Kezdőlap Felfedezés Súgó
Regisztráció Bejelentkezés
aj
/
chamilo-lms2
1
0
Másolás 0
Fájlok Problémák 0 Beolvasztási kérések 0 Wiki
Branch: ofajdev2017
Branch-ok Tag-ek
chamilo-lms2
/
main
/
mySpace
/
user_edit.php

user_edit.php 7.2 KB
Állandó hivatkozás Előzmények Nyers

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216 
  1. <?php
    2. 

  2. /* For licensing terms, see /license.txt */
    3. 

  3. 

  4. // including necessary libraries
    5. 

  5. $cidReset = true;
    6. 

  6. 

  7. require_once __DIR__.'/../inc/global.inc.php';
    8. 

  8. 

  9. // user permissions
    10. 

  10. api_block_anonymous_users();
    11. 

  11. 

  12. if (!api_is_platform_admin()) {
    13. 

  13.     if (!api_is_drh()) {
    14. 

  14.         api_not_allowed(true);
    15. 

  15.     }
    16. 

  16. } else {
    17. 

  17.     api_protect_admin_script();
    18. 

  18. }
    19. 

  19. 

  20. // Database table definitions
    21. 

  21. $table_admin = Database::get_main_table(TABLE_MAIN_ADMIN);
    22. 

  22. $table_user = Database::get_main_table(TABLE_MAIN_USER);
    23. 

  23. $database = Database::get_main_database();
    24. 

  24. 

  25. $userId = isset($_REQUEST['user_id']) ? intval($_REQUEST['user_id']) : '';
    26. 

  26. 

  27. $userInfo = api_get_user_info($userId);
    28. 

  28. if (empty($userInfo)) {
    29. 

  29.     api_not_allowed(true);
    30. 

  30. }
    31. 

  31. 

  32. $userIsFollowed = UserManager::is_user_followed_by_drh($userId, api_get_user_id());
    33. 

  33. 

  34. if (api_drh_can_access_all_session_content()) {
    35. 

  35.     $students = SessionManager::getAllUsersFromCoursesFromAllSessionFromStatus(
    36. 

  36.         'drh_all',
    37. 

  37.         api_get_user_id(),
    38. 

  38.         false,
    39. 

  39.         0, //$from,
    40. 

  40.         null, //$limit,
    41. 

  41.         null, //$column,
    42. 

  42.         'desc', //$direction,
    43. 

  43.         null, //$keyword,
    44. 

  44.         null, //$active,
    45. 

  45.         null, //$lastConnectionDate,
    46. 

  46.         null,
    47. 

  47.         null,
    48. 

  48.         STUDENT
    49. 

  49.     );
    50. 

  50. 

  51.     if (empty($students)) {
    52. 

  52.         api_not_allowed(true);
    53. 

  53.     }
    54. 

  54.     $userIdList = array();
    55. 

  55.     foreach ($students as $student) {
    56. 

  56.         $userIdList[] = $student['user_id'];
    57. 

  57.     }
    58. 

  58. 

  59.     if (!in_array($userId, $userIdList)) {
    60. 

  60.         api_not_allowed(true);
    61. 

  61.     }
    62. 

  62. } else {
    63. 

  63.     if (!$userIsFollowed) {
    64. 

  64.         api_not_allowed(true);
    65. 

  65.     }
    66. 

  66. }
    67. 

  67. 

  68. $url = api_get_self().'?user_id='.$userId;
    69. 

  69. $tool_name = get_lang('ModifyUserInfo');
    70. 

  70. // Create the form
    71. 

  71. $form = new FormValidator('user_edit', 'post', $url);
    72. 

  72. // Username
    73. 

  73. $usernameInput = $form->addElement('text', 'username', get_lang('LoginName'));
    74. 

  74. $usernameInput->freeze();
    75. 

  75. 

  76. // Password
    77. 

  77. $group = array();
    78. 

  78. $auth_sources = 0; //make available wider as we need it in case of form reset (see below)
    79. 

  79. /*if (count($extAuthSource) > 0) {
    80. 

  80. 	$group[] =& $form->createElement('radio', 'password_auto', null, get_lang('ExternalAuthentication').' ', 2);
    81. 

  81. 	$auth_sources = array();
    82. 

  82. 	foreach ($extAuthSource as $key => $info) {
    83. 

  83. 		$auth_sources[$key] = $key;
    84. 

  84. 	}
    85. 

  85. 	$group[] =& $form->createElement('select', 'auth_source', null, $auth_sources);
    86. 

  86. 	$group[] =& $form->createElement('static', '', '', '<br />');
    87. 

  87. }*/
    88. 

  88. $group[] = & $form->createElement('radio', 'password_auto', get_lang('Password'), get_lang('AutoGeneratePassword').'<br />', 1);
    89. 

  89. $group[] = & $form->createElement('radio', 'password_auto', 'id="radio_user_password"', null, 0);
    90. 

  90. $group[] = & $form->createElement('password', 'password', null, array('onkeydown' => 'javascript: password_switch_radio_button(document.user_add,"password[password_auto]");'));
    91. 

  91. $form->addGroup($group, 'password', get_lang('Password'));
    92. 

  92. 

  93. // Send email
    94. 

  94. $group = array();
    95. 

  95. $group[] = & $form->createElement('radio', 'send_mail', null, get_lang('Yes'), 1);
    96. 

  96. $group[] = & $form->createElement('radio', 'send_mail', null, get_lang('No'), 0);
    97. 

  97. $form->addGroup($group, 'mail', get_lang('SendMailToNewUser'));
    98. 

  98. 

  99. // Set default values
    100. 

  100. $defaults = array();
    101. 

  101. $defaults['username'] = $userInfo['username'];
    102. 

  102. $defaults['mail']['send_mail'] = 0;
    103. 

  103. $defaults['password']['password_auto'] = 1;
    104. 

  104. 

  105. $form->setDefaults($defaults);
    106. 

  106. // Submit button
    107. 

  107. $select_level = array();
    108. 

  108. $html_results_enabled[] = $form->addButtonUpdate(get_lang('Update'), 'submit', true);
    109. 

  109. $form->addGroup($html_results_enabled);
    110. 

  110. // Validate form
    111. 

  111. if ($form->validate()) {
    112. 

  112. 	$check = Security::check_token('post');
    113. 

  113. 	if ($check) {
    114. 

  114. 		$user = $form->exportValues();
    115. 

  115. 		$email = $userInfo['email'];
    116. 

  116.         $username = $userInfo['username'];
    117. 

  117. 		$send_mail = intval($user['mail']['send_mail']);
    118. 

  118.         $auth_source = PLATFORM_AUTH_SOURCE;
    119. 

  119. 

  120.         $resetPassword = $user['password']['password_auto'] == '1' ? 0 : 2;
    121. 

  121. 

  122. 		if (count($extAuthSource) > 0 && $user['password']['password_auto'] == '2') {
    123. 

  123. 			//$auth_source = $user['password']['auth_source'];
    124. 

  124. 			//$password = 'PLACEHOLDER';
    125. 

  125. 		} else {
    126. 

  126. 			//$auth_source = PLATFORM_AUTH_SOURCE;
    127. 

  127. 			//$password = $user['password']['password_auto'] == '1' ? api_generate_password() : $user['password']['password'];
    128. 

  128. 		}
    129. 

  129. 

  130.         $auth_source = $userInfo['auth_source'];
    131. 

  131.         $password = $user['password']['password_auto'] == '1' ? api_generate_password() : $user['password']['password'];
    132. 

  132. 

  133.         UserManager::update_user(
    134. 

  134.             $userId,
    135. 

  135.             $userInfo['firstname'],
    136. 

  136.             $userInfo['lastname'],
    137. 

  137.             $userInfo['username'],
    138. 

  138.             $password,
    139. 

  139.             $auth_source,
    140. 

  140.             $userInfo['email'],
    141. 

  141.             $userInfo['status'],
    142. 

  142.             $userInfo['official_code'],
    143. 

  143.             $userInfo['phone'],
    144. 

  144.             $userInfo['picture_uri'],
    145. 

  145.             $userInfo['expiration_date'],
    146. 

  146.             $userInfo['active'],
    147. 

  147.             $userInfo['creator_id'],
    148. 

  148.             $userInfo['hr_dept_id'],
    149. 

  149.             null, //$extra =
    150. 

  150.             $userInfo['language'],
    151. 

  151.             null, //$encrypt_method
    152. 

  152.             false,
    153. 

  153.             $resetPassword
    154. 

  154.         );
    155. 

  155. 

  156. 		if (!empty($email) && $send_mail) {
    157. 

  157. 			$emailsubject = '['.api_get_setting('siteName').'] '.get_lang('YourReg').' '.api_get_setting('siteName');
    158. 

  158. 			$portal_url = api_get_path(WEB_PATH);
    159. 

  159. 			if (api_is_multiple_url_enabled()) {
    160. 

  160. 				$access_url_id = api_get_current_access_url_id();
    161. 

  161. 				if ($access_url_id != -1) {
    162. 

  162. 					$url = api_get_access_url($access_url_id);
    163. 

  163. 					$portal_url = $url['url'];
    164. 

  164. 				}
    165. 

  165. 			}
    166. 

  166. 

  167. 			$emailbody = get_lang('Dear')." ".stripslashes(api_get_person_name($userInfo['firstname'], $userInfo['lastname'])).",\n\n".
    168. 

  168.                 get_lang('YouAreReg')." ".api_get_setting('siteName')." ".get_lang('WithTheFollowingSettings')."\n\n".
    169. 

  169.                 get_lang('Username')." : ".$username."\n".get_lang('Pass')." : ".stripslashes($password)."\n\n".
    170. 

  170.                 get_lang('Address')." ".api_get_setting('siteName')." ".
    171. 

  171.                 get_lang('Is')." : ".$portal_url."\n\n".
    172. 

  172.                 get_lang('Problem')."\n\n".
    173. 

  173.                 get_lang('SignatureFormula').",\n\n".
    174. 

  174.                 api_get_person_name(api_get_setting('administratorName'), api_get_setting('administratorSurname'))."\n".
    175. 

  175.                 get_lang('Manager')." ".
    176. 

  176.                 api_get_setting('siteName')."\nT. ".
    177. 

  177.                 api_get_setting('administratorTelephone')."\n".
    178. 

  178.                 get_lang('Email')." : ".api_get_setting('emailAdministrator');
    179. 

  179.             $emailbody = nl2br($emailbody);
    180. 

  180. 

  181. 			api_mail_html(
    182. 

  182.                 api_get_person_name($userInfo['firstname'], $userInfo['lastname'], null, PERSON_NAME_EMAIL_ADDRESS),
    183. 

  183.                 $email,
    184. 

  184.                 $emailsubject,
    185. 

  185.                 $emailbody
    186. 

  186.             );
    187. 

  187. 		}
    188. 

  188. 

  189. 		Security::clear_token();
    190. 

  190.         $tok = Security::get_token();
    191. 

  191.         header('Location: '.$url.'&message=1');
    192. 

  192.         exit();
    193. 

  193. 	}
    194. 

  194. } else {
    195. 

  195. 	if (isset($_POST['submit'])) {
    196. 

  196. 		Security::clear_token();
    197. 

  197. 	}
    198. 

  198. 	$token = Security::get_token();
    199. 

  199. 	$form->addElement('hidden', 'sec_token');
    200. 

  200. 	$form->setConstants(array('sec_token' => $token));
    201. 

  201. }
    202. 

  202. 

  203. $interbreadcrumb[] = array(
    204. 

  204.     'url' => api_get_path(WEB_CODE_PATH)."mySpace/student.php",
    205. 

  205.     "name" => get_lang('UserList'),
    206. 

  206. );
    207. 

  207. 

  208. if (isset($_REQUEST['message'])) {
    209. 

  209. 	Display::addFlash(Display::return_message(get_lang('Updated'), 'normal'));
    210. 

  210. }
    211. 

  211. 

  212. Display::display_header($tool_name);
    213. 

  213. // Display form
    214. 

  214. $form->display();
    215. 

  215. 

  216. Display::display_footer();
    217.