search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
MDL-51177 core: Ignore built files in stylelint
[moodle.git] / lib / externallib.php
blob50a88f1b07874e85e79cfa8355e93b23012166f5
1 <?php
2 // This file is part of Moodle - http://moodle.org/
3 //
4 // Moodle is free software: you can redistribute it and/or modify
5 // it under the terms of the GNU General Public License as published by
6 // the Free Software Foundation, either version 3 of the License, or
7 // (at your option) any later version.
8 //
9 // Moodle is distributed in the hope that it will be useful,
10 // but WITHOUT ANY WARRANTY; without even the implied warranty of
11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 // GNU General Public License for more details.
13 //
14 // You should have received a copy of the GNU General Public License
15 // along with Moodle. If not, see <http://www.gnu.org/licenses/>.
16
17
18 /**
19 * Support for external API
20 *
21 * @package core_webservice
22 * @copyright 2009 Petr Skodak
23 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
24 */
25
26 defined('MOODLE_INTERNAL') || die();
27
28 /**
29 * Exception indicating user is not allowed to use external function in the current context.
30 *
31 * @package core_webservice
32 * @copyright 2009 Petr Skodak
33 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
34 * @since Moodle 2.0
35 */
36 class restricted_context_exception extends moodle_exception {
37 /**
38 * Constructor
39 *
40 * @since Moodle 2.0
41 */
42 function __construct() {
43 parent::__construct('restrictedcontextexception', 'error');
44 }
45 }
46
47 /**
48 * Base class for external api methods.
49 *
50 * @package core_webservice
51 * @copyright 2009 Petr Skodak
52 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
53 * @since Moodle 2.0
54 */
55 class external_api {
56
57 /** @var stdClass context where the function calls will be restricted */
58 private static $contextrestriction;
59
60 /**
61 * Returns detailed function information
62 *
63 * @param string|object $function name of external function or record from external_function
64 * @param int $strictness IGNORE_MISSING means compatible mode, false returned if record not found, debug message if more found;
65 * MUST_EXIST means throw exception if no record or multiple records found
66 * @return stdClass description or false if not found or exception thrown
67 * @since Moodle 2.0
68 */
69 public static function external_function_info($function, $strictness=MUST_EXIST) {
70 global $DB, $CFG;
71
72 if (!is_object($function)) {
73 if (!$function = $DB->get_record('external_functions', array('name' => $function), '*', $strictness)) {
74 return false;
75 }
76 }
77
78 // First try class autoloading.
79 if (!class_exists($function->classname)) {
80 // Fallback to explicit include of externallib.php.
81 if (empty($function->classpath)) {
82 $function->classpath = core_component::get_component_directory($function->component).'/externallib.php';
83 } else {
84 $function->classpath = $CFG->dirroot.'/'.$function->classpath;
85 }
86 if (!file_exists($function->classpath)) {
87 throw new coding_exception('Cannot find file with external function implementation');
88 }
89 require_once($function->classpath);
90 if (!class_exists($function->classname)) {
91 throw new coding_exception('Cannot find external class');
92 }
93 }
94
95 $function->ajax_method = $function->methodname.'_is_allowed_from_ajax';
96 $function->parameters_method = $function->methodname.'_parameters';
97 $function->returns_method = $function->methodname.'_returns';
98 $function->deprecated_method = $function->methodname.'_is_deprecated';
99
100 // Make sure the implementaion class is ok.
101 if (!method_exists($function->classname, $function->methodname)) {
102 throw new coding_exception('Missing implementation method of '.$function->classname.'::'.$function->methodname);
103 }
104 if (!method_exists($function->classname, $function->parameters_method)) {
105 throw new coding_exception('Missing parameters description');
106 }
107 if (!method_exists($function->classname, $function->returns_method)) {
108 throw new coding_exception('Missing returned values description');
109 }
110 if (method_exists($function->classname, $function->deprecated_method)) {
111 if (call_user_func(array($function->classname, $function->deprecated_method)) === true) {
112 $function->deprecated = true;
113 }
114 }
115 $function->allowed_from_ajax = false;
116
117 // Fetch the parameters description.
118 $function->parameters_desc = call_user_func(array($function->classname, $function->parameters_method));
119 if (!($function->parameters_desc instanceof external_function_parameters)) {
120 throw new coding_exception('Invalid parameters description');
121 }
122
123 // Fetch the return values description.
124 $function->returns_desc = call_user_func(array($function->classname, $function->returns_method));
125 // Null means void result or result is ignored.
126 if (!is_null($function->returns_desc) and !($function->returns_desc instanceof external_description)) {
127 throw new coding_exception('Invalid return description');
128 }
129
130 // Now get the function description.
131
132 // TODO MDL-31115 use localised lang pack descriptions, it would be nice to have
133 // easy to understand descriptions in admin UI,
134 // on the other hand this is still a bit in a flux and we need to find some new naming
135 // conventions for these descriptions in lang packs.
136 $function->description = null;
137 $servicesfile = core_component::get_component_directory($function->component).'/db/services.php';
138 if (file_exists($servicesfile)) {
139 $functions = null;
140 include($servicesfile);
141 if (isset($functions[$function->name]['description'])) {
142 $function->description = $functions[$function->name]['description'];
143 }
144 if (isset($functions[$function->name]['testclientpath'])) {
145 $function->testclientpath = $functions[$function->name]['testclientpath'];
146 }
147 if (isset($functions[$function->name]['type'])) {
148 $function->type = $functions[$function->name]['type'];
149 }
150 if (isset($functions[$function->name]['ajax'])) {
151 $function->allowed_from_ajax = $functions[$function->name]['ajax'];
152 } else if (method_exists($function->classname, $function->ajax_method)) {
153 if (call_user_func(array($function->classname, $function->ajax_method)) === true) {
154 debugging('External function ' . $function->ajax_method . '() function is deprecated.' .
155 'Set ajax=>true in db/service.php instead.', DEBUG_DEVELOPER);
156 $function->allowed_from_ajax = true;
157 }
158 }
159 if (isset($functions[$function->name]['loginrequired'])) {
160 $function->loginrequired = $functions[$function->name]['loginrequired'];
161 } else {
162 $function->loginrequired = true;
163 }
164 }
165
166 return $function;
167 }
168
169 /**
170 * Call an external function validating all params/returns correctly.
171 *
172 * Note that an external function may modify the state of the current page, so this wrapper
173 * saves and restores tha PAGE and COURSE global variables before/after calling the external function.
174 *
175 * @param string $function A webservice function name.
176 * @param array $args Params array (named params)
177 * @param boolean $ajaxonly If true, an extra check will be peformed to see if ajax is required.
178 * @return array containing keys for error (bool), exception and data.
179 */
180 public static function call_external_function($function, $args, $ajaxonly=false) {
181 global $PAGE, $COURSE, $CFG, $SITE;
182
183 require_once($CFG->libdir . "/pagelib.php");
184
185 $externalfunctioninfo = self::external_function_info($function);
186
187 $currentpage = $PAGE;
188 $currentcourse = $COURSE;
189 $response = array();
190
191 try {
192 // Taken straight from from setup.php.
193 if (!empty($CFG->moodlepageclass)) {
194 if (!empty($CFG->moodlepageclassfile)) {
195 require_once($CFG->moodlepageclassfile);
196 }
197 $classname = $CFG->moodlepageclass;
198 } else {
199 $classname = 'moodle_page';
200 }
201 $PAGE = new $classname();
202 $COURSE = clone($SITE);
203
204 if ($ajaxonly && !$externalfunctioninfo->allowed_from_ajax) {
205 throw new moodle_exception('servicenotavailable', 'webservice');
206 }
207
208 // Do not allow access to write or delete webservices as a public user.
209 if ($externalfunctioninfo->loginrequired) {
210 if (defined('NO_MOODLE_COOKIES') && NO_MOODLE_COOKIES && !PHPUNIT_TEST) {
211 throw new moodle_exception('servicerequireslogin', 'webservice');
212 }
213 if (!isloggedin()) {
214 throw new moodle_exception('servicerequireslogin', 'webservice');
215 } else {
216 require_sesskey();
217 }
218 }
219 // Validate params, this also sorts the params properly, we need the correct order in the next part.
220 $callable = array($externalfunctioninfo->classname, 'validate_parameters');
221 $params = call_user_func($callable,
222 $externalfunctioninfo->parameters_desc,
223 $args);
224 $params = array_values($params);
225
226 // Allow any Moodle plugin a chance to override this call. This is a convenient spot to
227 // make arbitrary behaviour customisations. The overriding plugin could call the 'real'
228 // function first and then modify the results, or it could do a completely separate
229 // thing.
230 $callbacks = get_plugins_with_function('override_webservice_execution');
231 $result = false;
232 foreach ($callbacks as $plugintype => $plugins) {
233 foreach ($plugins as $plugin => $callback) {
234 $result = $callback($externalfunctioninfo, $params);
235 if ($result !== false) {
236 break;
237 }
238 }
239 }
240
241 // If the function was not overridden, call the real one.
242 if ($result === false) {
243 $callable = array($externalfunctioninfo->classname, $externalfunctioninfo->methodname);
244 $result = call_user_func_array($callable, $params);
245 }
246
247 // Validate the return parameters.
248 if ($externalfunctioninfo->returns_desc !== null) {
249 $callable = array($externalfunctioninfo->classname, 'clean_returnvalue');
250 $result = call_user_func($callable, $externalfunctioninfo->returns_desc, $result);
251 }
252
253 $response['error'] = false;
254 $response['data'] = $result;
255 } catch (Exception $e) {
256 $exception = get_exception_info($e);
257 unset($exception->a);
258 $exception->backtrace = format_backtrace($exception->backtrace, true);
259 if (!debugging('', DEBUG_DEVELOPER)) {
260 unset($exception->debuginfo);
261 unset($exception->backtrace);
262 }
263 $response['error'] = true;
264 $response['exception'] = $exception;
265 // Do not process the remaining requests.
266 }
267
268 $PAGE = $currentpage;
269 $COURSE = $currentcourse;
270
271 return $response;
272 }
273
274 /**
275 * Set context restriction for all following subsequent function calls.
276 *
277 * @param stdClass $context the context restriction
278 * @since Moodle 2.0
279 */
280 public static function set_context_restriction($context) {
281 self::$contextrestriction = $context;
282 }
283
284 /**
285 * This method has to be called before every operation
286 * that takes a longer time to finish!
287 *
288 * @param int $seconds max expected time the next operation needs
289 * @since Moodle 2.0
290 */
291 public static function set_timeout($seconds=360) {
292 $seconds = ($seconds < 300) ? 300 : $seconds;
293 core_php_time_limit::raise($seconds);
294 }
295
296 /**
297 * Validates submitted function parameters, if anything is incorrect
298 * invalid_parameter_exception is thrown.
299 * This is a simple recursive method which is intended to be called from
300 * each implementation method of external API.
301 *
302 * @param external_description $description description of parameters
303 * @param mixed $params the actual parameters
304 * @return mixed params with added defaults for optional items, invalid_parameters_exception thrown if any problem found
305 * @since Moodle 2.0
306 */
307 public static function validate_parameters(external_description $description, $params) {
308 if ($description instanceof external_value) {
309 if (is_array($params) or is_object($params)) {
310 throw new invalid_parameter_exception('Scalar type expected, array or object received.');
311 }
312
313 if ($description->type == PARAM_BOOL) {
314 // special case for PARAM_BOOL - we want true/false instead of the usual 1/0 - we can not be too strict here ;-)
315 if (is_bool($params) or $params === 0 or $params === 1 or $params === '0' or $params === '1') {
316 return (bool)$params;
317 }
318 }
319 $debuginfo = 'Invalid external api parameter: the value is "' . $params .
320 '", the server was expecting "' . $description->type . '" type';
321 return validate_param($params, $description->type, $description->allownull, $debuginfo);
322
323 } else if ($description instanceof external_single_structure) {
324 if (!is_array($params)) {
325 throw new invalid_parameter_exception('Only arrays accepted. The bad value is: \''
326 . print_r($params, true) . '\'');
327 }
328 $result = array();
329 foreach ($description->keys as $key=>$subdesc) {
330 if (!array_key_exists($key, $params)) {
331 if ($subdesc->required == VALUE_REQUIRED) {
332 throw new invalid_parameter_exception('Missing required key in single structure: '. $key);
333 }
334 if ($subdesc->required == VALUE_DEFAULT) {
335 try {
336 $result[$key] = static::validate_parameters($subdesc, $subdesc->default);
337 } catch (invalid_parameter_exception $e) {
338 //we are only interested by exceptions returned by validate_param() and validate_parameters()
339 //(in order to build the path to the faulty attribut)
340 throw new invalid_parameter_exception($key." => ".$e->getMessage() . ': ' .$e->debuginfo);
341 }
342 }
343 } else {
344 try {
345 $result[$key] = static::validate_parameters($subdesc, $params[$key]);
346 } catch (invalid_parameter_exception $e) {
347 //we are only interested by exceptions returned by validate_param() and validate_parameters()
348 //(in order to build the path to the faulty attribut)
349 throw new invalid_parameter_exception($key." => ".$e->getMessage() . ': ' .$e->debuginfo);
350 }
351 }
352 unset($params[$key]);
353 }
354 if (!empty($params)) {
355 throw new invalid_parameter_exception('Unexpected keys (' . implode(', ', array_keys($params)) . ') detected in parameter array.');
356 }
357 return $result;
358
359 } else if ($description instanceof external_multiple_structure) {
360 if (!is_array($params)) {
361 throw new invalid_parameter_exception('Only arrays accepted. The bad value is: \''
362 . print_r($params, true) . '\'');
363 }
364 $result = array();
365 foreach ($params as $param) {
366 $result[] = static::validate_parameters($description->content, $param);
367 }
368 return $result;
369
370 } else {
371 throw new invalid_parameter_exception('Invalid external api description');
372 }
373 }
374
375 /**
376 * Clean response
377 * If a response attribute is unknown from the description, we just ignore the attribute.
378 * If a response attribute is incorrect, invalid_response_exception is thrown.
379 * Note: this function is similar to validate parameters, however it is distinct because
380 * parameters validation must be distinct from cleaning return values.
381 *
382 * @param external_description $description description of the return values
383 * @param mixed $response the actual response
384 * @return mixed response with added defaults for optional items, invalid_response_exception thrown if any problem found
385 * @author 2010 Jerome Mouneyrac
386 * @since Moodle 2.0
387 */
388 public static function clean_returnvalue(external_description $description, $response) {
389 if ($description instanceof external_value) {
390 if (is_array($response) or is_object($response)) {
391 throw new invalid_response_exception('Scalar type expected, array or object received.');
392 }
393
394 if ($description->type == PARAM_BOOL) {
395 // special case for PARAM_BOOL - we want true/false instead of the usual 1/0 - we can not be too strict here ;-)
396 if (is_bool($response) or $response === 0 or $response === 1 or $response === '0' or $response === '1') {
397 return (bool)$response;
398 }
399 }
400 $debuginfo = 'Invalid external api response: the value is "' . $response .
401 '", the server was expecting "' . $description->type . '" type';
402 try {
403 return validate_param($response, $description->type, $description->allownull, $debuginfo);
404 } catch (invalid_parameter_exception $e) {
405 //proper exception name, to be recursively catched to build the path to the faulty attribut
406 throw new invalid_response_exception($e->debuginfo);
407 }
408
409 } else if ($description instanceof external_single_structure) {
410 if (!is_array($response) && !is_object($response)) {
411 throw new invalid_response_exception('Only arrays/objects accepted. The bad value is: \'' .
412 print_r($response, true) . '\'');
413 }
414
415 // Cast objects into arrays.
416 if (is_object($response)) {
417 $response = (array) $response;
418 }
419
420 $result = array();
421 foreach ($description->keys as $key=>$subdesc) {
422 if (!array_key_exists($key, $response)) {
423 if ($subdesc->required == VALUE_REQUIRED) {
424 throw new invalid_response_exception('Error in response - Missing following required key in a single structure: ' . $key);
425 }
426 if ($subdesc instanceof external_value) {
427 if ($subdesc->required == VALUE_DEFAULT) {
428 try {
429 $result[$key] = static::clean_returnvalue($subdesc, $subdesc->default);
430 } catch (invalid_response_exception $e) {
431 //build the path to the faulty attribut
432 throw new invalid_response_exception($key." => ".$e->getMessage() . ': ' . $e->debuginfo);
433 }
434 }
435 }
436 } else {
437 try {
438 $result[$key] = static::clean_returnvalue($subdesc, $response[$key]);
439 } catch (invalid_response_exception $e) {
440 //build the path to the faulty attribut
441 throw new invalid_response_exception($key." => ".$e->getMessage() . ': ' . $e->debuginfo);
442 }
443 }
444 unset($response[$key]);
445 }
446
447 return $result;
448
449 } else if ($description instanceof external_multiple_structure) {
450 if (!is_array($response)) {
451 throw new invalid_response_exception('Only arrays accepted. The bad value is: \'' .
452 print_r($response, true) . '\'');
453 }
454 $result = array();
455 foreach ($response as $param) {
456 $result[] = static::clean_returnvalue($description->content, $param);
457 }
458 return $result;
459
460 } else {
461 throw new invalid_response_exception('Invalid external api response description');
462 }
463 }
464
465 /**
466 * Makes sure user may execute functions in this context.
467 *
468 * @param stdClass $context
469 * @since Moodle 2.0
470 */
471 public static function validate_context($context) {
472 global $CFG, $PAGE;
473
474 if (empty($context)) {
475 throw new invalid_parameter_exception('Context does not exist');
476 }
477 if (empty(self::$contextrestriction)) {
478 self::$contextrestriction = context_system::instance();
479 }
480 $rcontext = self::$contextrestriction;
481
482 if ($rcontext->contextlevel == $context->contextlevel) {
483 if ($rcontext->id != $context->id) {
484 throw new restricted_context_exception();
485 }
486 } else if ($rcontext->contextlevel > $context->contextlevel) {
487 throw new restricted_context_exception();
488 } else {
489 $parents = $context->get_parent_context_ids();
490 if (!in_array($rcontext->id, $parents)) {
491 throw new restricted_context_exception();
492 }
493 }
494
495 $PAGE->reset_theme_and_output();
496 list($unused, $course, $cm) = get_context_info_array($context->id);
497 require_login($course, false, $cm, false, true);
498 $PAGE->set_context($context);
499 }
500
501 /**
502 * Get context from passed parameters.
503 * The passed array must either contain a contextid or a combination of context level and instance id to fetch the context.
504 * For example, the context level can be "course" and instanceid can be courseid.
505 *
506 * See context_helper::get_all_levels() for a list of valid context levels.
507 *
508 * @param array $param
509 * @since Moodle 2.6
510 * @throws invalid_parameter_exception
511 * @return context
512 */
513 protected static function get_context_from_params($param) {
514 $levels = context_helper::get_all_levels();
515 if (!empty($param['contextid'])) {
516 return context::instance_by_id($param['contextid'], IGNORE_MISSING);
517 } else if (!empty($param['contextlevel']) && isset($param['instanceid'])) {
518 $contextlevel = "context_".$param['contextlevel'];
519 if (!array_search($contextlevel, $levels)) {
520 throw new invalid_parameter_exception('Invalid context level = '.$param['contextlevel']);
521 }
522 return $contextlevel::instance($param['instanceid'], IGNORE_MISSING);
523 } else {
524 // No valid context info was found.
525 throw new invalid_parameter_exception('Missing parameters, please provide either context level with instance id or contextid');
526 }
527 }
528
529 /**
530 * Returns a prepared structure to use a context parameters.
531 * @return external_single_structure
532 */
533 protected static function get_context_parameters() {
534 $id = new external_value(
535 PARAM_INT,
536 'Context ID. Either use this value, or level and instanceid.',
537 VALUE_DEFAULT,
538 0
539 );
540 $level = new external_value(
541 PARAM_ALPHA,
542 'Context level. To be used with instanceid.',
543 VALUE_DEFAULT,
544 ''
545 );
546 $instanceid = new external_value(
547 PARAM_INT,
548 'Context instance ID. To be used with level',
549 VALUE_DEFAULT,
550 0
551 );
552 return new external_single_structure(array(
553 'contextid' => $id,
554 'contextlevel' => $level,
555 'instanceid' => $instanceid,
556 ));
557 }
558
559 }
560
561 /**
562 * Common ancestor of all parameter description classes
563 *
564 * @package core_webservice
565 * @copyright 2009 Petr Skodak
566 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
567 * @since Moodle 2.0
568 */
569 abstract class external_description {
570 /** @var string Description of element */
571 public $desc;
572
573 /** @var bool Element value required, null not allowed */
574 public $required;
575
576 /** @var mixed Default value */
577 public $default;
578
579 /**
580 * Contructor
581 *
582 * @param string $desc
583 * @param bool $required
584 * @param mixed $default
585 * @since Moodle 2.0
586 */
587 public function __construct($desc, $required, $default) {
588 $this->desc = $desc;
589 $this->required = $required;
590 $this->default = $default;
591 }
592 }
593
594 /**
595 * Scalar value description class
596 *
597 * @package core_webservice
598 * @copyright 2009 Petr Skodak
599 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
600 * @since Moodle 2.0
601 */
602 class external_value extends external_description {
603
604 /** @var mixed Value type PARAM_XX */
605 public $type;
606
607 /** @var bool Allow null values */
608 public $allownull;
609
610 /**
611 * Constructor
612 *
613 * @param mixed $type
614 * @param string $desc
615 * @param bool $required
616 * @param mixed $default
617 * @param bool $allownull
618 * @since Moodle 2.0
619 */
620 public function __construct($type, $desc='', $required=VALUE_REQUIRED,
621 $default=null, $allownull=NULL_ALLOWED) {
622 parent::__construct($desc, $required, $default);
623 $this->type = $type;
624 $this->allownull = $allownull;
625 }
626 }
627
628 /**
629 * Associative array description class
630 *
631 * @package core_webservice
632 * @copyright 2009 Petr Skodak
633 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
634 * @since Moodle 2.0
635 */
636 class external_single_structure extends external_description {
637
638 /** @var array Description of array keys key=>external_description */
639 public $keys;
640
641 /**
642 * Constructor
643 *
644 * @param array $keys
645 * @param string $desc
646 * @param bool $required
647 * @param array $default
648 * @since Moodle 2.0
649 */
650 public function __construct(array $keys, $desc='',
651 $required=VALUE_REQUIRED, $default=null) {
652 parent::__construct($desc, $required, $default);
653 $this->keys = $keys;
654 }
655 }
656
657 /**
658 * Bulk array description class.
659 *
660 * @package core_webservice
661 * @copyright 2009 Petr Skodak
662 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
663 * @since Moodle 2.0
664 */
665 class external_multiple_structure extends external_description {
666
667 /** @var external_description content */
668 public $content;
669
670 /**
671 * Constructor
672 *
673 * @param external_description $content
674 * @param string $desc
675 * @param bool $required
676 * @param array $default
677 * @since Moodle 2.0
678 */
679 public function __construct(external_description $content, $desc='',
680 $required=VALUE_REQUIRED, $default=null) {
681 parent::__construct($desc, $required, $default);
682 $this->content = $content;
683 }
684 }
685
686 /**
687 * Description of top level - PHP function parameters.
688 *
689 * @package core_webservice
690 * @copyright 2009 Petr Skodak
691 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
692 * @since Moodle 2.0
693 */
694 class external_function_parameters extends external_single_structure {
695
696 /**
697 * Constructor - does extra checking to prevent top level optional parameters.
698 *
699 * @param array $keys
700 * @param string $desc
701 * @param bool $required
702 * @param array $default
703 */
704 public function __construct(array $keys, $desc='', $required=VALUE_REQUIRED, $default=null) {
705 global $CFG;
706
707 if ($CFG->debugdeveloper) {
708 foreach ($keys as $key => $value) {
709 if ($value instanceof external_value) {
710 if ($value->required == VALUE_OPTIONAL) {
711 debugging('External function parameters: invalid OPTIONAL value specified.', DEBUG_DEVELOPER);
712 break;
713 }
714 }
715 }
716 }
717 parent::__construct($keys, $desc, $required, $default);
718 }
719 }
720
721 /**
722 * Generate a token
723 *
724 * @param string $tokentype EXTERNAL_TOKEN_EMBEDDED|EXTERNAL_TOKEN_PERMANENT
725 * @param stdClass|int $serviceorid service linked to the token
726 * @param int $userid user linked to the token
727 * @param stdClass|int $contextorid
728 * @param int $validuntil date when the token expired
729 * @param string $iprestriction allowed ip - if 0 or empty then all ips are allowed
730 * @return string generated token
731 * @author 2010 Jamie Pratt
732 * @since Moodle 2.0
733 */
734 function external_generate_token($tokentype, $serviceorid, $userid, $contextorid, $validuntil=0, $iprestriction=''){
735 global $DB, $USER;
736 // make sure the token doesn't exist (even if it should be almost impossible with the random generation)
737 $numtries = 0;
738 do {
739 $numtries ++;
740 $generatedtoken = md5(uniqid(rand(),1));
741 if ($numtries > 5){
742 throw new moodle_exception('tokengenerationfailed');
743 }
744 } while ($DB->record_exists('external_tokens', array('token'=>$generatedtoken)));
745 $newtoken = new stdClass();
746 $newtoken->token = $generatedtoken;
747 if (!is_object($serviceorid)){
748 $service = $DB->get_record('external_services', array('id' => $serviceorid));
749 } else {
750 $service = $serviceorid;
751 }
752 if (!is_object($contextorid)){
753 $context = context::instance_by_id($contextorid, MUST_EXIST);
754 } else {
755 $context = $contextorid;
756 }
757 if (empty($service->requiredcapability) || has_capability($service->requiredcapability, $context, $userid)) {
758 $newtoken->externalserviceid = $service->id;
759 } else {
760 throw new moodle_exception('nocapabilitytousethisservice');
761 }
762 $newtoken->tokentype = $tokentype;
763 $newtoken->userid = $userid;
764 if ($tokentype == EXTERNAL_TOKEN_EMBEDDED){
765 $newtoken->sid = session_id();
766 }
767
768 $newtoken->contextid = $context->id;
769 $newtoken->creatorid = $USER->id;
770 $newtoken->timecreated = time();
771 $newtoken->validuntil = $validuntil;
772 if (!empty($iprestriction)) {
773 $newtoken->iprestriction = $iprestriction;
774 }
775 $newtoken->privatetoken = null;
776 $DB->insert_record('external_tokens', $newtoken);
777 return $newtoken->token;
778 }
779
780 /**
781 * Create and return a session linked token. Token to be used for html embedded client apps that want to communicate
782 * with the Moodle server through web services. The token is linked to the current session for the current page request.
783 * It is expected this will be called in the script generating the html page that is embedding the client app and that the
784 * returned token will be somehow passed into the client app being embedded in the page.
785 *
786 * @param string $servicename name of the web service. Service name as defined in db/services.php
787 * @param int $context context within which the web service can operate.
788 * @return int returns token id.
789 * @since Moodle 2.0
790 */
791 function external_create_service_token($servicename, $context){
792 global $USER, $DB;
793 $service = $DB->get_record('external_services', array('name'=>$servicename), '*', MUST_EXIST);
794 return external_generate_token(EXTERNAL_TOKEN_EMBEDDED, $service, $USER->id, $context, 0);
795 }
796
797 /**
798 * Delete all pre-built services (+ related tokens) and external functions information defined in the specified component.
799 *
800 * @param string $component name of component (moodle, mod_assignment, etc.)
801 */
802 function external_delete_descriptions($component) {
803 global $DB;
804
805 $params = array($component);
806
807 $DB->delete_records_select('external_tokens',
808 "externalserviceid IN (SELECT id FROM {external_services} WHERE component = ?)", $params);
809 $DB->delete_records_select('external_services_users',
810 "externalserviceid IN (SELECT id FROM {external_services} WHERE component = ?)", $params);
811 $DB->delete_records_select('external_services_functions',
812 "functionname IN (SELECT name FROM {external_functions} WHERE component = ?)", $params);
813 $DB->delete_records('external_services', array('component'=>$component));
814 $DB->delete_records('external_functions', array('component'=>$component));
815 }
816
817 /**
818 * Standard Moodle web service warnings
819 *
820 * @package core_webservice
821 * @copyright 2012 Jerome Mouneyrac
822 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
823 * @since Moodle 2.3
824 */
825 class external_warnings extends external_multiple_structure {
826
827 /**
828 * Constructor
829 *
830 * @since Moodle 2.3
831 */
832 public function __construct($itemdesc = 'item', $itemiddesc = 'item id',
833 $warningcodedesc = 'the warning code can be used by the client app to implement specific behaviour') {
834
835 parent::__construct(
836 new external_single_structure(
837 array(
838 'item' => new external_value(PARAM_TEXT, $itemdesc, VALUE_OPTIONAL),
839 'itemid' => new external_value(PARAM_INT, $itemiddesc, VALUE_OPTIONAL),
840 'warningcode' => new external_value(PARAM_ALPHANUM, $warningcodedesc),
841 'message' => new external_value(PARAM_TEXT,
842 'untranslated english message to explain the warning')
843 ), 'warning'),
844 'list of warnings', VALUE_OPTIONAL);
845 }
846 }
847
848 /**
849 * A pre-filled external_value class for text format.
850 *
851 * Default is FORMAT_HTML
852 * This should be used all the time in external xxx_params()/xxx_returns functions
853 * as it is the standard way to implement text format param/return values.
854 *
855 * @package core_webservice
856 * @copyright 2012 Jerome Mouneyrac
857 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
858 * @since Moodle 2.3
859 */
860 class external_format_value extends external_value {
861
862 /**
863 * Constructor
864 *
865 * @param string $textfieldname Name of the text field
866 * @param int $required if VALUE_REQUIRED then set standard default FORMAT_HTML
867 * @param int $default Default value.
868 * @since Moodle 2.3
869 */
870 public function __construct($textfieldname, $required = VALUE_REQUIRED, $default = null) {
871
872 if ($default == null && $required == VALUE_DEFAULT) {
873 $default = FORMAT_HTML;
874 }
875
876 $desc = $textfieldname . ' format (' . FORMAT_HTML . ' = HTML, '
877 . FORMAT_MOODLE . ' = MOODLE, '
878 . FORMAT_PLAIN . ' = PLAIN or '
879 . FORMAT_MARKDOWN . ' = MARKDOWN)';
880
881 parent::__construct(PARAM_INT, $desc, $required, $default);
882 }
883 }
884
885 /**
886 * Validate text field format against known FORMAT_XXX
887 *
888 * @param array $format the format to validate
889 * @return the validated format
890 * @throws coding_exception
891 * @since Moodle 2.3
892 */
893 function external_validate_format($format) {
894 $allowedformats = array(FORMAT_HTML, FORMAT_MOODLE, FORMAT_PLAIN, FORMAT_MARKDOWN);
895 if (!in_array($format, $allowedformats)) {
896 throw new moodle_exception('formatnotsupported', 'webservice', '' , null,
897 'The format with value=' . $format . ' is not supported by this Moodle site');
898 }
899 return $format;
900 }
901
902 /**
903 * Format the string to be returned properly as requested by the either the web service server,
904 * either by an internally call.
905 * The caller can change the format (raw) with the external_settings singleton
906 * All web service servers must set this singleton when parsing the $_GET and $_POST.
907 *
908 * <pre>
909 * Options are the same that in {@link format_string()} with some changes:
910 * filter : Can be set to false to force filters off, else observes {@link external_settings}.
911 * </pre>
912 *
913 * @param string $str The string to be filtered. Should be plain text, expect
914 * possibly for multilang tags.
915 * @param boolean $striplinks To strip any link in the result text. Moodle 1.8 default changed from false to true! MDL-8713
916 * @param context|int $contextorid The id of the context for the string or the context (affects filters).
917 * @param array $options options array/object or courseid
918 * @return string text
919 * @since Moodle 3.0
920 */
921 function external_format_string($str, $contextorid, $striplinks = true, $options = array()) {
922
923 // Get settings (singleton).
924 $settings = external_settings::get_instance();
925 if (empty($contextorid)) {
926 throw new coding_exception('contextid is required');
927 }
928
929 if (!$settings->get_raw()) {
930 if (is_object($contextorid) && is_a($contextorid, 'context')) {
931 $context = $contextorid;
932 } else {
933 $context = context::instance_by_id($contextorid);
934 }
935 $options['context'] = $context;
936 $options['filter'] = isset($options['filter']) && !$options['filter'] ? false : $settings->get_filter();
937 $str = format_string($str, $striplinks, $options);
938 }
939
940 return $str;
941 }
942
943 /**
944 * Format the text to be returned properly as requested by the either the web service server,
945 * either by an internally call.
946 * The caller can change the format (raw, filter, file, fileurl) with the external_settings singleton
947 * All web service servers must set this singleton when parsing the $_GET and $_POST.
948 *
949 * <pre>
950 * Options are the same that in {@link format_text()} with some changes in defaults to provide backwards compatibility:
951 * trusted : If true the string won't be cleaned. Default false.
952 * noclean : If true the string won't be cleaned only if trusted is also true. Default false.
953 * nocache : If true the string will not be cached and will be formatted every call. Default false.
954 * filter : Can be set to false to force filters off, else observes {@link external_settings}.
955 * para : If true then the returned string will be wrapped in div tags. Default (different from format_text) false.
956 * Default changed because div tags are not commonly needed.
957 * newlines : If true then lines newline breaks will be converted to HTML newline breaks. Default true.
958 * context : Not used! Using contextid parameter instead.
959 * overflowdiv : If set to true the formatted text will be encased in a div with the class no-overflow before being
960 * returned. Default false.
961 * allowid : If true then id attributes will not be removed, even when using htmlpurifier. Default (different from
962 * format_text) true. Default changed id attributes are commonly needed.
963 * blanktarget : If true all <a> tags will have target="_blank" added unless target is explicitly specified.
964 * </pre>
965 *
966 * @param string $text The content that may contain ULRs in need of rewriting.
967 * @param int $textformat The text format.
968 * @param context|int $contextorid This parameter and the next two identify the file area to use.
969 * @param string $component
970 * @param string $filearea helps identify the file area.
971 * @param int $itemid helps identify the file area.
972 * @param object/array $options text formatting options
973 * @return array text + textformat
974 * @since Moodle 2.3
975 * @since Moodle 3.2 component, filearea and itemid are optional parameters
976 */
977 function external_format_text($text, $textformat, $contextorid, $component = null, $filearea = null, $itemid = null,
978 $options = null) {
979 global $CFG;
980
981 // Get settings (singleton).
982 $settings = external_settings::get_instance();
983
984 if (is_object($contextorid) && is_a($contextorid, 'context')) {
985 $context = $contextorid;
986 $contextid = $context->id;
987 } else {
988 $context = null;
989 $contextid = $contextorid;
990 }
991
992 if ($component and $filearea and $settings->get_fileurl()) {
993 require_once($CFG->libdir . "/filelib.php");
994 $text = file_rewrite_pluginfile_urls($text, $settings->get_file(), $contextid, $component, $filearea, $itemid);
995 }
996
997 // Note that $CFG->forceclean does not apply here if the client requests for the raw database content.
998 // This is consistent with web clients that are still able to load non-cleaned text into editors, too.
999
1000 if (!$settings->get_raw()) {
1001 $options = (array)$options;
1002
1003 // If context is passed in options, check that is the same to show a debug message.
1004 if (isset($options['context'])) {
1005 if ((is_object($options['context']) && $options['context']->id != $contextid)
1006 || (!is_object($options['context']) && $options['context'] != $contextid)) {
1007 debugging('Different contexts found in external_format_text parameters. $options[\'context\'] not allowed.
1008 Using $contextid parameter...', DEBUG_DEVELOPER);
1009 }
1010 }
1011
1012 $options['filter'] = isset($options['filter']) && !$options['filter'] ? false : $settings->get_filter();
1013 $options['para'] = isset($options['para']) ? $options['para'] : false;
1014 $options['context'] = !is_null($context) ? $context : context::instance_by_id($contextid);
1015 $options['allowid'] = isset($options['allowid']) ? $options['allowid'] : true;
1016
1017 $text = format_text($text, $textformat, $options);
1018 $textformat = FORMAT_HTML; // Once converted to html (from markdown, plain... lets inform consumer this is already HTML).
1019 }
1020
1021 return array($text, $textformat);
1022 }
1023
1024 /**
1025 * Generate or return an existing token for the current authenticated user.
1026 * This function is used for creating a valid token for users authenticathing via login/token.php or admin/tool/mobile/launch.php.
1027 *
1028 * @param stdClass $service external service object
1029 * @return stdClass token object
1030 * @since Moodle 3.2
1031 * @throws moodle_exception
1032 */
1033 function external_generate_token_for_current_user($service) {
1034 global $DB, $USER, $CFG;
1035
1036 core_user::require_active_user($USER, true, true);
1037
1038 // Check if there is any required system capability.
1039 if ($service->requiredcapability and !has_capability($service->requiredcapability, context_system::instance())) {
1040 throw new moodle_exception('missingrequiredcapability', 'webservice', '', $service->requiredcapability);
1041 }
1042
1043 // Specific checks related to user restricted service.
1044 if ($service->restrictedusers) {
1045 $authoriseduser = $DB->get_record('external_services_users',
1046 array('externalserviceid' => $service->id, 'userid' => $USER->id));
1047
1048 if (empty($authoriseduser)) {
1049 throw new moodle_exception('usernotallowed', 'webservice', '', $service->shortname);
1050 }
1051
1052 if (!empty($authoriseduser->validuntil) and $authoriseduser->validuntil < time()) {
1053 throw new moodle_exception('invalidtimedtoken', 'webservice');
1054 }
1055
1056 if (!empty($authoriseduser->iprestriction) and !address_in_subnet(getremoteaddr(), $authoriseduser->iprestriction)) {
1057 throw new moodle_exception('invalidiptoken', 'webservice');
1058 }
1059 }
1060
1061 // Check if a token has already been created for this user and this service.
1062 $conditions = array(
1063 'userid' => $USER->id,
1064 'externalserviceid' => $service->id,
1065 'tokentype' => EXTERNAL_TOKEN_PERMANENT
1066 );
1067 $tokens = $DB->get_records('external_tokens', $conditions, 'timecreated ASC');
1068
1069 // A bit of sanity checks.
1070 foreach ($tokens as $key => $token) {
1071
1072 // Checks related to a specific token. (script execution continue).
1073 $unsettoken = false;
1074 // If sid is set then there must be a valid associated session no matter the token type.
1075 if (!empty($token->sid)) {
1076 if (!\core\session\manager::session_exists($token->sid)) {
1077 // This token will never be valid anymore, delete it.
1078 $DB->delete_records('external_tokens', array('sid' => $token->sid));
1079 $unsettoken = true;
1080 }
1081 }
1082
1083 // Remove token is not valid anymore.
1084 if (!empty($token->validuntil) and $token->validuntil < time()) {
1085 $DB->delete_records('external_tokens', array('token' => $token->token, 'tokentype' => EXTERNAL_TOKEN_PERMANENT));
1086 $unsettoken = true;
1087 }
1088
1089 // Remove token if its ip not in whitelist.
1090 if (isset($token->iprestriction) and !address_in_subnet(getremoteaddr(), $token->iprestriction)) {
1091 $unsettoken = true;
1092 }
1093
1094 if ($unsettoken) {
1095 unset($tokens[$key]);
1096 }
1097 }
1098
1099 // If some valid tokens exist then use the most recent.
1100 if (count($tokens) > 0) {
1101 $token = array_pop($tokens);
1102 } else {
1103 $context = context_system::instance();
1104 $isofficialservice = $service->shortname == MOODLE_OFFICIAL_MOBILE_SERVICE;
1105
1106 if (($isofficialservice and has_capability('moodle/webservice:createmobiletoken', $context)) or
1107 (!is_siteadmin($USER) && has_capability('moodle/webservice:createtoken', $context))) {
1108
1109 // Create a new token.
1110 $token = new stdClass;
1111 $token->token = md5(uniqid(rand(), 1));
1112 $token->userid = $USER->id;
1113 $token->tokentype = EXTERNAL_TOKEN_PERMANENT;
1114 $token->contextid = context_system::instance()->id;
1115 $token->creatorid = $USER->id;
1116 $token->timecreated = time();
1117 $token->externalserviceid = $service->id;
1118 // By default tokens are valid for 12 weeks.
1119 $token->validuntil = $token->timecreated + $CFG->tokenduration;
1120 $token->iprestriction = null;
1121 $token->sid = null;
1122 $token->lastaccess = null;
1123 // Generate the private token, it must be transmitted only via https.
1124 $token->privatetoken = random_string(64);
1125 $token->id = $DB->insert_record('external_tokens', $token);
1126
1127 $eventtoken = clone $token;
1128 $eventtoken->privatetoken = null;
1129 $params = array(
1130 'objectid' => $eventtoken->id,
1131 'relateduserid' => $USER->id,
1132 'other' => array(
1133 'auto' => true
1134 )
1135 );
1136 $event = \core\event\webservice_token_created::create($params);
1137 $event->add_record_snapshot('external_tokens', $eventtoken);
1138 $event->trigger();
1139 } else {
1140 throw new moodle_exception('cannotcreatetoken', 'webservice', '', $service->shortname);
1141 }
1142 }
1143 return $token;
1144 }
1145
1146 /**
1147 * Set the last time a token was sent and trigger the \core\event\webservice_token_sent event.
1148 *
1149 * This function is used when a token is generated by the user via login/token.php or admin/tool/mobile/launch.php.
1150 * In order to protect the privatetoken, we remove it from the event params.
1151 *
1152 * @param stdClass $token token object
1153 * @since Moodle 3.2
1154 */
1155 function external_log_token_request($token) {
1156 global $DB;
1157
1158 $token->privatetoken = null;
1159
1160 // Log token access.
1161 $DB->set_field('external_tokens', 'lastaccess', time(), array('id' => $token->id));
1162
1163 $params = array(
1164 'objectid' => $token->id,
1165 );
1166 $event = \core\event\webservice_token_sent::create($params);
1167 $event->add_record_snapshot('external_tokens', $token);
1168 $event->trigger();
1169 }
1170
1171 /**
1172 * Singleton to handle the external settings.
1173 *
1174 * We use singleton to encapsulate the "logic"
1175 *
1176 * @package core_webservice
1177 * @copyright 2012 Jerome Mouneyrac
1178 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
1179 * @since Moodle 2.3
1180 */
1181 class external_settings {
1182
1183 /** @var object the singleton instance */
1184 public static $instance = null;
1185
1186 /** @var boolean Should the external function return raw text or formatted */
1187 private $raw = false;
1188
1189 /** @var boolean Should the external function filter the text */
1190 private $filter = false;
1191
1192 /** @var boolean Should the external function rewrite plugin file url */
1193 private $fileurl = true;
1194
1195 /** @var string In which file should the urls be rewritten */
1196 private $file = 'webservice/pluginfile.php';
1197
1198 /** @var string The session lang */
1199 private $lang = '';
1200
1201 /**
1202 * Constructor - protected - can not be instanciated
1203 */
1204 protected function __construct() {
1205 if ((AJAX_SCRIPT == false) && (CLI_SCRIPT == false) && (WS_SERVER == false)) {
1206 // For normal pages, the default should match the default for format_text.
1207 $this->filter = true;
1208 // Use pluginfile.php for web requests.
1209 $this->file = 'pluginfile.php';
1210 }
1211 }
1212
1213 /**
1214 * Clone - private - can not be cloned
1215 */
1216 private final function __clone() {
1217 }
1218
1219 /**
1220 * Return only one instance
1221 *
1222 * @return \external_settings
1223 */
1224 public static function get_instance() {
1225 if (self::$instance === null) {
1226 self::$instance = new external_settings;
1227 }
1228
1229 return self::$instance;
1230 }
1231
1232 /**
1233 * Set raw
1234 *
1235 * @param boolean $raw
1236 */
1237 public function set_raw($raw) {
1238 $this->raw = $raw;
1239 }
1240
1241 /**
1242 * Get raw
1243 *
1244 * @return boolean
1245 */
1246 public function get_raw() {
1247 return $this->raw;
1248 }
1249
1250 /**
1251 * Set filter
1252 *
1253 * @param boolean $filter
1254 */
1255 public function set_filter($filter) {
1256 $this->filter = $filter;
1257 }
1258
1259 /**
1260 * Get filter
1261 *
1262 * @return boolean
1263 */
1264 public function get_filter() {
1265 return $this->filter;
1266 }
1267
1268 /**
1269 * Set fileurl
1270 *
1271 * @param boolean $fileurl
1272 */
1273 public function set_fileurl($fileurl) {
1274 $this->fileurl = $fileurl;
1275 }
1276
1277 /**
1278 * Get fileurl
1279 *
1280 * @return boolean
1281 */
1282 public function get_fileurl() {
1283 return $this->fileurl;
1284 }
1285
1286 /**
1287 * Set file
1288 *
1289 * @param string $file
1290 */
1291 public function set_file($file) {
1292 $this->file = $file;
1293 }
1294
1295 /**
1296 * Get file
1297 *
1298 * @return string
1299 */
1300 public function get_file() {
1301 return $this->file;
1302 }
1303
1304 /**
1305 * Set lang
1306 *
1307 * @param string $lang
1308 */
1309 public function set_lang($lang) {
1310 $this->lang = $lang;
1311 }
1312
1313 /**
1314 * Get lang
1315 *
1316 * @return string
1317 */
1318 public function get_lang() {
1319 return $this->lang;
1320 }
1321 }
1322
1323 /**
1324 * Utility functions for the external API.
1325 *
1326 * @package core_webservice
1327 * @copyright 2015 Juan Leyva
1328 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
1329 * @since Moodle 3.0
1330 */
1331 class external_util {
1332
1333 /**
1334 * Validate a list of courses, returning the complete course objects for valid courses.
1335 *
1336 * @param array $courseids A list of course ids
1337 * @param array $courses An array of courses already pre-fetched, indexed by course id.
1338 * @param bool $addcontext True if the returned course object should include the full context object.
1339 * @return array An array of courses and the validation warnings
1340 */
1341 public static function validate_courses($courseids, $courses = array(), $addcontext = false) {
1342 // Delete duplicates.
1343 $courseids = array_unique($courseids);
1344 $warnings = array();
1345
1346 // Remove courses which are not even requested.
1347 $courses = array_intersect_key($courses, array_flip($courseids));
1348
1349 foreach ($courseids as $cid) {
1350 // Check the user can function in this context.
1351 try {
1352 $context = context_course::instance($cid);
1353 external_api::validate_context($context);
1354
1355 if (!isset($courses[$cid])) {
1356 $courses[$cid] = get_course($cid);
1357 }
1358 if ($addcontext) {
1359 $courses[$cid]->context = $context;
1360 }
1361 } catch (Exception $e) {
1362 unset($courses[$cid]);
1363 $warnings[] = array(
1364 'item' => 'course',
1365 'itemid' => $cid,
1366 'warningcode' => '1',
1367 'message' => 'No access rights in course context'
1368 );
1369 }
1370 }
1371
1372 return array($courses, $warnings);
1373 }
1374
1375 /**
1376 * Returns all area files (optionally limited by itemid).
1377 *
1378 * @param int $contextid context ID
1379 * @param string $component component
1380 * @param string $filearea file area
1381 * @param int $itemid item ID or all files if not specified
1382 * @param bool $useitemidinurl wether to use the item id in the file URL (modules intro don't use it)
1383 * @return array of files, compatible with the external_files structure.
1384 * @since Moodle 3.2
1385 */
1386 public static function get_area_files($contextid, $component, $filearea, $itemid = false, $useitemidinurl = true) {
1387 $files = array();
1388 $fs = get_file_storage();
1389
1390 if ($areafiles = $fs->get_area_files($contextid, $component, $filearea, $itemid, 'itemid, filepath, filename', false)) {
1391 foreach ($areafiles as $areafile) {
1392 $file = array();
1393 $file['filename'] = $areafile->get_filename();
1394 $file['filepath'] = $areafile->get_filepath();
1395 $file['mimetype'] = $areafile->get_mimetype();
1396 $file['filesize'] = $areafile->get_filesize();
1397 $file['timemodified'] = $areafile->get_timemodified();
1398 $file['isexternalfile'] = $areafile->is_external_file();
1399 if ($file['isexternalfile']) {
1400 $file['repositorytype'] = $areafile->get_repository_type();
1401 }
1402 $fileitemid = $useitemidinurl ? $areafile->get_itemid() : null;
1403 $file['fileurl'] = moodle_url::make_webservice_pluginfile_url($contextid, $component, $filearea,
1404 $fileitemid, $areafile->get_filepath(), $areafile->get_filename())->out(false);
1405 $files[] = $file;
1406 }
1407 }
1408 return $files;
1409 }
1410 }
1411
1412 /**
1413 * External structure representing a set of files.
1414 *
1415 * @package core_webservice
1416 * @copyright 2016 Juan Leyva
1417 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
1418 * @since Moodle 3.2
1419 */
1420 class external_files extends external_multiple_structure {
1421
1422 /**
1423 * Constructor
1424 * @param string $desc Description for the multiple structure.
1425 * @param int $required The type of value (VALUE_REQUIRED OR VALUE_OPTIONAL).
1426 */
1427 public function __construct($desc = 'List of files.', $required = VALUE_REQUIRED) {
1428
1429 parent::__construct(
1430 new external_single_structure(
1431 array(
1432 'filename' => new external_value(PARAM_FILE, 'File name.', VALUE_OPTIONAL),
1433 'filepath' => new external_value(PARAM_PATH, 'File path.', VALUE_OPTIONAL),
1434 'filesize' => new external_value(PARAM_INT, 'File size.', VALUE_OPTIONAL),
1435 'fileurl' => new external_value(PARAM_URL, 'Downloadable file url.', VALUE_OPTIONAL),
1436 'timemodified' => new external_value(PARAM_INT, 'Time modified.', VALUE_OPTIONAL),
1437 'mimetype' => new external_value(PARAM_RAW, 'File mime type.', VALUE_OPTIONAL),
1438 'isexternalfile' => new external_value(PARAM_BOOL, 'Whether is an external file.', VALUE_OPTIONAL),
1439 'repositorytype' => new external_value(PARAM_PLUGIN, 'The repository type for external files.', VALUE_OPTIONAL),
1440 ),
1441 'File.'
1442 ),
1443 $desc,
1444 $required
1445 );
1446 }
1447
1448 /**
1449 * Return the properties ready to be used by an exporter.
1450 *
1451 * @return array properties
1452 * @since Moodle 3.3
1453 */
1454 public static function get_properties_for_exporter() {
1455 return [
1456 'filename' => array(
1457 'type' => PARAM_FILE,
1458 'description' => 'File name.',
1459 'optional' => true,
1460 'null' => NULL_NOT_ALLOWED,
1461 ),
1462 'filepath' => array(
1463 'type' => PARAM_PATH,
1464 'description' => 'File path.',
1465 'optional' => true,
1466 'null' => NULL_NOT_ALLOWED,
1467 ),
1468 'filesize' => array(
1469 'type' => PARAM_INT,
1470 'description' => 'File size.',
1471 'optional' => true,
1472 'null' => NULL_NOT_ALLOWED,
1473 ),
1474 'fileurl' => array(
1475 'type' => PARAM_URL,
1476 'description' => 'Downloadable file url.',
1477 'optional' => true,
1478 'null' => NULL_NOT_ALLOWED,
1479 ),
1480 'timemodified' => array(
1481 'type' => PARAM_INT,
1482 'description' => 'Time modified.',
1483 'optional' => true,
1484 'null' => NULL_NOT_ALLOWED,
1485 ),
1486 'mimetype' => array(
1487 'type' => PARAM_RAW,
1488 'description' => 'File mime type.',
1489 'optional' => true,
1490 'null' => NULL_NOT_ALLOWED,
1491 ),
1492 'isexternalfile' => array(
1493 'type' => PARAM_BOOL,
1494 'description' => 'Whether is an external file.',
1495 'optional' => true,
1496 'null' => NULL_NOT_ALLOWED,
1497 ),
1498 'repositorytype' => array(
1499 'type' => PARAM_PLUGIN,
1500 'description' => 'The repository type for the external files.',
1501 'optional' => true,
1502 'null' => NULL_ALLOWED,
1503 ),
1504 ];
1505 }
1506 }
Read-only mirror of the Moodle CVS