mirror_php/moodle
1
0
Fork 0
mirror of https://github.com/moodle/moodle.git synced 2025-02-22 02:49:53 +01:00
Code Issues Projects Releases Wiki Activity
moodle/admin/roles/assign.php

195 lines
7.4 KiB
PHP
Raw Normal View History

ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
<?php // $Id$
// Script to assign students to courses
require_once("../../config.php");
define("MAX_USERS_PER_PAGE", 5000);
$contextid = required_param('contextid',PARAM_INT); // context id
Commented out code that adds the new admin user to user_admins and user_teachers tables from user.php. Fixed notices in roles/assign.php.
2006-08-11 03:24:37 +00:00
$roleid = optional_param('roleid', 0, PARAM_INT); // required role id
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
$add = optional_param('add', 0, PARAM_BOOL);
$remove = optional_param('remove', 0, PARAM_BOOL);
$showall = optional_param('showall', 0, PARAM_BOOL);
$searchtext = optional_param('searchtext', '', PARAM_RAW); // search string
$previoussearch = optional_param('previoussearch', 0, PARAM_BOOL);
Removed tabs
2006-08-09 13:18:33 +00:00
$hidden = optional_param('hidden', 0, PARAM_BOOL); // whether this assignment is hidden
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
$previoussearch = ($searchtext != '') or ($previoussearch) ? 1:0;
Commented out code that adds the new admin user to user_admins and user_teachers tables from user.php. Fixed notices in roles/assign.php.
2006-08-11 03:24:37 +00:00
$timestart = optional_param('timestart', 0, PARAM_INT);
Removed tabs
2006-08-09 13:18:33 +00:00
$timeend = optional_param('timened', 0, PARAM_INT);
some UI changes
2006-08-14 08:46:44 +00:00
$userid = optional_param('userid', 0, PARAM_INT); // needed for user tabs
$courseid = optional_param('courseid', 0, PARAM_INT); // needed for user tabs
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
some UI changes
2006-08-14 08:46:44 +00:00
if ($courseid) {
$course = get_record('course', 'id', $courseid);
}
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
if (! $site = get_site()) {
redirect("$CFG->wwwroot/$CFG->admin/index.php");
}
SWEEPING CLEANUP The API was changed slightly so that has_capability now takes the whole $context object (we almost always have it anyway) The $kill thing was removed. If you want to assert a capability then use: require_capability('capname', $context); with optional variables to modify the error message Misc bugs here and there also removed and code tidied
2006-08-14 05:55:40 +00:00
if (! $context = get_context_instance_by_id($contextid)) {
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
error("Context ID was incorrect (can't find it)");
}
SWEEPING CLEANUP The API was changed slightly so that has_capability now takes the whole $context object (we almost always have it anyway) The $kill thing was removed. If you want to assert a capability then use: require_capability('capname', $context); with optional variables to modify the error message Misc bugs here and there also removed and code tidied
2006-08-14 05:55:40 +00:00
require_login();
require_capability('moodle/role:assign', $context);
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
Commented out code that adds the new admin user to user_admins and user_teachers tables from user.php. Fixed notices in roles/assign.php.
2006-08-11 03:24:37 +00:00
/**
SWEEPING CLEANUP The API was changed slightly so that has_capability now takes the whole $context object (we almost always have it anyway) The $kill thing was removed. If you want to assert a capability then use: require_capability('capname', $context); with optional variables to modify the error message Misc bugs here and there also removed and code tidied
2006-08-14 05:55:40 +00:00
* TODO XXX:
Commented out code that adds the new admin user to user_admins and user_teachers tables from user.php. Fixed notices in roles/assign.php.
2006-08-11 03:24:37 +00:00
* Permission check to see whether this user can assign people to this role
Removed tabs
2006-08-09 13:18:33 +00:00
* needs to be:
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
* 1) has the capability to assign
* 2) not in role_deny_grant
* end of permission checking
Removed tabs
2006-08-09 13:18:33 +00:00
*/
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
Removed tabs
2006-08-09 13:18:33 +00:00
$strassignusers = get_string('assignusers', 'role');
$strpotentialusers = get_string('potentialusers', 'role');
$strexistingusers = get_string('existingusers', 'role');
$straction = get_string('assignroles', 'role');
$strcurrentrole = get_string('currentrole', 'role');
$strcurrentcontext = get_string('currentcontext', 'role');
$strsearch = get_string('search');
$strshowall = get_string('showall');
some UI changes
2006-08-14 08:46:44 +00:00
$context = get_record('context', 'id', $contextid);
Removed tabs
2006-08-09 13:18:33 +00:00
adding functions and interface for access control - role assignment and role overrides
2006-08-18 08:01:16 +00:00
// role assigning permission checking
if ($roleid) {
if (!user_can_assign($context, $roleid)) {
error ('you can not override this role in this context');
}
}
some more UI change
2006-08-16 09:11:43 +00:00
$participants = get_string("participants");
$user = get_record('user', 'id', $userid);
$fullname = fullname($user, isteacher($course->id));
some UI changes
2006-08-14 08:46:44 +00:00
// we got a few tabs there
if ($context->level == CONTEXT_USERID) {
some more UI change
2006-08-16 09:11:43 +00:00
/// course header
if ($courseid!= SITEID) {
print_header("$fullname", "$fullname",
"<a href=\"../course/view.php?id=$course->id\">$course->shortname</a> ->
<a href=\"".$CFG->wwwroot."/user/index.php?id=$course->id\">$participants</a> -> <a href=\"".$CFG->wwwroot."/user/view.php?id=".$userid."&course=".$courseid."\">$fullname</a> ->".get_string('assign', 'roles'),
"", "", true, "&nbsp;", navmenu($course));
/// site header
} else {
print_header("$course->fullname: $fullname", "$course->fullname",
"<a href=\"".$CFG->wwwroot."/user/view.php?id=".$userid."&course=".$courseid."\">$fullname</a> -> $straction", "", "", true, "&nbsp;", navmenu($course));
}
some more UI stuff
2006-08-15 08:29:29 +00:00
$showroles = 1;
$currenttab = 'assign';
some UI changes
2006-08-14 08:46:44 +00:00
include_once($CFG->dirroot.'/user/tabs.php');
} else {
$currenttab = '';
$tabsmode = 'assign';
include_once('tabs.php');
}
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
/// Print a help notice about the need to use this page
if (!$frm = data_submitted()) {
/// A form was submitted so process the input
} else {
if ($add and !empty($frm->addselect) and confirm_sesskey()) {
Removed tabs
2006-08-09 13:18:33 +00:00
//$timestart = ????
// time end = ????
$timemodified = time();
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
foreach ($frm->addselect as $adduser) {
$adduser = clean_param($adduser, PARAM_INT);
SWEEPING CLEANUP The API was changed slightly so that has_capability now takes the whole $context object (we almost always have it anyway) The $kill thing was removed. If you want to assert a capability then use: require_capability('capname', $context); with optional variables to modify the error message Misc bugs here and there also removed and code tidied
2006-08-14 05:55:40 +00:00
if (! role_assign($roleid, $adduser, 0, $context->id, $timestart, $timeend, $hidden)) {
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
error("Could not add user with id $adduser to this role!");
}
}
} else if ($remove and !empty($frm->removeselect) and confirm_sesskey()) {
foreach ($frm->removeselect as $removeuser) {
$removeuser = clean_param($removeuser, PARAM_INT);
SWEEPING CLEANUP The API was changed slightly so that has_capability now takes the whole $context object (we almost always have it anyway) The $kill thing was removed. If you want to assert a capability then use: require_capability('capname', $context); with optional variables to modify the error message Misc bugs here and there also removed and code tidied
2006-08-14 05:55:40 +00:00
if (! role_unassign($roleid, $removeuser, 0, $context->id)) {
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
error("Could not remove user with id $removeuser from this role!");
}
}
} else if ($showall) {
$searchtext = '';
$previoussearch = 0;
}
}
/// Get all existing students and teachers for this course.
$existinguserarray = array();
SWEEPING CLEANUP The API was changed slightly so that has_capability now takes the whole $context object (we almost always have it anyway) The $kill thing was removed. If you want to assert a capability then use: require_capability('capname', $context); with optional variables to modify the error message Misc bugs here and there also removed and code tidied
2006-08-14 05:55:40 +00:00
$SQL = "select u.* from {$CFG->prefix}role_assignments r, {$CFG->prefix}user u where contextid = $context->id and roleid = $roleid and u.id = r.userid"; // join now so that we can just use fullname() later
Tidy-ups
2006-08-09 05:37:53 +00:00
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
if (!$contextusers = get_records_sql($SQL)) {
Removed tabs
2006-08-09 13:18:33 +00:00
$contextusers = array();
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
}
Removed tabs
2006-08-09 13:18:33 +00:00
foreach ($contextusers as $contextuser) {
$existinguserarray[] = $contextuser->id;
}
$existinguserlist = implode(',', $existinguserarray);
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
unset($existinguserarray);
/// Get search results excluding any users already in this course
if (($searchtext != '') and $previoussearch) {
$searchusers = get_users(true, $searchtext, true, $existinguserlist, 'firstname ASC, lastname ASC',
'', '', 0, 99999, 'id, firstname, lastname, email');
$usercount = get_users(false, '', true, $existinguserlist);
}
/// If no search results then get potential students for this course excluding users already in course
if (empty($searchusers)) {
$usercount = get_users(false, '', true, $existinguserlist, 'firstname ASC, lastname ASC', '', '',
0, 99999, 'id, firstname, lastname, email') ;
$users = array();
if ($usercount <= MAX_USERS_PER_PAGE) {
$users = get_users(true, '', true, $existinguserlist, 'firstname ASC, lastname ASC', '', '',
0, 99999, 'id, firstname, lastname, email');
}
}
Removed tabs
2006-08-09 13:18:33 +00:00
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
// this needs to check capability too
$role = get_records('role');
foreach ($role as $rolex) {
adding functions and interface for access control - role assignment and role overrides
2006-08-18 08:01:16 +00:00
if (user_can_assign($context, $rolex->id)) {
$options[$rolex->id] = $rolex->name;
}
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
}
// prints a form to swap roles
print ('<form name="rolesform" action="assign.php" method="post">');
SWEEPING CLEANUP The API was changed slightly so that has_capability now takes the whole $context object (we almost always have it anyway) The $kill thing was removed. If you want to assert a capability then use: require_capability('capname', $context); with optional variables to modify the error message Misc bugs here and there also removed and code tidied
2006-08-14 05:55:40 +00:00
print ('<div align="center">'.$strcurrentcontext.': '.print_context_name($context).'<br/>');
some UI changes
2006-08-14 08:46:44 +00:00
if ($userid) {
print ('<input type="hidden" name="userid" value="'.$userid.'" />');
}
if ($course->id) {
print ('<input type="hidden" name="courseid" value="'.$courseid.'" />');
}
print ('<input type="hidden" name="contextid" value="'.$context->id.'" />'.$strcurrentrole.': ');
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
choose_from_menu ($options, 'roleid', $roleid, 'choose', $script='rolesform.submit()');
Removed tabs
2006-08-09 13:18:33 +00:00
print ('</div></form>');
if ($roleid) {
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
Removed tabs
2006-08-09 13:18:33 +00:00
print_simple_box_start("center");
include('assign.html');
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
Removed tabs
2006-08-09 13:18:33 +00:00
print_simple_box_end();
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
Removed tabs
2006-08-09 13:18:33 +00:00
}
ROLES AND PERMISSIONS - FIRST CHECK-IN ======================================= WARNING: DEV IS CURRENTLY VERY UNSTABLE. This is a mega-checkin of the new Roles system. A lot of changes have been made in core and modules. Currently there are a lot of rough edges and known problems. We are working hard on these .. .the reason for getting this into HEAD at this stage is enable us to move faster (our branch was diverging from HEAD too much). Please keep an eye on http://docs.moodle.org/en/Roles for current status and information for developers on how to use the new Roles system.
2006-08-08 05:13:06 +00:00
print_footer($course);
Removed all of the "Restricted users" hack because Roles can do it all better.
2006-08-13 07:01:57 +00:00
?>
Reference in New Issue Copy Permalink