user/edit.php

   1 <?php // $Id$
   2
   3     require_once('../config.php');
   4     require_once($CFG->libdir.'/gdlib.php');
   5     require_once($CFG->dirroot.'/user/edit_form.php');
   6     require_once($CFG->dirroot.'/user/editlib.php');
   7     require_once($CFG->dirroot.'/user/profile/lib.php');
   8
   9     httpsrequired();
  10
  11     $userid = optional_param('id', $USER->id, PARAM_INT);    // user id
  12     $course = optional_param('course', SITEID, PARAM_INT);   // course id (defaults to Site)
  13
  14     if (!$course = get_record('course', 'id', $course)) {
  15         error('Course ID was incorrect');
  16     }
  17
  18     if ($course->id != SITEID) {
  19         require_login($course);
  20     } else if (!isloggedin()) {
  21         if (empty($SESSION->wantsurl)) {
  22             $SESSION->wantsurl = $CFG->httpswwwroot.'/edit/user.php';
  23         }
  24         redirect($CFG->httpswwwroot.'/login/index.php');
  25     }
  26
  27     // Guest can not edit
  28     if (isguestuser()) {
  29         print_error('guestnoeditprofile');
  30     }
  31
  32     // The user profile we are editing
  33     if (!$user = get_record('user', 'id', $userid)) {
  34         error('User ID was incorrect');
  35     }
  36
  37     // Guest can not be edited
  38     if (isguestuser($user)) {
  39         print_error('guestnoeditprofile');
  40     }
  41
  42     // User interests separated by commas
  43     if (!empty($CFG->usetags)) {
  44         require_once($CFG->dirroot.'/tag/lib.php');
  45         $user->interests = tag_names_csv(get_item_tags('user', $user->id));
  46     }
  47
  48     // remote users cannot be edited
  49     if (is_mnet_remote_user($user)) {
  50         redirect($CFG->wwwroot . "/user/view.php?course={$course->id}");
  51     }
  52
  53     $systemcontext   = get_context_instance(CONTEXT_SYSTEM);
  54     $personalcontext = get_context_instance(CONTEXT_USER, $user->id);
  55
  56     // check access control
  57     if ($user->id == $USER->id) {
  58         //editing own profile
  59         require_capability('moodle/user:editownprofile', $systemcontext);
  60
  61     } else {
  62         // teachers, parents, etc.
  63         require_capability('moodle/user:editprofile', $personalcontext);
  64         // no editing of guest user account
  65         if (isguestuser($user->id)) {
  66             print_error('guestnoeditprofileother');
  67         }
  68         // no editing of primary admin!
  69         $mainadmin = get_admin();
  70         if ($user->id == $mainadmin->id) {
  71             print_error('adminprimarynoedit');
  72         }
  73     }
  74
  75     //load user preferences
  76     useredit_load_preferences($user);
  77
  78     //Load custom profile fields data
  79     profile_load_data($user);
  80
  81
  82     //create form
  83     $userform = new user_edit_form();
  84     $userform->set_data($user);
  85
  86     if ($usernew = $userform->get_data()) {
  87
  88         add_to_log($course->id, 'user', 'update', "view.php?id=$user->id&course=$course->id", '');
  89
  90         $authplugin = get_auth_plugin($user->auth);
  91
  92         $usernew->timemodified = time();
  93
  94         if (!update_record('user', $usernew)) {
  95             error('Error updating user record');
  96         }
  97
  98         // pass a true $userold here
  99         if (! $authplugin->user_update($user, $userform->get_data(false))) {
 100             // auth update failed, rollback for moodle
 101             update_record('user', addslashes_object($user));
 102             error('Failed to update user data on external auth: '.$user->auth.
 103                     '. See the server logs for more details.');
 104         }
 105
 106         //update preferences
 107         useredit_update_user_preference($usernew);
 108
 109         //update interests
 110         if (!empty($CFG->usetags)) {
 111             useredit_update_interests($usernew, $usernew->interests);
 112         }
 113
 114         //update user picture
 115         if (!empty($CFG->gdversion) and empty($CFG->disableuserimages)) {
 116             useredit_update_picture($usernew, $userform);
 117         }
 118
 119         // update mail bounces
 120         useredit_update_bounces($user, $usernew);
 121
 122         /// update forum track preference
 123         useredit_update_trackforums($user, $usernew);
 124
 125         // save custom profile fields data
 126         profile_save_data($usernew);
 127
 128         if ($USER->id == $user->id) {
 129             // Override old $USER session variable if needed
 130             $usernew = (array)get_record('user', 'id', $user->id); // reload from db
 131             foreach ($usernew as $variable => $value) {
 132                 $USER->$variable = $value;
 133             }
 134         }
 135         events_trigger('user_updated', $usernew);
 136         redirect("$CFG->wwwroot/user/view.php?id=$user->id&course=$course->id");
 137     }
 138
 139
 140 /// Display page header
 141     $streditmyprofile = get_string('editmyprofile');
 142     $strparticipants  = get_string('participants');
 143     $userfullname     = fullname($user, true);
 144
 145     $navlinks = array();
 146     $navlinks[] = array('name' => $strparticipants, 'link' => "index.php?id=$course->id", 'type' => 'misc');
 147     $navlinks[] = array('name' => $userfullname,
 148                         'link' => "view.php?id=$user->id&amp;course=$course->id",
 149                         'type' => 'misc');
 150     $navlinks[] = array('name' => $streditmyprofile, 'link' => null, 'type' => 'misc');
 151     $navigation = build_navigation($navlinks);
 152     print_header("$course->shortname: $streditmyprofile", $course->fullname, $navigation, "");
 153
 154     /// Print tabs at the top
 155     $showroles = 1;
 156     $currenttab = 'editprofile';
 157     require('tabs.php');
 158
 159 /// Finally display THE form
 160     $userform->display();
 161
 162 /// and proper footer
 163     print_footer($course);
 164
 165 ?>