moodle/user/edit_form.php

<?php

if (!defined('MOODLE_INTERNAL')) {
    die('Direct access to this script is forbidden.');    ///  It must be included from a Moodle page
}

require_once($CFG->dirroot.'/lib/formslib.php');

class user_edit_form extends moodleform {

    // Define the form
    function definition () {
        global $CFG, $COURSE, $USER;

        $mform =& $this->_form;
        $editoroptions = null;
        $filemanageroptions = null;
        $userid = $USER->id;

        if (is_array($this->_customdata)) {
            if (array_key_exists('editoroptions', $this->_customdata)) {
                $editoroptions = $this->_customdata['editoroptions'];
            }
            if (array_key_exists('filemanageroptions', $this->_customdata)) {
                $filemanageroptions = $this->_customdata['filemanageroptions'];
            }
            if (array_key_exists('userid', $this->_customdata)) {
                $userid = $this->_customdata['userid'];
            }
        }
        //Accessibility: "Required" is bad legend text.
        $strgeneral  = get_string('general');
        $strrequired = get_string('required');

        /// Add some extra hidden fields
        $mform->addElement('hidden', 'id');
        $mform->setType('id', PARAM_INT);
        $mform->addElement('hidden', 'course', $COURSE->id);
        $mform->setType('course', PARAM_INT);

        /// Print the required moodle fields first
        $mform->addElement('header', 'moodle', $strgeneral);

        /// shared fields
        useredit_shared_definition($mform, $editoroptions, $filemanageroptions);

        /// extra settigs
        if (!empty($CFG->disableuserimages)) {
            $mform->removeElement('deletepicture');
            $mform->removeElement('imagefile');
            $mform->removeElement('imagealt');
        }

        /// Next the customisable profile fields
        profile_definition($mform, $userid);

        $this->add_action_buttons(false, get_string('updatemyprofile'));
    }

    function definition_after_data() {
        global $CFG, $DB, $OUTPUT;

        $mform =& $this->_form;
        $userid = $mform->getElementValue('id');

        // if language does not exist, use site default lang
        if ($langsel = $mform->getElementValue('lang')) {
            $lang = reset($langsel);
            // check lang exists
            if (!get_string_manager()->translation_exists($lang, false)) {
                $lang_el =& $mform->getElement('lang');
                $lang_el->setValue($CFG->lang);
            }
        }


        if ($user = $DB->get_record('user', array('id'=>$userid))) {

            // remove description
            if (empty($user->description) && !empty($CFG->profilesforenrolledusersonly) && !$DB->record_exists('role_assignments', array('userid'=>$userid))) {
                $mform->removeElement('description_editor');
            }

            // print picture
            $context = context_user::instance($user->id, MUST_EXIST);
            $fs = get_file_storage();
            $hasuploadedpicture = ($fs->file_exists($context->id, 'user', 'icon', 0, '/', 'f2.png') || $fs->file_exists($context->id, 'user', 'icon', 0, '/', 'f2.jpg'));
            if (!empty($user->picture) && $hasuploadedpicture) {
                $imagevalue = $OUTPUT->user_picture($user, array('courseid' => SITEID, 'size'=>64));
            } else {
                $imagevalue = get_string('none');
            }
            $imageelement = $mform->getElement('currentpicture');
            $imageelement->setValue($imagevalue);

            if ($mform->elementExists('deletepicture') && !$hasuploadedpicture) {
                $mform->removeElement('deletepicture');
            }

            /// disable fields that are locked by auth plugins
            $fields = get_user_fieldnames();
            $authplugin = get_auth_plugin($user->auth);
            foreach ($fields as $field) {
                if (!$mform->elementExists($field)) {
                    continue;
                }
                $configvariable = 'field_lock_' . $field;
                if (isset($authplugin->config->{$configvariable})) {
                    if ($authplugin->config->{$configvariable} === 'locked') {
                        $mform->hardFreeze($field);
                        $mform->setConstant($field, $user->$field);
                    } else if ($authplugin->config->{$configvariable} === 'unlockedifempty' and $user->$field != '') {
                        $mform->hardFreeze($field);
                        $mform->setConstant($field, $user->$field);
                    }
                }
            }

            /// Next the customisable profile fields
            profile_definition_after_data($mform, $user->id);

        } else {
            profile_definition_after_data($mform, 0);
        }
    }

    function validation($usernew, $files) {
        global $CFG, $DB;

        $errors = parent::validation($usernew, $files);

        $usernew = (object)$usernew;
        $user    = $DB->get_record('user', array('id'=>$usernew->id));

        // validate email
        if (!isset($usernew->email)) {
            // mail not confirmed yet
        } else if (!validate_email($usernew->email)) {
            $errors['email'] = get_string('invalidemail');
        } else if (($usernew->email !== $user->email) and $DB->record_exists('user', array('email'=>$usernew->email, 'mnethostid'=>$CFG->mnet_localhost_id))) {
            $errors['email'] = get_string('emailexists');
        }

        if (isset($usernew->email) and $usernew->email === $user->email and over_bounce_threshold($user)) {
            $errors['email'] = get_string('toomanybounces');
        }

        if (isset($usernew->email) and !empty($CFG->verifychangedemail) and !isset($errors['email']) and !has_capability('moodle/user:update', context_system::instance())) {
            $errorstr = email_is_not_allowed($usernew->email);
            if ($errorstr !== false) {
                $errors['email'] = $errorstr;
            }
        }

        /// Next the customisable profile fields
        $errors += profile_validation($usernew, $files);

        return $errors;
    }
}
files MDL-20601 Conversion of many of the uses of print_textarea, and the mforms htmleditor to the new editor Please forgive me if I have missed converting any output statements. If you do find an output statement that is not formatting correctly please refere to the table I added to this bug in regards to how it should be formatted. 2009-11-04 06:14:06 +00:00			`<?php`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00
MDL-22388 Added some checks to kill these scripts dead with an unequivocal notice unless included properly from a Moodle script. 2010-05-13 02:02:05 +00:00			`if (!defined('MOODLE_INTERNAL')) {`
			`die('Direct access to this script is forbidden.'); /// It must be included from a Moodle page`
			`}`

MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`require_once($CFG->dirroot.'/lib/formslib.php');`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00
			`class user_edit_form extends moodleform {`

			`// Define the form`
			`function definition () {`
MDL-32787 user: rule required for custom profile fields applies to all users editing own profile 2012-05-15 21:53:09 +04:00			`global $CFG, $COURSE, $USER;`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`$mform =& $this->_form;`
MDL-32787 user: rule required for custom profile fields applies to all users editing own profile 2012-05-15 21:53:09 +04:00			`$editoroptions = null;`
			`$filemanageroptions = null;`
			`$userid = $USER->id;`

			`if (is_array($this->_customdata)) {`
			`if (array_key_exists('editoroptions', $this->_customdata)) {`
			`$editoroptions = $this->_customdata['editoroptions'];`
			`}`
			`if (array_key_exists('filemanageroptions', $this->_customdata)) {`
			`$filemanageroptions = $this->_customdata['filemanageroptions'];`
			`}`
			`if (array_key_exists('userid', $this->_customdata)) {`
			`$userid = $this->_customdata['userid'];`
			`}`
MDL-33425 user: Replaced filepicker with filemanager on edit profile page 2012-06-13 17:27:17 +08:00			`}`
Fixes MDL-11648, "Required" is inappropriate text for legend in user profile edit form. 2007-10-08 13:55:53 +00:00			`//Accessibility: "Required" is bad legend text.`
			`$strgeneral = get_string('general');`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00			`$strrequired = get_string('required');`

			`/// Add some extra hidden fields`
just amended some of the set_defaults stuff 2007-01-12 08:22:56 +00:00			`$mform->addElement('hidden', 'id');`
MDL-20353 adding missing data types of hidden form fields 2009-09-26 17:07:08 +00:00			`$mform->setType('id', PARAM_INT);`
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`$mform->addElement('hidden', 'course', $COURSE->id);`
MDL-20353 adding missing data types of hidden form fields 2009-09-26 17:07:08 +00:00			`$mform->setType('course', PARAM_INT);`
added hardFreeze method and used it in edit_form.php it ensures frozen elements have persistantFreeze property set to false. 2007-01-12 06:19:39 +00:00
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00			`/// Print the required moodle fields first`
Fixes MDL-11648, "Required" is inappropriate text for legend in user profile edit form. 2007-10-08 13:55:53 +00:00			`$mform->addElement('header', 'moodle', $strgeneral);`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00
MDL-8096 user edit form - some more refactoring and fixes 2007-01-26 18:42:47 +00:00			`/// shared fields`
MDL-33425 user: Replaced filepicker with filemanager on edit profile page 2012-06-13 17:27:17 +08:00			`useredit_shared_definition($mform, $editoroptions, $filemanageroptions);`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`/// extra settigs`
MDL-38654 do not test $CFG->gdversion GD PHP extension is now required. Add-ons need to remove $CFG->gdversion tests. The worst case regression is that add-on will think GD is not available. 2013-03-22 16:51:18 +01:00			`if (!empty($CFG->disableuserimages)) {`
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`$mform->removeElement('deletepicture');`
			`$mform->removeElement('imagefile');`
			`$mform->removeElement('imagealt');`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00			`}`
added hardFreeze method and used it in edit_form.php it ensures frozen elements have persistantFreeze property set to false. 2007-01-12 06:19:39 +00:00
MDL-8096 - refactored and cleanedup custom profiles, user edit form fixes TODO: fix comments and docs 2007-01-26 13:11:06 +00:00			`/// Next the customisable profile fields`
MDL-32787 user: rule required for custom profile fields applies to all users editing own profile 2012-05-15 21:53:09 +04:00			`profile_definition($mform, $userid);`
MDL-8096 - refactored and cleanedup custom profiles, user edit form fixes TODO: fix comments and docs 2007-01-26 13:11:06 +00:00
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`$this->add_action_buttons(false, get_string('updatemyprofile'));`
			`}`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`function definition_after_data() {`
MDL-19825 upgraded calls to print_table, print_single_button, print_user_picture, print_container* and notice_yesno 2009-08-20 08:50:22 +00:00			`global $CFG, $DB, $OUTPUT;`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`$mform =& $this->_form;`
			`$userid = $mform->getElementValue('id');`
added hardFreeze method and used it in edit_form.php it ensures frozen elements have persistantFreeze property set to false. 2007-01-12 06:19:39 +00:00
MDL-6236 user editing - Default language not used instead of nonexisting one in user lang field - first lang chosen instead; merged from MODOLE_18_STABLE 2007-04-16 18:30:52 +00:00			`// if language does not exist, use site default lang`
			`if ($langsel = $mform->getElementValue('lang')) {`
			`$lang = reset($langsel);`
Detect non-utf8 langs in user edition forms. MDL-16845 MDL-11829 ; merged from 19_STABLE 2008-10-10 21:30:07 +00:00			`// check lang exists`
MDL-22015 fixed regression in last commit, sorry 2010-04-14 14:43:51 +00:00			`if (!get_string_manager()->translation_exists($lang, false)) {`
MDL-6236 user editing - Default language not used instead of nonexisting one in user lang field - first lang chosen instead; merged from MODOLE_18_STABLE 2007-04-16 18:30:52 +00:00			`$lang_el =& $mform->getElement('lang');`
			`$lang_el->setValue($CFG->lang);`
			`}`
			`}`

"MDL-17143, don't display the user description at all when user isn't enrolled in any courses, merged and modified from 1.9" 2008-11-10 03:06:27 +00:00
MDL-14679 towards /user conversion 2008-05-30 22:11:31 +00:00			`if ($user = $DB->get_record('user', array('id'=>$userid))) {`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00
"MDL-17143, don't display the user description at all when user isn't enrolled in any courses, merged and modified from 1.9" 2008-11-10 03:06:27 +00:00			`// remove description`
"MDL-17143, use record_exists" 2008-11-12 01:51:28 +00:00			`if (empty($user->description) && !empty($CFG->profilesforenrolledusersonly) && !$DB->record_exists('role_assignments', array('userid'=>$userid))) {`
files MDL-20601 Conversion of many of the uses of print_textarea, and the mforms htmleditor to the new editor Please forgive me if I have missed converting any output statements. If you do find an output statement that is not formatting correctly please refere to the table I added to this bug in regards to how it should be formatted. 2009-11-04 06:14:06 +00:00			`$mform->removeElement('description_editor');`
"MDL-17143, don't display the user description at all when user isn't enrolled in any courses, merged and modified from 1.9" 2008-11-10 03:06:27 +00:00			`}`

Just some formatting 2007-02-25 06:58:10 +00:00			`// print picture`
MDL-38654 do not test $CFG->gdversion GD PHP extension is now required. Add-ons need to remove $CFG->gdversion tests. The worst case regression is that add-on will think GD is not available. 2013-03-22 16:51:18 +01:00			`$context = context_user::instance($user->id, MUST_EXIST);`
			`$fs = get_file_storage();`
			`$hasuploadedpicture = ($fs->file_exists($context->id, 'user', 'icon', 0, '/', 'f2.png') \|\| $fs->file_exists($context->id, 'user', 'icon', 0, '/', 'f2.jpg'));`
			`if (!empty($user->picture) && $hasuploadedpicture) {`
			`$imagevalue = $OUTPUT->user_picture($user, array('courseid' => SITEID, 'size'=>64));`
			`} else {`
			`$imagevalue = get_string('none');`
			`}`
			`$imageelement = $mform->getElement('currentpicture');`
			`$imageelement->setValue($imagevalue);`
MDL-21676 user: Implemented support for Gravatar profile pictures Big thanks to the developers who put effort into this improvement: * Jonathan Robson <jonathan.robson@remote-learner.net> * Jonathan Harker <jonathan@catalyst.net.nz> 2011-09-20 11:40:22 +12:00
MDL-38654 do not test $CFG->gdversion GD PHP extension is now required. Add-ons need to remove $CFG->gdversion tests. The worst case regression is that add-on will think GD is not available. 2013-03-22 16:51:18 +01:00			`if ($mform->elementExists('deletepicture') && !$hasuploadedpicture) {`
			`$mform->removeElement('deletepicture');`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00			`}`
added hardFreeze method and used it in edit_form.php it ensures frozen elements have persistantFreeze property set to false. 2007-01-12 06:19:39 +00:00
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`/// disable fields that are locked by auth plugins`
			`$fields = get_user_fieldnames();`
			`$authplugin = get_auth_plugin($user->auth);`
			`foreach ($fields as $field) {`
			`if (!$mform->elementExists($field)) {`
			`continue;`
			`}`
			`$configvariable = 'field_lock_' . $field;`
			`if (isset($authplugin->config->{$configvariable})) {`
			`if ($authplugin->config->{$configvariable} === 'locked') {`
MDL-16839 forms: workaround for problematic hard frozen values; merged from MOODLE_19_STABLE 2008-10-13 19:39:27 +00:00			`$mform->hardFreeze($field);`
			`$mform->setConstant($field, $user->$field);`
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`} else if ($authplugin->config->{$configvariable} === 'unlockedifempty' and $user->$field != '') {`
MDL-16839 forms: workaround for problematic hard frozen values; merged from MOODLE_19_STABLE 2008-10-13 19:39:27 +00:00			`$mform->hardFreeze($field);`
			`$mform->setConstant($field, $user->$field);`
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`}`
			`}`
Fields set as locked are now disabled using the forms class rather than javascript. 2007-01-05 06:57:30 +00:00			`}`
MDL-19825 upgraded calls to print_table, print_single_button, print_user_picture, print_container* and notice_yesno 2009-08-20 08:50:22 +00:00
MDL-18265 fixed regressions by hardfreeze security workaround - defaults were overriding locked values 2009-03-07 20:59:25 +00:00			`/// Next the customisable profile fields`
			`profile_definition_after_data($mform, $user->id);`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00
MDL-18265 fixed regressions by hardfreeze security workaround - defaults were overriding locked values 2009-03-07 20:59:25 +00:00			`} else {`
			`profile_definition_after_data($mform, 0);`
			`}`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00			`}`

MDL-12133 validate() method tidying up; merged from MOODLE_19_STABLE 2007-11-23 22:15:07 +00:00			`function validation($usernew, $files) {`
MDL-14679 towards /user conversion 2008-05-30 22:11:31 +00:00			`global $CFG, $DB;`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00
MDL-12133 validate() method tidying up; merged from MOODLE_19_STABLE 2007-11-23 22:15:07 +00:00			`$errors = parent::validation($usernew, $files);`

added hardFreeze method and used it in edit_form.php it ensures frozen elements have persistantFreeze property set to false. 2007-01-12 06:19:39 +00:00			`$usernew = (object)$usernew;`
MDL-14679 towards /user conversion 2008-05-30 22:11:31 +00:00			`$user = $DB->get_record('user', array('id'=>$usernew->id));`
added hardFreeze method and used it in edit_form.php it ensures frozen elements have persistantFreeze property set to false. 2007-01-12 06:19:39 +00:00
MDL-8096 - rewritten standard edit form and other fixes; new custom profile fields still missing 2007-01-25 18:02:48 +00:00			`// validate email`
MDL-17559 user edit: fixed undefined email property warnings; merged from MOODLE_19_STABLE 2008-12-08 20:16:49 +00:00			`if (!isset($usernew->email)) {`
			`// mail not confirmed yet`
			`} else if (!validate_email($usernew->email)) {`
MDL-12133 validate() method tidying up; merged from MOODLE_19_STABLE 2007-11-23 22:15:07 +00:00			`$errors['email'] = get_string('invalidemail');`
MDL-14679 towards /user conversion 2008-05-30 22:11:31 +00:00			`} else if (($usernew->email !== $user->email) and $DB->record_exists('user', array('email'=>$usernew->email, 'mnethostid'=>$CFG->mnet_localhost_id))) {`
MDL-12133 validate() method tidying up; merged from MOODLE_19_STABLE 2007-11-23 22:15:07 +00:00			`$errors['email'] = get_string('emailexists');`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00			`}`
MDL-8096 user edit form - some more refactoring and fixes 2007-01-26 18:42:47 +00:00
MDL-17559 user edit: fixed undefined email property warnings; merged from MOODLE_19_STABLE 2008-12-08 20:16:49 +00:00			`if (isset($usernew->email) and $usernew->email === $user->email and over_bounce_threshold($user)) {`
MDL-12133 validate() method tidying up; merged from MOODLE_19_STABLE 2007-11-23 22:15:07 +00:00			`$errors['email'] = get_string('toomanybounces');`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00			`}`

MDL-34460 Librairies: Replaced deprecated get_context_instance() 2012-07-26 11:38:02 +08:00			`if (isset($usernew->email) and !empty($CFG->verifychangedemail) and !isset($errors['email']) and !has_capability('moodle/user:update', context_system::instance())) {`
MDL-16365 domain restrictions are now optional when changing email address; merged from MOODLE_19_STABLE 2008-09-24 17:00:49 +00:00			`$errorstr = email_is_not_allowed($usernew->email);`
			`if ($errorstr !== false) {`
			`$errors['email'] = $errorstr;`
			`}`
			`}`

MDL-8096 - refactored and cleanedup custom profiles, user edit form fixes TODO: fix comments and docs 2007-01-26 13:11:06 +00:00			`/// Next the customisable profile fields`
MDL-12133 validate() method tidying up; merged from MOODLE_19_STABLE 2007-11-23 22:15:07 +00:00			`$errors += profile_validation($usernew, $files);`
MDL-8096 - refactored and cleanedup custom profiles, user edit form fixes TODO: fix comments and docs 2007-01-26 13:11:06 +00:00
MDL-12133 validate() method tidying up; merged from MOODLE_19_STABLE 2007-11-23 22:15:07 +00:00			`return $errors;`
Profile page using the new forms class. Code to allow customisable fields. 2007-01-05 02:14:06 +00:00			`}`
			`}`

MDL-20700 coding style cleanup - cvs keywords removed, closign php tag removed, trailing whitespace cleanup 2009-11-04 08:11:02 +00:00