| blob | c86189acc3ca089882ecc8f3fe491b546ce8d2c3 |
3 ///////////////////////////////////////////////////////////////////////////
4 // //
5 // NOTICE OF COPYRIGHT //
6 // //
7 // Moodle - Modular Object-Oriented Dynamic Learning Environment //
8 // http://moodle.org //
9 // //
10 // Copyright (C) 1999-2004 Martin Dougiamas http://dougiamas.com //
11 // //
12 // This program is free software; you can redistribute it and/or modify //
13 // it under the terms of the GNU General Public License as published by //
14 // the Free Software Foundation; either version 2 of the License, or //
15 // (at your option) any later version. //
16 // //
17 // This program is distributed in the hope that it will be useful, //
18 // but WITHOUT ANY WARRANTY; without even the implied warranty of //
19 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the //
20 // GNU General Public License for more details: //
21 // //
22 // http://www.gnu.org/copyleft/gpl.html //
23 // //
24 ///////////////////////////////////////////////////////////////////////////
26 /**
27 * Public API vs internals
28 * -----------------------
29 *
30 * General users probably only care about
31 *
32 * - get_context_instance()
33 * - has_capability()
34 * - require_capability()
35 * - get_user_courses_bycap()
36 * - get_context_users_bycap()
37 * - get_parent_contexts()
38 * - enrol_into_course()
39 * - role_assign()/role_unassign()
40 * - more?
41 *
42 * Advanced use
43 * - $ACCESS global
44 * - has_cap_fad()
45 * - more?
46 *
47 * accessdata
48 * ----------
49 *
50 * Access control data is held in the "accessdata" array
51 * which - for the logged-in user, will be in $USER->access
52 *
53 * For other users can be generated and passed around (but see
54 * the $ACCESS global).
55 *
56 * accessdata ($ad) is a multidimensional array, holding
57 * role assignments (RAs), role-capabilities-perm sets
58 * (role defs) and a list of courses we have loaded
59 * data for.
60 *
61 * Things are keyed on "contextpaths" (the path field of
62 * the context table) for fast walking up/down the tree.
63 *
64 * $ad[ra][$contextpath]= array($roleid)
65 * [$contextpath]= array($roleid)
66 * [$contextpath]= array($roleid)
67 *
68 * Role definitions are stored like this
69 * (no cap merge is done - so it's compact)
70 *
71 * $ad[rdef][$contextpath:$roleid][mod/forum:viewpost] = 1
72 * [mod/forum:editallpost] = -1
73 * [mod/forum:startdiscussion] = -1000
74 *
75 * See how has_cap_fad() walks up/down the tree.
76 *
77 * Normally - specially for the logged-in user, we only load
78 * rdef and ra down to the course level, but not below. This
79 * keeps accessdata small and compact. Below-the-course ra/rdef
80 * are loaded as needed. We keep track of which courses we
81 * have loaded ra/rdef in
82 *
83 * $ad[loaded] = array($contextpath, $contextpath)
84 *
85 * Stale accessdata
86 * ----------------
87 *
88 * For the logged-in user, accessdata is long-lived.
89 *
90 * On each pageload we load $DIRTYPATHS which lists
91 * context paths affected by changes. Any check at-or-below
92 * a dirty context will trigger a transparent reload of accessdata.
93 *
94 * Changes at the sytem level will force the reload for everyone.
95 *
96 * Default role caps
97 * -----------------
98 * The default role assignment is not in the DB, so we
99 * add it manually to accessdata.
100 *
101 * This means that functions that work directly off the
102 * DB need to ensure that the default role caps
103 * are dealt with appropriately.
104 *
105 */
109 // permission definitions
115 // context definitions
125 // capability risks - see http://docs.moodle.org/en/Hardening_new_Roles_system
134 $context_cache = array(); // Cache of all used context objects for performance (by level and instance)
139 //this is really slow!!!! - do not use above course context level!
143 // first emulate the parent context capabilities merging into context
147 if ($capabilities = get_records_select('role_capabilities', "roleid = $roleid AND contextid = $cid")) {
151 }
153 }
154 }
155 }
157 // now go through the contexts bellow given context
160 if ($capabilities = get_records_select('role_capabilities', "roleid = $roleid AND contextid = $cid")) {
164 }
166 }
167 }
168 }
171 }
173 /**
174 * Gets the accessdata for role "sitewide"
175 * (system down to course)
176 *
177 * @return array
178 */
183 /* Get it in 1 cheap DB query...
184 * - relevant role caps at the root and down
185 * to the course level - but not below
186 */
192 }
196 //
197 // Overrides for the role IN ANY CONTEXTS
198 // down to COURSE - not below -
199 //
201 rc.capability, rc.permission
204 ON rc.contextid=ctx.id
213 }
215 }
219 }
221 /**
222 * Get the id for the not-logged-in role - or set it up if needed
223 * @return bool
224 */
234 }
237 }
240 }
242 /**
243 * Get the default guest role
244 * @return object role
245 */
257 }
262 //somebody is messing with guest roles, remove incorrect setting and try to find a new one
265 }
266 }
267 }
272 /// Make sure we know the current context
278 }
279 }
282 }
286 }
296 }
300 }
304 }
307 //
308 // In cron, some modules setup a 'fake' $USER,
309 // ensure we load the appropriate accessdata.
310 // Also: set $DIRTYCONTEXTS to empty
311 //
314 }
317 }
320 }
322 // Careful check for staleness...
325 // Load dirty contexts list
328 // Check basepath only once, when
329 // we load the dirty contexts...
331 // sitewide change, dirty
333 }
334 }
335 // Check for staleness in the whole parenthood
338 }
340 // reload all capabilities - preserving loginas, roleswitches, etc
341 // and then cleanup any marks of dirtyness... at least from our short
342 // term memory! :-)
346 }
348 // divulge how many times we are called
349 //// error_log("has_capability: id:{$context->id} path:{$context->path} userid:$userid cap:$capability");
352 //
353 // For the logged in user, we have $USER->access
354 // which will have all RAs and caps preloaded for
355 // course and above contexts.
356 //
357 // Contexts below courses && contexts that do not
358 // hang from courses are loaded into $USER->access
359 // on demand, and listed in $USER->access[loaded]
360 //
362 // Course and above are always preloaded
365 }
366 // Load accessdata for below-the-course contexts
368 error_log("loading access for context {$context->path} for $capability at {$context->contextlevel} {$context->id}");
369 // $bt = debug_backtrace();
370 // error_log("bt {$bt[0]['file']} {$bt[0]['line']}");
373 }
378 }
381 }
384 }
386 // Course and above are always preloaded
389 }
390 // Load accessdata for below-the-course contexts as needed
392 error_log("loading access for context {$context->path} for $capability at {$context->contextlevel} {$context->id}");
393 // $bt = debug_backtrace();
394 // error_log("bt {$bt[0]['file']} {$bt[0]['line']}");
397 }
400 }
402 /*
403 * Uses 1 DB query to answer whether a user is an admin at the sitelevel.
404 * It depends on DB schema >=1.7 but does not depend on the new datastructures
405 * in v1.9 (context.path, or $USER->access)
406 *
407 * Will return true if the userid has any of
408 * - moodle/site:config
409 * - moodle/legacy:admin
410 * - moodle/site:doanything
411 *
412 * @param int $userid
413 * @returns bool $isadmin
414 */
419 FROM mdl_user u
420 JOIN mdl_role_assignments ra
421 ON ra.userid=u.id
422 JOIN mdl_context ctx
423 ON ctx.id=ra.contextid
424 JOIN mdl_role_capabilities rc
425 ON (ra.roleid=rc.roleid AND rc.contextid=ctx.id)
426 WHERE ctx.contextlevel=10
427 AND rc.capability IN ('moodle/site:config', 'moodle/legacy:admin', 'moodle/site:doanything')
432 }
435 // assume that nothing is more than 1 course deep
438 }
440 }
444 // assume that contexts hang from sys or from a course
445 // this will only work well with stuff that hangs from a course
449 }
455 }
458 }
459 }
461 }
463 /*
464 * Walk the accessdata array and return true/false.
465 * Deals with prohibits, roleswitching, aggregating
466 * capabilities, etc.
467 *
468 * The main feature of here is being FAST and with no
469 * side effects.
470 *
471 * Notes:
472 *
473 * Switch Roles exits early
474 * -----------------------
475 * cap checks within a switchrole need to exit early
476 * in our bottom up processing so they don't "see" that
477 * there are real RAs that can do all sorts of things.
478 *
479 * Switch Role merges with default role
480 * ------------------------------------
481 * If you are a teacher in course X, you have at least
482 * teacher-in-X + defaultloggedinuser-sitewide. So in the
483 * course you'll have techer+defaultloggedinuser.
484 * We try to mimic that in switchrole.
485 *
486 * Local-most role definition and role-assignment wins
487 * ---------------------------------------------------
488 * So if the local context has said 'allow', it wins
489 * over a high-level context that says 'deny'.
490 * This is applied when walking rdefs, and RAs.
491 * Only at the same context the values are SUM()med.
492 *
493 * The exception is CAP_PROHIBIT.
494 *
495 * "Guest default role" exception
496 * ------------------------------
497 *
498 * See MDL-7513 and $ignoreguest below for details.
499 *
500 * The rule is that
501 *
502 * IF we are being asked about moodle/legacy:guest
503 * OR moodle/course:view
504 * FOR a real, logged-in user
505 * AND we reached the top of the path in ra and rdef
506 * AND that role has moodle/legacy:guest === 1...
507 * THEN we act as if we hadn't seen it.
508 *
509 *
510 * To Do:
511 *
512 * - Document how it works
513 * - Rewrite in ASM :-)
514 *
515 */
522 // build $contexts as a list of "paths" of the current
523 // contexts and parents with the order top-to-bottom
528 }
534 // At the base, ignore rdefs where moodle/legacy:guest
535 // is set
537 }
544 //
545 // role-switches loop
546 //
548 // check for isset() is fast
549 // empty() is slow...
553 }
554 // From the bottom up...
558 // Found a switchrole assignment
559 // check for that role _plus_ the default user role
563 // Walk the path for capabilities
564 // from the bottom up...
569 // The most local permission (first to set) wins
570 // the only exception is CAP_PROHIBIT
576 }
577 }
578 }
579 }
580 // As we are dealing with a switchrole,
581 // we return _here_, do _not_ walk up
582 // the hierarchy any further
585 // didn't find it as an explicit cap,
586 // but maybe the user candoanything in this context...
591 }
594 }
596 }
597 }
598 }
600 //
601 // Main loop for normal RAs
602 // From the bottom up...
603 //
607 // Found role assignments on this leaf
614 // Walk the path for capabilities
615 // from the bottom up...
618 // ignore some guest caps
619 // at base ra and rdef
626 }
629 // The most local permission (first to set) wins
630 // the only exception is CAP_PROHIBIT
636 }
637 }
638 }
639 // Permissions at the same
640 // ctxlevel are added together
642 }
643 // The most local RAs with a defined
644 // permission ($ctxcan) win, except
645 // for CAP_PROHIBIT
651 }
652 }
653 }
657 // didn't find it as an explicit cap,
658 // but maybe the user candoanything in this context...
663 }
666 }
668 }
674 // build $contexts as a list of "paths" of the current
675 // contexts and parents with the order top-to-bottom
680 }
685 // From the bottom up...
689 // Found assignments on this leaf
692 }
693 }
696 }
698 /**
699 * This is an easy to use function, combining has_capability() with require_course_login().
700 * And will call those where needed.
701 *
702 * It checks for a capability assertion being true. If it isn't
703 * then the page is terminated neatly with a standard error message.
704 *
705 * If the user is not logged in, or is using 'guest' access or other special "users,
706 * it provides a logon prompt.
707 *
708 * @param string $capability - name of the capability
709 * @param object $context - a context object (record from context table)
710 * @param integer $userid - a userid number
711 * @param bool $doanything - if false, ignore do anything
712 * @param string $errorstring - an errorstring
713 * @param string $stringfile - which stringfile to get it from
714 */
720 /// If the current user is not logged in, then make sure they are (if needed)
729 }
734 }
738 }
742 }
743 }
745 /// OK, if they still don't have the capability then print a nice error message
750 }
751 }
753 /*
754 * Get an array of courses (with magic extra bits)
755 * where the accessdata and in DB enrolments show
756 * that the cap requested is available.
757 *
758 * The main use is for get_my_courses().
759 *
760 * Notes
761 *
762 * - $fields is an array of fieldnames to ADD
763 * so name the fields you really need, which will
764 * be added and uniq'd
765 *
766 * - the course records have $c->context which is a fully
767 * valid context object. Saves you a query per course!
768 *
769 * - the course records have $c->categorypath to make
770 * category lookups cheap
771 *
772 * - current implementation is split in -
773 *
774 * - if the user has the cap systemwide, stupidly
775 * grab *every* course for a capcheck. This eats
776 * a TON of bandwidth, specially on large sites
777 * with separate DBs...
778 *
779 * - otherwise, fetch "likely" courses with a wide net
780 * that should get us _cheaply_ at least the courses we need, and some
781 * we won't - we get courses that...
782 * - are in a category where user has the cap
783 * - or where use has a role-assignment (any kind)
784 * - or where the course has an override on for this cap
785 *
786 * - walk the courses recordset checking the caps oneach one
787 * the checks are all in memory and quite fast
788 * (though we could implement a specialised variant of the
789 * has_cap_fad() code to speed it up)
790 *
791 * @param string $capability - name of the capability
792 * @param array $accessdata - access session array
793 * @param bool $doanything - if false, ignore do anything
794 * @param string $sort - sorting fields - prefix each fieldname with "c."
795 * @param array $fields - additional fields you are interested in...
796 * @param int $limit - set if you want to limit the number of courses
797 * @return array $courses - ordered array of course objects - see notes above
798 *
799 */
800 function get_user_courses_bycap($userid, $cap, $ad, $doanything, $sort='c.sortorder ASC', $fields=NULL, $limit=0) {
804 // Slim base fields, let callers ask for what they need...
812 }
818 }
822 //
823 // Apparently the user has the cap sitewide, so walk *every* course
824 // (the cap checks are moderately fast, but this moves massive bandwidth w the db)
825 // Yuck.
826 //
828 ctx.id AS ctxid, ctx.path AS ctxpath, ctx.depth as ctxdepth,
829 cc.path AS categorypath
832 ON c.category=cc.id
838 //
839 // narrow down where we have the caps to a few contexts
840 // this will be a combination of
841 // - categories where we have the rights
842 // - courses where we have an explicit enrolment OR that have an override
843 //
855 }
856 }
857 }
864 }
866 }
872 }
873 //
874 // Note here that we *have* to have the compound clauses
875 // in the LEFT OUTER JOIN condition for them to return NULL
876 // appropriately and narrow things down...
877 //
879 ctx.id AS ctxid, ctx.path AS ctxpath, ctx.depth as ctxdepth,
880 cc.path AS categorypath
883 ON c.category=cc.id
890 WHERE ra.id IS NOT NULL
891 OR rc.id IS NOT NULL
892 $catclause
895 }
900 // build the context obj
907 }
908 }
909 }
910 }
913 }
915 /*
916 * Draft - use for the course participants list page
917 *
918 * Uses 1 DB query (cheap too - 2~7ms).
919 *
920 * TODO:
921 * - implement additional where clauses
922 * - sorting
923 * - get course participants list to use it!
924 *
925 * returns a users array, both sorted _and_ keyed
926 * on id (as get_my_courses() does)
927 *
928 * as a bonus, every user record comes with its own
929 * personal context, as our callers need it straight away
930 * {save 1 dbquery per user! yay!}
931 *
932 */
933 function get_context_users_byrole ($context, $roleid, $fields=NULL, $where=NULL, $sort=NULL, $limit=0) {
936 // Slim base fields, let callers ask for what they need...
944 }
951 ctx.id AS ctxid, ctx.path AS ctxpath, ctx.depth as ctxdepth
956 ON u.id = ra.userid
966 // build the context obj
972 }
973 }
974 }
977 }
979 /*
980 * Draft - use for the course participants list page
981 *
982 * Uses 2 fast DB queries
983 *
984 * TODO:
985 * - automagically exclude roles that can-doanything sitewide (See callers)
986 * - perhaps also allow sitewide do-anything via flag
987 * - implement additional where clauses
988 * - sorting
989 * - get course participants list to use it!
990 *
991 * returns a users array, both sorted _and_ keyed
992 * on id (as get_my_courses() does)
993 *
994 * as a bonus, every user record comes with its own
995 * personal context, as our callers need it straight away
996 * {save 1 dbquery per user! yay!}
997 *
998 */
999 function get_context_users_bycap ($context, $capability='moodle/course:view', $fields=NULL, $where=NULL, $sort=NULL, $limit=0) {
1002 // Plan
1003 //
1004 // - Get all the *interesting* roles -- those that
1005 // have some rolecap entry in our ctx.path contexts
1006 //
1007 // - Get all RAs for any of those roles in any of our
1008 // interesting contexts, with userid & perm data
1009 // in a nice (per user?) order
1010 //
1011 // - Walk the resultset, computing the permissions
1012 // - actually - this is all a SQL subselect
1013 //
1014 // - Fetch user records against the subselect
1015 //
1017 // Slim base fields, let callers ask for what they need...
1025 }
1040 }
1041 }
1045 //
1046 // User permissions subselect SQL
1047 //
1048 // - the open join condition to
1049 // role_capabilities
1050 //
1051 // - because both rc and ra entries are
1052 // _at or above_ our context, we don't care
1053 // about their depth, we just need to sum them
1054 //
1063 // Get users
1065 ctx.id AS ctxid, ctx.path AS ctxpath, ctx.depth as ctxdepth
1070 ON u.id = up.userid
1079 // build the context obj
1085 }
1086 }
1087 }
1090 }
1092 /**
1093 * It will return a nested array showing role assignments
1094 * all relevant role capabilities for the user at
1095 * site/metacourse/course_category/course levels
1096 *
1097 * We do _not_ delve deeper than courses because the number of
1098 * overrides at the module/block levels is HUGE.
1099 *
1100 * [ra] => [/path/] = array(roleid, roleid)
1101 * [rdef] => [/path/:roleid][capability]=permission
1102 * [loaded] => array('/path', '/path')
1103 *
1104 * @param $userid integer - the id of the user
1105 *
1106 */
1111 // this flag has not been set!
1112 // (not clean install, or upgraded successfully to 1.7 and up)
1115 }
1117 /* Get in 3 cheap DB queries...
1118 * - role assignments - with role_caps
1119 * - relevant role caps
1120 * - above this user's RAs
1121 * - below this user's RAs - limited to course level
1122 */
1132 //
1133 // Role assignments - and any rolecaps directly linked
1134 // because it's cheap to read rolecaps here over many
1135 // RAs
1136 //
1140 ON ra.contextid=ctx.id
1142 ON (rc.roleid=ra.roleid AND rc.contextid=ra.contextid)
1146 //
1147 // raparents collects paths & roles we need to walk up
1148 // the parenthood to build the rdef
1149 //
1150 // the array will bulk up a bit with dups
1151 // which we'll later clear up
1152 //
1157 // RAs leafs are arrays to support multi
1158 // role assignments...
1161 }
1162 // only add if is not a repeat caused
1163 // by capability join...
1164 // (this check is cheaper than in_array())
1177 }
1178 }
1179 // Always add the roleded
1183 }
1184 }
1186 }
1189 // Walk up the tree to grab all the roledefs
1190 // of interest to our user...
1191 // NOTE: we use a series of IN clauses here - which
1192 // might explode on huge sites with very convoluted nesting of
1193 // categories... - extremely unlikely that the number of categories
1194 // and roletypes is so large that we hit the limits of IN()
1200 }
1201 }
1207 ON rc.contextid=ctx.id
1218 }
1220 }
1222 }
1224 //
1225 // Overrides for the role assignments IN SUBCONTEXTS
1226 // (though we still do _not_ go below the course level.
1227 //
1228 // NOTE that the JOIN w sctx is with 3-way triangulation to
1229 // catch overrides to the applicable role in any subcontext, based
1230 // on the path field of the parent.
1231 //
1233 ctx.path AS parentpath,
1234 rco.capability, rco.permission
1237 ON ra.contextid=ctx.id
1241 ON (rco.roleid=ra.roleid AND rco.contextid=sctx.id)
1249 }
1251 }
1255 }
1257 /**
1258 * It add to the access ctrl array the data
1259 * needed by a user for a given context
1260 *
1261 * @param $userid integer - the id of the user
1262 * @param $context context obj - needs path!
1263 * @param $acc access array
1264 *
1265 */
1272 /* Get the additional RAs and relevant rolecaps
1273 * - role assignments - with role_caps
1274 * - relevant role caps
1275 * - above this user's RAs
1276 * - below this user's RAs - limited to course level
1277 */
1279 // Roles already in use in this context
1288 }
1292 // Determine the course context we'll go
1293 // after, though we are usually called
1294 // with a lower ctx. We have 3 easy cases
1295 //
1296 // - Course
1297 // - BLOCK/PERSON/USER/COURSE(sitecourse) hanging from SYSTEM
1298 // - BLOCK/MODULE/GROUP hanging from a course
1299 //
1300 // For course contexts, we _already_ have the RAs
1301 // but the cost of re-fetching is minimal so we don't care.
1302 // ... for now!
1303 //
1311 // Assumption: the course _must_ be our parent
1312 // If we ever see stuff nested further this needs to
1313 // change to do 1 query over the exploded path to
1314 // find out which one is the course
1317 }
1319 //
1320 // Role assignments in the context and below - and any rolecaps directly linked
1321 // because it's cheap to read rolecaps here over many
1322 // RAs
1323 //
1327 ON ra.contextid=ctx.id
1329 ON (rc.roleid=ra.roleid AND rc.contextid=ra.contextid)
1335 //
1336 // raparent collects paths & roles we need to walk up
1337 //
1338 // Here we only collect "different" role assignments
1339 // that - if found - we have to walk up the parenthood
1340 // to build the rdef.
1341 //
1342 // raparents array might have a few duplicates
1343 // which we'll later clear up
1344 //
1351 // only add if is not a repeat caused
1352 // by capability join...
1353 // (this check is cheaper than in_array())
1357 }
1367 }
1368 }
1369 }
1373 }
1374 }
1376 }
1379 //
1380 // Walk up the tree to grab all the roledefs
1381 // of interest to our user...
1382 // NOTE: we use a series of IN clauses here - which
1383 // might explode on huge sites with very convoluted nesting of
1384 // categories... - extremely unlikely that the number of categories
1385 // and roletypes is so large that we hit the limits of IN()
1386 //
1393 }
1394 }
1399 ON rc.contextid=ctx.id
1409 }
1410 }
1412 }
1414 //
1415 // Overrides for the relevant roles IN SUBCONTEXTS
1416 //
1417 // NOTE that we use IN() but the number of roles is
1418 // very limited.
1419 //
1422 rc.capability, rc.permission
1425 ON rc.contextid=ctx.id
1434 }
1435 }
1438 // TODO: compact capsets?
1444 }
1446 /**
1447 * It add to the access ctrl array the data
1448 * needed by a role for a given context.
1449 *
1450 * The data is added in the rdef key.
1451 *
1452 * This role-centric function is useful for role_switching
1453 * and to get an overview of what a role gets under a
1454 * given context and below...
1455 *
1456 * @param $roleid integer - the id of the user
1457 * @param $context context obj - needs path!
1458 * @param $acc access array
1459 *
1460 */
1465 /* Get the relevant rolecaps into rdef
1466 * - relevant role caps
1467 * - at ctx and above
1468 * - below this ctx
1469 */
1476 }
1481 //
1482 // Walk up and down the tree to grab all the roledefs
1483 // of interest to our role...
1484 //
1485 // NOTE: we use an IN clauses here - which
1486 // might explode on huge sites with very convoluted nesting of
1487 // categories... - extremely unlikely that the number of nested
1488 // categories is so large that we hit the limits of IN()
1489 //
1493 ON rc.contextid=ctx.id
1504 }
1505 }
1509 }
1511 /*
1512 * Load accessdata for a user
1513 * into the $ACCESS global
1514 *
1515 * Used by has_capability() - but feel free
1516 * to call it if you are about to run a BIG
1517 * cron run across a bazillion users.
1518 *
1519 * TODO: share rdef tree to save mem
1520 *
1521 */
1527 }
1532 //
1533 // provide "default role" & set 'dr'
1534 //
1540 }
1545 }
1547 /**
1548 * A convenience function to completely load all the capabilities
1549 * for the current user. This is what gets called from login, for example.
1550 */
1559 // Load the rdefs
1561 // Put the ghost enrolment in place...
1570 //
1571 // provide "default role" & set 'dr'
1572 //
1578 }
1587 }
1588 }
1590 // Timestamp to read
1591 // dirty context timestamps
1594 // Clear to force a refresh
1596 }
1598 /**
1599 * A convenience function to completely reload all the capabilities
1600 * for the current user when roles have been updated in a relevant
1601 * context -- but PRESERVING switchroles and loginas.
1602 *
1603 * That is - completely transparent to the user.
1604 *
1605 * Note: rewrites $USER->access completely.
1606 *
1607 */
1612 // copy switchroles
1617 }
1627 }
1629 }
1631 /*
1632 * Adds a temp role to an accessdata array.
1633 *
1634 * Useful for the "temporary guest" access
1635 * we grant to logged-in users.
1636 *
1637 * Note - assumes a course context!
1638 *
1639 */
1644 //
1645 // Load rdefs for the role in -
1646 // - this context
1647 // - all the parents
1648 // - and below - IOWs overrides...
1649 //
1651 // turn the path into a list of context ids
1656 rc.capability, rc.permission
1659 ON rc.contextid=ctx.id
1669 }
1670 }
1673 //
1674 // Say we loaded everything for the course context
1675 // - which we just did - if the user gets a proper
1676 // RA in this session, this data will need to be reloaded,
1677 // but that is handled by the complete accessdata reload
1678 //
1681 //
1682 // Add the ghost RA
1683 //
1688 }
1691 }
1694 /**
1695 * Check all the login enrolment information for the given user object
1696 * by querying the enrolment plugins
1697 */
1705 }
1713 }
1717 if (method_exists($enrol, 'setup_enrolments')) { /// Plugin supports Roles (Moodle 1.7 and later)
1722 }
1725 }
1727 /// deal with $user->students and $user->teachers stuff
1730 }
1732 }
1735 }
1737 /**
1738 * A print form function. This should either grab all the capabilities from
1739 * files or a central table for that particular module instance, then present
1740 * them in check boxes. Only relevant capabilities should print for known
1741 * context.
1742 * @param $mod - module id of the mod
1743 */
1750 // We are in a module specific context.
1752 // Get the mod's name.
1753 // Call the function that grabs the file and parse.
1758 // Print all capabilities.
1760 // Prints the check box component.
1761 }
1762 }
1763 }
1766 /**
1767 * Installs the roles system.
1768 * This function runs on a fresh install as well as on an upgrade from the old
1769 * hard-coded student/teacher/admin etc. roles to the new roles system.
1770 */
1775 /// Create a system wide context for assignemnt.
1779 /// Create default/legacy roles and capabilities.
1780 /// (1 legacy capability per legacy role at system level).
1786 $editteacherrole = create_role(addslashes(get_string('defaultcourseteacher')), 'editingteacher',
1797 /// Now is the correct moment to install capabilities - after creation of legacy roles, but before assigning of roles
1801 }
1804 }
1806 /// Look inside user_admin, user_creator, user_teachers, user_students and
1807 /// assign above new roles. If a user has both teacher and student role,
1808 /// only teacher role is assigned. The assignment should be system level.
1812 /// Set up the progress bar
1820 }
1821 }
1825 /// Upgrade the admins.
1826 /// Sort using id ASC, first one is primary admin.
1834 }
1836 }
1838 // This is a fresh install.
1839 }
1842 /// Upgrade course creators.
1849 }
1851 }
1852 }
1855 /// Upgrade editting teachers and non-editting teachers.
1860 // removed code here to ignore site level assignments
1861 // since the contexts are separated now
1863 // populate the user_lastaccess table
1870 // assign the default student role
1872 // hidden teacher
1877 }
1882 role_assign($noneditteacherrole, $teacher->userid, 0, $coursecontext->id, 0, 0, $hiddenteacher);
1883 }
1886 }
1888 }
1889 }
1892 /// Upgrade students.
1897 // populate the user_lastaccess table
1904 // assign the default student role
1909 }
1911 }
1912 }
1915 /// Upgrade guest (only 1 entry).
1918 }
1922 /// Insert the correct records for legacy roles
1939 /// Set up default permissions for overrides
1949 /// Delete the old user tables when we are done
1956 }
1958 /**
1959 * Returns array of all legacy roles.
1960 */
1970 );
1971 }
1981 //choose first selected legacy capability - reset the rest
1986 }
1987 }
1988 }
1991 }
1993 /**
1994 * Assign the defaults found in this capabality definition to roles that have
1995 * the corresponding legacy capabilities assigned to them.
1996 * @param $legacyperms - an array in the format (example):
1997 * 'guest' => CAP_PREVENT,
1998 * 'student' => CAP_ALLOW,
1999 * 'teacher' => CAP_ALLOW,
2000 * 'editingteacher' => CAP_ALLOW,
2001 * 'coursecreator' => CAP_ALLOW,
2002 * 'admin' => CAP_ALLOW
2003 * @return boolean - success or failure.
2004 */
2015 }
2019 // Assign a site level capability.
2022 }
2023 }
2024 }
2025 }
2027 }
2030 /**
2031 * Checks to see if a capability is a legacy capability.
2032 * @param $capabilityname
2033 * @return boolean
2034 */
2040 }
2041 }
2045 /**********************************
2046 * Context Manipulation functions *
2047 **********************************/
2049 /**
2050 * Create a new context record for use by all roles-related stuff
2051 * assumes that the caller has done the homework.
2052 *
2053 * @param $level
2054 * @param $instanceid
2055 *
2056 * @return object newly created context
2057 */
2064 }
2070 // Define $context->path based on the parent
2071 // context. In other words... Who is your daddy?
2085 }
2097 }
2112 // Only non-pinned & course-page based
2121 }
2124 // default to basepath
2127 // default to basepath
2129 }
2134 // can't set the path till we know the id!
2144 }
2145 }
2147 /**
2148 * This hacky function is needed because we can not change system context instanceid using normal upgrade routine.
2149 */
2152 // we are going to change instanceid of system context to 0 now
2155 //context rel not affected
2167 }
2168 }
2169 }
2170 /**
2171 * Remove a context record and any dependent entries
2172 * @param $level
2173 * @param $instanceid
2174 *
2175 * @return bool properly deleted
2176 */
2183 }
2185 }
2187 /**
2188 * Remove stale context records
2189 *
2190 * @return bool
2191 */
2196 c.instanceid AS instanceid
2199 ON c.instanceid = t.id
2201 UNION
2203 c.instanceid AS instanceid
2206 ON c.instanceid = t.id
2208 UNION
2210 c.instanceid AS instanceid
2213 ON c.instanceid = t.id
2215 UNION
2217 c.instanceid AS instanceid
2220 ON c.instanceid = t.id
2222 UNION
2224 c.instanceid AS instanceid
2227 ON c.instanceid = t.id
2229 UNION
2231 c.instanceid AS instanceid
2234 ON c.instanceid = t.id
2243 }
2248 }
2251 }
2253 }
2255 /**
2256 * Get the context instance as an object. This function will create the
2257 * context instance if it does not exist yet.
2258 * @param integer $level The context level, for example CONTEXT_COURSE, or CONTEXT_MODULE.
2259 * @param integer $instance The instance id. For $level = CONTEXT_COURSE, this would be $course->id,
2260 * for $level = CONTEXT_MODULE, this would be $cm->id. And so on.
2261 * @return object The context object.
2262 */
2266 static $allowed_contexts = array(CONTEXT_SYSTEM, CONTEXT_PERSONAL, CONTEXT_USER, CONTEXT_COURSECAT, CONTEXT_COURSE, CONTEXT_GROUP, CONTEXT_MODULE, CONTEXT_BLOCK);
2269 // TODO: Remove for v2.0
2270 // No longer needed, but we'll catch it to avoid erroring out on custom code.
2271 // This used to be a fix for MDL-9016
2272 // "Restoring into existing course, deleting first
2273 // deletes context and doesn't recreate it"
2275 }
2277 /// If no level is supplied then return the current global context if there is one
2280 //fatal error, code must be fixed
2284 }
2285 }
2287 /// Backwards compatibility with obsoleted (CONTEXT_SYSTEM, SITEID)
2290 }
2292 /// check allowed context levels
2294 // fatal error, code must be fixed - probably typo or switched parameters
2295 error('Error: get_context_instance() called with incorrect context level "'.s($contextlevel).'"');
2296 }
2298 /// Check the cache
2301 }
2303 /// Get it from the database, or create it
2304 if (!$context = get_record('context', 'contextlevel', $contextlevel, 'instanceid', $instance)) {
2307 }
2309 /// Only add to cache if context isn't empty.
2313 }
2316 }
2319 /**
2320 * Get a context instance as an object, from a given context id.
2321 * @param $id a context id.
2322 * @return object The context object.
2323 */
2330 }
2336 }
2339 }
2342 /**
2343 * Get the local override (if any) for a given capability in a role in a context
2344 * @param $roleid
2345 * @param $contextid
2346 * @param $capability
2347 */
2349 return get_record('role_capabilities', 'roleid', $roleid, 'capability', $capability, 'contextid', $contextid);
2350 }
2354 /************************************
2355 * DB TABLE RELATED FUNCTIONS *
2356 ************************************/
2358 /**
2359 * function that creates a role
2360 * @param name - role name
2361 * @param shortname - role short name
2362 * @param description - role description
2363 * @param legacy - optional legacy capability
2364 * @return id or false
2365 */
2368 // check for duplicate role name
2372 }
2376 }
2383 //find free sortorder number
2387 }
2391 }
2396 }
2398 /// By default, users with role:manage at site level
2399 /// should be able to assign users to this new role, and override this new role's capabilities
2401 // find all admin roles
2403 // foreach admin role
2405 // write allow_assign and allow_overrid
2408 }
2409 }
2414 }
2416 }
2418 /**
2419 * function that deletes a role and cleanups up after it
2420 * @param roleid - id of role to delete
2421 * @return success
2422 */
2427 // mdl 10149, check if this is the last active admin role
2428 // if we make the admin role not deletable then this part can go
2433 if (record_exists('role_capabilities', 'contextid', $systemcontext->id, 'roleid', $roleid, 'capability', 'moodle/site:doanything')) {
2434 // deleting an admin role
2436 if ($adminroles = get_roles_with_capability('moodle/site:doanything', CAP_ALLOW, $systemcontext)) {
2439 // some other admin role
2440 if (record_exists('role_assignments', 'roleid', $adminrole->id, 'contextid', $systemcontext->id)) {
2441 // found another admin role with at least 1 user assigned
2444 }
2445 }
2446 }
2447 }
2449 error ('You can not delete this role because there is no other admin roles with users assigned');
2450 }
2451 }
2452 }
2454 // first unssign all users
2458 }
2460 // cleanup all references to this role, ignore errors
2463 // MDL-10679 find all contexts where this role has an override
2475 }
2477 // finally delete the role itself
2481 }
2484 }
2486 /**
2487 * Function to write context specific overrides, or default capabilities.
2488 * @param module - string name
2489 * @param capability - string name
2490 * @param contextid - context id
2491 * @param roleid - role id
2492 * @param permission - int 1,-1 or -1000
2493 * should not be writing if permission is 0
2494 */
2502 }
2504 $existing = get_record('role_capabilities', 'contextid', $contextid, 'roleid', $roleid, 'capability', $capability);
2508 }
2524 }
2525 }
2527 /**
2528 * Unassign a capability from a role.
2529 * @param $roleid - the role id
2530 * @param $capability - the name of the capability
2531 * @return boolean - success or failure
2532 */
2536 // delete from context rel, if this is the last override in this context
2542 }
2544 }
2547 /**
2548 * Get the roles that have a given capability assigned to it. This function
2549 * does not resolve the actual permission of the capability. It just checks
2550 * for assignment only.
2551 * @param $capability - capability name (string)
2552 * @param $permission - optional, the permission defined for this capability
2553 * either CAP_ALLOW, CAP_PREVENT or CAP_PROHIBIT
2554 * @return array or role objects
2555 */
2566 }
2570 }
2580 }
2582 }
2585 /**
2586 * This function makes a role-assignment (a role for a user or group in a particular context)
2587 * @param $roleid - the role of the id
2588 * @param $userid - userid
2589 * @param $groupid - group id
2590 * @param $contextid - id of the context
2591 * @param $timestart - time this assignment becomes effective
2592 * @param $timeend - time this assignemnt ceases to be effective
2593 * @uses $USER
2594 * @return id - new id of the assigment
2595 */
2596 function role_assign($roleid, $userid, $groupid, $contextid, $timestart=0, $timeend=0, $hidden=0, $enrol='manual',$timemodified='') {
2601 /// Do some data validation
2606 }
2611 }
2616 }
2621 }
2626 }
2631 }
2635 }
2637 /// Check for existing entry
2639 $ra = get_record('role_assignments', 'roleid', $roleid, 'contextid', $context->id, 'userid', $userid);
2641 $ra = get_record('role_assignments', 'roleid', $roleid, 'contextid', $context->id, 'groupid', $groupid);
2642 }
2653 /// Always round timestart downto 100 secs to help DBs to use their own caching algorithms
2654 /// by repeating queries with the same exact parameters in a 100 secs time window
2667 /// Always round timestart downto 100 secs to help DBs to use their own caching algorithms
2668 /// by repeating queries with the same exact parameters in a 100 secs time window
2675 }
2679 /// If the user is the current user, then reload the capabilities too.
2682 }
2684 /// Ask all the modules if anything needs to be done for this user
2691 }
2692 }
2693 }
2694 }
2696 /// now handle metacourse role assignments if in course context
2701 }
2702 }
2703 }
2706 }
2709 /**
2710 * Deletes one or more role assignments. You must specify at least one parameter.
2711 * @param $roleid
2712 * @param $userid
2713 * @param $groupid
2714 * @param $contextid
2715 * @param $enrol unassign only if enrolment type matches, NULL means anything
2716 * @return boolean - success or failure
2717 */
2729 }
2730 }
2733 }
2739 /// infinite loop protection when deleting recursively
2742 }
2745 /// If the user is the current user, then reload the capabilities too.
2748 }
2751 /// Ask all the modules if anything needs to be done for this user
2756 $functionname($ra->userid, $context); // watch out, $context might be NULL if something goes wrong
2757 }
2758 }
2760 /// now handle metacourse role unassigment and removing from goups if in course context
2763 // cleanup leftover course groups/subscriptions etc when user has
2764 // no capability to view course
2765 // this may be slow, but this is the proper way of doing it
2767 // remove from groups
2771 }
2772 }
2774 // delete lastaccess records
2776 }
2778 //unassign roles in metacourses if needed
2782 }
2783 }
2784 }
2785 }
2786 }
2787 }
2790 }
2792 /**
2793 * A convenience function to take care of the common case where you
2794 * just want to enrol someone using the default role into a course
2795 *
2796 * @param object $course
2797 * @param object $user
2798 * @param string $enrol - the plugin used to do this enrolment
2799 */
2803 // remove time part from the timestamp and keep only the date part
2804 $timestart = make_timestamp(date('Y', $timestart), date('m', $timestart), date('d', $timestart), 0, 0, 0);
2809 }
2817 }
2819 // force accessdata refresh for users visiting this context...
2827 }
2830 }
2832 /**
2833 * Loads the capability definitions for the component (from file). If no
2834 * capabilities are defined for the component, we simply return an empty array.
2835 * @param $component - examples: 'moodle', 'mod/forum', 'block/quiz_results'
2836 * @return array of capabilities
2837 */
2848 // Blocks are an exception. Blocks directory is 'blocks', and not
2849 // 'block'. So we need to jump through hoops.
2855 // Similar to the above, course formats are 'format' while they
2856 // are stored in 'course/format'.
2875 }
2876 }
2882 }
2884 }
2887 /**
2888 * Gets the capabilities that have been cached in the database for this
2889 * component.
2890 * @param $component - examples: 'moodle', 'mod/forum', 'block/quiz_results'
2891 * @return array of capabilities
2892 */
2900 }
2902 }
2904 /**
2905 * Returns default capabilities for given legacy role type.
2906 *
2907 * @param string legacy role name
2908 * @return array
2909 */
2913 }
2921 }
2922 }
2926 }
2927 }
2929 //some exceptions
2933 }
2935 }
2937 /**
2938 * Reset role capabilitites to default according to selected legacy capability.
2939 * If several legacy caps selected, use the first from get_default_capabilities.
2940 * If no legacy selected, removes all capabilities.
2941 *
2942 * @param int @roleid
2943 */
2952 //choose first selected legacy capability
2955 }
2956 }
2962 }
2963 }
2964 }
2966 /**
2967 * Updates the capabilities table with the component capability definitions.
2968 * If no parameters are given, the function updates the core moodle
2969 * capabilities.
2970 *
2971 * Note that the absence of the db/access.php capabilities definition file
2972 * will cause any stored capabilities for the component to be removed from
2973 * the database.
2974 *
2975 * @param $component - examples: 'moodle', 'mod/forum', 'block/quiz_results'
2976 * @return boolean
2977 */
2987 // update risk bitmasks and context levels in existing capabilities if needed
2991 }
2998 }
2999 }
3003 }
3010 }
3011 }
3012 }
3013 }
3014 }
3016 // Are there new capabilities in the file definition?
3024 }
3026 }
3027 }
3028 // Add new capabilities to the stored definition.
3039 }
3042 if (isset($capdef['clonepermissionsfrom']) && in_array($capdef['clonepermissionsfrom'], $storedcaps)){
3043 if ($rolecapabilities = get_records('role_capabilities', 'capability', $capdef['clonepermissionsfrom'])){
3045 //assign_capability will update rather than insert if capability exists
3049 }
3050 }
3051 }
3052 // Do we need to assign the new capabilities to roles that have the
3053 // legacy capabilities moodle/legacy:* as well?
3054 // we ignore legacy key if we have cloned permissions
3058 }
3059 }
3060 // Are there any capabilities that have been removed from the file
3061 // definition that we need to delete from the stored capabilities and
3062 // role assignments?
3066 }
3069 /**
3070 * Deletes cached capabilities that are no longer needed by the component.
3071 * Also unassigns these capabilities from any roles that have them.
3072 * @param $component - examples: 'moodle', 'mod/forum', 'block/quiz_results'
3073 * @param $newcapdef - array of the new capability definitions that will be
3074 * compared with the cached capabilities
3075 * @return int - number of deprecated capabilities that have been removed
3076 */
3086 // Remove from capabilities cache.
3091 }
3092 // Delete from roles.
3098 }
3099 }
3100 }
3102 }
3103 }
3105 }
3109 /****************
3110 * UI FUNCTIONS *
3111 ****************/
3114 /**
3115 * prints human readable context identifier.
3116 */
3134 }
3136 }
3143 }
3145 }
3155 }
3156 }
3161 }
3163 }
3170 }
3171 }
3180 }
3182 }
3183 }
3184 }
3197 }
3199 }
3200 }
3201 }
3208 }
3210 }
3213 /**
3214 * Extracts the relevant capabilities given a contextid.
3215 * All case based, example an instance of forum context.
3216 * Will fetch all forum related capabilities, while course contexts
3217 * Will fetch all capabilities
3218 * @param object context
3219 * @return array();
3220 *
3221 * capabilities
3222 * `name` varchar(150) NOT NULL,
3223 * `captype` varchar(50) NOT NULL,
3224 * `contextlevel` int(10) NOT NULL,
3225 * `component` varchar(100) NOT NULL,
3226 */
3278 }
3282 }
3284 /// the rest of code is a bit hacky, think twice before modifying it :-(
3286 // special sorting of core system capabiltites and enrollments
3287 if (in_array($context->contextlevel, array(CONTEXT_SYSTEM, CONTEXT_COURSECAT, CONTEXT_COURSE))) {
3295 }
3296 }
3299 }
3303 }
3307 }
3310 /**
3311 * Gets the context-independent capabilities that should be overrridable in
3312 * any context.
3313 * @return array of capability records from the capabilities table.
3314 */
3317 //only CONTEXT_SYSTEM capabilities here or it will break the hack in fetch_context_capabilities()
3319 'moodle/site:accessallgroups'
3320 );
3327 }
3329 }
3332 /**
3333 * This function pulls out all the resolved capabilities (overrides and
3334 * defaults) of a role used in capability overrides in contexts at a given
3335 * context.
3336 * @param obj $context
3337 * @param int $roleid
3338 * @param bool self - if set to true, resolve till this level, else stop at immediate parent level
3339 * @return array
3340 */
3352 }
3360 ORDER BY c.contextlevel DESC,
3366 // We are traversing via reverse order.
3368 // If not set yet (i.e. inherit or not set at all), or currently we have a prohibit
3371 }
3372 }
3373 }
3375 }
3377 /**
3378 * Recursive function which, given a context, find all parent context ids,
3379 * and return the array in reverse order, i.e. parent first, then grand
3380 * parent, etc.
3381 *
3382 * @param object $context
3383 * @return array()
3384 */
3389 }
3396 }
3399 /**
3400 * Recursive function which, given a context, find all its children context ids.
3401 *
3402 * When called for a course context, it will return the modules and blocks
3403 * displayed in the course page.
3404 *
3405 * For course category contexts it will return categories and courses. It will
3406 * NOT recurse into courses - if you want to do that, call it on the returned
3407 * courses.
3408 *
3409 * If called on a course context it _will_ populate the cache with the appropriate
3410 * contexts ;-)
3411 *
3412 * @param object $context.
3413 * @return array of child records
3414 */
3419 // We *MUST* populate the context_cache as the callers
3420 // will probably ask for the full record anyway soon after
3421 // soon after calling us ;-)
3426 // No children.
3431 // No children.
3436 // No children.
3441 // Find
3442 // - module instances - easy
3443 // - groups
3444 // - blocks assigned to the course-view page explicitly - easy
3445 // - blocks pinned (note! we get all of them here, regardless of vis)
3450 UNION
3451 SELECT ctx.*
3456 UNION
3457 SELECT ctx.*
3461 WHERE b.pagetype='course-view'
3469 }
3470 }
3476 // Find
3477 // - categories
3478 // - courses
3490 }
3491 }
3497 // No children.
3502 // No children.
3507 // Just get all the contexts except for CONTEXT_SYSTEM level
3508 // and hope we don't OOM in the process - don't cache
3519 }
3520 }
3523 /**
3524 * Gets a string for sql calls, searching for stuff in this context or above
3525 * @param object $context
3526 * @return string
3527 */
3533 }
3534 }
3536 /**
3537 * Returns the human-readable, translated version of the capability.
3538 * Basically a big switch statement.
3539 * @param $capabilityname - e.g. mod/choice:readresponses
3540 */
3543 // Typical capabilityname is mod/choice:readresponses
3587 }
3589 }
3592 /**
3593 * This gets the mod/block/course/core etc strings.
3594 * @param $component
3595 * @param $contextlevel
3596 */
3610 }
3632 }
3648 }
3652 error ('This is an unknown context $contextlevel (' . $contextlevel . ') in get_component_string!');
3655 }
3657 }
3659 /**
3660 * Gets the list of roles assigned to this context and up (parents)
3661 * @param object $context
3662 * @param view - set to true when roles are pulled for display only
3663 * this is so that we can filter roles with no visible
3664 * assignment, for example, you might want to "hide" all
3665 * course creators when browsing the course participants
3666 * list.
3667 * @return array
3668 */
3673 // filter for roles with all hidden assignments
3674 // no need to return when only pulling roles for reviewing
3675 // e.g. participants page.
3676 $hiddensql = ($view && !has_capability('moodle/role:viewhiddenassigns', $context))? ' AND ra.hidden = 0 ':'';
3680 r.name,
3681 r.shortname,
3682 r.sortorder
3685 WHERE r.id = ra.roleid
3687 $hiddensql
3691 }
3693 /** this function is used to print roles column in user profile page.
3694 * @param int userid
3695 * @param int contextid
3696 * @return string
3697 */
3702 $SQL = 'select * from '.$CFG->prefix.'role_assignments ra, '.$CFG->prefix.'role r where ra.userid='.$userid.' and ra.contextid='.$contextid.' and ra.roleid = r.id';
3705 $rolestring .= '<a href="'.$CFG->wwwroot.'/user/index.php?contextid='.$userrole->contextid.'&roleid='.$userrole->roleid.'">'.$userrole->name.'</a>, ';
3706 }
3708 }
3710 }
3713 /**
3714 * Checks if a user can override capabilities of a particular role in this context
3715 * @param object $context
3716 * @param int targetroleid - the id of the role you want to override
3717 * @return boolean
3718 */
3720 // first check if user has override capability
3721 // if not return false;
3724 }
3725 // pull out all active roles of this user from this context(or above)
3728 // if any in the role_allow_override table, then it's ok
3729 if (get_record('role_allow_override', 'roleid', $userrole->roleid, 'allowoverride', $targetroleid)) {
3731 }
3732 }
3733 }
3737 }
3739 /**
3740 * Checks if a user can assign users to a particular role in this context
3741 * @param object $context
3742 * @param int targetroleid - the id of the role you want to assign users to
3743 * @return boolean
3744 */
3747 // first check if user has override capability
3748 // if not return false;
3751 }
3752 // pull out all active roles of this user from this context(or above)
3755 // if any in the role_allow_override table, then it's ok
3756 if (get_record('role_allow_assign', 'roleid', $userrole->roleid, 'allowassign', $targetroleid)) {
3758 }
3759 }
3760 }
3763 }
3765 /** Returns all site roles in correct sort order.
3766 *
3767 */
3770 }
3772 /**
3773 * gets all the user roles assigned in this context, or higher contexts
3774 * this is mainly used when checking if a user can assign a role, or overriding a role
3775 * i.e. we need to know what this user holds, in order to verify against allow_assign and
3776 * allow_override tables
3777 * @param object $context
3778 * @param int $userid
3779 * @param view - set to true when roles are pulled for display only
3780 * this is so that we can filter roles with no visible
3781 * assignment, for example, you might want to "hide" all
3782 * course creators when browsing the course participants
3783 * list.
3784 * @return array
3785 */
3786 function get_user_roles($context, $userid=0, $checkparentcontexts=true, $order='c.contextlevel DESC, r.sortorder ASC', $view=false) {
3793 }
3795 }
3796 // set up hidden sql
3797 $hiddensql = ($view && !has_capability('moodle/role:viewhiddenassigns', $context))? ' AND ra.hidden = 0 ':'';
3803 }
3810 ' AND ra.roleid = r.id
3811 AND ra.contextid = c.id
3814 }
3816 /**
3817 * Creates a record in the allow_override table
3818 * @param int sroleid - source roleid
3819 * @param int troleid - target roleid
3820 * @return int - id or false
3821 */
3827 }
3829 /**
3830 * Creates a record in the allow_assign table
3831 * @param int sroleid - source roleid
3832 * @param int troleid - target roleid
3833 * @return int - id or false
3834 */
3840 }
3842 /**
3843 * Gets a list of roles that this user can assign in this context
3844 * @param object $context
3845 * @param string $field
3846 * @return array
3847 */
3852 // this users RAs
3857 }
3862 }
3866 // The subselect scopes the DISTINCT down to
3867 // the role ids - a DISTINCT over the whole of
3868 // the role table is much more expensive on some DBs
3871 JOIN ( SELECT DISTINCT allowassign as allowedrole
3874 ON r.id=ar.allowedrole
3882 }
3883 }
3885 }
3887 /**
3888 * Gets a list of roles that this user can override in this context
3889 * @param object $context
3890 * @return array
3891 */
3900 }
3901 }
3902 }
3905 }
3907 /**
3908 * Returns a role object that is the default role for new enrolments
3909 * in a given course
3910 *
3911 * @param object $course
3912 * @return object $role
3913 */
3917 /// First let's take the default role the course may have
3921 }
3922 }
3924 /// Otherwise the site setting should tell us
3928 }
3929 }
3931 /// It's unlikely we'll get here, but just in case, try and find a student role
3934 }
3937 }
3940 /**
3941 * who has this capability in this context
3942 * does not handling user level resolving!!!
3943 * (!)pleaes note if $fields is empty this function attempts to get u.*
3944 * which can get rather large.
3945 * i.e 1 person has 2 roles 1 allow, 1 prevent, this will not work properly
3946 * @param $context - object
3947 * @param $capability - string capability
3948 * @param $fields - fields to be pulled
3949 * @param $sort - the sort order
3950 * @param $limitfrom - number of records to skip (offset)
3951 * @param $limitnum - number of records to fetch
3952 * @param $groups - single group or array of groups - only return
3953 * users who are in one of these group(s).
3954 * @param $exceptions - list of users to exclude
3955 * @param view - set to true when roles are pulled for display only
3956 * this is so that we can filter roles with no visible
3957 * assignment, for example, you might want to "hide" all
3958 * course creators when browsing the course participants
3959 * list.
3960 * @param boolean $useviewallgroups if $groups is set the return users who
3961 * have capability both $capability and moodle/site:accessallgroups
3962 * in this context, as well as users who have $capability and who are
3963 * in $groups.
3964 */
3970 /// Sorting out groups
3976 }
3987 }
3990 }
3992 /// Sorting out exceptions
3995 /// Set up default fields
3998 }
4000 /// Set up default sort
4003 }
4006 /// Set up hidden sql
4007 $hiddensql = ($view && !has_capability('moodle/role:viewhiddenassigns', $context))? ' AND ra.hidden = 0 ':'';
4009 /// If context is a course, then construct sql for ul
4015 }
4017 /// Sorting out roles with this capability set
4022 }
4023 $doanythingroles = get_roles_with_capability('moodle/site:doanything', CAP_ALLOW, $sitecontext);
4024 }
4031 }
4032 }
4033 if ($caps = role_context_capabilities($possiblerole->id, $context, $capability)) { // resolved list
4036 }
4037 }
4038 }
4041 }
4045 }
4047 /// Construct the main SQL
4054 AND u.deleted = 0
4056 $exceptionsql
4057 $groupsql
4061 }
4063 /**
4064 * gets all the users assigned this role in this context or higher
4065 * @param int roleid (can also be an array of ints!)
4066 * @param int contextid
4067 * @param bool parent if true, get list of users assigned in higher context too
4068 * @param string fields - fields from user (u.) , role assignment (ra) or role (r.)
4069 * @param string sort - sort from user (u.) , role assignment (ra) or role (r.)
4070 * @param bool gethidden - whether to fetch hidden enrolments too
4071 * @return array()
4072 */
4073 function get_role_users($roleid, $context, $parent=false, $fields='', $sort='u.lastname ASC', $gethidden=true) {
4081 }
4083 // whether this assignment is hidden
4092 }
4093 }
4101 }
4110 }
4115 ON u.id = ra.userid
4117 ON ra.roleid = r.id
4118 $groupjoin
4120 $roleselect
4121 $groupselect
4122 $hiddensql
4126 }
4128 /**
4129 * Counts all the users assigned this role in this context or higher
4130 * @param int roleid
4131 * @param int contextid
4132 * @param bool parent if true, get list of users assigned in higher context too
4133 * @return array()
4134 */
4143 }
4146 }
4154 }
4156 /**
4157 * This function gets the list of courses that this user has a particular capability in.
4158 * It is still not very efficient.
4159 * @param string $capability Capability in question
4160 * @param int $userid User ID or null for current user
4161 * @param bool $doanything True if 'doanything' is permitted (default)
4162 * @param string $fieldsexceptid Leave blank if you only need 'id' in the course records;
4163 * otherwise use a comma-separated list of the fields you require, not including id
4164 * @param string $orderby If set, use a comma-separated list of fields from course
4165 * table with sql modifiers (DESC) if needed
4166 * @return array Array of courses, may have zero entries. Or false if query failed.
4167 */
4168 function get_user_capability_course($capability, $userid=NULL,$doanything=true,$fieldsexceptid='',$orderby='') {
4169 // Convert fields list and ordering
4175 }
4176 }
4183 }
4185 }
4187 }
4189 // Obtain a list of everything relevant about all courses including context.
4190 // Note the result can be used directly as a context (we are going to), the course
4191 // fields are just appended.
4194 SELECT
4196 FROM
4199 $orderby
4203 }
4205 // Check capability for each course in turn
4209 // We've got the capability. Make the record look like a course record
4210 // and store it
4216 }
4217 }
4219 }
4221 /** This function finds the roles assigned directly to this context only
4222 * i.e. no parents role
4223 * @param object $context
4224 * @return array
4225 */
4233 WHERE ra.roleid = r.id
4236 }
4238 /**
4239 * Switches the current user to another role for the current session and only
4240 * in the given context.
4241 *
4242 * The caller *must* check
4243 * - that this op is allowed
4244 * - that the requested role can be assigned in this ctx
4245 * (hint, use get_assignable_roles())
4246 * - that the requested role is NOT $CFG->defaultuserroleid
4247 *
4248 * To "unswitch" pass 0 as the roleid.
4249 *
4250 * This function *will* modify $USER->access - beware
4251 *
4252 * @param integer $roleid
4253 * @param object $context
4254 * @return bool
4255 */
4259 //
4260 // Plan of action
4261 //
4262 // - Add the ghost RA to $USER->access
4263 // as $USER->access['rsw'][$path] = $roleid
4264 //
4265 // - Make sure $USER->access['rdef'] has the roledefs
4266 // it needs to honour the switcheroo
4267 //
4268 // Roledefs will get loaded "deep" here - down to the last child
4269 // context. Note that
4270 //
4271 // - When visiting subcontexts, our selective accessdata loading
4272 // will still work fine - though those ra/rdefs will be ignored
4273 // appropriately while the switch is in place
4274 //
4275 // - If a switcheroo happens at a category with tons of courses
4276 // (that have many overrides for switched-to role), the session
4277 // will get... quite large. Sometimes you just can't win.
4278 //
4279 // To un-switch just unset($USER->access['rsw'][$path])
4280 //
4282 // Add the switch RA
4285 }
4291 }
4293 }
4297 // Load roledefs
4301 /* DO WE NEED THIS AT ALL???
4302 // Add some permissions we are really going
4303 // to always need, even if the role doesn't have them!
4305 $USER->capabilities[$context->id]['moodle/course:view'] = CAP_ALLOW;
4306 */
4309 }
4312 // get any role that has an override on exact context
4320 WHERE rc.roleid = r.id
4322 }
4324 // get all capabilities for this role on this context (overrids)
4333 }
4335 // find out which roles has assignment on this context
4343 WHERE ra.roleid = r.id
4345 }
4349 /**
4350 * Find all user assignemnt of users for this role, on this context
4351 */
4360 }
4362 /**
4363 * Simple function returning a boolean true if roles exist, otherwise false
4364 */
4368 return record_exists('role_assignments', 'userid', $userid, 'roleid', $roleid, 'contextid', $contextid);
4371 }
4372 }
4374 // gets the custom name of the role in course
4375 // TODO: proper documentation
4382 }
4383 }
4385 /**
4386 * This function helps admin/roles/manage.php etc to detect if a new line should be printed
4387 * when we read in a new capability
4388 * most of the time, if the 2 components are different we should print a new line, (e.g. course system->rss client)
4389 * but when we are in grade, all reports/import/export capabilites should be together
4390 * @param string a - component string a
4391 * @param string b - component string b
4392 * @return bool - whether 2 component are in different "sections"
4393 */
4398 }
4406 // we are in gradebook, still
4407 if (($compsa[0] == 'gradeexport' || $compsa[0] == 'gradeimport' || $compsa[0] == 'gradereport') &&
4410 }
4411 }
4414 }
4416 /**
4417 * Populate context.path and context.depth where missing.
4418 *
4419 * Use $force=true to force a complete rebuild of
4420 * the path and depth fields.
4421 *
4422 */
4426 // Site
4434 }
4436 // Sitecourse
4448 }
4453 }
4456 }
4457 // Top level categories
4461 AND instanceid IN
4462 (SELECT id
4467 // Deeper categories - one query per depthlevel
4473 FROM (SELECT c.id AS instanceid, pctx.path AS ppath
4476 ON (c.parent=pctx.instanceid
4483 }
4485 // Courses -- except sitecourse
4488 FROM (SELECT c.id AS instanceid, pctx.path AS ppath,
4489 pctx.depth as pdepth
4492 ON (c.category=pctx.instanceid
4500 // Module instances
4503 FROM (SELECT cm.id AS instanceid, pctx.path AS ppath,
4504 pctx.depth as pdepth
4507 ON (cm.course=pctx.instanceid
4509 ) it
4515 // Blocks - non-pinned only
4518 FROM (SELECT bi.id AS instanceid, pctx.path AS ppath,
4519 pctx.depth as pdepth
4522 ON (bi.pageid=pctx.instanceid
4523 AND bi.pagetype='course-view'
4525 ) it
4531 // User
4535 AND instanceid IN (SELECT id
4540 // Personal TODO
4542 }
4544 /**
4545 * Update the path field of the context and
4546 * all the dependent subcontexts that follow
4547 * the move.
4548 *
4549 * The most important thing here is to be as
4550 * DB efficient as possible. This op can have a
4551 * massive impact in the DB.
4552 *
4553 * @param obj current context obj
4554 * @param obj newparent new parent obj
4555 *
4556 */
4566 }
4569 $setdepth
4576 $setdepth
4582 }
4585 /**
4586 * Turn the ctx* fields in an objectlike record
4587 * into a context subobject. This allows
4588 * us to SELECT from major tables JOINing with
4589 * context at no cost, saving a ton of context
4590 * lookups...
4591 */
4601 }
4603 /*
4604 * Fetch recent dirty contexts to know cheaply whether our $USER->access
4605 * is stale and needs to be reloaded.
4606 *
4607 * Uses config_plugins.
4608 *
4609 */
4615 WHERE plugin='accesslib/dirtycontexts'
4619 }
4621 }
4623 /*
4624 * Mark a context as dirty (with timestamp)
4625 * so as to force reloading of the context.
4626 *
4627 */
4630 // only if it is a non-empty string
4632 // The timestamp is 2s in the past to cover for
4633 // - race conditions within the 1s granularity
4634 // - very small clock offsets in clusters (use ntpd!)
4636 }
4637 }
4639 /*
4640 * Cleanup all the old/stale dirty contexts.
4641 * Any context exceeding our session
4642 * timeout is stale. We only keep these for ongoing
4643 * sessions.
4644 *
4645 */
4652 }
4654 /*
4655 * Will walk the contextpath to answer whether
4656 * the contextpath is clean
4657 *
4658 * NOTE: it will *NOT* test the base path
4659 * as it assumes that the caller has checked
4660 * that beforehand.
4661 *
4662 * @param string path
4663 * @param obj/array dirty from get_dirty_contexts()
4664 *
4665 */
4670 // all clean, no dirt!
4673 }
4675 // is _this_ context dirty?
4678 }
4682 // we don't test basepath
4683 // assume caller did it already
4685 }
4688 }
4689 }
4691 }
4693 ?>