[moodle.git] / user / editadvanced.php

<?php // $Id$

    require_once('../config.php');
    require_once($CFG->libdir.'/gdlib.php');
    require_once($CFG->libdir.'/adminlib.php');
    require_once($CFG->dirroot.'/user/editadvanced_form.php');
    require_once($CFG->dirroot.'/user/editlib.php');
    require_once($CFG->dirroot.'/user/profile/lib.php');
    require_once($CFG->libdir .'/messagelib.php');      // Messagelib functions

    httpsrequired();

    $id     = optional_param('id', $USER->id, PARAM_INT);    // user id; -1 if creating new user
    $course = optional_param('course', SITEID, PARAM_INT);   // course id (defaults to Site)

    if (!$course = $DB->get_record('course', array('id'=>$course))) {
        print_error('invalidcourseid');
    }
    if (!empty($USER->newadminuser)) {
        $PAGE->set_course($SITE);
        $PAGE->set_generaltype('maintenance');
    } else {
        require_login($course);
    }

    if ($course->id == SITEID) {
        $coursecontext = get_context_instance(CONTEXT_SYSTEM);   // SYSTEM context
    } else {
        $coursecontext = get_context_instance(CONTEXT_COURSE, $course->id);   // Course context
    }
    $systemcontext = get_context_instance(CONTEXT_SYSTEM);

    if ($id == -1) {
        // creating new user
        require_capability('moodle/user:create', $systemcontext);
        $user = new object();
        $user->id = -1;
        $user->auth = 'manual';
        $user->confirmed = 1;
        $user->deleted = 0;
    } else {
        // editing existing user
        require_capability('moodle/user:update', $systemcontext);
        if (!$user = $DB->get_record('user', array('id'=>$id))) {
            print_error('invaliduserid');
        }
    }

    // remote users cannot be edited
    if ($user->id != -1 and is_mnet_remote_user($user)) {
        redirect($CFG->wwwroot . "/user/view.php?id=$id&course={$course->id}");
    }

    if ($user->id != $USER->id and is_primary_admin($user->id)) {  // Can't edit primary admin
        print_error('adminprimarynoedit');
    }

    if (isguestuser($user->id)) { // the real guest user can not be edited
        print_error('guestnoeditprofileother');
    }

    if ($user->deleted) {
        echo $OUTPUT->header();
        echo $OUTPUT->heading(get_string('userdeleted'));
        echo $OUTPUT->footer();
        die;
    }

    if ($user->id == -1) {
        admin_externalpage_setup('addnewuser', '', array('id' => -1));
    } else if ($user->id != $USER->id) {
        admin_externalpage_setup('editusers', '', array('id' => $user->id, 'course' => SITEID), $CFG->wwwroot . '/user/editadvanced.php');
    }

    //load user preferences
    useredit_load_preferences($user);

    //Load custom profile fields data
    profile_load_data($user);

    //User interests
    if (!empty($CFG->usetags)) {
        require_once($CFG->dirroot.'/tag/lib.php');
        $user->interests = tag_get_tags_array('user', $id);
    }

    //create form
    $userform = new user_editadvanced_form();
    $userform->set_data($user);

    if ($usernew = $userform->get_data()) {
        add_to_log($course->id, 'user', 'update', "view.php?id=$user->id&course=$course->id", '');

        if (empty($usernew->auth)) {
            //user editing self
            $authplugin = get_auth_plugin($user->auth);
            unset($usernew->auth); //can not change/remove
        } else {
            $authplugin = get_auth_plugin($usernew->auth);
        }

        $usernew->username     = trim($usernew->username);
        $usernew->timemodified = time();

        if ($usernew->id == -1) {
            //TODO check out if it makes sense to create account with this auth plugin and what to do with the password
            unset($usernew->id);
            $usernew->mnethostid = $CFG->mnet_localhost_id; // always local user
            $usernew->confirmed  = 1;
            $usernew->password = hash_internal_user_password($usernew->newpassword);
            $usernew->id = $DB->insert_record('user', $usernew);
            $usercreated = true;

        } else {
            $DB->update_record('user', $usernew);
            // pass a true $userold here
            if (! $authplugin->user_update($user, $userform->get_data())) {
                // auth update failed, rollback for moodle
                $DB->update_record('user', $user);
                print_error('cannotupdateuseronexauth', '', '', $user->auth);
            }

            //set new password if specified
            if (!empty($usernew->newpassword)) {
                if ($authplugin->can_change_password()) {
                    if (!$authplugin->user_update_password($usernew, $usernew->newpassword)){
                        print_error('cannotupdatepasswordonextauth', '', '', $usernew->auth);
                    }
                }
            }
            $usercreated = false;
        }

        $usercontext = get_context_instance(CONTEXT_USER, $usernew->id);

        //update preferences
        useredit_update_user_preference($usernew);

        // update tags
        if (!empty($CFG->usetags)) {
            useredit_update_interests($usernew, $usernew->interests);
        }

        //update user picture
        if (!empty($CFG->gdversion)) {
            useredit_update_picture($usernew, $userform);
        }

        // update mail bounces
        useredit_update_bounces($user, $usernew);

        // update forum track preference
        useredit_update_trackforums($user, $usernew);

        // save custom profile fields data
        profile_save_data($usernew);

        // reload from db
        $usernew = $DB->get_record('user', array('id'=>$usernew->id));

        // trigger events
        if ($usercreated) {
            //set default message preferences
            if (!message_set_default_message_preferences( $usernew )){
                print_error('cannotsavemessageprefs', 'message');
            }
            events_trigger('user_created', $usernew);
        } else {
            events_trigger('user_updated', $usernew);
        }

        if ($user->id == $USER->id) {
            // Override old $USER session variable
            foreach ((array)$usernew as $variable => $value) {
                $USER->$variable = $value;
            }
            if (!empty($USER->newadminuser)) {
                unset($USER->newadminuser);
                // apply defaults again - some of them might depend on admin user info, backup, roles, etc.
                admin_apply_default_settings(NULL , false);
                // redirect to admin/ to continue with installation
                redirect("$CFG->wwwroot/$CFG->admin/");
            } else {
                redirect("$CFG->wwwroot/user/view.php?id=$USER->id&course=$course->id");
            }
        } else {
            session_gc(); // remove stale sessions
            redirect("$CFG->wwwroot/$CFG->admin/user.php");
        }
        //never reached
    }


/// Display page header
    if ($user->id == -1 or ($user->id != $USER->id)) {
        if ($user->id == -1) {
            admin_externalpage_print_header();
        } else {
            admin_externalpage_print_header();
            $userfullname = fullname($user, true);
            echo $OUTPUT->heading($userfullname);
        }
    } else if (!empty($USER->newadminuser)) {
        $strinstallation = get_string('installation', 'install');
        $strprimaryadminsetup = get_string('primaryadminsetup');

        $PAGE->navbar->add($strprimaryadminsetup);
        $PAGE->set_title($strinstallation);
        $PAGE->set_heading($strinstallation);
        $PAGE->set_cacheable(false);

        echo $OUTPUT->header();
        echo $OUTPUT->box(get_string('configintroadmin', 'admin'), 'generalbox boxwidthnormal boxaligncenter');
        echo '<br />';
    } else {
        $streditmyprofile = get_string('editmyprofile');
        $strparticipants  = get_string('participants');
        $strnewuser       = get_string('newuser');
        $userfullname     = fullname($user, true);

        $link = null;
        if (has_capability('moodle/course:viewparticipants', $coursecontext) || has_capability('moodle/site:viewparticipants', $systemcontext)) {
            $link = new moodle_url($CFG->wwwroot."/user/index.php", array('id'=>$course->id));
        }
        $PAGE->navbar->add($strparticipants, $link);
        $link = new moodle_url($CFG->wwwroot.'/user/view.php', array('id'=>$user->id, 'course'=>$course->id));
        $PAGE->navbar->add($userfullname, $link);
        $PAGE->navbar->add($streditmyprofile);

        $PAGE->set_title("$course->shortname: $streditmyprofile");
        $PAGE->set_heading($course->fullname);

        echo $OUTPUT->header();
        /// Print tabs at the top
        $showroles = 1;
        $currenttab = 'editprofile';
        require('tabs.php');
    }

/// Finally display THE form
    $userform->display();

/// and proper footer
    echo $OUTPUT->footer();

?>
Commit	Line	Data
ad6226fb	1	<?php // $Id$
	2
	3	require_once('../config.php');
	4	require_once($CFG->libdir.'/gdlib.php');
	5	require_once($CFG->libdir.'/adminlib.php');
	6	require_once($CFG->dirroot.'/user/editadvanced_form.php');
14a6b7e1	7	require_once($CFG->dirroot.'/user/editlib.php');
d8734783	8	require_once($CFG->dirroot.'/user/profile/lib.php');
2044a2b2	9	require_once($CFG->libdir .'/messagelib.php'); // Messagelib functions
ad6226fb	10
dcf6d93c	11	httpsrequired();
dcf6d93c	12
ad6226fb	13	$id = optional_param('id', $USER->id, PARAM_INT); // user id; -1 if creating new user
	14	$course = optional_param('course', SITEID, PARAM_INT); // course id (defaults to Site)
	15
5d910388	16	if (!$course = $DB->get_record('course', array('id'=>$course))) {
4e244ba8	17	print_error('invalidcourseid');
ad6226fb	18	}
29750da1	19	if (!empty($USER->newadminuser)) {
29750da1	20	$PAGE->set_course($SITE);
d4a03c00	21	$PAGE->set_generaltype('maintenance');
29750da1	22	} else {
	23	require_login($course);
	24	}
ad6226fb	25
bb9a123a	26	if ($course->id == SITEID) {
	27	$coursecontext = get_context_instance(CONTEXT_SYSTEM); // SYSTEM context
	28	} else {
	29	$coursecontext = get_context_instance(CONTEXT_COURSE, $course->id); // Course context
	30	}
	31	$systemcontext = get_context_instance(CONTEXT_SYSTEM);
	32
ad6226fb	33	if ($id == -1) {
ad6226fb	34	// creating new user
bb9a123a	35	require_capability('moodle/user:create', $systemcontext);
ad6226fb	36	$user = new object();
	37	$user->id = -1;
	38	$user->auth = 'manual';
	39	$user->confirmed = 1;
80775ff3	40	$user->deleted = 0;
ad6226fb	41	} else {
ad6226fb	42	// editing existing user
bb9a123a	43	require_capability('moodle/user:update', $systemcontext);
5d910388	44	if (!$user = $DB->get_record('user', array('id'=>$id))) {
4e244ba8	45	print_error('invaliduserid');
ad6226fb	46	}
	47	}
	48
	49	// remote users cannot be edited
	50	if ($user->id != -1 and is_mnet_remote_user($user)) {
	51	redirect($CFG->wwwroot . "/user/view.php?id=$id&course={$course->id}");
	52	}
	53
fc4b2dec	54	if ($user->id != $USER->id and is_primary_admin($user->id)) { // Can't edit primary admin
ad6226fb	55	print_error('adminprimarynoedit');
	56	}
	57
	58	if (isguestuser($user->id)) { // the real guest user can not be edited
	59	print_error('guestnoeditprofileother');
	60	}
	61
f5fc83e8	62	if ($user->deleted) {
caa8363f	63	echo $OUTPUT->header();
8fa89bfd	64	echo $OUTPUT->heading(get_string('userdeleted'));
0ab75c34	65	echo $OUTPUT->footer();
f5fc83e8	66	die;
	67	}
	68
320c5e7b	69	if ($user->id == -1) {
	70	admin_externalpage_setup('addnewuser', '', array('id' => -1));
	71	} else if ($user->id != $USER->id) {
	72	admin_externalpage_setup('editusers', '', array('id' => $user->id, 'course' => SITEID), $CFG->wwwroot . '/user/editadvanced.php');
	73	}
	74
14a6b7e1	75	//load user preferences
	76	useredit_load_preferences($user);
	77
bb6d3d34	78	//Load custom profile fields data
bb6d3d34	79	profile_load_data($user);
ad6226fb	80
c060fc6a	81	//User interests
1e1c51a3	82	if (!empty($CFG->usetags)) {
1e1c51a3	83	require_once($CFG->dirroot.'/tag/lib.php');
c060fc6a	84	$user->interests = tag_get_tags_array('user', $id);
1e1c51a3	85	}
1e1c51a3	86
ad6226fb	87	//create form
d8734783	88	$userform = new user_editadvanced_form();
ad6226fb	89	$userform->set_data($user);
ad6226fb	90
294ce987	91	if ($usernew = $userform->get_data()) {
ad6226fb	92	add_to_log($course->id, 'user', 'update', "view.php?id=$user->id&course=$course->id", '');
ad6226fb	93
d8734783	94	if (empty($usernew->auth)) {
	95	//user editing self
	96	$authplugin = get_auth_plugin($user->auth);
14a6b7e1	97	unset($usernew->auth); //can not change/remove
d8734783	98	} else {
	99	$authplugin = get_auth_plugin($usernew->auth);
	100	}
ad6226fb	101
04f639a0	102	$usernew->username = trim($usernew->username);
ad6226fb	103	$usernew->timemodified = time();
	104
	105	if ($usernew->id == -1) {
14a6b7e1	106	//TODO check out if it makes sense to create account with this auth plugin and what to do with the password
ad6226fb	107	unset($usernew->id);
ad6226fb	108	$usernew->mnethostid = $CFG->mnet_localhost_id; // always local user
d8734783	109	$usernew->confirmed = 1;
bb6d3d34	110	$usernew->password = hash_internal_user_password($usernew->newpassword);
2a7eff41	111	$usernew->id = $DB->insert_record('user', $usernew);
2942a5cd	112	$usercreated = true;
5e61d1a4	113
ad6226fb	114	} else {
2a7eff41	115	$DB->update_record('user', $usernew);
6bc1e5d5	116	// pass a true $userold here
294ce987	117	if (! $authplugin->user_update($user, $userform->get_data())) {
6bc1e5d5	118	// auth update failed, rollback for moodle
5d910388	119	$DB->update_record('user', $user);
4e244ba8	120	print_error('cannotupdateuseronexauth', '', '', $user->auth);
6bc1e5d5	121	}
bb6d3d34	122
	123	//set new password if specified
	124	if (!empty($usernew->newpassword)) {
	125	if ($authplugin->can_change_password()) {
6bc1e5d5	126	if (!$authplugin->user_update_password($usernew, $usernew->newpassword)){
4e244ba8	127	print_error('cannotupdatepasswordonextauth', '', '', $usernew->auth);
ad6226fb	128	}
ad6226fb	129	}
ad6226fb	130	}
2942a5cd	131	$usercreated = false;
ad6226fb	132	}
ad6226fb	133
98bc6446	134	$usercontext = get_context_instance(CONTEXT_USER, $usernew->id);
98bc6446	135
ad6226fb	136	//update preferences
14a6b7e1	137	useredit_update_user_preference($usernew);
ad6226fb	138
1e1c51a3	139	// update tags
	140	if (!empty($CFG->usetags)) {
	141	useredit_update_interests($usernew, $usernew->interests);
	142	}
	143
ad6226fb	144	//update user picture
d8734783	145	if (!empty($CFG->gdversion)) {
14a6b7e1	146	useredit_update_picture($usernew, $userform);
ad6226fb	147	}
	148
	149	// update mail bounces
14a6b7e1	150	useredit_update_bounces($user, $usernew);
ad6226fb	151
1e1c51a3	152	// update forum track preference
14a6b7e1	153	useredit_update_trackforums($user, $usernew);
ad6226fb	154
bb6d3d34	155	// save custom profile fields data
bb6d3d34	156	profile_save_data($usernew);
ad6226fb	157
2942a5cd	158	// reload from db
2942a5cd	159	$usernew = $DB->get_record('user', array('id'=>$usernew->id));
5e61d1a4	160
2942a5cd	161	// trigger events
2942a5cd	162	if ($usercreated) {
2044a2b2	163	//set default message preferences
2044a2b2	164	if (!message_set_default_message_preferences( $usernew )){
818dc096	165	print_error('cannotsavemessageprefs', 'message');
3b120e46	166	}
2942a5cd	167	events_trigger('user_created', $usernew);
	168	} else {
	169	events_trigger('user_updated', $usernew);
	170	}
	171
ad6226fb	172	if ($user->id == $USER->id) {
ad6226fb	173	// Override old $USER session variable
2942a5cd	174	foreach ((array)$usernew as $variable => $value) {
ad6226fb	175	$USER->$variable = $value;
	176	}
	177	if (!empty($USER->newadminuser)) {
	178	unset($USER->newadminuser);
220a90c5	179	// apply defaults again - some of them might depend on admin user info, backup, roles, etc.
220a90c5	180	admin_apply_default_settings(NULL , false);
ad6226fb	181	// redirect to admin/ to continue with installation
ad6226fb	182	redirect("$CFG->wwwroot/$CFG->admin/");
14a6b7e1	183	} else {
ad6226fb	184	redirect("$CFG->wwwroot/user/view.php?id=$USER->id&course=$course->id");
5e61d1a4	185	}
afb5b0ae	186	} else {
e8656bef	187	session_gc(); // remove stale sessions
b0c90e6e	188	redirect("$CFG->wwwroot/$CFG->admin/user.php");
ad6226fb	189	}
	190	//never reached
	191	}
	192
	193
	194	/// Display page header
b0c90e6e	195	if ($user->id == -1 or ($user->id != $USER->id)) {
ad6226fb	196	if ($user->id == -1) {
1ae083e4	197	admin_externalpage_print_header();
ad6226fb	198	} else {
1ae083e4	199	admin_externalpage_print_header();
ad6226fb	200	$userfullname = fullname($user, true);
8fa89bfd	201	echo $OUTPUT->heading($userfullname);
ad6226fb	202	}
ad6226fb	203	} else if (!empty($USER->newadminuser)) {
770f0cea	204	$strinstallation = get_string('installation', 'install');
e2d84bf3	205	$strprimaryadminsetup = get_string('primaryadminsetup');
caa8363f	206
	207	$PAGE->navbar->add($strprimaryadminsetup);
	208	$PAGE->set_title($strinstallation);
	209	$PAGE->set_heading($strinstallation);
	210	$PAGE->set_cacheable(false);
	211
	212	echo $OUTPUT->header();
5e61d1a4	213	echo $OUTPUT->box(get_string('configintroadmin', 'admin'), 'generalbox boxwidthnormal boxaligncenter');
ad6226fb	214	echo '<br />';
	215	} else {
	216	$streditmyprofile = get_string('editmyprofile');
d8734783	217	$strparticipants = get_string('participants');
	218	$strnewuser = get_string('newuser');
	219	$userfullname = fullname($user, true);
0be6f678	220
caa8363f	221	$link = null;
bb9a123a	222	if (has_capability('moodle/course:viewparticipants', $coursecontext) \|\| has_capability('moodle/site:viewparticipants', $systemcontext)) {
caa8363f	223	$link = new moodle_url($CFG->wwwroot."/user/index.php", array('id'=>$course->id));
bb9a123a	224	}
91152a35	225	$PAGE->navbar->add($strparticipants, $link);
caa8363f	226	$link = new moodle_url($CFG->wwwroot.'/user/view.php', array('id'=>$user->id, 'course'=>$course->id));
91152a35	227	$PAGE->navbar->add($userfullname, $link);
caa8363f	228	$PAGE->navbar->add($streditmyprofile);
	229
	230	$PAGE->set_title("$course->shortname: $streditmyprofile");
	231	$PAGE->set_heading($course->fullname);
0be6f678	232
caa8363f	233	echo $OUTPUT->header();
ad6226fb	234	/// Print tabs at the top
	235	$showroles = 1;
	236	$currenttab = 'editprofile';
	237	require('tabs.php');
	238	}
	239
	240	/// Finally display THE form
	241	$userform->display();
	242
	243	/// and proper footer
0ab75c34	244	echo $OUTPUT->footer();
ad6226fb	245
ad6226fb	246	?>