[moodle.git] / admin / tool / dataprivacy / createdatarequest.php

<?php
// This file is part of Moodle - http://moodle.org/
//
// Moodle is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// Moodle is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with Moodle.  If not, see <http://www.gnu.org/licenses/>.

/**
 * Prints the contact form to the site's Data Protection Officer
 *
 * @copyright 2018 onwards Jun Pataleta
 * @license http://www.gnu.org/copyleft/gpl.html GNU Public License
 * @package tool_dataprivacy
 */

require_once('../../../config.php');
require_once('lib.php');
require_once('classes/api.php');
require_once('createdatarequest_form.php');

$manage = optional_param('manage', 0, PARAM_INT);

$url = new moodle_url('/admin/tool/dataprivacy/createdatarequest.php', ['manage' => $manage]);

$PAGE->set_url($url);

require_login();
if (isguestuser()) {
    print_error('noguest');
}

// Return URL and context.
if ($manage) {
    // For the case where DPO creates data requests on behalf of another user.
    $returnurl = new moodle_url($CFG->wwwroot . '/admin/tool/dataprivacy/datarequests.php');
    $context = context_system::instance();
    // Make sure the user has the proper capability.
    require_capability('tool/dataprivacy:managedatarequests', $context);
} else {
    // For the case where a user makes request for themselves (or for their children if they are the parent).
    $returnurl = new moodle_url($CFG->wwwroot . '/admin/tool/dataprivacy/mydatarequests.php');
    $context = context_user::instance($USER->id);
}
$PAGE->set_context($context);

// If contactdataprotectionofficer is disabled, send the user back to the profile page, or the privacy policy page.
if (!\tool_dataprivacy\api::can_contact_dpo()) {
    redirect($returnurl, get_string('contactdpoviaprivacypolicy', 'tool_dataprivacy'), \core\output\notification::NOTIFY_ERROR);
}

$mform = new tool_dataprivacy_data_request_form($url->out(false));

// Data request cancelled.
if ($mform->is_cancelled()) {
    redirect($returnurl);
}

// Data request submitted.
if ($data = $mform->get_data()) {
    \tool_dataprivacy\api::create_data_request($data->userid, $data->type, $data->comments);

    redirect($returnurl, get_string('requestsubmitted', 'tool_dataprivacy'));
}

$title = get_string('contactdataprotectionofficer', 'tool_dataprivacy');
$PAGE->set_heading($title);
$PAGE->set_title($title);
echo $OUTPUT->header();
echo $OUTPUT->heading($title);

echo $OUTPUT->box_start();
$mform->display();
echo $OUTPUT->box_end();

echo $OUTPUT->footer();
Commit	Line	Data
5efc1f9e DM	1	<?php
	2	// This file is part of Moodle - http://moodle.org/
	3	//
	4	// Moodle is free software: you can redistribute it and/or modify
	5	// it under the terms of the GNU General Public License as published by
	6	// the Free Software Foundation, either version 3 of the License, or
	7	// (at your option) any later version.
	8	//
	9	// Moodle is distributed in the hope that it will be useful,
	10	// but WITHOUT ANY WARRANTY; without even the implied warranty of
	11	// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	12	// GNU General Public License for more details.
	13	//
	14	// You should have received a copy of the GNU General Public License
	15	// along with Moodle. If not, see <http://www.gnu.org/licenses/>.
	16
	17	/**
	18	* Prints the contact form to the site's Data Protection Officer
	19	*
	20	* @copyright 2018 onwards Jun Pataleta
	21	* @license http://www.gnu.org/copyleft/gpl.html GNU Public License
	22	* @package tool_dataprivacy
	23	*/
	24
	25	require_once('../../../config.php');
	26	require_once('lib.php');
	27	require_once('classes/api.php');
	28	require_once('createdatarequest_form.php');
	29
	30	$manage = optional_param('manage', 0, PARAM_INT);
	31
	32	$url = new moodle_url('/admin/tool/dataprivacy/createdatarequest.php', ['manage' => $manage]);
	33
	34	$PAGE->set_url($url);
	35
	36	require_login();
	37	if (isguestuser()) {
	38	print_error('noguest');
	39	}
	40
	41	// Return URL and context.
	42	if ($manage) {
	43	// For the case where DPO creates data requests on behalf of another user.
	44	$returnurl = new moodle_url($CFG->wwwroot . '/admin/tool/dataprivacy/datarequests.php');
	45	$context = context_system::instance();
	46	// Make sure the user has the proper capability.
	47	require_capability('tool/dataprivacy:managedatarequests', $context);
	48	} else {
	49	// For the case where a user makes request for themselves (or for their children if they are the parent).
	50	$returnurl = new moodle_url($CFG->wwwroot . '/admin/tool/dataprivacy/mydatarequests.php');
	51	$context = context_user::instance($USER->id);
	52	}
	53	$PAGE->set_context($context);
	54
	55	// If contactdataprotectionofficer is disabled, send the user back to the profile page, or the privacy policy page.
	56	if (!\tool_dataprivacy\api::can_contact_dpo()) {
	57	redirect($returnurl, get_string('contactdpoviaprivacypolicy', 'tool_dataprivacy'), \core\output\notification::NOTIFY_ERROR);
	58	}
	59
	60	$mform = new tool_dataprivacy_data_request_form($url->out(false));
	61
	62	// Data request cancelled.
	63	if ($mform->is_cancelled()) {
	64	redirect($returnurl);
65	}
66
67	// Data request submitted.
68	if ($data = $mform->get_data()) {
69	\tool_dataprivacy\api::create_data_request($data->userid, $data->type, $data->comments);
70
71	redirect($returnurl, get_string('requestsubmitted', 'tool_dataprivacy'));
72	}
73
74	$title = get_string('contactdataprotectionofficer', 'tool_dataprivacy');
75	$PAGE->set_heading($title);
76	$PAGE->set_title($title);
77	echo $OUTPUT->header();
78	echo $OUTPUT->heading($title);
79
80	echo $OUTPUT->box_start();
81	$mform->display();
82	echo $OUTPUT->box_end();
83
84	echo $OUTPUT->footer();