message/ajax.php

   1 <?php
   2 // This file is part of Moodle - http://moodle.org/
   3 //
   4 // Moodle is free software: you can redistribute it and/or modify
   5 // it under the terms of the GNU General Public License as published by
   6 // the Free Software Foundation, either version 3 of the License, or
   7 // (at your option) any later version.
   8 //
   9 // Moodle is distributed in the hope that it will be useful,
  10 // but WITHOUT ANY WARRANTY; without even the implied warranty of
  11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  12 // GNU General Public License for more details.
  13 //
  14 // You should have received a copy of the GNU General Public License
  15 // along with Moodle.  If not, see <http://www.gnu.org/licenses/>.
  16
  17 /**
  18  * Ajax point of entry for messaging API.
  19  *
  20  * @package    core_message
  21  * @copyright  2015 Frédéric Massart - FMCorz.net
  22  * @license    http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
  23  */
  24
  25 define('AJAX_SCRIPT', true);
  26
  27 require('../config.php');
  28 require_once($CFG->libdir . '/filelib.php');
  29 require_once(__DIR__ . '/lib.php');
  30
  31 // Only real logged in users.
  32 require_login(null, false, null, true, true);
  33 if (isguestuser()) {
  34     throw new require_login_exception('Guests are not allowed here.');
  35 }
  36
  37 // Messaging needs to be enabled.
  38 if (empty($CFG->messaging)) {
  39     throw new moodle_exception('disabled', 'core_message');
  40 }
  41
  42 require_sesskey();
  43 $action = optional_param('action', null, PARAM_ALPHA);
  44 $response = null;
  45
  46 switch ($action) {
  47
  48     // Sending a message.
  49     case 'sendmessage':
  50
  51         $userid = required_param('userid', PARAM_INT);
  52         if (empty($userid) || isguestuser($userid) || $userid == $USER->id) {
  53             // Cannot send messags to self, nobody or a guest.
  54             throw new coding_exception('Invalid user to send the message to');
  55         }
  56
  57         $message = required_param('message', PARAM_RAW);
  58         $user2 = core_user::get_user($userid);
  59
  60         // Only attempt to send the message if we have permission to message
  61         // the recipient.
  62         if (message_can_post_message($user2, $USER)) {
  63             $messageid = message_post_message($USER, $user2, $message, FORMAT_MOODLE);
  64
  65             if (!$messageid) {
  66                 throw new moodle_exception('errorwhilesendingmessage', 'core_message');
  67             }
  68         } else {
  69             throw new moodle_exception('unabletomessageuser', 'core_message');
  70         }
  71
  72         $response = array();
  73         break;
  74 }
  75
  76 if ($response !== null) {
  77     echo json_encode($response);
  78     exit();
  79 }
  80
  81 throw new coding_exception('Invalid request');