online.inc.php 16 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465
  1. <?php
  2. /* For licensing terms, see /license.txt */
  3. use ChamiloSession as Session;
  4. /**
  5. * Code library for showing Who is online
  6. *
  7. * @author Istvan Mandak, principal author
  8. * @author Denes Nagy, principal author
  9. * @author Bart Mollet
  10. * @author Roan Embrechts, cleaning and bugfixing
  11. * @package chamilo.whoisonline
  12. */
  13. /**
  14. * Insert a login reference for the current user into the track_e_online stats table.
  15. * This table keeps trace of the last login. Nothing else matters (we don't keep traces of anything older)
  16. * @param int user id
  17. * @return void
  18. */
  19. function LoginCheck($uid)
  20. {
  21. $_course = api_get_course_info();
  22. $uid = (int) $uid;
  23. $online_table = Database::get_main_table(TABLE_STATISTIC_TRACK_E_ONLINE);
  24. if (!empty($uid)) {
  25. $user_ip = '';
  26. if (!empty($_SERVER['REMOTE_ADDR'])) {
  27. $user_ip = Database::escape_string(api_get_real_ip());
  28. }
  29. $login_date = api_get_utc_datetime();
  30. $access_url_id = 1;
  31. if (api_get_multiple_access_url() && api_get_current_access_url_id() != -1) {
  32. $access_url_id = api_get_current_access_url_id();
  33. }
  34. $session_id = api_get_session_id();
  35. // if the $_course array exists this means we are in a course and we have to store this in the who's online table also
  36. // to have the x users in this course feature working
  37. if (is_array($_course) && count($_course) > 0 && !empty($_course['id'])) {
  38. $query = "REPLACE INTO ".$online_table." (login_id,login_user_id,login_date,user_ip, c_id, session_id, access_url_id)
  39. VALUES ($uid,$uid,'$login_date','$user_ip', '".$_course['real_id']."' , '$session_id' , '$access_url_id' )";
  40. } else {
  41. $query = "REPLACE INTO ".$online_table." (login_id,login_user_id,login_date,user_ip, c_id, session_id, access_url_id)
  42. VALUES ($uid,$uid,'$login_date','$user_ip', 0, '$session_id', '$access_url_id')";
  43. }
  44. Database::query($query);
  45. }
  46. }
  47. /**
  48. * @param int $userId
  49. */
  50. function preventMultipleLogin($userId)
  51. {
  52. $table = Database::get_main_table(TABLE_STATISTIC_TRACK_E_ONLINE);
  53. $userId = intval($userId);
  54. if (api_get_setting('prevent_multiple_simultaneous_login') === 'true') {
  55. if (!empty($userId) && !api_is_anonymous()) {
  56. $isFirstLogin = Session::read('first_user_login');
  57. if (empty($isFirstLogin)) {
  58. $sql = "SELECT login_id FROM $table
  59. WHERE login_user_id = $userId
  60. LIMIT 1";
  61. $result = Database::query($sql);
  62. $loginData = array();
  63. if (Database::num_rows($result)) {
  64. $loginData = Database::fetch_array($result);
  65. }
  66. $userIsReallyOnline = user_is_online($userId);
  67. // Trying double login.
  68. if (!empty($loginData) && $userIsReallyOnline == true) {
  69. session_regenerate_id();
  70. Session::destroy();
  71. header('Location: '.api_get_path(WEB_PATH).'index.php?loginFailed=1&error=multiple_connection_not_allowed');
  72. exit;
  73. } else {
  74. // First time
  75. Session::write('first_user_login', 1);
  76. }
  77. }
  78. }
  79. }
  80. }
  81. /**
  82. * This function handles the logout and is called whenever there is a $_GET['logout']
  83. * @return void Directly redirects the user or leaves him where he is, but doesn't return anything
  84. * @author Fernando P. García <fernando@develcuy.com>
  85. */
  86. function online_logout($user_id = null, $logout_redirect = false)
  87. {
  88. global $extAuthSource;
  89. // Database table definition
  90. $tbl_track_login = Database::get_main_table(TABLE_STATISTIC_TRACK_E_LOGIN);
  91. if (empty($user_id)) {
  92. $user_id = isset($_GET['uid']) ? intval($_GET['uid']) : 0;
  93. }
  94. //Changing global chat status to offline
  95. if (api_is_global_chat_enabled()) {
  96. $chat = new Chat();
  97. $chat->setUserStatus(0);
  98. }
  99. // selecting the last login of the user
  100. $sql = "SELECT login_id, login_date
  101. FROM $tbl_track_login
  102. WHERE login_user_id = $user_id
  103. ORDER BY login_date DESC
  104. LIMIT 0,1";
  105. $q_last_connection = Database::query($sql);
  106. if (Database::num_rows($q_last_connection) > 0) {
  107. $i_id_last_connection = Database::result($q_last_connection, 0, "login_id");
  108. }
  109. if (!isset($_SESSION['login_as'])) {
  110. $current_date = api_get_utc_datetime();
  111. $sql = "UPDATE $tbl_track_login SET logout_date='".$current_date."'
  112. WHERE login_id='$i_id_last_connection'";
  113. Database::query($sql);
  114. }
  115. LoginDelete($user_id); //from inc/lib/online.inc.php - removes the "online" status
  116. //the following code enables the use of an external logout function.
  117. //example: define a $extAuthSource['ldap']['logout']="file.php" in configuration.php
  118. // then a function called ldap_logout() inside that file
  119. // (using *authent_name*_logout as the function name) and the following code
  120. // will find and execute it
  121. $uinfo = api_get_user_info($user_id);
  122. if (($uinfo['auth_source'] != PLATFORM_AUTH_SOURCE) && is_array($extAuthSource)) {
  123. if (is_array($extAuthSource[$uinfo['auth_source']])) {
  124. $subarray = $extAuthSource[$uinfo['auth_source']];
  125. if (!empty($subarray['logout']) && file_exists($subarray['logout'])) {
  126. require_once($subarray['logout']);
  127. $logout_function = $uinfo['auth_source'].'_logout';
  128. if (function_exists($logout_function)) {
  129. $logout_function($uinfo);
  130. }
  131. }
  132. }
  133. }
  134. CourseChatUtils::exitChat($user_id);
  135. session_regenerate_id();
  136. Session::destroy();
  137. if ($logout_redirect) {
  138. header("Location: ".api_get_path(WEB_PATH)."index.php");
  139. exit;
  140. }
  141. }
  142. /**
  143. * Remove all login records from the track_e_online stats table, for the given user ID.
  144. * @param int User ID
  145. * @return void
  146. */
  147. function LoginDelete($user_id)
  148. {
  149. $online_table = Database::get_main_table(TABLE_STATISTIC_TRACK_E_ONLINE);
  150. $user_id = intval($user_id);
  151. $query = "DELETE FROM ".$online_table." WHERE login_user_id = $user_id";
  152. Database::query($query);
  153. }
  154. /**
  155. * @param int $user_id
  156. * @return bool
  157. */
  158. function user_is_online($user_id)
  159. {
  160. $track_online_table = Database::get_main_table(TABLE_STATISTIC_TRACK_E_ONLINE);
  161. $table_user = Database::get_main_table(TABLE_MAIN_USER);
  162. $access_url_id = api_get_current_access_url_id();
  163. $time_limit = api_get_setting('time_limit_whosonline');
  164. $online_time = time() - $time_limit * 60;
  165. $limit_date = api_get_utc_datetime($online_time);
  166. $user_id = intval($user_id);
  167. $query = " SELECT login_user_id, login_date
  168. FROM $track_online_table track
  169. INNER JOIN $table_user u
  170. ON (u.id=track.login_user_id)
  171. WHERE
  172. track.access_url_id = $access_url_id AND
  173. login_date >= '".$limit_date."' AND
  174. u.id = $user_id
  175. LIMIT 1 ";
  176. $result = Database::query($query);
  177. if (Database::num_rows($result)) {
  178. return true;
  179. }
  180. return false;
  181. }
  182. /**
  183. * Gives a list of people online now (and in the last $valid minutes)
  184. *
  185. * @param $from
  186. * @param $number_of_items
  187. * @param null $column
  188. * @param null $direction
  189. * @param null $time_limit
  190. * @param bool $friends
  191. * @return array|bool For each line, a list of user IDs and login dates, or FALSE on error or empty results
  192. */
  193. function who_is_online($from, $number_of_items, $column = null, $direction = null, $time_limit = null, $friends = false)
  194. {
  195. // Time limit in seconds?
  196. if (empty($time_limit)) {
  197. $time_limit = api_get_setting('time_limit_whosonline');
  198. } else {
  199. $time_limit = intval($time_limit);
  200. }
  201. $from = intval($from);
  202. $number_of_items = intval($number_of_items);
  203. if (empty($column)) {
  204. $column = 'picture_uri';
  205. if ($friends) {
  206. $column = 'login_date';
  207. }
  208. }
  209. if (empty($direction)) {
  210. $direction = 'DESC';
  211. } else {
  212. if (!in_array(strtolower($direction), array('asc', 'desc'))) {
  213. $direction = 'DESC';
  214. }
  215. }
  216. $online_time = time() - $time_limit * 60;
  217. $current_date = api_get_utc_datetime($online_time);
  218. $track_online_table = Database::get_main_table(TABLE_STATISTIC_TRACK_E_ONLINE);
  219. $friend_user_table = Database::get_main_table(TABLE_MAIN_USER_REL_USER);
  220. $table_user = Database::get_main_table(TABLE_MAIN_USER);
  221. if ($friends) {
  222. // who friends from social network is online
  223. $query = "SELECT DISTINCT login_user_id, login_date
  224. FROM $track_online_table INNER JOIN $friend_user_table
  225. ON (friend_user_id = login_user_id)
  226. WHERE
  227. login_date >= '".$current_date."' AND
  228. friend_user_id <> '".api_get_user_id()."' AND
  229. relation_type='".USER_RELATION_TYPE_FRIEND."' AND
  230. user_id = '".api_get_user_id()."'
  231. ORDER BY $column $direction
  232. LIMIT $from, $number_of_items";
  233. } else {
  234. $query = "SELECT DISTINCT login_user_id, login_date
  235. FROM ".$track_online_table." e
  236. INNER JOIN ".$table_user." u ON (u.id = e.login_user_id)
  237. WHERE u.status != ".ANONYMOUS." AND login_date >= '".$current_date."'
  238. ORDER BY $column $direction
  239. LIMIT $from, $number_of_items";
  240. }
  241. if (api_get_multiple_access_url()) {
  242. $access_url_id = api_get_current_access_url_id();
  243. if ($access_url_id != -1) {
  244. if ($friends) {
  245. // friends from social network is online
  246. $query = "SELECT distinct login_user_id, login_date
  247. FROM $track_online_table track INNER JOIN $friend_user_table
  248. ON (friend_user_id = login_user_id)
  249. WHERE track.access_url_id = $access_url_id AND
  250. login_date >= '".$current_date."' AND
  251. friend_user_id <> '".api_get_user_id()."' AND
  252. relation_type='".USER_RELATION_TYPE_FRIEND."'
  253. ORDER BY $column $direction
  254. LIMIT $from, $number_of_items";
  255. } else {
  256. // all users online
  257. $query = "SELECT login_user_id, login_date
  258. FROM ".$track_online_table." track
  259. INNER JOIN ".$table_user." u
  260. ON (u.id=track.login_user_id)
  261. WHERE u.status != ".ANONYMOUS." AND track.access_url_id = $access_url_id AND
  262. login_date >= '".$current_date."'
  263. ORDER BY $column $direction
  264. LIMIT $from, $number_of_items";
  265. }
  266. }
  267. }
  268. //This query will show all registered users. Only for dev purposes.
  269. /*$query = "SELECT DISTINCT u.id as login_user_id, login_date
  270. FROM $track_online_table e, $table_user u
  271. GROUP by u.id
  272. ORDER BY $column $direction
  273. LIMIT $from, $number_of_items";*/
  274. $result = Database::query($query);
  275. if ($result) {
  276. $users_online = array();
  277. while (list($login_user_id, $login_date) = Database::fetch_row($result)) {
  278. $users_online[] = $login_user_id;
  279. }
  280. return $users_online;
  281. } else {
  282. return false;
  283. }
  284. }
  285. function who_is_online_count($time_limit = null, $friends = false)
  286. {
  287. if (empty($time_limit)) {
  288. $time_limit = api_get_setting('time_limit_whosonline');
  289. } else {
  290. $time_limit = intval($time_limit);
  291. }
  292. $track_online_table = Database::get_main_table(TABLE_STATISTIC_TRACK_E_ONLINE);
  293. $friend_user_table = Database::get_main_table(TABLE_MAIN_USER_REL_USER);
  294. $table_user = Database::get_main_table(TABLE_MAIN_USER);
  295. $online_time = time() - $time_limit * 60;
  296. $current_date = api_get_utc_datetime($online_time);
  297. if ($friends) {
  298. // who friends from social network is online
  299. $query = "SELECT DISTINCT count(login_user_id) as count
  300. FROM $track_online_table INNER JOIN $friend_user_table
  301. ON (friend_user_id = login_user_id)
  302. WHERE
  303. login_date >= '$current_date' AND
  304. friend_user_id <> '".api_get_user_id()."' AND
  305. relation_type='".USER_RELATION_TYPE_FRIEND."' AND
  306. user_id = '".api_get_user_id()."' ";
  307. } else {
  308. // All users online
  309. $query = "SELECT count(login_id) as count
  310. FROM $track_online_table track INNER JOIN $table_user u
  311. ON (u.id=track.login_user_id)
  312. WHERE u.status != ".ANONYMOUS." AND login_date >= '$current_date' ";
  313. }
  314. if (api_get_multiple_access_url()) {
  315. $access_url_id = api_get_current_access_url_id();
  316. if ($access_url_id != -1) {
  317. if ($friends) {
  318. // friends from social network is online
  319. $query = "SELECT DISTINCT count(login_user_id) as count
  320. FROM $track_online_table track
  321. INNER JOIN $friend_user_table ON (friend_user_id = login_user_id)
  322. WHERE
  323. track.access_url_id = $access_url_id AND
  324. login_date >= '".$current_date."' AND
  325. friend_user_id <> '".api_get_user_id()."' AND
  326. relation_type='".USER_RELATION_TYPE_FRIEND."' ";
  327. } else {
  328. // all users online
  329. $query = "SELECT count(login_id) as count FROM $track_online_table track
  330. INNER JOIN $table_user u ON (u.id=track.login_user_id)
  331. WHERE
  332. u.status != ".ANONYMOUS." AND
  333. track.access_url_id = $access_url_id AND
  334. login_date >= '$current_date' ";
  335. }
  336. }
  337. }
  338. // Dev purposes show all users online
  339. /*$table_user = Database::get_main_table(TABLE_MAIN_USER);
  340. $query = "SELECT count(*) as count FROM ".$table_user;*/
  341. $result = Database::query($query);
  342. if (Database::num_rows($result) > 0) {
  343. $row = Database::fetch_array($result);
  344. return $row['count'];
  345. } else {
  346. return false;
  347. }
  348. }
  349. /**
  350. * Returns a list (array) of users who are online and in this course.
  351. * @param int User ID
  352. * @param int Number of minutes
  353. * @param string Course code (could be empty, but then the function returns false)
  354. * @return array Each line gives a user id and a login time
  355. */
  356. function who_is_online_in_this_course($from, $number_of_items, $uid, $time_limit, $course_code)
  357. {
  358. if (empty($course_code)) {
  359. return false;
  360. }
  361. if (empty($time_limit)) {
  362. $time_limit = api_get_setting('time_limit_whosonline');
  363. } else {
  364. $time_limit = intval($time_limit);
  365. }
  366. $online_time = time() - $time_limit * 60;
  367. $current_date = api_get_utc_datetime($online_time);
  368. $track_online_table = Database::get_main_table(TABLE_STATISTIC_TRACK_E_ONLINE);
  369. $course_code = Database::escape_string($course_code);
  370. $courseInfo = api_get_course_info($course_code);
  371. $courseId = $courseInfo['real_id'];
  372. $from = intval($from);
  373. $number_of_items = intval($number_of_items);
  374. $query = "SELECT login_user_id, login_date FROM $track_online_table
  375. WHERE login_user_id <> 2 AND c_id = $courseId AND login_date >= '$current_date'
  376. LIMIT $from, $number_of_items ";
  377. $result = Database::query($query);
  378. if ($result) {
  379. $users_online = array();
  380. while (list($login_user_id, $login_date) = Database::fetch_row($result)) {
  381. $users_online[] = $login_user_id;
  382. }
  383. return $users_online;
  384. } else {
  385. return false;
  386. }
  387. }
  388. function who_is_online_in_this_course_count($uid, $time_limit, $coursecode = null)
  389. {
  390. if (empty($coursecode)) {
  391. return false;
  392. }
  393. $track_online_table = Database::get_main_table(TABLE_STATISTIC_TRACK_E_ONLINE);
  394. $time_limit = Database::escape_string($time_limit);
  395. $online_time = time() - $time_limit * 60;
  396. $current_date = api_get_utc_datetime($online_time);
  397. $courseId = api_get_course_int_id($coursecode);
  398. if (empty($courseId)) {
  399. return false;
  400. }
  401. $query = "SELECT count(login_user_id) as count
  402. FROM $track_online_table
  403. WHERE login_user_id <> 2 AND c_id = $courseId AND login_date >= '$current_date' ";
  404. $result = Database::query($query);
  405. if (Database::num_rows($result) > 0) {
  406. $row = Database::fetch_array($result);
  407. return $row['count'];
  408. } else {
  409. return false;
  410. }
  411. }