMIN;

// Access restrictions.
api_protect_admin_script(true);

$nameTools = get_lang('PlatformAdmin');

$accessUrlId = 0;
$adminExtraContentDir = api_get_path(SYS_PATH) . "home/admin/";

if (api_is_multiple_url_enabled()) {
    $accessUrlId = api_get_current_access_url_id();

    if ($accessUrlId != -1) {
        $urlInfo = api_get_access_url($accessUrlId);
        $url = api_remove_trailing_slash(preg_replace('/https?:\/\//i', '', $urlInfo['url']));
        $cleanUrl = str_replace('/', '-', $url);
        $adminExtraContentDir = api_get_path(SYS_PATH) . "home/$cleanUrl/admin/";
    }
}

// Displaying the header
$message = '';

if (api_is_platform_admin()) {
    if (is_dir(api_get_path(SYS_ARCHIVE_PATH)) && !is_writable(api_get_path(SYS_ARCHIVE_PATH))) {
        $message = Display::return_message(get_lang('ArchivesDirectoryNotWriteableContactAdmin'), 'warning');
    }

    /* ACTION HANDLING */
    if (!empty($_POST['Register'])) {
        api_register_campus(!$_POST['donotlistcampus']);
        $message = Display :: return_message(get_lang('VersionCheckEnabled'), 'confirmation');
    }
    $keyword_url = Security::remove_XSS((empty($_GET['keyword']) ? '' : $_GET['keyword']));
}

if (isset($_GET['msg']) && isset($_GET['type'])) {
    if (in_array($_GET['msg'], array('ArchiveDirCleanupSucceeded', 'ArchiveDirCleanupFailed'))) {
        switch ($_GET['type']) {
            case 'error':
                $message = Display::return_message(get_lang($_GET['msg']), 'error');
                break;
            case 'confirmation':
                $message = Display::return_message(get_lang($_GET['msg']), 'confirm');
        }
    }
}

$blocks = array();

// Instantiate Hook Event for Admin Block
$hook = HookAdminBlock::create();
if (!empty($hook)) {
    // If not empty, then notify Pre process to Hook Observers for Admin Block
    $hook->setEventData(array('blocks' => $blocks));
    $data = $hook->notifyAdminBlock(HOOK_EVENT_TYPE_PRE);
    // Check if blocks data is not null
    if (isset($data['blocks'])) {
        // Get modified blocks
        $blocks = $data['blocks'];
    }
}

/* Users */

$blocks['users']['icon'] = Display::return_icon('members.gif', get_lang('Users'), array(), ICON_SIZE_MEDIUM, false);
$blocks['users']['label'] = api_ucfirst(get_lang('Users'));
$blocks['users']['class'] = 'block-admin-users';

$usersBlockExtraFile = "{$adminExtraContentDir}block-admin-users_extra.html";

if (file_exists($usersBlockExtraFile)) {
    $blocks['users']['extraContent'] = file_get_contents($usersBlockExtraFile);
}

if (api_is_platform_admin()) {
    $blocks['users']['editable'] = true;

    $search_form = '
        <form method="get" class="form-inline" action="user_list.php">
            <div class="form-group">
                <input class="form-control" type="text" name="keyword" value="">
                <button class="btn btn-default" type="submit">
                    <i class="fa fa-search"></i> ' . get_lang('Search') . '
                </button>
            </div>
        </form>';
    $blocks['users']['search_form'] = $search_form;
    $items = array(
        array('url' => 'user_list.php', 'label' => get_lang('UserList')),
        array('url' => 'user_add.php', 'label' => get_lang('AddUsers')),
        array('url' => 'user_export.php', 'label' => get_lang('ExportUserListXMLCSV')),
        array('url' => 'user_import.php', 'label' => get_lang('ImportUserListXMLCSV')),
        array('url' => 'user_update_import.php', 'label' => get_lang('EditUserListCSV')),
    );

    if (isset($extAuthSource) && isset($extAuthSource['extldap']) && count($extAuthSource['extldap']) > 0) {
        $items[] = array('url' => 'ldap_users_list.php', 'label' => get_lang('ImportLDAPUsersIntoPlatform'));
    }
    $items[] = array('url' => 'extra_fields.php?type=user', 'label' => get_lang('ManageUserFields'));
} else {
    $items = array(
        array('url' => 'user_list.php', 'label' => get_lang('UserList')),
        array('url' => 'user_add.php', 'label' => get_lang('AddUsers')),
        array('url' => 'user_import.php', 'label' => get_lang('ImportUserListXMLCSV')),
    );
}

$items[] = array('url' => 'usergroups.php', 'label' => get_lang('Classes'));

$blocks['users']['items'] = $items;
$blocks['users']['extra'] = null;

if (api_is_platform_admin()) {
    /* Courses */
    $blocks['courses']['icon'] = Display::return_icon(
        'course.gif',
        get_lang('Courses'),
        array(),
        ICON_SIZE_MEDIUM,
        false
    );
    $blocks['courses']['label'] = api_ucfirst(get_lang('Courses'));
    $blocks['courses']['class'] = 'block-admin-courses';
    $blocks['courses']['editable'] = true;

    $coursesBlockExtraFile = "{$adminExtraContentDir}block-admin-courses_extra.html";

    if (file_exists($coursesBlockExtraFile)) {
        $blocks['courses']['extraContent'] = file_get_contents($coursesBlockExtraFile);
    }

    $search_form = ' <form method="get" class="form-inline" action="course_list.php">
            <div class="form-group">
                <input class="form-control" type="text" name="keyword" value="">
                <button class="btn btn-default" type="submit">
                    <i class="fa fa-search"></i> ' . get_lang('Search') . '
                </button>
            </div>
        </form>';
    $blocks['courses']['search_form'] = $search_form;

    $items = array();
    $items[] = array('url' => 'course_list.php', 'label' => get_lang('CourseList'));
    $items[] = array('url' => 'course_add.php', 'label' => get_lang('AddCourse'));

    if (api_get_setting('course_validation') == 'true') {

        $items[] = array('url' => 'course_request_review.php', 'label' => get_lang('ReviewCourseRequests'));
        $items[] = array('url' => 'course_request_accepted.php', 'label' => get_lang('AcceptedCourseRequests'));
        $items[] = array('url' => 'course_request_rejected.php', 'label' => get_lang('RejectedCourseRequests'));
    }

    $items[] = array('url' => 'course_export.php', 'label' => get_lang('ExportCourses'));
    $items[] = array('url' => 'course_import.php', 'label' => get_lang('ImportCourses'));
    $items[] = array('url' => 'course_category.php', 'label' => get_lang('AdminCategories'));
    $items[] = array('url' => 'subscribe_user2course.php', 'label' => get_lang('AddUsersToACourse'));
    $items[] = array('url' => 'course_user_import.php', 'label' => get_lang('ImportUsersToACourse'));
    //$items[] = array('url'=>'course_intro_pdf_import.php', 	'label' => get_lang('ImportPDFIntroToCourses'));

    if (api_get_setting('gradebook_enable_grade_model') == 'true') {
        $items[] = array('url' => 'grade_models.php', 'label' => get_lang('GradeModel'));
    }

    if (isset($extAuthSource) && isset($extAuthSource['ldap']) && count($extAuthSource['ldap']) > 0) {
        $items[] = array('url' => 'ldap_import_students.php', 'label' => get_lang('ImportLDAPUsersIntoCourse'));
    }

    $items[] = array('url' => 'extra_fields.php?type=course', 'label' => get_lang('ManageCourseFields'));

    $blocks['courses']['items'] = $items;
    $blocks['courses']['extra'] = null;

    /* Platform */
    $blocks['platform']['icon'] = Display::return_icon(
        'platform.png',
        get_lang('Platform'),
        array(),
        ICON_SIZE_MEDIUM,
        false
    );
    $blocks['platform']['label'] = api_ucfirst(get_lang('Platform'));
    $blocks['platform']['class'] = 'block-admin-platform';
    $blocks['platform']['editable'] = true;

    $platformBlockExtraFile = "{$adminExtraContentDir}block-admin-platform_extra.html";

    if (file_exists($platformBlockExtraFile)) {
        $blocks['platform']['extraContent'] = file_get_contents($platformBlockExtraFile);
    }

    $search_form = ' <form method="get" action="settings.php" class="form-inline">
            <div class="form-group">
                <input class="form-control" type="text" name="search_field" value="" >
                <input type="hidden" value="search_setting" name="category">
                <button class="btn btn-default" type="submit">
                    <i class="fa fa-search"></i> ' . get_lang('Search') . '
                </button>
            </div>
        </form>';
    $blocks['platform']['search_form'] = $search_form;

    $items = array();
    $items[] = array('url' => 'settings.php', 'label' => get_lang('PlatformConfigSettings'));
    $items[] = array('url' => 'languages.php', 'label' => get_lang('Languages'));
    $items[] = array('url' => 'settings.php?category=Plugins', 'label' => get_lang('Plugins'));
    $items[] = array('url' => 'settings.php?category=Regions', 'label' => get_lang('Regions'));
    $items[] = array('url' => 'system_announcements.php', 'label' => get_lang('SystemAnnouncements'));
    $items[] = array(
        'url' => api_get_path(WEB_CODE_PATH) . 'calendar/agenda_js.php?type=admin',
        'label' => get_lang('GlobalAgenda')
    );
    $items[] = array('url' => 'configure_homepage.php', 'label' => get_lang('ConfigureHomePage'));
    $items[] = array('url' => 'configure_inscription.php', 'label' => get_lang('ConfigureInscription'));
    $items[] = array('url' => 'statistics/index.php', 'label' => get_lang('Statistics'));
    $items[] = array(
        'url' => api_get_path(WEB_CODE_PATH) . 'mySpace/company_reports.php',
        'label' => get_lang('Reports')
    );
    $items[] = array(
        'url' => api_get_path(WEB_CODE_PATH) . 'admin/teacher_time_report.php',
        'label' => get_lang('TeacherTimeReport')
    );

    /* Event settings */

    if (api_get_setting('activate_email_template') == 'true') {
        $items[] = array('url' => 'event_controller.php?action=listing', 'label' => get_lang('EventMessageManagement'));
    }

    if (!empty($_configuration['multiple_access_urls'])) {
        if (api_is_global_platform_admin()) {
            $items[] = array('url' => 'access_urls.php', 'label' => get_lang('ConfigureMultipleAccessURLs'));
        }
    }

    if (api_get_setting('allow_terms_conditions') == 'true') {
        $items[] = array('url' => 'legal_add.php', 'label' => get_lang('TermsAndConditions'));
    }
    $blocks['platform']['items'] = $items;
    $blocks['platform']['extra'] = null;
}

/* Sessions */
$blocks['sessions']['icon'] = Display::return_icon(
    'session.png',
    get_lang('Sessions'),
    array(),
    ICON_SIZE_MEDIUM,
    false
);
$blocks['sessions']['label'] = api_ucfirst(get_lang('Sessions'));
$blocks['sessions']['class'] = 'block-admin-sessions';

$sessionsBlockExtraFile = "{$adminExtraContentDir}block-admin-sessions_extra.html";

if (file_exists($sessionsBlockExtraFile)) {
    $blocks['sessions']['extraContent'] = file_get_contents($sessionsBlockExtraFile);
}

if (api_is_platform_admin()) {
    $blocks['sessions']['editable'] = true;
}
$sessionPath = api_get_path(WEB_CODE_PATH).'session/';

$search_form = ' <form method="GET" class="form-inline" action="'.$sessionPath.'session_list.php">
                    <div class="form-group">
                        <input class="form-control" type="text" name="keyword" value="">
                        <button class="btn btn-default" type="submit">
                            <i class="fa fa-search"></i> ' . get_lang('Search') . '
                        </button>
                    </div>
                </form>';
$blocks['sessions']['search_form'] = $search_form;
$items = array();
$items[] = array('url' => $sessionPath.'session_list.php', 'label' => get_lang('ListSession'));
$items[] = array('url' => $sessionPath.'session_add.php', 'label' => get_lang('AddSession'));
$items[] = array('url' => $sessionPath.'session_category_list.php', 'label' => get_lang('ListSessionCategory'));
$items[] = array('url' => $sessionPath.'session_import.php', 'label' => get_lang('ImportSessionListXMLCSV'));
$items[] = array('url' => $sessionPath.'session_import_drh.php', 'label' => get_lang('ImportSessionDrhList'));
if (isset($extAuthSource) && isset($extAuthSource['ldap']) && count($extAuthSource['ldap']) > 0) {
    $items[] = array(
        'url' => 'ldap_import_students_to_session.php',
        'label' => get_lang('ImportLDAPUsersIntoSession')
    );
}
$items[] = array(
    'url' => $sessionPath.'session_export.php',
    'label' => get_lang('ExportSessionListXMLCSV'),
);
$items[] = array(
    'url' => '../coursecopy/copy_course_session.php',
    'label' => get_lang('CopyFromCourseInSessionToAnotherSession')
);

if (api_is_platform_admin()) {
    // option only visible in development mode. Enable through code if required
    if (is_dir(api_get_path(SYS_TEST_PATH) . 'datafiller/')) {
        $items[] = array('url' => 'user_move_stats.php', 'label' => get_lang('MoveUserStats'));
    }
    $items[] = array('url' => 'career_dashboard.php', 'label' => get_lang('CareersAndPromotions'));
    $items[] = array('url' => 'extra_fields.php?type=session', 'label' => get_lang('ManageSessionFields'));
}

$blocks['sessions']['items'] = $items;
$blocks['sessions']['extra'] = null;

/* Settings */
if (api_is_platform_admin()) {

    $blocks['settings']['icon'] = Display::return_icon(
        'settings.png',
        get_lang('System'),
        array(),
        ICON_SIZE_MEDIUM,
        false
    );
    $blocks['settings']['label'] = api_ucfirst(get_lang('System'));
    $blocks['settings']['class'] = 'block-admin-settings';


    $items = array();
    $items[] = array('url' => 'special_exports.php', 'label' => get_lang('SpecialExports'));
    $items[] = array('url' => 'system_status.php', 'label' => get_lang('SystemStatus'));
    if (is_dir(api_get_path(SYS_TEST_PATH) . 'datafiller/')) {
        $items[] = array('url' => 'filler.php', 'label' => get_lang('DataFiller'));
    }

    $items[] = array('url' => 'archive_cleanup.php', 'label' => get_lang('ArchiveDirCleanup'));
    $items[] = array('url' => 'resource_sequence.php', 'label' => get_lang('ResourcesSequencing'));

    if (isset($_configuration['db_manager_enabled']) &&
        $_configuration['db_manager_enabled'] == true &&
        api_is_global_platform_admin()
    ) {
        $host = $_configuration['db_host'];
        $username = $_configuration['db_user'];
        $databaseName = $_configuration['main_database'];

        $items[] = array(
            'url' => "db.php?username=$username&db=$databaseName&server=$host",
            'label' => get_lang('Database Manager')
        );
    }

    $blocks['settings']['items'] = $items;
    $blocks['settings']['extra'] = null;
    $blocks['settings']['search_form'] = null;

    // Skills
    if (api_get_setting('allow_skills_tool') == 'true') {
        $blocks['skills']['icon'] = Display::return_icon(
            'logo.png',
            get_lang('Skills'),
            array(),
            ICON_SIZE_MEDIUM,
            false
        );
        $blocks['skills']['label'] = get_lang('Skills');
        $blocks['skills']['class'] = 'block-admin-skills';

        $items = array();
        //$items[] = array('url'=>'skills.php',           'label' => get_lang('SkillsTree'));
        $items[] = array('url' => 'skills_wheel.php', 'label' => get_lang('SkillsWheel'));
        $items[] = array('url' => 'skills_import.php', 'label' => get_lang('SkillsImport'));
        $items[] = array('url' => 'skill_list.php', 'label' => get_lang('ManageSkills'));
        //$items[] = array('url'=>'skills_profile.php',   'label' => get_lang('SkillsProfile'));
        $items[] = array(
            'url' => api_get_path(WEB_CODE_PATH) . 'social/skills_ranking.php',
            'label' => get_lang('SkillsRanking')
        );
        $items[] = array('url' => 'skills_gradebook.php', 'label' => get_lang('SkillsAndGradebooks'));
        $items[] = array(
            'url' => api_get_path(WEB_CODE_PATH) . 'admin/skill_badge.php',
            'label' => get_lang('Badges')
        );
        $blocks['skills']['items'] = $items;
        $blocks['skills']['extra'] = null;
        $blocks['skills']['search_form'] = null;
    }

    /* Chamilo.org */

    $blocks['chamilo']['icon'] = Display::return_icon('logo.png', 'Chamilo.org', array(), ICON_SIZE_MEDIUM, false);
    $blocks['chamilo']['label'] = 'Chamilo.org';
    $blocks['chamilo']['class'] = 'block-admin-chamilo';

    $items = array();
    $items[] = array('url' => 'http://www.chamilo.org/', 'label' => get_lang('ChamiloHomepage'));
    $items[] = array('url' => 'http://www.chamilo.org/forum', 'label' => get_lang('ChamiloForum'));

    $items[] = array('url' => '../../documentation/installation_guide.html', 'label' => get_lang('InstallationGuide'));
    $items[] = array('url' => '../../documentation/changelog.html', 'label' => get_lang('ChangesInLastVersion'));
    $items[] = array('url' => '../../documentation/credits.html', 'label' => get_lang('ContributorsList'));
    $items[] = array('url' => '../../documentation/security.html', 'label' => get_lang('SecurityGuide'));
    $items[] = array('url' => '../../documentation/optimization.html', 'label' => get_lang('OptimizationGuide'));
    $items[] = array('url' => 'http://www.chamilo.org/extensions', 'label' => get_lang('ChamiloExtensions'));
    $items[] = array(
        'url' => 'http://www.chamilo.org/en/providers',
        'label' => get_lang('ChamiloOfficialServicesProviders')
    );

    $blocks['chamilo']['items'] = $items;
    $blocks['chamilo']['extra'] = null;
    $blocks['chamilo']['search_form'] = null;

    // Version check
    $blocks['version_check']['icon'] = Display::return_icon('logo.png', 'Chamilo.org', array(), ICON_SIZE_MEDIUM, false);
    $blocks['version_check']['label'] = get_lang('VersionCheck');
    $blocks['version_check']['extra'] = '<div class="admin-block-version"></div>';
    $blocks['version_check']['search_form'] = null;
    $blocks['version_check']['items'] = null;
    $blocks['version_check']['class'] = 'block-admin-version_check';

    // Check Hook Event for Admin Block Object
    if (!empty($hook)) {
        // If not empty, then notify Post process to Hook Observers for Admin Block
        $hook->setEventData(array('blocks' => $blocks));
        $data = $hook->notifyAdminBlock(HOOK_EVENT_TYPE_POST);
        // Check if blocks data is not null
        if (isset($data['blocks'])) {
            // Get modified blocks
            $blocks = $data['blocks'];
        }
    }
}
$admin_ajax_url = api_get_path(WEB_AJAX_PATH) . 'admin.ajax.php';

$tpl = new Template();

// Display the Site Use Cookie Warning Validation
$useCookieValidation = api_get_setting('cookie_warning');
if ($useCookieValidation === 'true') {
    if (isset($_POST['acceptCookies'])) {
        api_set_site_use_cookie_warning_cookie();
    } else if (!api_site_use_cookie_warning_cookie_exist()) {
        if (Template::isToolBarDisplayedForUser()) {
            $tpl->assign('toolBarDisplayed', true);
        } else {
            $tpl->assign('toolBarDisplayed', false);
        }
        $tpl->assign('displayCookieUsageWarning', true);
    }
}

$tpl->assign('web_admin_ajax_url', $admin_ajax_url);
$tpl->assign('blocks', $blocks);

if (api_is_platform_admin()) {
    $extraContentForm = new FormValidator(
        'block_extra_data',
        'post',
        '#',
        null,
        array(
            'id' => 'block-extra-data',
            'class' => ''
        ),
        FormValidator::LAYOUT_BOX_NO_LABEL
    );
    $extraContentFormRenderer = $extraContentForm->getDefaultRenderer();

    if ($extraContentForm->validate()) {
        $extraData = $extraContentForm->getSubmitValues();
        $extraData = array_map(['Security', 'remove_XSS'], $extraData);

        if (!empty($extraData['block'])) {
            if (!is_dir($adminExtraContentDir)) {
                mkdir(
                    $adminExtraContentDir,
                    api_get_permissions_for_new_directories(),
                    true
                );
            }

            if (!is_writable($adminExtraContentDir)) {
                die;
            }

            $fullFilePath = $adminExtraContentDir . $extraData['block'];
            $fullFilePath .= "_extra.html";

            file_put_contents($fullFilePath, $extraData['extra_content']);

            Header::location(api_get_self());
        }
    }

    $extraContentForm->addTextarea(
        'extra_content',
        null,
        ['id' => 'extra_content']
    );
    $extraContentFormRenderer->setElementTemplate(
        '<div class="form-group">{element}</div>',
        'extra_content'
    );
    $extraContentForm->addElement(
        'hidden',
        'block',
        null,
        array(
            'id' => 'extra-block'
        )
    );
    $extraContentForm->addButtonExport(
        get_lang('Save'),
        'submit_extra_content'
    );

    $tpl->assign('extraDataForm', $extraContentForm->returnForm());
}

// The template contains the call to the AJAX version checker
$admin_template = $tpl->get_template('admin/settings_index.tpl');
$content = $tpl->fetch($admin_template);
$tpl->assign('content', $content);
$tpl->assign('message', $message);
$tpl->display_one_col_template();

// Note: version checking mechanism has now been moved to main/inc/ajax/admin.ajax.php