$id = required_param('id', PARAM_INT); // Course module ID
$cm = get_coursemodule_from_id('folder', $id, 0, false, MUST_EXIST);
+$context = get_context_instance(CONTEXT_MODULE, $cm->id);
$folder = $DB->get_record('folder', array('id'=>$cm->instance), '*', MUST_EXIST);
-
$course = $DB->get_record('course', array('id'=>$cm->course), '*', MUST_EXIST);
-require_course_login($course, true, $cm);
-$context = get_context_instance(CONTEXT_MODULE, $cm->id);
+require_login($course, true, $cm);
+require_capability('moodle/course:managefiles', $context);
add_to_log($course->id, 'folder', 'edit', 'edit.php?id='.$cm->id, $folder->id, $cm->id);
echo $OUTPUT->area_file_tree_viewer($context->id, 'folder_content', 0);
echo $OUTPUT->box_end();
-echo $OUTPUT->container_start('mdl-align');
-echo $OUTPUT->single_button(new moodle_url('/mod/folder/edit.php', array('id'=>$id)), get_string('edit'));
-echo $OUTPUT->container_end();
+if (has_capability('moodle/course:managefiles', $context)) {
+ echo $OUTPUT->container_start('mdl-align');
+ echo $OUTPUT->single_button(new moodle_url('/mod/folder/edit.php', array('id'=>$id)), get_string('edit'));
+ echo $OUTPUT->container_end();
+}
echo $OUTPUT->footer();