dirroot.'/user/profile/lib.php'); require_once($CFG->dirroot.'/tag/lib.php'); $id = optional_param('id', 0, PARAM_INT); // user id $course = optional_param('course', SITEID, PARAM_INT); // course id (defaults to Site) $enable = optional_param('enable', ''); // enable email $disable = optional_param('disable', ''); // disable email if (empty($id)) { // See your own profile by default require_login(); $id = $USER->id; } if (! $user = $DB->get_record("user", array("id"=>$id))) { print_error('invaliduserid'); } if (! $course = $DB->get_record("course", array("id"=>$course))) { print_error('invalidcourseid'); } /// Make sure the current user is allowed to see this user if (empty($USER->id)) { $currentuser = false; } else { $currentuser = ($user->id == $USER->id); } if ($course->id == SITEID) { $coursecontext = get_context_instance(CONTEXT_SYSTEM); // SYSTEM context } else { $coursecontext = get_context_instance(CONTEXT_COURSE, $course->id); // Course context } $usercontext = get_context_instance(CONTEXT_USER, $user->id); // User context $systemcontext = get_context_instance(CONTEXT_SYSTEM); // SYSTEM context if (!empty($CFG->forcelogin) || $course->id != SITEID) { // do not force parents to enrol if (!$DB->get_record('role_assignments', array('userid'=>$USER->id, 'contextid'=>$usercontext->id))) { require_login($course->id); } } if (!empty($CFG->forceloginforprofiles)) { require_login(); if (isguest()) { redirect(get_login_url()); } } $strpersonalprofile = get_string('personalprofile'); $strparticipants = get_string("participants"); $struser = get_string("user"); $fullname = fullname($user, has_capability('moodle/site:viewfullnames', $coursecontext)); $navlinks = array(); if (has_capability('moodle/course:viewparticipants', $coursecontext) || has_capability('moodle/site:viewparticipants', $systemcontext)) { $navlinks[] = array('name' => $strparticipants, 'link' => "index.php?id=$course->id", 'type' => 'misc'); } /// If the user being shown is not ourselves, then make sure we are allowed to see them! if (!$currentuser) { if ($course->id == SITEID) { // Reduce possibility of "browsing" userbase at site level if ($CFG->forceloginforprofiles and !isteacherinanycourse() and !isteacherinanycourse($user->id) and !has_capability('moodle/user:viewdetails', $usercontext)) { // Teachers can browse and be browsed at site level. If not forceloginforprofiles, allow access (bug #4366) $navlinks[] = array('name' => $struser, 'link' => null, 'type' => 'misc'); $navigation = build_navigation($navlinks); print_header("$strpersonalprofile: ", "$strpersonalprofile: ", $navigation, "", "", true, " ", navmenu($course)); print_heading(get_string('usernotavailable', 'error')); print_footer($course); exit; } } else { // Normal course // check capabilities if (!has_capability('moodle/user:viewdetails', $coursecontext) && !has_capability('moodle/user:viewdetails', $usercontext)) { print_error('cannotviewprofile'); } if (!has_capability('moodle/course:view', $coursecontext, $user->id, false)) { if (has_capability('moodle/course:view', $coursecontext)) { $navlinks[] = array('name' => $fullname, 'link' => null, 'type' => 'misc'); $navigation = build_navigation($navlinks); print_header("$strpersonalprofile: ", "$strpersonalprofile: ", $navigation, "", "", true, " ", navmenu($course)); print_heading(get_string('notenrolled', '', $fullname)); } else { $navlinks[] = array('name' => $struser, 'link' => null, 'type' => 'misc'); $navigation = build_navigation($navlinks); print_header("$strpersonalprofile: ", "$strpersonalprofile: ", $navigation, "", "", true, " ", navmenu($course)); print_heading(get_string('notenrolledprofile')); } print_continue($_SERVER['HTTP_REFERER']); print_footer($course); exit; } } // If groups are in use, make sure we can see that group if (groups_get_course_groupmode($course) == SEPARATEGROUPS and !has_capability('moodle/site:accessallgroups', $coursecontext)) { require_login(); ///this is changed because of mygroupid $gtrue = (bool)groups_get_all_groups($course->id, $user->id); if (!$gtrue) { $navigation = build_navigation($navlinks); print_header("$strpersonalprofile: ", "$strpersonalprofile: ", $navigation, "", "", true, " ", navmenu($course)); print_error("groupnotamember", '', "../course/view.php?id=$course->id"); } } } /// We've established they can see the user's name at least, so what about the rest? $navlinks[] = array('name' => $fullname, 'link' => null, 'type' => 'misc'); $navigation = build_navigation($navlinks); print_header("$course->fullname: $strpersonalprofile: $fullname", $course->fullname, $navigation, "", "", true, " ", navmenu($course)); if (($course->id != SITEID) and ! isguest() ) { // Need to have access to a course to see that info if (!has_capability('moodle/course:view', $coursecontext, $user->id)) { print_heading(get_string('notenrolled', '', $fullname)); print_footer($course); die; } } if ($user->deleted) { print_heading(get_string('userdeleted')); if (!has_capability('moodle/user:update', $coursecontext)) { print_footer($course); die; } } /// OK, security out the way, now we are showing the user add_to_log($course->id, "user", "view", "view.php?id=$user->id&course=$course->id", "$user->id"); if ($course->id != SITEID) { $user->lastaccess = false; if ($lastaccess = $DB->get_record('user_lastaccess', array('userid'=>$user->id, 'courseid'=>$course->id))) { $user->lastaccess = $lastaccess->timeaccess; } } /// Get the hidden field list if (has_capability('moodle/user:viewhiddendetails', $coursecontext)) { $hiddenfields = array(); } else { $hiddenfields = array_flip(explode(',', $CFG->hiddenuserfields)); } /// Print tabs at top /// This same call is made in: /// /user/view.php /// /user/edit.php /// /course/user.php $currenttab = 'profile'; $showroles = 1; if (!$user->deleted) { include('tabs.php'); } if (is_mnet_remote_user($user)) { $sql = " SELECT DISTINCT h.id, h.name, h.wwwroot, a.name as application, a.display_name FROM {mnet_host} h, {mnet_application} a WHERE h.id = ? AND h.applicationid = a.id ORDER BY a.display_name, h.name"; $remotehost = $DB->get_record_sql($sql, array($user->mnethostid)); echo '

'.get_string('remoteappuser', $remotehost->application)."
\n"; if ($USER->id == $user->id) { if ($remotehost->application =='moodle') { echo "Remote {$remotehost->display_name}: wwwroot}/user/edit.php\">{$remotehost->name} ".get_string('editremoteprofile')."

\n"; } else { echo "Remote {$remotehost->display_name}: wwwroot}/\">{$remotehost->name} ".get_string('gotoyourserver')."

\n"; } } else { echo "Remote {$remotehost->display_name}: wwwroot}/\">{$remotehost->name}

\n"; } } echo ''; echo ''; echo '
'; print_user_picture($user, $course->id, $user->picture, true, false, false); echo ''; // Print the description if ($user->description && !isset($hiddenfields['description'])) { $has_courseid = ($course->id != SITEID); if (!$has_courseid && !empty($CFG->profilesforenrolledusersonly) && !$DB->record_exists('role_assignments', array('userid'=>$id))) { echo get_string('profilenotshown', 'moodle').'
'; } else { echo format_text($user->description, FORMAT_MOODLE)."
"; } } // Print all the little details in a list echo ''; if (! isset($hiddenfields['country']) && $user->country) { $countries = get_list_of_countries(); print_row(get_string('country') . ':', $countries[$user->country]); } if (! isset($hiddenfields['city']) && $user->city) { print_row(get_string('city') . ':', $user->city); } if (has_capability('moodle/user:viewhiddendetails', $coursecontext)) { if ($user->address) { print_row(get_string("address").":", "$user->address"); } if ($user->phone1) { print_row(get_string("phone").":", "$user->phone1"); } if ($user->phone2) { print_row(get_string("phone2").":", "$user->phone2"); } } if ($user->maildisplay == 1 or ($user->maildisplay == 2 and ($course->id != SITEID) and !isguest()) or has_capability('moodle/course:useremail', $coursecontext)) { $emailswitch = ''; if (has_capability('moodle/course:useremail', $coursecontext) or $currentuser) { /// Can use the enable/disable email stuff if (!empty($enable)) { /// Recieved a parameter to enable the email address $DB->set_field('user', 'emailstop', 0, array('id'=>$user->id)); $user->emailstop = 0; } if (!empty($disable)) { /// Recieved a parameter to disable the email address $DB->set_field('user', 'emailstop', 1, array('id'=>$user->id)); $user->emailstop = 1; } } if (has_capability('moodle/course:useremail', $coursecontext)) { /// Can use the enable/disable email stuff if ($user->emailstop) { $switchparam = 'enable'; $switchtitle = get_string('emaildisable'); $switchclick = get_string('emailenableclick'); $switchpix = 'emailno.gif'; } else { $switchparam = 'disable'; $switchtitle = get_string('emailenable'); $switchclick = get_string('emaildisableclick'); $switchpix = 'email.gif'; } $emailswitch = " id&course=$course->id&$switchparam=1\">". "pixpath/t/$switchpix\" alt=\"$switchclick\" />"; } else if ($currentuser) { /// Can only re-enable an email this way if ($user->emailstop) { // Include link that tells how to re-enable their email $switchparam = 'enable'; $switchtitle = get_string('emaildisable'); $switchclick = get_string('emailenableclick'); $emailswitch = " (id&course=$course->id&enable=1\">$switchtitle)"; } } print_row(get_string("email").":", obfuscate_mailto($user->email, '', $user->emailstop)."$emailswitch"); } if ($user->url && !isset($hiddenfields['webpage'])) { $url = $user->url; if (strpos($user->url, '://') === false) { $url = 'http://'. $url; } print_row(get_string("webpage") .":", "$user->url"); } if ($user->icq && !isset($hiddenfields['icqnumber'])) { print_row(get_string('icqnumber').':',"icq\">$user->icq icq&img=5\" alt=\"\" />"); } if ($user->skype && !isset($hiddenfields['skypeid'])) { print_row(get_string('skypeid').':',''.s($user->skype). ' '.get_string('status').''); } if ($user->yahoo && !isset($hiddenfields['yahooid'])) { print_row(get_string('yahooid').':', ''.s($user->yahoo)." yahoo)."&m=g&t=0\" alt=\"\">"); } if ($user->aim && !isset($hiddenfields['aimid'])) { print_row(get_string('aimid').':', ''.s($user->aim).''); } if ($user->msn && !isset($hiddenfields['msnid'])) { print_row(get_string('msnid').':', s($user->msn)); } /// Print the Custom User Fields profile_display_fields($user->id); if (!isset($hiddenfields['mycourses'])) { if ($mycourses = get_my_courses($user->id, null, null, false, 21)) { $shown=0; $courselisting = ''; foreach ($mycourses as $mycourse) { if ($mycourse->category) { if ($mycourse->id != $course->id){ $class = ''; if ($mycourse->visible == 0) { // get_my_courses will filter courses $USER cannot see // if we get one with visible 0 it just means it's hidden // ... but not from $USER $class = 'class="dimmed"'; } $courselisting .= "wwwroot}/user/view.php?id={$user->id}&course={$mycourse->id}\" $class >" . format_string($mycourse->fullname) . ", "; } else { $courselisting .= format_string($mycourse->fullname) . ", "; } } $shown++; if($shown==20) { $courselisting.= "..."; break; } } print_row(get_string('courses').':', rtrim($courselisting,', ')); } } if (!isset($hiddenfields['lastaccess'])) { if ($user->lastaccess) { $datestring = userdate($user->lastaccess)."  (".format_time(time() - $user->lastaccess).")"; } else { $datestring = get_string("never"); } print_row(get_string("lastaccess").":", $datestring); } /// printing roles if ($rolestring = get_user_roles_in_context($id, $coursecontext)) { print_row(get_string('roles').':', format_string($rolestring, false)); } /// Printing groups $isseparategroups = ($course->groupmode == SEPARATEGROUPS and $course->groupmodeforce and !has_capability('moodle/site:accessallgroups', $coursecontext)); if (!$isseparategroups){ if ($usergroups = groups_get_all_groups($course->id, $user->id)){ $groupstr = ''; foreach ($usergroups as $group){ $groupstr .= ' '.format_string($group->name).','; } print_row(get_string("group").":", rtrim($groupstr, ', ')); } } /// End of printing groups /// Printing Interests if( !empty($CFG->usetags)) { if ( $interests = tag_get_tags_csv('user', $user->id) ) { print_row(get_string('interests') .": ", $interests); } } /// End of Printing Interests echo "
"; echo "
"; $userauth = get_auth_plugin($user->auth); $passwordchangeurl = false; if ($currentuser and $userauth->can_change_password() and !isguestuser() and has_capability('moodle/user:changeownpassword', $systemcontext)) { if (!$passwordchangeurl = $userauth->change_password_url()) { if (empty($CFG->loginhttps)) { $passwordchangeurl = "$CFG->wwwroot/login/change_password.php"; } else { $passwordchangeurl = str_replace('http:', 'https:', $CFG->wwwroot.'/login/change_password.php'); } } } // Print other functions echo '
'; if ($passwordchangeurl) { $params = array('id'=>$course->id); if (session_is_loggedinas()) { $passwordchangeurl = ''; // do not use actual change password url - might contain sensitive data } else { $parts = explode('?', $passwordchangeurl); $passwordchangeurl = reset($parts); $after = next($parts); preg_match_all('/([^&=]+)=([^&=]+)/', $after, $matches); if (count($matches)) { foreach($matches[0] as $key=>$match) { $params[$matches[1][$key]] = $matches[2][$key]; } } } echo "
"; echo "
"; foreach($params as $key=>$value) { echo ''; } if (session_is_loggedinas()) { // changing of password when "Logged in as" is not allowed echo ""; } else { echo ""; } echo "
"; echo "
"; } if ($course->id != SITEID && empty($course->metacourse)) { // Mostly only useful at course level $canunenrol = false; if ($user->id == $USER->id) { // Myself $canunenrol = has_capability('moodle/course:view', $coursecontext, NULL) && // Course participant has_capability('moodle/role:unassignself', $coursecontext, NULL, false) && // Can unassign myself get_user_roles($coursecontext, $user->id, false); // Must have role in course } else if (has_capability('moodle/role:assign', $coursecontext, NULL)) { // I can assign roles if ($roles = get_user_roles($coursecontext, $user->id, false)) { $canunenrol = true; foreach($roles as $role) { if (!user_can_assign($coursecontext, $role->roleid)) { $canunenrol = false; // I can not unassign all roles in this course :-( break; } } } } if ($canunenrol) { echo '
'; echo '
'; echo ''; echo ''; echo ''; echo '
'; echo '
'; } } if (!$user->deleted and $USER->id != $user->id && !session_is_loggedinas() && has_capability('moodle/user:loginas', $coursecontext) && ! has_capability('moodle/site:doanything', $coursecontext, $user->id, false)) { echo '
'; echo '
'; echo ''; echo ''; echo ''; echo ''; echo '
'; echo '
'; } if (!$user->deleted and !empty($CFG->messaging) and !isguest() and has_capability('moodle/site:sendmessage', get_context_instance(CONTEXT_SYSTEM))) { if (!empty($USER->id) and ($USER->id == $user->id)) { if ($countmessages = $DB->count_records('message', array('useridto'=>$user->id))) { $messagebuttonname = get_string("messages", "message")."($countmessages)"; } else { $messagebuttonname = get_string("messages", "message"); } echo "
"; echo "
"; echo ""; echo "
"; echo "
"; } else { echo "
id'\" action=\"../message/discussion.php\" method=\"get\">"; echo "
"; echo "id\" />"; echo "id', 'message_$user->id', 'menubar=0,location=0,scrollbars,status,resizable,width=400,height=500', 0);\" />"; echo "
"; echo "
"; } } // Authorize.net: User Payments if ($course->enrol == 'authorize' || (empty($course->enrol) && $CFG->enrol == 'authorize')) { echo "
"; echo "
"; echo "id\" />"; echo "id\" />"; echo ""; echo "
"; echo "
"; } echo "
\n"; if ($CFG->debugdisplay && debugging('', DEBUG_DEVELOPER) && $USER->id == $user->id) { // Show user object echo '
'; print_heading('DEBUG MODE: User session variables'); print_object($USER); } print_footer($course); /// Functions /////// function print_row($left, $right) { echo "\n$left$right\n"; } ?>