mirror of
https://github.com/moodle/moodle.git
synced 2025-01-19 14:27:22 +01:00
127 lines
5.0 KiB
PHP
127 lines
5.0 KiB
PHP
<?php
|
|
|
|
// This file is part of Moodle - http://moodle.org/
|
|
//
|
|
// Moodle is free software: you can redistribute it and/or modify
|
|
// it under the terms of the GNU General Public License as published by
|
|
// the Free Software Foundation, either version 3 of the License, or
|
|
// (at your option) any later version.
|
|
//
|
|
// Moodle is distributed in the hope that it will be useful,
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU General Public License for more details.
|
|
//
|
|
// You should have received a copy of the GNU General Public License
|
|
// along with Moodle. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
/**
|
|
* Web services tokens admin UI
|
|
*
|
|
* @package webservice
|
|
* @author Jerome Mouneyrac
|
|
* @copyright 2009 Moodle Pty Ltd (http://moodle.com)
|
|
* @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
|
|
*/
|
|
|
|
require_once('../../config.php');
|
|
require_once($CFG->libdir.'/adminlib.php');
|
|
require_once('forms.php');
|
|
|
|
$PAGE->set_url('/admin/webservice/tokens.php', array());
|
|
|
|
admin_externalpage_setup('addwebservicetoken');
|
|
|
|
require_login();
|
|
require_capability('moodle/site:config', get_context_instance(CONTEXT_SYSTEM));
|
|
|
|
$returnurl = "$CFG->wwwroot/$CFG->admin/settings.php?section=webservicetokens";
|
|
|
|
$action = optional_param('action', '', PARAM_ACTION);
|
|
$tokenid = optional_param('tokenid', '', PARAM_SAFEDIR);
|
|
$confirm = optional_param('confirm', 0, PARAM_BOOL);
|
|
|
|
|
|
////////////////////////////////////////////////////////////////////////////////
|
|
// process actions
|
|
|
|
if (!confirm_sesskey()) {
|
|
redirect($returnurl);
|
|
}
|
|
|
|
switch ($action) {
|
|
|
|
case 'create':
|
|
$mform = new web_service_token_form(null, array('action' => 'create'));
|
|
if ($mform->is_cancelled()) {
|
|
redirect($returnurl);
|
|
} else if ($data = $mform->get_data()) {
|
|
ignore_user_abort(true); // no interruption here!
|
|
|
|
//generate token
|
|
$generatedtoken = md5(uniqid(rand(),1));
|
|
|
|
// make sure the token doesn't exist (even if it should be almost impossible with the random generation)
|
|
if ($DB->record_exists('external_tokens', array('token'=>$generatedtoken))) {
|
|
throw new moodle_exception('tokenalreadyexist');
|
|
} else {
|
|
$newtoken = new object();
|
|
$newtoken->token = $generatedtoken;
|
|
if (empty($service->requiredcapability) || has_capability($service->requiredcapability, $systemcontext, $data->user)) {
|
|
$newtoken->externalserviceid = $data->service;
|
|
} else {
|
|
throw new moodle_exception('nocapabilitytousethisservice');
|
|
}
|
|
$newtoken->tokentype = 2;
|
|
$newtoken->userid = $data->user;
|
|
//TODO: find a way to get the context - UPDATE FOLLOWING LINE
|
|
$newtoken->contextid = get_context_instance(CONTEXT_SYSTEM)->id;
|
|
$newtoken->creatorid = $USER->id;
|
|
$newtoken->timecreated = time();
|
|
$newtoken->validuntil = $data->validuntil;
|
|
if (!empty($data->iprestriction)) {
|
|
$newtoken->iprestriction = $data->iprestriction;
|
|
}
|
|
$DB->insert_record('external_tokens', $newtoken);
|
|
}
|
|
redirect($returnurl);
|
|
}
|
|
|
|
|
|
|
|
//ask for function id
|
|
admin_externalpage_print_header();
|
|
echo $OUTPUT->heading(get_string('createtoken', 'webservice'));
|
|
$mform->display();
|
|
echo $OUTPUT->footer();
|
|
die;
|
|
break;
|
|
|
|
case 'delete':
|
|
$sql = "SELECT
|
|
token.id, token.token, user.firstname, user.lastname, service.name
|
|
FROM
|
|
{external_tokens} token, {user} user, {external_services} service
|
|
WHERE
|
|
token.creatorid=? AND token.id=? AND token.tokentype = 2 AND service.id = token.externalserviceid AND token.userid = user.id";
|
|
$token = $DB->get_record_sql($sql, array($USER->id, $tokenid), MUST_EXIST); //must be the token creator
|
|
if (!$confirm) {
|
|
admin_externalpage_print_header();
|
|
$optionsyes = array('tokenid'=>$tokenid, 'action'=>'delete', 'confirm'=>1, 'sesskey'=>sesskey());
|
|
$optionsno = array('section'=>'webservicetokens', 'sesskey'=>sesskey());
|
|
$formcontinue = new single_button(new moodle_url('/admin/webservice/tokens.php', $optionsyes), get_string('delete'));
|
|
$formcancel = new single_button(new moodle_url('/admin/settings.php', $optionsno), get_string('cancel'), 'get');
|
|
echo $OUTPUT->confirm(get_string('deletetokenconfirm', 'webservice', (object)array('user'=>$token->firstname." ".$token->lastname, 'service'=>$token->name)), $formcontinue, $formcancel);
|
|
echo $OUTPUT->footer();
|
|
die;
|
|
}
|
|
$DB->delete_records('external_tokens', array('id'=>$token->id));
|
|
redirect($returnurl);
|
|
break;
|
|
|
|
default:
|
|
break;
|
|
}
|
|
|
|
redirect($returnurl);
|