Home Explore Help
Sign In
aj
/
chamilo-lms2
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: 1.9.x
Branches Tags
chamilo-lms2
/
main
/
work
/
view.php

view.php 3.6 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115 
  1. <?php
    2. 

  2. /* For licensing terms, see /license.txt */
    3. 

  3. 

  4. $language_file = array('exercice', 'work', 'document', 'admin');
    5. 

  5. 

  6. require_once '../inc/global.inc.php';
    7. 

  7. $current_course_tool  = TOOL_STUDENTPUBLICATION;
    8. 

  8. 

  9. require_once 'work.lib.php';
    10. 

  10. 

  11. $id = isset($_GET['id']) ? intval($_GET['id']) : null;
    12. 

  12. $work = get_work_data_by_id($id);
    13. 

  13. 

  14. if (empty($id) || empty($work)) {
    15. 

  15.     api_not_allowed(true);
    16. 

  16. }
    17. 

  17. 

  18. if ($work['active'] != 1) {
    19. 

  19.     api_not_allowed(true);
    20. 

  20. }
    21. 

  21. 

  22. $work['title'] = isset($work['title']) ? Security::remove_XSS($work['title']) : '';
    23. 

  23. $work['description'] = isset($work['description']) ? Security::remove_XSS($work['description']) : '';
    24. 

  24. 

  25. $interbreadcrumb[] = array ('url' => 'work.php', 'name' => get_lang('StudentPublications'));
    26. 

  26. 

  27. $my_folder_data = get_work_data_by_id($work['parent_id']);
    28. 

  28. $courseInfo = api_get_course_info();
    29. 

  29. 

  30. allowOnlySubscribedUser(
    31. 

  31.     api_get_user_id(),
    32. 

  32.     $work['parent_id'],
    33. 

  33.     $courseInfo['real_id']
    34. 

  34. );
    35. 

  35. 

  36. $isDrhOfCourse = CourseManager::isUserSubscribedInCourseAsDrh(
    37. 

  37.     api_get_user_id(),
    38. 

  38.     $courseInfo
    39. 

  39. );
    40. 

  40. 

  41. if ((user_is_author($id) || $isDrhOfCourse || (api_is_allowed_to_edit() || api_is_coach())) ||
    42. 

  42.     (
    43. 

  43.         $courseInfo['show_score'] == 0 &&
    44. 

  44.         $work['active'] == 1 &&
    45. 

  45.         $work['accepted'] == 1
    46. 

  46.     )
    47. 

  47. ) {
    48. 

  48.     if ((api_is_allowed_to_edit() || api_is_coach()) || api_is_drh()) {
    49. 

  49.         $url_dir = 'work_list_all.php?id='.$my_folder_data['id'];
    50. 

  50.     } else {
    51. 

  51.         $url_dir = 'work_list.php?id='.$my_folder_data['id'];
    52. 

  52.     }
    53. 

  53. 

  54.     $interbreadcrumb[] = array('url' => $url_dir, 'name' => $my_folder_data['title']);
    55. 

  55.     $interbreadcrumb[] = array('url' => '#','name' => $work['title']);
    56. 

  56.     //|| api_is_drh()
    57. 

  57.     if (($courseInfo['show_score'] == 0 &&
    58. 

  58.         $work['active'] == 1 &&
    59. 

  59.         $work['accepted'] == 1
    60. 

  60.         ) ||
    61. 

  61.         (api_is_allowed_to_edit() || api_is_coach()) ||
    62. 

  62.         user_is_author($id) ||
    63. 

  63.         $isDrhOfCourse
    64. 

  64.     ) {
    65. 

  65.         $action = isset($_REQUEST['action']) ? $_REQUEST['action'] : null;
    66. 

  66.         switch ($action) {
    67. 

  67.             case 'send_comment':
    68. 

  68.                 if (isset($_FILES["file"])) {
    69. 

  69.                     $_POST['file'] = $_FILES["file"];
    70. 

  70.                 }
    71. 

  71.                 addWorkComment(
    72. 

  72.                     api_get_course_info(),
    73. 

  73.                     api_get_user_id(),
    74. 

  74.                     $my_folder_data,
    75. 

  75.                     $work,
    76. 

  76.                     $_POST
    77. 

  77.                 );
    78. 

  78.                 $url = api_get_path(WEB_CODE_PATH).'work/view.php?id='.$work['id'].'&'.api_get_cidreq();
    79. 

  79.                 header('Location: '.$url);
    80. 

  80.                 exit;
    81. 

  81.                 break;
    82. 

  82.             case 'delete_attachment':
    83. 

  83.                 deleteCommentFile(
    84. 

  84.                     $_REQUEST['comment_id'],
    85. 

  85.                     api_get_course_info()
    86. 

  86.                 );
    87. 

  87.                 $url = api_get_path(WEB_CODE_PATH).'work/view.php?id='.$work['id'].'&'.api_get_cidreq();
    88. 

  88.                 header('Location: '.$url);
    89. 

  89.                 exit;
    90. 

  90.                 break;
    91. 

  91.         }
    92. 

  92. 

  93.         $comments = getWorkComments($work);
    94. 

  94.         $commentForm = getWorkCommentForm($work);
    95. 

  95. 

  96.         $tpl = new Template();
    97. 

  97.         $tpl->assign('work', $work);
    98. 

  98.         $tpl->assign('work_comment_enabled', ALLOW_USER_COMMENTS);
    99. 

  99.         $tpl->assign('comments', $comments);
    100. 

  100.         if (api_is_allowed_to_session_edit()) {
    101. 

  101.             $tpl->assign('form', $commentForm);
    102. 

  102.         }
    103. 

  103.         $tpl->assign('is_allowed_to_edit', api_is_allowed_to_edit());
    104. 

  104. 

  105.         $template = $tpl->get_template('work/view.tpl');
    106. 

  106.         $content  = $tpl->fetch($template);
    107. 

  107.         $tpl->assign('content', $content);
    108. 

  108.         $tpl->display_one_col_template();
    109. 

  109.     } else {
    110. 

  110.         api_not_allowed(true);
    111. 

  111.     }
    112. 

  112. } else {
    113. 

  113.     api_not_allowed(true);
    114. 

  114. }
    115. 

  115.