MDL-60033 webservice_xmlrpc: extra escaping in the server URL
[moodle.git] / calendar / event.php
blobdad5fd581595443dc7fa26762a51d2a2a8f63cdd
1 <?php
3 /////////////////////////////////////////////////////////////////////////////
4 // //
5 // NOTICE OF COPYRIGHT //
6 // //
7 // Moodle - Calendar extension //
8 // //
9 // Copyright (C) 2003-2004 Greek School Network www.sch.gr //
10 // //
11 // Designed by: //
12 // Avgoustos Tsinakos (tsinakos@teikav.edu.gr) //
13 // Jon Papaioannou (pj@moodle.org) //
14 // //
15 // Programming and development: //
16 // Jon Papaioannou (pj@moodle.org) //
17 // //
18 // For bugs, suggestions, etc contact: //
19 // Jon Papaioannou (pj@moodle.org) //
20 // //
21 // The current module was developed at the University of Macedonia //
22 // (www.uom.gr) under the funding of the Greek School Network (www.sch.gr) //
23 // The aim of this project is to provide additional and improved //
24 // functionality to the Asynchronous Distance Education service that the //
25 // Greek School Network deploys. //
26 // //
27 // This program is free software; you can redistribute it and/or modify //
28 // it under the terms of the GNU General Public License as published by //
29 // the Free Software Foundation; either version 2 of the License, or //
30 // (at your option) any later version. //
31 // //
32 // This program is distributed in the hope that it will be useful, //
33 // but WITHOUT ANY WARRANTY; without even the implied warranty of //
34 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the //
35 // GNU General Public License for more details: //
36 // //
37 // http://www.gnu.org/copyleft/gpl.html //
38 // //
39 /////////////////////////////////////////////////////////////////////////////
41 /**
42 * This file is part of the Calendar section Moodle
44 * @copyright 2003-2004 Jon Papaioannou (pj@moodle.org)
45 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v2 or later
46 * @package calendar
49 require_once('../config.php');
50 require_once($CFG->dirroot.'/calendar/event_form.php');
51 require_once($CFG->dirroot.'/calendar/lib.php');
52 require_once($CFG->dirroot.'/course/lib.php');
54 require_login();
56 $action = optional_param('action', 'new', PARAM_ALPHA);
57 $eventid = optional_param('id', 0, PARAM_INT);
58 $courseid = optional_param('courseid', SITEID, PARAM_INT);
59 $courseid = optional_param('course', $courseid, PARAM_INT);
60 $day = optional_param('cal_d', 0, PARAM_INT);
61 $month = optional_param('cal_m', 0, PARAM_INT);
62 $year = optional_param('cal_y', 0, PARAM_INT);
63 $time = optional_param('time', 0, PARAM_INT);
65 // If a day, month and year were passed then convert it to a timestamp. If these were passed
66 // then we can assume the day, month and year are passed as Gregorian, as no where in core
67 // should we be passing these values rather than the time. This is done for BC.
68 if (!empty($day) && !empty($month) && !empty($year)) {
69 if (checkdate($month, $day, $year)) {
70 $time = make_timestamp($year, $month, $day);
71 } else {
72 $time = time();
74 } else if (empty($time)) {
75 $time = time();
78 $url = new moodle_url('/calendar/event.php', array('action' => $action));
80 if ($eventid != 0) {
81 $url->param('id', $eventid);
84 if ($courseid != SITEID) {
85 $url->param('course', $courseid);
88 $PAGE->set_url($url);
89 $PAGE->set_pagelayout('admin');
91 if ($courseid != SITEID && !empty($courseid)) {
92 $course = $DB->get_record('course', array('id' => $courseid), '*', MUST_EXIST);
93 $courses = array($course->id => $course);
94 $issite = false;
95 } else {
96 $course = get_site();
97 $courses = calendar_get_default_courses();
98 $issite = true;
100 require_login($course, false);
102 if ($action === 'delete' && $eventid > 0) {
103 $deleteurl = new moodle_url('/calendar/delete.php', array('id'=>$eventid));
104 if ($courseid > 0) {
105 $deleteurl->param('course', $courseid);
107 redirect($deleteurl);
110 $calendar = new calendar_information(0, 0, 0, $time);
111 $calendar->prepare_for_view($course, $courses);
113 $formoptions = new stdClass;
114 if ($eventid !== 0) {
115 $title = get_string('editevent', 'calendar');
116 $event = calendar_event::load($eventid);
117 if (!calendar_edit_event_allowed($event, true)) {
118 print_error('nopermissions');
120 $event->action = $action;
121 $event->course = $courseid;
122 $event->timedurationuntil = $event->timestart + $event->timeduration;
123 $event->count_repeats();
125 if (!calendar_add_event_allowed($event)) {
126 print_error('nopermissions');
129 // Check to see if this event is part of a subscription or import.
130 // If so display a warning on edit.
131 if (isset($event->subscriptionid) && ($event->subscriptionid != null)) {
132 \core\notification::add(get_string('eventsubscriptioneditwarning', 'calendar'), \core\output\notification::NOTIFY_INFO);
135 } else {
136 $title = get_string('newevent', 'calendar');
137 calendar_get_allowed_types($formoptions->eventtypes, $course);
138 $event = new stdClass();
139 $event->action = $action;
140 $event->course = $courseid;
141 $event->courseid = $courseid;
142 $event->timeduration = 0;
143 if ($formoptions->eventtypes->courses) {
144 if (!$issite) {
145 $event->eventtype = 'course';
146 } else {
147 unset($formoptions->eventtypes->courses);
148 unset($formoptions->eventtypes->groups);
151 $event->timestart = $time;
152 $event = new calendar_event($event);
153 if (!calendar_add_event_allowed($event)) {
154 print_error('nopermissions');
158 $properties = $event->properties(true);
159 $formoptions->event = $event;
160 $formoptions->hasduration = ($event->timeduration > 0);
161 $mform = new event_form(null, $formoptions);
162 $mform->set_data($properties);
163 $data = $mform->get_data();
164 if ($data) {
165 if ($data->duration == 1) {
166 $data->timeduration = $data->timedurationuntil- $data->timestart;
167 } else if ($data->duration == 2) {
168 $data->timeduration = $data->timedurationminutes * MINSECS;
169 } else {
170 $data->timeduration = 0;
173 $event->update($data);
175 $params = array(
176 'view' => 'day',
177 'time' => $event->timestart,
179 $eventurl = new moodle_url('/calendar/view.php', $params);
180 if (!empty($event->courseid) && $event->courseid != SITEID) {
181 $eventurl->param('course', $event->courseid);
183 $eventurl->set_anchor('event_'.$event->id);
184 redirect($eventurl);
187 $viewcalendarurl = new moodle_url(CALENDAR_URL.'view.php', $PAGE->url->params());
188 $viewcalendarurl->remove_params(array('id', 'action'));
189 $viewcalendarurl->param('view', 'upcoming');
190 $strcalendar = get_string('calendar', 'calendar');
192 $PAGE->navbar->add($strcalendar, $viewcalendarurl);
193 $PAGE->navbar->add($title);
194 $PAGE->set_title($course->shortname.': '.$strcalendar.': '.$title);
195 $PAGE->set_heading($course->fullname);
197 $renderer = $PAGE->get_renderer('core_calendar');
198 $calendar->add_sidecalendar_blocks($renderer);
200 echo $OUTPUT->header();
201 echo $OUTPUT->heading($title);
202 $mform->display();
203 echo $OUTPUT->footer();