search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Merge branch 'MDL-26636' of git://github.com/timhunt/moodle
[moodle.git] / user / editadvanced.php
blob4a1f4ecd8d56bfd67b973656cc04f7803dc4a5bb
1 <?php
2
3 // This file is part of Moodle - http://moodle.org/
4 //
5 // Moodle is free software: you can redistribute it and/or modify
6 // it under the terms of the GNU General Public License as published by
7 // the Free Software Foundation, either version 3 of the License, or
8 // (at your option) any later version.
9 //
10 // Moodle is distributed in the hope that it will be useful,
11 // but WITHOUT ANY WARRANTY; without even the implied warranty of
12 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 // GNU General Public License for more details.
14 //
15 // You should have received a copy of the GNU General Public License
16 // along with Moodle. If not, see <http://www.gnu.org/licenses/>.
17
18 /**
19 * Allows you to edit a users profile
20 *
21 * @copyright 1999 Martin Dougiamas http://dougiamas.com
22 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
23 * @package user
24 */
25
26 require_once('../config.php');
27 require_once($CFG->libdir.'/gdlib.php');
28 require_once($CFG->libdir.'/adminlib.php');
29 require_once($CFG->dirroot.'/user/editadvanced_form.php');
30 require_once($CFG->dirroot.'/user/editlib.php');
31 require_once($CFG->dirroot.'/user/profile/lib.php');
32
33 //HTTPS is required in this page when $CFG->loginhttps enabled
34 $PAGE->https_required();
35
36 $id = optional_param('id', $USER->id, PARAM_INT); // user id; -1 if creating new user
37 $course = optional_param('course', SITEID, PARAM_INT); // course id (defaults to Site)
38
39 $PAGE->set_url('/user/editadvanced.php', array('course'=>$course, 'id'=>$id));
40
41 $course = $DB->get_record('course', array('id'=>$course), '*', MUST_EXIST);
42
43 if (!empty($USER->newadminuser)) {
44 $PAGE->set_course($SITE);
45 $PAGE->set_pagelayout('maintenance');
46 } else {
47 require_login($course);
48 $PAGE->set_pagelayout('admin');
49 }
50
51 if ($course->id == SITEID) {
52 $coursecontext = get_context_instance(CONTEXT_SYSTEM); // SYSTEM context
53 } else {
54 $coursecontext = get_context_instance(CONTEXT_COURSE, $course->id); // Course context
55 }
56 $systemcontext = get_context_instance(CONTEXT_SYSTEM);
57
58 if ($id == -1) {
59 // creating new user
60 $user = new stdClass();
61 $user->id = -1;
62 $user->auth = 'manual';
63 $user->confirmed = 1;
64 $user->deleted = 0;
65 require_capability('moodle/user:create', $systemcontext);
66 admin_externalpage_setup('addnewuser', '', array('id' => -1));
67 } else {
68 // editing existing user
69 require_capability('moodle/user:update', $systemcontext);
70 $user = $DB->get_record('user', array('id'=>$id), '*', MUST_EXIST);
71 $PAGE->set_context(get_context_instance(CONTEXT_USER, $user->id));
72 if ($user->id == $USER->id) {
73 if ($course->id != SITEID && $node = $PAGE->navigation->find($course->id, navigation_node::TYPE_COURSE)) {
74 $node->make_active();
75 $PAGE->navbar->includesettingsbase = true;
76 }
77 } else {
78 $PAGE->navigation->extend_for_user($user);
79 }
80 }
81
82 // remote users cannot be edited
83 if ($user->id != -1 and is_mnet_remote_user($user)) {
84 redirect($CFG->wwwroot . "/user/view.php?id=$id&course={$course->id}");
85 }
86
87 if ($user->id != $USER->id and is_siteadmin($user) and !is_siteadmin($USER)) { // Only admins may edit other admins
88 print_error('useradmineditadmin');
89 }
90
91 if (isguestuser($user->id)) { // the real guest user can not be edited
92 print_error('guestnoeditprofileother');
93 }
94
95 if ($user->deleted) {
96 echo $OUTPUT->header();
97 echo $OUTPUT->heading(get_string('userdeleted'));
98 echo $OUTPUT->footer();
99 die;
100 }
101
102 //load user preferences
103 useredit_load_preferences($user);
104
105 //Load custom profile fields data
106 profile_load_data($user);
107
108 //User interests
109 if (!empty($CFG->usetags)) {
110 require_once($CFG->dirroot.'/tag/lib.php');
111 $user->interests = tag_get_tags_array('user', $id);
112 }
113
114 if ($user->id !== -1) {
115 $usercontext = get_context_instance(CONTEXT_USER, $user->id);
116 $editoroptions = array('maxfiles'=>EDITOR_UNLIMITED_FILES, 'maxbytes'=>$CFG->maxbytes, 'trusttext'=>false, 'forcehttps'=>false);
117 $user = file_prepare_standard_editor($user, 'description', $editoroptions, $usercontext, 'user', 'profile', 0);
118 } else {
119 $usercontext = null;
120 // This is a new user, we don't want to add files here
121 $editoroptions = array('maxfiles'=>0, 'maxbytes'=>0, 'trusttext'=>false, 'forcehttps'=>false);
122 }
123
124 //create form
125 $userform = new user_editadvanced_form(null, array('editoroptions'=>$editoroptions));
126 $userform->set_data($user);
127
128 if ($usernew = $userform->get_data()) {
129 add_to_log($course->id, 'user', 'update', "view.php?id=$user->id&course=$course->id", '');
130
131 if (empty($usernew->auth)) {
132 //user editing self
133 $authplugin = get_auth_plugin($user->auth);
134 unset($usernew->auth); //can not change/remove
135 } else {
136 $authplugin = get_auth_plugin($usernew->auth);
137 }
138
139 $usernew->timemodified = time();
140
141 if ($usernew->id == -1) {
142 //TODO check out if it makes sense to create account with this auth plugin and what to do with the password
143 unset($usernew->id);
144 $usernew = file_postupdate_standard_editor($usernew, 'description', $editoroptions, null, 'user', 'profile', null);
145 $usernew->mnethostid = $CFG->mnet_localhost_id; // always local user
146 $usernew->confirmed = 1;
147 $usernew->timecreated = time();
148 $usernew->password = hash_internal_user_password($usernew->newpassword);
149 $usernew->id = $DB->insert_record('user', $usernew);
150 $usercreated = true;
151
152 } else {
153 $usernew = file_postupdate_standard_editor($usernew, 'description', $editoroptions, $usercontext, 'user', 'profile', 0);
154 $DB->update_record('user', $usernew);
155 // pass a true $userold here
156 if (! $authplugin->user_update($user, $userform->get_data())) {
157 // auth update failed, rollback for moodle
158 $DB->update_record('user', $user);
159 print_error('cannotupdateuseronexauth', '', '', $user->auth);
160 }
161
162 //set new password if specified
163 if (!empty($usernew->newpassword)) {
164 if ($authplugin->can_change_password()) {
165 if (!$authplugin->user_update_password($usernew, $usernew->newpassword)){
166 print_error('cannotupdatepasswordonextauth', '', '', $usernew->auth);
167 }
168 unset_user_preference('create_password', $usernew); // prevent cron from generating the password
169 }
170 }
171 $usercreated = false;
172 }
173
174 $usercontext = get_context_instance(CONTEXT_USER, $usernew->id);
175
176 //update preferences
177 useredit_update_user_preference($usernew);
178
179 // update tags
180 if (!empty($CFG->usetags) and empty($USER->newadminuser)) {
181 useredit_update_interests($usernew, $usernew->interests);
182 }
183
184 //update user picture
185 if (!empty($CFG->gdversion) and empty($USER->newadminuser)) {
186 useredit_update_picture($usernew, $userform);
187 }
188
189 // update mail bounces
190 useredit_update_bounces($user, $usernew);
191
192 // update forum track preference
193 useredit_update_trackforums($user, $usernew);
194
195 // save custom profile fields data
196 profile_save_data($usernew);
197
198 // reload from db
199 $usernew = $DB->get_record('user', array('id'=>$usernew->id));
200
201 // trigger events
202 if ($usercreated) {
203 //set default message preferences
204 if (!message_set_default_message_preferences( $usernew )){
205 print_error('cannotsavemessageprefs', 'message');
206 }
207 events_trigger('user_created', $usernew);
208 } else {
209 events_trigger('user_updated', $usernew);
210 }
211
212 if ($user->id == $USER->id) {
213 // Override old $USER session variable
214 foreach ((array)$usernew as $variable => $value) {
215 $USER->$variable = $value;
216 }
217 // preload custom fields
218 profile_load_custom_fields($USER);
219
220 if (!empty($USER->newadminuser)) {
221 unset($USER->newadminuser);
222 // apply defaults again - some of them might depend on admin user info, backup, roles, etc.
223 admin_apply_default_settings(NULL , false);
224 // redirect to admin/ to continue with installation
225 redirect("$CFG->wwwroot/$CFG->admin/");
226 } else {
227 redirect("$CFG->wwwroot/user/view.php?id=$USER->id&course=$course->id");
228 }
229 } else {
230 session_gc(); // remove stale sessions
231 redirect("$CFG->wwwroot/$CFG->admin/user.php");
232 }
233 //never reached
234 }
235
236 // make sure we really are on the https page when https login required
237 $PAGE->verify_https_required();
238
239
240 /// Display page header
241 if ($user->id == -1 or ($user->id != $USER->id)) {
242 if ($user->id == -1) {
243 echo $OUTPUT->header();
244 } else {
245 $PAGE->set_heading($SITE->fullname);
246 echo $OUTPUT->header();
247 $userfullname = fullname($user, true);
248 echo $OUTPUT->heading($userfullname);
249 }
250 } else if (!empty($USER->newadminuser)) {
251 $strinstallation = get_string('installation', 'install');
252 $strprimaryadminsetup = get_string('primaryadminsetup');
253
254 $PAGE->navbar->add($strprimaryadminsetup);
255 $PAGE->set_title($strinstallation);
256 $PAGE->set_heading($strinstallation);
257 $PAGE->set_cacheable(false);
258
259 echo $OUTPUT->header();
260 echo $OUTPUT->box(get_string('configintroadmin', 'admin'), 'generalbox boxwidthnormal boxaligncenter');
261 echo '<br />';
262 } else {
263 $streditmyprofile = get_string('editmyprofile');
264 $strparticipants = get_string('participants');
265 $strnewuser = get_string('newuser');
266 $userfullname = fullname($user, true);
267
268 $PAGE->set_title("$course->shortname: $streditmyprofile");
269 $PAGE->set_heading($course->fullname);
270
271 echo $OUTPUT->header();
272 echo $OUTPUT->heading($userfullname);
273 }
274
275 /// Finally display THE form
276 $userform->display();
277
278 /// and proper footer
279 echo $OUTPUT->footer();
280
Read-only mirror of the Moodle CVS