mirror of
https://github.com/moodle/moodle.git
synced 2025-01-19 14:27:22 +01:00
233 lines
8.0 KiB
PHP
233 lines
8.0 KiB
PHP
<?PHP // $Id$
|
|
|
|
require("../config.php");
|
|
require("../lib/countries.php");
|
|
require("lib.php");
|
|
|
|
require_variable($id); // user id
|
|
require_variable($course); // course id
|
|
|
|
if (! $user = get_record("user", "id", $id)) {
|
|
error("User ID was incorrect");
|
|
}
|
|
|
|
if (! $course = get_record("course", "id", $course)) {
|
|
error("Course ID was incorrect");
|
|
}
|
|
|
|
require_login($course->id);
|
|
|
|
if ($USER->id <> $user->id and !isadmin()) {
|
|
error("You can only edit your own information");
|
|
}
|
|
|
|
if (isguest()) {
|
|
error("The guest user cannot edit their profile.");
|
|
}
|
|
|
|
if (isguest($user->id)) {
|
|
error("Sorry, the guest user cannot be edited.");
|
|
}
|
|
|
|
|
|
/// If data submitted, then process and store.
|
|
|
|
if (match_referer() && isset($HTTP_POST_VARS)) {
|
|
|
|
$usernew = (object)$HTTP_POST_VARS;
|
|
|
|
$usernew->firstname = strip_tags($usernew->firstname);
|
|
$usernew->lastname = strip_tags($usernew->lastname);
|
|
|
|
if (find_form_errors($user, $usernew, $err) ) {
|
|
$user = $usernew;
|
|
|
|
} else {
|
|
|
|
$timenow = time();
|
|
|
|
if ($filename = valid_uploaded_file($imagefile)) {
|
|
$imageinfo = GetImageSize($filename);
|
|
$image->width = $imageinfo[0];
|
|
$image->height = $imageinfo[1];
|
|
$image->type = $imageinfo[2];
|
|
|
|
switch ($image->type) {
|
|
case 2: $im = ImageCreateFromJPEG($filename); break;
|
|
case 3: $im = ImageCreateFromPNG($filename); break;
|
|
default: error("Image must be in JPG or PNG format");
|
|
}
|
|
if (function_exists("ImageCreateTrueColor") and $CFG->gdversion >= 2) {
|
|
$im1 = ImageCreateTrueColor(100,100);
|
|
$im2 = ImageCreateTrueColor(35,35);
|
|
} else {
|
|
$im1 = ImageCreate(100,100);
|
|
$im2 = ImageCreate(35,35);
|
|
}
|
|
|
|
$cx = $image->width / 2;
|
|
$cy = $image->height / 2;
|
|
|
|
if ($image->width < $image->height) {
|
|
$half = floor($image->width / 2.0);
|
|
} else {
|
|
$half = floor($image->height / 2.0);
|
|
}
|
|
|
|
if (!file_exists("$CFG->dataroot/users")) {
|
|
if (! mkdir("$CFG->dataroot/users", 0777)) {
|
|
$badpermissions = true;
|
|
}
|
|
}
|
|
if (!file_exists("$CFG->dataroot/users/$user->id")) {
|
|
if (! mkdir("$CFG->dataroot/users/$user->id", 0777)) {
|
|
$badpermissions = true;
|
|
}
|
|
}
|
|
|
|
if ($badpermissions) {
|
|
$usernew->picture = "0";
|
|
|
|
} else {
|
|
ImageCopyBicubic($im1, $im, 0, 0, $cx-$half, $cy-$half, 100, 100, $half*2, $half*2);
|
|
ImageCopyBicubic($im2, $im, 0, 0, $cx-$half, $cy-$half, 35, 35, $half*2, $half*2);
|
|
|
|
// Draw borders over the top.
|
|
$black1 = ImageColorAllocate ($im1, 0, 0, 0);
|
|
$black2 = ImageColorAllocate ($im2, 0, 0, 0);
|
|
ImageLine ($im1, 0, 0, 0, 99, $black1);
|
|
ImageLine ($im1, 0, 99, 99, 99, $black1);
|
|
ImageLine ($im1, 99, 99, 99, 0, $black1);
|
|
ImageLine ($im1, 99, 0, 0, 0, $black1);
|
|
ImageLine ($im2, 0, 0, 0, 34, $black2);
|
|
ImageLine ($im2, 0, 34, 34, 34, $black2);
|
|
ImageLine ($im2, 34, 34, 34, 0, $black2);
|
|
ImageLine ($im2, 34, 0, 0, 0, $black2);
|
|
|
|
ImageJpeg($im1, "$CFG->dataroot/users/$user->id/f1.jpg", 90);
|
|
ImageJpeg($im2, "$CFG->dataroot/users/$user->id/f2.jpg", 95);
|
|
$usernew->picture = "1";
|
|
}
|
|
} else {
|
|
$usernew->picture = $user->picture;
|
|
}
|
|
|
|
$usernew->timemodified = time();
|
|
|
|
if (isadmin()) {
|
|
if ($usernew->newpassword) {
|
|
$usernew->password = md5($usernew->newpassword);
|
|
}
|
|
} else {
|
|
if (isset($usernew->newpassword)) {
|
|
error("You can not change the password like that");
|
|
}
|
|
}
|
|
|
|
if (update_record("user", $usernew)) {
|
|
add_to_log($course->id, "user", "update", "view.php?id=$user->id&course=$course->id", "");
|
|
|
|
if ($user->id == $USER->id) {
|
|
// Copy data into $USER session variable
|
|
$usernew = (array)$usernew;
|
|
foreach ($usernew as $variable => $value) {
|
|
$USER->$variable = $value;
|
|
}
|
|
save_session("USER");
|
|
redirect("view.php?id=$user->id&course=$course->id", "Changes saved");
|
|
} else {
|
|
redirect("../admin/user.php", "Changes saved");
|
|
}
|
|
} else {
|
|
error("Could not update the user record ($user->id)");
|
|
}
|
|
}
|
|
}
|
|
|
|
/// Otherwise fill and print the form.
|
|
|
|
$editmyprofile = get_string("editmyprofile");
|
|
$participants = get_string("participants");
|
|
|
|
if ($course->category) {
|
|
print_header("$course->fullname: $editmyprofile", "$course->fullname: $editmyprofile",
|
|
"<A HREF=\"$CFG->wwwroot/course/view.php?id=$course->id\">$course->shortname</A>
|
|
-> <A HREF=\"index.php?id=$course->id\">$participants</A>
|
|
-> <A HREF=\"view.php?id=$user->id&course=$course->id\">$user->firstname $user->lastname</A>
|
|
-> $editmyprofile", "");
|
|
} else {
|
|
print_header("$course->fullname: $editmyprofile", "$course->fullname",
|
|
"<A HREF=\"view.php?id=$user->id&course=$course->id\">$user->firstname $user->lastname</A>
|
|
-> $editmyprofile", "");
|
|
}
|
|
|
|
$teacher = strtolower($course->teacher);
|
|
if (!isadmin()) {
|
|
$teacheronly = "(".get_string("teacheronly", "", $teacher).")";
|
|
}
|
|
|
|
print_simple_box_start("center", "", "$THEME->cellheading");
|
|
print_heading( get_string("userprofilefor", "", "$user->firstname $user->lastname") );
|
|
include("edit.html");
|
|
print_simple_box_end();
|
|
print_footer($course);
|
|
|
|
|
|
|
|
|
|
/// FUNCTIONS ////////////////////
|
|
|
|
function find_form_errors(&$user, &$usernew, &$err) {
|
|
|
|
if (isadmin()) {
|
|
if (empty($usernew->username)) {
|
|
$err["username"] = get_string("missingusername");
|
|
|
|
} else if (record_exists("user", "username", $usernew->username) and $user->username == "changeme") {
|
|
$err["username"] = get_string("usernameexists");
|
|
|
|
} else {
|
|
$string = eregi_replace("[^([:alnum:])]", "", $user->username);
|
|
if (strcmp($user->username, $string))
|
|
$err["username"] = get_string("alphanumerical");
|
|
}
|
|
|
|
if (empty($usernew->newpassword) and empty($user->password))
|
|
$err["newpassword"] = get_string("missingpassword");
|
|
}
|
|
|
|
if (empty($usernew->email))
|
|
$err["email"] = get_string("missingemail");
|
|
|
|
if (empty($usernew->description))
|
|
$err["description"] = get_string("missingdescription");
|
|
|
|
if (empty($usernew->city))
|
|
$err["city"] = get_string("missingcity");
|
|
|
|
if (empty($usernew->firstname))
|
|
$err["firstname"] = get_string("missingfirstname");
|
|
|
|
if (empty($usernew->lastname))
|
|
$err["lastname"] = get_string("missinglastname");
|
|
|
|
if (empty($usernew->country))
|
|
$err["country"] = get_string("missingcountry");
|
|
|
|
if (! validate_email($usernew->email))
|
|
$err["email"] = get_string("invalidemail");
|
|
|
|
else if ($otheruser = get_record("user", "email", $usernew->email)) {
|
|
if ($otheruser->id <> $user->id) {
|
|
$err["email"] = get_string("emailexists");
|
|
}
|
|
}
|
|
|
|
$user->email = $usernew->email;
|
|
|
|
return count($err);
|
|
}
|
|
|
|
|
|
?>
|