array($_GET['id'])); $data = api_get_settings_params($params); if (!empty($data)) { foreach ($data as $item) { $params = array('id' =>$item['id'], 'access_url_changeable' => $_GET['changeable']); api_set_setting_simple($params); } } echo '1'; } } break; case 'version': echo version_check(); break; case 'get_extra_content': $blockName = isset($_POST['block']) ? Security::remove_XSS($_POST['block']) : null; if (empty($blockName)) { die; } if (api_is_multiple_url_enabled()) { $accessUrlId = api_get_current_access_url_id(); if ($accessUrlId == -1) { die; } $urlInfo = api_get_access_url($accessUrlId); $url = api_remove_trailing_slash(preg_replace('/https?:\/\//i', '', $urlInfo['url'])); $cleanUrl = str_replace('/', '-', $url); $newUrlDir = api_get_path(SYS_APP_PATH)."home/$cleanUrl/admin/"; } else { $newUrlDir = api_get_path(SYS_APP_PATH)."home/admin/"; } if (!file_exists($newUrlDir)) { die; } if (!Security::check_abs_path("{$newUrlDir}{$blockName}_extra.html", $newUrlDir)) { die; } if (!file_exists("{$newUrlDir}{$blockName}_extra.html")) { die; } echo file_get_contents("{$newUrlDir}{$blockName}_extra.html"); break; } /** * Displays either the text for the registration or the message that the installation is (not) up to date * * @return string html code * @author Patrick Cool , Ghent University * @version august 2006 * @todo have a 6 monthly re-registration */ function version_check() { $tbl_settings = Database::get_main_table(TABLE_MAIN_SETTINGS_CURRENT); $sql = 'SELECT selected_value FROM '.$tbl_settings.' WHERE variable = "registered" '; $result = Database::query($sql); $row = Database::fetch_array($result, 'ASSOC'); // The site has not been registered yet. $return = ''; if ($row['selected_value'] == 'false') { $return .= get_lang('VersionCheckExplanation'); $return .= '

'; $return .= ''.get_lang('HideCampusFromPublicPlatformsList'); $return .= ''.get_lang('EnableVersionCheck').''; $return .= '

'; check_system_version(); } else { // site not registered. Call anyway $return .= check_system_version(); } return $return; } /** * Check if the current installation is up to date * The code is borrowed from phpBB and slighlty modified * @author The phpBB Group (the code) * @author Patrick Cool , Ghent University (the modifications) * @author Yannick Warnier for the move to HTTP request * @copyright (C) 2001 The phpBB Group * @return string language string with some layout (color) */ function check_system_version() { // the chamilo version of your installation $system_version = trim(api_get_configuration_value('system_version')); if (ini_get('allow_url_fopen') == 1) { // The number of courses $number_of_courses = Statistics::countCourses(); // The number of users $number_of_users = Statistics::countUsers(); $number_of_active_users = Statistics::countUsers(null, null, null, true); // The number of sessions $number_of_sessions = Statistics::countSessions(); $packager = api_get_configuration_value('packager'); if (empty($packager)) { $packager = 'chamilo'; } $data = array( 'url' => api_get_path(WEB_PATH), 'campus' => api_get_setting('siteName'), 'contact' => api_get_setting('emailAdministrator'), // the admin's e-mail, with the only purpose of being able to contact admins to inform about critical security issues 'version' => $system_version, 'numberofcourses' => $number_of_courses, // to sum up into non-personal statistics - see https://version.chamilo.org/stats/ 'numberofusers' => $number_of_users, // to sum up into non-personal statistics 'numberofactiveusers' => $number_of_active_users, // to sum up into non-personal statistics 'numberofsessions' => $number_of_sessions, //The donotlistcampus setting recovery should be improved to make // it true by default - this does not affect numbers counting 'donotlistcampus' => api_get_setting('donotlistcampus'), 'organisation' => api_get_setting('Institution'), 'language' => api_get_setting('platformLanguage'), //helps us know the spread of language usage for campuses, by main language 'adminname' => api_get_setting('administratorName').' '.api_get_setting('administratorSurname'), //not sure this is necessary... 'ip' => $_SERVER['REMOTE_ADDR'], //the admin's IP address, with the only purpose of trying to geolocate portals around the globe to draw a map // Reference to the packager system or provider through which // Chamilo is installed/downloaded. Packagers can change this in // the default config file (main/install/configuration.dist.php) // or in the installed config file. The default value is 'chamilo' 'packager' => $packager, ); $version = null; // version.php has been updated to include the version in an HTTP header // called "X-Chamilo-Version", so that we don't have to worry about // issues with the content not being returned by fread for some reason $res = _http_request('version.chamilo.org', 80, '/version.php', $data, 5, null, true); $lines = preg_split('/\r\n/', $res); foreach ($lines as $line) { $elements = preg_split('/:/', $line); // extract the X-Chamilo-Version header from the version.php response if (strcmp(trim($elements[0]), 'X-Chamilo-Version') === 0) { $version = trim($elements[1]); } } if (substr($res, 0, 5) != 'Error') { if (empty($version)) { $version_info = $res; } else { $version_info = $version; } if (version_compare($system_version, $version_info, '<')) { $output = ''.get_lang('YourVersionNotUpToDate').'
'.get_lang('LatestVersionIs').' Chamilo '.$version_info.'.
'.get_lang('YourVersionIs').' Chamilo '.$system_version.'.
'.str_replace('http://www.chamilo.org', 'http://www.chamilo.org', get_lang('PleaseVisitOurWebsite')).''; } else { $output = ''.get_lang('VersionUpToDate').': Chamilo '.$version_info.''; } } else { $output = ''.get_lang('ImpossibleToContactVersionServerPleaseTryAgain').''; } } else { $output = ''.get_lang('AllowurlfopenIsSetToOff').''; } return $output; } /** * Function to make an HTTP request through fsockopen (specialised for GET) * Derived from Jeremy Saintot: http://www.php.net/manual/en/function.fsockopen.php#101872 * @param string $ip IP or hostname * @param int $port Target port * @param string $uri URI (defaults to '/') * @param array $getdata GET data * @param int $timeout Timeout * @param bool $req_hdr Include HTTP Request headers? * @param bool $res_hdr Include HTTP Response headers? * @return string */ function _http_request($ip, $port = 80, $uri = '/', $getdata = array(), $timeout = 5, $req_hdr = false, $res_hdr = false) { $verb = 'GET'; $ret = ''; $getdata_str = count($getdata) ? '?' : ''; foreach ($getdata as $k => $v) { $getdata_str .= urlencode($k).'='.urlencode($v).'&'; } $crlf = "\r\n"; $req = $verb.' '.$uri.$getdata_str.' HTTP/1.1'.$crlf; $req .= 'Host: '.$ip.$crlf; $req .= 'User-Agent: Mozilla/5.0 Firefox/3.6.12'.$crlf; $req .= 'Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8'.$crlf; $req .= 'Accept-Language: en-us,en;q=0.5'.$crlf; $req .= 'Accept-Encoding: deflate'.$crlf; $req .= 'Accept-Charset: utf-8;q=0.7,*;q=0.7'.$crlf; $req .= $crlf; if ($req_hdr) { $ret .= $req; } if (($fp = @fsockopen($ip, $port, $errno, $errstr, $timeout)) == false) { return "Error $errno: $errstr\n"; } stream_set_timeout($fp, $timeout); $r = fwrite($fp, $req); $line = @fread($fp, 512); $ret .= $line; fclose($fp); if (!$res_hdr) { $ret = substr($ret, strpos($ret, "\r\n\r\n") + 4); } return trim($ret); }