Ana Sayfa Keşfet Yardım
Üye Ol Giriş Yap
aj
/
chamilo-lms2
1
0
Çatalla 0
Dosyalar Sorunlar 0 Değişiklik İstekleri 0 Wiki
Dal: css_educations
Dallar Biçim İmleri
chamilo-lms2
/
main
/
permissions
/
roles.php

roles.php 8.1 KB
Kalıcı Bağlantı Geçmiş Ham

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * @package chamilo.permissions
    4. 

  4.  */
    5. 

  5. require '../inc/global.inc.php';
    6. 

  6. require_once 'permissions_functions.inc.php';
    7. 

  7. require_once 'all_permissions.inc.php';
    8. 

  8. 

  9. $tool_name = get_lang('Roles'); // title of the page (should come from the language file)
    10. 

  10. 

  11. Display::display_header($tool_name);
    12. 

  12. // 			ACTIONS
    13. 

  13. 

  14. // storing all the permission for a given role when the checkbox approach is used
    15. 

  15. if ($_POST['StoreRolePermissions']) {
    16. 

  16.     if (!empty($_POST['role_name'])) {
    17. 

  17.         $table_role = Database::get_course_table(TABLE_ROLE);
    18. 

  18.         $sql = "INSERT INTO $table_role (role_name, role_comment, default_role)
    19. 

  19.                     VALUES ('".Database::escape_string($_POST['role_name'])."','".Database::escape_string($_POST['role_comment'])."','".Database::escape_string($_POST['default_role'])."')";
    20. 

  20.         $result = Database::query($sql);
    21. 

  21.         $role_id = Database::insert_id();
    22. 

  22.         $result_message = store_permissions('role', $role_id);
    23. 

  23.     } else {
    24. 

  24.         $result_message = get_lang('ErrorPleaseGiveRoleName');
    25. 

  25.     }
    26. 

  26. }
    27. 

  27. // storing a permission for a given role when the image approach is used
    28. 

  28. if (isset($_GET['action']) and isset($_GET['permission']) and isset($_GET['tool'])) {
    29. 

  29.     if ($_GET['action'] == 'grant' or $_GET['action'] == 'revoke') {
    30. 

  30.         $result_message = store_one_permission('role', $_GET['action'], $role_id, $_GET['tool'], $_GET['permission']);
    31. 

  31.     }
    32. 

  32. }
    33. 

  33. 

  34. // deleting a role
    35. 

  35. if (isset($_GET['action']) and isset($_GET['role_id']) and $_GET['action'] == 'delete') {
    36. 

  36.     //deleting the assignments fo this role: users
    37. 

  37.     $table = Database::get_course_table(TABLE_ROLE_USER);
    38. 

  38.     $sql = "DELETE FROM $table WHERE role_id='".intval($_GET['role_id'])."'";
    39. 

  39.     $result = Database::query($sql);
    40. 

  40. 

  41.     // deleting the assignments of this role: groups
    42. 

  42.     $table = Database::get_course_table(TABLE_ROLE_GROUP);
    43. 

  43.     $sql = "DELETE FROM $table WHERE role_id='".intval($_GET['role_id'])."'";
    44. 

  44.     $result = Database::query($sql);
    45. 

  45. 

  46.     // deleting the permissions of this role
    47. 

  47.     $table = Database::get_course_table(TABLE_ROLE_PERMISSION);
    48. 

  48.     $sql = "DELETE FROM $table WHERE role_id='".intval($_GET['role_id'])."'";
    49. 

  49.     $result = Database::query($sql);
    50. 

  50. 

  51.     // deleting the role
    52. 

  52.     $table_role = Database::get_course_table(TABLE_ROLE);
    53. 

  53.     $sql = "DELETE FROM $table_role WHERE role_id='".intval($_GET['role_id'])."'";
    54. 

  54.     $result = Database::query($sql);
    55. 

  55.     $result_message = get_lang('RoleDeleted');
    56. 

  56. }
    57. 

  57. 

  58. // displaying the return message of the actions
    59. 

  59. if (isset($result_message)) {
    60. 

  60.     echo Display::return_message($result_message);
    61. 

  61. }
    62. 

  62. 

  63. // 		ADDING A NEW ROLE (FORM AND LINK)
    64. 

  64. echo '<img src="../img/add.png" /> <a href="roles.php?action=add">'.get_lang('AddRole').'</a>';
    65. 

  65. 

  66. if ($_GET['action'] == 'add') {
    67. 

  67.     echo "<form method=\"post\" action=\"".api_get_self()."\">";
    68. 

  68.     echo "\n<table>";
    69. 

  69.     echo "\n\t<tr>";
    70. 

  70.     echo "\n\t\t<td>";
    71. 

  71.     echo get_lang('RoleName');
    72. 

  72.     echo "\n\t\t</td>";
    73. 

  73.     echo "\n\t\t<td>";
    74. 

  74.     echo "\n\t\t\t<input type='text' name='role_name'>";
    75. 

  75.     echo "\n\t\t</td>";
    76. 

  76.     echo "\n\t</tr>";
    77. 

  77.     echo "\n\t<tr>";
    78. 

  78.     echo "\n\t\t<td>";
    79. 

  79.     echo get_lang('RoleComment');
    80. 

  80.     echo "\n\t\t</td>";
    81. 

  81.     echo "\n\t\t<td>";
    82. 

  82.     echo "\n\t\t\t<textarea name='role_comment'></textarea>";
    83. 

  83.     echo "\n\t\t</td>";
    84. 

  84.     echo "\n\t</tr>";
    85. 

  85.     echo "\n\t<tr>";
    86. 

  86.     echo "\n\t\t<td>";
    87. 

  87.     echo get_lang('DefaultRole');
    88. 

  88.     echo "\n\t\t</td>";
    89. 

  89.     echo "\n\t\t<td>";
    90. 

  90.     echo "\n\t\t\t<input type=\"checkbox\" name=\"default_role\" value=\"1\">";
    91. 

  91.     echo "\n\t\t</td>";
    92. 

  92.     echo "\n\t</tr>";
    93. 

  93.     echo "\n</table>";
    94. 

  94.     echo "<table class=\"data_table\">\n";
    95. 

  95. 

  96.     // the header
    97. 

  97.     if (api_get_setting('permissions') == 'limited') {
    98. 

  98.         $header_array = $rights_limited;
    99. 

  99.     }
    100. 

  100.     if (api_get_setting('permissions') == 'full') {
    101. 

  101.         $header_array = $rights_full;
    102. 

  102.     }
    103. 

  103.     echo "\t<tr>\n";
    104. 

  104.     echo "\t\t<th>".get_lang('Module')."</th>\n";
    105. 

  105.     foreach ($header_array as $header_key => $header_value) {
    106. 

  106.         echo "\t\t<th>".get_lang($header_value)."</th>\n";
    107. 

  107.     }
    108. 

  108.     echo "\t</tr>\n";
    109. 

  109. 

  110.     // the main area with the checkboxes or images
    111. 

  111.     foreach ($tool_rights as $tool => $rights) { // $tool_rights contains all the possible tools and their rights
    112. 

  112.         echo "\t<tr>\n";
    113. 

  113.         echo "\t\t<td>\n";
    114. 

  114.         echo get_lang($tool);
    115. 

  115.         echo "\t\t</td>\n";
    116. 

  116. 

  117.         foreach ($header_array as $key => $value) {
    118. 

  118.             echo "\t\t<td align='center'>\n";
    119. 

  119.             display_checkbox_matrix([], $tool, $value);
    120. 

  120.             echo "\t\t</td>\n";
    121. 

  121.         }
    122. 

  122.         echo "\t</tr>\n";
    123. 

  123.     }
    124. 

  124. 

  125.     echo "</table>\n";
    126. 

  126.     echo "<input type=\"Submit\" name=\"StoreRolePermissions\" value=\"".get_lang('StorePermissions')."\">";
    127. 

  127.     echo "</form>";
    128. 

  128. }
    129. 

  129. 

  130. // 		DISPLAYING THE EXISTING ROLES
    131. 

  131. // platform roles
    132. 

  132. $all_roles = get_all_roles('platform');
    133. 

  133. foreach ($all_roles as $role) {
    134. 

  134.     echo '<div><a href="roles.php?action=view&amp;role_id='.$role['role_id'].'&amp;scope=platform">'.$role['role_name'].'</a></div>';
    135. 

  135.     echo '<div>'.$role['role_comment'].'</div><br />';
    136. 

  136.     if ($role['role_id'] == $_GET['role_id']) {
    137. 

  137.         $current_role_info = $role;
    138. 

  138.     }
    139. 

  139. }
    140. 

  140. // course roles
    141. 

  141. $all_roles = get_all_roles();
    142. 

  142. foreach ($all_roles as $role) {
    143. 

  143.     echo '<div><a href="roles.php?action=view&amp;role_id='.$role['role_id'].'">'.$role['role_name'].'</a><a href="roles.php?action=delete&amp;role_id='.$role['role_id'].'"><img src="../img/delete.gif" /></a></div>';
    144. 

  144.     echo '<div>'.$role['role_comment'].'</div><br />';
    145. 

  145.     if ($role['role_id'] == $_GET['role_id']) {
    146. 

  146.         $current_role_info = $role;
    147. 

  147.     }
    148. 

  148. }
    149. 

  149. 

  150. // 		DISPLAYING THE PERMISSIONS OF A GIVEN ROLE
    151. 

  151. if ($_GET['role_id']) {
    152. 

  152.     $current_role_permissions = get_permissions('role', $_GET['role_id']);
    153. 

  153.     // 			LIMITED OR FULL
    154. 

  154.     $current_role_permissions = limited_or_full($current_role_permissions);
    155. 

  155.     if (api_get_setting('permissions') == 'limited') {
    156. 

  156.         $header_array = $rights_limited;
    157. 

  157.     }
    158. 

  158.     if (api_get_setting('permissions') == 'full') {
    159. 

  159.         $header_array = $rights_full;
    160. 

  160.     }
    161. 

  161.     // ---------------------------------------------------
    162. 

  162.     // 			DISPLAYING THE MATRIX
    163. 

  163.     // ---------------------------------------------------
    164. 

  164.     echo "<form method=\"post\" action=\"".str_replace('&', '&amp;', $_SERVER['REQUEST_URI'])."\">";
    165. 

  165. 

  166.     // the list of the roles for the user
    167. 

  167.     echo get_lang('PermissionsOfRole').':'.$current_role_info['role_name'].'<br />';
    168. 

  168.     if ($_GET['scope'] == 'platform') {
    169. 

  169.         echo get_lang('IsPlatformRoleNotEditable').'<br />';
    170. 

  170.     }
    171. 

  171. 

  172.     echo "<table class=\"data_table\">\n";
    173. 

  173. 

  174.     // the header
    175. 

  175.     echo "\t<tr>\n";
    176. 

  176.     echo "\t\t<th>".get_lang('Module')."</th>\n";
    177. 

  177.     foreach ($header_array as $header_key => $header_value) {
    178. 

  178.         echo "\t\t<th>".get_lang($header_value)."</th>\n";
    179. 

  179.     }
    180. 

  180.     echo "\t</tr>\n";
    181. 

  181. 

  182.     // the main area with the checkboxes or images
    183. 

  183.     foreach ($tool_rights as $tool => $rights) { // $tool_rights contains all the possible tools and their rights
    184. 

  184.         echo "\t<tr>\n";
    185. 

  185.         echo "\t\t<td>\n";
    186. 

  186.         echo get_lang($tool);
    187. 

  187.         echo "\t\t</td>\n";
    188. 

  188. 

  189.         foreach ($header_array as $key => $value) {
    190. 

  190.             echo "\t\t<td align='center'>\n";
    191. 

  191.             if (in_array($value, $rights)) {
    192. 

  192.                 if ($setting_visualisation == 'checkbox') {
    193. 

  193.                     display_checkbox_matrix(
    194. 

  194.                         $current_role_permissions,
    195. 

  195.                         $tool,
    196. 

  196.                         $value
    197. 

  197.                     );
    198. 

  198.                 }
    199. 

  199.                 if ($setting_visualisation == 'image') {
    200. 

  200.                     if ($_GET['scope'] == 'platform') {
    201. 

  201.                         $roles_editable = false;
    202. 

  202.                     } else {
    203. 

  203.                         $roles_editable = true;
    204. 

  204.                     }
    205. 

  205.                     display_image_matrix(
    206. 

  206.                         $current_role_permissions,
    207. 

  207.                         $tool,
    208. 

  208.                         $value,
    209. 

  209.                         '',
    210. 

  210.                         '',
    211. 

  211.                         $roles_editable
    212. 

  212.                     );
    213. 

  213.                 }
    214. 

  214.             }
    215. 

  215.             echo "\t\t</td>\n";
    216. 

  216.         }
    217. 

  217.         echo "\t</tr>\n";
    218. 

  218.     }
    219. 

  219. 

  220.     echo "</table>\n";
    221. 

  221.     if ($setting_visualisation == 'checkbox') {
    222. 

  222.         echo "<input type=\"Submit\" name=\"StoreRolePermissions\" value=\"".get_lang('StorePermissions')."\">";
    223. 

  223.     }
    224. 

  224.     echo "</form>";
    225. 

  225. }
    226. 

  226. 

  227. Display::display_footer();
    228.